Zoek.exe v5.0.0.0 Updated 12-July-2014
Tool run by Tineke on zo 13-07-2014 at  3:59:23,85.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tineke\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

13-7-2014 4:01:28 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\GUM7290.tmp deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Partner deleted successfully
C:\Users\Tineke\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\Tineke\AppData\Roaming\Sammsoft deleted successfully
C:\Users\Tineke\AppData\Local\Acer Arcade Deluxe deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1788412176-1618489962-4003657513-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4888CE2D-498C-43ED-8A9D-D65C9C6C866F} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Common Files\ParetoLogic deleted
C:\Program Files (x86)\ParetoLogic\RegCure Pro deleted
C:\PROGRA~2\ParetoLogic deleted
C:\Users\Tineke\AppData\Roaming\ParetoLogic deleted
C:\Users\Tineke\AppData\Roaming\DriverCure deleted
C:\PROGRA~3\ParetoLogic deleted
C:\Users\Tineke\AppData\Local\TempDIR deleted
C:\Users\Tineke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted
C:\Users\Tineke\Searches deleted
C:\Users\Tineke\AppData\LocalLow\Softonic deleted
C:\Windows\wininit.ini deleted
C:\Windows\tasks\ParetoLogic Registration3.job deleted
C:\Windows\tasks\ParetoLogic Update Version3.job deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
"C:\Windows\tasks\RegCure Pro.job" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Tineke\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-07-06 21:03:23	694FC2A2A987DBCE909D701E0577AD5B	1693756	----a-w-	C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-06 20:51:22	AD27563BC16AB1EAACAE3033E99C2F78	194048	----a-w-	C:\Windows\SysWOW64\elshyph.dll
2014-07-06 20:51:18	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2014-07-06 20:51:18	F7B6E341F4B1947BEC0E14EEBE3C627E	111616	----a-w-	C:\Windows\SysWOW64\IEAdvpack.dll
2014-07-06 20:51:18	EC7038154490E50ACD405A022F51B204	83456	----a-w-	C:\Windows\SysWOW64\inseng.dll
2014-07-06 20:51:18	EB960643DC62832C88272573204B6DBA	164864	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-07-06 20:51:18	E0EA58834CD19FDFCD1BC37B22E1D3D8	43008	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-07-06 20:51:18	D9F5B424C307B195E16A9B0A21E53BCC	61952	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-07-06 20:51:18	D9F12F54E3B5A092F1D5F191F5286E53	337408	----a-w-	C:\Windows\SysWOW64\html.iec
2014-07-06 20:51:18	D5ECBB3BFDC73A59440D9CA79AB3A342	17271296	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-07-06 20:51:18	D36574C287D0764C95AC777DFF367715	32768	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-07-06 20:51:18	CFCE4EFF1D6D909EE2EA3AFCB8F1E677	233472	----a-w-	C:\Windows\SysWOW64\url.dll
2014-07-06 20:51:18	CC0077F9C7ACD7E97707DFC763A4EA99	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-07-06 20:51:18	C69FDD49AB9E8BCF2BAAC469CE0CC756	1964544	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-07-06 20:51:18	C58E97EEB1CB80CE91D5E7FD5E78794F	4244992	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-07-06 20:51:18	C1F5812F355D0C9495C1B2E7165DA2AF	32256	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-06 20:51:18	C1A6E565B2782C09BC40AD749B46D9ED	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-07-06 20:51:18	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\SysWOW64\ieapfltr.dat
2014-07-06 20:51:18	BB9BADED14F0963498855AC28446CED5	51200	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-06 20:51:18	AE6A2C5ECD3E96556E22F12816842F60	48640	----a-w-	C:\Windows\SysWOW64\mshtmler.dll
2014-07-06 20:51:18	ABDFC692D9FE43E2BA8FE6CB5A8CB95A	13312	----a-w-	C:\Windows\SysWOW64\mshta.exe
2014-07-06 20:51:18	AB3B2CA52AFB695AFCDD2620A21E5B21	24576	----a-w-	C:\Windows\SysWOW64\licmgr10.dll
2014-07-06 20:51:18	9EAAB4305536829D6B7D9C3A47E92861	2179072	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-07-06 20:51:18	9E170B0AF156B478BD2B1FD6A2250C9E	62464	----a-w-	C:\Windows\SysWOW64\tdc.ocx
2014-07-06 20:51:18	9B8701A380CEE1B05D651B4ED4048C8F	645120	----a-w-	C:\Windows\SysWOW64\jsIntl.dll
2014-07-06 20:51:18	9A33FDDD687A836A1FD478B43C5A95FD	151552	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2014-07-06 20:51:18	8DF06ACA017949D37C38B6A0EF747D4E	526336	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-07-06 20:51:18	887055A3C8DD6C87D200D11EAFDBD45B	74240	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-07-06 20:51:18	83F49FD1BC0A999B006D564C540C7258	86016	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2014-07-06 20:51:18	814E0D53EF020BD93097F26B53B573F0	440832	----a-w-	C:\Windows\SysWOW64\ieui.dll
2014-07-06 20:51:18	7E27FB6AB8976897A530FB30F5FF7691	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-07-06 20:51:18	779E142FE2159935E78C0FA2E190FF1E	610304	----a-w-	C:\Windows\SysWOW64\jscript.dll
2014-07-06 20:51:18	771CDBC3D62437D6DB070820BB1EDCCF	1790976	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-07-06 20:51:18	6EB0B7301E00F717BD68A742D1391FAF	36352	----a-w-	C:\Windows\SysWOW64\imgutil.dll
2014-07-06 20:51:18	6D8E6A9A524FFAAFA4D2F6C8EF38D0BB	592896	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2014-07-06 20:51:18	6CDFEF0A1000A268DA79708FD0A334E8	240856	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-07-06 20:51:18	6A92CEC8532056791C6832B2725D170D	139264	----a-w-	C:\Windows\SysWOW64\wextract.exe
2014-07-06 20:51:18	688227D38A6FF6403B293D0C50B454B9	11725312	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-07-06 20:51:18	5B5815477A53ED92B89955FFE7EDCB2E	242688	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-07-06 20:51:18	5666468A10CB3D7899CE3100FB7C394B	61952	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-06 20:51:18	55969AADF0210A614700F89B48976F68	43008	----a-w-	C:\Windows\SysWOW64\msfeedsbs.dll
2014-07-06 20:51:18	53FC62C51CB18C9100A7DFAF2D2A6C47	12800	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2014-07-06 20:51:18	4F032F1FDEFEA5EC8EEA3562643B5EE8	69120	----a-w-	C:\Windows\SysWOW64\icardie.dll
2014-07-06 20:51:18	4D3074AA172DCFD5D56BE764B671085A	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-07-06 20:51:18	4BCC7EB5F20840DA67943BD86AE95735	56832	----a-w-	C:\Windows\SysWOW64\pngfilt.dll
2014-07-06 20:51:18	298FDE634538B62CEEEC266D8773B21A	182272	----a-w-	C:\Windows\SysWOW64\msls31.dll
2014-07-06 20:51:18	22D7FFA4B94916F18EB1F1D107B86839	704512	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2014-07-06 20:51:18	1AFBAA54BDF637F69B8E02A5578286B0	116736	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2014-07-06 20:51:18	1200D9C7DB0ADC1B8143A0A9921BF7DA	127488	----a-w-	C:\Windows\SysWOW64\occache.dll
2014-07-06 20:51:18	0AFCE8EEF3751810FE2101FD608FB8B3	1143296	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-07-06 20:51:18	0AC4E3C93D49E37D5B008ED99092115C	1068032	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-06 20:51:18	09771ABC896D2A88370F3AB8BADC242E	455168	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2014-07-06 20:51:18	03B3541AE6986602CF9CB5B3AD169C33	208384	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2014-07-06 20:51:18	017B99D09904DCA35D5F66AD79084B5F	368128	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-07-06 20:02:56	B0BE998802DEDEE1FD8F5E5F9F207A30	509440	----a-w-	C:\Windows\SysWOW64\qedit.dll
2014-07-06 20:02:54	A5F833506BF6A1B5D693E1499DEE2444	626688	----a-w-	C:\Windows\SysWOW64\usp10.dll
2014-07-06 20:02:29	9DE19EA21DF99AF15BA5A947E5317F9E	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-07-06 20:02:29	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-07-06 20:02:29	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-07-06 20:02:28	ED195AC76E10F17F6DD60C49666F2A83	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-07-06 20:02:27	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-07-06 20:02:26	541BB9B4C899ADCC5D3DB89208C1F409	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-07-06 20:02:26	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-07-06 20:02:26	3A1ABE045A3E30799576E83A2D012B43	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-07-06 20:02:25	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-07-06 20:02:25	828185688FDAAE6C7959B884ABED1766	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-07-06 20:02:25	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-07-06 20:02:24	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-07-06 20:02:24	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-07-06 20:02:24	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-07-06 20:02:23	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-07-06 20:02:22	C94CE65AE7701E9FDBA889045543E27C	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-07-06 20:02:22	2A86C18CE6869C77FCEB62F3B47D4D5B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2014-07-06 20:02:21	75878492F2B33405EEF900F8C16C6D08	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-07-06 20:01:43	E01D2AC63453534DB8AD1EA97DEE9C3A	594944	----a-w-	C:\Windows\SysWOW64\RMActivate_isv.exe
2014-07-06 20:01:43	6142C5540C8D2764D59CBC11AF4A5900	572416	----a-w-	C:\Windows\SysWOW64\RMActivate.exe
2014-07-06 20:01:43	0F5FEF37588AF457E02125674F171A4F	508928	----a-w-	C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-07-06 20:01:42	BBCE3E9E74C7CEA47FA4115B360AC2C6	423936	----a-w-	C:\Windows\SysWOW64\secproc_isv.dll
2014-07-06 20:01:42	12A9F24DC9F465DA79AC2272D829A81E	428032	----a-w-	C:\Windows\SysWOW64\secproc.dll
2014-07-06 20:01:42	08D323750350A8A29611D1004C0CF319	510976	----a-w-	C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-07-06 20:01:41	9158DBE2F8483434FC72F320690C9DB8	87040	----a-w-	C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-07-06 20:01:41	7FA485555BF802FE3DB5598004DBDFAC	390144	----a-w-	C:\Windows\SysWOW64\msdrm.dll
2014-07-06 20:01:41	58712A48D31B40EBCB35B47205F87771	87040	----a-w-	C:\Windows\SysWOW64\secproc_ssp.dll
2014-07-06 20:01:21	D96106CF60505734B14F6AE80AAA4B07	1987584	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2014-07-06 20:01:21	14800BD31701A5047AC3145BB1E698AE	3419136	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2014-07-06 19:59:50	E9D88493FBDB36D4B65C6F2F7F122C95	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-07-06 19:59:18	E9504E484076585F6DA3C59F0E20E122	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
2014-07-06 19:58:56	E227B810296AA27E6C69307A7B6456E5	1389056	----a-w-	C:\Windows\SysWOW64\msxml6.dll
2014-07-06 19:58:56	8B8D1CEF498678CAB9DF17145D34BC64	1237504	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2014-07-06 19:58:56	2E673E776136354ECFB57BFD62E7EC3D	2048	----a-w-	C:\Windows\SysWOW64\msxml6r.dll
2014-07-06 19:58:56	0789F82BAE171323F74B8F175D406AB8	2048	----a-w-	C:\Windows\SysWOW64\msxml3r.dll
2014-07-06 19:58:54	EA093130471090037BB70A4AF86FAD1B	420008	----a-w-	C:\Windows\SysWOW64\locale.nls
2014-07-06 19:58:35	4F8CCD3E7D9F17A7C60FA0AE2466CACF	381440	----a-w-	C:\Windows\SysWOW64\wer.dll
2014-07-06 19:58:21	76161B9D78A275F8F28DD67436013110	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2014-07-06 19:58:20	A30AB03E7C837A17AC70E67E63B8E2F6	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2014-07-06 19:58:20	9F3D88540DB73F5213D5044CB50006DF	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2014-07-06 19:58:20	2E1D6624EE2C3F454CADF09DC59E78B0	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2014-07-06 19:58:20	1F76F7CB3C690ACB985C2FD419383B49	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2014-07-06 19:58:20	1E886E327F37F34CC7465F1605D1F3CD	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2014-07-06 19:48:29	A054EA8FBE16D4D34F06D81A4F0088E2	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-07-12 21:04:43	1E7E1E7B629D2550845A0DF28F7D7D42	343184	----a-w-	C:\Windows\Sysnative\FNTCACHE.DAT
2014-07-06 20:51:22	344DA9D196C0D98A738289BB09CE4CF6	940032	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-07-06 20:51:18	FD61D51199F3FC9EB0023FBF405EAAD0	147968	----a-w-	C:\Windows\Sysnative\occache.dll
2014-07-06 20:51:18	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2014-07-06 20:51:18	F00AE7B953ABEF1B53FBBA187DFC8238	243200	----a-w-	C:\Windows\Sysnative\webcheck.dll
2014-07-06 20:51:18	EAAA62F272858695814A1F42D5E59BD3	608768	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-07-06 20:51:18	E70D4270C43CE6C46841B684315B9EFF	62464	----a-w-	C:\Windows\Sysnative\pngfilt.dll
2014-07-06 20:51:18	E4A6577D74B2439974C8018AB5F1BFEA	13312	----a-w-	C:\Windows\Sysnative\msfeedssync.exe
2014-07-06 20:51:18	DFD834E89B819B5ECE8E251C56B5A3CE	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2014-07-06 20:51:18	DA7AAB5D4E5F7160E906C0D2EB9A2B9F	38400	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-07-06 20:51:18	D5C446B14DC667B7B9FBB30EA1701D92	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-07-06 20:51:18	D31AE751B6DACAFD0D7CC99EAE9606C2	131072	----a-w-	C:\Windows\Sysnative\IEAdvpack.dll
2014-07-06 20:51:18	CE8831D2DCB5803A4CBC8EDCCBBC2A05	77312	----a-w-	C:\Windows\Sysnative\tdc.ocx
2014-07-06 20:51:18	CE6109C73C3A04CC2B8C6110B0F0FEF9	33792	----a-w-	C:\Windows\Sysnative\iernonce.dll
2014-07-06 20:51:18	CC603EF96BA456D4BCD9FF849ED07A2A	85504	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-07-06 20:51:18	CB8A91074AE1B5051E240B50A328DCF5	295424	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-07-06 20:51:18	C92173481A58935BE15172079CF122B8	235520	----a-w-	C:\Windows\Sysnative\url.dll
2014-07-06 20:51:18	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\Sysnative\ieapfltr.dat
2014-07-06 20:51:18	BFD3178735D97C858FFA467F8199700C	111616	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2014-07-06 20:51:18	BB6DEAFAC5F0AAEC37FEAF3F3AA48347	774144	----a-w-	C:\Windows\Sysnative\jscript.dll
2014-07-06 20:51:18	B34D3F303769E65CE7EFBD4E6FB62B25	66048	----a-w-	C:\Windows\Sysnative\iesetup.dll
2014-07-06 20:51:18	B2C037F50A02D6C057B1E0791BBF41A5	574976	----a-w-	C:\Windows\Sysnative\ieui.dll
2014-07-06 20:51:18	ADA5C3D49A12CED9F07913DC00E547A8	48128	----a-w-	C:\Windows\Sysnative\imgutil.dll
2014-07-06 20:51:18	AB3FA3D9B1F1D0571CBC43D1487CCD6F	5782528	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-07-06 20:51:18	A4A58E3171C03A1145D1C3EC488D1B4F	1249280	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2014-07-06 20:51:18	9675B272086CF5D22B83B541FAA8D4EA	30208	----a-w-	C:\Windows\Sysnative\licmgr10.dll
2014-07-06 20:51:18	95828D670CFD3B16EE188168E083C3C5	13824	----a-w-	C:\Windows\Sysnative\mshta.exe
2014-07-06 20:51:18	9013D5BBE1B6D3A060F54B4B5BB2C3A3	846336	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2014-07-06 20:51:18	8F7FBD0177F79727CF945ABDA657A0AC	235008	----a-w-	C:\Windows\Sysnative\elshyph.dll
2014-07-06 20:51:18	8E3C6008250A904C06943BCEA585E344	195584	----a-w-	C:\Windows\Sysnative\msrating.dll
2014-07-06 20:51:18	867DD52B23D3B0390B88F3D7AD1E600C	631808	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-07-06 20:51:18	790FD40601502C5FE8213D4F335DA0BD	51200	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-07-06 20:51:18	770F067D833DC017CEB8A36A2A1EC942	139264	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2014-07-06 20:51:18	7586408795C98AFEF194EED287374478	266456	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-07-06 20:51:18	6F1AF8E1206E92256459E3012C20472A	942592	----a-w-	C:\Windows\Sysnative\jsIntl.dll
2014-07-06 20:51:18	6B9925F498D4E91FB57576CC3776D428	752640	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2014-07-06 20:51:18	5BBDBE5EBB49EA7C76A2EE7490A45D68	101376	----a-w-	C:\Windows\Sysnative\inseng.dll
2014-07-06 20:51:18	56803B20D168C1B740D12CE0BE4588F5	23414784	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-07-06 20:51:18	5141B67F14E2B6CBB6ADF851ABE364A5	90112	----a-w-	C:\Windows\Sysnative\SetIEInstalledDate.exe
2014-07-06 20:51:18	46FD16F9B1924A2EA8CD5C6716CC654F	167424	----a-w-	C:\Windows\Sysnative\iexpress.exe
2014-07-06 20:51:18	4399857346DD183683332921500046B1	86016	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2014-07-06 20:51:18	40BFD9D6EC8E174145F012246CA73CCD	2266112	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-07-06 20:51:18	3FC3828E8820D1C93DBFBAD4BE456D85	2040832	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-07-06 20:51:18	3ED5C9055F7A635399FC12892F565287	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2014-07-06 20:51:18	3A4FD19F13F8809BA08E9F76C0E38832	413696	----a-w-	C:\Windows\Sysnative\html.iec
2014-07-06 20:51:18	3A1AB9DE852F2BC1ECE6403BDD01B9F0	1398272	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-07-06 20:51:18	31DB3C9B2ECEA601F2060AA928A9CB24	83968	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2014-07-06 20:51:18	2F474D40626B0C694400589F3FBB9AA9	548352	----a-w-	C:\Windows\Sysnative\vbscript.dll
2014-07-06 20:51:18	2EBD0C5B090125AECF017C57344C45AB	247808	----a-w-	C:\Windows\Sysnative\msls31.dll
2014-07-06 20:51:18	2DBB9127794BC30BC31D26FA088F8BAB	13522944	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-07-06 20:51:18	2405D24AA28CCC4CC7E0CC0AE008746F	48640	----a-w-	C:\Windows\Sysnative\mshtmler.dll
2014-07-06 20:51:18	1FCBE949A67939ADEAE7279E423AA684	135680	----a-w-	C:\Windows\Sysnative\iepeers.dll
2014-07-06 20:51:18	1EA6500C25A80E8BDB65099C509AF993	143872	----a-w-	C:\Windows\Sysnative\wextract.exe
2014-07-06 20:51:18	12BA419E27DBC5DBF9262C8A885FA361	452096	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-07-06 20:51:18	0FBEBD36FEFFEE5AF25FDAEE5E35EE99	105984	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2014-07-06 20:51:18	0A9D5716CB1F3AFA73703F39647BB8C2	81408	----a-w-	C:\Windows\Sysnative\icardie.dll
2014-07-06 20:51:18	063EF4239479F52DAF9F4849B0B304F1	2768384	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-07-06 20:51:18	038ABC9BCC86DFF9E181D44E43E2CEBA	52224	----a-w-	C:\Windows\Sysnative\msfeedsbs.dll
2014-07-06 20:02:56	2C619F6023E3F7A3ABF3475ED2223359	624128	----a-w-	C:\Windows\Sysnative\qedit.dll
2014-07-06 20:02:54	088CF6AFCD5CDD44E40C0ACDE3C1A5E0	801280	----a-w-	C:\Windows\Sysnative\usp10.dll
2014-07-06 20:02:51	84A13AB118F433898B5ABA36E8D7CA91	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-07-06 20:02:51	2C053C9B2A8249F1F9B38ED1AE455771	506368	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-07-06 20:02:31	9358149234A4F3FE00CF5C2096DC1652	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-07-06 20:02:30	B19C8390A1D641B9AC4490D4828A7B5E	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-07-06 20:02:28	E2A483E796D5FC7E447725FD01D98FA0	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-07-06 20:02:28	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-07-06 20:02:28	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-07-06 20:02:27	B6D8C1202DACA028AD94BDA2795CBBE9	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-07-06 20:02:26	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-07-06 20:02:26	26AF184300C0868D854D5A3092234E24	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-07-06 20:02:25	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-07-06 20:02:25	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-07-06 20:02:25	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-07-06 20:02:25	481F70241D4EA038BB02590A30F15A23	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-07-06 20:02:24	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-07-06 20:02:24	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-07-06 20:02:23	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-07-06 20:02:23	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-07-06 20:02:23	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2014-07-06 20:02:22	82A72E99AA1CF0B04D3B9843CBA3AEC1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-07-06 20:02:22	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-07-06 20:02:22	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2014-07-06 20:01:43	297926B15AE5390409F1007EB28A8EFB	552960	----a-w-	C:\Windows\Sysnative\RMActivate_ssp_isv.exe
2014-07-06 20:01:43	1B3741488AA7E237961A29D1E7A44C0A	626176	----a-w-	C:\Windows\Sysnative\RMActivate.exe
2014-07-06 20:01:43	17CF3B3F68272BD40C878D4DBAB0EBC9	658432	----a-w-	C:\Windows\Sysnative\RMActivate_isv.exe
2014-07-06 20:01:42	C6AC2C91541D24F9E236A670C0CA793D	528384	----a-w-	C:\Windows\Sysnative\msdrm.dll
2014-07-06 20:01:42	5693212AB2EBCACBBE05EC3A642113E2	485888	----a-w-	C:\Windows\Sysnative\secproc_isv.dll
2014-07-06 20:01:42	399FC1B75790EE606A6FD9F2FB4C891C	488448	----a-w-	C:\Windows\Sysnative\secproc.dll
2014-07-06 20:01:42	03F8F411F118CFDA508E77C747BB05EA	553984	----a-w-	C:\Windows\Sysnative\RMActivate_ssp.exe
2014-07-06 20:01:41	DC6DD779F35BB42E2E76FDFEC565C251	123392	----a-w-	C:\Windows\Sysnative\secproc_ssp_isv.dll
2014-07-06 20:01:41	B41B1FEDEBBD955B4E25676B42087885	123392	----a-w-	C:\Windows\Sysnative\secproc_ssp.dll
2014-07-06 20:01:21	E8710B5DDA963E6BA198DF5FB209E72A	2565120	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2014-07-06 20:01:21	C676E5EA388AF7C4C031F56F9B42E362	3928064	----a-w-	C:\Windows\Sysnative\d2d1.dll
2014-07-06 19:59:51	427015D56DF17241F634611557146C57	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-07-06 19:59:22	E918C0DE5CF2AE6BEDBF387C09627D93	3156480	----a-w-	C:\Windows\Sysnative\win32k.sys
2014-07-06 19:59:18	4EDF8812713291DBBFDA67CE6215F236	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
2014-07-06 19:58:57	ECA6AC33BD9E441F7B47D173D715D268	1882112	----a-w-	C:\Windows\Sysnative\msxml3.dll
2014-07-06 19:58:57	0E3A7EC2B9590EA7767BBB1823630DEA	2002432	----a-w-	C:\Windows\Sysnative\msxml6.dll
2014-07-06 19:58:56	3408DD8081DC22858AE2E6ABD2594C02	2048	----a-w-	C:\Windows\Sysnative\msxml6r.dll
2014-07-06 19:58:56	0465A8CFDDB4FFDB569802A70B9443D5	2048	----a-w-	C:\Windows\Sysnative\msxml3r.dll
2014-07-06 19:58:54	EA093130471090037BB70A4AF86FAD1B	420008	----a-w-	C:\Windows\Sysnative\locale.nls
2014-07-06 19:58:37	04F82965C09CBDF646B487E145060301	228864	----a-w-	C:\Windows\Sysnative\wwansvc.dll
2014-07-06 19:58:35	1075AB2C077B415760C0E948856B5126	484864	----a-w-	C:\Windows\Sysnative\wer.dll
2014-07-06 19:58:21	D2A513EE880D71BDE7F0257F38B9D019	1163264	----a-w-	C:\Windows\Sysnative\kernel32.dll
2014-07-06 19:58:21	2A107B611C91CD256466C58C0D776E9D	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2014-07-06 19:58:20	74959C718FF4594369645F35B7DF19C4	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2014-07-06 19:58:20	7434E01FBCA3CB86539C39412A31D5E1	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2014-07-06 19:58:20	0F090A77E664CB0F70AB8D3B230B760C	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2014-07-06 19:48:29	AFCA5C1ECEAF948FC815178BC077680E	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
====== C:\Windows\Sysnative\drivers =====
2014-07-06 20:02:26	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-07-06 20:02:23	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2014-07-06 19:59:48	3555BA97171CD153118F73FDCCC8BFDE	376768	----a-w-	C:\Windows\Sysnative\drivers\netio.sys
2014-07-06 19:59:48	17F685B67C74B8F7BFED4308790B71DE	288192	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-07-06 19:59:48	04ADD18EE5CC9FBEDAEC1DD1CD0CB45E	1903552	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2014-07-06 19:59:15	B3222734D80013D2C73841B0C549FA63	27584	----a-w-	C:\Windows\Sysnative\drivers\Diskdump.sys
2014-07-06 19:59:15	A3F0BC5897F9D3786A3CB695B163633A	190912	----a-w-	C:\Windows\Sysnative\drivers\storport.sys
2014-07-06 19:59:15	96BB922A0981BC7432C8CF52B5410FE6	274880	----a-w-	C:\Windows\Sysnative\drivers\msiscsi.sys
2014-07-06 19:58:53	FFA06EF43987ED0DD42AD59B260C0C78	7808	----a-w-	C:\Windows\Sysnative\drivers\usbd.sys
2014-07-06 19:58:53	DD253AFC3BC6CBA412342DE60C3647F3	30720	----a-w-	C:\Windows\Sysnative\drivers\usbuhci.sys
2014-07-06 19:58:53	DCA68B0943D6FA415F0C56C92158A83A	99840	----a-w-	C:\Windows\Sysnative\drivers\usbccgp.sys
2014-07-06 19:58:53	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Windows\Sysnative\drivers\usbhub.sys
2014-07-06 19:58:53	765A92D428A8DB88B960DA5A8D6089DC	25600	----a-w-	C:\Windows\Sysnative\drivers\usbohci.sys
2014-07-06 19:58:53	18A85013A3E0F7E1755365D287443965	53248	----a-w-	C:\Windows\Sysnative\drivers\usbehci.sys
2014-07-06 19:58:53	12FEB33791920678F8433701C822BCFD	325120	----a-w-	C:\Windows\Sysnative\drivers\usbport.sys
2014-07-06 19:48:28	1A29A59A4C5BA6F8C85062A613B7E2B2	1684928	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2014-07-06 19:47:26	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-07-06 19:46:19	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-07-06 19:46:19	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-07-06 19:46:19	15E8ABC06843672955CE26A009533BAD	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
====== C:\Windows\Tasks ======
2014-07-06 19:28:23	E8A6CBB65833FBFD0483EA5683DA1571	3266	----a-w-	C:\Windows\Sysnative\Tasks\{0ADDDD09-0E85-4458-80B5-BF1FB7F116DF}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-07-07 06:01:52	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-07-06 20:42:04	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-07-06 16:46:55	--------	d-----w-	C:\PROGRA~2\Popcorn Time
======= C: =====
====== C:\Users\Tineke\AppData\Roaming ======
2014-07-12 21:38:22	--------	d-sh--w-	C:\Users\Tineke\AppData\Locallow\EmieUserList
2014-07-12 21:38:20	--------	d-sh--w-	C:\Users\Tineke\AppData\Local\EmieUserList
2014-07-12 21:38:20	--------	d-sh--w-	C:\Users\Tineke\AppData\Local\EmieSiteList
2014-07-12 21:38:08	--------	d-sh--w-	C:\Users\Tineke\AppData\Locallow\EmieSiteList
2014-07-06 22:38:42	A5F951F5BE03E2C76B00422BE4F9E6D3	79608	----a-w-	C:\Users\Tineke\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-06 16:47:53	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
====== C:\Users\Tineke ======
2014-07-07 06:02:45	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tineke\Desktop\RSITx64 (1).exe
2014-07-07 06:01:40	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tineke\Downloads\RSITx64.exe
2014-07-06 20:32:40	C882E29819596BB487E59B4ABD6C33B7	4812672	----a-w-	C:\Users\Tineke\Downloads\ccsetup415.exe
2014-07-06 19:52:10	E7CF573B44F6CF0CEB5B93B1C098E90D	10952040	----a-w-	C:\Users\Tineke\Downloads\stinger32.exe
2014-07-06 19:44:19	E90BF9E1562F40140161573B79CD5720	17292760	----a-w-	C:\Users\Tineke\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-06 16:47:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-07-06 16:46:33	4934DFF9C7621DA10F7E65E14240AD94	1151413	----a-w-	C:\Users\Tineke\Downloads\Popcorn-Time.exe

====== C: exe-files ==
2014-07-07 06:02:45	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tineke\Desktop\RSITx64 (1).exe
2014-07-07 06:01:52	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Tineke.exe
2014-07-07 06:01:40	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tineke\Downloads\RSITx64.exe
2014-07-06 21:28:35	883C3A4367A58E4278BBF4A7ADD83572	282064	----a-w-	C:\Users\Tineke\Jesse\RADS\projects\lol_launcher\releases\0.0.0.212\deploy\BsSndRpt.exe
2014-07-06 20:51:22	344DA9D196C0D98A738289BB09CE4CF6	940032	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2014-07-06 20:51:18	EAAA62F272858695814A1F42D5E59BD3	608768	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-07-06 20:51:18	E4A6577D74B2439974C8018AB5F1BFEA	13312	----a-w-	C:\Windows\System32\msfeedssync.exe
2014-07-06 20:51:18	CC0077F9C7ACD7E97707DFC763A4EA99	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-07-06 20:51:18	C1A6E565B2782C09BC40AD749B46D9ED	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-07-06 20:51:18	BFD3178735D97C858FFA467F8199700C	111616	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-07-06 20:51:18	ABDFC692D9FE43E2BA8FE6CB5A8CB95A	13312	----a-w-	C:\Windows\SysWOW64\mshta.exe
2014-07-06 20:51:18	9A33FDDD687A836A1FD478B43C5A95FD	151552	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2014-07-06 20:51:18	95828D670CFD3B16EE188168E083C3C5	13824	----a-w-	C:\Windows\System32\mshta.exe
2014-07-06 20:51:18	887055A3C8DD6C87D200D11EAFDBD45B	74240	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-07-06 20:51:18	7F7F391491C315A4A72EFCAC0D34FA93	25600	----a-w-	C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2014-07-06 20:51:18	770F067D833DC017CEB8A36A2A1EC942	139264	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-07-06 20:51:18	6A92CEC8532056791C6832B2725D170D	139264	----a-w-	C:\Windows\SysWOW64\wextract.exe
2014-07-06 20:51:18	60F88F6CA6303E8273AF7AAA9AAFECAC	812248	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-07-06 20:51:18	53FC62C51CB18C9100A7DFAF2D2A6C47	12800	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2014-07-06 20:51:18	5141B67F14E2B6CBB6ADF851ABE364A5	90112	----a-w-	C:\Windows\System32\SetIEInstalledDate.exe
2014-07-06 20:51:18	50989AAF09CDCEBC0FD8EB0FE79C2A98	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-07-06 20:51:18	4F2AA3E7BD7257E4937E071E3700819E	810200	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-07-06 20:51:18	4AFAE8BAF6E85311AD78395C47351A1D	222720	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-07-06 20:51:18	46FD16F9B1924A2EA8CD5C6716CC654F	167424	----a-w-	C:\Windows\System32\iexpress.exe
2014-07-06 20:51:18	4399857346DD183683332921500046B1	86016	----a-w-	C:\Windows\System32\RegisterIEPKEYs.exe
2014-07-06 20:51:18	41F922D6A794C0F8425C8436D7077C84	359632	----a-w-	C:\Program Files\Internet Explorer\iediagcmd.exe
2014-07-06 20:51:18	4076E62E061769E42186AE860007FA08	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-07-06 20:51:18	1EA6500C25A80E8BDB65099C509AF993	143872	----a-w-	C:\Windows\System32\wextract.exe
2014-07-06 20:51:18	159C5979C61F51EEFC84D9AB17C4E0E7	482816	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-07-06 20:32:40	C882E29819596BB487E59B4ABD6C33B7	4812672	----a-w-	C:\Users\Tineke\Downloads\ccsetup415.exe
2014-07-06 20:02:51	EF15B0554634BD981BB718E9BF6EE891	46784	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-07-06 20:02:51	511E0519B437C263E95EA46330312B7F	172224	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-07-06 20:02:29	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-07-06 20:02:29	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-07-06 20:02:28	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-07-06 20:02:23	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\System32\lsass.exe
2014-07-06 20:01:43	E01D2AC63453534DB8AD1EA97DEE9C3A	594944	----a-w-	C:\Windows\SysWOW64\RMActivate_isv.exe
2014-07-06 20:01:43	6142C5540C8D2764D59CBC11AF4A5900	572416	----a-w-	C:\Windows\SysWOW64\RMActivate.exe
2014-07-06 20:01:43	297926B15AE5390409F1007EB28A8EFB	552960	----a-w-	C:\Windows\System32\RMActivate_ssp_isv.exe
2014-07-06 20:01:43	1B3741488AA7E237961A29D1E7A44C0A	626176	----a-w-	C:\Windows\System32\RMActivate.exe
2014-07-06 20:01:43	17CF3B3F68272BD40C878D4DBAB0EBC9	658432	----a-w-	C:\Windows\System32\RMActivate_isv.exe
2014-07-06 20:01:43	0F5FEF37588AF457E02125674F171A4F	508928	----a-w-	C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-07-06 20:01:42	08D323750350A8A29611D1004C0CF319	510976	----a-w-	C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-07-06 20:01:42	03F8F411F118CFDA508E77C747BB05EA	553984	----a-w-	C:\Windows\System32\RMActivate_ssp.exe
2014-07-06 19:58:20	A30AB03E7C837A17AC70E67E63B8E2F6	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2014-07-06 19:58:20	9F3D88540DB73F5213D5044CB50006DF	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2014-07-06 19:58:20	2E1D6624EE2C3F454CADF09DC59E78B0	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2014-07-06 19:52:10	E7CF573B44F6CF0CEB5B93B1C098E90D	10952040	----a-w-	C:\Users\Tineke\Downloads\stinger32.exe
2014-07-06 19:44:19	E90BF9E1562F40140161573B79CD5720	17292760	----a-w-	C:\Users\Tineke\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-06 16:48:10	9BFC9809962357512B023CD51C6DE63B	878147	----a-w-	C:\Program Files (x86)\Popcorn Time\unins001.exe
2014-07-06 16:48:01	9BB15002080EBBB55E4C316E67851C2C	5747200	----a-w-	C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
2014-07-06 16:47:53	9BFC9809962357512B023CD51C6DE63B	878147	----a-w-	C:\Program Files (x86)\Popcorn Time\unins000.exe
2014-07-06 16:46:55	17BA037B7292E53B060BA4BBBB6EEC65	210944	----a-w-	C:\Program Files (x86)\Popcorn Time\PopcornTimeUpdater.exe
2014-07-06 16:46:33	4934DFF9C7621DA10F7E65E14240AD94	1151413	----a-w-	C:\Users\Tineke\Downloads\Popcorn-Time.exe
2014-07-06 16:26:24	AC6998D92A311E7CF0B4DAEC3566F444	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe
2014-07-06 16:26:24	956672375AF066D958E4D07F5ABAFC1A	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe
2014-07-06 16:26:23	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe
2014-07-06 16:26:14	AA0E4F73727BFC8BA404884B1C1DB719	285064	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
2014-07-06 16:26:14	80E350E0AA963B2125896B13E60A4D68	114568	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe
2014-07-06 16:26:14	397D14958D6C9C2B365469A857B2AC4E	230792	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
2014-07-06 16:26:13	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe
2014-07-06 16:26:11	901AC7A94B75648F4084A37640473271	895120	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe
=== C: other files ==
2014-07-06 20:02:26	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2014-07-06 20:02:23	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2014-07-06 19:59:48	3555BA97171CD153118F73FDCCC8BFDE	376768	----a-w-	C:\Windows\System32\drivers\netio.sys
2014-07-06 19:59:48	17F685B67C74B8F7BFED4308790B71DE	288192	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-07-06 19:59:48	04ADD18EE5CC9FBEDAEC1DD1CD0CB45E	1903552	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2014-07-06 19:59:22	E918C0DE5CF2AE6BEDBF387C09627D93	3156480	----a-w-	C:\Windows\System32\win32k.sys
2014-07-06 19:59:15	B3222734D80013D2C73841B0C549FA63	27584	----a-w-	C:\Windows\System32\drivers\Diskdump.sys
2014-07-06 19:59:15	A3F0BC5897F9D3786A3CB695B163633A	190912	----a-w-	C:\Windows\System32\drivers\storport.sys
2014-07-06 19:59:15	96BB922A0981BC7432C8CF52B5410FE6	274880	----a-w-	C:\Windows\System32\drivers\msiscsi.sys
2014-07-06 19:58:53	FFA06EF43987ED0DD42AD59B260C0C78	7808	----a-w-	C:\Windows\System32\drivers\usbd.sys
2014-07-06 19:58:53	DD253AFC3BC6CBA412342DE60C3647F3	30720	----a-w-	C:\Windows\System32\drivers\usbuhci.sys
2014-07-06 19:58:53	DCA68B0943D6FA415F0C56C92158A83A	99840	----a-w-	C:\Windows\System32\drivers\usbccgp.sys
2014-07-06 19:58:53	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Windows\System32\drivers\usbhub.sys
2014-07-06 19:58:53	765A92D428A8DB88B960DA5A8D6089DC	25600	----a-w-	C:\Windows\System32\drivers\usbohci.sys
2014-07-06 19:58:53	18A85013A3E0F7E1755365D287443965	53248	----a-w-	C:\Windows\System32\drivers\usbehci.sys
2014-07-06 19:58:53	12FEB33791920678F8433701C822BCFD	325120	----a-w-	C:\Windows\System32\drivers\usbport.sys
2014-07-06 19:48:28	1A29A59A4C5BA6F8C85062A613B7E2B2	1684928	----a-w-	C:\Windows\System32\drivers\ntfs.sys
2014-07-06 19:47:26	8A50D5304E6AE48664CF5838EC32F647	122584	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-06 19:46:19	F92B0E478C0FAA6D6661E6E977247E60	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2014-07-06 19:46:19	9D9ED48F841EA37AA5310D54B9E5D3C7	91352	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2014-07-06 19:46:19	15E8ABC06843672955CE26A009533BAD	63704	----a-w-	C:\Windows\System32\drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Apoint"="C:\Program Files\Apoint2K\Apoint.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acer ePower Management]
"command"="C:\\Program Files\\Acer\\Acer ePower Management\\ePowerTray.exe"
"hkey"="HKLM"
"item"="Acer ePower Management"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"command"="\"c:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""
"hkey"="HKLM"
"item"="Adobe Reader Speed Launcher"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AMD AVT]
"command"="Cmd.exe /c start \"AMD Accelerated Video Transcoding device initialization\" /min \"C:\\Program Files (x86)\\AMD AVT\\bin\\kdbsync.exe\" aml"
"hkey"="HKLM"
"item"="AMD AVT"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcadeDeluxeAgent]
"command"="\"C:\\Program Files (x86)\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\""
"hkey"="HKLM"
"item"="ArcadeDeluxeAgent"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BackupManagerTray]
"command"="\"C:\\Program Files (x86)\\NewTech Infosystems\\Acer Backup Manager\\BackupManagerTray.exe\" -h -k"
"hkey"="HKLM"
"item"="BackupManagerTray"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EgisTecLiveUpdate]
"command"="\"C:\\Program Files (x86)\\EgisTec Egis Software Update\\EgisUpdate.exe\""
"hkey"="HKLM"
"item"="EgisTecLiveUpdate"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager]
"command"="C:\\Program Files (x86)\\Launch Manager\\LManager.exe"
"hkey"="HKLM"
"item"="LManager"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mwlDaemon]
"command"="C:\\Program Files (x86)\\EgisTec\\MyWinLocker 3\\x86\\mwlDaemon.exe"
"hkey"="HKLM"
"item"="mwlDaemon"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PlayMovie]
"command"="\"C:\\Program Files (x86)\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\""
"hkey"="HKLM"
"item"="PlayMovie"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLFSetI]
"command"="C:\\Windows\\PLFSetI.exe"
"hkey"="HKLM"
"item"="PLFSetI"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SecureW2 Tray]
"command"="C:\\Program Files (x86)\\SecureW2\\sw2_tray.exe"
"hkey"="HKLM"
"item"="SecureW2 Tray"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\StartCCC]
"command"="\"C:\\Program Files (x86)\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun"
"hkey"="HKLM"
"item"="StartCCC"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
"backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Program Files\\McAfee Security Scan\\3.8.130\\SSScheduler.exe"
"item"="McAfee Security Scan Plus"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-07-2014 00:20]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08-05-2010 16:55]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08-05-2010 16:55]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\McQcModifier-5c47-a7b0" [C:\ProgramData\McQcModifier-5c47-a7b0\McQcModifier-5c47-a7b0.cmd]

==== Chrome Look ======================

Google Wallet - Tineke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
"Default_Page_URL"="http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_5542&r=27360510g606l04h8z1k5t44n1y53n"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{4888CE2D-498C-43ED-8A9D-D65C9C6C866F}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4888CE2D-498C-43ED-8A9D-D65C9C6C866F}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_nlNL378"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AMD AVT deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecureW2 Tray deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tineke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tineke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Tineke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=493 folders=59 25589545 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Tineke\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Tineke\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found

==== EOF on zo 13-07-2014 at  4:26:36,39 ======================