
Zoek.exe v5.0.0.0 Updated 03-September-2014
Tool run by Admin on wo 03-09-2014 at 17:28:47,47.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Admin\Desktop\zoek.exe [Scan all users]   [Quick Scan] [Auto Clean]

==== System Restore Info ======================

3-9-2014 17:29:48 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\Admin\AppData\Roaming\.# deleted successfully
C:\Users\Admin\AppData\Roaming\BRT deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rqg3kstt.default

user.js not found
---- Lines helperbar removed from prefs.js ----
user_pref("extensions.helperbar.DockingPositionDown", false);
user_pref("extensions.helperbar.SmartbarDisabled", false);
user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
user_pref("extensions.helperbar.Visibility", false);
user_pref("extensions.helperbar.keepAliveLastevent", "1409315431");
user_pref("extensions.helperbar.lastExternalJsUpdate", "1409274305194");
---- FireFox user.js and prefs.js backups ---- 

prefs_03-09-2014_1738_.backup

==== Deleting Files \ Folders ======================

C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\337 GAMES.lnk deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Admin\Downloads\SoftonicDownloader_voor_patience (1).exe deleted
C:\Users\Admin\Downloads\SoftonicDownloader_voor_patience.exe deleted
C:\Windows\Reimage.ini deleted
C:\windows\SysNative\Tasks\Reimage Reminder deleted
C:\Windows\tasks\Registry Optimizer_DEFAULT.job deleted
C:\Windows\tasks\Registry Optimizer_UPDATES.job deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Admin\AppData\Local\Temp ====
2014-08-28 06:24:06	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\wdscore.dll
2014-08-28 06:24:05	732A13256A9BE7E15E2D58393D6B85F4	471040	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\WimProvider.dll
2014-08-28 06:24:04	9E7E2B01C65C4E276ED55B1F1BD6CE2B	302080	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\UnattendProvider.dll
2014-08-28 06:24:03	739968678548BA15F6B9372E8760C012	444416	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\TransmogProvider.dll
2014-08-28 06:24:02	FFF48405C43A06F4B4A29F4562F7CD92	127488	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\OSProvider.dll
2014-08-28 06:24:02	011A725B36F05E8A771626017064F2CA	271360	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\SmiProvider.dll
2014-08-28 06:24:01	BB9E8732FC0B76EF29DC90C63397078E	312832	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\IntlProvider.dll
2014-08-28 06:24:01	45FF4FA5CA5432BFCCDED4433FE2A85B	216576	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\MsiProvider.dll
2014-08-28 06:24:00	64B66A41B61D511E8EBE94625EC0E45A	53760	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\FolderProvider.dll
2014-08-28 06:23:59	CCF6EC908566900E9626DC3360B9E35E	112128	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DismCorePS.dll
2014-08-28 06:23:59	A909643B215FC0587A043C9C15959D41	186368	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DismProv.dll
2014-08-28 06:23:59	A2D08E8B0AE6750DDD9D01D61BDDC818	435712	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DmiProvider.dll
2014-08-28 06:23:59	703E7D07687D2751D0474E4D333E832C	1672192	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\CbsProvider.dll
2014-08-28 06:23:59	6EBC2138A3C9B3B7D1E69E0629B6C815	289792	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DismCore.dll
2014-08-28 06:23:59	5AE6EFCD674AC76CC1A9929F1AFA0ECE	183296	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\CompatProvider.dll
2014-08-28 06:23:59	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DismHost.exe
2014-08-21 17:21:14	6EBC2138A3C9B3B7D1E69E0629B6C815	289792	----a-w-	C:\Users\Admin\AppData\Local\Temp\B0F8B446-A085-4DAF-8469-D837088A13BA\DismCore.dll
2014-08-21 16:24:10	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\Admin\AppData\Local\Temp\DB71D49A-DE89-48B4-8BBD-2A6F30B08E36\wdscore.dll
====== Java Cache =====
2014-08-19 17:07:57	B644EF6BEA3D06890E01FAD42914B21D	450	----a-w-	C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\380f29b3-79673b13299930710c8a9bddeeeb603fd1fd0e48c3c8a0b3a959133926f6b67f-6.0.lap
====== C:\Windows\SysWOW64 =====
2014-08-29 12:27:14	0DC5AF80D059DEC792B665ED598C6567	536576	----a-w-	C:\Windows\SysWOW64\sqlite3.dll
2014-08-27 21:04:09	980305AC3AF53C1964A11190451ABB32	311808	----a-w-	C:\Windows\SysWOW64\gdi32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-08-27 21:04:09	A347EF56B7CD8360B3EF7772FEA597B9	3163648	----a-w-	C:\Windows\Sysnative\win32k.sys
2014-08-27 21:04:09	860528C9E50AB84935843B23A80E665E	404480	----a-w-	C:\Windows\Sysnative\gdi32.dll
2014-08-27 16:29:30	5BC664A2F1BC73E36C4D842B369CE2BF	40182	----a-w-	C:\Windows\Sysnative\ScanResults.xml
====== C:\Windows\Sysnative\drivers =====
2014-08-29 13:23:48	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-08-29 13:23:24	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-08-29 13:23:24	15E8ABC06843672955CE26A009533BAD	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-08-29 13:23:23	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-08-14 05:08:28	87CE5C8965E101CCCED1F4675557E868	985536	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
====== C:\Windows\Tasks ======
2014-08-17 07:26:39	E2A51ABD73C019FD3460F77C7B0B3D1D	4274	----a-w-	C:\Windows\Sysnative\Tasks\ReimageUpdater
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-08-29 12:46:37	--------	d-----w-	C:\Program Files\redist
2014-08-29 12:46:36	--------	d-----w-	C:\Program Files\readmes
2014-08-29 12:46:36	--------	d-----w-	C:\Program Files\licenses
2014-08-21 18:06:49	--------	d-----w-	C:\Program Files\trend micro
2014-08-13 10:42:46	128617644	----a-w-	C:\Program Files\openoffice1.cab
2014-08-13 10:41:06	478720	----a-w-	C:\Program Files\setup.exe
2014-08-13 10:41:04	279	----a-w-	C:\Program Files\setup.ini
2014-08-13 10:41:04	2314240	----a-w-	C:\Program Files\openoffice411.msi
======= C:\PROGRA~2 =====
2014-08-29 13:14:59	--------	d-----w-	C:\PROGRA~2\COMMON~1\Adobe
2014-08-29 13:14:59	--------	d-----w-	C:\PROGRA~2\Adobe
2014-08-29 12:49:15	--------	d-----w-	C:\PROGRA~2\OpenOffice 4
2014-08-23 15:29:19	--------	d-----w-	C:\PROGRA~2\Tweaking.com
2014-08-18 10:35:06	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2014-08-16 15:39:11	--------	d-----w-	C:\PROGRA~2\ClearThink
======= C: =====
====== C:\Users\Admin\AppData\Roaming ======
2014-09-01 07:34:57	--------	d-----w-	C:\Users\Admin\AppData\Locallow\Adobe
2014-09-01 07:34:57	--------	d-----w-	C:\Users\Admin\AppData\Local\Adobe
2014-08-29 14:28:22	--------	d-----w-	C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-08-29 12:50:39	--------	d-----w-	C:\Users\Admin\AppData\Roaming\OpenOffice
====== C:\Users\Admin ======
2014-08-29 14:23:48	--------	d--h--w-	C:\ProgramData\Common Files
2014-08-29 13:14:40	--------	d-----w-	C:\ProgramData\Adobe
2014-08-29 12:50:09	--------	d-s---w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2014-08-29 12:25:46	9DED4724D695CFB01960426DA011ABAE	1364531	----a-w-	C:\Users\Admin\Desktop\adwcleaner_3.308.exe
2014-08-23 15:29:43	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-08-18 10:34:41	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-17 07:26:07	--------	d-----w-	C:\ProgramData\Reimage Protector

====== C: exe-files ==
2014-08-29 14:30:08	7FD9E230647F0D9B6F6ED30E634515E6	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$IGNVMFB.exe
2014-08-29 14:23:31	11B7109A3E73B926832335D887689499	4927216	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$RGNVMFB.exe
2014-08-29 14:09:10	2DFC20DB1795069A2CDDAC908689B665	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$IWNWZD4.exe
2014-08-29 14:08:51	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$RWNWZD4.exe
2014-08-29 14:08:01	F0CE94C35C74502B36736E99B9835E6C	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$I64TR3Z.exe
2014-08-29 13:23:44	F22A62464C9C6B8EF58C5AE75FEE5431	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$IJ4Q8LJ.exe
2014-08-29 13:22:04	E90BF9E1562F40140161573B79CD5720	17292760	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$RJ4Q8LJ.exe
2014-08-29 12:50:35	396F9C44F96671F2433A91F721119F93	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$IZAAZCE.exe
2014-08-29 12:41:08	41C25B061772336930C28DBC828BB023	138907477	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$RZAAZCE.exe
2014-08-29 12:28:32	F2EA795CC27ABD186E4E58AF47FCCC61	103936	----a-w-	C:\Program Files (x86)\ClearThink\bin\certUtil\certutil.exe
2014-08-29 12:28:32	F1766FA20332797D28F6B2E585704FD7	162032	----a-w-	C:\Program Files (x86)\ClearThink\bin\ClearThink.BRT.Helper.exe
2014-08-29 12:28:11	5B961D842A74EAD60116010FAE14BD35	98544	----a-w-	C:\Program Files (x86)\ClearThink\bin\ClearThink.BrowserAdapter.exe
2014-08-29 12:25:46	9DED4724D695CFB01960426DA011ABAE	1364531	----a-w-	C:\Users\Admin\Desktop\adwcleaner_3.308.exe
2014-08-28 06:23:59	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Admin\AppData\Local\Temp\B2648374-9A9E-424B-BC66-DB29964461B2\DismHost.exe
2014-08-27 16:35:58	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Admin.exe
2014-08-27 16:25:06	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\$Recycle.Bin\S-1-5-21-1277256316-1666980325-423128876-1000\$R64TR3Z.exe
=== C: other files ==
2014-08-29 13:23:48	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-08-29 13:23:24	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2014-08-29 13:23:24	15E8ABC06843672955CE26A009533BAD	63704	----a-w-	C:\Windows\System32\drivers\mwac.sys
2014-08-29 13:23:23	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2014-08-29 12:28:31	13650CEE5242DAA4E5D3455A3C8405D4	1337367	----a-w-	C:\Program Files (x86)\ClearThink\bin\certutil.zip
2014-08-29 12:28:30	54943D52000BAF4C6D63B12FCC3B8BCE	1825905	----a-w-	C:\Program Files (x86)\ClearThink\bin\ClearThink.BRT.zip
2014-08-27 21:04:09	A347EF56B7CD8360B3EF7772FEA597B9	3163648	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon"
"CanonSolutionMenu"="C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08-07-2014 20:08]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\ReimageUpdater" [C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [01-08-2014 08:10]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04-04-2014 12:36]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rqg3kstt.default
- SafeFinder Smartbar - %ProfilePath%\extensions\{31053844-d98e-2d70-9333-fa55dd9b571d}
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rqg3kstt.default
4390CCD3790F8D9C427C0C29590C62D7	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll -	Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - No path found[]

Google Docs - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Download Manager - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\defjpghjbaobbfbkncgkglmfnbcjmcog
AdBlock - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Google Wallet - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\defjpghjbaobbfbkncgkglmfnbcjmcog deleted successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_defjpghjbaobbfbkncgkglmfnbcjmcog_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Default_Search_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\382921545FEF9B34FA279C1F2A463785 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=68 folders=50 870767 bytes)

==== Empty Temp Folders ======================

C:\Users\Admin\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Admin\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found

==== EOF on wo 03-09-2014 at 17:46:16,80 ======================