
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by User on ma 25/05/2015 at 21:32:41,46.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\User\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-08-22-141427.log	29913 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\Brother deleted successfully
C:\Users\User\AppData\Roaming\PC-FAX TX deleted successfully
C:\Users\User\AppData\Local\HP Quick Start deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1740371947-2775694921-1869259730-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update service deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Brother not found
C:\Users\User\Downloads\RE Lente deals - Dag 2 verblijf in Sri Lanka vanaf €899.eml not found
C:\Program Files (x86)\Popcorn Time deleted
C:\Program Files (x86)\MapsGalaxy_39EI deleted
C:\ProgramData\Lavasoft deleted
C:\PROGRA~2\FilmFanaticEI deleted
C:\PROGRA~2\VideoDownloadConverter_4zEI deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\User\AppData\LocalLow\VideoDownloadConverter_4zEI deleted
C:\Users\User\AppData\LocalLow\TelevisionFanaticEI deleted
C:\Users\User\AppData\LocalLow\MapsGalaxy_39EI deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
"C:\Windows\Installer\238ff05.msi" deleted
"C:\Users\User\AppData\Local\{DEE6ACA2-1616-4C11-B820-698D98955CAB}" deleted
"C:\Users\User\AppData\Roaming\ViberPC\config.db" deleted
"C:\Users\User\AppData\Roaming\ViberPC\info.db" deleted
"C:\Users\User\AppData\Roaming\ViberPC" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\User\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-05-13 20:54:02	A8B72561E67739D416C4BB3A62EC7331	102608	----a-w-	C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 10:49:28	3250046189DF6429ECD93D9B483C62C7	1943040	----a-w-	C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-13 10:49:06	96111DD5552A2A1DC02FC090EF80AF2D	324096	----a-w-	C:\WINDOWS\SysWOW64\certcli.dll
2015-05-13 10:48:34	0FDCB0931B57280D59942556A6706372	21504	----a-w-	C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-13 10:48:31	CB07788DF1639ED547F645403BECD759	141824	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 10:48:24	69304975B8DF00BDC9567AAAF97791F2	1812992	----a-w-	C:\WINDOWS\SysWOW64\SRH.dll
2015-05-13 10:48:19	697177C5242095DBDB3A3B52DD27C400	1207296	----a-w-	C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-13 10:48:19	3C2B9089839D283DD6F91CF5F0748D1D	2985984	----a-w-	C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-13 10:48:18	032D9982B72E4F9A9B62A43B4CEDB072	1969664	----a-w-	C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-13 10:48:15	F601DD8702FB90928A4069AAF3329D2D	1560576	----a-w-	C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-13 10:48:15	95AB9B30166221ED22E43290D47198CD	364544	----a-w-	C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 10:48:13	7C29FBB11679B9B4F08D5AA771DABD90	358912	----a-w-	C:\WINDOWS\SysWOW64\schannel.dll
2015-05-13 10:48:11	D74445161E58644309F858342F5E265C	19691008	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-13 10:48:08	0E22CD36FC3292CB812CC46CBCFD8444	12828672	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-13 10:48:05	6E2B4875B968324E5844F35A37A79260	4305920	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-13 10:48:04	F2DB87F164BC13AB8EF90FBF5D866B65	664576	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-05-13 10:48:04	CB5F450D21B9D76B7F01D006E4AEDB40	1882112	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-05-13 10:48:04	C525258A00ECFB4CE089F54C163268C3	2278400	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-13 10:48:04	C2EB0AA5570CF8BC881B36EE55A59337	688640	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-13 10:48:04	C1A32612710492D0C3339E46EC15E333	504320	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-13 10:48:04	AA2F2D55DEF98007839D0189D721D70B	1310208	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-13 10:48:03	07E82A31808C8BC053D1DE547082C58F	341504	----a-w-	C:\WINDOWS\SysWOW64\html.iec
2015-05-13 10:48:02	CFCB89C0FE8EF502A7934C0D20E5DBD6	76288	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-13 10:48:02	8004E2E3D4DFEE81D6E102C537568AEC	327168	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-13 10:48:02	7B4FA4B41FBDBB12C5038FCB6E6652AA	285696	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-13 10:48:02	136687227F11CE928CB05F4FD90319AC	2052608	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-13 10:48:01	F7F090E8B59FEFC50BE6F2A1ABB1ED5D	230400	----a-w-	C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-13 10:48:01	D8CAF4753CD2456C761E6761F2C713EE	128000	----a-w-	C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-13 10:48:01	63A2E3E9C771B1D4D7D84942D6FCB661	710144	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-13 10:48:01	48143005C6FCE6D252162EE371532063	880128	----a-w-	C:\WINDOWS\SysWOW64\inetcomm.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-05-13 20:54:02	5461373AB510F4C22CE61EB7965BE8F2	124112	----a-w-	C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 10:49:29	3DB29814EA5A2091425200B58E25BA15	2256896	----a-w-	C:\WINDOWS\Sysnative\dwmcore.dll
2015-05-13 10:49:13	A709D50BD3125B53283220BA44B78690	116736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsDatabase.dll
2015-05-13 10:49:13	4658D596725A71521971054D3AF1DCD0	2819584	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2015-05-13 10:49:10	9703EC57F5BBB94F89CA80A5D0C12221	1429504	----a-w-	C:\WINDOWS\Sysnative\diagtrack.dll
2015-05-13 10:49:10	4C0E8295772A78291A0E256882A0D0E2	36864	----a-w-	C:\WINDOWS\Sysnative\UtcResources.dll
2015-05-13 10:49:08	9D17F78BB04A3EF67426AFD087660188	410017	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2015-05-13 10:49:07	CBB2FE432D81825C174A65DCE538A610	1441792	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2015-05-13 10:49:07	2DDC7AE2C753033E5EC95F3358358043	445440	----a-w-	C:\WINDOWS\Sysnative\certcli.dll
2015-05-13 10:48:34	952D277678FC177CA8549B92A01C4C2C	24576	----a-w-	C:\WINDOWS\Sysnative\sdbinst.exe
2015-05-13 10:48:31	7E36F0698777668A09DD316E59807E0E	172544	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Input.Inking.dll
2015-05-13 10:48:30	0F5DF8F08C138D9E1DE88984FEAA1B96	1696256	----a-w-	C:\WINDOWS\Sysnative\wevtsvc.dll
2015-05-13 10:48:25	8442CC9A31FC381255B98D615E49EF82	2162176	----a-w-	C:\WINDOWS\Sysnative\SRH.dll
2015-05-13 10:48:20	48CC2698381AA1F6FBE0D78507281B40	4417536	----a-w-	C:\WINDOWS\Sysnative\dbgeng.dll
2015-05-13 10:48:19	161156327265FB02A820506B98DA7A07	1491456	----a-w-	C:\WINDOWS\Sysnative\dbghelp.dll
2015-05-13 10:48:18	E0C7813A97CA7947FF5C18A8F3B61A45	410128	----a-w-	C:\WINDOWS\Sysnative\services.exe
2015-05-13 10:48:18	0BB6089A1AEE468209FE22E29E6B87BD	2067968	----a-w-	C:\WINDOWS\Sysnative\wpdshext.dll
2015-05-13 10:48:17	053EF531F55B508343BB3CA91386C1C7	186368	----a-w-	C:\WINDOWS\Sysnative\dpapisrv.dll
2015-05-13 10:48:15	B023C38663271E79FC2A9B63F6FE6417	445440	----a-w-	C:\WINDOWS\Sysnative\PhotoMetadataHandler.dll
2015-05-13 10:48:15	7719BBE3BDA2171FF0955171D9460D26	4180480	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2015-05-13 10:48:15	6C068E7207F183FF3647E45D2599E80C	1387008	----a-w-	C:\WINDOWS\Sysnative\FntCache.dll
2015-05-13 10:48:15	4829F2EFACF23F63D6D85B7F1084FB70	1996800	----a-w-	C:\WINDOWS\Sysnative\DWrite.dll
2015-05-13 10:48:14	62E3FCC2789CA52AA8A59122FDFCE26E	429568	----a-w-	C:\WINDOWS\Sysnative\schannel.dll
2015-05-13 10:48:12	C31D57F7A58FACDA2671075CEBA75199	24971776	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-05-13 10:48:10	E061B5A1D0F9BBACA41149201ADF4A3B	14401536	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-05-13 10:48:06	79A4C71CD8B610DE9F66B72B5654C450	6025728	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-05-13 10:48:05	F0289B3A341429117696F0279DA977B6	2352128	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-05-13 10:48:04	ED4EB5A0CDD251A17B946C515CB94D70	1547264	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2015-05-13 10:48:04	B85ECB91C88F6E74045061B7F7DDEFA2	584192	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2015-05-13 10:48:04	843D063E75B19188759CBEC82828BCB1	2885120	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-05-13 10:48:04	63061A0826839DE8F5B4713976C99F1B	816640	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-05-13 10:48:03	E20B5098C8707B2CF0858024568234FF	801280	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2015-05-13 10:48:03	C1D6BD834E69E8F77C8B4DDFCEE073F6	417792	----a-w-	C:\WINDOWS\Sysnative\html.iec
2015-05-13 10:48:03	5EDC6AF7589B65C89CB1154B3377D0C4	720384	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2015-05-13 10:48:02	F918BE3C5ACA0B6485D725CC1A5348DC	2125824	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2015-05-13 10:48:02	EB9FCD39D65E23380CB2C2F0E6F2ED53	316928	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2015-05-13 10:48:02	8541124139D68239B1EDE3E490367A6C	107520	----a-w-	C:\WINDOWS\Sysnative\inseng.dll
2015-05-13 10:48:02	1D610F215769E4FF56C7B1847DE4B86D	633856	----a-w-	C:\WINDOWS\Sysnative\ieui.dll
2015-05-13 10:48:02	1921A72BF1273BED72E569EF1F1A0611	92160	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2015-05-13 10:48:02	0D2B130C7B5BCEC85D7A789A4338F9B7	262144	----a-w-	C:\WINDOWS\Sysnative\webcheck.dll
2015-05-13 10:48:01	AB8DF81AC1BF4546C3102469B840009E	145408	----a-w-	C:\WINDOWS\Sysnative\iepeers.dll
2015-05-13 10:48:01	673582881DAC4B27E9368BC8834507DD	374272	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2015-05-13 10:48:01	49B1935F131A44CD29857D6900CB643F	800768	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2015-05-13 10:48:01	14673D16D433373898FE3006C5A01157	1032704	----a-w-	C:\WINDOWS\Sysnative\inetcomm.dll
====== C:\WINDOWS\Sysnative\drivers =====
2015-05-13 10:49:28	95B0179BDA907252025DEEA183699FB3	467776	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2015-05-13 10:49:26	272A62B660A48AEF366F8A1836CED19F	57856	-c--a-w-	C:\WINDOWS\Sysnative\drivers\bthhfenum.sys
2015-05-13 10:49:07	5E5AB950693F2C6D6ACBEE3A74697ED7	561928	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2015-05-13 10:48:32	FE14D249D39368CA62D8DA6BC94AC694	80384	----a-w-	C:\WINDOWS\Sysnative\drivers\ahcache.sys
2015-05-13 10:48:21	C54B6B2170BF628FD42F799A66956D75	239424	-c--a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2015-05-13 10:48:21	95E295FD19F80B3AD33629B5AEFEC9C7	154432	-c--a-w-	C:\WINDOWS\Sysnative\drivers\dumpsd.sys
2015-05-13 10:48:15	C61EAF8E1E4B2F62BA4FDF457440B2C6	316416	----a-w-	C:\WINDOWS\Sysnative\drivers\udfs.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\User\AppData\Roaming ======
====== C:\Users\User ======
2015-05-25 19:26:18	788FCDDD88240A85039F7F561093B118	448512	----a-w-	C:\Users\User\Downloads\TFC.exe
2015-05-25 10:29:18	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\User\Downloads\RSITx64(1).exe
2015-05-25 10:13:43	1B9F05E1C6FD84C13F703DA569136418	2057008	----a-w-	C:\Users\User\Downloads\Adaware_Installer.exe

====== C: exe-files ==
2015-05-25 19:39:42	AEDF33AFCBEB308692367175E8901F78	298096	----a-w-	C:\Users\User\AppData\Local\Mozilla\updates\E7CF176E110C211B\updates\0\updater.exe
2015-05-25 19:26:18	788FCDDD88240A85039F7F561093B118	448512	----a-w-	C:\Users\User\Downloads\TFC.exe
2015-05-25 10:29:18	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\User\Downloads\RSITx64(1).exe
2015-05-25 10:13:43	1B9F05E1C6FD84C13F703DA569136418	2057008	----a-w-	C:\Users\User\Downloads\Adaware_Installer.exe
2015-05-21 04:55:39	CCAF0DCB4BEF3FCD615E15B46B22F349	6714960	----a-w-	C:\Program Files (x86)\Google\Update\Install\{71931A7F-4B87-4DAC-8E2A-F582BA4F261D}\43.0.2357.65_42.0.2311.152_chrome_updater.exe
2015-05-21 04:55:38	CCAF0DCB4BEF3FCD615E15B46B22F349	6714960	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.65\43.0.2357.65_42.0.2311.152_chrome_updater.exe
2015-05-20 11:02:18	F4E3D5003DE8FB0D6C4EC11B4DFC5F77	406528	----a-w-	C:\Windows\SysWOW64\GWX\GWX.exe
2015-05-20 11:02:17	B94C770978AD994F419D92FE24FD3F0F	360240	----a-w-	C:\Windows\System32\GWX\GWXUXWorker.exe
2015-05-20 11:02:17	9FCD33F6C4765C8EAEEA7E152D1E2E75	401408	----a-w-	C:\Windows\System32\GWX\GWXUX.exe
2015-05-20 11:02:17	2B0C2B239CE5603F7F7FD57F54E841C8	666624	----a-w-	C:\Windows\System32\GWX\GWXConfigManager.exe
2015-05-20 11:02:17	0AD060F08BC0008DA1B0FECA0015F270	475648	----a-w-	C:\Windows\System32\GWX\GWX.exe
=== C: other files ==
2015-05-24 22:38:10	FBDBD6F265551A9A53E9A27E24D159C3	154903	----a-w-	C:\Users\User\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X00HHUGL\newtubedark[1].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1740371947-2775694921-1869259730-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
"VoipConnect"="C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe -nosplash -minimized"
"Viber"="C:\Users\User\AppData\Local\Viber\Viber.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"IndexSearch"="C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"
"PaperPort PTD"="C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"
"PDFHook"="C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe"
"PDF5 Registry Controller"="C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"BtTray"="C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"Power2GoExpress8"="C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
"VoipConnect"="C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe -nosplash -minimized"
"Viber"="C:\Users\User\AppData\Local\Viber\Viber.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"
"Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe "
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/07/2014 13:29]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/07/2014 13:29]
C:\WINDOWS\tasks\HPCeeScheduleForUser.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13/09/2010 22:15]
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [12/11/2014 14:49]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\HPCeeScheduleForUser" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\WINDOWS\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\WINDOWS\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\WSCStub.exe"]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{987C2611-E867-4159-A5C6-0D8C7452B2A8}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe]
"C:\WINDOWS\SysNative\tasks\Norton Internet Security\Norton Error Processor" [C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\SymErr.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.3.0.12\coFFPlgn" [25/05/2015 21:11]

==== Firefox Extensions ======================

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\kzcfu5q9.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\kzcfu5q9.default
DAD55CEF682EAE6FA7B4C9487563A496	- C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll -	Shockwave for Director / Shockwave for Director
1919A4E982A86647F79ADD23B9AC3E11	- C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll -	Unity Player


==== Chromium Look ======================

Google Chrome Version: 43.0.2357.65

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iikflkcanblccfahdhdonehdalibjnif - No path found[]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\Exts\Chrome.crx[05/03/2015 10:45]

Google Docs - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
selector is not a valid CSS selector - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Bookmark Manager - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Norton Identity Safe - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif
Norton Security Toolbar - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Google Wallet - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Preferences
_pairs":{"[*.]oldschool1.runescape.com,*":{"plugins":1},"[*.]oldschool45.runescape.com,*":{"plugins":1},"[*.]oldschool8.runescape.com,*":{"plugins":1},"[*.]oldschool8a.runescape.com,*":{"plugins":1},"[*.]www.runescape.com,*":{"plugins":1},"[*.]www.youtube.com,*":{"fullscreen":1},"[*.]www2.netflix.com,*":{"fullscreen":1},"https://[*.]www.bingel.be:443,*":{"fullscreen":1},"https://[*.]www.youtube.com:443,*":{"fullscreen":1},"https://www.facebook.com:443,*":{"last_used":{"media-stream-camera":1422904836.209497,"media-stream-mic":1422904836.209478},"media-stream-camera":1,"media-stream-mic":1}},"pref_version":1},"created_by_version":"36.0.1985.143","exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Eerste gebruiker","password_manager_groups_for_domains":[null,null,null,null,null,null,7],"per_host_zoom_levels":{}},"protection":{"macs":{}},"savefile":{"default_directory":"C:\\Users\\User\\Downloads"},"selectfile":{"last_directory":"C:\\Users\\User\\Desktop\\gg"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13053190538464055"},"translate_accepted_count":{"en":1,"fr":0,"it":0},"translate_blocked_languages":["nl"],"translate_denied_count":{"en":0,"fr":4,"it":1},"translate_last_denied_time":1411850949185.529,"translate_too_often_denied":true,"translate_whitelists":{}}
ch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"nl","default_locale":"en","description":"Een snelle, doorzoekbare e-mailfunctie met minder spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"prefs":{"preference_reset_time":"13057089660964485"},"protection":{"macs":{"browser":{"show_home_button":"B00F11EB25E6A412C77EDF110C69AA62F3FF9EBEECD126FB332C56211657A471"},"default_search_provider":{"keyword":"9CFC73A943D2D861BF7D380364982DA3E121062835B637A1481FE196E14CCD59","name":"7B5C3F0A74E7E65F4389F70BCCCB1D04D4EAABF996E6E1098660C5EB94064D4F","search_url":"6CC443A6E326A6656FA3BDB8EF004DE450792C6DA459D336A5432D465ECD4FDE"},"default_search_provider_data":{"template_url_data":"8FF81F4AD87C746E63483BEDA67D70CED8FC1E2439BA5FF948CAB80908D8DF20"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"457B8DECE35DF3DF3194C98EF15589DB67C3D024EAA71204B2674EDD6E91957F","aohghmighlieiainnegkcijnfilokake":"AE981162551D4418C6B9A140A15CD192B30FE776D8F8B8EC7B41C738A63ECB10","apdfllckaahabafndbhieahigkjlhalf":"02D79ABF9818B9912954262F5B7AA79D3C62F3100A37362CB26E9DDFA64BCCB3","bepbmhgboaologfdajaanbcjmnhjmhfn":"1838ED0612D160DDBF229F3B6CFDCD954649C99AB55C8F8FA50E4F5DB15A5BCB","blpcfgokakmgnkcojhhkbfbldkacnbeo":"8ACF11F0A450D20EA37F43A17D731D1FD90D9F30EBA0E76CBAA5628AE2C27EE2","cfhdojbkjhnklbpkdaibdccddilifddb":"3DDE7E079F15498846F0426F39FA7482D77522669FB5F22752D8EC8DE56AEFE2","coobgpohoikkiipiblmjeljniedjpjpf":"D75E1FF39E6FC1CCBDE66B0F59CB8AAABCB69F520AC540B845A4C90A0912B049","eemcgdkfndhakfknompkggombfjjjeno":"79D3017E1E12179EE87DAFDE487FA7520AE0D9683A84E1E63E0A3E1B85E35388","ennkphjdgehloodpbhlhldgbnhmacadg":"3D0FA731F75C4125AF0FC4D0A2AC6D3F2282D7979B2B57167A31D17EC681D797","gfdkimpbcpahaombhbimeihdjnejgicl":"5301264F886E30BBDBA55C0A3B0DF7BEB19EE2EF7136AFDA20C8393C1C0CEFDB","gmlllbghnfkpflemihljekbapjopfjik":"C157274E08076BDB6146BD42E8F1B48FB3C8F3536638A1F660BD4BB005CF062D","iikflkcanblccfahdhdonehdalibjnif":"A2E83D6E264E29A191B77A96F805E089644CC74B22BC2203E089BB596ECC1BED","kmendfapggjehodndflmmgagdbamhnfd":"9F22ED514DA4690A797BAB59189D62CDBB95007B71D89065D9B71357DDDEE0C5","mfehgcgbbipciphmccgaenjidiccnmng":"2B38776AD6B5095C72FE9B2EF6811EE6E087907A7A30B559E91ACB9D6ABD5FEE","mfffpogegjflfpflabcdkioaeobkgjik":"DC7CA014A652C63D3EAEF611C0D9C39889151260DA15371713CAE8BAB5FCE837","mgndgikekgjfcpckkfioiadnlibdjbkf":"2A1D2B882F9F3E2DFF704F7B74A99F81A14656D01FD16BC0297C336DB256B112","mhjfbmdgcfjbbpaeojofohoefgiehjai":"047713D4F6A33BEA5B40309A1960467795AADA6D8F6850155C33C1E33D417FDF","mkfokfffehpeedafpekjeddnmnjhmcmk":"8339F190581CCE39A6B8E6A516A7E28F0BCACC84739731557F9BA8F0EFCA8F46","neajdppkdcdipfabeoofebfddakdcjhd":"05AE021175FA284A35062E03D138A95915068EE5E0D897778629E5F029F87260","nkeimhogjdpnpccoofpliimaahmaaome":"2DB0D787A13343960E014FFC8C92B70760C01684AA13B979BFE6DCA8C74B27F7","nmmhkkegccagdldgiimedpiccmgmieda":"257BF00DCBE847718AAF144AC36C38DC0D8757B72F2E8538EA501CC190860FED","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"A8A7060CFDA3C60C698876A8A2B53E767F71572711D855A243B36CC1F63B50EB","pjkljhegncpnkpknbcohdijeoejaedia":"435CCA462F158BFDE36EFFEEE30D013FDECE0E49755B0D24791FC041D18BD982"}},"google":{"services":{"last_username":"A52E46D3DA0440FA04748557A4B8268658EAFD5973616CFC8E736C5FA7C5F8A0","username":"849ED77C83555B800F10E0EA7DFFDA040614E48B4464C1DF113742294E982F06"}},"homepage":"4E1ABABAB5920F8E2ECC1B1CEB82098C2F37ED1BD4B2FD521ACB727F4D93668D","homepage_is_newtabpage":"9A369073C85970598024CA1CFD840F2E8BC67EE5A9C10CBEB9A35ED3D3A27C55","pinned_tabs":"6B61CCF905089CFCADDC22F4059D3F19E3C38D6D8400086F5E10CABE12CA1BC1","prefs":{"preference_reset_time":"7A9D738140D1ED08526F5D46C909F7436BCDD5308E613324F5BF226C7F9BD7F6"},"profile":{"reset_prompt_memento":"72B44D12F1FCD2EDCEE40D3441B298A39C9F47A4BEEB3C304CF6925FBED809C9"},"safebrowsing":{"incidents_sent":"AA7903C1AE3D6E30705AB0C411BEE4EE087D2F7BCF63CBA6EDA9C2706DCEC141"},"search_provider_overrides":"5D482D7AD69D6780DCE1301B32AEE62B8EA8A0C724256532D9927D9605AAC83F","session":{"restore_on_startup":"BDC3630289B59E99C01B935AFD9F7EF08C01A21E791B34314D2A215A30314504","startup_urls":"32A57352FB9BFEEE1A10CD3BC56300056223540D908DFBB0F73951A97F4E6690"},"software_reporter":{"prompt_reason":"27B4957A51E21121CA4AF0F02761A3A1C9BFE6A2363D0C8E9BCD9FA6DE1C49DC","prompt_seed":"562EA459E8C6D326898046C546AE3131642AF78038323AC7BFEBA1E6D7B067CD","prompt_version":"94AA7F7F87FB773D17A27B926978196B9F18A9D110A26863839C54429DF666BE"},"sync":{"remaining_rollback_tries":"FE351B80A0813DC07F99E58409A73353A2EEFC564DEA34702FD448839104B7A4"}},"super_mac":"3E776137B22FD0349F36FD557C011A911BA9A1713EAC307636BF427E532C87E6"},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\AA5C8F95DB19D324FB50908AF09398F8 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{59F8C5AA-91BD-423D-BF05-09A80F39898F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\AA5C8F95DB19D324FB50908AF09398F8 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\kzcfu5q9.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1635 folders=312 205440068 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\User\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\User\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 25/05/2015 at 21:55:21,60 ======================