
Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by denise on do 22/05/2014 at 10:18:35,04.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\denise\Downloads\tools\zoek.exe    [Scan all users] [Script inserted] 

==== System Restore Info ======================

22/05/2014 10:25:49 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\Program Files\Google deleted successfully
C:\Program Files\log deleted successfully
C:\PROGRA~3\CanonEPP deleted successfully
C:\PROGRA~3\CanonIJEPPEX2 deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\ProductData deleted successfully
C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully
C:\Users\denise\AppData\Roaming\U3 deleted successfully
C:\Users\denise\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\denise\AppData\Local\Canon Easy-PhotoPrint EX deleted successfully
C:\Users\denise\AppData\Local\photoOptimizeHistoryDataBase deleted successfully
C:\Users\denise\AppData\Local\xe deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E87806B5-E908-45FD-AF5E-957D83E58E68} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E87806B5-E908-45FD-AF5E-957D83E58E68} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DefaultTabUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\DefaultTabUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Web Assistant deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Web Assistant deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95324e44-4b0a-47a9-8f77-9c6415e51c29}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"Slick Savings"=- 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"ApnUpdater"=- 
""=- 
"SearchSettings"=- 

==== Deleting Files \ Folders ======================

C:\Users\denise\AppData\Roaming\DefaultTab not found
C:\Program Files (x86)\IObit Apps Toolbar deleted
C:\Program Files (x86)\IncrediMail_MediaBar_Nederlands_2 deleted
C:\Program Files (x86)\ConduitEngine deleted
C:\Program Files\Web Assistant deleted
C:\Users\denise\AppData\Roaming\Slick Savings deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\ascsurfingprotection@iobit.com deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\ffxtlbra@softonic.com deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\savingsslider@mybrowserbar.com deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\staged deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362} deleted
C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\extensions\{79b8e308-95a2-4044-932d-80e833a863cc} deleted
"C:\Program Files (x86)\MyAshampoo\tbMyAs.dll" deleted
"C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default\searchplugins\yahoo_ff.xml" deleted
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe" deleted
"C:\Program Files (x86)\Ask.com\Updater\Updater.exe" deleted
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" deleted
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe" deleted
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth182.dll" deleted
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\wthx182.dll" deleted
"C:\Program Files (x86)\Application Updater" not deleted
"C:\Program Files (x86)\Ask.com" deleted
"C:\Program Files (x86)\Softonic" deleted
"C:\Program Files (x86)\Common Files\Spigot" not deleted
"C:\Program Files (x86)\Ask.com\Updater" deleted
"C:\Program Files (x86)\Common Files\Spigot\Search Settings" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\denise\AppData\Local\Temp ====
====== Java Cache =====
2014-05-19 09:05:03	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-7dc61c8e
2014-05-19 09:04:58	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-414d53d9
2014-05-19 09:04:58	E59B40BDEE7399075AB6A4B826E790EF	425	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2014-05-19 09:04:58	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-17f03074
2014-05-19 09:04:59	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-479c99fd
2014-05-21 08:28:51	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-45aa16ce
2014-05-21 08:28:33	86C47CA21A599230CA54E8F5EBDB6A07	124	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\7\6619ee07-60546948
====== C:\Windows\SysWOW64 =====
2014-05-19 09:03:54	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-05-19 09:03:48	9533FE0A942E00114047140B42DF8E3D	175016	----a-w-	C:\Windows\SysWOW64\java.exe
2014-05-19 09:03:48	3B10B54F50CD362537B9F2186267EDF8	96168	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-19 09:03:48	37C15684482B4D596316735DCEEE939A	175528	----a-w-	C:\Windows\SysWOW64\javaw.exe
2014-05-17 12:34:44	FBCF3F01177953EBF1E735643621CCF5	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-05-17 12:34:43	EB5347F6149D3FF25F4D609A21A3BD67	17382912	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-05-17 12:34:43	10D531ADC7B8FB36C7361D44AF6E8AB6	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-05-17 08:17:40	E9D88493FBDB36D4B65C6F2F7F122C95	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-05-17 08:15:53	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-17 08:15:52	9DE19EA21DF99AF15BA5A947E5317F9E	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-05-17 08:15:51	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-17 08:15:50	ED195AC76E10F17F6DD60C49666F2A83	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-05-17 08:15:46	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-05-17 08:15:45	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-05-17 08:15:44	541BB9B4C899ADCC5D3DB89208C1F409	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-05-17 08:15:44	3A1ABE045A3E30799576E83A2D012B43	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-05-17 08:15:42	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-05-17 08:15:42	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-17 08:15:42	828185688FDAAE6C7959B884ABED1766	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-05-17 08:15:42	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-05-17 08:15:42	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-05-17 08:15:42	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-05-17 08:15:40	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-05-17 08:15:39	C94CE65AE7701E9FDBA889045543E27C	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-05-17 08:15:39	2A86C18CE6869C77FCEB62F3B47D4D5B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2014-05-17 08:15:38	75878492F2B33405EEF900F8C16C6D08	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-05-17 12:34:44	A920E1336F9FEA95477763E2CC15891B	84992	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-05-17 12:34:44	797E2E5C309AFF76990D5B7AF457EACA	23544320	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-05-17 12:34:43	A45BFDCFD5864F658289A165E6E0227F	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-05-17 08:17:48	427015D56DF17241F634611557146C57	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-05-17 08:17:37	4A795989DF0043973711B666D36D2678	477184	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-05-17 08:17:35	485FB1F3792FF7B5D5EBB99AB870E588	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-05-17 08:15:59	9358149234A4F3FE00CF5C2096DC1652	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-05-17 08:15:54	B19C8390A1D641B9AC4490D4828A7B5E	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-05-17 08:15:50	E2A483E796D5FC7E447725FD01D98FA0	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-05-17 08:15:50	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-05-17 08:15:47	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-05-17 08:15:45	B6D8C1202DACA028AD94BDA2795CBBE9	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-05-17 08:15:45	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-05-17 08:15:45	26AF184300C0868D854D5A3092234E24	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-05-17 08:15:43	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-05-17 08:15:43	481F70241D4EA038BB02590A30F15A23	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-05-17 08:15:42	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-05-17 08:15:42	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-05-17 08:15:42	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-05-17 08:15:42	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-05-17 08:15:41	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-05-17 08:15:41	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-05-17 08:15:41	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2014-05-17 08:15:39	82A72E99AA1CF0B04D3B9843CBA3AEC1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-05-17 08:15:39	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-05-17 08:15:39	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
====== C:\Windows\Sysnative\drivers =====
2014-05-17 08:15:44	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-05-17 08:15:41	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-18 09:26:14	--------	d-----w-	C:\Program Files\trend micro
2014-04-30 08:44:43	--------	d-----w-	C:\Program Files\Adblock Plus for IE
======= C:\PROGRA~2 =====
2014-05-19 09:04:33	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2014-05-17 12:33:54	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-05-16 06:56:21	--------	d-----w-	C:\PROGRA~2\Application Updater
======= C: =====
2014-05-21 12:28:05	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\asc_rdflag
====== C:\Users\denise\AppData\Roaming ======
2014-05-21 08:32:32	--------	d-----w-	C:\Users\denise\AppData\Roaming\ProductData
2014-05-19 09:23:48	--------	d-----w-	C:\Users\denise\AppData\Local\F-Secure
2014-05-16 06:56:24	--------	d-----w-	C:\Users\denise\AppData\Locallow\Search Settings
2014-04-30 08:44:45	--------	d-----w-	C:\Users\denise\AppData\Locallow\Adblock Plus for IE
2014-04-30 08:38:14	--------	d-sh--w-	C:\Users\denise\AppData\Locallow\EmieUserList
2014-04-30 08:38:06	--------	d-sh--w-	C:\Users\denise\AppData\Local\EmieUserList
2014-04-30 08:38:06	--------	d-sh--w-	C:\Users\denise\AppData\Local\EmieSiteList
2014-04-30 08:38:04	--------	d-sh--w-	C:\Users\denise\AppData\Locallow\EmieSiteList
====== C:\Users\denise ======
2014-05-21 08:31:16	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2014-05-19 09:03:48	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-18 09:19:20	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\denise\Downloads\RSITx64.exe
2014-05-17 19:13:14	--------	d-----r-	C:\Users\denise\Saved Games
2014-05-02 07:37:59	--------	d-----r-	C:\Windows\SysNative\config\systemprofile\Searches
2014-04-30 08:44:29	--------	d-----w-	C:\ProgramData\Package Cache

====== C: exe-files ==
2014-05-22 08:10:17	70F851F7A524071E13F17DC401A21906	1326389	----a-w-	C:\Users\denise\Downloads\tools\adwcleaner_3.210.exe
2014-05-22 08:10:12	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\denise\Downloads\tools\RSITx64.exe
2014-05-21 08:31:12	F1A522373D76B164ED357FD60314854D	1195808	----a-w-	C:\Program Files (x86)\IObit\Surfing Protection\unins000.exe
2014-05-21 08:30:17	9EFC08CE346349C6BFA3B25A63FF286A	838432	----a-w-	C:\Program Files (x86)\IObit\Advanced SystemCare 7\Reinforce.exe
2014-05-21 08:30:08	37E24A946C409B7A0F7BE1FBC02218ED	1198368	----a-w-	C:\Program Files (x86)\IObit\Advanced SystemCare 7\unins000.exe
2014-05-21 08:29:45	85719979DC3CFE146E12E85378B70C78	38270744	----a-w-	C:\ProgramData\IObit\ASCDownloader\ASCSetup.exe
2014-05-21 08:29:37	57E00B034C2E092E45A14B617F16AFA7	1055040	----a-w-	C:\Users\denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OYBNERLI\advanced-systemcare-installer.exe
2014-05-19 09:03:54	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-05-19 09:03:48	9533FE0A942E00114047140B42DF8E3D	175016	----a-w-	C:\Windows\SysWOW64\java.exe
2014-05-19 09:03:48	37C15684482B4D596316735DCEEE939A	175528	----a-w-	C:\Windows\SysWOW64\javaw.exe
2014-05-19 09:03:32	FB67D8F555AA8E847DC6D7BFFF69C1C1	145832	----a-w-	C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2014-05-19 09:03:31	B1CE4931FCA0E9D6493F18440A492472	49576	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2014-05-19 09:03:31	829199AE07062FE066CCD037190B4D04	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2014-05-19 09:03:31	7151FDB921CC188833E69690E969616A	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2014-05-19 09:03:31	67E721D8CA3F26695C2836870FF395E0	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2014-05-19 09:03:31	3B8C2991462B84868BB04C67E197CFC1	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2014-05-19 09:03:31	21190A2C683911E97E6484632F0A11AF	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2014-05-19 09:03:30	5F32AD07982BE93452A755CE94F130BA	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2014-05-19 09:03:30	3DAA029309C13F0A8DFB839372A3E8D3	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2014-05-19 09:03:29	E788AC8198E99F9DA268A35719462DEF	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2014-05-19 09:03:29	CA8C3C3510377A38A0FD0386B1C8700D	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2014-05-19 09:03:29	B863FBED45DA51498B42DEAE76006D94	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2014-05-19 09:03:29	0F298580559EE0929C572CFEB99B5AAA	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\klist.exe
2014-05-19 09:03:28	C38B939945B2357D56B105C8F8FE7C45	52648	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2014-05-19 09:03:28	77430E8234A0050ECCC5E2F5B30A7BEF	182696	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2014-05-19 09:03:26	FBC892A1196A03F695F112A5EDE032DC	48040	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2014-05-19 09:03:26	9533FE0A942E00114047140B42DF8E3D	175016	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java.exe
2014-05-19 09:03:26	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2014-05-19 09:03:26	58B60ED489B1EDFA2BCDCAAF90B5EDD8	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2014-05-19 09:03:26	37C15684482B4D596316735DCEEE939A	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2014-05-19 09:03:26	00F5108D91D768CA9D4ABC5E5053F50F	68008	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2014-05-19 09:02:43	3842C46F2FBC7522EF625F1833530804	145408	----a-w-	C:\Users\denise\AppData\LocalLow\Sun\Java\jre1.7.0_55\lzma.exe
2014-05-18 09:26:15	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\denise.exe
2014-05-18 09:19:20	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\denise\Downloads\RSITx64.exe
2014-05-17 08:17:37	94566D109585C5867B01B761276C2D1F	155136	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-05-17 08:17:36	6FF6FF2DD6B7CDD07049DCA1F7A18319	31232	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-05-17 08:15:53	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-17 08:15:51	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-17 08:15:47	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-05-17 08:15:41	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\System32\lsass.exe
2014-05-16 06:55:34	4B9ACEFE59EA527DA8B7A8F0C5DBB504	5279408	----a-w-	C:\Windows\Temp\IObitAppsToolbar.exe
=== C: other files ==
2014-05-19 09:03:32	D95F1D4129F0CB2F7626CDCBAC2F512B	18636	----a-w-	C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip
2014-05-17 08:15:44	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2014-05-17 08:15:41	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3902010895-3865875327-1742431247-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"IncrediMail"="C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c"
"Advanced SystemCare 7"="C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"CanonSolutionMenuEx"="C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"F-Secure Manager"="C:\Program Files (x86)\Telenet Security Pack\apps\ComputerSecurity\Common\FSM32.EXE /splash"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"F-Secure Hoster (44163)"="C:\Program Files (x86)\Telenet Security Pack\fshoster32.exe -app -hosterid:1"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"IncrediMail"="C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c"
"Advanced SystemCare 7"="C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"MedionReminder"="C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe"
"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"MedionReminder"="C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe /DeleteRunKey"

==== Startup Folders ======================

2012-09-15 11:21:47	1318	----a-w-	C:\Users\denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk
2013-04-20 08:01:57	1009	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Printkey2000.lnk
2011-07-27 08:54:51	1115	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickScan (OpticFilm 7200i).lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2014 18:57]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASC7_PerformanceMonitor" [C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe]
"C:\Windows\SysNative\tasks\ASC7_SkipUac_denise" ["C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe" /SkipUac]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\Scheduled Update for Ask Toolbar" [C:\Program Files (x86)\Ask.com\UpdateTask.exe]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Administrator" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{2A1E07D0-87E2-4E95-990E-DC94D47860F7}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{8E9E3331-D360-4f87-8803-52DE43566502}"="C:\Program Files\Web Assistant\Firefox" []
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{198b56fc-f191-4e99-998d-4e9dd3a8d1a8}"="C:\Program Files (x86)\Telenet Security Pack\apps\OnlineSafety\browser\deploy\fs_firefox_https" [12/05/2014 10:29]

==== Firefox Extensions ======================

ProfilePath: C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default
- Undetermined - C:\Program Files\Web Assistant\Firefox
- Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF
- Undetermined - %ProfilePath%\extensions\iobitapps@mybrowserbar.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\denise\AppData\Roaming\Mozilla\Firefox\Profiles\mnpcb8lh.default
855B79451ECF62602F20EB4D5C71F99B	- C:\Windows\SysWoW64\Adobe\Director\np32dsw.dll -	Shockwave for Director / Shockwave for Director


==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{8E9E3331-D360-4f87-8803-52DE43566502} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{8E9E3331-D360-4f87-8803-52DE43566502} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\virtualKeyboard@kaspersky.ru deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\KavAntiBanner@Kaspersky.ru deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\linkfilter@kaspersky.ru deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\support@predictad.com deleted successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=593 folders=161 37327280 bytes)

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\Application Updater"  not found
"C:\Program Files (x86)\Common Files\Spigot"  not found

==== EOF on do 22/05/2014 at 10:39:06,29 ======================