Zoek.exe v5.0.0.0 Updated 27-01-2015 Tool run by Haike on 29/01/2015 at 20:08:48,51. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Haike\Favorites\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-01-23-173034.log 180954 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~3\UAB deleted C:\PROGRA~3\Package Cache deleted C:\Users\Haike\AppData\Local\PC_Drivers_Headquarters deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Haike\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-01-25 14:34:31 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-01-25 14:34:30 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Windows\SysWOW64\D3DX9_43.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2015-01-14 13:36:16 B9DCEA6D9EC0E9192B2C44C5454E6FED 41704 ----a-w- C:\Windows\Sysnative\drivers\clwvd6.sys 2015-01-14 11:20:04 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2015-01-25 14:30:48 -------- d-----w- C:\PROGRA~2\Kodi 2015-01-23 15:58:59 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-01-14 13:36:11 -------- d-----w- C:\PROGRA~2\NSIS Uninstall Information ======= C: ===== ====== C:\Users\Haike\AppData\Roaming ====== 2015-01-25 14:35:34 -------- d-----w- C:\Users\Haike\AppData\Roaming\Kodi 2015-01-25 14:31:29 -------- d-----w- C:\Users\Haike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi 2015-01-23 16:49:11 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp 2015-01-23 16:49:11 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2015-01-23 16:49:11 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-01-23 16:49:11 -------- d-----w- C:\Users\Haike\AppData\Local\Temp 2015-01-23 16:49:11 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-01-23 16:49:11 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-01-15 20:17:07 -------- d-----w- C:\Users\Haike\AppData\Roaming\IDT ====== C:\Users\Haike ====== 2015-01-14 13:36:13 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 6 ====== C: exe-files == 2015-01-27 14:27:15 489C54EB56613BAE3006CCFCF5D0DEE2 73336 ----a-w- C:\Program Files (x86)\Opera\27.0.1689.54\wow_helper.exe 2015-01-27 14:27:14 B7FAB0CB5A3CEC2514EC83D606ADA56C 51345016 ----a-w- C:\Program Files (x86)\Opera\27.0.1689.54\opera.exe 2015-01-27 14:27:14 57881B6320F087A84D2C442D9FD0F6D2 552056 ----a-w- C:\Program Files (x86)\Opera\27.0.1689.54\opera_crashreporter.exe 2015-01-27 14:27:14 31C6C235E42BA0C97BA1DE01BD31CD79 1284728 ----a-w- C:\Program Files (x86)\Opera\27.0.1689.54\installer.exe 2015-01-27 14:27:14 0D3EE9DD8E41C615C0DEA1007F361E48 2152056 ----a-w- C:\Program Files (x86)\Opera\27.0.1689.54\opera_autoupdate.exe 2015-01-27 14:25:47 220A0B7B557EFEF7C399CDC1E9DBDA2D 875088 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\40.0.2214.93\40.0.2214.93_40.0.2214.91_chrome_updater.exe 2015-01-25 14:31:29 08D69EBA39DC161376805285E0354E77 444603 ----a-w- C:\Program Files (x86)\Kodi\Uninstall.exe 2015-01-23 15:58:27 B0D46640968F989830413EB88F43E0D0 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2015-01-23 15:58:27 52C8B9FD016E6317FDB151296FF90877 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2015-01-23 15:58:27 3E72E1AB196855916E2065C604674631 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2015-01-23 15:58:18 7479DA0BED071427A3F0017AC51CC27B 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\unpack200.exe 2015-01-23 15:58:18 577F5DCBA4DE4C345631873670F84E79 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\tnameserv.exe 2015-01-23 15:58:17 F9D744CD9BC58F287F8FA59D32508EDD 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\orbd.exe 2015-01-23 15:58:17 DBB5C8AE19ACFA2857CFB90C7305AC56 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssvagent.exe 2015-01-23 15:58:17 CDB1FE0DCF2ADB755EBF65C8AEBBC871 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\servertool.exe 2015-01-23 15:58:17 8B6DF9CD28359C5E819446FD79CE3948 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmiregistry.exe 2015-01-23 15:58:17 5F7C51E0DCA813D647F14FC12AE675F2 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\policytool.exe 2015-01-23 15:58:17 39685FC75B6FB2144E793595F1AB111D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\pack200.exe 2015-01-23 15:58:17 0FB2ACAC796B166F6486B593B604A3FF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmid.exe 2015-01-23 15:58:16 DA34E76DE9CD93471F24E7BD43139958 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\kinit.exe 2015-01-23 15:58:16 A8884FB8246655C84F110E77DF5E1B4A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ktab.exe 2015-01-23 15:58:16 69BD74EE834B5629226BF89468B8020B 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\keytool.exe 2015-01-23 15:58:16 2F77C9862B1A2401278C4A5B932DA69D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\klist.exe 2015-01-23 15:58:15 AF82EA1498FEC5C49B8A1AE5AA0A5F6C 77224 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2launcher.exe 2015-01-23 15:58:15 90C02BD6D01BBC1C620323F9E330E89C 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jjs.exe 2015-01-23 15:58:14 F5EA785B2BCC08DC28CBC2D96E05F2C1 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe 2015-01-23 15:58:14 DF1C8EDDAF14D2960A06A9DF7B2D0A89 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java-rmi.exe 2015-01-23 15:58:14 B0D46640968F989830413EB88F43E0D0 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java.exe 2015-01-23 15:58:14 52C8B9FD016E6317FDB151296FF90877 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaws.exe 2015-01-23 15:58:14 3E72E1AB196855916E2065C604674631 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaw.exe 2015-01-23 15:58:13 063A1044A451660B159426B9C5E75957 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jabswitch.exe === C: other files == 2015-01-26 15:36:10 5E6B3B550D9CD59DC956B1A5DD487CF1 248894 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\net.rieter.xot.channel.sbsnl-3.5.2.1.zip 2015-01-26 15:36:10 58C4391829DCC5D2FBDDFBB75699F23C 578602 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\net.rieter.xot.channel.nos-3.5.2.1.zip 2015-01-25 14:56:23 36721300A085A981B1F3C9F3963683E0 2299096 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.navi-x-4.0.zip 2015-01-25 14:56:07 CDE2D97DB43AADD89AB354DEF502495F 8032332 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\net.rieter.xot-3.5.2.zip 2015-01-25 14:55:41 B7593421443AA5120EC950A92ADD2157 64971 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.elementtree-1.2.8.zip 2015-01-25 14:55:40 3E77C6ED9DC190BF644E3691CF1C5B11 23393 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.beautifulsoup-3.2.1.zip 2015-01-25 14:55:39 6865F0529933DBB0C085CE831B160366 47725 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.axel.downloader-0.2.1.zip 2015-01-25 14:55:38 BD6E07A3DFA0A44A690210CB2ECBA4B5 58019 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.common.plugin.cache-2.5.5.zip 2015-01-25 14:55:33 02DD9FBBBF4A7DA1CD223A513EEE8885 8873195 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\plugin.video.icefilms-1.6.0.zip 2015-01-25 14:55:18 91DF3B83C8C66934DA3AB58431CB8A2B 19311 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.t0mm0.common-2.1.1.zip 2015-01-25 14:55:16 BBF9ADD70691D6909633DBB66287DE54 463886 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.requests-2.4.3.zip 2015-01-25 14:55:15 CF0D34F794D0296004E5C5106E632DD9 465526 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\plugin.video.youtube-5.0.4.zip 2015-01-25 14:55:14 E962EF52A87FD48C41E717DCF3FD1767 386649 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.urlresolver-2.6.0.zip 2015-01-25 14:55:13 36CBF334542F0182CBC90E383841DB21 109623 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.myconnpy-1.1.7.zip 2015-01-25 14:55:13 0076371F193A6C98A452FA33E87760D4 47853 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.simplejson-3.3.0.zip 2015-01-25 14:55:12 93AF2332CB8F9FA455A9EBC585A2FD6B 103642 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.metahandler-2.7.0.zip 2015-01-25 14:55:11 ACDC5D9D8D0B148993104A5773912FDA 19522 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\script.module.addon.common-2.0.0.zip 2015-01-25 14:55:10 332B937AFDB8418A3769CC7014C45869 323664 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\plugin.video.1channel-2.5.55.zip 2015-01-25 14:53:24 97D33F558DD4973BB986C68B6F1B3D98 57451 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\repository.superrepo.org.helix.video-0.5.207.zip 2015-01-25 14:50:20 99FCD401225EDD3DEB6A0E8E7649F0DD 25323 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\service.subtitles.opensubtitles-5.0.11.zip 2015-01-25 14:49:55 EF556EEF44786D22F13EA1D2DD0EE5D2 11041152 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\plugin.video.genesis-3.5.1.zip 2015-01-25 14:49:34 61FCA62CAF0223B262AFF1EE954F9E9C 958017 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\repository.lambda-1.1.0.zip 2015-01-25 14:35:58 FE81E5C1FF3DCAD6DEBDF4B4757B4E5C 118574 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\service.xbmc.versioncheck-0.3.2.zip 2015-01-25 14:35:55 B34F2E8E4AC99BBF27F4A48E588AE778 80219 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\metadata.album.universal-2.3.1.zip 2015-01-25 14:35:55 A9570F356690C1C85A6205E2ACC43862 62721 ----a-w- C:\Users\Haike\AppData\Roaming\Kodi\addons\packages\metadata.musicvideos.theaudiodb.com-1.2.7.zip 2015-01-24 14:30:09 DFA4367DD7C8EEEA1F2BFDFCFE20CCE6 111122 ----a-w- C:\Users\Haike\Favorites\Downloads\berichten (7).zip 2015-01-23 21:42:26 76CDB2BAD9582D23C1F6F4D868218D6C 22 ----a-w- C:\Users\Haike\AppData\Local\Temp\avastBCLTMP\{b801ca65-a1fc-11d0-85ad-444553540000}.zip 2015-01-23 21:42:14 76CDB2BAD9582D23C1F6F4D868218D6C 22 ----a-w- C:\Users\Haike\AppData\Local\Temp\avastBCLTMP\{335f9a62-fe4b-40cd-b4ed-bb4de21dc95d}.zip 2015-01-23 15:58:18 3315140254247E248C3531F159C79109 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-877358373-389464757-3982291811-1000\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "Facebook Update"="C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Spotify"="C:\Users\Haike\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\Haike\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Driver Whiz"="C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe /applicationMode:systemTray /showWelcome:false" "WebcamMaxAutoRun"="C:\Program Files (x86)\WebcamMax\wcmmon.exe -a" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" "HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" "HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "YouCam Service6"="C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe /s" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "Facebook Update"="C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Spotify"="C:\Users\Haike\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\Haike\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Driver Whiz"="C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe /applicationMode:systemTray /showWelcome:false" "WebcamMaxAutoRun"="C:\Program Files (x86)\WebcamMax\wcmmon.exe -a" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "HPWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe Update" ==== Startup Folders ====================== 2013-05-19 15:54:35 2099 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:@C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-877358373-389464757-3982291811-1000Core.job --a------ C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe [17/07/2012 06:23] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-877358373-389464757-3982291811-1000UA.job --a------ C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe [17/07/2012 06:23] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/10/2014 18:14] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\Driver Whiz-RTMRules" [C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe] "C:\Windows\SysNative\tasks\Driver Whiz-RTMScan" [C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe] "C:\Windows\SysNative\tasks\Driver Whiz-RTMScanRunOnce" [C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe] "C:\Windows\SysNative\tasks\Driver Whiz-RTMUpdater" [C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-877358373-389464757-3982291811-1000Core" [C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-877358373-389464757-3982291811-1000UA" [C:\Users\Haike\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Opera scheduled Autoupdate 1417861675" [C:\Program Files (x86)\Opera\launcher.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\Start Registry Reviver" [C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{C1DF6790-7BC6-4453-969F-D3EB894C37D2}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{0327619F-AFFA-42AE-82CB-BBCB12E4CA01}" [C:\Program Files (x86)\GeoGebra 4.4\GeoGebra.exe] "C:\Windows\SysNative\tasks\{D440C118-5267-4C6D-AEF3-CE02D659996E}" [C:\Program Files (x86)\Skype\\Phone\Skype.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [04/08/2014 04:43] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [19/05/2013 16:55] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 40.0.2214.93 (Up to date, latest Stable version: 40.0.2214.93) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[04/08/2014 04:42] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[22/11/2012 10:30] Google Search - Haike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype for Chromium - Haike\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Cath Kidston - Haike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndlpkmaeinmnbiadacenijnhlolneopm Chrome In-App Payments service - Haike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Haike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Slides - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap Skype Click to Call - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{7732B84B-BAC6-458C-83E7-6BA0F2C96CFD}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=1I7SKPT_nlBE450" {7732B84B-BAC6-458C-83E7-6BA0F2C96CFD} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Haike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Haike\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully C:\Users\Haike\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=22 folders=23 36531208 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Haike\AppData\Local\Temp will be emptied at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Haike\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on 29/01/2015 at 20:51:32,21 ======================