
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Hans on di 11/08/2015 at 19:50:31,59.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Hans\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

11/08/2015 19:52:49 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~3\Nalpeiron deleted successfully
C:\Users\Hans\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Hans\AppData\Local\EmieSiteList deleted successfully
C:\Users\Hans\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}  deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AVG Web TuneUp deleted
C:\Program Files (x86)\Common Files\DVDVideoSoft deleted
C:\Users\Hans\AppData\Roaming\RHEng deleted
C:\Users\Hans\AppData\Roaming\AdvancedSystemProtector deleted
C:\PROGRA~3\AVG Security Toolbar deleted
C:\PROGRA~3\ProductData deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\windows\SysNative\tasks\ASP deleted
C:\Windows\Syswow64\sho5521.tmp deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Hans\AppData\Local\Temp ====
2015-08-09 19:47:15	F6CB2D14435D019E57AC40ABE5DDD305	96288	----a-w-	C:\Users\Hans\AppData\Local\Temp\cct.dll
2015-08-09 19:47:15	D8ED1F3CFD49DC209C8F40AEE3DC411F	377112	----a-w-	C:\Users\Hans\AppData\Local\Temp\YSearchUtil.dll
2015-08-09 19:47:15	9CEC626BAED2B0504CF352D2B46D14EE	287120	----a-w-	C:\Users\Hans\AppData\Local\Temp\JavaIC.dll
2015-08-09 19:47:14	69809CDCF1F94CE88ECFF73E59CC540B	331488	----a-w-	C:\Users\Hans\AppData\Local\Temp\msscct32.dll
2015-08-09 14:07:25	DCFC19032C60CCC660D4346295DA42B9	45320	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\utilClientLoader.dll
2015-08-09 14:07:25	A6FF2533FCCCCC22E6FE7CCB4382D5EF	1908736	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\libeay32.dll
2015-08-09 14:07:25	A4A74365C700E005C49318C20C8D2EBF	1185296	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\tmufeng.dll
2015-08-09 14:07:25	99559F8DE53EAC2C8DBC23595803A69D	46352	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\TMEBC64.sys
2015-08-09 14:07:25	98D7D2F55A73A2F7640323572F68FD09	647728	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\tmfbeng.dll
2015-08-09 14:07:25	799F70FF787F4F68E7EA02FEABAC9FAB	307352	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\Tmcomm.sys
2015-08-09 14:07:25	670DA175BF2CA93A60D243EA24CE8220	788480	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\libcurl.dll
2015-08-09 14:07:25	65FB3391EB26F5AC647FC40501D8E21D	149264	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\symsrv.dll
2015-08-09 14:07:25	381641E1625DD93D2855CFF095004C62	447488	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\ssleay32.dll
2015-08-09 14:07:25	0DDC5509168F24D8248E103210890098	420400	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\TmEngDrv.dll
2015-08-09 14:07:24	F82469A1100DA72AB6071C45FA665E96	318464	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\plugin\downloader.plugin.dll
2015-08-09 14:07:24	A5E4B3FF51CF5B7926D9651908FEB666	1558912	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\dbghelp.dll
2015-08-09 14:07:24	86428A172571540ACFA1FEB4945DF2C1	239664	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\perfiCrcPerfMonMgr.dll
2015-08-09 14:07:24	22B8266910C5CA0325CC7E27967A354A	4175408	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\hc_core.dll
2015-08-09 14:07:24	227AAAE2B6E60ADD679F632C3BF51A61	148992	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\libexpatw.dll
2015-08-09 14:07:24	2191B4A8011D73906BC2B8A6D4E8B351	2667536	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\smv64.dll
2015-08-09 14:07:24	0C33A49F9125FAD652A72554394C03C3	2253872	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\ICRCHdler.dll
2015-08-09 14:07:08	C0C8871DF14BE6FCD58BC53539945F17	4657736	----a-w-	C:\Users\Hans\AppData\Local\Temp\HCBackup\hcpackage64.exe
2015-08-06 18:53:48	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Hans\AppData\Local\Temp\{1C18CD25-9B8C-46F6-B5B7-A86F7F473532}-44.0.2403.130_44.0.2403.125_chrome_updater.exe
====== Java Cache =====
2015-08-09 20:15:17	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Hans\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-4dc81cde
2015-08-09 20:15:17	77B214B3472827DFEA3273C4F4A25FC1	425	----a-w-	C:\Users\Hans\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2015-08-09 20:15:15	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Hans\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-4383b7ae
2015-08-09 20:15:32	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\Hans\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\47c58863-1dbb905a
2015-08-09 20:15:17	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\Hans\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-506bbff6
====== C:\Windows\SysWOW64 =====
2015-08-09 20:14:44	37027850A9008DE507605036661F8D9F	97888	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-08-04 19:17:28	63B01F72FD727D5736DBEF54174D8F93	1951232	------w-	C:\Windows\SysWOW64\wininet.dll
2015-08-04 19:17:10	8C7635292CFF4901F058269454A1D64E	1310744	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-08-04 19:17:09	9E68E1BDEBD85FC8803707370BE0FC6E	641536	------w-	C:\Windows\SysWOW64\advapi32.dll
2015-08-04 19:17:08	F81920ADB15012CF4E9FF8238C85686A	1114112	------w-	C:\Windows\SysWOW64\kernel32.dll
2015-08-04 19:17:08	D877133532CE090502B1166B360E9516	274944	------w-	C:\Windows\SysWOW64\KernelBase.dll
2015-08-04 19:17:08	65A5E27C2217D606E212B6088CCD6104	92160	------w-	C:\Windows\SysWOW64\sechost.dll
2015-08-04 19:16:53	E97B4515FC3846CB5C6853C40E71EF28	36864	------w-	C:\Windows\SysWOW64\cryptbase.dll
2015-08-04 19:16:53	CA017983095846BFCFBE9C02B40958B3	221184	------w-	C:\Windows\SysWOW64\ncrypt.dll
2015-08-04 19:16:53	98226182583DF1715F1BE6CCEA6E8D95	248832	------w-	C:\Windows\SysWOW64\schannel.dll
2015-08-04 19:16:53	81E207D09B2A7723A549EFB34B47C7EA	22016	------w-	C:\Windows\SysWOW64\secur32.dll
2015-08-04 19:16:53	02CD86D59807467D065F521BE81BB858	665088	------w-	C:\Windows\SysWOW64\rpcrt4.dll
2015-08-04 19:16:52	96741CBB4CC3638A2BCB11F93B92B738	17408	------w-	C:\Windows\SysWOW64\credssp.dll
2015-08-04 19:16:52	2E8C9C3223E05F4B42FB89C03DD09C1D	96768	------w-	C:\Windows\SysWOW64\sspicli.dll
2015-08-04 19:16:47	F4AFDB5ABEA0C9079E8193E24D1DB21D	1174528	------w-	C:\Windows\SysWOW64\crypt32.dll
2015-08-04 19:16:47	588D52C2D0E60EE71FD5A64407865B10	179200	------w-	C:\Windows\SysWOW64\wintrust.dll
2015-08-04 19:16:41	05CA106A1B68770BDABB9AA7AEAE516A	1310720	------w-	C:\Windows\SysWOW64\urlmon.dll
2015-08-04 19:16:39	8EDF7B6D3A563DAA06DD87053C734168	2279424	------w-	C:\Windows\SysWOW64\iertutil.dll
2015-08-04 19:16:34	D7C4ABB0F1FFA371928EED0C7A6E24DC	2364416	------w-	C:\Windows\SysWOW64\msi.dll
2015-08-04 19:16:25	4548507ED3C17DB4739DBBEAF6378004	1414656	------w-	C:\Windows\SysWOW64\ole32.dll
2015-08-04 19:16:24	58788565442368B0615DDAF1D452B843	530432	------w-	C:\Windows\SysWOW64\comctl32.dll
2015-08-04 19:16:19	143046AC227C193B5B2E0E20BC0CF1DD	312320	------w-	C:\Windows\SysWOW64\gdi32.dll
2015-08-04 19:10:53	D80ECB18D64AE3C2A9D8220ABEBCE40A	25600	------w-	C:\Windows\SysWOW64\lpk.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-08-04 19:17:26	E066FDC3A2074D926903B8C31EF3B347	2427392	------w-	C:\Windows\Sysnative\wininet.dll
2015-08-04 19:17:13	53042708C242959B3924242FBBE297B1	1728960	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-08-04 19:17:10	8DCA1C70AF170C3FBCE47A4F49BFC887	424960	------w-	C:\Windows\Sysnative\KernelBase.dll
2015-08-04 19:17:10	6FDF03A3B110C5264F52F979335AE301	1162752	------w-	C:\Windows\Sysnative\kernel32.dll
2015-08-04 19:17:10	4FFD08A01047EF6B58F6EB4E6D001A8D	879104	------w-	C:\Windows\Sysnative\advapi32.dll
2015-08-04 19:17:08	FF9BBFAE899091C1FF0D1A3F2C587911	243712	------w-	C:\Windows\Sysnative\wow64.dll
2015-08-04 19:17:08	CCB352B939B77B38983DD878C547451F	503808	------w-	C:\Windows\Sysnative\srcore.dll
2015-08-04 19:17:08	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-08-04 19:17:08	5A17FF38EDE95B2313E428BF444126D7	362496	------w-	C:\Windows\Sysnative\wow64win.dll
2015-08-04 19:17:08	4F90A7A0FCBC0ED18E573917860062FF	113664	------w-	C:\Windows\Sysnative\sechost.dll
2015-08-04 19:17:08	2313AF8D5A9CEB4A55400A01DD311A95	215040	------w-	C:\Windows\Sysnative\winsrv.dll
2015-08-04 19:17:08	20BD408AC3F8576997D6A47F48A1C5B2	13312	------w-	C:\Windows\Sysnative\wow64cpu.dll
2015-08-04 19:17:08	13DE715D959DD502CFD52DC920408B33	43520	------w-	C:\Windows\Sysnative\csrsrv.dll
2015-08-04 19:17:05	AF557D115972A73964FC8F209300948A	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-08-04 19:16:54	F66102F990EE913261ED7907403718ED	729088	------w-	C:\Windows\Sysnative\kerberos.dll
2015-08-04 19:16:54	D5844B744F7BAF826965DD634FF8DB00	1461760	------w-	C:\Windows\Sysnative\lsasrv.dll
2015-08-04 19:16:54	A66FF313F2F8A6CBF9BB2B0CC92D5ACD	1216512	------w-	C:\Windows\Sysnative\rpcrt4.dll
2015-08-04 19:16:54	9F2CCDE3F30C224C082984B6F95D3D95	309760	------w-	C:\Windows\Sysnative\ncrypt.dll
2015-08-04 19:16:54	750C44D6F7A708F0C6618F075A0A68A7	315392	------w-	C:\Windows\Sysnative\msv1_0.dll
2015-08-04 19:16:53	E8560BC8E1B85A5A081AEF43626187B1	44032	------w-	C:\Windows\Sysnative\cryptbase.dll
2015-08-04 19:16:53	C3F6A9A41CC8591EF0370708E54DE474	28160	------w-	C:\Windows\Sysnative\secur32.dll
2015-08-04 19:16:53	C3F0594AF92FE71B13A44177FDB80784	29184	------w-	C:\Windows\Sysnative\sspisrv.dll
2015-08-04 19:16:53	B1D191D0EDEB86197A5FD5030B65420F	22016	------w-	C:\Windows\Sysnative\credssp.dll
2015-08-04 19:16:53	9EA6DA45B95599C27B1661C1D99307D7	342016	------w-	C:\Windows\Sysnative\schannel.dll
2015-08-04 19:16:53	97D879A884E7CDFED51AD63348A35254	31232	------w-	C:\Windows\Sysnative\lsass.exe
2015-08-04 19:16:53	48A88348F1539CC7C8CB4E032DD79DAA	136192	------w-	C:\Windows\Sysnative\sspicli.dll
2015-08-04 19:16:53	3B96392CBE54FF44BEAEB0B4BCC65487	86528	------w-	C:\Windows\Sysnative\TSpkg.dll
2015-08-04 19:16:53	09730D830B2B69B626817F4A95945308	210944	------w-	C:\Windows\Sysnative\wdigest.dll
2015-08-04 19:16:47	C5752F5CE47B6B00F914AE91087C0CB4	229376	------w-	C:\Windows\Sysnative\wintrust.dll
2015-08-04 19:16:47	7EE0A3B9E904AF4744E4D8F00CB5CA32	140288	------w-	C:\Windows\Sysnative\cryptnet.dll
2015-08-04 19:16:47	71187FA11F58012C188453877E16EB8B	1480192	------w-	C:\Windows\Sysnative\crypt32.dll
2015-08-04 19:16:40	78E4D3781E5632BA88E5153510BEB625	1545728	------w-	C:\Windows\Sysnative\urlmon.dll
2015-08-04 19:16:38	41D59904967A4033FB4497DCED7320AD	2885632	------w-	C:\Windows\Sysnative\iertutil.dll
2015-08-04 19:16:34	978DC0A1FBE9CC91B21B40AF66CB396A	70656	------w-	C:\Windows\Sysnative\appinfo.dll
2015-08-04 19:16:34	5489E74E56C0255159C8AE2C70744458	1941504	------w-	C:\Windows\Sysnative\authui.dll
2015-08-04 19:16:28	9D80A82B0BB77AC3EF6A87FA0C534E20	14635008	------w-	C:\Windows\Sysnative\wmp.dll
2015-08-04 19:16:26	51ECEE70F33601310DDEF3EEE39550D3	12625920	------w-	C:\Windows\Sysnative\wmploc.DLL
2015-08-04 19:16:25	E3EB94B45A2735D4559558B5899732E8	2087424	------w-	C:\Windows\Sysnative\ole32.dll
2015-08-04 19:16:24	51F89CE2D0FEC66070354504E6C4C3E4	633856	------w-	C:\Windows\Sysnative\comctl32.dll
2015-08-04 19:16:19	EFFFE1C77ACCE66C82CCFD18A9687F48	404992	------w-	C:\Windows\Sysnative\gdi32.dll
2015-08-04 19:10:53	D57C03D365BC71C7A30504644515F3F8	41984	------w-	C:\Windows\Sysnative\lpk.dll
2015-08-04 19:10:48	E87D4371B24BC9E5BAE95AEA60FFD959	193536	------w-	C:\Windows\Sysnative\aepic.dll
2015-08-04 19:09:10	F56E83C1EFEDEF919033CBFF071602B6	36864	------w-	C:\Windows\Sysnative\wups.dll
2015-08-04 19:09:10	84CEF9B2D8ED8006B3975DC1D8109B3D	696320	------w-	C:\Windows\Sysnative\wuapi.dll
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-07-16 08:05:26	--------	d-----w-	C:\PROGRA~2\QuickTime
======= C: =====
====== C:\Users\Hans\AppData\Roaming ======
2015-08-09 14:06:56	847D448D9CF1EFE63BF221FD17F30784	36	----a-w-	C:\Users\Hans\AppData\Local\housecall.guid.cache
2015-07-16 08:04:41	--------	d-----w-	C:\Users\Hans\AppData\Locallow\Apple Computer
2015-07-15 10:54:01	--------	d-----w-	C:\Users\Hans\AppData\Roaming\Macrovision
2015-07-15 10:53:41	--------	d-----w-	C:\Users\Hans\AppData\Local\Sonic_Solutions
====== C:\Users\Hans ======
2015-08-09 20:14:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-09 20:09:15	7FE04C9586B61719A1D2C8459B345C39	563296	----a-w-	C:\Users\Hans\Downloads\JavaSetup8u51.exe
2015-08-09 14:06:27	9E62D6FBD3014087133D9BD2F601BAAE	2494944	----a-w-	C:\Users\Hans\Downloads\HousecallLauncher64.exe

====== C: exe-files ==
2015-08-11 15:36:50	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TMZCETR2\RSITx64.exe
2015-08-10 15:44:52	594E23DD0288855CE2F2335F25C42E34	6609608	----a-w-	C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6WL3ON69\ccsetup508.exe
2015-08-09 20:14:30	A4D1AC4078F1A819ECECC546F64907A1	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-08-09 20:14:30	9A474C07C5242EF2AE12FF6BF387F334	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-08-09 20:14:30	4E022C0940633A9538892CB26B65BD0D	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-08-09 20:14:26	F52607E7F53DA8FE1C4A3C1F11CE2AE7	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\java-rmi.exe
2015-08-09 20:14:26	F3D19B026E09B8150D9FF40D537C8F2A	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\rmid.exe
2015-08-09 20:14:26	EF442149A0502661D49628A66A69F33C	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\policytool.exe
2015-08-09 20:14:26	E7ABC6445E6A2F1EDE5F8BB082ECEEA1	30304	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jabswitch.exe
2015-08-09 20:14:26	D50189686D9D144CB4EC807652640FC0	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\ktab.exe
2015-08-09 20:14:26	C4B3393396204E759E6EDFF92A9CAA50	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\tnameserv.exe
2015-08-09 20:14:26	BC66611222047778694C7650B7814978	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe
2015-08-09 20:14:26	B5AA17A9ACE57080909B9CB47CD74C39	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\kinit.exe
2015-08-09 20:14:26	A4D1AC4078F1A819ECECC546F64907A1	190560	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\java.exe
2015-08-09 20:14:26	9A474C07C5242EF2AE12FF6BF387F334	273504	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javaws.exe
2015-08-09 20:14:26	8B09EF707CE0895D5478300CC2CE90DB	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\rmiregistry.exe
2015-08-09 20:14:26	8516D08420A7AB22A9B722FAF631E320	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssvagent.exe
2015-08-09 20:14:26	76BD4372DD5C5A316F64D562C2404BF8	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\orbd.exe
2015-08-09 20:14:26	6790CB3F51E280A2A3EEAA3C5BD58EFF	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\keytool.exe
2015-08-09 20:14:26	5E1561548895218973EB5C833D96BD60	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\unpack200.exe
2015-08-09 20:14:26	56C175D9B0D7EE7D1DA92B8D8A12772A	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\servertool.exe
2015-08-09 20:14:26	547F9D4CB6FAAC8E941F1689D5555CDB	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jjs.exe
2015-08-09 20:14:26	4E022C0940633A9538892CB26B65BD0D	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javaw.exe
2015-08-09 20:14:26	46AD9258E9B6EA56AFC8723CEFDF8425	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\pack200.exe
2015-08-09 20:14:26	235015745A6A6FE26BCDA8F227C9132B	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\klist.exe
2015-08-09 20:14:26	0CFCEE90C8711D4DEAD9EC7046918A45	77920	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2launcher.exe
2015-08-09 20:09:50	E1E692A94306F5B47E8391DF4D15DD33	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-3875126257-2785778885-3603230970-1001\$I615TZA.exe
2015-08-09 20:09:15	7FE04C9586B61719A1D2C8459B345C39	563296	----a-w-	C:\Users\Hans\Downloads\JavaSetup8u51.exe
2015-08-09 19:46:29	7FE04C9586B61719A1D2C8459B345C39	563296	----a-w-	C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TMZCETR2\JavaSetup8u51.exe
2015-08-09 14:07:08	C0C8871DF14BE6FCD58BC53539945F17	4657736	----a-w-	C:\Users\Hans\AppData\Local\Temp\HCBackup\hcpackage64.exe
2015-08-09 14:06:27	9E62D6FBD3014087133D9BD2F601BAAE	2494944	----a-w-	C:\Users\Hans\Downloads\HousecallLauncher64.exe
2015-08-06 19:05:51	E33A0AB793722DAD14490815A1B44E78	25512	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe
2015-08-06 19:05:51	D52765E58BD45144429844CC8052FA94	71592	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avguirux.exe
2015-08-06 19:05:51	8B6D4826F7F797CF55233246BD09B918	6822672	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
2015-08-06 19:05:51	81045CC5E4303B048A74B95FBF8935E5	24488	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe
2015-08-06 18:53:48	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Hans\AppData\Local\Temp\{1C18CD25-9B8C-46F6-B5B7-A86F7F473532}-44.0.2403.130_44.0.2403.125_chrome_updater.exe
2015-08-06 18:07:33	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Windows\Temp\8866D76B-F880-41E5-8FED-57C3C3B02D68\DismHost.exe
2015-08-05 17:14:34	8EF081D6489C5FEDFA6AC2F444B2F5C9	1277424	----a-w-	C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\unins000.exe
2015-08-05 16:58:57	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Windows\Temp\6DEF1D36-5557-48AE-91DB-ABB9A09FF65C\DismHost.exe
2015-08-04 19:17:08	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\System32\smss.exe
2015-08-04 19:16:53	97D879A884E7CDFED51AD63348A35254	31232	------w-	C:\Windows\System32\lsass.exe
=== C: other files ==
2015-08-09 20:14:26	5F7B14A65C88D4AEB0E3DF49C6A0941F	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\lib\deploy\ffjcext.zip
2015-08-09 14:07:29	4C146668311721DD3DD24EAB30C5ACB0	14903296	----a-w-	C:\Users\Hans\AppData\Local\Temp\HCBackup\AUCache\AU_Cache\housecall-ctp-p.activeupdate.trendmicro.com\ioth1184300.zip
2015-08-09 14:07:26	F350AC2173EC0722D0107B02B9D4638B	1481470	----a-w-	C:\Users\Hans\AppData\Local\Temp\HCBackup\AUCache\AU_Cache\housecall-ctp-p.activeupdate.trendmicro.com\atse_win64_v9826-1044.zip
2015-08-09 14:07:26	EBB29775DF109B498901D48E6DBD165B	2708	----a-w-	C:\Users\Hans\AppData\Local\Temp\HCBackup\AUCache\AU_Cache\housecall-ctp-p.activeupdate.trendmicro.com\ini_xml.zip
2015-08-09 14:07:25	99559F8DE53EAC2C8DBC23595803A69D	46352	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\TMEBC64.sys
2015-08-09 14:07:25	799F70FF787F4F68E7EA02FEABAC9FAB	307352	----a-w-	C:\Users\Hans\AppData\Local\Temp\HouseCall\Tmcomm.sys
2015-08-07 14:20:57	889526F2B42791A5BDCDC2F60B49F429	172428	----a-w-	C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NXIKNGBS\RegisterDevice[1].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RoxWatchTray"="C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"IJNetworkScannerSelectorEX"="C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE"
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"AccuWeatherWidget"=""C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3 "
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"FreeFallProtection"="C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe"
"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"
"QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe"
"IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
"NVHotkey"="rundll32.exe C:\Windows\system32\nvHotkey.dll,Start"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"Ashampoo WinOptimizer Live-Tuner2"="C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTuner2.exe -TRAY"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""
"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""


==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe Reader Speed Launcher"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 10.0\\Reader\\Reader_sl.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS6ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonQuickMenu]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CanonQuickMenu"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Canon\\Quick Menu\\CNQMMAIN.EXE /logon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Dell DataSafe Online]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Dell DataSafe Online"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Dell\\Dell Datasafe Online\\NOBuClient.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Dell Webcam Central]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Dell Webcam Central"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Dell Webcam\\Dell Webcam Central\\WebcamDell2.exe\" /mode2"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DellStage]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DellStage"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Dell Stage\\Dell Stage\\stage_primary.exe\" \"C:\\Program Files (x86)\\Dell Stage\\Dell Stage\\start.umj\" --startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Desktop Disc Tool]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Desktop Disc Tool"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Roxio\\OEM\\Roxio Burn\\RoxioBurnLauncher.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroLauncher]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroLauncher"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Nero\\SyncUP\\NeroLauncher.exe 900"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OfficeSyncProcess]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="OfficeSyncProcess"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\MSOSYNC.EXE\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Stage Remote]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Stage Remote"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Dell\\Stage Remote\\StageRemote.exe -Quiet"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SwitchBoard"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/08/2015 17:13]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Hans-PC-Hans" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\SysNative\tasks\PCDEventLauncherTask" ["C:\Program Files\Dell\SupportAssist\sessionchecker.exe"]
"C:\Windows\SysNative\tasks\PCDoctorBackgroundMonitorTask" ["C:\Program Files\Dell\SupportAssist\uaclauncher.exe"]
"C:\Windows\SysNative\tasks\SystemToolsDailyTest" ["uaclauncher.exe"]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\h4jta6h1.default
user_pref("browser.startup.homepage", "http://www.nieuwsblad.be/");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

ProfilePath: C:\Users\Hans\AppData\Roaming\TomTom\HOME\Profiles\9juq3wf8.default
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\h4jta6h1.default
- Undetermined - %ProfilePath%\extensions\trash
- Download videos and MP3s from YouTube - %ProfilePath%\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}

ProfilePath: C:\Users\Hans\AppData\Roaming\TomTom\HOME\Profiles\9juq3wf8.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.8.010.9369@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

==== Firefox Plugins ======================

Profilepath: C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\h4jta6h1.default
D2B5242013356AF422A42B9FAA4056C2	- C:\Users\Hans\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin.dll -	VASCO Card Reader Plugin
FD63DE29FE0A7E738BD81CA0EDDD8020	- C:\Users\Hans\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin64.dll -	VASCO Card Reader Plugin


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.nieuwsblad.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.nieuwsblad.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3875126257-2785778885-3603230970-1001\Software\Mozilla\Firefox\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=366 folders=73 208342861 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Hans\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Hans\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 11/08/2015 at 20:16:15,18 ======================