
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Jeanny on ma 19-05-2014 at 11:28:28,13.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jeanny\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

19-5-2014 11:30:47 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp. 
# 
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows. 
# 
# This file contains the mappings of IP addresses to host names. Each 
# entry should be kept on an individual line. The IP address should 
# be placed in the first column followed by the corresponding host name. 
# The IP address and the host name should be separated by at least one 
# space. 
# 
# Additionally, comments (such as these) may be inserted on individual 
# lines or following the machine name denoted by a '#' symbol. 
# 
# For example: 
# 
#      102.54.94.97     rhino.acme.com          # source server 
#       38.25.63.10     x.acme.com              # x client host 
 
# localhost name resolution is handle within DNS itself. 
127.0.0.1       localhost 
::1             localhost 

==== Empty Folders Check ======================

C:\PROGRA~2\VS Revo Group deleted successfully
C:\PROGRA~3\PCSettings deleted successfully
C:\Users\Jeanny\AppData\Roaming\TP deleted successfully
C:\Users\Jeanny\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Jeanny\AppData\Local\CrashDumps deleted successfully
C:\Users\Jeanny\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2994291381-1958974310-3033901528-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully
HKEY_USERS\S-1-5-21-2994291381-1958974310-3033901528-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PirritDesktop deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\PirritDesktop deleted successfully

==== Deleting Files \ Folders ======================

C:\Users\Jeanny\AppData\Roaming\systweak deleted
C:\PROGRA~3\UpdaterLog.txt deleted
C:\PROGRA~3\SPL8BC.tmp deleted
C:\PROGRA~3\SPL90AE.tmp deleted
C:\PROGRA~3\SPLE736.tmp deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\end deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\msvcp100.dll" deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\msvcr100.dll" not deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\PirritDesktop.exe" deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\PirritService.exe" deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\QtCore4.dll" deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor\QtNetwork4.dll" deleted
"C:\Users\Jeanny\AppData\Local\PirritSuggestor" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Jeanny\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-05-15 13:10:39	FBCF3F01177953EBF1E735643621CCF5	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-05-15 13:10:39	EB5347F6149D3FF25F4D609A21A3BD67	17382912	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-05-15 13:10:39	10D531ADC7B8FB36C7361D44AF6E8AB6	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 13:08:43	E9D88493FBDB36D4B65C6F2F7F122C95	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-05-15 13:08:40	9DE19EA21DF99AF15BA5A947E5317F9E	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-05-15 13:08:40	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 13:08:40	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 13:08:39	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-05-15 13:08:39	ED195AC76E10F17F6DD60C49666F2A83	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 13:08:39	C94CE65AE7701E9FDBA889045543E27C	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-05-15 13:08:39	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-05-15 13:08:39	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 13:08:39	828185688FDAAE6C7959B884ABED1766	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-05-15 13:08:39	75878492F2B33405EEF900F8C16C6D08	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-05-15 13:08:39	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 13:08:39	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 13:08:39	541BB9B4C899ADCC5D3DB89208C1F409	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 13:08:39	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-05-15 13:08:39	3A1ABE045A3E30799576E83A2D012B43	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-05-15 13:08:39	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 13:08:39	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 13:08:39	2A86C18CE6869C77FCEB62F3B47D4D5B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-05-15 13:10:39	A920E1336F9FEA95477763E2CC15891B	84992	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-05-15 13:10:39	A45BFDCFD5864F658289A165E6E0227F	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-05-15 13:10:39	797E2E5C309AFF76990D5B7AF457EACA	23544320	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-05-15 13:08:44	427015D56DF17241F634611557146C57	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-05-15 13:08:43	4A795989DF0043973711B666D36D2678	477184	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-05-15 13:08:43	485FB1F3792FF7B5D5EBB99AB870E588	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-05-15 13:08:40	B19C8390A1D641B9AC4490D4828A7B5E	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-05-15 13:08:40	9358149234A4F3FE00CF5C2096DC1652	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-05-15 13:08:39	E2A483E796D5FC7E447725FD01D98FA0	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-05-15 13:08:39	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-05-15 13:08:39	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-05-15 13:08:39	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-05-15 13:08:39	B6D8C1202DACA028AD94BDA2795CBBE9	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-05-15 13:08:39	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-05-15 13:08:39	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-05-15 13:08:39	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-05-15 13:08:39	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-05-15 13:08:39	82A72E99AA1CF0B04D3B9843CBA3AEC1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-05-15 13:08:39	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-05-15 13:08:39	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-05-15 13:08:39	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-05-15 13:08:39	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-05-15 13:08:39	481F70241D4EA038BB02590A30F15A23	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-05-15 13:08:39	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2014-05-15 13:08:39	26AF184300C0868D854D5A3092234E24	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-05-15 13:08:39	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
====== C:\Windows\Sysnative\drivers =====
2014-05-15 13:08:39	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2014-05-15 13:08:39	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-05-14 10:31:54	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
====== C:\Windows\Tasks ======
2014-05-15 13:30:58	C5A0C62A759E8CEC107C08E341827ABC	3266	----a-w-	C:\Windows\Sysnative\Tasks\{BD1FE6B2-BD7D-4EC3-B673-4896DB1AB592}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-18 10:42:11	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-05-15 13:10:32	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-04-21 15:52:37	--------	d-----w-	C:\PROGRA~2\WinRST
======= C: =====
====== C:\Users\Jeanny\AppData\Roaming ======
2014-05-16 09:29:22	--------	d-----w-	C:\Users\Jeanny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hema Fotoalbum
2014-05-16 09:29:22	--------	d-----w-	C:\Users\Jeanny\AppData\Local\Hema Fotoalbum
2014-05-15 15:17:48	--------	d-----w-	C:\Users\Jeanny\AppData\Local\Deployment
2014-05-15 15:17:48	--------	d-----w-	C:\Users\Jeanny\AppData\Local\Apps
2014-05-15 13:09:22	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2014-05-15 13:09:22	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2014-04-29 19:25:18	--------	d-sh--w-	C:\Users\Jeanny\AppData\Locallow\EmieUserList
2014-04-29 19:25:13	--------	d-sh--w-	C:\Users\Jeanny\AppData\Local\EmieUserList
2014-04-29 19:25:13	--------	d-sh--w-	C:\Users\Jeanny\AppData\Local\EmieSiteList
2014-04-29 19:25:10	--------	d-sh--w-	C:\Users\Jeanny\AppData\Locallow\EmieSiteList
2014-04-21 15:52:38	--------	d-----w-	C:\Users\Jeanny\AppData\Local\PirritSuggestor
2014-04-21 15:52:37	--------	d-----w-	C:\Users\Jeanny\AppData\Roaming\Mozilla
====== C:\Users\Jeanny ======
2014-05-18 10:40:37	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Jeanny\Downloads\RSITx64.exe
2014-05-18 10:23:19	--------	d-----r-	C:\Windows\SysNative\config\systemprofile\Searches

====== C: exe-files ==
2014-05-19 09:27:12	7DE3BFA5221EB73015D1E86408386404	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2994291381-1958974310-3033901528-1000\$ID8PKCM.exe
2014-05-19 09:26:56	2ED2319F3DE13495AAA49B70A1467055	1285120	----a-w-	C:\$Recycle.Bin\S-1-5-21-2994291381-1958974310-3033901528-1000\$RD8PKCM.exe
2014-05-18 10:42:11	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Jeanny.exe
2014-05-18 10:40:37	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Jeanny\Downloads\RSITx64.exe
2014-05-16 09:29:22	FAB888B9ADEF109CC07AFD6986F7943E	5193768	----a-w-	C:\Users\Jeanny\AppData\Local\Hema Fotoalbum\apc.exe
2014-05-16 09:29:22	30B39F21F1B121DB4B77FC29DA71F661	1184469	----a-w-	C:\Users\Jeanny\AppData\Local\Hema Fotoalbum\unins000.exe
2014-05-15 13:08:43	94566D109585C5867B01B761276C2D1F	155136	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-05-15 13:08:43	6FF6FF2DD6B7CDD07049DCA1F7A18319	31232	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-05-15 13:08:40	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 13:08:40	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 13:08:39	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-05-15 13:08:39	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\System32\lsass.exe
=== C: other files ==
2014-05-16 16:29:59	F718A57D946EAC76EFCB351D74E269F4	875736	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\srtsp64.sys
2014-05-16 16:29:59	B18CE01B9C09C59422BA7C7064248B35	36952	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\srtspx64.sys
2014-05-16 16:29:59	9F31630D7FC2DD9D5DA1CE359AAD1F46	1148120	----a-w-	C:\Windows\System32\drivers\N360x64\1503000.00C\symefa64.sys
2014-05-16 16:29:59	5C9EE2303CA7F267665D75237862B39C	493656	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\symds64.sys
2014-05-16 16:29:59	5570A74FF9B1EFBC5154DD1E2F05C517	593112	----a-w-	C:\Windows\System32\drivers\N360x64\1503000.00C\symnets.sys
2014-05-16 16:29:59	48C2934683CBD06F662B088EEF49EF6A	264280	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\ironx64.sys
2014-05-16 16:29:59	20F758E6339A16F97DD83389D582E09A	23568	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\symelam.sys
2014-05-16 16:29:59	0510396A957E9FD7205BA62D3CAE4528	162392	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\ccsetx64.sys
2014-05-15 13:08:39	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2014-05-15 13:08:39	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2014-05-12 11:28:21	90094DE3B9EAF83CF348AAA3418000A9	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4443101.bat
2014-05-12 11:28:21	812A50E9BDA9BDDDF390297DDDB9B418	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4443201.bat
2014-05-12 11:28:21	624106B3C2498812A82056E2829171B1	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4443301.bat
2014-05-12 11:28:21	5CC70E49AC2F1750178161A97D1E1582	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4444101.bat
2014-05-12 11:28:21	4BE02B4EB5533BAC90A54F97418F073A	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4444301.bat
2014-05-12 11:28:21	4884F40F0A5B1037A817622DA9CF1A44	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4444201.bat
2014-05-12 11:28:21	463253F3A27AB95B51048316FA6C1A06	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw4446W01.bat
2014-05-12 11:28:21	2EE9C6EC7956F302C1F25B3C266F4EAA	66	----a-w-	C:\ProgramData\Lexmark Pro200-S500 Series\Job Status\Scripts\fw44432W2.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"lxebmon.exe"="C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe"
"EzPrint"="C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14-05-2014 16:44]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton 360\Engine\21.2.0.38\WSCStub.exe"]
"C:\Windows\SysNative\tasks\ASUS\ASUS AISuiteIII" [C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe]
"C:\Windows\SysNative\tasks\Norton 360\Norton Error Analyzer" [C:\Program Files (x86)\Norton 360\Engine\21.2.0.38\SymErr.exe]
"C:\Windows\SysNative\tasks\Norton 360\Norton Error Processor" [C:\Program Files (x86)\Norton 360\Engine\21.2.0.38\SymErr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.1.7\coFFPlgn" [19-05-2014 11:14]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton 360\Engine\21.2.0.38\Exts\Chrome.crx[11-03-2014 22:44]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.mogroep.nl"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.mogroep.nl"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jeanny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jeanny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=17 folders=4 14700272 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jeanny\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Jeanny\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Jeanny\AppData\Local\PirritSuggestor\msvcr100.dll"  not found
"C:\Users\Jeanny\AppData\Local\PirritSuggestor"  not found

==== EOF on ma 19-05-2014 at 11:39:13,00 ======================