
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Lars on ma 19-05-2014 at 17:06:39,82.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lars\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-05-19-150028.log	59171 bytes

==== Empty Folders Check ======================

C:\Users\Lars\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{60EC236A-EC30-E288-9279-86A141035102}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{699B0FCC-42AE-A9BC-AD9B-E54C42834134}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{60EC236A-EC30-E288-9279-86A141035102}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{699B0FCC-42AE-A9BC-AD9B-E54C42834134}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"PriceMeterW"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\SupTab not found
C:\Program Files (x86)\AVG\AVG2012 not found
C:\Program Files (x86)\save nEt not found
C:\Program Files (x86)\Searchi-NeewTab not found
C:\Users\Lars\AppData\Local\PriceMeter not found
C:\Users\Lars\AppData\Roaming\DVDVideoSoftIEHelpers not found
C:\Program Files (x86)\WebSpades not found
C:\ProgramData\AllSSaveer not found
C:\ProgramData\PriceMeterLiveUpdate not found
C:\Users\Lars\AppData\Roaming\PriceMeterUpdater not found
C:\Users\Lars\AppData\Roaming\SupTab not found
C:\ProgramData\IePluginService not found
C:\Program Files (x86)\SupTab not found
C:\ProgramData\WPM not found
C:\ProgramData\Searchi-NeewTab not found
C:\Program Files (x86)\Searchi-NeewTab not found
C:\ProgramData\AppReady Software not found
C:\Program Files (x86)\SW-Booster not found
C:\ProgramData\39b559e409962429 not found
C:\ProgramData\save nEt not found
C:\Program Files (x86)\save nEt not found
C:\ProgramData\InstallMate not found
"C:\Program Files (x86)\AVG Secure Search\18.1.0.443\AVG Secure Search_toolbar.dll" not found
"C:\Windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job" not found
"C:\Windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job" not found
"C:\Windows\tasks\PriceMeterUpdater.job" not found
"C:\Windows\tasks\SW-Booster-S-5644911192.job" not found
"C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job" not found
C:\Program Files (x86)\PriceMeterLiveUpdate deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Lars\AppData\Local\Temp ====
2014-05-07 12:50:19	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\Users\Lars\AppData\Local\Temp\vcredist_x64.exe
2014-05-07 12:49:57	45922155C9628E11441AA869C6287BB7	10372136	----a-w-	C:\Users\Lars\AppData\Local\Temp\BackupSetup.exe
2014-05-07 12:34:17	D2D6341A87CC3995ABE80F505B6E112A	1207264	----a-w-	C:\Users\Lars\AppData\Local\Temp\LiveSupport_setup.exe
2014-05-07 12:34:07	57E626878D667E65127D1725279B0965	12384	----atw-	C:\Users\Lars\AppData\Local\Temp\{E35560C8-99FA-4EA0-AC4B-D1D838B6423E}\x86\regsvr32.exe
2014-05-07 12:34:07	157FE300857E06020BCB38A04D5B3B75	12896	----atw-	C:\Users\Lars\AppData\Local\Temp\{E35560C8-99FA-4EA0-AC4B-D1D838B6423E}\x64\regsvr32.exe
2014-05-07 12:33:57	A55C41C052034EEBF4B09BC307888572	2132632	----a-w-	C:\Users\Lars\AppData\Local\Temp\{E35560C8-99FA-4EA0-AC4B-D1D838B6423E}\Addons\newtab_setup.exe
2014-05-07 12:33:33	B55E90D26838294514389CD8B194AA82	5304336	----a-w-	C:\Users\Lars\AppData\Local\Temp\{E35560C8-99FA-4EA0-AC4B-D1D838B6423E}\Addons\OptimizerProInstaller.exe
2014-05-07 12:32:39	60E7A7686C196EAAD7B21C4538BD6A19	2132056	----a-w-	C:\Users\Lars\AppData\Local\Temp\{E35560C8-99FA-4EA0-AC4B-D1D838B6423E}\Addons\ytab_setup.exe
2014-05-07 12:28:35	E5575149A477DC94AF527FC7D751A407	6379728	----a-w-	C:\Users\Lars\AppData\Local\Temp\nscFAA9\SpSetup.exe
2014-05-07 12:28:23	9FB9D49C2DB7EDD1084AB765D619F5C6	66368	----a-w-	C:\Users\Lars\AppData\Local\Temp\uttCD05.tmp.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-05-16 07:14:41	FBCF3F01177953EBF1E735643621CCF5	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-05-16 07:14:38	EB5347F6149D3FF25F4D609A21A3BD67	17382912	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-05-16 07:14:38	10D531ADC7B8FB36C7361D44AF6E8AB6	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 07:00:33	E9D88493FBDB36D4B65C6F2F7F122C95	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-05-15 06:59:51	9DE19EA21DF99AF15BA5A947E5317F9E	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-05-15 06:59:51	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 06:59:50	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 06:59:49	ED195AC76E10F17F6DD60C49666F2A83	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 06:59:48	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-05-15 06:59:47	541BB9B4C899ADCC5D3DB89208C1F409	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 06:59:47	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-05-15 06:59:47	3A1ABE045A3E30799576E83A2D012B43	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-05-15 06:59:46	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-05-15 06:59:46	828185688FDAAE6C7959B884ABED1766	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-05-15 06:59:46	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 06:59:46	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 06:59:45	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 06:59:45	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 06:59:45	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 06:59:44	C94CE65AE7701E9FDBA889045543E27C	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-05-15 06:59:44	75878492F2B33405EEF900F8C16C6D08	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-05-15 06:59:44	2A86C18CE6869C77FCEB62F3B47D4D5B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-05-16 07:14:41	A920E1336F9FEA95477763E2CC15891B	84992	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-05-16 07:14:41	797E2E5C309AFF76990D5B7AF457EACA	23544320	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-05-16 07:14:38	A45BFDCFD5864F658289A165E6E0227F	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-05-15 07:00:33	427015D56DF17241F634611557146C57	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-05-15 07:00:25	4A795989DF0043973711B666D36D2678	477184	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-05-15 07:00:23	485FB1F3792FF7B5D5EBB99AB870E588	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-05-15 06:59:53	9358149234A4F3FE00CF5C2096DC1652	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-05-15 06:59:51	B19C8390A1D641B9AC4490D4828A7B5E	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-05-15 06:59:50	E2A483E796D5FC7E447725FD01D98FA0	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-05-15 06:59:49	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-05-15 06:59:49	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-05-15 06:59:48	B6D8C1202DACA028AD94BDA2795CBBE9	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-05-15 06:59:48	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-05-15 06:59:48	26AF184300C0868D854D5A3092234E24	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-05-15 06:59:46	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-05-15 06:59:46	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-05-15 06:59:46	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-05-15 06:59:46	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-05-15 06:59:46	481F70241D4EA038BB02590A30F15A23	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-05-15 06:59:45	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-05-15 06:59:45	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-05-15 06:59:45	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-05-15 06:59:45	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2014-05-15 06:59:44	82A72E99AA1CF0B04D3B9843CBA3AEC1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-05-15 06:59:44	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-05-15 06:59:44	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
====== C:\Windows\Sysnative\drivers =====
2014-05-15 06:59:47	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-05-15 06:59:45	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
====== C:\Windows\Tasks ======
2014-05-07 12:50:33	6114DAC433728AF6969A4C649892171C	3224	----a-w-	C:\Windows\Sysnative\Tasks\PriceMeterUpdater
2014-05-07 12:50:31	3D310C109D2B6E9D4F46FDCBB68AC827	3284	----a-w-	C:\Windows\Sysnative\Tasks\pricemeterdownloader
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-16 14:17:41	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-05-16 07:13:34	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
======= C: =====
====== C:\Users\Lars\AppData\Roaming ======
2014-05-16 14:10:16	--------	d-sh--w-	C:\Users\Lars\AppData\Locallow\EmieUserList
2014-05-16 14:10:16	--------	d-sh--w-	C:\Users\Lars\AppData\Locallow\EmieSiteList
2014-05-07 12:50:38	--------	d-----w-	C:\Users\Lars\AppData\Local\PriceMeterLiveUpdate
2014-05-07 12:39:32	--------	d-sh--w-	C:\Users\Lars\AppData\Local\EmieUserList
2014-05-07 12:39:32	--------	d-sh--w-	C:\Users\Lars\AppData\Local\EmieSiteList
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Lars\AppData\Local\Torch
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Lars\AppData\Local\Comodo
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Lars\AppData\Local\Chromatic Browser
2014-05-07 12:33:01	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-05-07 12:33:01	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-05-07 12:33:01	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Gast\AppData\Local\Torch
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Gast\AppData\Local\Comodo
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Gast\AppData\Local\Chromatic Browser
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Administrator\AppData\Local\Torch
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Administrator\AppData\Local\Comodo
2014-05-07 12:33:01	--------	d-----w-	C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-05-07 12:32:37	--------	d-----w-	C:\Users\Lars\AppData\Local\Packages
2014-05-07 12:32:26	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Google
2014-05-07 12:32:26	--------	d-----w-	C:\Users\Gast\AppData\Local\Google
2014-05-07 12:32:25	--------	d-----w-	C:\Users\Administrator\AppData\Local\Google
2014-05-07 12:32:13	--------	d-----w-	C:\Users\Lars\AppData\Local\Programs
====== C:\Users\Lars ======
2014-05-18 07:02:54	22574847381A0D7238FB89119811D790	4996816	----a-w-	C:\Users\Lars\Downloads\mmil_myil291431 (1).exe
2014-05-18 07:02:47	22574847381A0D7238FB89119811D790	4996816	----a-w-	C:\Users\Lars\Downloads\mmil_myil291431.exe
2014-05-18 07:01:16	FBF37A32F1A41C250516D26670C16BA3	2002216	----a-w-	C:\Users\Lars\Downloads\DriverDetective (1).exe
2014-05-18 06:58:36	FBF37A32F1A41C250516D26670C16BA3	2002216	----a-w-	C:\Users\Lars\Downloads\DriverDetective.exe
2014-05-18 06:57:34	2874553F479BF62B036A70464AA5EE9F	678608	----a-w-	C:\Users\Lars\Downloads\google-chrome_setup (1).exe
2014-05-18 06:57:30	2874553F479BF62B036A70464AA5EE9F	678608	----a-w-	C:\Users\Lars\Downloads\google-chrome_setup.exe
2014-05-16 14:16:54	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Lars\Downloads\RSITx64.exe
2014-05-16 07:17:06	CB98A2DDFC58154DA5BD0F34509A44C5	104536344	----a-w-	C:\Users\Lars\Downloads\msert.exe
2014-05-07 12:46:20	02A8E61B12816CF9A8BA9E6337A06CFC	437744	----a-w-	C:\Users\Lars\Downloads\need_for_speed_nl_subs_Full (1).exe
2014-05-07 12:45:07	02A8E61B12816CF9A8BA9E6337A06CFC	437744	----a-w-	C:\Users\Lars\Downloads\need_for_speed_nl_subs_Full.exe
2014-05-07 12:32:26	--------	d-----w-	C:\Users\HomeGroupUser$\AppData
2014-05-07 12:32:26	--------	d-----w-	C:\Users\Gast\AppData
2014-05-07 12:32:25	--------	d-----w-	C:\Users\Administrator\AppData
2014-05-07 12:26:23	9F27F32DC4C7BA60D7038E06F03973B7	1672784	----a-w-	C:\Users\Lars\Downloads\uTorrent.exe

====== C: exe-files ==
2014-05-18 07:02:54	22574847381A0D7238FB89119811D790	4996816	----a-w-	C:\Users\Lars\Downloads\mmil_myil291431 (1).exe
2014-05-18 07:02:47	22574847381A0D7238FB89119811D790	4996816	----a-w-	C:\Users\Lars\Downloads\mmil_myil291431.exe
2014-05-18 07:01:16	FBF37A32F1A41C250516D26670C16BA3	2002216	----a-w-	C:\Users\Lars\Downloads\DriverDetective (1).exe
2014-05-18 06:58:36	FBF37A32F1A41C250516D26670C16BA3	2002216	----a-w-	C:\Users\Lars\Downloads\DriverDetective.exe
2014-05-18 06:57:34	2874553F479BF62B036A70464AA5EE9F	678608	----a-w-	C:\Users\Lars\Downloads\google-chrome_setup (1).exe
2014-05-18 06:57:30	2874553F479BF62B036A70464AA5EE9F	678608	----a-w-	C:\Users\Lars\Downloads\google-chrome_setup.exe
2014-05-16 14:17:41	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Lars.exe
2014-05-16 14:16:54	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Lars\Downloads\RSITx64.exe
2014-05-16 07:17:06	CB98A2DDFC58154DA5BD0F34509A44C5	104536344	----a-w-	C:\Users\Lars\Downloads\msert.exe
2014-05-15 07:00:25	94566D109585C5867B01B761276C2D1F	155136	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-05-15 07:00:24	6FF6FF2DD6B7CDD07049DCA1F7A18319	31232	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-05-15 06:59:51	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 06:59:50	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 06:59:49	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-05-15 06:59:45	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\System32\lsass.exe
=== C: other files ==
2014-05-15 06:59:47	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2014-05-15 06:59:45	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-926169715-2678499732-3854754969-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"Google Update"="C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"LiveSupport"="C:\Program Files (x86)\LiveSupport\LiveSupport.exe /noshow /log"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Microsoft Default Manager"="C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe -resume"
"Adobe Reader Speed Launcher"="c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"
"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d"
"EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup"
"vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"Google Update"="C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"LiveSupport"="C:\Program Files (x86)\LiveSupport\LiveSupport.exe /noshow /log"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\progra~2\\sw-boo~1\\assist~1.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"PLFSetI"="C:\Windows\PLFSetI.exe"
"Apoint"="C:\Program Files\Apoint2K\Apoint.exe"
"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

==== Startup Folders ======================

2013-11-05 13:02:32	2103	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-926169715-2678499732-3854754969-1001Core.job --a------ C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe [30-08-2011 00:13]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-926169715-2678499732-3854754969-1001UA.job --a------ C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe [30-08-2011 00:13]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-926169715-2678499732-3854754969-1001Core" [C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-926169715-2678499732-3854754969-1001UA" [C:\Users\Lars\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\pricemeterdownloader" [C:\Users\Lars\AppData\Local\PriceMeter\pricemeterd.exe]
"C:\Windows\SysNative\tasks\PriceMeterUpdater" [C:\Users\Lars\AppData\Roaming\PRICEM~1\UPDATE~1\UPDATE~1.EXE]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\{0D36482B-6883-404B-AD4F-D474F43C4196}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/4.1.0.179.367/nl/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded]
"C:\Windows\SysNative\tasks\{8F2D4BBE-CDDD-4E9D-A60A-02C1858D04B9}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/6.3.73.105.457/nl/abandoninstall?page=tsMain]
"C:\Windows\SysNative\tasks\{FE9985CF-1724-4AC3-8A9E-C711EC27D043}" ["c:\program files\internet explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&amp;ver=4.1.0.179.367&amp;LastError=404]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [05-11-2013 15:04]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [05-11-2013 15:04]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Lars\AppData\Roaming\TomTom\HOME\Profiles\s5kvran6.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

==== Firefox Plugins ======================


==== Chrome Look ======================

Angry Birds - Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj
Google Wallet - Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Quick Start - Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67BB9647-6409-4BA1-A03A-7430F8C4512F} Bing  Url="http://www.bing.com/search?q={searchTerms}&amp;form=BIE9DF&amp;pc=BIE9&amp;src=IE-SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\30e7fa64-476f-480b-a787-998e9de9b44b deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lars\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lars\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1904 folders=530 264623092 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lars\AppData\Local\Temp will be emptied at reboot
C:\Users\TEMP\AppData\Local\Temp emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Lars\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\PriceMeterLiveUpdate\Update\Log\PriceMeterLiveUpdate.log"  not found
"C:\ProgramData\PriceMeterLiveUpdate"  not found
"C:\Program Files (x86)\PriceMeterLiveUpdate"  not found
"C:\ProgramData\AppReady Software"  not found
"C:\Users\Lars\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\mdakkinldjfmehfmgnpjokbecejijpbj" not found
"C:\Users\Lars\AppData\Local\Torch\User Data\Default\Extensions\mdakkinldjfmehfmgnpjokbecejijpbj" not found
"C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\oelggcmknbjmhkpgjfhakedcfnkgbdpg" not found
"C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ebjccaeebcpjffojaeohfllihiihaebn_0.localstorage" not deleted

==== EOF on ma 19-05-2014 at 18:41:37,45 ======================