Zoek.exe v5.0.0.0 Updated 02-November-2014 Tool run by Maxim on ma 03-11-2014 at 9:21:14,25. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Maxim\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 3-11-2014 9:25:06 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully C:\PROGRA~2\TornTV.com deleted successfully C:\Program Files\mab mods deleted successfully C:\PROGRA~3\Babylon deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\Maxim\AppData\Roaming\DAEMON Tools Lite deleted successfully C:\Users\Maxim\AppData\Roaming\Malwarebytes deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\mozilla\Firefox\Extensions\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{5347542D-5637-006A-76A7-7A786E7484D7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully ==== Installed Programs ====================== "RocketTab" ęTorrent Adobe AIR Adobe Flash Player 15 ActiveX Adobe Flash Player 15 Plugin Adobe Reader XI (11.0.09) - Nederlands Adobe Shockwave Player 12.1 Akamai NetSession Interface Amnesia - The Dark Descent Apple Application Support Apple Mobile Device Support Apple Software Update Ashampoo Burning Studio 2010 Ask Toolbar BitTorrent Bonjour Brother MFL-Pro Suite DCP-J525W BS.Player FREE CodeBlocks DAEMON Tools Lite Delta Chrome Toolbar Delta toolbar Dev-C++ 5 beta 9 release (4.9.9.2) Garry's Mod gedit 2.30.1 Google Chrome Google Update Helper iTunes Java 7 Update 71 Java Auto Updater League of Legends Malwarebytes Anti-Malware versie 2.0.3.1025 McAfee Security Scan Plus Media Go Media Go Network Downloader Media Go Video Playback Engine 2.12.110.06300 Microsoft .NET Framework 4.5.1 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Security Client Microsoft Security Essentials Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft WSE 3.0 Runtime Microsoft Xbox 360 Accessories 1.2 MotioninJoy Gamepad tool 0.7.1001 Mount & Blade Mount & Blade: Warband Mount & Blade: With Fire and Sword NVIDIA-configuratiescherm 311.06 NVIDIA 3D Vision stuurprogramma 311.06 NVIDIA Grafisch stuurprogramma 311.06 NVIDIA Install Application NVIDIA Stereoscopic 3D Driver NVIDIA Update 1.11.3 NVIDIA Update Components osu PPSSPP version 0.9.8 PricePeep Project 64 version 2.1.0.1 Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2883031) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2883032) 32-Bit Edition SkypeT 6.21 Sony Mobile Update Engine Sony PC Companion 2.10.211 SoulseekQt SSH Secure Shell Steam swMSM Total War: ROME II Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2899475) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VLC media player 2.0.8 Volgarr the Viking v2.0.0.1 1.0 Windows Media Player Firefox Plugin WinRAR Xming 6.9.0.31 YTD Video Downloader 4.8.4 ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Search Extensions\Client.exe C:\Program Files (x86)\Tor\tor.exe C:\Users\Maxim\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe C:\Users\Maxim\AppData\Local\VNT\vntldr.exe C:\Program Files (x86)\Browny02\BrYNSvc.exe C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe C:\Users\Maxim\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Users\Maxim\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\APNMCP deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\APNMCP deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "bProtector Start Page"=- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "bProtectorDefaultScope"=- ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5347542D-5637-006A-76A7-7A786E7484D7}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "ApnTBMon"=- "VNT"=- ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\RocketTab not found C:\Program Files (x86)\RocketTab not found C:\Program Files (x86)\Delta deleted C:\Program Files (x86)\VNT deleted C:\PROGRA~2\PricePeep deleted C:\found.000 deleted C:\Users\Maxim\AppData\Roaming\Updater deleted C:\Users\Maxim\AppData\Roaming\BabSolution deleted C:\Users\Maxim\AppData\Roaming\Babylon deleted C:\Users\Maxim\AppData\Roaming\Delta deleted C:\PROGRA~3\AskPartnerNetwork deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\Package Cache deleted C:\Users\Maxim\AppData\Local\onlysearch deleted C:\Users\Maxim\AppData\Local\avgchrome deleted C:\Users\Maxim\AppData\Local\Bundled software uninstaller deleted C:\Users\Maxim\AppData\Local\AskPartnerNetwork deleted C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data deleted C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences deleted C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted C:\Users\Maxim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted C:\Users\Maxim\Downloads\SoftonicDownloader_for_gedit.exe deleted C:\Users\Maxim\Downloads\SoftonicDownloader_voor_windows-media-player-plugin.exe deleted C:\windows\SysNative\Tasks\EPUpdater deleted C:\windows\SysNative\tasks\RocketTab deleted C:\END deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Windows\SysWow64\AI_RecycleBin deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted C:\Users\Maxim\AppData\Roaming\BabMaint.exe deleted "C:\Users\Maxim\AppData\Local\VNT\vntldr.exe" deleted "C:\Users\Maxim\AppData\Local\VNT\vntsrv.dll" deleted "C:\PROGRA~2\Search Extensions\Client.exe" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\Program Files (x86)\AskPartnerNetwork" deleted "C:\Users\Maxim\AppData\Local\VNT" deleted "C:\PROGRA~2\AskPartnerNetwork" deleted "C:\PROGRA~2\Search Extensions" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar" deleted "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar" deleted "C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater" deleted ==== System Specs ====================== Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 3328 MB CPU Info: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz CPU Speed: 2361,3 MHz Sound Card: Luidsprekers (High Definition A | Digitale audio (S/PDIF) (High D | Display Adapters: NVIDIA GeForce 9400 GT | NVIDIA GeForce 9400 GT | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20) CD / DVD Drives: 2x (F: | K: | ) F: ATAPI iHAS120 6 | K: DTSOFT BDROM Ports: COM1 LPT1 Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 148,9GB | D: 270,3GB | E: 195,3GB Hard Disks - Free: C: 30,5GB | D: 73,8GB | E: 55,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 05/19/08 | ACRSYS - 20080519 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK Computer INC. P5KPL-C/1600 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 38.0.2125.111 Internet Explorer Version: 10.0.9200.16736 Google Chrome version: 38.0.2125.111 Adobe Reader version: 11.0.9.29 Sun Java version: 1.7.0_71 (32-bit) Flash Player version: 15.0.0.152 Shockwave Player version: 12.1r150 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Maxim\AppData\Local\Temp ==== 2014-11-03 07:45:22 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite29442.dll 2014-11-02 14:29:40 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite33953.dll 2014-11-02 12:45:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite56921.dll 2014-11-02 12:14:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite21325.dll 2014-11-02 10:41:31 1F3FA9DD3302A9A7D75A6D1258D03A69 826088 ----a-w- C:\Users\Maxim\AppData\Local\Temp\ICReinstall_internet-explorer_setup.exe 2014-11-02 09:33:29 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite88558.dll 2014-11-02 09:24:20 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite28088.dll 2014-11-01 18:45:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite30423.dll 2014-11-01 12:45:37 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite49066.dll 2014-11-01 10:26:36 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite82406.dll 2014-11-01 10:17:20 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite78332.dll 2014-11-01 00:45:34 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite11118.dll 2014-10-31 18:45:30 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite43090.dll 2014-10-31 12:45:32 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite81082.dll 2014-10-31 07:56:52 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite81393.dll 2014-10-31 07:48:42 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite55647.dll 2014-10-30 18:45:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite13356.dll 2014-10-30 15:06:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite29157.dll 2014-10-30 14:59:14 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite51639.dll 2014-10-29 18:45:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite68172.dll 2014-10-29 12:45:32 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite10014.dll 2014-10-29 06:45:27 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite99989.dll 2014-10-29 06:30:19 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite22541.dll 2014-10-29 06:21:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite35858.dll 2014-10-28 18:45:56 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite83695.dll 2014-10-28 15:26:40 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite49012.dll 2014-10-28 15:17:20 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite11799.dll 2014-10-28 00:45:35 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite39560.dll 2014-10-27 18:45:31 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite53965.dll 2014-10-27 12:45:29 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite76088.dll 2014-10-27 07:37:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite62087.dll 2014-10-27 07:28:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite11457.dll 2014-10-26 18:45:27 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite68951.dll 2014-10-26 12:45:37 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite42699.dll 2014-10-26 07:31:10 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite66248.dll 2014-10-26 07:21:54 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite12613.dll 2014-10-25 17:45:35 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite97888.dll 2014-10-25 11:45:37 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite31750.dll 2014-10-25 08:08:48 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite37478.dll 2014-10-25 07:59:45 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite83637.dll 2014-10-24 17:45:30 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite37127.dll 2014-10-24 11:45:28 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite21870.dll 2014-10-24 08:44:30 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite67095.dll 2014-10-24 08:35:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite10532.dll 2014-10-23 23:45:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite71042.dll 2014-10-23 17:45:39 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite36218.dll 2014-10-23 15:11:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite84145.dll 2014-10-23 15:02:24 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite68822.dll 2014-10-22 17:45:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite75169.dll 2014-10-22 11:45:37 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite81927.dll 2014-10-22 07:35:43 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite89494.dll 2014-10-22 07:26:43 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite25710.dll 2014-10-21 17:45:34 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite51451.dll 2014-10-21 11:45:27 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite13367.dll 2014-10-21 06:21:28 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite87161.dll 2014-10-21 06:12:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite95127.dll 2014-10-20 17:45:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite77490.dll 2014-10-20 11:45:30 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Maxim\AppData\Local\Temp\System.Data.SQLite36435.dll ====== Java Cache ===== 2014-10-29 06:43:05 B98BB4688977A4F356DDC2E42654F1A8 736179 ----a-w- C:\Users\Maxim\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\218ee864-469e23e9 2014-10-29 06:43:03 F6248E43F9787F2612B52E7C8029B04D 599 ----a-w- C:\Users\Maxim\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\7542dbc5-48930d4b 2014-10-29 06:43:05 DE9EAE566E61AF89940B5F3C2E535723 37 ----a-w- C:\Users\Maxim\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\7542dbc5-ce43eae738f6039ac33ad8fba0079416c0c33536b884f932a692098c9ef14490-6.0.lap ====== C:\Windows\SysWOW64 ===== 2014-11-03 07:30:48 B4EA5A3FB95F0B2CC59155E5B5624A8A 4432096 ----a-w- C:\Windows\SysWOW64\uninstall.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2014-11-02 13:38:43 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-11-02 13:38:17 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-11-02 13:38:17 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-10-15 11:09:34 946010CDFA91469351B22E2620CEBCD8 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys 2014-10-15 11:09:25 80B9412C4DE09147581FC935FB4C97AB 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2014-10-15 11:08:35 FE571E088C2D83619D2D48D4E961BF41 212480 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys 2014-10-15 11:08:34 E232A3B43A894BB327FC161529BD9ED1 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-11-02 17:50:08 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-10-18 08:30:33 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-10-18 08:30:08 -------- d-----w- C:\PROGRA~2\Java 2014-10-17 08:32:00 -------- d-----w- C:\PROGRA~2\Sony Media Go Install ======= C: ===== ====== C:\Users\Maxim\AppData\Roaming ====== ====== C:\Users\Maxim ====== 2014-11-02 17:48:51 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Maxim\Downloads\RSITx64.exe 2014-11-02 10:42:21 17E23888931AF88CF01F438748A0BDDD 61205128 ----a-w- C:\Users\Maxim\Downloads\EIE11_NL-NL_WOL_WIN764.EXE 2014-11-02 10:40:43 1F3FA9DD3302A9A7D75A6D1258D03A69 826088 ----a-w- C:\Users\Maxim\Downloads\internet-explorer_setup.exe 2014-10-18 08:30:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java ====== C: exe-files == 2014-11-02 17:50:09 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Maxim.exe 2014-11-02 17:48:51 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Maxim\Downloads\RSITx64.exe 2014-11-02 13:47:28 5E551ABA7CFED063B994E8B1ECBF9810 251299 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{C37B6BE0-AB44-A42F-DBA4-CD2DA724286C}-setup_fsu_cid.exe 2014-11-02 10:42:21 17E23888931AF88CF01F438748A0BDDD 61205128 ----a-w- C:\Users\Maxim\Downloads\EIE11_NL-NL_WOL_WIN764.EXE 2014-11-02 10:41:31 1F3FA9DD3302A9A7D75A6D1258D03A69 826088 ----a-w- C:\Users\Maxim\AppData\Local\Temp\ICReinstall_internet-explorer_setup.exe 2014-11-02 10:40:43 1F3FA9DD3302A9A7D75A6D1258D03A69 826088 ----a-w- C:\Users\Maxim\Downloads\internet-explorer_setup.exe 2014-11-02 09:33:46 697D1E5E6452171F0B9FE3849889BC90 1385808 ----a-w- C:\Users\Maxim\AppData\Roaming\uTorrent\updates\3.4.2_34944.exe 2014-10-27 22:53:27 DCC534F22A5A4B43E5123A772D3ECF5A 895568 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\38.0.2125.111\38.0.2125.111_38.0.2125.104_chrome_updater.exe === C: other files == 2014-11-02 13:38:43 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-11-02 13:38:17 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-11-02 13:38:17 95EF63A7827D4E3A229CBBCB42619E93 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1000\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent" "Akamai NetSession Interface"="C:\Users\Maxim\AppData\Local\Akamai\netsession_win.exe" [HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-2836518541-4041144749-2567746432-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun" "BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent" "Akamai NetSession Interface"="C:\Users\Maxim\AppData\Local\Akamai\netsession_win.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [24-09-2014 19:06] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-04-2013 19:49] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{9D5DBDD9-2BF4-4BC9-A81C-EC8BE38499D2}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Maxim\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0 - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\Maxim\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0\extensions\pricepeep@getpricepeep.com.xpi deleted ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions aaaailpifkkekipiachodfkfmgmiapmp - C:\ProgramData\AskPartnerNetwork\Toolbar\SGT-V7\CRX\ToolbarCR.crx[] bopakagnckmlgajfccecajhnimjiiedh - No path found[] eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\Maxim\AppData\Roaming\BabSolution\CR\Delta.crx[] ihenkjeihefokohmemphikjnjbmegdik - \C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx\[] nbmafkdmkkckhggblphicnnhlgljnoje - C:\Program Files (x86)\TornTV.com\torn2_10.crx[] Google Docs - Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Last updated at time on date - Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Delta Toolbar - Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde Google Wallet - Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chromium Fix ====================== C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savegame-download.com_0.localstorage deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savegame-download.com_0.localstorage-journal deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savelocations.wikia.com_0.localstorage deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savelocations.wikia.com_0.localstorage-journal deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.babylon.com_0.localstorage deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.babylon.com_0.localstorage-journal deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage deleted successfully C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://nl.msn.com/?ocid=U218DHP&pc=U218" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://nl.msn.com/?ocid=U218DHP&pc=U218" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyServer"="http=127.0.0.1:49214;https=127.0.0.1:49214" "ProxyOverride"="<-loopback>" "ProxyEnable"=dword:00000001 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaailpifkkekipiachodfkfmgmiapmp deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aaaailpifkkekipiachodfkfmgmiapmp deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ihenkjeihefokohmemphikjnjbmegdik deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Maxim\AppData\Local\Akamai\netsession_win.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2836518541-4041144749-2567746432-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-2836518541-4041144749-2567746432-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maxim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Maxim\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Maxim\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Maxim\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=356 folders=137 83954882 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Maxim\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Maxim\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 03-11-2014 at 9:51:03,21 ======================