malware V9 verwijderen
Geplaatst: 24 sep 2013 16:32
Ik heb V9 op mijn computer en heb nu onderstaand bestand in kladblok. Wat moet ik nu doen?
groeten
Mike
Zoek.exe Version 4.0.0.4 Updated 19-September-2013
Tool run by mike on di 24-09-2013 at 16:15:53,70.
Microsoft Windows 8 Pro 6.2.9200 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\mike\Desktop\zoek.scr [Script inserted]
==== System Restore Info ======================
24-9-2013 16:16:42 Zoek.exe System Restore Point Created Succesfully.
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
====== C:\Users\mike\AppData\Local\Temp ====
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
====== C:\WINDOWS\system32 =====
2013-09-13 10:09:11 D53991FBEBBBEC3F6CEA3BE38BA6285D 316648 ----a-w- C:\WINDOWS\System32\FNTCACHE.DAT
2013-09-11 14:06:50 34E2F63B923188EF08379BA7441BBA56 3831808 ----a-w- C:\WINDOWS\System32\sppsvc.exe
2013-09-11 14:06:48 9E172AED2556DF2048DD9020B302F09C 2156392 ----a-w- C:\WINDOWS\System32\WSService.dll
2013-09-11 14:06:48 7F4A8D54D802A81913BD44BFB1EA728C 199872 ----a-w- C:\WINDOWS\System32\NotificationUI.exe
2013-09-11 14:06:47 7069B004CC64092FC3CA9129C39CDB19 991232 ----a-w- C:\WINDOWS\System32\sppobjs.dll
2013-09-11 14:06:47 0E255B6A65B2CF8315C6DBCE75CBCAB7 2597376 ----a-w- C:\WINDOWS\System32\wuaueng.dll
2013-09-11 14:06:46 DA150FBA450DB268C3DD1D389DF261EB 562688 ----a-w- C:\WINDOWS\System32\WSShared.dll
2013-09-11 14:06:46 3BB3B6ECD7A7244089062FF077E3844A 81920 ----a-w- C:\WINDOWS\System32\WinSetupUI.dll
2013-09-11 14:06:45 D1632DF97A6CD8128817441C887226EF 1556480 ----a-w- C:\WINDOWS\System32\wucltux.dll
2013-09-11 14:06:45 B4C5FC67D38883F84BE232F521D80261 628736 ----a-w- C:\WINDOWS\System32\wuapi.dll
2013-09-11 14:06:45 AFC77B1BD4E14302C93F5E05D5B261DD 330752 ----a-w- C:\WINDOWS\System32\sppwinob.dll
2013-09-11 14:06:45 810B2358688A62CD67F0FBC699628D48 159232 ----a-w- C:\WINDOWS\System32\WSSync.dll
2013-09-11 14:06:45 68309D440373633C54CCD61FFAB4948C 143872 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
2013-09-11 14:06:45 4A4A793059187D8C85797F0FB8D9E48C 91648 ----a-w- C:\WINDOWS\System32\sppc.dll
2013-09-11 14:06:44 EC598115895C5E2BFCC3EC6D1DD5E1E2 167424 ----a-w- C:\WINDOWS\System32\WSClient.dll
2013-09-11 14:06:44 E91631F97EDCAE893F2458D84A521CE3 52656 ----a-w- C:\WINDOWS\System32\wuauclt.exe
2013-09-11 14:06:44 B607284B548E9749B7DFE21F0B0EE376 20992 ----a-w- C:\WINDOWS\System32\wups.dll
2013-09-11 14:06:44 77068C9F061B714E14FC550978F90208 216064 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll
2013-09-11 14:06:44 521C60E6ABE070E0554A5E1589700196 147968 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2013-09-11 14:06:44 44596FBFDD963FA0F7F7F96EFA6E3008 84992 ----a-w- C:\WINDOWS\System32\wudriver.dll
2013-09-11 14:06:43 FAC41DA4259549C5468AFC1FA53CED3A 35328 ----a-w- C:\WINDOWS\System32\wuapp.exe
2013-09-11 14:06:43 C82C2AF93F819EE2A2A9C7AB0A531131 21504 ----a-w- C:\WINDOWS\System32\wups2.dll
2013-09-11 14:06:43 B7267F83DE710AF993A15380C1F33239 83968 ----a-w- C:\WINDOWS\System32\OEMLicense.dll
2013-09-11 14:06:43 77C93B12A1ACB58FD06DFEE17856B65B 126976 ----a-w- C:\WINDOWS\System32\wuwebv.dll
2013-09-11 14:06:43 62FB9CC2F6E0EF8015EA06ECFD746154 76800 ----a-w- C:\WINDOWS\System32\setupcln.dll
2013-09-11 14:05:58 0AC4D04D2D127CAE2BE09FBA48D19639 2273792 ----a-w- C:\WINDOWS\System32\msftedit.dll
2013-09-11 14:05:56 DF790AE26A476DAA05210BA571B45AAC 160256 ----a-w- C:\WINDOWS\System32\winmmbase.dll
2013-09-11 14:05:56 C0A5DB56C4BEE59C1AB5AA7A0F6CFBEF 834048 ----a-w- C:\WINDOWS\System32\localspl.dll
2013-09-11 14:05:56 A198163A111FA37D601DB55B12C5A699 1075200 ----a-w- C:\WINDOWS\System32\gdi32.dll
2013-09-11 14:05:56 4F2214EB1269A6B906E2402883E0A658 551424 ----a-w- C:\WINDOWS\System32\oleaut32.dll
2013-09-11 14:05:56 3631AE3089DE4FAA50D3BD62E370299E 385768 ----a-w- C:\WINDOWS\System32\WerFault.exe
2013-09-11 14:05:56 0E38A984BE8C1F4A095B4A4E8BA1EB23 125440 ----a-w- C:\WINDOWS\System32\winmm.dll
2013-09-11 14:05:55 A8DB6E7307C02DE79867A714C82AB4AE 330240 ----a-w- C:\WINDOWS\System32\wwanconn.dll
2013-09-11 14:05:55 9591603AB1933FABD38CD19A5697A676 226816 ----a-w- C:\WINDOWS\System32\wcmsvc.dll
2013-09-11 14:05:55 9220AC8E81AD444314A2FDD3B4845DCE 679936 ----a-w- C:\WINDOWS\System32\IKEEXT.DLL
2013-09-11 14:05:55 477B2727053EBB09082445AC53E59630 473600 ----a-w- C:\WINDOWS\System32\BFE.DLL
2013-09-11 14:05:55 34076BB22B3975BDA4D98E1A0F03F199 268800 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
2013-09-11 14:05:54 9450B8D5C88ADD67EA982E071C48D681 372736 ----a-w- C:\WINDOWS\System32\wwansvc.dll
2013-09-11 14:05:54 5B95D4645A88B1BD6BF279506B431858 64000 ----a-w- C:\WINDOWS\System32\wcmcsp.dll
2013-09-11 14:05:53 A179B0FB8241BC7FEF62E0AA5F315F9B 702464 ----a-w- C:\WINDOWS\System32\nshwfp.dll
2013-09-11 14:05:53 499403FAB514EF7C468F1E9157F8F7BA 67072 ----a-w- C:\WINDOWS\System32\openfiles.exe
2013-09-11 14:05:53 435FB8E1867E22DE92784AE1D09E046A 317952 ----a-w- C:\WINDOWS\System32\Wwanadvui.dll
2013-09-11 14:05:53 1C51CD68DB8C774E4C69CD628CFC4C80 245248 ----a-w- C:\WINDOWS\System32\FWPUCLNT.DLL
2013-09-11 14:05:52 68451FE440B77BD6447E8AF1D21FD62B 245760 ----a-w- C:\WINDOWS\System32\LocationApi.dll
2013-09-11 14:05:52 2CE63B3A60C54BF7421B090429C286B0 387583 ----a-w- C:\WINDOWS\System32\ApnDatabase.xml
2013-09-11 14:05:52 1342E8DE249F4049536F38F8D473CE26 154112 ----a-w- C:\WINDOWS\System32\WinSCard.dll
2013-09-11 14:05:43 C9E36776EE76485B678B5159F61EB14F 3390464 ----a-w- C:\WINDOWS\System32\win32k.sys
2013-09-11 14:05:34 5FE24CECBD39A12E0BDDE3931FA5478B 14332928 ----a-w- C:\WINDOWS\System32\mshtml.dll
2013-09-11 14:05:32 76A981040FC0C9BA0C6EDC91BE99C3E4 2876928 ----a-w- C:\WINDOWS\System32\jscript9.dll
2013-09-11 14:05:30 B7D15FC840EB5A401A9A2D15A4BA1A94 1141248 ----a-w- C:\WINDOWS\System32\urlmon.dll
2013-09-11 14:05:30 A1BBF4D3F0F8164CF9A8B46B428100C6 13761024 ----a-w- C:\WINDOWS\System32\ieframe.dll
2013-09-11 14:05:29 F73CE26EFC7AE039A8534722395CE9A7 1767936 ----a-w- C:\WINDOWS\System32\wininet.dll
2013-09-11 14:05:29 BBE5889055B9EC1758AFE9728A551CC3 661504 ----a-w- C:\WINDOWS\System32\uxtheme.dll
2013-09-11 14:05:29 7AC3F683EE68A588A26BDBBA1CC296B2 2048000 ----a-w- C:\WINDOWS\System32\iertutil.dll
2013-09-11 14:05:28 F21025151AA06B25DC6FCE169560F4E4 493056 ----a-w- C:\WINDOWS\System32\msfeeds.dll
2013-09-11 14:05:28 B2F431895A7F787466EFEAB87C5F014F 33280 ----a-w- C:\WINDOWS\System32\iernonce.dll
2013-09-11 14:05:28 962556958E265A894BA433D0F722E0C0 42496 ----a-w- C:\WINDOWS\System32\ie4uinit.exe
2013-09-11 14:05:28 907EFFBAD00EF8FAF0347AF63F895FFE 109056 ----a-w- C:\WINDOWS\System32\iesysprep.dll
2013-09-11 14:05:28 210074573A7E60E425A8E4667B55FA7C 44032 ----a-w- C:\WINDOWS\System32\UXInit.dll
2013-09-11 14:05:28 1669544D9288099E7BE0CF73EF8B9F3E 690688 ----a-w- C:\WINDOWS\System32\jscript.dll
2013-09-11 14:05:27 F76B96D80327187F52B01E0082571F20 2706432 ----a-w- C:\WINDOWS\System32\mshtml.tlb
2013-09-11 14:05:27 E6BEEF5265329CBB3DDF95CE89F08580 39936 ----a-w- C:\WINDOWS\System32\jsproxy.dll
2013-09-11 14:05:27 69B892115CD4E738FB0F2834DDB9002A 61440 ----a-w- C:\WINDOWS\System32\iesetup.dll
====== C:\WINDOWS\system32\drivers =====
2013-09-11 14:06:44 EE5C5712BBA245CD0C394EF54410CBEB 51544 ----a-w- C:\WINDOWS\System32\drivers\dam.sys
2013-09-11 14:05:55 E34349E840CCF5D5D6F30B1637A19783 296280 ----a-w- C:\WINDOWS\System32\drivers\Classpnp.sys
2013-09-11 14:05:55 D3F29A0129F212840991516C1D4E93AB 105304 ----a-w- C:\WINDOWS\System32\drivers\dumpsd.sys
2013-09-11 14:05:55 6F685ED83090697ED608372722D32B9E 159576 ----a-w- C:\WINDOWS\System32\drivers\sdbus.sys
2013-09-11 14:05:54 9B276CD3C1D4B5694B5960C4D13CEEAA 38656 ----a-w- C:\WINDOWS\System32\drivers\wfplwfs.sys
2013-09-11 14:05:54 89D57B5741BAB84D7B846FEE23D576BE 277504 ----a-w- C:\WINDOWS\System32\drivers\HdAudio.sys
2013-09-11 14:05:54 6EE1CB13D89DFC95B6D7A90B38113F34 97024 ----a-w- C:\WINDOWS\System32\drivers\USBSTOR.SYS
2013-09-11 14:05:54 1F4CF4223F27C515A9F6F5FE4D268E67 97112 ----a-w- C:\WINDOWS\System32\drivers\msgpioclx.sys
2013-09-11 14:05:52 F7C3F24307957862CA4E0E11DDC88B2F 261120 ----a-w- C:\WINDOWS\System32\drivers\udfs.sys
2013-09-09 14:24:22 99A9F611A3DCC4220D2B922E766CFA16 211288 ----a-w- C:\WINDOWS\System32\drivers\WdFilter.sys
2013-09-09 14:24:22 09E3C1A434E27A55E21CB6F9341B8072 30144 ----a-w- C:\WINDOWS\System32\drivers\WdBoot.sys
2013-09-09 14:22:14 E96EF9696361BEB0687964430870FA29 1800024 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys
====== C:\WINDOWS\Tasks ======
2013-09-21 17:51:10 0B44F03B52893A8A893718176C81F983 3366 ----a-w- C:\WINDOWS\system32\Tasks\{C01C3E3D-F13D-4DCF-8E66-719375FB802B}
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2013-09-24 13:50:38 -------- d-----w- C:\Program Files\BrowseFox
2013-09-09 16:59:48 -------- d-----w- C:\Program Files\Common Files\Skype
2013-09-09 16:59:48 -------- d-----r- C:\Program Files\Skype
2013-09-04 14:34:41 -------- d-----w- C:\Program Files\MyPC Backup
2013-09-04 14:30:40 -------- d-----w- C:\Program Files\Advanced System Protector
2013-09-04 14:28:08 -------- d-----w- C:\Program Files\RegClean Pro
2013-09-04 13:52:31 -------- d-----w- C:\Program Files\DealPlyLive
2013-09-04 13:52:21 -------- d-----w- C:\Program Files\Common Files\337
2013-09-04 13:51:08 -------- d-----w- C:\Program Files\Desk 365
======= C: =====
====== C:\Users\mike\AppData\Roaming ======
2013-09-24 13:51:54 -------- d-----w- C:\Users\mike\AppData\Local\DProtect
2013-09-13 10:15:39 CD37922EA3EE556CCB9DB013AFEA4A30 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\~FontCache-S-1-5-21-839522115-117609710-1801674531-1004.dat
2013-09-13 10:15:39 2BD04F785796224344E336836D3F0BCC 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-Obsolete-749.dat
2013-09-07 14:32:52 50DA3C2D9D69D48E33858ABB0C493A0E 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-839522115-117609710-1801674531-500.dat
2013-09-07 13:51:13 -------- d-----w- C:\Users\mike\AppData\Local\ElevatedDiagnostics
2013-09-04 14:34:42 -------- d-----w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-09-04 14:28:11 -------- d-----w- C:\Users\mike\AppData\Roaming\Systweak
2013-09-04 14:26:00 -------- d-----w- C:\Users\mike\AppData\Roaming\BabSolution
2013-09-04 14:25:33 -------- d-----w- C:\Users\mike\AppData\Roaming\ExpressFiles
2013-09-04 14:08:51 9BFBA2D23E156A9BDA654BFC1E9B6484 3985 ----a-w- C:\Users\mike\AppData\Local\recently-used.xbel
2013-09-04 13:55:26 -------- d-----w- C:\Users\mike\AppData\Locallow\Delta
2013-09-04 13:52:31 -------- d-----w- C:\Users\mike\AppData\Local\DealPlyLive
2013-09-04 13:48:17 -------- d-----w- C:\Users\mike\AppData\Roaming\Babylon
====== C:\Users\mike ======
2013-09-13 13:32:13 09C5EB5C70448333560273DE1F6973DA 233272 ----a-w- C:\Users\mike\Downloads\OptimizePress 1.exe
2013-09-09 16:59:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2013-09-09 16:57:03 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2013-09-07 14:33:11 -------- d-----w- C:\Users\Administrator\.mm
2013-09-05 17:07:55 -------- d-----w- C:\Users\mike\.mm
2013-09-04 16:51:53 -------- d-----w- C:\ProgramData\MoneyMiljonair+
2013-09-04 16:51:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoneyMiljonair+
2013-09-04 15:29:00 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp
2013-09-04 14:30:41 -------- d-----w- C:\ProgramData\Systweak
2013-09-04 13:53:19 -------- d-----w- C:\ProgramData\Registry Helper
2013-09-04 13:52:30 -------- d-----w- C:\ProgramData\DealPlyLive
2013-09-04 13:51:22 -------- d-----w- C:\ProgramData\eSafe
2013-09-04 13:48:18 -------- d-----w- C:\ProgramData\Babylon
====== C: exe-files ==
2013-09-24 13:51:54 E935159697C0D66FAC76CAA4FBF2C9D7 238656 ------w- C:\Users\mike\AppData\Local\DProtect\DPUninstall.exe
2013-09-24 13:50:23 9384347DC845318A73BDC2C1C090418F 779320 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X1339AA\Setup[1].exe
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
2013-09-24 13:49:41 797A5F5290AD34F640A7755CD38965B2 167736 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C8GB0SB6\OptimizePress 1.exe
=== C: other files ==
2013-09-24 13:50:17 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KGXMP3UQ\1.1.5.2[1].crx
2013-09-24 13:50:17 09227EBEBCFDB1876F96D8C74C1CA3CF 371915 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\newtab.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\.data\magicplayer_chrome\download\1.1.29\magicplayer.crx
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-839522115-117609710-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Utility Chest Search Scope Monitor"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h"
"UtilityChest_49 Browser Plugin Loader"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe"
"Nvtmru"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
"VideoDownloadConverter Search Scope Monitor"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe /m=2 /w /h"
"VideoDownloadConverter_4z Browser Plugin Loader"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
==== Startup Folders ======================
2013-04-07 12:32:37 1010 ----a-w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2013-03-29 17:41:25 2056 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
2013-09-04 16:51:53 1737 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MoneyMiljonair+.lnk
==== Task Scheduler Jobs ======================
C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11-09-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004Core.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004UA.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]
==== Firefox Extensions ======================
ProfilePath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
- VideoDownloadConverter - %ProfilePath%\extensions\4zffxtbr@VideoDownloadConverter_4z.com
- Delta Toolbar - %ProfilePath%\extensions\ffxtlbr@delta.com
==== Firefox Plugins ======================
Profilepath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
61FAD252D4EC7190EAE43C9BB7F67610 - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator
989E303DC064847A344BF4E1C9D8E49B - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
406FEA1D002ED8B842E665CBE1314A5F - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
B35F48734264664039DC1A996C2C1C6A - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision
C4204315525052ABF9121CE58E6A88A4 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION
A7CC98A3D79AB00DFF19FE9597D8CAD1 - C:\Users\mike\AppData\Local\Citrix\Plugins\97\npappdetector.dll - Citrix Online Web Deployment Plugin 1.0.0.97
0D80C49D9A4A3E096296C67BD015F614 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Advanced SystemCare Ultimate\BrowerProtect\ASC_GhromePluginFor6.crx[05-09-2012 18:55]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ochbjojkpcmlfeagbaahkofepalngihg - C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx[05-09-2013 17:44]
SEOquake - mike - Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc
Google Docs - mike - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - mike - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - mike - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - mike - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Advanced SystemCare Surfing Protection - mike - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Gmail - mike - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== EOF on di 24-09-2013 at 16:20:03,75 ======================
groeten
Mike
Zoek.exe Version 4.0.0.4 Updated 19-September-2013
Tool run by mike on di 24-09-2013 at 16:15:53,70.
Microsoft Windows 8 Pro 6.2.9200 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\mike\Desktop\zoek.scr [Script inserted]
==== System Restore Info ======================
24-9-2013 16:16:42 Zoek.exe System Restore Point Created Succesfully.
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
====== C:\Users\mike\AppData\Local\Temp ====
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
====== C:\WINDOWS\system32 =====
2013-09-13 10:09:11 D53991FBEBBBEC3F6CEA3BE38BA6285D 316648 ----a-w- C:\WINDOWS\System32\FNTCACHE.DAT
2013-09-11 14:06:50 34E2F63B923188EF08379BA7441BBA56 3831808 ----a-w- C:\WINDOWS\System32\sppsvc.exe
2013-09-11 14:06:48 9E172AED2556DF2048DD9020B302F09C 2156392 ----a-w- C:\WINDOWS\System32\WSService.dll
2013-09-11 14:06:48 7F4A8D54D802A81913BD44BFB1EA728C 199872 ----a-w- C:\WINDOWS\System32\NotificationUI.exe
2013-09-11 14:06:47 7069B004CC64092FC3CA9129C39CDB19 991232 ----a-w- C:\WINDOWS\System32\sppobjs.dll
2013-09-11 14:06:47 0E255B6A65B2CF8315C6DBCE75CBCAB7 2597376 ----a-w- C:\WINDOWS\System32\wuaueng.dll
2013-09-11 14:06:46 DA150FBA450DB268C3DD1D389DF261EB 562688 ----a-w- C:\WINDOWS\System32\WSShared.dll
2013-09-11 14:06:46 3BB3B6ECD7A7244089062FF077E3844A 81920 ----a-w- C:\WINDOWS\System32\WinSetupUI.dll
2013-09-11 14:06:45 D1632DF97A6CD8128817441C887226EF 1556480 ----a-w- C:\WINDOWS\System32\wucltux.dll
2013-09-11 14:06:45 B4C5FC67D38883F84BE232F521D80261 628736 ----a-w- C:\WINDOWS\System32\wuapi.dll
2013-09-11 14:06:45 AFC77B1BD4E14302C93F5E05D5B261DD 330752 ----a-w- C:\WINDOWS\System32\sppwinob.dll
2013-09-11 14:06:45 810B2358688A62CD67F0FBC699628D48 159232 ----a-w- C:\WINDOWS\System32\WSSync.dll
2013-09-11 14:06:45 68309D440373633C54CCD61FFAB4948C 143872 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll
2013-09-11 14:06:45 4A4A793059187D8C85797F0FB8D9E48C 91648 ----a-w- C:\WINDOWS\System32\sppc.dll
2013-09-11 14:06:44 EC598115895C5E2BFCC3EC6D1DD5E1E2 167424 ----a-w- C:\WINDOWS\System32\WSClient.dll
2013-09-11 14:06:44 E91631F97EDCAE893F2458D84A521CE3 52656 ----a-w- C:\WINDOWS\System32\wuauclt.exe
2013-09-11 14:06:44 B607284B548E9749B7DFE21F0B0EE376 20992 ----a-w- C:\WINDOWS\System32\wups.dll
2013-09-11 14:06:44 77068C9F061B714E14FC550978F90208 216064 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll
2013-09-11 14:06:44 521C60E6ABE070E0554A5E1589700196 147968 ----a-w- C:\WINDOWS\System32\storewuauth.dll
2013-09-11 14:06:44 44596FBFDD963FA0F7F7F96EFA6E3008 84992 ----a-w- C:\WINDOWS\System32\wudriver.dll
2013-09-11 14:06:43 FAC41DA4259549C5468AFC1FA53CED3A 35328 ----a-w- C:\WINDOWS\System32\wuapp.exe
2013-09-11 14:06:43 C82C2AF93F819EE2A2A9C7AB0A531131 21504 ----a-w- C:\WINDOWS\System32\wups2.dll
2013-09-11 14:06:43 B7267F83DE710AF993A15380C1F33239 83968 ----a-w- C:\WINDOWS\System32\OEMLicense.dll
2013-09-11 14:06:43 77C93B12A1ACB58FD06DFEE17856B65B 126976 ----a-w- C:\WINDOWS\System32\wuwebv.dll
2013-09-11 14:06:43 62FB9CC2F6E0EF8015EA06ECFD746154 76800 ----a-w- C:\WINDOWS\System32\setupcln.dll
2013-09-11 14:05:58 0AC4D04D2D127CAE2BE09FBA48D19639 2273792 ----a-w- C:\WINDOWS\System32\msftedit.dll
2013-09-11 14:05:56 DF790AE26A476DAA05210BA571B45AAC 160256 ----a-w- C:\WINDOWS\System32\winmmbase.dll
2013-09-11 14:05:56 C0A5DB56C4BEE59C1AB5AA7A0F6CFBEF 834048 ----a-w- C:\WINDOWS\System32\localspl.dll
2013-09-11 14:05:56 A198163A111FA37D601DB55B12C5A699 1075200 ----a-w- C:\WINDOWS\System32\gdi32.dll
2013-09-11 14:05:56 4F2214EB1269A6B906E2402883E0A658 551424 ----a-w- C:\WINDOWS\System32\oleaut32.dll
2013-09-11 14:05:56 3631AE3089DE4FAA50D3BD62E370299E 385768 ----a-w- C:\WINDOWS\System32\WerFault.exe
2013-09-11 14:05:56 0E38A984BE8C1F4A095B4A4E8BA1EB23 125440 ----a-w- C:\WINDOWS\System32\winmm.dll
2013-09-11 14:05:55 A8DB6E7307C02DE79867A714C82AB4AE 330240 ----a-w- C:\WINDOWS\System32\wwanconn.dll
2013-09-11 14:05:55 9591603AB1933FABD38CD19A5697A676 226816 ----a-w- C:\WINDOWS\System32\wcmsvc.dll
2013-09-11 14:05:55 9220AC8E81AD444314A2FDD3B4845DCE 679936 ----a-w- C:\WINDOWS\System32\IKEEXT.DLL
2013-09-11 14:05:55 477B2727053EBB09082445AC53E59630 473600 ----a-w- C:\WINDOWS\System32\BFE.DLL
2013-09-11 14:05:55 34076BB22B3975BDA4D98E1A0F03F199 268800 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll
2013-09-11 14:05:54 9450B8D5C88ADD67EA982E071C48D681 372736 ----a-w- C:\WINDOWS\System32\wwansvc.dll
2013-09-11 14:05:54 5B95D4645A88B1BD6BF279506B431858 64000 ----a-w- C:\WINDOWS\System32\wcmcsp.dll
2013-09-11 14:05:53 A179B0FB8241BC7FEF62E0AA5F315F9B 702464 ----a-w- C:\WINDOWS\System32\nshwfp.dll
2013-09-11 14:05:53 499403FAB514EF7C468F1E9157F8F7BA 67072 ----a-w- C:\WINDOWS\System32\openfiles.exe
2013-09-11 14:05:53 435FB8E1867E22DE92784AE1D09E046A 317952 ----a-w- C:\WINDOWS\System32\Wwanadvui.dll
2013-09-11 14:05:53 1C51CD68DB8C774E4C69CD628CFC4C80 245248 ----a-w- C:\WINDOWS\System32\FWPUCLNT.DLL
2013-09-11 14:05:52 68451FE440B77BD6447E8AF1D21FD62B 245760 ----a-w- C:\WINDOWS\System32\LocationApi.dll
2013-09-11 14:05:52 2CE63B3A60C54BF7421B090429C286B0 387583 ----a-w- C:\WINDOWS\System32\ApnDatabase.xml
2013-09-11 14:05:52 1342E8DE249F4049536F38F8D473CE26 154112 ----a-w- C:\WINDOWS\System32\WinSCard.dll
2013-09-11 14:05:43 C9E36776EE76485B678B5159F61EB14F 3390464 ----a-w- C:\WINDOWS\System32\win32k.sys
2013-09-11 14:05:34 5FE24CECBD39A12E0BDDE3931FA5478B 14332928 ----a-w- C:\WINDOWS\System32\mshtml.dll
2013-09-11 14:05:32 76A981040FC0C9BA0C6EDC91BE99C3E4 2876928 ----a-w- C:\WINDOWS\System32\jscript9.dll
2013-09-11 14:05:30 B7D15FC840EB5A401A9A2D15A4BA1A94 1141248 ----a-w- C:\WINDOWS\System32\urlmon.dll
2013-09-11 14:05:30 A1BBF4D3F0F8164CF9A8B46B428100C6 13761024 ----a-w- C:\WINDOWS\System32\ieframe.dll
2013-09-11 14:05:29 F73CE26EFC7AE039A8534722395CE9A7 1767936 ----a-w- C:\WINDOWS\System32\wininet.dll
2013-09-11 14:05:29 BBE5889055B9EC1758AFE9728A551CC3 661504 ----a-w- C:\WINDOWS\System32\uxtheme.dll
2013-09-11 14:05:29 7AC3F683EE68A588A26BDBBA1CC296B2 2048000 ----a-w- C:\WINDOWS\System32\iertutil.dll
2013-09-11 14:05:28 F21025151AA06B25DC6FCE169560F4E4 493056 ----a-w- C:\WINDOWS\System32\msfeeds.dll
2013-09-11 14:05:28 B2F431895A7F787466EFEAB87C5F014F 33280 ----a-w- C:\WINDOWS\System32\iernonce.dll
2013-09-11 14:05:28 962556958E265A894BA433D0F722E0C0 42496 ----a-w- C:\WINDOWS\System32\ie4uinit.exe
2013-09-11 14:05:28 907EFFBAD00EF8FAF0347AF63F895FFE 109056 ----a-w- C:\WINDOWS\System32\iesysprep.dll
2013-09-11 14:05:28 210074573A7E60E425A8E4667B55FA7C 44032 ----a-w- C:\WINDOWS\System32\UXInit.dll
2013-09-11 14:05:28 1669544D9288099E7BE0CF73EF8B9F3E 690688 ----a-w- C:\WINDOWS\System32\jscript.dll
2013-09-11 14:05:27 F76B96D80327187F52B01E0082571F20 2706432 ----a-w- C:\WINDOWS\System32\mshtml.tlb
2013-09-11 14:05:27 E6BEEF5265329CBB3DDF95CE89F08580 39936 ----a-w- C:\WINDOWS\System32\jsproxy.dll
2013-09-11 14:05:27 69B892115CD4E738FB0F2834DDB9002A 61440 ----a-w- C:\WINDOWS\System32\iesetup.dll
====== C:\WINDOWS\system32\drivers =====
2013-09-11 14:06:44 EE5C5712BBA245CD0C394EF54410CBEB 51544 ----a-w- C:\WINDOWS\System32\drivers\dam.sys
2013-09-11 14:05:55 E34349E840CCF5D5D6F30B1637A19783 296280 ----a-w- C:\WINDOWS\System32\drivers\Classpnp.sys
2013-09-11 14:05:55 D3F29A0129F212840991516C1D4E93AB 105304 ----a-w- C:\WINDOWS\System32\drivers\dumpsd.sys
2013-09-11 14:05:55 6F685ED83090697ED608372722D32B9E 159576 ----a-w- C:\WINDOWS\System32\drivers\sdbus.sys
2013-09-11 14:05:54 9B276CD3C1D4B5694B5960C4D13CEEAA 38656 ----a-w- C:\WINDOWS\System32\drivers\wfplwfs.sys
2013-09-11 14:05:54 89D57B5741BAB84D7B846FEE23D576BE 277504 ----a-w- C:\WINDOWS\System32\drivers\HdAudio.sys
2013-09-11 14:05:54 6EE1CB13D89DFC95B6D7A90B38113F34 97024 ----a-w- C:\WINDOWS\System32\drivers\USBSTOR.SYS
2013-09-11 14:05:54 1F4CF4223F27C515A9F6F5FE4D268E67 97112 ----a-w- C:\WINDOWS\System32\drivers\msgpioclx.sys
2013-09-11 14:05:52 F7C3F24307957862CA4E0E11DDC88B2F 261120 ----a-w- C:\WINDOWS\System32\drivers\udfs.sys
2013-09-09 14:24:22 99A9F611A3DCC4220D2B922E766CFA16 211288 ----a-w- C:\WINDOWS\System32\drivers\WdFilter.sys
2013-09-09 14:24:22 09E3C1A434E27A55E21CB6F9341B8072 30144 ----a-w- C:\WINDOWS\System32\drivers\WdBoot.sys
2013-09-09 14:22:14 E96EF9696361BEB0687964430870FA29 1800024 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys
====== C:\WINDOWS\Tasks ======
2013-09-21 17:51:10 0B44F03B52893A8A893718176C81F983 3366 ----a-w- C:\WINDOWS\system32\Tasks\{C01C3E3D-F13D-4DCF-8E66-719375FB802B}
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2013-09-24 13:50:38 -------- d-----w- C:\Program Files\BrowseFox
2013-09-09 16:59:48 -------- d-----w- C:\Program Files\Common Files\Skype
2013-09-09 16:59:48 -------- d-----r- C:\Program Files\Skype
2013-09-04 14:34:41 -------- d-----w- C:\Program Files\MyPC Backup
2013-09-04 14:30:40 -------- d-----w- C:\Program Files\Advanced System Protector
2013-09-04 14:28:08 -------- d-----w- C:\Program Files\RegClean Pro
2013-09-04 13:52:31 -------- d-----w- C:\Program Files\DealPlyLive
2013-09-04 13:52:21 -------- d-----w- C:\Program Files\Common Files\337
2013-09-04 13:51:08 -------- d-----w- C:\Program Files\Desk 365
======= C: =====
====== C:\Users\mike\AppData\Roaming ======
2013-09-24 13:51:54 -------- d-----w- C:\Users\mike\AppData\Local\DProtect
2013-09-13 10:15:39 CD37922EA3EE556CCB9DB013AFEA4A30 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\~FontCache-S-1-5-21-839522115-117609710-1801674531-1004.dat
2013-09-13 10:15:39 2BD04F785796224344E336836D3F0BCC 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-Obsolete-749.dat
2013-09-07 14:32:52 50DA3C2D9D69D48E33858ABB0C493A0E 8388608 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-839522115-117609710-1801674531-500.dat
2013-09-07 13:51:13 -------- d-----w- C:\Users\mike\AppData\Local\ElevatedDiagnostics
2013-09-04 14:34:42 -------- d-----w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-09-04 14:28:11 -------- d-----w- C:\Users\mike\AppData\Roaming\Systweak
2013-09-04 14:26:00 -------- d-----w- C:\Users\mike\AppData\Roaming\BabSolution
2013-09-04 14:25:33 -------- d-----w- C:\Users\mike\AppData\Roaming\ExpressFiles
2013-09-04 14:08:51 9BFBA2D23E156A9BDA654BFC1E9B6484 3985 ----a-w- C:\Users\mike\AppData\Local\recently-used.xbel
2013-09-04 13:55:26 -------- d-----w- C:\Users\mike\AppData\Locallow\Delta
2013-09-04 13:52:31 -------- d-----w- C:\Users\mike\AppData\Local\DealPlyLive
2013-09-04 13:48:17 -------- d-----w- C:\Users\mike\AppData\Roaming\Babylon
====== C:\Users\mike ======
2013-09-13 13:32:13 09C5EB5C70448333560273DE1F6973DA 233272 ----a-w- C:\Users\mike\Downloads\OptimizePress 1.exe
2013-09-09 16:59:49 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2013-09-09 16:57:03 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2013-09-07 14:33:11 -------- d-----w- C:\Users\Administrator\.mm
2013-09-05 17:07:55 -------- d-----w- C:\Users\mike\.mm
2013-09-04 16:51:53 -------- d-----w- C:\ProgramData\MoneyMiljonair+
2013-09-04 16:51:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoneyMiljonair+
2013-09-04 15:29:00 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp
2013-09-04 14:30:41 -------- d-----w- C:\ProgramData\Systweak
2013-09-04 13:53:19 -------- d-----w- C:\ProgramData\Registry Helper
2013-09-04 13:52:30 -------- d-----w- C:\ProgramData\DealPlyLive
2013-09-04 13:51:22 -------- d-----w- C:\ProgramData\eSafe
2013-09-04 13:48:18 -------- d-----w- C:\ProgramData\Babylon
====== C: exe-files ==
2013-09-24 13:51:54 E935159697C0D66FAC76CAA4FBF2C9D7 238656 ------w- C:\Users\mike\AppData\Local\DProtect\DPUninstall.exe
2013-09-24 13:50:23 9384347DC845318A73BDC2C1C090418F 779320 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X1339AA\Setup[1].exe
2013-09-24 13:50:15 EE52A223CFB7A90C12AA476DB4A4002F 412752 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\dosearches_1709-44c5d488.exe
2013-09-24 13:50:15 D9C6B99907D39662617A56FCC153C6A5 1044088 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\DProtect.exe
2013-09-24 13:50:15 67CD4575597480529776360AC0F41A2A 461880 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\eXQ.exe
2013-09-24 13:50:15 458CCFA013E82CCFA949B882B7986426 175304 ----a-w- C:\Users\mike\AppData\Local\Temp\ins6218\BrowseFox_1208-784bb9a0.exe
2013-09-24 13:49:41 797A5F5290AD34F640A7755CD38965B2 167736 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C8GB0SB6\OptimizePress 1.exe
=== C: other files ==
2013-09-24 13:50:17 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KGXMP3UQ\1.1.5.2[1].crx
2013-09-24 13:50:17 09227EBEBCFDB1876F96D8C74C1CA3CF 371915 ----a-w- C:\Users\mike\AppData\Local\Temp\eIntaller\48540F02929B49f8A4FE2252287912A9\newtab.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx
2013-09-20 13:14:03 541CC43370818A674E4031C0DCD9A7E2 497236 ----a-w- C:\Users\mike\AppData\Roaming\TorrentStream\.data\magicplayer_chrome\download\1.1.29\magicplayer.crx
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-839522115-117609710-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Utility Chest Search Scope Monitor"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h"
"UtilityChest_49 Browser Plugin Loader"="C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe"
"Nvtmru"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
"VideoDownloadConverter Search Scope Monitor"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe /m=2 /w /h"
"VideoDownloadConverter_4z Browser Plugin Loader"="C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbrmon.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\mike\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"Advanced SystemCare Ultimate"="C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe /AutoStart"
"Google Update"="C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"uTorrent"="C:\Users\mike\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
==== Startup Folders ======================
2013-04-07 12:32:37 1010 ----a-w- C:\Users\mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2013-03-29 17:41:25 2056 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
2013-09-04 16:51:53 1737 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MoneyMiljonair+.lnk
==== Task Scheduler Jobs ======================
C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11-09-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [14-06-2013 15:19]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004Core.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-839522115-117609710-1801674531-1004UA.job --a-------- C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe [20-04-2013 09:51]
==== Firefox Extensions ======================
ProfilePath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
- VideoDownloadConverter - %ProfilePath%\extensions\4zffxtbr@VideoDownloadConverter_4z.com
- Delta Toolbar - %ProfilePath%\extensions\ffxtlbr@delta.com
==== Firefox Plugins ======================
Profilepath: C:\Users\mike\AppData\Roaming\Mozilla\Firefox\Profiles\z5s6mhku.default
61FAD252D4EC7190EAE43C9BB7F67610 - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator
989E303DC064847A344BF4E1C9D8E49B - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
406FEA1D002ED8B842E665CBE1314A5F - C:\Users\mike\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
B35F48734264664039DC1A996C2C1C6A - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision
C4204315525052ABF9121CE58E6A88A4 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION
A7CC98A3D79AB00DFF19FE9597D8CAD1 - C:\Users\mike\AppData\Local\Citrix\Plugins\97\npappdetector.dll - Citrix Online Web Deployment Plugin 1.0.0.97
0D80C49D9A4A3E096296C67BD015F614 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Advanced SystemCare Ultimate\BrowerProtect\ASC_GhromePluginFor6.crx[05-09-2012 18:55]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ochbjojkpcmlfeagbaahkofepalngihg - C:\Users\mike\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx[05-09-2013 17:44]
SEOquake - mike - Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc
Google Docs - mike - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - mike - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - mike - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - mike - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Advanced SystemCare Surfing Protection - mike - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Gmail - mike - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== EOF on di 24-09-2013 at 16:20:03,75 ======================