
Zoek.exe v5.0.0.0 Updated 02-Januari-2014
Tool run by Aniek on vr 03/01/2014 at 21:23:56,22.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Aniek\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

3/01/2014 21:25:47 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\AmiExt deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\Nokia deleted successfully
C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\Program Files\Google deleted successfully
C:\ProgramData\Babylon deleted successfully
C:\ProgramData\DAEMON Tools Ult deleted successfully
C:\ProgramData\Oracle deleted successfully
C:\Users\Aniek\AppData\Roaming\DAEMON Tools Ult deleted successfully
C:\Users\Aniek\AppData\Roaming\defaulttab deleted successfully
C:\Users\Aniek\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Aniek\AppData\Local\cache deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2009323125-696042402-3659181839-1001\Software\Microsoft\Internet Explorer\SearchScopes\{B81E3206-086E-4C9E-BABA-2F56662EFD23} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.2.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater17.2.0 deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\4ppd8fur.default-1384886209254

---- Lines ask.com removed from prefs.js ----
user_pref("weboftrust.search.ask.display", "Ask.com Web Search");
---- FireFox user.js and prefs.js backups ---- 

user_20140301_2136_.backup
prefs_20140301_2136_.backup

ProfilePath: C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\hfgsat3o.default-1383349610972

prefs.js not found
---- FireFox user.js and prefs.js backups ---- 

user_20140301_2136_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"mobilegeni daemon"=- 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Mobogenie not found
C:\Users\Aniek\AppData\Roaming\iSafe deleted
C:\Users\Aniek\AppData\Local\genienext deleted
C:\Users\Aniek\daemonprocess.txt deleted
C:\Users\Aniek\.android deleted
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml deleted
C:\Users\Aniek\AppData\Roaming\eCyber deleted
C:\ProgramData\Registry Helper deleted
C:\ProgramData\Partner deleted
C:\ProgramData\AVG Secure Search deleted
C:\Users\Aniek\AppData\Local\AVG Secure Search deleted
C:\Users\Aniek\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\Syswow64\RegistryHelperLM.ocx deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
C:\Users\Aniek\Documents\Mobogenie deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\17.2.0\SiteSafety.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\17.2.0\log4cplusU.dll" deleted
"C:\PROGRA~2\AVG Secure Search" deleted
"C:\PROGRA~2\AVG Secure Search" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\Users\Aniek\AppData\Local\Mobogenie" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\17.2.0" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\17.2.0" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Aniek\AppData\Local\Temp ====
2013-12-30 18:07:23	CF310D35273BD1261DB9D90A447AB51F	17455448	----a-w-	C:\Users\Aniek\AppData\Local\Temp\Mobogenie_Setup_2.1.23_515.exe
2013-12-30 18:05:40	13A09BECABCE7CE7DE02D42D9C00A250	38456	----a-w-	C:\Users\Aniek\AppData\Local\Temp\bitool.dll
2013-12-30 13:48:24	A210F1AC135E5331C314CE5F394FB5A5	413276	----a-w-	C:\Users\Aniek\AppData\Local\Temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-12-30 14:06:32	4CB65D6577EF4204C368268A14960E1B	57856	----a-w-	C:\Windows\Sysnative\nmwcdclsX64.dll
====== C:\Windows\Sysnative\drivers =====
2013-12-30 18:06:29	C9914A74045A6D23DB7252FA3985DE25	29696	----a-w-	C:\Windows\Sysnative\drivers\dtscsibus.sys
2013-12-28 14:57:52	AAB5F5336EDBB5D99CC7E1A9F4D8F63F	79672	----a-w-	C:\Windows\Sysnative\drivers\aswstm.sys
2013-12-12 12:59:23	E0D3CD5841E5C7BE7B94BA946AF1E498	116736	----a-w-	C:\Windows\Sysnative\drivers\drmk.sys
2013-12-12 12:59:23	1E0B4CBBA91C6B041A14ECC2186F7E24	230400	----a-w-	C:\Windows\Sysnative\drivers\portcls.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-01-03 17:37:53	--------	d-----w-	C:\Program Files\trend micro
2013-12-30 14:06:50	--------	d-----w-	C:\Program Files\DIFX
2013-12-27 17:41:12	--------	d-----w-	C:\Program Files\WinZip
======= C:\PROGRA~2 =====
2014-01-03 13:06:37	--------	d-----w-	C:\PROGRA~2\Ultimate Control
2014-01-01 22:41:55	--------	d-----w-	C:\PROGRA~2\Final Fantasy VIII
2013-12-30 19:08:46	--------	d-----w-	C:\PROGRA~2\Square Enix
2013-12-30 18:06:18	--------	d-----w-	C:\PROGRA~2\DAEMON Tools Ultra
2013-12-26 22:24:55	--------	d-----w-	C:\PROGRA~2\Remote Control Server
2013-12-14 23:37:58	--------	d-----w-	C:\PROGRA~2\Aeria Games
2013-12-12 22:54:00	--------	d-----w-	C:\PROGRA~2\Mozilla Maintenance Service
2013-12-12 22:40:22	--------	d-----w-	C:\PROGRA~2\Combined Community Codec Pack
======= C: =====
====== C:\Users\Aniek\AppData\Roaming ======
2014-01-03 13:06:51	--------	d-----w-	C:\Users\Aniek\AppData\Local\NEGU_Soft
2014-01-01 14:19:18	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\Media Player Classic
2013-12-30 18:24:09	--------	d-----w-	C:\Users\Aniek\AppData\Local\Ashampoo
2013-12-30 18:24:07	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\Ashampoo
2013-12-30 18:10:01	--------	d-----w-	C:\Users\Aniek\AppData\Local\DTClient
2013-12-30 18:07:20	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\DAEMON Tools Ultra
2013-12-30 18:06:23	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\DAEMON Tools Ultra
2013-12-30 14:07:14	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\PC Suite
2013-12-30 14:07:14	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\Nokia
2013-12-27 17:41:42	--------	d-----w-	C:\Users\Aniek\AppData\Local\WinZip
2013-12-26 22:32:52	--------	d-----w-	C:\Users\Aniek\AppData\Local\Steppschuh
2013-12-26 22:23:33	--------	d-----w-	C:\Users\Aniek\AppData\Local\Downloaded Installations
2013-12-15 11:26:25	--------	d-----w-	C:\Users\Aniek\AppData\Local\Aeria Games
2013-12-14 23:50:09	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2013-12-14 22:21:14	--------	d-----w-	C:\Users\Aniek\AppData\Local\Akamai
2013-12-12 22:36:24	--------	d-----w-	C:\Users\Aniek\AppData\Roaming\player
====== C:\Users\Aniek ======
2014-01-03 13:06:39	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimate Control
2014-01-03 13:06:13	28285E32D00476C0E81BFD1FA4EAE7A5	543608	----a-w-	C:\Users\Aniek\Downloads\ultimate_control_v1.2_win_setup.exe
2014-01-01 22:45:18	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Final Fantasy VIII
2013-12-30 19:15:18	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
2013-12-30 18:06:25	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Ultra
2013-12-30 18:05:39	--------	d-----w-	C:\ProgramData\DAEMON Tools Ultra
2013-12-30 14:07:14	--------	d-----w-	C:\ProgramData\PC Suite
2013-12-30 14:05:23	--------	d-----w-	C:\ProgramData\Installations
2013-12-30 14:04:50	F7AD51251232E04B2D7DB5D43C8EB437	67963216	----a-w-	C:\Users\Aniek\Downloads\Nokia_PC_Suite_ALL.exe
2013-12-27 17:41:34	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2013-12-27 17:41:15	--------	d-----w-	C:\ProgramData\WinZip
2013-12-27 17:39:00	48015216886A51FE0E792E72A636D570	87521640	----a-w-	C:\Users\Aniek\Downloads\winzip180(2).exe
2013-12-26 22:24:56	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Control Server
2013-12-26 22:23:23	B3ED5FB41B0542480A23C4AD1A7C4D7C	2283763	----a-w-	C:\Users\Aniek\Downloads\RemoteControlServerSetup.exe
2013-12-15 11:25:45	--------	d-----w-	C:\ProgramData\Aeria Games
2013-12-14 23:37:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames

====== C: exe-files ==
2014-01-03 19:05:10	632FBB8BB6C9D0CF21C7CD2F97DFB872	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2009323125-696042402-3659181839-1001\$IYZR1GI.exe
2014-01-03 17:37:53	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Aniek.exe
2014-01-03 17:37:13	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2009323125-696042402-3659181839-1001\$RYZR1GI.exe
2014-01-03 13:08:35	BD401D96CC2D49CA3E035BE325CFC307	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2009323125-696042402-3659181839-1001\$I0HWIUS.exe
2014-01-03 13:06:39	7B99D919E7176CBB0FE922555A4E91A6	349696	----a-w-	C:\Program Files (x86)\Ultimate Control\ucontrol.exe
2014-01-03 13:06:38	B242F2AFA1357D6FE568DC4617390A3C	715038	----a-w-	C:\Program Files (x86)\Ultimate Control\unins000.exe
2014-01-03 13:06:13	28285E32D00476C0E81BFD1FA4EAE7A5	543608	----a-w-	C:\Users\Aniek\Downloads\ultimate_control_v1.2_win_setup.exe
2014-01-01 22:45:17	35DA2BF2BEFD998980A495B6F4F55E60	4479832	----a-w-	C:\Program Files (x86)\Final Fantasy VIII\_CommonRedist\vcredist\2008\vcredist_x86.exe
2014-01-01 22:45:16	E2ADA570911EDAAAE7D1B3C979345FCE	5207896	----a-w-	C:\Program Files (x86)\Final Fantasy VIII\_CommonRedist\vcredist\2008\vcredist_x64.exe
2014-01-01 22:45:14	BF3F290275C21BDD3951955C9C3CF32C	517976	----a-w-	C:\Program Files (x86)\Final Fantasy VIII\_CommonRedist\DirectX\Jun2010\DXSETUP.exe
2014-01-01 22:42:00	030BB194F91D488500B5615BDBFB9E61	6835200	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_Launcher.exe
2014-01-01 22:41:59	FE097218A8509CA163EBB9434C995549	22114304	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_FR.exe
2014-01-01 22:41:59	BD434C40FFB72CB06560CB32FB6BA542	22112608	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_IT.exe
2014-01-01 22:41:58	144EB6F014B9CF34DE57E660AC82C6F2	22122496	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_ES.exe
2014-01-01 22:41:57	F01D097B1EC217D9578A8F13AAED1FAC	22122496	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_DE.exe
2014-01-01 22:41:57	B0793B7348207F664186BD0747AD9FF2	1818624	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\Chocobo_FR_IT_DE_ES.exe
2014-01-01 22:41:57	49D4BA36F66A592B7B5DBC827521B93D	22118400	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\FF8_EN.exe
2014-01-01 22:41:56	27195B75C919C02B2435B099124D5DE1	1716224	----a-r-	C:\Program Files (x86)\Final Fantasy VIII\Chocobo_EN.exe
2014-01-01 22:41:55	F0B1FC8C8361B4CD806CE2FF31769A96	1512305	----a-w-	C:\Program Files (x86)\Final Fantasy VIII\unins000.exe
2014-01-01 00:07:50	A80190F73FA30312A157211A0E23BF8B	3098896	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\000056bd\dao.17562149.exe
2014-01-01 00:07:50	A80190F73FA30312A157211A0E23BF8B	3098896	----a-w-	C:\Backup My Data\All Users\NVIDIA\Updatus\Packages\000056bd\dao.17562149.exe
2013-12-30 19:24:44	6029121A46BF296B1511C8E5B98BDE1A	826654	----a-w-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\unins000.exe
2013-12-30 19:09:13	24F9B5840CDE7DFC61F797E2D987A728	6007808	----a-r-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\ff7_fr.exe
2013-12-30 19:09:08	B2D0BF3A0D8F0ABF364B152776ACBC2E	6007296	----a-r-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\ff7_es.exe
2013-12-30 19:09:04	7F163CC23379E86B9756531CEE626A1F	5998592	----a-r-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\ff7_en.exe
2013-12-30 19:08:59	7E965859237F68B179D64C84A7C64756	6002688	----a-r-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\ff7_de.exe
2013-12-30 19:08:52	F80D8AA5F9EC109E73B51EA3CDAFB57E	1066496	----a-r-	C:\Program Files (x86)\Square Enix\FINAL FANTASY VII\FF7_Launcher.exe
2013-12-30 18:07:23	CF310D35273BD1261DB9D90A447AB51F	17455448	----a-w-	C:\Users\Aniek\AppData\Local\Temp\Mobogenie_Setup_2.1.23_515.exe
2013-12-30 18:07:11	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Aniek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WZIAL9VB\Mobogenie_Setup_2.1.23_515[1].exe
2013-12-30 18:06:28	28D49571D57A84108F156A2BC082E326	54400	----a-w-	C:\Program Files (x86)\DAEMON Tools Ultra\dtinst.exe
2013-12-30 18:05:43	8F4ED9A53703C50DC5B62F04D49F504A	208352	----a-w-	C:\Users\Aniek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WZIAL9VB\setup[1].exe
2013-12-30 14:07:15	C3AC43B2018114A617E946AA8FDF3CAC	930272	----a-w-	C:\Program Files\DIFX\0169CE3A95F06636\dpinst.exe
2013-12-30 14:06:50	E90140FF5F5FF7521EA52F94BEC29F8C	935480	----a-w-	C:\Program Files\DIFX\F4092DA208C2C970\dpinst.exe
2013-12-30 14:06:05	F7AD51251232E04B2D7DB5D43C8EB437	67963216	----a-w-	C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Nokia_PC_Suite_ALL.exe
2013-12-30 14:06:05	F7AD51251232E04B2D7DB5D43C8EB437	67963216	----a-w-	C:\Backup My Data\All Users\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Nokia_PC_Suite_ALL.exe
2013-12-30 14:05:36	C9EE35F5AEA8BD5D3D3E900343DA6528	61440	----a-w-	C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2013-12-30 14:05:36	C9EE35F5AEA8BD5D3D3E900343DA6528	61440	----a-w-	C:\Backup My Data\All Users\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2013-12-30 14:05:36	A9D469CEB57370C4DDD40D94F9CBF3CE	8192	----a-w-	C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstCCD.exe
2013-12-30 14:05:36	A9D469CEB57370C4DDD40D94F9CBF3CE	8192	----a-w-	C:\Backup My Data\All Users\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstCCD.exe
2013-12-30 14:05:36	6E41EE754EEBE6062EEB32776FA0B334	10240	----a-w-	C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstPCS.exe
2013-12-30 14:05:36	6E41EE754EEBE6062EEB32776FA0B334	10240	----a-w-	C:\Backup My Data\All Users\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\UninstPCS.exe
2013-12-30 14:05:36	418D7ECE314DA53FC6685B3C5CEC752C	90504	----a-w-	C:\ProgramData\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\pcswpcsi.exe
2013-12-30 14:05:36	418D7ECE314DA53FC6685B3C5CEC752C	90504	----a-w-	C:\Backup My Data\All Users\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Installer\CommonCustomActions\pcswpcsi.exe
2013-12-30 14:04:50	F7AD51251232E04B2D7DB5D43C8EB437	67963216	----a-w-	C:\Users\Aniek\Downloads\Nokia_PC_Suite_ALL.exe
2013-12-30 13:55:08	3C2A9F3195CDDD8943971DC8A677EF25	294912	----a-w-	C:\Windows\Temp\bcdedit.exe
=== C: other files ==
2014-01-02 15:26:35	AA5EE29BECFAE3B829FD529F5342B1D0	226401	----a-w-	C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\4ppd8fur.default-1384886209254\extensions\fb-color@firefox.xpi
2013-12-30 18:06:29	C9914A74045A6D23DB7252FA3985DE25	29696	----a-w-	C:\Windows\System32\drivers\dtscsibus.sys
2013-12-30 18:06:29	C9914A74045A6D23DB7252FA3985DE25	29696	----a-w-	C:\Program Files (x86)\DAEMON Tools Ultra\dtscsibus.sys
2013-12-28 14:57:52	AAB5F5336EDBB5D99CC7E1A9F4D8F63F	79672	----a-w-	C:\Windows\System32\drivers\aswstm.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2009323125-696042402-3659181839-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2009323125-696042402-3659181839-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"uTorrent"="C:\Users\Aniek\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"Xvid"="C:\Program Files (x86)\Xvid\CheckUpdate.exe"
"Pando Media Booster"="C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe"
"Akamai NetSession Interface"="C:\Users\Aniek\AppData\Local\Akamai\netsession_win.exe"
"Remote Control Server"="C:\Program Files (x86)\Remote Control Server\Remote Control Server.exe"
"DAEMON Tools Ultra Agent"="C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe -autorun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-2009323125-696042402-3659181839-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotkeyApp"="C:\Program Files (x86)\Launch Manager\HotkeyApp.exe"
"LMgrVolOSD"="C:\Program Files (x86)\Launch Manager\OSD.exe"
"Wbutton"="C:\Program Files (x86)\Launch Manager\Wbutton.exe"
"CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"Dolby Advanced Audio v2"="C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"Aeria Ignite"="C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe silent"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"uTorrent"="C:\Users\Aniek\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"Xvid"="C:\Program Files (x86)\Xvid\CheckUpdate.exe"
"Pando Media Booster"="C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe"
"Akamai NetSession Interface"="C:\Users\Aniek\AppData\Local\Akamai\netsession_win.exe"
"Remote Control Server"="C:\Program Files (x86)\Remote Control Server\Remote Control Server.exe"
"DAEMON Tools Ultra Agent"="C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe -autorun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Nvtmru"="C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"FAHConsole"="C:\Program Files\File Association Helper\FAHConsole.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/12/2013 00:11]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\irMonitor" [C:\Windows\system32"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ext@flash-Enhancer.com"="C:\Program Files (x86)\AmiExt\flashEnhancer\ff" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\4ppd8fur.default-1384886209254
- WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
- My Own Facebook Colors - %ProfilePath%\extensions\fb-color@firefox.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\4ppd8fur.default-1384886209254
F891089A6AB9E12FEDEBCC5EC0F40D66	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll -	Shockwave Flash
517021D1BCA1962ABF09099014A7D87D	- C:\Windows\system32\npOGPPlugin.dll -	OGPlanet Game Plugin
15E298B5EC5B89C5994A59863969D9FF	- C:\Windows\system32\npmproxy.dll -	Microsoft� Windows� Operating System

Profilepath: C:\Users\Aniek\AppData\Roaming\Mozilla\Firefox\Profiles\hfgsat3o.default-1383349610972
517021D1BCA1962ABF09099014A7D87D	- C:\Windows\system32\npOGPPlugin.dll -	OGPlanet Game Plugin
15E298B5EC5B89C5994A59863969D9FF	- C:\Windows\system32\npmproxy.dll -	Microsoft� Windows� Operating System


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[28/12/2013 15:57]
kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files (x86)\DefaultTab\DefaultTab.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
"Default_Page_URL"="http://www.aldi.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6EE5917C-17A7-4AC2-BE92-82146E605680}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{6EE5917C-17A7-4AC2-BE92-82146E605680} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNE_enDE393"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\avg@toolbar deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@flash-Enhancer.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Aniek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Aniek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Aniek\AppData\Local\Mozilla\Firefox\Profiles\4ppd8fur.default-1384886209254\Cache emptied successfully
C:\Users\Aniek\AppData\Local\Mozilla\Firefox\Profiles\hfgsat3o.default-1383349610972\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1845 folders=345 252584261 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Users\Aniek\AppData\Local\Temp  will be emptied at reboot
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Aniek\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Aniek\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\E57FMGYJ\f2.mypuzzle.org"  not found

==== EOF on vr 03/01/2014 at 21:47:52,58 ======================