Zoek.exe v5.0.0.0 Updated 05-March-2015 Tool run by Dell on za 04-04-2015 at 11:45:44,55. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86 Running in: Safe Mode MINIMAL No Internet Access Detected Launched: C:\Users\Dell\Desktop\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== ==== Empty Folders Check ====================== C:\PROGRA~2\69C1938359090D4C498E84AB6BA643DC deleted successfully C:\Users\Dell\AppData\Local\WarThunder deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HitmanPro37CrusaderBoot deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HitmanPro37CrusaderBoot deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\SafeBoot\Network\HitmanPro37CrusaderBoot deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\HitmanPro37CrusaderBoot deleted successfully ==== Deleting Files \ Folders ====================== C:\PROGRA~2\69C1938359090D4C498E84AB6BA643DC not found C:\user.js deleted C:\found.000 deleted C:\PROGRA~2\Avg_Update_0814tb deleted C:\PROGRA~2\Datamngr deleted C:\Users\Dell\AppData\Local\CRE deleted C:\Users\Dell\AppData\Local\Installer deleted C:\Users\Dell\AppData\Local\CrashRpt deleted C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847} deleted C:\Users\Dell\Downloads\iLividSetup.exe deleted C:\Users\Dell\Downloads\SoftonicDownloader_voor_gta-iv-san-andreas.exe deleted C:\Users\Dell\Downloads\SoftonicDownloader_voor_gtaiv-patch.exe deleted C:\Users\Dell\AppData\LocalLow\uTorrentBar_NL deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job deleted C:\Windows\system32\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv deleted C:\Windows\system32\tasks\UNELEVATE_24751 deleted C:\Windows\system32\Tasks\SPBIW_UpdateTask_Time_3838383337353230332d344a414155342a2a236c6c5a deleted C:\Windows\system32\Tasks\YTAUpdate deleted C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job deleted C:\Windows\system32\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv deleted C:\Windows\system32\config\systemprofile\Searches deleted C:\Windows\System32\AniGIF.ocx deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Dell\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== 2015-04-03 09:00:31 8E2E9CCD873ABF180F48BCAEEEBE347D 114904 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2015-04-03 08:59:45 9BD41E40039098BF5F8FE878A9A6989E 75480 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2015-04-03 08:59:44 A3F4391DFDF2F9E9FE4EAD193265A5AD 23256 ----a-w- C:\Windows\System32\drivers\mbam.sys 2015-04-03 08:59:44 312CD3307F600E7CD340B79B3DCB3A01 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-04-02 12:35:36 -------- d-----w- C:\Program Files\Trend Micro ======= C: ===== 2015-04-02 20:22:36 F6D1F53D5033FBD1797F8546938F9F50 3416 ------w- C:\bootsqm.dat ====== C:\Users\Dell\AppData\Roaming ====== 2015-03-17 21:53:29 -------- d-----w- C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-apparaten ====== C:\Users\Dell ====== 2015-04-03 20:52:02 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Downloads\RSIT (2).exe 2015-04-03 20:51:59 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Downloads\RSIT (1).exe 2015-04-03 20:51:48 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Desktop\RSIT.exe 2015-04-03 08:58:30 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\Dell\Desktop\mbam-setup-2.0.0.1000.exe 2015-04-02 20:14:47 E55D0D5D5A3A585BFF48B990708007A5 2208768 ----a-w- C:\Users\Dell\Desktop\adwcleaner_4.200.exe 2015-03-31 18:29:39 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Downloads\avast_free_antivirus_setup.exe 2015-03-31 18:23:54 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Downloads\avast_free_antivirus_setup (1).exe 2015-03-31 18:13:32 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Desktop\avast_free_antivirus_setup (1).exe ====== C: exe-files == 2015-04-03 20:52:59 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\Dell.exe 2015-04-03 20:52:02 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Downloads\RSIT (2).exe 2015-04-03 20:51:59 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Downloads\RSIT (1).exe 2015-04-03 20:51:48 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Dell\Desktop\RSIT.exe 2015-04-03 08:58:49 4C916886C30E37B921DC6C85A7CDBF9A 949840 ----a-w- C:\Program Files\Google\Update\Install\{26502BE1-F39E-4B27-9887-D76152EC00A0}\41.0.2272.118_41.0.2272.89_chrome_updater.exe 2015-04-03 08:58:49 4C916886C30E37B921DC6C85A7CDBF9A 949840 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.118\41.0.2272.118_41.0.2272.89_chrome_updater.exe 2015-04-03 08:58:30 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\Dell\Desktop\mbam-setup-2.0.0.1000.exe 2015-04-02 20:14:47 E55D0D5D5A3A585BFF48B990708007A5 2208768 ----a-w- C:\Users\Dell\Desktop\adwcleaner_4.200.exe 2015-03-31 18:29:39 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Downloads\avast_free_antivirus_setup.exe 2015-03-31 18:23:54 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Downloads\avast_free_antivirus_setup (1).exe 2015-03-31 18:13:32 2FEEFDF0F6D09F45BE37A0638CFD8AA3 5829680 ----a-w- C:\Users\Dell\Desktop\avast_free_antivirus_setup (1).exe === C: other files == 2015-04-03 09:00:31 8E2E9CCD873ABF180F48BCAEEEBE347D 114904 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2015-04-03 08:59:45 9BD41E40039098BF5F8FE878A9A6989E 75480 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2015-04-03 08:59:44 A3F4391DFDF2F9E9FE4EAD193265A5AD 23256 ----a-w- C:\Windows\System32\drivers\mbam.sys 2015-04-03 08:59:44 312CD3307F600E7CD340B79B3DCB3A01 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "IntelPROSet"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless" "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" "avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Apoint] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Apoint" "hkey"="HKLM" "command"="C:\\Program Files\\DellTPad\\Apoint.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="APSDaemon" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Facebook Update" "hkey"="HKCU" "command"="\"C:\\Users\\Dell\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="iTunesHelper" "hkey"="HKLM" "command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="QuickTime Task" "hkey"="HKLM" "command"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Snelle start.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Adobe Reader Snelle start.lnk" "backup"="C:\\Windows\\pss\\Adobe Reader Snelle start.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\Adobe\\READER~1.0\\Reader\\READER~1.EXE " "item"="Adobe Reader Snelle start" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Adobe Reader Synchronizer.lnk" "backup"="C:\\Windows\\pss\\Adobe Reader Synchronizer.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\Adobe\\READER~1.0\\Reader\\ADOBEC~1.EXE " "item"="Adobe Reader Synchronizer" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Bluetooth.lnk" "backup"="C:\\Windows\\pss\\Bluetooth.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\WIDCOMM\\BLUETO~1\\BTTray.exe " "item"="Bluetooth" ==== Startup Folders ====================== 2015-03-07 13:49:05 1280 ----a-w- C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk 2015-01-27 15:48:14 2651 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Virtual Router Manager.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [04-02-2015 23:03] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-320899285-3615528866-2947393236-1000Core.job --a------ C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe [14-02-2014 15:36] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-320899285-3615528866-2947393236-1000UA.job --a------ C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe [14-02-2014 15:36] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [21-10-2014 22:42] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ :C:\Program Files\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-320899285-3615528866-2947393236-1000Core" [C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-320899285-3615528866-2947393236-1000UA" [C:\Users\Dell\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\FGRun" [C:\Users\Dell\AppData\Roaming\pack.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\{086C9E0C-B4B6-4CE5-A85B-63726E90E82D}" ["c:\program files\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\{32AB7BF9-EF5A-465E-85E3-5A4D0FB2BAC0}" [C:\Program Files\Virtual Router\VirtualRouterClient.exe] "C:\Windows\system32\tasks\{336C1228-1339-4A4E-8B0A-FF36619F5345}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{3C0A0E68-AC07-4AD7-A1CF-AE5818F401BD}" ["c:\program files\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\{3E04D93C-7102-44CE-98D6-8D0F13C76FDA}" [C:\Program Files\Virtual Router\VirtualRouterClient.exe] "C:\Windows\system32\tasks\{57F3699A-018D-4BC2-AF79-35A0191AFC8F}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{58791596-458E-44FC-BFCC-4AD1EEB125E5}" [C:\Program Files\Virtual Router\VirtualRouterClient.exe] "C:\Windows\system32\tasks\{74B9E5FD-41E6-44EE-8E54-398650390AC1}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{8BAFA002-0143-451A-9C83-05109F89DAE0}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{918AFDD8-750C-4F73-B8A7-88B531998AE5}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{937D1002-6C31-4C20-81B5-6AA800FB4725}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{9C509128-1C71-4E3D-A72C-3F118664735D}" ["c:\users\dell\appdata\local\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\{B5E7A0BD-2BAD-4FFD-92B6-FFE9E567F132}" [C:\Program Files\Virtual Router\VirtualRouterClient.exe] "C:\Windows\system32\tasks\{C1799D2A-8785-4213-AAAA-869C0DDA54B4}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{C2DE65B6-4993-4813-8187-6D0AF2A8AFB0}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{C8C82B3B-E467-4D14-857F-5993730B574C}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{CDF4DCFC-7BAC-4197-8CDF-505073C3B9E5}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{E863894A-4DE1-457A-8977-AE757A91B98E}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\{F20593D5-68BE-43F5-992A-7567F7BA7132}" ["c:\program files\google\chrome\application\chrome.exe"] "C:\Windows\system32\tasks\{F541D2A4-C1E7-40CA-BF1E-9722BDC8704C}" [C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions ====================== ExtDir: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles - Ask Toolbar - %ExtDir%\toolbar@ask.com ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com deleted ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.118 (Could not determine latest Stable Version) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Dell\AppData\Local\Temp\ccex.crx[] ndkkhdppcfchlghnlhifennhcadbnfld - C:\Users\Dell\AppData\Local\CRE\ndkkhdppcfchlghnlhifennhcadbnfld.crx[] AdBlock - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Game Master 2.2 - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndkkhdppcfchlghnlhifennhcadbnfld ==== Chromium Fix ====================== C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndkkhdppcfchlghnlhifennhcadbnfld deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-320899285-3615528866-2947393236-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndkkhdppcfchlghnlhifennhcadbnfld deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=785 folders=138 16473350 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Dell\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Dell\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 04-04-2015 at 12:05:05,09 ======================