Zoek.exe v5.0.0.0 Updated 26-09-2014
Tool run by Henk on vr 26-09-2014 at 14:10:03,73.
Microsoft Windows 7 Home Premium  6.1.7600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Henk\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2014-09-26-113922.log	33379 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files (x86)\SupTab not found
C:\ProgramData\WindowsMangerProtect not found
C:\Users\Henk\AppData\Roaming\webssearches not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-09-25 17:58:09	7DC739797076EB7C5D3DA403E1F4A552	24	----a-w-	C:\Windows\ATKPF.ini
2014-09-21 19:03:37	F9F4905664C5B42B49E78EFA12D1A6B6	20	----a-w-	C:\Windows\HõÖ
====== C:\Users\Henk\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-09-25 08:30:31	FA4B5940B31853ADE67A73026884C8C9	1130824	----a-w-	C:\Windows\SysWOW64\dfshim.dll
2014-09-25 08:30:31	DFF617498211FBB3D8D3FCC51A37B777	99176	----a-w-	C:\Windows\SysWOW64\PresentationHostProxy.dll
2014-09-25 08:30:31	302964DCAC79D618CC7B72C778DA9FD2	295264	----a-w-	C:\Windows\SysWOW64\PresentationHost.exe
2014-09-25 08:30:31	15515AE1540B4EE2B75DF63FC15129DF	49472	----a-w-	C:\Windows\SysWOW64\netfxperf.dll
2014-09-25 08:30:31	128DD9AF8640DBCC711940903C8B554F	297808	----a-w-	C:\Windows\SysWOW64\mscoree.dll
2014-09-23 21:27:52	E68C89106038E6246FBA26DD6344C31E	701104	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-23 21:27:52	B71C4D76D9B4808CC4795AB655798F06	71344	----a-w-	C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-23 15:25:07	90B43F1C4795CE53CCBCD53348713504	196608	----a-w-	C:\Windows\SysWOW64\mfreadwrite.dll
2014-09-23 15:25:07	81960ABCF95E41DCD7BF164499765228	1619456	----a-w-	C:\Windows\SysWOW64\WMVDECOD.DLL
2014-09-23 15:25:06	0F0EE7DE3436E6F8F0E19DACAC7B5730	3181568	----a-w-	C:\Windows\SysWOW64\mf.dll
2014-09-21 19:04:53	26AF232140C88B42D92A88F2198EDF6A	3426072	----a-w-	C:\Windows\SysWOW64\d3dx9_32.dll
====== C:\Windows\SysWOW64\drivers =====
2014-09-21 19:20:36	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\drivers\1043_ASUSTeK_K70IJ.alu
====== C:\Windows\Sysnative =====
2014-09-25 08:30:31	E60BB0CDC5EA153F6D24C51AAD4A73FD	320352	----a-w-	C:\Windows\Sysnative\PresentationHost.exe
2014-09-25 08:30:31	CF27F49978FB0B47E6DC0B81651F463C	48960	----a-w-	C:\Windows\Sysnative\netfxperf.dll
2014-09-25 08:30:31	C675076B247D97A427014D461CDA0039	109912	----a-w-	C:\Windows\Sysnative\PresentationHostProxy.dll
2014-09-25 08:30:31	72AB6633E9B39EC7FEBEDF083A9061E5	444752	----a-w-	C:\Windows\Sysnative\mscoree.dll
2014-09-25 08:30:30	767EE8126468D91C5119F25714D78DAF	1942856	----a-w-	C:\Windows\Sysnative\dfshim.dll
2014-09-23 15:25:08	6E43D76602F8D254B00451E7674DAE3C	257024	----a-w-	C:\Windows\Sysnative\mfreadwrite.dll
2014-09-23 15:25:08	14A10BD45A18C6C71CDD1F38F9061953	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2014-09-23 15:25:07	7FD58BA8562948EE374E2513C6771EF9	4068864	----a-w-	C:\Windows\Sysnative\mf.dll
2014-09-23 15:25:07	42CBAAF98D660FA78074382CF5AF3A05	1888256	----a-w-	C:\Windows\Sysnative\WMVDECOD.DLL
2014-09-23 15:23:18	85D6E8F735865B502D65D1D91A79E3F3	294912	----a-w-	C:\Windows\Sysnative\browserchoice.exe
2014-09-23 15:02:40	66FC85C4728B6FBA8E7AAD59854F3730	101694776	----a-w-	C:\Windows\Sysnative\MRT.exe
2014-09-23 14:11:32	C0B628A6909BB283A07AEC0B785A0D9B	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-09-22 13:13:30	FA132E1DAB518B28F4B20DB154A647FC	389120	----a-w-	C:\Windows\Sysnative\CNMLMB5.DLL
2014-09-22 09:54:21	1D8201DB58B6C08A4F64063A0BCD4957	574976	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-09-21 19:04:53	A4DDFE5DC4E73D1FED9B1B3A3D885612	4398360	----a-w-	C:\Windows\Sysnative\d3dx9_32.dll
2014-09-21 19:02:28	D9EF901DCA379CFE914E9FA13B73B4C4	2428952	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2014-09-21 19:02:28	C1C03EA437EDDA8A7D4D8786E5AE6751	57880	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2014-09-21 19:02:28	7FE0D0C8F53735EA17C9AE93EFE7AD5A	44056	----a-w-	C:\Windows\Sysnative\wups2.dll
2014-09-21 19:02:28	50EBD31C3527366FAFA468BD609F7352	2622464	----a-w-	C:\Windows\Sysnative\wucltux.dll
2014-09-21 19:01:55	E746ED90132C6B6313CE9179F56BD31D	38424	----a-w-	C:\Windows\Sysnative\wups.dll
2014-09-21 19:01:55	C47F35CC6FA4F1BDBEF8F87AC1A46537	701976	----a-w-	C:\Windows\Sysnative\wuapi.dll
2014-09-21 19:01:55	4AA6AA52A16EED6481E83D73EED4C8D5	99840	----a-w-	C:\Windows\Sysnative\wudriver.dll
2014-09-21 19:01:41	FF0729002E081668620A681182D63FE6	36864	----a-w-	C:\Windows\Sysnative\wuapp.exe
2014-09-21 19:01:41	3E38C20AC83B01C45723B63B0F7A8FDC	186752	----a-w-	C:\Windows\Sysnative\wuwebv.dll
====== C:\Windows\Sysnative\drivers =====
2014-09-22 12:56:04	918997DCB25355E3541EF62FA0C2A368	20672	----a-w-	C:\Windows\Sysnative\drivers\GUBootStartup.sys
2014-09-21 19:06:46	5814011B2F6E088E29D689B5FCD49B8F	61792	----a-w-	C:\Windows\Sysnative\drivers\fssfltr.sys
====== C:\Windows\Tasks ======
2014-09-24 18:38:57	A11549468A73ACBDAA68DA2FAA1A203D	4318	----a-w-	C:\Windows\Sysnative\Tasks\User_Feed_Synchronization-{925797A9-3700-4171-A726-7BCFE88A51AF}
2014-09-23 21:27:53	5ADD4CA8F300BFC664EF23E0CB171C38	940	----a-w-	C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-23 21:27:53	21ECB34A53150CAE7E8879D7DF3FAD79	3878	----a-w-	C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater
2014-09-23 15:31:19	394C5B6EDA33409F413F196861F8F34F	3532	----a-w-	C:\Windows\Sysnative\Tasks\CreateChoiceProcessTask
2014-09-22 12:56:06	DE7819E3934A8CC0333056875E0D9C09	250	----a-w-	C:\Windows\Tasks\GU5SkipUAC.job
2014-09-22 12:56:06	51A65C70A585D0CF07C63DBE51076182	330	----a-w-	C:\Windows\Tasks\GlaryInitialize 5.job
2014-09-21 22:23:44	6F5E20FEFCFAA4FCD6DBBFD0755B916D	1052	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-21 22:23:44	6E4567F5D0CF462292F279DDC92724A1	3796	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2014-09-21 22:23:44	5951191D5E566EC98FBBFD16D9A8FCF5	4048	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-09-21 22:23:44	4499A0686A127D2762EFD0F783052562	1048	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-21 22:21:47	8CF32BE8B8B4196D4B3C8AEF29617636	2952	----a-w-	C:\Windows\Sysnative\Tasks\{30CCAC32-22C6-47C3-A09C-3A01BE5AB535}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-09-21 22:23:56	--------	d-----w-	C:\Program Files\Google
2014-09-21 19:06:44	--------	d-----w-	C:\Program Files\Windows Live
======= C:\PROGRA~2 =====
2014-09-24 22:11:54	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-09-23 20:10:14	--------	d-----w-	C:\PROGRA~2\COMMON~1\Skype
2014-09-23 20:10:14	--------	d-----r-	C:\PROGRA~2\Skype
2014-09-23 12:23:38	--------	d-----w-	C:\PROGRA~2\Uniblue
2014-09-22 12:55:57	--------	d-----w-	C:\PROGRA~2\Glary Utilities 5
2014-09-21 22:22:57	--------	d-----w-	C:\PROGRA~2\Google
2014-09-21 22:22:35	--------	d-----w-	C:\PROGRA~2\PhotoScape
2014-09-21 20:12:32	--------	d-----w-	C:\PROGRA~2\AVG
2014-09-21 19:07:08	--------	d-----w-	C:\PROGRA~2\Microsoft Office Outlook Connector
2014-09-21 19:03:37	--------	d-----w-	C:\PROGRA~2\Microsoft SQL Server Compact Edition
2014-09-21 19:01:39	--------	d-----w-	C:\PROGRA~2\Microsoft
2014-09-21 19:01:04	--------	d-----w-	C:\PROGRA~2\Windows Live SkyDrive
2014-09-21 19:00:46	--------	d-----w-	C:\PROGRA~2\Windows Live
2014-09-21 18:58:59	--------	d-----w-	C:\PROGRA~2\COMMON~1\Windows Live
======= C: =====
2014-09-22 04:41:56	0E941477A7EC9A333F9881088FC46B74	146	----a-w-	C:\Pass.txt
====== C:\Users\Henk\AppData\Roaming ======
2014-09-26 11:38:01	303020C648DFC793D50F775B49C7604C	245904	----a-w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2014-09-26 11:32:22	--------	d-----w-	C:\Users\Henk\AppData\Local\Temp
2014-09-24 18:26:34	--------	d-----w-	C:\Users\Henk\AppData\Local\Deployment
2014-09-24 18:26:34	--------	d-----w-	C:\Users\Henk\AppData\Local\Apps
2014-09-23 20:10:26	--------	d-----w-	C:\Users\Henk\AppData\Local\Skype
2014-09-23 20:10:24	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Skype
2014-09-23 15:01:35	--------	d-----w-	C:\Users\Henk\AppData\Local\Microsoft Help
2014-09-23 12:22:35	--------	d-----w-	C:\Users\Henk\AppData\Local\Programs
2014-09-22 22:23:44	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2014-09-22 22:23:44	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2014-09-22 15:28:24	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google
2014-09-22 12:56:04	--------	d-----w-	C:\Users\Henk\AppData\Roaming\GlarySoft
2014-09-22 12:56:04	--------	d-----w-	C:\Users\Henk\AppData\Roaming\DiskDefrag
2014-09-21 22:24:22	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Google
2014-09-21 22:24:19	--------	d-----w-	C:\Users\Henk\AppData\Roaming\PhotoScape
2014-09-21 22:23:37	--------	d-----w-	C:\Users\Henk\AppData\Local\Google
2014-09-21 22:21:05	--------	d-----w-	C:\Users\Henk\AppData\Local\Diagnostics
2014-09-21 21:00:07	--------	d-----w-	C:\Users\Henk\AppData\Local\Adobe
2014-09-21 20:14:48	--------	d-----w-	C:\Users\Henk\AppData\Roaming\AVG2015
2014-09-21 20:14:14	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG2015
2014-09-21 20:13:50	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg2015
2014-09-21 20:13:49	--------	d-----w-	C:\Users\Henk\AppData\Roaming\TuneUp Software
2014-09-21 20:12:33	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2015
2014-09-21 20:09:16	--------	d-----w-	C:\Users\Henk\AppData\Local\Avg2015
2014-09-21 20:08:33	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Adobe
2014-09-21 19:09:58	--------	d-----r-	C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-09-21 19:09:51	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Identities
2014-09-21 19:08:55	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2014-09-21 18:59:17	--------	d-----w-	C:\Users\Henk\AppData\Local\Power2Go
2014-09-21 18:59:10	--------	d-----w-	C:\Users\Henk\AppData\Local\VirtualStore
2014-09-21 18:58:54	--------	d-s---w-	C:\Users\Henk\AppData\Locallow\Microsoft
2014-09-21 18:58:33	--------	d-----r-	C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-09-21 18:58:31	8A694DD6A6A0246BD9D2A5C530A08F51	122720	----a-w-	C:\Users\Henk\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-21 18:58:19	--------	d-s---w-	C:\Users\Henk\AppData\Roaming\Microsoft
2014-09-21 18:58:19	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
2014-09-21 18:58:19	--------	d-----w-	C:\Users\Henk\AppData\Roaming\Media Center Programs
2014-09-21 18:58:19	--------	d-----w-	C:\Users\Henk\AppData\Local\Microsoft
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-21 18:54:34	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-09-21 18:53:57	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
====== C:\Users\Henk ======
2014-09-24 18:28:17	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-23 20:10:15	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-23 20:10:11	--------	d-----w-	C:\ProgramData\Skype
2014-09-22 15:22:47	--------	d-----w-	C:\ProgramData\GlarySoft
2014-09-22 13:14:00	--------	d--h--w-	C:\ProgramData\CanonBJ
2014-09-22 12:56:07	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2014-09-21 22:22:57	--------	d-----w-	C:\ProgramData\Google
2014-09-21 22:22:54	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2014-09-21 20:13:49	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-09-21 20:13:32	--------	d-----w-	C:\ProgramData\AVG2015
2014-09-21 20:09:16	--------	d--h--w-	C:\ProgramData\Common Files
2014-09-21 19:09:58	--------	d-----r-	C:\Users\Henk\Searches
2014-09-21 19:09:45	--------	d-----r-	C:\Users\Henk\Contacts
2014-09-21 19:07:51	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2014-09-21 19:01:22	--------	d-----w-	C:\Users\Public\Documents\microsoft
2014-09-21 19:00:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-09-21 18:58:20	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Henk\ntuser.ini
2014-09-21 18:58:19	--------	d--h--w-	C:\Users\Henk\AppData
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Videos
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Saved Games
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Pictures
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Music
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Links
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Favorites
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Downloads
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Documents
2014-09-21 18:58:19	--------	d-----r-	C:\Users\Henk\Desktop

====== C: exe-files ==
2014-09-25 11:45:37	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\Trend Micro\Henk.exe
2014-09-25 08:30:31	E60BB0CDC5EA153F6D24C51AAD4A73FD	320352	----a-w-	C:\Windows\System32\PresentationHost.exe
2014-09-25 08:30:31	302964DCAC79D618CC7B72C778DA9FD2	295264	----a-w-	C:\Windows\SysWOW64\PresentationHost.exe
2014-09-24 18:28:00	6CF617A12FB9B7169B6C69D328F63389	39975504	----a-w-	C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\37.0.2062.124\37.0.2062.124_chrome_installer.exe
2014-09-24 18:26:54	F2E1B9CBACF89B79F1EAF7F0034EAC1B	10120	------w-	C:\Users\Henk\AppData\Local\Apps\2.0\97Y9D1T9.VHG\KGKHB620.E3L\inst...app_4fe91ede9f9bdca3_0001.0003_220833ca61e45306\clickonce_bootstrap.exe
2014-09-24 18:26:54	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Users\Henk\AppData\Local\Apps\2.0\97Y9D1T9.VHG\KGKHB620.E3L\inst...app_4fe91ede9f9bdca3_0001.0003_220833ca61e45306\GoogleUpdateSetup.exe
2014-09-24 18:26:54	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Users\Henk\AppData\Local\Apps\2.0\97Y9D1T9.VHG\KGKHB620.E3L\clic...exe_4fe91ede9f9bdca3_0001.0003_none_b13295ce3920a12c\GoogleUpdateSetup.exe
2014-09-23 21:27:52	E68C89106038E6246FBA26DD6344C31E	701104	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-23 15:23:18	85D6E8F735865B502D65D1D91A79E3F3	294912	----a-w-	C:\Windows\System32\browserchoice.exe
2014-09-23 15:02:40	66FC85C4728B6FBA8E7AAD59854F3730	101694776	----a-w-	C:\Windows\System32\MRT.exe
2014-09-23 14:11:33	276A9A68D50C433888CA64FA422A2E2A	31232	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-09-23 14:11:33	0C3028324C475485D6C24D626D9149C3	176288	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-09-23 14:07:18	B714774D348EC05F4B2AF5A80C2EB484	7140064	----a-w-	C:\Program Files (x86)\AVG\AVG2015\Notification\Launcher.exe
2014-09-22 15:34:34	211F96EB417FF837A70F5130E63A1A45	400840	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_4D9709C1FA1422BA.exe
2014-09-22 15:34:30	E8B7FD67DA14A7BE57A5CB80E3139E60	309704	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_52E818EF81C83A9B.exe
2014-09-22 15:34:27	4C401FCC6D0C95E1A5D989E403E18F2F	1072072	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8CA8B41417E66DEB.exe
2014-09-22 15:33:25	107A176FF25E2BA8016A92C301844839	532312	----a-w-	C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.5111.1712\GoogleToolbarInstaller_updater_signed.exe
2014-09-22 15:28:33	AC6998D92A311E7CF0B4DAEC3566F444	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
2014-09-22 15:28:33	956672375AF066D958E4D07F5ABAFC1A	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
2014-09-22 15:28:32	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
2014-09-22 15:28:25	AA0E4F73727BFC8BA404884B1C1DB719	285064	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
2014-09-22 15:28:25	80E350E0AA963B2125896B13E60A4D68	114568	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
2014-09-22 15:28:25	397D14958D6C9C2B365469A857B2AC4E	230792	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
2014-09-22 15:28:24	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe
2014-09-22 15:28:23	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
2014-09-22 13:13:34	35AFA8AFF085348E4542FE01D61B947B	60528	----a-w-	C:\Windows\System32\spool\drivers\x64\3\CNMVSB5.EXE
2014-09-22 13:13:31	3C10FAAA0E0BD71A39C5CD096282744F	20592	----a-w-	C:\Windows\System32\spool\drivers\x64\3\CNMSEB5.EXE
2014-09-22 12:56:07	81A9F5718183B06B3F0AE63839CDC548	173841	----a-w-	C:\Program Files (x86)\Glary Utilities 5\uninst.exe
2014-09-21 22:23:56	5D61BE7DB55B026A5D61A3EED09D0EAD	39408	----a-w-	C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
2014-09-21 22:23:54	5D4BC124FAAE6730AC002CDB67BF1A1C	194032	----a-w-	C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
2014-09-21 22:23:52	211F96EB417FF837A70F5130E63A1A45	400840	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_64.exe
2014-09-21 22:23:51	E8B7FD67DA14A7BE57A5CB80E3139E60	309704	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
2014-09-21 22:23:43	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2014-09-21 22:23:28	4B78E9AE06F7C310E30EE2FA5B7EBC3C	1721296	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_C993F490EED40C1B.exe
2014-09-21 22:23:25	1F2AFAB903C0D48480561F3BBD4539C2	739640	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdateSetup_5CC4B0F53D73AD88.exe
2014-09-21 22:23:23	4BEAF576CB43358C4DB9F45AC7C09CDB	194032	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe
2014-09-21 22:22:54	07D443CA0ED115295C7B3D5E8565911F	85115	----a-w-	C:\Program Files (x86)\PhotoScape\uninstall.exe
2014-09-21 19:02:28	C1C03EA437EDDA8A7D4D8786E5AE6751	57880	----a-w-	C:\Windows\System32\wuauclt.exe
2014-09-21 19:01:41	FF0729002E081668620A681182D63FE6	36864	----a-w-	C:\Windows\System32\wuapp.exe
2014-09-21 18:59:56	109DF2E9FB9E29CB6085411A7BC225B7	484632	----a-w-	C:\Program Files (x86)\Common Files\Windows Live\.cache\3bba5e951cfd5ce\DXSETUP.exe
=== C: other files ==
2014-09-22 12:56:04	918997DCB25355E3541EF62FA0C2A368	20672	----a-w-	C:\Windows\System32\drivers\GUBootStartup.sys
2014-09-21 19:06:46	5814011B2F6E088E29D689B5FCD49B8F	61792	-c--a-w-	C:\Windows\System32\DRVSTORE\fssfltr_572C8A59F9AA88ACEA0BCF61D1A09FB8F101C8C7\fssfltr.sys
2014-09-21 19:06:46	5814011B2F6E088E29D689B5FCD49B8F	61792	----a-w-	C:\Windows\System32\drivers\fssfltr.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-4197950391-4282120674-3398511618-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"GoogleChromeAutoLaunch_B0A407845028C2DDDAB6492E364102DC"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5"
"UpdateP2GoShortCut"="C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"
"HDAudDeck"="C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"GoogleChromeAutoLaunch_B0A407845028C2DDDAB6492E364102DC"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"ETDWare"="C:\Program Files\Elantech\ETDCtrl.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""
"hkey"="HKLM"
"item"="Adobe Reader Speed Launcher"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ADSMTray]
"command"="C:\\Program Files (x86)\\ASUS\\ASUS Data Security Manager\\ADSMTray.exe"
"hkey"="HKLM"
"item"="ADSMTray"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Camera ScreenSaver]
"command"="C:\\Windows\\AsScrProlog.exe"
"hkey"="HKLM"
"item"="ASUS Camera ScreenSaver"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"


==== Startup Folders ======================

2009-10-12 11:05:37	2617	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GlaryInitialize 5.job --a------ C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [15-09-2014 09:43]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]
C:\Windows\tasks\GU5SkipUAC.job --a------ C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [15-09-2014 09:44]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASPG" [C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ASUSControlDeck" [C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{925797A9-3700-4171-A726-7BCFE88A51AF}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\WC3" [C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe]
"C:\Windows\SysNative\tasks\{30CCAC32-22C6-47C3-A09C-3A01BE5AB535}" [C:\Users\Henk\Downloads\PhotoScape_V3.6.1.exe]

==== Chromium Look ======================

Google Slides - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Henk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{37157CF5-0ADA-4E2A-B892-FFBA1D31F3D3} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="https://www.google.com/search?q={searchTerms}&rlz=1I7NCLR_nlNL606"
{E5610F2B-55BE-442E-BED8-A478DA2F1886} Google  Url="https://www.google.com/search?q={searchTerms}"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ODMEM593 will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T657UKX6 will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CETRVDDX will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\H4TCTP3N will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\K2QAH9U9 will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LRBRXLYL will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat will be deleted at reboot
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Henk\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=64 folders=47 17798023 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Henk\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Henk\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat" not found
"C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ODMEM593" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T657UKX6" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\CETRVDDX" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\H4TCTP3N" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\K2QAH9U9" not found
"C:\Users\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LRBRXLYL" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on vr 26-09-2014 at 14:54:09,64 ======================