
Zoek.exe v5.0.0.0 Updated 09-January-2015
Tool run by Elien on zo 11/01/2015 at 22:17:27,24.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Elien\Desktop\zoek (2).exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

11/01/2015 22:19:10 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\FineDealSoft deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\log deleted successfully
C:\PROGRA~3\FineDealSoft deleted successfully
C:\Users\Elien\AppData\Roaming\hpqlog deleted successfully
C:\Users\Elien\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\Elien\AppData\Roaming\Systweak deleted successfully
C:\Users\Elien\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Internet Explorer\SearchScopes\{3186E5E1-77B2-4C12-ADA5-8B592570846E} deleted successfully
HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{177698AB-4A46-49AD-A96E-F787528A162B} deleted successfully
HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B15019C2-B438-403C-8ED3-A13E38CA57F} deleted successfully
HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4D62D98-7494-487B-AA5A-E69FE811EF6} deleted successfully
HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FF0F3718-92C4-48F5-874B-44C279DA3FB7} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

"C:\Users\Elien\AppData\Roaming\GU.exe" not found
C:\PROGRA~3\b6fe10e226562e4a deleted
C:\PROGRA~2\globalUpdate deleted
C:\Users\Elien\AppData\Roaming\Gameo deleted
C:\Users\Elien\AppData\Roaming\GoldenGate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Elien\AppData\Local\globalUpdate deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\patsearch.bin deleted
C:\WINDOWS\SysNative\roboot64.exe deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Elien\Desktop\Nero2014_setup-15.5c_softonic_trial.exe deleted
"C:\WINDOWS\tasks\GU.job" deleted
"C:\WINDOWS\Installer\5060f1.msi" deleted
"C:\Users\Elien\AppData\Roaming\GU" deleted
"C:\WINDOWS\tasks\GU.job" deleted
"C:\WINDOWS\SysNative\tasks\GU" not deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\Elien\AppData\Local\Temp ====
2015-01-11 21:09:05	EB4686F6F4BE2B00AA40978D551F66C4	43008	----a-w-	C:\Users\Elien\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplhtfdz.dll
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-01-08 19:04:21	E3B655AABA7A38E2190514EC0F1A3BE4	106976	----a-w-	C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-08 19:04:21	BBD2925C4F2E027254F2420963D4A174	714720	----a-w-	C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-08 16:53:40	220505B0B3E96C857DD01729AF0CD369	19749376	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-01-08 16:53:37	B59E370277EDB6643083B62297175628	12836864	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-01-08 16:53:36	5E4E0E43E0A5BF9F089696DFA7A3D677	1888256	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-01-08 16:53:36	01777AB557997E98691E322225314E57	2277888	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-01-08 16:53:35	F728E7E9937117E0F32F39840EB6D737	4299264	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-01-08 16:53:35	F34F6DC38A21FCDBB50CDD1EE97B1EA3	1307136	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2015-01-08 16:53:35	41AFA61E061E98E97272AC02184C8C2C	710144	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-01-08 16:53:34	F25284C763E728E4DAC248C211D1FC5B	76288	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2015-01-08 16:53:34	D7A98A4CEA2E89F544065A00BF37FC10	688640	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2015-01-08 16:53:34	86181845803967FC51B64119E80FC18C	340992	----a-w-	C:\WINDOWS\SysWOW64\html.iec
2015-01-08 16:53:34	713407DA59A9DBE5BD64A17D7A267DA1	326656	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-01-08 16:53:34	69AC6FD5B0B4DC963723E1EBDEE10A2C	285696	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2015-01-08 16:53:34	543ADCEA31CF9C2B4EEB900D4AAFD0F9	2052096	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-01-08 16:53:34	37F078B5B435AFC6BF316F2AD14B469A	501248	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2015-01-08 16:53:33	C6941899E6B0A1893D2D5A89241A43B6	661504	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-01-08 16:53:33	98F2784FC4A4A80CE20016C6281834EE	880128	----a-w-	C:\WINDOWS\SysWOW64\inetcomm.dll
2015-01-08 16:53:33	476900A8699F5C3D954ADD4A35D33F89	230400	----a-w-	C:\WINDOWS\SysWOW64\webcheck.dll
2015-01-08 16:53:33	29CED1A4777A43526A4ED8A7B6936883	64000	----a-w-	C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-01-08 16:53:33	0E4D9A13C7C6C8FC3ACCF1C8C28DE200	128000	----a-w-	C:\WINDOWS\SysWOW64\iepeers.dll
2015-01-08 16:53:25	A9B598B04606F9869C42728FE95CBC7C	1489072	----a-w-	C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-01-08 16:53:20	C4FB74C1E96142E0A9E5DE78E3A0B494	28672	----a-w-	C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-01-08 16:53:11	CA7A00203E710E56C18D15B72148769F	790528	----a-w-	C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-01-08 16:53:00	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\WINDOWS\SysWOW64\poqexec.exe
2015-01-08 16:52:58	98C136EA9D0CA9C010FE49D863D29C6D	1612992	----a-w-	C:\WINDOWS\SysWOW64\crypt32.dll
2015-01-08 16:49:57	66F97677CC13F7B9E2408CC75750A389	208896	----a-w-	C:\WINDOWS\SysWOW64\pku2u.dll
2015-01-08 16:49:57	4CD4C8D34213975444643A5F9594E363	806400	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-01-08 16:53:41	D478A4CF07FB8ADF72FB16B88E8030B8	25059840	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-01-08 16:53:37	556D271F4243B273EDA353512BF3608A	14412800	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-01-08 16:53:36	E7A2061ADF0F4D430FECDA1E8D6B7BA6	1548288	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2015-01-08 16:53:36	982B871A25B5078093FAD82D0AB0E3FC	2885120	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-01-08 16:53:36	8D64466AD12CA5677CD0099C43C58569	6039552	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-01-08 16:53:36	4AF089160FE082E5EA5C4AA72782DCA2	2358272	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-01-08 16:53:35	EFBA893429814EA3244C87C2D1256618	800768	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2015-01-08 16:53:34	DDE455CF1B9F43775A53A4E577DFDC54	373760	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2015-01-08 16:53:34	D248949FCF2B72C1FD4EC15DA92065C0	262144	----a-w-	C:\WINDOWS\Sysnative\webcheck.dll
2015-01-08 16:53:34	62CFEE2A516C68540486EBF26F18ED4C	145408	----a-w-	C:\WINDOWS\Sysnative\iepeers.dll
2015-01-08 16:53:34	3FE71E2A5BD3EC652E64FC8BCEFEDD2C	2125312	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2015-01-08 16:53:34	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2015-01-08 16:53:34	284070B045F8B11B4A1FB32F72023038	417280	----a-w-	C:\WINDOWS\Sysnative\html.iec
2015-01-08 16:53:34	1D294810D3A8A8F722E86AA001F54DCC	580096	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2015-01-08 16:53:34	17A157A4225CF562202AC71DB8103177	88064	----a-w-	C:\WINDOWS\Sysnative\MshtmlDac.dll
2015-01-08 16:53:34	14BA910E7731FC84EB85328BD0F1EE81	800768	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2015-01-08 16:53:34	0AF0AEF0BA9EF6169E61C78504DCAE55	316928	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2015-01-08 16:53:33	DB10D681314714E0D4623E4C0CF6654A	92160	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2015-01-08 16:53:33	A41AC7E8D142FD0ECF6EF7F1BB63D478	812544	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-01-08 16:53:33	507DC5EE1363EEB7D986B1026DF4E39D	1032704	----a-w-	C:\WINDOWS\Sysnative\inetcomm.dll
2015-01-08 16:53:25	418B5117F187DFFD96C52325CA0DF153	1762840	----a-w-	C:\WINDOWS\Sysnative\WindowsCodecs.dll
2015-01-08 16:53:20	83AEDC4636606B145851723AE7385781	34304	----a-w-	C:\WINDOWS\Sysnative\DeviceSetupStatusProvider.dll
2015-01-08 16:53:13	FB7F1B20A2C86D55F731E53EB04C9360	740864	----a-w-	C:\WINDOWS\Sysnative\invagent.dll
2015-01-08 16:53:13	EE5ED8E6998D7E686F614BA8D876829B	192000	----a-w-	C:\WINDOWS\Sysnative\aepic.dll
2015-01-08 16:53:13	C4859B1344645E6109DE77F5577CD37F	396288	----a-w-	C:\WINDOWS\Sysnative\devinv.dll
2015-01-08 16:53:13	8283D7B0DCB540AB58A864E4BF2451FD	830464	----a-w-	C:\WINDOWS\Sysnative\appraiser.dll
2015-01-08 16:53:13	2DD8EC6F8DE5F8556ABC5F223D49EA07	412672	----a-w-	C:\WINDOWS\Sysnative\generaltel.dll
2015-01-08 16:53:13	222F243A138149E51FEA4769A475A144	1083392	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2015-01-08 16:53:12	C4A550C337ADB0EB4C4D4F388C27B815	227328	----a-w-	C:\WINDOWS\Sysnative\aepdu.dll
2015-01-08 16:53:11	DB7815ACB2D8F7CB03807059969F13B6	1091072	----a-w-	C:\WINDOWS\Sysnative\MrmCoreR.dll
2015-01-08 16:53:00	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\WINDOWS\Sysnative\poqexec.exe
2015-01-08 16:52:59	F5BA843DE3475B8D7FD5AFC21857A7C1	1970432	----a-w-	C:\WINDOWS\Sysnative\crypt32.dll
2015-01-08 16:49:57	E87F8EC00FEEF700E61F6989D88A8BC2	991232	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2015-01-08 16:49:57	788C7D910267DDCD675DF4AB01961265	259584	----a-w-	C:\WINDOWS\Sysnative\pku2u.dll
====== C:\WINDOWS\Sysnative\drivers =====
2015-01-08 19:25:54	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys
2015-01-08 19:25:16	9D7BFFDB5FA62B600DF1FCB4919D9D79	64216	----a-w-	C:\WINDOWS\Sysnative\drivers\mwac.sys
2015-01-08 19:25:16	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys
2015-01-08 19:22:44	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\WINDOWS\Sysnative\drivers\mbam.sys
2015-01-08 16:53:07	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\WINDOWS\Sysnative\drivers\dumpsd.sys
2015-01-08 16:53:07	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\WINDOWS\Sysnative\drivers\intelpep.sys
2015-01-08 16:53:07	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2015-01-08 16:53:07	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\WINDOWS\Sysnative\drivers\pdc.sys
====== C:\WINDOWS\Tasks ======
2015-01-08 18:04:01	46D8DF611EB14F926349BC63AFA7E844	5040	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft Office 15 Sync Maintenance for ELIENM-Elien ElienM
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-01-08 20:56:17	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-01-08 16:44:10	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\Elien\AppData\Roaming ======
2015-01-08 18:28:03	--------	d-sh--w-	C:\Users\Elien\AppData\Local\EmieBrowserModeList
2015-01-08 18:28:00	--------	d-sh--w-	C:\Users\Elien\AppData\Locallow\EmieBrowserModeList
2015-01-08 16:44:08	--------	d-----w-	C:\Users\Elien\AppData\Locallow\Oracle
====== C:\Users\Elien ======
2015-01-08 20:57:43	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Elien\Downloads\RSITx64 (1).exe
2015-01-08 20:56:07	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Elien\Downloads\RSITx64.exe
2015-01-08 19:21:49	A66B365579D8CEBD7F1D4D6B6F7F9373	10284816	----a-w-	C:\Users\Elien\Downloads\mbam-setup-1.75.0.1300.exe

====== C: exe-files ==
2015-01-08 20:57:43	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Elien\Downloads\RSITx64 (1).exe
2015-01-08 20:56:19	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Elien.exe
2015-01-08 20:56:07	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Elien\Downloads\RSITx64.exe
2015-01-08 19:21:49	A66B365579D8CEBD7F1D4D6B6F7F9373	10284816	----a-w-	C:\Users\Elien\Downloads\mbam-setup-1.75.0.1300.exe
2015-01-08 19:04:21	BBD2925C4F2E027254F2420963D4A174	714720	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-08 16:53:34	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-01-08 16:53:13	65536EB5F53B76562BBE0DE332A8BA3C	66216	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2015-01-08 16:53:00	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\Windows\System32\poqexec.exe
2015-01-08 16:53:00	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-01-08 16:46:41	F4C953B8D00CFC9964A01A13A30E07F5	1092816	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe
2015-01-08 16:46:39	145952D017DD84363F7D62AEAA83E825	39584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharinghookcontroller64.exe
2015-01-08 16:46:13	6B417A514D2538C4A6E7751848951203	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msosqm.exe
2015-01-08 16:46:01	412D869D86DFEBC54663B56F2CB61E8D	474336	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe
2015-01-08 16:46:00	56F3447EBB71F6035E10D8BFDB3831C9	5681880	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\cmigrate.exe
2015-01-08 16:45:59	DE8AD4A570261E1A933229B0379D19A0	842440	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe
2015-01-08 16:45:59	9A1983566048049ECCD032A912CD0A57	7765720	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\cmigrate.exe
2015-01-08 16:45:59	59360FFECC83F76DCF786DB0477F622B	81640	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
2015-01-08 16:45:58	72A7D1D3B54044D56D0C3462FDE9B748	1923224	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\winword.exe
2015-01-08 16:45:58	40489D0E1D38037BF53C3296CC338D46	528584	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\vpreview.exe
2015-01-08 16:45:57	CFA27E4019358E2D6C811A72AAA003F1	480976	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe
2015-01-08 16:45:57	A76A48B94167494138DCDF4F54964D82	873640	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2015-01-08 16:45:55	E68E860F5161FC75512B92AB33195560	569592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\orgchart.exe
2015-01-08 16:45:55	4CE4D38EEA77F9A3C2E2F17742838F7A	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\msosync.exe
2015-01-08 16:45:50	60804F0D4D7D26500E20A5E70B9825CD	25704600	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excel.exe
2015-01-08 16:45:49	CBFD156C393231D1A35D2F70657E9734	497856	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\msouc.exe
2015-01-08 16:45:49	B87FE2FEED3856CBB664F6572DE9DD39	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe
2015-01-08 16:45:48	980F4A6CDF85D29E80D2792FCAEED338	4522680	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\graph.exe
2015-01-08 16:45:48	8B298F80490A813D849EEFC7495DA519	21937304	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2015-01-08 16:45:37	F6742BC6B070A4060BED78F7F59FEE0E	590536	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\integrator.exe
2015-01-08 16:44:06	AA3520FB0133A56BEE1DB34D74DBEF64	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-01-08 16:44:06	75D477E868CA51EC1B09D730570F322B	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-01-08 16:44:06	691D49FB44EDE9788288CABE4F7E0DAF	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-01-08 16:44:00	E3E6B18458FFB07CB24D7A0BA77C9FDF	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\pack200.exe
2015-01-08 16:44:00	DC197DCE6325CBAC905DE0D0E3BA3E8E	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmid.exe
2015-01-08 16:44:00	7AB1F1B3FB6C3DACA34EA2F988CDF5AC	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\orbd.exe
2015-01-08 16:44:00	75EE99C7F0038C746D82C76221ECA4EF	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\policytool.exe
2015-01-08 16:44:00	67F763B09F4BC8689E6FA9761E068D74	159656	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\unpack200.exe
2015-01-08 16:44:00	57E1F756FAA787623DFCD2C1B2AACC68	51112	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssvagent.exe
2015-01-08 16:44:00	33D2AF53E209DA3E2BA939EB89801DC0	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmiregistry.exe
2015-01-08 16:44:00	29E65AC6AFD8A0A9CAA361FF6F7B4886	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\servertool.exe
2015-01-08 16:44:00	28FC00F89631B0F6E1E9CA386FADD566	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\tnameserv.exe
2015-01-08 16:43:59	BB8C890E3E6372F2720709262BD42BF4	30632	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jabswitch.exe
2015-01-08 16:43:59	B719E0F43166037DF46B5CFBE60A5118	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jjs.exe
2015-01-08 16:43:59	AA3520FB0133A56BEE1DB34D74DBEF64	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\java.exe
2015-01-08 16:43:59	A458E2535E46151690E53E2A03FAA711	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe
2015-01-08 16:43:59	9BFAEF308D50779F6B255CB7BA7DCA5A	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\kinit.exe
2015-01-08 16:43:59	75D477E868CA51EC1B09D730570F322B	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaw.exe
2015-01-08 16:43:59	74713E9C1B01B152DDD3A1A3519A3647	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\java-rmi.exe
2015-01-08 16:43:59	70E67429D2C011FD0419AF899A8D0D70	68520	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javacpl.exe
2015-01-08 16:43:59	691D49FB44EDE9788288CABE4F7E0DAF	272296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaws.exe
2015-01-08 16:43:59	4367C05B0CF5553E71B34F51003D0615	76200	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2launcher.exe
2015-01-08 16:43:59	4109C4DB4BD48F5BF8115C7523A6B6F8	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\klist.exe
2015-01-08 16:43:59	26C7F32186B1F0364CD06EA69227A79D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\ktab.exe
2015-01-08 16:41:29	5EDC8FCE400CA9CDA27EFFC4AF4D7275	1765024	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE
=== C: other files ==
2015-01-08 19:25:54	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-01-08 19:25:16	9D7BFFDB5FA62B600DF1FCB4919D9D79	64216	----a-w-	C:\Windows\System32\drivers\mwac.sys
2015-01-08 19:25:16	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2015-01-08 19:22:44	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2015-01-08 16:53:07	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\Windows\System32\drivers\dumpsd.sys
2015-01-08 16:53:07	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\Windows\System32\drivers\intelpep.sys
2015-01-08 16:53:07	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\Windows\System32\drivers\sdbus.sys
2015-01-08 16:53:07	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\Windows\System32\drivers\pdc.sys
2015-01-08 16:44:00	CE44A9D4918DCDC7CCCF5503BF4D7A3D	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1739274306-2504903597-1490228192-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus DX4400"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU C:\WINDOWS\TEMP\E_S8CF4.tmp /EF HKCU"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"BtTray"="C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup"
"Redirector"="C:\Program Files (x86)\Citrix\ICA Client\redirector.exe /startup"
"beid"="C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup"
"mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus DX4400"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU C:\WINDOWS\TEMP\E_S8CF4.tmp /EF HKCU"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2014-09-10 09:05:33	1105	----a-w-	C:\Users\Elien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2014-09-14 11:59:55	1136	----a-w-	C:\Users\Elien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk
2014-06-01 18:48:42	2669	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/04/2014 07:45]
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [24/04/2013 10:15]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{06E1749E-4620-45B2-B33E-7E084D5A9623}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [01/12/2014 19:57]

==== Chromium Look ======================

Google Chrome Version: 38.0.2125.111 (Possible outdated, latest Stable version: 39.0.2171.95)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - No path found[]

Google Slides - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
SiteAdvisor - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho
Gmail - Elien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=MBAAB8A3A-BAEE-4DA3-AEE0-173C7E9853EA&SearchSource=55&CUI=&UM=2&UP=SP8896F79F-1A0C-4B34-8964-FD24D1FAD551&SSPV=",
"startup_urls": [ "http://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=MBAAB8A3A-BAEE-4DA3-AEE0-173C7E9853EA&SearchSource=55&CUI=&UM=2&UP=SP8896F79F-1A0C-4B34-8964-FD24D1FAD551&SSPV=" ],


==== Chromium Fix ======================

C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage-journal deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage-journal deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_customers-research.com_0.localstorage deleted successfully
C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_customers-research.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/1553-29906-12136-18/4"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\358CA8E5BB5699C40AE9918B81151EC4 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5E8AC853-65BB-4C99-A09E-19B81851E14C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\358CA8E5BB5699C40AE9918B81151EC4 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Elien\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Elien\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Elien\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Elien\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Elien\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=45 folders=19 82022738 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Elien\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Elien\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\WINDOWS\SysNative\tasks\GU"  not found

==== EOF on zo 11/01/2015 at 22:41:22,03 ======================