
Zoek.exe v5.0.0.0 Updated 27-01-2015
Tool run by geert_000 on zo 01/02/2015 at 10:41:16,71.
Microsoft Windows 8 Enterprise 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\geert_000\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

1/02/2015 10:50:45 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Applian Technologies deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully
C:\PROGRA~2\Untis deleted successfully
C:\PROGRA~3\ALM deleted successfully
C:\PROGRA~3\Avid deleted successfully
C:\PROGRA~3\Pinnacle Studio Plus deleted successfully
C:\Users\geert_000\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\geert_000\AppData\Roaming\Nico Mak Computing deleted successfully
C:\Users\geert_000\AppData\Roaming\Simpelfact deleted successfully
C:\Users\geert_000\AppData\Local\Jaksta_Technologies_Pty_L deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a0efb048-5403-49d4-8804-d528e3274266} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\GEERT_~1\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default

user.js not found
---- Lines finder removed from prefs.js ----
user_pref("extensions.fontfinder@bendodson.com.currentVersion", "1.1.1");
user_pref("extensions.xpiState", "{\"app-profile\":{\"2020Player_IKEA@2020Technologies.com\":{\"d\":\"C:\\\\Users\\\\geert_000\\\\AppData\\\\Roaming\\
---- Lines finder modified from prefs.js ----

user_pref("extensions.enabledAddons", "fontfinder%40bendodson.com:1.1.1,2020Player_IKEA%402020Technologies.com:5.0.94.1,%7Bb9db16a4-6edc-47ec-a1f4-b86
---- Lines extensions.OuJps9uKDyXs0UHL removed from prefs.js ----
user_pref("extensions.OuJps9uKDyXs0UHL.epoch", "1417966710");
user_pref("extensions.OuJps9uKDyXs0UHL.url", "http://getjpi1.info/sync2/?q=hfZ9ofV9CShEAen0rTa7qTsMg708BNmGWj8cmihGheDUojw9rjsEqjw9rjaHrchIC7n0rjnFrTa
---- Lines extensions.bYC36ylTFm2OXttZ removed from prefs.js ----
user_pref("extensions.bYC36ylTFm2OXttZ.epoch", "1422780047");
user_pref("extensions.bYC36ylTFm2OXttZ.url", "http://transferbookmy.info/sync2/?q=hfZ9ofV9CShEAen0rTw7qTsMg708BNmGWj8cmihGheDUojw8rdwGpjw6rdg8qchIC7n0
---- Lines extensions.fUpcV8J68kmn9rNR removed from prefs.js ----
user_pref("extensions.fUpcV8J68kmn9rNR.epoch", "1422779926");
user_pref("extensions.fUpcV8J68kmn9rNR.url", "http://sunfuun.com/sync2/?q=hfZ9oflKAfqZBylHrGhEAen0rTw7qTsMg708BNmGWj8cmihGheDUojw8rdwGpjw6rdgFrchIC7n0
---- Lines extensions.upoo2jx0k6v3lTXO removed from prefs.js ----
user_pref("extensions.upoo2jx0k6v3lTXO.epoch", "1417966710");
user_pref("extensions.upoo2jx0k6v3lTXO.url", "http://superpent.org/sync2/?q=hfZ9oetKCGhEAen0rTa7qTsMg708BNmGWj8cmihGheDUojw9rjsEqjw9rdU9qihIC7n0rjnFrT
---- FireFox user.js and prefs.js backups ---- 

prefs_20150102_1105_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a0efb048-5403-49d4-8804-d528e3274266}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a0efb048-5403-49d4-8804-d528e3274266}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\youtubeadblocker deleted
C:\PROGRA~2\unIIsales deleted
C:\PROGRA~2\Mini Notepad deleted
C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} deleted
C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default\extensions\2020Player_IKEA@2020Technologies.com deleted
C:\ProgramData\4791000371508950621 deleted
C:\Program Files (x86)\Unisalles deleted
C:\ProgramData\hknickcgkjhefimmionfaepbdimbfijc deleted
C:\PROGRA~3\nmmefmiibcehamhdngmmobaajddmpglf deleted
C:\PROGRA~2\Smart Coupon deleted
C:\Users\geert_000\ia_remove.sh2302.tmp deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\wininit.ini deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default\extensions\fontfinder@bendodson.com.xpi deleted
"C:\Users\geert_000\AppData\Roaming\SysLib_var" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\3e378442d7f2e3ce" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\f3ca2217f026041a" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\setup.exe" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\3e378442d7f2e3ce" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\f3ca2217f026041a" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}\setup.exe" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}" deleted
"C:\ProgramData\{5e39c583-d67f-833f-5e39-9c583d67160f}" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\GEERT_~1\AppData\Local\Temp ====
2015-02-01 09:37:43	97511FE2CA09CC2E06C3CD6519C3494E	43008	----a-w-	C:\Users\geert_000\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpqehyw6.dll
2015-01-29 17:13:33	2EABF3B587EDEF23546BB8C822089C6F	179966384	----a-w-	C:\Users\geert_000\AppData\Local\Temp\Rar$EX00.294\BQ2013FullSetup_18_16.exe
2015-01-29 17:05:27	889C75B6A56B88827C2C08B298CA9CA8	1158656	----a-w-	C:\Users\geert_000\AppData\Local\Temp\D261bb.exe
2015-01-25 13:29:08	71F784969D24240764D5E5D752D55A41	1722581	---ha-w-	C:\Users\geert_000\AppData\Local\Temp\624C939aF\temp\EzDownloader_setup.exe
====== Java Cache =====
2015-01-31 17:44:07	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\geert_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-51a9a3df
2015-01-31 17:44:03	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\geert_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6bdcff16
2015-01-31 17:44:03	0DBEF164EFB1AFA821801AF4F9F2CB7F	424	----a-w-	C:\Users\geert_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2015-01-31 17:44:02	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\geert_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-4da2463d
2015-01-31 17:44:03	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\geert_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-50e0d85e
====== C:\Windows\SysWOW64 =====
2015-01-31 17:43:39	13D186FA6F19823C598335443CE233BC	98216	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2015-01-13 20:47:17	D4051AA2ACD38AABF9DEC24B8A331EB1	499008	----a-w-	C:\Windows\Sysnative\drivers\vhdmp.sys
2015-01-13 20:47:03	25560C1656DC7F0723A0CC0B0E1C6BED	142336	----a-w-	C:\Windows\Sysnative\drivers\mrxdav.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-01-31 09:18:32	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-01-31 17:43:41	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-01-29 17:27:03	--------	d-----w-	C:\PROGRA~2\COMMON~1\Intuit
2015-01-29 17:15:35	--------	d-----w-	C:\PROGRA~2\Business Objects
2015-01-29 17:15:35	--------	d-----w-	C:\PROGRA~2\BillQuick2013
2015-01-29 17:07:42	--------	d-----w-	C:\PROGRA~2\TampaGeneration
2015-01-10 13:26:43	--------	d-----w-	C:\PROGRA~2\TeamViewer
2015-01-06 13:10:31	--------	d-----w-	C:\PROGRA~2\Free Picture Solutions
======= C: =====
====== C:\Users\geert_000\AppData\Roaming ======
2015-01-10 13:27:04	--------	d-----w-	C:\Users\geert_000\AppData\Roaming\TeamViewer
2015-01-06 13:11:02	--------	d-----w-	C:\Users\geert_000\AppData\Local\SkinSoft
2015-01-06 13:10:56	--------	d-----w-	C:\Users\geert_000\AppData\Roaming\FreeImageConverter
2015-01-06 13:09:42	--------	d-----w-	C:\Users\geert_000\AppData\Roaming\Free Picture Solutions
====== C:\Users\geert_000 ======
2015-01-31 17:43:11	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-31 17:34:02	6713E17AFCB3A28191A747DC8C475721	639912	----a-w-	C:\Users\geert_000\Downloads\jxpiinstall(2).exe
2015-01-31 09:05:55	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\geert_000\Downloads\RSITx64.exe
2015-01-29 17:34:36	--------	d-----w-	C:\ProgramData\NCH Software
2015-01-06 13:10:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free PNG To JPG Converter

====== C: exe-files ==
2015-01-31 17:42:54	DBB5C8AE19ACFA2857CFB90C7305AC56	51112	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssvagent.exe
2015-01-31 17:42:54	7479DA0BED071427A3F0017AC51CC27B	159656	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\unpack200.exe
2015-01-31 17:42:54	577F5DCBA4DE4C345631873670F84E79	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\tnameserv.exe
2015-01-31 17:42:53	F9D744CD9BC58F287F8FA59D32508EDD	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\orbd.exe
2015-01-31 17:42:53	CDB1FE0DCF2ADB755EBF65C8AEBBC871	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\servertool.exe
2015-01-31 17:42:53	8B6DF9CD28359C5E819446FD79CE3948	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmiregistry.exe
2015-01-31 17:42:53	5F7C51E0DCA813D647F14FC12AE675F2	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\policytool.exe
2015-01-31 17:42:53	39685FC75B6FB2144E793595F1AB111D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\pack200.exe
2015-01-31 17:42:53	0FB2ACAC796B166F6486B593B604A3FF	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmid.exe
2015-01-31 17:42:52	DA34E76DE9CD93471F24E7BD43139958	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\kinit.exe
2015-01-31 17:42:52	A8884FB8246655C84F110E77DF5E1B4A	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\ktab.exe
2015-01-31 17:42:52	69BD74EE834B5629226BF89468B8020B	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\keytool.exe
2015-01-31 17:42:52	2F77C9862B1A2401278C4A5B932DA69D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\klist.exe
2015-01-31 17:42:51	AF82EA1498FEC5C49B8A1AE5AA0A5F6C	77224	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2launcher.exe
2015-01-31 17:42:51	90C02BD6D01BBC1C620323F9E330E89C	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jjs.exe
2015-01-31 17:42:49	F5EA785B2BCC08DC28CBC2D96E05F2C1	68520	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe
2015-01-31 17:42:49	52C8B9FD016E6317FDB151296FF90877	272296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaws.exe
2015-01-31 17:42:49	3E72E1AB196855916E2065C604674631	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaw.exe
2015-01-31 17:42:48	DF1C8EDDAF14D2960A06A9DF7B2D0A89	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\java-rmi.exe
2015-01-31 17:42:48	B0D46640968F989830413EB88F43E0D0	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\java.exe
2015-01-31 17:42:48	063A1044A451660B159426B9C5E75957	30632	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jabswitch.exe
2015-01-31 09:18:32	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\geert_000.exe
=== C: other files ==
2015-01-31 17:42:55	3315140254247E248C3531F159C79109	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\lib\deploy\ffjcext.zip
2015-01-29 17:11:19	B7EE0690DD4E67A548A4455EDC04FC8A	181213330	----a-w-	C:\Users\geert_000\Downloads\BillQuick2013Setup.zip
2015-01-29 17:05:13	3E981A213346FD777CF7601F101C40FF	3073205	----a-w-	C:\Users\geert_000\Downloads\billquick-2014-1501210[W4L]_crack.zip
2015-01-26 19:30:48	91D054509398B229C9C9F81AA436B545	6578922	----a-w-	C:\Users\geert_000\Downloads\WP Profit Builder v1.3.2 - WordPress Plugin.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3302297857-792013993-1160446374-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"uTorrent"="C:\Users\geert_000\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"AnyDVD"="C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"uTorrent"="C:\Users\geert_000\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"AnyDVD"="C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~2\\NVIDIA~1\\3DVISI~1\\nvStInit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Startup Folders ======================

2013-01-05 09:25:31	1144	----a-w-	C:\Users\geert_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2015-01-29 17:05:40	1893	----a-w-	C:\Users\geert_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup.lnk
2013-01-06 10:31:15	2099	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
2014-06-13 07:44:08	1172	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 11.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [25/01/2015 09:37]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14/02/2013 15:33]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14/02/2013 15:33]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\TechSmith Updater" [C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\GEERT_~1\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default
user_pref("browser.startup.homepage", "http://www.google.be/");

==== Firefox Extensions ======================

ProfilePath: C:\Users\GEERT_~1\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default
- Undetermined - C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default\extensions\2020Player_IKEA@2020Technologies.com
- Undetermined - C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Undetermined - fontfinder@bendodson.com
- Undetermined - 2020Player_IKEA@2020Technologies.com
- Undetermined - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Firebug - %ProfilePath%\extensions\firebug@software.joehewitt.com.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\geert_000\AppData\Roaming\Mozilla\Firefox\Profiles\53k2c8wu.default
0FC325593893749364EC4A733E7D9100	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll -	Shockwave Flash


==== Chromium Look ======================

Google Docs - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Mini Notepad - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjhdoaiejppfmijnkopdcpjcngdlffj
YouTube - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Fix ======================

C:\Users\geert_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apjhdoaiejppfmijnkopdcpjcngdlffj deleted successfully
C:\Users\geert_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_apjhdoaiejppfmijnkopdcpjcngdlffj_0.localstorage deleted successfully
C:\Users\geert_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_apjhdoaiejppfmijnkopdcpjcngdlffj_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"

==== Deleting CLSID Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{df50a444-5197-4065-8c57-8586ef7bd3a0} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4CEE92A3-9F0C-51AB-ADC0-34EC24AD7B7E} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\geert_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\geert_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I4O169XV will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\geert_000\AppData\Local\Mozilla\Firefox\Profiles\53k2c8wu.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\geert_000\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=123 folders=29 11360428 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\geert_000\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GEERT_~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\geert_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I4O169XV" not found

==== EOF on zo 01/02/2015 at 11:31:16,15 ======================