
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Vivi on ma 04/01/2016 at 16:22:15,41.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Vivi\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

4/01/2016 16:25:04 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Users\Vivi\AppData\Roaming\QuickScan deleted successfully
C:\Users\Gast\AppData\Local\VirtualStore deleted successfully
C:\Users\Vivi\AppData\Local\Adobe deleted successfully
C:\Users\Vivi\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Vivi\AppData\Local\EmieSiteList deleted successfully
C:\Users\Vivi\AppData\Local\EmieUserList deleted successfully
C:\Users\Vivi\AppData\Local\MediaShow deleted successfully
C:\Users\Vivi\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Internet Explorer\SearchScopes\{BAF6FFC9-B6A3-4D19-8919-8FFAB9392CCB} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BAF6FFC9-B6A3-4D19-8919-8FFAB9392CCB} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DigitalWave.Update.Service deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\Users\Vivi\AppData\Roaming\DVDVideoSoft deleted
C:\Program Files (x86)\DVDVideoSoft deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Vivi\Downloads\FreeYouTubeToMP3Converter.exe deleted
"C:\windows\Installer\2d664.msi" deleted
"C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE" deleted
"C:\Program Files (x86)\Microsoft\BingBar" not deleted
"C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Vivi\AppData\Local\Temp ====
2015-12-29 17:45:09	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_bde2da7f-e86a-4ee6-813b-20b7b430944d\NetworkDiagnosticSnapIn.dll
2015-12-29 17:41:44	F3393D3FF18B824864B806E0B86F0A67	1559552	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x64\EAP-FAST.msi
2015-12-29 17:41:44	C59466B2D16EB041525C3ADBA6B981BE	3593432	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Win81X64\rtwlane.sys
2015-12-29 17:41:44	B09E317D089AC1906E3B3EFBB8997BF4	3562200	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Wind7X64\rtwlane.sys
2015-12-29 17:41:44	A8BCA29254B658DFFC317E7F2F05F8C4	836608	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x86\EAP-LEAP.msi
2015-12-29 17:41:44	A7BFFB86CBD05F6F0C2B637B216BED65	398696	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\Setup.exe
2015-12-29 17:41:44	9CCAE75F40CA31BA1C6B2EE919B3B279	12288	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\Version\RTLWVern.dll
2015-12-29 17:41:44	968B03BED3E2E2774AF06127D9F7DCF8	3066072	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Win81X86\rtwlane.sys
2015-12-29 17:41:44	959BD375733314B94EE209509CF6D2B0	121344	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\Install.exe
2015-12-29 17:41:44	7DE2D19C870587B8FFC5A446E9B6E29A	333120	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\_Setup.dll
2015-12-29 17:41:44	7564D7F3D0066D127449281F1BD981DE	1304064	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x86\EAP-PEAP.msi
2015-12-29 17:41:44	7262BF817DD0DF49FB84C81F3ABFFCDC	3045080	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Wind7X86\rtwlane.sys
2015-12-29 17:41:44	626978BF496BABC1E6F1464D697B707D	1304064	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x64\EAP-PEAP.msi
2015-12-29 17:41:44	3FC36EF669376540BB082615F9ECADB2	836608	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x64\EAP-LEAP.msi
2015-12-29 17:41:44	2DD1C4A68E2A8A401018F5EFDAB5ADDE	555520	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\ISSetup.dll
2015-12-29 17:41:44	1705F03251EFFF03296793E71BBAABE7	1559552	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\EAP\x86\EAP-FAST.msi
2015-12-29 17:25:21	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_17ddbb4c-409e-4724-882b-bc4423ad4d34\NetworkDiagnosticSnapIn.dll
2015-12-29 16:17:13	CC5115F5D531039DD675DD1434692BE6	408264	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\Setup.exe
2015-12-29 16:17:13	77DDC89F0F234DC121B70004CCE2D678	15114040	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\msiinstaller.exe
2015-12-29 16:17:13	776D96A2E37A81D09996C5FD459C7212	145096	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\UninstallHPSA.exe
2015-12-29 14:29:52	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_d6be6946-7c16-4edb-ace9-b48bb7a8a8ab\NetworkDiagnosticSnapIn.dll
2015-12-29 10:01:12	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_b34f35f2-5036-4d91-b958-c91fc9469382\NetworkDiagnosticSnapIn.dll
2015-12-29 08:01:35	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_ca05d885-c35a-46f9-a7ab-1f6fd2104cdd\NetworkDiagnosticSnapIn.dll
2015-12-28 17:30:46	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_98cf0092-5dca-4387-ae13-c0e3c025e71b\NetworkDiagnosticSnapIn.dll
2015-12-28 15:00:23	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_e2d4e052-406b-406c-99ce-0c1fbcd82fd5\NetworkDiagnosticSnapIn.dll
2015-12-28 14:52:33	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_f7bfbb32-45d2-464a-b5d5-f98585f4bf23\NetworkDiagnosticSnapIn.dll
2015-12-28 14:43:05	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_c4a8d0ba-59c3-4834-902f-6593205c58d5\NetworkDiagnosticSnapIn.dll
2015-12-28 14:29:09	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_56060e2b-27d7-4fce-b851-06c4c22e09d8\NetworkDiagnosticSnapIn.dll
2015-12-28 14:25:01	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_566e2328-5612-46fc-ae81-bab65f482b79\NetworkDiagnosticSnapIn.dll
2015-12-28 14:23:59	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_6d658a57-a47e-4e68-a3dc-24768f0823f1\NetworkDiagnosticSnapIn.dll
2015-12-27 09:56:35	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_e82a2af0-caab-4540-806c-546d6cb2a286\NetworkDiagnosticSnapIn.dll
2015-12-27 08:21:09	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_f98326ac-1a02-463e-b94e-68fa0c65782b\NetworkDiagnosticSnapIn.dll
2015-12-26 17:20:40	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_260afedf-f6bc-4f04-81da-fa0349518642\NetworkDiagnosticSnapIn.dll
2015-12-26 13:04:27	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_e3c81f35-a013-40e5-83b2-3846f3b659ee\NetworkDiagnosticSnapIn.dll
2015-12-25 18:26:03	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_964fc4f4-5dca-47ec-b6cf-c6d4f9e54d05\NetworkDiagnosticSnapIn.dll
2015-12-25 10:30:49	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_47664b23-9fb5-4b8c-927d-f199394d5d5a\NetworkDiagnosticSnapIn.dll
2015-12-24 09:48:44	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_6704d03d-8a7c-4447-a135-eb8e006fd71f\NetworkDiagnosticSnapIn.dll
2015-12-23 17:23:06	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_0c5c2dec-54c1-46d6-8ab8-7438a0fded44\NetworkDiagnosticSnapIn.dll
2015-12-23 15:10:27	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_dad81292-ffd8-41a4-a6b7-8328d2cdb305\NetworkDiagnosticSnapIn.dll
2015-12-22 17:31:08	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_80061d8f-ff9e-4918-a464-0faa5910e4e5\NetworkDiagnosticSnapIn.dll
2015-12-22 15:01:50	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_580b4f6f-48fb-4856-9cb0-4e478ffe6523\NetworkDiagnosticSnapIn.dll
2015-12-21 17:45:23	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_b16f47ae-a363-4eb3-9ecb-9ae5686f34a1\NetworkDiagnosticSnapIn.dll
2015-12-21 17:44:14	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Vivi\AppData\Local\Temp\SDIAG_1b679813-e100-4c31-873b-7437a1e2b279\NetworkDiagnosticSnapIn.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2015-12-09 16:36:46	D25F0093A71FFB355160358DD70B0373	443224	-c--a-w-	C:\Windows\Sysnative\drivers\usbport.sys
2015-12-09 16:36:46	CD81683F4553677B9BF5163A922153EB	462168	-c--a-w-	C:\Windows\Sysnative\drivers\usbhub.sys
2015-12-09 16:36:45	FC974B03C8B87455F44F734C8F31A3C8	37376	-c--a-w-	C:\Windows\Sysnative\drivers\usbuhci.sys
2015-12-09 16:36:45	BBFD17B6B954FC9FA02E62D604052069	92504	-c--a-w-	C:\Windows\Sysnative\drivers\usbehci.sys
2015-12-09 16:36:45	A0F0484C97D6441ED6A75D7426ECCC9E	30208	-c--a-w-	C:\Windows\Sysnative\drivers\usbohci.sys
2015-12-09 16:36:45	9A2B3A98D7982372CA36A823F673EFB8	27992	-c--a-w-	C:\Windows\Sysnative\drivers\usbd.sys
2015-12-09 16:36:45	5C90D5379B53590FBB24BBAD4FA682EE	468824	-c--a-w-	C:\Windows\Sysnative\drivers\USBHUB3.SYS
2015-12-09 14:55:02	A7D51169CA28B0AA9B5DE2B7EFB5C3C9	145408	----a-w-	C:\Windows\Sysnative\drivers\rmcast.sys
====== C:\Windows\Tasks ======
2015-12-09 14:39:21	790FFC44106E3B682A73AE846AEB712C	3640	----a-w-	C:\Windows\Sysnative\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-01-03 14:58:49	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-12-29 08:42:50	--------	d-----w-	C:\PROGRA~2\TomTom HOME 2
2015-12-29 08:41:20	--------	d-----w-	C:\PROGRA~2\TomTom International B.V
2015-12-26 14:32:09	--------	d-----w-	C:\PROGRA~2\VideoLAN
2015-12-07 15:23:01	--------	d-----w-	C:\PROGRA~2\FreeCodecPack
2015-12-07 15:22:59	--------	d-----w-	C:\PROGRA~2\COMMON~1\DVDVideoSoft
======= C: =====
2015-12-29 15:59:26	4A78224882B91A8B44D288AB831FF2F7	3461	----a-w-	C:\ipconfig.txt
====== C:\Users\Vivi\AppData\Roaming ======
2015-12-30 13:13:46	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CyberLink
2015-12-29 14:27:16	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Bitdefender
2015-12-29 08:43:09	--------	d-----w-	C:\Users\Vivi\AppData\Roaming\TomTom
2015-12-29 08:43:09	--------	d-----w-	C:\Users\Vivi\AppData\Local\TomTom
2015-12-29 08:40:40	--------	d-----w-	C:\Users\Vivi\AppData\Local\Downloaded Installations
2015-12-26 14:45:40	--------	d-----w-	C:\Users\Vivi\AppData\Roaming\dvdcss
2015-12-26 14:34:00	--------	d-----w-	C:\Users\Vivi\AppData\Roaming\vlc
2015-12-10 17:55:18	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\DVDVideoSoft
====== C:\Users\Vivi ======
2015-12-31 09:43:16	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\winhttp
2015-12-30 13:10:08	--------	d-----r-	C:\Windows\sysWoW64\config\systemprofile\Videos
2015-12-30 13:10:08	--------	d-----r-	C:\Windows\sysWoW64\config\systemprofile\Documents
2015-12-29 17:27:08	03BBA6B7F10B49267882D1B89363B651	32051024	----a-w-	C:\Users\Vivi\Downloads\sp69411.exe
2015-12-29 08:43:11	--------	d-----w-	C:\ProgramData\TomTom
2015-12-29 08:42:53	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2015-12-29 08:38:49	5D4C0E1A15D3EFB767069F1BDA4D05F3	31109864	----a-w-	C:\Users\Vivi\Downloads\TomTomHOME2winlatest.exe
2015-12-28 17:55:26	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Vivi\Desktop\RSITx64.exe
2015-12-28 17:51:58	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Vivi\Downloads\RSITx64.exe
2015-12-27 09:15:31	D90AA3165B5D2D414D124738157C605D	37980032	----a-w-	C:\Users\Vivi\Downloads\sp66414.exe
2015-12-09 14:39:22	5D03C156F6DAFAD85A137A3DFFD6638B	25119	----a-w-	C:\ProgramData\1449671956.bdinstall.bin
2015-12-07 15:23:20	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

====== C: exe-files ==
2016-01-03 14:58:52	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Vivi.exe
2015-12-30 13:13:57	9A67E08683D6B4E9916ABBED53C507BD	81672	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\vthumbPDVD12.exe
2015-12-30 13:13:55	D15F5DCCAA52DC49EA189989162048EA	48904	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMediaInfoPDVD12.exe
2015-12-30 13:13:55	A46939D2C2171C22C7A72E1F1B2ACA88	89864	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSHardwareTranscode.exe
2015-12-30 13:13:35	254575FE1C16E4EB6773CDCB62DB15BF	320480	------w-	C:\ProgramData\Temp\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}\Setup.exe
2015-12-30 13:12:36	FB73246D5ACD3607A7C00445EDE7C8BD	229128	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\OLRSubmission\OLRSubmission.exe
2015-12-30 13:12:36	DBA1FCA94C721751ED0EC6E92025B735	343816	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\PDVDLaunchPolicy.exe
2015-12-30 13:12:36	CD75B9BC4C680B362B5671EE73201458	3518216	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
2015-12-30 13:12:36	C720949EE525908C1F7053256AB779A4	373784	------w-	C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
2015-12-30 13:12:36	7E6397F15C5D023EC41B1DD2394B8440	230360	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cox\PowerDVDCox.exe
2015-12-30 13:12:36	6385F83171CD784FB554A2DC60FDAB8A	65288	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\Uninstall.exe
2015-12-30 13:12:36	3520308F111E85F3519BB32F62266A43	65288	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\vthum.exe
2015-12-30 13:12:36	1FD7350380EF2B4EBF1E99278565B692	373784	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
2015-12-30 13:12:35	FEC238F03DB84AA5DB49C1D59E2246B9	298760	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
2015-12-30 13:12:35	FBEA93F64318DDC75D8818B91BA2D191	77576	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
2015-12-30 13:12:35	C875860A5021067CAE6041DB709D0269	405256	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\subsys\BigBang\Runtime\CLUpdater.exe
2015-12-30 13:12:35	A6D45B87FAA67C2DE89B1848E7186C51	85768	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\Install.exe
2015-12-30 13:12:35	63E72D8A0C3FA8AA6FFA2B697FEA7D97	110344	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\OLRSubmission\OLRStateCheck.exe
2015-12-30 13:12:34	BB280C8A43A7A2C1749A3BBBEE44A24D	2255624	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Common\Boomerang\Boomerang.exe
2015-12-30 13:12:34	3E60C243798DBF2D7F437BB0F6194AF6	524040	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Activate.exe
2015-12-30 13:11:30	7717BD4A56D6F86F808E704FA71E163D	187904	------w-	C:\Program Files (x86)\InstallShield Installation Information\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}\7z.exe
2015-12-30 13:09:56	53F5CCBE5FE06C3B40CC9E34AC909DF7	1227048	----a-w-	C:\SWSetup\sp70823\Setup\Utility\wic_x86_enu.exe
2015-12-30 13:09:55	FD30ACC7A696C32F661B33668E73BF7B	4485976	----a-w-	C:\SWSetup\sp70823\Setup\RunTime\VC2008 SP1 Update\vcredist_x86.exe
2015-12-30 13:09:55	D541B4C39398BFCB01BDC57847F65E17	75048	----a-w-	C:\SWSetup\sp70823\Setup\Utility\CLSM.exe
2015-12-30 13:09:55	B77D9912B2AEBDCB70339C7C63EA4DAA	103720	----a-w-	C:\SWSetup\sp70823\Setup\Utility\TaskScheduler.exe
2015-12-30 13:09:55	6402438591B548121F54B0706A2C6423	2745256	----a-w-	C:\SWSetup\sp70823\Setup\RunTime\VC2005 SP1 Update\vcredist_x86.exe
2015-12-30 13:09:55	5689D43C3B201DD3810FA3BBA4A6476A	4216840	----a-w-	C:\SWSetup\sp70823\Setup\RunTime\VC2008 SP1\vcredist_x86.exe
2015-12-30 13:09:54	254575FE1C16E4EB6773CDCB62DB15BF	320480	----a-w-	C:\SWSetup\sp70823\Setup.exe
2015-12-30 13:09:53	7717BD4A56D6F86F808E704FA71E163D	187904	----a-w-	C:\SWSetup\sp70823\7z.exe
2015-12-30 12:50:07	01B9068DA462B1FBEDA62318824CED24	16923410	----a-w-	C:\SWSetup\sp69840\setup.exe
2015-12-30 12:46:18	4823AC9F3C14B4D8CD46BCADAF669293	11383248	----a-w-	C:\SWSetup\sp72549\2266.exe
2015-12-30 12:44:44	1D66FA205FA9D9433D38D4D2495054C2	213816	----a-w-	C:\SWSetup\sp71716\HPSetup.exe
2015-12-29 17:42:02	F04D341AF581C6324EF162724DEA3854	103424	----a-w-	C:\Program Files (x86)\Realtek\PCIE Wireless LAN\Driver\SetDrv64.exe
2015-12-29 17:42:02	4CAED0795344F412140836AE4DCE57E6	109056	----a-w-	C:\Program Files (x86)\Realtek\PCIE Wireless LAN\Driver\SetVistaDrv64.exe
2015-12-29 17:41:44	A7BFFB86CBD05F6F0C2B637B216BED65	398696	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\Setup.exe
2015-12-29 17:41:44	959BD375733314B94EE209509CF6D2B0	121344	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\Install.exe
2015-12-29 17:27:08	03BBA6B7F10B49267882D1B89363B651	32051024	----a-w-	C:\Users\Vivi\Downloads\sp69411.exe
2015-12-29 16:20:49	E761E9E42F7CCC859F933CB8BE596F2B	37064	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_RecoveryDiscReminder_V2.exe
2015-12-29 16:20:49	C95319EE1EE1CDCF47D6529AD759BF94	33992	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_PostWarrantyCarePack.exe
2015-12-29 16:20:49	C8D01F99A9FD0CD5BA662B3AB16D8D84	38416	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_BeforeUpgradingToWindows10.exe
2015-12-29 16:20:49	BC8479CDD473D9A051CA0F01A2E0492D	103480	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\WarrantyObjectChecker.exe
2015-12-29 16:20:49	A5EF97AFFA56E0F7BD543D8609F8ED9E	44784	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_AntiVirusDefenderB.exe
2015-12-29 16:20:49	9A8C02B240274DC9D76429ABEBC3061C	36552	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_SystemRestoreCheck_V2.exe
2015-12-29 16:20:49	91EC914C031C3FF81B6BE8E4777B0809	37944	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_Windows10UpgradeAdvisory.exe
2015-12-29 16:20:49	871592A6E4BBDC6059CB989386E84787	29384	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_WelcomeHPSAv8.exe
2015-12-29 16:20:49	6259DA4D6D45CB6165CA2516A5CB66F9	64528	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\HPSAObjUtil8.exe
2015-12-29 16:20:49	4E3094BDA02A05DFC4D2C3D5B3A23966	37432	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_EOSStatus.exe
2015-12-29 16:20:49	4D80D60D5E45C01130634F9E543C67D1	44600	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_AntiVirusNoAV_A.exe
2015-12-29 16:20:49	336560F434F6BA79460D912A5EF71E19	37576	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_BeforeUpgradingToWindows10Business.exe
2015-12-29 16:20:49	2CA4A36D13732E1135C48F0F6F6C6844	35528	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_GuestAccount_V2.exe
2015-12-29 16:20:49	26570DD57DA97783547A0A038A48FB14	33296	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_InWarrantyCarePack.exe
2015-12-29 16:20:49	2239FDB3D52688AB0E3A99BAB7E5011C	44784	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_AntiVirusNoAV_B.exe
2015-12-29 16:20:49	1543CACAF64319DE338BDA68A5EC1BC0	44600	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\product_line\Detect_AntiVirusDefenderA.exe
2015-12-29 16:17:13	CC5115F5D531039DD675DD1434692BE6	408264	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\Setup.exe
2015-12-29 16:17:13	77DDC89F0F234DC121B70004CCE2D678	15114040	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\msiinstaller.exe
2015-12-29 16:17:13	776D96A2E37A81D09996C5FD459C7212	145096	----a-w-	C:\Users\Vivi\AppData\Local\Temp\HPSALight\UninstallHPSA.exe
2015-12-29 16:15:37	3F2B49BA01309111E054D6E3BB007259	142864	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPDObject.exe
2015-12-29 16:15:37	0AD4E3B6CF954387A622AA0921A5E527	566288	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPAsset.exe
2015-12-29 08:46:24	AC22B17226489DE7B31F674F660F8EAC	348160	----a-r-	C:\Users\Vivi\Documents\TomTom\HOME\Backup\GO\Backup01\InternalMemory\InstallTomTomHOME.exe
2015-12-29 08:38:49	5D4C0E1A15D3EFB767069F1BDA4D05F3	31109864	----a-w-	C:\Users\Vivi\Downloads\TomTomHOME2winlatest.exe
2015-12-28 17:55:26	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Vivi\Desktop\RSITx64.exe
2015-12-28 17:51:58	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Vivi\Downloads\RSITx64.exe
=== C: other files ==
2015-12-30 13:11:42	FB30EE38E4F8D95831FB3EB524366D4A	1259892	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cox\Customizations\Cyberlink\Style\Standard\Media\Standard.zip
2015-12-30 13:11:41	E30DBA79E0CCCB4A418ADEDF46853003	649167	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\subsys\NetService\GData\gdata.zip
2015-12-30 13:11:41	DC2730914D36BF9A0725D4B6A02D0E5E	6078266	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Custom\Skin\Standard\Photo\Media.zip
2015-12-30 13:11:41	9F54E328C041837251629DC8D58B2A5D	2114728	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\Common\Koan\python25.zip
2015-12-30 13:11:41	1A7F67B5A495AE4D17F202F20C440955	52245	----a-w-	C:\Program Files (x86)\CyberLink\PowerDVD12\subsys\NetService\GData\atom.zip
2015-12-30 13:09:55	9F54E328C041837251629DC8D58B2A5D	2114728	----a-w-	C:\SWSetup\sp70823\Setup\Utility\python25.zip
2015-12-30 12:44:44	AE0056E61B7C8AB8892DD63169E9F03E	1463	----a-w-	C:\SWSetup\sp71716\Install.bat
2015-12-30 12:44:44	29AB48FAD9A4DA7743918DBE4439724A	741	----a-w-	C:\SWSetup\sp71716\TPSSOff.bat
2015-12-29 17:42:07	C59466B2D16EB041525C3ADBA6B981BE	3593432	----a-w-	C:\Program Files (x86)\Realtek\PCIE Wireless LAN\Driver\rtwlane.sys
2015-12-29 17:41:44	C59466B2D16EB041525C3ADBA6B981BE	3593432	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Win81X64\rtwlane.sys
2015-12-29 17:41:44	B09E317D089AC1906E3B3EFBB8997BF4	3562200	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Wind7X64\rtwlane.sys
2015-12-29 17:41:44	968B03BED3E2E2774AF06127D9F7DCF8	3066072	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Win81X86\rtwlane.sys
2015-12-29 17:41:44	7262BF817DD0DF49FB84C81F3ABFFCDC	3045080	----a-w-	C:\Users\Vivi\AppData\Local\Temp\RTLInstallTemp\RTWLANE_Driver\Wind7X86\rtwlane.sys
2015-12-29 16:21:02	B2D0E44336C042FABD6996429908A877	17601	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\resources\nl-NL\hcsolutions.zip
2015-12-29 16:20:58	56CDF763735D96AEB5375892C68AD0A9	1402309	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\resources\guidAcheck.zip
2015-12-29 16:20:53	8BABEE0931A7846C42667B0E6087A3BB	364484	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\resources\guid.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3467811659-2812885963-1334588737-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"HPMessageService"="C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"Bdagent"="C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2015-06-01 16:54:41	2086	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [29/12/2015 19:55]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/08/2015 06:59]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/08/2015 06:59]
C:\Windows\tasks\HPCeeScheduleForVivi.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [16/06/2015 09:51]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" [C:\Program Files\Bitdefender Agent\WatchDog.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" ["C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe"]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"bdwteffv20@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff" [17/12/2015 22:00]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"bdwteffv20@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff" [17/12/2015 22:00]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Vivi\AppData\Roaming\Mozilla\Firefox\Profiles\8ucep5pf.default
- Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2016\\antispam32\bdwteff

ProfilePath: C:\Users\Vivi\AppData\Roaming\TomTom\HOME\Profiles\y0pr9chf.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Vivi\AppData\Roaming\Mozilla\Firefox\Profiles\8ucep5pf.default
0C0C5C207121C7A78414A8250E8E099A	- C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll -	Shockwave for Director / Shockwave for Director
70858ED7836E5C849D33576A84DC8CCF	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll -	Shockwave Flash


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Gast\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dhhejlifdlcgcmogbggeomfodgklfaem - No path found[]

Google Slides - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Docs Offline - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Vivi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/?gws_rd=ssl"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/?gws_rd=ssl"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=HPNTDFJS
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7A6F2EDADB7E5594DB660309B322D3FD deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ADE2F6A7-E7BD-4955-BD66-30903B223DDF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\7A6F2EDADB7E5594DB660309B322D3FD deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\Vivi\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Vivi\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Users\Vivi\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Vivi\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Gast\AppData\Local\Mozilla\Firefox\Profiles\zfnil3wq.default\cache2 emptied successfully
C:\Users\Vivi\AppData\Local\Mozilla\Firefox\Profiles\8ucep5pf.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Vivi\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5623 folders=1883 570616021 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\Vivi\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Vivi\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\Microsoft\BingBar"  not found

==== EOF on ma 04/01/2016 at 17:05:38,82 ======================