
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by sjors on vr 19-06-2015 at 12:12:43,94.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\sjors\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2015-06-18-220631.log	37678 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"AVG-Secure-Search-Update_0913b"=- 

==== Deleting Files \ Folders ======================

C:\Users\sjors\AppData\Roaming\AVG 0913b Campaign not found
C:\Program Files (x86)\AVG\AVG2012 not found
C:\Program Files (x86)\Popcorn Time not found
C:\ProgramData\Avg_Update_0415av not found
C:\ProgramData\Avg_Update_0814av not found
"C:\Windows\tasks\0415avUpdateInfo.job" not found
"C:\Windows\tasks\0814avUpdateInfo.job" not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\sjors\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2030-08-29 13:22:31	A33A845BE0995C660E591778A3DB5B26	56832	------w-	C:\Windows\SysWOW64\iyvu9_32.dll
2030-08-29 13:22:31	4E1BD67B2FDACCDE8914D67A336668CC	143872	------w-	C:\Windows\SysWOW64\iacenc.dll
2015-06-10 10:23:45	A98E8F79C738CAF23C152DBCABD978FE	11411456	----a-w-	C:\Windows\SysWOW64\wmp.dll
2015-06-10 10:23:44	DA27A4EA7B7C77FAFDB3F94D83E310C1	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2015-06-10 10:23:44	605E9B2CFA3445ED7716D0B345EE21EC	8192	----a-w-	C:\Windows\SysWOW64\spwmp.dll
2015-06-10 10:23:44	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\msdxm.ocx
2015-06-10 10:23:44	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\dxmasf.dll
2015-06-10 10:23:38	2CA16814DA3C5B2D8C7E70DC47A45ED1	551424	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-06-10 10:23:37	9E68E1BDEBD85FC8803707370BE0FC6E	641536	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2015-06-10 10:23:37	641A14E6AC492ED45BC68815E2E2F566	3989440	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-10 10:23:36	583FFF12D2F0D6E1A8746462C433895F	3934144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-10 10:23:36	3C1BE79C3CE6EB378108B11D94CA1072	364544	----a-w-	C:\Windows\SysWOW64\tracerpt.exe
2015-06-10 10:23:35	EA141596564AE0C670EDD0F2636EC29C	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-06-10 10:23:35	BBABC6702529CFADAC0EC2B28168A288	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-06-10 10:23:35	8C7635292CFF4901F058269454A1D64E	1310744	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-06-10 10:23:34	A9E8F961F7FE1EDEEF8F46EEB800F2D8	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-06-10 10:23:34	9A50B2567918BF7DDD600ECE5DB5ED76	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-06-10 10:23:34	6C06D2B1CF88AB83F1CFB24928F63107	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-06-10 10:23:34	65A5E27C2217D606E212B6088CCD6104	92160	----a-w-	C:\Windows\SysWOW64\sechost.dll
2015-06-10 10:23:34	5643A88C6DA8AAEC9CE2845431942650	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-06-10 10:23:34	4238391DE3E3FDCD2C731C1E4E0F402C	635392	----a-w-	C:\Windows\SysWOW64\tdh.dll
2015-06-10 10:23:34	3B5DA649BF7B7D07510C06DE0AEEB4EB	82944	----a-w-	C:\Windows\SysWOW64\logman.exe
2015-06-10 10:23:33	F85FA29340A536C8E0A16151B9B03923	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-06-10 10:23:33	629AD3FDA168D82D459164044A29F9BB	40448	----a-w-	C:\Windows\SysWOW64\typeperf.exe
2015-06-10 10:23:33	3E6731BF36A7D6C62D09671B427B6B67	37888	----a-w-	C:\Windows\SysWOW64\relog.exe
2015-06-10 10:23:32	FCA6EFFEE6D7D42E794F0E538297026C	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-06-10 10:23:32	FB224B0A63B8F58E91FE8A314AD295AD	17408	----a-w-	C:\Windows\SysWOW64\diskperf.exe
2015-06-10 10:23:32	F81920ADB15012CF4E9FF8238C85686A	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-06-10 10:23:32	F72A9953199EF5807D595AE3694B5D01	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-06-10 10:23:32	D877133532CE090502B1166B360E9516	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-06-10 10:23:32	7A9F94E0F53C8F6E09405351AC104A3C	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-06-10 10:23:32	6C730482615C97B923B88C648FF554A3	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-06-10 10:23:32	558227F567E977D71B9182013EF03E9C	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-06-10 10:23:32	2D23A10FBFA09DC1B61799128BBA91A2	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-06-10 10:23:31	EEA17E843EE2EE50D623BEACF50BD815	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-06-10 10:23:31	EC6E5AE2ECFE7A335B370865A1158EF8	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-06-10 10:23:31	52C869A640B8169D7C8460FB1646ABF5	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-06-10 10:23:31	2E65BF3D85BB2C831669FBCBDE6C9879	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-06-10 10:23:30	7E7933E63BBE2BE71CC908EF140458EF	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-06-10 10:23:30	619D5101114C71E1A4A585C5E68301B7	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-06-10 10:22:54	58788565442368B0615DDAF1D452B843	530432	----a-w-	C:\Windows\SysWOW64\comctl32.dll
2015-06-10 10:22:40	8C3A03295F56D1FFB51D9D05DA42B12D	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-10 10:22:40	81C1182A9EE7AC4D21187811DE66A7D0	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-06-10 10:22:39	F26680AF396F89F7ABFDA1D1D6B62011	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 10:22:39	9F6066005D8B8620598085C7499E9B70	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-10 10:22:39	975421AC32F9F6E27A58F75DAB4B5871	19607040	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-06-10 10:22:39	96837E5864777688477AF6DE2332C06D	503808	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-06-10 10:22:39	7C9F8DB66A56306C5BBE97F9FC0F01EF	342736	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 10:22:39	6B7210618D7E2CE0404ECF748701253A	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 10:22:39	53E9614ADFA6A40A452BA014CEF6F261	1309696	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-06-10 10:22:39	2DED8A99E45053C42DD21D6937D3960C	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 10:22:39	185490A6C3BEDAC5EF547314F68AB07B	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-10 10:22:38	B6D8148C1C697A7BF04EE0FE82408B6A	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 10:22:38	927E38A35E4DFC4E294BD130BAA6F759	2278912	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-06-10 10:22:38	5C06EE62F06E990E9521EA80B8D4D4B8	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-06-10 10:22:38	4ABEEF30EA5B9F4718312DCB60B6C9BC	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 10:22:37	E21AE910DF0C5CB7D46D8FA17A4567DE	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-10 10:22:37	DB254D50B4527C2821C537E0587B44E8	12829696	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-06-10 10:22:37	C93AE4D14AEF5169791B35D97AE7C9FC	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-06-10 10:22:37	C27C8CACEBC712BE2AD791715E9734EC	664064	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-06-10 10:22:37	8C8B8C78C0CCD5D36ABCB115B0B581E1	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-06-10 10:22:37	7DBCBB1647B7CD71E2039C1B50A12717	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 10:22:37	1A628C1F5470F0AF21E37E425026F27A	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-06-10 10:22:37	17B0852D8202A872C3E6D01B518B6A4E	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-06-10 10:22:34	85E21CCF38166E0D6DE2E42D9D3823BD	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-10 10:22:34	3FD7E6DB5D81FE400DB4D81D278596E6	4305920	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-06-10 10:22:33	FB5C9234E4BF6BDAF4A954763A4582BA	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-06-10 10:22:33	EF853EA2A6A7BD891CCF31B0C2915352	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-06-10 10:22:33	E4EB138060BAE0DBAB1A3B71A3141FE7	1950720	----a-w-	C:\Windows\SysWOW64\wininet.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-06-10 10:23:47	1EE2DBA5AD2E5EB618C7FB187C2CFDF4	3206144	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-06-10 10:23:46	9D80A82B0BB77AC3EF6A87FA0C534E20	14635008	----a-w-	C:\Windows\Sysnative\wmp.dll
2015-06-10 10:23:44	834FD7C31EA16D59CC3B2DC60F2F2620	9728	----a-w-	C:\Windows\Sysnative\spwmp.dll
2015-06-10 10:23:44	51ECEE70F33601310DDEF3EEE39550D3	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2015-06-10 10:23:44	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\msdxm.ocx
2015-06-10 10:23:44	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\dxmasf.dll
2015-06-10 10:23:43	52DEF4C743C2EABD6BD3EDC790A0E778	1021440	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-06-10 10:23:42	E87D4371B24BC9E5BAE95AEA60FFD959	193536	----a-w-	C:\Windows\Sysnative\aepic.dll
2015-06-10 10:23:42	CFF429F2234C1D1A5993E80F46C37CFB	1119232	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-06-10 10:23:42	B23AB4C401E2DE02C47B7497D41E2318	757248	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-06-10 10:23:42	6F07FC190DBCB42C8A5319235F72F906	423424	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-06-10 10:23:42	6E2EB5A36C3CCD917F7FF9BED7C1390E	45568	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-06-10 10:23:42	587BBA3B3959144334700EC48232712F	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-06-10 10:23:42	2DCA988113A02EB9BCB98A5DC2D34E57	700416	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-06-10 10:23:38	AA5319FA8602676B5D3A2B4A1355896D	1255424	----a-w-	C:\Windows\Sysnative\diagtrack.dll
2015-06-10 10:23:38	93A05407F8E53BC731C42AAD56163F80	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-06-10 10:23:38	8DCA1C70AF170C3FBCE47A4F49BFC887	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-06-10 10:23:38	6FDF03A3B110C5264F52F979335AE301	1162752	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-06-10 10:23:38	6ECD6D92F43C2DC55099F892978D5BE7	728576	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-06-10 10:23:37	4FFD08A01047EF6B58F6EB4E6D001A8D	879104	----a-w-	C:\Windows\Sysnative\advapi32.dll
2015-06-10 10:23:36	FF9BBFAE899091C1FF0D1A3F2C587911	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-06-10 10:23:36	CCB352B939B77B38983DD878C547451F	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-06-10 10:23:36	9E2A2028228645DD57EF45A02CAC0CCE	5569984	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-06-10 10:23:36	6703266C1E56157B5965F9AC868A20AC	404992	----a-w-	C:\Windows\Sysnative\tracerpt.exe
2015-06-10 10:23:36	53042708C242959B3924242FBBE297B1	1728960	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-06-10 10:23:36	48C30C54194142910FB6B86D308220ED	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-06-10 10:23:36	2313AF8D5A9CEB4A55400A01DD311A95	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-06-10 10:23:36	16154A6682B1552DEAB953BFA4B8E955	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-06-10 10:23:35	37DFCC91E419952772E02F2B3BBB2E2B	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-06-10 10:23:34	E20BF3FA89DE67B00ED713B5254C0BF0	47104	----a-w-	C:\Windows\Sysnative\typeperf.exe
2015-06-10 10:23:34	AD54856A16B635720B0BE5FAF44526FC	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-06-10 10:23:34	A929B9ABA1083AF35ECE7BD63AF3E42F	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-06-10 10:23:34	A5F57F4866C2DC7F8215058D7D56BD21	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-06-10 10:23:34	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-06-10 10:23:34	996EE6571ADB880A60846DD02C8D5869	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-06-10 10:23:34	7C5E375F20F639607376351A8BCC0647	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-06-10 10:23:34	66DF73B202105406602941778792FE3D	879104	----a-w-	C:\Windows\Sysnative\tdh.dll
2015-06-10 10:23:34	4F90A7A0FCBC0ED18E573917860062FF	113664	----a-w-	C:\Windows\Sysnative\sechost.dll
2015-06-10 10:23:34	210E7D1EA34369194BE09493784E27BE	104448	----a-w-	C:\Windows\Sysnative\logman.exe
2015-06-10 10:23:34	17A6A9AAD04CCC6EE53290585BFC43AF	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-06-10 10:23:34	03BA5D20751137F3A705B389C52DB8D6	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-06-10 10:23:33	858F04B3C39239972959E9EE97CACAE4	43008	----a-w-	C:\Windows\Sysnative\relog.exe
2015-06-10 10:23:32	D68690450978D127E030FB14E9B2023B	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-06-10 10:23:32	6ACD3C75BE449F039E1A4E43424D5B6F	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-06-10 10:23:32	5EC57AC6DC16CB8A058CA019AA2C188D	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-06-10 10:23:32	5A17FF38EDE95B2313E428BF444126D7	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-06-10 10:23:32	289D99B0879C6ED5C6D1B3A856CA6DA3	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-06-10 10:23:32	20BD408AC3F8576997D6A47F48A1C5B2	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-06-10 10:23:32	1B93381366141875D8EE7EC1085236B9	19456	----a-w-	C:\Windows\Sysnative\diskperf.exe
2015-06-10 10:23:32	13DE715D959DD502CFD52DC920408B33	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-06-10 10:23:32	11D5815F0DC571CE3C72213B375860B1	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-06-10 10:23:31	AF557D115972A73964FC8F209300948A	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-06-10 10:23:31	6ACFCC28E4D60B5A931D8749332A14E2	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-06-10 10:23:30	8A4EB32C7C948F70EAC6F85063596A39	36864	----a-w-	C:\Windows\Sysnative\UtcResources.dll
2015-06-10 10:23:30	837BBE4170D5A75F293BD6F294A8FE34	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-06-10 10:23:30	6E882D7CA34073890107559B5A515A24	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-06-10 10:22:54	51F89CE2D0FEC66070354504E6C4C3E4	633856	----a-w-	C:\Windows\Sysnative\comctl32.dll
2015-06-10 10:22:40	9DB8E01D5A546FAFCACE95489E351186	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-06-10 10:22:40	73509D13542A90E260F45D1D6D4100A8	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-06-10 10:22:39	9E2B8C0601E3D460F78F0233B509CE4F	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-06-10 10:22:39	70D24021ED327CE7FFA9DEE327BB4C6B	720384	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-06-10 10:22:39	4BD747AAF01C480901B3E777EC48826B	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-06-10 10:22:38	D202078FBA3A77B85D39669EE4110DE2	389840	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-06-10 10:22:38	6ABFC5736EC920C4436F32111F5CBCEE	1545728	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-06-10 10:22:38	3C3E159F284F51D55DB59C3D0B843979	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-06-10 10:22:37	86FDFEA67833DB261EC01A777594EDCF	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-06-10 10:22:37	57DFACB53ED16190EF732E2430B39741	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-06-10 10:22:37	36F3718E67F442F54AB4A39DCDD8FD19	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-06-10 10:22:37	083BCA14FCE290D682D8DAC9372CBF23	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-06-10 10:22:36	7F8F9AE03D1BA4354671E05F07A40F1A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-06-10 10:22:36	5F8EE9311ECF078CD9426874FFAD660C	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-06-10 10:22:35	FF84182188CA8F0DC28CFED06C9B7816	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-06-10 10:22:35	6E295C7364DAEB151CC0E98434B6AC92	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-06-10 10:22:34	33B5F1A727FACDEA7CDA0E35FFAADDCF	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-06-10 10:22:33	AFF5C12099B87FA645F8867701729894	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-06-10 10:22:33	8909A24DA8B5C426CF6595BA843B6CC5	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-06-10 10:22:33	0EDA3219FA027A486AA11269355AB279	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-06-10 10:22:32	AE5A2843B4A2E1E558B9EE13EF62CCE5	14404096	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-06-10 10:22:32	35622F5A652C4E16774234DCA0026E74	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-06-10 10:22:31	ACD6FE6C82B93813F023FC01A51CB940	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-06-10 10:22:31	83781DF625A4448B39410D7FA2BDC48D	816640	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-06-10 10:22:31	4A5A84B457C72E79A64AE4036EC6BB0E	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-06-10 10:22:31	3854BFE1C0F14872C94501421CC40813	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-06-10 10:22:30	CFA52E2FE8E623042A1EEF96EB1B9481	6026240	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-06-10 10:22:30	417F80E4AFBA1AA9EBBD618F1C6D9165	2426880	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-06-10 10:22:30	2BC2D3A41BB755487FD55C09938F00BC	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-06-10 10:22:29	A29BAFC1543F9D2234AFFFEA9BCE76C8	24917504	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-06-10 10:22:29	16091938F6CDBCCCBA1CBE24600121BC	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-06-10 10:22:29	06A8CE6C3AE6B7916F026B0EFDDCAAA5	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
====== C:\Windows\Sysnative\drivers =====
2015-06-10 10:23:36	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-06-10 10:23:34	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-06-10 10:22:50	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\Sysnative\drivers\stream.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-05-31 11:01:38	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\sjors\AppData\Roaming ======
2015-06-01 11:04:22	--------	d-----w-	C:\Users\sjors\AppData\Local\GWX
====== C:\Users\sjors ======
2015-06-18 19:19:40	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\sjors\Desktop\RSITx64.exe

====== C: exe-files ==
2015-06-18 19:19:40	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\sjors\Desktop\RSITx64.exe
2015-06-17 17:06:00	0894890F30B5F6510DF953BC50B5504F	88392	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateWebPlugin.exe
2015-06-17 17:05:58	6732C4A894855042FD3618406B6BBD48	88392	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe
2015-06-17 17:05:56	F6EEE6848E933962E12E7B3F25C73C88	88392	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateBroker.exe
2015-06-17 17:05:52	C990A8EAD57DA59FA8156CC02D3B7DA5	931408	----a-w-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateSetup.exe
2015-06-17 17:05:21	BB3045B399D898061B926B447C446E05	127816	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateComRegisterShell64.exe
2015-06-17 17:05:18	6509A96DAE25340772B51AC020CB1094	304968	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
2015-06-17 17:05:16	8715A0D10CFFC8DEE923957F07DAA042	244040	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
2015-06-17 17:05:13	0C03FB91E17987EED93F60007B08DAA0	144200	----atw-	C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdate.exe
2015-06-17 17:04:58	C990A8EAD57DA59FA8156CC02D3B7DA5	931408	----a-w-	C:\Program Files (x86)\Google\Update\Install\{71799B3C-AE35-4EF6-891D-B2D8DAAE245D}\GoogleUpdateSetup.exe
2015-06-17 17:04:58	C990A8EAD57DA59FA8156CC02D3B7DA5	931408	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.27.5\GoogleUpdateSetup.exe
2015-06-15 18:50:59	178A91021822578D3DD66918D3C2F8BB	33691592	----a-r-	C:\Program Files (x86)\Hi-Rez Studios\HiRezGames\smite\Binaries\Win32\Smite.exe
2015-06-12 15:57:22	8D0FBE94B0DFDF12AB8CA0FDFAB6E474	2779584	----a-w-	C:\Windows\Temp\AVG-Secure-Search-Update_0615av_clean.exe
2015-06-12 15:57:03	323DC3CBD517732F58EB569FA22B7A91	7156768	----a-w-	C:\Program Files (x86)\AVG\AVG2013\Notification\Launcher.exe
=== C: other files ==
2015-06-16 14:04:47	EEFF5D2248BAD3597525CDDB1DD5DF95	965453	----a-w-	C:\Users\sjors\Desktop\school 2014\U.I Tentamen.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2062462723-154213588-3503046112-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"HydraVisionMDEngine"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"
"puush"="C:\Program Files (x86)\puush\puush.exe"
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Akamai NetSession Interface"="C:\Users\sjors\AppData\Local\Akamai\netsession_win.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"HydraVisionMDEngine"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"
"puush"="C:\Program Files (x86)\puush\puush.exe"
"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Akamai NetSession Interface"="C:\Users\sjors\AppData\Local\Akamai\netsession_win.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EgisTecPMMUpdate]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EgisTecPMMUpdate"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\EgisTec IPS\\PmmUpdate.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EgisUpdate]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EgisUpdate"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\EgisTec IPS\\EgisUpdate.exe\" -d"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Hotkey Utility]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Hotkey Utility"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Acer\\Hotkey Utility\\HotkeyUtility.exe"


==== Startup Folders ======================

2014-07-12 11:53:34	1046	----a-w-	C:\Users\sjors\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22-03-2014 23:35]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22-03-2014 23:35]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2062462723-154213588-3503046112-1000Core.job --a------ C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe [19-10-2014 12:09]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2062462723-154213588-3503046112-1000UA.job --a------ C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe [19-10-2014 12:09]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2062462723-154213588-3503046112-1000Core" [C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2062462723-154213588-3503046112-1000UA" [C:\Users\sjors\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\{38E1C7CC-E54C-44BB-BDCA-82427AD3CF04}" [C:\Program Files (x86)\Valve\Portal 2\portal2.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Chromium Look ======================


Purple flowersNon-Aero - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apifmdobolibbidmcdlofnnenabonodd
YouTube - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Playjack - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pljlekgobmkopcjnljkinpmppkekangd
Google Slides - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - sjors\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Preferences
{"browser":{"last_known_google_url":"https://www.google.nl/","window_placement":{"bottom":1050,"left":1930,"maximized":true,"right":2875,"top":30,"work_area_bottom":1080,"work_area_left":1920,"work_area_right":3840,"work_area_top":0}},"countryid_at_install":20044,"data_reduction":{"daily_original_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","964772"],"daily_original_length_via_data_reduction_proxy":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_original_length_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","964772"],"daily_received_length_https_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_long_bypass_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_short_bypass_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_unknown_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_via_data_reduction_proxy":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"last_update_date":"13079138400000000"},"default_apps_install_state":3,"download":{"directory_upgrade":true},"extensions":{"alerts":{"initialized":true},"autoupdate":{"last_check":"13079182808008137","next_check":"13079199153444175"},"chrome_url_overrides":{"bookmarks":["chrome-extension://eemcgdkfndhakfknompkggombfjjjeno/main.html"]},"install_signature":{"expire_date":"2015-09-11","ids":["aapocclcgogkmnckokdopfmhonfmgoek","aohghmighlieiainnegkcijnfilokake","felcaaldnbdncclmgdcncolpebgiejap"],"invalid_ids":[],"salt":"eisYJH8IrK6UZ2qcEsS4t/5bqYboPslodAk+tuO/YmY=","signature":"V5XySvvFYUnrMVx2vFOLeeWNz8uALeDohJfOrmcdL7N/mt/ELy7drOof2NqHGaZcwiPilObyUR9HZtOmdm1xp4mYtdW7S9UqWz6c3h7n8W2IH8Ot7NtyBLDjwOCHNJl3z0ny+VhR1JddDWDmzbaafRG1Jnx3sJ8KVmL1xGOwyol7v/sFrzcsKnO7hCi6kp0IEbO2ExpbLnZXu5RClFd+Mr5KDTyF8cDff+z8ZojN9D/oK0Z3x5JoLamUrJLbegsrjfSaTYC4sOeIpRGZrRLZmI+KdkopbNgkbs/3vqWzux1W8X9fV5z51msuAxxrDGagZ33rDVicgrtLsYAyy4N+Ow==","signature_format_version":2,"timestamp":"13079182314721260"}},"http_original_content_length":"964772","http_received_content_length":"964772","intl":{"accept_languages":"nl-NL,nl,en-US,en"},"invalidator":{"client_id":"3Sfj69hk2SsVnBEOUiC5eg=="},"media":{"device_id_salt":"NuxVJ2NP/x/DmZOstWSfTg=="},"net":{"http_server_properties":{"servers":{"0.client-channel.google.com:443":{"supports_spdy":true},"accounts.google.com:443":{"supports_spdy":true},"ajax.googleapis.com:443":{"supports_spdy":true},"apis.google.com:443":{"supports_spdy":true},"bookhome.info:443":{"supports_spdy":true},"cdnjs.cloudflare.com:443":{"supports_spdy":true},"ci5.googleusercontent.com:443":{"supports_spdy":true},"clients1.google.com:443":{"supports_spdy":true},"clients2.google.com:443":{"supports_spdy":true},"clients2.googleusercontent.com:443":{"supports_spdy":true},"clients5.google.com:443":{"supports_spdy":true},"code.jquery.com:443":{"supports_spdy":true},"csi.gstatic.com:443":{"supports_spdy":true},"fbstatic-a.akamaihd.net:443":{"settings":{"4":20,"7":65536},"supports_spdy":true},"fls.doubleclick.net:443":{"supports_spdy":true},"fonts.googleapis.com:443":{"supports_spdy":true},"fonts.gstatic.com:443":{"supports_spdy":true},"googleads.g.doubleclick.net:443":{"supports_spdy":true},"mail-attachment.googleusercontent.com:443":{"supports_spdy":true},"mail.google.com:443":{"supports_spdy":true},"oauth.googleusercontent.com:443":{"supports_spdy":true},"pagead2.googlesyndication.com:443":{"supports_spdy":true},"plus.google.com:443":{"supports_spdy":true},"s0.2mdn.net:443":{"supports_spdy":true},"scontent-ams2-1.xx.fbcdn.net:443":{"supports_spdy":true},"ssl.gstatic.com:443":{"supports_spdy":true},"stats.g.doubleclick.net:443":{"supports_spdy":true},"theprivilegesbox.com:443":{"supports_spdy":true},"www.facebook.com:443":{"supports_spdy":true},"www.google-analytics.com:443":{"supports_spdy":true},"www.google.com:443":{"supports_spdy":true},"www.google.nl:443":{"supports_spdy":true},"www.googleadservices.com:443":{"supports_spdy":true},"www.googleapis.com:443":{"supports_spdy":true},"www.googletagmanager.com:443":{"supports_spdy":true}},"version":3}},"password_bubble":{"nopes":0},"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"profile":{"avatar_bubble_tutorial_shown":2,"avatar_index":0,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{},"pref_version":1},"created_by_version":"43.0.2357.124","exit_type":"Crashed","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Persoon 1","per_host_zoom_levels":{}},"protection":{"macs":{}},"selectfile":{"last_directory":"C:\\Users\\sjors\\Downloads"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13079182309690469"},"translate_blocked_languages":["nl"],"translate_whitelists":{}}
://www.google.com/","https://www.googleapis.com/*"],"update_url":"https://clients2.google.com/service/update2/crx","version":"0.1.1.0"},"path":"nmmhkkegccagdldgiimedpiccmgmieda\\0.1.1.0_0","preferences":{},"regular_only_preferences":{},"running":false,"state":1,"was_installed_by_default":true,"was_installed_by_oem":false},"pjkljhegncpnkpknbcohdijeoejaedia":{"ack_external":true,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"x","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13079182313425792","lastpingday":"13079170800756477","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"nl","default_locale":"en","description":"Een snelle, doorzoekbare e-mailfunctie met minder spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"protection":{"macs":{"browser":{"show_home_button":"29DB425937A3337631415621E0BFCE5615627EF7161EBED2DC14610520AFF083"},"default_search_provider":{"keyword":"FE168FB1046D82F3EA8F125239FF3D000D39DA904DAB7DA63F272FCCF6E0298B","name":"2E93DAB4BC26F90F3713FE0BB554234BF540643DB35F06516AFD29A37892C6C2","search_url":"2EE4939FC15A15A01F7454406BC306195D0F6829F3880E02E2CF858A8CD693FF"},"default_search_provider_data":{"template_url_data":"320A7009B018A166E6DD4480D65BCA2BBB86A687AAEC3F8D4D3342B48227C6C2"},"extensions":{"settings":{"aapocclcgogkmnckokdopfmhonfmgoek":"5176298541BAF0FF65EC4F74A77A60FFDA44DD2B4823B072394E7C9165DB4C65","ahfgeienlihckogmohjhadlkjgocpleb":"62015CA76A422D030D7431CB76C3E3D51CE7A84C949A4F73232C95D4AA91762F","aohghmighlieiainnegkcijnfilokake":"70691F52CBDC7ADEEEC268C77D302D85976AA113F4BA15E0FCBF824D119E862B","apdfllckaahabafndbhieahigkjlhalf":"90B5BD458DE9F990D4CA6789137F67CFFCE388583B1E3E0A47C497644C47B6D6","bepbmhgboaologfdajaanbcjmnhjmhfn":"29E66963E9C0621892C2B265321DB3E0F3763B465633632316AC2EC64BF4BAB9","blpcfgokakmgnkcojhhkbfbldkacnbeo":"EFDA2FF312B060F55748058EB5991256FE16F48CB6C8BDF9D464DD0AD9E7ACD2","coobgpohoikkiipiblmjeljniedjpjpf":"B128EED8AFEE5E0C06D10405EBD8B23BCDD11C90D5F138658E32479253209946","eemcgdkfndhakfknompkggombfjjjeno":"3CF348B63066951E08266280F99E892A4A07B9C85F88DD2D472B8DBC04746A23","felcaaldnbdncclmgdcncolpebgiejap":"0C1912A90E31D112C64DCB8F4F4F4C36770FD335688E80E0D3C196C5D5012B72","impaepofmnammebeenafgmllpnjaiime":"FC9DD347C5D7CBE37810A14342018CCD5D0875C804DC60A1156CFFC40AFEA2B0","mfehgcgbbipciphmccgaenjidiccnmng":"85AC9FD06936286B8622C91520F9BC1B2D10DB89B14F7E885C598C5843DDF531","mgndgikekgjfcpckkfioiadnlibdjbkf":"94BEBBA30B041B388B158875D0F687FFA4B091643348C19023FD0F03714D8D5B","nmmhkkegccagdldgiimedpiccmgmieda":"2251385100B61F720F08C47A53D5C85B3BC6D91E67B349135BEBBB46DA3B3E8C","pjkljhegncpnkpknbcohdijeoejaedia":"CB67965D9C52FAB6B6806340467E2FACEFC37AF9ACB98EBF35866A0B5E9E060D"}},"google":{"services":{"last_username":"FA0534FC2A673AC1740012AF7684FDF25834CEBB0D528B798ED191A22CE3A142","username":"6E184D31882E577CA4D1F9A6306DCD7663A4CAA5D41787FFA42466749266E623"}},"homepage":"B18C0A6A6832DE67E73646CB9F038A1939C3C22F057E62FB2FE19A2E4F160FF0","homepage_is_newtabpage":"0EC25EEB5D0549160824BF957694D4F9DE5CBE453D9566C0A6312CEE3F4684AE","pinned_tabs":"52792FCA291EED37883C475A175F8E40C2B8F3A99AF9C634EDE0D295F7AB1F21","prefs":{"preference_reset_time":"72246F915DA1DA791BB208C550E8DCE83C7BC7DAFA764CC8A9DD553CFBA1B76C"},"profile":{"reset_prompt_memento":"64F2D3668DA5F954465B7596F964E674519B87BAA9796E99FA763C6DA01C5BF3"},"safebrowsing":{"incidents_sent":"6B5178BA30A4B2661C631E14564911FC7B7D857339424D93BF1D895B3A560DE4"},"search_provider_overrides":"333751D9C72CA457C18245C22686CE3BAD8F07DF6C35AD76A18C913271BB437E","session":{"restore_on_startup":"E507F92B319189947A17FFA7D693DEAABAFBA9E2E79FCD54AE085F2FA79F27B8","startup_urls":"80B8741E01A8AE8F3AF3B724812C49A1CBF2568CF5B62FFBDE4192BA0CC60210"},"software_reporter":{"prompt_reason":"78471D3666F10DC8683AB36E4B15FECFC5FFD5E32BB5F49F7C3C2B393FC68626","prompt_seed":"A11F1B4DB21CAEB7D91CCE039DD9BC6E648BDE82504AFE0F8856668DFB23CEDA","prompt_version":"3A7903A81088BF47FD853C1FB535616EC513310C07176FA54C6A422E4D5053AF"},"sync":{"remaining_rollback_tries":"9AF40C5E9D3AAA8A54D9875C17F9CFD4978DF53050F57B1A19DAB489BB1CBFBA"}},"super_mac":"2F44A7BEE3855787E46344C7F96BBB010C209F013F70A38C236F8E06F0218B9F"}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\sjors\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\sjors\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\sjors\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1676 folders=354 241841585 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\sjors\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\sjors\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF2c4ee23.TMP" not found
"C:\Users\sjors\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF3dbe40.TMP" not found

==== EOF on vr 19-06-2015 at 13:05:11,75 ======================