
Zoek.exe v5.0.0.0 Updated 26-09-2014
Tool run by els_v_000 on vr 26/09/2014 at 10:14:17,66.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\els_v_000\Downloads\zoek.exe    [Scan all users] [Script inserted] 

==== System Restore Info ======================

26/09/2014 10:19:24 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Avg Secure Update

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2014-09-14 19:05:26	ACDBE1ED38167C8B01B8F63161BB2CEA	2374784	----a-w-	C:\WINDOWS\explorer.exe
====== C:\Users\ELS_V_~1\AppData\Local\Temp ====
2014-09-22 13:45:42	5C28E508C83A3B0DDBB224B04B1418B9	47329360	----a-w-	C:\Users\els_v_000\AppData\Local\Temp\SHSetup.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-09-22 14:35:11	E011C6CA6921FAC88F8B163C68E554BF	2410976	----a-w-	C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-09-22 14:35:10	42A350B81E0E9A427D7366E1E8BFBADC	198656	----a-w-	C:\WINDOWS\SysWOW64\WebClnt.dll
2014-09-22 14:35:01	14D03A4F5F0AFCDB93CAFB68B77ACDB6	288768	----a-w-	C:\WINDOWS\SysWOW64\stobject.dll
2014-09-22 14:34:59	FB970EC73EAB710FE1F529C139E258A0	477200	----a-w-	C:\WINDOWS\SysWOW64\SHCore.dll
2014-09-22 14:34:58	0836AC3FEF8E7380D1973E6DB14E31A7	459264	----a-w-	C:\WINDOWS\SysWOW64\SettingSync.dll
2014-09-22 14:34:57	8FC068ACF45786301D04CED5B58A13E3	1319936	----a-w-	C:\WINDOWS\SysWOW64\wsecedit.dll
2014-09-22 14:34:51	EBA5466233255ADAF7D5501F0CC2B9CF	189016	----a-w-	C:\WINDOWS\SysWOW64\rsaenh.dll
2014-09-22 14:34:50	E5FB6044A36E74484DA958AC17FA9504	1290752	----a-w-	C:\WINDOWS\SysWOW64\XpsPrint.dll
2014-09-22 14:34:48	0A6ABB521CDCE96D3A50939CF7964E24	206336	----a-w-	C:\WINDOWS\SysWOW64\powercfg.cpl
2014-09-22 14:34:47	9D75171689317D82FBF8B155FCF34AE8	371712	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2014-09-22 14:34:46	D39BD0DB9D91A4376F759282B2C276AE	1057792	----a-w-	C:\WINDOWS\SysWOW64\printui.dll
2014-09-22 14:34:45	CB587DCB837D0367B43584855BD22F25	432128	----a-w-	C:\WINDOWS\SysWOW64\Windows.Networking.dll
2014-09-22 14:34:44	DA5AD8EA1331015BCC2FCFB1B7EE4EBC	168960	----a-w-	C:\WINDOWS\SysWOW64\iasnap.dll
2014-09-22 14:34:44	0C666352A0F9C61AB07019D3928463ED	391000	----a-w-	C:\WINDOWS\SysWOW64\netcfgx.dll
2014-09-22 14:34:42	B393F30C63DCD1A0D6977A8E27A42A57	707536	----a-w-	C:\WINDOWS\SysWOW64\mfplat.dll
2014-09-22 14:33:59	F1FCD3780D71FD21EAA2A42D3A924B1F	832512	----a-w-	C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-09-22 14:33:57	FC36740153F03C81ADA5B5EEF22C8064	1048064	----a-w-	C:\WINDOWS\SysWOW64\gpedit.dll
2014-09-22 14:33:54	05B976CBCB4ADE4D3F4E75DAD196EECD	313856	----a-w-	C:\WINDOWS\SysWOW64\clusapi.dll
2014-09-22 14:33:53	95719EC346E3A9FDD87662BE886EB200	1817088	----a-w-	C:\WINDOWS\SysWOW64\Display.dll
2014-09-22 14:33:44	6ADEF3CCE9788849FA7F8D28A85B2833	540672	----a-w-	C:\WINDOWS\SysWOW64\comdlg32.dll
2014-09-22 14:33:43	C5D013B0C8F019F950B7E7451A57034E	318976	----a-w-	C:\WINDOWS\SysWOW64\certcli.dll
2014-09-22 14:33:42	3362D78214C5B0A5CAE9E5C1692FA12B	474112	----a-w-	C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-09-22 14:33:39	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\WINDOWS\SysWOW64\SndVol.exe
2014-09-22 14:33:38	704AA3D6466B2070D321C63C99368448	95232	----a-w-	C:\WINDOWS\SysWOW64\AppxSip.dll
2014-09-22 14:33:37	190228E527C47A96D9B865F07BF2EC19	889856	----a-w-	C:\WINDOWS\SysWOW64\aclui.dll
2014-09-22 14:33:31	F6570EFB5DD5CFC33A0C9D3B4C05069E	2318336	----a-w-	C:\WINDOWS\SysWOW64\authui.dll
2014-09-22 14:33:28	86A8EEFADBDDA52474456818D76DFAAA	302080	----a-w-	C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-09-22 14:33:28	7BB5166433C5319CED9E8D05A0C5F7E8	230400	----a-w-	C:\WINDOWS\SysWOW64\wlanapi.dll
2014-09-22 14:33:26	E1F38BF986C7285AB13FB369243A41E0	448000	----a-w-	C:\WINDOWS\SysWOW64\VAN.dll
2014-09-22 14:33:24	B1D05869BF218949BDC5F695D3A8A7EB	5833216	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-09-22 14:33:16	FEC1F6C1F496944BC40D995957D971CF	1404416	----a-w-	C:\WINDOWS\SysWOW64\storagewmi.dll
2014-09-22 14:33:15	D32E7F10D61EFF5A26FB806934FB1088	1029632	----a-w-	C:\WINDOWS\SysWOW64\mispace.dll
2014-09-22 14:33:08	7E4A478662336EE2AF81C97345A407B6	18760328	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2014-09-22 14:33:08	5232DEDED1A958814344D564F6C9C632	344576	----a-w-	C:\WINDOWS\SysWOW64\schannel.dll
2014-09-22 14:33:07	69567319D077611FFF5A07BDCDF2A400	889344	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-09-22 14:33:02	ACB131E8AB530C71841FEA38AE6E6707	328704	----a-w-	C:\WINDOWS\SysWOW64\puiobj.dll
2014-09-22 14:33:02	A0E20B50D66FDF786BC2324499F7C482	195584	----a-w-	C:\WINDOWS\SysWOW64\prnntfy.dll
2014-09-22 14:33:02	710A55B8443155F1FF09E07C2E44D79D	200192	----a-w-	C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2014-09-22 14:33:02	558838A9A51259F3E76030E3E997A72A	162816	----a-w-	C:\WINDOWS\SysWOW64\puiapi.dll
2014-09-22 14:33:00	5EE87C7E41A2BFF787FD5B8C5BA91EAF	674512	----a-w-	C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-09-22 14:33:00	3EAE3411A4A492C253A88534209E3045	355800	----a-w-	C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-09-22 14:32:59	495B4CA2AF924CE5C08BBC9D5E7E1103	2145472	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2014-09-22 14:32:58	F7A00AA3EA30F2F923C1F8A0DE76A113	180720	----a-w-	C:\WINDOWS\SysWOW64\mftranscode.dll
2014-09-22 11:25:09	1E2AEB0238F0FE156FC1E4EE918446DD	61952	----a-w-	C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-22 11:25:05	B9361205DC3168E724E6288F64D0D867	69632	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-22 11:25:00	1C9DF9ABA72C6F6ED0AAAD9AC3F0DAC5	454656	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-22 11:24:54	332E39115D7AE6071357E453574FCD48	365056	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-22 11:24:53	089A1B20B83F147184D28E8633DC0F5E	243200	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-22 11:24:49	6A89CC35530F7021B91571D2C2DF7009	312320	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-22 11:24:48	734FB412C293001F7777DEF89BC510BF	603136	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-22 11:24:45	4E9D7F3948E0B1DB2F861A0C9BA186AB	597504	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-22 11:24:44	2BFB1103B7D2B45A094B0600CDD775F3	60416	----a-w-	C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-22 11:24:43	96C9E7D834583F5F48CC0390F7755CE1	678400	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-22 10:46:35	1A03F9B1D9F0493B18B1E648F4F82D4F	1812992	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2014-09-22 10:46:34	A98F492B4C63CA5E11DAAEB36A0CEFCE	2185728	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-22 10:46:32	6DBE009D0DECBD8F1F170366332BE432	1190400	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-22 10:46:31	26E85EDDE755D489A20CC67C4DAAD8BC	2014208	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-22 10:46:26	7E1AB823D5F57E18392A2C6BC7466B07	11769856	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-22 10:46:21	FA5275F6BE4D2615B754F06E7CF228DB	17455104	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-22 10:46:20	6D6E5210CA43AAC67082C69A8BA53705	4232704	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-14 22:51:32	02E324E880F6E54187A2B3C9F53DD70E	12730880	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-09-14 22:51:21	2CDBF4B60E89CD711476FAB1EB9A4999	5777408	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2014-09-14 22:50:58	AA3E2CEECFCD89D49FF902ECAD197946	2071552	----a-w-	C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-09-14 22:50:24	0120A5300040B9A1E459A03B364A74D5	1741824	----a-w-	C:\WINDOWS\SysWOW64\SRH.dll
2014-09-14 22:50:11	427A26A303BBF3736B054244EAFFAA4D	439296	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-09-14 22:50:10	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\SysWOW64\locale.nls
2014-09-14 22:49:46	19C5844B56BCA187625D2CFA9A7C1144	127544	----a-w-	C:\WINDOWS\SysWOW64\winmmbase.dll
2014-09-14 22:49:44	0F3DF44347B0051D30B23EED12973D8C	210944	----a-w-	C:\WINDOWS\SysWOW64\wisp.dll
2014-09-14 22:49:42	8A5A7AB46513F9FA75E7223471084645	667136	----a-w-	C:\WINDOWS\SysWOW64\wuapi.dll
2014-09-14 22:49:38	F19F4DF5361132D5E19FBE1A0DCDC80B	335680	----a-w-	C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-09-14 22:49:33	21A13082B44A898B8DCC54972B2B5C31	128568	----a-w-	C:\WINDOWS\SysWOW64\winmm.dll
2014-09-14 22:49:29	2F6410A7641BE1196DC423025F208285	98048	----a-w-	C:\WINDOWS\SysWOW64\dwmapi.dll
2014-09-14 22:49:26	BEE3C4EC1F92C62E4CF018EAEB8074E1	756224	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2014-09-14 22:49:23	1FA2D34A17E366C269FBE94DE06B177F	855552	----a-w-	C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-09-14 22:49:18	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\WINDOWS\SysWOW64\osk.exe
2014-09-14 22:49:08	F7CA5639A235A1E2071500B4D1FCC6F8	51200	----a-w-	C:\WINDOWS\SysWOW64\wshbth.dll
2014-09-14 22:49:06	FE166ADB02C1E146005789C17E065143	8192	----a-w-	C:\WINDOWS\SysWOW64\KBDRUM.DLL
2014-09-14 22:49:05	DA84B73474C3D02B453E6FAC0F38DBFB	26112	----a-w-	C:\WINDOWS\SysWOW64\wups.dll
2014-09-14 22:49:05	8A073508726DE4A69ED702A7A6082808	1351168	----a-w-	C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-09-14 22:49:02	A39251FAE3189E1AE1F0DF0884D37E2A	1361408	----a-w-	C:\WINDOWS\SysWOW64\user32.dll
2014-09-14 22:49:01	FB38126A24BDC4912C175C4C430E911C	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDRU1.DLL
2014-09-14 22:49:01	A40516F4443996DC92350D6890546E4A	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDYAK.DLL
2014-09-14 22:49:01	44AABDB92C816F112E054FC3523B51E8	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDBASH.DLL
2014-09-14 22:49:01	35D1AA379B4C2873F1DD62EDCA740C19	6656	----a-w-	C:\WINDOWS\SysWOW64\KBDRU.DLL
2014-09-14 22:47:55	594CEF2E9CD8A5BB8310B3844614C127	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTAT.DLL
2014-09-14 22:47:17	7D6731C5BA01769612A3EDC42A7C931B	79872	----a-w-	C:\WINDOWS\SysWOW64\BluetoothApis.dll
2014-09-14 22:45:28	CA16D3794D44C57CBFBE0CE5530FFED8	80896	----a-w-	C:\WINDOWS\SysWOW64\wudriver.dll
2014-09-14 22:44:30	DB46A1A84AEC3A7F0FBA4E20320F3159	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTT102.DLL
2014-09-14 19:05:27	195822ACCDAA2B4815DD01BAFC335595	2084520	----a-w-	C:\WINDOWS\SysWOW64\explorer.exe
2014-09-14 19:05:21	A1EE5C4A020DB9A8DB216C660C3FBDBE	11818496	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2014-09-14 19:05:19	C0281344E7702939DCE4A17734269E58	1038336	----a-w-	C:\WINDOWS\SysWOW64\actxprxy.dll
2014-09-14 19:05:19	1E4CD5DB4F61DF2A9053C8B9A46B4013	50176	----a-w-	C:\WINDOWS\SysWOW64\UXInit.dll
2014-09-13 17:08:56	4C48253C6A21CCEBA071B58A5CDF17C1	875688	----a-w-	C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-09-22 14:35:32	A055D7D686F1CB5CBEDCFBB4C6DC9E2E	1519488	----a-w-	C:\WINDOWS\Sysnative\user32.dll
2014-09-22 14:35:28	6A9650BDC13F1A770F20E7B99D29EE3D	6656	----a-w-	C:\WINDOWS\Sysnative\KBDRU.DLL
2014-09-22 14:35:28	2067AF0531ACD5D28BD49DB30DF109CE	8192	----a-w-	C:\WINDOWS\Sysnative\KBDRUM.DLL
2014-09-22 14:35:28	0AC5A816A01D0115588D4B997842780E	7168	----a-w-	C:\WINDOWS\Sysnative\KBDBASH.DLL
2014-09-22 14:35:27	997E5E28492F02036E5C7BA6DB66ABDC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTAT.DLL
2014-09-22 14:35:27	68270DE9415C8F8139242D38417B49BE	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTT102.DLL
2014-09-22 14:35:27	454A0735E836FBC31C064FED6C120B46	7168	----a-w-	C:\WINDOWS\Sysnative\KBDRU1.DLL
2014-09-22 14:35:27	3429360674DA1E70F638924A6D5985CC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDYAK.DLL
2014-09-22 13:51:38	1A5835F2E6B49A83F0AEAD17B4537AF7	1656832	----a-w-	C:\WINDOWS\Sysnative\GdiPlus.dll
2014-09-22 13:51:23	618A19EB31ECA7B7F2AA0207BAF598A5	84480	----a-w-	C:\WINDOWS\Sysnative\wpdbusenum.dll
2014-09-22 13:51:09	8200B4C323229AA1F47C87EB37207E36	2574208	----a-w-	C:\WINDOWS\Sysnative\WMVDECOD.DLL
2014-09-22 13:49:37	7740658736BD07FC121EACB3CA7C9194	2397184	----a-w-	C:\WINDOWS\Sysnative\storagewmi.dll
2014-09-22 13:48:59	11FA35E24D76F62BD3E64D43B12656EF	1231872	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2014-09-22 13:48:57	A9CE2C192B4C7E7151011A56DB2C7B40	132608	----a-w-	C:\WINDOWS\Sysnative\rdpudd.dll
2014-09-22 13:48:56	D069B88549B986C15731AE79F8D6C258	3360768	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2014-09-22 13:47:45	8DC2979BC54C585BA5A4C9E6FABCD1B4	360480	----a-w-	C:\WINDOWS\Sysnative\mfreadwrite.dll
2014-09-22 13:47:44	C40DE04CE3A8905EB8048B5CE0951DF0	882136	----a-w-	C:\WINDOWS\Sysnative\mfplat.dll
2014-09-22 13:47:43	83E7C4DA3BF4A21C3F809A506245CAEF	233888	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2014-09-22 13:47:43	7A136EFAB2E4DF9A897E0333C51B54B8	818624	----a-w-	C:\WINDOWS\Sysnative\mfmp4srcsnk.dll
2014-09-22 13:47:42	FF1CB6C5D9288DAAA0DADAD6B1E35085	205512	----a-w-	C:\WINDOWS\Sysnative\mftranscode.dll
2014-09-22 13:47:42	AD3137A754F60D369C176EF4DD5084A0	2141920	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2014-09-22 13:45:30	61BF52E9FFAB27A0B6D621BE26088373	1600000	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2014-09-22 13:45:29	97F24AEACAD9C9038BEC5B2BA1ADA94C	187392	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2014-09-22 13:45:28	B2C26168E74EA51BF65518A309B08C19	770048	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2014-09-22 13:45:28	2C38FF9DE23A3BB335A95099622AB603	65536	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersGPExt.dll
2014-09-22 13:45:19	49EEC8569BF200C95A38D00766AFB830	16874496	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2014-09-22 13:45:18	6ECFFE49AA43A74DC15701EFE6355621	92160	----a-w-	C:\WINDOWS\Sysnative\dab.dll
2014-09-22 13:44:50	A6CB3CBF88DF671AC85FA9AABC33137F	125472	----a-w-	C:\WINDOWS\Sysnative\dwmapi.dll
2014-09-22 13:44:46	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\WINDOWS\Sysnative\conhost.exe
2014-09-22 11:25:09	343A53C71F8CE8DE172880F210BF50CB	83968	----a-w-	C:\WINDOWS\Sysnative\MshtmlDac.dll
2014-09-22 11:25:05	E7852ACED4314BF475DE89C388247CAD	85504	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-09-22 11:25:01	550531ED60E7AD5CA02EDB0FAFA6280B	72704	----a-w-	C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll
2014-09-22 11:25:00	19FB8104F320C31BB0E34D5A926ECD1C	547328	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2014-09-22 11:25:00	0B52D185504457310D42B5413783D6DC	758272	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2014-09-22 11:24:53	910AAE6634F7C809E93EE0341C850180	289280	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2014-09-22 11:24:53	7F733479C6DC92B649B2B1298EE6D6B6	446464	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2014-09-22 11:24:49	F519886D6075BFF0286793B3891E0675	727040	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2014-09-22 11:24:49	B2AA93A6FC3BB1EFBF25410DAA6BB1D2	359424	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2014-09-22 11:24:49	1FA34F04CB4529000AD818268F059D3E	707072	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2014-09-22 11:24:43	E86022F8AE3F9251459C744E175309F9	775168	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2014-09-22 10:46:46	47942CCF5A5CD57AE1BB44F17725A912	23591424	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-09-22 10:46:36	30C355249224173151874A7B86A8BB66	2310656	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2014-09-22 10:46:33	7F88F6790401199B2C9C932FD91965F9	2793984	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2014-09-22 10:46:32	4C56EBB6A31E8323D3CBBC476C81B998	1447424	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2014-09-22 10:46:31	4EBE88D6CC494B9BE3705B400562A587	2104832	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2014-09-22 10:46:27	3EC77C4625862483BFCF4CEE1231EED7	13588480	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2014-09-22 10:46:21	5107C9AEF01636FF8A04E8F28CF7C316	5833728	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2014-09-14 22:51:37	4190C13A849F5D35F0B0CA445E05045D	21266336	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2014-09-14 22:51:26	7832D9F9F97E536DE374585BE4EA2CD8	6649344	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2014-09-14 22:51:24	057CE99444311A71F71188A89C4C3EDE	8652800	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Search.dll
2014-09-14 22:51:22	BB832E06EE4F5585C15C441FE953DFF5	7424320	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2014-09-14 22:51:18	CC59B18DEC31120F9957ABA55EC49FAC	2389504	----a-w-	C:\WINDOWS\Sysnative\d3d10warp.dll
2014-09-14 22:51:16	74637F054A1DA40DA7C0A939094AFED7	2696704	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2014-09-14 22:50:57	69DB09F0263C637DA8568D404842466A	1261056	----a-w-	C:\WINDOWS\Sysnative\gpsvc.dll
2014-09-14 22:50:56	8AE5205957F635FCB7A7760D266F3493	2642944	----a-w-	C:\WINDOWS\Sysnative\authui.dll
2014-09-14 22:50:55	3F5EF31C6AA204B099EE76497DF80A26	1532416	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2014-09-14 22:50:46	1670A274ED1A815311BA33CD27B0D0E8	907776	----a-w-	C:\WINDOWS\Sysnative\iphlpsvc.dll
2014-09-14 22:50:45	3EB052F70F739728F89E2AEE2652E8CA	1029632	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2014-09-14 22:50:35	AEAD37FA03D6E90638D8A4DC30E50408	2050560	----a-w-	C:\WINDOWS\Sysnative\SRH.dll
2014-09-14 22:50:35	17E700D2F6671196D0512BF806BB6435	1182208	----a-w-	C:\WINDOWS\Sysnative\printui.dll
2014-09-14 22:50:34	D24002EB2F4A8A04897703067E81CC5D	3465216	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2014-09-14 22:50:31	0A3E1B697F6ACB7BC1C898DC14A96EC7	1287680	----a-w-	C:\WINDOWS\Sysnative\mispace.dll
2014-09-14 22:50:29	4301A4D673F1ACB195C4F30B306B70B9	1992192	----a-w-	C:\WINDOWS\Sysnative\XpsPrint.dll
2014-09-14 22:50:28	A9C015F01499761908DE61F172FAF65D	486744	----a-w-	C:\WINDOWS\Sysnative\netcfgx.dll
2014-09-14 22:50:26	0A7F97DE49DB63E01CBCA067F4DA7AB8	544768	----a-w-	C:\WINDOWS\Sysnative\AppxPackaging.dll
2014-09-14 22:50:24	A4CF0D2FF18BF8D128389AF26410FD8B	1018368	----a-w-	C:\WINDOWS\Sysnative\aclui.dll
2014-09-14 22:50:21	BF6897E960C08E9FDD41B80726C61C2F	371200	----a-w-	C:\WINDOWS\Sysnative\wlanmsm.dll
2014-09-14 22:50:21	793EACA6BAE9F481C2059BCB3743EB4A	324096	----a-w-	C:\WINDOWS\Sysnative\srvsvc.dll
2014-09-14 22:50:17	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\WINDOWS\Sysnative\spoolsv.exe
2014-09-14 22:50:14	79EFAEE6FBD8ABC066B944E1A7A605BB	645592	----a-w-	C:\WINDOWS\Sysnative\SHCore.dll
2014-09-14 22:50:12	01409F85BB9DB87E102B415EC91DD6C1	438272	----a-w-	C:\WINDOWS\Sysnative\puiobj.dll
2014-09-14 22:50:10	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\Sysnative\locale.nls
2014-09-14 22:50:06	8EE8CA953542A8E70A841C453BC15196	427008	----a-w-	C:\WINDOWS\Sysnative\clusapi.dll
2014-09-14 22:50:05	D0AD65EE089F735BF546ABFE28D192C0	621056	----a-w-	C:\WINDOWS\Sysnative\comdlg32.dll
2014-09-14 22:50:04	D01BA613D268DAD03DD32A0DC5FD24DF	287232	----a-w-	C:\WINDOWS\Sysnative\usbmon.dll
2014-09-14 22:50:04	0FA02FD5BEF2B8FBA63B40746360E9C6	828416	----a-w-	C:\WINDOWS\Sysnative\wuapi.dll
2014-09-14 22:50:03	40CC457FB140B509B50F96DAD9D8F80B	1660048	----a-w-	C:\WINDOWS\Sysnative\winload.efi
2014-09-14 22:50:02	D249C3A58A4FCF755EF4C94F7047E015	449536	----a-w-	C:\WINDOWS\Sysnative\defragsvc.dll
2014-09-14 22:50:02	835261C17478103B73F4FFB8454AF849	268288	----a-w-	C:\WINDOWS\Sysnative\wisp.dll
2014-09-14 22:50:02	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\WINDOWS\Sysnative\winload.exe
2014-09-14 22:50:01	5B6B32E83E371739B13AA67E260DC5C4	487936	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2014-09-14 22:50:00	C80D4D7AF450F7CAD615FF1D7B40D7AD	1488008	----a-w-	C:\WINDOWS\Sysnative\winresume.efi
2014-09-14 22:50:00	23F0DE75890E604B9DED5625EFA907FD	1417216	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2014-09-14 22:49:59	FE7E47BE6E0D9EF4F24D81381A829CEC	1463808	----a-w-	C:\WINDOWS\Sysnative\wsecedit.dll
2014-09-14 22:49:59	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\WINDOWS\Sysnative\winresume.exe
2014-09-14 22:49:57	EF1F8B57323E5D3FC6A0A25F98F90DBC	220160	----a-w-	C:\WINDOWS\Sysnative\profsvc.dll
2014-09-14 22:49:55	9D50C0B29FB20DF0A8FD197B332894B7	160600	----a-w-	C:\WINDOWS\Sysnative\winmmbase.dll
2014-09-14 22:49:54	693CC2794DEFB8493ABFF68D509DACC4	127488	----a-w-	C:\WINDOWS\Sysnative\WiFiDisplay.dll
2014-09-14 22:49:53	AE27E63B6A4AFCF4EBCCE8AC4A96C0EF	806400	----a-w-	C:\WINDOWS\Sysnative\win32spl.dll
2014-09-14 22:49:50	0B1A9F6F9D2891C0F8783C0444D27DD0	1057280	----a-w-	C:\WINDOWS\Sysnative\rdvidcrl.dll
2014-09-14 22:49:49	CD8CA57C36E596875865F451393C7C66	576512	----a-w-	C:\WINDOWS\Sysnative\SettingSync.dll
2014-09-14 22:49:48	1C683FB45C6CE0BB8A74BB0B1392599D	505344	----a-w-	C:\WINDOWS\Sysnative\VAN.dll
2014-09-14 22:49:47	F8A869262251B011A21DEC79AC1F3F5D	1844224	----a-w-	C:\WINDOWS\Sysnative\Display.dll
2014-09-14 22:49:47	D62B6C0A254EADB94C138600E6DB6048	388608	----a-w-	C:\WINDOWS\Sysnative\WUSettingsProvider.dll
2014-09-14 22:49:47	793DE7C6B82804D5973C43484F527849	117248	----a-w-	C:\WINDOWS\Sysnative\AppxSip.dll
2014-09-14 22:49:46	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\WINDOWS\Sysnative\SndVol.exe
2014-09-14 22:49:45	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\WINDOWS\Sysnative\osk.exe
2014-09-14 22:49:41	504DDEF8526CECAAD886D5AC5656DF1A	387896	----a-w-	C:\WINDOWS\Sysnative\bcryptprimitives.dll
2014-09-14 22:49:41	12C0733F955E15C3C37DD24C9C7D796A	263680	----a-w-	C:\WINDOWS\Sysnative\DafPrintProvider.dll
2014-09-14 22:49:38	9D43D7E80DBC2B733BB652CABD6BAC9C	116736	----a-w-	C:\WINDOWS\Sysnative\httpprxm.dll
2014-09-14 22:49:37	7DEAD28D8FB9BCAE4A153A57338315E7	123920	----a-w-	C:\WINDOWS\Sysnative\winmm.dll
2014-09-14 22:49:36	CCC106273D4265A9091AA7B619DCC5DA	595456	----a-w-	C:\WINDOWS\Sysnative\Windows.Networking.dll
2014-09-14 22:49:36	1922AAE64BCD761A0377F6981FC67736	721408	----a-w-	C:\WINDOWS\Sysnative\twinapi.dll
2014-09-14 22:49:35	20657ACF2AE5B2E25EEFC597A34AFDED	1705472	----a-w-	C:\WINDOWS\Sysnative\wucltux.dll
2014-09-14 22:49:35	118A11C89FAD244A2B85DA7EDC3E9683	215552	----a-w-	C:\WINDOWS\Sysnative\prnntfy.dll
2014-09-14 22:49:35	0C9F6C826973FF777951FFB15F7A52B5	923136	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2014-09-14 22:49:33	FD807B56AECFD89E4A46960C261D78BF	1089024	----a-w-	C:\WINDOWS\Sysnative\gpedit.dll
2014-09-14 22:49:32	A8732AFE4DB47114355ABB285ED776D2	187392	----a-w-	C:\WINDOWS\Sysnative\puiapi.dll
2014-09-14 22:49:30	91B18D7A1702ED589E67C6C81052B955	226816	----a-w-	C:\WINDOWS\Sysnative\WebClnt.dll
2014-09-14 22:49:30	572EBBCDBBA56736F4C0B5487AE7BFA5	220160	----a-w-	C:\WINDOWS\Sysnative\iasnap.dll
2014-09-14 22:49:29	85ED08FAD9D17EC76A02B5C4AEEDBB00	75776	----a-w-	C:\WINDOWS\Sysnative\adhsvc.dll
2014-09-14 22:49:27	CCD0DF268D9C9F5287B66565B4258FD6	59392	----a-w-	C:\WINDOWS\Sysnative\wups.dll
2014-09-14 22:49:24	31C2E53FE0C039C1BF0F15154D8596E7	53248	----a-w-	C:\WINDOWS\Sysnative\AppxSysprep.dll
2014-09-14 22:49:24	28E8D340402C130427F2901004B7FA99	321536	----a-w-	C:\WINDOWS\Sysnative\stobject.dll
2014-09-14 22:49:24	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe
2014-09-14 22:49:23	2B1C2CB5C97962C521CD806F0C86D2FE	102912	----a-w-	C:\WINDOWS\Sysnative\wcmcsp.dll
2014-09-14 22:49:22	FA86C3F979EF9CCCCED109B05DEBDD46	432640	----a-w-	C:\WINDOWS\Sysnative\wwanconn.dll
2014-09-14 22:49:21	3AB9868E0E78AD9CD501B83D7C293125	54752	----a-w-	C:\WINDOWS\Sysnative\wuauclt.exe
2014-09-14 22:49:20	B540693968BCA57F595A7B08DB4B46C3	216368	----a-w-	C:\WINDOWS\Sysnative\rsaenh.dll
2014-09-14 22:49:20	53F4FC66B94804BBF2016922CD826891	878592	----a-w-	C:\WINDOWS\Sysnative\ActionCenter.dll
2014-09-14 22:49:19	AEDF08DDF4EA929FEDBC0A1CCF01F287	296960	----a-w-	C:\WINDOWS\Sysnative\wlanapi.dll
2014-09-14 22:49:19	1E01725D557B5325E8C99F712E7D4A7E	50688	----a-w-	C:\WINDOWS\Sysnative\wups2.dll
2014-09-14 22:49:18	69AF7212845FFCD0AA1F0FC5D51FB809	63488	----a-w-	C:\WINDOWS\Sysnative\wshbth.dll
2014-09-14 22:49:18	2E80E960F1D376A502E9811B20621F2A	427520	----a-w-	C:\WINDOWS\Sysnative\schannel.dll
2014-09-14 22:49:14	809B36AF48D7BC9B37E1522889F6160F	1126912	----a-w-	C:\WINDOWS\Sysnative\SearchFolder.dll
2014-09-14 22:49:14	041A999E4FF9A7CDBE67357751881FB8	134144	----a-w-	C:\WINDOWS\Sysnative\browser.dll
2014-09-14 22:49:13	A7762A36F92E57E41B0356EF5C672473	659968	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll
2014-09-14 22:49:09	3A80675FF8524B09817000B6A2E35B7A	18432	----a-w-	C:\WINDOWS\Sysnative\wlansvcpal.dll
2014-09-14 22:49:06	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\WINDOWS\Sysnative\Defrag.exe
2014-09-14 22:49:06	CB9CEAB473897BE1E8C827D4F4EB1311	207360	----a-w-	C:\WINDOWS\Sysnative\powercfg.cpl
2014-09-14 22:49:02	A4DE7868879498A4E4CBB12788FAA3E8	105472	----a-w-	C:\WINDOWS\Sysnative\BluetoothApis.dll
2014-09-14 22:48:56	1A2486F88B4F68FCCE7E01DF34869929	436224	----a-w-	C:\WINDOWS\Sysnative\certcli.dll
2014-09-14 22:48:25	4F6203CBBEFB9FBFA859246682849A24	1144320	----a-w-	C:\WINDOWS\Sysnative\wwanmm.dll
2014-09-14 22:48:04	933C63C9003379F56BA4AF4149440FC8	226304	----a-w-	C:\WINDOWS\Sysnative\SndVolSSO.dll
2014-09-14 22:47:52	6317C9DB4282CEAA3BAB131BC3839B2A	308736	----a-w-	C:\WINDOWS\Sysnative\compstui.dll
2014-09-14 22:46:50	A5141DD172927F04732F5B6BFBE49C15	443904	----a-w-	C:\WINDOWS\Sysnative\wlansec.dll
2014-09-14 22:46:14	B279922BCFD0E178068B159D85C5CDBE	2100736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll
2014-09-14 22:45:42	D8683834163E00E252CAC57BB6025036	93696	----a-w-	C:\WINDOWS\Sysnative\wudriver.dll
2014-09-14 22:42:58	575CB39AD4DC2F4C92341F2D377DCAE0	387391	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2014-09-14 19:05:26	00CD1254837739E310505EBCB19F7971	796672	----a-w-	C:\WINDOWS\Sysnative\uDWM.dll
2014-09-14 19:05:25	91AEA2A8671DDDFA526604B2379867F3	13423104	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2014-09-14 19:05:20	A4EE37B24370FABA65EF64FF24B5539E	2860032	----a-w-	C:\WINDOWS\Sysnative\actxprxy.dll
2014-09-14 19:05:19	04AE20974DF91DC7B9075FC5A126B77C	68096	----a-w-	C:\WINDOWS\Sysnative\UXInit.dll
2014-09-14 18:59:49	E09BF40AA766B183F0F385C96B37D9E5	299520	----a-w-	C:\WINDOWS\Sysnative\WSDMon.dll
2014-09-14 18:59:49	DA947D89F64B72A40F678AAAE76F7564	205824	----a-w-	C:\WINDOWS\Sysnative\tcpmon.dll
2014-09-13 17:08:55	8BB7548307EE6147137993A410D64387	869544	----a-w-	C:\WINDOWS\Sysnative\msvcr120_clr0400.dll
2014-09-13 16:20:40	D3AE5DB16EAF913860EC28654CE00E6B	1212928	----a-w-	C:\WINDOWS\Sysnative\schedsvc.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-09-14 22:50:43	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2014-09-14 22:50:35	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2014-09-14 22:50:31	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2014-09-14 22:50:30	77E1D08EF3BFB923F2EDC3FC8089E08E	475968	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2014-09-14 22:50:28	97B9076611291AE4C4C107BC915BD026	1200640	----a-w-	C:\WINDOWS\Sysnative\drivers\bthport.sys
2014-09-14 22:50:27	FEBAA7D782E30882FFF1CBCBBE8AD467	2515264	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2014-09-14 22:50:23	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2014-09-14 22:50:14	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2014-09-14 22:50:12	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2014-09-14 22:50:03	65392F3F3F65E4C6CC82A0F4F8A0B051	468288	----a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2014-09-14 22:49:59	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2014-09-14 22:49:56	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2014-09-14 22:49:53	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2014-09-14 22:49:42	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2014-09-14 22:49:39	E4B4BE2D7750849C07589DA0B0AABA01	1118040	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2014-09-14 22:49:37	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2014-09-14 22:49:37	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2014-09-14 22:49:37	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys
2014-09-14 22:49:35	E0927EFA25D473367C3341B9F5969779	115712	----a-w-	C:\WINDOWS\Sysnative\drivers\bridge.sys
2014-09-14 22:49:27	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2014-09-14 22:49:26	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2014-09-14 22:48:56	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\WINDOWS\Sysnative\drivers\bthpan.sys
2014-09-14 18:59:48	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-09-22 13:46:09	--------	d-----w-	C:\PROGRA~2\COMMON~1\Wise Installation Wizard
======= C: =====
====== C:\Users\els_v_000\AppData\Roaming ======
2014-09-14 18:29:27	--------	d-----w-	C:\Users\els_v_000\AppData\Roaming\PhotoFiltre Studio X
2014-09-14 18:29:20	--------	d-----w-	C:\Users\els_v_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
====== C:\Users\els_v_000 ======
2014-09-25 14:38:49	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\els_v_000\Downloads\RSITx64 (1).exe
2014-09-25 14:38:08	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\els_v_000\Downloads\RSITx64.exe
2014-09-22 13:50:09	E90BF9E1562F40140161573B79CD5720	17292760	----a-w-	C:\Users\els_v_000\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-22 13:42:42	29702C25639B549AC5221E546545D56B	728960	----a-w-	C:\Users\els_v_000\Downloads\SpyHunter-Installer.exe

====== C: exe-files ==
2014-09-23 19:36:15	F9E4B109A9D327D1239E491E29578A2E	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOSQM.EXE
2014-09-23 19:36:14	13ACDC68FAD1BE0E6E44A47E0EB5C475	842440	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DW20.EXE
2014-09-23 19:36:09	69E59604C31620F415708DED300D3D1E	705192	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\DCF\SPREADSHEETCOMPARE.EXE
2014-09-23 19:36:03	1FA58353814828F9B3D31CB01BFFCE6D	81648	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
2014-09-23 19:36:02	167E713975F87CFDC5F05D5ED08FBD85	7651536	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe
2014-09-23 19:35:58	B9E8AE87F0DEDB2E6C164E4BFEA02E7C	39576	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\AppSharingHookController64.exe
2014-09-23 19:35:45	A789DDA5192980D81DBB01D55811DEA9	49848	----a-w-	C:\Program Files\Microsoft Office 15\root\flattener\Flattener.exe
2014-09-23 19:35:39	F79A490D9614CA9B8FC23409AF817EBA	5624016	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe
2014-09-23 19:35:36	4BCE37BACBAB333187BB6E0F0B9F4C43	9597096	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\PDFREFLOW.EXE
2014-09-23 19:35:31	2ECE1C04DD7280A82A0EC1A259016B54	874160	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2014-09-23 19:35:27	AD6502512DAB0512295F9051514343BB	474336	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DWTRIG20.EXE
2014-09-23 19:35:25	30B5F9FB0C35AE6B4A0851D24CE2EE8B	150600	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Source Engine\OSE.EXE
2014-09-23 19:35:24	3C283C1BFA1D88C2D4D52148CE62A7C7	543360	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\EQUATION\EQNEDT32.EXE
2014-09-23 19:34:46	5EFF8107B969FFED8FD43CF784E3041A	1090768	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2014-09-23 19:34:36	D679931089526AF06B9D15A8A44EB53F	228544	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\CLVIEW.EXE
2014-09-23 19:34:36	54571FBCF53B33B8AD89C86FDFDF5CFA	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
2014-09-23 19:34:36	4DEEDF0559E2A5E8A3B32220975A490B	497848	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE
2014-09-23 19:34:36	1B9CE92B611FFB9304405248D541A837	480984	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SELFCERT.EXE
2014-09-23 19:34:35	F5D36DD4F4954883E1C3FF45FD2CA245	21931672	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2014-09-23 19:34:34	E2CD290381C86BE22C0628FBD17FE0C8	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\IEContentService.exe
2014-09-23 19:34:34	BCDBD0DCD1A079CE468DA0E881F3C767	4522688	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\GRAPH.EXE
2014-09-23 19:34:33	FFB06B4DA29F53FC3EBC4375D3E8143E	6484136	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\lynchtmlconv.exe
2014-09-23 19:34:33	8F2576BF4A07EDC6EB475ED0D9AF6A15	569584	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE
2014-09-23 19:34:33	584A238B8BB7FD8AC6C89362941AA514	33440	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\AppSharingHookController.exe
2014-09-23 19:34:33	3174547EDDEC82C303A1BB4D1F47D1D0	1296080	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\OcPubMgr.exe
2014-09-23 19:34:33	2BF5543B4CAE1EF8EA8FAFB81BF7B2E8	665248	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\UcMapi.exe
2014-09-23 19:34:32	98D3A7B6EC8360577B8E5FBD413FA713	153248	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\CNFNOT32.EXE
2014-09-23 19:34:31	4883FFDFC482CE29D50E34750C592C22	528576	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\VPREVIEW.EXE
2014-09-23 19:31:50	8FF1A393FD0CF4E888C4EBC73AF4F252	590536	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\Integrator.exe
2014-09-23 19:31:49	C419E73483ADA429BF4693D77CE49279	145056	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVDllSurrogate64.exe
2014-09-23 19:31:49	B950312617FB5EE9DD30C6A9B3B6EADE	311552	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVLP.exe
2014-09-23 19:31:49	33DFE1A4E0072E6815D653AABC0A8444	124072	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVDllSurrogate32.exe
2014-09-23 19:16:04	4ACD864F48B46E30A15434F5BC69D0A9	18998936	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\lync.exe
2014-09-23 19:15:58	EA57B55845B2BCF7E41886916DCB1704	1783968	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\INFOPATH.EXE
2014-09-23 19:15:58	9FBDB0A7CE69D8B0AAB0A613554F0DF0	8603832	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\GROOVE.EXE
2014-09-23 19:15:40	4E28F3BDCF66DEB0C3E9E2D6A8BBFBEE	18945704	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
2014-09-23 19:15:19	80C830207A104F6C1BDE91D0D86D8685	195240	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
2014-09-23 19:15:15	03DED553CB47ECF6C87A9DF0A17391EA	1762976	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE
2014-09-23 19:15:08	18605ECCA0701DBC114739A8E58E0626	15518888	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSACCESS.EXE
2014-09-23 19:14:13	3B3EBE7EE88DC7C3B35E6672F764EC37	10760352	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSPUB.EXE
2014-09-23 19:14:11	18B22B1B507B4ED6F4A0DBF68198D394	25705120	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE
2014-09-23 19:13:54	1F081FC968D71544B5692178607FD682	991904	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\FIRSTRUN.EXE
2014-09-23 19:13:41	C5BF5684F342C194120B4587E125CC00	205472	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\AppVShNotify.exe
2014-09-23 19:13:41	8D8D475017ACA6960DBC150C1391B7B9	249000	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\mavinject32.exe
2014-09-22 13:49:49	C273B81224D445026E743BCB0C1B3B5B	2096128	----a-w-	C:\Program Files\Windows Journal\Journal.exe
2014-09-22 11:25:09	DDD8FE19F8B571E4E49F21967812E1B5	483328	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-09-22 10:46:32	4471E9E8C84548856668F7EA0692A212	810128	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-09-22 08:35:33	19C9AC67BCB42B7F8F3FE923914713FE	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1407927307-1300775257-3377467435-1003\$IITGUPU.exe
=== C: other files ==
2014-09-22 08:35:33	BA965F46092C77B34CDC08D4925BE825	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1407927307-1300775257-3377467435-1003\$IIC42NK.zip
2014-09-22 08:24:38	2F6283E40E3AB9D3DE63CE1851BDE534	654905975	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1407927307-1300775257-3377467435-1003\$RIC42NK.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1407927307-1300775257-3377467435-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Spotify Web Helper"="C:\Users\els_v_000\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify"="C:\Users\els_v_000\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Spotify Web Helper"="C:\Users\els_v_000\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify"="C:\Users\els_v_000\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp"
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"

==== Startup Folders ======================

2014-03-04 18:40:39	1133	----a-w-	C:\Users\els_v_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14/02/2014 15:29]
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [21/09/2012 10:55]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\Dolby Selector" [C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]

==== Chromium Look ======================

Unfriend Notify for Facebook - els_v_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahigpjeolkfgjdaeodlmaceggigbpeoh
Splendid - els_v_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdfkbdkkfmmckaadapdipihjfaacnkgd
Magisto - Magical Video Editor - els_v_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghmngbmfdgknokcefmkbjlcjabdklnlk
Happy Friday - els_v_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lagckjdgadpknikjoegcibbollkafpid
Google Wallet - els_v_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{F155994D-987F-4BD6-A0AE-DBFA24F894AE} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS"

==== Reset Google Chrome ======================

C:\Users\els_v_000\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\els_v_000\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\els_v_000\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\els_v_000\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\els_v_000\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1 folders=0 141 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\els_v_000\AppData\Local\Temp will be emptied at reboot
C:\Users\Steven\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ELS_V_~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 26/09/2014 at 11:02:51,93 ======================