Zoek.exe v5.0.0.0 Updated 16-June-2014
Tool run by hans on di 17-06-2014 at  6:58:37,34.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\hans\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

17-6-2014 07:01:40 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\ChheApME deleted successfully
C:\PROGRA~2\EpicBotOS deleted successfully
C:\PROGRA~2\GreeatSavE4U deleted successfully
C:\PROGRA~2\OpenOffice 4 deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\PROGRA~3\ChheApME deleted successfully
C:\PROGRA~3\GreeatSavE4U deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully
C:\PROGRA~3\{4A268D42-77A5-4E91-AE73-470ED3BD9CA8} deleted successfully
C:\Users\hans\AppData\Roaming\hpqlog deleted successfully
C:\Users\hans\AppData\Local\HP Quick Start deleted successfully
C:\Users\hans\AppData\Local\MediaShow deleted successfully
C:\Users\tijdelijk\AppData\Local\HP Quick Start deleted successfully
C:\Users\tijdelijk\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FA540A29-CBE5-4352-2D40-B0A6C13C4151} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC251C4F-A1DF-CE6B-68B2-86183E290641} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6} deleted successfully

==== Running Processes ======================

C:\ProgramData\IePluginService\PluginService.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2svc.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2comm.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2pre.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2tray.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Google\Update\1.3.24.7\GoogleCrashHandler.exe
c:\programdata\topapp soft\sw-booster\SW-Booster.exe
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
C:\Program Files (x86)\Browny02\BrYNSvc.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\hans\Downloads\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe

==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FA540A29-CBE5-4352-2D40-B0A6C13C4151}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC251C4F-A1DF-CE6B-68B2-86183E290641}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c75a2d66-6d1d-4735-8f63-9d85dcc026a6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FA540A29-CBE5-4352-2D40-B0A6C13C4151}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC251C4F-A1DF-CE6B-68B2-86183E290641}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe] 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\GreeatSavE4U not found
C:\Program Files (x86)\ChheApME not found
C:\ProgramData\ChheApME not found
C:\Program Files (x86)\YoutubeAdblocker deleted
C:\Program Files (x86)\sAve  on deleted
C:\Program Files (x86)\Search-NeawTaub deleted
C:\ProgramData\Registry Helper deleted
C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 deleted
C:\ProgramData\Search-NeawTaub deleted
C:\Program Files (x86)\SW-Booster deleted
C:\ProgramData\YoutubeAdblocker deleted
C:\ProgramData\sAve  on deleted
C:\ProgramData\769823912cf96ab4 deleted
C:\ProgramData\InstallMate deleted
"C:\WINDOWS\tasks\SW-Booster-S-698646803.job" deleted
"C:\Program Files (x86)\SupTab\DpInterface32.dll" deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\configmgrc1.cfg" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nsg7F.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\favicon.ico" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Helper.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Internet Explorer Settings.exe" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyChrome.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetycrt.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr_u.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.exe" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut_ie.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Uninstall.exe" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\configmgrc1.cfg" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\del_DM_LL_nsg7F.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\Internet Explorer Settings.exe" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetycrt.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr_u.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut.dll" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut_ie.dll" not deleted
"C:\ProgramData\TopApp soft\SW-Booster\SW-Booster.exe" deleted
"C:\Program Files (x86)\SupTab" not deleted
"C:\Program Files (x86)\Movies Toolbar" not deleted
"C:\ProgramData\TopApp soft" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut" not deleted
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64" not deleted
"C:\ProgramData\TopApp soft\SW-Booster" not deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 7643 MB
CPU Info: AMD A4-5000 APU with Radeon(TM) HD Graphics
CPU Speed: 1513,7 MHz
Sound Card: luidspreker/Hoofdtelefoon (Real | 
Display Adapters: AMD Radeon HD 8330 | AMD Radeon HD 8330
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Realtek PCIe FE Family Controller | Qualcomm Atheros AR9485 802.11b|g|n WiFi-adapter
CD / DVD Drives: 1x (E: | ) E: hp      DVDRAM GU70N
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  456,9GB | D:  18,3GB | F:  455,1GB
Hard Disks - Free: C:  342,0GB | D:  1,8GB | F:  420,3GB
Manufacturer *: Insyde
BIOS Info: AT/AT COMPATIBLE |  | HPQOEM - 1
Time Zone: West-Europa (standaardtijd)
Motherboard *: Hewlett-Packard 216F
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome	35.0.1916.114
Internet Explorer Version: 11.0.9600.17126 
Google Chrome version: 35.0.1916.114
Sun Java version: 1.7.0_51 (32-bit) 
Shockwave Player version: 12.0.2r122

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\hans\AppData\Local\Temp ====
2014-06-15 20:49:18	006463E332853E7D84CD436CA70AF318	4897856	----a-w-	C:\Users\hans\AppData\Local\Temp\bc062e57-bccf-4b53-b325-29daaa247c29.exe
2014-06-15 20:48:00	9C089EC3BA65B47823D43DCD447DC647	429128	----a-w-	C:\Users\hans\AppData\Local\Temp\BuenoSearchTB.exe
2014-06-14 23:31:17	7388ACBFBF1817E9024C56CA9C046175	6335544	----a-w-	C:\Users\hans\AppData\Local\Temp\nsl73DE\SpSetup.exe
2014-06-14 23:30:45	A053E60195F8437A812ADAC5BABCD04D	5053725	----a-w-	C:\Users\hans\AppData\Local\Temp\a6390e99-d909-4714-bd87-2cfb8af84184\ExtremeFlashPlayer\Extreme_Flash_Player_v1.1.0.exe
2014-06-14 23:29:07	B153FCB4945880E0F06B1D40CCD6218B	657208	----a-w-	C:\Users\hans\AppData\Local\Temp\a6390e99-d909-4714-bd87-2cfb8af84184\ExtremeFlashPlayer.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-06-13 11:35:59	55ADDA5B29D1151727470FA165460773	1312256	----a-w-	C:\WINDOWS\SysWOW64\msxml3.dll
2014-06-13 11:34:57	61F5222289E052C40274ECD182A8AA99	98816	----a-w-	C:\WINDOWS\SysWOW64\drvinst.exe
2014-06-13 11:34:56	65FCEABE3128592F84B60140F814BDDB	1509888	----a-w-	C:\WINDOWS\SysWOW64\DWrite.dll
2014-06-12 10:01:45	9EAAB4305536829D6B7D9C3A47E92861	2179072	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2014-06-12 10:01:45	7E27FB6AB8976897A530FB30F5FF7691	69632	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-06-12 10:01:44	6D8E6A9A524FFAAFA4D2F6C8EF38D0BB	592896	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-06-12 10:01:43	D5ECBB3BFDC73A59440D9CA79AB3A342	17271296	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-06-12 10:01:43	8DF06ACA017949D37C38B6A0EF747D4E	526336	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2014-06-12 10:01:43	0AFCE8EEF3751810FE2101FD608FB8B3	1143296	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2014-06-12 10:01:43	017B99D09904DCA35D5F66AD79084B5F	368128	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-06-12 10:01:41	C69FDD49AB9E8BCF2BAAC469CE0CC756	1964544	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-06-12 10:01:40	5B5815477A53ED92B89955FFE7EDCB2E	242688	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2014-06-12 10:01:39	688227D38A6FF6403B293D0C50B454B9	11725312	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2014-06-12 10:01:37	C58E97EEB1CB80CE91D5E7FD5E78794F	4244992	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2014-06-12 10:01:36	22D7FFA4B94916F18EB1F1D107B86839	704512	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-06-12 10:01:29	771CDBC3D62437D6DB070820BB1EDCCF	1790976	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2014-06-12 10:01:28	D9F5B424C307B195E16A9B0A21E53BCC	61952	----a-w-	C:\WINDOWS\SysWOW64\iesetup.dll
2014-06-12 10:01:05	A93E67D9084BEFC32C8E2B75FCC5B02E	11792384	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2014-06-12 10:01:04	A5358F64D4EB5ABE2829981CD9734901	18755672	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2014-06-12 10:01:00	A717D4AC0C44BCBE990DBF8B6EC979AA	12711424	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-06-12 10:00:55	4550DC04464B86C5EB2CC77D9D27C06C	5833216	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-06-12 10:00:55	0FDDBC46B0FE68B9516BED5CDC2A5296	5104640	----a-w-	C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-06-12 10:00:52	1E48870B29C7D7328A7D484A61250AE5	5774848	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2014-06-12 10:00:50	8EAD5F0BC40579B106CDD9D2591CFEC5	1797896	----a-w-	C:\WINDOWS\SysWOW64\d3d9.dll
2014-06-12 10:00:47	E678126493997B951C6A6E91BC15C91C	836608	----a-w-	C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-06-12 10:00:46	E2AAB5EDC278D489C8EF87F277B5E3E6	888320	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-06-12 10:00:46	87AB9959EC23455326C8C55E59DE0A88	669856	----a-w-	C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-06-12 10:00:46	561945C42E36012B4799C342E6A96498	800768	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-06-12 10:00:45	90C83CF02C884315E595FA07CA9C64EF	387896	----a-w-	C:\WINDOWS\SysWOW64\mfsvr.dll
2014-06-12 10:00:45	5AE9C90A51256F72C541A2FD81EAB7C4	2144984	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2014-06-12 10:00:43	A54EB398BC2D792A0C603A97F7975FD8	357376	----a-w-	C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-06-12 10:00:42	EC4FA776548BF1A05DAE3B5EFB0FFE6F	1209616	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2014-06-12 10:00:42	76892045ECB1D830185618DBD3467562	337408	----a-w-	C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-06-12 10:00:42	5FAEA469BCE03F8FABAFB63D7603DC3C	982016	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-06-12 10:00:42	13CE2AA6D3ACAF0B485DBFE8AF2F5C48	305768	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-06-12 10:00:41	C97E772120135CD320CB217C92105B12	370176	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2014-06-12 10:00:41	A4F3682781DD8B36E97FD04BA50845A2	209920	----a-w-	C:\WINDOWS\SysWOW64\rdpencom.dll
2014-06-12 10:00:40	8C25FBB338147754DA42DF990FB3AE4A	285144	----a-w-	C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-06-12 10:00:40	008368626F3EFAEDB0C2CD4565BA6797	98584	----a-w-	C:\WINDOWS\SysWOW64\dwmapi.dll
2014-06-12 10:00:39	A9A027378882FFA14000612AE6FDA7AB	1200288	----a-w-	C:\WINDOWS\SysWOW64\propsys.dll
2014-06-12 10:00:39	A624CA7CDFA7941EECD6F96F1A47CCA3	178184	----a-w-	C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2014-06-12 10:00:39	88A821BC72CB1A935C92F453586233EF	518544	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2014-06-12 10:00:39	4874EB05C1BE374B8A4AC15DF3DB07B0	111528	----a-w-	C:\WINDOWS\SysWOW64\gpapi.dll
2014-06-12 10:00:39	15905E6B799C1446A37915ED23CD17E5	144384	----a-w-	C:\WINDOWS\SysWOW64\rpchttp.dll
2014-06-12 10:00:38	A3ECC0F6960AA699895CB48BC69BEA3B	326024	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2014-06-12 10:00:38	956D8170AD470804405C0564E10ED6ED	406504	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2014-06-12 10:00:38	6BAE2EB5EFCEAC999BB1A5BF267C711D	707048	----a-w-	C:\WINDOWS\SysWOW64\mfplat.dll
2014-06-12 10:00:38	619C6E72B8433B3F67738F7E6C972A96	230808	----a-w-	C:\WINDOWS\SysWOW64\wintrust.dll
2014-06-12 10:00:38	06AB75759A0B2D79680F52ACDAE702A1	313344	----a-w-	C:\WINDOWS\SysWOW64\clusapi.dll
2014-06-12 10:00:37	E697F1E4E819EB12C40AE01F88626BAB	219136	----a-w-	C:\WINDOWS\SysWOW64\resutils.dll
2014-06-12 10:00:36	D0E0E176F86C3B1048A67144DE0C5CD3	46592	----a-w-	C:\WINDOWS\SysWOW64\tlscsp.dll
2014-06-12 10:00:36	5C74AC34C1CAA9C232836C580272B0DD	1029120	----a-w-	C:\WINDOWS\SysWOW64\mispace.dll
2014-06-12 10:00:36	495C3945889DD59993474F2434863835	11776	----a-w-	C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-06-12 10:00:35	FF28231D41465C253E9F9EF164DD619C	230400	----a-w-	C:\WINDOWS\SysWOW64\wlanapi.dll
2014-06-12 10:00:35	CF3EA59E07BF906B43058C98B6750D16	855552	----a-w-	C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-06-12 10:00:35	B6803C8A600E3F029A3D688D9E590CA3	300544	----a-w-	C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-06-12 10:00:35	68A23F58F6F16B81BCBFCAA07CDF0680	61440	----a-w-	C:\WINDOWS\SysWOW64\srclient.dll
2014-06-12 10:00:35	3CABBCB26C4E73F3440A8A064EB490FF	11264	----a-w-	C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-06-12 10:00:25	CB1F941980DCC044542CEF180328D180	1064448	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2014-06-12 10:00:23	A8358D0521BC91CF30C5C1EE4541B695	754688	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2014-06-12 09:59:54	260A56A8164CBDF9884BB9B2895F6AB2	2344448	----a-w-	C:\WINDOWS\SysWOW64\Wpc.dll
2014-06-12 09:58:29	3DA5CD1E3B9BDAF79731CB6CB1029CB3	53248	----a-w-	C:\WINDOWS\SysWOW64\tsgqec.dll
2014-06-12 09:56:07	B8F28AAC003060E3B125D2447CFC19E2	164864	----a-w-	C:\WINDOWS\SysWOW64\msrating.dll
2014-06-12 09:56:07	6A06EB11F1E5BDAA795DAE7838F9FE20	43008	----a-w-	C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-12 09:55:59	260D6B421E5551E8BA75D16B5CA90D9A	51200	----a-w-	C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-12 09:55:58	7D6B20C69CC8EECB8F31D4FAF913BBE8	112128	----a-w-	C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-12 09:55:58	0E7B7C9F483300F9FF97C6A1E4BC4F57	32768	----a-w-	C:\WINDOWS\SysWOW64\iernonce.dll
2014-06-10 20:20:20	6CA253ECF94FCF26D174DBC149756AD3	25400	----a-w-	C:\WINDOWS\SysWOW64\authuitu.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-06-13 11:35:59	201FE8AAD76FB1E7FB5A3B1337435DC1	2151424	----a-w-	C:\WINDOWS\Sysnative\msxml3.dll
2014-06-13 11:35:35	CCDFFC83004AF62D0153CF45289028AF	3360256	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2014-06-13 11:34:58	8E472AA2E916417B55BC1E6727957453	110592	----a-w-	C:\WINDOWS\Sysnative\drvinst.exe
2014-06-13 11:34:57	BB7F878413AD3C2E7E89C96193D405DF	57856	----a-w-	C:\WINDOWS\Sysnative\drvcfg.exe
2014-06-13 11:34:56	CC8E86B9C18BCA38D3C467CFD661A466	1975296	----a-w-	C:\WINDOWS\Sysnative\DWrite.dll
2014-06-13 11:34:56	3FA6DC6B29717E32E211C1FD821F2C75	1345536	----a-w-	C:\WINDOWS\Sysnative\FntCache.dll
2014-06-12 10:01:46	063EF4239479F52DAF9F4849B0B304F1	2768384	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2014-06-12 10:01:40	3A1AB9DE852F2BC1ECE6403BDD01B9F0	1398272	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2014-06-12 10:01:40	12BA419E27DBC5DBF9262C8A885FA361	452096	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2014-06-12 10:01:39	867DD52B23D3B0390B88F3D7AD1E600C	631808	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2014-06-12 10:01:37	3FC3828E8820D1C93DBFBAD4BE456D85	2040832	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2014-06-12 10:01:35	CB8A91074AE1B5051E240B50A328DCF5	295424	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2014-06-12 10:01:35	2DBB9127794BC30BC31D26FA088F8BAB	13522944	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2014-06-12 10:01:34	CC603EF96BA456D4BCD9FF849ED07A2A	85504	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-06-12 10:01:33	AB3FA3D9B1F1D0571CBC43D1487CCD6F	5782528	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2014-06-12 10:01:33	6B9925F498D4E91FB57576CC3776D428	752640	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2014-06-12 10:01:32	9013D5BBE1B6D3A060F54B4B5BB2C3A3	846336	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2014-06-12 10:01:32	790FD40601502C5FE8213D4F335DA0BD	51200	----a-w-	C:\WINDOWS\Sysnative\jsproxy.dll
2014-06-12 10:01:31	56803B20D168C1B740D12CE0BE4588F5	23414784	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-06-12 10:01:30	40BFD9D6EC8E174145F012246CA73CCD	2266112	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2014-06-12 10:01:29	EAAA62F272858695814A1F42D5E59BD3	608768	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2014-06-12 10:01:03	AD2DE3982C7B6E62346098C7570F6A7D	13287936	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2014-06-12 10:01:02	AE7D8835A29FADB39C0D095BA32A9462	21268952	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2014-06-12 10:01:01	0C5C304C3A2D9E9633A7506CBB04929E	16872448	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2014-06-12 10:00:58	151427E526E96471A45FF6CC2257FBA0	8652800	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Search.dll
2014-06-12 10:00:57	AEDD44FDB8B521D443A07146F5CA3A53	7173120	----a-w-	C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll
2014-06-12 10:00:56	F4C09C622BC55A80F775DF7D8AB9984F	6645248	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2014-06-12 10:00:51	8ECEBEE92854C6705877911BA75889A8	2124840	----a-w-	C:\WINDOWS\Sysnative\d3d9.dll
2014-06-12 10:00:51	7E4A8D95B9DBC2CB588B91848A0AE731	2688000	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2014-06-12 10:00:50	383DA813409316D69603C1D849834D24	1308160	----a-w-	C:\WINDOWS\Sysnative\gpsvc.dll
2014-06-12 10:00:49	C2A06D6E746C42E6CE6CA020EE67FFA2	4269056	----a-w-	C:\WINDOWS\Sysnative\SyncEngine.dll
2014-06-12 10:00:48	EAE6ED6C5076CF765EB731B92A237149	955904	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2014-06-12 10:00:48	CFB353B4E33AFE922C3A62DBC9C9B0A8	7425368	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2014-06-12 10:00:48	6C6E26E0DB9AB2077F42FBBCDB153C84	2140888	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2014-06-12 10:00:48	6B7B2211C293218706D491204FCE8695	1126912	----a-w-	C:\WINDOWS\Sysnative\SearchFolder.dll
2014-06-12 10:00:47	6873D09262D32B95D6AC3026FCF8B424	1230336	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2014-06-12 10:00:47	5661481164A164CAD67DBE5A0191207F	4190720	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2014-06-12 10:00:46	AE210430A150FF20A58E3C6B381A832F	1025024	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2014-06-12 10:00:46	7FB9EC74ADFB2353B7782C3EF833F5B7	765408	----a-w-	C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll
2014-06-12 10:00:46	0BBD7EDAEA54D0E30445E9FC1179C60A	1411584	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2014-06-12 10:00:45	A1CD5194ACC156A852136B303F087260	491744	----a-w-	C:\WINDOWS\Sysnative\mfsvr.dll
2014-06-12 10:00:45	9ED0E72966FB08F7E6DB15E5519AF8D1	1379064	----a-w-	C:\WINDOWS\Sysnative\wmpmde.dll
2014-06-12 10:00:45	5071E71CC05346D88C5A08EB8B5A05E3	1584128	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2014-06-12 10:00:45	411DBFCD6ABAB75B6F7950677AEEFB7D	1403856	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2014-06-12 10:00:44	ED7C0A11E655CD8B89BE499F99D56098	486912	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2014-06-12 10:00:44	626D19F1771E1AE72208AE9A8F3082F7	491520	----a-w-	C:\WINDOWS\Sysnative\GeofenceMonitorService.dll
2014-06-12 10:00:44	067CB90C277DB4A737D5DEABA3055972	407016	----a-w-	C:\WINDOWS\Sysnative\services.exe
2014-06-12 10:00:43	EEC46BC17F28C528AB7FAC20AFDF69E3	462336	----a-w-	C:\WINDOWS\Sysnative\XpsGdiConverter.dll
2014-06-12 10:00:43	CB79B5D367376E7B49E2D95BFFB0BEEB	364640	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2014-06-12 10:00:43	98A184F6EC43B178901FCD5D4E2EC43B	1222656	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll
2014-06-12 10:00:43	46378ECCB4A29AA81BF296641C2501EF	323072	----a-w-	C:\WINDOWS\Sysnative\srvsvc.dll
2014-06-12 10:00:42	0BDD786156C820F49EEF5D348B4ACFF4	335872	----a-w-	C:\WINDOWS\Sysnative\MDEServer.exe
2014-06-12 10:00:41	D872C6095AACC13AD897DB5E4D2B5D91	805376	----a-w-	C:\WINDOWS\Sysnative\win32spl.dll
2014-06-12 10:00:41	BAF51BE2DEB387BD99CAC4E3B7850FEC	250368	----a-w-	C:\WINDOWS\Sysnative\rdpencom.dll
2014-06-12 10:00:41	AF3FF97AC2A73E70F8A8D11FB694175B	449536	----a-w-	C:\WINDOWS\Sysnative\defragsvc.dll
2014-06-12 10:00:41	79B134ECE836B406B212E28C24011538	834048	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2014-06-12 10:00:41	67176AA6EAF34FF2A962F14EB8F0478B	263424	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe
2014-06-12 10:00:40	95471DDCB3B3FF70015FD9AA13404F44	281600	----a-w-	C:\WINDOWS\Sysnative\resutils.dll
2014-06-12 10:00:40	87CF824E47489DD972FB4FB9FC4EDD0A	324888	----a-w-	C:\WINDOWS\Sysnative\MFCaptureEngine.dll
2014-06-12 10:00:40	850EBB87584484DC16F917E7B6F4A304	718336	----a-w-	C:\WINDOWS\Sysnative\swprv.dll
2014-06-12 10:00:40	7B12172CCE581F76C9335D7A47E0AD50	130144	----a-w-	C:\WINDOWS\Sysnative\gpapi.dll
2014-06-12 10:00:40	1697E09CDA4DD8741B8276F48A8514DE	32600	----a-w-	C:\WINDOWS\Sysnative\ploptin.dll
2014-06-12 10:00:40	1517EE52367CABAA5615AC736DC96C7D	125496	----a-w-	C:\WINDOWS\Sysnative\dwmapi.dll
2014-06-12 10:00:39	E369C59F2C0852DDD090C07E0DDE0051	1436160	----a-w-	C:\WINDOWS\Sysnative\VSSVC.exe
2014-06-12 10:00:39	AE2B9504C975B529D92D9E6603F6D33F	609448	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2014-06-12 10:00:39	9654DE19551093CD73874281E1573C94	135168	----a-w-	C:\WINDOWS\Sysnative\wscsvc.dll
2014-06-12 10:00:39	4684C8E852065C0A7937C395C165A24F	1466856	----a-w-	C:\WINDOWS\Sysnative\propsys.dll
2014-06-12 10:00:39	315502228EB37F36E86EF75CB1DA1D44	201920	----a-w-	C:\WINDOWS\Sysnative\MSVideoDSP.dll
2014-06-12 10:00:39	2A4177EE5446877BD24DD72504105603	191488	----a-w-	C:\WINDOWS\Sysnative\rpchttp.dll
2014-06-12 10:00:38	F4E351BB95D473CB55BB7C1A1FEB2798	467496	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2014-06-12 10:00:38	99277BE68298288A0E27CF9E50FAD091	881616	----a-w-	C:\WINDOWS\Sysnative\mfplat.dll
2014-06-12 10:00:38	92B785213F856EC736673516C54FA791	233912	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2014-06-12 10:00:38	7B3255A0B833908E4A7ACEA6245D344E	426496	----a-w-	C:\WINDOWS\Sysnative\clusapi.dll
2014-06-12 10:00:38	5EE916C3272A19B459717A8D2397B07A	55296	----a-w-	C:\WINDOWS\Sysnative\energyprov.dll
2014-06-12 10:00:38	01851563CB6FB986A4C0221C15AB6ADC	463256	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2014-06-12 10:00:37	BF6FBC9D97A24FABB0AE8B878279CF0B	244880	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2014-06-12 10:00:37	88ACBA95BB55B8226D52117462B76CD4	307304	----a-w-	C:\WINDOWS\Sysnative\wintrust.dll
2014-06-12 10:00:37	64B2A2630C964BF135A84A52FB2EEF9A	47616	----a-w-	C:\WINDOWS\Sysnative\tlscsp.dll
2014-06-12 10:00:37	414B81DE6CE46022ED43051C09EDB00B	467968	----a-w-	C:\WINDOWS\Sysnative\srcore.dll
2014-06-12 10:00:37	22B8B1F946ACFCB03832793A25216D8C	186880	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2014-06-12 10:00:37	072A99F351C505A45C9FDA32E7324602	28408	----a-w-	C:\WINDOWS\Sysnative\mfpmp.exe
2014-06-12 10:00:36	EF252510DB6C3511E30418BD2AC95A2D	1527296	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2014-06-12 10:00:36	E86E7792A2A0854D5560371BBDDA760B	1057280	----a-w-	C:\WINDOWS\Sysnative\rdvidcrl.dll
2014-06-12 10:00:36	E2C26EECF60D9DF94706DF981D074B98	721408	----a-w-	C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll
2014-06-12 10:00:36	B24960B79BDE7D5ED1EA638027F9E8F0	143872	----a-w-	C:\WINDOWS\Sysnative\BootMenuUX.dll
2014-06-12 10:00:36	8E1866A4E96F1159B6625627860A0454	2100736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll
2014-06-12 10:00:36	88BCAEABEB2A46DB7B336B8432720AC8	443904	----a-w-	C:\WINDOWS\Sysnative\wlansec.dll
2014-06-12 10:00:36	78D26F162E015FF644785C8836B617CA	1287168	----a-w-	C:\WINDOWS\Sysnative\mispace.dll
2014-06-12 10:00:36	69A374DE46C7BAAE30BFB1E40D69C5C6	761856	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2014-06-12 10:00:35	F587513213947A4C7EF47B660DAAFBC5	271872	----a-w-	C:\WINDOWS\Sysnative\rstrui.exe
2014-06-12 10:00:35	F2895547FC275642A29692DC344A847F	296960	----a-w-	C:\WINDOWS\Sysnative\wlanapi.dll
2014-06-12 10:00:35	DC61194C93DE9E5D549AEC5064A06BD4	872448	----a-w-	C:\WINDOWS\Sysnative\SkyDrive.exe
2014-06-12 10:00:35	B6BD22DDEDDD8665080D664749ACFEF5	64512	----a-w-	C:\WINDOWS\Sysnative\tsgqec.dll
2014-06-12 10:00:35	977D67467950D8048E94651EE6081B99	370176	----a-w-	C:\WINDOWS\Sysnative\wlanmsm.dll
2014-06-12 10:00:35	9465F8E72887AC6CCDD97F738A5AB6B6	70656	----a-w-	C:\WINDOWS\Sysnative\srclient.dll
2014-06-12 10:00:35	886767FD022213F7885416134E9082E5	201216	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2014-06-12 10:00:35	82FE5F302FD7C7EF0E41465BB873EFC7	11264	----a-w-	C:\WINDOWS\Sysnative\wlanhlp.dll
2014-06-12 10:00:26	A4948EA65E584A88BE09029DB49E4D70	1336648	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2014-06-12 10:00:23	AA5A86B32FC3975284082C64059F92DF	79872	----a-w-	C:\WINDOWS\Sysnative\WSReset.exe
2014-06-12 10:00:23	A28730EF44FCCBF0040B771CEFC8EE76	921088	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2014-06-12 09:59:55	60A4EAAA2964A3ECFD91A6EC9F8B72C0	3048904	----a-w-	C:\WINDOWS\Sysnative\WpcMon.exe
2014-06-12 09:59:55	416BE72F050166A6B5820833363AB0F2	3118080	----a-w-	C:\WINDOWS\Sysnative\Wpc.dll
2014-06-12 09:59:54	8838E982B803E9303ABE051E0CAB5A64	2861056	----a-w-	C:\WINDOWS\Sysnative\WpcWebSync.dll
2014-06-12 09:59:53	52E94AE3C9FF1E18A1EA125C4FFB0EEC	2834944	----a-w-	C:\WINDOWS\Sysnative\wpccpl.dll
2014-06-12 09:55:59	FCFAEDF0AA1A78A1875FDB798598408B	48640	----a-w-	C:\WINDOWS\Sysnative\ieetwproxystub.dll
2014-06-12 09:55:59	E77092C38028EB0A5C461B3436E0A6D5	4096	----a-w-	C:\WINDOWS\Sysnative\ieetwcollectorres.dll
2014-06-12 09:55:59	E129D34089E70215B65EA611F802FA9A	111616	----a-w-	C:\WINDOWS\Sysnative\ieetwcollector.exe
2014-06-12 09:55:59	338415F2E9A188875B6E43B5269620B0	139264	----a-w-	C:\WINDOWS\Sysnative\ieUnatt.exe
2014-06-12 09:55:58	FD08F8BA2437A85F500EFFE3FD3158A6	33792	----a-w-	C:\WINDOWS\Sysnative\iernonce.dll
2014-06-12 09:55:58	C1E2C16D58D76323800C3EE5E2C5095A	66048	----a-w-	C:\WINDOWS\Sysnative\iesetup.dll
2014-06-12 09:55:55	1D1D7F52EC84294859642A4309FE648E	195584	----a-w-	C:\WINDOWS\Sysnative\msrating.dll
2014-06-10 20:20:21	FC78340D0AAD921BB6E136C9B8CE43F4	29496	----a-w-	C:\WINDOWS\Sysnative\authuitu.dll
2014-06-10 20:20:21	C63647114DBB2EF27930E022B57D2DAC	40248	----a-w-	C:\WINDOWS\Sysnative\TURegOpt.exe
2014-06-10 13:00:26	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\WINDOWS\Sysnative\HP_ActiveX_Patch_NOT_DETECTED.txt
====== C:\WINDOWS\Sysnative\drivers =====
2014-06-12 10:00:44	7C7BE474915166B61B84C025F1F10157	563200	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
2014-06-12 10:00:43	FD163F487CBA9C98AFFEB546C80F49A2	677376	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2014-06-12 10:00:43	78514B073CC5775800A65BFB82A0D66B	443904	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2014-06-12 10:00:42	DBA635C6398782C549E3BE45CF1D0411	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2014-06-12 10:00:42	4BB9BC49DEE1A319EC58274A7BBED663	310616	-c--a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2014-06-12 10:00:42	0696F66E4D423793951A60562F794D14	402432	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb.sys
2014-06-12 10:00:41	498288DD5CA42C2D36D125893E968C53	77312	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2014-06-12 10:00:40	F152D55E497E12256290C43B31C7D0CE	589656	----a-w-	C:\WINDOWS\Sysnative\drivers\fvevol.sys
2014-06-12 10:00:40	D90AB68D0FAC9F357F663670FDBB511E	275800	-c--a-w-	C:\WINDOWS\Sysnative\drivers\msiscsi.sys
2014-06-12 10:00:40	CADCE0D6C30427F70A4BFA426256F68C	337240	----a-w-	C:\WINDOWS\Sysnative\drivers\Classpnp.sys
2014-06-12 10:00:40	716059F37BCCB1ABEDE99EBE82E8E362	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2014-06-12 10:00:39	6592D192E2823C043EDBC010E7774053	360792	----a-w-	C:\WINDOWS\Sysnative\drivers\fltMgr.sys
2014-06-12 10:00:39	4C1E71E37B56C768900B1FCF81205027	372568	----a-w-	C:\WINDOWS\Sysnative\drivers\storport.sys
2014-06-12 10:00:39	33977549C2CED09936E05BEE7659EAFF	384856	-c--a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2014-06-12 10:00:25	A9749FD0A06E22009EA972D8B9CB046B	428888	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2014-06-12 10:00:25	4B666AE119D2ADBAC816BEA7DB4D6881	2518872	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2014-06-12 10:00:24	D18EC2C83C2F773C9476A4FB0AA4C314	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2014-06-12 09:59:53	182561A14F2E93E81E66FE3700D17A5A	55328	----a-w-	C:\WINDOWS\Sysnative\drivers\wpcfltr.sys
====== C:\WINDOWS\Tasks ======
2014-06-15 18:37:34	729B69A36527222F36CA77AAD04DD162	368	----a-w-	C:\WINDOWS\Tasks\HPCeeScheduleFortijdelijk.job
2014-06-15 18:37:34	490B79EB83915B30C8D20F5E5A735CEE	3190	----a-w-	C:\WINDOWS\Sysnative\Tasks\HPCeeScheduleFortijdelijk
2014-06-15 18:05:48	27A4CF0BD93C0C6473C28BA6E3270043	3978	----a-w-	C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{A9E2364E-88E9-4CE0-B679-D9D44905C185}
2014-06-15 18:05:04	6E1B0029C1F4EC9A487CE12008D4E171	3600	----a-w-	C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1346150449-3009972852-1401146470-1008
2014-06-11 06:03:36	E7169BF52C33D1B083F40E7EF64C22EE	2762	----a-w-	C:\WINDOWS\Sysnative\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-06-10 20:27:55	997E4EE08F75AB3D2490882015030E0B	3704	----a-w-	C:\WINDOWS\Sysnative\Tasks\Java Update Scheduler
2014-06-10 19:26:29	AEB7A2AC2E16519A05D5C31B47781A9D	3160	----a-w-	C:\WINDOWS\Sysnative\Tasks\HPCeeScheduleForhans
2014-06-10 19:26:29	3D238678B8B3C3166A3C6886230C6EC2	348	----a-w-	C:\WINDOWS\Tasks\HPCeeScheduleForhans.job
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-06-16 20:25:10	--------	d-----w-	C:\Program Files\trend micro
2014-06-15 20:48:24	--------	d-----w-	C:\Program Files\Common Files\Lavasoft
2014-06-05 12:52:45	--------	d-----w-	C:\Program Files\iPod
2014-06-05 12:52:42	--------	d-----w-	C:\Program Files\iTunes
======= C:\PROGRA~2 =====
2014-06-15 20:49:38	--------	d-----w-	C:\PROGRA~2\Lavasoft
2014-06-14 23:32:33	--------	d-----w-	C:\PROGRA~2\PC TEKNIX
2014-06-10 20:19:18	--------	d-----w-	C:\PROGRA~2\AVG
2014-06-05 12:52:42	--------	d-----w-	C:\PROGRA~2\iTunes
2014-06-05 12:51:20	--------	d-----w-	C:\PROGRA~2\Apple Software Update
2014-06-05 12:50:21	--------	d-----w-	C:\PROGRA~2\COMMON~1\Apple
2014-05-29 11:49:27	--------	d-----w-	C:\PROGRA~2\Sony
2014-05-29 11:49:27	--------	d-----w-	C:\PROGRA~2\COMMON~1\Sony Shared
2014-05-25 08:27:48	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
======= C: =====
2014-06-14 23:31:55	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\end
====== C:\Users\hans\AppData\Roaming ======
2014-06-16 18:35:27	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg2014
2014-06-16 18:35:12	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg2014
2014-06-16 18:34:47	--------	d-----w-	C:\Users\hans\AppData\Local\Avg2014
2014-06-16 17:02:30	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\LavasoftStatistics
2014-06-16 17:02:25	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\Lavasoft
2014-06-16 16:58:41	--------	d-----w-	C:\Users\hans\AppData\Roaming\LavasoftStatistics
2014-06-15 20:49:44	--------	d-----w-	C:\Users\hans\AppData\Locallow\adawaretb
2014-06-15 20:48:55	--------	d-----w-	C:\Users\hans\AppData\Roaming\Lavasoft
2014-06-15 18:06:23	--------	d-sh--w-	C:\Users\tijdelijk\AppData\Locallow\EmieUserList
2014-06-15 18:06:20	--------	d-sh--w-	C:\Users\tijdelijk\AppData\Local\EmieUserList
2014-06-15 18:06:20	--------	d-sh--w-	C:\Users\tijdelijk\AppData\Local\EmieSiteList
2014-06-15 18:05:53	--------	d-----w-	C:\Users\tijdelijk\AppData\Locallow\DataMngr
2014-06-15 18:05:46	--------	d-sh--w-	C:\Users\tijdelijk\AppData\Locallow\EmieSiteList
2014-06-15 18:05:46	--------	d-----w-	C:\Users\tijdelijk\AppData\Locallow\{FC251C4F-A1DF-CE6B-68B2-86183E290641}
2014-06-15 18:05:46	--------	d-----w-	C:\Users\tijdelijk\AppData\Locallow\{FA540A29-CBE5-4352-2D40-B0A6C13C4151}
2014-06-15 18:05:46	--------	d-----w-	C:\Users\tijdelijk\AppData\Locallow\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6}
2014-06-15 18:03:50	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\AVG
2014-06-15 18:03:50	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\AVG
2014-06-15 18:03:07	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\Hewlett-Packard
2014-06-15 18:02:01	--------	d-----w-	C:\Users\tijdelijk\AppData\Locallow\somotomoviestoolbar181
2014-06-15 18:01:21	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Hewlett-Packard
2014-06-15 18:01:15	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\AMD
2014-06-15 18:01:04	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\ATI
2014-06-15 18:01:04	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\ATI
2014-06-15 18:00:39	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\CyberLink
2014-06-15 18:00:22	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\kinoma
2014-06-15 18:00:21	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Sony Corporation
2014-06-15 18:00:07	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\ControlCenter4
2014-06-15 17:59:55	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\Synaptics
2014-06-15 17:59:19	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Power2Go8
2014-06-15 17:59:08	--------	d-----r-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-15 17:59:08	--------	d-----r-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-06-15 17:59:03	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\Adobe
2014-06-15 17:58:56	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Google
2014-06-15 17:58:29	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Packages
2014-06-15 17:58:28	--------	d-s---w-	C:\Users\tijdelijk\AppData\Locallow\Microsoft
2014-06-15 17:57:52	--------	d-s---w-	C:\Users\tijdelijk\AppData\Roaming\Microsoft
2014-06-15 17:57:52	--------	d-----w-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-15 17:57:52	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Temp
2014-06-15 17:57:52	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Microsoft Help
2014-06-15 17:57:52	--------	d-----w-	C:\Users\tijdelijk\AppData\Local\Microsoft
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-15 00:01:44	--------	d-----w-	C:\Users\hans\AppData\Locallow\{E6ECED80-B682-9E44-8CD7-8D133CC7185E}
2014-06-14 23:30:55	--------	d-----w-	C:\Users\hans\AppData\Roaming\PC TEKNIX
2014-06-12 09:52:52	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\AVG
2014-06-12 09:52:52	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AVG
2014-06-10 20:19:55	--------	d-----w-	C:\Users\hans\AppData\Roaming\AVG
2014-06-10 20:19:55	--------	d-----w-	C:\Users\hans\AppData\Local\AVG
2014-06-10 13:00:32	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Hewlett-Packard
2014-06-10 12:55:57	--------	d-sh--w-	C:\Users\hans\AppData\Locallow\EmieUserList
2014-06-10 12:55:52	--------	d-sh--w-	C:\Users\hans\AppData\Local\EmieUserList
2014-06-10 12:55:52	--------	d-sh--w-	C:\Users\hans\AppData\Local\EmieSiteList
2014-06-10 12:55:50	--------	d-sh--w-	C:\Users\hans\AppData\Locallow\EmieSiteList
2014-06-07 23:11:21	--------	d-----w-	C:\Users\hans\AppData\Locallow\{A25FF6CD-A845-8C71-2AE6-26A5D2E33FD1}
2014-06-05 12:54:09	--------	d-----w-	C:\Users\hans\AppData\Roaming\Apple Computer
2014-06-05 12:54:09	--------	d-----w-	C:\Users\hans\AppData\Local\Apple Computer
2014-06-05 12:51:22	--------	d-----w-	C:\Users\hans\AppData\Local\Apple
2014-06-02 19:18:13	--------	d-s---w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Locallow\Microsoft
2014-05-31 20:27:25	--------	d-----w-	C:\Users\hans\AppData\Roaming\uTorrent
2014-05-31 18:43:31	--------	d-----w-	C:\Users\hans\AppData\Locallow\{FC251C4F-A1DF-CE6B-68B2-86183E290641}
2014-05-31 18:42:54	--------	d-----w-	C:\Users\hans\AppData\Locallow\{2F8F8555-6FF2-6233-27B3-F511EF5DF5E6}
2014-05-31 18:42:48	--------	d-----w-	C:\Users\hans\AppData\Locallow\{FA540A29-CBE5-4352-2D40-B0A6C13C4151}
2014-05-31 18:42:43	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-05-31 18:42:43	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-05-31 18:42:43	--------	d-----w-	C:\Users\hans\AppData\Local\Torch
2014-05-31 18:42:43	--------	d-----w-	C:\Users\hans\AppData\Local\Chromatic Browser
2014-05-31 18:42:43	--------	d-----w-	C:\Users\Gast\AppData\Local\Torch
2014-05-31 18:42:43	--------	d-----w-	C:\Users\Gast\AppData\Local\Chromatic Browser
2014-05-31 18:42:43	--------	d-----w-	C:\Users\Administrator\AppData\Local\Torch
2014-05-31 18:42:43	--------	d-----w-	C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-05-31 18:42:42	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Google
2014-05-31 18:42:42	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-05-31 18:42:42	--------	d-----w-	C:\Users\hans\AppData\Local\Comodo
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Gast\AppData\Local\Google
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Gast\AppData\Local\Comodo
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Administrator\AppData\Local\Google
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Administrator\AppData\Local\Comodo
2014-05-29 11:49:48	--------	d-----w-	C:\Users\hans\AppData\Local\kinoma
2014-05-29 11:49:27	--------	d-----w-	C:\Users\hans\AppData\Local\Sony Corporation
2014-05-29 11:47:49	--------	d-----w-	C:\Users\hans\AppData\Roaming\Sony Corporation
2014-05-23 17:36:31	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2014-05-23 17:36:31	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2014-05-18 18:56:37	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Temp
====== C:\Users\hans ======
2014-06-16 20:24:56	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\hans\Downloads\RSITx64.exe
2014-06-16 17:08:20	BF16C76A1953C8C9168326EA02964EF7	1707144	----a-w-	C:\Users\hans\Downloads\Adaware_Installer.exe
2014-06-15 20:48:07	--------	d-----w-	C:\ProgramData\Lavasoft
2014-06-15 20:48:00	2099E554121273FE3D7DA5ED9DC7AF92	1707144	----a-w-	C:\Users\hans\Desktop\Adaware_Installer.exe
2014-06-15 20:46:51	40ADC3367902B81C6BB3B910D2BCEDC8	357728	----a-w-	C:\Users\hans\Downloads\SoftonicDownloader_voor_ad-aware-free-antivirus.exe
2014-06-15 17:59:08	--------	d-----r-	C:\Users\tijdelijk\Searches
2014-06-15 17:59:08	--------	d-----r-	C:\Users\tijdelijk\Contacts
2014-06-15 17:57:54	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\tijdelijk\ntuser.ini
2014-06-15 17:57:52	--------	d--h--w-	C:\Users\tijdelijk\AppData
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Videos
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Saved Games
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Pictures
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Music
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Links
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Favorites
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Downloads
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Documents
2014-06-15 17:57:52	--------	d-----r-	C:\Users\tijdelijk\Desktop
2014-06-14 23:32:33	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extreme Flash Player
2014-06-14 23:28:32	C513592CE3F02D36A45CD2A02C191454	233776	----a-w-	C:\Users\hans\Downloads\ExtremeFlashPlayer.exe
2014-06-10 20:18:16	--------	d-----w-	C:\ProgramData\AVG
2014-06-05 20:51:22	FCF8CF8A114B5BC01C8A0B0C04B4EFAA	1671504	----a-w-	C:\Users\hans\Downloads\uTorrent (1).exe
2014-06-05 12:54:07	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-05 12:52:42	--------	d-----w-	C:\ProgramData\Apple Computer
2014-06-05 12:48:23	054C2C14C8CEA153897C45D47A774068	112616784	----a-w-	C:\Users\hans\Downloads\iTunes64Setup.exe
2014-06-05 11:37:38	77AAF5CFBD36B430CA0826CDF271E156	357712	----a-w-	C:\Users\hans\Downloads\SoftonicDownloader_voor_utorrent.exe
2014-06-02 18:09:55	--------	d--h--w-	C:\ProgramData\Common Files
2014-05-31 18:43:15	--------	d-----w-	C:\ProgramData\TopApp soft
2014-05-31 18:42:42	--------	d-----w-	C:\Users\HomeGroupUser$\AppData
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Gast\AppData
2014-05-31 18:42:42	--------	d-----w-	C:\Users\Administrator\AppData
2014-05-29 11:52:56	--------	d-----w-	C:\ProgramData\kinoma
2014-05-29 11:49:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reader for pc
2014-05-29 11:47:49	--------	d-----w-	C:\ProgramData\Sony Corporation
2014-05-18 18:56:42	--------	d-----w-	C:\ProgramData\SafetyNut

====== C: exe-files ==
2014-06-16 20:25:10	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\hans.exe
2014-06-16 17:08:20	BF16C76A1953C8C9168326EA02964EF7	1707144	----a-w-	C:\Users\hans\Downloads\Adaware_Installer.exe
2014-06-15 20:49:18	006463E332853E7D84CD436CA70AF318	4897856	----a-w-	C:\Users\hans\AppData\Local\Temp\bc062e57-bccf-4b53-b325-29daaa247c29.exe
2014-06-15 20:48:00	9C089EC3BA65B47823D43DCD447DC647	429128	----a-w-	C:\Users\hans\AppData\Local\Temp\BuenoSearchTB.exe
2014-06-15 20:48:00	2099E554121273FE3D7DA5ED9DC7AF92	1707144	----a-w-	C:\Users\hans\Desktop\Adaware_Installer.exe
2014-06-15 12:32:06	564E31134D47B716118707DCAA2AA8A0	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I6JGP7J.exe
2014-06-15 12:31:42	A187365D29A4F11D12C5BD385F380494	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I5GI6G1.exe
2014-06-15 12:31:42	36756803DD915B4D317CB16E22F330C2	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IIET8GL.exe
2014-06-15 12:30:29	DBAB4DC37CCF2789FA2314CDAB70889D	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I4GEDVT.exe
2014-06-15 12:30:29	6E6DA97C391B367BFE6EDD2B05764050	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I09HTA7.exe
2014-06-15 12:30:22	EF4191C39EFFBA32DBD8C633201C1B93	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IWW37XD.exe
2014-06-15 12:30:13	F42203EDB56D461C5A5E1A2BB207D49C	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IXFAOVD.exe
2014-06-15 12:30:03	16230046A4031EB5385EC4939E69395B	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IR9GCTG.exe
2014-06-15 12:28:59	C489D616532C78490C01E00DEEB7691D	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$ISKQHNR.exe
2014-06-15 12:28:52	C6FBF55E3A1778193E75E926D5EFC203	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$ITJ8RY0.exe
2014-06-15 12:28:43	3D9DC22A55D1DA38484C62E2AE559B1F	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IILC8R6.exe
2014-06-15 12:28:43	371F46E5C99906C22E1FE4631C6B0699	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IOYQAC3.exe
2014-06-15 12:28:43	37041F6A5E8552985195E5D29B104529	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I620ZCU.exe
2014-06-15 12:28:18	94B776E65698B3F74638CA1E2F8707C8	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I9FC8EF.exe
2014-06-15 12:27:47	B3C165CEC3CD27A482E93C795F85F9CA	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I3R285A.exe
2014-06-15 12:27:47	3F1606A45CD4C36BEE8A9C5A9FC77010	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$ILVBK28.exe
2014-06-15 12:27:28	8DA51BDCC255E308C973417A7BDA4F65	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IJSOEKS.exe
2014-06-15 12:27:28	3C48A9A92C62E6AAC050FED8D1655CE0	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I2FEQ31.exe
2014-06-15 12:27:06	11723E528B5E077F8D28B7AB49BC7F6C	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$ISL8KAU.exe
2014-06-15 12:26:38	E13A8E9B1E531ACFDDA869CBE7580DF5	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I5T4HYW.exe
2014-06-15 12:26:38	6BBE6E0DD2829E1467864963F867EC35	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I7RFIWH.exe
2014-06-15 12:26:38	32BE81719E90CCDE9E6DCA83222988FE	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IZ2TICW.exe
2014-06-15 12:26:38	2389D87363917254284BABA585227DF6	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IZ0FMVP.exe
2014-06-15 12:26:38	1812A076E6104BB33FA4714B5B326219	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$I6J8J7V.exe
2014-06-15 12:25:56	E47FABE95E498D839A89CF6FE375A112	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IHZ3IOA.exe
2014-06-15 12:25:56	C0EDE8A981F9573F716C5D96649FCC05	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IWUT5R9.exe
2014-06-15 12:24:55	036815B968C7E2C17EC415F13B55B400	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IJTDP8H.EXE
2014-06-15 12:24:49	993B7252FB83A80098836E8C55654731	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$IU2Y1TY.exe
2014-06-15 09:11:14	EBAF0C12948163BB6A7E379DEE71923D	171917672	----a-w-	C:\$Recycle.Bin\S-1-5-21-1346150449-3009972852-1401146470-1002\$RU2Y1TY.exe
2014-06-14 23:31:18	7388ACBFBF1817E9024C56CA9C046175	6335544	----a-w-	C:\Users\hans\AppData\Local\Microsoft\Windows\INetCache\IE\T4VB2515\SPSetup[1].exe
2014-06-14 23:31:17	7388ACBFBF1817E9024C56CA9C046175	6335544	----a-w-	C:\Users\hans\AppData\Local\Temp\nsl73DE\SpSetup.exe
2014-06-14 23:31:14	9B7196C6DDCE10503D3C912467130E18	2342176	----a-w-	C:\Users\hans\AppData\Local\Microsoft\Windows\INetCache\IE\T4VB2515\WIE_2.8.2.8[1].exe
2014-06-14 23:30:53	7E0C7AA5286F59421EB76931509D2B38	165416	----a-w-	C:\Users\hans\AppData\Local\Microsoft\Windows\INetCache\IE\E0L58ICV\spstub[1].exe
2014-06-14 23:30:45	A053E60195F8437A812ADAC5BABCD04D	5053725	----a-w-	C:\Users\hans\AppData\Local\Temp\a6390e99-d909-4714-bd87-2cfb8af84184\ExtremeFlashPlayer\Extreme_Flash_Player_v1.1.0.exe
2014-06-14 23:29:07	B153FCB4945880E0F06B1D40CCD6218B	657208	----a-w-	C:\Users\hans\AppData\Local\Temp\a6390e99-d909-4714-bd87-2cfb8af84184\ExtremeFlashPlayer.exe
2014-06-12 10:01:44	D3BB3F9ADE86B1E1E36371195DC8A0B2	810160	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-06-12 10:01:41	A9EBEFD3FC125D31EB33A8BB1AB17BE8	812208	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-06-12 10:01:41	50989AAF09CDCEBC0FD8EB0FE79C2A98	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-06-12 10:01:37	159C5979C61F51EEFC84D9AB17C4E0E7	482816	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-06-10 12:59:20	FFD052D0F464ADC243C24E71D15C9990	12344	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe
2014-06-10 12:59:20	E2E0FCCA231DA8BE39B90540D4A11CC3	58072	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_SysInfo.exe
2014-06-10 12:59:20	DF2AC1055C406AA66869C95C2FD84A21	17464	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\HPSACIPDetection4.exe
2014-06-10 12:59:20	DDE93A9FB974B6DCDEE299AF055CFFF1	59608	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\WarrantyObjectChecker.exe
2014-06-10 12:59:20	DD79A6B15C2F28DE98DF4852AAF6B13B	21720	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
2014-06-10 12:59:20	B3C39F3CC9CE7C960250DDA80B46255D	107832	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\HPSAObjUtil7.exe
2014-06-10 12:59:20	B26DFFF460A1F21A3DCD3529F3F61E14	33544	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\HPSACommander.exe
2014-06-10 12:59:20	8882F7743E050601D716623BD2322C73	29912	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_SmartFriendAwareness_Ex.exe
2014-06-10 12:59:20	14D3AD65D1167AB5CE25A42A809233CC	33496	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_SmartFriendAwareness.exe
2014-06-10 12:59:20	11C0CA987B7C0740120AD6AAF15FA71A	149304	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\HPSAObjUtil.exe
2014-06-10 12:59:19	F9EDD8A064F0FEDEAF812CF5B5EF5E9B	33496	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_AfterUpgradingToWin81.exe
2014-06-10 12:59:19	F4CCCAB03392ECA3BCB6EAB9DB2089E0	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_NSPOS.exe
2014-06-10 12:59:19	EFF64B299DF991A003B1741585E09E10	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_US.exe
2014-06-10 12:59:19	E71B3AB9DDB8A4561F3FC2FB5C80DEB2	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_LowMemory.exe
2014-06-10 12:59:19	AF0D919701B5BE372A276800084E6661	30936	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_BackupPasswordReminder.exe
2014-06-10 12:59:19	8409673B856C3F2AF634B135EF805F50	29912	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_GettingStartedwithWindows8.exe
2014-06-10 12:59:19	7C9B00E63B977C30A2B9605A5CA76CB8	30936	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_HPConnectedPhoto.exe
2014-06-10 12:59:19	7C4B1D7284CE08D53C531651EA59444E	27352	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_LowDiskSpace_NSPOS.exe
2014-06-10 12:59:19	7A1DC920D662880F6EF8A34E21E010B0	30424	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_BackupYourImportantData_US.exe
2014-06-10 12:59:19	698BA1D64B2C178B7069B2D1E0F35A7D	29400	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_BackupYourImportantData_EMEA.exe
2014-06-10 12:59:19	58D87CD3D31B52C204A40F19FEF6BF3D	27352	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_LowDiskSpace_EMEA.exe
2014-06-10 12:59:19	5606EFA83C850AB210C38A1C3AE886AE	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_BeforeUpgradingToWin81.exe
2014-06-10 12:59:19	5288FEC36ADB27C8A24623F6DB8858B8	72920	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detection_toastNotify.exe
2014-06-10 12:59:19	51BAA13041CB3873FDAB40E28B0035B7	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_Darwin_US.exe
2014-06-10 12:59:19	4E338C16CD87D3A791988D60A8DA997D	28888	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_EMEA.exe
2014-06-10 12:59:19	366FC16A3865C65EA83D13B74983B465	33592	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_CoolSense.exe
2014-06-10 12:59:19	2EEE5D8BCE7D62C7A971FEC350209F0B	44344	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_Darwin_NSPOS.exe
2014-06-10 12:59:19	2DA14CADC35E8CAEC6D0FD7D3A5844C2	21208	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detection_GuestAccount.exe
2014-06-10 12:59:19	259C81499E939D50A7992B32D7DC9C63	31448	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_RecoveryDisc_Darwin_EMEA.exe
2014-06-10 12:59:19	06D9888F172A8AC47959DA5DF68270DE	29400	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\Detect_LowDiskSpace_US.exe
=== C: other files ==
2014-06-15 18:04:22	8AD223868AB9974F7746D0227730A0CC	26392	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_20158\search.crx
2014-06-15 18:04:22	2E2E328E5BF6BE61203164B3E9EA8094	24040	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_7492\gmail.crx
2014-06-15 18:04:21	D2F6A1B11344D9AC7BCFB75900D4ADE1	23668	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_12291\youtube.crx
2014-06-15 18:04:21	71E1283B8440F6264CEC99DF9AD81F5B	25561	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_7539\drive.crx
2014-06-15 18:04:21	2C71C49F991095A1848624907BACBB08	4578	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_30740\docs.crx
2014-06-15 18:04:21	14443FF036B68DA3E7497CDA72D48DCD	346928	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_21519\newtabv3.crx
2014-06-15 18:04:20	5FBA21C2150372289C4589E26D2F955E	444962	----a-w-	C:\Users\tijdelijk\AppData\Local\Temp\scoped_dir_4504_28917\toolbar.crx
2014-06-12 10:00:47	5661481164A164CAD67DBE5A0191207F	4190720	----a-w-	C:\Windows\System32\win32k.sys
2014-06-12 10:00:44	7C7BE474915166B61B84C025F1F10157	563200	----a-w-	C:\Windows\System32\drivers\afd.sys
2014-06-12 10:00:43	FD163F487CBA9C98AFFEB546C80F49A2	677376	----a-w-	C:\Windows\System32\drivers\srv2.sys
2014-06-12 10:00:43	78514B073CC5775800A65BFB82A0D66B	443904	----a-w-	C:\Windows\System32\drivers\nwifi.sys
2014-06-12 10:00:42	DBA635C6398782C549E3BE45CF1D0411	206848	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2014-06-12 10:00:42	4BB9BC49DEE1A319EC58274A7BBED663	310616	-c--a-w-	C:\Windows\System32\drivers\volsnap.sys
2014-06-12 10:00:42	0696F66E4D423793951A60562F794D14	402432	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2014-06-12 10:00:41	498288DD5CA42C2D36D125893E968C53	77312	-c--a-w-	C:\Windows\System32\drivers\hdaudbus.sys
2014-06-12 10:00:40	F152D55E497E12256290C43B31C7D0CE	589656	----a-w-	C:\Windows\System32\drivers\fvevol.sys
2014-06-12 10:00:40	D90AB68D0FAC9F357F663670FDBB511E	275800	-c--a-w-	C:\Windows\System32\drivers\msiscsi.sys
2014-06-12 10:00:40	CADCE0D6C30427F70A4BFA426256F68C	337240	----a-w-	C:\Windows\System32\drivers\Classpnp.sys
2014-06-12 10:00:40	716059F37BCCB1ABEDE99EBE82E8E362	246272	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2014-06-12 10:00:39	6592D192E2823C043EDBC010E7774053	360792	----a-w-	C:\Windows\System32\drivers\fltMgr.sys
2014-06-12 10:00:39	4C1E71E37B56C768900B1FCF81205027	372568	----a-w-	C:\Windows\System32\drivers\storport.sys
2014-06-12 10:00:39	33977549C2CED09936E05BEE7659EAFF	384856	-c--a-w-	C:\Windows\System32\drivers\spaceport.sys
2014-06-12 10:00:25	A9749FD0A06E22009EA972D8B9CB046B	428888	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-12 10:00:25	4B666AE119D2ADBAC816BEA7DB4D6881	2518872	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2014-06-12 10:00:24	D18EC2C83C2F773C9476A4FB0AA4C314	295424	----a-w-	C:\Windows\System32\drivers\ks.sys
2014-06-12 09:59:53	182561A14F2E93E81E66FE3700D17A5A	55328	----a-w-	C:\Windows\System32\drivers\wpcfltr.sys
2014-06-10 12:59:34	874A97E862AAF55A0AF7B8C1FDE22755	121518	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\resources\nl-NL\hcsolutions.zip
2014-06-10 12:59:30	070C4BD423D435BAFBC3640DE5C82381	1285474	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\resources\guidAcheck.zip
2014-06-10 12:59:24	9628AF082ABD5F0EEE14F24A260EFF5D	1918221	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\resources\guid.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

[HKEY_USERS\S-1-5-21-1346150449-3009972852-1401146470-1008\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"nmctxth"="C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
"nmapp"="C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe -autorun -nosplash"
"ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun"
"BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"Reader Application Helper"="C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\progra~2\\sw-boo~1\\assist~1.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-01-2014 19:35]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-01-2014 19:35]
C:\WINDOWS\tasks\HPCeeScheduleForhans.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13-09-2010 22:15]
C:\WINDOWS\tasks\HPCeeScheduleFortijdelijk.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13-09-2010 22:15]
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [05-06-2013 03:37]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\HPCeeScheduleForhans" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\WINDOWS\SysNative\tasks\HPCeeScheduleFortijdelijk" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\WINDOWS\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\WINDOWS\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{96935C22-8D3D-49D5-A1A2-3CAB2D6EB464}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{A9E2364E-88E9-4CE0-B679-D9D44905C185}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaimdcedbpbcjjbbnfcbbjcngmomic - C:\Users\hans\AppData\Local\somotomoviestoolbar181\GC\toolbar.crx[24-01-2014 09:50]
pelmeidfhdlhlbjimpabfcbnnojbboma - C:\Users\hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx[26-03-2014 02:00]

saveu oon - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Administrator\AppData\Local\Torch\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Administrator\AppData\Local\Torch\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Administrator\AppData\Local\Torch\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Administrator\AppData\Local\Torch\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - Gast\AppData\Local\Torch\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - Gast\AppData\Local\Torch\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - Gast\AppData\Local\Torch\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - Gast\AppData\Local\Torch\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - hans\AppData\Local\Chromatic Browser\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - hans\AppData\Local\Chromatic Browser\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - hans\AppData\Local\Chromatic Browser\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - hans\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - hans\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - hans\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - hans\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - hans\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
Movies Toolbar - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic
saveu oon - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
BestSaveForYou - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgmaojkoffikmnojdgdnkodhjcmjmkpk
SMSnetwork for Chrome - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlkmhlkkbjgbjpiidobibnckobfagpbd
KB SSL Enforcer - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
CheApMe - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjkmfeaidjdnpbdaphfacpncfndbgdnm
Google Wallet - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
YoutubeAdblocker - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - hans\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - hans\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - hans\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - hans\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - hans\AppData\Local\Torch\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - hans\AppData\Local\Torch\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - hans\AppData\Local\Torch\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - hans\AppData\Local\Torch\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
saveu oon - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\aaiggkaciaainfofjnkbggpcjdnahlph
Search-NeawTaub - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\fcbffkfmbgfmmoljcdejaecjiicamfki
KB SSL Enforcer - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\flcpelgcagfhfoegekianiofphddckof
YoutubeAdblocker - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\nppaeccbohkjdchkillchihhabjakdpa
Movies Toolbar - tijdelijk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic
undetermined - hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.trovi.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M2960EDD7-8C56-4F58-A327-B277A761DCD2&SearchSource=55&CUI=&UM=5&UP=SP6D545DE6-15A1-4790-86DD-C69EF326E652&SSPV="
"Default_Page_URL"="http://start.qone8.com/?type=hp&ts=1396124059&from=adks&uid=ST1000LM024XHN-M101MBB_S31LJ9DDA00748"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://websearch.eazytosearch.info/?pid=724&r=2014/05/31&hid=16523441149986058642&lg=EN&cc=NL"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://websearch.eazytosearch.info/?pid=724&r=2014/05/31&hid=16523441149986058642&lg=EN&cc=NL"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{053C877C-69A3-41D7-8C97-7D29C1878DE2} Amazon (UK) Search Suggestions Url="http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"
{33BB0A4E-99AF-4226-BDF6-49120163DE86} qone8  Url="http://www.qone8.com/web/?type=ds&ts=1396124059&from=adks&uid=ST1000LM024XHN-M101MBB_S31LJ9DDA00748&q={searchTerms}"
{52db1893-8a90-4192-aede-08e00b8f8473} Ask.com  Url="http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=114&systemid=473&v=a12627-310&apn_uid=6103352053614107&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q={searchTerms}"
{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} WebSearch  Url="http://websearch.eazytosearch.info/?l=1&q={searchTerms}&pid=724&r=2014/05/31&hid=16523441149986058642&lg=EN&cc=NL"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1346-154357-12126-2/4?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}"

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-21-1346150449-3009972852-1401146470-1008\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'tijdelijk')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~2\sw-boo~1\assist~1.dll
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GoToMyPC - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToMyPC\g2svc.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem6.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Service (IePluginService) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginService\PluginService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: SafetyNut Manager (SafetyNutManager) - Somoto LTD - C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=684 folders=86 55236226 bytes)

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\Movies Toolbar\SafetyNut\configmgrc1.cfg"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nsg7F.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\favicon.ico"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Helper.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Internet Explorer Settings.exe"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyChrome.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetycrt.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr_u.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.exe"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut_ie.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\Uninstall.exe"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\configmgrc1.cfg"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\del_DM_LL_nsg7F.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\Internet Explorer Settings.exe"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetycrt.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr_u.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut.dll"  not found
"C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut_ie.dll"  not found
"C:\Program Files (x86)\SupTab"  not found
"C:\Program Files (x86)\Movies Toolbar"  not found
"C:\ProgramData\TopApp soft"  not found

==== EOF on di 17-06-2014 at  8:06:58,02 ======================