
Zoek.exe v5.0.0.0 Updated 18-01-2015
Tool run by John-Erika on ma 26/01/2015 at 20:42:14,67.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\John\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2015-01-25-220218.log	18588 bytes
C:\zoek-results2015-01-25-231248.log	16998 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_USERS\S-1-5-21-937223703-4056474706-2104640321-1002\Software\Microsoft\Windows\CurrentVersion\Run] 
"SoftonicAssistant"=- 
"SoftonicAssistant"=- 

==== Deleting Files \ Folders ======================

C:\Users\John\AppData\Local\SoftonicAssistant not found
C:\Users\John\AppData\Roaming\pdfforge deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-01-26 00:15:49	7826082B93262AB6460E77B91C61EA30	128512	----a-w-	C:\Windows\splwow64.exe
====== C:\Users\John\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-01-26 00:16:14	8091A1E1F4205EED9C17D17DAB055C81	124928	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-01-26 00:16:14	699B5B6ACA78B2380F33478EE8CE4287	29696	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-01-26 00:16:14	1112C09E14A9824908818944BF026392	81920	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-01-26 00:16:13	7DCD4205BEDA8892BBA5755805E74047	723968	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-01-26 00:16:11	1302567D8675E358C60C59601D0334BF	15158784	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-01-26 00:16:09	FE21D836EE5C90F2EFCBDE2F52E25482	19731824	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-01-26 00:15:54	75914C685DE3539F3A621B27B9D9F919	1127976	----a-w-	C:\Windows\SysWOW64\msctf.dll
2015-01-26 00:15:53	A9957240537BEE1988B03A6B1E135773	885760	----a-w-	C:\Windows\SysWOW64\MFMediaEngine.dll
2015-01-26 00:15:53	54091BD386579A661A012D5E77120B2C	786120	----a-w-	C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-01-26 00:15:52	9B443CC5819EE4A667CAACA10E8BC552	1499384	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-01-26 00:15:52	94743D320BA649382829A5FE8C12DDF1	801584	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2015-01-26 00:15:51	001E1E3546EA80D1A97E7E2BF6F72969	555520	----a-w-	C:\Windows\SysWOW64\WSDApi.dll
2015-01-26 00:15:50	F96956BBED66937350B360497AAA4EE2	507392	----a-w-	C:\Windows\SysWOW64\untfs.dll
2015-01-26 00:15:50	A81265C9CF12A9CA3F436024C1793936	624640	----a-w-	C:\Windows\SysWOW64\rasapi32.dll
2015-01-26 00:15:50	A2CCF16BF1C4F60914EA2DF0BF484A6E	561664	----a-w-	C:\Windows\SysWOW64\nshwfp.dll
2015-01-26 00:15:50	A2530DC44EB8083A63EB83798E7BBB72	162304	----a-w-	C:\Windows\SysWOW64\rascfg.dll
2015-01-26 00:15:50	92937F1A41E6EC1D89BC4D89AC99035B	1142272	----a-w-	C:\Windows\SysWOW64\vssapi.dll
2015-01-26 00:15:50	6F57859B54404D350E525413322F7AA2	169984	----a-w-	C:\Windows\SysWOW64\WinSCard.dll
2015-01-26 00:15:50	205BDB00F4C032AF45A6BFD18EA7886C	498688	----a-w-	C:\Windows\SysWOW64\dnsapi.dll
2015-01-26 00:15:50	05761DCCF02CEE514DC3B8E3A7F38DF5	272384	----a-w-	C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-01-26 00:15:49	F7A9D2E57D357B36C11F1C8269F2B05F	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-01-26 00:15:49	C17F3F1EE09758CF9D234B22B80A1006	25600	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-01-26 00:15:49	B98F9F25D0CCA83E1CA79D1F8BAA1075	465408	----a-w-	C:\Windows\SysWOW64\DevicePairing.dll
2015-01-26 00:15:49	ACC85159376F84F49F8FE6D860E39A4F	8704	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-01-26 00:15:49	887DBBE8CF300A6AE9D0B5D8FF7C0915	143360	----a-w-	C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-01-26 00:15:49	85D880636B8246BD4EF4061F25D84C18	155648	----a-w-	C:\Windows\SysWOW64\QSHVHOST.DLL
2015-01-26 00:15:49	7CC0DD976389300196B2DB4E3F77662C	33280	----a-w-	C:\Windows\SysWOW64\rasmxs.dll
2015-01-26 00:15:49	7AB08744F06F0BDC87DC124F4276A08E	15360	----a-w-	C:\Windows\SysWOW64\eventcls.dll
2015-01-26 00:15:49	75692538076B0402E7236A314A027299	55296	----a-w-	C:\Windows\SysWOW64\vsstrace.dll
2015-01-26 00:15:49	6E9C931731AB16217D3A5472B9B442EB	94208	----a-w-	C:\Windows\SysWOW64\QSVRMGMT.DLL
2015-01-26 00:15:49	3C908C70D5876D6B55D742A665DC88C7	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-01-26 00:15:49	29A35A031EC84D7D9E393A59BEE37888	39424	----a-w-	C:\Windows\SysWOW64\kmddsp.tsp
2015-01-26 00:15:49	210642D9D287AEDED8BB3123580177D4	22528	----a-w-	C:\Windows\SysWOW64\rasser.dll
2015-01-26 00:15:49	20FE9408E23EC6486CD995759B0BE02B	5632	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-01-26 00:15:49	1D4E9DD1CF2B3A280FCF26693FBBD299	4096	----a-w-	C:\Windows\SysWOW64\user.exe
2015-01-26 00:15:49	017E4B714298435849AC02F32A1C6BDA	61440	----a-w-	C:\Windows\SysWOW64\rasdiag.dll
2015-01-26 00:15:36	806D838C066E2FBDB30D0CA22C23314A	790528	----a-w-	C:\Windows\SysWOW64\MrmCoreR.dll
2015-01-25 13:48:37	3B26DCAB842C280FA7271FF2B58D3293	28352	----a-w-	C:\Windows\SysWOW64\aspnet_counters.dll
2015-01-25 13:42:21	DCE9FD22B136C127C85F285E083B928B	65536	----a-w-	C:\Windows\SysWOW64\nlaapi.dll
2015-01-25 13:41:56	D9F17FC61102D89A67A2AA3DD21231F5	33584	----a-w-	C:\Windows\SysWOW64\WerFaultSecure.exe
2015-01-25 13:41:56	BFFD9961B29DAB8084278DB2314D6027	33280	----a-w-	C:\Windows\SysWOW64\werdiagcontroller.dll
2015-01-25 13:41:56	B5867FF96CD0F7712CB4985EAC9F9147	370424	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2015-01-25 13:41:56	7C36A441C73F079781ABA8F3DAEDFB37	136296	----a-w-	C:\Windows\SysWOW64\wermgr.exe
2015-01-25 13:41:56	7B2643AE85322EA168B0E760B73258FF	424544	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2015-01-25 13:41:56	4B07B24705A9225EB565650569BDA26B	344536	----a-w-	C:\Windows\SysWOW64\AUDIOKSE.dll
2015-01-25 13:41:56	1F9C1925A85C6CC592C2FF612A610412	372408	----a-w-	C:\Windows\SysWOW64\Faultrep.dll
2015-01-25 13:41:56	1EB1C1E43C1901865C5AE34A9771C069	448792	----a-w-	C:\Windows\SysWOW64\wer.dll
2015-01-25 13:41:56	1275462A4337DBC5518859316BEF262C	413136	----a-w-	C:\Windows\SysWOW64\WerFault.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-01-26 00:16:16	2F92532B7C872394AA9DEB5CE43B3FDB	18823168	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2015-01-26 00:16:14	F7CEA12E6D22FD6BD303EBF9E08F6AF3	140288	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-01-26 00:16:14	E9E186B76AF8F2B705F003CEFE7A4410	1714176	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-01-26 00:16:14	70AC0FA699C9420CB282CCF72993C2E1	51712	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-01-26 00:16:14	1D5D2F632E6DB073F44DACE1859B9039	407552	----a-w-	C:\Windows\Sysnative\WUSettingsProvider.dll
2015-01-26 00:16:14	17EB5520615744EE8190861C120DFF93	55776	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-01-26 00:16:14	15CCD57C3F2CE870910C2DB4AE418D22	95744	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-01-26 00:16:14	0296B6D45A9D582DF0B6B4E6061CE024	35840	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-01-26 00:16:13	FCF3912833E1B7F4EE61F07E79A7BBAC	3558400	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-01-26 00:16:13	CCE7F88AD038494253B485EC1B144EB3	60416	----a-w-	C:\Windows\Sysnative\wups.dll
2015-01-26 00:16:13	A7D9C835222913507340E379F6C0E798	894976	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-01-26 00:16:12	ABDB7997BC550C3B9A5075F6799A86E3	22290560	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-01-26 00:16:08	69C0304BE8E4C58026A0D162AD04BF10	1154048	----a-w-	C:\Windows\Sysnative\SkyDrive.exe
2015-01-26 00:16:08	2C67494BD2CB71CEE84E3DA4B9DEE979	733696	----a-w-	C:\Windows\Sysnative\SkyDriveTelemetry.dll
2015-01-26 00:16:07	4AABC3D611EEB92FDEDD1C741D63C437	4837376	----a-w-	C:\Windows\Sysnative\SyncEngine.dll
2015-01-26 00:16:07	29A707BE7BCD9A0233BB6435B8E45ACB	7473472	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-01-26 00:15:57	F3D051ABE7D5A29B16BC9F8A7A306341	1390928	----a-w-	C:\Windows\Sysnative\msctf.dll
2015-01-26 00:15:56	57322EBB67A59FB64E228F31A84CA43D	1084416	----a-w-	C:\Windows\Sysnative\IKEEXT.DLL
2015-01-26 00:15:55	E66D01726D7B12302CBF3BBF847C9B05	1027584	----a-w-	C:\Windows\Sysnative\MFMediaEngine.dll
2015-01-26 00:15:54	9925BE7849D66AF04F778B41C9D5C7C1	952896	----a-w-	C:\Windows\Sysnative\mfmp4srcsnk.dll
2015-01-26 00:15:53	A7F1BC7115123D2F17A4251149984080	962216	----a-w-	C:\Windows\Sysnative\mfplat.dll
2015-01-26 00:15:53	3B7F9612439EA47151EC5EAB232C1C3F	1454080	----a-w-	C:\Windows\Sysnative\VSSVC.exe
2015-01-26 00:15:52	D64D99672845B76D67B1C6419A9E39B2	1733952	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-01-26 00:15:51	75B6AD9F2BFDFE7E7C7E38F4FDD2FF1E	658432	----a-w-	C:\Windows\Sysnative\WSDApi.dll
2015-01-26 00:15:51	591FB3A6559C393235F6D8A573E4E1B3	1574400	----a-w-	C:\Windows\Sysnative\vssapi.dll
2015-01-26 00:15:51	2E3976C857D7230EC8D2B2276E688255	827392	----a-w-	C:\Windows\Sysnative\spoolsv.exe
2015-01-26 00:15:51	22A5582ACF0CEE97268D7868C69F35CE	845312	----a-w-	C:\Windows\Sysnative\BFE.DLL
2015-01-26 00:15:51	0B082D6D7A53D91678E7409DD145E89C	657920	----a-w-	C:\Windows\Sysnative\dnsapi.dll
2015-01-26 00:15:50	F0FD2757C9975EC62C3AFF9DE3415830	514048	----a-w-	C:\Windows\Sysnative\DevicePairing.dll
2015-01-26 00:15:50	E9AE4FAE83FB38A2962F9032B24CEB3C	252416	----a-w-	C:\Windows\Sysnative\dnsrslvr.dll
2015-01-26 00:15:50	D06E9DE27BBB41F8AE2A0A2D6FC0F598	422400	----a-w-	C:\Windows\Sysnative\FWPUCLNT.DLL
2015-01-26 00:15:50	9B1133CA54B4A3E852756EA174682EC8	211968	----a-w-	C:\Windows\Sysnative\QSHVHOST.DLL
2015-01-26 00:15:50	605CC8C83761219B45B1EF271B2A9E0C	420864	----a-w-	C:\Windows\Sysnative\vpnike.dll
2015-01-26 00:15:50	57C10952ED978E2BF24D904B291C8C0C	558080	----a-w-	C:\Windows\Sysnative\untfs.dll
2015-01-26 00:15:50	3F0D403D47A27134F490B0951826FC37	242176	----a-w-	C:\Windows\Sysnative\WinSCard.dll
2015-01-26 00:15:50	2DA3DF504868C941D7EFAE6099B73A65	309760	----a-w-	C:\Windows\Sysnative\WSDMon.dll
2015-01-26 00:15:50	0416FE95E0DC01042B46D9F6B1A1EE61	702464	----a-w-	C:\Windows\Sysnative\rasapi32.dll
2015-01-26 00:15:50	03880AB54F6C9A449B9F8AC8B21472AA	713216	----a-w-	C:\Windows\Sysnative\nshwfp.dll
2015-01-26 00:15:49	E8F017472DAB8350583526184F8FE478	166912	----a-w-	C:\Windows\Sysnative\AppxAllUserStore.dll
2015-01-26 00:15:49	D64719E25966885AA991513A66A1A20F	16896	----a-w-	C:\Windows\Sysnative\eventcls.dll
2015-01-26 00:15:49	CCB7FDAA07F104128D5332CD6EF04D97	48128	----a-w-	C:\Windows\Sysnative\kmddsp.tsp
2015-01-26 00:15:49	BC9E947C4B1E166CE2237871CAA4BDC0	16896	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-01-26 00:15:49	A5F199F33C2A919AE9A15997FA7A07FD	77824	----a-w-	C:\Windows\Sysnative\rasdiag.dll
2015-01-26 00:15:49	9FAF67CE7452215ACEDDB517A663454F	43008	----a-w-	C:\Windows\Sysnative\rasmxs.dll
2015-01-26 00:15:49	9766BC2BC08F4ABEA83908B11C154529	182784	----a-w-	C:\Windows\Sysnative\rascfg.dll
2015-01-26 00:15:49	63274242700279852B5CFFE4E2E0C6D1	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-01-26 00:15:49	57D55B8D3387C51758C785C425922C0E	285184	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-01-26 00:15:49	4A112AD7D9C7289FE9945D05E97019D0	17408	----a-w-	C:\Windows\Sysnative\wuaext.dll
2015-01-26 00:15:49	3C4FF4AD2F023865F63017F0E6A9C649	30208	----a-w-	C:\Windows\Sysnative\rasser.dll
2015-01-26 00:15:49	35375E7F42B28163E689B1CF84243DA2	390841	----a-w-	C:\Windows\Sysnative\ApnDatabase.xml
2015-01-26 00:15:49	25AE2DD8E6F6BBD922C5F6971F124BBD	74752	----a-w-	C:\Windows\Sysnative\vsstrace.dll
2015-01-26 00:15:49	0B07D6E59605DB58B780655192D7387C	128000	----a-w-	C:\Windows\Sysnative\QSVRMGMT.DLL
2015-01-26 00:15:35	E36BF37396A26C40E40DFF65F4CD4568	463872	----a-w-	C:\Windows\Sysnative\SystemSettings.Handlers.dll
2015-01-26 00:15:35	DD6861B05CF8BF95A458D3D808AD0693	2171904	----a-w-	C:\Windows\Sysnative\SystemSettingsAdminFlowUI.dll
2015-01-26 00:15:35	B5D6CFC7CD3FA63070286A4FC594B9A1	1091072	----a-w-	C:\Windows\Sysnative\MrmCoreR.dll
2015-01-26 00:15:35	A709D50BD3125B53283220BA44B78690	116736	----a-w-	C:\Windows\Sysnative\SystemSettingsDatabase.dll
2015-01-26 00:15:35	9E61E1B68E7004D126C6DB297EC39293	2819584	----a-w-	C:\Windows\Sysnative\SettingsHandlers.dll
2015-01-26 00:15:35	947C7EDC9BB17733CCC530489B6A2FFA	273240	----a-w-	C:\Windows\Sysnative\SystemSettingsAdminFlows.exe
2015-01-26 00:15:35	64EEDEF2642AD68A3F3791D7346E8FEC	672984	----a-w-	C:\Windows\Sysnative\MDMAgent.exe
2015-01-25 13:48:40	9BC00C5608BF75BEAE893814A3AEC2AD	29888	----a-w-	C:\Windows\Sysnative\aspnet_counters.dll
2015-01-25 13:42:45	19424364D8C03B990C4281BE53963FD0	225280	----a-w-	C:\Windows\Sysnative\profsvc.dll
2015-01-25 13:42:37	29A888F3136B2643E22113B5422B46F9	87040	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2015-01-25 13:42:21	FE11972797DED38CA55E88BD3579F6A2	360448	----a-w-	C:\Windows\Sysnative\ncsi.dll
2015-01-25 13:42:21	E94EB2A95D7D016E119C4D6868788831	391680	----a-w-	C:\Windows\Sysnative\nlasvc.dll
2015-01-25 13:42:21	6319232C1CE39AC35316CF51910EEEB5	86016	----a-w-	C:\Windows\Sysnative\nlaapi.dll
2015-01-25 13:41:56	E24D3259769A0218FE19BB306821C2E5	394120	----a-w-	C:\Windows\Sysnative\AUDIOKSE.dll
2015-01-25 13:41:56	D1E3B8D9130C70F6A3D4FDB52373FF34	37888	----a-w-	C:\Windows\Sysnative\werdiagcontroller.dll
2015-01-25 13:41:56	A41B72F81B389786805CC4D5767B5FBC	531616	----a-w-	C:\Windows\Sysnative\ci.dll
2015-01-25 13:41:56	9404704666256045F5BA9B290953B4D0	38264	----a-w-	C:\Windows\Sysnative\WerFaultSecure.exe
2015-01-25 13:41:56	8EBC741DDE9409038262E2F317ED7CCE	535640	----a-w-	C:\Windows\Sysnative\wer.dll
2015-01-25 13:41:56	8779FDAE68BC948B0FE152E758CC8DA7	229888	----a-w-	C:\Windows\Sysnative\AudioEndpointBuilder.dll
2015-01-25 13:41:56	770BAA636F3B61DA7E414421444F84FD	272248	----a-w-	C:\Windows\Sysnative\audiodg.exe
2015-01-25 13:41:56	6F237EE5DDA34EAF3D9C79D4A283E250	482872	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2015-01-25 13:41:56	6DCD12586353DC6307AC781045CA13A4	465320	----a-w-	C:\Windows\Sysnative\WerFault.exe
2015-01-25 13:41:56	61EA45A645854FE81D8A924E2D93DFFE	911360	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2015-01-25 13:41:56	428F083690D7AAA012338FD5A0663EE3	500016	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2015-01-25 13:41:56	41C501FD9D42F3F04A8532C73E09F356	108944	----a-w-	C:\Windows\Sysnative\EncDump.dll
2015-01-25 13:41:56	2C354FA91EF605007FD11BB89EED2266	413248	----a-w-	C:\Windows\Sysnative\Faultrep.dll
2015-01-25 13:41:56	0BCDEB035B9346D3C3C6C8BB1AA7F38C	139984	----a-w-	C:\Windows\Sysnative\wermgr.exe
2015-01-24 01:20:52	DE57FFEC9DFAD3927368C608C800FBB7	13462	----a-w-	C:\Windows\Sysnative\.crusader
====== C:\Windows\Sysnative\drivers =====
2015-01-26 00:16:01	3C2DF97A21A9BBE6355B0A51F288EFFF	2485056	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2015-01-26 00:15:50	F6ECFD6128A16A4851CFE98D4E01B011	551232	----a-w-	C:\Windows\Sysnative\drivers\vhdmp.sys
2015-01-26 00:15:50	7EC9376D245D734791AD46738712E7D8	473408	----a-w-	C:\Windows\Sysnative\drivers\netio.sys
2015-01-26 00:15:49	ED54A75050211DC77F9B98C41E026858	86336	----a-w-	C:\Windows\Sysnative\drivers\pdc.sys
2015-01-26 00:15:49	DC64B02CD5E21D16215AC20D393D5CE4	153920	----a-w-	C:\Windows\Sysnative\drivers\dumpsd.sys
2015-01-26 00:15:49	DC1D9F692C2AD84C214584C28501C1F7	24576	----a-w-	C:\Windows\Sysnative\drivers\ndistapi.sys
2015-01-26 00:15:49	B41F3E5780D97CFD44A717153AD9CF2C	80896	----a-w-	C:\Windows\Sysnative\drivers\wanarp.sys
2015-01-26 00:15:49	AD7F69237480F6CB6294EFD9EE4CD04C	428864	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2015-01-26 00:15:49	8CD840A062F6BDF41DDE3ACB96164B72	32256	----a-w-	C:\Windows\Sysnative\drivers\kbdhid.sys
2015-01-26 00:15:49	7AA01AB1C110916825E6E1389F1B9AF2	39744	----a-w-	C:\Windows\Sysnative\drivers\intelpep.sys
2015-01-26 00:15:49	715ABA3DD164D06457A2A3C92F6EA9D5	136512	----a-w-	C:\Windows\Sysnative\drivers\wfplwfs.sys
2015-01-26 00:15:49	5FCBAB60598AE119E02B4C27DE6B99EA	30208	----a-w-	C:\Windows\Sysnative\drivers\mouhid.sys
2015-01-26 00:15:49	5917AFE4A3F695A54B99C1849C8207FE	59712	----a-w-	C:\Windows\Sysnative\drivers\kbdclass.sys
2015-01-26 00:15:49	49EE0AE9E5B64FFBBD06D55C4984B598	108544	----a-w-	C:\Windows\Sysnative\drivers\i8042prt.sys
2015-01-26 00:15:49	3EE5097945A7F680E320953271EB2D4F	96768	----a-w-	C:\Windows\Sysnative\drivers\agilevpn.sys
2015-01-26 00:15:49	389C998C64319CD97625B0550E52ECFA	58176	----a-w-	C:\Windows\Sysnative\drivers\dam.sys
2015-01-26 00:15:49	27FF998504DEF8D29A771FBB41707C5E	238912	----a-w-	C:\Windows\Sysnative\drivers\sdbus.sys
2015-01-26 00:15:49	1BD3022FD6E450B00DE560265638FD2A	112640	----a-w-	C:\Windows\Sysnative\drivers\rasl2tp.sys
2015-01-26 00:15:49	148195AE95D9BC7375A08846439FDAC1	26112	----a-w-	C:\Windows\Sysnative\drivers\sermouse.sys
2015-01-26 00:15:49	0BBE2FA30BAD58C9ADC01E4F84A3D2A1	72192	----a-w-	C:\Windows\Sysnative\drivers\ndproxy.sys
2015-01-26 00:15:49	08374E4E5B8914DE6067CBA99F61E930	51008	----a-w-	C:\Windows\Sysnative\drivers\mouclass.sys
2015-01-25 13:42:37	F0CB6DB513CAC393D04A0FCE0A59E1BF	75776	----a-w-	C:\Windows\Sysnative\drivers\ahcache.sys
2015-01-25 13:42:22	DB32958F0E704EFBF7F15161A569E39F	140800	----a-w-	C:\Windows\Sysnative\drivers\mrxdav.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-01-25 12:12:59	--------	d-----w-	C:\Program Files\trend micro
2015-01-24 00:49:06	--------	d-----w-	C:\Program Files\HitmanPro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\John\AppData\Roaming ======
2015-01-25 23:10:20	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-01-25 23:10:19	--------	d-----w-	C:\Users\Larissa\AppData\Local\Temp
2015-01-25 23:10:19	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-01-25 23:10:19	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-01-25 23:10:18	--------	d-----w-	C:\Users\John\AppData\Local\Temp
2015-01-25 23:10:18	--------	d-----w-	C:\Users\ADMINI~1\AppData\Local\Temp
2015-01-23 20:07:12	407AAB8C27CF7081EECE071C90A65B83	17	----a-w-	C:\Users\John\AppData\Local\resmon.resmoncfg
2015-01-11 23:17:19	--------	d-----w-	C:\Users\John\AppData\Locallow\Oracle
====== C:\Users\John ======
2015-01-25 13:48:29	2145AEDEE1B63994623CD3282A9FC8A8	960688	----a-w-	C:\Users\John\Downloads\uninstall_flash_player.exe
2015-01-25 12:12:22	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\John\Desktop\RSITx64.exe
2015-01-24 00:49:06	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-01-24 00:47:47	--------	d-----w-	C:\ProgramData\HitmanPro
2015-01-24 00:47:40	DC56182AF1F306F6F2A641EAA0055015	11225840	----a-w-	C:\Users\John\Downloads\HitmanPro_x64.exe

====== C: exe-files ==
2015-01-26 00:15:50	C8B6FD0CE93013F606F2AA4BABF763B8	372408	----a-w-	C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
2015-01-26 00:15:49	EFC236C98B6FC47C05FC3F817CED574D	21696	----a-w-	C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
2015-01-26 00:15:49	7826082B93262AB6460E77B91C61EA30	128512	----a-w-	C:\Windows\splwow64.exe
2015-01-26 00:15:35	E022185998E5BC0F2EBD8F5875747D3E	87296	----a-w-	C:\Windows\ImmersiveControlPanel\SystemSettings.exe
2015-01-25 13:48:29	2145AEDEE1B63994623CD3282A9FC8A8	960688	----a-w-	C:\Users\John\Downloads\uninstall_flash_player.exe
2015-01-25 12:13:00	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\John-Erika.exe
2015-01-25 12:12:22	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\John\Desktop\RSITx64.exe
2015-01-24 00:49:06	DC56182AF1F306F6F2A641EAA0055015	11225840	----a-w-	C:\Program Files\HitmanPro\HitmanPro.exe
2015-01-24 00:47:40	DC56182AF1F306F6F2A641EAA0055015	11225840	----a-w-	C:\Users\John\Downloads\HitmanPro_x64.exe
2015-01-23 15:02:33	45EC108C8F3467DEB9E1348B1ACC181D	359471688	----a-w-	C:\ProgramData\NVIDIA Corporation\NetService\66da8fbe-9114-4422-bd8a-c8f30448548d\347.25-notebook-win8-win7-64bit-international-whql-g.exe
2015-01-23 15:02:09	8EBBAB4AE945947E6D4D37743F875025	432456	----a-w-	C:\Users\Larissa\AppData\Local\NVIDIA\NvBackend\Packages\00006b79\CoProc update.19241512.exe
2015-01-23 15:02:09	59060D97C10590698ADB544D79D44A7D	4852104	----a-w-	C:\Users\Larissa\AppData\Local\NVIDIA\NvBackend\Packages\00006d27\DAO.19257756.exe
2015-01-23 00:08:42	D94C1113F8E87F877B398185AAE53559	34975816	----a-w-	C:\ProgramData\NVIDIA Corporation\NetService\0ce1481e-bec3-4dce-b4c6-a7937673d6d6\GeForce_Experience_Update_v2.2.2.0.exe
2015-01-23 00:08:23	59060D97C10590698ADB544D79D44A7D	4852104	----a-w-	C:\Users\John\AppData\Local\NVIDIA\NvBackend\Packages\00006d27\DAO.19257756.exe
2015-01-19 22:47:34	8EBBAB4AE945947E6D4D37743F875025	432456	----a-w-	C:\Users\John\AppData\Local\NVIDIA\NvBackend\Packages\00006b79\CoProc update.19241512.exe
=== C: other files ==
2015-01-26 00:16:01	3C2DF97A21A9BBE6355B0A51F288EFFF	2485056	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2015-01-26 00:15:50	F6ECFD6128A16A4851CFE98D4E01B011	551232	----a-w-	C:\Windows\System32\drivers\vhdmp.sys
2015-01-26 00:15:50	7EC9376D245D734791AD46738712E7D8	473408	----a-w-	C:\Windows\System32\drivers\netio.sys
2015-01-26 00:15:49	ED54A75050211DC77F9B98C41E026858	86336	----a-w-	C:\Windows\System32\drivers\pdc.sys
2015-01-26 00:15:49	DC64B02CD5E21D16215AC20D393D5CE4	153920	----a-w-	C:\Windows\System32\drivers\dumpsd.sys
2015-01-26 00:15:49	DC1D9F692C2AD84C214584C28501C1F7	24576	----a-w-	C:\Windows\System32\drivers\ndistapi.sys
2015-01-26 00:15:49	B41F3E5780D97CFD44A717153AD9CF2C	80896	----a-w-	C:\Windows\System32\drivers\wanarp.sys
2015-01-26 00:15:49	AD7F69237480F6CB6294EFD9EE4CD04C	428864	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-26 00:15:49	8CD840A062F6BDF41DDE3ACB96164B72	32256	----a-w-	C:\Windows\System32\drivers\kbdhid.sys
2015-01-26 00:15:49	7AA01AB1C110916825E6E1389F1B9AF2	39744	----a-w-	C:\Windows\System32\drivers\intelpep.sys
2015-01-26 00:15:49	715ABA3DD164D06457A2A3C92F6EA9D5	136512	----a-w-	C:\Windows\System32\drivers\wfplwfs.sys
2015-01-26 00:15:49	5FCBAB60598AE119E02B4C27DE6B99EA	30208	----a-w-	C:\Windows\System32\drivers\mouhid.sys
2015-01-26 00:15:49	5917AFE4A3F695A54B99C1849C8207FE	59712	----a-w-	C:\Windows\System32\drivers\kbdclass.sys
2015-01-26 00:15:49	49EE0AE9E5B64FFBBD06D55C4984B598	108544	----a-w-	C:\Windows\System32\drivers\i8042prt.sys
2015-01-26 00:15:49	3EE5097945A7F680E320953271EB2D4F	96768	----a-w-	C:\Windows\System32\drivers\agilevpn.sys
2015-01-26 00:15:49	389C998C64319CD97625B0550E52ECFA	58176	----a-w-	C:\Windows\System32\drivers\dam.sys
2015-01-26 00:15:49	27FF998504DEF8D29A771FBB41707C5E	238912	----a-w-	C:\Windows\System32\drivers\sdbus.sys
2015-01-26 00:15:49	1BD3022FD6E450B00DE560265638FD2A	112640	----a-w-	C:\Windows\System32\drivers\rasl2tp.sys
2015-01-26 00:15:49	148195AE95D9BC7375A08846439FDAC1	26112	----a-w-	C:\Windows\System32\drivers\sermouse.sys
2015-01-26 00:15:49	0BBE2FA30BAD58C9ADC01E4F84A3D2A1	72192	----a-w-	C:\Windows\System32\drivers\ndproxy.sys
2015-01-26 00:15:49	08374E4E5B8914DE6067CBA99F61E930	51008	----a-w-	C:\Windows\System32\drivers\mouclass.sys
2015-01-25 13:42:37	F0CB6DB513CAC393D04A0FCE0A59E1BF	75776	----a-w-	C:\Windows\System32\drivers\ahcache.sys
2015-01-25 13:42:22	DB32958F0E704EFBF7F15161A569E39F	140800	----a-w-	C:\Windows\System32\drivers\mrxdav.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-937223703-4056474706-2104640321-1002\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"CycloAgent"="C:\Program Files (x86)\CycloAgent\CycloAgent.exe"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TSVU"="c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
"mcpltui_exe"="C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe /platui /runkey"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"CycloAgent"="C:\Program Files (x86)\CycloAgent\CycloAgent.exe"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"TecoResident"="C:\Program Files\TOSHIBA\Teco\TecoResident.exe"
"TSSSrv"="C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "
"TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe "
"TCrdMain"="C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"

==== Startup Folders ======================

2014-05-30 22:24:06	1337	----a-w-	C:\Users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk
2014-09-22 20:08:05	2070	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PC Auto Backup.lnk

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\Windows\SysNative\tasks\Maxthon Update" ["C:\Program Files (x86)\Maxthon\Bin\mxup.exe"]
"C:\Windows\SysNative\tasks\Resolution+ Setting Task" [C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe]
"C:\Windows\SysNative\tasks\UMonitor Task" [C:\Windows\SysWOW64\UMonit64.exe]
"C:\Windows\SysNative\tasks\{59FDE22B-48D6-4841-A657-7C76C3844CC5}" ["c:\program files (x86)\maxthon\bin\maxthon.exe"]
"C:\Windows\SysNative\tasks\TOSHIBA\CommonNotifier" [C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe]
"C:\Windows\SysNative\tasks\TOSHIBA\Service Station" ["C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\John\AppData\Roaming\TomTom\HOME\Profiles\lo5lhdkd.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.9.510.1234792@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

==== Firefox Plugins ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\John\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\John\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\Larissa\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Larissa\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\John\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\John\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Users\Larissa\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Larissa\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=37 folders=42 88057334 bytes)

==== Empty Temp Folders ======================

C:\Users\ADMINI~1\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\John\AppData\Local\Temp will be emptied at reboot
C:\Users\Larissa\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\John\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on di 27/01/2015 at  0:51:23,70 ======================