
Zoek.exe v5.0.0.0 Updated 02-June-2014
Tool run by brenda on wo 04/06/2014 at 19:30:14,43.
Microsoft® Windows Vista™ Home Premium  6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\brenda\Downloads\Zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

4/06/2014 19:32:02 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\1ClickDownload deleted successfully
C:\Program Files\Advanced System Protector deleted successfully
C:\Program Files\GAMESVOORIEDEREEN.NL deleted successfully
C:\Program Files\Lavasoft deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Program Files\MyFree Codec deleted successfully
C:\Program Files\OXXOGames deleted successfully
C:\Program Files\Systweak Support Dock deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\PCDr deleted successfully
C:\Users\brenda\AppData\Roaming\Sammsoft deleted successfully
C:\Users\brenda\AppData\Local\DataSafeOnline deleted successfully
C:\Users\brenda\AppData\Local\PackageAware deleted successfully
C:\Users\brenda\AppData\Local\Powercinema deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079a25-328f-4bd4-be04-00955acaa0a7} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{99079a25-328f-4bd4-be04-00955acaa0a7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\!{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\!{F9639E4A-801B-4843-AEE3-03D9DA199E77} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\brenda\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20140406_1943_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}] 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 
"Bar"=- 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] 
"AvgUninstallURL"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\Program Files\Mozilla Firefox\user.js deleted
C:\Program Files\SearchCore for Browsers deleted
C:\Program Files\smartdl deleted
C:\Program Files\iMesh Applications deleted
C:\Program Files\Windows iLivid Toolbar deleted
C:\Program Files\TSearch deleted
C:\Program Files\Web Assistant deleted
C:\Users\brenda\AppData\Roaming\Smiley.ico deleted
C:\Users\brenda\AppData\Roaming\YoudaGames deleted
C:\Users\brenda\AppData\Roaming\systweak deleted
C:\PROGRA~2\boost_interprocess deleted
C:\PROGRA~2\Allmyapps deleted
C:\PROGRA~2\iMesh deleted
C:\PROGRA~2\Tarma Installer deleted
C:\Users\brenda\AppData\Local\Ilivid Player deleted
C:\Users\brenda\AppData\Local\iMesh deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh deleted
C:\Users\brenda\AppData\LocalLow\searchresultstb deleted
C:\Users\brenda\AppData\LocalLow\searchquband deleted
C:\Users\brenda\AppData\LocalLow\AskToolbar deleted
C:\Users\brenda\AppData\LocalLow\DataMngr deleted
C:\Users\brenda\AppData\LocalLow\Incredibar.com deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\user.js deleted
C:\Windows\system32\roboot.exe deleted
C:\Users\brenda\Documents\Optimizer Pro deleted
C:\Users\brenda\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com deleted
"C:\Windows\Installer\495a0fc0.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-05-07 20:28:34	0B5A0005C0BDF4A05174576AF80DEA04	43152	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\brenda\AppData\Local\Temp ====
====== Java Cache =====
2014-05-29 19:53:37	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-737b79a9
2014-05-29 19:53:32	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-33e0221c
2014-05-29 19:53:32	4ED400C81A1158627B98B664531370F3	425	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2014-05-29 19:53:33	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-1023131c
2014-06-04 17:28:31	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-29d0d6e7
====== C:\Windows\system32 =====
2014-06-04 17:27:51	FC3EC24FCE372C89423E015A2AC1A31E	1933848	----a-w-	C:\Windows\System32\wuaueng.dll
2014-06-04 17:27:51	BDC0C99E472176C8C2C853A68ADC5073	45080	----a-w-	C:\Windows\System32\wups2.dll
2014-06-04 17:27:51	2E0B0A051FFAA86E358465BB0880D453	53784	----a-w-	C:\Windows\System32\wuauclt.exe
2014-06-04 17:27:51	285C594C4913FA9DC7BB6BA3AD6F101A	2422272	----a-w-	C:\Windows\System32\wucltux.dll
2014-06-04 17:27:18	98F94089E9C549E223AB05BE54BAB2ED	171904	----a-w-	C:\Windows\System32\wuwebv.dll
2014-06-04 17:27:18	069385484EA57B663D688894C88975C5	33792	----a-w-	C:\Windows\System32\wuapp.exe
2014-05-29 19:52:38	CEE4C9E092168CEBD187491AF6FDA8FB	264616	----a-w-	C:\Windows\System32\javaws.exe
2014-05-29 19:52:21	ECB3AB701D6E26F5E54C58957E34E719	175528	----a-w-	C:\Windows\System32\javaw.exe
2014-05-29 19:52:21	B1799EE2C6B8435E7227844C5FC08BCC	96680	----a-w-	C:\Windows\System32\WindowsAccessBridge.dll
2014-05-29 19:52:21	2251971694E17BAC4E344DC2B7CD7ADD	175528	----a-w-	C:\Windows\System32\java.exe
====== C:\Windows\system32\drivers =====
2014-05-15 19:29:46	185ADA973B5020655CEE342059A86CBB	26840	----a-w-	C:\Windows\System32\drivers\GEARAspiWDM.sys
2014-05-07 20:29:04	4D6C6E0505A8E5A0656DCB223497D37C	24184	----a-w-	C:\Windows\System32\drivers\aswHwid.sys
====== C:\Windows\Tasks ======
2014-05-15 19:15:43	--------	d-----w-	C:\Windows\system32\Tasks\Apple
2014-05-07 20:19:00	3E4354DF2F797A24C7A15E2D4AF14B45	3310	----a-w-	C:\Windows\system32\Tasks\4801
2014-05-07 20:18:56	CC0732BCABEFC914DA14C9645EB38B82	3212	----a-w-	C:\Windows\system32\Tasks\0
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-29 21:20:44	--------	d-----w-	C:\Program Files\iPod
2014-05-29 21:20:41	--------	d-----w-	C:\Program Files\iTunes
2014-05-29 19:52:50	--------	d-----w-	C:\Program Files\Common Files\Java
2014-05-29 19:51:50	--------	d-----w-	C:\Program Files\Java
2014-05-15 19:28:14	--------	d-----w-	C:\Program Files\Bonjour
2014-05-15 19:18:36	--------	d-----w-	C:\Program Files\QuickTime
2014-05-15 19:15:41	--------	d-----w-	C:\Program Files\Apple Software Update
2014-05-07 21:39:59	--------	d-----w-	C:\Program Files\VideoLAN
2014-05-07 21:08:43	--------	d-----w-	C:\Program Files\Trend Micro
======= C: =====
2014-05-07 20:12:17	D46D074B8BF3F42AB0820C49AD760823	426	----a-w-	C:\AVScanner.ini
====== C:\Users\brenda\AppData\Roaming ======
2014-05-29 19:37:26	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Locallow\Sun
2014-05-15 19:26:39	--------	d-----w-	C:\Windows\system32\config\systemprofile\AppData\Roaming\Apple Computer
====== C:\Users\brenda ======
2014-05-29 21:21:35	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-29 21:20:42	--------	d-----w-	C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-05-29 20:06:02	B594CC9869FC95F8EDD3145D62516AD8	25509	----a-w-	C:\Users\brenda\info.txt
2014-05-29 19:52:51	--------	d-----w-	C:\ProgramData\Sun
2014-05-29 19:52:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-15 19:18:46	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-05-07 21:40:17	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

====== C: exe-files ==
2014-05-29 21:08:11	580F8607FBD31312460BEB9CC6225662	77136	----a-w-	C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.2.2.3\SetupAdmin.exe
2014-05-29 20:01:40	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\Trend Micro\brenda.exe
2014-05-29 20:00:28	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XPXK4O9V\RSIT[1].exe
2014-05-29 19:52:05	F9DE7324BDF83F5AFE174354F47C2AE0	16808	----a-w-	C:\Program Files\Java\jre7\bin\orbd.exe
2014-05-29 19:52:05	E0FE8B7BE802F8C4A71317AC35E44B00	16296	----a-w-	C:\Program Files\Java\jre7\bin\rmid.exe
2014-05-29 19:52:05	C7C5FF4B0E83702EFBC0C886D87E9743	145832	----a-w-	C:\Program Files\Java\jre7\bin\unpack200.exe
2014-05-29 19:52:05	B5C9699AA60F74F144DB5A566F6E58F8	16296	----a-w-	C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-05-29 19:52:05	84FB0EC0581C996F445433BD2379A5CC	16296	----a-w-	C:\Program Files\Java\jre7\bin\servertool.exe
2014-05-29 19:52:05	8140DCC3064BA8ADC407D956BE19D764	16296	----a-w-	C:\Program Files\Java\jre7\bin\pack200.exe
2014-05-29 19:52:05	3427C247AFEC295CD4A20B53EE445F23	16808	----a-w-	C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-05-29 19:52:05	3002E7E937FCB8985320AA807E762845	16296	----a-w-	C:\Program Files\Java\jre7\bin\policytool.exe
2014-05-29 19:52:05	0595B07F96E4F48784A4B772B887AD68	49576	----a-w-	C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-05-29 19:52:04	E87885A59FDC241B6575943A75E495D9	182696	----a-w-	C:\Program Files\Java\jre7\bin\jqs.exe
2014-05-29 19:52:04	E2C8F178A57D011518785CF75044CD69	16296	----a-w-	C:\Program Files\Java\jre7\bin\keytool.exe
2014-05-29 19:52:04	AEA4E94FC2A2F88FA5EC7FB6BC349E1B	16296	----a-w-	C:\Program Files\Java\jre7\bin\klist.exe
2014-05-29 19:52:04	62CA7ABA57A4FCDB3844F73A156BAE26	16296	----a-w-	C:\Program Files\Java\jre7\bin\kinit.exe
2014-05-29 19:52:04	235A2E87C34995F1837283FE76CD2E46	16296	----a-w-	C:\Program Files\Java\jre7\bin\ktab.exe
2014-05-29 19:52:04	1EFC992CA271E6D40034FBE7BCEDB724	52648	----a-w-	C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-05-29 19:51:58	ECB3AB701D6E26F5E54C58957E34E719	175528	----a-w-	C:\Program Files\Java\jre7\bin\javaw.exe
2014-05-29 19:51:58	CEE4C9E092168CEBD187491AF6FDA8FB	264616	----a-w-	C:\Program Files\Java\jre7\bin\javaws.exe
2014-05-29 19:51:58	96777405AB93AF8FCF6C9B6F5C3F1E51	16296	----a-w-	C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-05-29 19:51:58	82517DE5984F3EA3A49E0B5C8825DA63	68008	----a-w-	C:\Program Files\Java\jre7\bin\javacpl.exe
2014-05-29 19:51:58	2251971694E17BAC4E344DC2B7CD7ADD	175528	----a-w-	C:\Program Files\Java\jre7\bin\java.exe
2014-05-29 19:51:58	07643C3AF27179144C9800AF0819DE75	48040	----a-w-	C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-05-29 19:51:03	3842C46F2FBC7522EF625F1833530804	145408	----a-w-	C:\Users\brenda\AppData\LocalLow\Sun\Java\jre1.7.0_60\lzma.exe
2014-05-29 19:48:50	B1BA71EDE129F3D059571E0B8931E12C	918952	----a-w-	C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SWHFG2VI\JavaSetup7u60[1].exe
2014-05-29 19:34:38	773EB9A1C162EAE0141A49225ED28473	117474	----a-w-	C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LHFLF7XB\JavaSetup7u60[1].exe
=== C: other files ==
2014-05-29 19:52:06	8E29BBCCC8D802D36701633A7842FE74	18636	----a-w-	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background"
"SightSpeed"="C:\Program Files\Dell Video Chat\DellVideoChat.exe -bootmode"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Akamai NetSession Interface"="C:\Users\brenda\AppData\Local\Akamai\netsession_win.exe"
"Gamesvooriedereen Nieuwsflits"="C:\Program Files\OXXOGames\NLGPlayer\GameCenterNotifier.exe"
"Spotify Web Helper"="C:\Users\brenda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe"
"KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload"
"KiesAirMessage"="C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup"
@="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AutoLaunch"="C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe monthly"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AutoLaunch"="C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe monthly"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"Broadcom Wireless Manager UI"="C:\Windows\system32\WLTRAY.exe"
"Dell Webcam Central"="C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe /mode2"
"Dell DataSafe Online"="C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe /m"
"PCMService"="C:\Program Files\Dell\MediaDirect\PCMService.exe"
"dellsupportcenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe /P dellsupportcenter"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"KiesTrayAgent"="C:\Program Files\Samsung\Kies\KiesTrayAgent.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"OA001Cfg.exe"="OA001Cfg.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"
"SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"20140529"="C:\Program Files\AVAST Software\Avast\setup\emupdate\5738cd0c-5e4e-4cd6-b341-e546c4256e17.exe /check"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background"
"SightSpeed"="C:\Program Files\Dell Video Chat\DellVideoChat.exe -bootmode"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"Akamai NetSession Interface"="C:\Users\brenda\AppData\Local\Akamai\netsession_win.exe"
"Gamesvooriedereen Nieuwsflits"="C:\Program Files\OXXOGames\NLGPlayer\GameCenterNotifier.exe"
"Spotify Web Helper"="C:\Users\brenda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe"
"KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload"
"KiesAirMessage"="C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup"
@="C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"

==== Startup Folders ======================

2009-04-18 17:59:01	1815	----a-w-	C:\Users\brenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
2009-04-14 13:05:45	1835	----a-w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
2009-04-14 13:05:45	1835	----a-w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
2009-04-14 12:30:30	743	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
2009-04-14 12:33:09	1929	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Ad-Aware Update (Weekly).job --a------ C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe []
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [09/06/2009 20:50]
C:\Windows\tasks\User_Feed_Synchronization-{4754A903-CE14-48DE-A917-A987A7F6F818}.job --ah----- [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]
"C:\Windows\system32\tasks\4801" [wscript.exe C:\Users\brenda\AppData\Local\Temp\launchie.vbs //B]
"C:\Windows\system32\tasks\Ad-Aware Update (Weekly)" [C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe]
"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\Launch BCM WLAN Tray" [C:\Windows\system32\WLTRAY.EXE]
"C:\Windows\system32\tasks\User_Feed_Synchronization-{4754A903-CE14-48DE-A917-A987A7F6F818}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\system32\tasks\{19097517-7422-4506-BFC6-380444A1CE92}" [C:\Program Files\Skype\Phone\Skype.exe]
"C:\Windows\system32\tasks\{AA929D39-5DE1-4637-802B-E28EE7FC75E8}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112.217/nl/abandoninstall?page=tsDownload&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;systemlevelpresent]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}"="C:\Program Files\Web Assistant\Firefox" []
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}"="C:\Program Files\Web Assistant\Firefox" []

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
cedclbokcakighlpbnbhfjffdjeihfdp - C:\Windows\System32\jmdp\pnte.crx[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07/05/2014 22:27]
kincjchfokkeneeofpeefomkikfkiedl - C:\Program Files\OpenApp\chromeaddon.crx[]

Google Wallet - brenda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"
"Search Page"="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz="

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{C62D0C84-B1E3-46D6-9F9A-C28DC72FDCB8}"
{16C0A367-164C-49F3-8139-71EC26638638} Bing  Url="http://www.bing.com/search?q={searchTerms}&FORM=DLCDF7&pc=MDDC&src=IE-SearchBox"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{C62D0C84-B1E3-46D6-9F9A-C28DC72FDCB8} Google  Url="https://www.google.com/search?q={searchTerms}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_USERS\S-1-5-21-492835165-1829682469-2871170361-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cedclbokcakighlpbnbhfjffdjeihfdp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\iMesh deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 406 MediaBar deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully

==== Empty IE Cache ======================

C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\brenda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=795 folders=108 149826723 bytes)

==== Empty Temp Folders ======================

C:\Users\brenda\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\brenda\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\brenda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on wo 04/06/2014 at 19:56:54,62 ======================