Zoek.exe Version 4.0.0.5 Updated 17-October-2013
Tool run by marieke on ma 21/10/2013 at 19:20:38,74.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\marieke\AppData\Local\Temp\Rar$EXa0.557\zoek.exe [Script inserted] 

==== System Restore Info ======================

21/10/2013 19:21:35 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\ProgramData\Oracle deleted successfully
C:\Users\marieke\AppData\Roaming\Opera deleted successfully
C:\Users\marieke\AppData\Roaming\Vso deleted successfully
C:\Users\marieke\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\marieke\AppData\Local\MigWiz deleted successfully
C:\Users\marieke\AppData\Local\Opera deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2464107285-1286796822-690490645-1001\Software\Microsoft\Internet Explorer\SearchScopes\{ECE4CDE4-0E46-4842-84FB-F9B65AE6CBCB} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2464107285-1286796822-690490645-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{1392B8D2-5C05-419F-A8F6-B9F15A596612} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\fbphotozoom@installdaddy.com deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\extensions deleted
C:\ProgramData\InstallMate deleted
C:\Users\marieke\AppData\LocalLow\DataMngr deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\marieke\AppData\Local\Temp ====
2013-10-21 14:12:22	517E8A54CE4C48912D33D21BD60F4D90	1724800	----a-w-	C:\Users\marieke\AppData\Local\Temp\8a3bd13b-1a2f-46d0-866c-e00ea55db73d.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2013-10-21 12:08:30	9223A2810B73069F4A03A636052EF14A	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2013-10-21 12:08:25	DC1342498BEE7EF1646E9D63138B69CC	175016	----a-w-	C:\Windows\SysWOW64\javaw.exe
2013-10-21 12:08:25	9B0B14B405E0EDF76B5F5E31A49EB753	96168	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-21 12:08:25	658633D255FEF154EA1CB8705B4468C5	174504	----a-w-	C:\Windows\SysWOW64\java.exe
2013-10-20 08:42:55	5E775F0C365F01A8A7382BBEFC4A53A5	391168	----a-w-	C:\Windows\SysWOW64\ieui.dll
2013-10-20 08:42:55	351B1A5B8A02A59DD29D122B0D231FA6	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2013-10-20 08:42:53	BE8F3297A0BC3D3E3B66D9A45F64F0B9	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2013-10-20 08:42:53	6E9013E3D112E26A42EC057CAE990649	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2013-10-20 08:42:53	58A43D9DFFF91C1457EC47BDCF969B59	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-20 08:42:53	556F70EDECE99CCD64C7D8897F3264F4	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2013-10-20 08:42:52	122B216B091D06F672CC8D331128FB06	2048512	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2013-10-20 08:42:51	883C0D3A22CE87A3203CD5518EBB5758	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2013-10-20 08:42:50	E02C01EB0ED522327AFF3BE5CBCF6017	690688	----a-w-	C:\Windows\SysWOW64\jscript.dll
2013-10-20 08:42:49	5A847E98EAF032928E67EE52DE08952D	2876928	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2013-10-20 08:42:48	61DC3F2BE3093FE22CD717260946D7AD	1141248	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2013-10-20 08:42:46	E4FEB264B47360B7296AEA4E052F88D8	1767936	----a-w-	C:\Windows\SysWOW64\wininet.dll
2013-10-20 08:42:46	DC7DB5BC0E2D135103730E08FE1C540D	39424	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2013-10-20 08:42:45	8F5EAAF76A6811332A8C67DB0D4C395F	13761024	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2013-10-20 08:42:40	A7221924181C8EB92B64C5A2D888BEA5	14335488	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2013-10-19 12:28:51	CC23295DA8F7B5C53F93804D2F5D30EB	25600	----a-w-	C:\Windows\SysWOW64\lpk.dll
2013-10-19 12:28:51	8CC4638FA7B5B921B9080CF962582C0B	70656	----a-w-	C:\Windows\SysWOW64\fontsub.dll
2013-10-19 12:28:51	7D27E63B54DB093BB0D9E95F81094D75	34304	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2013-10-19 12:28:51	5C6B44F9CAAC475B7B9EBBC29CB7F065	295424	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2013-10-19 12:28:51	2342EC9254F4C60CA98441BD65C89E12	10240	----a-w-	C:\Windows\SysWOW64\dciman32.dll
2013-10-19 12:28:49	75F5E1FE8D55CF8E577E0EC5F2290D3F	530432	----a-w-	C:\Windows\SysWOW64\comctl32.dll
2013-10-19 12:28:41	75E8EBD7040CE238684333F97014762A	205824	----a-w-	C:\Windows\SysWOW64\WebClnt.dll
2013-10-19 12:28:40	EAF4712B706936C0B10D3B5319B37E81	81920	----a-w-	C:\Windows\SysWOW64\davclnt.dll
2013-10-19 12:28:37	482C8CD985C727C7C78A5E9B320947F0	3969472	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-19 12:28:36	813A7F5A2D6D366EB3FFB643B851BCE5	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-19 12:28:35	A2B0924D50F4435FD389499047CE553A	1292192	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2013-10-19 12:28:35	401D25136E26B237D77DA1BF1198B3BD	619520	----a-w-	C:\Windows\SysWOW64\tdh.dll
2013-10-19 12:28:34	DEE3A05EB88EAFE9C5FF9643676ECC60	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2013-10-19 12:28:34	DA1340AC8B22D0719F47222C8D508393	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2013-10-19 12:28:34	D67472125471784DE7147946EDA25FEB	640512	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2013-10-19 12:28:34	D37B27C1F5FE8CFFCCA80FFD4F91149B	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2013-10-19 12:28:34	8C3D064E7B7C0F3685A441A37A93C5D1	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2013-10-19 12:28:34	5244D544B022E70881794563D657B5EF	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2013-10-19 12:28:29	E94C583CDE2348950155F2AF2876F34D	231424	----a-w-	C:\Windows\SysWOW64\mswsock.dll
2013-10-19 12:28:21	2A01B40C8334A8124001CFAC256FCA83	102608	----a-w-	C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-19 12:28:20	5B2E4E90C04FB9AE9F2C5E99FF59B283	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-19 12:17:31	AE8EB083B050E17A7D6EB5E28AECDDD6	1166848	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2013-10-19 12:17:30	7CA1BECEA5DE2643ADDAD32670E7A4C9	140288	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2013-10-19 12:17:30	7B851A8018B1EA00A69707A390004884	103936	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2013-10-19 12:17:30	68EAAEDF0365168B804E8728368FA946	175104	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2013-10-19 12:16:13	E904178851A6A44BFA97E064EF779E9D	1796096	----a-w-	C:\Windows\SysWOW64\authui.dll
2013-10-19 12:14:51	D5E18BA95F9E7D787D25EF07AC68603E	2048	----a-w-	C:\Windows\SysWOW64\tzres.dll
2013-10-19 12:13:11	365A5034093AD9E04F433046C4CDF6AB	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2013-10-19 12:13:10	1B7343C3765638D4D17CB925F84F8ABE	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2013-10-19 12:13:05	812A161FC470FA832C3F0CC3D7ACA2F9	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2013-10-19 12:12:51	4DC999CED9429939D75682EBD7D48901	663552	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2013-10-19 12:11:05	674EB817CF6E43B7DF3EC26E06E98D98	509440	----a-w-	C:\Windows\SysWOW64\qedit.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-10-20 08:42:55	990235D752A40F5F8243ED537FAB2035	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2013-10-20 08:42:54	991A9D6B797B4D7E9EB29BE1FB4B1D28	526336	----a-w-	C:\Windows\Sysnative\ieui.dll
2013-10-20 08:42:53	C4DDAC3F3062739C4C2BB759B36E005D	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2013-10-20 08:42:53	A80B91A93EDFFDE3DD2646D6E4CDDC44	67072	----a-w-	C:\Windows\Sysnative\iesetup.dll
2013-10-20 08:42:53	742B2C69643527763E162C0BA923D086	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2013-10-20 08:42:53	4163195B6D07D3434BDEA78C293B7E0E	89600	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2013-10-20 08:42:53	38CFAC1BAFEBC8B0AF8A22093803D38E	39936	----a-w-	C:\Windows\Sysnative\iernonce.dll
2013-10-20 08:42:52	199BD40B1890E1EEFF7438B59787534F	2647552	----a-w-	C:\Windows\Sysnative\iertutil.dll
2013-10-20 08:42:50	7B4E06047031B2AAA4AE10F00C59BFC7	855552	----a-w-	C:\Windows\Sysnative\jscript.dll
2013-10-20 08:42:50	214E39F0A8E382F1889B26B46DE0AF81	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2013-10-20 08:42:49	D383602755758FA81166B0FD8AFE6D40	3959296	----a-w-	C:\Windows\Sysnative\jscript9.dll
2013-10-20 08:42:48	882AC0DD997CFC90FBB468D698BD55C6	1365504	----a-w-	C:\Windows\Sysnative\urlmon.dll
2013-10-20 08:42:46	16A3E229F60FA4B05573A0937AB3C3CB	53248	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2013-10-20 08:42:45	D28B35DE88D27EFB27DF4B1E8319E3C0	2241024	----a-w-	C:\Windows\Sysnative\wininet.dll
2013-10-20 08:42:44	CCDB8FDC289AA9AFA5F8827A2ADB21AD	15404544	----a-w-	C:\Windows\Sysnative\ieframe.dll
2013-10-20 08:42:42	F026C6F104758D0EB215B017016FAE27	19252224	----a-w-	C:\Windows\Sysnative\mshtml.dll
2013-10-19 12:28:52	E1BB958681BE311E7CFF06CFEC5F1F2B	368128	----a-w-	C:\Windows\Sysnative\atmfd.dll
2013-10-19 12:28:51	D6BAE9B4B210D71CDDADC224CEFCDB5F	100864	----a-w-	C:\Windows\Sysnative\fontsub.dll
2013-10-19 12:28:51	A5ED9421B8D09ED4F57CDA386307713E	14336	----a-w-	C:\Windows\Sysnative\dciman32.dll
2013-10-19 12:28:51	796B47A4B82EF1C39F13435B88834C48	41472	----a-w-	C:\Windows\Sysnative\lpk.dll
2013-10-19 12:28:51	142671F462619CB64BA74F5B70136CB4	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2013-10-19 12:28:49	9028D1621C43DF8DFBD1C76860412A11	633856	----a-w-	C:\Windows\Sysnative\comctl32.dll
2013-10-19 12:28:41	0EB0E5D22B1760F2DBCE632F2DD7A54D	259584	----a-w-	C:\Windows\Sysnative\WebClnt.dll
2013-10-19 12:28:40	B32AB94A432289AC2DF77A3DCAD32EED	102400	----a-w-	C:\Windows\Sysnative\davclnt.dll
2013-10-19 12:28:37	5B9A6A310326D9C438F2C19FBBE97C97	5549504	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2013-10-19 12:28:36	CAAAC014C5C56A69F710B5F1B836DE22	1732032	----a-w-	C:\Windows\Sysnative\ntdll.dll
2013-10-19 12:28:36	63A580C88CFAF72A92550940054569EF	878080	----a-w-	C:\Windows\Sysnative\advapi32.dll
2013-10-19 12:28:35	A3FCC4F97551087D65F8FEE879FEF736	859648	----a-w-	C:\Windows\Sysnative\tdh.dll
2013-10-19 12:28:35	70833F5A59F65908698093889C34BCA2	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2013-10-19 12:28:31	19320B121BFE7462EADD50A42C81AFD0	3155968	----a-w-	C:\Windows\Sysnative\win32k.sys
2013-10-19 12:28:30	9A9F9F1A77D6A80EE28B57664F00013E	327168	----a-w-	C:\Windows\Sysnative\mswsock.dll
2013-10-19 12:28:21	764DF431D13537A575752009E7740F18	124112	----a-w-	C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2013-10-19 12:28:20	3D7BB6DD7A87B3E36E44CA94444247A8	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2013-10-19 12:27:26	56661BB55AE4633677F846FFCD080ECA	461312	----a-w-	C:\Windows\Sysnative\scavengeui.dll
2013-10-19 12:17:41	943F527DF79E6B400104341AA7023C75	144384	----a-w-	C:\Windows\Sysnative\cdd.dll
2013-10-19 12:17:31	287998A9BA0140ABB59792CDEB2F8483	1472512	----a-w-	C:\Windows\Sysnative\crypt32.dll
2013-10-19 12:17:30	A6B726DCA228F7878E38368A1BDC68BE	139776	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2013-10-19 12:17:30	959041D7014C97133D859B45BCA0FC58	224256	----a-w-	C:\Windows\Sysnative\wintrust.dll
2013-10-19 12:17:30	6B400F211BEE880A37A1ED0368776BF4	184320	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2013-10-19 12:16:14	3EF480BFED1B5947A32585E30A58D4ED	1930752	----a-w-	C:\Windows\Sysnative\authui.dll
2013-10-19 12:16:13	E948D1D42DC68923ABD75EEB5BCCD1D3	111448	----a-w-	C:\Windows\Sysnative\consent.exe
2013-10-19 12:16:13	9D2A2369AB4B08A4905FE72DB104498F	70144	----a-w-	C:\Windows\Sysnative\appinfo.dll
2013-10-19 12:14:51	B3CA3253009D26666F5BCB16E77D2618	2048	----a-w-	C:\Windows\Sysnative\tzres.dll
2013-10-19 12:13:11	D8973E71F1B35CD3F3DEA7C12D49D0F0	1161216	----a-w-	C:\Windows\Sysnative\kernel32.dll
2013-10-19 12:13:11	B22C00ED0491FD7B8803D7DDE2849F4C	424448	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2013-10-19 12:13:10	F0970A4BC8395659C22BF53D0FADF16F	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2013-10-19 12:13:10	BF95EA5809E3BBF55370F7CB309FEBD0	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2013-10-19 12:13:10	88EDD0B34EED542745931E581AD21A32	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2013-10-19 12:13:10	216BABD555BC550952320EEA89C25DDF	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2013-10-19 12:13:05	70A1D465390C393AA118D9764E065B06	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2013-10-19 12:12:51	26036E228D2467DE6975AD819C22C043	1217024	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2013-10-19 12:11:05	A3EC566925BEC505E2418C1AC14E541E	624128	----a-w-	C:\Windows\Sysnative\qedit.dll
====== C:\Windows\Sysnative\drivers =====
2013-10-19 12:28:48	E2C933EDBC389386EBE6D2BA953F43D8	785624	----a-w-	C:\Windows\Sysnative\drivers\Wdf01000.sys
2013-10-19 12:28:47	80B0F7D5CCF86CEB5D402EAAF61FEC31	100864	----a-w-	C:\Windows\Sysnative\drivers\usbcir.sys
2013-10-19 12:28:47	1F775DA4CF1A3A1834207E975A72E9D7	185344	----a-w-	C:\Windows\Sysnative\drivers\usbvideo.sys
2013-10-19 12:28:42	856E76B3641746ABBC2946BED1372098	32896	----a-w-	C:\Windows\Sysnative\drivers\hidparse.sys
2013-10-19 12:28:42	597C3699384E53CC59587ED50CCE5CA2	76800	----a-w-	C:\Windows\Sysnative\drivers\hidclass.sys
2013-10-19 12:28:40	1A4F75E63C9FB84B85DFFC6B63FD5404	140800	----a-w-	C:\Windows\Sysnative\drivers\mrxdav.sys
2013-10-19 12:28:30	40AF23633D197905F03AB5628C558C51	1903552	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2013-10-19 12:28:30	314C17917AC8523EC77A710215012A65	497152	----a-w-	C:\Windows\Sysnative\drivers\afd.sys
2013-10-19 12:28:19	88612F1CE3BF42256913BF6E61C70D52	983488	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2013-10-19 12:17:41	1F04CFB79DD5FB7694468CE3FB3DCC31	265064	----a-w-	C:\Windows\Sysnative\drivers\dxgmms1.sys
2013-10-19 12:14:16	059F00DEF82BF41E433B7ED465847726	155584	----a-w-	C:\Windows\Sysnative\drivers\ataport.sys
====== C:\Windows\Tasks ======
2013-10-21 06:49:25	E5482AE00D244AC3F3A1A53C2298BD35	3354	----a-w-	C:\Windows\Sysnative\Tasks\RealUpgradeScheduledTaskS-1-5-21-2464107285-1286796822-690490645-1001
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-10-21 13:58:31	--------	d-----w-	C:\Program Files\Speccy
======= C:\PROGRA~2 =====
2013-10-21 13:59:45	--------	d-----w-	C:\PROGRA~2\Trend Micro
======= C: =====
====== C:\Users\marieke\AppData\Roaming ======
2013-10-21 14:28:10	--------	d-----w-	C:\Users\marieke\AppData\Roaming\LavasoftStatistics
2013-10-21 13:34:24	--------	d-----w-	C:\Users\Public\AppData\Local\temp
2013-10-21 13:34:24	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2013-10-21 13:34:24	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2013-10-20 14:06:32	--------	d-----w-	C:\Users\marieke\AppData\Local\Mozilla
2013-10-19 12:05:50	--------	d-----w-	C:\Users\marieke\AppData\Roaming\AVG2012
====== C:\Users\marieke ======
2013-10-21 14:12:21	--------	d-----w-	C:\ProgramData\Lavasoft
2013-10-21 14:12:13	232962B92722C301051AAD73DBD64CF1	1724552	----a-w-	C:\Users\marieke\Downloads\Adaware_Installer.exe
2013-10-21 13:49:45	A0E9A27B051ACEB918F7DBB88BBF3DB3	5552488	----a-w-	C:\Users\marieke\Downloads\spsetup123.exe
2013-10-21 11:57:05	8C27D71B2F6719136407C525ECF18D51	1060070	----a-w-	C:\Users\marieke\Downloads\adwcleaner.exe
2013-10-20 14:26:26	30D0AD41CC60C6A62277BB350A1EBE4E	4369632	----a-w-	C:\Users\marieke\Downloads\ccsetup406.exe
2013-10-20 14:04:23	E38CF6733D0EF7473C1E865CD39E2E1D	28183211	----a-w-	C:\Users\marieke\Downloads\tor-browser-2.3.25-13_nl.exe

====== C: exe-files ==
2013-10-21 14:12:22	517E8A54CE4C48912D33D21BD60F4D90	1724800	----a-w-	C:\Users\marieke\AppData\Local\Temp\8a3bd13b-1a2f-46d0-866c-e00ea55db73d.exe
2013-10-21 14:12:13	232962B92722C301051AAD73DBD64CF1	1724552	----a-w-	C:\Users\marieke\Downloads\Adaware_Installer.exe
2013-10-21 13:49:45	A0E9A27B051ACEB918F7DBB88BBF3DB3	5552488	----a-w-	C:\Users\marieke\Downloads\spsetup123.exe
2013-10-21 12:08:30	9223A2810B73069F4A03A636052EF14A	264616	----a-w-	C:\WINDOWS\SysWOW64\javaws.exe
2013-10-21 12:08:25	DC1342498BEE7EF1646E9D63138B69CC	175016	----a-w-	C:\WINDOWS\SysWOW64\javaw.exe
2013-10-21 12:08:25	658633D255FEF154EA1CB8705B4468C5	174504	----a-w-	C:\WINDOWS\SysWOW64\java.exe
2013-10-21 11:57:05	8C27D71B2F6719136407C525ECF18D51	1060070	----a-w-	C:\Users\marieke\Downloads\adwcleaner.exe
2013-10-20 14:26:26	30D0AD41CC60C6A62277BB350A1EBE4E	4369632	----a-w-	C:\Users\marieke\Downloads\ccsetup406.exe
2013-10-20 14:04:56	F262A7F33CA54D036DD2EFD3E28FEC96	150134	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\webapp-uninstaller.exe
2013-10-20 14:04:56	BC84190B4B37853B1E971E1B5C6BBF99	118784	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\webapprt-stub.exe
2013-10-20 14:04:55	F60083217D2BF8753FA0210838FED5FA	32782	----a-w-	C:\Users\marieke\Downloads\Tor Browser\Start Tor Browser.exe
2013-10-20 14:04:55	E8D38A8233EA558FCA389A1133F5B04B	2897432	----a-w-	C:\Users\marieke\Downloads\Tor Browser\App\tor.exe
2013-10-20 14:04:55	E576FDA74EE41C951AF549C401C01D99	932610	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\uninstall\helper.exe
2013-10-20 14:04:55	A41CCEBF4C81456024C6DD83B29BB078	303104	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\updater.exe
2013-10-20 14:04:55	993FB6585F37748BC64857B69D8BB741	10752	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\plugin-container.exe
2013-10-20 14:04:55	921A47B473A974B5C4DC8E29659815AB	228864	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\App\Firefox\tbb-firefox.exe
2013-10-20 14:04:55	66BA3032A29B09466408C69CB4190AB7	6239727	----a-w-	C:\Users\marieke\Downloads\Tor Browser\App\vidalia.exe
2013-10-20 14:04:23	E38CF6733D0EF7473C1E865CD39E2E1D	28183211	----a-w-	C:\Users\marieke\Downloads\tor-browser-2.3.25-13_nl.exe
2013-10-20 08:42:53	C4DDAC3F3062739C4C2BB759B36E005D	51712	----a-w-	C:\WINDOWS\System32\ie4uinit.exe
2013-10-20 08:42:53	58A43D9DFFF91C1457EC47BDCF969B59	71680	----a-w-	C:\WINDOWS\SysWOW64\RegisterIEPKEYs.exe
2013-10-20 08:42:53	4163195B6D07D3434BDEA78C293B7E0E	89600	----a-w-	C:\WINDOWS\System32\RegisterIEPKEYs.exe
2013-10-20 08:42:51	F6A7D9C0BC326F695526069C1DA1E8B7	775256	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2013-10-20 08:42:51	D6B7DDB68436F13C3CAE2B92524F1FEC	770648	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-10-20 07:52:36	98F98BCBF26FDD4A640608299F28E98E	9595744	----a-w-	C:\Users\marieke\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\30.0.1599.101\30.0.1599.101_29.0.1547.66_chrome_updater.exe
2013-10-20 07:47:16	CEFEBDB9E274BD90C12D131ED25CC819	59784	----atw-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleUpdateOnDemand.exe
2013-10-20 07:47:15	EB8EEB98D01B5D31898D8E53C3789832	59784	----atw-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleUpdateBroker.exe
2013-10-20 07:47:15	4AFFF5FE4E69C8E7C5F1E4F3511301CF	818968	----a-w-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleUpdateSetup.exe
2013-10-20 07:46:35	CF7B0E597C1F34E528285495721DEEE9	237960	----atw-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleCrashHandler.exe
2013-10-20 07:46:35	0DC0DE2966A6DBA4CFBF6639DF44F5BA	319880	----atw-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
2013-10-20 07:46:07	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Users\marieke\AppData\Local\Google\Update\1.3.21.165\GoogleUpdate.exe
2013-10-20 07:45:51	4AFFF5FE4E69C8E7C5F1E4F3511301CF	818968	----a-w-	C:\Users\marieke\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.165\GoogleUpdateSetup.exe
2013-10-19 12:28:37	5B9A6A310326D9C438F2C19FBBE97C97	5549504	----a-w-	C:\WINDOWS\System32\ntoskrnl.exe
2013-10-19 12:28:37	482C8CD985C727C7C78A5E9B320947F0	3969472	----a-w-	C:\WINDOWS\SysWOW64\ntkrnlpa.exe
2013-10-19 12:28:36	813A7F5A2D6D366EB3FFB643B851BCE5	3914176	----a-w-	C:\WINDOWS\SysWOW64\ntoskrnl.exe
2013-10-19 12:28:34	DA1340AC8B22D0719F47222C8D508393	25600	----a-w-	C:\WINDOWS\SysWOW64\setup16.exe
2013-10-19 12:28:34	8C3D064E7B7C0F3685A441A37A93C5D1	7680	----a-w-	C:\WINDOWS\SysWOW64\instnm.exe
2013-10-19 12:28:34	5244D544B022E70881794563D657B5EF	2048	----a-w-	C:\WINDOWS\SysWOW64\user.exe
2013-10-19 12:20:39	4B78E9AE06F7C310E30EE2FA5B7EBC3C	1721296	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\SearchWithGoogleUpdate_C993F490EED40C1B.exe
2013-10-19 12:20:33	6DD139BF3D3FEC03D7344FD9ABFB189B	401488	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_B8EC3A3F9520668F.exe
2013-10-19 12:20:28	BB4F6465EEB9ACAA5C60C36983740219	310352	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_4814EB429669E41D.exe
2013-10-19 12:20:23	B9D8842FF3EDAC918039C6F62F322E9A	1073232	----a-w-	C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_08875ABF44579E20.exe
2013-10-19 12:17:03	A30351F539D71D6199BD2295CC234E96	531424	----a-w-	C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.4601.54\GoogleToolbarInstaller_updater_signed.exe
2013-10-19 12:16:13	E948D1D42DC68923ABD75EEB5BCCD1D3	111448	----a-w-	C:\WINDOWS\System32\consent.exe
2013-10-19 12:13:10	F0970A4BC8395659C22BF53D0FADF16F	112640	----a-w-	C:\WINDOWS\System32\smss.exe
2013-10-19 12:13:10	BF95EA5809E3BBF55370F7CB309FEBD0	338432	----a-w-	C:\WINDOWS\System32\conhost.exe
2013-10-19 12:11:03	EB8EEB98D01B5D31898D8E53C3789832	59784	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleUpdateBroker.exe
2013-10-19 12:11:03	CEFEBDB9E274BD90C12D131ED25CC819	59784	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleUpdateOnDemand.exe
2013-10-19 12:11:01	4AFFF5FE4E69C8E7C5F1E4F3511301CF	818968	----a-w-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleUpdateSetup.exe
2013-10-19 12:02:50	0DC0DE2966A6DBA4CFBF6639DF44F5BA	319880	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
2013-10-19 12:02:39	CF7B0E597C1F34E528285495721DEEE9	237960	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
2013-10-19 12:02:10	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleUpdate.exe
2013-10-19 12:01:43	4AFFF5FE4E69C8E7C5F1E4F3511301CF	818968	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.165\GoogleUpdateSetup.exe
=== C: other files ==
2013-10-21 13:16:02	F6575EE1783025BD20FDC594140C2D52	30251	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\fc470dbb-846d-42d3-bb0a-6363a559f3fb.zip
2013-10-21 13:16:02	E658B2239B27BE8D0018F9D4BA90C077	30257	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\66858fdf-b35c-4b24-a074-915d56b3871b.zip
2013-10-21 13:16:02	CEFCE856096CA332D0AF40DF32E0455E	55319	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\2c784c13-702f-431e-a492-e9dddd757b25.zip
2013-10-21 13:16:02	2E73528FA28280B9BD710785EA83861A	30253	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\9d97f346-8efc-4e33-9c3b-3eef6c324e61.zip
2013-10-21 13:16:01	CFF89446D246E71165BD0D964E05A987	29471	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\f12de547-df4d-4236-9129-baac054f90ab.zip
2013-10-21 13:16:01	CBAAA56AF9B4B0AC2F42F85FD3952C85	29417	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\b96b7bbd-964e-47f1-9323-f48f460042bf.zip
2013-10-21 13:16:01	C59914636FF699060F2B71056021A8AB	28613	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\3cc3b539-b998-4728-8055-1201221a38d4.zip
2013-10-21 13:16:01	B2551B2D7CC0F7C26BF1A7C7D2179537	18355	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\b99be28c-ffd7-4136-9706-38ff86c43537.zip
2013-10-21 13:16:01	5CF995B78A1F504C8CF94B4BECD951DD	30276	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\aa7c4756-0f94-474f-8589-eb1b0e71c93b.zip
2013-10-21 13:16:01	20F8A80089AC14A0F62B9E3AA0C31A36	30429	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\f39d056b-fbf9-40c5-806d-7d93eacdc251.zip
2013-10-21 13:16:00	FEB0D19028A30D01A1A52E5B740AB778	30282	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\5ec8c7eb-8ac7-4252-bb47-87f22e27e4a9.zip
2013-10-21 13:16:00	E4C983A32667040A0908A702DDCEBA43	30282	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\ad245130-e9e2-4a7e-8912-a540560daf66.zip
2013-10-21 13:16:00	7CC909970FFBBA6FED958642948E616F	30437	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\646d4422-eb1f-4e32-8b16-f32fc711fbc0.zip
2013-10-21 13:16:00	6DE5AABFFA00DEBE079A57EA2E225A73	30444	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\3df85ce4-1732-4e9b-9fee-111cf95d7191.zip
2013-10-21 13:16:00	5C57867B635DAE4A3165284DECEB7BBD	30436	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\244ec244-34e7-4b04-85aa-c16ea08f2533.zip
2013-10-21 13:16:00	1B973D4E02DE159CC4751432495EF7FE	30443	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\0779eca6-695c-444d-8ef3-6621f5a112ee.zip
2013-10-21 13:15:59	3ACAD4508BB03F3178AE921177EC6EC0	13639	----a-w-	C:\ProgramData\PCDr\6280\AddOnDownloaderCache\zipped\2eccd5d6-e118-4f76-97b6-ba56fb6c597a.zip
2013-10-21 11:40:15	BCF0D691CA3F8AB62DFD81B57AF07281	552	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021113741-l[1].zip
2013-10-21 11:40:15	9B938102A07265F59633A8B0588F1C8C	342	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021113741-m[1].zip
2013-10-21 11:20:08	56D9ECAD41B95B8DBE7391D812BB300D	5281	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021110619-m[1].zip
2013-10-21 11:20:08	3587C5B3DE0F2CE760D627036578E792	1004	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021110619-l[1].zip
2013-10-21 10:39:56	F09D4C3D86756CD6B39103A604A206CD	206	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131021103507-l[1].zip
2013-10-21 10:39:56	00997C7047938BD7D06F139CD69BF8F9	280	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021103507-m[1].zip
2013-10-21 10:27:46	D28A53DE87492F3ABA8A8FFDB7026CD5	338	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021100345-m[1].zip
2013-10-21 10:27:46	99359E7A4AEBCD929A45740AD80093D0	955	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021100345-l[1].zip
2013-10-21 09:42:09	7EB26F75757D03E7BFFC4CEB131A590D	1425	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021093235-l[1].zip
2013-10-21 09:42:09	25292A0E58F431A3956F5131DE649B52	1646	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021093235-m[1].zip
2013-10-21 08:41:53	9F4144BC24CBF91C2C03A442CAD5673B	5490	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021083010-m[1].zip
2013-10-21 08:41:53	518FB9B545376CF1BCF4475A2CE19078	803	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021083010-l[1].zip
2013-10-21 07:57:41	EE6426DC7EEC4A4330F02728042880AF	3594	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131021072754-m[1].zip
2013-10-21 07:57:41	A4ACB852A7F93B0FF20F11B4A01E9FE3	2788	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021072754-l[1].zip
2013-10-21 07:00:14	E1FB1A1F0B1D091EAF950B9083DF35D1	3003283	----a-w-	C:\Users\marieke\Downloads\10-21-13-files.zip
2013-10-21 06:51:52	DC9E77DA7AC306DD1D65C76C36066FBE	1591	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131021052218-m[1].zip
2013-10-21 06:51:52	D7AECE8CC33131E54CB8FD364C08C1DF	3413	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021052218-l[1].zip
2013-10-21 06:51:52	4FDF29B407B83CB10B961A4FFA7649C8	373	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021062540-m[1].zip
2013-10-21 06:51:52	434889EA8F1A8D4E9ADFE1257B8D1BB4	1489	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021062540-l[1].zip
2013-10-21 06:51:51	EA6E0475EB6154474D85B930DEDF4606	794	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021031756-l[1].zip
2013-10-21 06:51:51	DD17BCA5913A1FC669BAEEFBFA67D6D5	466	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131021031756-m[1].zip
2013-10-21 06:51:51	9D6D1BDF2E914246AB817B244CD231C8	559	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021042013-m[1].zip
2013-10-21 06:51:51	5E44330B0C6EDE2DD8F932C5619A79EA	2444	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021042013-l[1].zip
2013-10-21 06:51:50	CFCA0F4193810F72FA25C2B7BCFB9DE6	922	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021001107-m[1].zip
2013-10-21 06:51:50	8BC4AC72DAC8C478CFF669C8D9D5BD72	706	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131021011323-l[1].zip
2013-10-21 06:51:50	579F868B9D142BF20CE8AD4FCC68FE71	1284	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131021021541-m[1].zip
2013-10-21 06:51:50	3957CB90C3F95F8649A57841C8C3C0A3	279	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131021011323-m[1].zip
2013-10-21 06:51:50	2E8AACA40DEA81B7A51E0CEBAD21D462	2522	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021021541-l[1].zip
2013-10-21 06:51:49	B627BEFF014E49AB585DCF30FC3BFBFA	1886	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020230851-l[1].zip
2013-10-21 06:51:49	507E720F071B83ACBC244C90EAC1FC5C	1754	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020220633-l[1].zip
2013-10-21 06:51:49	50497A64F0CFDCAA3A7A7FFDE4A38647	5149	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131021001107-l[1].zip
2013-10-21 06:51:49	43B5E9754FECBF9501F5472C9F0865E9	705	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020220633-m[1].zip
2013-10-21 06:51:49	1C914CA9201E9E9A68E913DB7842DF66	357	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020230851-m[1].zip
2013-10-21 06:51:48	5FC1997C79AB1943D77417B4FF5161FD	589	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020203249-l[1].zip
2013-10-21 06:51:48	306EED31D17823506EEE96F2FB069EEE	926	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020210412-m[1].zip
2013-10-21 06:51:48	20301003732024B88C12C74D8A3D53A1	809	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020203249-m[1].zip
2013-10-21 06:51:48	0DC74232E514BC603F914AE3FFC76176	997	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020210412-l[1].zip
2013-10-21 06:51:47	F2E40CC68CB51CD76E8007C5B1C99FE8	438	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020200139-m[1].zip
2013-10-21 06:51:47	A5CF6DE379DC182913D6C93A93D2A04E	387	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020200139-l[1].zip
2013-10-21 06:51:47	8507E6DFA5E6B9ED6C3619766FE5A3B1	1413	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020193019-m[1].zip
2013-10-21 06:51:47	4FD22F610C5739063830ADC944759CF2	671	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020193019-l[1].zip
2013-10-20 19:22:49	78005C256E4C811E71F5702F9C767FC4	270	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020185910-l[1].zip
2013-10-20 19:22:49	493B36A0EB8A94029F110A44746B0D65	387	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020185910-m[1].zip
2013-10-20 18:42:36	B0B0EB4813C6076A6D57C17CB3631801	302	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020182750-m[1].zip
2013-10-20 18:42:36	AD1CD4C76906B9E17909CC1F2FD739CA	725	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020182750-l[1].zip
2013-10-20 18:11:15	5699558046BA96EFF75A58B7ECF912AD	534870	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\Data\profile\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
2013-10-20 18:05:25	A9A496151C3A73ADE947BAC4D50787C8	264	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020175638-m[1].zip
2013-10-20 18:05:24	FDFAC8D540DE955F258B86FD3BB20A49	498	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020165407-m[1].zip
2013-10-20 18:05:24	F4AE5E44BCAD6EDBF00912F80A117373	1409	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020165407-l[1].zip
2013-10-20 18:05:24	BCB04BC3F5B190C1A4A45DA319B05AFF	546	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020172517-l[1].zip
2013-10-20 18:05:24	83EC6FB36D9910A95E8DF8AE0CA3FA41	1724	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020175638-l[1].zip
2013-10-20 18:05:24	0FE93106CE9D23267719225A214D9E07	1023	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020172517-m[1].zip
2013-10-20 18:05:23	DA2B10351F8628D367211D6BD0557F6F	1368	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020155134-l[1].zip
2013-10-20 18:05:23	82285B0F8871370F56FBDC62FDDBC489	364	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28U1HVX\131020155134-m[1].zip
2013-10-20 18:05:23	0C14441D6D2E7DB7A828E4174482DA6A	492	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020162247-l[1].zip
2013-10-20 18:05:23	01B9DE378348E146EE1235A43727A368	549	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020162247-m[1].zip
2013-10-20 18:05:22	D6372D68AEC5526837C44C1E065D1C65	378	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020151959-m[1].zip
2013-10-20 18:05:22	C097F23FBD38A7DB3DE0D6FA3FA27A02	708	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VZCWNZ0S\131020151959-l[1].zip
2013-10-20 18:05:22	6DA24032977A620763B317E5D8B2E4DE	164	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1RG4M7OJ\131020144915-m[1].zip
2013-10-20 18:05:22	1F6B81C41E01B1AA4BE15EFAD3064AC3	998	----a-w-	C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDKP37R\131020144915-l[1].zip
2013-10-20 14:04:52	3D83AB43DDE0BDED4D820CBC8EEE0C66	840895	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\Data\profile\extensions\torbutton@torproject.org.xpi
2013-10-20 14:04:52	0D0A266521BCAC73E7AEAAD89D7A664D	311975	----a-w-	C:\Users\marieke\Downloads\Tor Browser\FirefoxPortable\Data\profile\extensions\langpack-nl@firefox.mozilla.org.xpi
2013-10-19 12:28:48	E2C933EDBC389386EBE6D2BA953F43D8	785624	----a-w-	C:\WINDOWS\System32\drivers\Wdf01000.sys
2013-10-19 12:28:47	80B0F7D5CCF86CEB5D402EAAF61FEC31	100864	----a-w-	C:\WINDOWS\System32\drivers\usbcir.sys
2013-10-19 12:28:47	1F775DA4CF1A3A1834207E975A72E9D7	185344	----a-w-	C:\WINDOWS\System32\drivers\usbvideo.sys
2013-10-19 12:28:42	856E76B3641746ABBC2946BED1372098	32896	----a-w-	C:\WINDOWS\System32\drivers\hidparse.sys
2013-10-19 12:28:42	597C3699384E53CC59587ED50CCE5CA2	76800	----a-w-	C:\WINDOWS\System32\drivers\hidclass.sys
2013-10-19 12:28:40	1A4F75E63C9FB84B85DFFC6B63FD5404	140800	----a-w-	C:\WINDOWS\System32\drivers\mrxdav.sys
2013-10-19 12:28:31	19320B121BFE7462EADD50A42C81AFD0	3155968	----a-w-	C:\WINDOWS\System32\win32k.sys
2013-10-19 12:28:30	40AF23633D197905F03AB5628C558C51	1903552	----a-w-	C:\WINDOWS\System32\drivers\tcpip.sys
2013-10-19 12:28:30	314C17917AC8523EC77A710215012A65	497152	----a-w-	C:\WINDOWS\System32\drivers\afd.sys
2013-10-19 12:28:19	88612F1CE3BF42256913BF6E61C70D52	983488	----a-w-	C:\WINDOWS\System32\drivers\dxgkrnl.sys
2013-10-19 12:17:41	1F04CFB79DD5FB7694468CE3FB3DCC31	265064	----a-w-	C:\WINDOWS\System32\drivers\dxgmms1.sys
2013-10-19 12:14:16	059F00DEF82BF41E433B7ED465847726	155584	----a-w-	C:\WINDOWS\System32\drivers\ataport.sys

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{0153E448-190B-4987-BDE1-F256CADA672F}"="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext" [17/10/2012 19:16]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\marieke\AppData\Local\Temp\crx3BD2.tmp[]
jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[17/10/2012 19:16]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[13/08/2012 13:34]
mpieaakhacmfleokhjcjnpcnmnmpfkid - C:\Program Files (x86)\fbphotozoom\fbphotozoom13.crx[]
ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\marieke\AppData\Local\Temp\crxE8A6.tmp[]
nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12/12/2011 15:13]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Users\marieke\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx[22/10/2012 09:00]

Show the YouTube Channel bar or the name. - marieke - Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn
Last updated at time on date - marieke - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Treasure Chest Radio: Studio Brussel - marieke - Default\Extensions\cjdpclkefmglkgkhdmbnaoiipcjbboki
Pixlr-o-matic - marieke - Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj
Gmail Offline - marieke - Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk
Stripmaker - marieke - Default\Extensions\ggmddjpbkbinlbfdamainmdbfagapilg
Quotes Book - marieke - Default\Extensions\ibfjeadhjbcepmknoanimdbemlobmlpe
Boomerang for Gmail - marieke - Default\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll
Click 2 Save - marieke - Default\Extensions\naancamjaaepbbjipfphahfkahmiaeoe
Card number - marieke - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
DivX Plus Web Player HTML5 \u003Cvideo\u003E - marieke - Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm
night tochpc - marieke - Default\Extensions\pjmhomfflfeomeelinjbpnmomlllilom
Uno - marieke - Default\Extensions\plnlcclaocpblfckpfgmpdfndodkofpo

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{2877A654-1C9F-4cb5-8438-16022B2FDD9C} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}&rlz="
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\marieke\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\marieke\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mpieaakhacmfleokhjcjnpcnmnmpfkid deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Freecorder FLV Service deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\marieke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\marieke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\marieke\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\marieke\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 21/10/2013 at 19:37:17,66 ======================