
Zoek.exe v5.0.0.1 Updated 04-October-2015
Tool run by paul on di 06-10-2015 at 21:46:40,84.

Running in: Normal Mode Internet Access Detected
Launched: C:\Users\paul\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

Failed to create System Restore Point

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 

2009-07-14 03:20:08	d-----w-	\Windows
2011-05-20 00:13:40	32635	----a-w-	BB21CD46D785DA01C46C3576992243DB	\windows\atiogl.xml
2011-07-14 23:17:41	0	----a-w-	D41D8CD98F00B204E9800998ECF8427E	\windows\ativpsrm.bin
2010-11-21 03:24:22	71168	----a-w-	317CD1CE327B6520BF4EE007BCD39E61	\windows\bfsvc.exe
2015-10-06 19:35:24	67584	--s-a-w-	F93538F1FB656E1D4981CBDD2D357033	\windows\bootstat.dat
2011-07-15 08:52:39	12	----a-w-	A05C881B9845246A9D311574AD5D5B04	\windows\CSUP.txt
2012-06-22 08:05:03	917	----a-w-	F799F0C30C28370EA353272187F81970	\windows\DirectX.log
2011-07-14 23:12:57	4558	----a-w-	7B466E050B7244A5BE1257E6E147C072	\windows\DPINST.LOG
2011-07-14 23:38:08	5075	----a-w-	5D18DDEF89D77AA592FB255CDBDE5323	\windows\DtcInstall.log
2015-09-27 18:26:44	1912	----a-w-	E185BDA84E5F03F4E1D8DCA30E209277	\windows\epplauncher.mif
2011-08-10 05:39:32	2871808	----a-w-	332FEAB1435662FC6C672E25BEB37BE3	\windows\explorer.exe
2009-07-14 01:39:10	15360	----a-w-	92BB2E9AA28542C685C59EFCBAC2490B	\windows\fveupdate.exe
2009-07-14 01:39:12	733696	----a-w-	CD47548A52B02D254BF6D7F7A5F2BFD3	\windows\HelpPane.exe
2009-07-14 01:39:12	16896	----a-w-	3D0B9EA79BF1F828324447D84AA9DCE2	\windows\hh.exe
2009-06-10 20:30:54	48223	----a-w-	0D776C3A36F2B6E657939BB96096E070	\windows\HomeBasic.xml
2009-06-10 20:30:55	48265	----a-w-	1AEB4967A760D6EC21A3270F1B004AC1	\windows\HomePremium.xml
2011-05-13 05:33:18	7736	----a-w-	65C12F76A677E5D67830999203B511A5	\windows\hpDSTRES.DLL
2013-05-11 11:23:36	9534	----a-w-	5464EDA307FE465F762C154ADF6C274C	\windows\IE10_main.log
2013-12-04 08:08:36	9961	----a-w-	9A0C72A900EEDEC898515E9F126CF0B5	\windows\IE11_main.log
2012-09-20 17:43:21	389698213	----a-w-	778CBFA3B93D5885E7ABE726ECF598E2	\windows\MEMORY.DMP
2009-07-13 23:06:54	43131	----a-w-	23AF90D2355D8C83AA4567EF1763B467	\windows\mib.bin
2009-06-10 20:36:48	1405	----a-w-	B9FB94A8DA62711C6955825DEFB25C5A	\windows\msdfmap.ini
2015-07-09 17:57:57	193536	----a-w-	B32189BDFF6E577A92BAA61AD49264E6	\windows\notepad.exe
2015-10-04 15:35:31	833598	----a-w-	C4E67BC41C804E522AA698D988F186EC	\windows\ntbtlog.txt
2015-10-04 14:41:56	744496	----a-w-	A5A285D469A3A863485792FC60A711DE	\windows\PFRO.log
2009-07-14 01:39:29	427008	----a-w-	2E2C937846A0B8789E5E91739284D17A	\windows\regedit.exe
2015-10-06 19:35:35	160708	----a-w-	3A19ABD1EC174862179EF4E8969BF7B8	\windows\setupact.log
2009-07-14 04:51:00	0	----a-w-	D41D8CD98F00B204E9800998ECF8427E	\windows\setuperr.log
2012-02-11 06:36:01	67072	----a-w-	127AA81343A7C6F665C22CB1293B0A90	\windows\splwow64.exe
2009-06-10 20:31:02	48201	----a-w-	9060C3C745E7B2D8E1A81DD061021546	\windows\Starter.xml
2010-12-17 11:41:36	525312	----a-w-	DAD6EA55687A2605BF85CC9924E498B9	\windows\sttray64.exe
2011-07-14 23:12:57	1432	----a-w-	2D776731D332E21EC3CF7CE13675FC80	\windows\Synaptics.log
2009-06-10 21:08:04	219	----a-w-	286A9EDB379DC3423A528B0864A0F111	\windows\system.ini
2011-07-14 22:58:29	5949	----a-w-	C91D999E1BFAECEB7983BE9F7A9B6B5A	\windows\TSSysprep.log
2009-06-10 21:41:17	94784	----a-w-	0BEA3F79A36B1F67B2CE0F595524C77C	\windows\twain.dll
2010-11-21 03:25:10	51200	----a-w-	163A95975E1D8819E653AA3E961371CA	\windows\twain_32.dll
2009-06-10 21:41:17	49680	----a-w-	F36A271706EDD23C94956AFB56981184	\windows\twunk_16.exe
2009-07-14 01:14:42	31232	----a-w-	0BD6E68F3EA0DD62CD86283D86895381	\windows\twunk_32.exe
2015-09-27 13:19:29	637	----a-w-	19C2567DBDF319D9CA627536CD0FE473	\windows\win.ini
2009-07-14 04:54:24	749	---ha-r-	5A5CFF37F1BD0F86B9BDAAD7A9445882	\windows\WindowsShell.Manifest
2015-10-06 19:52:09	1351971	----a-w-	F9BD1B206E9D748908C2254951651AE2	\windows\WindowsUpdate.log
2009-07-14 01:14:45	9728	----a-w-	1D420D66250BCAAAED05724FB34008CF	\windows\winhlp32.exe
2012-03-08 16:37:20	302448	----a-w-	4860944ABF2F8EAB74039A3A132B9995	\windows\WLXPGSS.SCR
2009-06-10 20:52:44	316640	----a-w-	DC17DD0189B0C36D863B4DD0A036C10F	\windows\WMSysPr9.prx
2009-07-14 01:39:57	10240	----a-w-	F8ED3B4B209E2CB49028E36CF06CA851	\windows\write.exe

==== Empty Folders Check ======================

C:\PROGRA~2\predm deleted successfully
C:\PROGRA~2\TornTV.com deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Users\paul\AppData\Roaming\TP deleted successfully
C:\Users\paul\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\paul\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\paul\AppData\Local\EmieSiteList deleted successfully
C:\Users\paul\AppData\Local\EmieUserList deleted successfully
C:\Users\paul\AppData\Local\PackageAware deleted successfully
C:\Users\paul\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\paul\AppData\Roaming\Mozilla\Firefox\Profiles\0

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_06-10-2015_2213_.backup

ProfilePath: C:\Users\paul\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_06-10-2015_2213_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\predm not found
C:\PROGRA~2\TornTV.com not found
C:\Program Files (x86)\CinemaPlus-3.2cV29.09 deleted
C:\Program Files (x86)\gmsd_nl_005010099 deleted
C:\Program Files (x86)\Fast-Search deleted
C:\ProgramData\WWdsManProW deleted
C:\ProgramData\Service1291 deleted
C:\ProgramData\28341ff220e0446c9fff27c4493d622e deleted
C:\Program Files (x86)\AnyProtectEx deleted
C:\ProgramData\ZWdsManProZ deleted
C:\Program Files (x86)\globalUpdate deleted
C:\Program Files (x86)\31464E43-1443357800-5230-444C-101F74CAA7BC deleted
C:\PROGRA~2\SopCast deleted
C:\PROGRA~2\1ClickDownload deleted
C:\PROGRA~2\SFK deleted
C:\PROGRA~2\RayDld deleted
C:\task.vbs deleted
C:\Users\paul\AppData\Local\gmsd_nl_005010099 deleted
C:\Users\paul\AppData\Local\31464E43-1443365060-5230-444C-101F74CAA7BC deleted
C:\Users\paul\AppData\Local\globalUpdate deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\Syswow64\shoF0D3.tmp deleted
C:\Windows\Syswow64\shoFA26.tmp deleted
C:\Users\paul\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com deleted
"C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-09-27 18:26:44	E185BDA84E5F03F4E1D8DCA30E209277	1912	----a-w-	C:\Windows\epplauncher.mif
====== C:\Users\paul\AppData\Local\Temp ====
2015-09-29 14:53:51	7D76915047CB7DCD59FA1DCB49191272	925696	----a-w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-4fad6006.exe
2015-09-29 14:21:59	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\psuser.dll
2015-09-29 14:21:59	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\psmachine.dll
2015-09-29 14:21:58	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\globalupdateHelper.msi
2015-09-29 14:21:58	CE3D5DE623E5924FD3F04C9345CD03AD	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\goopdate.dll
2015-09-29 14:21:58	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\globalupdateOnDemand.exe
2015-09-29 14:21:58	6DA0AE84C474A259C81FAB1784794486	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\npglobalupdateUpdate4.dll
2015-09-29 14:21:57	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\globalupdateBroker.exe
2015-09-29 14:21:57	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\globalupdateCrashHandler.exe
2015-09-29 14:21:57	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.2773\globalupdate.exe
2015-09-29 14:20:54	58925271969A5D07444437071F984199	13731912	----a-w-	C:\Users\paul\AppData\Local\Temp\7366.exe
2015-09-29 14:15:15	58925271969A5D07444437071F984199	13731912	----a-w-	C:\Users\paul\AppData\Local\Temp\992.exe
2015-09-29 14:03:13	628E16FB5634CEFC225CB6162079CA72	35547	----a-w-	C:\Users\paul\AppData\Local\Temp\Zzoooomit_uninstall.exe
2015-09-27 18:05:57	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\globalupdateHelper.msi
2015-09-27 18:05:57	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\psuser.dll
2015-09-27 18:05:57	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\globalupdateOnDemand.exe
2015-09-27 18:05:57	745C0CCCAF8507990F414051A0D9CBA7	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\npglobalupdateUpdate4.dll
2015-09-27 18:05:57	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\globalupdateBroker.exe
2015-09-27 18:05:57	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\psmachine.dll
2015-09-27 18:05:57	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\globalupdateCrashHandler.exe
2015-09-27 18:05:57	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\globalupdate.exe
2015-09-27 18:05:57	0D60B72F4E3382E9DC345B123465D1D9	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.140341\goopdate.dll
2015-09-27 18:05:34	4FF4196AA0C9F635BCCE0CED945C4D3D	14239736	----a-w-	C:\Users\paul\AppData\Local\Temp\2158.exe
2015-09-27 17:58:52	A3078153A7A53BFC0A7A0B8FD20D757A	3030016	----a-w-	C:\Users\paul\AppData\Local\Temp\fsdB408.exe
2015-09-27 17:50:40	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\globalupdateHelper.msi
2015-09-27 17:50:40	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\psuser.dll
2015-09-27 17:50:40	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\globalupdateOnDemand.exe
2015-09-27 17:50:40	745C0CCCAF8507990F414051A0D9CBA7	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\npglobalupdateUpdate4.dll
2015-09-27 17:50:40	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\globalupdateBroker.exe
2015-09-27 17:50:40	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\psmachine.dll
2015-09-27 17:50:40	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\globalupdateCrashHandler.exe
2015-09-27 17:50:40	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\globalupdate.exe
2015-09-27 17:50:40	0D60B72F4E3382E9DC345B123465D1D9	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.278857\goopdate.dll
2015-09-27 17:50:17	4FF4196AA0C9F635BCCE0CED945C4D3D	14239736	----a-w-	C:\Users\paul\AppData\Local\Temp\4033.exe
2015-09-27 17:49:54	690F4B16C53BEC409E4F465CFB4231A3	1998408	----a-w-	C:\Users\paul\AppData\Local\Temp\1925.exe
2015-09-27 13:17:36	A3078153A7A53BFC0A7A0B8FD20D757A	3030016	----a-w-	C:\Users\paul\AppData\Local\Temp\fsd2B54.exe
2015-09-27 12:56:54	7B1977DCA8506D7AA3B23732AECA6A26	336896	----a-w-	C:\Users\paul\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe
2015-09-27 12:56:03	A3078153A7A53BFC0A7A0B8FD20D757A	3030016	----a-w-	C:\Users\paul\AppData\Local\Temp\fsd4846.exe
2015-09-27 12:55:49	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\globalupdateHelper.msi
2015-09-27 12:55:49	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\psuser.dll
2015-09-27 12:55:49	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\globalupdateOnDemand.exe
2015-09-27 12:55:49	745C0CCCAF8507990F414051A0D9CBA7	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\npglobalupdateUpdate4.dll
2015-09-27 12:55:49	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\globalupdateBroker.exe
2015-09-27 12:55:49	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\psmachine.dll
2015-09-27 12:55:49	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\globalupdateCrashHandler.exe
2015-09-27 12:55:49	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\globalupdate.exe
2015-09-27 12:55:49	0D60B72F4E3382E9DC345B123465D1D9	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.293949\goopdate.dll
2015-09-27 12:55:16	DA40708467120531A13E19988ABC5BB7	13837776	----a-w-	C:\Users\paul\AppData\Local\Temp\2962.exe
2015-09-27 12:53:12	690F4B16C53BEC409E4F465CFB4231A3	1998408	----a-w-	C:\Users\paul\AppData\Local\Temp\9324.exe
2015-09-27 12:47:37	59433FE179A54E675F2CAC141DA1731C	1957976	----a-w-	C:\Users\paul\AppData\Local\Temp\8233.exe
2015-09-27 12:46:43	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\psuser.dll
2015-09-27 12:46:43	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\globalupdateOnDemand.exe
2015-09-27 12:46:43	745C0CCCAF8507990F414051A0D9CBA7	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\npglobalupdateUpdate4.dll
2015-09-27 12:46:43	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\psmachine.dll
2015-09-27 12:46:43	0D60B72F4E3382E9DC345B123465D1D9	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\goopdate.dll
2015-09-27 12:46:42	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\globalupdateHelper.msi
2015-09-27 12:46:42	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\globalupdateBroker.exe
2015-09-27 12:46:42	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\globalupdateCrashHandler.exe
2015-09-27 12:46:42	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.51511\globalupdate.exe
2015-09-27 12:46:13	3FC0CB3DA9AB0E8F677B25A866A54753	1979976	----a-w-	C:\Users\paul\AppData\Local\Temp\7959.exe
2015-09-27 12:44:37	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\globalupdateHelper.msi
2015-09-27 12:44:37	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\psuser.dll
2015-09-27 12:44:37	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\globalupdateOnDemand.exe
2015-09-27 12:44:37	745C0CCCAF8507990F414051A0D9CBA7	220672	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\npglobalupdateUpdate4.dll
2015-09-27 12:44:37	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\globalupdateBroker.exe
2015-09-27 12:44:37	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\psmachine.dll
2015-09-27 12:44:37	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\globalupdateCrashHandler.exe
2015-09-27 12:44:37	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\globalupdate.exe
2015-09-27 12:44:37	0D60B72F4E3382E9DC345B123465D1D9	761856	----a-w-	C:\Users\paul\AppData\Local\Temp\comh.373152\goopdate.dll
2015-09-27 12:39:10	C993383A83DFEA87E226553EB1C69F17	724280	----a-w-	C:\Users\paul\AppData\Local\Temp\Opera_NI_stable.exe
2015-09-27 12:38:54	D20579623F8526B3124A48AEFC9B68B0	1424072	----a-w-	C:\Users\paul\AppData\Local\Temp\Breaking Bad seizoen 1 nl__10924_i1679438244_il2770504.exe
2015-09-27 10:06:14	CAC69592C1BE2D72B5A5410A203FA916	40960	------w-	C:\Users\paul\AppData\Local\Temp\is45637729\1962868_stp\gvstb.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-10-05 19:33:18	623063B49132137015D9739E248AF22D	39424	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-10-05 19:33:18	24A8A78782AEF972F1D6636EDBD44ABB	525312	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-10-05 19:33:18	0FF6A1672AB4878C9B222F95CB578AC9	718848	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-10-05 19:33:18	0D2FF3F55C1271FAB46BA410B028D778	2056704	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-10-05 19:33:17	B25E5DCF0FA082DC38BF0B2AFAC33415	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-10-05 19:33:17	3A804295FE07DF1082F9C2402B50AB5D	357888	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-10-05 19:33:17	0E425A4058B80E0FB96C01CCADCC6639	1763328	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-10-05 19:33:16	BBBAE9F3831B9F00735582DB025CBD0C	391168	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-10-05 19:33:16	32CD57B59A1E613BAA8096B83889AB40	226816	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-10-05 19:33:14	8023488636AA31EBC185FF76623F391F	80384	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-10-05 19:33:13	709D10FA67ED01BCFB47A2F174D119E4	2865664	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-10-05 19:33:08	2BEE88A3287C90753C2FD3E40F83A8C2	14383616	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-10-05 19:33:03	C85CF5D53C604410F0960E7C1005FA88	163840	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-10-05 19:33:03	7882449E896B15A2E5BD65B186DC04CD	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-10-05 19:33:03	3C75DD208C4E7D4D3F721DAA99B51D39	361984	----a-w-	C:\Windows\SysWOW64\html.iec
2015-10-05 19:33:03	2B3B56654DC4FFA4696C2FD461E24946	1181696	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-10-05 19:33:03	123164EFB13BA73EFFB5EEC0F5BDD74E	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-10-05 19:33:03	05128E03DBA7CCB84457B6F3F6E05522	226816	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-10-05 19:33:02	3D542FF99A1C89F5255E2A7F4F9D53D1	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-10-05 19:33:02	0FF31966C8AC16DA2067E49EFD4CC762	1441280	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-10-05 19:32:59	A8206432BBE69BFC60091CDCFEDA1003	13774848	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-10-05 19:32:56	9823F66EF3313B17E0F311506B498E5C	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2015-10-05 19:32:56	01A53BE696DB92A60B1069D1AFDF1518	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-09-27 12:46:42	E4E0AD58597B5829C93A671E207C24DC	4	----a-w-	C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-10-05 19:33:18	C370E07CFD2A8B9A08BE74765B72314F	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-10-05 19:33:16	ED58FBC60954B011A837478C783AFE45	451584	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-10-05 19:33:16	98B7F9A39813253E659E1504F769165F	3959808	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-10-05 19:33:15	F86883738E3D4028113E07BD94DB9FC9	857600	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-10-05 19:33:15	B130BE6CDB28B476D2AA0FC9F3DCE00D	603136	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-10-05 19:33:15	0256E21F392712C664EE0BAA205AA6EA	2657280	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-10-05 19:33:14	B841C34B380B5F86C9FC7EF507883972	281600	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-10-05 19:33:14	47268B6CA8342828497846D42476E7F4	97280	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-10-05 19:33:11	CB7432EDB6778A37BD01C134F88F3872	53248	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-10-05 19:33:11	75A63D651E9FFB1223F852D4D9FB09E1	2239488	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-10-05 19:33:09	DA42B67F13DBBC2744EC44AF66A5ED37	526336	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-10-05 19:33:07	7C67F20D8B6274DEF96052BA98771607	19291648	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-10-05 19:33:03	4E5FBF3B115A48869BD8A7FF760B910B	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-10-05 19:33:03	03D63CEBE91F6E6BC2AE061621EC9733	39936	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-10-05 19:33:02	FC41A6ECA94678F3DC7A9634D17D0F54	197120	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-10-05 19:33:02	F4AF613474361E2645448502F17E872E	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-10-05 19:33:02	CF773EAC08C3EAD3AA37939618EA18ED	67072	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-10-05 19:33:02	5C76E67DF3C0434B03B8B1B83F13B7BD	255488	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-10-05 19:33:01	E9056011C2D6C84A753E2B4A29DDBD4F	1409024	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-10-05 19:33:01	296744C01BF34767B08D479EB8F5F50D	1509376	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-10-05 19:33:00	DF75822EFD10762CF124AF2C6087E5F4	441856	----a-w-	C:\Windows\Sysnative\html.iec
2015-10-05 19:32:59	FC050F02CEFF8BE3FD6F5C3CFB99B491	15415808	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-10-05 19:32:56	E2EAD0CC85C71E1C6AA4E53B541FE484	89600	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2015-10-05 19:32:56	1A6F8A0FBC13B972057E8F30DD0B6DB1	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
====== C:\Windows\Sysnative\drivers =====
2015-10-04 14:18:07	E681CE4AE5C09651D53CB4387CA3560E	109272	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2015-10-04 14:18:07	AE757332EA130E94E646621CC695B52A	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2015-10-04 14:18:07	A8D28D5B3E2A528D1EF0E338E44F2820	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2015-09-14 15:02:33	E4DC0909B5EACB5BF50F6252095BCFF2	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-09-14 15:02:33	A405647429DE231CD954D93F792CFBA2	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-09-14 15:02:30	7D65B5E9573A26C204AA547457DBF544	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-09-14 15:02:30	62CEA59FF56B66154E08BD51D87392C2	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-09-14 15:02:30	43E1F4B0EFDC244D2A83995CCD7846F7	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-09-14 15:01:18	A0711D119BA4B48A1470C768D301013E	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
====== C:\Windows\Tasks ======
2015-09-27 17:58:26	4DCF86ED088C94830C65D855B2C15E49	3086	----a-w-	C:\Windows\Sysnative\Tasks\ngs3012
2015-09-27 17:49:55	21D3D90271B6126BF8A8BF4423EB5AC6	4274	----a-w-	C:\Windows\Sysnative\Tasks\92A8C958-E7D6-4725-93B9-A762AE478BB
2015-09-27 12:53:16	3B5C80A23B4447BA4A7F66DF715A5C9C	4274	----a-w-	C:\Windows\Sysnative\Tasks\48393456-9B55-4723-834C-619CC69ACD4
2015-09-27 12:46:18	7599F0D4CD983620752CFD477A70AF40	4182	----a-w-	C:\Windows\Sysnative\Tasks\759F016A-9E62-479B-81B-74F4E66352ED
2015-09-25 10:37:20	323EA4D2E7681BDDB757BFF08EEE5D83	3180	----a-w-	C:\Windows\Sysnative\Tasks\HPCeeScheduleForpaul
2015-09-25 10:37:20	2296A2EEA96B20396C4353A71AD3EC20	328	----a-w-	C:\Windows\Tasks\HPCeeScheduleForpaul.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-10-05 19:20:14	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-09-27 17:50:34	--------	d-----w-	C:\PROGRA~2\CinemaPlus-3.2cV27.09
2015-09-27 12:54:55	--------	d-----w-	C:\PROGRA~2\Feed Notifier
2015-09-27 12:39:14	--------	d-----w-	C:\PROGRA~2\Opera
======= C: =====
====== C:\Users\paul\AppData\Roaming ======
2015-10-04 19:14:52	--------	d-----w-	C:\Users\paul\AppData\Local\Apps
2015-09-27 17:49:55	--------	d-----w-	C:\Users\paul\AppData\Local\92A8C958-E7D6-4725-93B9-A762AE478BB
2015-09-27 17:37:18	--------	d-----w-	C:\Users\paul\AppData\Local\Crossbrowse
2015-09-27 12:53:16	--------	d-----w-	C:\Users\paul\AppData\Local\48393456-9B55-4723-834C-619CC69ACD4
2015-09-27 12:46:18	--------	d-----w-	C:\Users\paul\AppData\Local\759F016A-9E62-479B-81B-74F4E66352ED
2015-09-27 12:41:46	--------	d-----w-	C:\Users\paul\AppData\Local\Programs
2015-09-27 12:41:05	--------	d-----w-	C:\Users\paul\AppData\Local\Opera Software
====== C:\Users\paul ======
2015-09-29 14:02:31	02C1EE40968BAA67C3A785CDA9807125	262	--sha-r-	C:\ProgramData\ntuser.pol

====== C: exe-files ==
2015-10-05 19:33:03	4E5FBF3B115A48869BD8A7FF760B910B	51712	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-10-05 19:33:02	53E0427E470B13167420B70A3ACF51FB	772168	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-10-05 19:33:02	406D47D3F06311230F5B1765E4D11A96	775344	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-10-05 19:32:57	D2E4A858B08BADBC30D91070FB329D98	477184	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-10-05 19:32:57	A165CDF3C6FBD2BB7204102BE5323100	492544	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-10-05 19:32:57	9F4E952FA031C499D256BEB97E815DDF	223744	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-10-05 19:32:57	3EE3AE8C0223EE2D93302A3A4913EFC5	222208	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-10-05 19:32:56	E2EAD0CC85C71E1C6AA4E53B541FE484	89600	----a-w-	C:\Windows\System32\RegisterIEPKEYs.exe
2015-10-05 19:32:56	01A53BE696DB92A60B1069D1AFDF1518	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-10-05 19:20:15	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\paul.exe
=== C: other files ==
2015-10-04 14:18:07	E681CE4AE5C09651D53CB4387CA3560E	109272	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2015-10-04 14:18:07	AE757332EA130E94E646621CC695B52A	63704	----a-w-	C:\Windows\System32\drivers\mwac.sys
2015-10-04 14:18:07	A8D28D5B3E2A528D1EF0E338E44F2820	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3014427614-2820879061-2445093996-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"HP Deskjet 3070 B611 series (NET)"="C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\ScanToPCActivationApp.exe -deviceID CN2436340X05MQ:NW -scfn HP Deskjet 3070 B611 series (NET) -AutoStart 1"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"HP Deskjet 3070 B611 series (NET)"="C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\ScanToPCActivationApp.exe -deviceID CN2436340X05MQ:NW -scfn HP Deskjet 3070 B611 series (NET) -AutoStart 1"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SetDefault"="C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe"
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Folders ======================

2014-07-31 16:56:37	1960	----a-w-	C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series (netwerk).lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [24-09-2015 13:04]
C:\Windows\tasks\HPCeeScheduleForpaul.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\48393456-9B55-4723-834C-619CC69ACD4" [C:\Users\paul\AppData\Local\48393456-9B55-4723-834C-619CC69ACD4\48393456-9B55-4723-834C-619CC69ACD4.exe]
"C:\Windows\SysNative\tasks\759F016A-9E62-479B-81B-74F4E66352ED" [C:\Users\paul\AppData\Local\759F016A-9E62-479B-81B-74F4E66352ED\759F016A-9E62-479B-81B-74F4E66352ED.exe]
"C:\Windows\SysNative\tasks\92A8C958-E7D6-4725-93B9-A762AE478BB" [C:\Users\paul\AppData\Local\92A8C958-E7D6-4725-93B9-A762AE478BB\92A8C958-E7D6-4725-93B9-A762AE478BB.exe]
"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FGRun" [C:\Users\paul\AppData\Roaming\pack.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForpaul" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 3070 B611 series" ["C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\ngs3012" [C:\PROGRA~2\FAST-S~1\ngs3012.exe]
"C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{488B1BF4-84CC-43FD-AB32-4369754D7B8D}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPW10UpgradeReminder" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPW10UpgradeReminder.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

Ask Toolbar - paul\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne
Google Drive - paul\AppData\Local\Torch\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - paul\AppData\Local\Torch\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
DropToS - paul\AppData\Local\Torch\User Data\Default\Extensions\cipmepknanmbbaneimacddfemfbfgpgo
Codecv - paul\AppData\Local\Torch\User Data\Default\Extensions\feekdedhoaffiohdafgdckdnjifojedi
Torch Music - paul\AppData\Local\Torch\User Data\Default\Extensions\gcjbdjlojcomlphfchhihkigepfabcad
Torch Helper - paul\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg
Torch Music - paul\AppData\Local\Torch\User Data\Default\Extensions\ohimbkoaphfnmekmfppijeblmkncneed
Gmail - paul\AppData\Local\Torch\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
OneClickDownload - paul\AppData\Local\Torch\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco

==== Chromium Fix ======================

C:\Users\paul\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne deleted successfully
C:\Users\paul\AppData\Local\Torch\User Data\Default\Extensions\feekdedhoaffiohdafgdckdnjifojedi deleted successfully
C:\Users\paul\AppData\Local\Torch\User Data\Default\Local Storage\chrome-extension_feekdedhoaffiohdafgdckdnjifojedi_0.localstorage deleted successfully
C:\Users\paul\AppData\Local\Torch\User Data\Default\Local Storage\chrome-extension_feekdedhoaffiohdafgdckdnjifojedi_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== shortcuts on Users Desktops ======================

C:\Users\paul\Desktop\HP Support Assistant.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe 
C:\Users\paul\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe 
C:\Users\Public\Desktop\Benodigdheden kopen - HP Deskjet 3070 B611 series.lnk - C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\hpqDTSS.exe 
C:\Users\Public\Desktop\HP Deskjet 3070 B611 series.lnk - C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HP Deskjet 3070 B611 series.exe -Start UDCDevicePage
C:\Users\Public\Desktop\HP ePrintCenter - HP Deskjet 3070 B611 series.lnk - C:\Program Files\HP\HP Deskjet 3070 B611 series\ePrintCenterShortcut.url 
C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe 
C:\Users\Public\Desktop\Internetbrowser selecteren.lnk - C:\Windows\System32\browserchoice.exe /launch
C:\Users\Public\Desktop\Magic Desktop.lnk - C:\Program Files (x86)\EasyBits For Kids\ezSecShield.exe 
C:\Users\Public\Desktop\Microsoft Office 2010.lnk - C:\SYSTEM.SAV\util\OfficeDesktopIconThread.exe 
C:\Users\Public\Desktop\Snapfish foto's.lnk - C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe http://www.snapfish.com/hp_notebook_desktopicon_2011_nl
C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 
C:\Users\Public\Desktop\WildTangent Games App - hp.lnk - C:\Program Files (x86)\HP Games\onplay\onplay.exe "C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe" /src desktopoem /dp hpcnb3c11

==== shortcuts in Users Start Menu ======================

C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\unins000.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm 
C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series (netwerk).lnk - C:\Windows\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 3070 B611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2436340X05MQ;CONNECTION=NW;MONITOR=1;

==== shortcuts in All Users Start Menu ======================

\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -  
\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -  
\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -  
\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\amd64_microsoft-windows-commandprompt_31bf3856ad364e35_10.0.10240.16384_none_930d386bb509d413\Command Prompt.lnk -  
\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\amd64_microsoft-windows-m..diagnostic-schedule_31bf3856ad364e35_10.0.10240.16384_none_9bd70deb1464ceed\Memory Diagnostics Tool.lnk -  
\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\amd64_microsoft-windows-notepad_31bf3856ad364e35_10.0.10240.16384_none_771aff2a0aad0617\Notepad.lnk -  
\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AB0000000001}\SC_Reader.ico 
\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk - C:\Program Files\Microsoft Security Client\msseces.exe 
\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Gun Bros.lnk - C:\Program Files (x86)\HP Games\Web Link - Gun Bros\launcher.exe http://www.mystartsearch.com/?type=sc&ts=1443376272&z=af1c43e8d9926c8500c6093g6zezbcacfm9q8ecb9c&from=cmi&uid=HitachiXHTS547550A9E384_J25J0054C2YWEEC2YWEEX
\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\Silverlight.Configuration.exe 
\Users\All Users\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AB0000000001}\SC_Reader.ico 
\Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk - C:\Program Files\Microsoft Security Client\msseces.exe 
\Users\All Users\Microsoft\Windows\Start Menu\Programs\Games\Gun Bros.lnk - C:\Program Files (x86)\HP Games\Web Link - Gun Bros\launcher.exe http://www.mystartsearch.com/?type=sc&ts=1443376272&z=af1c43e8d9926c8500c6093g6zezbcacfm9q8ecb9c&from=cmi&uid=HitachiXHTS547550A9E384_J25J0054C2YWEEC2YWEEX
\Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\Silverlight.Configuration.exe 
\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Addition.lnk - G:\Addition.txt 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking Bad s01e01 720p.BRrip.Sujaidr.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr\Breaking Bad s01e01 720p.BRrip.Sujaidr.mkv 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking Bad s01e02 720p.BRrip.Sujaidr.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr\Breaking Bad s01e02 720p.BRrip.Sujaidr.mkv 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking Bad s01e03 720p.BRrip.Sujaidr.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr\Breaking Bad s01e03 720p.BRrip.Sujaidr.mkv 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking Bad s01e04 720p.BRrip.Sujaidr.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr\Breaking Bad s01e04 720p.BRrip.Sujaidr.mkv 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\Breaking.Bad.S01.720p.BluRay.X264-REWARD.lnk - C:\Users\paul\Downloads\Breaking Bad Season 1 Complete 720p.BRrip.Sujaidr\Breaking.Bad.S01.720p.BluRay.X264-REWARD.rar 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\FRST.lnk - G:\FRST.txt 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\INTENSO (G).lnk - G:\ 
\Users\paul\AppData\Roaming\Microsoft\Windows\Recent\zoek.lnk - G:\zoek.txt 
\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\unins000.exe 
\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm 
\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series (netwerk).lnk - C:\Windows\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 3070 B611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2436340X05MQ;CONNECTION=NW;MONITOR=1;
\Users\paul\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
\Users\paul\Links\Desktop.lnk - C:\Users\paul\Desktop 
\Users\paul\Links\Downloads.lnk - C:\Users\paul\Downloads 
\Users\paul\Links\RecentPlaces.lnk -  

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk - C:\Program Files (x86)\BitTorrent\BitTorrent.exe\BitTorrent.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\HP Deskjet 3070 B611 series.lnk - C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HP Deskjet 3070 B611 series.exe -Start UDCDevicePage
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Word 2010.lnk - C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Snapfish foto's.lnk - C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe http://www.snapfish.com/hp_notebook_desktopicon_2011_nl
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Messenger.lnk - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MusicStation.lnk - C:\Program Files (x86)\Online Services\Omnifone\MusicStation.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live.LNK - C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== shortcuts After Repair ======================

C:\Users\Public\Desktop\Snapfish foto's.lnk - C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe 
\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Gun Bros.lnk - C:\Program Files (x86)\HP Games\Web Link - Gun Bros\launcher.exe 
\Users\All Users\Microsoft\Windows\Start Menu\Programs\Games\Gun Bros.lnk - C:\Program Files (x86)\HP Games\Web Link - Gun Bros\launcher.exe 
C:\Users\paul\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Snapfish foto's.lnk - C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe 

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{876E8EEA-BCCC-6F5E-EC6B-EE910C038DD5} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\paul\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\paul\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\paul\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\paul\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\paul\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\paul\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\paul\AppData\Local\Torch\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=501 folders=153 100189833 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\paul\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\paul\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 06-10-2015 at 22:33:16,42 ======================