
Zoek.exe v5.0.0.0 Updated 14-December-2014
Tool run by mama-nanda on ma 15-12-2014 at 20:11:57,03.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\mama-nanda\Downloads\zoek (1).exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-12-15-175728.log	817 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.10 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.10 deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 
"vProt"=- 

==== Deleting Files \ Folders ======================

C:\Users\mama-nanda\AppData\Local\AVG Web TuneUp deleted
C:\PROGRA~2\AVG Web TuneUp deleted
C:\PROGRA~2\Avg_Update_1214tb deleted
C:\PROGRA~2\AVG Security Toolbar deleted
C:\PROGRA~2\AVG Secure Search deleted
C:\Users\mama-nanda\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\system32\config\systemprofile\Searches deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp\vprot.exe" deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp\vprot.exe" deleted
"C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\18.1.10\avgdttbx.dll" deleted
"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.10\log4cplusU.dll" deleted
"C:\Program Files\AVG Web TuneUp" not deleted
"C:\Program Files\AVG Web TuneUp" not deleted
"C:\Program Files\Common Files\AVG Secure Search" deleted
"C:\Program Files\Common Files\AVG Secure Search\DNTInstaller" deleted
"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted
"C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\18.1.10" deleted
"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.10" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\MAMA-N~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\system32 =====
2014-12-10 22:39:52	FF0A6E76FAE624AC74780AB008752F98	3209728	----a-w-	C:\Windows\System32\mf.dll
2014-12-10 22:39:52	D17954CA6343F43B62637F51996B4E95	23040	----a-w-	C:\Windows\System32\mfpmp.exe
2014-12-10 22:39:52	60FBCF033FF42A40C916C01A962A8802	50176	----a-w-	C:\Windows\System32\rrinstaller.exe
2014-12-10 22:39:52	52096F5F476733F2E2725CF346FF373B	2048	----a-w-	C:\Windows\System32\mferror.dll
2014-12-10 22:39:52	20257A0BFB824B49055A6EEC29C72C03	103424	----a-w-	C:\Windows\System32\mfps.dll
2014-12-10 13:01:36	E1456E7396022EBE4E5434188D1AC8B0	1230336	----a-w-	C:\Windows\System32\WindowsCodecs.dll
2014-12-10 13:01:34	8EBAD3A01A65D3580F3F8B9C9F608BDC	1160872	----a-w-	C:\Windows\System32\aitstatic.exe
2014-12-10 13:01:33	FC455888F04CD3B5285168DEFB90C55F	159744	----a-w-	C:\Windows\System32\aepic.dll
2014-12-10 13:01:33	E5C2BF29D0FEC787DA91D29787CDB192	873984	----a-w-	C:\Windows\System32\aeinv.dll
2014-12-10 13:01:33	DEB2A13BDCD5939413840AF81CB91BFA	728576	----a-w-	C:\Windows\System32\appraiser.dll
2014-12-10 13:01:33	46ED960D3A6FFF26F73AFAAAD7451B92	610304	----a-w-	C:\Windows\System32\invagent.dll
2014-12-10 13:01:32	DAC0DB8F0F6E6AF26BEBF0538B1BFCB0	315392	----a-w-	C:\Windows\System32\devinv.dll
2014-12-10 13:01:32	8CFB82DF99F9555AF4E4FF33F56A7759	337920	----a-w-	C:\Windows\System32\generaltel.dll
2014-12-10 13:01:31	F25EC3FC42D2689301B1351E7FB6B537	202752	----a-w-	C:\Windows\System32\aepdu.dll
2014-12-10 13:01:20	FE7875DC6ED353C42D9771458351E893	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-12-10 13:01:20	2EADED07BDA52C1FC5A6D4E1CC5858F0	47616	----a-w-	C:\Windows\System32\ieetwproxystub.dll
2014-12-10 13:01:20	2ABC5587D582ACCEA30B4CF968C2A4A5	60416	----a-w-	C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-12-10 13:01:19	EC5A3E4E21079B9D423AA0760828D678	620032	----a-w-	C:\Windows\System32\jscript9diag.dll
2014-12-10 13:01:19	D90585C3BE942DAAFBDC868FDC061844	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-12-10 13:01:19	759E2FAD5371512C6679FA346719493E	47104	----a-w-	C:\Windows\System32\jsproxy.dll
2014-12-10 13:01:19	24A091B9A97E9B323B6CE8278B547B20	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2014-12-10 13:01:18	BA6D49B511A38D9082BE885A05024CC2	4096	----a-w-	C:\Windows\System32\ieetwcollectorres.dll
2014-12-10 13:01:18	5E4E0E43E0A5BF9F089696DFA7A3D677	1888256	----a-w-	C:\Windows\System32\wininet.dll
2014-12-10 13:01:18	37F078B5B435AFC6BF316F2AD14B469A	501248	----a-w-	C:\Windows\System32\vbscript.dll
2014-12-10 13:01:18	35BD045804B67E78F4CAB72CB820AF7F	418304	----a-w-	C:\Windows\System32\dxtmsft.dll
2014-12-10 13:01:17	69AC6FD5B0B4DC963723E1EBDEE10A2C	285696	----a-w-	C:\Windows\System32\dxtrans.dll
2014-12-10 13:01:16	F25284C763E728E4DAC248C211D1FC5B	76288	----a-w-	C:\Windows\System32\mshtmled.dll
2014-12-10 13:01:16	CF9D05678B02B44FBC8D8AD8C9F30D58	478208	----a-w-	C:\Windows\System32\ieui.dll
2014-12-10 13:01:15	2E9E105037AC1274656C3D1125323352	1155072	----a-w-	C:\Windows\System32\mshtmlmedia.dll
2014-12-10 13:01:14	29CED1A4777A43526A4ED8A7B6936883	64000	----a-w-	C:\Windows\System32\MshtmlDac.dll
2014-12-10 13:01:14	01777AB557997E98691E322225314E57	2277888	----a-w-	C:\Windows\System32\iertutil.dll
2014-12-10 13:01:13	F728E7E9937117E0F32F39840EB6D737	4299264	----a-w-	C:\Windows\System32\jscript9.dll
2014-12-10 13:01:12	220505B0B3E96C857DD01729AF0CD369	19749376	----a-w-	C:\Windows\System32\mshtml.dll
2014-12-10 13:01:10	BB25F69463AD8E7E51B5D9D158B5F8DF	30720	----a-w-	C:\Windows\System32\iernonce.dll
2014-12-10 13:01:10	3F9906067851CE792303E0E64A8381E6	684544	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-12-10 13:01:09	F98B3860BB47089EA8C1504F043E90E9	342200	----a-w-	C:\Windows\System32\iedkcs32.dll
2014-12-10 13:01:09	F34F6DC38A21FCDBB50CDD1EE97B1EA3	1307136	----a-w-	C:\Windows\System32\urlmon.dll
2014-12-10 13:01:08	DEB9476A3CD1A5819DD4504BB7C6BA66	2724864	----a-w-	C:\Windows\System32\mshtml.tlb
2014-12-10 13:01:08	D7A98A4CEA2E89F544065A00BF37FC10	688640	----a-w-	C:\Windows\System32\msfeeds.dll
2014-12-10 13:01:08	41AFA61E061E98E97272AC02184C8C2C	710144	----a-w-	C:\Windows\System32\ieapfltr.dll
2014-12-10 13:01:05	F0BCBD8FCDA145EED53ED66C45CC378B	62464	----a-w-	C:\Windows\System32\iesetup.dll
2014-12-10 13:01:05	B59E370277EDB6643083B62297175628	12836864	----a-w-	C:\Windows\System32\ieframe.dll
2014-12-10 13:01:05	930F63D6BC43D4BCD937DFCECDA95F82	168960	----a-w-	C:\Windows\System32\msrating.dll
2014-12-10 13:01:05	543ADCEA31CF9C2B4EEB900D4AAFD0F9	2052096	----a-w-	C:\Windows\System32\inetcpl.cpl
2014-12-10 13:00:46	9EA3783672D21817B9DF1061B54C3B3C	155136	----a-w-	C:\Windows\System32\charmap.exe
2014-12-10 13:00:17	50C73E54062BA252350F3F29580E28DA	2048	----a-w-	C:\Windows\System32\tzres.dll
2014-12-10 12:59:14	1DE9BD23AFA36150586C732D876D9B74	1177088	----a-w-	C:\Windows\System32\WsmSvc.dll
2014-12-10 12:59:13	B975C202F590BBC5AA63225FBD148791	198656	----a-w-	C:\Windows\System32\WSManHTTPConfig.exe
2014-12-10 12:59:13	B6AC69FFBAA159DD5CEED814245A286D	214016	----a-w-	C:\Windows\System32\WsmWmiPl.dll
2014-12-10 12:59:13	5D9A1A3E5824CECE65871C60E5A08A1A	145920	----a-w-	C:\Windows\System32\WsmAuto.dll
2014-12-10 12:59:13	2C28FEC61C4AC68480A99CB7AA197FA9	248832	----a-w-	C:\Windows\System32\WSManMigrationPlugin.dll
====== C:\Windows\system32\drivers =====
2014-12-10 13:01:38	7FE680A3DFA421C4A8E4879AE4C5AAB0	74752	----a-w-	C:\Windows\System32\drivers\tdx.sys
2014-11-20 23:29:58	BA09C786F9ADE5FA9F49A6269D24351D	208888	----a-w-	C:\Windows\System32\drivers\RapportKELL.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C: =====
====== C:\Users\mama-nanda\AppData\Roaming ======
2014-11-17 22:12:00	--------	d-sh--w-	C:\Users\mama-nanda\AppData\Local\EmieBrowserModeList
2014-11-17 22:11:35	--------	d-sh--w-	C:\Users\mama-nanda\AppData\Locallow\EmieBrowserModeList
====== C:\Users\mama-nanda ======
2014-12-15 13:26:22	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\mama-nanda\Downloads\RSIT (1).exe
2014-12-15 13:03:18	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\mama-nanda\Downloads\RSIT.exe

====== C: exe-files ==
2014-12-15 13:26:22	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\mama-nanda\Downloads\RSIT (1).exe
2014-12-15 13:03:18	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\mama-nanda\Downloads\RSIT.exe
2014-12-11 19:41:08	D3AC8B90796EE8EF3B91465664F634A6	7141064	----a-w-	C:\Program Files\AVG\AVG2015\Notification\Launcher.exe
2014-12-10 22:39:52	D17954CA6343F43B62637F51996B4E95	23040	----a-w-	C:\Windows\System32\mfpmp.exe
2014-12-10 22:39:52	60FBCF033FF42A40C916C01A962A8802	50176	----a-w-	C:\Windows\System32\rrinstaller.exe
2014-12-10 20:37:05	450BDEE760894CE151404E41819E964F	1097808	----a-w-	C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\39.0.2171.95\39.0.2171.95_39.0.2171.71_chrome_updater.exe
2014-12-10 13:01:34	8EBAD3A01A65D3580F3F8B9C9F608BDC	1160872	----a-w-	C:\Windows\System32\aitstatic.exe
2014-12-10 13:01:33	2CBC9BFDA640160A1E8AB5F14B1634F9	62624	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2014-12-10 13:01:31	F2E2F379E2B3F44206AD4A2B6746A36C	42656	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-12-10 13:01:31	0E7DF272B045808C95A1B2CB06AF8DBE	138912	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-12-10 13:01:20	FE7875DC6ED353C42D9771458351E893	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-12-10 13:01:19	D90585C3BE942DAAFBDC868FDC061844	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-12-10 13:01:19	24A091B9A97E9B323B6CE8278B547B20	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2014-12-10 13:01:10	3F9906067851CE792303E0E64A8381E6	684544	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-12-10 13:01:09	A8A8FD02E3A9264A603892DE1F522166	221184	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-12-10 13:01:06	43CE0C99DBC0F96DB2B7259B0BE0930E	468992	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-12-10 13:01:02	A24BFBAE8B50A6780B68FF3673FAB52F	815280	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-12-10 13:00:46	9EA3783672D21817B9DF1061B54C3B3C	155136	----a-w-	C:\Windows\System32\charmap.exe
2014-12-10 13:00:18	DEF30B58859FBA3458DCA4057AAABA7A	40448	----a-w-	C:\Windows\servicing\GC32\tzupd.exe
2014-12-10 12:59:13	B975C202F590BBC5AA63225FBD148791	198656	----a-w-	C:\Windows\System32\WSManHTTPConfig.exe
=== C: other files ==
2014-12-13 23:46:07	72584A75A5BB4A5FCFCFAA9658873DE3	643057	----a-w-	C:\Users\mama-nanda\Downloads\setup.zip
2014-12-10 13:01:38	7FE680A3DFA421C4A8E4879AE4C5AAB0	74752	----a-w-	C:\Windows\System32\drivers\tdx.sys
2014-12-09 13:59:13	CE326BF56348BC91F79B7CD2DE0DBD3D	761720	----a-w-	C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_80083.sys
2014-12-09 13:59:13	848C469BBFCCE87A063505E265C90BEF	430296	----a-w-	C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_80083.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner"="C:\Program Files\CCleaner\CCleaner.exe /AUTO"
@="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run"
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_USERS\S-1-5-21-602132388-3691444049-2182991524-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files\AVG\AVG2015\avgui.exe /TRAYONLY"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner"="C:\Program Files\CCleaner\CCleaner.exe /AUTO"
@="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run"
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BrMfcWnd]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BrMfcWnd"
"hkey"="HKLM"
"command"="C:\\Program Files\\Brother\\Brmfcmon\\BrMfcWnd.exe /AUTORUN"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ControlCenter3]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ControlCenter3"
"hkey"="HKLM"
"command"="C:\\Program Files\\Brother\\ControlCenter3\\brctrcen.exe /autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="KiesPreload"
"hkey"="HKCU"
"command"="C:\\Program Files\\Samsung\\Kies\\Kies.exe /preload"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="KiesTrayAgent"
"hkey"="HKLM"
"command"="C:\\Program Files\\Samsung\\Kies\\KiesTrayAgent.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KPN Assistent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="KPN Assistent"
"hkey"="HKLM"
"command"="C:\\Program Files\\KPN\\KPN Assistent\\KPN_Assistent.exe /auto"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-12-2014 20:52]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [15-10-2014 16:25]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\system32\tasks\{2A863AB5-10DE-4885-9A76-2021243FD7CA}" ["c:\program files\google\chrome\application\chrome.exe"]
"C:\Windows\system32\tasks\{8A347C4F-BC49-4DAB-A8AA-CB9342258816}" ["c:\program files\google\chrome\application\chrome.exe"]
"C:\Windows\system32\tasks\{B156F9F5-5669-432D-87DB-94F1037FA3FF}" ["c:\program files\google\chrome\application\chrome.exe"]

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)


Docs - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
selector is not a valid CSS selector - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PRFD_nlNL559"

==== Empty IE Cache ======================

C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\mama-nanda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mama-nanda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\mama-nanda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=218 folders=66 99670616 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\mama-nanda\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\MAMA-N~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\AVG Web TuneUp"  not found
"C:\Program Files\AVG Web TuneUp"  not found

==== EOF on ma 15-12-2014 at 21:49:03,15 ======================