
Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by Lucas on do 22/05/2014 at 23:57:51,59.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Lucas\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

22/05/2014 23:59:19 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Freemake deleted successfully
C:\PROGRA~2\InterLok deleted successfully
C:\PROGRA~2\predm deleted successfully
C:\PROGRA~2\SearchPredict deleted successfully
C:\PROGRA~2\Ubisoft deleted successfully
C:\PROGRA~2\uTorrent deleted successfully
C:\PROGRA~2\COMMON~1\PDF Architect deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\CorelDRAW Graphics Suite X5 deleted successfully
C:\PROGRA~3\DAEMON Tools Pro deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\SpeedBit deleted successfully
C:\Users\Lucas\AppData\Roaming\AdobeUM deleted successfully
C:\Users\Lucas\AppData\Roaming\Allmyapps deleted successfully
C:\Users\Lucas\AppData\Roaming\IrfanView deleted successfully
C:\Users\Lucas\AppData\Roaming\systweak deleted successfully
C:\Users\Lucas\AppData\Local\Adobe Tool deleted successfully
C:\Users\Lucas\AppData\Local\Bundled software uninstaller deleted successfully
C:\Users\Lucas\AppData\Local\Conduit deleted successfully
C:\Users\Lucas\AppData\Local\PACE Anti-Piracy deleted successfully
C:\Users\Lucas\AppData\Local\Qjcxx79uJpncjRO deleted successfully
C:\Users\Lucas\AppData\Local\qkoT995OohfdXyc deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{F9D1C772-F749-4CC5-89E4-622CD4B9C98D} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CltMngSvc deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"bProtector Start Page"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"bProtectorDefaultScope"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"fst_be_17"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\ProgramData\YTD Video Downloader deleted
C:\PROGRA~2\Mobogenie deleted
C:\PROGRA~2\SmartTweak deleted
C:\PROGRA~2\SearchProtect deleted
C:\PROGRA~2\GreenTree Applications deleted
C:\PROGRA~2\Conduit deleted
C:\Users\Lucas\AppData\Roaming\SpeedyPC Software deleted
C:\Users\Lucas\AppData\Roaming\DriverCure deleted
C:\Users\Lucas\AppData\Roaming\BabSolution deleted
C:\Users\Lucas\AppData\Roaming\Babylon deleted
C:\Users\Lucas\AppData\Roaming\File Scout deleted
C:\PROGRA~3\SpeedyPC Software deleted
C:\PROGRA~3\Allmyapps deleted
C:\Users\Lucas\AppData\Local\CRE deleted
C:\Users\Lucas\AppData\Local\SearchProtect deleted
C:\Users\Lucas\AppData\Local\avgchrome deleted
C:\Users\Lucas\AppData\Local\WebPlayer deleted
C:\Users\Lucas\AppData\Local\PutLockerDownloader deleted
C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\bprotector web data deleted
C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted
C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted
C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker deleted
C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software deleted
C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com deleted
C:\WINDOWS\SysNative\roboot64.exe deleted
C:\windows\SysNative\Tasks\SomotoUpdateCheckerAutoStart deleted
C:\Users\Lucas\AppData\LocalLow\Conduit deleted
C:\Users\Lucas\AppData\LocalLow\Toolbar4 deleted
C:\WINDOWS\wininit.ini deleted
C:\windows\SysNative\tasks\BitGuard deleted
C:\WINDOWS\tasks\FoxTab.job deleted
C:\windows\SysNative\tasks\FoxTab deleted
C:\END deleted
C:\WINDOWS\Syswow64\trz54FC.tmp deleted
C:\WINDOWS\Syswow64\trzBFF2.tmp deleted
C:\WINDOWS\Syswow64\trzCD2E.tmp deleted
C:\WINDOWS\Syswow64\trzECA2.tmp deleted
C:\WINDOWS\Syswow64\SearchProtect deleted
C:\WINDOWS\SysWow64\searchplugins deleted
C:\WINDOWS\SysWow64\Extensions deleted
C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\ftdownloader2@ftdownloader.com.xpi deleted
"C:\Users\Lucas\AppData\Local\FilesFrog Update Checker\update_checker.exe" deleted
"C:\Users\Lucas\AppData\Local\FilesFrog Update Checker\update_checker.exe" deleted
"C:\Users\Lucas\AppData\Local\FilesFrog Update Checker" deleted
"C:\Users\Lucas\AppData\Local\FilesFrog Update Checker" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\Lucas\AppData\Local\Temp ====
2014-05-20 13:44:48	3F512AF8DB108FCA028BA731CE0B4700	224408	----a-w-	C:\Users\Lucas\AppData\Local\Temp\{AC76BA86-7AD7-1043-7B44-AB0000000001}\FixTransforms.exe
2014-05-17 17:07:24	2D10A980CC1539C4CA29387E82267B4D	279752	----a-w-	C:\Users\Lucas\AppData\Local\Temp\FLVPlayerSetup.exe
2014-05-17 17:07:24	0F8564CF5B84A830291F229C1C33DF44	1605152	----a-w-	C:\Users\Lucas\AppData\Local\Temp\setup.exe
2014-05-17 17:07:23	8A02341A839D415E0620EF84057FF99D	2192008	----a-w-	C:\Users\Lucas\AppData\Local\Temp\SpeedUpMyComputer.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-05-14 22:28:27	1DEC681B79501A714F0D3FA2787183C3	305152	----a-w-	C:\WINDOWS\SysWOW64\wusa.exe
2014-05-14 22:27:43	9A11476467400E32083BCBF7A06EFF18	11792384	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2014-05-14 22:27:43	3F0DB8120F65E3223B4EAF6CA4CDB3C5	754688	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-14 22:27:42	AB3A013BA1C50B2309E5BF8136600656	828928	----a-w-	C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-14 22:27:42	51B615EF9408277FEF586EB97583844E	666624	----a-w-	C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-14 22:27:42	0542A44401EA9451D82D3DF4BF3BD871	419928	----a-w-	C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-14 22:27:41	DC72DC452793C9622E6F056B89F9302C	123904	----a-w-	C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-14 22:27:41	D8C63F333D4A8D8433849A9ADC092BE9	31232	----a-w-	C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-14 22:27:41	8DA8026471B3470085B4AFB9C77BF45F	25088	----a-w-	C:\WINDOWS\SysWOW64\wups.dll
2014-05-14 22:27:41	82119579B000F62D96B083BC6A246C07	80896	----a-w-	C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-14 22:27:33	EB5347F6149D3FF25F4D609A21A3BD67	17382912	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-14 22:27:32	FBCF3F01177953EBF1E735643621CCF5	69632	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-14 22:27:26	BA4FA107EF9A728C58A81B2EFCD6FE2B	26784	----a-w-	C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-14 22:27:26	6923D6FAB7CBA8D82BD792182B4F3DE4	80032	----a-w-	C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-14 22:27:19	B5507F49CB2E2516746BD55B9F671925	18679728	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-05-14 22:28:27	326715361A7D1C65983BFE920990E4EF	308224	----a-w-	C:\WINDOWS\Sysnative\wusa.exe
2014-05-14 22:27:50	3DF281C1553A6124DEF875C19D46AC0D	190976	----a-w-	C:\WINDOWS\Sysnative\storewuauth.dll
2014-05-14 22:27:48	7E609FBF50774CC5A239420FE34EBB9C	3464192	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2014-05-14 22:27:45	739F99ADA1F0A4188F683918809FE7AC	13288960	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2014-05-14 22:27:43	AF1BC4F5421023D59F1D472C1A4E01CF	921088	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2014-05-14 22:27:43	4FB80968811FAD6E88ABFAA98E51305C	1705472	----a-w-	C:\WINDOWS\Sysnative\wucltux.dll
2014-05-14 22:27:42	E859E9B4A0300F56C94D2C69F6F65657	827392	----a-w-	C:\WINDOWS\Sysnative\wuapi.dll
2014-05-14 22:27:42	C383B71BAAC22CCE37B99339AEB62F1E	93696	----a-w-	C:\WINDOWS\Sysnative\wudriver.dll
2014-05-14 22:27:42	850FC6B2E385766B9972CDBE947989F6	381440	----a-w-	C:\WINDOWS\Sysnative\WUSettingsProvider.dll
2014-05-14 22:27:42	7F15F3E0F847D90EB3A2124258E6B1DC	54776	----a-w-	C:\WINDOWS\Sysnative\wuauclt.exe
2014-05-14 22:27:42	766DCDC7032C4C98E47B8A9F71239E38	555736	----a-w-	C:\WINDOWS\Sysnative\twinapi.appcore.dll
2014-05-14 22:27:42	68CB2B575F0C67BB14590D1471285287	201728	----a-w-	C:\WINDOWS\Sysnative\ubpm.dll
2014-05-14 22:27:42	5F74A7DB62F6D560B0C858A096A37B59	1054208	----a-w-	C:\WINDOWS\Sysnative\twinui.appcore.dll
2014-05-14 22:27:42	1EC3AACDB335533A7470245C683ACF94	56320	----a-w-	C:\WINDOWS\Sysnative\wups.dll
2014-05-14 22:27:41	FD3638782572A8281BCF12520F6579F4	79872	----a-w-	C:\WINDOWS\Sysnative\WSReset.exe
2014-05-14 22:27:41	E9F333234A5641E2FEF2F5240BDD56B8	35328	----a-w-	C:\WINDOWS\Sysnative\wuapp.exe
2014-05-14 22:27:41	736046C9AFD66BA29BA61ACD582E7A7B	137728	----a-w-	C:\WINDOWS\Sysnative\wuwebv.dll
2014-05-14 22:27:33	A920E1336F9FEA95477763E2CC15891B	84992	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-05-14 22:27:33	797E2E5C309AFF76990D5B7AF457EACA	23544320	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-05-14 22:27:26	D178F55D53B9A10FFBDC134C95517846	28320	----a-w-	C:\WINDOWS\Sysnative\mrt100.dll
2014-05-14 22:27:26	A750229C96A406EE123F43916053F142	86688	----a-w-	C:\WINDOWS\Sysnative\mrt_map.dll
2014-05-14 22:27:18	06070D4CC64300D473C55ABDC887B63C	21225584	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-05-14 22:28:25	019CC610AD95FF47EAD7C08B7A683B96	257880	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2014-05-14 22:28:24	6CC1BB8F6851A262E2E824F0E92D5EEF	123224	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2014-05-14 22:28:23	F5D4FA3E1F4879C361FFF3855259D2C2	35856	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2014-05-05 18:50:38	344604E6913BD6E4EAEC34AF2E0943D7	44544	----a-w-	C:\WINDOWS\Sysnative\drivers\RimSerial_AMD64.sys
====== C:\WINDOWS\Tasks ======
2014-05-17 17:07:35	805A732E7ACA88A638EF4A419935B4A6	3430	----a-w-	C:\WINDOWS\Sysnative\Tasks\Math Problem Solver Optimize
2014-05-17 17:07:34	FE70351F76340B66F26CE272FD93F207	3216	----a-w-	C:\WINDOWS\Sysnative\Tasks\Math Problem Solver CPU
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-05-19 15:16:32	--------	d-----w-	C:\Program Files\Microsoft Silverlight
2014-05-13 07:02:43	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-05-05 18:49:57	--------	d-----w-	C:\PROGRA~2\COMMON~1\Research in Motion
2014-05-05 18:49:56	--------	d-----w-	C:\PROGRA~2\COMMON~1\XCPCSync.OEM
======= C: =====
====== C:\Users\Lucas\AppData\Roaming ======
2014-05-17 17:07:39	--------	d-----w-	C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
2014-05-17 17:07:34	--------	d-----w-	C:\Users\Lucas\AppData\Local\Math Problem Solver
2014-05-09 10:09:37	--------	d-sh--w-	C:\Users\Lucas\AppData\Local\EmieUserList
2014-05-09 10:09:37	--------	d-sh--w-	C:\Users\Lucas\AppData\Local\EmieSiteList
2014-05-05 18:51:15	--------	d-----w-	C:\Users\Lucas\AppData\Roaming\Research In Motion
2014-05-05 18:51:11	--------	d-----w-	C:\Users\Lucas\AppData\Local\Research In Motion
====== C:\Users\Lucas ======
2014-05-19 15:16:41	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-05-19 15:15:51	E9B9148F1590CFC520712A7B7205BF22	13084896	----a-w-	C:\Users\Lucas\Downloads\Silverlight_x64.exe
2014-05-17 17:07:56	0CD1AEEC9DC331EE0AB6842028537A03	236960	----a-w-	C:\Users\Lucas\Downloads\HD_PLUGINSetup-Ne7U1Xf87.exe
2014-05-17 17:07:14	D7C71C7BD93793EBFFFDB4029DD68A88	236944	----a-w-	C:\Users\Lucas\Downloads\HD_PLUGINSetup-Nd26K3KzG.exe
2014-05-05 18:50:36	--------	d-----w-	C:\ProgramData\Research In Motion
2014-05-05 18:50:33	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry

====== C: exe-files ==
2014-05-22 11:29:51	29198D93029027C9BB4DA8E9C70AF13E	26832976	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.114\35.0.1916.114_34.0.1847.137_chrome_updater.exe
2014-05-20 13:44:48	3F512AF8DB108FCA028BA731CE0B4700	224408	----a-w-	C:\Users\Lucas\AppData\Local\Temp\{AC76BA86-7AD7-1043-7B44-AB0000000001}\FixTransforms.exe
2014-05-20 11:24:27	F592C3301904E3811268C4F101284B43	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2563813238-2584161633-107748257-1001\$IQQ5RST.exe
2014-05-20 11:24:27	2B7E6B0C47DD1B8C994C976EA4415109	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2563813238-2584161633-107748257-1001\$I2V1FYB.exe
2014-05-19 15:15:51	E9B9148F1590CFC520712A7B7205BF22	13084896	----a-w-	C:\Users\Lucas\Downloads\Silverlight_x64.exe
2014-05-17 17:07:56	0CD1AEEC9DC331EE0AB6842028537A03	236960	----a-w-	C:\Users\Lucas\Downloads\HD_PLUGINSetup-Ne7U1Xf87.exe
2014-05-17 17:07:36	56C1BC75C67C0E47DB1DC3739704A339	59833	----a-w-	C:\Users\Lucas\AppData\Local\Math Problem Solver\Uninstall.exe
2014-05-17 17:07:24	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\IE\QI1GJLSO\FLVPlayerSetup[1].exe
2014-05-17 17:07:24	2D10A980CC1539C4CA29387E82267B4D	279752	----a-w-	C:\Users\Lucas\AppData\Local\Temp\FLVPlayerSetup.exe
2014-05-17 17:07:24	0F8564CF5B84A830291F229C1C33DF44	1605152	----a-w-	C:\Users\Lucas\AppData\Local\Temp\setup.exe
2014-05-17 17:07:23	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\IE\0NZYW2GS\setup[1].exe
2014-05-17 17:07:23	8A02341A839D415E0620EF84057FF99D	2192008	----a-w-	C:\Users\Lucas\AppData\Local\Temp\SpeedUpMyComputer.exe
2014-05-17 17:07:22	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\IE\CMCB2FE2\SpeedUpMyComputer[1].exe
2014-05-17 17:07:21	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\IE\QI1GJLSO\GenesisInstaller[1].exe
2014-05-17 17:07:14	D7C71C7BD93793EBFFFDB4029DD68A88	236944	----a-w-	C:\Users\Lucas\Downloads\HD_PLUGINSetup-Nd26K3KzG.exe
=== C: other files ==
2014-05-22 18:16:26	B52F2559D2DD0C408DDE04266E14F8F7	367834	----a-w-	C:\Users\Lucas\Downloads\arrested-development-first-season_english-712471.zip
2014-05-22 11:18:01	E22A99EDDBF28F7E72E19A1F5C2A41C1	14215	----a-w-	C:\Users\Lucas\Downloads\family-guy-twelfth-season_english-904543.zip
2014-05-19 18:06:23	0F2272E4EBA972B9F4D4FF06B50A39C7	22096	----a-w-	C:\Users\Lucas\Downloads\Ondertitel.com-1-Game.of.Thrones.S04E07.HDTV.x264-KILLERS.zip
2014-05-19 16:41:03	1B44BF78A4590F3FD6D1EB8C94E522D5	14572	----a-w-	C:\Users\Lucas\Downloads\the.big.bang.theory.the.status.quo.combustion.(2014).eng.1cd.(5683691).zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Spotify"="C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"
"Spotify Web Helper"="C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"SpeedUpMyComputer"="C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as"
"FLV Player"="C:\Users\Lucas\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"BtTray"="C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"HP CoolSense"="C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin"
"AdobeCS5.5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe -launchedbylogin"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup"
"Redirector"="C:\Program Files (x86)\Citrix\ICA Client\redirector.exe /startup"
"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"RIM PeerManager"="C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Spotify"="C:\Users\Lucas\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"
"Spotify Web Helper"="C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"SpeedUpMyComputer"="C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as"
"FLV Player"="C:\Users\Lucas\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC32Loader.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Folders ======================

2012-12-18 11:31:48	1103	----a-w-	C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2014-02-19 20:04:53	2669	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/12/2012 22:09]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/12/2012 22:09]
C:\WINDOWS\tasks\HPCeeScheduleForLucas.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13/09/2010 22:15]
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [24/08/2012 11:38]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\AdobeFlashPlayerUpdate" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\AdobeFlashPlayerUpdate 2" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\HPCeeScheduleForLucas" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\WINDOWS\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\WINDOWS\SysNative\tasks\Math Problem Solver CPU" [C:\Users\Lucas\AppData\Local\Math Problem Solver\cpu\Solve.exe]
"C:\WINDOWS\SysNative\tasks\Math Problem Solver Optimize" ["C:\Users\Lucas\AppData\Local\Math Problem Solver\Optimize.exe"]
"C:\WINDOWS\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{CDCA650C-8A92-453A-87AE-2A7CCB7A7C1E}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"searchpredict@speedbit.com"="" []

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Lucas\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]
icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[]
jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found[]
kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Lucas\AppData\Local\Torch\Plugins\TorchPlugin.crx[]
mbcjjdjanpccmehilicphhmeobiljcpk - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Lucas\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]

Google Wallet - Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP05546D50-7DFE-47E3-8757-3FCE2080986A&SSPV="
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://search.speedbit.com/tab/?s=DC1e105"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://search.speedbit.com/tab/?s=DC1e105"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"
{483830EE-A4CD-4b71-B0A3-3D82E62A6909} Unknown  Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} deleted successfully
HKEY_USERS\S-1-5-21-2563813238-2584161633-107748257-1001\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\searchpredict@speedbit.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mbcjjdjanpccmehilicphhmeobiljcpk deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedUpMyComputer deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Lucas\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=316 folders=142 122486320 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Lucas\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Lucas\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 23/05/2014 at  0:15:39,56 ======================