
Zoek.exe v5.0.0.0 Updated 08-April-2015
Tool run by Laurens on di 14/04/2015 at 17:03:47,76.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Laurens\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2015-04-14-104109.log	36536 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\Avira deleted successfully
C:\PROGRA~2\AVS4YOU deleted successfully
C:\PROGRA~2\BitTorrent deleted successfully
C:\PROGRA~2\Convar deleted successfully
C:\PROGRA~2\disco games deleted successfully
C:\PROGRA~2\lEoSs2payi deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\Optimizer Pro deleted successfully
C:\PROGRA~2\SiteLookup deleted successfully
C:\Program Files\log deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\PROGRA~3\lEoSs2payi deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\ZoomBrowser deleted successfully
C:\Users\Laurens\AppData\Roaming\ZoomBrowser EX deleted successfully
C:\Users\User\AppData\Roaming\Lite deleted successfully
C:\Users\User\AppData\Roaming\Pixmantec deleted successfully
C:\Users\User\AppData\Roaming\TP deleted successfully
C:\Users\User\AppData\Roaming\ZoomBrowser EX deleted successfully
C:\Users\Gast\AppData\Local\VirtualStore deleted successfully
C:\Users\User\AppData\Local\MigWiz deleted successfully
C:\Users\User\AppData\Local\PackageAware deleted successfully
C:\Users\User\AppData\Local\{08807D61-B0C8-49FA-9734-37DC6C5DCDBE} deleted successfully
C:\Users\User\AppData\Local\{65EBE01B-7E36-455A-BEB8-277EB4685F2D} deleted successfully
C:\Users\User\AppData\Local\{755FC81B-C715-47E1-951F-0DA04BA9AECF} deleted successfully
C:\Users\User\AppData\Local\{9E0A0EC9-17E1-4E3E-8DF6-64462C4974EF} deleted successfully
C:\Users\User\AppData\Local\{CDDC7AE0-4E42-47E4-BA8B-A4318017D560} deleted successfully
C:\Users\User\AppData\Local\{D0294652-14BE-4669-91AC-428063DB8ECD} deleted successfully
C:\Users\User\AppData\Local\{E100D07D-C776-42CB-8033-091AFF99E998} deleted successfully
C:\Users\User\AppData\Local\{E7BD4E4F-7AEA-496F-94B0-381F572DCF2B} deleted successfully
C:\Users\User\AppData\Local\{F558402E-9C7F-465D-A189-E2F8FFCA99E8} deleted successfully
C:\Users\User\AppData\Local\{FB1FA53E-8424-4E2C-A1B8-7A930623CF48} deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3635746246-4039717782-239317034-1004\Software\Microsoft\Internet Explorer\SearchScopes\{8A2A66A7-AF6F-43BB-B08F-FE903ADB3CF5} deleted successfully
HKEY_USERS\S-1-5-21-3635746246-4039717782-239317034-1004\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9} deleted successfully
HKEY_USERS\S-1-5-21-3635746246-4039717782-239317034-1004\Software\Microsoft\Internet Explorer\SearchScopes\{C584193A-8C83-492C-9D23-FCFFC6BF777C} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{73204B8A-87A8-49C8-A91A-FFCDE788A9ED} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{903C3322-6CEF-4CA5-BD37-4F056155FC08} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\dfc86759 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\dfc86759 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdatem deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\vmdd5682.default

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20151404_1735_.backup

ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kic4cxak.default-1428649081503

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20151404_1735_.backup

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default

user.js not found
---- Lines BabylonToolbar removed from prefs.js ----
user_pref("extensions.BabylonToolbar.babTrack", "affID=18474");
user_pref("extensions.BabylonToolbar.bbDpng", 15);
user_pref("extensions.BabylonToolbar.dfltLng", "en");
user_pref("extensions.BabylonToolbar.dfltSrch", true);
user_pref("extensions.BabylonToolbar.hmpg", true);
user_pref("extensions.BabylonToolbar.id", "4e00e8480000000000002226b6e540c1");
user_pref("extensions.BabylonToolbar.instlDay", "15232");
user_pref("extensions.BabylonToolbar.instlRef", "sst");
user_pref("extensions.BabylonToolbar.keyWordUrl", "http://isearch.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=4e00e8480000000000002226b6e540c1&tl
user_pref("extensions.BabylonToolbar.lastDP", 15);
user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.35.1016:11:08");
user_pref("extensions.BabylonToolbar.newTab", true);
user_pref("extensions.BabylonToolbar.newTabUrl", "http://isearch.babylon.com/?babsrc=NT_ss&affID=18474&mntrId=4e00e8480000000000002226b6e540c1");
user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar.smplGrp", "none");
user_pref("extensions.BabylonToolbar.srcExt", "ss");
user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
user_pref("extensions.BabylonToolbar.tlbrId", "base");
user_pref("extensions.BabylonToolbar.vrsn", "1.4.35.10");
user_pref("extensions.BabylonToolbar.vrsnTs", "1.4.35.1016:11:08");
---- FireFox user.js and prefs.js backups ---- 

prefs_20151404_1735_.backup

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wn9dy8c0.Laurens

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20151404_1735_.backup

ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default

prefs.js not found
user.js not found
---- FireFox user.js and prefs.js backups ---- 


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\lollipop] 

==== Batch Command(s) Run By Tool======================


De Winsock-catalogus is opnieuw ingesteld.
De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Avira not found
C:\PROGRA~2\AVS4YOU not found
C:\PROGRA~2\BitTorrent not found
C:\PROGRA~2\Convar not found
C:\PROGRA~2\disco games not found
C:\PROGRA~2\lEoSs2payi not found
C:\PROGRA~2\Optimizer Pro not found
C:\PROGRA~2\SiteLookup not found
C:\PROGRA~2\deal4iMMe deleted
C:\PROGRA~2\websaveer deleted
C:\PROGRA~2\SystemRequirementsLab deleted
C:\PROGRA~2\savinGtoyou deleted
C:\PROGRA~2\Sprucemarks deleted
C:\Users\User\AppData\Local\Mozilla Firefox deleted
C:\ProgramData\7304566480615253663UL deleted
C:\Users\Laurens\AppData\LocalLow\{59DEC20E-DA62-D47D-C346-77B3C0BE8C9E} deleted
C:\Users\Laurens\AppData\LocalLow\{644D2FDA-36AA-3751-C97F-E7B7E1D5A867} deleted
C:\Users\Laurens\AppData\LocalLow\{77FC5AFB-C206-63F4-2856-8C031429D05B} deleted
C:\Users\Laurens\AppData\LocalLow\{B45F2600-8672-2BA5-ADB7-0DAB2AA29C47} deleted
C:\Users\Laurens\AppData\LocalLow\{C67F2402-DB58-BC8B-1A39-CF7DBA8966C5} deleted
C:\Users\Laurens\AppData\Local\Packages\windows_ie_ac_001\AC\{59DEC20E-DA62-D47D-C346-77B3C0BE8C9E} deleted
C:\Users\Laurens\AppData\Local\Packages\windows_ie_ac_001\AC\{644D2FDA-36AA-3751-C97F-E7B7E1D5A867} deleted
C:\Users\Laurens\AppData\Local\Packages\windows_ie_ac_001\AC\{77FC5AFB-C206-63F4-2856-8C031429D05B} deleted
C:\Users\Laurens\AppData\Local\Packages\windows_ie_ac_001\AC\{B45F2600-8672-2BA5-ADB7-0DAB2AA29C47} deleted
C:\Users\Laurens\AppData\Local\Packages\windows_ie_ac_001\AC\{C67F2402-DB58-BC8B-1A39-CF7DBA8966C5} deleted
C:\PROGRA~3\655f08834b4c269f deleted
C:\Users\Laurens\AppData\LocalLow\Conduit deleted
C:\Users\Laurens\.android deleted
C:\PROGRA~3\SmaaartCOmpare deleted
C:\PROGRA~3\deaL2dealit deleted
C:\PROGRA~3\SmarrtCOmpare deleted
C:\PROGRA~2\Photo-Service deleted
C:\PROGRA~2\globalUpdate deleted
C:\PROGRA~2\Conduit deleted
C:\PROGRA~2\ConduitEngine deleted
C:\extensions.sqlite deleted
C:\Users\Laurens\AppData\Roaming\PStrip.ini deleted
C:\Users\Laurens\AppData\Roaming\LiveSupport.exe_log.txt deleted
C:\Users\Laurens\AppData\Roaming\regsvr32.exe_log.txt deleted
C:\Users\Laurens\AppData\Roaming\Babylon deleted
C:\Users\Laurens\AppData\Roaming\OpenCandy deleted
C:\Users\User\AppData\Roaming\Babylon deleted
C:\PROGRA~3\Ask deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\realdeal deleted
C:\PROGRA~3\Tarma Installer deleted
C:\Users\Laurens\AppData\Local\globalUpdate deleted
C:\Users\User\AppData\Local\iLivid deleted
C:\Users\User\AppData\Local\Babylon deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted
C:\Users\Laurens\AppData\LocalLow\ConduitEngine deleted
C:\Users\User\AppData\LocalLow\AskToolbar deleted
C:\Users\User\AppData\LocalLow\ConduitEngine deleted
C:\Windows\reimage.ini deleted
C:\Windows\wininit.ini deleted
C:\END deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\SysWOW64\LavasoftTcpService.dll deleted
C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\vmdd5682.default\extensions\staged deleted
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default\jetpack deleted
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default\extensions\staged deleted
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wn9dy8c0.Laurens\extensions\staged deleted
C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default\extensions\abs@avira.com deleted
"C:\Windows\Installer\11eba3.msi" deleted
"C:\PROGRA~2\McAfeeMOBK\MozyMSCIntegration.dll" deleted
"C:\PROGRA~2\McAfeeMOBK" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kic4cxak.default-1428649081503
user_pref("browser.startup.homepage", "about:blank");
user_pref("browser.newtab.url", "about:blank");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{9D2AA73B-6049-4799-B8AC-925723370070}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [09/10/2014 19:25]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04/04/2014 12:36]

==== Firefox Extensions ======================

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tfx7kexd.default
- McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
- English Australian Dictionary - %ProfilePath%\extensions\en-AU@dictionaries.addons.mozilla.org
- New Zealand English Dictionary - %ProfilePath%\extensions\en-NZ@dictionaries.addons.mozilla.org
- Dictionnaires franais - %ProfilePath%\extensions\fr-dicollecte@dictionaries.addons.mozilla.org
- Add-on Compatibility Reporter - %ProfilePath%\extensions\compatibility@addons.mozilla.org.xpi

ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wn9dy8c0.Laurens
- Instrument Test - %ProfilePath%\extensions\testpilot@labs.mozilla.com.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Laurens\AppData\Roaming\Mozilla\Firefox\Profiles\kic4cxak.default-1428649081503
20AF900395CA5AD66A9134CF032B0435	- C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll -	RealPlayer Video Downloader for HTML5  (32-bit)
C62322C77D1AAB77B1CF1130FCC3673A	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll -	Shockwave Flash
D2B5242013356AF422A42B9FAA4056C2	- C:\Users\Laurens\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin.dll -	VASCO Card Reader Plugin
FD63DE29FE0A7E738BD81CA0EDDD8020	- C:\Users\Laurens\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin64.dll -	VASCO Card Reader Plugin


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bopakagnckmlgajfccecajhnimjiiedh - No path found[]
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[24/03/2015 12:28]
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found[]
lhmiofmipcpmhgihiecmpiekcacigpgb - C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\chrome.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{C584193A-8C83-492C-9D23-FCFFC6BF777C}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C584193A-8C83-492C-9D23-FCFFC6BF777C}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{5C8599A7-3C36-42E4-8002-B4944DA61084} Amazon  Url="http://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2"
{FF719B78-7F79-46CC-B86C-3B022C7CA7D3} eBay  Url="http://rover.ebay.com/rover/1/1346-71494-26233-7/4?satitle={searchTerms}"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk -  
C:\Users\Laurens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk - C:\Users\Laurens\AppData\Roaming\Spotify\spotify.exe 
C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\Dropbox.lnk - C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee\McAfee SecurityCenter.lnk - C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe /desktopicon /platui
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Toshiba Assist.lnk - C:\Program Files (x86)\TOSHIBA\Toshiba Assist\TInTouch.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TOSHIBA Bulletin Board.lnk - C:\Program Files (x86)\TOSHIBA\BulletinBoard\TosBulletinBoard.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TosReelTime.lnk - C:\Program Files (x86)\TOSHIBA\ReelTime\TosReelTime.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Inkscape.lnk - C:\Program Files (x86)\Inkscape\inkscape.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SoMud.lnk - C:\Program Files (x86)\SoMud\somud.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\70f62c6a7f1739bd\pinned.lnk - C:\Windows\system32\rundll32.exe C:\Windows\system32\shell32.dll,Options_RunDLL 1
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk - C:\Windows\system32\calc.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner64.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Creative Centrale.lnk - C:\Program Files (x86)\Creative\Creative Centrale\Centrale.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Media Center.lnk - C:\Windows\ehome\ehshell.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Excel 2010.lnk - C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft PowerPoint 2010.lnk - C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Word 2010.lnk - C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Notepad.lnk - C:\Windows\system32\notepad.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\RawTherapee.lnk - C:\Program Files\RawTherapee3.0.1\rawtherapee.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\Laurens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Adobe Reader X .lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AA1000000001}\SC_Reader.ico 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Calculator.lnk - C:\Windows\system32\calc.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Creative Centrale.lnk - C:\Program Files (x86)\Creative\Creative Centrale\Centrale.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Dropbox.lnk - C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe /home
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\McAfee Total Protection.lnk - C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe /desktopicon
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Media Center.lnk - C:\Windows\ehome\ehshell.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\RawTherapee.lnk - C:\Program Files\RawTherapee3.0.1\rawtherapee.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk -  
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EC52981D9FA54934E87F0118FF7E9EB8 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\lhmiofmipcpmhgihiecmpiekcacigpgb deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D18925CE-5AF9-4394-8EF7-1081FFE7E98B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\EC52981D9FA54934E87F0118FF7E9EB8 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Optimizer Pro deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{dfc86759} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Laurens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Gast\AppData\Local\Mozilla\Firefox\Profiles\vmdd5682.default\Cache emptied successfully
C:\Users\Laurens\AppData\Local\Mozilla\Firefox\Profiles\kic4cxak.default-1428649081503\cache2 emptied successfully
C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\wn9dy8c0.Laurens\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1409 folders=251 76392239 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\Laurens\AppData\Local\Temp will be emptied at reboot
C:\Users\User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Laurens\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\McAfeeMOBK"  not found

==== EOF on di 14/04/2015 at 17:59:47,32 ======================