
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Kris on vr 03/07/2015 at 16:55:03,05.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Kris\Downloads\zoek (1).exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

3/07/2015 16:58:08 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\takepricelow deleted successfully
C:\PROGRA~3\takepricelow deleted successfully
C:\Users\Kris\AppData\Roaming\SAMSUNG WS-32Z306T user guide deleted successfully
C:\Users\Kris\AppData\Roaming\TP deleted successfully
C:\Users\Kris\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Kris\AppData\Local\EmieSiteList deleted successfully
C:\Users\Kris\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2546793167-3972436662-1245775185-1001\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} deleted successfully
HKEY_USERS\S-1-5-21-2546793167-3972436662-1245775185-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
HKEY_USERS\S-1-5-21-2546793167-3972436662-1245775185-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F64FABB0-A34B-474D-ACDA-0DD92C5A29C3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\takepricelow not found
C:\PROGRA~3\{aebed00f-bbc6-3596-aebe-ed00fbbc403e} deleted
C:\PROGRA~3\OberonGameConsole deleted
C:\Users\Kris\AppData\Local\iLivid deleted
C:\Users\Kris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk deleted
C:\Users\Kris\AppData\LocalLow\IAC deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
"C:\Windows\Installer\af7253.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Kris\AppData\Local\Temp ====
2015-07-02 13:45:48	D6AD3B8341CC169CA35F9A79EE601C16	35462640	----a-w-	C:\Users\Kris\AppData\Local\Temp\EPSON\Download\Resource\EPP_25200_WW_11.exe
2015-07-01 22:08:04	EC664AAB47C27667256DDFBD13986239	127488	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\OSProvider.dll
2015-07-01 22:08:04	A77A8EB5E9BA6D63A121811F0830F565	302080	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\UnattendProvider.dll
2015-07-01 22:08:04	8DF4C8E300C8D32468F6141D22BBAF24	271360	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\SmiProvider.dll
2015-07-01 22:08:04	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\wdscore.dll
2015-07-01 22:08:04	739968678548BA15F6B9372E8760C012	444416	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\TransmogProvider.dll
2015-07-01 22:08:04	26981358EA5F82938387F6998F861978	471040	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\WimProvider.dll
2015-07-01 22:08:03	F76D4ECF94DC677C13061EAEE9D6745A	312832	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\IntlProvider.dll
2015-07-01 22:08:03	CD564F5637BBBEB6E5F3464EDD573C80	438272	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DmiProvider.dll
2015-07-01 22:08:03	CCF6EC908566900E9626DC3360B9E35E	112128	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DismCorePS.dll
2015-07-01 22:08:03	A909643B215FC0587A043C9C15959D41	186368	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DismProv.dll
2015-07-01 22:08:03	6EBC2138A3C9B3B7D1E69E0629B6C815	289792	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DismCore.dll
2015-07-01 22:08:03	64B66A41B61D511E8EBE94625EC0E45A	53760	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\FolderProvider.dll
2015-07-01 22:08:03	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DismHost.exe
2015-07-01 22:08:03	45FF4FA5CA5432BFCCDED4433FE2A85B	216576	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\MsiProvider.dll
2015-07-01 22:08:03	3A9C49943047DE6C6F8DC68CB986A0EC	183296	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\CompatProvider.dll
2015-07-01 22:08:03	2961AB067AE61440ADF11C4BFE085151	1672192	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\CbsProvider.dll
2015-07-01 22:08:03	27EC9795973FB7790059892EF2F363B1	107008	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\LogProvider.dll
====== Java Cache =====
2015-07-03 14:30:08	783CC6385D45489B392BC419AE88A101	100	----a-w-	C:\Users\Kris\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2015-07-03 14:30:07	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Kris\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-26511518
2015-07-03 14:30:17	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\Kris\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\47c58863-593f6d69
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2015-06-10 13:01:53	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-06-10 13:01:52	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-06-10 13:01:34	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\Sysnative\drivers\stream.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-07-02 14:28:28	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-07-03 14:26:57	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\Kris\AppData\Roaming ======
====== C:\Users\Kris ======
2015-07-03 13:59:18	EDD9003275DB08B8B4C131F5D934C99F	561760	----a-w-	C:\Users\Kris\Downloads\JavaSetup8u45.exe
2015-07-02 14:25:25	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Kris\Downloads\RSITx64.exe
2015-07-02 13:49:09	--------	d-----w-	C:\ProgramData\Sony Corporation

====== C: exe-files ==
2015-07-03 14:26:16	EED888394AC81A663F12C6EC43AB2838	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-07-03 14:26:16	4586CD8F1C929EF184098A22FE31A857	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-07-03 14:26:16	1E2E159D0621A466CFA7CE06E4DA9CAE	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-07-03 14:26:09	FF589C55E0CB6A0A1BD9570217BB1A42	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\tnameserv.exe
2015-07-03 14:26:09	FD8978875A992C876AF430B35DF9CFA7	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\pack200.exe
2015-07-03 14:26:09	D3DA34876B7F6D06D26D29CA77BD25A2	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\ktab.exe
2015-07-03 14:26:09	C57CA849D13177E1F43CFEF51374F1EE	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\unpack200.exe
2015-07-03 14:26:09	B66ED84383EA6C6218CA47BC49C15615	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssvagent.exe
2015-07-03 14:26:09	A1A1BC927541346D840BBB511F557848	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\policytool.exe
2015-07-03 14:26:09	98903A3C01AA820E7FCC19A0A60126C0	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\klist.exe
2015-07-03 14:26:09	5DF39BE82C777B7EDAD34E3A7A7EADB7	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmid.exe
2015-07-03 14:26:09	4EA6A4DD2EB584C4C2BF39A9A7D0D580	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\keytool.exe
2015-07-03 14:26:09	3C0A1F0D13A8998E9A1825A853FF3B39	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\kinit.exe
2015-07-03 14:26:09	2682BB5D60C30DCB5A2BC414D01D6764	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmiregistry.exe
2015-07-03 14:26:09	1F29E31C6B9A487FF32006C4E223BA4F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\orbd.exe
2015-07-03 14:26:09	134D4B0A753808F8F8645DCF3FA00173	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\servertool.exe
2015-07-03 14:26:08	F16868F20E4701142FAEF8C9FA847D27	30304	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\jabswitch.exe
2015-07-03 14:26:08	EF66D96BC42BCE52686A7635AB11D8DD	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\javacpl.exe
2015-07-03 14:26:08	EED888394AC81A663F12C6EC43AB2838	191072	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaw.exe
2015-07-03 14:26:08	CF683290B3369A1491A5B8B4D19F79B3	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\jjs.exe
2015-07-03 14:26:08	88FFC43B0E3BB3E30F70CB7B08D499B4	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\java-rmi.exe
2015-07-03 14:26:08	4586CD8F1C929EF184098A22FE31A857	271968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaws.exe
2015-07-03 14:26:08	1E2E159D0621A466CFA7CE06E4DA9CAE	190560	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\java.exe
2015-07-03 14:26:08	1CCD26E1E9FC582ABAA5D5FD1FA47A6B	76384	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2launcher.exe
2015-07-03 13:59:18	EDD9003275DB08B8B4C131F5D934C99F	561760	----a-w-	C:\Users\Kris\Downloads\JavaSetup8u45.exe
2015-07-02 14:28:28	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Kris.exe
2015-07-02 14:25:25	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Kris\Downloads\RSITx64.exe
2015-07-02 13:49:08	3B31B57BC49B9EA1ACBE45AE1C540773	352256	----a-w-	C:\Program Files (x86)\EPSON Software\Common\Easy Photo Print Plugin\PMH\EPPEP_S2W.exe
2015-07-02 13:49:02	D12ABABDD6C357DF8FF4EA62704C9549	810480	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{DA4D8108-E2CC-49D2-AF4B-43C39FFE6072}\setup.exe
2015-07-02 13:49:02	C2DCE2E1AAF49B4C3850CE6FC5AD4962	343136	----a-w-	C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPTPEE.exe
2015-07-02 13:49:02	66D3CD5ABDB356B12EC54963BE1AD0F5	912480	----a-w-	C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPQuicker.exe
2015-07-02 13:45:48	D6AD3B8341CC169CA35F9A79EE601C16	35462640	----a-w-	C:\Users\Kris\AppData\Local\Temp\EPSON\Download\Resource\EPP_25200_WW_11.exe
2015-07-01 22:24:18	2BFF18491DC70EC5626E6D98AFD0419D	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2546793167-3972436662-1245775185-1001\$IXN3M1D.exe
2015-07-01 22:08:03	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Kris\AppData\Local\Temp\704148F9-5CF3-44E0-AA80-F9DEADB1DF8F\DismHost.exe
=== C: other files ==
2015-07-03 14:26:09	5DDC15149346900F16B38C65502BACA9	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_45\lib\deploy\ffjcext.zip
2015-07-01 22:24:27	7C0D0F6E99261D114FC5636A9C2E57B8	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2546793167-3972436662-1245775185-1001\$IXM6GFZ.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
"SonicMasterTray"="C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"Wireless Console 3"="C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"UpdateLBPShortCut"="C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5"
"UpdateP2GoShortCut"="C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"
"EEventManager"="C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 "
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Samsung Link"="C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SynAsusAcpi"="%ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"
"hkey"="HKLM"
"item"="RtHDVCpl"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TomTomHOME.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TomTomHOME.exe"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\TomTom HOME 2\\TomTomHOMERunner.exe\""


==== Startup Folders ======================

2011-04-13 02:49:43	2062	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [23/06/2015 20:24]
C:\Windows\tasks\EPSON XP-412 413 415 Series Invitation {1C0CBF6C-A060-424C-9CEC-61EBD3002877}.job --a------ C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.exe [28/02/2013 01:20]
C:\Windows\tasks\EPSON XP-412 413 415 Series Invitation {61C8421C-58F0-4534-AA5A-6DC0154A5C4D}.job --a------ C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.exe [28/02/2013 01:20]
C:\Windows\tasks\EPSON XP-412 413 415 Series Update {1C0CBF6C-A060-424C-9CEC-61EBD3002877}.job --a------ C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.exe [28/02/2013 01:20]
C:\Windows\tasks\EPSON XP-412 413 415 Series Update {61C8421C-58F0-4534-AA5A-6DC0154A5C4D}.job --a------ C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.exe [28/02/2013 01:20]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/12/2014 19:22]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\EPSON XP-412 413 415 Series Invitation {1C0CBF6C-A060-424C-9CEC-61EBD3002877}" [C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE]
"C:\Windows\SysNative\tasks\EPSON XP-412 413 415 Series Invitation {61C8421C-58F0-4534-AA5A-6DC0154A5C4D}" [C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE]
"C:\Windows\SysNative\tasks\EPSON XP-412 413 415 Series Update {1C0CBF6C-A060-424C-9CEC-61EBD3002877}" [C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE]
"C:\Windows\SysNative\tasks\EPSON XP-412 413 415 Series Update {61C8421C-58F0-4534-AA5A-6DC0154A5C4D}" [C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"e-webprint@epson.com"="C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on" [16/06/2015 17:32]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Kris\AppData\Roaming\TomTom\HOME\Profiles\6n0mc4ru.default
- Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- Undetermined - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

==== Firefox Plugins ======================


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\Gast\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Gast\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Gast\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\Kris\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Kris\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\UpdatusUser\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\UpdatusUser\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon deleted

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.71



==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown  Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7AURU_nlBE498"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2546793167-3972436662-1245775185-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kris\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Kris\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Kris\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=164 folders=36 99511066 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Kris\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Kris\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 03/07/2015 at 17:22:18,77 ======================