
Zoek.exe v5.0.0.0 Updated 19-08-2014
Tool run by Mie on di 19/08/2014 at  9:30:07,53.
Microsoft® Windows Vista™ Home Premium  6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Mie\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

19/08/2014 9:33:23 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\ArcSoft deleted successfully
C:\Program Files\CPI bestanden herstellen (video's) deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\PDF deleted successfully
C:\Program Files\TeamViewer deleted successfully
C:\Program Files\Common Files\ArcSoft deleted successfully
C:\PROGRA~2\Babylon deleted successfully
C:\PROGRA~2\PCDr deleted successfully
C:\PROGRA~2\SSScanAppDataDir deleted successfully
C:\PROGRA~2\SSScanWizard deleted successfully
C:\PROGRA~2\ZoomBrowser deleted successfully
C:\PROGRA~2\{24F2F424-12E1-423F-B3C1-417CE9E71C16} deleted successfully
C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully
C:\PROGRA~2\{429CAD59-35B1-4DBC-BB6D-1DB246563521} deleted successfully
C:\PROGRA~2\{755AC846-7372-4AC8-8550-C52491DAA8BD} deleted successfully
C:\PROGRA~2\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} deleted successfully
C:\PROGRA~2\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully
C:\PROGRA~2\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} deleted successfully
C:\Users\Mie\AppData\Roaming\NetMedia Providers deleted successfully
C:\Users\Mie\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Mie\AppData\Roaming\Systweak deleted successfully
C:\Users\Mie\AppData\Roaming\ZoomBrowser EX deleted successfully
C:\Users\Mie\AppData\Local\DataSafeOnline deleted successfully
C:\Users\Mie\AppData\Local\Lollipop deleted successfully
C:\Users\Mie\AppData\Local\Powercinema deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7EFF60D3-C3FC-4D87-90EE-404E680C1917} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dealplylive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Dealplylive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Dealplylive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Dealplylive deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dealplylivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Dealplylivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Dealplylivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Dealplylivem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\LiveUpdateSvc deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\3v3g6snt.default-1403946652172

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20141908_0946_.backup

ProfilePath: C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\9dbyts7c.default

user.js not found
---- Lines delta removed from prefs.js ----
user_pref("browser.newtab.url", "http://www2.delta-search.com/?babsrc=NT_ss&mntrId=560D0022F7185B66&affID=122246&tsp=4987");
user_pref("extensions.delta.admin", false);
user_pref("extensions.delta.aflt", "babsst");
user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
user_pref("extensions.delta.autoRvrt", "false");
user_pref("extensions.delta.dfltLng", "nl");
user_pref("extensions.delta.excTlbr", false);
user_pref("extensions.delta.ffxUnstlRst", true);
user_pref("extensions.delta.id", "560d99b80000000000000022f7185b66");
user_pref("extensions.delta.instlDay", "15944");
user_pref("extensions.delta.instlRef", "sst");
user_pref("extensions.delta.newTab", false);
user_pref("extensions.delta.prdct", "delta");
user_pref("extensions.delta.prtnrId", "delta");
user_pref("extensions.delta.rvrt", "false");
user_pref("extensions.delta.smplGrp", "none");
user_pref("extensions.delta.tlbrId", "base");
user_pref("extensions.delta.tlbrSrchUrl", "");
user_pref("extensions.delta.vrsn", "1.8.24.6");
user_pref("extensions.delta.vrsni", "1.8.24.6");
user_pref("extensions.delta.vrsnTs", "1.8.24.621:00:21");
user_pref("extensions.delta_i.babExt", "");
user_pref("extensions.delta_i.babTrack", "affID=122246&tsp=4987");
user_pref("extensions.delta_i.srcExt", "ss");
---- Lines conduit removed from prefs.js ----
user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
---- Lines Search  removed from prefs.js ----
user_pref("browser.search.order.1", "Search Results");
---- Lines WebSearch removed from prefs.js ----
user_pref("extensions.toolbar.mindspark._12Members_.homepage", "http://home.mywebsearch.com/index.jhtml?ptb=815D0CBA-6CEF-46D7-A6C6-E537C9DA9ADB&n=77f
---- Lines mindspark removed from prefs.js ----
user_pref("extensions.toolbar.mindspark._12Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._12Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._12Members_.installation.installDate", "2013082721");
user_pref("extensions.toolbar.mindspark._12Members_.installation.partnerId", "^9N^xdm080^S03631^be");
user_pref("extensions.toolbar.mindspark._12Members_.installation.partnerSubId", "CLew69vJx7QCFXHLtAod3jQAXQ");
user_pref("extensions.toolbar.mindspark._12Members_.installation.success", true);
user_pref("extensions.toolbar.mindspark._12Members_.installation.toolbarId", "815D0CBA-6CEF-46D7-A6C6-E537C9DA9ADB");
user_pref("extensions.toolbar.mindspark._12Members_.lastActivePing", "1377684322696");
user_pref("extensions.toolbar.mindspark._12Members_.options.defaultSearch", false);
user_pref("extensions.toolbar.mindspark._12Members_.options.homePageEnabled", false);
user_pref("extensions.toolbar.mindspark._12Members_.options.keywordEnabled", false);
user_pref("extensions.toolbar.mindspark._12Members_.options.tabEnabled", false);
user_pref("extensions.toolbar.mindspark._12Members_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark.lastInstalled", "myscrapnook@mindspark.com");
---- Lines babylon removed from prefs.js ----
user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
user_pref("extensions.BabylonToolbar_i.babExt", "");
user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110141");
user_pref("extensions.BabylonToolbar_i.hardId", "560d99b80000000000000022f7185b66");
user_pref("extensions.BabylonToolbar_i.id", "560d99b80000000000000022f7185b66");
user_pref("extensions.BabylonToolbar_i.instlDay", "15394");
user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1723:02:45");
---- Lines CommunityToolbar removed from prefs.js ----
user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Sat Mar 26 2011 18:54:31 GMT+0100 (Romance (standaardtijd))");
user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun May 01 2011 20:24:16 GMT+0200 (Romance (zomertijd))");
user_pref("CommunityToolbar.alert.locale", "en");
user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon May 09 2011 09:36:11 GMT+0200 (Romance (zomertijd))");
user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1303303927");
user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
user_pref("CommunityToolbar.alert.showTrayIcon", false);
user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
user_pref("CommunityToolbar.alert.userId", "029664dd-c2a0-4782-9b1d-0c208fc471a3");
user_pref("CommunityToolbar.EngineHiddenByUser", true);
user_pref("CommunityToolbar.EngineOwner", "CT2269050");
user_pref("CommunityToolbar.EngineOwnerGuid", "{872b5b88-9db5-4310-bdd0-ac189557e5f5}");
user_pref("CommunityToolbar.EngineOwnerToolbarId", "dvdvideosofttb");
---- Lines ffxtbr removed from prefs.js ----
user_pref("extensions.bootstrappedAddons", "{\"12ffxtbr@MyScrapNook_12.com\":{\"version\":\"2.73.0.64826\",\"type\":\"extension\",\"descriptor\":\"C:\
---- FireFox user.js and prefs.js backups ---- 

prefs_20141908_0946_.backup

ProfilePath: C:\Users\Mie\AppData\Roaming\Thunderbird\Profiles\tk24sty2.default

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20141908_0946_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\{24F2F424-12E1-423F-B3C1-417CE9E71C16} not found
C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found
C:\PROGRA~2\{429CAD59-35B1-4DBC-BB6D-1DB246563521} not found
C:\PROGRA~2\{755AC846-7372-4AC8-8550-C52491DAA8BD} not found
C:\PROGRA~2\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} not found
C:\PROGRA~2\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} not found
C:\PROGRA~2\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} not found
C:\Program Files\DealPlyLive deleted
C:\Program Files\IObit\LiveUpdate deleted
C:\Users\Mie\AppData\Roaming\Dealply deleted
C:\Users\Mie\AppData\Local\genienext deleted
C:\Program Files\TornTV.com deleted
C:\Users\Mie\daemonprocess.txt deleted
C:\Users\Mie\.android deleted
C:\Program Files\Conduit deleted
C:\Program Files\DealPly deleted
C:\Program Files\DAEMON Tools Toolbar deleted
C:\Program Files\MyPC Backup deleted
C:\Program Files\IB Updater deleted
C:\Program Files\Common Files\Spigot deleted
C:\user.js deleted
C:\Users\Mie\AppData\Roaming\temp.ini deleted
C:\Users\Mie\AppData\Roaming\newnext.me deleted
C:\Users\Mie\AppData\Roaming\DVDVideoSoftIEHelpers deleted
C:\Users\Mie\AppData\Roaming\Babylon deleted
C:\PROGRA~2\AVG Security Toolbar deleted
C:\PROGRA~2\boost_interprocess deleted
C:\PROGRA~2\DealPlyLive deleted
C:\PROGRA~2\ProductData deleted
C:\Users\Mie\AppData\Local\Ilivid Player deleted
C:\Users\Mie\AppData\Local\Slick Savings deleted
C:\Users\Mie\AppData\Local\avgchrome deleted
C:\Users\Mie\AppData\Local\DealPlyLive deleted
C:\Users\Mie\AppData\Local\Mobogenie deleted
C:\Users\Mie\AppData\Local\cache deleted
C:\Users\Mie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly deleted
C:\Windows\System32\Tasks\LaunchApp deleted
C:\Windows\Tasks\Dealply.job deleted
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job deleted
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job deleted
C:\Windows\System32\Tasks\Dealply deleted
C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineCore deleted
C:\Windows\System32\Tasks\DealPlyLiveUpdateTaskMachineUA deleted
C:\Users\Mie\Downloads\avg_free_stb_all_2014_4335_cnet.exe deleted
C:\Users\Mie\Searches deleted
C:\Users\Mie\Downloads\SoftonicDownloader_voor_advanced-systemcare.exe deleted
C:\Users\Mie\AppData\LocalLow\AVG Security Toolbar deleted
C:\Users\Mie\AppData\LocalLow\searchquband deleted
C:\Users\Mie\AppData\LocalLow\DataMngr deleted
C:\Users\Mie\AppData\LocalLow\Conduit deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\reimage.ini deleted
C:\Windows\WININIT.INI deleted
C:\Windows\system32\roboot.exe deleted
"C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\9dbyts7c.default\extensions\iobitapps@mybrowserbar.com" deleted
"C:\PROGRA~2\?3?30" not deleted
"C:\PROGRA~2\?3?30" not deleted
"C:\PROGRA~2\????0" not deleted
"C:\PROGRA~2\????0" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Mie\AppData\Local\Temp ====
2014-08-15 17:18:53	D11FB7A5078631BE2E183DC56FCD5375	43008	----a-w-	C:\Users\Mie\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprjf5wx.dll
====== Java Cache =====
====== C:\Windows\system32 =====
2014-08-14 12:55:57	A86F5EEC0ACEC16906532F2B1A7C00B6	8856	----a-w-	C:\Windows\System32\icardres.dll
2014-08-14 12:55:57	667A4DAAD3AA57B1051484BAC057CF7C	619664	----a-w-	C:\Windows\System32\icardagt.exe
2014-08-14 12:55:57	3662E6500C477AC0DFAECE4CF7B163B8	99480	----a-w-	C:\Windows\System32\infocardapi.dll
2014-08-14 12:55:54	E66A29C118DE2FE3E5766E5C7A2E8E2B	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2014-08-14 11:57:45	8FAD1550A16432D56CF6F40953797345	332800	----a-w-	C:\Windows\System32\msihnd.dll
2014-08-14 11:57:45	8F7D200717A58E9800D391F4C2101577	33280	----a-w-	C:\Windows\System32\appinfo.dll
2014-08-14 11:57:45	5E50B8E904FCB8DFC7C29BD3FEB7A593	82432	----a-w-	C:\Windows\System32\consent.exe
2014-08-14 11:57:45	1BD89641D9B1012796AFADAB9A659974	1993728	----a-w-	C:\Windows\System32\authui.dll
2014-08-14 11:57:45	11CFE871D27B4C3485E84BE9E48FFF5E	2263552	----a-w-	C:\Windows\System32\msi.dll
2014-08-14 11:57:09	31F57ACBE76A0E17976E18614DE58399	37376	----a-w-	C:\Windows\System32\cdd.dll
2014-08-14 11:56:40	7191E1CBF4A7A1C0EEC08DED6F6A18A3	2048	----a-w-	C:\Windows\System32\tzres.dll
2014-08-14 11:55:58	CD599FE695689CADD969134A6DFF536A	717824	----a-w-	C:\Windows\System32\jscript.dll
2014-08-14 11:55:58	9BC276FEBE9095BA13CB7FF9D86D35C8	176640	----a-w-	C:\Windows\System32\ieui.dll
2014-08-14 11:55:58	8A807EB890A68CB9664751D054283473	1810432	----a-w-	C:\Windows\System32\jscript9.dll
2014-08-14 11:55:58	526014FFF6F612D9D0E86C874E7B0C36	1129472	----a-w-	C:\Windows\System32\wininet.dll
2014-08-14 11:55:58	3100F61A0A7921EF93232DF79EB9665B	353792	----a-w-	C:\Windows\System32\dxtmsft.dll
2014-08-14 11:55:58	05B803F48B167FED703D968E41C8FF57	421376	----a-w-	C:\Windows\System32\vbscript.dll
2014-08-14 11:55:58	03BFA69E881E2A6B4555B156CCC89BE1	223232	----a-w-	C:\Windows\System32\dxtrans.dll
2014-08-14 11:55:58	02A1A3C2447C6C61C993CD0458CB9644	73216	----a-w-	C:\Windows\System32\mshtmled.dll
2014-08-14 11:55:56	601FCEB3AB6B81F48CCF1E22FFA5E6D4	12356608	----a-w-	C:\Windows\System32\mshtml.dll
2014-08-14 11:55:54	E1DACCBC452185F5F93246B6ABF61043	41472	----a-w-	C:\Windows\System32\msfeedsbs.dll
2014-08-14 11:55:54	98CAD7C19474E10C5E8B4F6D44284020	65536	----a-w-	C:\Windows\System32\jsproxy.dll
2014-08-14 11:55:54	831B93C9E1D4F14A14FBE37B433C5CE5	10752	----a-w-	C:\Windows\System32\msfeedssync.exe
2014-08-14 11:55:54	7F60324132E77497DB2CBEA7DAE47B11	1137664	----a-w-	C:\Windows\System32\urlmon.dll
2014-08-14 11:55:54	11F23B8F92E4A99F462C000F15F96CD9	11776	----a-w-	C:\Windows\System32\mshta.exe
2014-08-14 11:55:53	F2645503E6773B1D3E9224A192BB9557	1427968	----a-w-	C:\Windows\System32\inetcpl.cpl
2014-08-14 11:55:53	BAB1E65F3BB0EA5D388CF46C22231C04	2382848	----a-w-	C:\Windows\System32\mshtml.tlb
2014-08-14 11:55:53	B9F7ADFBF9373D4751193F507C187421	607744	----a-w-	C:\Windows\System32\msfeeds.dll
2014-08-14 11:55:52	F2CE7AFE641AF857B0EA0F22F93A5127	142848	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-08-14 11:55:52	C6B790771A2BBB4B964329936B22D8D4	9739264	----a-w-	C:\Windows\System32\ieframe.dll
2014-08-14 11:55:52	5E46C4016F81F1B16777787A5AAF1364	231936	----a-w-	C:\Windows\System32\url.dll
2014-08-14 11:55:52	1CBF77E333C1251DD3AF76FD9F67C5D1	1802240	----a-w-	C:\Windows\System32\iertutil.dll
2014-08-14 11:55:23	825EDAE0F2A55CD3578B0FF081595885	2054656	----a-w-	C:\Windows\System32\win32k.sys
2014-08-14 11:55:23	16386E2989663F325A6A89991DE5ADFB	297984	----a-w-	C:\Windows\System32\gdi32.dll
====== C:\Windows\system32\drivers =====
2014-08-14 11:57:09	5C2C209CDEFBC51D83D66E8A53B2BE89	638400	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-08-18 17:01:29	--------	d-----w-	C:\Program Files\trend micro
======= C: =====
====== C:\Users\Mie\AppData\Roaming ======
====== C:\Users\Mie ======
2014-08-18 17:01:00	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Mie\Downloads\RSIT.exe

====== C: exe-files ==
2014-08-18 17:01:29	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Mie.exe
2014-08-18 17:01:00	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Mie\Downloads\RSIT.exe
2014-08-14 12:55:57	667A4DAAD3AA57B1051484BAC057CF7C	619664	----a-w-	C:\Windows\System32\icardagt.exe
2014-08-14 12:55:54	E66A29C118DE2FE3E5766E5C7A2E8E2B	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2014-08-14 11:57:45	5E50B8E904FCB8DFC7C29BD3FEB7A593	82432	----a-w-	C:\Windows\System32\consent.exe
2014-08-14 11:56:40	3716C202039D542081CF1C14A7C767DC	19456	----a-w-	C:\Windows\servicing\GC32\tzupd.exe
2014-08-14 11:55:54	831B93C9E1D4F14A14FBE37B433C5CE5	10752	----a-w-	C:\Windows\System32\msfeedssync.exe
2014-08-14 11:55:54	24E81DD09DC95A57E540CBE0DB82F2DC	22528	----a-w-	C:\Program Files\Internet Explorer\ExtExport.exe
2014-08-14 11:55:54	11F23B8F92E4A99F462C000F15F96CD9	11776	----a-w-	C:\Windows\System32\mshta.exe
2014-08-14 11:55:53	6AECB1303D69A5B2098A07A2D3F87D40	223232	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-08-14 11:55:53	4284E58A38F0A0E69205B9122E15AED3	469504	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-08-14 11:55:52	F2CE7AFE641AF857B0EA0F22F93A5127	142848	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-08-14 11:55:52	76F9BA272D99BB7859695A4F9207178E	757976	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
=== C: other files ==
2014-08-14 11:57:09	5C2C209CDEFBC51D83D66E8A53B2BE89	638400	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2014-08-14 11:55:23	825EDAE0F2A55CD3578B0FF081595885	2054656	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"
"SightSpeed"="C:\Program Files\Dell Video Chat\DellVideoChat.exe -bootmode"

[HKEY_USERS\S-1-5-21-869013552-2816355230-3473748389-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe -update plugin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"Broadcom Wireless Manager UI"="C:\Windows\system32\WLTRAY.exe"
"Dell Webcam Central"="C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe /mode2"
"Dell DataSafe Online"="C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe /m"
"PCMService"="C:\Program Files\Dell\MediaDirect\PCMService.exe"
"dellsupportcenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe /P dellsupportcenter"
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
"BtTray"="C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"Reader Application Helper"="C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"
"SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"
"SightSpeed"="C:\Program Files\Dell Video Chat\DellVideoChat.exe -bootmode"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe -update plugin"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppleSyncNotifier]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AppleSyncNotifier"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleSyncNotifier.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Belgacom]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Belgacom"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Belgacom\\bin\\sprtcmd.exe\" /P Belgacom"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\Mie\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PHOTOfunSTUDIO -viewer-.lnk]
"item"="PHOTOfunSTUDIO -viewer-"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\PHOTOfunSTUDIO -viewer-.lnk"
"backup"="C:\\Windows\\pss\\PHOTOfunSTUDIO -viewer-.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\PANASO~1\\PHOTOF~1\\PHAUTO~1.EXE"


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"ArcSoft Connection Service"="C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACDaemon.exe"
"OPSE reminder"="\"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\EregEng\\Ereg.exe\" -r \"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\EregEng\\ereg.ini\""
"Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""
"Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"
"SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""


==== Startup Folders ======================

2009-02-18 14:33:21	1835	----a-w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
2009-02-18 14:33:21	1835	----a-w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
2012-05-21 08:16:20	951	----a-w-	C:\Users\Mie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2011-10-31 11:35:42	1117	----a-w-	C:\Users\Mie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk
2009-02-18 13:45:43	1929	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10/07/2014 07:28]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12/08/2010 21:43]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12/08/2010 21:43]
C:\Windows\tasks\User_Feed_Synchronization-{74EA09D2-090A-4CDF-9B8F-45ECE14CEECD}.job --ah----- C:\Windows\system32\msfeedssync.exe [24/07/2014 19:48]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\system32\tasks\ArcSoft Connect Daemon" [C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\system32\tasks\Launch BCM WLAN Tray" [C:\Windows\system32\WLTRAY.EXE]
"C:\Windows\system32\tasks\User_Feed_Synchronization-{74EA09D2-090A-4CDF-9B8F-45ECE14CEECD}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [27/06/2009 11:19]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\3v3g6snt.default-1403946652172
- Undetermined - C:\Program Files\IObit Apps Toolbar\FF

ProfilePath: C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\9dbyts7c.default
- Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\ascsurfingprotection@iobit.com

ProfilePath: C:\Users\Mie\AppData\Roaming\Thunderbird\Profiles\tk24sty2.default
- Provider for Google Calendar - %ProfilePath%\extensions\{a62ef8ec-5fdc-40c2-873c-223b8a6925cc}
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}

AppDir: C:\Program Files\Mozilla Firefox
- Undetermined - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Mie\AppData\Roaming\Mozilla\Firefox\Profiles\3v3g6snt.default-1403946652172
4390CCD3790F8D9C427C0C29590C62D7	- C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll -	Shockwave Flash
FB5621842FDABF9F8359775573498FBC	- C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll -	Google Update
893BF7D2261C56C24F813405D9D018E0	- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll -	Silverlight Plug-In
5596E40701BE8A4AEC399F57DBCE289E	- C:\Program Files\QuickTime\Plugins\npqtplugin5.dll -	QuickTime Plug-in 7.7.5
87FCE1D38F135B923EEC502825B5C7F6	- C:\Program Files\QuickTime\Plugins\npqtplugin4.dll -	QuickTime Plug-in 7.7.5
5A2AF08FEF626D3825AA7923B0A9DFF5	- C:\Program Files\QuickTime\Plugins\npqtplugin3.dll -	QuickTime Plug-in 7.7.5
B033D1486EAD65BE7857114DFAFD8429	- C:\Program Files\QuickTime\Plugins\npqtplugin2.dll -	QuickTime Plug-in 7.7.5
DA632EC5CCC16F0B0FAC9BB21C10B2C3	- C:\Program Files\QuickTime\Plugins\npqtplugin.dll -	QuickTime Plug-in 7.7.5
B5371D2C9017EEE216B5361D600B3543	- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll -	iTunes Application Detector
5B4DA1113F240C3F06FFF9D52761528B	- C:\Program Files\Google\Picasa3\npPicasa3.dll -	Picasa
AE84791D996D1F05A2446B0C447D937A	- C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll -	Adobe Acrobat
AE84791D996D1F05A2446B0C447D937A	- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll -	Adobe Acrobat
A847F61BACFA2C4E3E0B0F9431BB5245	- C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll -	Nokia Suite Enabler Plugin
AB87C54CA19675880B0CAE65B8AF140C	- C:\Windows\system32\npdeployJava1.dll -	Java Deployment Toolkit 7.0.70.11
93E0263E2A93C6C104FF98EA8DF194A7	- C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll -	Reader Application Detector
C517E5EA7CEE783F3681F62D2A362E5B	- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll -	Windows Live? Photo Gallery
96236A713111DD792EEEB324ED2B2F3C	- C:\Users\Mie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll -	Google Talk Plugin
C8A6ABE81E39AAE2FCCF18353C6A7A0E	- C:\Users\Mie\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll -	Google Talk Plugin Video Accelerator
24E990B1E6D55428001843CF7217DD81	- C:\Program Files\Microsoft\Office Live\npOLW.dll -	Microsoft Office Live Plug-in for Firefox / Microsoft Office Live Plug-in for Firefox
FB9CA6BF794D81F533B633F40D7E8EC1	- C:\Program Files\DNA\plugins\npbtdna.dll -	DNA Plug-in
BE6D9400D85BEEE528F8AD347741D083	- C:\Program Files\Kalydo\kalydoplayers\kalydoplugin2\npkalydo.dll -	Kalydo Player Plugin for Mozilla
8BA469072B5A692B659F856C7E97A230	- C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll -	NPCIG.dll
AB87EEFFD18F2BAAFC274E7075EA6C67	- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll -	Windows Presentation Foundation / Windows Presentation Foundation
8DA2ED6B04EA33F2EAE8BA883F903729	- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll -	Microsoft® Silverlight
DFCAB29E8FD38F95650CC1E203E8D318	- C:\Windows\system32\npmproxy.dll -	Microsoft® Windows® Operating System


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
hbcennhacfaagdopikcegfcobcadeocj - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx[]
icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files\Common Files\Spigot\GC\ErrorAssistant_1.3.crx[]
mhkaekfpcppmmioggniknbnbdbcigpkk - C:\Users\Mie\AppData\Local\Slick Savings\coupons.crx[]
mphpbdjcljebbcnfopfngmfdackbbdgf - C:\Program Files\DealPly\DealPly.crx[]
nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePluginFor6.crx[]
pfndaklgolladniicklehhancnlgocpp - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx[]

AVG Safe Search - Mie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Advanced SystemCare Surfing Protection - Mie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd
Widget context - Mie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombmmloebnfnpehgjnmkcgoegfachobp

==== Chromium Startpages ======================

C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Preferences
"Shockwave Flash","path":"C:\\Users\\Mie\\AppData\\Local\\Google\\Chrome\\Application\\16.0.912.75\\gcswf32.dll","version":"11,1,102,55"},{"enabled":true,"name":"Shockwave Flash","path":"C:\\Windows\\system32\\Macromed\\Flash\\NPSWF32.dll","version":"11,1,102,55"},{"enabled":true,"name":"Flash"},{"enabled":true,"name":"AVG Internet Security","path":"C:\\Users\\Mie\\AppData\\Local\\Google\\Chrome\\User Data\\Default\\Extensions\\jmfkcklnlgedgbglfkkgedjfmejoahla\\10.0.0.1409_0\\plugins/avgnpss.dll","version":"10.0.0.1409"},{"enabled":true,"name":"AVG Internet Security"},{"enabled":true,"name":"Adobe Acrobat","path":"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Browser\\nppdf32.dll","version":"9.5.0.270"},{"enabled":false,"name":"Adobe Acrobat"},{"enabled":true,"name":"Java Deployment Toolkit 6.0.290.11","path":"C:\\Program Files\\Java\\jre6\\bin\\new_plugin\\npdeployJava1.dll","version":"6.0.290.11"},{"enabled":true,"name":"Java(TM) Platform SE 6 U29","path":"C:\\Program Files\\Java\\jre6\\bin\\new_plugin\\npjp2.dll","version":"6.0.290.11"},{"enabled":true,"name":"Java"},{"enabled":true,"name":"MicrosoftÂ® Windows Media Player Firefox Plugin","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\np-mswmp.dll","version":"1.0.0.8"},{"enabled":true,"name":"Windows Media Player"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin2.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin3.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin4.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin5.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin6.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime Plug-in 7.7.1","path":"C:\\Program Files\\Mozilla Firefox\\plugins\\npqtplugin7.dll","version":"7.7.1 (1680.42)"},{"enabled":true,"name":"QuickTime"},{"enabled":true,"name":"Google Talk Plugin","path":"C:\\Users\\Mie\\AppData\\Roaming\\Mozilla\\plugins\\npgoogletalk.dll","version":"2.5.6.4871"},{"enabled":true,"name":"Google Talk Plugin Video Accelerator","path":"C:\\Users\\Mie\\AppData\\Roaming\\Mozilla\\plugins\\npgtpo3dautoplugin.dll","version":"0,1,44,14"},{"enabled":true,"name":"Google Talk Plugin"},{"enabled":true,"name":"DNA Plug-in","path":"C:\\Program Files\\DNA\\plugins\\npbtdna.dll","version":"1,0,0,1"},{"enabled":true,"name":"DNA Plug-in"},{"enabled":true,"name":"Google Earth Plugin","path":"C:\\Program Files\\Google\\Google Earth\\plugin\\npgeplugin.dll","version":"6.1.0.5001"},{"enabled":true,"name":"Google Earth Plugin"},{"enabled":true,"name":"Picasa","path":"C:\\Program Files\\Google\\Picasa3\\npPicasa3.dll","version":"3, 1, 0, 0"},{"enabled":true,"name":"Picasa"},{"enabled":true,"name":"Google Update","path":"C:\\Program Files\\Google\\Update\\1.3.21.79\\npGoogleUpdate3.dll","version":"1.3.21.79"},{"enabled":true,"name":"Google Update"},{"enabled":true,"name":"Kalydo Player Plugin for Mozilla","path":"C:\\Program Files\\Kalydo\\kalydoplayers\\kalydoplugin2\\npkalydo.dll","version":"2, 02, 06, 4"},{"enabled":true,"name":"Kalydo Player Plugin for Mozilla"},{"enabled":true,"name":"Microsoft Office Live Plug-in for Firefox","path":"C:\\Program Files\\Microsoft\\Office Live\\npOLW.dll","version":"2.0.4024.1"},{"enabled":true,"name":"Microsoft Office"},{"enabled":true,"name":"Windows LiveÂ™ Photo Gallery","path":"C:\\Program Files\\Windows Live\\Photo Gallery\\NPWLPG.dll","version":"15.4.3508.1109_ship.wlx.w4m4 (ship)"},{"enabled":true,"name":"Windows LiveÂ™ Photo Gallery"},{"enabled":true,"name":"iTunes Application Detector","path":"C:\\Program Files\\iTunes\\Mozilla Plugins\\npitunes.dll","version":"1.0.1.1"},{"enabled":true,"name":"iTunes Application Detector"},{"enabled":true,"name":"Silverlight Plug-In","path":"c:\\Program Files\\Microsoft Silverlight\\4.0.60831.0\\npctrl.dll","version":"4.0.60831.0"},{"enabled":true,"name":"Silverlight"},{"enabled":true,"name":"Windows Presentation Foundation","path":"c:\\Windows\\Microsoft.NET\\Framework\\v3.5\\Windows Presentation Foundation\\NPWPF.dll","version":"3.5.30729.1 built by: SP"},{"enabled":true,"name":"Windows Presentation Foundation"},{"enabled":true,"name":"Default Plug-in","path":"default_plugin","version":"1"},{"enabled":true,"name":"Default Plug-in"}]},"profile":{"content_settings":{"pattern_pairs":{"https://mail.google.com:443,*":{"notifications":1}},"pref_version":1},"exited_cleanly":true,"notification_allowed_sites":["https://mail.google.com/"]},"session":{"restore_on_startup":null,"urls_to_restore_on_startup":null},"spdy":{"servers":["calendar.google.com:443","chatenabled.mail.google.com:443","ssl.gstatic.com:443","accounts.youtube.com:443","accounts.google.com:443","mail-attachment.googleusercontent.com:443","plusone.google.com:443","gg.google.com:443","googleads.g.doubleclick.net:443","pagead2.googleadservices.com:443","www-gm-opensocial.googleusercontent.com:443","ssl.google-analytics.com:443","clients2.google.com:443","lh6.googleusercontent.com:443","mail.google.com:443","plus.google.com:443","s.ytimg.com:443","www.google.com:443"]},"sync_promo":{"show_on_first_run_allowed":false}}


==== Chrome Fix ======================

C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage deleted successfully
C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mphpbdjcljebbcnfopfngmfdackbbdgf_0.localstorage deleted successfully
C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd deleted successfully
C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombmmloebnfnpehgjnmkcgoegfachobp deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/?gws_rd=ssl"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{7EFF60D3-C3FC-4D87-90EE-404E680C1917}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7EFF60D3-C3FC-4D87-90EE-404E680C1917}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.be/?gws_rd=ssl"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{3F9C9E80-A5DD-4F36-BA7B-D68F56A8F1CB} Bing  Url="http://www.bing.com/search?q={searchTerms}&FORM=DLCDF7&pc=MDDC&src=IE-SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_nl"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dealply deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Mie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NP9WAVVC will be deleted at reboot
C:\Users\Mie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Mie\AppData\Local\Mozilla\Firefox\Profiles\3v3g6snt.default-1403946652172\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Mie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1773 folders=1386 117468651 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Mie\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Mie\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Mie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\PROGRA~2\?3?30"  not deleted
"C:\PROGRA~2\?3?30"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\PROGRA~2\????0"  not deleted
"C:\Users\Mie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NP9WAVVC" not found

==== EOF on di 19/08/2014 at 10:07:49,25 ======================