
Zoek.exe Version 4.0.0.1 Updated 08-March-2013
Tool run by Fam. van Iersel on za 09-03-2013 at  9:27:14,96.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected

==== Running Processes ======================

C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlX64.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\system32\winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe
C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AvkBap64.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Users\Fam. van Iersel\Downloads\HijackThis (5).exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Users\Fam. van Iersel\Downloads\zoek (1)\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8D39864D-6AA1-4895-881D-1615455E35C0} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Files \ Folders ======================

"C:\Users\Fam. van Iersel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\22find.lnk" deleted
"C:\extensions.sqlite" deleted
"C:\Users\Fam. van Iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx" deleted
"C:\Program Files (x86)\Productivity_3" deleted
"C:\Program Files (x86)\DealBulldog Toolbar" deleted
"C:\Program Files (x86)\Common Files\337" deleted
"C:\Program Files (x86)\Yontoo" deleted
"C:\Program Files (x86)\WiseConvert_1.4" deleted
"C:\Program Files (x86)\Ask.com" deleted
"C:\Program Files (x86)\Conduit" deleted
"C:\Users\Fam. van Iersel\AppData\Roaming\Desk 365" deleted
"C:\Users\Fam. van Iersel\AppData\Roaming\Babylon" deleted
"C:\Users\Fam. van Iersel\AppData\Roaming\Systweak" deleted
"C:\Windows\SysWow64\searchplugins" deleted
"C:\Windows\SysWow64\Extensions" deleted
"C:\ProgramData\boost_interprocess" deleted
"C:\ProgramData\IBUpdaterService" deleted
"C:\ProgramData\Tarma Installer" deleted
"C:\ProgramData\Babylon" deleted
"C:\Users\Fam. van Iersel\AppData\Local\CRE" deleted
"C:\Users\Fam. van Iersel\AppData\Local\APN" deleted
"C:\Users\Fam. van Iersel\AppData\Local\Conduit" deleted
"C:\Users\Fam. van Iersel\AppData\LocalLow\AskToolbar" deleted
"C:\Users\Fam. van Iersel\AppData\LocalLow\DataMngr" deleted
"C:\Users\Fam. van Iersel\AppData\LocalLow\PriceGong" deleted
"C:\Users\Fam. van Iersel\AppData\LocalLow\Conduit" deleted
"C:\Users\Fam. van Iersel\AppData\LocalLow\Toolbar4" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\FAM~1.VAN\AppData\Local\Temp ====
2013-02-26 18:30:30	1AF5DB05F6E9040EF9320D72DA87BA14	744658	----a-w-	C:\Users\FAM~1.VAN\AppData\Local\Temp\HomePage22find.exe
====== C:\Windows\SysWOW64 =====
2013-02-26 21:53:27	EC68C565EFEE1AAE6174C17F826C9384	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2013-02-26 21:53:27	C28A634CF127DA67D566B5E14D0A0170	719360	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2013-02-26 21:53:27	C225E5307D8D4982A1687F2702C37C78	158720	----a-w-	C:\Windows\SysWOW64\msls31.dll
2013-02-26 21:53:27	BA15504FA59A8DC304F1CBAEBA6252A1	1766912	----a-w-	C:\Windows\SysWOW64\wininet.dll
2013-02-26 21:53:27	B3D105459BBA576A763E8C061E49F5C5	1129984	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2013-02-26 21:53:27	AF0332E09DDBE0172237D1958A7DADB8	79872	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2013-02-26 21:53:27	A3DA36A9E63FD0F9B45781E326AC6501	39936	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2013-02-26 21:53:27	9DF7A7C74D8632CB5EBD37E3A374825E	204800	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2013-02-26 21:53:27	96E0F0BED5D9EBABB899D8CA83C36A7E	523264	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2013-02-26 21:53:27	87E71F2A83681F41B796CA685818EF2D	163840	----a-w-	C:\Windows\SysWOW64\msrating.dll
2013-02-26 21:53:27	84AC80FCD61D389948B8C0E47623B79B	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-02-26 21:53:27	66D8CDC28A0AADDA34133AE733934658	2046464	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2013-02-26 21:53:27	52A7D73D5570F757D865DDECD087FB41	138752	----a-w-	C:\Windows\SysWOW64\wextract.exe
2013-02-26 21:53:27	338520304B99471BD0ED121954FE7863	82432	----a-w-	C:\Windows\SysWOW64\inseng.dll
2013-02-26 21:53:27	0402BFC25AB49E02256BC24E32829773	185344	----a-w-	C:\Windows\SysWOW64\elshyph.dll
2013-02-26 21:53:27	038F76279EC64878A072D988DE13C7B2	150528	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2013-02-26 21:53:26	F0D4AE074D9BC0741DC6E91C741F2F8C	23040	----a-w-	C:\Windows\SysWOW64\licmgr10.dll
2013-02-26 21:53:26	E3FA8AEAA2F40EC1BB00FEFB2C4F3AD9	14317568	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2013-02-26 21:53:26	E14A07B768EC49D382CABCE2F078D576	232960	----a-w-	C:\Windows\SysWOW64\url.dll
2013-02-26 21:53:26	DEFB55D4FF094673DF31FA89A8A8A2F0	226816	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2013-02-26 21:53:26	C68FBBF01E86CB6CF0B797748FBD6C1A	357888	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2013-02-26 21:53:26	B96C13B5C85AC4240FE95DE115945D59	38400	----a-w-	C:\Windows\SysWOW64\imgutil.dll
2013-02-26 21:53:26	AFE08AAD4D0D54FE2EF44739255AAA0F	2877440	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2013-02-26 21:53:26	A7E8E3A9F92D9B0D495F636A1D282883	48640	----a-w-	C:\Windows\SysWOW64\mshtmler.dll
2013-02-26 21:53:26	9D9AC6CE9A9D951AC40DE91CD6F0A620	1441280	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2013-02-26 21:53:26	932571EFF79B93F94E84ADF4989A277F	69120	----a-w-	C:\Windows\SysWOW64\icardie.dll
2013-02-26 21:53:26	8C3D32A4A46326031309A43C52539D7F	1400416	----a-w-	C:\Windows\SysWOW64\ieapfltr.dat
2013-02-26 21:53:26	8A45166CD9874463AB76B552C9C2D3AD	110592	----a-w-	C:\Windows\SysWOW64\IEAdvpack.dll
2013-02-26 21:53:26	87513A002B7B0F9C259F2431DFD008DC	137216	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2013-02-26 21:53:26	828B4A41BE891A7AEC07E693422B4A3A	117248	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2013-02-26 21:53:26	826D75A36336858B004774792DC4CF4F	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2013-02-26 21:53:26	81C4D657D37C3A5418B54BFECE821B84	57344	----a-w-	C:\Windows\SysWOW64\pngfilt.dll
2013-02-26 21:53:26	80B47F0F45C3EBF41C30E0BA367D25D3	125440	----a-w-	C:\Windows\SysWOW64\occache.dll
2013-02-26 21:53:26	6DF2C6438CFF6EFCBBB88AEE01795501	73728	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-02-26 21:53:26	56E51C26745FF7413514EA4DDF33BC6C	11776	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2013-02-26 21:53:26	50EE6790FBBCE920FFABAD5D747F2788	391680	----a-w-	C:\Windows\SysWOW64\ieui.dll
2013-02-26 21:53:26	4BF21D1946E8119D9C23F6F925D43F01	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2013-02-26 21:53:26	4A47CAEA8D3B82DE439A79771ECED4B1	361984	----a-w-	C:\Windows\SysWOW64\html.iec
2013-02-26 21:53:26	49C9634AD2516448A0250812B7F5325C	690688	----a-w-	C:\Windows\SysWOW64\jscript.dll
2013-02-26 21:53:26	414A3D9AAE072CDEFE0B64C2EBEE18D2	61952	----a-w-	C:\Windows\SysWOW64\tdc.ocx
2013-02-26 21:53:26	404FAD93ABFBD86D1AAAB47D5DFA6505	242200	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2013-02-26 21:53:26	3AB2A38F7EA9E62D176A78FB58761E24	12800	----a-w-	C:\Windows\SysWOW64\mshta.exe
2013-02-26 21:53:26	2D7A29C35D0894481A69FA3AC45F18F0	41984	----a-w-	C:\Windows\SysWOW64\msfeedsbs.dll
2013-02-26 21:53:26	1FF56AC32B38A94C3C88497BD6E00C96	25185	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2013-02-26 21:53:26	1DACF9167B6544536B6E9813EC026703	13761024	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2013-02-26 21:53:26	0F44172A5B34E8F208CD0F209EDD4A73	629248	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2013-02-26 21:53:26	06A2617B25C920887D80E8A79B7E48EA	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2013-02-26 21:53:26	059F9C59DAEDE8AF2C8C55BE278A99B0	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2013-02-26 21:52:19	FB3F036EF6A467F7AF46C821FF5D198D	220160	----a-w-	C:\Windows\SysWOW64\d3d10core.dll
2013-02-26 21:52:19	D4F264FE23F8953D840904418220C15E	293376	----a-w-	C:\Windows\SysWOW64\dxgi.dll
2013-02-26 21:52:19	D4212AB475A3B25EC4DF574536C3EDC5	249856	----a-w-	C:\Windows\SysWOW64\d3d10_1core.dll
2013-02-26 21:52:19	C7A730AFB80B11F93EFC81B1D6F920D7	364544	----a-w-	C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-02-26 21:52:19	B3170CCC779B682C3341873EA60CF084	1988096	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2013-02-26 21:52:19	9FF8F684BACF326082E5562F7C104A79	3419136	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2013-02-26 21:52:19	8B285BDAB7735FDFB18E6F7122923B77	187392	----a-w-	C:\Windows\SysWOW64\UIAnimation.dll
2013-02-26 21:52:19	8504944851DF6175CC489A8F3328459E	1080832	----a-w-	C:\Windows\SysWOW64\d3d10.dll
2013-02-26 21:52:19	7ACDFB4CC67F4993DF0E0731576309B2	1504768	----a-w-	C:\Windows\SysWOW64\d3d11.dll
2013-02-26 21:52:19	6A7B5A3EFCCDB53DA41CF6838056990F	1158144	----a-w-	C:\Windows\SysWOW64\XpsPrint.dll
2013-02-26 21:52:19	6A13B4F3B3F575F1E24B877B9359AABA	10752	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-02-26 21:52:19	6951562DC4625EEFC6EACD52AD165866	9728	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-02-26 21:52:19	62A6EB5771580CAE445804389F3F7432	207872	----a-w-	C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-02-26 21:52:19	60F4AEFA103D421EA4A40E31409B4756	3072	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-02-26 21:52:19	600A65F922CCDCBB2D11467914241556	2284544	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-02-26 21:52:19	589CBC4989F750E1DA35625AB481CF43	4096	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-02-26 21:52:19	545F1BAAADD0BF1F4FE4586293FCA07D	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
2013-02-26 21:52:19	4FF3EC04CD47DD62181894B71B004E40	604160	----a-w-	C:\Windows\SysWOW64\d3d10level9.dll
2013-02-26 21:52:19	49ACA548B2423F1C67898E6AC719A9A6	3584	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-02-26 21:52:19	4277F5164DE9B7C665BB928B9145BEE0	1247744	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2013-02-26 21:52:19	3C1936A12C62254F914A01BBC6A8DC69	161792	----a-w-	C:\Windows\SysWOW64\d3d10_1.dll
2013-02-26 21:52:19	3BE0D923AA45A4DBE091C2D84F0B4FE7	3072	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-02-26 21:52:19	3BCECD87AB4E6743BFB45B352AD1A529	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2013-02-26 21:52:19	2E33DFD10F28F86C3FC40EE123CC3904	2560	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-02-26 21:52:19	1C60E09CA1C3A045BC4D367F67C915B7	5632	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-02-26 21:52:19	007863E45F25AA47A4C30D0930BBFD85	5632	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-02-26 21:55:58	F6FF7917A2E1270C0DDE19E096A7808F	28672	----a-w-	C:\Windows\Sysnative\IEUDINIT.EXE
2013-02-26 21:53:27	5051BB40FFB2BA4870C0A059CA03294F	1054720	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2013-02-26 21:53:27	3531FA12A76A32ECECD972196775DF7C	226304	----a-w-	C:\Windows\Sysnative\elshyph.dll
2013-02-26 21:53:26	FC6B4D5450871A4D5CB344AFF6C090EF	281600	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2013-02-26 21:53:26	F651D95B5043EFC20A6108A853553984	92160	----a-w-	C:\Windows\Sysnative\SetIEInstalledDate.exe
2013-02-26 21:53:26	EC08E38751854C5B8899139B7DD29FF9	197120	----a-w-	C:\Windows\Sysnative\msrating.dll
2013-02-26 21:53:26	EBA7F74ACC7FF61FF92C2072C92CEF14	53760	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2013-02-26 21:53:26	E965529C43D25F2BDA77D705098BF777	135680	----a-w-	C:\Windows\Sysnative\IEAdvpack.dll
2013-02-26 21:53:26	E1055A7FAD39F1F7C44F6152044056EA	905728	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2013-02-26 21:53:26	D9C10A4A0B3411146E6FC8936B079934	167424	----a-w-	C:\Windows\Sysnative\iexpress.exe
2013-02-26 21:53:26	D8DD5CBB9668EEE98915EA49C72F78FA	441856	----a-w-	C:\Windows\Sysnative\html.iec
2013-02-26 21:53:26	D8076F8A3C34064582035AE6696DC34A	27648	----a-w-	C:\Windows\Sysnative\licmgr10.dll
2013-02-26 21:53:26	D6FCE28376454CDED6E9B144B6EF309A	1365504	----a-w-	C:\Windows\Sysnative\urlmon.dll
2013-02-26 21:53:26	D2685013EEF64BB5DCD252BAB5C5FAD0	89600	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2013-02-26 21:53:26	D0F66CFAED5B85543216EF526D380B8B	270848	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2013-02-26 21:53:26	D0D4CE6C6CE87269A34A184356475D17	149504	----a-w-	C:\Windows\Sysnative\occache.dll
2013-02-26 21:53:26	CF1387441D1096DBD4A23E155F1EE958	173568	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2013-02-26 21:53:26	C6EEC6399077E12FA902BD31F009699E	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2013-02-26 21:53:26	C2F21E3059AFF5E616F3E361D9FA10CD	62976	----a-w-	C:\Windows\Sysnative\pngfilt.dll
2013-02-26 21:53:26	C28A152C8F971B209C685F1B34B0CBF4	855552	----a-w-	C:\Windows\Sysnative\jscript.dll
2013-02-26 21:53:26	BC0D4AFBE94D8E1F81C8926D805C3366	247296	----a-w-	C:\Windows\Sysnative\webcheck.dll
2013-02-26 21:53:26	B3B0F58C489048D8DC1927164402EA31	3958784	----a-w-	C:\Windows\Sysnative\jscript9.dll
2013-02-26 21:53:26	ADE73A865A5F136E84F49BB6B1627C6E	1509376	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2013-02-26 21:53:26	A4DC3CD413A4D0E7CE805CAEC39CE724	15407616	----a-w-	C:\Windows\Sysnative\ieframe.dll
2013-02-26 21:53:26	9D8B838E173E6C69A735ADEF3C55D31D	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2013-02-26 21:53:26	96938C3BA9C09CEF29A7B909E3881538	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2013-02-26 21:53:26	942E110384668EEFF44751A02EDDF5E4	48640	----a-w-	C:\Windows\Sysnative\mshtmler.dll
2013-02-26 21:53:26	8C3D32A4A46326031309A43C52539D7F	1400416	----a-w-	C:\Windows\Sysnative\ieapfltr.dat
2013-02-26 21:53:26	82D602EBBBA6D08E4691F32269FD3494	12800	----a-w-	C:\Windows\Sysnative\msfeedssync.exe
2013-02-26 21:53:26	7EC25F7ABF7CE6B0FE93787524EE537B	452096	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2013-02-26 21:53:26	7539E5B4A9763C22CE5CACE3E9A6246F	19221504	----a-w-	C:\Windows\Sysnative\mshtml.dll
2013-02-26 21:53:26	69F1D418B4C4EC23033D598E4CBC6B73	2240512	----a-w-	C:\Windows\Sysnative\wininet.dll
2013-02-26 21:53:26	658E8FEC79A4AB5BFDE032627B5C9667	13824	----a-w-	C:\Windows\Sysnative\mshta.exe
2013-02-26 21:53:26	63CAE56FE4215F98FEB0188748A99378	52224	----a-w-	C:\Windows\Sysnative\msfeedsbs.dll
2013-02-26 21:53:26	62077020B3106089469922A93EF3ECE1	39936	----a-w-	C:\Windows\Sysnative\iernonce.dll
2013-02-26 21:53:26	5B64B732BD620A873A2FD74862CC9018	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2013-02-26 21:53:26	5B15164486C66B76699E1CD2CD2F3A2A	51200	----a-w-	C:\Windows\Sysnative\imgutil.dll
2013-02-26 21:53:26	4E426A67C46379B75A5E671B46FC07F6	102912	----a-w-	C:\Windows\Sysnative\inseng.dll
2013-02-26 21:53:26	4CFBEC37E4FAD530E623E1541E1EA958	599552	----a-w-	C:\Windows\Sysnative\vbscript.dll
2013-02-26 21:53:26	440104AEB9DAF8AC9842080AE59740FA	77312	----a-w-	C:\Windows\Sysnative\tdc.ocx
2013-02-26 21:53:26	40738329209CBE2C9B48F7E30F7C1414	144896	----a-w-	C:\Windows\Sysnative\wextract.exe
2013-02-26 21:53:26	402D797A7905DC3C6FE11E75CD5252EB	235008	----a-w-	C:\Windows\Sysnative\url.dll
2013-02-26 21:53:26	364D3FB12030D214433E794A67CD4C41	526848	----a-w-	C:\Windows\Sysnative\ieui.dll
2013-02-26 21:53:26	2AAE2B8FED8390879C2369FC63F7001F	97280	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2013-02-26 21:53:26	23C80181B93AA17DACB08A7474A8558B	2647552	----a-w-	C:\Windows\Sysnative\iertutil.dll
2013-02-26 21:53:26	23556D116D5FB93395B2A648EEB24251	81408	----a-w-	C:\Windows\Sysnative\icardie.dll
2013-02-26 21:53:26	1FF56AC32B38A94C3C88497BD6E00C96	25185	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2013-02-26 21:53:26	18A94D6E9D27D169D38DAB91F6A97518	136192	----a-w-	C:\Windows\Sysnative\iepeers.dll
2013-02-26 21:53:26	1456EECCB5CF6B91513200F95D61706E	762368	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2013-02-26 21:53:26	112183DF91C9BAECB498E4A86ECDE598	216064	----a-w-	C:\Windows\Sysnative\msls31.dll
2013-02-26 21:53:26	0524F299A1C79CBB537AA03376C552B7	67072	----a-w-	C:\Windows\Sysnative\iesetup.dll
2013-02-26 21:52:19	FB4045578F5180BDB1963AB352B78548	5632	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-02-26 21:52:19	FA428BDBCFAB9DC3D58F0BD2CCD50EA2	1682432	----a-w-	C:\Windows\Sysnative\XpsPrint.dll
2013-02-26 21:52:19	F5CEF064C7E6D95DA86B9D064A56A969	3584	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-02-26 21:52:19	F49E92B50CED5C9F1725D3C0329FD933	10752	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-02-26 21:52:19	F1C19F0AA151B90A7416FA1D50DDB582	245248	----a-w-	C:\Windows\Sysnative\WindowsCodecsExt.dll
2013-02-26 21:52:19	E8EEA503870CB6A6DC4E09A2433DF33E	2776576	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2013-02-26 21:52:19	C4C183E6551084039EC862DA1C945E3D	1175552	----a-w-	C:\Windows\Sysnative\FntCache.dll
2013-02-26 21:52:19	C498EF41B93986BCBD483597573EB96D	2565120	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2013-02-26 21:52:19	BDDF242A49E7B7DC5CCEC291BCE53ACB	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2013-02-26 21:52:19	B2CA1AC17E78D986B22FD6C2261CD84F	1238528	----a-w-	C:\Windows\Sysnative\d3d10.dll
2013-02-26 21:52:19	AFC3DB5C6EB8CA8017DDB81D6C0AD02A	9728	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-02-26 21:52:19	AFB73882AE41E1629A63E6713FE30FB9	296960	----a-w-	C:\Windows\Sysnative\d3d10core.dll
2013-02-26 21:52:19	9AE80F6A66B30E3ED8CDF858CF28B11B	194560	----a-w-	C:\Windows\Sysnative\d3d10_1.dll
2013-02-26 21:52:19	9108540E866F75C7AF2B91DD921A8091	3072	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-02-26 21:52:19	9094039A00485F71C4DE64BF51F64C46	3072	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-version-l1-1-0.dll
2013-02-26 21:52:19	8DFB5752FCE145A6B295093C0A8BE131	363008	----a-w-	C:\Windows\Sysnative\dxgi.dll
2013-02-26 21:52:19	893E8C1E4A1263EDDB1A6922D0E32201	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
2013-02-26 21:52:19	7E8A672B7B06A6EB11960C22E0360C59	3928064	----a-w-	C:\Windows\Sysnative\d2d1.dll
2013-02-26 21:52:19	72723D3E4781BADC62C3180C137E7B23	4096	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-user32-l1-1-0.dll
2013-02-26 21:52:19	6F623BD09CBB4C3F97374F12976E5EA5	522752	----a-w-	C:\Windows\Sysnative\XpsGdiConverter.dll
2013-02-26 21:52:19	64A4AB126E24FD3F58EBE64852773DB5	2560	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-02-26 21:52:19	63F72417CA38D8FC8F53709649B589E3	333312	----a-w-	C:\Windows\Sysnative\d3d10_1core.dll
2013-02-26 21:52:19	63BB89DED1E9104E68D33E54DE4D340D	1643520	----a-w-	C:\Windows\Sysnative\DWrite.dll
2013-02-26 21:52:19	448B02AD260EC3E1E892FCE6DFDDEEBD	1887232	----a-w-	C:\Windows\Sysnative\d3d11.dll
2013-02-26 21:52:19	3834316FE8A653227282196525E07DFE	648192	----a-w-	C:\Windows\Sysnative\d3d10level9.dll
2013-02-26 21:52:19	0E6FBF19D9DFBB77316C23DF91F8A101	5632	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-02-26 21:52:19	04CB7C8FDC6D9640DD82A527208F72C4	221184	----a-w-	C:\Windows\Sysnative\UIAnimation.dll
====== C:\Windows\Sysnative\drivers =====
2013-02-27 15:40:40	92EB844D90615CB266F84C3202B8786E	24176	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2013-02-16 12:57:27	B62A953F2BF3922C8764A29C34A22899	1913192	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2013-02-16 12:57:27	41C67E4205C606A103DEC8651D0B6FE6	288088	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-02-16 19:22:27	--------	dc----w-	C:\Program Files\Google
2013-02-13 12:45:39	--------	dc----w-	C:\Program Files\WinZip
======= C:\Program Files (x86) =====
2013-02-18 21:14:48	--------	d-----w-	C:\Program Files (x86)\VideoLAN
2013-02-13 18:24:02	--------	d-----w-	C:\Program Files (x86)\Smart Driver Updater
2013-02-13 18:17:48	--------	d-----w-	C:\Program Files (x86)\WinRAR
2013-02-11 14:40:50	--------	d-----w-	C:\Program Files (x86)\CompuClever
======= C: =====
====== C:\Users\Fam. van Iersel\AppData\Roaming ======
2013-02-27 15:39:59	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Local\Programs
2013-02-19 16:39:03	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Locallow\Productivity_3
2013-02-18 21:15:09	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Roaming\vlc
2013-02-16 19:23:21	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Roaming\Google
2013-02-14 16:03:06	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Roaming\PC Speed Maximizer
2013-02-13 18:40:35	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Roaming\StreamTorrent
2013-02-13 12:45:59	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Local\WinZip
2013-02-11 14:40:51	--------	d-----w-	C:\users\Fam. van Iersel\AppData\Roaming\CompuClever
2013-02-11 11:22:37	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\users\Fam. van Iersel\AppData\Roaming\downloads.m3u
====== C:\Users\Fam. van Iersel ======
2013-02-15 20:53:33	--------	d-sh--w-	C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

====== C: exe-files ==
2013-03-08 16:35:31	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Fam. van Iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\Fam. van Iersel\Downloads\FLVPlayer_v3 (1).exe
2013-03-06 12:32:25	526F48333DC36D7AA3BF9314AA195E38	829280	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\25.0.1364.152\25.0.1364.152_25.0.1364.97_chrome_updater.exe
=== C: other files ==

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
ijblflkdjdopkpdgllkmlbgcffjbnfda - C:\Users\Fam. van Iersel\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[]
meinjhkhgaalhfbinmclpmjikccbplkf - C:\Users\Fam. van Iersel\AppData\Local\CRE\meinjhkhgaalhfbinmclpmjikccbplkf.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
meinjhkhgaalhfbinmclpmjikccbplkf - C:\Users\Fam. van Iersel\AppData\Local\CRE\meinjhkhgaalhfbinmclpmjikccbplkf.crx[]

22find - Fam. van Iersel - Default\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://nl.msn.com/?ocid=UP74DHP&pc=UP74&dt=022613"
"Search Page"="http://www.google.com"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=M4-CT128M4SSD2_000000001204032C396C&ts=1361903471"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=M4-CT128M4SSD2_000000001204032C396C&ts=1361903471"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://nl.msn.com/?ocid=UP74DHP&pc=UP74&dt=022613"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{4C386B43-AD15-408F-BD25-1027435047E8}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{4C386B43-AD15-408F-BD25-1027435047E8} Bing  Url="http://www.bing.com/search?FORM=UP74DF&PC=UP74&dt=022613&q={searchTerms}&src=IE-SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{A187A2AC-65CC-4152-96FF-0D58FB0D4DB2} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8&rlz=1I7GZEU_nlNL523"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully
HKEY_USERS\S-1-5-21-4090593373-3949696648-911537040-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{37e17185-b07a-47b3-bd86-c675e4e4b89a} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{1fca4df8-9acd-4dfb-89cc-ddd0082fc588} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\meinjhkhgaalhfbinmclpmjikccbplkf deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\meinjhkhgaalhfbinmclpmjikccbplkf deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fam. van Iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fam. van Iersel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Fam. van Iersel\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\users\Fam. van Iersel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\FAM~1.VAN\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied