Zoek.exe Version 4.0.0.5 Updated 27-09-2015 Tool run by Eigenaar on ma 28/09/2015 at 13:13:02,95. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: c:\Users\Eigenaar\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 28/09/2015 13:50:14 Zoek.exe System Restore Point Created Successfully. ==== Torpig Check ====================== HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll ==== Empty Folders Check ====================== C:\Program Files\GreenTree Applications deleted successfully C:\Users\Eigenaar\AppData\Local\Adobe deleted successfully C:\Users\UpdatusUser\AppData\Local\Google deleted successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\CrashDumps deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-99750587-4078008973-3465543785-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "qwupdate"=- ==== Deleting Files \ Folders ====================== C:\Program Files\GreenTree Applications not found C:\PROGRA~2\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted C:\PROGRA~2\Package Cache deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted "C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\xdvuz5jl.default-1442758643488\extensions\firefox@mega.co.nz.xpi" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-09-26 11:59:59 578E3F7B73BD202535B28F45B39A8189 272256442 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Eigenaar\AppData\Local\Temp ==== 2015-09-26 13:30:01 5E6E816F8F5B454329F8C013A70391B9 7571000 ----a-w- C:\Users\Eigenaar\AppData\Local\Temp\SpotifyUninstall.exe ====== Java Cache ===== 2015-08-31 11:51:54 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Eigenaar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-593d498f 2015-08-31 11:51:54 196BA15CD5EE98B088C94DC3CD2B020E 425 ----a-w- C:\Users\Eigenaar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap 2015-08-31 11:51:52 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Eigenaar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-2888575b 2015-08-31 11:52:02 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Eigenaar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\47c58863-5e4c152a 2015-08-31 11:51:55 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\Eigenaar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-2685327c ====== C:\Windows\system32 ===== 2015-09-27 05:51:12 B9BE54E31884CCB8E91D8482A50C1458 8192 ----a-w- C:\Windows\System32\WDPABKP.dat 2015-09-24 10:31:38 14D9E215B8A971498B40E914A7F5A5A8 374144 ----a-w- C:\Windows\System32\FNTCACHE.DAT ====== C:\Windows\system32\drivers ===== 2015-09-22 13:41:41 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\38AC69F1.sys 2015-09-19 15:35:15 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\7B8D5676.sys 2015-09-19 14:50:35 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\712C3446.sys 2015-09-18 13:51:54 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\3571393A.sys 2015-09-17 13:43:40 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\6D3964CB.sys 2015-09-16 14:43:07 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\2DFF4429.sys 2015-09-16 13:48:02 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\22631A01.sys 2015-09-15 17:24:27 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\02F47182.sys 2015-09-15 13:36:14 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\412C42D6.sys 2015-09-10 13:00:28 DC7E6FCD8C51AEF8FF3F2E23C786014A 304640 ----a-w- C:\Windows\System32\drivers\srv.sys 2015-09-10 13:00:28 8AE0783E3EDCED90D4B2961887056A2B 102912 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2015-09-08 13:28:16 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\05CB19CF.sys 2015-09-03 13:26:43 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\755111F5.sys 2015-08-29 12:37:02 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\3D636544.sys ====== C:\Windows\Tasks ====== 2015-09-27 13:01:25 C2C57D55A666EDDDD1B8750C2268D3BD 3524 ----a-w- C:\Windows\system32\Tasks\SUPERAntiSpyware Scheduled Task 60fa524b-d778-4dfd-807b-3fb135f30946 2015-09-27 13:01:25 BF18F0F4A8485FA514E9A2F77473EE06 516 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 60fa524b-d778-4dfd-807b-3fb135f30946.job 2015-09-27 13:01:22 7FEF92422D233E478645663A4767AA40 3450 ----a-w- C:\Windows\system32\Tasks\SUPERAntiSpyware Scheduled Task 9ceb52be-b91c-4816-90b7-dc025032614f 2015-09-27 13:01:21 73C32780753EFD532F967FADF0663790 516 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 9ceb52be-b91c-4816-90b7-dc025032614f.job 2015-09-01 12:10:43 -------- d-----w- C:\Windows\system32\Tasks\Western Digital ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-09-01 12:02:16 -------- dc----w- C:\Program Files\Common Files\Western Digital 2015-08-31 11:47:18 -------- dc----w- C:\Program Files\Common Files\Java ======= C: ===== 2015-09-18 16:57:35 D41D8CD98F00B204E9800998ECF8427E 0 -csha-r- C:\MSDOS.SYS 2015-09-18 16:57:35 D41D8CD98F00B204E9800998ECF8427E 0 -csha-r- C:\IO.SYS ====== C:\Users\Eigenaar\AppData\Roaming ====== 2015-09-27 18:32:27 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Nero 2015-09-27 13:01:03 -------- d-----w- C:\Users\Eigenaar\AppData\Roaming\SUPERAntiSpyware.com 2015-09-23 13:11:19 D6E2A7A559FAA89136DA730629C47262 102864 ----a-w- C:\Users\Eigenaar\AppData\Local\GDIPFONTCACHEV1.DAT 2015-09-21 10:32:01 -------- d-----w- C:\Users\Eigenaar\AppData\Local\CEF 2015-09-18 17:03:39 -------- d-----w- C:\Users\Eigenaar\AppData\Roaming\SpringFiles 2015-09-18 10:38:33 -------- d-----w- C:\Users\Eigenaar\AppData\Locallow\uTorrent 2015-09-01 12:09:36 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Western Digital 2015-09-01 12:09:20 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Western_Digital_Technolog 2015-08-31 11:47:01 -------- d-----w- C:\Users\Eigenaar\AppData\Roaming\Sun 2015-08-30 12:12:33 -------- d-----w- C:\Users\Eigenaar\AppData\Local\CrashDumps 2015-08-30 07:25:06 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2015-08-30 07:25:06 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-08-30 07:25:06 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\temp 2015-08-30 07:25:06 -------- d-----w- C:\Users\Public\AppData\Local\temp 2015-08-30 07:25:06 -------- d-----w- C:\Users\Default\AppData\Local\temp 2015-08-30 07:25:06 -------- d-----w- C:\Users\Default User\AppData\Local\temp 2015-08-30 07:25:05 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Temp ====== C:\Users\Eigenaar ====== 2015-09-27 12:57:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2015-09-27 12:57:21 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2015-09-27 12:55:58 B3990E17596452607AAEDC4E05786F7D 23449392 ----a-w- C:\Users\Eigenaar\Downloads\SUPERAntiSpyware(1).exe 2015-09-27 06:05:03 B3990E17596452607AAEDC4E05786F7D 23449392 ----a-w- C:\Users\Eigenaar\Downloads\SUPERAntiSpyware.exe 2015-09-26 11:22:35 4803BA9B8EA5BE9721601A67F673AE98 9983584 ----a-w- C:\Users\Eigenaar\Downloads\MEGAsyncSetup.exe 2015-09-18 17:03:52 -------- d-----w- C:\ProgramData\boost_interprocess 2015-09-01 12:07:25 -------- d-----w- C:\Users\Public\Documents\Downloads 2015-09-01 12:04:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital 2015-09-01 12:01:41 -------- d-----w- C:\ProgramData\Western Digital 2015-08-31 11:46:58 -------- d-----w- C:\Users\Eigenaar\.oracle_jre_usage ====== C: exe-files == 2015-09-27 12:55:58 B3990E17596452607AAEDC4E05786F7D 23449392 ----a-w- C:\Users\Eigenaar\Downloads\SUPERAntiSpyware(1).exe 2015-09-27 06:05:03 B3990E17596452607AAEDC4E05786F7D 23449392 ----a-w- C:\Users\Eigenaar\Downloads\SUPERAntiSpyware.exe 2015-09-27 06:02:22 E3EA8F1C5970D8E3F5617925A9534C37 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-99750587-4078008973-3465543785-1000\$IWLMMAQ.exe 2015-09-26 17:30:22 4719799B56E0B4BEE6C62552FC7FC7E0 936016 -c--a-w- C:\Program Files\Google\Update\Install\{0AB072F5-859A-4C48-8805-1351CB3D57AF}\45.0.2454.101_45.0.2454.99_chrome_updater.exe 2015-09-26 17:30:22 4719799B56E0B4BEE6C62552FC7FC7E0 936016 -c--a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\45.0.2454.101\45.0.2454.101_45.0.2454.99_chrome_updater.exe 2015-09-26 13:30:01 5E6E816F8F5B454329F8C013A70391B9 7571000 ----a-w- C:\Users\Eigenaar\AppData\Local\Temp\SpotifyUninstall.exe 2015-09-26 11:22:35 4803BA9B8EA5BE9721601A67F673AE98 9983584 ----a-w- C:\Users\Eigenaar\Downloads\MEGAsyncSetup.exe 2015-09-26 06:54:41 40E63A7B9993496620D503AF6DDC92C3 336896 ----a-w- C:\Users\Eigenaar\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe 2015-09-26 06:39:24 4E19C3F4919A8ED4A5F955B100472AED 1821536 ----a-w- C:\Users\Eigenaar\AppData\Roaming\uTorrent\updates\3.4.5_41162.exe 2015-09-23 18:43:38 E757369F1D84A065E5B622D9C1BA1177 6819608 ----a-w- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe 2015-09-23 11:19:42 ECD8723FBA32A1CB7A9F3A8DF874809A 43383376 -c--a-w- C:\Program Files\Google\Update\Install\{5B9EA0C0-7EDD-45D5-8E79-1643F254B4F1}\45.0.2454.99_chrome_installer.exe 2015-09-22 16:20:55 ECD8723FBA32A1CB7A9F3A8DF874809A 43383376 -c--a-w- C:\Program Files\Google\Update\Install\{441791DE-F358-4050-87FD-C36EBEB08FF4}\45.0.2454.99_chrome_installer.exe 2015-09-22 11:19:42 F051A6D1D7D27C094928DB1157291E5A 2934864 -c--a-w- C:\Program Files\Google\Update\Install\{DD7C284A-AD64-4441-B759-ABB716346C00}\45.0.2454.99_45.0.2454.93_chrome_updater.exe === C: other files == 2015-09-27 15:02:25 50343152622C327F9A25937D3A45EF5A 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-99750587-4078008973-3465543785-1000\$IUL6OXG.sys 2015-09-23 11:34:01 AC00CB94D6E70AA22D9DBCEC57937E96 120 ----a-w- C:\ProgramData\Kaspersky Lab\KAV.15.0.0.463c_09.23_13.34_1712.bsod.zip 2015-09-23 11:23:31 A1F28CB5288856C2B0B219FFC1405317 97694597 ----a-w- C:\ProgramData\Kaspersky Lab\KAV.15.0.0.463c_09.23_13.23_1712.bsod.zip 2015-09-22 13:41:41 739164A8B8FB2F1B50A498F20AF7B21E 98520 ----a-w- C:\Windows\System32\drivers\38AC69F1.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-99750587-4078008973-3465543785-1000\Software\Microsoft\Windows\CurrentVersion\Run] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "uTorrent"="C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" "MyDriveConnect.exe"="C:\Program Files\MyDrive Connect\TomTom MyDrive Connect.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [HKEY_USERS\S-1-5-21-99750587-4078008973-3465543785-1002\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" "ContentTransferWMDetector.exe"="C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "WD Drive Unlocker"="C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe" "DriveUtilitiesHelper"="C:\Program Files\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe" "WD Quick View"="C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "uTorrent"="C:\Users\Eigenaar\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" "MyDriveConnect.exe"="C:\Program Files\MyDrive Connect\TomTom MyDrive Connect.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [23/09/2015 13:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/08/2015 12:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [30/08/2015 12:07] C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 60fa524b-d778-4dfd-807b-3fb135f30946.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 22:08] C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 9ceb52be-b91c-4816-90b7-dc025032614f.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 22:08] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\Reevc" ["C:\Program Files\shopperz\Dkymvzjrv.bat"] "C:\Windows\system32\tasks\SUPERAntiSpyware Scheduled Task 60fa524b-d778-4dfd-807b-3fb135f30946" [C:\Program Files\SUPERAntiSpyware\SASTask.exe] "C:\Windows\system32\tasks\SUPERAntiSpyware Scheduled Task 9ceb52be-b91c-4816-90b7-dc025032614f" [C:\Program Files\SUPERAntiSpyware\SASTask.exe] "C:\Windows\system32\tasks\UnHackMe Task Scheduler" [C:\Program Files\UnHackMe\hackmon.exe] "C:\Windows\system32\tasks\Abelssoft\StartBackgroundguardWithWindows" [C:\Program Files\CheckDrive\CheckDrive.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\system32\tasks\Western Digital\SmartWare\____Volume_9c6e30fc_4489_11e4_b074_806e6f6e6963______Volume_d8d0ac2b_5094_11e5_beb6_00251117326a__" [C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe] ==== Folders in C:\PROGRA~2 0-6 Months Old ====================== 2015-04-04 15:27:53 -------- d-----w- C:\PROGRA~2\Microsoft OneDrive 2015-04-15 13:18:55 -------- d-----w- C:\PROGRA~2\Unchecky 2015-05-29 14:58:00 -------- d-----w- C:\PROGRA~2\Raxco 2015-06-08 12:59:01 -------- d-----w- C:\PROGRA~2\Oracle 2015-06-08 13:04:04 -------- d-----w- C:\PROGRA~2\Sun 2015-06-08 13:07:53 -------- d-----w- C:\PROGRA~2\RogueKiller 2015-07-10 16:12:41 -------- d-----w- C:\PROGRA~2\XDMessagingv4 2015-07-20 07:07:54 -------- d-----w- C:\PROGRA~2\cmcm 2015-07-20 07:07:54 -------- d-----w- C:\PROGRA~2\Kingsoft 2015-09-01 12:01:41 -------- d-----w- C:\PROGRA~2\Western Digital 2015-09-18 17:03:52 -------- d-----w- C:\PROGRA~2\boost_interprocess 2015-09-27 12:57:21 -------- d-----w- C:\PROGRA~2\SUPERAntiSpyware.com ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\xdvuz5jl.default-1442758643488 user_pref("browser.startup.homepage", "about:home"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [02/02/2015 18:09] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\xdvuz5jl.default-1442758643488 - Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com - Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com - Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com - Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com - Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Profiles\xdvuz5jl.default-1442758643488 52CE0DBFD9738AE528CF525A0367EBEB - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 7D127425BBE91DF37448A7F44C1DDA52 - C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll - Google Update AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 0A7CFC4EE9CC3206B1DC522FCB8C3DB1 - c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll - Silverlight Plug-In E2B92179DA6F4CF6EC3778D2802C960F - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll - Plugins PDK 57686DF728BE5FE43A05B265051D1935 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com\nponlinebanking.dll - Plugins PDK 4BA14D74164EC27A9A97663D7D9755A1 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll - Plugins PDK FE5E10A1775D5B0EE862DBF3BC1283D3 - C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U60 41E59AEE190362FD0D6EF71DE5DCE427 - C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.600.27 1A62BB86D17B8DC0D4339BACC8D60635 - C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll - Shockwave Flash 0B8378EA70622A6F3EC50CC4AF62764C - c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== Google Chrome Version: 45.0.2454.101 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dbhjdbfgekjfcfkkfjjmlmojhbllhbho - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho[] Kaspersky Protection - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho Chrome Web Store Payments - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Empty IE Cache ====================== C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Eigenaar\AppData\Local\Mozilla\Firefox\Profiles\xdvuz5jl.default-1442758643488\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=855 folders=85 589697859 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Eigenaar\AppData\Local\Temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Users\UpdatusUser\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Eigenaar\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on ma 28/09/2015 at 15:01:01,79 ======================