Zoek.exe v5.0.0.0 Updated 22-05-2014
Tool run by Tissen Guy on za 24/05/2014 at  9:49:38,21.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tissen Guy\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

24/05/2014 9:50:26 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Tissen Guy\AppData\Roaming\DefaultTab not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-05-18 09:45:53	E0845B86164B4AB041394D3F7118DCD2	13055	----a-w-	C:\Windows\BRRBCOM.INI
====== C:\Users\TISSEN~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-05-21 10:47:11	204882085A7D984D455AA4DE7B7074C6	5694464	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2014-05-20 16:04:31	AB5EFB103DB01C1912C9D2F545EA5621	17920	----a-w-	C:\Windows\SysWOW64\wksprtPS.dll
2014-05-20 16:04:31	8DEEE20D8D30E9B0FBDCA31E58A027BD	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2014-05-20 16:04:31	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2014-05-20 16:04:31	2EFB1279E7BEA7D12D9F4D6508D27880	50176	----a-w-	C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-20 16:04:30	5E676B296B762E211D83B87635F2C330	855552	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-20 16:04:01	AAB5D8C5ABE71873DC19ED004EF25009	792576	----a-w-	C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-20 16:03:58	33B26FA5DBEB69FFAB703EDCB4E6DE4A	514560	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2014-05-14 20:15:59	FBCF3F01177953EBF1E735643621CCF5	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 20:15:57	EB5347F6149D3FF25F4D609A21A3BD67	17382912	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-05-14 20:15:57	10D531ADC7B8FB36C7361D44AF6E8AB6	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 19:09:12	E9D88493FBDB36D4B65C6F2F7F122C95	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-05-14 19:09:04	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 19:09:03	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-05-14 19:09:03	ED195AC76E10F17F6DD60C49666F2A83	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 19:09:03	9DE19EA21DF99AF15BA5A947E5317F9E	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-05-14 19:09:03	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-05-14 19:09:03	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 19:09:03	828185688FDAAE6C7959B884ABED1766	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-05-14 19:09:03	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 19:09:03	541BB9B4C899ADCC5D3DB89208C1F409	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 19:09:03	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-05-14 19:09:03	3A1ABE045A3E30799576E83A2D012B43	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-05-14 19:09:03	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 19:09:03	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 19:09:03	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 19:09:02	C94CE65AE7701E9FDBA889045543E27C	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-05-14 19:09:02	75878492F2B33405EEF900F8C16C6D08	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-05-14 19:09:02	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 19:09:02	2A86C18CE6869C77FCEB62F3B47D4D5B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-05-21 10:47:11	879A3F94118D686E63041A386FE91EBE	6574592	----a-w-	C:\Windows\Sysnative\mstscax.dll
2014-05-20 16:04:41	DDED7C5558B3AE09F568945281A9A6D1	44544	----a-w-	C:\Windows\Sysnative\TsUsbGDCoInstaller.dll
2014-05-20 16:04:31	FEC6178962DFF33074D39CA907971405	12800	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-20 16:04:31	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\Sysnative\mstsc.exe
2014-05-20 16:04:31	7BD2E6E2458A5B95F8341244C7FC7DD4	18944	----a-w-	C:\Windows\Sysnative\wksprtPS.dll
2014-05-20 16:04:31	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\Sysnative\wksprt.exe
2014-05-20 16:04:31	5289A00E2D21BB3A7D6761646543ED5C	62976	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2014-05-20 16:04:31	149A388C17F04AD1F99B477A43BE1A9F	56832	----a-w-	C:\Windows\Sysnative\MsRdpWebAccess.dll
2014-05-20 16:04:31	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyControl.exe
2014-05-20 16:04:31	0D2C2FAC4F29B5868D39B7267058CFEF	83968	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2014-05-20 16:04:30	A4420969E5AB94856E5C0C02E6099D3F	1057280	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2014-05-20 16:04:01	9E2EDE952A3EC44754A829F048CE93A0	1030144	----a-w-	C:\Windows\Sysnative\TSWorkspace.dll
2014-05-20 16:03:58	973131EB99BE1E19DAC502CB724E72A5	366592	----a-w-	C:\Windows\Sysnative\qdvd.dll
2014-05-14 20:15:59	A920E1336F9FEA95477763E2CC15891B	84992	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-05-14 20:15:59	797E2E5C309AFF76990D5B7AF457EACA	23544320	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-05-14 20:15:57	A45BFDCFD5864F658289A165E6E0227F	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-05-14 19:09:13	427015D56DF17241F634611557146C57	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-05-14 19:09:12	4A795989DF0043973711B666D36D2678	477184	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-05-14 19:09:11	485FB1F3792FF7B5D5EBB99AB870E588	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-05-14 19:09:04	B19C8390A1D641B9AC4490D4828A7B5E	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-05-14 19:09:04	9358149234A4F3FE00CF5C2096DC1652	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-05-14 19:09:03	E2A483E796D5FC7E447725FD01D98FA0	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-05-14 19:09:03	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-05-14 19:09:03	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-05-14 19:09:03	B6D8C1202DACA028AD94BDA2795CBBE9	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-05-14 19:09:03	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-05-14 19:09:03	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-05-14 19:09:03	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-05-14 19:09:03	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-05-14 19:09:03	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-05-14 19:09:03	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-05-14 19:09:03	481F70241D4EA038BB02590A30F15A23	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-05-14 19:09:03	26AF184300C0868D854D5A3092234E24	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-05-14 19:09:02	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-05-14 19:09:02	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-05-14 19:09:02	82A72E99AA1CF0B04D3B9843CBA3AEC1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-05-14 19:09:02	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-05-14 19:09:02	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2014-05-14 19:09:02	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
====== C:\Windows\Sysnative\drivers =====
2014-05-20 16:04:31	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2014-05-14 19:09:03	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2014-05-14 19:09:03	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
====== C:\Windows\Tasks ======
2014-05-02 02:46:58	EF1B774DDABDCA8DF8C82A501D9B1458	3662	----a-w-	C:\Windows\Sysnative\Tasks\DTChk
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-23 12:48:36	--------	d-----w-	C:\Program Files\trend micro
2014-05-14 20:15:49	--------	d-----w-	C:\Program Files\Common Files\DESIGNER
======= C:\PROGRA~2 =====
2014-04-30 04:19:35	--------	d-----w-	C:\PROGRA~2\COMMON~1\TI Shared
2014-04-30 04:18:54	--------	d-----w-	C:\PROGRA~2\TI Education
======= C: =====
====== C:\Users\Tissen Guy\AppData\Roaming ======
2014-05-23 15:36:16	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\defaulttab
2014-05-13 17:13:12	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-05-13 17:08:14	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-04-30 04:29:36	--------	d-----w-	C:\Users\Tissen Guy\AppData\Roaming\TI-Nspire
2014-04-30 04:23:01	--------	d-----w-	C:\Users\Tissen Guy\AppData\Roaming\Texas Instruments
====== C:\Users\Tissen Guy ======
2014-05-23 12:47:20	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Tissen Guy\Desktop\RSITx64.exe
2014-05-18 10:46:11	--------	d-----r-	C:\Windows\SysNative\config\systemprofile\Searches
2014-05-18 09:45:53	--------	d-----w-	C:\ProgramData\Brother
2014-05-02 02:46:57	--------	d-----w-	C:\Users\Public\Util
2014-04-30 04:19:48	--------	d-----w-	C:\ProgramData\SafeNet Sentinel
2014-04-30 04:19:24	--------	d-----w-	C:\ProgramData\TI-Nspire CAS
2014-04-30 04:19:15	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools

====== C: exe-files ==
2014-05-23 15:36:16	B01A4F484F4879F07EE086A37812A960	53904	----a-w-	C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabUninstaller.exe
2014-05-23 15:36:16	34AE0DFA3EE3B5B9975042D87332D0B7	107520	----a-w-	C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DTUpdate.exe
2014-05-23 12:48:37	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Tissen Guy.exe
2014-05-23 12:47:20	662C39FC1E27131551D557862CEC47F0	935175	----a-w-	C:\Users\Tissen Guy\Desktop\RSITx64.exe
2014-05-23 03:21:06	29198D93029027C9BB4DA8E9C70AF13E	26832976	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.114\35.0.1916.114_34.0.1847.137_chrome_updater.exe
2014-05-20 16:04:31	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\System32\mstsc.exe
2014-05-20 16:04:31	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\System32\wksprt.exe
2014-05-20 16:04:31	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2014-05-20 16:04:31	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-20 16:04:31	0D2C2FAC4F29B5868D39B7267058CFEF	83968	----a-w-	C:\Windows\System32\TSWbPrxy.exe
=== C: other files ==
2014-05-20 16:04:31	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\System32\drivers\TsUsbFlt.sys
2014-05-19 20:48:01	F718A57D946EAC76EFCB351D74E269F4	875736	----a-w-	C:\Windows\System32\drivers\N360x64\1503000.00C\srtsp64.sys
2014-05-19 20:48:01	B18CE01B9C09C59422BA7C7064248B35	36952	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\srtspx64.sys
2014-05-19 20:48:01	9F31630D7FC2DD9D5DA1CE359AAD1F46	1148120	----a-w-	C:\Windows\System32\drivers\N360x64\1503000.00C\symefa64.sys
2014-05-19 20:48:01	5C9EE2303CA7F267665D75237862B39C	493656	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\symds64.sys
2014-05-19 20:48:01	5570A74FF9B1EFBC5154DD1E2F05C517	593112	----a-w-	C:\Windows\System32\drivers\N360x64\1503000.00C\symnets.sys
2014-05-19 20:48:01	48C2934683CBD06F662B088EEF49EF6A	264280	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\ironx64.sys
2014-05-19 20:48:01	20F758E6339A16F97DD83389D582E09A	23568	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\symelam.sys
2014-05-19 20:48:01	0510396A957E9FD7205BA62D3CAE4528	162392	----a-r-	C:\Windows\System32\drivers\N360x64\1503000.00C\ccsetx64.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe -osboot"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DefaultTabSearch]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DefaultTabUpdate]


==== Startup Folders ======================

2012-04-03 00:04:56	1270	----a-w-	C:\Users\Tissen Guy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2014 21:35]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/04/2013 03:18]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/04/2013 03:18]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DTChk" [C:\Users\Public\Util\DTChk.exe]
"C:\Windows\SysNative\tasks\DTReg" [C:\Users\Tissen Guy\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.3.0.12\WSCStub.exe"]
"C:\Windows\SysNative\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe]
"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe]
"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeLogonTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeScheduledTaskS-1-5-21-1971784298-2873480403-1312901608-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\Norton 360\Norton Error Analyzer" [C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.3.0.12\SymErr.exe]
"C:\Windows\SysNative\tasks\Norton 360\Norton Error Processor" [C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.3.0.12\SymErr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{BBDA0591-3099-440a-AA10-41764D9DB4DB}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF" [19/11/2013 17:24]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14/08/2013 15:24]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\21.3.0.12\Exts\Chrome.crx[28/04/2014 14:52]

YouTube - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
RealDownloader - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji
Norton Identity Protection - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Google Wallet - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Tissen Guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
DefaultTab - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1971784298-2873480403-1312901608-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-1971784298-2873480403-1312901608-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-1971784298-2873480403-1312901608-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_USERS\S-1-5-21-1971784298-2873480403-1312901608-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on za 24/05/2014 at  9:53:27,06 ======================