
Zoek.exe v5.0.0.0 Updated 14-10-2014
Tool run by Juno on wo 15-10-2014 at 14:20:43,28.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Juno\Desktop\zoek.exe [Scan all users]  [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-10-15-091922.log	14529 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\GUT1453.tmp deleted
C:\PROGRA~2\GUM1452.tmp deleted
C:\user.js deleted
C:\install.exe deleted
C:\found.000 deleted
C:\Users\Juno\AppData\Roaming\BitLord deleted
C:\windows\sysWoW64\config\systemprofile\AppData\Roaming\Systweak deleted
C:\Users\Juno\AppData\Local\Installer deleted
C:\Users\Juno\AppData\Local\CrashRpt deleted
C:\Users\Juno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord deleted
C:\Users\Public\Documents\GOOBZO deleted
C:\Users\Public\Documents\YTAHelper deleted
C:\Users\Juno\AppData\LocalLow\boost_interprocess deleted
C:\windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Nation toolbar deleted
C:\windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Juno\Documents\BitLord deleted
"C:\ProgramData\Bundle" deleted
"C:\ProgramData\CMMs" deleted
"C:\PROGRA~2\BitLord 2" deleted

==== Files Recently Created / Modified ======================

====== C:\windows ====
====== C:\Users\Juno\AppData\Local\Temp ====
====== Java Cache =====
2014-10-01 18:49:03	C10578796FBC6AF189E4A8DDAE31927E	38	----a-w-	C:\Users\Juno\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\6a881401-cbc21114a1adac043acf484a21044c648eaf89200a45279f854f3eecf7b12e98-6.0.lap
2014-10-01 18:49:07	215F50F8CB678DFA9E837E14B1D637F6	9328	----a-w-	C:\Users\Juno\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\3f6d61c9-2511ad16
====== C:\windows\SysWOW64 =====
2014-10-06 17:55:32	EC6626695C7B02FEB4D528D27F48DE93	321536	----a-w-	C:\windows\SysWOW64\CNC_BUL.dll
2014-10-06 17:55:32	D16CF34B17899F90A8FCF2A3F77B4A27	15872	----a-w-	C:\windows\SysWOW64\CNHMCA.dll
2014-10-06 17:55:32	CFE8B2CB0511F65137FC6ED1C2749D50	95744	----a-w-	C:\windows\SysWOW64\CNC1771D.TBL
2014-10-06 17:54:52	6975FBEBF9EA81617D289A375C8A768C	366592	----a-w-	C:\windows\SysWOW64\CNMNPPM.DLL
====== C:\windows\SysWOW64\drivers =====
====== C:\windows\Sysnative =====
2014-10-15 12:13:57	C7109C6F290D24B13B3D6378665B0858	464544	----a-w-	C:\windows\Sysnative\FNTCACHE.DAT
2014-10-06 17:54:53	9C821D94738FF35B0B324E710B360702	39424	----a-w-	C:\windows\Sysnative\CNMN6UI.DLL
2014-10-06 17:54:53	98DC5275FAC302FA8CE49194908AF3D5	359936	----a-w-	C:\windows\Sysnative\CNMN6PPM.DLL
2014-10-06 17:46:42	12CB1C602CC94E771E9B4F41F07D1E23	391168	----a-w-	C:\windows\Sysnative\CNMLMBU.DLL
====== C:\windows\Sysnative\drivers =====
====== C:\windows\Tasks ======
2014-10-13 19:00:55	5B87E9706A39A0BEA51BC0760361998B	3112	----a-w-	C:\windows\Sysnative\Tasks\{184E9582-FCF2-4E48-B43F-3295A22EEB33}
====== C:\windows\Temp ======
======= C:\Program Files =====
2014-10-14 17:52:50	--------	d-----w-	C:\Program Files\trend micro
2014-10-10 16:01:28	--------	d-----w-	C:\Program Files\Vuze
2014-10-06 17:48:13	--------	d-----w-	C:\Program Files\Canon
2014-10-06 17:46:27	--------	d--h--w-	C:\Program Files\CanonBJ
======= C:\PROGRA~2 =====
2014-10-14 11:50:12	--------	d-----w-	C:\PROGRA~2\Trend Micro
2014-10-06 17:24:22	--------	d-----w-	C:\PROGRA~2\Canon
======= C: =====
====== C:\Users\Juno\AppData\Roaming ======
2014-10-14 17:51:47	CE8EC5682C16CBDE6E455FF4CA07E9D7	126928	----a-w-	C:\Users\Juno\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-10 16:01:31	--------	d-----w-	C:\Users\Juno\AppData\Roaming\Azureus
2014-10-06 18:08:31	--------	d-----w-	C:\Users\Juno\AppData\Roaming\Canon
2014-10-06 17:54:21	--------	d-----w-	C:\Users\Juno\AppData\Locallow\Canon Easy-WebPrint EX2
2014-10-06 17:54:21	--------	d-----w-	C:\Users\Juno\AppData\Locallow\Canon Easy-WebPrint EX
2014-09-19 18:28:37	--------	d-----w-	C:\Users\Juno\AppData\Locallow\Temp
====== C:\Users\Juno ======
2014-10-07 17:59:45	--------	d--h--w-	C:\ProgramData\CanonIJMIG
2014-10-06 18:08:28	--------	d--h--w-	C:\ProgramData\CanonIJQuickMenu
2014-10-06 17:54:38	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG5500 series
2014-10-06 17:53:03	--------	d-----w-	C:\ProgramData\CanonIJWSpt
2014-10-06 17:48:25	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-10-06 17:47:51	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Manual
2014-10-06 17:47:23	--------	d--h--w-	C:\ProgramData\CanonBJ
2014-10-06 17:26:11	--------	d-----w-	C:\ProgramData\CanonIJPLM
2014-10-06 17:25:20	--------	d--h--w-	C:\ProgramData\CanonIJETV

====== C: exe-files ==
2014-10-14 17:54:15	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Juno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JDMXPZ15\RSITx64.exe
2014-10-14 17:52:51	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Juno.exe
2014-10-10 19:20:47	B7B6675AD10E1F1392385912FCE338A4	4177856	----a-w-	C:\Users\Juno\AppData\Roaming\Azureus\plugins\azemp\vuzeplayer.exe
2014-10-10 16:01:43	EDEA9E5DE90F759A9CF0ED20180E598E	263712	----a-w-	C:\Program Files\Vuze\uninstall.exe
2014-10-10 16:01:43	DE395ADB369470A953A11B8C300697E2	35680	----a-w-	C:\Program Files\Vuze\.install4j\i4jdel.exe
2014-10-10 16:01:32	36E7D0C8E816C56EBDE243BD3B0B7B93	1144648	----a-w-	C:\Users\Juno\AppData\Roaming\Azureus\plugins\aznettor\AzureusTor.exe
2014-10-10 16:01:32	10B8FD725D073FFE3A035F4BD0B5B2D1	44544	----a-w-	C:\Program Files\Vuze\VuzeFW.exe
2014-10-10 16:01:29	46D6086ABB491D47B7F98FDAB813BB0D	346424	----a-w-	C:\Program Files\Vuze\Azureus.exe
2014-10-10 16:01:29	28411E314E483B269E5A56D3A370C71D	346424	----a-w-	C:\Program Files\Vuze\AzureusUpdater.exe
=== C: other files ==
2014-10-10 19:20:47	807C444F935928130DCD1CFFD12E5BA2	4568458	----a-w-	C:\Users\Juno\AppData\Roaming\Azureus\plugins\azemp\azemp_3.4.2.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3181115168-257255824-3296004360-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe /mode2"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"RoxWatchTray"="c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
"Desktop Disc Tool"="c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
"Dell DataSafe Online"="C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon"
"IJNetworkScannerSelectorEX"="C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE"
"AccuWeatherWidget"=""C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"B Register C:\Program Files (x86)\DivX\DivX Plus Player\DSEPlugins\Direct3DVideoOutput.dll"="C:\windows\system32\rundll32.exe C:\Program Files (x86)\DivX\DivX Plus Player\DSEPlugins\Direct3DVideoOutput.dll,DllRegisterServer"
"B Register C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll"="C:\windows\system32\rundll32.exe C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll,DllRegisterServer"
"B Register C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll"="C:\windows\system32\rundll32.exe C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll,DllRegisterServer"
"B Register C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll"="C:\windows\system32\rundll32.exe C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll,DllRegisterServer"
"B Register C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll"="C:\windows\system32\rundll32.exe C:\Program Files (x86)\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll,DllRegisterServer"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"QuickSet"="C:\Program Files\Dell\QuickSet\QuickSet.exe"
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"
"DellStage"=""C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"Adobe Reader Speed Launcher"="\"C:\\Program Files (x86)\\Adobe\\Reader 10.0\\Reader\\Reader_sl.exe\""
"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"DivXUpdate"="\"C:\\Program Files (x86)\\DivX\\DivX Update\\DivXUpdate.exe\" /CHECKNOW"
"QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"


==== Startup Folders ======================

2012-06-16 13:35:19	2091	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PHOTOfunSTUDIO -viewer-.lnk

==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 21:47]
C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 21:47]

==== Other Scheduled Tasks ======================

"C:\windows\SysNative\tasks\0" [c:\program files\internet explorer\iexplore.exe]
"C:\windows\SysNative\tasks\4593" [wscript.exe C:\Users\Juno\AppData\Local\Temp\launchie.vbs //B]
"C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\windows\SysNative\tasks\Divx-online actualiseringsprogramma" [C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe]
"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [19-08-2014 20:25]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[19-08-2014 20:25]
nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12-12-2011 15:13]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_nlNL464"
{EEE44704-33F2-445D-8D84-132A248333DE} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juno\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1533 folders=296 102322575 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Juno\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Juno\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on wo 15-10-2014 at 14:48:30,93 ======================