Zoek.exe v5.0.0.0 Updated 21-11-2014 Tool run by Dominique on za 22-11-2014 at 17:53:20,31. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Dominique\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-11-22-163948.log 32935 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ==== Deleting Files \ Folders ====================== C:\Program Files\Ask.com not found ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\DOMINI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-11-22 14:19:16 742BD1F196FEFC94A6379BA039D3CD00 96680 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll 2014-11-20 02:01:26 1DE1C07B256961012DCE0674EA488DE7 499200 ----a-w- C:\Windows\System32\kerberos.dll 2014-11-13 02:57:37 51992CC4DF2DB150950C6CB505556B9A 146432 ----a-w- C:\Windows\System32\msaudite.dll 2014-11-13 02:57:36 15F315B53C69930BF907D9A0FFCB6206 619520 ----a-w- C:\Windows\System32\adtschema.dll 2014-11-13 02:57:34 DBD84E59D631569EC3E756EF144E8431 449536 ----a-w- C:\Windows\System32\termsrv.dll 2014-11-13 02:57:34 0C96812AAEDA38C89DC6C3F0AE7B6930 1259008 ----a-w- C:\Windows\System32\lsasrv.dll 2014-11-13 02:56:55 37A4DF3BCA563FB7537B881AE91BA9C4 1249280 ----a-w- C:\Windows\System32\msxml3.dll 2014-11-13 02:56:55 06A9049BA8B9F20D755CF03FD12E8AFD 2048 ----a-w- C:\Windows\System32\msxml3r.dll 2014-11-13 02:56:15 C0D56D9E570D8C294D1D9B2B32D4C857 278528 ----a-w- C:\Windows\System32\schannel.dll 2014-11-13 02:55:52 BC4C024BDC8B676CC58BCE1D5BA7BC04 67072 ----a-w- C:\Windows\System32\packager.dll 2014-11-13 02:51:20 FD7A26BF790751B527E632BD9346DDFD 729600 ----a-w- C:\Windows\System32\IMJP10K.DLL 2014-11-13 02:35:14 BE377621E2D2B483F8EF447079E55585 396800 ----a-w- C:\Windows\System32\AudioEng.dll 2014-11-13 02:35:14 A0344CD5E3F552340AB226E864E1710B 170496 ----a-w- C:\Windows\System32\EncDump.dll 2014-11-13 02:35:14 8E98A99187FF17FC1D48E6FAFFD870BE 316928 ----a-w- C:\Windows\System32\audiosrv.dll 2014-11-13 02:35:14 56B73070DB745E192307EB7AB6C55CD5 274432 ----a-w- C:\Windows\System32\AUDIOKSE.dll 2014-11-13 02:31:22 2908C2D90B78FDC24326B7854079E44E 564224 ----a-w- C:\Windows\System32\oleaut32.dll 2014-11-13 02:05:55 2833F623494FC1EFC0EAC4401CBBF2F2 2054656 ----a-w- C:\Windows\System32\win32k.sys 2014-11-12 06:44:42 F832CFAFA6015E21B33A583C7B2CA19A 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-11-12 06:44:42 565188FD523603C94FD7619E14FB7E32 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-11-12 06:44:41 ECED64B195BF217D5CFD65698BC9727D 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-11-12 06:44:41 DE0269B69861CD68EC8D29AD4A01894E 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-11-12 06:44:41 556F78D100D031073A7A01992B74E98E 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-11-12 06:44:41 348F63C1CD7952B1433691D4F8E8B1A8 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-11-12 06:44:41 2A60B15FFD6EEDFBA73728593171AA19 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2014-11-12 06:44:41 27FA9CA22666E0AFB03F4433A4CEA5B7 1139712 ----a-w- C:\Windows\System32\urlmon.dll 2014-11-12 06:44:40 D07699ACF5301E45006AFD7566769E1B 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-11-12 06:44:40 BE27559260267DD7431F9E01F0BF87B6 1802752 ----a-w- C:\Windows\System32\iertutil.dll 2014-11-12 06:44:40 08E805C724637412C73A57E50212DBEC 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-11-12 06:44:39 C94AEBE5CCA3F390E7CBC64D2FF30CDF 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-11-12 06:44:39 BF493C48DF485DF0DE5F10EFA1BAA1D2 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2014-11-12 06:44:39 B6260FAA9ACF8AC13312C739B23BD0BE 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-11-12 06:44:39 AB9015D5B288898E7298BE0DC93BFF0E 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-11-12 06:44:39 5C4AE6F46A4307CC5885FF000EEF3A5D 231936 ----a-w- C:\Windows\System32\url.dll 2014-11-12 06:44:39 4AF7834C2D41512749BE5FB46CF6EF37 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-11-12 06:44:39 3A98C11FD14209D9D3A0B4E2943B302C 9739776 ----a-w- C:\Windows\System32\ieframe.dll 2014-11-12 06:44:35 9F702DD4CE7AC7C5FD3D8E10D012AC06 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-11-12 06:44:34 0484379BFC58E440EF432D2C80CF0912 1810944 ----a-w- C:\Windows\System32\jscript9.dll 2014-11-12 06:44:33 5BDCC7129C2F0A25F8A8FF6A3BDD9896 12366848 ----a-w- C:\Windows\System32\mshtml.dll ====== C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-11-22 14:19:22 -------- d-----w- C:\Program Files\Common Files\Java 2014-11-22 12:54:19 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Dominique\AppData\Roaming ====== 2014-11-22 14:56:28 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Temp 2014-11-22 14:56:28 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-11-22 14:56:28 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-11-22 14:56:28 -------- d-----w- C:\Users\Laura\AppData\Local\Temp 2014-11-22 14:56:28 -------- d-----w- C:\Users\Elias\AppData\Local\Temp 2014-11-22 14:56:28 -------- d-----w- C:\Users\Eelco\AppData\Local\Temp 2014-11-22 14:56:27 -------- d-----w- C:\Users\Dominique\AppData\Local\Temp 2014-11-22 14:56:27 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-11-22 13:46:19 -------- d-----w- C:\Users\Elias\AppData\Locallow\Sun 2014-11-22 13:44:06 -------- d-----w- C:\Users\Elias\AppData\Roaming\Adobe 2014-11-22 13:43:03 -------- d-----w- C:\Users\Elias\AppData\Roaming\HP 2014-11-22 13:40:58 -------- d-----w- C:\Users\Elias\AppData\Roaming\Apple Computer 2014-11-22 13:40:13 E0C37D4E0C0A0AADB99E33B2B5170190 105824 ----a-w- C:\Users\Elias\AppData\Local\GDIPFONTCACHEV1.DAT 2014-11-22 13:40:13 -------- d-s---w- C:\Users\Elias\AppData\Locallow\Microsoft 2014-11-22 13:40:12 -------- d-----w- C:\Users\Elias\AppData\Local\Power2Go 2014-11-22 13:39:02 -------- d-----w- C:\Users\Elias\AppData\Local\Google 2014-11-22 13:38:46 BEA07E6D2B8DCE396FE21BAA61B34956 6 --sha-w- C:\Users\Elias\AppData\Locallow\desktop.ini 2014-11-22 13:38:46 -------- d-----r- C:\Users\Elias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-11-22 13:38:46 -------- d-----r- C:\Users\Elias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-11-22 13:38:34 -------- d-----w- C:\Users\Elias\AppData\Roaming\Identities 2014-11-22 13:36:54 -------- d-----w- C:\Users\Elias\AppData\Local\VirtualStore 2014-11-22 13:36:19 -------- d-s---w- C:\Users\Elias\AppData\Roaming\Microsoft 2014-11-22 13:36:19 -------- d-----w- C:\Users\Elias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite 2014-11-22 13:36:19 -------- d-----w- C:\Users\Elias\AppData\Roaming\Media Center Programs 2014-11-22 13:36:19 -------- d-----w- C:\Users\Elias\AppData\Local\Microsoft Help 2014-11-22 13:36:19 -------- d-----w- C:\Users\Elias\AppData\Local\Microsoft 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories ====== C:\Users\Dominique ====== 2014-11-22 14:18:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-22 14:17:23 -------- d-----w- C:\ProgramData\Oracle 2014-11-22 14:07:59 92F975B07E65EF3AE67D89A016FDAACC 638888 ----a-w- C:\Users\Dominique\Downloads\JavaSetup8u25.exe 2014-11-22 13:38:46 -------- d-----r- C:\Users\Elias\Searches 2014-11-22 13:38:31 -------- d-----r- C:\Users\Elias\Contacts 2014-11-22 13:36:21 6FC234AD3752E1267B34FB12BCD6718B 20 --sha-w- C:\Users\Elias\ntuser.ini 2014-11-22 13:36:19 -------- d--h--w- C:\Users\Elias\AppData 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Videos 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Saved Games 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Pictures 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Music 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Links 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Favorites 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Downloads 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Documents 2014-11-22 13:36:19 -------- d-----r- C:\Users\Elias\Desktop 2014-11-22 12:55:26 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dominique\Desktop\RSIT.exe ====== C: exe-files == 2014-11-22 14:18:13 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2014-11-22 14:18:13 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2014-11-22 14:18:13 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2014-11-22 14:17:45 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmid.exe 2014-11-22 14:17:45 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\policytool.exe 2014-11-22 14:17:45 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\unpack200.exe 2014-11-22 14:17:45 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ssvagent.exe 2014-11-22 14:17:45 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmiregistry.exe 2014-11-22 14:17:45 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\servertool.exe 2014-11-22 14:17:45 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\tnameserv.exe 2014-11-22 14:17:44 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\pack200.exe 2014-11-22 14:17:44 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jjs.exe 2014-11-22 14:17:44 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\keytool.exe 2014-11-22 14:17:44 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\kinit.exe 2014-11-22 14:17:44 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\orbd.exe 2014-11-22 14:17:44 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jp2launcher.exe 2014-11-22 14:17:44 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\klist.exe 2014-11-22 14:17:44 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ktab.exe 2014-11-22 14:17:41 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jabswitch.exe 2014-11-22 14:17:41 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java.exe 2014-11-22 14:17:41 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaw.exe 2014-11-22 14:17:41 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java-rmi.exe 2014-11-22 14:17:41 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe 2014-11-22 14:17:41 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaws.exe 2014-11-22 14:07:59 92F975B07E65EF3AE67D89A016FDAACC 638888 ----a-w- C:\Users\Dominique\Downloads\JavaSetup8u25.exe 2014-11-22 12:55:26 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dominique\Desktop\RSIT.exe 2014-11-22 12:54:20 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Dominique.exe 2014-11-22 08:10:36 DBDC93187B17D055F0B17838C7D264BE 6838864 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\39.0.2171.65\39.0.2171.65_38.0.2125.111_chrome_updater.exe 2014-11-15 19:33:41 5B4ED5734945619EE3BCDB9825D2F526 51080 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe 2014-11-15 19:33:41 06036279056145E0F08FC095CB789E6A 51080 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleUpdateBroker.exe 2014-11-15 19:33:39 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files\Google\Update\1.3.25.11\GoogleUpdateSetup.exe 2014-11-15 19:33:27 EDD3E562684CB4C50704B471BEAB1F86 114568 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe 2014-11-15 19:33:27 CB8C1CC4F46FBAC78150754D77460C73 230792 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe 2014-11-15 19:33:27 7161E8E31B7FD3B1CE083C2CA5FD5F44 285064 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler64.exe 2014-11-15 19:33:23 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files\Google\Update\1.3.25.11\GoogleUpdate.exe 2014-11-15 19:33:17 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.11\GoogleUpdateSetup.exe === C: other files == 2014-11-22 14:17:45 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files\Java\jre1.8.0_25\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-1530853161-3468054736-2238710697-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Spotify"="C:\Users\Dominique\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\Dominique\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "UpdateLBPShortCut"="C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5" "CLMLServer"="C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" "UpdateP2GoShortCut"="C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0" "ETDWare"="C:\Program Files\Elantech\ETDCtrl.exe" "AmIcoSinglun"="C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe" "HControlUser"="C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe" "ATKOSD2"="C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" "Wireless Console 3"="C:\Program Files\ASUS\Wireless Console 3\wcourier.exe" "ATKMEDIA"="C:\Program Files\ASUS\ATK Media\DMedia.exe" "ASUS Camera ScreenSaver"="C:\Windows\AsScrProlog.exe" "ADSMTray"="C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe" "ACMON"="C:\Program Files\ASUS\Splendid\ACMON.exe" "Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime" "ApnUpdater"="C:\Program Files\Ask.com\Updater\Updater.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" "AgentMonitor"="C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Spotify"="C:\Users\Dominique\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\Dominique\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" ==== Startup Folders ====================== 2012-12-18 08:46:50 1104 ----a-w- C:\Users\Dominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk 2012-12-14 11:04:39 1035 ----a-w- C:\Users\Dominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2 .lnk 2012-03-17 15:03:03 2413 ----a-w- C:\Users\Dominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk 2012-03-30 18:07:41 958 ----a-w- C:\Users\Eelco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2012-05-20 17:34:37 1104 ----a-w- C:\Users\Eelco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk 2010-07-04 19:25:02 1035 ----a-w- C:\Users\Eelco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2 .lnk 2009-09-15 09:57:14 2467 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk 2012-02-13 12:17:25 1979 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [12-11-2014 15:27] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [25-10-2014 13:19] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [25-10-2014 13:19] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\ASUS Live Update" [C:\Program Files\ASUS\ASUS Live Update\ALU.exe] "C:\Windows\system32\tasks\ASUS P4G" [C:\Program files\P4G\BatteryLife.exe] "C:\Windows\system32\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files\ASUS\SmartLogon\sensorsrv.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{0692AC7C-9E81-4867-95DB-A68B001539DC}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{1A6B3DCD-9C21-45D6-8014-B4D59D88B69B}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\{508C2823-CAAF-4C5F-90DF-EE4AFD34EC84}" [C:\Program Files\Skype\Phone\Skype.exe] "C:\Windows\system32\tasks\{C122231A-1086-4AA6-BBF9-47C2997CF2B4}" ["c:\program files\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\{DF1B31E2-E512-41BE-8512-39E7D7A674B0}" ["c:\program files\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\Norton Family\Norton Error Analyzer" [C:\Program Files\Norton Family\Engine\2.9.5.9\SymErr.exe] "C:\Windows\system32\tasks\Norton Family\Norton Error Processor" [C:\Program Files\Norton Family\Engine\2.9.5.9\SymErr.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\system32\tasks\Symantec\Norton Error Analyzer 5.2.2.3" [C:\Program Files\Norton 360\Engine\5.2.2.3\SymErr.exe] "C:\Windows\system32\tasks\Symantec\Norton Error Processor 5.2.2.3" [C:\Program Files\Norton 360\Engine\5.2.2.3\SymErr.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}"="C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.6.0.43\coFFFw" [22-07-2014 12:15] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-03-2012 10:53] napjheenlliimoedooldaalpjfidlidp - C:\Program Files\Norton Family\Engine\2.9.5.9\Extensions\Chrome.crx[07-10-2013 16:24] YouTube - Dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - Dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Norton Family - Dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\napjheenlliimoedooldaalpjfidlidp Gmail - Dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia YouTube - Eelco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Eelco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - Eelco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Norton Family - Eelco\AppData\Local\Google\Chrome\User Data\Default\Extensions\napjheenlliimoedooldaalpjfidlidp Gmail - Eelco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Dominique\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com", "urls_to_restore_on_startup": [ "http://www.google.com" ] C:\Users\Eelco\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com", "urls_to_restore_on_startup": [ "http://www.google.com" ] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.be/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUS_nlBE350" ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Dominique\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Eelco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Eelco\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Elias\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Elias\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Laura\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Dominique\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Dominique\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Eelco\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=331 folders=25 238237928 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Dominique\AppData\Local\Temp will be emptied at reboot C:\Users\Eelco\AppData\Local\Temp emptied successfully C:\Users\Elias\AppData\Local\Temp emptied successfully C:\Users\Laura\AppData\Local\Temp emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\DOMINI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Dominique\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on za 22-11-2014 at 18:26:43,67 ======================