
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Rudi on ma 22/02/2016 at 19:34:05,71.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Rudi\Downloads\zoek(1).exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2015-09-12-183841.log	21937 bytes

==== Empty Folders Check ======================

C:\PROGRA~3\Validity deleted successfully
C:\Users\Rudi\AppData\Local\PDFC deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\aspnet_state deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\aspnet_state deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Pro Surveillance System(EN) deleted
C:\found.000 deleted
C:\found.001 deleted
"C:\PROGRA~3\Package Cache" deleted

==== Files Recently Created / Modified ======================

====== C:\windows ====
2016-02-21 10:12:57	DBC2C3285AC7F37A671069BD044CAE57	10134	----a-w-	C:\windows\FortiusRemove.ico
2016-02-10 18:14:03	9A4721C52C4746019879D9F8033DCA00	52184	----a-w-	C:\windows\avastSS.scr
====== C:\Users\Rudi\AppData\Local\Temp ====
====== Java Cache =====
====== C:\windows\SysWOW64 =====
2016-02-21 10:12:45	F9BA65678C90A9C6C3240E32F991A4CC	45056	----a-w-	C:\windows\SysWOW64\cvirt.dll
2016-02-21 10:12:45	CC28F6AF896A498B902E4513CB195465	19892	----a-w-	C:\windows\SysWOW64\FortiusSWPID1942Renum.hex
2016-02-21 10:12:45	C5DE55AF8D785DBE415B43E0C5A1D2FF	413770	----a-w-	C:\windows\SysWOW64\cviauto.dll
2016-02-21 10:12:45	C1EAF33757312E95858ECF808DA943E4	2056192	----a-w-	C:\windows\SysWOW64\cvirte.dll
2016-02-21 10:12:45	58BEFF2DC539BAB54AB6D2000C4564C8	133120	----a-w-	C:\windows\SysWOW64\TacxUSB.dll
2016-02-21 10:12:45	1D8C7F3157ED7E73718B5A6459BD231E	131072	----a-w-	C:\windows\SysWOW64\dataskt.dll
====== C:\windows\SysWOW64\drivers =====
====== C:\windows\Sysnative =====
2016-02-10 18:17:26	CBE6A51D10DA701BAFF2729EAD1BAC6B	398152	----a-w-	C:\windows\Sysnative\aswBoot.exe
====== C:\windows\Sysnative\drivers =====
2016-02-10 18:19:33	AECE9E699CAC76DC993BB988652B5AD8	37144	----a-w-	C:\windows\Sysnative\drivers\aswKbd.sys
2016-01-30 16:54:20	7922583C802203A54CDD47D9ECF028F2	254976	----a-w-	C:\windows\Sysnative\drivers\windrvr6.sys
====== C:\windows\Tasks ======
2016-02-13 10:22:15	61180FAEDD2C2E12F1EEB26D93DA6C96	3054	----a-w-	C:\windows\Sysnative\Tasks\SafeZone scheduled Autoupdate 1455358918
2016-02-13 10:21:55	A4356AB58939A35A928E8156E4F3B0CC	3878	----a-w-	C:\windows\Sysnative\Tasks\Adobe Flash Player Updater
2016-02-13 10:21:55	656253AABFCCA1EE4F4CC222D4DFB8CA	940	----a-w-	C:\windows\Tasks\Adobe Flash Player Updater.job
====== C:\windows\Temp ======
======= C:\Program Files =====
2016-01-30 16:56:55	--------	d-----w-	C:\Program Files\Garmin
======= C:\PROGRA~2 =====
2016-02-21 10:12:38	--------	d-----w-	C:\PROGRA~2\TacxFortius
2016-01-30 16:51:12	--------	d-----w-	C:\PROGRA~2\Tacx
2016-01-30 16:50:00	--------	d-----w-	C:\PROGRA~2\ffdshow
2016-01-30 16:48:56	--------	d-----w-	C:\PROGRA~2\Microsoft XNA
======= C: =====
====== C:\Users\Rudi\AppData\Roaming ======
2016-02-21 20:18:37	F832B9CFAA1038822A9F0C82BEC73DBF	239040	----a-w-	C:\windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2016-02-21 10:20:18	807616058A2EFF1259EEF7718DF86DEA	92	----a-w-	C:\Users\Rudi\AppData\Local\fusioncache.dat
2016-02-21 10:20:18	--------	d-----w-	C:\Users\Rudi\AppData\Local\ApplicationHistory
2016-02-21 09:43:21	--------	d-----w-	C:\Users\Rudi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-02-20 08:55:21	--------	d-----w-	C:\Users\Rudi\AppData\Local\Shalsoft
====== C:\Users\Rudi ======
2016-02-21 19:38:12	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rudi\Downloads\RSITx64(1).exe
2016-02-21 10:12:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tacx Fortius
2016-02-20 08:54:41	B9743BC8AE47D77793F8DB7BAD2B2C42	11771720	----a-w-	C:\Users\Rudi\Downloads\setup_gigatribe_v3.04.013.6884.exe
2016-01-30 16:54:22	--------	d-----w-	C:\ProgramData\Tacx
2016-01-30 16:51:12	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tacx Trainer software 3
2016-01-30 16:50:01	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2016-01-30 16:29:34	--------	d-----w-	C:\ProgramData\Ant

====== C: exe-files ==
2016-02-21 10:18:19	FC30D8B4B1C3768CCE93853FF26BBE76	37594	----a-w-	C:\Program Files (x86)\ffdshow\uninstall.exe
2016-02-21 10:12:58	5A8DAE35341E9DC4E0ADB5D2BBBD0D19	266240	----a-w-	C:\Program Files (x86)\TacxFortius\updater\TacxUpdate.exe
2016-02-21 10:12:57	D7FE3A76B8CBE55AA5B61942FED04DDD	856064	----a-w-	C:\Program Files (x86)\TacxFortius\registration\TacxRegistration.exe
2016-02-21 10:12:57	B12CE095BCF84F981B27C03C9ADD45BC	286720	----a-w-	C:\Program Files (x86)\TacxFortius\catalyst\Catalyst_Fortius.exe
2016-02-21 10:12:44	83E568ACBDB47A4CB3C79EEE53D2D6AE	1305600	----a-w-	C:\Program Files (x86)\TacxFortius\analyser\analyser.exe
2016-02-21 10:12:42	5A3533D2CE37BC3355075CD199BA862B	389120	----a-w-	C:\Program Files (x86)\TacxFortius\Fortius.exe
2016-02-21 10:12:38	753AA364290A2FD3C7CD3B9D64C11910	81920	----a-w-	C:\Program Files (x86)\TacxFortius\executor.exe
2016-02-21 10:12:37	DD11E8FED01AC201C24C7DF5F786ADF5	116688	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{D2BAFC44-D10B-401E-B744-808CAA85E886}\setup.exe
2016-02-21 10:11:41	9B4533452349CB8F2F111682C8D640A7	5632	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\DotNetInstaller.exe
2016-02-21 09:41:44	AE0A0D869F0AA3D790FB40BF1673C237	70766040	----a-w-	C:\Users\Rudi\AppData\Local\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\3.14.7\DropboxClient_3.14.7.exe
2016-02-20 08:22:34	45AB0193BCF8693503AF810B1E60D7FE	879512	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.116\48.0.2564.116_48.0.2564.109_chrome_updater.exe
=== C: other files ==
2016-02-21 09:43:16	C328AF98CA42AD89E948E31FA0F4BC74	58480	----a-w-	C:\Users\Rudi\AppData\Roaming\Dropbox\bin\driver_amd64\dbx.sys
2016-02-21 09:43:16	5E7989A23ADB365A2B5F69CB55DE5A1E	48752	----a-w-	C:\Users\Rudi\AppData\Roaming\Dropbox\bin\driver_x86\dbx.sys

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted
avastBCLRestartS-1-5-21-1745162922-1544886962-622675663-1002 deleted
HPCeeScheduleForRUDI-HP$ deleted
NCH Software\ExpressZipDowngrade deleted
NCH Software\ExpressZipReminder deleted

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1745162922-1544886962-622675663-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"="C:\Users\Rudi\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"File Sanitizer"="C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"HP HD Webcam [Fixed]_Monitor"="C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe"
"HPConnectionManager"="c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"HPQuickWebProxy"="c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"IFXSPMGT"="c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe /NotifyLogon"
"Desktop Disc Tool"="C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
"QLBController"="C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"lxdxmon.exe"="C:\Program Files (x86) (x86)\Lexmark 3600-4600 Series\lxdxmon.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"="C:\Users\Rudi\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden"
"Broadcom Wireless Manager UI"="C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe"
"IgfxTray"="C:\windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\windows\system32\hkcmd.exe"
"Persistence"="C:\windows\system32\igfxpers.exe"
"Cm106Sound"="C:\windows\syswow64\RunDll32.exe C:\windows\Syswow64\cm106.dll,CMICtrlWnd"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BrMfcWnd]
"command"="C:\\Program Files (x86)\\Brother\\Brmfcmon\\BrMfcWnd.exe /AUTORUN"
"hkey"="HKLM"
"item"="BrMfcWnd"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ControlCenter3]
"command"="C:\\Program Files (x86)\\Brother\\ControlCenter3\\brctrcen.exe /autorun"
"hkey"="HKLM"
"item"="ControlCenter3"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EzPrint]
"command"="\"C:\\Program Files (x86)\\Lexmark 3600-4600 Series\\ezprint.exe\""
"hkey"="HKLM"
"item"="EzPrint"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Garmin Lifetime Updater]
"command"="C:\\Program Files (x86)\\Garmin\\Lifetime Updater\\GarminLifetime.exe /StartMinimized"
"hkey"="HKLM"
"item"="Garmin Lifetime Updater"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"hkey"="HKLM"
"item"="iTunesHelper"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\lxdxmon.exe]
"command"="\"C:\\Program Files (x86)\\Lexmark 3600-4600 Series\\lxdxmon.exe\""
"hkey"="HKLM"
"item"="lxdxmon.exe"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MfeEpePcMonitor]
"command"="\"C:\\Program Files\\Hewlett-Packard\\Drive Encryption\\EpePcMonitor.exe\""
"hkey"="HKLM"
"item"="MfeEpePcMonitor"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PDF Complete]
"command"="C:\\Program Files (x86)\\PDF Complete\\pdfsty.exe"
"hkey"="HKLM"
"item"="PDF Complete"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinampAgent]
"command"="\"C:\\Program Files (x86)\\Winamp\\winampa.exe\""
"hkey"="HKLM"
"item"="WinampAgent"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^mw310.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\mw310.lnk"
"backup"="C:\\windows\\pss\\mw310.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Mw310\\mw310.exe "
"item"="mw310"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Rudi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
"path"="C:\\Users\\Rudi\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\LimeWire On Startup.lnk"
"backup"="C:\\windows\\pss\\LimeWire On Startup.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\LimeWire\\LimeWire.exe -startup"
"item"="LimeWire On Startup"


==== Startup Folders ======================

2015-11-15 09:12:51	1135	----a-w-	C:\Users\Rudi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2014-02-23 16:25:27	1193	----a-w-	C:\Users\Rudi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IconRestorer.lnk

==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13/02/2016 11:21]
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-1745162922-1544886962-622675663-1002Core.job --a------ C:\Users\Rudi\AppData\LoC:al\Dropbox\Update\DropboxUpdate.exe []
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-1745162922-1544886962-622675663-1002UA.job --a------ [Undetermined Task]
C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2015 18:53]
C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31/08/2015 18:53]
C:\windows\tasks\HPCeeScheduleForRudi.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [14/09/2010 07:15]
C:\windows\tasks\SyncBack afbeeldingen.job --a------ C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe [08/11/2010 14:42]
C:\windows\tasks\SyncBack cad tekeningen prive.job --a------ C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe [08/11/2010 14:42]
C:\windows\tasks\SyncBack documenten.job --a------ C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe [08/11/2010 14:42]
C:\windows\tasks\SyncBack muziek.job --a------ C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe [08/11/2010 14:42]

==== Other Scheduled Tasks ======================

"C:\windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1745162922-1544886962-622675663-1002Core" [C:\Users\Rudi\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-1745162922-1544886962-622675663-1002UA" [C:\Users\Rudi\AppData\Local\Dropbox\Update\DropboxUpdate.exe]
"C:\windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe]
"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\windows\SysNative\tasks\HPCeeScheduleForRudi" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\windows\SysNative\tasks\Installation App Launcher" ["C:\Program Files (x86)\Lexmark 3600-4600 Series\ezprint.exe"]
"C:\windows\SysNative\tasks\SafeZone scheduled Autoupdate 1455358918" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe]
"C:\windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\windows\SysNative\tasks\SyncBack afbeeldingen" [C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe]
"C:\windows\SysNative\tasks\SyncBack documenten" [C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe]
"C:\windows\SysNative\tasks\{7BF626DE-ABBF-4FB6-A554-EA9B8F99D048}" [G:\setup.exe]
"C:\windows\SysNative\tasks\{F24F93F2-E18D-4D77-86D4-BA0E7961B095}" [G:\setup.exe]
"C:\windows\SysNative\tasks\AVAST Software\Avast settings backup" [C:\Program Files\Common Files\AV\avast Antivirus\backup.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\i3e0fsb9.default
user_pref("browser.startup.homepage", "http://www.google.be/");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [10/02/2016 19:17]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [10/02/2016 19:17]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\i3e0fsb9.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\i3e0fsb9.default
6FE651F6E3025AD51CC1D54913AEEADC	- C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll -	Shockwave Flash


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[10/02/2016 19:13]

Google Slides - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Avast Online Security - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rudi\AppData\Local\Google\Chrome\User Data\default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Extended Protection - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo
Gmail - C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} - http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Wow6432Node\SearchScopes\{ec29edf6-ad3c-4e1c-a087-d6cb81400c43} - http://www.bing.com/search?q={searchTerms}&form=CMNTDF&pc=CMNTDF&src=IE-SearchBox
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} - http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={sear
HKCU\SearchScopes\{D3DE1737-CF6F-451E-8365-CED37FBDB058} - http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
HKCU\Wow6432Node\SearchScopes "DefaultScope"=""
HKCU\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater deleted successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Rudi\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rudi\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rudi\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Rudi\AppData\Local\Mozilla\Firefox\Profiles\i3e0fsb9.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\default\Cache emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=315 folders=31 408524146 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Rudi\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Rudi\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Rudi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ma 22/02/2016 at 20:35:35,45 ======================