
Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by Milan on vr 11/04/2014 at 15:19:46,69.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Milan\Downloads\zoek.exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

11/04/2014 15:27:18 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20141104_1548_.backup

ProfilePath: C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20141104_1548_.backup

==== Deleting Files \ Folders ======================

"C:\Windows\Installer\24ec021.msi" not found
C:\PROGRA~3\nejedocmiecgfbojkapeeiedbfmfiihc deleted
C:\Users\Milan\AppData\LocalLow\{59D4963E-29C9-4124-1D12-BAC2199F2C2F} deleted
C:\Users\Milan\AppData\LocalLow\{DE3130D7-ADFA-526F-78A8-CD6D9CCF0FCD} deleted
C:\Users\Milan\AppData\LocalLow\{E531697A-AF9F-A10C-0A86-59DC44898898} deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{59D4963E-29C9-4124-1D12-BAC2199F2C2F} deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{E531697A-AF9F-A10C-0A86-59DC44898898} deleted
C:\Users\Milan\AppData\Local\Packages\windows_ie_ac_001\AC\{DE3130D7-ADFA-526F-78A8-CD6D9CCF0FCD} deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{59D4963E-29C9-4124-1D12-BAC2199F2C2F} deleted
C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{E531697A-AF9F-A10C-0A86-59DC44898898} deleted
C:\PROGRA~3\39b559e409962429 deleted
C:\PROGRA~3\saavingtoyou deleted
C:\PROGRA~3\HtmlvalidAtOr deleted
C:\PROGRA~3\saverooon deleted
C:\PROGRA~2\FoxTabVideo2Mp3Converter deleted
C:\PROGRA~2\FoxTabVideoConverter deleted
C:\found.000 deleted
C:\found.001 deleted
C:\Users\Milan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Babylon.lnk deleted
C:\Users\Milan\AppData\Roaming\licecap.ini deleted
C:\PROGRA~3\QuickSet deleted
C:\PROGRA~3\OptimizerPro1 deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\Milan\AppData\Local\qs.dll deleted
C:\Users\Milan\AppData\Local\qs64.dll deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd deleted
C:\Users\Milan\AppData\LocalLow\Toolbar4 deleted
C:\Windows\wininit.ini deleted
C:\windows\SysNative\tasks\Desk 365 RunAsStdUser deleted
C:\windows\SysNative\tasks\RunAsStdUser Task deleted
C:\windows\SysNative\tasks\YourFile DownloaderUpdate deleted
C:\user.js deleted
C:\Windows\Syswow64\RegistryHelperLM.ocx deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
"C:\Windows\Installer\d1ad56.msi" deleted
"C:\Windows\Installer\12a33b7.msi" deleted
"C:\ProgramData\84396795821bb56d9012839f4fbf5671_c" deleted
"C:\Users\Milan\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions\toolbar_ZTV-SAT@apn.ask.com.xpi" deleted
"C:\PROGRA~3\mcibmidehmhgnjbfhggfpdianjgfnfhm\mcibmidehmhgnjbfhggfpdianjgfnfhm.crx" deleted
"C:\PROGRA~3\mcibmidehmhgnjbfhggfpdianjgfnfhm\update.xml" deleted
"C:\PROGRA~3\mcibmidehmhgnjbfhggfpdianjgfnfhm" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Milan\AppData\Local\Temp ====
2014-03-31 19:15:14	D43637F8E835DDF2FE95FBE6242494B0	62976	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Ime\SPGRMR.dll
2014-03-31 19:15:14	CF1B1D24F59717EEA6DFBFD5AA6F8E2F	271872	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Ime\SPTIP.dll
2014-03-31 19:15:14	C850CAEE31EBC31F5E12501AD765E1D7	33792	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Ehome\custsat.dll
2014-03-31 19:15:14	C3AD3C26CD922DA24F524C6DD276C57D	130048	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Ime\SOFTKBD.DLL
2014-03-31 19:15:14	63E7DFAAF564034FBB8BC744A7BBFE80	339968	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Interop.WMPLib.dll
2014-03-31 19:15:14	5E1C324FD6904C76D0CA5E2A6C786B30	220160	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\Ime\mscandui.dll
2014-03-31 19:15:14	073BCA3EEA37A97F93B4790EA468565F	1277972	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\D3DDrv.dll
2014-03-31 19:15:14	0632FEA9E9F60148A2002D7C73AB3227	269312	----a-w-	C:\Users\Milan\AppData\Local\temp\Rar$EX00.374\FIFA 14 Origin Key Generator\FIFA 14 Origin Key Generator.exe
====== Java Cache =====
2014-04-03 16:45:11	0C9BCB83FA6973D4C0B786748C2EF618	279214	----a-w-	C:\Users\Milan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\79acc492-7798d8db
2014-04-03 16:45:08	FF8C324CD3694121B74C343B3CAB5437	79	----a-w-	C:\Users\Milan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\13ed5724-6.0.lap
====== C:\Windows\SysWOW64 =====
2014-04-09 14:57:42	CCF19C82F6145E4A467F7CB9AF82026C	17073152	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-04-09 14:57:41	A45A13AAC7777C096A073FF1F4F5A0D5	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-04-09 14:57:30	A30AB03E7C837A17AC70E67E63B8E2F6	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2014-04-09 14:57:30	9F3D88540DB73F5213D5044CB50006DF	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2014-04-09 14:57:30	76161B9D78A275F8F28DD67436013110	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2014-04-09 14:57:30	2E1D6624EE2C3F454CADF09DC59E78B0	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2014-04-09 14:57:30	1F76F7CB3C690ACB985C2FD419383B49	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 14:57:30	1E886E327F37F34CC7465F1605D1F3CD	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-04-09 14:57:43	C3E3EFD320D0000BE6F9CDB00CD6086F	23134208	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-04-09 14:57:41	14257E59C8452DCC38B8D55DEDC6EE0D	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-04-09 14:57:30	D2A513EE880D71BDE7F0257F38B9D019	1163264	----a-w-	C:\Windows\Sysnative\kernel32.dll
2014-04-09 14:57:30	74959C718FF4594369645F35B7DF19C4	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2014-04-09 14:57:30	7434E01FBCA3CB86539C39412A31D5E1	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2014-04-09 14:57:30	2A107B611C91CD256466C58C0D776E9D	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2014-04-09 14:57:30	0F090A77E664CB0F70AB8D3B230B760C	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
====== C:\Windows\Sysnative\drivers =====
2014-04-11 10:50:18	6140163BFE9D8F2DFDBA088ED5521C13	119512	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-04-11 10:50:00	C49915271600CFC2305FAA4271D0002F	63192	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-04-11 10:50:00	4A1356200B82B852E137B687F03E8054	88280	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-04-09 14:57:34	B3222734D80013D2C73841B0C549FA63	27584	----a-w-	C:\Windows\Sysnative\drivers\Diskdump.sys
2014-04-09 14:57:34	A3F0BC5897F9D3786A3CB695B163633A	190912	----a-w-	C:\Windows\Sysnative\drivers\storport.sys
2014-04-09 14:57:34	96BB922A0981BC7432C8CF52B5410FE6	274880	----a-w-	C:\Windows\Sysnative\drivers\msiscsi.sys
2014-04-09 14:57:29	1A29A59A4C5BA6F8C85062A613B7E2B2	1684928	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-04-11 11:03:48	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-04-08 22:34:09	--------	d-----w-	C:\PROGRA~2\COMMON~1\Skype
======= C: =====
====== C:\Users\Milan\AppData\Roaming ======
2014-04-08 22:34:19	--------	d-----w-	C:\Users\Milan\AppData\Local\Skype
2014-03-17 18:16:10	--------	d-----w-	C:\Users\Milan\AppData\Local\SplitMediaLabs
2014-03-17 18:11:39	--------	d-----w-	C:\Users\Milan\AppData\Roaming\SplitMediaLabs
====== C:\Users\Milan ======
2014-04-11 11:00:24	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Milan\Downloads\RSITx64.exe
2014-04-08 22:34:10	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-03 16:46:30	D580B50F01ECFE89DF77B41DCC2A4B25	14	----a-w-	C:\Users\Milan\uid.dat
2014-04-03 16:45:39	--------	d-----w-	C:\Users\Milan\.ultimatescape
2014-03-17 18:15:03	--------	d-----w-	C:\ProgramData\SplitMediaLabs
2014-03-14 17:33:16	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\www.GameModding.net

====== C: exe-files ==
2014-04-11 13:33:10	59388D7245E60ECFE9021CBC084B17C5	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$I9GVHYX.exe
2014-04-11 13:00:02	6F0ECEF679E75A0C10E8FF08EB8FB2BA	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$IXEIOS0.exe
2014-04-11 11:03:53	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Milan.exe
2014-04-11 10:49:27	302103AF95A8F43AD85F80DAE14BDB9C	17305616	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$RXEIOS0.exe
2014-04-11 10:49:23	302103AF95A8F43AD85F80DAE14BDB9C	17305616	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$R9GVHYX.exe
=== C: other files ==
2014-04-11 13:00:05	27B99EFE6C71F52CDA81FD53157F695C	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$IZT71PN.zip
2014-04-11 12:57:00	CAF42F8091300B332B58C047B5D85C6D	4095370	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-371070460-1439409656-1301843634-1005\$RZT71PN.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Samsung.PCSync"="C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe /NoDialog"

[HKEY_USERS\S-1-5-21-371070460-1439409656-1301843634-1005\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Facebook Update"="C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"
"MyTomTomSA.exe"="C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
"Registry Helper"="C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe /boot"
"QuickScanner"="C:\Program Files (x86)\Defender Pro Quick Scanner\quickscan.exe"
"uTorrent"="C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"DriverTurbo"="C:\Program Files (x86)\DriverTurbo\DriverTurbo.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Samsung.PCSync"="C:\Program Files (x86)\Samsung\Samsung PC Studio 7\PcSync2.exe /NoDialog"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"BrMfcWnd"="C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN"
"ControlCenter3"="C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun"
"Norman ZANDA"="C:\Program Files\Norman\Npm\Bin\ZLH.EXE /LOAD /SPLASH"
"Aeria Ignite"="C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe silent"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"SSDMonitor"="C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="C:\Users\Milan\AppData\Local\Akamai\netsession_win.exe"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Facebook Update"="C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"
"MyTomTomSA.exe"="C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
"Registry Helper"="C:\Program Files (x86)\Registry Helper\RegistryHelper.Exe /boot"
"QuickScanner"="C:\Program Files (x86)\Defender Pro Quick Scanner\quickscan.exe"
"uTorrent"="C:\Users\Milan\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"DriverTurbo"="C:\Program Files (x86)\DriverTurbo\DriverTurbo.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"PLFSetI"="C:\Windows\PLFSetI.exe"
"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RegistryBooster]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RegistryBooster"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Uniblue\\RegistryBooster\\launcher.exe\" delay 20000 "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SUPERAntiSpyware"
"hkey"="HKCU"
"command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"


==== Startup Folders ======================

2012-08-05 15:00:39	993	----a-w-	C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
2012-09-12 16:19:09	1935	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10/04/2014 01:23]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001Core.job --a------ C:\Users\Amber\AppData\Local\Facebook\Update\FacebookUpdate.exe []
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001UA.job --a------ C:\Users\Amber\AppData\Local\Facebook\Update\FacebookUpdate.exe []
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005Core.job --a------ C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 16:10]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005UA.job --a------ C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 16:10]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/05/2010 03:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/05/2010 03:24]
C:\Windows\tasks\Norton Security Scan for Amber.job --ah----- C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe [28/06/2010 18:48]
C:\Windows\tasks\Norton Security Scan for Rudi.job --ah----- C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe [28/06/2010 18:48]
C:\Windows\tasks\RegistryBooster.job --a------ C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe []
C:\Windows\tasks\RMSchedule.job --a------ C:\Program Files (x86)\Registry Mechanic\RegMech.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001Core" [C:\Users\Amber\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1001UA" [C:\Users\Amber\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005Core" [C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-371070460-1439409656-1301843634-1005UA" [C:\Users\Milan\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\McDefragTask" [c:\PROGRA~2\mcafee\mqc\QcConsol.exe]
"C:\Windows\SysNative\tasks\McQcTask" [c:\PROGRA~2\mcafee\mqc\QcConsol.exe]
"C:\Windows\SysNative\tasks\Norton Security Scan for Amber" [C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe]
"C:\Windows\SysNative\tasks\Norton Security Scan for Rudi" [C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe]
"C:\Windows\SysNative\tasks\RegistryBooster" [C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe]
"C:\Windows\SysNative\tasks\RMSchedule" [C:\Program Files (x86)\Registry Mechanic\RegMech.exe]
"C:\Windows\SysNative\tasks\RMSmartUpdate" ["C:\Program Files (x86)\Registry Mechanic\update.exe"]
"C:\Windows\SysNative\tasks\{00FDFCDD-BC27-4835-A638-0C32FD29A94F}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{03D06EC4-C292-4C3D-8080-6C5FC0C35837}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{051C80D9-C588-4B27-AF40-81D11978CB4A}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{054C5534-C1B0-4728-8E0E-49A9D1494262}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{07AD45E6-0DCB-452F-B8A1-EEA73A890BA3}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{08817BC4-F603-45AD-ABC6-3C99D2970639}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{0AED6A92-F78A-4C7F-AEB4-DC65327BC165}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{0C6C55B5-F843-4BC0-A328-76E70A72A147}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{0DC95B3A-98E6-4049-AD0F-5B9488E3FAAC}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{10444C1C-3E5B-4FA6-B78C-6D2FAEDFF543}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{10EA906E-739A-4214-936F-310086BEFEBC}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{11EAF0F2-CF15-4E8F-A563-53CEFDBAAE56}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{15296DB2-7226-4D36-A12A-6F606A157CE2}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe]
"C:\Windows\SysNative\tasks\{165D7F8F-7408-4369-AA89-43A52692CB07}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{194A1300-BBAD-44A2-B31A-27709C5CF18F}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{1ED373FF-F6A8-4EE4-8527-7B08497E2B7F}" [C:\Windows\BUVC_AP\Acer Crystal Eye webcam.exe]
"C:\Windows\SysNative\tasks\{2225833D-E161-497D-8132-25B9026D6900}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{282E27FD-A19C-48B9-BF6F-FCC05C81A4AE}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{3148FE06-6820-48B8-97AD-50994A2D7628}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{31FCEB73-29F2-43B8-AE48-F2686315909B}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{3BB03D36-0EDA-40D4-9705-54F0F1490929}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{40B49320-9618-465F-9CAB-D496BCE39184}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{44762351-3C39-48AE-8CD5-3578645DC392}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{46245FD5-ADE4-4282-A1B1-D9DA041B32EE}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{49235DED-B7C3-409A-A188-39B8E0821AE0}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{4EAEE0CC-BE56-4332-98AC-B74FBF362645}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe]
"C:\Windows\SysNative\tasks\{502CE82A-16D3-42FC-AEF5-D4B2DE9D882C}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{54FC95C8-87A9-449B-8940-33065184E0CA}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{59FE4ED4-AB48-48D5-A4D6-4A5FAA07A92D}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe]
"C:\Windows\SysNative\tasks\{5BD8BC24-AAEE-4580-82B2-289792778DFF}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{5F579E17-1C97-48ED-BAF3-0A5F69FE27D7}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{692F26B9-3DAC-41EA-B047-950DE379C036}" [C:\Program Files (x86)\E-Zsoft\YouTubeDownloader\YouTubeDownloader.exe]
"C:\Windows\SysNative\tasks\{694BDFC0-EB9B-4488-96F6-D5DA1F633AA0}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{6A6F7A4E-52B4-45FA-97B0-B6FA80FC5AEF}" [C:\Program Files (x86)\EpicBot\EpicBot.exe]
"C:\Windows\SysNative\tasks\{6CA15627-9F7C-48C7-B0D6-E635BD5E54B0}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{6D64F1DB-04E6-453C-8650-F7EB239C0335}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{7347548A-622B-4683-AC4E-E0C88D4FD7EE}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{73E7AF41-EEBF-4D84-BBB4-42E8938C1210}" [C:\Windows\BUVC_AP\Acer Crystal Eye webcam.exe]
"C:\Windows\SysNative\tasks\{74B766C8-4D12-42F7-8DC4-3A844F799FB2}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{7ADD2226-734D-4D7F-AF6C-BF408FCD17C2}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{7EA53E50-1EE5-40DF-AB46-0971FC02335D}" [C:\Program Files (x86)\Skype\\Phone\Skype.exe]
"C:\Windows\SysNative\tasks\{7FD58842-D0A6-44CB-BCFB-E2160D6D3AC0}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{805A135A-A442-44F7-BCD3-E6B2E5F1B315}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{87111665-6841-43AF-9E15-603A6D0EA5FF}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{8880CBEB-8EFC-4E49-8A62-7CB29D4F76BE}" [C:\Windows\BUVC_AP\Acer Crystal Eye webcam.exe]
"C:\Windows\SysNative\tasks\{8BA1281C-A50F-4FE5-AFFE-B9EDAFDE9E51}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{8BF60446-630E-4C38-9C81-643DAD0C4225}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{8D9A9C76-9CD9-4853-A9BF-F18696F3D3BB}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{90A05A05-E7B2-4BFE-B932-A62C3DD6FC6F}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe]
"C:\Windows\SysNative\tasks\{90C78745-379B-4F23-A13B-C58C444ABDC9}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{977A1A3E-9273-44A1-A77E-BD6FAA74D8EC}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{9E2294F1-0C18-4F10-AABD-C86BBBE24CA6}" [C:\Windows\BUVC_AP\Acer Crystal Eye webcam.exe]
"C:\Windows\SysNative\tasks\{A19427F5-FBA6-4902-9FCF-AC16EB04E932}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{AA7A5D0B-4536-41A0-8176-83378E3E7CB4}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{AC6249F2-80B8-4FDF-A195-B3DFFDAF2500}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{B5360AF0-CD66-4D8B-934D-0C4C490261E4}" [C:\Program Files (x86)\Google\Chrome\Application\chrome.exe]
"C:\Windows\SysNative\tasks\{B8AA0684-67DF-4691-BD06-3D00F9A06B0E}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{B986434A-C924-45F5-B02E-31902DE9FD38}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{BDDB3AE1-B5FC-470A-86E9-05F61BE55990}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C022C3FC-32B1-4167-B1FF-CA8E444B54BB}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C087D3E9-B5BF-49BD-8681-127ECD9722F4}" [C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE]
"C:\Windows\SysNative\tasks\{C11D6247-D914-4C3F-A025-7031D697B11F}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C23F68C6-5404-41F8-9B23-B0F847522642}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C4394A23-2467-4DB8-9567-3E8FFE7A1CBB}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C575A25F-906A-4352-A37E-60FD3AF81711}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{C8D00D5B-9B48-40AD-8344-DFE01B12B25A}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{CA75496C-22F4-493F-A652-2DC6C5228B78}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{D17FE08C-72D3-49E7-AC22-4C2B327D2EFF}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe]
"C:\Windows\SysNative\tasks\{D2D56D3C-39C7-4085-80C2-97677D5C615E}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{D3E3CB8B-7E64-4F15-9D96-4F941681731A}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{D4E964B4-9BDE-4188-93C4-4E08A701B3A6}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{DA3F6ADA-E807-4609-B81D-A665F5CB7940}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{DAB7492B-F9B1-419E-877D-D2EE5C43BA9E}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{E03AC215-14D2-48ED-979B-7FC664669235}" [C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe]
"C:\Windows\SysNative\tasks\{EA084AF3-3C3A-4CCB-BFCE-69A2BD206578}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{F50079E6-39B5-4D3F-B2EC-5E15EDE343D9}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{F8B17CE8-08A6-4598-BCA2-D7936BE990F5}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\{FBF91D20-4419-4DD7-BD25-935032158344}" [C:\Program Files (x86)\Acer\Acer Crystal Eye webcam\CrystalEye.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Recovery Management\Burn Notification" [C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"fiddlerhook@fiddler2.com"="C:\Users\Rudi\Downloads\Fiddler2\FiddlerHook" []
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{380ca318-e91f-415e-a215-cb0d3f954424}"="C:\Program Files (x86)\electroLyrics\131.xpi" []

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Click to call with Skype - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
abddillielonigimbnnhdnfamlhgonkk - C:\Users\Rudi\AppData\Local\Temp\ccex.crx[]
aekjbnlbnhnjhgmpfcdnigifiookfadm - C:\Users\Milan\AppData\Local\CRE\aekjbnlbnhnjhgmpfcdnigifiookfadm.crx[]
ahjpcmknbihpimbhphomijdgjojhnnhc - C:\Users\Milan\AppData\Local\CRE\ahjpcmknbihpimbhphomijdgjojhnnhc.crx[]
bhfamhipccbnledoejgeflahlcamgnam - C:\Program Files (x86)\electroLyrics\131.crx[]
bopakagnckmlgajfccecajhnimjiiedh - No path found[]
fnjbmmemklcjgepojigaapkoodmkgbae - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx[08/02/2011 02:17]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[16/08/2011 07:20]
nbmafkdmkkckhggblphicnnhlgljnoje - C:\Program Files (x86)\TornTV.com\torn2_10.crx[]
nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx[08/02/2011 02:17]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
aekjbnlbnhnjhgmpfcdnigifiookfadm - C:\Users\Milan\AppData\Local\CRE\aekjbnlbnhnjhgmpfcdnigifiookfadm.crx[]
ahjpcmknbihpimbhphomijdgjojhnnhc - C:\Users\Milan\AppData\Local\CRE\ahjpcmknbihpimbhphomijdgjojhnnhc.crx[]

Battlefield Heroes - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh
Last updated at time on date - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Donna Karan - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijgnliiiplghalknhobbcngpcngaoji
Football Logo Quiz - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\geihfokhocgliohaepfljelcnjlcobmp
HtmlvalidAtOr - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcibmidehmhgnjbfhggfpdianjgfnfhm
Google Wallet - Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Web Assistant - Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
saavingtoyou - Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ecankcgdfkihmplbahaakdmlmdpodmnn
DivX Plus Web Player HTML5 \u003Cvideo\u003E - Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nneajnkjbffgblleaoojgaacokifdkhm
Gmail - Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_autotune.nl.softonic.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_autotune.nl.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cok-free-auto-typer.en.softonic.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cok-free-auto-typer.en.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_driver-turbo.nl.softonic.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_driver-turbo.nl.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_consumers-research.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_consumers-research.com_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www2.delta-search.com_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www2.delta-search.com_0.localstorage-journal deleted successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb deleted successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\abddillielonigimbnnhdnfamlhgonkk deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_abddillielonigimbnnhdnfamlhgonkk_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_abddillielonigimbnnhdnfamlhgonkk_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aekjbnlbnhnjhgmpfcdnigifiookfadm deleted successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahjpcmknbihpimbhphomijdgjojhnnhc deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_ahjpcmknbihpimbhphomijdgjojhnnhc_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_ahjpcmknbihpimbhphomijdgjojhnnhc_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcibmidehmhgnjbfhggfpdianjgfnfhm deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mcibmidehmhgnjbfhggfpdianjgfnfhm_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mcibmidehmhgnjbfhggfpdianjgfnfhm_0.localstorage-journal deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ecankcgdfkihmplbahaakdmlmdpodmnn deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage deleted successfully
C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_dlnembnfbcpjnepmfjmngjenhhajpdfd_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Bar"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"CustomizeSearch"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"CustomizeSearch"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{929801A8-4AEF-4D12-BE31-D85BF666452B} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-371070460-1439409656-1301843634-1005\Software\Mozilla\Firefox\Extensions\{380ca318-e91f-415e-a215-cb0d3f954424} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{4bcdbfd0-fa26-11de-8a39-0800200c9a66} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\fiddlerhook@fiddler2.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2B1E51D87B2D71A44BB42DDD5E894160 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\059103D1F2AE2884A90A9464776548A2 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D8637EA-80F4-105A-2D98-AD80F89809A4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{19A56463-AF7F-B7C4-246C-A2D7BD34A12A} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B10A6260-9DE5-9218-9D18-0B96338958B3} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8BEC1352-D898-4504-A7EF-90BA500F31A4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{961164B8-1B36-5823-038D-29B8132E3CD7} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F789A99E-6FDF-36EC-7A36-578FE0D3E1DF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\abddillielonigimbnnhdnfamlhgonkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aekjbnlbnhnjhgmpfcdnigifiookfadm deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ahjpcmknbihpimbhphomijdgjojhnnhc deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bhfamhipccbnledoejgeflahlcamgnam deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nbmafkdmkkckhggblphicnnhlgljnoje deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\aekjbnlbnhnjhgmpfcdnigifiookfadm deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ahjpcmknbihpimbhphomijdgjojhnnhc deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1D301950-EA2F-4882-9AA0-49467756842A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B1E51D87B2D71A44BB42DDD5E894160 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\059103D1F2AE2884A90A9464776548A2 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Amber\Documents\Dhr. Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Milan\AppData\Local\temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Amber\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Milan\Documents\Rudi\Rudi\Desktop\Backup Boonen Rudi 29-04-2010\C\Users\Rudi\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=155 folders=204 43101600 bytes)

==== Empty Temp Folders ======================

C:\Users\AppData\AppData\Local\temp emptied successfully
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Milan\AppData\Local\temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Milan\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\nseswap.def.423c297c5bba25a3.tmp" not found
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\nse_tmp{31D144CE326C2F09}.tmp" deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\nse_tmp{6626CA620E52EB22}.tmp" deleted
"C:\Users\Milan\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4E8PATC7\cdn1a.static.pornhub.phncdn.com"  not found
"C:\Users\Milan\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4E8PATC7\cdn1b.static.pornhub.phncdn.com"  not found
"C:\Users\Milan\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4E8PATC7\static.ifa.camads.net"  not found
"C:\Users\Milan\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4E8PATC7\www.naiadexports.com"  not found
"C:\Users\Milan\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\4E8PATC7\www.springboardplatform.com"  not found

==== EOF on vr 11/04/2014 at 16:10:24,13 ======================