
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Gebruiker on vr 17-04-2015 at 13:20:12,29.
Microsoft Windows 7 Enterprise  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2015-04-17-110906.log	129011 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateWPP Manager deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LiveUpdateWPP Manager deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\esgiguard deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\esgiguard deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 
"mbot_nl_218"=- 

==== Deleting Files \ Folders ======================

C:\Program Files\Enigma Software Group deleted
C:\Program Files\Common Files\Wise Installation Wizard deleted
C:\Windows\455F074C814E4520B69B5584BD90400C.TMP deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-04-17 10:38:22	955B8AF5FA5E548C66367F3DEAD937E9	321994148	----a-w-	C:\Windows\MEMORY.DMP
====== C:\Users\GEBRUI~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\system32 =====
2015-04-15 08:22:39	76F800C6046B439799C3A4120A0B398A	576000	----a-w-	C:\Windows\System32\generaltel.dll
2015-04-15 08:22:39	5F823C55FB9761F1236AF48DFF630353	860160	----a-w-	C:\Windows\System32\appraiser.dll
2015-04-15 08:22:38	E51E2C5EED4CE667D2CF06E56AC6FF1C	896000	----a-w-	C:\Windows\System32\aeinv.dll
2015-04-15 08:22:38	98F09936B1C397987268D6F2F3D869DB	26112	----a-w-	C:\Windows\System32\acmigration.dll
2015-04-15 08:22:38	90D6FA9DB9502FC992D260DE4CB944C7	331264	----a-w-	C:\Windows\System32\devinv.dll
2015-04-15 08:22:38	87D7FF1217B32CD069DAF079686F43AE	630784	----a-w-	C:\Windows\System32\invagent.dll
2015-04-15 08:22:37	EF63EDC07D444AC4B6E88CA6E2841737	159744	----a-w-	C:\Windows\System32\aepic.dll
2015-04-15 08:22:37	896850F7D6E6E95DC5BE0F192E05CD0E	202752	----a-w-	C:\Windows\System32\aepdu.dll
2015-04-15 08:22:35	D824C1C235349B67E652A5CA70D1AA49	58880	----a-w-	C:\Windows\System32\clfsw32.dll
2015-04-15 08:22:35	33A60554882FDF59CDA3E1806370BBA1	249784	----a-w-	C:\Windows\System32\clfs.sys
2015-04-15 08:22:25	2E5F8CB2EDB36F404D0111471D934B70	1306112	----a-w-	C:\Windows\System32\ntdll.dll
2015-04-15 08:22:25	11896E75E1A118ABFAD126BEB650A189	3920824	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-04-15 08:22:24	A6A644BFAE31F111F35F8C3C7BA2A8A0	3976632	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-04-15 08:22:23	DB7CFA08957C94F6CFAA0DBB8BE4B906	550912	----a-w-	C:\Windows\System32\kerberos.dll
2015-04-15 08:22:23	CC1253300191D95BD97DFAFEFF2DF448	1061376	----a-w-	C:\Windows\System32\lsasrv.dll
2015-04-15 08:22:23	BC09159AFF6639DB2CB28058731199F0	248832	----a-w-	C:\Windows\System32\schannel.dll
2015-04-15 08:22:23	4611A40E1A94E6EBE9885EA609F3D13E	400896	----a-w-	C:\Windows\System32\srcore.dll
2015-04-15 08:22:23	0C01746013943D7E7EE86B920ADFB50D	262656	----a-w-	C:\Windows\System32\rstrui.exe
2015-04-15 08:22:22	A057B61F8A553F6DA38563597FA3676B	65536	----a-w-	C:\Windows\System32\TSpkg.dll
2015-04-15 08:22:22	981CE3E3A653511799F4A862494B66A8	22528	----a-w-	C:\Windows\System32\lsass.exe
2015-04-15 08:22:22	6F8CEB8115737D2E049804B191AE41A9	50176	----a-w-	C:\Windows\System32\auditpol.exe
2015-04-15 08:22:22	655C88135254C78E6FB66B6C2F6AC5DA	172032	----a-w-	C:\Windows\System32\wdigest.dll
2015-04-15 08:22:22	56977F27A96383E2A6C8BACEFC17E9CA	259584	----a-w-	C:\Windows\System32\msv1_0.dll
2015-04-15 08:22:22	485436C2A90318218777401FB973558C	69632	----a-w-	C:\Windows\System32\smss.exe
2015-04-15 08:22:22	2DE438AE95C59FB33B3E4E34827C1100	221184	----a-w-	C:\Windows\System32\ncrypt.dll
2015-04-15 08:22:21	FFE76FCFE98544EAD36591569E6E31AD	15872	----a-w-	C:\Windows\System32\sspisrv.dll
2015-04-15 08:22:21	B68B44D003D3FF5E245F6B3761496082	38912	----a-w-	C:\Windows\System32\csrsrv.dll
2015-04-15 08:22:21	A169307F0105183092F2AEDA9A8BD15D	43008	----a-w-	C:\Windows\System32\srclient.dll
2015-04-15 08:22:21	6A9FFEF19C4F8F2E9082A50BB07ECDF1	22016	----a-w-	C:\Windows\System32\secur32.dll
2015-04-15 08:22:21	47A1F23EE40C2389FCD53E9D5CEA3430	17408	----a-w-	C:\Windows\System32\credssp.dll
2015-04-15 08:22:21	10214DD52E67433BEF72E1D75AE0F32F	100352	----a-w-	C:\Windows\System32\sspicli.dll
2015-04-15 08:22:20	C557EB6CD735B4EE5076EA289B02CEAC	6656	----a-w-	C:\Windows\System32\apisetschema.dll
2015-04-15 08:22:20	C0693456929F40833B9CC36C9CF7E3A8	146432	----a-w-	C:\Windows\System32\msaudite.dll
2015-04-15 08:22:20	4B21D227B191A6305087BDD6BB19220F	60416	----a-w-	C:\Windows\System32\msobjs.dll
2015-04-15 08:22:20	2E0F849B7BF17969E45881FA4EB9B487	686080	----a-w-	C:\Windows\System32\adtschema.dll
2015-04-15 08:21:57	172D2960EF38795D2819A35268672F3D	305152	----a-w-	C:\Windows\System32\gdi32.dll
2015-04-15 08:21:55	9A2B138118A27A2EB3FE71EDB55ED142	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-04-15 08:21:55	92CF8BC1B198C01CDC55A1A91E510700	60416	----a-w-	C:\Windows\System32\JavaScriptCollectionAgent.dll
2015-04-15 08:21:55	8CD57250F538CFFA0D5DCA9773AEDCAB	47616	----a-w-	C:\Windows\System32\ieetwproxystub.dll
2015-04-15 08:21:54	EEC060949BC1863A30F72EB28D2C1E2F	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-04-15 08:21:54	D9E187C07D2E847B38A07EEDD4CC7967	685568	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-04-15 08:21:54	BA897AB3BC3DBC25829946EBA487496C	30720	----a-w-	C:\Windows\System32\iernonce.dll
2015-04-15 08:21:54	89CACDF654626F1948BF6C19A6D610BE	342704	----a-w-	C:\Windows\System32\iedkcs32.dll
2015-04-15 08:21:54	8127C2EE2E287BB3AB7843F9923B62BD	1311232	----a-w-	C:\Windows\System32\urlmon.dll
2015-04-15 08:21:53	B7BFB7C2970DF5E779FF729C037BD8E4	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-04-15 08:21:53	A305BEDA0CD8304102BFBBA0EB2A48CA	620032	----a-w-	C:\Windows\System32\jscript9diag.dll
2015-04-15 08:21:53	2B5DD86A4B6E92E5A79C479C0652E727	418304	----a-w-	C:\Windows\System32\dxtmsft.dll
2015-04-15 08:21:53	1DFA1B4968C4E9E23CD6E68AF9CC063F	47104	----a-w-	C:\Windows\System32\jsproxy.dll
2015-04-15 08:21:53	01C2BB4C13E6E0AF50867BCE8EE8A03E	710144	----a-w-	C:\Windows\System32\ieapfltr.dll
2015-04-15 08:21:52	EC442CB6F2D08F4FAA6BA68A23B82383	689152	----a-w-	C:\Windows\System32\msfeeds.dll
2015-04-15 08:21:52	CA4F96D21BEF43DE9407210CFF76FCEA	2724864	----a-w-	C:\Windows\System32\mshtml.tlb
2015-04-15 08:21:51	8A083313C1F7F50098D1D4F2FC092BD1	2052608	----a-w-	C:\Windows\System32\inetcpl.cpl
2015-04-15 08:21:50	8E30C9B4E16C23211F1DD02B517E4FA8	62464	----a-w-	C:\Windows\System32\iesetup.dll
2015-04-15 08:21:50	2396395B6F563158BEC2E0526D7F6CD2	168960	----a-w-	C:\Windows\System32\msrating.dll
2015-04-15 08:21:49	C46904F2E9E121A91DDDABB48D7648C3	1888256	----a-w-	C:\Windows\System32\wininet.dll
2015-04-15 08:21:49	2CBD6D22499EB13A2666F62EF33D00E2	16303	----a-w-	C:\Windows\System32\ieuinit.inf
2015-04-15 08:21:49	0A5B7C0B5A754BBACD53DFFA53A0E47B	4096	----a-w-	C:\Windows\System32\ieetwcollectorres.dll
2015-04-15 08:21:48	CD91FE4F2718A88FC1C9C9C2E73EABB2	285696	----a-w-	C:\Windows\System32\dxtrans.dll
2015-04-15 08:21:47	AE8A9FCDC135F681EFE9135929CF4A7B	12825600	----a-w-	C:\Windows\System32\ieframe.dll
2015-04-15 08:21:47	94D64C343FE6341430A4C61BC490FEBF	478208	----a-w-	C:\Windows\System32\ieui.dll
2015-04-15 08:21:45	B55293D48979DADE6049944C252A3BDB	340992	----a-w-	C:\Windows\System32\html.iec
2015-04-15 08:21:44	D730BA653F9F95EC044F6636E6E45905	76288	----a-w-	C:\Windows\System32\mshtmled.dll
2015-04-15 08:21:44	BDE9AA78B575CDA7C946A725926021F7	1155072	----a-w-	C:\Windows\System32\mshtmlmedia.dll
2015-04-15 08:21:43	DC155C2C14DC69EA400020CF92895873	64000	----a-w-	C:\Windows\System32\MshtmlDac.dll
2015-04-15 08:21:43	77104FDBBD821F2D73338D9370675EF3	2278400	----a-w-	C:\Windows\System32\iertutil.dll
2015-04-15 08:21:41	2F42037DD6F2831332653EB7F35D7E9A	19695616	----a-w-	C:\Windows\System32\mshtml.dll
2015-04-15 08:21:40	7776F3DA2B1AEDC2DA226F726B1E9A01	503296	----a-w-	C:\Windows\System32\vbscript.dll
2015-04-15 08:21:40	43A5A38E45F0D4FA02A0CCD51244AA17	4305408	----a-w-	C:\Windows\System32\jscript9.dll
2015-04-15 08:21:31	DA5B856A037872BE089CA6967C7050C5	1237504	----a-w-	C:\Windows\System32\msxml3.dll
2015-04-15 08:21:31	78492CF3C3697FB5AF4EAABB2BAF8595	2048	----a-w-	C:\Windows\System32\msxml3r.dll
2015-04-15 08:21:11	E981C27FA6C2F45C135DB4AF78D6FE1F	92672	----a-w-	C:\Windows\System32\wudriver.dll
2015-04-15 08:21:11	CFF96E0CE6F81F5968A6D61786642855	131584	----a-w-	C:\Windows\System32\wuauclt.exe
2015-04-15 08:21:11	C7E498E41D92CF8C2EAED9995781A7F7	29696	----a-w-	C:\Windows\System32\wups.dll
2015-04-15 08:21:11	9D68CE45935C439D5082ECB56902124D	566784	----a-w-	C:\Windows\System32\wuapi.dll
2015-04-15 08:21:11	751C4859FD46A1461B3FB57252F541D8	33792	----a-w-	C:\Windows\System32\wuapp.exe
2015-04-15 08:21:11	3096CA2455ECDEF83A90F2384BD305D3	3088384	----a-w-	C:\Windows\System32\wucltux.dll
2015-04-15 08:21:11	131BDD454DD1AA5BF732886DA6A3B0FA	11776	----a-w-	C:\Windows\System32\wu.upgrade.ps.dll
2015-04-15 08:21:11	124FD729FB2B621EB32E9B34B8D49A34	50176	----a-w-	C:\Windows\System32\WinSetupUI.dll
2015-04-15 08:21:11	0430D8CE2C251BAD25CF809CEA3D2153	35328	----a-w-	C:\Windows\System32\wups2.dll
2015-04-15 08:21:11	031C03C9639CE0D294695968C68A5775	173056	----a-w-	C:\Windows\System32\wuwebv.dll
2015-04-15 08:21:10	7E5C454A3F986FEBAD075DB8D915917E	2020864	----a-w-	C:\Windows\System32\wuaueng.dll
====== C:\Windows\system32\drivers =====
2015-04-15 08:22:23	D800E1EAF33630A1636BB21E8256AA92	137656	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-04-15 08:22:22	746F89CE0C6569C589E6AC4D3DA82D41	67512	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-04-15 08:21:04	487569E5DA56A5A432FF8AF6D3599CF9	514560	----a-w-	C:\Windows\System32\drivers\http.sys
2015-04-04 09:47:12	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\System32\drivers\Msft_Kernel_WinUsb_01009.Wdf
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-04-17 08:01:41	--------	d-----w-	C:\Program Files\Common Files\Java
2015-04-16 17:55:30	--------	d-----w-	C:\Program Files\trend micro
2015-04-15 18:01:47	--------	d-----w-	C:\Program Files\Common Files\Skype
2015-04-15 18:01:45	--------	d-----r-	C:\Program Files\Skype
2015-03-30 14:25:49	--------	d-----w-	C:\Program Files\Apowersoft
======= C: =====
====== C:\Users\Gebruiker\AppData\Roaming ======
2015-04-17 11:06:43	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2015-04-17 11:06:43	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-04-17 11:06:43	--------	d-----w-	C:\Users\Gebruiker\AppData\Local\Temp
2015-04-17 11:06:43	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-04-17 11:06:43	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-04-15 18:37:06	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2015-04-04 09:02:10	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\Mozilla
2015-03-30 14:27:03	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\74d8e7458d17bc6d68eee05cba816078305fdf81
2015-03-30 14:26:57	CC6302D4AFBF6E459C6B976E53AEB390	6152669	----a-w-	C:\Users\Gebruiker\AppData\Roaming\7.0.2.zip
2015-03-30 14:26:22	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\Apowersoft
2015-03-28 12:44:17	--------	d-----w-	C:\Users\Gebruiker\AppData\Local\P5
2015-03-27 10:09:38	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\cef-cache
2015-03-27 10:09:28	--------	d-----w-	C:\Users\Gebruiker\AppData\Roaming\Party
2015-03-27 09:44:26	--------	d-sh--w-	C:\Users\Gebruiker\AppData\Locallow\EmieBrowserModeList
2015-03-26 15:22:07	--------	d-sh--w-	C:\Users\Gebruiker\AppData\Local\EmieBrowserModeList
2015-03-19 16:11:39	--------	d-----w-	C:\Users\Gebruiker\AppData\Local\PokerStars.EU
====== C:\Users\Gebruiker ======
2015-04-17 09:32:01	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Gebruiker\Downloads\RSIT.exe
2015-04-17 09:17:26	0EFDC1550592DC0C4E73AFFB54B35C3E	2217984	----a-w-	C:\Users\Gebruiker\Downloads\adwcleaner_4.201.exe
2015-04-15 18:01:48	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-04-14 13:22:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\partypoker
2015-03-28 12:44:20	--------	d-----w-	C:\Users\Gebruiker\P5JavaClientSettings
2015-03-19 16:11:39	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU

====== C: exe-files ==
2015-04-17 09:32:01	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Gebruiker\Downloads\RSIT.exe
2015-04-17 09:17:26	0EFDC1550592DC0C4E73AFFB54B35C3E	2217984	----a-w-	C:\Users\Gebruiker\Downloads\adwcleaner_4.201.exe
2015-04-17 08:00:58	B175AD07294EB83FD12947B47B009D66	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-04-17 08:00:58	6045943DD4B9731735DB0774B25AE114	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-04-17 08:00:58	12F3D9FC2D1D68BB1C9AF782F94E4CF8	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-04-17 08:00:46	F65FA872AB42C3F0DBDDE26DF9609F5C	159656	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\unpack200.exe
2015-04-17 08:00:46	D7168BCC2877E533EB32E0E00DCEEAE6	51112	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\ssvagent.exe
2015-04-17 08:00:46	B406B32BDFDE96384C5F0A93D0090403	16296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\tnameserv.exe
2015-04-17 08:00:45	EEF1E60EE8CD91EB27B465DF7D97D747	16296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\rmiregistry.exe
2015-04-17 08:00:45	BDFE80354D388518D8C4E71F2734796D	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\pack200.exe
2015-04-17 08:00:45	B2ED82B1A6ACCED29498BB9BA43D430F	16296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\servertool.exe
2015-04-17 08:00:45	9A78F5C33E24C55B7025416C79658759	16296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\orbd.exe
2015-04-17 08:00:45	6EE11615820FCCBC8879FD86DD033515	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\rmid.exe
2015-04-17 08:00:45	01E2DB324E5D3C31D1C31D7E3B9748CF	16296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\policytool.exe
2015-04-17 08:00:44	E830232219E9156AF3E7F0ACB1B85FC8	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\ktab.exe
2015-04-17 08:00:44	90D8F0F8665DFE0F5616902F8A0E8561	76712	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\jp2launcher.exe
2015-04-17 08:00:44	57631CADE6FE87A131913D6241A5343A	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\kinit.exe
2015-04-17 08:00:44	33EF14CDCDD35CB53D3C3FCB3C2819CC	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\keytool.exe
2015-04-17 08:00:44	11EEA5DB4A0B073867E3DCBCDBF12118	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\klist.exe
2015-04-17 08:00:43	6045943DD4B9731735DB0774B25AE114	191400	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\javaw.exe
2015-04-17 08:00:43	3C07B66A8BB9F028DC8EB87F84915DF0	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\jjs.exe
2015-04-17 08:00:43	12F3D9FC2D1D68BB1C9AF782F94E4CF8	272296	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\javaws.exe
2015-04-17 08:00:42	7AEB4F5D482E1167E1FE9A726584BCD6	68520	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\javacpl.exe
2015-04-17 08:00:41	EECA4389069973E098AC4A167D58DC47	30632	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\jabswitch.exe
2015-04-17 08:00:41	C885370364208460FD31001113F2B2A2	15784	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\java-rmi.exe
2015-04-17 08:00:41	B175AD07294EB83FD12947B47B009D66	190888	----a-w-	C:\Program Files\Java\jre1.8.0_45\bin\java.exe
2015-04-16 17:55:36	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Gebruiker.exe
2015-04-15 08:22:38	870CADF288DCA12B4E1D88FA0418146A	67768	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2015-04-15 08:22:25	11896E75E1A118ABFAD126BEB650A189	3920824	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-04-15 08:22:24	A6A644BFAE31F111F35F8C3C7BA2A8A0	3976632	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-04-15 08:22:23	0C01746013943D7E7EE86B920ADFB50D	262656	----a-w-	C:\Windows\System32\rstrui.exe
2015-04-15 08:22:22	981CE3E3A653511799F4A862494B66A8	22528	----a-w-	C:\Windows\System32\lsass.exe
2015-04-15 08:22:22	6F8CEB8115737D2E049804B191AE41A9	50176	----a-w-	C:\Windows\System32\auditpol.exe
2015-04-15 08:22:22	485436C2A90318218777401FB973558C	69632	----a-w-	C:\Windows\System32\smss.exe
2015-04-15 08:21:55	9A2B138118A27A2EB3FE71EDB55ED142	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-04-15 08:21:54	EEC060949BC1863A30F72EB28D2C1E2F	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-04-15 08:21:54	D9E187C07D2E847B38A07EEDD4CC7967	685568	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-04-15 08:21:54	9A9F2AC89AAE40A49D8D474FAD932C37	221184	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-04-15 08:21:53	B7BFB7C2970DF5E779FF729C037BD8E4	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-04-15 08:21:51	DACC3142BF6317B7250F319AB435D128	469504	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-04-15 08:21:50	B3581F426DC500A51091CDD5BACF0454	815288	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-04-15 08:21:11	CFF96E0CE6F81F5968A6D61786642855	131584	----a-w-	C:\Windows\System32\wuauclt.exe
2015-04-15 08:21:11	751C4859FD46A1461B3FB57252F541D8	33792	----a-w-	C:\Windows\System32\wuapp.exe
=== C: other files ==
2015-04-17 08:00:47	34AD992DE8D6023490DB5C9017FAE6E8	14130	----a-w-	C:\Program Files\Java\jre1.8.0_45\lib\deploy\ffjcext.zip
2015-04-15 08:22:35	33A60554882FDF59CDA3E1806370BBA1	249784	----a-w-	C:\Windows\System32\clfs.sys
2015-04-15 08:22:23	D800E1EAF33630A1636BB21E8256AA92	137656	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-04-15 08:22:22	746F89CE0C6569C589E6AC4D3DA82D41	67512	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-04-15 08:21:04	487569E5DA56A5A432FF8AF6D3599CF9	514560	----a-w-	C:\Windows\System32\drivers\http.sys
2015-04-14 13:21:32	5FD05953EFFCC0D7559DA39715C4B137	13496	----a-w-	C:\Programs\PartyGaming\EBEngine\MSIE\Temp\pbwmsie.zip
2015-04-14 13:21:31	14DFEFEF7808C81C3B42B08A09A18DCE	70188	----a-w-	C:\Programs\PartyGaming\EBEngine\GGCH\Temp\pbwggch.zip
2015-04-14 13:21:31	0BCE7C8FA7CE17089BAA11242A4CFF7F	18850543	----a-w-	C:\Programs\PartyGaming\EBEngine\GGCH\Temp\cef.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1312176358-3740219037-1532654591-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"DivXMediaServer"="C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"TWebCamera"=""%ProgramFiles%\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe /c"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [22-06-2012 13:02]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1312176358-3740219037-1532654591-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [23-10-2014 22:48]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1312176358-3740219037-1532654591-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [23-10-2014 22:48]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]
"C:\Windows\system32\tasks\4802" [wscript.exe C:\Users\GEBRUI~1\AppData\Local\Temp\launchie.vbs //B]
"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1312176358-3740219037-1532654591-1000Core" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1312176358-3740219037-1532654591-1000UA" [C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\TuneUp Utilities 2013\OneClick.exe]
"C:\Windows\system32\tasks\{0803C31D-6346-4AB5-88E1-E2671382781E}" [C:\Program Files\Vuze\Azureus.exe]
"C:\Windows\system32\tasks\{1D7B4800-9054-4D74-9A08-18FF45E251AA}" [C:\Program Files\Vuze\Azureus.exe]
"C:\Windows\system32\tasks\{9BF99A96-BD49-4DA7-89BB-5A5071B45E14}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/6.3.0.107/nl/abandoninstall?source=lightinstaller&amp;page=tsProgressBar]
"C:\Windows\system32\tasks\{D972129A-1446-4828-BB1A-CF3A3B4263F9}" [C:\Users\Gebruiker\AppData\Roaming\Popcorn Time\node-webkit\nw.exe]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
kfecnpmgnlnbmipaogfhoacoioifjgko - No path found[]
oglggbpjpnlaknminfiidiimimmlolhh - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
kfecnpmgnlnbmipaogfhoacoioifjgko - No path found[]
oglggbpjpnlaknminfiidiimimmlolhh - No path found[]


==== Chromium Startpages ======================

C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com",
"startup_urls": [ "http://www.google.com/", "http://www.luckysearches.com/?type=hp&ts=1429261315&from=buzz&uid=WDCXWD2500BEVS-26UST0_WD-WXEY08JC9992C9992", "http://www.mystartsearch.com/?type=hp&ts=1429266797&from=cor&uid=WDCXWD2500BEVS-26UST0_WD-WXEY08JC9992C9992" ]


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Empty IE Cache ======================

C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2498 folders=547 437677516 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 17-04-2015 at 13:50:33,45 ======================