
Zoek.exe v5.0.0.0 Updated 29-March-2015
Tool run by rossi_000 on di 31/03/2015 at 17:56:35,52.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\rossi_000\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-12-29-084029.log	32028 bytes
C:\zoek-results2014-12-29-162516.log	33085 bytes
C:\zoek-results2014-12-29-163723.log	32370 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\mbot_be_80 deleted successfully
C:\PROGRA~2\SeekerMonitor deleted successfully
C:\Users\rossi_000\AppData\Local\Opera Software deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{363d4f9b-05ff-492d-a16f-250aed294db2} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6113e323-42de-4a39-bae2-4b653b95836e} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\4c9b88c0 deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{363d4f9b-05ff-492d-a16f-250aed294db2}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6113e323-42de-4a39-bae2-4b653b95836e}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{363d4f9b-05ff-492d-a16f-250aed294db2}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6113e323-42de-4a39-bae2-4b653b95836e}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"mbot_be_80"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\mbot_be_80 not found
C:\PROGRA~2\SeekerMonitor not found
C:\PROGRAM Files (x86)\SaLePlus not found
C:\Program Files (x86)\youtubeadblocker not found
C:\Program Files (x86)\mbot_be_80 not found
"C:\Users\rossi_000\AppData\Roaming\BYAIAMUF.exe" not found
C:\Users\rossi_000\AppData\Roaming\sweet-page deleted
C:\Program Files (x86)\globalUpdate deleted
C:\ProgramData\ibjelmhoiflopmcogbjleodkpgpjdeac deleted
C:\Users\rossi_000\AppData\Roaming\GoldenGate deleted
C:\Users\rossi_000\AppData\Roaming\EZDownloader deleted
C:\PROGRA~3\WindowsMangerProtect deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\rossi_000\AppData\Local\Gameo deleted
C:\Users\rossi_000\AppData\Local\SoftonicAssistant deleted
C:\Users\rossi_000\AppData\Local\globalUpdate deleted
C:\Users\rossi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url deleted
C:\Users\rossi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gameo deleted
C:\Users\rossi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gameo.lnk deleted
C:\Users\rossi_000\Downloads\SoftonicDownloader_voor_grabit.exe deleted
C:\WINDOWS\wininit.ini deleted
C:\windows\SysNative\tasks\gameo_update deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\WINDOWS\SysWow64\AI_RecycleBin deleted
"C:\WINDOWS\tasks\BYAIAMUF.job" deleted
"C:\Users\rossi_000\AppData\Roaming\BYAIAMUF" deleted
"C:\WINDOWS\tasks\BYAIAMUF.job" deleted
"C:\WINDOWS\SysNative\tasks\BYAIAMUF" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\ROSSI_~1\AppData\Local\Temp ====
2015-03-29 12:37:26	60428B7F66FE3A08DE7FCB12A5EA58F6	6701624	----a-w-	C:\Users\rossi_000\AppData\Local\Temp\SpotifyUninstall.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-03-29 11:54:19	838B2AD67DD44664A0850F4D95903D8A	4	----a-w-	C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-03-24 18:47:43	17CDEB69D565B8A80EEDE16727BA508D	568832	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-03-24 18:47:44	BBA0D3E5347AFF1FC7F541E47968DA81	30720	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-03-24 18:47:44	7F19365C2D9CD0AA5E517A96A22AE7C8	1107456	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2015-03-24 18:47:44	6BD9F3E004C9A7E6B078F986136FE60B	677888	----a-w-	C:\WINDOWS\Sysnative\generaltel.dll
2015-03-24 18:47:44	566D9AD59C23F3DFAD57BF6D60974FE8	943104	----a-w-	C:\WINDOWS\Sysnative\appraiser.dll
2015-03-24 18:47:44	44E328E1790D546566E816F656741969	760320	----a-w-	C:\WINDOWS\Sysnative\invagent.dll
2015-03-24 18:47:44	43BDE189CE5366C6940989C45E1C2F13	414208	----a-w-	C:\WINDOWS\Sysnative\devinv.dll
2015-03-24 18:47:44	1E4D676982C53E72527E2CC20ADFD878	227328	----a-w-	C:\WINDOWS\Sysnative\aepdu.dll
2015-03-24 18:47:43	D8632E54B9D4BA45916B0E0D4DD73535	11105	----a-w-	C:\WINDOWS\Sysnative\AutoconfigV2.cab
2015-03-24 18:47:43	62C96E4AD5509C5692C04CBF1996485C	467952	----a-w-	C:\WINDOWS\Sysnative\NotificationUI.exe
2015-03-24 18:47:43	2BDB9601134B01AD8704019132DA5A55	596480	----a-w-	C:\WINDOWS\Sysnative\AutoUpdate.exe
2015-03-24 18:47:42	50F92693DF0BD3D8739E89B18E8A3E20	695808	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2015-03-23 15:04:38	057C6F7B60F304E077A5126F97A44C0D	421	----a-w-	C:\WINDOWS\Sysnative\cpuminer-conf.json
====== C:\WINDOWS\Sysnative\drivers =====
2015-03-25 09:21:34	079F75EE36CD275620298DA7D7636006	281056	----a-w-	C:\WINDOWS\Sysnative\drivers\avgidsdrivera.sys
2015-03-19 14:05:44	2329F4A717F6BDD27EF484AD22AE5A88	289248	----a-w-	C:\WINDOWS\Sysnative\drivers\avgwfpa.sys
2015-03-11 09:10:40	711E2E14AF1FC883AA6251FCE196DC1E	569712	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2015-03-11 09:10:36	6FBA6CD2348DEC440D0C6D511C55F3FE	275712	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2015-03-11 09:10:35	5A416C253D2C50327928ABC4A1D8A0F2	44024	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2015-03-02 15:27:33	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_WUDFUsbccidDriver_01_11_00.Wdf
====== C:\WINDOWS\Tasks ======
2015-03-26 10:41:27	EFA77035C42D7CBB1B107D9A66CEAE59	3556	----a-w-	C:\WINDOWS\Sysnative\Tasks\GarminUpdaterTask
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-03-29 11:46:13	--------	d-----w-	C:\PROGRA~2\Opera
2015-03-26 10:41:27	--------	d-----w-	C:\PROGRA~2\Garmin
======= C: =====
====== C:\Users\rossi_000\AppData\Roaming ======
2015-03-29 12:43:23	--------	d-----w-	C:\Users\rossi_000\AppData\Local\Spotify
2015-03-29 12:43:13	--------	d-----w-	C:\Users\rossi_000\AppData\Roaming\Spotify
2015-03-29 11:46:31	--------	d-----w-	C:\Users\rossi_000\AppData\Roaming\Opera Software
2015-03-29 11:46:13	--------	d-----w-	C:\Users\rossi_000\AppData\Roaming\cpuminer
2015-03-26 10:41:32	--------	d-----w-	C:\Users\rossi_000\AppData\Local\Garmin_Ltd._or_its_subsid
2015-03-26 10:41:29	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Garmin_Ltd._or_its_subsid
2015-03-09 14:41:58	--------	d-----w-	C:\Users\rossi_000\AppData\Local\QuickPar
2015-03-09 10:52:52	--------	d-----w-	C:\Users\rossi_000\AppData\Roaming\VASCO
2015-03-09 10:52:51	--------	d-----w-	C:\Users\rossi_000\AppData\Local\Package Cache
====== C:\Users\rossi_000 ======
2015-03-31 14:03:11	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\rossi_000\Desktop\RSITx64.exe
2015-03-29 12:43:02	9FFC8F9F1C4C62E99D02029047A0B64D	155296	----a-w-	C:\Users\rossi_000\Downloads\SpotifySetup (2).exe
2015-03-29 12:38:11	9FFC8F9F1C4C62E99D02029047A0B64D	155296	----a-w-	C:\Users\rossi_000\Downloads\SpotifySetup (1).exe
2015-03-26 10:40:41	CCA03C7DD6570D8886A6F68B50471394	40365296	----a-w-	C:\Users\rossi_000\Downloads\GarminExpressInstaller.exe

====== C: exe-files ==
2015-03-31 14:07:18	458C86C0BCA33ABB09F5022D1FED554A	327632	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgndisa.exe
2015-03-31 14:07:01	AF3F12BD23C0F248995E53B96B4D9A76	70096	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avguirux.exe
2015-03-31 14:07:01	85EA06E302FCB8332E279344FE5B471C	24016	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe
2015-03-31 14:07:01	67CC44B392217B6E8DDF2F3277257290	22992	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe
2015-03-31 14:07:01	20E969D3E7990BD96941E1AA97842DC9	6325528	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
2015-03-31 14:03:11	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\rossi_000\Desktop\RSITx64.exe
2015-03-31 14:02:29	DD370F1BC3A887A0D7193E4A834B1DF5	443776	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\000072d3\CoProc update.19449754.exe
2015-03-29 12:43:22	E74BF46DE94E62FA01C61EF084F7A7DD	2018360	----a-w-	C:\Users\rossi_000\AppData\Roaming\Spotify\SpotifyWebHelper.exe
2015-03-29 12:43:22	C6D47B4367DFCE8480F58E9B28D4C782	7112248	----a-w-	C:\Users\rossi_000\AppData\Roaming\Spotify\Spotify.exe
2015-03-29 12:43:22	736DAAB0BF7A62B013BD196D3B4D2BF3	124472	----a-w-	C:\Users\rossi_000\AppData\Roaming\Spotify\SpotifyLauncher.exe
2015-03-29 12:43:22	4D23BC37D675B0473E47A9672D2A0938	762424	----a-w-	C:\Users\rossi_000\AppData\Roaming\Spotify\SpotifyCrashService.exe
2015-03-29 12:43:22	37B7C7905ADEADA0A3DEB48BEA4ADFF1	73272	----a-w-	C:\Users\rossi_000\AppData\Roaming\Spotify\wow_helper.exe
2015-03-29 12:43:13	FAD5EA601378A1CF3276FB846B699D1E	41950376	----a-w-	C:\Users\rossi_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\020FW7RW\SpotifyFullSetup[1].exe
2015-03-29 12:43:02	9FFC8F9F1C4C62E99D02029047A0B64D	155296	----a-w-	C:\Users\rossi_000\Downloads\SpotifySetup (2).exe
2015-03-29 12:38:11	9FFC8F9F1C4C62E99D02029047A0B64D	155296	----a-w-	C:\Users\rossi_000\Downloads\SpotifySetup (1).exe
2015-03-29 12:37:26	60428B7F66FE3A08DE7FCB12A5EA58F6	6701624	----a-w-	C:\Users\rossi_000\AppData\Local\Temp\SpotifyUninstall.exe
2015-03-29 11:46:14	68632F105A087DA1DE419102CCD0EA87	32664584	----a-w-	C:\Users\rossi_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H6QECPCC\Opera_28.0.1750.48_Setup[1].exe
2015-03-29 11:46:13	9163A02F8CF9071E609EE20B1A4868B2	56931	----a-w-	C:\Users\rossi_000\AppData\Roaming\cpuminer\cpuminer-uninst.exe
2015-03-27 11:24:56	BCB7868153F63BD77B6259FD431304BB	441912	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\000072b7\CoProc update.19440473.exe
2015-03-26 14:35:38	2FBC280F4028CA1A5846403E1A893C2C	560456	----a-w-	C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\SwReporter\2.16.3\software_reporter_tool.exe
2015-03-26 10:40:41	CCA03C7DD6570D8886A6F68B50471394	40365296	----a-w-	C:\Users\rossi_000\Downloads\GarminExpressInstaller.exe
2015-03-26 07:21:13	444EA843E5945BAF8E9AB0DA2E3FD09F	440440	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\0000729d\CoProc update.19433226.exe
2015-03-25 12:15:16	66873724CA76F0B26C9D66D375306792	14267224	----a-w-	C:\Program Files (x86)\Garmin\Express\express.exe
2015-03-25 12:15:00	0624712990CD77CB08B3F21C1313E509	1008984	----a-w-	C:\Program Files (x86)\Garmin\Express Tray\tray.exe
2015-03-25 12:14:54	E24E96FFCED0E45B19E3B343D91D23B9	68440	----a-w-	C:\Program Files (x86)\Garmin\Express Elevated Installer\ElevatedInstaller.exe
2015-03-25 12:14:52	E6DE9ED193B686F8E7A9FCF264CCD9B4	705544	----a-w-	C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
2015-03-25 09:34:46	E2FDE8691C03525F095C8D01F005FA97	3416016	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
2015-03-25 09:29:58	75E62DDDE63BC38D75DECB0966E7C0A9	1516968	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
2015-03-25 09:29:36	C6C959E1F210A4DB236A8F786DFF08C8	2955728	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
2015-03-25 09:29:20	9F22AF691BB098BA98951BC3DFDD779A	3723728	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgui.exe
2015-03-25 09:28:12	2BE95C4599C4090FBA81D1510615AECC	786896	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
2015-03-25 09:27:30	8993215C0804A287A35E52AE8386B577	250320	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcmgr.exe
2015-03-25 09:26:20	A7B4662F1E9ED3D0EFB5C20D70657C36	403736	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe
2015-03-25 09:26:10	46C8BE85E33C995F425BA55B2155DCDA	884176	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpa.exe
2015-03-25 09:25:40	66E60DF77A96B8A2B78192F5427982BE	1110480	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
2015-03-25 09:25:30	8C29ED5356B4BF9F59BB8DEF1C945A0A	722896	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpx.exe
2015-03-25 09:25:14	87F8F62858095D8EA0C21750AE1CB4F6	1306576	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
2015-03-25 09:24:50	E21E319B65B3E40C004077B8B778AC36	865744	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
2015-03-25 09:24:40	66F7AFB40A4EEFDF0E382D19DCE2866A	338384	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe
2015-03-25 09:24:18	F9D81013E269EF385ACCB63F83CC5ECF	322512	----a-w-	C:\Program Files (x86)\AVG\AVG2015\fixcfg.exe
2015-03-25 09:23:52	87801794E09B4969D9BB433AC6E93D0C	890832	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpa.exe
2015-03-25 09:23:28	9CF71FCEC055A00EBA4AE04E5A0FFB2B	718800	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpx.exe
2015-03-25 09:23:22	5612A91A0E73B883C13B3E9B10FFEB5A	703440	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrvx.exe
2015-03-25 09:23:00	06F83A75DFF93F8C43E811EFE43917CD	371152	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcomdlga.exe
2015-03-25 09:22:48	3D311D3110F3BB179DFA048950B5FE41	475600	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscana.exe
2015-03-25 09:21:40	DCF350D917112A03D3CDC33C8ADEA87A	309232	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
2015-03-25 09:21:34	25BB20DC170EA8B638288127C21BB61A	408016	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscanx.exe
2015-03-24 18:47:44	F22794B93C9FC55A934C1544F9600B43	70832	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2015-03-24 18:47:43	62C96E4AD5509C5692C04CBF1996485C	467952	----a-w-	C:\Windows\System32\NotificationUI.exe
2015-03-24 18:47:43	2BDB9601134B01AD8704019132DA5A55	596480	----a-w-	C:\Windows\System32\AutoUpdate.exe
=== C: other files ==
2015-03-25 09:37:06	CEF59C1F0BE67B626C91AC2B10938E29	1205445	----a-w-	C:\Program Files (x86)\AVG\AVG2015\banners\banners.zip
2015-03-25 09:23:22	DF448F0C0ABEF60F553FEC5B53A9F540	224736	----a-w-	C:\Program Files (x86)\AVG\AVG2015\Drivers\avgidsdriverx.sys
2015-03-25 09:21:34	079F75EE36CD275620298DA7D7636006	281056	----a-w-	C:\Windows\System32\Drivers\avgidsdrivera.sys
2015-03-25 09:21:34	079F75EE36CD275620298DA7D7636006	281056	----a-w-	C:\Program Files (x86)\AVG\AVG2015\Drivers\avgidsdrivera.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_791E25D263DCBE6A7668D1AD410145AD"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"Gameo"="C:\Users\rossi_000\AppData\Roaming\Gameo\gameo.exe C:\Users\rossi_000\AppData\Roaming\Gameo\gameo.dat mode:minimized"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\tray.exe"
"Spotify Web Helper"="C:\Users\rossi_000\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"Spotify"="C:\Users\rossi_000\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KLM"="C:\Program Files (x86)\MSI\KLM\KLM.exe"
"Sound Blaster Cinema"="C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe /r"
"UpdReg"="C:\Windows\UpdReg.EXE"
"Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"
"BlueStacks Agent"="c:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_791E25D263DCBE6A7668D1AD410145AD"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"Gameo"="C:\Users\rossi_000\AppData\Roaming\Gameo\gameo.exe C:\Users\rossi_000\AppData\Roaming\Gameo\gameo.dat mode:minimized"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\tray.exe"
"Spotify Web Helper"="C:\Users\rossi_000\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"Spotify"="C:\Users\rossi_000\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"MBCfg64"="C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"Radio Manager"="C:\Program Files (x86)\SCM\Radio Manager.exe"
"SCM"="C:\Program Files (x86)\SCM\SCM.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

==== Startup Folders ======================

2015-03-29 11:19:05	2088	----a-w-	C:\Users\rossi_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Real Racing 3 Hack Cheats Tool.lnk
2013-04-24 00:26:18	2278	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/12/2014 01:44]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/12/2014 01:44]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"]
"C:\WINDOWS\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"]
"C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]
"C:\WINDOWS\SysNative\tasks\Norton Anti-Theft\Norton Error Analyzer" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe]
"C:\WINDOWS\SysNative\tasks\Norton Anti-Theft\Norton Error Processor" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.6.0.17\SymErr.exe]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Chromium Look ======================

Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
poimdfnhgefmnkeefbjibbiemlimdnof - No path found[]

YouTube - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Pool - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb
Google Search - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Add to Wunderlist - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmnddeddcgdllibmaodanoonljfdmooc
AdBlock - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
3D Galaxy Bowling - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\llojoebfpfheijcipgokjllohccfnkoo
Google Maps - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh
Need for Speed World is a FREE to play online racing game where you can compete with millions of players around the World. - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnnelgnkomjdakpkjpkfehdipjifjmbk
Google Wallet - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.hln.be/",
"startup_urls": [ "https://www.google.be/?gws_rd=ssl", "http://www.sweet-page.com/?type=hp&ts=1420292770&from=cor&uid=3219913727_198339_D454B580", "http://www.mystartsearch.com/?type=hp&ts=1426351047&from=amt&uid=WDCXWD1002FAEX-00Z3A0_WD-WCATR029822998229" ]


==== Chromium Fix ======================

C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_allin1convert.dl.tb.ask.com_0.localstorage deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_allin1convert.dl.tb.ask.com_0.localstorage-journal deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmnddeddcgdllibmaodanoonljfdmooc deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmnddeddcgdllibmaodanoonljfdmooc_0.localstorage deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmnddeddcgdllibmaodanoonljfdmooc_0.localstorage-journal deleted successfully
C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmnddeddcgdllibmaodanoonljfdmooc deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.hln.be/"
"Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1420292770&from=cor&uid=3219913727_198339_D454B580"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1420292770&from=cor&uid=3219913727_198339_D454B580&q={searchTerms}"
"Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1420292770&from=cor&uid=3219913727_198339_D454B580"
"Start Page"="http://websearch.coolsearches.info/?pid=22365&r=2015/03/29&hid=537118051144175472&lg=EN&cc=BE&unqvl=85"
"Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1420292770&from=cor&uid=3219913727_198339_D454B580&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1420292770&from=cor&uid=3219913727_198339_D454B580&q={searchTerms}"
"Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1420292770&from=cor&uid=3219913727_198339_D454B580"
"Start Page"="http://websearch.coolsearches.info/?pid=22365&r=2015/03/29&hid=537118051144175472&lg=EN&cc=BE&unqvl=85"
"Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1420292770&from=cor&uid=3219913727_198339_D454B580&q={searchTerms}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{A336B89F-E79A-4E5E-9428-4375767D9E3E}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.hln.be/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{A336B89F-E79A-4E5E-9428-4375767D9E3E} Unknown  Url="Not_Found"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1347125734-577671622-158039299-1002\Software\Microsoft\Internet Explorer\SearchScopes\{A336B89F-E79A-4E5E-9428-4375767D9E3E} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{A336B89F-E79A-4E5E-9428-4375767D9E3E} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A336B89F-E79A-4E5E-9428-4375767D9E3E} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Gameo deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\sweet-page uninstall deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftonicAssistant deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{4c9b88c0} deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\rossi_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\rossi_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6FQ00NKK will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\rossi_000\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=168 folders=65 72597863 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\rossi_000\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ROSSI_~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\rossi_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6FQ00NKK" not found

==== EOF on di 31/03/2015 at 18:09:59,06 ======================