Zoek.exe v5.0.0.0 Updated 13-February-2015
Tool run by Pol on vr 13/02/2015 at 10:05:20,74.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Pol\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2015-02-12-104445.log	201583 bytes
C:\zoek-results2015-02-12-124422.log	196108 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\CLSID\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SearchProtectionService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SearchProtectionService deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71c1d63a-c944-428a-a5bd-ba513190e5d2}] 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 
"MapsGalaxy EPM Support"=- 
"MapsGalaxy Home Page Guard 32 bit"=- 
"MapsGalaxy Search Scope Monitor"=- 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
""=- 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Web Companion] 

==== Deleting Files \ Folders ======================

C:\Program Files\MapsGalaxy_39 not found
C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default\extensions\39ffxtbr@MapsGalaxy_39.com not found
"C:\Program Files\GUM72D3.tmp" not found
"C:\Program Files\GUT738F.tmp" not found
"C:\Program Files\GUM7B66.tmp" not found
"C:\Program Files\GUT7E25.tmp" not found
C:\windows\system32\config\systemprofile\Searches deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\freebl3.dll" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpService.exe" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpServiceCert.dll" not deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\libnspr4.dll" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\libplc4.dll" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\libplds4.dll" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\nss3.dll" deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\nssutil3.dll" not deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\smime3.dll" deleted
"C:\Program Files\Lavasoft\Web Companion" not deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService" not deleted
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5" not deleted

==== Files Recently Created / Modified ======================

====== C:\windows ====
====== C:\Users\Pol\AppData\Local\Temp ====
2015-02-13 08:28:48	97511FE2CA09CC2E06C3CD6519C3494E	43008	-c--a-w-	C:\Users\Pol\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpdmgiw3.dll
====== Java Cache =====
====== C:\windows\system32 =====
2015-02-12 08:39:14	4FD3763F3917201856B0CBCE310003EA	4300800	----a-w-	C:\windows\System32\jscript9.dll
2015-02-12 08:39:14	01BD2653F2185218837CF4A175617F8A	620032	----a-w-	C:\windows\System32\jscript9diag.dll
2015-02-11 10:27:40	15E13FB1C22A47A128965287194D1906	2380288	----a-w-	C:\windows\System32\win32k.sys
2015-02-11 10:27:29	F2A743912D404A8866362836CFE7A648	686080	----a-w-	C:\windows\System32\adtschema.dll
2015-02-11 10:27:29	4775E1A0E15BF148098C35A19135F881	1061376	----a-w-	C:\windows\System32\lsasrv.dll
2015-02-11 10:27:28	F29BC66CE4A5507A49FB20744A056E61	22016	----a-w-	C:\windows\System32\secur32.dll
2015-02-11 10:27:28	CEFE50761B7681715C66AE3488363985	100352	----a-w-	C:\windows\System32\sspicli.dll
2015-02-11 10:27:28	BF08DE8E4FA1F143D41B3241F7FCE5F6	22528	----a-w-	C:\windows\System32\lsass.exe
2015-02-11 10:27:28	ACF312F6CCFC9249F739BF439DD4B80C	15872	----a-w-	C:\windows\System32\sspisrv.dll
2015-02-11 10:27:28	4E6934926B4C923CC0FF61C6D77814EF	50176	----a-w-	C:\windows\System32\auditpol.exe
2015-02-11 10:27:28	43791D2F736C4E9BE9FE0B33A1E92A5D	60416	----a-w-	C:\windows\System32\msobjs.dll
2015-02-11 10:27:28	36F152AE2F64B12771A44EA77124332B	146432	----a-w-	C:\windows\System32\msaudite.dll
2015-02-11 10:25:29	6D227897A458DA8A9518DACDC88F1947	3917760	----a-w-	C:\windows\System32\ntoskrnl.exe
2015-02-11 10:25:29	62C93E47A424A8EC79F3CF1719A2DCC6	3972544	----a-w-	C:\windows\System32\ntkrnlpa.exe
2015-02-11 10:23:32	F5142E9A99F44F9CC19A8AF31761F7F9	3221504	----a-w-	C:\windows\System32\mstscax.dll
2015-02-11 10:23:32	B3AC14EA18DD0EE517703A86963AED18	131584	----a-w-	C:\windows\System32\aaclient.dll
2015-02-11 10:23:17	A208DAC2932649CFF82A6A684D8BB1F6	571904	----a-w-	C:\windows\System32\oleaut32.dll
2015-02-11 10:23:15	EEA1C649DBE9628150207BC563DA77F2	482304	----a-w-	C:\windows\System32\generaltel.dll
2015-02-11 10:23:15	48D5B4FC2235E069A444C105B65D40BD	767488	----a-w-	C:\windows\System32\appraiser.dll
2015-02-11 10:23:14	F57E1D225AE5C2C8F475A99BFDF018F4	1167520	----a-w-	C:\windows\System32\aitstatic.exe
2015-02-11 10:23:14	76293EF1A6BFCCBD901107E514E48624	886784	----a-w-	C:\windows\System32\aeinv.dll
2015-02-11 10:23:14	1C562DF669A412EF40A9871C8856AEE4	621056	----a-w-	C:\windows\System32\invagent.dll
2015-02-11 10:23:14	048FD5432E4C2B42EE39FD9F54ED162F	325632	----a-w-	C:\windows\System32\devinv.dll
2015-02-11 10:23:13	EE0759179FC7EB0012AF1A69C8AAE185	202752	----a-w-	C:\windows\System32\aepdu.dll
2015-02-11 10:23:13	0389CAF21A50D13A90D2699750D499B5	159744	----a-w-	C:\windows\System32\aepic.dll
2015-02-11 10:23:00	B63A6FF4339C9B701A93D3973C7FB6D2	550912	----a-w-	C:\windows\System32\kerberos.dll
2015-02-11 10:23:00	7C893DBA0A58855A99DA68B751FD223B	248832	----a-w-	C:\windows\System32\schannel.dll
2015-02-11 10:22:59	F3F6BE20A03215209B61CA85B4A83E1F	65536	----a-w-	C:\windows\System32\TSpkg.dll
2015-02-11 10:22:59	C256EFD3655EC782F8094E96094E8F9E	17408	----a-w-	C:\windows\System32\credssp.dll
2015-02-11 10:22:59	A12D64A94EC57079C2D96A741CB4FF53	172032	----a-w-	C:\windows\System32\wdigest.dll
2015-02-11 10:22:59	7D94A9161E8432B8521E60E064B1D737	259584	----a-w-	C:\windows\System32\msv1_0.dll
2015-02-11 10:22:59	3BB446DE24501FEA5FDB9A9DB23A22AE	221184	----a-w-	C:\windows\System32\ncrypt.dll
2015-02-11 10:22:13	E1A4D24281526DDFEA418F729CDA9DC6	30720	----a-w-	C:\windows\System32\iernonce.dll
2015-02-11 10:22:13	B0F7BD3492C2D60A70F15AEADCE1E2A6	47616	----a-w-	C:\windows\System32\ieetwproxystub.dll
2015-02-11 10:22:13	94B1F7CE1AAA5542923E0AD63C4D0050	60416	----a-w-	C:\windows\System32\JavaScriptCollectionAgent.dll
2015-02-11 10:22:13	73AFBF165241EB4502CD15107AA12CBA	684544	----a-w-	C:\windows\System32\ie4uinit.exe
2015-02-11 10:22:13	71189E2787179666BDCD1374AE92BF62	102912	----a-w-	C:\windows\System32\ieetwcollector.exe
2015-02-11 10:22:12	FD6AF61AF029B9BC2CF4EFF57CDD5821	710144	----a-w-	C:\windows\System32\ieapfltr.dll
2015-02-11 10:22:12	EF05E63ACC834470A07A2E73D519B5FA	418304	----a-w-	C:\windows\System32\dxtmsft.dll
2015-02-11 10:22:12	C4F2424A0671907FD3AC44EBE43C3C66	667648	----a-w-	C:\windows\System32\MsSpellCheckingFacility.exe
2015-02-11 10:22:12	8E8137569741D3693F88DDF94CC38C20	1307136	----a-w-	C:\windows\System32\urlmon.dll
2015-02-11 10:22:12	74EA6C792F57E453261DA210C1BCEB53	342712	----a-w-	C:\windows\System32\iedkcs32.dll
2015-02-11 10:22:12	55A84600EAAF8F1D3F0E6206E2EF6D48	47104	----a-w-	C:\windows\System32\jsproxy.dll
2015-02-11 10:22:12	28B2D3CB1B4306D476200D80AF7D87AD	115712	----a-w-	C:\windows\System32\ieUnatt.exe
2015-02-11 10:22:11	8FBC9680719ACDA9351B67D906C682F4	688640	----a-w-	C:\windows\System32\msfeeds.dll
2015-02-11 10:22:11	47B26D89EF9973E2DD586D0C827F61A9	2724864	----a-w-	C:\windows\System32\mshtml.tlb
2015-02-11 10:22:10	AD3F5926EC2C1F21FB45D1CDED6E2A47	2052608	----a-w-	C:\windows\System32\inetcpl.cpl
2015-02-11 10:22:09	6F10743069DFFC56DEE079204960844E	168960	----a-w-	C:\windows\System32\msrating.dll
2015-02-11 10:22:09	5FB7E9786F70F4072663746072C9E6CE	62464	----a-w-	C:\windows\System32\iesetup.dll
2015-02-11 10:22:08	F285D499EC42969D963CA49EADA63218	1888256	----a-w-	C:\windows\System32\wininet.dll
2015-02-11 10:22:08	44791AA90DF93DD79E63ED3A38657964	4096	----a-w-	C:\windows\System32\ieetwcollectorres.dll
2015-02-11 10:22:07	994E7459260D315573DD72783D1B78A7	478208	----a-w-	C:\windows\System32\ieui.dll
2015-02-11 10:22:07	6FA05244FD2E40A3DC08337146B3C425	285696	----a-w-	C:\windows\System32\dxtrans.dll
2015-02-11 10:22:06	78A1A938D51D4F83A772123B93EE1612	12829184	----a-w-	C:\windows\System32\ieframe.dll
2015-02-11 10:22:05	D87759889FE7BCAE4461439139E62BAA	76288	----a-w-	C:\windows\System32\mshtmled.dll
2015-02-11 10:22:04	180168942E4A133C55E7BBF17DA3C142	1155072	----a-w-	C:\windows\System32\mshtmlmedia.dll
2015-02-11 10:22:03	3B9EF1B8E154D202D32A7765E2F33554	64000	----a-w-	C:\windows\System32\MshtmlDac.dll
2015-02-11 10:22:02	9A91F9B5035F54C2D0BA92CF9B16EE34	2277888	----a-w-	C:\windows\System32\iertutil.dll
2015-02-11 10:22:00	61C74D794C14E9FC94D93F5F0F72A3F9	19740160	----a-w-	C:\windows\System32\mshtml.dll
2015-02-11 10:21:58	9DEE691C8FDBC2DE6957F1AE873C78FC	503296	----a-w-	C:\windows\System32\vbscript.dll
2015-02-11 10:21:13	0C96A745A76C7DD75C5503E86D968E49	1174528	----a-w-	C:\windows\System32\crypt32.dll
2015-02-11 10:20:50	B3BC38B886CA53C92D52EF724A9F0D45	308224	----a-w-	C:\windows\System32\scesrv.dll
2015-02-11 10:17:05	793F6658ED65839FDB2957A4884CB63C	1230336	----a-w-	C:\windows\System32\WindowsCodecs.dll
2015-02-03 09:33:39	85AE6D1C86F11C31571981B70A9FC42F	22080	----a-w-	C:\windows\System32\k9native32.exe
2015-02-02 13:16:37	89E95EC1B2DB35DF402222DF1A5B63CC	98488	----a-w-	C:\windows\System32\pdfcmon.dll
====== C:\windows\system32\drivers =====
2015-02-11 10:27:29	F516F1167EFBBC5ABC90687C94497869	369968	----a-w-	C:\windows\System32\drivers\cng.sys
2015-02-11 10:27:28	EF88BAC2B489D9C46F4E41ACF0219CD0	67520	----a-w-	C:\windows\System32\drivers\ksecdd.sys
2015-02-11 10:27:28	49D70660EE8266988C1F99A0297A1430	136640	----a-w-	C:\windows\System32\drivers\ksecpkg.sys
2015-01-14 10:44:41	03F899F521D2AAED1C55008F734DF252	116224	----a-w-	C:\windows\System32\drivers\mrxdav.sys
====== C:\windows\Tasks ======
2015-02-11 14:18:03	5E3DFB3D8271C30E8884F0F334A94282	4040	----a-w-	C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA1d046058a9b25f8
2015-02-11 14:18:02	F3C4F156B72493CDC126553B25E4FB9D	1044	----a-w-	C:\windows\Tasks\GoogleUpdateTaskMachineUA1d046058a9b25f8.job
2015-02-11 14:17:59	795899474EB521D25306734313E2D7B0	3788	----a-w-	C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore1d046058817a5fc
2015-02-11 14:17:57	18AB190EC27212BE819FF5B1908E4818	1040	----a-w-	C:\windows\Tasks\GoogleUpdateTaskMachineCore1d046058817a5fc.job
2015-02-03 09:35:11	B780A345A194C2FE46CB2EDD6D3A3D03	3052	----a-w-	C:\windows\system32\Tasks\K9-PC Protector_startup
2015-02-03 09:33:07	A4C980F72BD9A0DB07EBD9809DF7CCC6	254	----a-w-	C:\windows\Tasks\K9-PCFixer_DEFAULT.job
2015-02-03 09:33:07	2BDC64AC18AFB8D65A0699F7729A88B8	2846	----a-w-	C:\windows\system32\Tasks\K9-PCFixer_DEFAULT
2015-02-03 09:33:01	D54F39271F3A13330C37E51D94CB16AE	3002	----a-w-	C:\windows\system32\Tasks\K9-PCFixer_UPDATES
2015-02-03 09:33:01	C4CF7AEA0859FF4EF362DCDE6BD637A0	262	----a-w-	C:\windows\Tasks\K9-PCFixer_UPDATES.job
2015-02-03 09:32:45	269F0BCE81ACDD40167472F99B354EF6	3084	----a-w-	C:\windows\system32\Tasks\K9-PCFixer
====== C:\windows\Temp ======
======= C:\Program Files =====
2015-02-02 13:16:35	--------	d-----w-	C:\Program Files\PDFCreator
2015-01-28 08:41:17	--------	d-----w-	C:\Program Files\Common Files\Java
2015-01-26 14:46:02	--------	d-----w-	C:\Program Files\NetPanel
======= C: =====
====== C:\Users\Pol\AppData\Roaming ======
2015-02-12 12:22:45	--------	d-----w-	C:\windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-02-12 12:22:44	--------	d-----w-	C:\windows\serviceprofiles\networkservice\AppData\Local\Temp
2015-02-12 12:22:44	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-02-12 12:22:44	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-02-12 12:22:43	--------	dc----w-	C:\Users\Pol\AppData\Local\Temp
2015-02-03 09:34:23	--------	d-----w-	C:\Users\Pol\AppData\Roaming\K9AMW
2015-02-03 09:34:08	--------	d-----w-	C:\Users\Pol\AppData\Roaming\K9Tools
2015-02-02 08:41:25	CFB5D93325923E6F944FC034D12DB0D0	5565176	----a-w-	C:\windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2015-01-17 16:41:38	39F5DA21FDE4338B2AADDDAF664C9D09	12963	----a-w-	C:\Users\Pol\AppData\Roaming\Door tabs gescheiden waarden (Windows).CAL
====== C:\Users\Pol ======
2015-02-11 14:12:29	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Pol\Desktop\RSIT.exe
2015-02-03 09:33:43	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K9-PC Protector
2015-02-03 09:33:42	--------	d-----w-	C:\ProgramData\K9Tools
2015-02-03 09:29:49	A9993FEC37B58BB081BFB3820F53E5B0	3577744	----a-w-	C:\Users\Pol\Downloads\setup.exe
2015-02-02 13:16:47	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-01-26 14:46:27	--------	d-----w-	C:\ProgramData\NetPanel
2015-01-26 14:46:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetPanel

====== C: exe-files ==
2015-02-11 15:20:20	C9A84F86DD4B2F69E7B691A1972A0439	552056	----a-w-	C:\Program Files\Opera\27.0.1689.69\opera_crashreporter.exe
2015-02-11 15:20:20	C93A90AA5B17469B7F0A71FDFA78093A	2152056	----a-w-	C:\Program Files\Opera\27.0.1689.69\opera_autoupdate.exe
2015-02-11 15:20:20	C0E2FA6B29CFF30BE6F3A41CC312B7F3	73336	----a-w-	C:\Program Files\Opera\27.0.1689.69\wow_helper.exe
2015-02-11 15:20:20	281A5357C0A821221B1718901106C18F	51364984	----a-w-	C:\Program Files\Opera\27.0.1689.69\opera.exe
2015-02-11 15:20:19	3FD264AEB5FAC304DEB165645B170D90	1284728	----a-w-	C:\Program Files\Opera\27.0.1689.69\installer.exe
2015-02-11 14:17:53	5F0A3AA68785C49454F56C9F2DDA0237	52040	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe
2015-02-11 14:17:51	FD98434B6A06FE31A35E4BFBC827B290	52040	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe
2015-02-11 14:17:51	4C02536F4CA35911FB3EA5715F300C57	52040	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdateBroker.exe
2015-02-11 14:17:49	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdateSetup.exe
2015-02-11 14:10:56	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files\Google\Update\Install\{1CD273C7-F58E-4C13-A60C-8006FD18A579}\GoogleUpdateSetup.exe
2015-02-11 10:22:12	D674809F9EC7D6A409F553C0DF91E825	221184	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-02-11 10:22:10	8111C559DAD3A40200AE916874E7E62A	468992	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-02-11 10:22:09	363BC25BACB34E9D40441968B1B3D5BE	815288	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-02-11 09:41:53	F3B6470DA7CE34E559D3BA7365CC909C	115528	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe
2015-02-11 09:41:45	323CFFFDAF253AC65CD194A101BE6231	287048	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
2015-02-11 09:40:35	83BB030C71C9727DCFB2737005772C4E	232264	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
2015-02-11 09:11:59	E1B44A75947137F4143308D566889837	107848	----atw-	C:\Program Files\Google\Update\1.3.26.9\GoogleUpdate.exe
2015-02-11 09:08:34	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.26.9\GoogleUpdateSetup.exe
=== C: other files ==
2015-02-11 09:21:35	54576E8D5D54DCDDFD19EE961AF74622	195179	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2120update.zip
2015-02-11 09:21:34	B828E64AA069320FD80609E977142319	50893	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2117update.zip
2015-02-11 09:21:34	7906B2E60A64B96553697C64BC2549AD	32343	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2118update.zip
2015-02-11 09:21:34	7848EF32756470CE86974AF48B7C2429	1486	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2119update.zip
2015-02-11 09:21:22	30C3BF31059C6383B49BC4679FBFA09D	349535	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2116update.zip
2015-02-06 14:15:53	42015AB5613DB503CBAEF236F16B80C7	1485	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2115update.zip
2015-02-06 10:16:01	87D2D238D203D0AF19DEF08D135B32CC	356321	----a-w-	C:\ProgramData\K9Tools\K9-PC Protector\updates\2114update.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"SkyDrive"="C:\Users\Pol\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN34K1CK6P05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"
"Google Update"="C:\Users\Pol\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"MusicManager"="C:\Users\Pol\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
"Google+ Auto Backup"="C:\Users\Pol\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start"
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe"
"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"IgfxTray"="C:\windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\windows\system32\hkcmd.exe"
"Persistence"="C:\windows\system32\igfxpers.exe"
"SignIn"="C:\Program Files\Microsoft Online Services\Sign In\SignIn.exe /autorun"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"IsaKbcCertUpdate"="C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe"
"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"MapsGalaxy_39 Browser Plugin Loader"="C:\PROGRA~1\MAPSGA~2\bar\1.bin\39brmon.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"KiesTrayAgent"="C:\Program Files\Samsung\Kies\KiesTrayAgent.exe"
"NetPanel"="C:\Program Files\NetPanel\Starter.exe /path=C:\Program Files\NetPanel"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"SkyDrive"="C:\Users\Pol\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN34K1CK6P05WK:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"
"Google Update"="C:\Users\Pol\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"MusicManager"="C:\Users\Pol\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
"Google+ Auto Backup"="C:\Users\Pol\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcSoft Connection Service]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ArcSoft Connection Service"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACDaemon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\beid]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="beid"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Belgium Identity Card\\beid35gui.exe\" /startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HPAdvisorDock]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HPAdvisorDock"
"hkey"="HKCU"
"command"="C:\\Program Files\\Hewlett-Packard\\HP Advisor\\Dock\\HPAdvisorDock.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LightScribe Control Panel]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LightScribe Control Panel"
"hkey"="HKCU"
"command"="C:\\Program Files\\Common Files\\LightScribe\\LightScribeControlPanel.exe -hidden"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MyTomTomSA.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MyTomTomSA.exe"
"hkey"="HKCU"
"command"="C:\\Program Files\\MyTomTom 3\\MyTomTomSA.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NokiaSuite.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NokiaSuite.exe"
"hkey"="HKCU"
"command"="C:\\Program Files\\Nokia\\Nokia Suite\\NokiaSuite.exe -tray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl11]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RemoteControl11"
"hkey"="HKLM"
"command"="C:\\Program Files\\CyberLink\\PowerDVD11\\PDVD11Serv.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\\\Phone\\Skype.exe\" /nosplash /minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\Pol\\AppData\\Roaming\\Spotify\\Spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SynTPEnh"
"hkey"="HKLM"
"command"="%ProgramFiles%\\Synaptics\\SynTP\\SynTPEnh.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SysTrayApp]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SysTrayApp"
"hkey"="HKLM"
"command"="C:\\Program Files\\IDT\\WDM\\sttray.exe"


==== Startup Folders ======================

2014-12-12 09:55:20	1130	----a-w-	C:\Users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2013-07-27 11:16:32	1960	----a-w-	C:\Users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk
2010-09-13 16:43:30	848	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [05/02/2015 11:24]
C:\windows\tasks\GoogleUpdateTaskMachineCore1d046058817a5fc.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [18/10/2014 19:03]
C:\windows\tasks\GoogleUpdateTaskMachineUA1d046058a9b25f8.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [18/10/2014 19:03]
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740741272-41367026-2587978378-1001Core.job --a------ [Undetermined Task]
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740741272-41367026-2587978378-1001UA.job --a------ :C:\Users\Pol\AppData\LoC:al\Google\Update\GoogleUpdate.exe []
C:\windows\tasks\HPCeeScheduleForPol.job --a------ C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [05/01/2010 11:53]
C:\windows\tasks\K9-PCFixer_DEFAULT.job --a------ C:\Program Files\K9-PCFixer\K9-PCFixer.exe []
C:\windows\tasks\K9-PCFixer_UPDATES.job --a------ C:\Program Files\K9-PC:Fixer\K9-PC:Fixer.exe []

==== Other Scheduled Tasks ======================

"C:\windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]
"C:\windows\system32\tasks\4480" [wscript.exe C:\Users\Pol\AppData\Local\Temp\launchie.vbs //B]
"C:\windows\system32\tasks\4Team updater" [C:\Program Files\4Team Corporation\4Team-Updater\4Team-Updater.exe]
"C:\windows\system32\tasks\Adobe Flash Player Updater" [C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\windows\system32\tasks\GoogleUpdateTaskMachineCore1d046058817a5fc" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\windows\system32\tasks\GoogleUpdateTaskMachineUA1d046058a9b25f8" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-3740741272-41367026-2587978378-1001Core" [C:\Users\Pol\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-3740741272-41367026-2587978378-1001UA" [C:\Users\Pol\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\windows\system32\tasks\HPCeeScheduleForPol" [C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\windows\system32\tasks\HPCustParticipation HP Deskjet 3050A J611 series" ["C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe"]
"C:\windows\system32\tasks\K9-PC Protector_startup" [C:\Program Files\K9-PC Protector\k9pcp.exe]
"C:\windows\system32\tasks\K9-PCFixer" [C:\Program Files\K9-PCFixer\K9-PCFixer.exe]
"C:\windows\system32\tasks\K9-PCFixer_DEFAULT" [C:\Program Files\K9-PCFixer\K9-PCFixer.exe]
"C:\windows\system32\tasks\K9-PCFixer_UPDATES" [C:\Program Files\K9-PCFixer\K9-PCFixer.exe]
"C:\windows\system32\tasks\Norton WSC Integration" ["C:\Program Files\Norton 360\Engine\21.6.0.32\WSCStub.exe"]
"C:\windows\system32\tasks\Opera scheduled Autoupdate 1419198961" [C:\Program Files\Opera\launcher.exe]
"C:\windows\system32\tasks\User_Feed_Synchronization-{95F51530-CDF6-47EE-95D7-EB8D604D46FD}" [C:\windows\system32\msfeedssync.exe]
"C:\windows\system32\tasks\{8BB8C829-EFE3-420C-9084-230D325EED7C}" [C:\Program Files\Microsoft Office\Office12\WINWORD.EXE]
"C:\windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]
"C:\windows\system32\tasks\Norton 360\Norton Error Analyzer" [C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe]
"C:\windows\system32\tasks\Norton 360\Norton Error Processor" [C:\Program Files\Norton 360\Engine\21.6.0.32\SymErr.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default
user_pref("browser.startup.homepage", "http://www.bing.com/?pc=COSP&ptag=D121114-A510D0E105D5B4CC49CF&form=CONMHP&conlogo=CT3330941");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.bing.com/?pc=COSP&ptag=D121114-A510D0E105D5B4CC49CF&form=CONMHP&conlogo=CT3330941");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Bing");
user_pref("browser.search.selectedEngine", "Bing");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.5.0.19\coFFPlgn" [13/02/2015 09:28]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"gemgecko@gemius.com"="C:\Program Files\NetPanel\gemgecko_ext" [26/01/2015 15:47]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default
22E022C1B47866F29ACE50693AB656B0	- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll -	Mozilla Default Plug-in
9A6101F29E2E9D41B99CBCC8F106E8FE	- C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL -	2007 Microsoft Office system


==== Chromium Look ======================

Google Chrome Version: 40.0.2214.111 (Up to date, latest Stable version: 40.0.2214.111)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iikflkcanblccfahdhdonehdalibjnif - No path found[]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files\Norton 360\Engine\21.6.0.32\Exts\Chrome.crx[20/09/2014 09:52]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
kegdldmohomdaelnepdpbkdhfemobdgl - No path found[]

Google Docs - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Norton Identity Safe - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif
Google Maps - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh
Norton Security Toolbar - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Norton Identity Safe - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom
Norton Safe Search as default for Chrome - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl
Google Wallet - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Onderzoek CIM Internet bereikstudie - Pol\AppData\Roaming\Opera Software\Opera Stable\Extensions\ojedjnlojkfjbmjlpknfclknchaenlpm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.standaard.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.standaard.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?pc=COSP&ptag=D121114-A510D0E105D5B4CC49CF&form=CONBDF&conlogo=CT3330941&q={searchTerms}"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="https://www.google.com/search?q={searchTerms}&rlz=1I7ADRA_nlBE436"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Pol\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=13989 folders=410 1283837059 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Pol\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Pol\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpServiceCert.dll"  not found
"C:\Program Files\Lavasoft\Web Companion\TcpService\2.2.9.5\nssutil3.dll"  not found
"C:\Program Files\Lavasoft\Web Companion"  not found

==== EOF on vr 13/02/2015 at 11:16:24,24 ======================