
Zoek.exe v5.0.0.0 Updated 28-06-2014
Tool run by eigenaar on zo 29/06/2014 at  8:32:26,63.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\eigenaar\Documents\zoek\zoek.exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

29/06/2014 8:35:04 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{45BB62B4-A601-4915-9237-CD18BCC87EE0} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{8793B24A-E99C-42E2-BCDB-E8D97FA82F40} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A547C38A-A6DE-4337-B9ED-1EC4446DE592} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.7 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.7 deleted successfully

==== Deleting Files \ Folders ======================

C:\Users\eigenaar\AppData\Local\genienext deleted
C:\Users\eigenaar\daemonprocess.txt deleted
C:\Users\eigenaar\.android deleted
C:\PROGRA~2\System Speedup deleted
C:\PROGRA~2\RegClean Pro deleted
C:\PROGRA~2\Protected Search deleted
C:\PROGRA~2\MyPC Backup deleted
C:\PROGRA~2\Red Sky deleted
C:\Users\eigenaar\AppData\Roaming\Babylon deleted
C:\Users\eigenaar\AppData\Roaming\Systweak deleted
C:\Users\eigenaar\AppData\Roaming\YourFileDownloader deleted
C:\PROGRA~3\Ask deleted
C:\PROGRA~3\Registry Helper deleted
C:\PROGRA~3\Allmyapps deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\PROGRA~3\Babylon deleted
C:\Users\eigenaar\AppData\Local\APN deleted
C:\Users\eigenaar\AppData\Local\AVG Secure Search deleted
C:\Users\eigenaar\AppData\Local\DownTango deleted
C:\Users\eigenaar\AppData\Local\Mobogenie deleted
C:\Users\eigenaar\AppData\Local\cache deleted
C:\Users\eigenaar\AppData\Local\Babylon deleted
C:\Users\eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted
C:\Users\eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\Users\eigenaar\Searches deleted
C:\Users\eigenaar\AppData\LocalLow\AVG Secure Search deleted
C:\Users\eigenaar\AppData\LocalLow\AskToolbar deleted
C:\Users\eigenaar\AppData\LocalLow\DataMngr deleted
C:\Users\eigenaar\AppData\LocalLow\SimplyTech deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\windows\SysNative\tasks\ProtectedSearch deleted
C:\windows\SysNative\tasks\ViewPassword Update deleted
C:\windows\SysNative\tasks\ViewPassword_wd deleted
C:\Windows\tasks\ViewPassword Update.job deleted
C:\Windows\tasks\ViewPassword_wd.job deleted
C:\windows\SysNative\tasks\YourFile Update deleted
C:\Windows\Launcher.exe deleted
C:\Windows\Syswow64\RegistryHelperLM.ocx deleted
C:\Users\eigenaar\Documents\Optimizer Pro deleted
C:\Users\eigenaar\Documents\Mobogenie deleted
C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} deleted
"C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\Ask.com\Updater\Updater.exe" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.7\SiteSafety.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.7\log4cplusU.dll" deleted
"C:\Users\eigenaar\AppData\Roaming\avg" deleted
"C:\PROGRA~2\Ask.com" deleted
"C:\PROGRA~2\AVG Secure Search" not deleted
"C:\PROGRA~2\AVG Secure Search" not deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\PROGRA~2\Ask.com\Updater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.7" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.7" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\eigenaar\AppData\Local\Temp ====
2014-06-26 07:30:06	CDB17E9BEE21C6F01D39FDB2BF6E192C	245960	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe
2014-06-26 07:30:06	89AC3F9D3596BEF90028CFBF8A5A3032	176128	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\instApp.exe
2014-06-26 07:30:06	88E3225D42EB43D99A519080E039FEE4	42880	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe
2014-06-21 13:07:30	F5AA338FF7360C7AB398F7FAB107A5B2	266240	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IScrCnv.dll
2014-06-21 13:07:30	BA2DE13AAEDBC543B991D550A01C7E0D	401408	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\ISRT.dll
2014-06-21 13:07:30	8CEF05C47F798BB773C04D19DBDABBF8	761856	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IDriver2.exe
2014-06-21 13:07:30	8CEF05C47F798BB773C04D19DBDABBF8	761856	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IDriver.NonElevated.exe
2014-06-21 13:07:30	8CEF05C47F798BB773C04D19DBDABBF8	761856	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IDriver.exe
2014-06-21 13:07:30	5C1968EA7D57A4579BCB6BE10B41AC7D	188416	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\iGdiCnv.dll
2014-06-21 13:07:30	3BE176D991BB74394BAC19C30B535EFE	192512	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\IUserCnv.dll
2014-06-21 13:07:30	3B1853234FB054D5028289BE3D47BCBC	299008	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\_ISRES1033.dll
2014-06-21 13:07:30	01E27027A049C17C85F03B3045FB48EC	32768	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{b3ede298-ae75-4a1c-ab7e-1b9229b77bbe}\objpscnv.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2014-06-12 10:23:49	17F685B67C74B8F7BFED4308790B71DE	288192	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-06-12 10:23:49	04ADD18EE5CC9FBEDAEC1DD1CD0CB45E	1903552	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
2014-06-29 06:30:50	F1F0F4D739569C06652F75DB0F18B791	3138	----a-w-	C:\Windows\Sysnative\Tasks\{B93C7991-5FCF-4A32-B022-84ECB8F23F82}
2014-06-29 06:25:46	235FE90C7C00E61EAB4A42C7821E9606	3176	----a-w-	C:\Windows\Sysnative\Tasks\{00F29107-FFBF-4706-9E16-560CB8C7655D}
2014-06-28 13:39:13	AEF3FDECD22C6EBED53554C54E492B19	3982	----a-w-	C:\Windows\Sysnative\Tasks\User_Feed_Synchronization-{06C7DCBF-BBE4-4B27-B6F8-930B61577653}
2014-06-25 14:20:24	FB890AA2D79B511D6CC7C5829BDDD1BF	1060	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-25 14:20:24	C7C4926069400D12D9E97119F9A3A753	1056	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-25 14:20:24	1A5C08822629AEFB8ECBFD16B4C9B5F8	4056	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-06-25 14:20:24	1773DEA22EE64DD9F0E9FA01DF7B0221	3804	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-06-28 09:58:35	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\eigenaar\AppData\Roaming ======
2014-06-21 12:59:30	--------	d-----w-	C:\Users\eigenaar\AppData\Local\Adobe
====== C:\Users\eigenaar ======
2014-06-28 09:57:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\eigenaar\Desktop\RSITx64.exe
2014-06-28 09:56:37	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\eigenaar\Downloads\RSITx64.exe
2014-06-25 14:20:34	--------	d-----w-	C:\ProgramData\Google
2014-06-18 16:12:53	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-05-30 07:17:00	--------	d-----w-	C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

====== C: exe-files ==
2014-06-28 09:58:35	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\eigenaar.exe
2014-06-28 09:57:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\eigenaar\Desktop\RSITx64.exe
2014-06-28 09:56:37	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\eigenaar\Downloads\RSITx64.exe
2014-06-28 09:45:46	3508F0353ED2D584FC5C8F33D725DD83	385552	----a-w-	C:\ProgramData\NVIDIA\Updatus\Download\5C70\updatus.18640491_RUNASUSER.exe
2014-06-26 07:30:06	CDB17E9BEE21C6F01D39FDB2BF6E192C	245960	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe
2014-06-26 07:30:06	89AC3F9D3596BEF90028CFBF8A5A3032	176128	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\instApp.exe
2014-06-26 07:30:06	88E3225D42EB43D99A519080E039FEE4	42880	----a-w-	C:\Users\eigenaar\AppData\Local\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\RunIE.exe
2014-06-26 03:11:51	8E06414A6AAE206DC3E68BB86D47D67A	385408	----a-w-	C:\ProgramData\NVIDIA\Updatus\Download\5C45\updatus.18632966_RUNASUSER.exe
2014-06-25 14:33:14	211F96EB417FF837A70F5130E63A1A45	400840	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_4D9709C1FA1422BA.exe
2014-06-25 14:33:11	E8B7FD67DA14A7BE57A5CB80E3139E60	309704	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_52E818EF81C83A9B.exe
2014-06-25 14:33:07	4C401FCC6D0C95E1A5D989E403E18F2F	1072072	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8CA8B41417E66DEB.exe
2014-06-25 14:32:25	107A176FF25E2BA8016A92C301844839	532312	----a-w-	C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.5111.1712\GoogleToolbarInstaller_updater_signed.exe
2014-06-25 14:31:53	EDAC53E2964C7ACE868208C3B6C5C8F1	39078480	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_chrome_installer.exe
2014-06-25 14:25:41	AC6998D92A311E7CF0B4DAEC3566F444	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
2014-06-25 14:25:41	956672375AF066D958E4D07F5ABAFC1A	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
2014-06-25 14:25:40	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
2014-06-25 14:25:35	AA0E4F73727BFC8BA404884B1C1DB719	285064	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
2014-06-25 14:25:35	80E350E0AA963B2125896B13E60A4D68	114568	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
2014-06-25 14:25:35	397D14958D6C9C2B365469A857B2AC4E	230792	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
2014-06-25 14:25:34	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
2014-06-25 14:25:34	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe
2014-06-25 14:21:16	3D350D3868E6280E63806EBD096FB403	1057688	----a-w-	C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EX21H3R2\install_flashplayer14x32ax_mssa_awe_aih.exe
2014-06-25 14:20:44	5D61BE7DB55B026A5D61A3EED09D0EAD	39408	----a-w-	C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
2014-06-25 14:20:44	5D4BC124FAAE6730AC002CDB67BF1A1C	194032	----a-w-	C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
2014-06-25 14:20:43	E8B7FD67DA14A7BE57A5CB80E3139E60	309704	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
2014-06-25 14:20:43	211F96EB417FF837A70F5130E63A1A45	400840	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe
2014-06-25 14:20:34	4BEAF576CB43358C4DB9F45AC7C09CDB	194032	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe
2014-06-25 14:20:34	4B78E9AE06F7C310E30EE2FA5B7EBC3C	1721296	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_C993F490EED40C1B.exe
2014-06-25 14:20:34	1F2AFAB903C0D48480561F3BBD4539C2	739640	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdateSetup_5CC4B0F53D73AD88.exe
2014-06-25 14:20:27	2040B57C08F7A97E4E44ACB324647CF2	6110688	----atw-	C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\0.0.0.0\googletoolbarinstaller_full_signed.exe
2014-06-25 14:20:24	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2014-06-25 14:19:41	AD6274FC24DF32A8433FDC7969CD5AD3	121856	----a-w-	C:\Users\eigenaar\AppData\Local\Adobe\gccheck.exe
2014-06-25 14:19:41	6C91C564E125C59E37B70FC9176DD931	32256	----a-w-	C:\Users\eigenaar\AppData\Local\Adobe\gtbcheck.exe
2014-06-25 14:19:41	654F202F5F6FB93C65D6E366AE477C43	6928792	----a-w-	C:\Users\eigenaar\AppData\Local\Adobe\GTB.exe
2014-06-25 14:19:41	2B42C2E2B0169EBB3E532FE1CF9BDA63	18583216	----a-w-	C:\Users\eigenaar\AppData\Local\Adobe\install_flash_player_ax.exe
2014-06-25 14:19:41	0717BDE41D1B73208A70197E30873B5A	35739152	----a-w-	C:\Users\eigenaar\AppData\Local\Adobe\ChromeInstaller.exe
2014-06-24 00:18:56	81564A1E7671179DB018385CB1CAA883	385176	----a-w-	C:\ProgramData\NVIDIA\Updatus\Download\5C36\updatus.18626308_RUNASUSER.exe
2014-06-24 00:15:47	F86984BA47B56F9E1379754989740FC2	6444056	----a-w-	C:\Windows\Temp\{0760AF44-7001-4D2C-930A-12FAD9B9EBD3}.exe
=== C: other files ==
2014-06-29 06:49:29	3B7E40F81C79558E6D6C13828A230F6A	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-3417980381-3110564084-2780974473-1001\$I9ANDIQ.zip
2014-06-29 06:21:12	63A9E8A7CB614C7008E295E6AD1906DB	4095664	----a-w-	C:\$Recycle.Bin\S-1-5-21-3417980381-3110564084-2780974473-1001\$R9ANDIQ.zip
2014-06-28 09:38:46	783B23C6E1F303D333D2B0A3CF3CA8B8	183878	----a-w-	C:\ProgramData\AVG2014\IDS\outbox\tmp_2a255910-30ba-47d2-8f73-e1ccefefb80d.zip
2014-06-27 08:39:17	AFE936E09928432AE038EF92E8938986	198071	----a-w-	C:\ProgramData\AVG2014\IDS\outbox\tmp_d0592b90-33ed-47d2-89b2-b9140566704c.zip
2014-06-26 08:35:09	A153655BDABF025D886D5F4657FD6C80	158751	----a-w-	C:\ProgramData\AVG2014\IDS\outbox\tmp_1c6b3b3f-3317-47d2-8f77-b9140566704c.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CAHeadless"="C:\Program Files (x86)\Adobe\Elements 11 Organizer\CAHeadless\ElementsAutoAnalyzer.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ASUSWebStorage"="C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"ASUS InstantKey"="C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe"
"Wireless Console 3"="C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"ApnUpdater"="C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"
"vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"UpdatePSTShortCut"="C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Cyberlink\DVD Suite UpdateWithCreateOnce Software\CyberLink\PowerStarter"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"RemoteControl10"="C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"BCSSync"="D:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CAHeadless"="C:\Program Files (x86)\Adobe\Elements 11 Organizer\CAHeadless\ElementsAutoAnalyzer.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3 "
"BLEServicesCtrl"="C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~2\\Linkey\\IEEXTE~1\\iedll64.dll "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ACMON]
"command"="C:\\Program Files (x86)\\ASUS\\Splendid\\ACMON.exe"
"hkey"="HKLM"
"item"="ACMON"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 10.0\\Reader\\Reader_sl.exe\""
"hkey"="HKLM"
"item"="Adobe Reader Speed Launcher"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDVCPL]
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"
"hkey"="HKLM"
"item"="RTHDVCPL"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"


==== Startup Folders ======================

2012-02-24 02:50:52	2062	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16/05/2014 16:59]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25/06/2014 16:20]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25/06/2014 16:20]
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-eigenaar-PC-eigenaar" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS Quick Gesture" [C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe]
"C:\Windows\SysNative\tasks\ASUS Quick Gesture (x64)" [C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"]
"C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DeviceDetector" [C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" [C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe]
"C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" [C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{06C7DCBF-BBE4-4B27-B6F8-930B61577653}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{06D36551-3A72-4987-B022-C3CAFD4E9832}" [C:\Program Files (x86)\Windows Live\Mail\wlmail.exe]
"C:\Windows\SysNative\tasks\{1A60FAFA-3090-4F0D-A5BA-14E68B2D5535}" [D:\Program Files (x86)\byLight\2020\2020.exe]
"C:\Windows\SysNative\tasks\{261782F0-C3E0-42BE-BE2E-1849CAEA4183}" [C:\Users\eigenaar\Downloads\SqirlzReflectzip\SqR_instal.exe]
"C:\Windows\SysNative\tasks\{38E061ED-745F-4DCE-B804-8308247C87F7}" [D:\Program Files (x86)\byLight\2020\2020.exe]
"C:\Windows\SysNative\tasks\{3CB12A8D-E992-4926-86E5-7CF1E311E63E}" [C:\Users\eigenaar\Downloads\SqirlzReflectzip\SqR_instal.exe]
"C:\Windows\SysNative\tasks\{44371473-9F3F-4499-B557-B12A5E87DD53}" [C:\Program Files\CCleaner\uninst.exe]
"C:\Windows\SysNative\tasks\{4942CEAE-B680-4454-894E-92E5B39C27E0}" [C:\Users\eigenaar\Desktop\wmp11-windowsxp-x86-nl-nl.exe]
"C:\Windows\SysNative\tasks\{4F0D0955-7493-4398-9418-679D6F4E17D8}" [D:\ccleaner\WeatherBlink.exe]
"C:\Windows\SysNative\tasks\{5A082995-588D-4E55-AAB9-303F2BFF8C13}" [C:\Users\eigenaar\Desktop\wmp11-windowsxp-x86-nl-nl.exe]
"C:\Windows\SysNative\tasks\{7AC5E71C-7C4E-42BC-A1C6-D995A7E5C9C8}" [C:\Users\eigenaar\Downloads\SqirlzReflectzip\SqR_instal.exe]
"C:\Windows\SysNative\tasks\{A6438102-672B-44B8-9902-552450E10ECA}" [C:\Users\eigenaar\Downloads\SqirlzReflectzip\SqR_instal.exe]
"C:\Windows\SysNative\tasks\{DCBBC93D-DE26-43E4-88E7-30BFAA2BDDFA}" [C:\Users\eigenaar\Downloads\SqirlzReflectzip\SqR_instal.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{A14A692F-BA7D-F65A-FEE4-FBA60CE3FC6E}"="C:\Program Files (x86)\ViewPassword-soft\161.xpi" [08/05/2014 12:15]

==== Firefox Extensions ======================

ProfilePath: C:\Users\eigenaar\AppData\Roaming\TomTom\HOME\Profiles\phki6qm7.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaojmikegpiepcfdkkjaplodkpfmlo - C:\Users\eigenaar\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[03/03/2014 10:53]

Ask Toolbar - eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Skype Click to Call - eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Wallet - eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chrome Fix ======================

C:\Users\eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.buenosearch.com_0.localstorage deleted successfully
C:\Users\eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.buenosearch.com_0.localstorage-journal deleted successfully
C:\Users\eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"
"Search Page"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=dd0c2ea6-e179-47a0-a780-427b7f414787&searchtype=ds&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=dd0c2ea6-e179-47a0-a780-427b7f414787&searchtype=ds&q={searchTerms}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=dd0c2ea6-e179-47a0-a780-427b7f414787&searchtype=ds&q={searchTerms}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{8793B24A-E99C-42E2-BCDB-E8D97FA82F40}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8793B24A-E99C-42E2-BCDB-E8D97FA82F40}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.be/"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3417980381-3110564084-2780974473-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:14162"
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\195EDD32-E569-FFFE-5074-71D78B04C044 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Protected Search_is1 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3JWJMDDD will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H29RMB52 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LMYECKH1 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0RMTCUON will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2TW4U0N6 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3YJBAF46 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\438Q1VF1 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\43QMYUY8 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\AQJEDIGT will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BP9KX4WE will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G4UW1KV4 will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UAJEA8OB will be deleted at reboot
C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VXU4SHX4 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\eigenaar\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2264 folders=325 230160943 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\eigenaar\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\eigenaar\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\AVG Secure Search"  not found
"C:\PROGRA~2\AVG Secure Search"  not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3JWJMDDD" deleted
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H29RMB52" deleted
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LMYECKH1" deleted
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0RMTCUON" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2TW4U0N6" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3YJBAF46" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\438Q1VF1" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\43QMYUY8" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\AQJEDIGT" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BP9KX4WE" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G4UW1KV4" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UAJEA8OB" not found
"C:\Users\eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VXU4SHX4" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on zo 29/06/2014 at  9:17:35,54 ======================