
Zoek.exe v5.0.0.0 Updated 15-08-2014
Tool run by tim on zo 17/08/2014 at 16:27:30,94.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\tim\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

17/08/2014 16:30:24 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp. 
# 
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows. 
# 
# This file contains the mappings of IP addresses to host names. Each 
# entry should be kept on an individual line. The IP address should 
# be placed in the first column followed by the corresponding host name. 
# The IP address and the host name should be separated by at least one 
# space. 
# 
# Additionally, comments (such as these) may be inserted on individual 
# lines or following the machine name denoted by a '#' symbol. 
# 
# For example: 
# 
#      102.54.94.97     rhino.acme.com          # source server 
#       38.25.63.10     x.acme.com              # x client host 
 
127.0.0.1       localhost 

==== Empty Folders Check ======================

C:\Users\tim\AppData\Local\Lollipop deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2332565552-1237953942-544223345-1002\Software\Microsoft\Internet Explorer\SearchScopes\{2D4C5F03-E851-4C83-A654-3676B183EC9B} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default

user.js not found
---- Lines CT1750559 removed from prefs.js ----
user_pref("CT1750559.FF19Solved", "true");
user_pref("CT1750559.UserID", "UN51887878792721775");
user_pref("CT1750559.fullUserID", "UN51887878792721775.IN.20140220193213");
user_pref("CT1750559.installDate", "20/02/2014 19:32:14");
user_pref("CT1750559.installSessionId", "749fb83f-53bf-4b54-887a-06e48e42fafe");
user_pref("CT1750559.installSp", "false");
user_pref("CT1750559.installerVersion", "1.8.1.4");
user_pref("CT1750559.searchRevert", "false");
user_pref("CT1750559.searchUninstallUserMode", "1");
user_pref("CT1750559.searchUserMode", "1");
user_pref("CT1750559.toolbarInstallDate", "20-02-2014 19:32:13");
user_pref("CT1750559.versionFromInstaller", "10.23.0.722");
user_pref("CT1750559.xpeMode", "1");
---- Lines isearch removed from prefs.js ----
user_pref("weboftrust.search.avg.url", "^http(s)?\\:\\/\\/isearch\\.avg\\.com\\/search\\?");
---- Lines ask.com removed from prefs.js ----
user_pref("weboftrust.search.ask.display", "Ask.com Web Search");
---- Lines smartbar removed from prefs.js ----
user_pref("smartbar.machineId", "FFWXFBWNS2CQQIMTV2QWZHJMKROXMSSR6V2O7M8XMGTQCNMETUQKBO+C1TGHQ1N3IRDUAVUWKFLDGIXENPSZLQ");
---- FireFox user.js and prefs.js backups ---- 

prefs_20141708_1638_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"SearchProtection"=- 

==== Deleting Files \ Folders ======================

C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} not found
C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} deleted
C:\Users\tim\AppData\Local\Bundled software uninstaller deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\tim\Searches deleted
C:\END deleted
C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default\CT1750559 deleted
"C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default\searchplugins\yahoo_ff.xml" deleted
"C:\Users\tim\AppData\Roaming\Search Protection\SearchProtection.exe" deleted
"C:\Users\tim\AppData\Roaming\Search Protection\SearchProtection.exe" deleted
"C:\Users\tim\AppData\Roaming\Search Protection" deleted
"C:\Users\tim\AppData\Roaming\Search Protection" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2014-08-14 17:55:29	357CEBBCD99C8928A2D1A61A6CACC168	43152	----a-w-	C:\WINDOWS\avastSS.scr
====== C:\Users\tim\AppData\Local\Temp ====
2014-08-14 17:56:38	BB2B79212AF9EBA563AFD7FAE51A2A0A	103533816	----a-w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp\mpam-e055257c.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-08-13 18:34:09	128EC9879D462F89829E663417FE5DBD	710144	----a-w-	C:\WINDOWS\SysWOW64\rpcrt4.dll
2014-08-13 18:28:26	2C01D8EA2B0FA834597FCD96AAAE4F52	406400	----a-w-	C:\WINDOWS\SysWOW64\dxgi.dll
2014-08-13 18:28:21	444EB30B1610A35FC99D62A91B2BCAA7	69632	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-08-13 18:28:20	E9B28B60C0272E2E1E462E6FB38E6B55	367104	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-08-13 18:28:20	6D017C0E499443ACDE3D9B5DCD753F32	1169920	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2014-08-13 18:28:20	24FA5F74D3B4BA62539DF87285BA934E	597504	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-08-13 18:28:19	8453DDF167CE2986AA4AB04BC6824925	17524224	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-08-13 18:28:19	1A05CFA45B6AEBFCCC835DCF68CBD1D0	526336	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2014-08-13 18:28:17	FF4A917DD7C387BD2715A5F67307FED1	2184704	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2014-08-13 18:28:17	E70C00791A18866BB23B3A652E3390A0	2001920	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-08-13 18:28:16	239575F9EA0D227516843EEE8B7342CA	239616	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2014-08-13 18:28:15	90FF511B751A0327D07C4073760F1578	11772928	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2014-08-13 18:28:12	7C1BFC2ABE297BCA1A7BA77A8292C088	4204032	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2014-08-13 18:28:12	18A3154606E3F8945956948A4E708007	704512	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-08-13 18:28:03	B945BAA81B4805AD6BDDF4D026DCFB47	1792512	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2014-08-13 18:28:01	030041C8800A1781134B6EC3E3EF3F9C	291840	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-08-13 18:27:59	FEE3E022B00A5165ED645E38C1E6C776	60416	----a-w-	C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-13 18:27:58	272420427EB96EA052C719AA796C09F2	61952	----a-w-	C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-08-13 18:27:57	9D16B568E318F49535AD72539C9997C2	455168	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2014-08-13 18:24:46	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-08-13 18:23:44	DBC4D46A7DDC14D1D1ED4B613F9E41A4	1064448	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2014-08-13 18:23:43	16CDD058883E38FB43D582FB080F721A	2318336	----a-w-	C:\WINDOWS\SysWOW64\authui.dll
2014-08-13 18:23:42	F8D0951A75826AD557CFAC323A936AA6	281088	----a-w-	C:\WINDOWS\SysWOW64\msihnd.dll
2014-08-13 18:23:42	86DB4BA87BAF3D467D04821602E586A9	3304448	----a-w-	C:\WINDOWS\SysWOW64\msi.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-08-13 18:34:09	1BB9CC78C91536CBA7B04B61ED0F85C4	1273184	----a-w-	C:\WINDOWS\Sysnative\rpcrt4.dll
2014-08-13 18:28:26	59EAFAE3A34B4925990A2E679CA91C5B	517528	----a-w-	C:\WINDOWS\Sysnative\dxgi.dll
2014-08-13 18:28:25	454978FB3D24DE5C4199162D5F81FBEE	2133504	----a-w-	C:\WINDOWS\Sysnative\dwmcore.dll
2014-08-13 18:28:17	FE7D99399F7761AA2695A7B1AD30DAAF	1431040	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2014-08-13 18:28:16	F00D0AE7648CA45C6434E2885485BE0B	452096	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2014-08-13 18:28:16	1FD1F16C35946BA28FDEB40F18B7729D	631808	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2014-08-13 18:28:14	39A85C005BCDEEF4092646EBBC2526AA	2087936	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2014-08-13 18:28:13	DB382D89D8004F40BD2C55BAE6A15B30	2774528	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2014-08-13 18:28:10	1DE8B71A1C7D8943034188556AF50B07	292864	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2014-08-13 18:28:10	1B26610C1659EF54ED000233FB96F20C	13547008	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2014-08-13 18:28:09	920F690FC7424DE71888AA2E46E917EA	758272	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2014-08-13 18:28:09	2639E152D246F2A651F09764807CA153	85504	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-08-13 18:28:08	BAC44396088ECC1C9021ED3E3345337C	846336	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2014-08-13 18:28:08	472C409F9B0FF67C1015F511C73E1889	5824512	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2014-08-13 18:28:06	ECA387DCD57F683C52171C766CF400F0	23645696	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-08-13 18:28:01	8E71A5CB5312B8392D4DA4CA37BB5868	2266624	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2014-08-13 18:28:01	52D2151908C2A6388B6561A373488F6F	692736	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2014-08-13 18:28:01	38D14F3D0A289050CA9BF8E98F37313F	333312	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2014-08-13 18:27:59	19FA60D3AE1804A559306DE931A5B415	72704	----a-w-	C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll
2014-08-13 18:27:58	C02C78DE9BB4E68F6C78B1588ADD6ADC	83968	----a-w-	C:\WINDOWS\Sysnative\MshtmlDac.dll
2014-08-13 18:27:57	6ED6DA2A04F8F0C9BDAD647284BAEFB6	548352	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2014-08-13 18:24:45	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\WINDOWS\Sysnative\TsWpfWrp.exe
2014-08-13 18:23:45	A39C4AB750E0AD4431C7B7F46AB0EBED	4148224	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2014-08-13 18:23:44	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\WINDOWS\Sysnative\MDMAgent.exe
2014-08-13 18:23:44	87CEF71F9D5951C9379D2F956C07C37D	1336624	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2014-08-13 18:23:43	68F887EF33C09CDA957A51ECE871D642	2642944	----a-w-	C:\WINDOWS\Sysnative\authui.dll
2014-08-13 18:23:43	28E0C3AAA68579ABD9A27B92DFD5F119	2790912	----a-w-	C:\WINDOWS\Sysnative\msi.dll
2014-08-13 18:23:42	10D8859CF01C1284603582ABD9B0482C	114520	----a-w-	C:\WINDOWS\Sysnative\consent.exe
2014-08-13 18:23:42	08914C8989AB93F5EC3A452D014E2C8D	356352	----a-w-	C:\WINDOWS\Sysnative\msihnd.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-08-14 17:55:40	D95E64416A4A3ED6986E0F474DA934BD	29208	----a-w-	C:\WINDOWS\Sysnative\drivers\aswHwid.sys
2014-08-13 18:28:25	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2014-07-18 21:09:07	374E27295F0A9DCAA8FC96370F9BEEA5	563200	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
2014-07-18 21:09:05	1CD3A907D64D08F49208DA00B69BF35E	565576	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-08-14 17:13:55	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\tim\AppData\Roaming ======
====== C:\Users\tim ======

====== C: exe-files ==
2014-08-14 17:56:38	BB2B79212AF9EBA563AFD7FAE51A2A0A	103533816	----a-w-	C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-e055257c.exe
2014-08-14 17:13:55	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\tim.exe
2014-08-14 17:12:41	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\tim\Desktop\Antivirus\RSITx64.exe
2014-08-13 18:28:17	771E149F97AA6679DEF79F0953414435	812176	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-08-13 18:28:17	6A60D0D167D35A07646EBCF796D770B4	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-08-13 18:28:14	7D709E893B53092E3F5995FF5C3061E2	483328	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-08-13 18:28:13	E8F1154367F708BD9E5BFD6A2112B4D3	810128	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-08-13 18:28:01	52D2151908C2A6388B6561A373488F6F	692736	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-08-13 18:24:46	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-13 18:24:45	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2014-08-13 18:23:44	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\Windows\System32\MDMAgent.exe
2014-08-13 18:23:42	10D8859CF01C1284603582ABD9B0482C	114520	----a-w-	C:\Windows\System32\consent.exe
=== C: other files ==
2014-08-14 17:55:40	D95E64416A4A3ED6986E0F474DA934BD	29208	----a-w-	C:\Windows\System32\drivers\aswHwid.sys
2014-08-14 16:18:50	85AD39A8CCE7068EDD7B84BF30343378	279947098	----a-w-	C:\Users\tim\Downloads\Van Nonkel Toon voor Hans.zip
2014-08-13 18:28:25	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2014-08-13 18:23:45	A39C4AB750E0AD4431C7B7F46AB0EBED	4148224	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2332565552-1237953942-544223345-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"="C:\Program Files\Sandboxie\SbieCtrl.exe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"="C:\Program Files\Sandboxie\SbieCtrl.exe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"BtTray"="C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"ACMON"="C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [18/07/2014 23:37]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\ASUS InstantOn Config" [C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe]
"C:\WINDOWS\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe]
"C:\WINDOWS\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe]
"C:\WINDOWS\SysNative\tasks\ASUS Touchpad Launcher (x64)" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe]
"C:\WINDOWS\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{33F3CE95-6F6D-4605-9F09-DC1D2EDBE8BF}" [C:\WINDOWS\system32\msfeedssync.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [14/08/2014 19:55]

==== Firefox Extensions ======================

ProfilePath: C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- FastestFox - %ProfilePath%\extensions\smarterwiki@wikiatic.com.xpi
- Flagfox - %ProfilePath%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\tim\AppData\Roaming\Mozilla\Firefox\Profiles\5cktzzn3.default
4390CCD3790F8D9C427C0C29590C62D7	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll -	Shockwave Flash
4BF70B35B943BD73BD6E13EB7C1BA4B3	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll -	Shockwave Flash
18CF51689186AEB9D1D149AEB0E92D03	- C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL -	Microsoft Office 2013


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[14/08/2014 19:55]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{2D4C5F03-E851-4C83-A654-3676B183EC9B}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2D4C5F03-E851-4C83-A654-3676B183EC9B}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\tim\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\tim\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\tim\AppData\Local\Mozilla\Firefox\Profiles\5cktzzn3.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=20 folders=7 3042884 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\tim\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\tim\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 17/08/2014 at 16:52:34,09 ======================