
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Remco Blaauw on ma 22-06-2015 at  9:24:37,61.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Remco Blaauw\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

22-6-2015 09:27:20 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~3\firebird deleted successfully
C:\PROGRA~3\SUPPORTDIR deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4034604172-2849556485-1385561215-1002\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4891EFCF-B4A3-40AA-91EC-8C40746712A4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\abc71024 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\APNMCP deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update service deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\REMCOB~1\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default

user.js not found
---- Lines WebSearch removed from prefs.js ----
user_pref("browser.search.defaultenginename,S", "WebSearch");
user_pref("browser.search.defaulturl", "http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88&l=1&q="
user_pref("browser.search.order.1", "WebSearch");
user_pref("browser.search.order.1,S", "WebSearch");
user_pref("browser.search.selectedEngine", "WebSearch");
user_pref("browser.search.selectedEngine,S", "WebSearch");
user_pref("browser.startup.homepage", "http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88");
user_pref("keyword.URL", "http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88&l=1&q=");
---- Lines Sweet removed from prefs.js ----
user_pref("extensions.vDKcnYCums4Yl8tN.url", "http://veterance.info/sync2/?q=hfZ9oelKB6qZBchEAen0rTUGrihTB6lKDzt4ok4rtNtVh7n0rjkEqTw7rjYEpjwEtMFHhd9Fq
---- Lines extensions.vDKcnYCums4Yl8tN removed from prefs.js ----
user_pref("extensions.vDKcnYCums4Yl8tN.epoch", "1434660626");
---- FireFox user.js and prefs.js backups ---- 

prefs_22-06-2015_0955_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4891EFCF-B4A3-40AA-91EC-8C40746712A4}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4891EFCF-B4A3-40AA-91EC-8C40746712A4}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"ApnTBMon"=- 
""=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\ENormaouuSales deleted
C:\PROGRA~2\CutterMaker deleted
C:\PROGRA~2\Image collector extension deleted
C:\Program Files (x86)\Popcorn Time deleted
c:\programdata\{a7b28b53-6142-d9df-a7b2-28b536142d4d} deleted
c:\programdata\{9f1422d8-1749-c907-9f14-422d81748b60} deleted
C:\Users\Remco Blaauw\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default\extensions\7@vL63Oz5yB.net deleted
C:\Users\Remco Blaauw\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default\extensions\suntbvgycuzmbyhx@hombodycsn_uilyxwlo.edu deleted
C:\ProgramData\{6d91bfc1-3cae-bc95-6d91-1bfc13caff04} deleted
C:\ProgramData\14069264185230147187 deleted
C:\windows\SysNative\Tasks\Bidaily Synchronize Task[973b] deleted
C:\windows\SysNative\Tasks\DingRing deleted
C:\windows\SysNative\Tasks\VeganWiz deleted
C:\Users\Remco Blaauw\.android deleted
C:\PROGRA~3\AskPartnerNetwork deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Remco Blaauw\AppData\Local\AskPartnerNetwork deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\Users\REMCOB~1\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default\searchplugins\WebSearch.xml deleted
"C:\WINDOWS\tasks\DingRing.job" deleted
"C:\WINDOWS\tasks\VeganWiz.job" deleted
"C:\WINDOWS\Installer\1c8bb441.msi" deleted
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted
"C:\Program Files (x86)\AskPartnerNetwork" deleted
"C:\PROGRA~2\AskPartnerNetwork" deleted
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar" deleted
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\REMCOB~1\AppData\Local\Temp ====
2015-06-16 18:13:50	8138166CE77BCB8CBBB3048705C8ABC1	2504192	----a-w-	C:\Users\Remco Blaauw\AppData\Local\Temp\B600\temp\GraphicLight.xyz.exe
2015-06-16 18:09:12	C50AFE08B46E41BE08EB9B2EF9D14E62	213504	----a-w-	C:\Users\Remco Blaauw\AppData\Local\Temp\B600\temp\4574277242963672951b.exe
2015-06-12 11:24:02	FA0249F0A19BEAFE768C7A96070118D3	674480	----a-w-	C:\Users\Remco Blaauw\AppData\Local\Temp\F14F3523-433D-4E0E-A5DF-0C0AFD3377665\CreativeCloudSet-Up.exe
====== Java Cache =====
2015-05-28 20:23:08	B57CB9B24412B8E34FF2692D8103246A	14732	----a-w-	C:\Users\Remco Blaauw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\2dc64e0c-35a5bb7a
2015-05-28 20:23:13	F0F2D2FA39FC25E159F1952DB1F07AB4	95	----a-w-	C:\Users\Remco Blaauw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\22cd3517-91932a991f15b7ad1213899d3e43885957cfcc2729a13af9493bd71aa58fdf9b-6.0.lap
2015-05-24 12:09:06	F9CE0147C2DA48A278EDA5764AEF452A	89	----a-w-	C:\Users\Remco Blaauw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\7d653b20-f0b03272bf57bc74b9bd5ded3dfacc5cdca09addedd524f58e5a3697a53da4c3-6.0.lap
2015-05-24 12:07:31	6587B9C14A27CBC1B3A59A0A3835163F	423	----a-w-	C:\Users\Remco Blaauw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\541ff4e9-af5b7888db7c1a5fede4c70e87864f40e925224e6a809b64a2db15a35c3ace9b-6.0.lap
====== C:\WINDOWS\SysWOW64 =====
2015-06-10 07:54:13	BD7E7AC5639FFE7CDDAA5A3F7A05D4A7	2483712	----a-w-	C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-10 07:54:10	7F78583D91D0FCA9678778F45328C99F	367104	----a-w-	C:\WINDOWS\SysWOW64\puiobj.dll
2015-06-10 07:54:07	00ED6F8562702A00D8AEC9F70CA7DDFE	1018880	----a-w-	C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-06-10 07:54:05	CF6502529F3819C984A26BBD83ED3C8E	180224	----a-w-	C:\WINDOWS\SysWOW64\authz.dll
2015-06-10 07:54:04	33BC1A74FA72C3B0EE04A23FDE1045FC	158720	----a-w-	C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-06-10 07:54:03	E9A91A0A589AED5328E30D8C7E59E5AE	2749952	----a-w-	C:\WINDOWS\SysWOW64\tquery.dll
2015-06-10 07:54:03	5027CAF4BFB31E4CD2918B2C2DFFC4CB	1920000	----a-w-	C:\WINDOWS\SysWOW64\mssrch.dll
2015-06-10 07:54:02	B95D112E19CFEC74692F7791ABBB03BE	391680	----a-w-	C:\WINDOWS\SysWOW64\mssph.dll
2015-06-10 07:54:02	8D4CEAEE747097A70342B80EA32E018D	710144	----a-w-	C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-06-10 07:54:02	50B6B1D4EFCB81298DE7F9415879C51B	699392	----a-w-	C:\WINDOWS\SysWOW64\mssvp.dll
2015-06-10 07:54:02	14B5D6506A366585F8D6B6097530F7F2	272896	----a-w-	C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-06-10 07:54:01	02BE9F037101364A565D224194337B0C	207872	----a-w-	C:\WINDOWS\SysWOW64\rastapi.dll
2015-06-10 07:41:17	B0EDCA1168C874812A180EBCD1A43EB5	549888	----a-w-	C:\WINDOWS\SysWOW64\comctl32.dll
2015-06-10 07:40:56	975421AC32F9F6E27A58F75DAB4B5871	19607040	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-10 07:40:50	DB254D50B4527C2821C537E0587B44E8	12829696	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-10 07:40:49	E4EB138060BAE0DBAB1A3B71A3141FE7	1950720	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-06-10 07:40:48	3FD7E6DB5D81FE400DB4D81D278596E6	4305920	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-10 07:40:47	927E38A35E4DFC4E294BD130BAA6F759	2278912	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-10 07:40:47	53E9614ADFA6A40A452BA014CEF6F261	1309696	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-10 07:40:46	7DBCBB1647B7CD71E2039C1B50A12717	620032	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-06-10 07:40:45	EF853EA2A6A7BD891CCF31B0C2915352	341504	----a-w-	C:\WINDOWS\SysWOW64\html.iec
2015-06-10 07:40:45	C27C8CACEBC712BE2AD791715E9734EC	664064	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-06-10 07:40:45	96837E5864777688477AF6DE2332C06D	503808	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-10 07:40:45	2DED8A99E45053C42DD21D6937D3960C	689152	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-10 07:40:44	B6D8148C1C697A7BF04EE0FE82408B6A	710144	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-10 07:40:44	4ABEEF30EA5B9F4718312DCB60B6C9BC	2052608	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-10 07:40:43	F26680AF396F89F7ABFDA1D1D6B62011	285696	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-10 07:40:43	AE8F02C9B1DC7364A94ABEB6E396611C	327168	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-10 07:40:43	3B850134010B7CCC546C29D51405C9DA	1042944	----a-w-	C:\WINDOWS\SysWOW64\actxprxy.dll
2015-06-10 07:40:42	8AE1E22527BC203BAD89212F6D09F038	880128	----a-w-	C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-10 07:40:42	7467B0605897898F8F32B4B9B9041F51	128000	----a-w-	C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-10 07:40:42	6B7210618D7E2CE0404ECF748701253A	76288	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-06-10 07:54:18	574F2184043FAF24B588BA12B3CC99CC	410336	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2015-06-10 07:54:16	F0CACB26E37A19A8049F7C4448ECC2F5	1119232	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2015-06-10 07:54:16	E87D4371B24BC9E5BAE95AEA60FFD959	193536	----a-w-	C:\WINDOWS\Sysnative\aepic.dll
2015-06-10 07:54:16	16D44C27EE81892ED918DA21544665DC	1020928	----a-w-	C:\WINDOWS\Sysnative\appraiser.dll
2015-06-10 07:54:16	009FD5658121B32791D55D0F34B63883	700416	----a-w-	C:\WINDOWS\Sysnative\generaltel.dll
2015-06-10 07:54:15	FC504D3310BBDABA4449C598C3F8113B	45568	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-06-10 07:54:15	ACDA86BD8FE54376586173BD55F678F9	756736	----a-w-	C:\WINDOWS\Sysnative\invagent.dll
2015-06-10 07:54:15	2C14C7A76B728DF9F2A0425166FDEE8F	422912	----a-w-	C:\WINDOWS\Sysnative\devinv.dll
2015-06-10 07:54:14	90BFB92CF2AB75A01BF40D22BD1670A8	227328	----a-w-	C:\WINDOWS\Sysnative\aepdu.dll
2015-06-10 07:54:13	3F8C7B8A4C345D0378AC79746E927158	3097600	----a-w-	C:\WINDOWS\Sysnative\msftedit.dll
2015-06-10 07:54:10	9DF4C369F556A4FBAE7E1D86F1AA5593	309760	----a-w-	C:\WINDOWS\Sysnative\compstui.dll
2015-06-10 07:54:10	4DC765353D890B9813AC809C0EFF488A	477184	----a-w-	C:\WINDOWS\Sysnative\puiobj.dll
2015-06-10 07:54:10	4A5D524C19BEB337797D6448020025B4	1091072	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2015-06-10 07:54:08	B0B46D29B9F34D19B819B48E208871A5	36864	----a-w-	C:\WINDOWS\Sysnative\UtcResources.dll
2015-06-10 07:54:08	3ECB752A6963B1CBC9AD65ED89C8ACED	1430528	----a-w-	C:\WINDOWS\Sysnative\diagtrack.dll
2015-06-10 07:54:07	3C03E08CBB76B7081173924C52D329EE	1249280	----a-w-	C:\WINDOWS\Sysnative\UIAutomationCore.dll
2015-06-10 07:54:05	CD7DC91A7F84B4C81A06B511545DE867	275968	----a-w-	C:\WINDOWS\Sysnative\authz.dll
2015-06-10 07:54:04	F2CBC74E403A4251279D0BA9D0ECFBDB	2551808	----a-w-	C:\WINDOWS\Sysnative\mssrch.dll
2015-06-10 07:54:03	F52C9F18BE8899CF503D7D40E62C47C3	903168	----a-w-	C:\WINDOWS\Sysnative\SearchIndexer.exe
2015-06-10 07:54:03	3B8D14C7D33E3991090C726DD4CF7088	468480	----a-w-	C:\WINDOWS\Sysnative\mssph.dll
2015-06-10 07:54:03	279C2DB5C56A3674DCB98165E85237CF	3633664	----a-w-	C:\WINDOWS\Sysnative\tquery.dll
2015-06-10 07:54:02	D044FD35EEC3BF683B963DE10A5E00C3	222208	----a-w-	C:\WINDOWS\Sysnative\rastapi.dll
2015-06-10 07:54:02	98D0A8C3BF81774D76EAAB5977B69AB3	337408	----a-w-	C:\WINDOWS\Sysnative\SearchProtocolHost.exe
2015-06-10 07:54:02	62B3D51F60859F595317D7C3AEC5E5F2	248832	----a-w-	C:\WINDOWS\Sysnative\mssphtb.dll
2015-06-10 07:54:02	42FFA34D6A1ABBC6064E0D8A452039D3	774144	----a-w-	C:\WINDOWS\Sysnative\mssvp.dll
2015-06-10 07:41:17	0341BF7622E0D547446DB254868EF965	653824	----a-w-	C:\WINDOWS\Sysnative\comctl32.dll
2015-06-10 07:40:58	A29BAFC1543F9D2234AFFFEA9BCE76C8	24917504	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-06-10 07:40:51	CFA52E2FE8E623042A1EEF96EB1B9481	6026240	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-06-10 07:40:51	417F80E4AFBA1AA9EBBD618F1C6D9165	2426880	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-06-10 07:40:49	AE5A2843B4A2E1E558B9EE13EF62CCE5	14404096	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-06-10 07:40:47	6E295C7364DAEB151CC0E98434B6AC92	2885632	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-06-10 07:40:47	6ABFC5736EC920C4436F32111F5CBCEE	1545728	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2015-06-10 07:40:46	7B4A7D55E905ED9A0A4B1263BA7C6944	2865152	----a-w-	C:\WINDOWS\Sysnative\actxprxy.dll
2015-06-10 07:40:45	FF84182188CA8F0DC28CFED06C9B7816	2125824	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2015-06-10 07:40:45	33B5F1A727FACDEA7CDA0E35FFAADDCF	584192	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2015-06-10 07:40:45	2BC2D3A41BB755487FD55C09938F00BC	417792	----a-w-	C:\WINDOWS\Sysnative\html.iec
2015-06-10 07:40:45	083BCA14FCE290D682D8DAC9372CBF23	801280	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2015-06-10 07:40:44	83781DF625A4448B39410D7FA2BDC48D	816640	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-06-10 07:40:44	7F8F9AE03D1BA4354671E05F07A40F1A	800768	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2015-06-10 07:40:44	3854BFE1C0F14872C94501421CC40813	814080	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2015-06-10 07:40:43	ACD6FE6C82B93813F023FC01A51CB940	92160	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2015-06-10 07:40:43	86FDFEA67833DB261EC01A777594EDCF	316928	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2015-06-10 07:40:43	614604C8D322D0779E426917CAFE4F3E	262144	----a-w-	C:\WINDOWS\Sysnative\webcheck.dll
2015-06-10 07:40:42	9EFAF10AF9BFA6CDBDDE3D8C5EDC3453	145408	----a-w-	C:\WINDOWS\Sysnative\iepeers.dll
2015-06-10 07:40:42	35622F5A652C4E16774234DCA0026E74	633856	----a-w-	C:\WINDOWS\Sysnative\ieui.dll
2015-06-10 07:40:42	1E31F06BE53F11CF5E660284E68587AC	374272	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2015-06-10 07:40:42	11E5CD954CC38080471E7CC2CA1558AE	1032704	----a-w-	C:\WINDOWS\Sysnative\inetcomm.dll
2015-06-10 07:40:29	6CCC851608DD076C13E37737BB75A9DC	4177920	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
====== C:\WINDOWS\Sysnative\drivers =====
2015-06-10 07:54:02	44603DA5A87FB491EF59C889EBBB4DDB	325464	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS
====== C:\WINDOWS\Tasks ======
2015-05-29 18:09:28	07534DFCA60543AEF9A64D98AACC734F	446	----a-w-	C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-05-24 12:06:08	--------	d-----w-	C:\PROGRA~2\Mozilla Maintenance Service
======= C: =====
====== C:\Users\Remco Blaauw\AppData\Roaming ======
2015-06-16 19:36:49	3A6B17EAC1014D0F6CDE6B3551149212	24	----a-w-	C:\Users\Remco Blaauw\AppData\Roaming\appdataFr25.bin
2015-06-12 11:19:05	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Adobe
2015-06-01 07:29:43	--------	d-----w-	C:\Users\Remco Blaauw\AppData\Local\GWX
2015-05-24 12:06:14	--------	d-----w-	C:\Users\Remco Blaauw\AppData\Roaming\Mozilla
2015-05-24 12:06:14	--------	d-----w-	C:\Users\Remco Blaauw\AppData\Local\Mozilla
====== C:\Users\Remco Blaauw ======
2015-06-21 12:26:06	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Remco Blaauw\Downloads\RSITx64.exe
2015-06-16 15:46:37	8FB832997EA6132E21D28ADD4131A4AB	673968	----a-w-	C:\Users\Remco Blaauw\Downloads\CreativeCloudSet-Up (1).exe
2015-06-01 17:58:53	E0C5BA691EA4FC2C19BE688D84A96016	325245	----a-w-	C:\Users\Apps\local-files-desktop.spa
2015-05-24 12:06:08	--------	d-----w-	C:\ProgramData\Mozilla
2015-05-24 11:29:06	4E6DF15A169E6666FA13A21A46637EB5	151228	----a-w-	C:\Users\Apps\hub.spa

====== C: exe-files ==
2015-06-20 16:42:51	7833BD2A9A09246C87E5B913A9CEF651	5828512	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\00007876\DAO.19691128.exe
2015-06-19 15:58:30	68A7932A44C5684FC2321B84867186B9	675256	----a-w-	C:\ProgramData\NVIDIA\Updatus\ApplicationOntology\NvOAWrapperCache.exe
2015-06-19 15:58:26	2B91F689C505DC6529613AFB2C00F39D	172984	----a-w-	C:\ProgramData\NVIDIA\Updatus\ApplicationOntology\OAWrapper.exe
2015-06-17 11:48:09	220E2B2C86B551FDB9E1BE03461C4798	5824488	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\00007847\DAO.19677879.exe
2015-06-16 20:56:45	317AC1F0DBB84B5381377FCE456EB209	225280	----a-w-	C:\Program Files (x86)\Adobe\Adobe Content Viewer\Adobe Content Viewer.exe
2015-06-16 18:13:50	8138166CE77BCB8CBBB3048705C8ABC1	2504192	----a-w-	C:\Users\Remco Blaauw\AppData\Local\Temp\B600\temp\GraphicLight.xyz.exe
2015-06-16 18:09:12	C50AFE08B46E41BE08EB9B2EF9D14E62	213504	----a-w-	C:\Users\Remco Blaauw\AppData\Local\Temp\B600\temp\4574277242963672951b.exe
2015-06-16 15:19:41	FC83CC450CFB17D63F89827EB5B3886E	320688	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeServiceInstaller.exe
2015-06-16 15:19:41	86067F0EBA4A2C98B51D62452BBF3552	680112	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
2015-06-16 15:19:41	7153B8A0F3F5EBF61621DD674F6580B4	356016	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
2015-06-16 15:19:37	8D1C080C4746E8DFDE72AD0D073652B8	174256	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
2015-06-16 15:19:35	CBE0B05C11D5D523C2AF997D737C137B	5673816	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc10\64bit\vcredist_x64.exe
2015-06-16 15:19:35	7F52A19ECAF7DB3C163DD164BE3E592E	6554576	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc12\32bit\vcredist_x86.exe
2015-06-16 15:19:35	3C03562B5AF9ED347614053D459D7778	7186992	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc12\64bit\vcredist_x64.exe
2015-06-16 15:19:35	1801436936E64598BAB5B87B37DC7F87	8990552	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc10\32bit\vcredist_x86.exe
2015-06-16 15:19:34	C7187AC06DAFD0628587F86742945601	7188536	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc13\64bit\vcredist_x64.exe
2015-06-16 15:19:34	99E3D99D8ED70AC88F59E31757ED3D62	6498200	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\vc13\32bit\vcredist_x86.exe
2015-06-16 15:19:34	5A5040501A31E5C645236D8C3BFE9E59	236704	------w-	C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\Runtime\customhook\RuntimeCustomHook.exe
2015-06-16 15:19:33	E7137DCB80AC2F6A7EA54CE5CFB94D84	410288	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\Setup.exe
2015-06-16 15:19:33	7F9E83B48454C99FE77AB84325C82202	123568	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\TokenResolverx64.exe
2015-06-16 15:19:33	46B0EC0DF585F879D030311E0ED1937E	196784	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HDCore\Uninstaller.exe
2015-06-16 15:19:21	76A2599E2B2211794E086B709D20C85D	250032	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\customhook\CCLibCustomHook.exe
2015-06-16 15:18:25	834FEE01042FC042F6C0AEBC9CCD7187	5521792	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
2015-06-16 15:18:01	AEC03C7D1ACB3EA381958B798686A448	241320	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncPlugins\ExchangePlugin\customhook\ExchangePluginCustomHook.exe
2015-06-16 15:18:01	32EB9841B2F0987C370AFD57CB7717C7	155824	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
2015-06-16 15:18:01	05176B06396231648C7507A960F8E031	680104	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncPlugins\ExchangePlugin\ExManCoreLib\ExManEscalatedPrivilegeServer.exe
2015-06-16 15:17:54	4EBC2713D68A4F9003FFCFB48874AEE3	173224	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncPlugins\ExchangePlugin\ExManCoreLib\ExManBridgeTalkCmd.exe
2015-06-16 15:17:47	A1C1E8323017924A32C758D34C2CB91A	44184	------w-	C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncPlugins\LiveType\customhook\uninstall.exe
=== C: other files ==
2015-06-16 20:56:13	441C1881F067A27DF6F49E833D346766	377605	----a-w-	C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{7A5F17F4-72F3-4A88-832F-E96BCE3AFE62}.zip
2015-06-16 20:54:04	914E7CCDDBA2859FEC92301432BD3C34	1264280	----a-w-	C:\Users\Remco Blaauw\Downloads\setup\payloads\AdobeDigitalPublishing32-mul-030914125656\Assets1_1.zip
2015-06-16 20:54:04	5295A74B6D67CCEADE60D64BE7F84B56	1460766	----a-w-	C:\Users\Remco Blaauw\Downloads\setup\payloads\AdobeDigitalPublishing64-mul-030914125709\Assets1_1.zip
2015-06-16 20:54:03	35A902EED81E0AB52AA519CE6F686804	27457021	----a-w-	C:\Users\Remco Blaauw\Downloads\setup\payloads\AdobeDigitalPublishing-mul-030914125632\Assets2_1.zip
2015-06-16 19:57:59	42CED4323DC423DBE4480853FD73C291	14539486	----a-w-	C:\Program Files\Common Files\Adobe\Adobe\AdobePatchFiles\{FF8232CB-04DB-4F81-8851-9AB91168D783}.zip
2015-06-16 19:57:50	AC60AA5F3B1B5DE00F07ACFE86539C15	2794606	----a-w-	C:\ProgramData\Adobe\CameraRaw\Adobe\AdobePatchFiles\{9ADB32B1-DF6E-4390-998D-50C2A893CD90}.zip
2015-06-16 19:57:25	29CDDE72B406EEE9CDDF0350E3F1A7E2	13823802	----a-w-	C:\Program Files (x86)\Common Files\Adobe\Adobe\AdobePatchFiles\{822DABEA-3332-47BA-B12A-5B0FD97E0322}.zip
2015-06-16 19:56:16	54B71A2183A880B797F9F37FA8DDECBB	70855363	----a-w-	C:\Program Files\Adobe\Adobe\AdobePatchFiles\{C2719D8E-4810-4D62-A251-36FB9E3B2059}.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-4034604172-2849556485-1385561215-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_1A01371B08E6182A8B7FD3FE34B75D41"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"Spotify Web Helper"="C:\Users\Remco Blaauw\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"
"Adobe Acrobat Synchronizer"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"

[HKEY_USERS\S-1-5-21-4034604172-2849556485-1385561215-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"="C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"RemoteControl10"="C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"Intel AppUp(SM) center"="C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
"Adobe Creative Cloud"="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true"
"Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_1A01371B08E6182A8B7FD3FE34B75D41"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"
"Spotify Web Helper"="C:\Users\Remco Blaauw\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe"
"Adobe Acrobat Synchronizer"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\WINDOWS\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4"
"UMonit64"="C:\windows\SysWOW64\UMonit64.exe"
"Energy Manager"="C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"Lenovo Utility"="C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

==== Startup Folders ======================

2014-10-20 10:03:56	1189	----a-w-	C:\Users\Remco Blaauw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Bidaily Synchronize Task[973b].job --a-------- C:\programdata\a7b28b53-6142-d9df-a7b2-28b536142d4d\adele - someone like you live at royal albert hall hd.exe []

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\Dolby Selector" [C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{DFDF3FAE-5BD3-4EA7-8194-0E74AE07B5E3}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn" [08-05-2015 13:06]

==== Firefox Extensions ======================

ProfilePath: C:\Users\REMCOB~1\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default
- Undetermined - C:\Users\Remco Blaauw\AppData\Roaming\Mozilla\Firefox\Profiles\kbky6gze.default\extensions\suntbvgycuzmbyhx@hombodycsn_uilyxwlo.edu

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 43.0.2357.124

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaaiabcopkplhgaedhbloeejhhankf - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx[]
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]

Awesome Screenshot Minus - Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnophbnknjcjnbadhhkciahanapffepm
Adobe Acrobat - Create PDF - Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
ENormaouuSales - Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgaiogcmoijifhglfocaakgmclaommek
Google Wallet - Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Last updated at time on date - Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch

==== Chromium Startpages ======================

C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Preferences
le.com:80,*":{"last_used":{"media-stream-camera":1431293852.27522,"media-stream-mic":1431293852.274924},"media-stream-camera":1,"media-stream-mic":1},"http://www.thenorthface.com:80,http://www.thenorthface.com:80":{"fullscreen":1},"https://[*.]drive.google.com:443,*":{"fullscreen":1},"https://[*.]mail.fontys.nl:443,*":{"popups":1},"https://[*.]prezi.com:443,*":{"fullscreen":1},"https://[*.]www.facebook.com:443,*":{"fullscreen":1},"https://www.google.nl:443,*":{"last_used":{"media-stream-mic":1431607625.90606},"media-stream-mic":1},"https://www.youtube.com:443,https://www.youtube.com:443":{"fullscreen":1}},"pref_version":1},"created_by_version":"39.0.2171.95","default_content_settings":{},"exit_type":"Crashed","exited_cleanly":true,"gaia_info_picture_url":"https://lh6.googleusercontent.com/-EC3jVvvA9eE/AAAAAAAAAAI/AAAAAAAAAfw/q5z2HOPQyJA/s256-c/photo.jpg","gaia_info_update_time":"13079390168021631","icon_version":3,"managed_user_id":"","managed_users":{},"migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Eerste gebruiker","per_host_zoom_levels":{}},"protection":{"macs":{}},"reverse_autologin":{"enabled":false},"savefile":{"default_directory":"C:\\Users\\Remco Blaauw\\Downloads"},"selectfile":{"last_directory":"C:\\Users\\Remco Blaauw\\Desktop\\Foto's pap en mam"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13077396660108358"},"signin":{"signedin_time":"13066050662665980"},"sync":{"app_list":true,"app_settings":true,"apps":true,"autofill":true,"autofill_profile":true,"bookmarks":true,"dictionary":true,"encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAETxY6OkK5UW/9QxSpY/E2gAAAAACAAAAAAAQZgAAAAEAACAAAABbmK6HuXhMGnWjf4EU+uf/q4HWmq4A6TOOg6k5cIh6ZQAAAAAOgAAAAAIAACAAAADP5DAbKWA0kjBpbIv1bzaAMqSPR5gbraX1HxmJ1OLFnkAAAAAV3b09Yi/9GL/SpQE0z1hi7VXYQHH9nn0tdnWJvs6Vhd8NTl8esZ+7wuMNDe2MaBsWOIZVlXD9dZWnYn0+BtccQAAAAMG8TkwMEyBeW5vLcIuCMJMMkV7fcIqtXrtWEkLBgkbTLnohnY+Tq/xgZJWGnzI6IP6xWBzS6iJHwJZtGjnDSmM=","extension_settings":true,"extensions":true,"favicon_images":true,"favicon_tracking":true,"first_sync_time":"13066050662926643","has_setup_completed":true,"history_delete_directives":true,"keystore_encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAETxY6OkK5UW/9QxSpY/E2gAAAAACAAAAAAAQZgAAAAEAACAAAABGc4m4Bs3BIl6MM91GOeLReOyi7ZGQkyoj2t5w76cCzwAAAAAOgAAAAAIAACAAAAAnxUs26fmndF6XNeb05q2JviMGHFXZwR1r0IXU5C6WGVAAAAB9t3hHaJpRDP66exoZ1voQ8jVwZBCDLl/ogJNcLwvvWc1/XqTf25JaJB4fDPO9LhpJBj7z1KDe2S8CJZ1NR9gIaUcQ6VNZPIjcSeg3O8JIokAAAACtKE9Otlr3W4lTCByVpB2ZYGeY5egBFLTBlX+wPk525EWZl8naWnTsPHThZoBaCF7FVlXKGcLynFymuIPdDwb9","last_synced_time":"13079431509719681","managed_user_settings":true,"managed_user_shared_settings":true,"managed_user_whitelists":true,"managed_users":true,"passwords":true,"preferences":true,"priority_preferences":true,"search_engines":true,"session_sync_guid":"session_sync5eZJMQyoeoaVPxyHiJsYeg==","sessions":true,"suppress_start":false,"tabs":true,"themes":true,"typed_urls":true},"translate_accepted_count":{"af":0,"de":0,"en":0,"es":0,"fr":0,"ru":1,"sv":0},"translate_blocked_languages":["nl","en"],"translate_denied_count":{"af":4,"de":1,"en":25,"es":1,"fr":3,"ru":0,"sv":2},"translate_last_denied_time":1427186985342.532,"translate_too_often_denied":true,"translate_whitelists":{},"zerosuggest":{"cachedresults":""}}
mjlpgkdkcbjmhmfcdpncadgh":"1720379301448551BBAF98B7393E98D07BBF9B8293C69FB8DDF1F9DAA513918E"}},"google":{"services":{"last_username":"6905C107E639654D3AA985FDA5FF488525A5B5E6E36AB45B2521CD8EC2143086","username":"747FC1603717B1A572F70C299628988592AC7B2CDF0E211B1EADD9C727FB6023"}},"homepage":"4D52AAAD703D68FDD061620A29386F00500518663FAF618093BAE957640E1515","homepage_is_newtabpage":"6B0DAB4E87DFAED85B9A5748C44837042E82F0C6522BABD112C56A093D85D306","pinned_tabs":"4804E06F6CFFA9A9F4C648A8433F36DA1F0185D9F02A8ACDC600BEEF0759E8E4","prefs":{"preference_reset_time":"BB2175F150A6402B41C3EC41AC5F30D4BDF69EBDDDE452D8699B03A767E3B2BD"},"profile":{"reset_prompt_memento":"C4F30AC05CE91502D1D371BDE6E846F4563E83AEB5B48C8F891985AE245BDC52"},"safebrowsing":{"incidents_sent":"7D084CC419D31BC440987B23B120A24D6B670F85963C310BC2884FE214778A55"},"search_provider_overrides":"BBC2614641E98AF0EA1B7D66194EE6BFB55095EF7FE2CC1588F3592BE0AE72E1","session":{"restore_on_startup":"D22F47E664BA1587F0589C3632A7FD50EE87FF132A93EF6FC87087EA6C442C20","startup_urls":"CDBB92160C8DCB1C791F33DDE61BA5370FBB1BE3F36A961E087085A2FDE23155"},"software_reporter":{"prompt_reason":"F31344CAF4830D6E0263EAF92357505B27863C96A121226021B991B200AF0FB5","prompt_seed":"06255BD979527BAF17DB532AFE8A4D65181140278673F3B2C073922AA2B84E88","prompt_version":"9FD7BAE929DBF732C0E160F252ADD5641A6E87286667C584AEA48C99AD804260"},"sync":{"remaining_rollback_tries":"773B061AB99B5C8B9F36E03DF634C53C0E78AC118EF844320DE787DAAEBC77B1"}},"super_mac":"8EF15798C16BECD7B2204689BD70FDA2BAAFBC1ADCFE465D922A62743E1B46AD"},"safebrowsing":{"incidents_sent":{"2":{"chrome.dll":"3774509266","chrome_child.dll":"3743713718"},"6":{"script_request_incident":"42"}}},"session":{"restore_on_startup":5,"startup_urls":["http://www.mystartsearch.com/?type=hp&ts=1421147112&from=wpc&uid=ST1000LM014-1EJ164_W380FTJ8XXXXW380FTJ8"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage-journal deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgaiogcmoijifhglfocaakgmclaommek deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://websearch.searchtotal.info/?pid=24424&r=2015/05/29&hid=8142272491066846318&lg=EN&cc=NL&unqvl=88"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC0D100 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{214E251B-BF42-BF18-588C-42DA92658DB4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{47B2010D-2F1B-7A72-E485-51BA1F6D5901} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C1D00} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC0D100 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{abc71024} deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Remco Blaauw\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Remco Blaauw\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Remco Blaauw\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Remco Blaauw\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Remco Blaauw\AppData\Local\Mozilla\Firefox\Profiles\kbky6gze.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Remco Blaauw\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1801 folders=376 234058711 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Remco Blaauw\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\REMCOB~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 22-06-2015 at 10:10:39,86 ======================