Zoek.exe v5.0.0.0 Updated 05-July-2014 Tool run by Jef on vr 11/07/2014 at 12:53:21,80. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jef\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean] ==== Older Logs ====================== C:\zoek-results2014-07-11-090134.log 63584 bytes ==== Empty Folders Check ====================== C:\PROGRA~3\Musicnotes deleted successfully C:\PROGRA~3\Oracle deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Jef\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-07-09 10:16:43 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-07-09 10:16:42 492FF9C530EC0352B3C904CE9898269D 509440 ----a-w- C:\Windows\SysWOW64\qedit.dll 2014-07-09 10:16:40 F95E1E9D97D25C11F29CA34C843A6F4D 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-07-09 10:16:40 8BA721F76C97A219599E88722AA48875 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2014-07-09 10:16:40 1A0BE0092646F564FAF204E678AF8E03 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2014-07-09 10:16:39 C71CC796F0E2E9BD542C87532706FCFE 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2014-07-09 10:16:39 C61DDFE40204F3BE3DF111981D91560E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2014-07-09 10:16:39 6CB2616152ADCDF39F05B08E4858F476 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2014-07-09 10:16:38 E3ECF5FFE3DEDF61DC6877B6A99ACBBF 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2014-07-09 10:16:27 E3065F51EE0BB099EAAE48C3FC3A25B6 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-07-09 10:16:27 7C44C697BA6D0B698B91AC6516A731C3 1139200 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-07-09 10:16:27 67EA1BB7F6428A10C64D5A732976F871 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-07-09 10:16:27 448854C4FE94C0FA329CC38FF103DC74 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-07-09 10:16:26 E739AEDCA67F214F96C2520BA293B12B 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-07-09 10:16:26 DFA59840BB1220AFD261FDAE83543959 17276416 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-07-09 10:16:26 BE0EA764820239F7785410CBE3880086 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-07-09 10:16:26 9385D7C5DF2566D01B1FB150F381D50B 367616 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-07-09 10:16:26 91CF46BBB827E461C498A1D7D1A71AD6 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-07-09 10:16:25 CE94480E78CC3A1A17B53F2BB65639BD 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-07-09 10:16:25 42BF66A4DC35DAD3564065173372CCE9 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-07-09 10:16:24 A9F8343A3234FC7A42DDA4569827B411 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-07-09 10:16:24 4B774E842F268D51DB942EF9637828B9 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-07-09 10:16:24 084FB28A790685F32A6D7D003777696D 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-07-09 10:16:23 FC733FD7721200D5136F6F8112E97B00 11742208 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-07-09 10:16:23 F2A99A4293CAF7956FF7801D36D5A3B2 442368 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-07-09 10:16:23 A98E303FCB7058C6E78FD1FBBCBB5EEF 240824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-07-09 10:16:23 573E522A27210701EB8A6C476D36FFF6 239616 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-07-09 10:16:22 FDA05E78813F543A6E9AC6B23EC696F2 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2014-07-09 10:16:22 98C7B1AFA0A99EE3BE99EAABEFB72CA0 4254720 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-07-09 10:16:22 09CBE4B1AEF497FC05493B09EA2C1757 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-07-09 10:16:21 CCC198257901BEEA2FBF8EB1E7678356 1791488 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-07-09 10:16:21 8046CF629D8AE766C22145F4A6AFFBE1 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-07-09 10:16:21 557D60DF85D61C290A1D09E7115B294B 62464 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-07-09 10:16:21 175A663547805367C10746FC416D4605 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-07-09 10:16:21 045A91095A605BB20FF2B37546FE62B0 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-07-09 10:16:12 A0E053D8D97ED0F913D56E6AF21DD26F 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2014-07-09 10:16:11 230AAF45031E87638CA4053C0399C1E6 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2014-07-08 14:08:53 BE1EAFB5EC2AC86065C39372FF1A8F99 5120 ------w- C:\Windows\SysWOW64\BrDctF2L.dll 2014-07-08 14:08:53 90571D0237E3766017712E37DB5243BD 2560 ------w- C:\Windows\SysWOW64\BrDctF2S.dll 2014-07-08 14:08:53 5790DD6C789EFD358CB8E904E22E5105 73728 ------w- C:\Windows\SysWOW64\BrDctF2.dll 2014-07-08 14:08:53 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Windows\SysWOW64\NSSearch.dll 2014-07-08 09:19:45 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2014-07-08 09:19:41 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe 2014-07-08 09:19:41 A7871E39687EC6EE9712209DAE248B3A 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-07-08 09:19:41 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\SysWOW64\java.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-07-09 10:16:56 03282D1ADC4F64D27D697CBB63F972C2 519168 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-07-09 10:16:55 980394E1FF94E460C4D71C1B098A0B4F 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-07-09 10:16:44 F1726E14C8F7B40CD828345890AAF764 3157504 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-07-09 10:16:43 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\Sysnative\osk.exe 2014-07-09 10:16:42 D6AFBAA93169E6772565A1BC896D666B 624128 ----a-w- C:\Windows\Sysnative\qedit.dll 2014-07-09 10:16:40 E8E98B3B7A6E1250F4AA7AF8FA17D5BB 340992 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-07-09 10:16:40 A805B5E68262302D1A60BE3DED5846C9 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2014-07-09 10:16:39 E23BA7A7BD97FC6B8AB5EA32A46D05CD 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2014-07-09 10:16:39 BFC98590EAB40C785D6134B1FA818A62 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2014-07-09 10:16:39 7D1017ED11B7C3B162628069742B5E58 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2014-07-09 10:16:39 79EE13A5A406E4603874686B8005DA72 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2014-07-09 10:16:38 C9DD5C0D5AF2D7A54BA32E8FBD3B67F1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2014-07-09 10:16:27 FC50DF22550C565DD096ACFAF18A37ED 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-07-09 10:16:27 DA5BAC4C5BDB22BBC6771534EA95AD33 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-07-09 10:16:26 C2F62DF01E3552DB0571FEF4D514675B 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-07-09 10:16:26 C0F9F52C36E584C0339406ABF6DA1FBA 266424 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-07-09 10:16:26 5E646AD50848A409291418B5759595B9 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-07-09 10:16:24 73C7D1FCF6F58F3BF077FB42B0214BC0 1393664 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-07-09 10:16:24 391D68668CFC061F26BE593A61F745E0 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-07-09 10:16:23 D8E6706AECD7AA50764E126CE3F36555 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-07-09 10:16:23 CA67F68CEC788C0C69AD47C5125DDD8E 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-07-09 10:16:23 7469D4E046BD7D155CAC2697BD28B58B 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-07-09 10:16:23 7176CB0FFAAC3E54ABB2014E821120F9 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-07-09 10:16:23 2E40D5E11BCC597352EE0314AF629A0F 452608 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-07-09 10:16:22 A21C6231459F4CAC212676A9367A1A68 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-07-09 10:16:22 1685AA234852657C4A6D253CCBBE84E0 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-07-09 10:16:21 8B2ADE09864BF3F7AA6D395DAFEC41B5 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-07-09 10:16:21 415DF2B045167D6D85223CFFF00FCFC7 292864 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-07-09 10:16:20 945FA19B388FCF0FEA6124B5FD71C72F 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2014-07-09 10:16:20 854C5F171F5CEE272232AC0286F3B3B9 598016 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-07-09 10:16:20 366FA6D38406DC8BED62825C196144D1 13527040 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-07-09 10:16:20 1FD6C2F6AC489C271565730F6E9E1A05 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-07-09 10:16:19 CD76B3D60D28634A67B0AD7CB2E45929 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-07-09 10:16:19 BDD4A74421B023C81DA63168BD10C01B 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-07-09 10:16:19 50FF2DD806CC6CF3B3F98F9A1A711603 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-07-09 10:16:19 4EC7738394D2BC7BCB5F7A3657F57252 5721088 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-07-09 10:16:19 2EE102DF0EDD8A1EDD3D1E9B99A91BEC 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-07-09 10:16:19 00401347C3BC466E5F2516387EBBCA7D 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-07-09 10:16:18 F876957CA193B20A21D52F91418657D7 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-07-09 10:16:18 89A53CDE0DA5680AF48A181D82C752CA 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-07-09 10:16:18 52012C83F7E9AF65D13F04415F0508F5 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-07-09 10:16:17 FEC19C351EF1B2C998A85D1BFD765675 23464448 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-07-09 10:16:12 D4CCE15190269486A5E6D4D4E597F798 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll ====== C:\Windows\Sysnative\drivers ===== 2014-07-09 10:16:41 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys ====== C:\Windows\Tasks ====== 2014-07-07 08:08:46 AE6587009F454FC9BBFF73A47D3C4B37 472 ---ha-w- C:\Windows\Tasks\SW-Booster-S-792098896.job 2014-07-07 08:08:46 4C12D8DE3A5914EF517654ABAF6020EF 2718 ----a-w- C:\Windows\Sysnative\Tasks\SW-Booster-S-792098896 ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-07-08 14:09:01 -------- d-----w- C:\PROGRA~2\Browny02 2014-07-08 14:08:53 -------- d-----w- C:\PROGRA~2\Brother ======= C: ===== 2014-06-24 10:32:36 A6799D0F42122C0D1E28655C10DB2707 30 ----a-w- C:\AVScanner.ini ====== C:\Users\Jef\AppData\Roaming ====== 2014-07-11 08:59:21 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-07-11 08:59:21 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-07-11 08:59:21 -------- d-----w- C:\Users\Jef\AppData\Local\Temp 2014-07-11 08:59:21 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-07-11 08:59:21 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-07-07 08:08:15 -------- d-----w- C:\Users\Jef\AppData\Local\Packages 2014-07-07 08:08:08 -------- d-----w- C:\Users\Jef\AppData\Local\Chromatic Browser 2014-07-07 08:08:07 -------- d-----w- C:\Users\Jef\AppData\Local\Torch 2014-07-07 08:08:07 -------- d-----w- C:\Users\Jef\AppData\Local\Comodo 2014-07-07 08:08:07 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Torch 2014-07-07 08:08:07 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Google 2014-07-07 08:08:07 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Comodo 2014-07-07 08:08:07 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser 2014-07-07 08:08:07 -------- d-----w- C:\Users\Gast\AppData\Local\Torch 2014-07-07 08:08:07 -------- d-----w- C:\Users\Gast\AppData\Local\Google 2014-07-07 08:08:07 -------- d-----w- C:\Users\Gast\AppData\Local\Comodo 2014-07-07 08:08:07 -------- d-----w- C:\Users\Gast\AppData\Local\Chromatic Browser 2014-07-07 08:08:07 -------- d-----w- C:\Users\Administrator\AppData\Local\Torch 2014-07-07 08:08:07 -------- d-----w- C:\Users\Administrator\AppData\Local\Google 2014-07-07 08:08:07 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo 2014-07-07 08:08:07 -------- d-----w- C:\Users\Administrator\AppData\Local\Chromatic Browser 2014-06-23 19:21:24 -------- d-sh--w- C:\Users\Jef\AppData\Locallow\EmieUserList 2014-06-23 19:21:24 -------- d-sh--w- C:\Users\Jef\AppData\Locallow\EmieSiteList ====== C:\Users\Jef ====== 2014-07-10 18:29:13 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Jef\Downloads\RSITx64.exe 2014-07-09 10:08:02 -------- d--h--w- C:\ProgramData\CanonBJ 2014-07-08 14:09:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother 2014-07-08 14:03:40 -------- d-----w- C:\ProgramData\Brother 2014-07-07 08:08:45 -------- d-----w- C:\ProgramData\Trusted Publisher 2014-07-07 08:08:08 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\ProgramData\ntuser.pol 2014-07-07 08:08:07 -------- d-----w- C:\Users\HomeGroupUser$\AppData 2014-07-07 08:08:07 -------- d-----w- C:\Users\Gast\AppData 2014-07-07 08:08:07 -------- d-----w- C:\Users\Administrator\AppData 2014-06-28 19:28:19 788C111145DBDAE2498D6D0647DD1A11 339456 ----a-w- C:\Users\Jef\Downloads\FlashPlayer__4369_i965757505_il4.exe ====== C: exe-files == 2014-07-10 18:29:13 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Documents and Settings\Jef\Downloads\RSITx64.exe 2014-07-09 10:16:44 20235ED4653CFDDCDEF721F5126A1C47 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe 2014-07-09 10:16:43 89D2706FCD45E33CECFBD46BCBAD7E16 10240 ----a-w- C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe 2014-07-09 10:16:27 61FF1A9683EDD471797FE0F56057FD09 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-07-09 10:16:27 24868C9D422EDB5B249C0C81B01A0C19 810160 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-07-09 10:16:25 CD900EFB4F8946A2BB1950D9F45915C2 812216 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-07-09 10:16:25 65D0ECD485C8605B07C8338708224818 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-07-09 10:16:25 2168067C03FADB690B77633104A2E64B 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-07-09 10:16:22 8395829B1CE9E11C6441753257DC7591 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-07-08 14:09:03 FCAA8C905236AE15C206121664FA2717 118784 ------w- C:\Brother\DrvLangChg\DrvLangChg.exe 2014-07-08 14:09:03 FB3781454571293308BF4513772EFACB 155648 ------w- C:\Program Files (x86)\Browny02\Brother\BrotherOfflineChk.exe 2014-07-08 14:09:03 AF08D67D635A4B726097147AE3A3ED23 740536 ------w- C:\Program Files (x86)\Browny02\Brother\BrotherNetTool.exe 2014-07-08 14:09:03 7F42FFCD6FF7CA558C2D95DADCD5EFA9 2621440 ------r- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe 2014-07-08 14:09:01 EA7E57F87D6FEE5FD6C5F813C04E8CD2 245760 ------w- C:\Program Files (x86)\Browny02\BrYNSvc.exe 2014-07-08 14:09:01 B2E84C5334E4E9D62DEE535E82117471 433256 ------w- C:\Program Files (x86)\Brother\Brmfl10d\BrRemPnP.exe 2014-07-08 14:09:01 513FBC73A000369009518280BF9C64D8 90112 ------w- C:\Program Files (x86)\Brother\Brmfl10d\BrStDvPt.exe 2014-07-08 14:09:01 27C9A12D64E5E7F6A395A2D0B8610522 45056 ------r- C:\Program Files (x86)\Brother\Brolink\Brolink0.exe 2014-07-08 14:09:01 27C9A12D64E5E7F6A395A2D0B8610522 45056 ------r- C:\Program Files (x86)\Brother\Brmfl10d\Brolink\Brolink0.exe 2014-07-08 14:08:50 FBAB280D0CAC5E21C72F0A1A7B5B9608 455600 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{E2A97415-BD97-4867-B906-05E39E9EE51F}\setup.exe 2014-07-08 09:18:34 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Documents and Settings\Jef\AppData\LocalLow\Sun\Java\jre1.7.0_60\lzma.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe 2014-07-07 08:17:40 9DFBB035592EA044A4B29977A3F272FF 1082880 ----a-w- C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Trusted Publisher\SW-Booster\SW-Booster.exe === C: other files == 2014-07-08 14:09:03 D859150A3280619C1466BA71DEFDA73F 650 ------r- C:\Program Files (x86)\Browny02\Brother\prnptst2k.vbs 2014-07-08 14:09:03 4A802E0C0FFE4AFE9C7F351CBBEDFDE9 29488 ------r- C:\Program Files (x86)\Browny02\Brother\prnport.vbs ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3538665699-716225954-3718293510-1001\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Spotify Web Helper"="C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe /background" "feedreader.exe"="C:\Program Files\FeedReader30\feedreader.exe" "SecurePCCleaner"="C:\Program Files\SecurePCCleaner\GDC.exe" "Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe" "PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe" "TelevisionFanatic Search Scope Monitor"="C:\PROGRA~2\TELEVI~2\bar\1.bin\64srchmn.exe /m=2 /w /h" "IsaKbcCertUpdate"="C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Spotify Web Helper"="C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe /background" "feedreader.exe"="C:\Program Files\FeedReader30\feedreader.exe" "SecurePCCleaner"="C:\Program Files\SecurePCCleaner\GDC.exe" "Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~2\\sw-boo~1\\assist~1.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Start Total PC Care"="C:\Program Files\Total PC Care\TPC.exe /autorun" "NapsterShell"="C:\Program Files\Napster\napster.exe /systray" "AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" "Bar"="C:\Documents and Settings\Gebruiker\Local Settings\Temporary Internet Files\Content.IE5\CHE7ODYB\SETUP[1].exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\SW-BOO~1\\ASSIST~2.DLL" ==== Startup Folders ====================== 2013-10-06 11:10:14 1106 ----a-w- C:\Users\Jef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AX.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08/07/2014 22:06] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\HPCeeScheduleForJEF-HP$.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [14/09/2010 07:15] C:\Windows\tasks\HPCeeScheduleForJef.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [14/09/2010 07:15] C:\Windows\tasks\SW-Booster-S-792098896.job --ah----- C:\programdata\trusted publisher\sw-booster\SW-Booster.exe [07/07/2014 10:17] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForJef" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForJEF-HP$" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"] "C:\Windows\SysNative\tasks\SW-Booster-S-792098896" [c:\programdata\trusted publisher\sw-booster\SW-Booster.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{3490FE78-24AF-4068-8AD7-9636467DEAD0}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{3A08F9D0-0CB6-4720-BAF7-023A3504BEE6}" ["C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.3.0.111.396/nl/abandoninstall?page=tsOptions&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled] "C:\Windows\SysNative\tasks\{F875F7A2-2141-4FDF-BCED-E365856FD89A}" ["C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.3.0.111.396/nl/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jpgfhihjicjofdejkbjgnjlaglaciobe - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx[03/06/2011 13:55] Google Docs - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Website Logon - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe Google Wallet - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Website Logon - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe Google Wallet - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=479 folders=182 20106697 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Jef\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Jef\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 11/07/2014 at 13:08:32,52 ======================