
Zoek.exe v5.0.0.1 Updated 24-December-2015
Tool run by zielrob on vr 25-12-2015 at 19:36:32,93.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\zielrob\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

25-12-2015 19:40:20 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AVS4YOU deleted successfully
C:\PROGRA~2\Citrix deleted successfully
C:\PROGRA~2\Contendo Games deleted successfully
C:\PROGRA~2\ConvertPDF2WordPlus deleted successfully
C:\PROGRA~2\Freemake deleted successfully
C:\PROGRA~2\GUM190B.tmp deleted successfully
C:\PROGRA~2\GUM2FDB.tmp deleted successfully
C:\PROGRA~2\GUM43AA.tmp deleted successfully
C:\PROGRA~2\GUM46F4.tmp deleted successfully
C:\PROGRA~2\GUM5245.tmp deleted successfully
C:\PROGRA~2\GUM8CC4.tmp deleted successfully
C:\PROGRA~2\GUMB2B7.tmp deleted successfully
C:\PROGRA~2\GUMCBB7.tmp deleted successfully
C:\PROGRA~2\GUMD806.tmp deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\Optimizer Pro 3.79 deleted successfully
C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\CanonIJPLM deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully
C:\Users\Administrator\AppData\Roaming\Soundlib deleted successfully
C:\Users\Administrator\AppData\Roaming\Syncios deleted successfully
C:\Users\zielrob\AppData\Roaming\EncryptStick deleted successfully
C:\Users\zielrob\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\zielrob\AppData\Roaming\Soundlib deleted successfully
C:\Users\Administrator\AppData\Local\EmieSiteList deleted successfully
C:\Users\Administrator\AppData\Local\EmieUserList deleted successfully
C:\Users\Gast\AppData\Local\VirtualStore deleted successfully
C:\Users\zielrob\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\zielrob\AppData\Local\EmieSiteList deleted successfully
C:\Users\zielrob\AppData\Local\EmieUserList deleted successfully
C:\Users\zielrob\AppData\Local\MigWiz deleted successfully
C:\Users\zielrob\AppData\Local\photoOptimizeHistoryDataBase deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1482963906-4289716815-1269718838-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
HKEY_USERS\S-1-5-21-1482963906-4289716815-1269718838-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98D6E2AD-7673-4742-8B34-6D327771A66D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LiveUpdateSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Npggsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Npggsvc deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\zielrob\AppData\Roaming\Mozilla\Firefox\Profiles\6lpzz4mu.default-1392337140232

user.js not found
---- Lines Search  modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"smartwebprinting@hp.com\":{\"descriptor\":\"C:\\\\Program Files (
---- Lines searchengine removed from prefs.js ----
user_pref("browser.search.searchengine.alias", "luckysearches");
user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine");
user_pref("browser.search.searchengine.iconURL", "http://www.luckysearches.com/favicon.ico");
user_pref("browser.search.searchengine.name", "luckysearches");
user_pref("browser.search.searchengine.ptid", "cmi");
user_pref("browser.search.searchengine.uid", "HitachiXHCS5C1010CLA382_JC0950HX1J0JZH1J0JZHX");
user_pref("browser.search.searchengine.url", "http://www.luckysearches.com/web/?type=ds&ts=1429272465&from=cmi&uid=HitachiXHCS5C1010CLA382_JC0950HX1J0
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 1);
---- FireFox user.js and prefs.js backups ---- 

prefs_25-12-2015_1958_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter Home Page Guard 64 bit] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Batch Command(s) Run By Tool======================


De Winsock-catalogus is opnieuw ingesteld.
De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\AVS4YOU not found
C:\PROGRA~2\Citrix not found
C:\PROGRA~2\Contendo Games not found
C:\PROGRA~2\ConvertPDF2WordPlus not found
C:\PROGRA~2\Freemake not found
C:\PROGRA~2\GUM190B.tmp not found
C:\PROGRA~2\GUM2FDB.tmp not found
C:\PROGRA~2\GUM43AA.tmp not found
C:\PROGRA~2\GUM46F4.tmp not found
C:\PROGRA~2\GUM5245.tmp not found
C:\PROGRA~2\GUM8CC4.tmp not found
C:\PROGRA~2\GUMB2B7.tmp not found
C:\PROGRA~2\GUMCBB7.tmp not found
C:\PROGRA~2\GUMD806.tmp not found
C:\PROGRA~2\Optimizer Pro 3.79 not found
C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
"C:\Users\zielrob\AppData\Roaming\TJAOMV.exe" not found
C:\Users\zielrob\AppData\Local\Citrix deleted
C:\PROGRA~2\Raptr deleted
C:\PROGRA~2\FoxTabVideoConverter deleted
C:\PROGRA~2\Wondershare deleted
C:\user.js deleted
C:\install.exe deleted
C:\Users\Administrator\AppData\Roaming\ProductData deleted
C:\Users\zielrob\AppData\Roaming\ProductData deleted
C:\Users\zielrob\AppData\Roaming\Hotspot Shield deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Hotspot Shield deleted
C:\Users\zielrob\Music\Qtrax Media Library deleted
C:\PROGRA~3\Hotspot Shield deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\{27AE6DBC-0CA4-4761-8752-2B1ADDB90175} deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\zielrob\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\Users\zielrob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player (2).lnk deleted
C:\Users\zielrob\AppData\LocalLow\microsoft\silverlight\outofbrowser\index\portal.qtrax.com deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Windows\SysWOW64\CCL.dll deleted
C:\Windows\Syswow64\Hotspot Shield deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\zielrob\Desktop\Continue Live Installation.lnk deleted
C:\Users\zielrob\Desktop\Bureaublad2\Oude Firefox-gegevens\dt1sstv8.default\extensions\ffxtlbra@softonic.com\content\softonic.css deleted
C:\Users\zielrob\Desktop\Bureaublad2\Oude Firefox-gegevens\dt1sstv8.default\extensions\ffxtlbra@softonic.com\content\softonic.xul deleted
"C:\Windows\tasks\TJAOMV.job" deleted
"C:\Users\zielrob\AppData\Roaming\TJAOMV" deleted
"C:\Windows\tasks\TJAOMV.job" deleted
"C:\Windows\SysNative\tasks\TJAOMV" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-11-28 16:11:58	EEF087BACF4D6A218CDEDEA4C1154EC6	909107619	----a-w-	C:\Windows\MEMORY.DMP
2015-11-27 12:03:47	F7E443FADE65BA4541052DA4765A0A20	7979	----a-w-	C:\Windows\BROPJ562DW.INI
2015-11-27 12:03:47	A98912B679566020CC218DACF2BE8010	8051	----a-w-	C:\Windows\BRRBCOM.INI
====== C:\Users\zielrob\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2015-12-21 10:12:10	8DE1B4F579F8F8897409856F3BB7A7D2	58056	----a-w-	C:\Windows\Sysnative\drivers\fssfltr.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-12-24 19:05:34	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-12-21 10:06:51	--------	d-----w-	C:\PROGRA~2\Microsoft OneDrive
2015-11-28 15:44:59	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-11-27 12:04:50	--------	d-----w-	C:\PROGRA~2\Browny02
2015-11-27 12:04:44	--------	d-----w-	C:\PROGRA~2\ControlCenter4
2015-11-27 11:40:28	--------	d-----w-	C:\PROGRA~2\Brother
======= C: =====
====== C:\Users\zielrob\AppData\Roaming ======
2015-12-25 18:59:12	--------	d-----w-	C:\Users\zielrob\AppData\Roaming\ProductData
2015-12-17 09:41:41	--------	d-----w-	C:\Users\zielrob\AppData\Locallow\Brother
2015-12-17 09:41:41	--------	d-----r-	C:\Users\zielrob\AppData\Roaming\Brother
2015-11-30 08:58:18	--------	d-----w-	C:\Users\Default\AppData\Local\Google
2015-11-30 08:58:18	--------	d-----w-	C:\Users\Default User\AppData\Local\Google
2015-11-29 16:24:15	--------	d-----w-	C:\Users\Administrator\AppData\Roaming\ControlCenter4
2015-11-28 11:01:59	--------	d-----w-	C:\Users\zielrob\AppData\Roaming\ControlCenter4
====== C:\Users\zielrob ======
2015-12-25 18:59:11	--------	d-----w-	C:\ProgramData\ProductData
2015-12-24 19:05:00	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\zielrob\Desktop\RSITx64.exe
2015-12-22 19:28:59	35D60FD322B1A61AAE7ADF909B6C0B26	7635472	----a-w-	C:\Users\zielrob\Downloads\GetWindows10-Web_Default_Attr.exe
2015-12-21 10:06:50	--------	d-----r-	C:\Users\zielrob\OneDrive
2015-12-21 10:06:39	--------	d-----w-	C:\ProgramData\Microsoft OneDrive
2015-12-21 10:01:44	EAAC9C55FE94EB3B4DBE74DC13409275	1243328	----a-w-	C:\Users\zielrob\Downloads\wlsetup-web_NL.exe
2015-11-29 16:24:13	--------	d-----w-	C:\Users\Administrator\temp
2015-11-27 12:05:00	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2015-11-27 12:04:44	--------	d-----w-	C:\ProgramData\ControlCenter4
2015-11-27 12:03:19	--------	d-----w-	C:\ProgramData\Brother

====== C: exe-files ==
2015-12-24 19:05:34	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\zielrob.exe
2015-12-22 20:33:29	7F056C6D821E3A6E65D61D08D69CE751	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1482963906-4289716815-1269718838-1000\$I981OIL.exe
2015-12-22 19:31:33	35D60FD322B1A61AAE7ADF909B6C0B26	7635472	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1482963906-4289716815-1269718838-1000\$R981OIL.exe
2015-12-21 10:06:51	B18FF6F1680E0B2E2F2A63AD2F335AA7	6081224	----a-w-	C:\Program Files (x86)\Common Files\Windows Live\.cache\c61318c81d13bd604\onedrivesetup.exe
2015-12-21 10:03:09	DDCE338BB173B32024679D61FB4F2BA6	537432	----a-w-	C:\Program Files (x86)\Common Files\Windows Live\.cache\c94853861d13bd605\DXSETUP.exe
2015-12-21 10:02:58	F5443547CAAC20AA334A88817579270F	525656	----a-w-	C:\Program Files (x86)\Common Files\Windows Live\.cache\c2b0a3e41d13bd602\DXSETUP.exe
2015-12-21 10:02:49	DDCE338BB173B32024679D61FB4F2BA6	537432	----a-w-	C:\Program Files (x86)\Common Files\Windows Live\.cache\bec680911d13bd601\DXSETUP.exe
2015-12-21 09:26:20	AFD98C3E61AE24C9B4BE8DD08DC2E58D	949536	----a-w-	C:\Program Files (x86)\IObit\Surfing Protection\FFPluginCleaner.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1482963906-4289716815-1269718838-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="C:\nuttig\SUPERAntiSpyware.exe"
"Spotify Web Helper"="C:\Users\zielrob\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"uTorrent"="C:\Users\zielrob\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"Microsoft Default Manager"="C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe -resume"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"DiscWizardMonitor.exe"="C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"AcronisTibMounterMonitor"="C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"
"Syncios device service"="C:\Program Files (x86)\Syncios\SynciosDeviceService.exe"
"ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun"
"BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN"
"BrHelp"="C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe /AUTORUN"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="C:\nuttig\SUPERAntiSpyware.exe"
"Spotify Web Helper"="C:\Users\zielrob\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"uTorrent"="C:\Users\zielrob\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Seagate Scheduler2 Service"="C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"Monitor"="C:\Windows\PixArt\PAC207\Monitor.exe"
"CanonSolutionMenu"="C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AirVideoServer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AirVideoServer"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\AirVideoServer\\AirVideoServer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppleIEDAV]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AppleIEDAV"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\Apple\\Internet Services\\AppleIEDAV.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApplePhotoStreams]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ApplePhotoStreams"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\Apple\\Internet Services\\ApplePhotoStreams.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonMyPrinter]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CanonMyPrinter"
"hkey"="HKLM"
"command"="C:\\Program Files\\Canon\\MyPrinter\\BJMyPrt.exe /logon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite Automount]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite Automount"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTAgent.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iCloudServices]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iCloudServices"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\Apple\\Internet Services\\iCloudServices.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="KiesTrayAgent"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Samsung\\Kies\\KiesTrayAgent.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSN Toolbar]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MSN Toolbar"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\MSN Toolbar\\Platform\\4.0.0357.1\\mswinext.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MyDriveConnect.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MyDriveConnect.exe"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\MyDrive Connect\\TomTom MyDrive Connect.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MyTomTomSA.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MyTomTomSA.exe"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\MyTomTom 3\\MyTomTomSA.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Steam\\steam.exe\" -silent"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Device Monitor 3.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Device Monitor 3.lnk"
"backup"="C:\\Windows\\pss\\Device Monitor 3.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\PIXELA\\EVERIO~1\\MBCAME~1.EXE "
"item"="Device Monitor 3"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^zielrob^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
"path"="C:\\Users\\zielrob\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk"
"backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\zielrob\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe /systemstartup"
"item"="Dropbox"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device]


==== Startup Folders ======================

2015-08-31 00:56:36	2159	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09-12-2015 10:41]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30-08-2015 16:44]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe]
"C:\Windows\SysNative\tasks\ASC8_SkipUac_zielrob" ["C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe" /SkipUac]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\Driver Booster Scan" [C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe]
"C:\Windows\SysNative\tasks\Driver Booster SkipUAC (zielrob)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe]
"C:\Windows\SysNative\tasks\Driver Booster Update" [C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\Tweaking.com - Windows Repair Tray Icon" [C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Administrator" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_zielrob" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\{01B1DB0E-B04A-46E2-A13C-1D24F701A1FD}" [E:\setup.exe]
"C:\Windows\SysNative\tasks\{409FFC79-AEDB-409F-9835-EFC5B20E16D9}" [C:\Program Files (x86)\VideoLAN\VLC\vlc.exe]
"C:\Windows\SysNative\tasks\{4E3E0B03-B859-41AB-91D1-EDB4746FF601}" [E:\setup.exe]
"C:\Windows\SysNative\tasks\{66E8D75E-C0CA-4822-A0E0-645CD7083A3E}" [C:\Windows\twain_32\SlimU2TA\HotKey.Exe]
"C:\Windows\SysNative\tasks\{9847D78C-89DE-4CB9-A91F-9F51FC76F9A9}" [E:\Setup.exe]
"C:\Windows\SysNative\tasks\{B22EAF3C-AA13-43D7-AB88-0BDC9FDFF5C1}" [E:\setup.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{27182e60-b5f3-411c-b545-b44205977502}"="C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension" [27-09-2014 22:01]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [26-09-2014 11:16]

==== Firefox Extensions ======================

ExtDir: C:\Users\zielrob\AppData\Roaming\Mozilla\Extensions
- Undetermined - %ExtDir%\{C2C2A16E-2E64-478A-992C-82E136577FCD}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
- Hotspot Shield Extension - %AppDir%\browser\extensions\afproxy@anchorfree.com
- Undetermined - %AppDir%\extensions\{C2C2A16E-2E64-478A-992C-82E136577FCD}

==== Firefox Plugins ======================

Profilepath: C:\Users\zielrob\AppData\Roaming\Mozilla\Firefox\Profiles\6lpzz4mu.default-1392337140232
DD29617135D8166873E4EFD26D2BA353	- C:\Windows\SysWoW64\npkfxmp.dll -	nProtect KeyCrypt V6.0
87132527E2256CF6683A18C4EB34DD3B	- C:\Windows\system32\Wat\npWatWeb.dll -	Windows Activation Technologies
15E298B5EC5B89C5994A59863969D9FF	- C:\Windows\system32\npmproxy.dll -	Microsoft� Windows� Operating System
B367F8D9FD257136D323176642CD1474	- C:\Windows\SysWoW64\npkfxjv.dll -	nProtect KeyCrypt V6.0
DA5ADC4CCF69F0D7A497DD528AF3757B	- C:\Windows\SysWoW64\npkfxcv.dll -	nProtect KeyCrypt V6.0
BA5B88B5724D550BC8AE108CDC736C53	- C:\Windows\SysWoW64\npkfxmi.dll -	nProtect KeyCrypt V6.0
FA08731F6C8436F2CD5F95E316AD0450	- C:\Windows\SysWoW64\npkfxne.dll -	nProtect KeyCrypt V6.0
3E5EF9FCCC246A410E4F1D7C1ACB0E00	- C:\Windows\SysWoW64\npkfxmoz.dll -	nProtect KeyCrypt V6.0
658D3131FE8FD9D07244FEA3D93A8BE0	- C:\Windows\SysWoW64\npkfxrsen.dll -	nProtect KeyCrypt V6.0
69C07DFDA70C33F9FE94F1ADF316FF0C	- C:\Windows\SysWoW64\npkfxrskr.dll -	nProtect KeyCrypt V6.0
73258D97A52157A30475C5E43AD932DA	- C:\Windows\SysWoW64\npkfxpa.dll -	
F462CACB8D2500B074490933052CA2C4	- C:\Windows\SysWoW64\npkfxexp.dll -	nProtect KeyCrypt V6.0
D38F448353426F3CBAD4588C681253C1	- C:\Windows\SysWoW64\npkfx.dll -	nProtect KeyCrypt FX
F7A05DED8C67C18CDE000C87FB20B219	- C:\Windows\SysWoW64\npkfxes.dll -	nProtect KeyCrypt V6.0
FCB27D5607B51AAA5668EADF1747D577	- C:\Windows\SysWoW64\npkfxsdk.dll -	nProtect KeyCrypt FX


==== Deleted Firefox Extensions ======================

C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com deleted

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[12-10-2015 08:31]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

Google Docs - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Docs Offline - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Skype Click to Call - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Web Store Payments - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Drive - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
selector is not a valid CSS selector - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Smash Streams - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhbmiekfpeonammafmjlikbljmlobggb
Google Docs Offline - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Reddit Enhancement Suite - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb
Skype - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Drive App Launcher - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
Chrome Web Store Payments - zielrob\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Startpages ======================

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/",
"startup_urls": [ "http://www.google.com/" ],


==== Chromium Fix ======================

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\Wow6432Node\SearchScopes "DefaultScope"=""
HKCU\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

==== Reset Google Chrome ======================

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal.protect was reset successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Web Data.protect was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\virtualKeyboard@kaspersky.ru deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\KavAntiBanner@Kaspersky.ru deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\linkfilter@kaspersky.ru deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirVideoServer deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\zielrob\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\zielrob\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\zielrob\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=163 folders=110 272640913 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\zielrob\AppData\Local\Temp will be emptied at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\zielrob\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\SysNative\tasks\TJAOMV"  not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on vr 25-12-2015 at 23:51:05,63 ======================