
Zoek.exe v5.0.0.0 Updated 24-09-2014
Tool run by aanvaarding on do 25-09-2014 at 22:51:20,99.
Microsoft® Windows Vista™ Home Premium  6.0.6000  x86
Running in: Normal Mode Internet Access Detected
Launched: c:\Users\aanvaarding\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

25-9-2014 22:55:18 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\MSXML 4.0
C:\Program Files\PC Speed Maximizer
C:\PROGRA~2\Oracle
C:\Users\aanvaarding\AppData\Roaming\Nico Mak Computing
C:\Users\aanvaarding\AppData\Local\TomTom

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{c95a4e8e-816d-4655-8c79-d736da1adb6d} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files\FreeFileViewer deleted
C:\Program Files\FLVM Player deleted
C:\Program Files\PC Speed Maximizer deleted
C:\Program Files\jZip deleted
C:\Program Files\File Type Assistant deleted
C:\Program Files\Hotspot Shield deleted
C:\user.js deleted
C:\found.000 deleted
C:\found.001 deleted
C:\found.002 deleted
C:\found.003 deleted
C:\found.004 deleted
C:\Users\aanvaarding\AppData\Roaming\rightbackup deleted
C:\Users\aanvaarding\AppData\Roaming\Smiley.ico deleted
C:\Users\aanvaarding\AppData\Roaming\sweet-page deleted
C:\Users\aanvaarding\AppData\Roaming\ParetoLogic deleted
C:\Users\aanvaarding\AppData\Roaming\DriverCure deleted
C:\Users\aanvaarding\AppData\Roaming\BabSolution deleted
C:\Users\aanvaarding\AppData\Roaming\systweak deleted
C:\PROGRA~2\Systweak deleted
C:\PROGRA~2\Avg_Update_0914avt deleted
C:\PROGRA~2\ParetoLogic deleted
C:\Users\aanvaarding\AppData\Local\FileTypeAssistant deleted
C:\Users\aanvaarding\AppData\Local\avgchrome deleted
C:\Windows\system32\config\systemprofile\AppData\Local\ICSharpCode.net deleted
C:\Users\aanvaarding\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLVM Player deleted
C:\Users\aanvaarding\Downloads\SoftonicDownloader_voor_regclean-pro (1).exe deleted
C:\Users\aanvaarding\Downloads\SoftonicDownloader_voor_regclean-pro.exe deleted
C:\Users\aanvaarding\Downloads\SoftonicDownloader_voor_utorrent.exe deleted
C:\Windows\tasks\FreeFileViewerUpdateChecker.job deleted
C:\Windows\system32\tasks\FreeFileViewerUpdateChecker deleted
C:\Windows\Tasks\LaunchSignup.job deleted
C:\end deleted
C:\Windows\system32\roboot.exe deleted
C:\Windows\System32\searchplugins deleted
C:\Windows\System32\Extensions deleted
C:\Users\aanvaarding\Documents\PC Speed Maximizer deleted
C:\Users\Public\Desktop\Emoticons for your messenger!.url deleted
C:\Users\aanvaarding\Desktop\FREE Games.url deleted
C:\Users\aanvaarding\Desktop\MySearchDial.url deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-09-23 10:50:55	357CEBBCD99C8928A2D1A61A6CACC168	43152	----a-w-	C:\Windows\avastSS.scr
2014-09-18 13:53:39	D41D8CD98F00B204E9800998ECF8427E	0	---hatw-	C:\Windows\wusa.lock
2014-09-18 13:13:45	436E92A7FBFFA7B11B8CB68278864CFA	65536	------w-	C:\Windows\SPInstall.etl
2014-09-14 10:43:30	E185BDA84E5F03F4E1D8DCA30E209277	1912	----a-w-	C:\Windows\epplauncher.mif
2014-09-11 13:41:22	90D54EE4FE1F8184CBB48C6CC9BAB1F6	1507328	----a-w-	C:\Windows\ocsetup_install_MicrosoftWindowsPowerShell.etl
2014-09-11 13:41:22	90277C8F9FA5B234AEE0F3AC45495E84	65536	----a-w-	C:\Windows\ocsetup_cbs_install_MicrosoftWindowsPowerShell.dpx
2014-09-11 13:41:22	344C82EA45ADCEB859419E4DA8730701	393216	----a-w-	C:\Windows\ocsetup_cbs_install_MicrosoftWindowsPowerShell.perf
====== C:\Users\AANVAA~1\AppData\Local\Temp ====
2014-09-25 20:46:45	4E566FEA83FCEEAF2873702806B55006	43008	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpeumckj.dll
2014-09-24 10:57:29	EB36D5C2A08B2DC74A70F27F7E329A92	11298816	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\SkypeSetup.exe
2014-09-23 18:20:50	B938B2CB65063687F2A1F3D768A1BE04	726152	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\ICReinstall_AdobeShockwavePlayerSetup-19816499.exe
2014-09-23 11:05:40	FB30DF52DBDF679405954BDB7892DA50	17328816	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\{BBB74875-424F-45E5-8EE4-D22A370D6C7D}\InstallFlashPlayer.exe
2014-09-23 10:04:54	3F4E4AD976A7AF2C353CBAEF1311DF66	24656704	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\is281105613\1184334_stp.EXE
2014-09-22 15:16:19	8945B2770B7986F4A44F5794453C5271	802376	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\ICReinstall_windows-vista_setup (1).exe
2014-09-22 15:15:31	CD5E46297DE66DFF69EDC00499068EA8	5601864	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\OnlineBackup.exe
2014-09-22 15:12:27	E02F396387F8AA59FA7CC942638D67EE	69056	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\7E82590C-48C6-48BD-9DBB-BDCC68C3CBB8[i]\BaofengUpdate.exe
2014-09-22 15:12:27	3A30D6A48390FA807156AA161F6A8189	108032	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\7E82590C-48C6-48BD-9DBB-BDCC68C3CBB8[i]\BFVUpdateM.dll
2014-09-22 15:12:27	1608D54DC69EA7E763CDAB78F71CAFD6	1856512	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\7E82590C-48C6-48BD-9DBB-BDCC68C3CBB8[i]\UninstallManager.exe
2014-09-22 15:12:16	04D02D6F85C6025B55F570746884922B	225280	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\7E82590C-48C6-48BD-9DBB-BDCC68C3CBB8[i]\DToolZip.exe
====== Java Cache =====
====== C:\Windows\system32 =====
2014-09-24 19:24:40	DA1919D896DBD5895E138932AE9E398B	293376	----a-w-	C:\Windows\System32\browserchoice.exe
2014-09-23 13:12:16	07EF2978A5BC36720378F95566697FD8	272808	----a-w-	C:\Windows\System32\javaws.exe
2014-09-23 13:11:59	49E203776C2ACB289385168A9058EE9E	96680	----a-w-	C:\Windows\System32\WindowsAccessBridge.dll
2014-09-23 13:11:59	3BDEB17FE6390BFF1BF3A2D964DE8E48	175528	----a-w-	C:\Windows\System32\javaw.exe
2014-09-23 13:11:59	11FD45A41DF45298686ED39062AABE2A	175528	----a-w-	C:\Windows\System32\java.exe
2014-09-23 10:50:57	588C2C48CB267E1C4B5A9EB5ACFF0116	276432	----a-w-	C:\Windows\System32\aswBoot.exe
====== C:\Windows\system32\drivers =====
2014-09-23 10:50:59	C3014C735F450FE822C97FFBB0627113	67824	----a-w-	C:\Windows\System32\drivers\aswMonFlt.sys
2014-09-23 10:50:59	B7750AF7EDFD95674EB7CA92BCDD3358	49944	----a-w-	C:\Windows\System32\drivers\aswRvrt.sys
2014-09-23 10:50:59	90BEE0170D70D6744CEF2355EEAF8086	192352	----a-w-	C:\Windows\System32\drivers\aswVmm.sys
2014-09-23 10:50:59	51FDE588D860857A97E4C4B560E40C9B	779536	----a-w-	C:\Windows\System32\drivers\aswSnx.sys
2014-09-23 10:50:59	26C51C289E39E8EE0F12B8B06B71E436	57800	----a-w-	C:\Windows\System32\drivers\aswTdi.sys
2014-09-23 10:50:59	1AEB8CDB797666AF709A291B47AE81E0	414520	----a-w-	C:\Windows\System32\drivers\aswsp.sys
2014-09-23 10:50:58	D6C9024F5D14843D33ADA8A6A10A1BE1	55112	----a-w-	C:\Windows\System32\drivers\aswRdr.sys
2014-09-23 10:50:58	3BFBB5DAE801CB893B8B46345FED6437	24184	----a-w-	C:\Windows\System32\drivers\aswHwid.sys
2014-09-11 16:47:48	99FD9C9ED9443EF17B17357117963D8A	18872	----a-w-	C:\Windows\System32\drivers\SPPD.sys
====== C:\Windows\Tasks ======
2014-09-23 11:12:20	1F2FD813DECEED932DEC63FCA375D1E4	3794	----a-w-	C:\Windows\system32\Tasks\Adobe Flash Player Updater
2014-09-23 11:12:19	2B964EACE54715ED8A69B3CA1A311EA5	940	----a-w-	C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-23 10:52:03	079B241DFA3A59CAE663F9551E00702F	4182	----a-w-	C:\Windows\system32\Tasks\avast! Emergency Update
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-09-25 19:08:19	--------	d-----w-	C:\Program Files\trend micro
2014-09-24 17:00:52	--------	d-----w-	C:\Program Files\Speccy
2014-09-23 18:22:58	--------	d-----w-	C:\Program Files\PennyBee
2014-09-23 11:15:47	--------	d-----w-	C:\Program Files\Dropbox
2014-09-23 10:06:13	--------	d-----w-	C:\Program Files\Mozilla Maintenance Service
2014-09-18 10:19:22	--------	d-----w-	C:\Program Files\Trusteer
======= C: =====
2014-09-22 21:13:09	D41D8CD98F00B204E9800998ECF8427E	0	--sha-r-	C:\MSDOS.SYS
2014-09-22 21:13:09	D41D8CD98F00B204E9800998ECF8427E	0	--sha-r-	C:\IO.SYS
2014-09-21 11:26:36	9EF23D59E678BF80B987BAD7D0EA01B7	1204	----a-w-	C:\AdwCleaner[R5].txt
2014-09-11 16:54:12	286C5A7D48F9FE6CB451EAF697675F08	8490	----a-w-	C:\AdwCleaner[S1].txt
2014-09-11 16:53:36	7C4FBF54E59CE388641A6A7B13513179	8238	----a-w-	C:\AdwCleaner[R4].txt
2014-09-11 16:52:04	FF80950D5623CDC40B6CCD2A828C2A30	7394	----a-w-	C:\AdwCleaner[R3].txt
2014-09-11 16:50:03	A7CCEF6FF0CA958AF0AC544073F38386	7888	----a-w-	C:\AdwCleaner[R2].txt
2014-09-11 16:49:30	434B3F5252738B680C1AFE0A9771785B	7828	----a-w-	C:\AdwCleaner[R1].txt
====== C:\Users\aanvaarding\AppData\Roaming ======
2014-09-24 18:37:20	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-09-24 17:01:07	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-09-23 18:23:14	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\0F1L1I1PtF1F1C1N
2014-09-23 11:15:05	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-23 11:13:24	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\Dropbox
2014-09-23 10:10:09	--------	d-----w-	C:\Users\aanvaarding\AppData\Local\Mozilla
2014-09-23 10:06:16	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\1H1Q
2014-09-23 07:05:43	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\Nico Mak Computing
2014-09-22 16:31:49	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG2015
2014-09-22 16:20:38	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\AVG2015
2014-09-22 16:20:21	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\TuneUp Software
2014-09-22 16:19:27	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Local\Avg2015
2014-09-22 16:16:51	--------	d-----w-	C:\Users\aanvaarding\AppData\Local\Avg2015
2014-09-18 10:19:46	--------	d-----w-	C:\Users\aanvaarding\AppData\Local\Trusteer
2014-09-11 16:01:19	--------	d-----w-	C:\Users\aanvaarding\AppData\Roaming\Geek Uninstaller
====== C:\Users\aanvaarding ======
2014-09-25 19:06:22	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\aanvaarding\Desktop\RSIT.exe
2014-09-24 17:00:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-09-24 16:53:49	6DC6EBDF9391271098C40F6BA7779430	4890736	----a-w-	C:\Users\aanvaarding\Downloads\spsetup126.exe
2014-09-24 11:17:58	8BCC4CC4A018ECEDAF937F0480AEBF36	6814104	----a-w-	C:\Users\aanvaarding\Downloads\RegCureProSetup.exe
2014-09-23 18:22:51	5943C25E20DFFC0801EE1E38DC9E3DDD	4991400	----a-w-	C:\Users\aanvaarding\Downloads\AdobeShockwavePlayerSetup.exe
2014-09-23 18:21:42	B938B2CB65063687F2A1F3D768A1BE04	726152	----a-w-	C:\Users\aanvaarding\Downloads\AdobeShockwavePlayerSetup-19816499(1).exe
2014-09-23 18:16:59	B938B2CB65063687F2A1F3D768A1BE04	726152	----a-w-	C:\Users\aanvaarding\Downloads\AdobeShockwavePlayerSetup-19816499.exe
2014-09-23 13:09:18	666308FEAADFE8621B7A378AB9D91E27	918440	----a-w-	C:\Users\aanvaarding\Downloads\jre-7u67-windows-i586-iftw.exe
2014-09-23 11:17:44	--------	d-----r-	C:\Users\aanvaarding\Dropbox
2014-09-23 10:52:20	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-23 10:45:22	4AF4D1D156DF61FC7364D1193862A068	4862664	----a-w-	C:\Users\aanvaarding\Downloads\avast_free_antivirus_setup_online.exe
2014-09-23 10:26:48	366E62D001AF0459F5CC310A004BEF6E	5124208	----a-w-	C:\Users\aanvaarding\Downloads\F-SecureOnlineScanner-HC(1).exe
2014-09-23 10:26:14	366E62D001AF0459F5CC310A004BEF6E	5124208	----a-w-	C:\Users\aanvaarding\Downloads\F-SecureOnlineScanner-HC.exe
2014-09-23 10:11:14	12A3CF2D7F10298EE151A01805726DAB	244216	----a-w-	C:\Users\aanvaarding\Downloads\Firefox Setup Stub 32.0.2.exe
2014-09-23 10:06:13	--------	d-----w-	C:\ProgramData\Mozilla
2014-09-22 21:16:55	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\aanvaarding\sfc
2014-09-22 16:19:46	--------	d-----w-	C:\ProgramData\AVG2015
2014-09-22 16:16:51	--------	d--h--w-	C:\ProgramData\Common Files
2014-09-18 10:36:27	C2F73154753A6D73B42BFA110D02EB41	436504	----a-w-	C:\Users\aanvaarding\Downloads\RapportSetup.exe
2014-09-18 10:19:34	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Eindpuntbeveiliging
2014-09-18 10:16:25	--------	d-----w-	C:\ProgramData\Trusteer
2014-09-18 10:15:41	DDBE690C8522F3477AF4DBF0A0989E3A	436504	----a-w-	C:\Users\aanvaarding\Downloads\RpprtSetup.exe
2014-09-13 17:41:50	A0844C730F1091B491A8737404F4C914	347816	----a-w-	C:\Users\aanvaarding\Downloads\MicrosoftFixit.wu.Run (1).exe
2014-09-13 17:38:31	72802027B2B20F4FBBCACA85979726B4	727848	----a-w-	C:\Users\aanvaarding\Downloads\AdobeReaderSetup-20582144.exe
2014-09-13 08:04:51	A0844C730F1091B491A8737404F4C914	347816	----a-w-	C:\Users\aanvaarding\Downloads\MicrosoftFixit.wu.Run.exe

====== C: exe-files ==
2014-09-24 09:59:26	0690569D744615717735BD2DB4175146	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$I5W7QAD.exe
2014-09-23 19:36:47	FCB3BB346D1C97A59AF92D66DCAD24B9	570743456	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$R5W7QAD.exe
2014-09-23 19:13:05	927BE95E691677324C59AA720230600E	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IONRTW8.exe
2014-09-23 19:12:57	A68DA2A39C72A567D7AA2EE28B6F7DC1	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IVNUDZR.exe
2014-09-23 19:12:27	5B7214766FE82A14359E95E3C6F547BE	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IAJLEAX.exe
2014-09-23 19:12:07	DB29DE33CC65005CA3899F12CB1D2C8D	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$I0KAUMN.exe
2014-09-23 19:11:59	950CD54E47926B20E311157F886D0822	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$I4S6DNH.exe
2014-09-23 19:11:47	C0CD8463567C66FF817083FEB49F9B8C	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$ITFNEYV.exe
2014-09-23 19:11:18	4F8A98B13B712D0AA822DB9A5939AF3F	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IRPC6XM.exe
2014-09-23 19:10:49	4549B214C60F8B9A7035A1372835C6BB	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$I8QSQSZ.exe
2014-09-23 19:10:28	ED6D252BC4A0F7C684CACFBE9BBF214C	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$I0REQQ0.exe
2014-09-23 19:09:21	9284B0520F8D015E0C5C7B05988F9E58	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IL7Z8VE.exe
2014-09-23 19:07:53	7114CDDEA2FB2306E7086E8491978798	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IDQ52PJ.exe
2014-09-23 19:07:46	63D24AE1DDB21C76D6529EB211AE61B4	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IJ1I1E3.exe
2014-09-23 19:05:52	439DA9FC31172F3FCC88C08A5AB19937	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IEK2W96.exe
2014-09-23 18:36:26	F597A25EA974B634EF4B94C61062BD28	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IWL686K.exe
2014-09-23 10:46:03	95FBC18A4F8DF604F6AB36E4AFEE4B80	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IXVZJFR.exe
2014-09-23 10:45:57	F568EA48375F3D832F80DCD54A8AD326	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$INYJZ17.exe
2014-09-22 15:43:26	7FFE531FC3065DE780E683F4197B5F67	4892480	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$RDQ52PJ.exe
2014-09-22 15:12:10	55AFD81E35A2A20EEB1A7F9B6EA7F15D	75792957	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$R8QSQSZ.exe
2014-09-22 15:08:45	8945B2770B7986F4A44F5794453C5271	802376	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$R0REQQ0.exe
2014-09-21 11:35:01	1E1BE7D6199E213C74C603E6F7EEA5DB	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$IH66840.exe
=== C: other files ==
2014-09-25 20:44:33	C6097142AE7C1D41FCA988782E7D6B72	84	---ha-w-	C:\Program Files\Common Files\X10\Common\x10prod.sys
2014-09-23 13:11:49	F3EABF8A2AF5C0D8BAE022EE6C17FD91	18650	----a-w-	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-09-22 21:13:09	D41D8CD98F00B204E9800998ECF8427E	0	--sha-r-	C:\MSDOS.SYS
2014-09-22 21:13:09	D41D8CD98F00B204E9800998ECF8427E	0	--sha-r-	C:\IO.SYS
2014-09-22 15:12:28	549B799D28C33D58BEFFEB3FC5E8590F	169568	----a-w-	C:\Users\aanvaarding\AppData\Local\Temp\7E82590C-48C6-48BD-9DBB-BDCC68C3CBB8[i]\lpd#4.3.0.xpi
2014-09-22 15:12:18	7E03D98F04DAEB8B758BC3038DC15C91	1820551	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1028727217-2216689975-1734619040-1000\$RJFGYZB\1[1].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-1028727217-2216689975-1734619040-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Badoo Desktop"="C:\ProgramData\Badoo\Badoo Desktop\1.6.48.1082\Badoo.Desktop.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="RtHDVCpl.exe"
"SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe"
"LaunchAp"="C:\Program Files\Launch Manager\LaunchAp.exe"
"HotkeyApp"="C:\Program Files\Launch Manager\HotkeyApp.exe"
"CtrlVol"="C:\Program Files\Launch Manager\CtrlVol.exe"
"LMgrOSD"="C:\Program Files\Launch Manager\OSD.exe"
"Wbutton"="C:\Program Files\Launch Manager\Wbutton.exe"
"OmniPass"="C:\Program Files\Softex\OmniPass\scureapp.exe"
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
"RemoteControl"="C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe"
"LanguageShortcut"="C:\Program Files\Home Cinema\PowerDVD\Language\Language.exe"
"snp2uvc"="C:\Windows\vsnp2uvc.exe"
"PLFSetL"="C:\Windows\PLFSetL.exe"
"toolbar_eula_launcher"="C:\Program Files\GoogleEULA\EULALauncher.exe"
"tsnp2std"="C:\Windows\tsnp2std.exe"
"snp2std"="C:\Windows\vsnp2std.exe"
"SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot"
"PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
"IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
"PPort11reminder"="C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe -r C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
"WinampAgent"="C:\Program Files\Winamp\winampa.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Badoo Desktop"="C:\ProgramData\Badoo\Badoo Desktop\1.6.48.1082\Badoo.Desktop.exe"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

==== Startup Folders ======================

2014-09-23 11:17:38	961	----a-w-	C:\Users\aanvaarding\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [23-09-2014 14:58]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29-05-2011 15:57]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29-05-2011 15:57]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028727217-2216689975-1734619040-1000Core.job --a------ C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe [21-10-2011 21:30]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028727217-2216689975-1734619040-1000UA.job --a------ C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe [21-10-2011 21:30]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1028727217-2216689975-1734619040-1000Core" [C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1028727217-2216689975-1734619040-1000UA" [C:\Users\aanvaarding\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\ProgramUpdateCheck" [C:\Program Files\File Type Assistant\TSAssist.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [23-09-2014 12:50]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\aanvaarding\AppData\Roaming\Mozilla\Firefox\Profiles\4630s836.default
14D06C3796CE3F6BA8F43CDF3AD65D76	- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll -	Java(TM) Platform SE 7 U67
0A6E5E3BEF374AA2F47071E7374EAD7B	- C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll -	Java Deployment Toolkit 7.0.670.1
DFC9460CC37E5C414DC4680B10C19E7A	- C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll -	Shockwave Flash
DCB0BCEF594E2C410793C4A823C318F3	- C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll -	Shockwave for Director / Shockwave for Director
FB5621842FDABF9F8359775573498FBC	- C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll -	Google Update
FB5621842FDABF9F8359775573498FBC	- C:\Users\aanvaarding\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll -	Google Update
1C8124B6A03A620EB0CBCA615666D2AE	- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll -	Windows Live® Photo Gallery
04AF8BC83A89D9B71F7E0BCAF9FDD768	- C:\Program Files\Adobe\Reader 8.0\Reader\browser\nppdf32.dll -	Adobe Acrobat


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ehjldlodmkdlooagebfnaghgmkfccipn - No path found[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[23-09-2014 12:50]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ehjldlodmkdlooagebfnaghgmkfccipn - No path found[]

Google Wallet - aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Fix ======================

C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.wajam.com_0.localstorage deleted successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.wajam.com_0.localstorage-journal deleted successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www2.delta-search.com_0.localstorage deleted successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www2.delta-search.com_0.localstorage-journal deleted successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage deleted successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ehjldlodmkdlooagebfnaghgmkfccipn_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=AV01"
"Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.msn.com/?pc=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MEDA_nlNL433"
{A25AC313-DD19-4238-ACA2-401D6BEE4321} Lasaoren  Url="http://Lasaoren.com/results.php?f=4&q={searchTerms}&a=lrn_file_14_39_ff&cd=2XzuyEtN2Y1L1QzutDtDtC0ByByB0BtA0F0AtAyCzyzzzz0EtN0D0Tzu0SzyzyyBtN1L2XzutAtFtBtFyEtFtBtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyD0ByE0EyC0FyCtCtGzz0AtD0CtGzytAyB0CtG0CtD0EzytGtCtByE0D0B0Azz0FzzzzyC0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0FyB0FtD0FtBtDyCtGzzzy0AtDtGyEtAyC0CtGzztCzzyBtGyBtCzy0AzyyEtB0B0F0DtDyD2Q&cr=373480975&ir="

==== Reset Google Chrome ======================

C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ehjldlodmkdlooagebfnaghgmkfccipn deleted successfully

==== Empty IE Cache ======================

C:\Users\aanvaarding\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\aanvaarding\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\aanvaarding\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\aanvaarding\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\aanvaarding\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\aanvaarding\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=156 folders=56 264545352 bytes)

==== Empty Temp Folders ======================

C:\Users\aanvaarding\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\AANVAA~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\aanvaarding\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on vr 26-09-2014 at  0:18:54,80 ======================