
Zoek.exe v5.0.0.0 Updated 21-05-2014
Tool run by Rutger on zo 22-06-2014 at 12:05:51,39.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Rutger\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

22-6-2014 12:07:33 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\Google deleted successfully
C:\Program Files\trend micro deleted successfully
C:\PROGRA~3\CanonEPP deleted successfully
C:\PROGRA~3\CanonIJEPPEX2 deleted successfully
C:\Users\Rutger\AppData\Roaming\.# deleted successfully
C:\Users\Rutger\AppData\Roaming\Canon deleted successfully
C:\Users\Rutger\AppData\Roaming\GetRightToGo deleted successfully
C:\Users\Rutger\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Rutger\AppData\Local\Research In Motion deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-446588710-4294121067-542329207-1000\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF} deleted successfully
HKEY_USERS\S-1-5-21-446588710-4294121067-542329207-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\COMMON~1\DVDVideoSoft\TB deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\Users\Rutger\AppData\Roaming\DVDVideoSoftIEHelpers deleted
C:\PROGRA~3\Partner deleted
C:\Users\Rutger\AppData\Local\APN deleted
C:\Users\Rutger\Downloads\SoftonicDownloader_voor_bittorrent.exe deleted
C:\Users\Rutger\Downloads\SoftonicDownloader_voor_pdf-tools.exe deleted
C:\Users\Rutger\Downloads\SoftonicDownloader_voor_vlc-media-player.exe deleted
C:\Windows\wininit.ini deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Rutger\AppData\Local\Temp ====
2014-06-22 09:19:51	791E0EE48B83000421657EE6BF9F32A5	308656	---ha-w-	C:\Users\Rutger\AppData\Local\Temp\Maint000.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-06-22 10:03:56	CEE4C9E092168CEBD187491AF6FDA8FB	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-06-22 10:03:52	ECB3AB701D6E26F5E54C58957E34E719	175528	----a-w-	C:\Windows\SysWOW64\javaw.exe
2014-06-22 10:03:52	8C7C6D494D86307CDCF63E0478767C16	98216	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-22 10:03:52	2251971694E17BAC4E344DC2B7CD7ADD	175528	----a-w-	C:\Windows\SysWOW64\java.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-06-20 14:04:46	--------	d-----w-	C:\Program Files\DIFX
======= C:\PROGRA~2 =====
2014-06-22 10:05:15	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2014-06-22 10:03:39	--------	d-----w-	C:\PROGRA~2\Java
======= C: =====
2014-06-20 14:27:02	B512485860BD5E5AB0CA536E215E4F72	2956	----a-w-	C:\ipconfig.txt
====== C:\Users\Rutger\AppData\Roaming ======
2014-06-18 14:19:37	--------	d-sh--w-	C:\Users\Rutger\AppData\Locallow\EmieSiteList
====== C:\Users\Rutger ======
2014-06-22 10:03:52	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-21 08:32:07	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rutger\Desktop\RSITx64.exe

====== C: exe-files ==
2014-06-22 10:03:56	CEE4C9E092168CEBD187491AF6FDA8FB	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-06-22 10:03:52	ECB3AB701D6E26F5E54C58957E34E719	175528	----a-w-	C:\Windows\SysWOW64\javaw.exe
2014-06-22 10:03:52	2251971694E17BAC4E344DC2B7CD7ADD	175528	----a-w-	C:\Windows\SysWOW64\java.exe
2014-06-22 10:03:41	F9DE7324BDF83F5AFE174354F47C2AE0	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2014-06-22 10:03:41	E87885A59FDC241B6575943A75E495D9	182696	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2014-06-22 10:03:41	E2C8F178A57D011518785CF75044CD69	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2014-06-22 10:03:41	E0FE8B7BE802F8C4A71317AC35E44B00	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2014-06-22 10:03:41	C7C5FF4B0E83702EFBC0C886D87E9743	145832	----a-w-	C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2014-06-22 10:03:41	B5C9699AA60F74F144DB5A566F6E58F8	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2014-06-22 10:03:41	AEA4E94FC2A2F88FA5EC7FB6BC349E1B	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\klist.exe
2014-06-22 10:03:41	84FB0EC0581C996F445433BD2379A5CC	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2014-06-22 10:03:41	8140DCC3064BA8ADC407D956BE19D764	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2014-06-22 10:03:41	62CA7ABA57A4FCDB3844F73A156BAE26	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2014-06-22 10:03:41	3427C247AFEC295CD4A20B53EE445F23	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2014-06-22 10:03:41	3002E7E937FCB8985320AA807E762845	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2014-06-22 10:03:41	235A2E87C34995F1837283FE76CD2E46	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2014-06-22 10:03:41	1EFC992CA271E6D40034FBE7BCEDB724	52648	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2014-06-22 10:03:41	0595B07F96E4F48784A4B772B887AD68	49576	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2014-06-22 10:03:40	ECB3AB701D6E26F5E54C58957E34E719	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2014-06-22 10:03:40	CEE4C9E092168CEBD187491AF6FDA8FB	264616	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2014-06-22 10:03:40	96777405AB93AF8FCF6C9B6F5C3F1E51	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2014-06-22 10:03:40	82517DE5984F3EA3A49E0B5C8825DA63	68008	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2014-06-22 10:03:40	2251971694E17BAC4E344DC2B7CD7ADD	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java.exe
2014-06-22 10:03:40	07643C3AF27179144C9800AF0819DE75	48040	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2014-06-22 09:19:51	791E0EE48B83000421657EE6BF9F32A5	308656	---ha-w-	C:\Users\Rutger\AppData\Local\Temp\Maint000.exe
2014-06-21 08:32:07	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rutger\Desktop\RSITx64.exe
2014-06-20 14:04:47	E90140FF5F5FF7521EA52F94BEC29F8C	935480	----a-w-	C:\Program Files\DIFX\F4092DA208C2C970\DPInstX64.exe
2014-06-16 18:50:54	DF61864BA778845C6E725F7BF1EAEB0E	2675280	----a-w-	C:\Users\Rutger\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_35.0.1916.114_chrome_updater.exe
=== C: other files ==
2014-06-22 10:03:41	8E29BBCCC8D802D36701633A7842FE74	18636	----a-w-	C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-446588710-4294121067-542329207-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Google Update"="C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Facebook Update"="C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Spotify Web Helper"="C:\Users\Rutger\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED"
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Google Update"="C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Facebook Update"="C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Spotify Web Helper"="C:\Users\Rutger\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"
"PLFSetI"="C:\Windows\PLFSetI.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"McPvTray_exe"="C:\Program Files\McAfee\MAT\McPvTray.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2012-08-01 19:50:39	1055	----a-w-	C:\Users\Rutger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2009-08-22 03:36:11	1782	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000Core.job --a------ C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe [08-08-2012 22:49]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000UA.job --a------ C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe [08-08-2012 22:49]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-02-2010 17:48]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-02-2010 17:48]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000Core.job --a------ C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe [18-03-2010 11:59]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000UA.job --a------ C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe [18-03-2010 11:59]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Rutger-PC-Rutger" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000Core" [C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000UA" [C:\Users\Rutger\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000Core" [C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-446588710-4294121067-542329207-1000UA" [C:\Users\Rutger\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [18-06-2014 11:19]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[24-04-2014 12:12]

Google Wallet - Rutger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
"Default_Page_URL"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=extensa_5635g&r=273602103606l03e3z115i4722v715"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.msn.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_nlNL365NL366"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Rutger\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Rutger\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rutger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rutger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Rutger\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=80 folders=20 22180501 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Rutger\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Rutger\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 22-06-2014 at 12:28:12,20 ======================