
Zoek.exe v5.0.0.0 Updated 28-06-2014
Tool run by Rutges on ma 30-06-2014 at 16:58:30,71.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
Launched: F:\zoek.exe [Scan all users]   [Quick Scan] [Auto Clean]

==== System Restore Info ======================

30-6-2014 16:58:57 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\trend micro deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Internet Explorer\SearchScopes\{99767A67-1FEA-4617-B8B2-6E6828DE5A73} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5DE32CE-BD33-4A3E-8BD2-67FCF9B1377F} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D5DE32CE-BD33-4A3E-8BD2-67FCF9B1377F} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4F3A835-0E21-4959-BA22-42B3008E02FF} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4F3A835-0E21-4959-BA22-42B3008E02FF} deleted successfully
HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D5DE32CE-BD33-4A3E-8BD2-67FCF9B1377F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1280380452-1942208602-795399981-1001\Software\Mozilla\Firefox\Extensions\{11307539-f37a-4068-81b0-5e786aad6f00} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\Apple deleted
C:\PROGRA~3\Application Data deleted
C:\Users\Rutges\Searches deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Rutges\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-06-30 13:55:21	0DC5AF80D059DEC792B665ED598C6567	536576	----a-w-	C:\Windows\SysWOW64\sqlite3.dll
2014-06-17 06:29:32	9C5E4D86786FBE599D5F219F47C60D45	80896	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-06-17 06:29:26	E6A88972B3087DCFC6463C2F25741233	357888	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-06-17 06:29:26	A75DB7709AC2E09FBCF068320C3CFC49	226816	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-06-17 06:29:22	094BD2492BB6266C8FFF09644682EA00	14365696	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-06-17 06:29:16	EEBB92A56115248259308FDBDB9EFC80	1440768	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-06-17 06:29:08	95E087A289866DC5E435C5664DF02F84	2862080	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-06-17 06:29:07	69C95B8F87C24940BEC0505F90AC559F	13731328	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-06-17 06:29:05	B46C4C23FB70D3C35D4B54DFDF482F23	1766400	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-06-17 06:29:04	F48E21D977D20F883303726F8171AD77	2050560	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-06-17 06:29:03	D6442A667427194DED60C778EBAC09AF	1141248	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-06-17 06:29:01	2BF932961E027461B745883DD7D89655	690688	----a-w-	C:\Windows\SysWOW64\jscript.dll
2014-06-17 06:29:00	6B0F3460EEB39F2BC44BCC02718A5741	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-06-17 06:29:00	09B52FC5769B29CFF48A8B9A8471ED1E	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2014-06-17 06:28:59	B68C3F9DC9ED5C12D91E2EBC2E983F44	163840	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-06-17 06:28:59	4CDD119A96E01289C76BAF4AAB407C37	44032	----a-w-	C:\Windows\SysWOW64\UXInit.dll
2014-06-17 06:28:58	93ADE30136C7B4C38037E4A106021AA8	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-06-17 06:28:57	A1C2C8CE19D844AF03E1AED0FA19C080	39936	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-06-17 06:28:57	82A443039354DB5A13AA310AD9972CE0	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-06-17 06:28:57	369621475E732E68E2904109A37C4B71	534528	----a-w-	C:\Windows\SysWOW64\uxtheme.dll
2014-06-17 06:28:56	05508B910202CDD620CD34FEDE87229E	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-06-17 06:28:38	63B163EBB6CD51AB066EEAA573C0A4C5	1023488	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2014-06-17 06:28:19	D2E155FC442D58B8F4E67F43E83A1EF2	305152	----a-w-	C:\Windows\SysWOW64\wusa.exe
2014-06-17 06:21:52	D50C5638CD3AFF9A2023ABCCF38900DD	1419264	----a-w-	C:\Windows\SysWOW64\msxml3.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-06-17 06:29:52	A2D7F03BA538D9EFF7EF283E2FDBB30B	235520	----a-w-	C:\Windows\Sysnative\rdpudd.dll
2014-06-17 06:29:52	6DFC361AF35A7C1928EF00ACC2E461D7	3246592	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2014-06-17 06:29:26	FE53AACE72D45C7EFC8BA8D93498548B	452096	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-06-17 06:29:26	B2A9CE2659BFB41526FE76D8E80BCE3C	281600	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-06-17 06:29:25	36EA060DD7FF676E9A5E76F8E018002A	19290112	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-06-17 06:29:25	2B2BF069F45BCD774D0D584E9640B3E4	97792	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-06-17 06:29:16	E689794136A6ACF839C01A2DFF965BC0	1508864	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-06-17 06:29:13	E586C06D10EA9184E23871298258D9E0	15368704	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-06-17 06:29:10	FC4AC8F1E9218E8921012397F2165396	3958784	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-06-17 06:29:09	73AB92A1AA104EAF08B7AEA27B10C5CD	2239488	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-06-17 06:29:05	EE625C14C19F5CF864B4030591BF3AE4	2650112	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-06-17 06:29:04	A28977D4ADBDCA4E72A1E0EE22C4BF65	1366016	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-06-17 06:29:03	40D30DAD6874AF781229C3B85DF47C88	855552	----a-w-	C:\Windows\Sysnative\jscript.dll
2014-06-17 06:29:02	1854BA1C8076E17146DB9FC3190E713D	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-06-17 06:29:01	F181992EBE03646ECA4344C6DDE0975D	915968	----a-w-	C:\Windows\Sysnative\uxtheme.dll
2014-06-17 06:29:00	990CADAAD3A5E3BE39BB71C582781F0E	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2014-06-17 06:28:59	E58CA58CE7126ABA7BBCBA518E177EE3	197120	----a-w-	C:\Windows\Sysnative\msrating.dll
2014-06-17 06:28:59	E41F6D65A38FF596254FF4899E26F357	39936	----a-w-	C:\Windows\Sysnative\iernonce.dll
2014-06-17 06:28:59	1F6CB2605311BD90763B9DA6ED44BD22	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-06-17 06:28:58	3D565B725F2E8CA65E1DDE371543B4F8	53760	----a-w-	C:\Windows\Sysnative\UXInit.dll
2014-06-17 06:28:57	FFF2A91E3E338C7D4752E0DEA63881C2	53760	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-06-17 06:28:57	43FE211BF795E9B9E1B5B235F1FE46D0	67072	----a-w-	C:\Windows\Sysnative\iesetup.dll
2014-06-17 06:28:56	CC25DBC03D5492E4BB5BBC2BC7AE300A	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-06-17 06:28:38	BA9BEF9D223E174B0C1395FF59A90FFE	1301504	----a-w-	C:\Windows\Sysnative\gdi32.dll
2014-06-17 06:28:19	62C34DD7477501468924A4AA0C89BF8E	309760	----a-w-	C:\Windows\Sysnative\wusa.exe
2014-06-17 06:28:18	93E7FA131B9AF0AF62D112AB19D31264	387268	----a-w-	C:\Windows\Sysnative\ApnDatabase.xml
2014-06-17 06:21:52	4ABAA6956EE250DEFBE31B3BB1F2FEED	1845760	----a-w-	C:\Windows\Sysnative\msxml3.dll
====== C:\Windows\Sysnative\drivers =====
2014-06-30 13:22:02	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-06-30 13:21:41	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-06-30 13:21:41	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-06-30 13:21:41	0664F6335F108F38FE08C3CA747311EE	64216	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-06-17 06:28:19	8504ADDE9C146C6295B16D13A0007560	619008	----a-w-	C:\Windows\Sysnative\drivers\srv2.sys
2014-06-17 06:28:19	7B9BD186B7672DA1D79D5685BB2904CD	328024	----a-w-	C:\Windows\Sysnative\drivers\Classpnp.sys
2014-06-17 06:22:00	0E0C16EE82E2F4EBC2FBCA24C8F00D9E	2233176	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Rutges\AppData\Roaming ======
====== C:\Users\Rutges ======

====== C: exe-files ==
2014-06-30 14:19:31	5DAF522CDA8478A808DB35614071B33C	217768	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2014-06-30 14:19:30	E0FF3E1215CF23370F308043007F3441	842448	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DW20.EXE
2014-06-30 14:19:30	6DD8C7A6BE4E71F0748F1D4E143703A2	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOSQM.EXE
2014-06-30 14:19:24	3F6136372D72449FC7FC77C5F37962EC	79600	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
2014-06-30 14:19:23	28F54748E682CD5DDCE85E9FCAFDE707	7295192	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe
2014-06-30 14:19:22	644EFF9A5C5918CAC47392A5460D4466	49344	----a-w-	C:\Program Files\Microsoft Office 15\root\flattener\Flattener.exe
2014-06-30 14:19:21	5DE8B45C6EFC0E095A494C6CE3820DCD	39584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\AppSharingHookController64.exe
2014-06-30 14:19:19	7B3EEF526F0310740B80EFB4DE28C972	5399256	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe
2014-06-30 14:19:19	6E8396070F0E1CAE2624295229FFF641	207016	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2014-06-30 14:19:15	B869182BBDCC78EC0723987B51949589	873648	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2014-06-30 14:19:14	BCB2899A58487D3F562B3F7EC3A13626	474344	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DWTRIG20.EXE
2014-06-30 14:18:55	4B6F94E2E5A1C242DC632B9A9C4A4BB4	1063128	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2014-06-30 14:18:54	B3D03D15A4A198CA16619B103295F0B5	480984	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SELFCERT.EXE
2014-06-30 14:18:54	51C9DE2FF2FFE80FAA071F462611BDC3	228544	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\CLVIEW.EXE
2014-06-30 14:18:54	13DBDEA7FD7CAFA146E96739C57A8CD2	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
2014-06-30 14:18:54	04C3906F9BD53D78CF02428CC9CA7703	497856	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE
2014-06-30 14:18:53	87359736B1BF7BD4C06DF1F47B814142	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\IEContentService.exe
2014-06-30 14:18:53	460E180470F994F12F6233305CB120BC	21922464	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2014-06-30 14:18:53	2DE73B0C15A287B8510F8731171BBA2F	4522176	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\GRAPH.EXE
2014-06-30 14:18:47	F90DD89B53883AAFE86584AC9A943FC0	569592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE
2014-06-30 14:18:47	866F5B7DE44901934A3F020C6FEB9E97	40680	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SCANPST.EXE
2014-06-30 14:18:46	FDEF2BA898EFD5029A6DF4C1F3B475F0	528072	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\VPREVIEW.EXE
2014-06-30 14:18:14	86B954D69F90840E540F272F372FE198	588496	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\Integrator.exe
2014-06-30 14:16:56	A7AA6CC8ABC7E0D500508AA2BA9AD6B4	18935976	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
2014-06-30 14:16:52	B1C084CC7CE67C18EE2A79FAFFCC320A	1763496	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE
2014-06-30 14:16:52	9F4979BCD93B8880C50219706B03387C	195248	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
2014-06-30 14:16:32	E0318EA070ADAE7B354A74D9182338B2	1923232	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
2014-06-30 14:16:28	7B7FAA23D8DF169021F22A3A81A1B82F	25701536	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE
2014-06-30 14:16:15	1FDD284EA8FBDAEAB8F4FB9630DB4B0F	968872	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\FIRSTRUN.EXE
2014-06-30 14:11:47	AC6998D92A311E7CF0B4DAEC3566F444	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
2014-06-30 14:11:47	956672375AF066D958E4D07F5ABAFC1A	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
2014-06-30 14:11:47	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
2014-06-30 14:11:43	AA0E4F73727BFC8BA404884B1C1DB719	285064	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
2014-06-30 14:11:43	80E350E0AA963B2125896B13E60A4D68	114568	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
2014-06-30 14:11:43	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe
2014-06-30 14:11:43	397D14958D6C9C2B365469A857B2AC4E	230792	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
2014-06-30 14:11:39	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
=== C: other files ==
2014-06-30 13:22:02	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2014-06-30 13:21:41	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\System32\Drivers\mbam.sys
2014-06-30 13:21:41	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\System32\Drivers\mbamchameleon.sys
2014-06-30 13:21:41	0664F6335F108F38FE08C3CA747311EE	64216	----a-w-	C:\Windows\System32\Drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BtTray"="C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"egui"="C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe /hide /waitservice"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore1cf533b14e003d7.job --a-------- [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cf6c378435aa45.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08-07-2013 17:25]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore1cf533b14e003d7" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA1cf6c378435aa45" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dopemniaeocfenlpnoannaefnhfcjcgi - C:\Users\Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx[]

Google Docs - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rutges\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1346-154357-12126-2/4?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dopemniaeocfenlpnoannaefnhfcjcgi deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\fa040ad1-fd4a-407f-b039-8868bb3b0000 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rutges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rutges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Rutges\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5 folders=4 2683563 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Rutges\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Rutges\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 30-06-2014 at 17:44:35,98 ======================