
Zoek.exe v5.0.0.0 Updated 18-March-2015
Tool run by Anne on do 19-03-2015 at  9:10:02,62.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Anne\Downloads\zoek (7).exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2014-09-13-175807.log	78613 bytes
C:\zoek-results2014-11-16-124839.log	39559 bytes

==== Empty Folders Check ======================

C:\Program Files\CEWEFOTOBOEK deleted successfully
C:\Users\Administrator\AppData\Local\Comodo deleted successfully
C:\Users\Administrator\AppData\Local\Google deleted successfully
C:\Users\Anne\AppData\Local\Comodo deleted successfully
C:\Users\Gast\AppData\Local\Comodo deleted successfully
C:\Users\Gast\AppData\Local\Google deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\f987904a deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdatem deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"SoftonicAssistant"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\Program Files\CEWEFOTOBOEK not found
c:\progra~2\intere~1 not found
C:\Program Files\StatMaker deleted
C:\Users\Anne\AppData\Roaming\mystartsearch deleted
C:\Users\Anne\AppData\Local\SoftonicAssistant deleted
C:\ProgramData\Red AdBlocker deleted
C:\Users\Anne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\pak_van_mijn_hart_2014_dvdrip_nl_gesproken_dutchreleaseteam.lnk deleted
C:\Program Files\STab deleted
C:\Program Files\Wajam deleted
C:\Users\Anne\AppData\Roaming\appdataFr3.bin deleted
C:\Users\Anne\AppData\Roaming\IHlpr deleted
C:\Users\Anne\AppData\Roaming\pcouffin.log deleted
C:\Users\Anne\AppData\Roaming\Rim.Desktop.Exception.log deleted
C:\Users\Anne\AppData\Roaming\Rim.Desktop.HttpServerSetup.log deleted
C:\Users\Anne\AppData\Roaming\Rim.DesktopHelper.Exception.log deleted
C:\Users\Anne\AppData\Roaming\OpenCandy deleted
C:\PROGRA~2\IHProtectUpDate deleted
C:\PROGRA~2\WindowsMangerProtect deleted
C:\Users\Anne\AppData\Local\av.log deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidPlaya deleted
C:\Users\Anne\Downloads\SoftonicDownloader_for_gom-media-player.exe deleted
C:\Windows\system32\config\systemprofile\Searches deleted
"C:\ProgramData\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\pak_van_mijn_hart_2014_dvdrip_nl_gesproken_dutchreleaseteam.exe" deleted
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\32f47efc18b9a7fb" not deleted
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\ff09d8a93f6d402f" not deleted
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\pak_van_mijn_hart_2014_dvdrip_nl_gesproken_dutchreleaseteam.exe" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Dropbox.exe" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\icudt52.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\icuin52.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\icuuc52.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\libEGL.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\libGLESv2.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5core.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Gui.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Network.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5OpenGL.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5PrintSupport.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5QML.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Quick.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Sql.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Webkit.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5WebkitWidgets.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\Qt5Widgets.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\config.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\deleted.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\filecache.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\notifications.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\photo.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\sigstore.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1\TO_HASH_imixzw" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance_db\instance.dbx" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\logs\1-faulthandler\crashlog.txt" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox" not deleted
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}" not deleted
"C:\Program Files\VidPlaya" deleted
"C:\Users\Anne\AppData\Roaming\RHEng" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin" not deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance1" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\instance_db" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\logs" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\plugins" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\plugins\imageformats" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\bin\plugins\platforms" deleted
"C:\Users\Anne\AppData\Roaming\Dropbox\logs\1-faulthandler" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Anne\AppData\Local\Temp ====
2015-03-19 00:04:32	1AB333CFDD7A6A7952F2E4B5F5585824	2911744	----a-w-	C:\Users\Anne\AppData\Local\Temp\7988332371202418026.exe
2015-03-11 07:57:03	057631047016A448B842B96E872B132B	43008	----a-w-	C:\Users\Anne\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpr5r9bx.dll
====== Java Cache =====
====== C:\Windows\system32 =====
2015-03-11 07:19:08	5F3628DCF926C4499BE1DC74431DFBC8	1230848	----a-w-	C:\Windows\System32\WindowsCodecs.dll
2015-03-11 07:19:05	84B460BB65567ED42DD605FA044DB370	828928	----a-w-	C:\Windows\System32\msctf.dll
2015-03-11 07:19:04	340EECB781E6C06A6171B3068DA208AD	12875264	----a-w-	C:\Windows\System32\shell32.dll
2015-03-11 07:19:01	BA3CB7D5C1DCF17E6FFFB28DB950841A	2381312	----a-w-	C:\Windows\System32\win32k.sys
2015-03-11 07:19:00	FDF0B4DC83627A859D18EE439B8E5A26	47616	----a-w-	C:\Windows\System32\ieetwproxystub.dll
2015-03-11 07:19:00	8FDE1162C9DCF7B180AA702DD9EB6071	60416	----a-w-	C:\Windows\System32\JavaScriptCollectionAgent.dll
2015-03-11 07:19:00	87E5DC0BADC63A6E92A3C7A896B8C15E	102912	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-03-11 07:18:59	B8445B89D0EA5C2575C98EA7BD180C5C	30720	----a-w-	C:\Windows\System32\iernonce.dll
2015-03-11 07:18:59	97F98251AC65657A07673E64AA31519F	684544	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-03-11 07:18:59	59788C115F8362C5DBBAD68B54AD6357	667648	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-03-11 07:18:58	B35C35C55FED3DD7F995C77F63CBC29B	1311232	----a-w-	C:\Windows\System32\urlmon.dll
2015-03-11 07:18:58	756B4F77945C61ADBE68150D7D2EC7A6	47104	----a-w-	C:\Windows\System32\jsproxy.dll
2015-03-11 07:18:58	29EDBC5C381F1406A5262351E69BC87A	342696	----a-w-	C:\Windows\System32\iedkcs32.dll
2015-03-11 07:18:57	F5F730ED126DCFBEBDB9BB629BD482C4	620032	----a-w-	C:\Windows\System32\jscript9diag.dll
2015-03-11 07:18:57	BA10D970EB39913357B224F4473D535B	418304	----a-w-	C:\Windows\System32\dxtmsft.dll
2015-03-11 07:18:57	A41C85FDB2275FA9AAA821A118807FDB	710144	----a-w-	C:\Windows\System32\ieapfltr.dll
2015-03-11 07:18:57	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-03-11 07:18:55	AD1BA932AC31D2BC8C9105DA59BEA6BE	689152	----a-w-	C:\Windows\System32\msfeeds.dll
2015-03-11 07:18:54	08B30EB9751858C1C369E8775492D732	2724864	----a-w-	C:\Windows\System32\mshtml.tlb
2015-03-11 07:18:52	A34897A1A39316BDECCA3E61986F98F2	2052608	----a-w-	C:\Windows\System32\inetcpl.cpl
2015-03-11 07:18:51	BD838E2129623E8311720AA86C5DFBBF	62464	----a-w-	C:\Windows\System32\iesetup.dll
2015-03-11 07:18:51	B0B83B31853E15C619FDB91B64F8349A	168960	----a-w-	C:\Windows\System32\msrating.dll
2015-03-11 07:18:49	EA6EA6912F27F05C61D8D747517EB47E	1888256	----a-w-	C:\Windows\System32\wininet.dll
2015-03-11 07:18:49	3B2A9D5AF0E44A8C41E7545A8A7D5A98	4096	----a-w-	C:\Windows\System32\ieetwcollectorres.dll
2015-03-11 07:18:46	AD13E719AE506AA0E0BB5D49E0D5B44A	285696	----a-w-	C:\Windows\System32\dxtrans.dll
2015-03-11 07:18:45	AC35DA94A14679E8E515A44A8CF90804	478208	----a-w-	C:\Windows\System32\ieui.dll
2015-03-11 07:18:43	E868396BC5F8957A9E39BD9A28EA814D	12827648	----a-w-	C:\Windows\System32\ieframe.dll
2015-03-11 07:18:40	00F39165D6D14302618C20CDD7BB213A	76288	----a-w-	C:\Windows\System32\mshtmled.dll
2015-03-11 07:18:39	02C0770DA3BE9231EFAF7185EE51020C	1155072	----a-w-	C:\Windows\System32\mshtmlmedia.dll
2015-03-11 07:18:38	6108ED659B5962DE73DACB3B04D86ED3	64000	----a-w-	C:\Windows\System32\MshtmlDac.dll
2015-03-11 07:18:37	52B4DECDC70B8758380D37EA2CDD4254	2278400	----a-w-	C:\Windows\System32\iertutil.dll
2015-03-11 07:18:34	95CB6079B3E62D4301958023C2070A48	19720192	----a-w-	C:\Windows\System32\mshtml.dll
2015-03-11 07:18:30	FC5FE9F2D140435FC95CB3EF6724EF0A	4300288	----a-w-	C:\Windows\System32\jscript9.dll
2015-03-11 07:18:30	BC9CE46C3F05CCC40F8F1EFC7E4B41C7	503296	----a-w-	C:\Windows\System32\vbscript.dll
2015-03-11 07:18:08	B804EAA9E037580F96C22537C2ECB62A	171520	----a-w-	C:\Windows\System32\ubpm.dll
2015-03-11 07:18:05	D9FAD47AFADE210921EF0991307DAD6D	1061376	----a-w-	C:\Windows\System32\lsasrv.dll
2015-03-11 07:18:05	D5063B86DC3F85B93D02AF68099F4C9A	248832	----a-w-	C:\Windows\System32\schannel.dll
2015-03-11 07:18:04	F65F365AC0D1657917EFDB52445C848B	22528	----a-w-	C:\Windows\System32\lsass.exe
2015-03-11 07:18:04	C7D334A01C66BF07B92D04CD7A981B7F	259584	----a-w-	C:\Windows\System32\msv1_0.dll
2015-03-11 07:18:04	B06A4105DD22E91A1D922D7310803140	65536	----a-w-	C:\Windows\System32\TSpkg.dll
2015-03-11 07:18:04	887C8C0BF3FF4C74E76714375AE9B1D8	15872	----a-w-	C:\Windows\System32\sspisrv.dll
2015-03-11 07:18:04	7A71DA6D6F75AB73475128F787DD8EAD	221184	----a-w-	C:\Windows\System32\ncrypt.dll
2015-03-11 07:18:04	69925A266D265DAD96C6FCBB861FA5CD	550912	----a-w-	C:\Windows\System32\kerberos.dll
2015-03-11 07:18:04	5E76C26CAE2810EA71C161ED9A2CF0D1	50176	----a-w-	C:\Windows\System32\auditpol.exe
2015-03-11 07:18:04	4E15E2D20AE755FDEACD96F359F732DB	172032	----a-w-	C:\Windows\System32\wdigest.dll
2015-03-11 07:18:04	49144A633AB640E34A0FFDE26CB31EB5	100352	----a-w-	C:\Windows\System32\sspicli.dll
2015-03-11 07:18:03	ACD0CA819E279E1C17BE5C8A077EF448	146432	----a-w-	C:\Windows\System32\msaudite.dll
2015-03-11 07:18:03	84974782ED5D108DA2EFAF3C6534A760	22016	----a-w-	C:\Windows\System32\secur32.dll
2015-03-11 07:18:03	7407DDA27838C393DE67A0BDCDD044D0	60416	----a-w-	C:\Windows\System32\msobjs.dll
2015-03-11 07:18:03	30F5B3E28636009A0B194057AAE4392A	17408	----a-w-	C:\Windows\System32\credssp.dll
2015-03-11 07:18:03	0485899A035E02C53014C0545D912405	686080	----a-w-	C:\Windows\System32\adtschema.dll
2015-03-11 07:17:39	DD16C06B79DA2FBD422E87923C6C0C9D	26624	----a-w-	C:\Windows\System32\lpk.dll
2015-03-11 07:17:39	ABB358777FDF4AF51B2FE26137D2B8D4	70656	----a-w-	C:\Windows\System32\fontsub.dll
2015-03-11 07:17:39	965D6A2B30A95A9F7EF13653988D3D9F	299008	----a-w-	C:\Windows\System32\atmfd.dll
2015-03-11 07:17:39	55273844B66D77A2F1A2213C17A9EA4A	34304	----a-w-	C:\Windows\System32\atmlib.dll
2015-03-11 07:17:39	274F0540FD4C88FC845C94CA1569688A	10240	----a-w-	C:\Windows\System32\dciman32.dll
2015-03-11 07:17:37	9566C8BBD2271A7962D4432A624762AD	417792	----a-w-	C:\Windows\System32\WMPhoto.dll
2015-03-11 07:17:27	B378B6A865C28CE5C1E23C35760A1199	11411968	----a-w-	C:\Windows\System32\wmp.dll
2015-03-11 07:17:27	5B0C6247027FCF5A2E2F150E298D2FFA	3209728	----a-w-	C:\Windows\System32\mf.dll
2015-03-11 07:17:24	74264B7F57A16D25CB581C07964D324A	1174528	----a-w-	C:\Windows\System32\crypt32.dll
2015-03-11 07:17:24	6C2D4DC5D2E271F4AE4016FD4587B0B2	3973048	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-03-11 07:17:23	2CFE69A0A8AFDA8DB9A773D728000BB7	3917760	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-03-11 07:17:20	FFCFCDFD8D17DC62F168B50E92143EFA	400896	----a-w-	C:\Windows\System32\srcore.dll
2015-03-11 07:17:20	7DD3B3971D45197FA059C7CF55387BE8	521384	----a-w-	C:\Windows\System32\winload.exe
2015-03-11 07:17:19	DCC148408770F2D55B201F8FC26438A1	988160	----a-w-	C:\Windows\System32\drmv2clt.dll
2015-03-11 07:17:19	96DB6A923DEDB58FC7CBBF5CFF73314D	1329664	----a-w-	C:\Windows\System32\quartz.dll
2015-03-11 07:17:19	055C6BD2B4216C69302807A44A2C2B46	262656	----a-w-	C:\Windows\System32\rstrui.exe
2015-03-11 07:17:18	D5EC42139D6A6158CF188975C50B6A60	179200	----a-w-	C:\Windows\System32\wintrust.dll
2015-03-11 07:17:18	B7D2BB84C590F0AE9DA51DBB065A780E	1005056	----a-w-	C:\Windows\System32\cryptui.dll
2015-03-11 07:17:18	98C1191C862B44567FCF3C18BAEE859E	519680	----a-w-	C:\Windows\System32\qdvd.dll
2015-03-11 07:17:18	52954BE460EC6C54C0ACB2B3B126FFC6	157184	----a-w-	C:\Windows\System32\pcasvc.dll
2015-03-11 07:17:18	3BAA4BAE71460C5CEB40D5E9339A61BC	103936	----a-w-	C:\Windows\System32\cryptnet.dll
2015-03-11 07:17:18	003C51B9FE38287BA4E0E58D3AE080BD	744960	----a-w-	C:\Windows\System32\blackbox.dll
2015-03-11 07:17:17	C5667EE72D7364BE81516C0707FEF724	354816	----a-w-	C:\Windows\System32\mfplat.dll
2015-03-11 07:17:17	BB73C907D1BD437B6C30F2C23BB089FC	406016	----a-w-	C:\Windows\System32\drmmgrtn.dll
2015-03-11 07:17:17	833FCABCB5D95B1911BA6E62FC82AC04	617984	----a-w-	C:\Windows\System32\wmdrmsdk.dll
2015-03-11 07:17:17	49474B3E37969AF4B5C076F42B623AFF	143872	----a-w-	C:\Windows\System32\cryptsvc.dll
2015-03-11 07:17:17	320A8699369C43CF53B2DB4538D17C52	504320	----a-w-	C:\Windows\System32\msscp.dll
2015-03-11 07:17:17	2D4814D567E5A85C473228BA772A7AFB	489984	----a-w-	C:\Windows\System32\evr.dll
2015-03-11 07:17:16	CFE8B425822E478B530A590896ECF091	100864	----a-w-	C:\Windows\System32\audiodg.exe
2015-03-11 07:17:16	C1619A13B10CAC5038BF7129F57D8DE3	475136	----a-w-	C:\Windows\System32\audiosrv.dll
2015-03-11 07:17:15	C45E651DD6C0D7C1D92B338CE9331EF3	28160	----a-w-	C:\Windows\System32\pcadm.dll
2015-03-11 07:17:15	A56F4029FDCF4F817E78953CDA953E28	442880	----a-w-	C:\Windows\System32\AUDIOKSE.dll
2015-03-11 07:17:15	70E96EBE87A38857619671FCB9C8EC7B	265216	----a-w-	C:\Windows\System32\msnetobj.dll
2015-03-11 07:17:15	2D21189858856316D55EAD55DF4964C2	374784	----a-w-	C:\Windows\System32\AudioEng.dll
2015-03-11 07:17:15	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\System32\rrinstaller.exe
2015-03-11 07:17:15	01C6C743FE49D0FB3F0A1391FEF1DEB3	69632	----a-w-	C:\Windows\System32\smss.exe
2015-03-11 07:17:14	E0AB9CA912398BE1AAD14FF7AD75C397	50688	----a-w-	C:\Windows\System32\appidapi.dll
2015-03-11 07:17:14	B54FD1991E659FD61EF1D34EC27AAECD	81408	----a-w-	C:\Windows\System32\cryptsp.dll
2015-03-11 07:17:14	AF47EAA4ADDA9AA221FB7647EE22BF53	103424	----a-w-	C:\Windows\System32\mfps.dll
2015-03-11 07:17:14	A4A2EFB40015B76467F09E6DC388BC26	43008	----a-w-	C:\Windows\System32\srclient.dll
2015-03-11 07:17:14	50B8937A81360D16A5C772302BD32CFE	195584	----a-w-	C:\Windows\System32\AudioSes.dll
2015-03-11 07:17:14	3245B3D9A1F36C8A80900003B22F9FA4	96768	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
2015-03-11 07:17:14	10495B2681F3E271CB93608D853A0CF0	9728	----a-w-	C:\Windows\System32\pcawrk.exe
2015-03-11 07:17:13	F5090F8FA6757C58E17BAEAA86093636	27648	----a-w-	C:\Windows\System32\appidsvc.dll
2015-03-11 07:17:13	A6AEADE370FFE3F37554D8AAA3E4B873	8192	----a-w-	C:\Windows\System32\pcalua.exe
2015-03-11 07:17:13	7847865A78B7FB9221D9DFB35A7B8ECD	38912	----a-w-	C:\Windows\System32\csrsrv.dll
2015-03-11 07:17:13	6EBC44F464A00EF4E4F0DBBB6BD3FF14	275968	----a-w-	C:\Windows\System32\EncDump.dll
2015-03-11 07:17:13	6C620B9DDB9EB0F0D92E9607D76B3D3D	50176	----a-w-	C:\Windows\System32\setbcdlocale.dll
2015-03-11 07:17:13	6B1EB62B8DD3F439F972BE14D7A34FC8	10752	----a-w-	C:\Windows\System32\msmmsp.dll
2015-03-11 07:17:13	69B4CE000298A9253EB206C3AC1360F5	16896	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-03-11 07:17:13	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\System32\mfpmp.exe
2015-03-11 07:17:12	FCD5137A10C8943B34C9BE891C50159F	6656	----a-w-	C:\Windows\System32\apisetschema.dll
2015-03-11 07:17:12	F0C8038C9336EE6C3244CF431AB362BE	8704	----a-w-	C:\Windows\System32\pcaevts.dll
2015-03-11 07:17:12	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\System32\msdxm.ocx
2015-03-11 07:17:12	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\System32\dxmasf.dll
2015-03-11 07:17:12	8B07DBA0D77346545C6359AC67DCB980	8192	----a-w-	C:\Windows\System32\spwmp.dll
2015-03-11 07:17:11	7C1CADCA0E674212412559B0EAD0919A	12625408	----a-w-	C:\Windows\System32\wmploc.DLL
2015-03-11 07:17:10	2F3CE58D8C276570EEB69C99CFBAFD58	2048	----a-w-	C:\Windows\System32\mferror.dll
====== C:\Windows\system32\drivers =====
2015-03-11 07:18:05	9EED5E0B7BF784C491C2289A09920BDA	137656	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-03-11 07:18:04	4DAC97CF81FAE4B2988AEF0DF40D04AE	67512	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-03-11 07:17:22	3051724F223EA48968B19567DE2A81F4	370488	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-03-11 07:17:21	644905A19D0F37F2233DFCE53BC4BC19	78784	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2015-03-11 07:17:15	AEBC369F7DC72AB3F5B9BDF34FA0D43F	593920	----a-w-	C:\Windows\System32\drivers\PEAuth.sys
2015-03-11 07:17:13	81F97D8F8B3FB94A451CC6F7CF8B2965	50176	----a-w-	C:\Windows\System32\drivers\appid.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C: =====
====== C:\Users\Anne\AppData\Roaming ======
2015-03-14 10:45:10	--------	d-----w-	C:\Users\Anne\AppData\Local\Spotify
2015-03-14 10:45:07	--------	d-----w-	C:\Users\Anne\AppData\Roaming\Spotify
2015-03-06 21:59:41	--------	d-----w-	C:\Users\Anne\AppData\Local\Popcorn-Time
2015-03-06 21:57:57	--------	d-----w-	C:\Users\Anne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-03-06 21:57:11	--------	d-----w-	C:\Users\Anne\AppData\Local\Popcorn Time
2015-03-01 06:44:26	--------	d-----w-	C:\Users\Anne\AppData\Roaming\Vso
====== C:\Users\Anne ======
2015-03-19 07:37:30	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Anne\Downloads\RSIT (2).exe
2015-03-14 10:44:41	78E64542B95E3B9BEC40972F9E07D2EF	36414120	----a-w-	C:\Users\Anne\Downloads\Spotify Installer.exe
2015-03-13 07:20:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011
2015-03-06 21:56:55	722821DE247038BB934D9B2AC3812D98	23315064	----a-w-	C:\Users\Anne\Downloads\Popcorn-Time-0.3.7.2-Setup (1).exe
2015-03-06 21:16:53	722821DE247038BB934D9B2AC3812D98	23315064	----a-w-	C:\Users\Anne\Downloads\Popcorn-Time-0.3.7.2-Setup.exe
2015-03-04 08:06:24	--------	d-----w-	C:\ProgramData\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}
2015-03-01 06:44:08	--------	d-----w-	C:\ProgramData\VSO

====== C: exe-files ==
2015-03-19 07:37:30	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Anne\Downloads\RSIT (2).exe
2015-03-19 00:04:32	1AB333CFDD7A6A7952F2E4B5F5585824	2911744	----a-w-	C:\Users\Anne\AppData\Local\Temp\7988332371202418026.exe
2015-03-14 10:56:59	D0BBD6057FC9C83C549B762FAE68A29C	41410040	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\Spotify_new.exe
2015-03-14 10:45:08	43DFBB27EDEDE045778185AFC37E2CD9	61496	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\SpotifyLauncher.exe
2015-03-14 10:45:08	0431B48CF752D88C33C4BA39BA64CCB2	6737976	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\spotify.exe
2015-03-14 10:45:07	24B63430A0AA8B33767A2A0E8AFCC49A	374840	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2015-03-14 10:45:07	08DFA176E4FC0E63ACD8EC854449D2B0	1676344	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
2015-03-14 10:44:41	78E64542B95E3B9BEC40972F9E07D2EF	36414120	----a-w-	C:\Users\Anne\Downloads\Spotify Installer.exe
2015-03-13 07:18:36	C4F6E6368421ED9F59B7056E5F18EB96	22992	----a-w-	C:\Program Files\AVG\AVG2015\avgrdtestx.exe
2015-03-13 07:18:36	6EFF5AE0C8E7C0D86AEA3CEB3089D2C7	70096	----a-w-	C:\Program Files\AVG\AVG2015\avguirux.exe
2015-03-13 07:18:36	497550900AA7EDB99A742833321D46FE	6264208	----a-w-	C:\Program Files\AVG\AVG2015\avgmfapx.exe
=== C: other files ==
2015-03-14 10:45:08	B913546C446F9BE2CA2640AD00188DD2	13120963	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\Data\apps.zip
2015-03-14 10:45:07	42435A3048D5E20EA3AE99AA678CF156	3238792	----a-w-	C:\Users\Anne\AppData\Roaming\Spotify\Data\resources.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe /background"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
"Rim.DesktopHelper.exe"="C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe"
"Facebook Update"="C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Spotify"="C:\Users\Anne\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon"
"CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe"
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"nmctxth"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
"nmapp"="C:\Program Files\Pure Networks\Network Magic\nmapp.exe -autorun -nosplash"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2015\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe /background"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
"Rim.DesktopHelper.exe"="C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe"
"Facebook Update"="C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Spotify"="C:\Users\Anne\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

==== Startup Folders ======================

2015-02-14 23:04:00	1139	----a-w-	C:\Users\Anne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-74716692-3808151042-2833116917-1000Core.job --a------ C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe [20-10-2014 22:05]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-74716692-3808151042-2833116917-1000UA.job --a------ C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe [20-10-2014 22:05]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-74716692-3808151042-2833116917-1000Core" [C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-74716692-3808151042-2833116917-1000UA" [C:\Users\Anne\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 37.0.2062.103 (Possible outdated, latest Stable version: 41.0.2272.89)


Docs - Anne\AppData\Local\Torch\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
DropToS - Anne\AppData\Local\Torch\User Data\Default\Extensions\cipmepknanmbbaneimacddfemfbfgpgo
Torch Music - Anne\AppData\Local\Torch\User Data\Default\Extensions\gcjbdjlojcomlphfchhihkigepfabcad
iMesh New Tabs - Anne\AppData\Local\Torch\User Data\Default\Extensions\ijbjbpmhcemdbplaiccloimaedacmjdo
Torch Helper - Anne\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg
Torch Music - Anne\AppData\Local\Torch\User Data\Default\Extensions\ohimbkoaphfnmekmfppijeblmkncneed

==== Chromium Startpages ======================

C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Preferences
"startup_urls": [ "http://www.mystartsearch.com/?type=hp&ts=1418374152&from=smt&uid=FUJITSUXMHZ2320BHXG1_K61ET952CTYNT952CTYNX" ],


==== Chromium Fix ======================

C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vacatures.trovit.nl_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vacatures.trovit.nl_0.localstorage-journal deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{1A866EC3-7772-4F78-B742-2C383110ABC9} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{3F4BEA38-8DC4-4323-A18E-1BAE57FBA088} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{65814380-6CF5-47AD-909A-B1B77262A410} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo  Url="http://www.google.com/search?q={sear"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f987904a} deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6EB5DB54-4B19-4AC9-9AE3-8514709FFCBA}_is1 deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftonicAssistant deleted successfully

==== Empty IE Cache ======================

C:\Users\Anne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Anne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Anne\AppData\Local\Torch\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2534 folders=846 427933267 bytes)

==== Empty Temp Folders ======================

C:\Users\Anne\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Anne\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\32f47efc18b9a7fb"  not found
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}\ff09d8a93f6d402f"  not found
"C:\Users\Anne\AppData\Roaming\Dropbox"  not found
"C:\PROGRA~2\{3c86c68e-c609-7ee3-3c86-6c68ec601a3b}"  not found

==== EOF on do 19-03-2015 at  9:57:12,63 ======================