
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Gebruiker on do 21/07/2016 at 19:38:01,37.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

21/07/2016 19:39:51 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Docudesk deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\Program Files\log deleted successfully
C:\PROGRA~3\IDM deleted successfully
C:\PROGRA~3\Riot Games deleted successfully
C:\Users\Gebruiker\AppData\Roaming\DMCache deleted successfully
C:\Users\Gebruiker\AppData\Local\Samsung deleted successfully
C:\Users\Gebruiker\AppData\Local\Skype deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-404806324-2896602244-1333454094-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B851AF-A4B9-43EF-97D3-28E1B4A5DB9B} deleted successfully
HKEY_USERS\S-1-5-21-404806324-2896602244-1333454094-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} deleted successfully
HKEY_USERS\S-1-5-21-404806324-2896602244-1333454094-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Docudesk not found
C:\Users\Gebruiker\AppData\Roaming\Jivaro ehf deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Gebruiker\AppData\Local\Unity deleted
C:\Users\Gebruiker\AppData\LocalLow\Unity deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\ProgramData\mntemp" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-07-19 10:56:27	D1E75542EC8D1B4851765A57AC63618E	1908	----a-w-	C:\Windows\diagwrn.xml
2016-07-19 10:56:27	D1E75542EC8D1B4851765A57AC63618E	1908	----a-w-	C:\Windows\diagerr.xml
2016-07-19 10:52:29	09394999ADB19901C665454EE964B13C	36	----a-w-	C:\Windows\progress.ini
====== C:\Users\GEBRUI~1\AppData\Local\Temp ====
2016-07-19 00:00:58	7B9070ED7DA9515C4CC28B7C785FAA97	160505000	----a-w-	C:\Users\Gebruiker\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe
2016-07-18 23:26:41	6A595149ED17172B1B6A40D78AD227C2	200629	----a-w-	C:\Users\Gebruiker\AppData\Local\Temp\Uninstall.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
2016-07-19 17:49:45	A29209BA2666B3DBBE3108FB8B3E04D6	3210	----a-w-	C:\Windows\Sysnative\Tasks\HPCeeScheduleForGebruiker
2016-07-19 17:49:44	7960E701E62FA09E9FCF306431AF1C95	348	----a-w-	C:\Windows\Tasks\HPCeeScheduleForGebruiker.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2016-07-19 09:06:25	--------	d-----w-	C:\PROGRA~2\Trend Micro
======= C: =====
2016-07-18 23:38:10	DF115DD099F95546A3679F0C8CC5D325	525	----a-w-	C:\DelFix.txt
====== C:\Users\Gebruiker\AppData\Roaming ======
2016-07-17 16:45:50	--------	d-----w-	C:\Users\Gebruiker\AppData\Local\CEF
====== C:\Users\Gebruiker ======
2016-07-19 09:33:08	F931C043A48FF5F244548CE7F15677A1	5792848	----a-w-	C:\Users\Gebruiker\Downloads\Windows10Upgrade9252.exe

====== C: exe-files ==
2016-07-19 11:24:24	89A727A602F04764E1B09EE2C5AB9B35	78608	----a-w-	C:\ProgramData\Avg\Setup\av\avguirux.exe
2016-07-19 11:24:24	6A5E682FEE08DE6A7C94EF36A68D0E3F	6083776	----a-w-	C:\ProgramData\Avg\Setup\av\avgmfapx.exe
2016-07-19 09:33:20	4E98927BD83484DE8165C94E10048829	25288	----a-w-	C:\Windows10Upgrade\WinREBootApp32.exe
2016-07-19 09:33:20	1EA0F2A21CF6D9D0043B1568B195A931	25800	----a-w-	C:\Windows10Upgrade\WinREBootApp64.exe
2016-07-19 09:33:20	199D21DFFFCB5BFC453208A12FACE22B	1217736	----a-w-	C:\Windows10Upgrade\Windows10UpgraderApp.exe
2016-07-19 09:33:18	FD8986E481DE13356EF3A4417B7E3763	643784	----a-w-	C:\Windows10Upgrade\DW20.EXE
2016-07-19 09:33:18	C118049D78064A155F73C61F86CF59F7	73416	----a-w-	C:\Windows10Upgrade\GetCurrentRollback.EXE
2016-07-19 09:33:18	68A19AA05E8BCF471C35A0DCD71B51D8	118472	----a-w-	C:\Windows10Upgrade\bootsect.exe
2016-07-19 09:33:18	56861A3B834FC0B58CFFC80C2BE686CB	564936	----a-w-	C:\Windows10Upgrade\GatherOSState.EXE
2016-07-19 09:33:18	50DA7CD4D2EFC9CC5E414C167A812EA0	27848	----a-w-	C:\Windows10Upgrade\HttpHelper.exe
2016-07-19 09:33:18	38098CD16AF16A0DD98DEB20909F20FD	45768	----a-w-	C:\Windows10Upgrade\DWTRIG20.EXE
2016-07-19 09:33:08	F931C043A48FF5F244548CE7F15677A1	5792848	----a-w-	C:\Users\Gebruiker\Downloads\Windows10Upgrade9252.exe
2016-07-19 00:00:58	7B9070ED7DA9515C4CC28B7C785FAA97	160505000	----a-w-	C:\Users\Gebruiker\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe
2016-07-18 23:26:41	6A595149ED17172B1B6A40D78AD227C2	200629	----a-w-	C:\Users\Gebruiker\AppData\Local\Temp\Uninstall.exe
2016-07-17 16:44:37	E33B27D07B94AC3F198E06F0BA83D227	1881168	----a-w-	C:\Program Files (x86)\Steam\bin\html5app_steam.exe
2016-07-17 16:44:32	9F1AE66D7954FE2E0909A5EBC6B94798	67072	----a-w-	C:\Program Files (x86)\Steam\bin\wow_helper.exe
2016-07-17 13:02:12	2FFAA3670FC3C74A90F794EBE858AEB3	39223576	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2016\fm.exe
2016-07-17 13:02:12	14BB56B052D29B8F1952419AF1D88C77	667418	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2016\helper.exe
2016-07-17 13:02:09	BF3F290275C21BDD3951955C9C3CF32C	517976	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2016\_CommonRedist\DirectX\Jun2010\DXSETUP.exe
=== C: other files ==
2016-07-19 09:33:19	16E552B1A35F5323DB573E958C8EAD5A	20144	----a-w-	C:\Windows10Upgrade\resources\i386\NXQuery.sys
2016-07-19 09:33:18	354BEC8655766C0DDE073852CC5341A7	20656	----a-w-	C:\Windows10Upgrade\resources\amd64\NXQuery.sys
2016-07-18 20:52:44	7A1A82EF8739732B95F2453E5DBE94B9	146	----a-w-	C:\Users\Gebruiker\AppData\Local\Temp\DeleteOnReboot.bat
2016-07-15 19:45:05	73909F20001D8E357BF26DC15D748425	181819	----a-w-	C:\ProgramData\Avg\AV\IDS\outbox\tmp_f4466fff-7cdf-47cc-be49-d16fd84742f9.zip
2016-07-14 19:44:05	02A2F68F8783175B1FDA5BBBD4167314	159069	----a-w-	C:\ProgramData\Avg\AV\IDS\outbox\tmp_8677d3b0-7c06-47cc-be49-d16fd84742f9.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-404806324-2896602244-1333454094-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"UpdatePRCShortCut"="C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Hewlett-Packard\Recovery UpdateWithCreateOnce Software\CyberLink\PowerRecover"
"AVG_UI"="C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe"
"AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe /lps=fmw"
"Gaming mouse"="C:\Program Files (x86)\Gaming Mouse\Monitor.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"
"SBRegRebootCleaner"="C:\Program Files (x86)\Ad-Aware Antivirus\SBRC.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Creative Cloud]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe Creative Cloud"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Adobe\\Adobe Creative Cloud\\ACC\\Creative Cloud.exe\" --showwindow=false --onOSstartup=true"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AgentMonitor]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AgentMonitor"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\VTech\\DownloadManager\\System\\AgentMonitor.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\deskPDF Creator]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="deskPDF Creator"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Docudesk\\deskPDF Studio X\\deskPDFCreator.exe\" -minimize"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Easybits Recovery]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Easybits Recovery"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\EasyBits For Kids\\ezRecover.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Magic Desktop for HP notification]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Magic Desktop for HP notification"
"hkey"="HKLM"
"command"="\"C:\\ProgramData\\Easybits Magic Desktop for HP\\mdhpSUN.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MyDriveConnect.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MyDriveConnect.exe"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\MyDrive Connect\\TomTom MyDrive Connect.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QlbCtrl.exe]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QlbCtrl.exe"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SideSync]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SideSync"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Samsung\\SideSync4\\SideSync.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WirelessAssistant]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="WirelessAssistant"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Wireless Assistant\\HPWAMain.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk]
"item"="CodecPackUpdateChecker"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CodecPackUpdateChecker.lnk"
"backup"="C:\\Windows\\pss\\CodecPackUpdateChecker.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Windows\\SysWOW64\\C2MP\\UpdateChecker.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Gebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk]
"item"="Curse"
"path"="C:\\Users\\Gebruiker\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Curse.lnk"
"backup"="C:\\Windows\\pss\\Curse.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\GEBRUI~1\\AppData\\Roaming\\CURSEC~1\\Bin\\Curse.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Gebruiker^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Magician.lnk]
"item"="Samsung Magician"
"path"="C:\\Users\\Gebruiker\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Samsung Magician.lnk"
"backup"="C:\\Windows\\pss\\Samsung Magician.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\SAMSUN~1\\SAMSUN~1.EXE"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2015 00:42]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2015 00:42]
C:\Windows\tasks\HPCeeScheduleForGebruiker.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [16/06/2015 10:51]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Ad-Aware Antivirus Scheduled Scan" [C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe]
"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CapSchedInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]
"C:\Windows\SysNative\tasks\CapSvcInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]
"C:\Windows\SysNative\tasks\CapUninst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CLMLSvc" [C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForGebruiker" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe"]
"C:\Windows\SysNative\tasks\TVAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe]
"C:\Windows\SysNative\tasks\{860D0456-34D4-4E1E-B396-EE0DF5A3DE45}" [C:\Users\Gebruiker\Desktop\Zeus\Zeus.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\HP Total Care Tune-Up" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\TomTom\HOME\Profiles\6al38keo.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86


Google Docs - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
AdBlock Premium - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj
Google Docs Offline - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Hola Vpn 2015 - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianaionlabflpaooinonaddfejlpjbdb
Chrome Web Store Payments - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"
"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_BE&c=94&bd=Pavilion&pf=cnnb"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="https://www.google.be/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{00FCA54A-9712-4751-96D6-A7D5259BE4AA} - http://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{71855A1C-D871-4B86-839D-8CA0660E6A9F} - http://nb.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913938
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{00FCA54A-9712-4751-96D6-A7D5259BE4AA} - http://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{71855A1C-D871-4B86-839D-8CA0660E6A9F} - http://nb.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913938
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{00FCA54A-9712-4751-96D6-A7D5259BE4AA} - No_Url_Value
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{71855A1C-D871-4B86-839D-8CA0660E6A9F} - No_Url_Value

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\deskPDF Creator deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=128 folders=80 160396039 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on do 21/07/2016 at 20:28:19,20 ======================