Zoek.exe v5.0.0.0 Updated 07-March-2014 Tool run by dominique on za 12/04/2014 at 19:22:59,02. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\dominique\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 12/04/2014 19:25:00 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\TweakBit deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\dominique\AppData\Roaming\PerformerSoft deleted successfully C:\Users\dominique\AppData\Roaming\QuickScan deleted successfully C:\Users\dominique\AppData\Local\CutePDF Writer deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Internet Explorer\SearchScopes\{BF143694-0552-4E98-8847-559AE31B2414} deleted successfully HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511111108} deleted successfully HKEY_CLASSES_ROOT\CLSID\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} deleted successfully HKEY_CLASSES_ROOT\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{4F524A2D-5637-4300-76A7-7A786E7484D7} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\APNMCP deleted successfully ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511111108}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511111108}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7}] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "ApnTBMon"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] ""=- C:\ProgramData\AskPartnerNetwork C:\ProgramData\APN ==== Deleting Files \ Folders ====================== C:\Users\dominique\AppData\Roaming\PerformerSoft not found C:\Program Files (x86)\Plus-HD-8.1 deleted C:\Program Files (x86)\Speed Test 127 deleted C:\WINDOWS\SYSWOW64\SearchProtect deleted C:\Program Files (x86)\PDF Converter deleted C:\Users\dominique\AppData\Roaming\systweak deleted C:\PROGRA~3\AskPartnerNetwork deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\SetStretch.VBS deleted C:\PROGRA~3\Package Cache deleted C:\Users\dominique\AppData\Local\cache deleted C:\Users\dominique\AppData\Local\AskPartnerNetwork deleted C:\WINDOWS\SysNative\roboot64.exe deleted C:\WINDOWS\tasks\Plus-HD-8.1-codedownloader.job deleted C:\WINDOWS\tasks\Plus-HD-8.1-enabler.job deleted C:\WINDOWS\tasks\Plus-HD-8.1-firefoxinstaller.job deleted C:\WINDOWS\tasks\Plus-HD-8.1-updater.job deleted C:\WINDOWS\tasks\Plus-HD-8.1-validator.job deleted C:\windows\SysNative\tasks\Plus-HD-8.1-codedownloader deleted C:\windows\SysNative\tasks\Plus-HD-8.1-enabler deleted C:\windows\SysNative\tasks\Plus-HD-8.1-firefoxinstaller deleted C:\windows\SysNative\tasks\Plus-HD-8.1-updater deleted C:\windows\SysNative\tasks\Plus-HD-8.1-validator deleted C:\Users\dominique\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers deleted "C:\WINDOWS\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job" deleted "C:\WINDOWS\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job" deleted "C:\Users\dominique\AppData\Roaming\PDFConverterApp" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\Program Files (x86)\AskPartnerNetwork" deleted "C:\PROGRA~2\AskPartnerNetwork" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\DOMINI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-04-12 10:20:38 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\SysWOW64\javaws.exe 2014-04-12 10:20:37 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\SysWOW64\javaw.exe 2014-04-12 10:20:37 A7871E39687EC6EE9712209DAE248B3A 96168 ----a-w- C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2014-04-12 10:20:37 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\SysWOW64\java.exe 2014-04-09 16:52:07 7F1FC7E98B7DD19BDBB4B2424F93DA8B 1036288 ----a-w- C:\WINDOWS\SysWOW64\kernel32.dll 2014-04-09 16:52:05 AFA852563F2145C26B34F939487A86E9 835584 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2014-04-09 16:52:03 CCF19C82F6145E4A467F7CB9AF82026C 17073152 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-04-09 16:47:21 BF576E866F0C70F0A6C7CA5BF28EC89A 2724864 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2014-04-03 15:35:11 4283AA69CEB51283A3EF3B2C2F1C93B1 140280 ----a-w- C:\WINDOWS\SysWOW64\BgGamingMonitor.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-04-12 05:35:23 66A29723525BDAC4D086E8D61BA3E0EF 608 ----a-w- C:\WINDOWS\Sysnative\F39D4DE6-98B8-4E05-91BD-549E8A8248BD 2014-04-09 16:52:05 AAC770C00645F25A6CE9CCB711F8E7ED 1287576 ----a-w- C:\WINDOWS\Sysnative\kernel32.dll 2014-04-09 16:52:05 82580BA9C29F7553FBB4FF6A80664157 1109424 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2014-04-09 16:52:04 C3E3EFD320D0000BE6F9CDB00CD6086F 23134208 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-04-09 16:47:18 C56EF94A5E1C20BF4B8AA6698642886F 2724864 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2014-04-03 15:35:11 21D823FA9FE356D44BC7A72A5401581E 153712 ----a-w- C:\WINDOWS\Sysnative\BgGamingMonitor.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-04-09 16:52:11 B8B663BE41827211737F627473D6D192 377176 ----a-w- C:\WINDOWS\Sysnative\drivers\clfs.sys 2014-04-09 16:52:11 725EF69B2DBEB7B33280019A556201BC 2008408 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2014-03-21 17:25:28 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-03-17 22:00:09 13B160C1913F012BD1615EB1398D3779 1530712 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2014-03-17 22:00:08 D22EB844EB57D016CC34178AC86456DF 325464 -c--a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2014-03-17 22:00:08 22EDC0DE06A0272DFA4C7B47B5D8E377 382808 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2014-03-17 22:00:07 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2014-03-13 18:05:32 ECC68BD5347BDE9631EE68274858A41F 2543960 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-03-13 18:05:30 C85C075DE5B6D0FE116043054DE8EE02 311640 -c--a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys ====== C:\WINDOWS\Tasks ====== 2014-04-06 11:33:35 974E3B99DA17C848973E62D225E8E7E2 4066 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2014-04-06 11:33:35 8EB046EF742526471FFC4BD0357E3345 3830 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2014-04-06 11:33:35 6B33CAC8200BA064CF9830F1B1A8E800 1094 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-04-06 11:33:35 5BF3C157CAAE29D5C378F1B7C192ECE4 1090 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-04-12 10:21:43 -------- d-----w- C:\Program Files\trend micro 2014-04-09 17:07:17 -------- d-----w- C:\Program Files\Common Files\Atheros ======= C:\PROGRA~2 ===== 2014-04-12 10:20:38 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-04-12 10:20:33 -------- d-----w- C:\PROGRA~2\Java 2014-04-09 18:28:41 -------- d-----w- C:\PROGRA~2\Any PDF to DWG Converter 2014-04-09 18:25:17 -------- d-----w- C:\PROGRA~2\AutoDWG 2014-04-06 11:33:34 -------- d-----w- C:\PROGRA~2\Google ======= C: ===== ====== C:\Users\dominique\AppData\Roaming ====== 2014-04-12 05:34:30 -------- d-----r- C:\Users\dominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2014-04-09 16:46:57 -------- d-s---w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft 2014-04-06 11:33:29 -------- d-----w- C:\Users\dominique\AppData\Local\Google ====== C:\Users\dominique ====== 2014-04-12 10:20:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-04-12 10:19:50 5596EE15F5694BB23A69DBDA96CE2BB6 921512 ----a-w- C:\Users\dominique\Desktop\JavaSetup7u51.com 2014-04-12 10:10:58 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\dominique\Desktop\RSITx64.exe 2014-04-12 05:24:05 5596EE15F5694BB23A69DBDA96CE2BB6 921512 ----a-w- C:\Users\dominique\Downloads\JavaSetup7u51.com 2014-04-09 18:28:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any PDF to DWG Converter 2014-04-09 18:25:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoDWG 2014-04-08 19:57:52 -------- d-----w- C:\ProgramData\ASUS 2014-04-07 16:58:13 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51 (2).exe 2014-04-07 16:58:08 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51 (1).exe 2014-04-07 16:58:07 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51.exe 2014-04-06 11:33:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome ====== C: exe-files == 2014-04-12 10:21:48 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\dominique.exe 2014-04-12 10:20:38 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2014-04-12 10:20:37 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe 2014-04-12 10:20:37 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\SysWOW64\java.exe 2014-04-12 10:20:34 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe 2014-04-12 10:20:34 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe 2014-04-12 10:20:34 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe 2014-04-12 10:20:34 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe 2014-04-12 10:20:34 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe 2014-04-12 10:20:34 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe 2014-04-12 10:20:34 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe 2014-04-12 10:20:34 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe 2014-04-12 10:20:34 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe 2014-04-12 10:20:34 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe 2014-04-12 10:20:34 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe 2014-04-12 10:20:34 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe 2014-04-12 10:20:34 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe 2014-04-12 10:20:34 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe 2014-04-12 10:20:34 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe 2014-04-12 10:20:33 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe 2014-04-12 10:20:33 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe 2014-04-12 10:20:33 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe 2014-04-12 10:20:33 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe 2014-04-12 10:20:33 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe 2014-04-12 10:20:33 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe 2014-04-12 10:20:24 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Users\dominique\AppData\LocalLow\Sun\Java\jre1.7.0_51\lzma.exe 2014-04-12 10:10:58 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\dominique\Desktop\RSITx64.exe 2014-04-10 20:38:11 8FAE9109245E4B4FF42704ECFB86F1B6 8704216 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\34.0.1847.116\34.0.1847.116_33.0.1750.154_chrome_updater.exe 2014-04-10 19:08:45 419DFE8F3BEB92B8EAA9A270B3264990 377176 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\000059eb\updatus.18240085_RUNASUSER.exe 2014-04-09 18:28:41 ADC0D5DB376A3A79EDF7D702C75F1626 674074 ----a-w- C:\Program Files (x86)\Any PDF to DWG Converter\unins000.exe 2014-04-09 18:28:41 7C93A6A63DE06E58145CB4B07E5ED1D2 10686464 ----a-w- C:\Program Files (x86)\Any PDF to DWG Converter\pdf_dwg.exe 2014-04-09 18:25:17 5973ABB15FA4D338DE446012A1A71CCE 1666048 ----a-w- C:\Program Files (x86)\AutoDWG\PDF to DWG Converter 2013\PDFtoDWG.exe 2014-04-09 18:25:16 B5B804244BA4388F854405963E6189CE 93184 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{AAE0665E-71A5-4A72-ACBD-1D871FC732F1}\Setup.exe 2014-04-09 18:25:10 B3FD01873BD5FD163AB465779271C58F 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe 2014-04-09 16:47:50 0482549EEB89348C17D4CD2D61F49C7F 516432 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe 2014-04-07 16:58:13 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51 (2).exe 2014-04-07 16:58:08 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51 (1).exe 2014-04-07 16:58:07 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\dominique\Downloads\chromeinstall-7u51.exe 2014-04-06 11:33:35 E093151047BBFFC0CD78D52F36490206 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateOnDemand.exe 2014-04-06 11:33:35 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 2014-04-06 11:33:35 398F40FAE5ADA9521544393F1F67A17E 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateBroker.exe 2014-04-06 11:33:35 1502D1A076BB8E08178F6CEF578B2136 884720 ----a-w- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateSetup.exe 2014-04-06 11:33:34 7E6B107120108B3A15BFECE0DE3201DB 228744 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe 2014-04-06 11:33:34 6EFC5F64258FE0D9DA3CCFA7FF4D84BD 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateComRegisterShell64.exe 2014-04-06 11:33:34 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdate.exe 2014-04-06 11:33:34 0D5CE0E5AEC3ACC7930AB955334B8533 281480 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe === C: other files == 2014-04-12 10:20:34 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip 2014-04-12 10:19:50 5596EE15F5694BB23A69DBDA96CE2BB6 921512 ----a-w- C:\Users\dominique\Desktop\JavaSetup7u51.com 2014-04-12 05:24:05 5596EE15F5694BB23A69DBDA96CE2BB6 921512 ----a-w- C:\Users\dominique\Downloads\JavaSetup7u51.com 2014-04-09 16:52:11 B8B663BE41827211737F627473D6D192 377176 ----a-w- C:\Windows\System32\drivers\clfs.sys 2014-04-09 16:52:11 725EF69B2DBEB7B33280019A556201BC 2008408 ----a-w- C:\Windows\System32\drivers\ntfs.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\dominique\AppData\Local\Akamai\netsession_win.exe" [HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce] "WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE" "ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun" "BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN" "ADSK DLMSession"="C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\dominique\AppData\Local\Akamai\netsession_win.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\WINDOWS\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe -boot" "BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" "Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\WINDOWS\\system32\\nvinitx.dll" ==== Startup Folders ====================== 2014-01-31 20:26:25 1316 ----a-w- C:\Users\dominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk 2014-02-02 13:00:10 2071 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Polar WebSync.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06/04/2014 13:33] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06/04/2014 13:33] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\ASUS InstantOn Config" [C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe] "C:\WINDOWS\SysNative\tasks\ASUS Live Update1" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS Live Update2" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ColorU" [C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe] "C:\WINDOWS\SysNative\tasks\ASUS Touchpad Launcher (x64)" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe] "C:\WINDOWS\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"] "C:\WINDOWS\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{769D6FEF-41B4-4E9C-A502-F03B37E0D3C1}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard" [31/01/2014 21:52] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "speedtest4354@BestOffers"="C:\Users\dominique\AppData\Roaming\Mozilla\Extensions\speedtest4354@BestOffers" [] ==== Chrome Look ====================== Google Docs - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - dominique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2747534520-1391494373-3568059850-1002\Software\Mozilla\Firefox\Extensions\speedtest4354@BestOffers deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-8.1 deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\dominique\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\dominique\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\dominique\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=725 folders=266 47596690 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\dominique\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\DOMINI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\dominique\AppData\Local\VirtualStore" not found ==== EOF on za 12/04/2014 at 19:43:27,31 ======================