
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Linda on vr 07/08/2015 at 11:28:55,16.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Linda\Downloads\zoek (2).exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

7/08/2015 11:36:49 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Users\Linda\AppData\Local\CrashDumps deleted successfully
C:\Users\Linda\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Linda\AppData\Local\EmieSiteList deleted successfully
C:\Users\Linda\AppData\Local\EmieUserList deleted successfully
C:\Users\Linda\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1383217925-3798338403-2424328557-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_USERS\S-1-5-21-1383217925-3798338403-2424328557-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_USERS\S-1-5-21-1383217925-3798338403-2424328557-1001\Software\Classes\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4169044D-6BA4-4661-B7D6-E29274F1F458} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1383217925-3798338403-2424328557-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} deleted successfully

==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Allin1Convert_8h not found
C:\prefs.js deleted
C:\PROGRA~3\AVG Security Toolbar deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted
C:\Users\Linda\Downloads\avg_free_stb_all_2015_5315_cnet.exe deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\wininit.ini deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\Windows\Installer\e118.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Linda\AppData\Local\Temp ====
2015-08-07 09:23:39	BCA0388139FF5F60970FB96E56BC00EB	71168	----a-w-	C:\Users\Linda\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmph3a9vy.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-07-28 07:16:06	EB59F8712DC56764D88EB495AD5938B3	1085440	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-07-28 07:16:06	DA2054C50EB38C91322D4EEBCE408C5C	765440	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-07-28 07:16:06	BE03A1A1B4DEEFDE3E58834F7584C31F	17856	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2015-07-28 07:16:06	9AFFAF544BA8FBA1ABFCCC07F6AB85B8	726528	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-07-28 07:16:06	81E937F890B2F1A410547D6EB6A79572	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-07-28 07:16:06	3CDA55D83D5C9EA09DE82C6E5233C65B	433664	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-07-28 07:16:06	3A87269A74F067EB566813619B4F0CC3	67584	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-07-28 07:16:06	0AC0A45552B403020780DC74FB3BAC95	1145856	----a-w-	C:\Windows\Sysnative\aeinv.dll
====== C:\Windows\Sysnative\drivers =====
2015-07-28 09:02:14	0CC611CDA005070B9F5A496352124EFF	312752	----a-w-	C:\Windows\Sysnative\drivers\avgidsdrivera.sys
2015-07-28 09:01:38	39B8968350B71EEF6A0E0F9C6C2D61FD	245680	----a-w-	C:\Windows\Sysnative\drivers\avgmfx64.sys
2015-07-15 08:12:30	C0A6C3D6E02B61B5D100FE17306C276F	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-07-15 08:12:30	7A7328E427694CC7244235C3BC299F80	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-07-15 08:12:30	45A03A0B6461EFBEE77E0A6AC2816EDA	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-07-15 08:12:30	21AF322605D8C7F2A627C22634D1C9C9	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-07-15 08:12:30	1877EB1495CFBDAB27D6A32F6DDF3818	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Linda\AppData\Roaming ======
2015-07-30 07:29:00	--------	d-----w-	C:\Users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
====== C:\Users\Linda ======
2015-08-06 20:06:49	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Linda\Downloads\RSITx64 (1).exe
2015-08-06 19:59:46	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Linda\Downloads\RSITx64.exe
2015-07-30 10:04:24	594E23DD0288855CE2F2335F25C42E34	6609608	----a-w-	C:\Users\Linda\Downloads\ccsetup508.exe

====== C: exe-files ==
2015-08-05 14:59:39	1DEEF4A41F33D307E6EE2FBE8B179BE2	959568	----a-w-	C:\Program Files (x86)\Google\Update\Install\{38EAC735-31BF-4CF6-A050-97AFA7FA03A5}\44.0.2403.130_44.0.2403.125_chrome_updater.exe
2015-08-05 14:59:39	1DEEF4A41F33D307E6EE2FBE8B179BE2	959568	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.130\44.0.2403.130_44.0.2403.125_chrome_updater.exe
2015-08-05 07:51:25	D682BFC2E27E82D42C2ABCAC52DC980B	24488	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe
2015-08-05 07:51:25	89B82893963A8B7A2B4649B6106DD202	71592	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avguirux.exe
2015-08-05 07:51:25	0062D7D5CB49FB42703FB923F69BAC29	25512	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe
2015-08-05 07:51:24	52E2B86E7C70C1FF8AB1F9A6FC029FF5	7064232	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
2015-07-31 13:04:08	C0CD3BB0DC07637D5070DD716C6C1BD6	3633576	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
2015-07-31 13:01:16	DA730213087848FFAD75AA5BBAC3BBBF	3780520	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgui.exe
2015-07-31 13:00:22	FEAF59FD37A5EAB594929B4CD9A13B79	459768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe
2015-07-31 12:59:58	B00773539CBE0322991C4E3C6F67099A	825768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrvx.exe
2015-07-31 12:59:56	024023273F582E9906C63B2F8EC88B67	785320	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpx.exe
2015-07-31 12:59:54	AED13A4B5E0904971DC60A8E27A7D358	255400	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcmgr.exe
2015-07-31 12:58:38	4529F9C88BBAEDB300A91DD6F0BB3A4A	3631528	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
2015-07-31 12:58:26	8D26534D834389148DDA8CFA57720AE4	4281768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\upgrade.exe
2015-07-31 12:58:22	A89705D63F35DD9D7B7EEA1FE80FE6EF	881064	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
2015-07-31 12:58:14	3B4104191A578BD44ABCB1DFE02250CD	1544104	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
2015-07-31 12:58:12	787D807FA14C2C6B62348F50359F6809	380840	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe
2015-07-31 12:58:04	D55AA605896AAF6C35D7BC0E7B4C337F	1215400	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
2015-07-31 12:58:02	D070EE28E86237BB9F996A040042469A	802096	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpx.exe
2015-07-31 12:58:00	907913EDA2E3FE718D2B5B8DA280B73D	965032	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpa.exe
2015-07-31 12:56:28	CB15E4ABDC8E33F28FB7D4457B343A73	988088	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpa.exe
2015-07-31 12:54:56	7D3573EC6E2EDA17B822310D683ACB28	372136	----a-w-	C:\Program Files (x86)\AVG\AVG2015\fixcfg.exe
2015-07-31 12:54:08	59E94810343F06F1FFD718EEFB509263	335656	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
2015-07-31 12:53:58	ED9C703EFFB6C59BF115795DA248D03C	423848	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcomdlga.exe
2015-07-31 12:53:44	AD27FA48AD24FA89A09C1C97C7C39935	436136	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscanx.exe
2015-07-31 12:53:14	5EAD0F7368F9B286133DDD16F0D7FFE6	1022888	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
2015-07-31 12:52:46	DC1EED46F16D23D296748314FD290D95	509352	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscana.exe
=== C: other files ==
2015-07-31 13:05:18	A4942579209EFA3CA49229A22461A4E2	1205445	----a-w-	C:\Program Files (x86)\AVG\AVG2015\banners\banners.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1383217925-3798338403-2424328557-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Dropbox Update"="C:\Users\Linda\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"HPQuickWebProxy"="C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"HP CoolSense"="C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"HPConnectionManager"="C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"20131121"="C:\Program Files\AVAST Software\Avast\setup\emupdate\117f226a-965d-48a7-8181-13ac1fc2b64b.exe /check"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jaureg.exe -u auto-update"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Dropbox Update"="C:\Users\Linda\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"
"SetDefault"="C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe"
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2014-01-23 11:10:53	1135	----a-w-	C:\Users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2012-11-05 14:30:15	2099	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16/07/2015 11:49]
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1383217925-3798338403-2424328557-1001Core.job --a------ :C:\Users\Linda\AppData\LoC:al\Dropbox\Update\DropboxUpdate.exe []
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1383217925-3798338403-2424328557-1001UA.job --a------ C:\Users\Linda\AppData\LoC:al\Dropbox\Update\DropboxUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17/11/2013 22:25]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [17/11/2013 22:25]
C:\Windows\tasks\HPCeeScheduleForLINDA-HP$.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15/07/2011 05:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1383217925-3798338403-2424328557-1001Core" [C:\Users\Linda\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\Windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1383217925-3798338403-2424328557-1001UA" [C:\Users\Linda\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForLINDA-HP$" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{DE2FE4D3-A72D-47B4-8016-B1971AC0F95B}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{AF17D371-61D9-4587-97C2-96C895AE5EB1}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/6.1.73.129.456/nl/abandoninstall?page=tsWLM]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [05/11/2012 16:32]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [05/11/2012 16:32]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Linda\AppData\Roaming\TomTom\HOME\Profiles\spxracb5.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 44.0.2403.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/05/2015 11:17]

Skype Click to Call - Linda\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Wallet - Linda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Startpages ======================

C:\Users\Linda\AppData\Local\Google\Chrome\User Data\Default\Preferences
6D3A87E6C5B7BD4457E8C025C158CF77D8498A69D65596DDE77DF8B8F","name":"D1F093B6D1466F150C40F795C28C0F6EBDBEDD02445C66634A8A9717C649FE74","search_url":"742A4B2F486A8DF023EC2A77446B0F77F6D26AAB5DEA694E7B27C235621C5473"},"default_search_provider_data":{"template_url_data":"62BF75F81E2EB0B573C960A262AD1B3F0E4CE2879162CBC12E13C28DFB183697"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"A271D945662FF142A720052294C0C349BBF04CA8044CD15117F9B5936860E0C2","bepbmhgboaologfdajaanbcjmnhjmhfn":"C1D31810F9F935A9F2CEFD05F95DE28C97A39FB8E6DBDA92AFF7F4EE404BA1D5","bopakagnckmlgajfccecajhnimjiiedh":"C36EFEEBADEC26E2F0147640D501BC52A8E23F475D7CFF8E5AEF890796B6866F","debkinhcgejcbfgjiaalomcmkedjmiaa":"74EE0D2AFE7627101FCE3AFB53D7664046F4553C361EF8534B14B887E37614A1","eemcgdkfndhakfknompkggombfjjjeno":"8BB2FECDA82E13B9B4154E2A7A5BAC4727411AF042C32D87F01D827E3115FFBB","ennkphjdgehloodpbhlhldgbnhmacadg":"F1F62DED4782999558CB465910CBD1DFF6924E47ECBC55F337C27B4ABADE57D3","gfdkimpbcpahaombhbimeihdjnejgicl":"B8771198328494558118AB28B9B9FE6CE63D078532A8BF0E3D6A46C65C6416CC","kmendfapggjehodndflmmgagdbamhnfd":"8FA35645436B7DC6C645D19AA2D3037B83BD34C872D3BF9691EA3112C7E5B2E0","lifbcibllhkdhoafpjfnlhfpfgnpldfl":"884C29913A4FC08F207F2683CF6AAB8745E41B27C7FF48D1F6F50ED876BB6A56","mfehgcgbbipciphmccgaenjidiccnmng":"4879557C5F783876C28C1489936B7A4A5A9CBC69FA86822D2CC4228BF1E87011","mgndgikekgjfcpckkfioiadnlibdjbkf":"FC835E4CF573C58C503A20CD509F67DD2793B4A9E278129AB103EF9E76074622","mhjfbmdgcfjbbpaeojofohoefgiehjai":"D56984B1B4C1D4CF259DAB6A5D494655E5784CCFF8071012222F5F79FC448C12","neajdppkdcdipfabeoofebfddakdcjhd":"45DAFE23AAE4CF75DF3A888EE17FCD482525D582CE6A5BD0DC2D38CC1EB33EFF","nkeimhogjdpnpccoofpliimaahmaaome":"D66E938CF60EEAB158C82CC64399E4CC3F0CE84B82CBBBD813E5617648E01F80","nmmhkkegccagdldgiimedpiccmgmieda":"823C9BAAEC1BF8D8E0855FC18F567664B31505C6526CC7911EA0494C6E68254A","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"C370E6790F9B242F4D95E3A0F80D73C7C12ABF00B609D1E10352B672A3C24938"}},"google":{"services":{"last_username":"53401C7DBA18B8E1CCC353BBFD3CCFF7C209A8226706213C629ECB42B66C6412","username":"047A80AE49CCA18337006CEFE0C9890F88142EDAC4DE325315225035D88C85CB"}},"homepage":"4A754484163DD1C58E5C8CB763233B9EDABA0B377E56C6956F32C59A104475C5","homepage_is_newtabpage":"CD767BBF3E35BC0085C81A883BCD41CE271547B331AAA433E1DCC51902A34937","pinned_tabs":"8BEE69ADFE0954386B86B3C8585F850B3528B3CF0744D7084D300D1B7958174F","prefs":{"preference_reset_time":"FBDD988458F4B13159AEF02370673BAC3C46CEF0AD89CE076D8791B90E6BD469"},"profile":{"reset_prompt_memento":"F63B2813EDDE5947B0A9AB81854C4B352A32F6EBE28B7F5399503F507B9B3561"},"safebrowsing":{"incidents_sent":"A0D548192C24902F49D16F1B2D34BCF0446417D70B2EA5FF1CAF9826E15A5DB1"},"search_provider_overrides":"9876FF64D11C47C080F4CABA2478B0B77989FD297843EC9613B5389B5BEB2684","session":{"restore_on_startup":"C92C625F7D2C3D21261CD4DCA641A60D378B985A0BF69C343FB3C0E10351AA7F","startup_urls":"8EBD4E4D4C30FFBD8CD398FCE2046DE302B6FBC796D58C19DA8A73E8FB361E6D"},"software_reporter":{"prompt_reason":"B045079286A995AA6CFEBA5FD8E2F17EBE5477D65EA919FDA709E17008B68258","prompt_seed":"C8BC2A3E82D9A4330B0EE261D8B3B72F13D1303078552A12D29ABDAB0C7A13E3","prompt_version":"9ED36532C6AB7B20EED0A74FF99DBAEC68C4B0CE4C6A57DB6E1829C90358C554"},"sync":{"remaining_rollback_tries":"A7F32A96FA52A11D0769ED5AAC8CF3F00E3FC53CDE1AE7E0B9CAF001A31799AC"}},"super_mac":"402DF68D96B588854BA7AEE668761CBC47F04AFF2553059DBF71C26AB81643F1"},"session":{"restore_on_startup":4,"startup_urls":["http://www.msn.com/?pc=AV01"]}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://mysearch.avg.com/?cid={34F58A91-C44C-412E-9157-B42B6565A116}&mid=25f3ef9d4fda47d2bfd39da204eee170-7e3ecc254ba65bfa3da85fce1eee04a27034d051&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-07-18 10:18:09&v=4.1.4.948&pid=wtu&sg=&sap=hp"
"Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1553-111073-34115-5/4?mpre=http://www.benl.ebay.be/sch/i.html?_nkw={searchTerms}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1ADB7B61769BD2D4B8721E72722C3805 deleted successfully
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{16B7BDA1-B967-4D2D-8B27-E12727C28350} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1ADB7B61769BD2D4B8721E72722C3805 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Linda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=10 folders=4 6200191 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Linda\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Linda\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on vr 07/08/2015 at 12:15:01,61 ======================