
Zoek.exe v5.0.0.0 Updated 10-February-2015
Tool run by Sharon on wo 11/02/2015 at 13:24:57,09.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Sharon\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

11/02/2015 13:27:28 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Fotoservice deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\Easybits GO deleted successfully
C:\PROGRA~3\IDM deleted successfully
C:\Users\Sharon\AppData\Roaming\Bandoo deleted successfully
C:\Users\Sharon\AppData\Roaming\DSite deleted successfully
C:\Users\Sharon\AppData\Roaming\GameXN deleted successfully
C:\Users\Sharon\AppData\Roaming\hpqLog deleted successfully
C:\Users\Sharon\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\Sharon\AppData\Roaming\QuickScan deleted successfully
C:\Users\Sharon\AppData\Roaming\Systweak deleted successfully
C:\Users\Sharon\AppData\Roaming\WinRAR deleted successfully
C:\Users\Sharon\AppData\Roaming\YourFileDownloader deleted successfully
C:\Users\Sharon\AppData\Local\Axialis deleted successfully
C:\Users\Sharon\AppData\Local\HP MediaSmart Video deleted successfully
C:\Users\Sharon\AppData\Local\node-webkit deleted successfully
C:\Users\Sharon\AppData\Local\OpenCandy deleted successfully
C:\Users\Sharon\AppData\Local\PackageAware deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0A37A52B-BE19-4EF6-9C65-9BC076B98076} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DA98EAC1-BB53-404E-9BD2-05F8BCDA8AAC} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"=- 
"JumiController"=- 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\Windows\AutoKMS deleted
C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 deleted
C:\Windows\syswow64\appdata deleted
C:\PROGRA~3\Premium deleted
C:\PROGRA~3\StarApp deleted
C:\Users\Sharon\AppData\LocalLow\Conduit deleted
C:\Users\Sharon\AppData\LocalLow\ConduitEngine deleted
C:\PROGRA~2\GUTCEF1.tmp deleted
C:\PROGRA~2\GUMCEF0.tmp deleted
C:\PROGRA~2\NewFreeScreensavers deleted
C:\PROGRA~2\Photo Notifier and Animation Creator deleted
C:\PROGRA~2\FoxTabPDFConverter deleted
C:\PROGRA~2\Facecons deleted
C:\PROGRA~2\1ClickDownload deleted
C:\PROGRA~2\Internet Download Manager deleted
C:\PROGRA~2\MyPC Backup deleted
C:\PROGRA~2\Conduit deleted
C:\PROGRA~2\ConduitEngine deleted
C:\extensions deleted
C:\prefs.js deleted
C:\user.js deleted
C:\Users\Sharon\AppData\Roaming\MAGIX deleted
C:\Users\Sharon\AppData\Roaming\RHEng deleted
C:\Users\Sharon\AppData\Roaming\GoforFiles deleted
C:\Users\Sharon\AppData\Roaming\DVDVideoSoftIEHelpers deleted
C:\Users\Sharon\AppData\Roaming\Babylon deleted
C:\Users\Sharon\AppData\Roaming\iWin deleted
C:\PROGRA~3\saffe saove deleted
C:\PROGRA~3\SearCCh--NewTaeb deleted
C:\PROGRA~3\SoftSafe deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\Package Cache deleted
C:\PROGRA~3\Trymedia deleted
C:\Users\Sharon\AppData\Local\CRE deleted
C:\Users\Sharon\AppData\Local\BearShare deleted
C:\Users\Sharon\AppData\Local\Babylon deleted
C:\Users\Sharon\AppData\Local\Conduit deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saffe saove deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SearCCh--NewTaeb deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Photo Pro X3 deleted
C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\windows\SysNative\Tasks\DSite deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (1).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (2).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (3).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (4).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (5).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter (6).exe deleted
C:\Users\Sharon\Downloads\FreeYouTubeToMP3Converter.exe deleted
C:\Users\Sharon\AppData\LocalLow\saffe saove deleted
C:\Users\Sharon\AppData\LocalLow\SearCCh--NewTaeb deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\Windows\wininit.ini deleted
C:\windows\SysNative\Tasks\GoforFilesUpdate deleted
"C:\Windows\tasks\AutoKMS.job" deleted
"C:\Users\Sharon\AppData\Local\{E1BB5081-7B09-4D12-BC71-0E537BBA4594}" deleted
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\DVSShellContextMenuExtension64.dll" deleted
"C:\Program Files (x86)\Common Files\DVDVideoSoft" not deleted
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Sharon\AppData\Local\Temp ====
====== Java Cache =====
2015-02-11 12:52:55	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Sharon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-72ea3189
2015-02-11 12:49:46	2F12757777FC8D7297367A0825FD7A98	554	----a-w-	C:\Users\Sharon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\54281e60-7b874f70
====== C:\Windows\SysWOW64 =====
2015-02-11 12:48:06	13D186FA6F19823C598335443CE233BC	98216	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-11 12:33:16	F3F6BE20A03215209B61CA85B4A83E1F	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 12:33:16	B63A6FF4339C9B701A93D3973C7FB6D2	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-02-11 12:33:16	A12D64A94EC57079C2D96A741CB4FF53	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-02-11 12:33:16	7D94A9161E8432B8521E60E064B1D737	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 12:33:16	7C893DBA0A58855A99DA68B751FD223B	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-02-11 12:33:16	3BB446DE24501FEA5FDB9A9DB23A22AE	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 12:33:15	C256EFD3655EC782F8094E96094E8F9E	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-02-11 12:33:02	E1A4D24281526DDFEA418F729CDA9DC6	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-02-11 12:33:02	D87759889FE7BCAE4461439139E62BAA	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 12:33:02	B0F7BD3492C2D60A70F15AEADCE1E2A6	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 12:33:02	3B9EF1B8E154D202D32A7765E2F33554	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 12:33:01	94B1F7CE1AAA5542923E0AD63C4D0050	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 12:33:01	8FBC9680719ACDA9351B67D906C682F4	688640	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 12:33:01	8E8137569741D3693F88DDF94CC38C20	1307136	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-02-11 12:33:01	74EA6C792F57E453261DA210C1BCEB53	342712	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 12:33:01	6FA05244FD2E40A3DC08337146B3C425	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 12:33:01	61C74D794C14E9FC94D93F5F0F72A3F9	19740160	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-02-11 12:33:00	FD6AF61AF029B9BC2CF4EFF57CDD5821	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 12:33:00	5FB7E9786F70F4072663746072C9E6CE	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-02-11 12:33:00	47B26D89EF9973E2DD586D0C827F61A9	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 12:32:59	EF05E63ACC834470A07A2E73D519B5FA	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 12:32:59	AD3F5926EC2C1F21FB45D1CDED6E2A47	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 12:32:59	9A91F9B5035F54C2D0BA92CF9B16EE34	2277888	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-02-11 12:32:59	994E7459260D315573DD72783D1B78A7	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-02-11 12:32:59	78A1A938D51D4F83A772123B93EE1612	12829184	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-02-11 12:32:59	55A84600EAAF8F1D3F0E6206E2EF6D48	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 12:32:59	28B2D3CB1B4306D476200D80AF7D87AD	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 12:32:59	2575170E9ACE5924716D34E7761B1F11	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-02-11 12:32:57	180C599C9D5E15475EFEF3994067D739	4300800	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-02-11 12:32:57	180168942E4A133C55E7BBF17DA3C142	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 12:32:56	F285D499EC42969D963CA49EADA63218	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-02-11 12:32:56	9DEE691C8FDBC2DE6957F1AE873C78FC	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-02-11 12:32:56	6F10743069DFFC56DEE079204960844E	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-02-11 12:32:36	793F6658ED65839FDB2957A4884CB63C	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 12:32:27	F312300F29620F74E3AF3AF018151935	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-02-11 12:32:27	F2A743912D404A8866362836CFE7A648	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-02-11 12:32:27	F29BC66CE4A5507A49FB20744A056E61	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-02-11 12:32:27	4E6934926B4C923CC0FF61C6D77814EF	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-02-11 12:32:27	43791D2F736C4E9BE9FE0B33A1E92A5D	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-02-11 12:32:27	36F152AE2F64B12771A44EA77124332B	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-02-11 12:32:17	0C96A745A76C7DD75C5503E86D968E49	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-02-11 12:32:10	A208DAC2932649CFF82A6A684D8BB1F6	571904	----a-w-	C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 12:31:50	B3BC38B886CA53C92D52EF724A9F0D45	308224	----a-w-	C:\Windows\SysWOW64\scesrv.dll
2015-02-11 12:31:41	6D227897A458DA8A9518DACDC88F1947	3917760	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 12:31:41	62C93E47A424A8EC79F3CF1719A2DCC6	3972544	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 12:31:38	97B7E7E3356F7F7FE5B948AB3ED707DD	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-02-11 12:18:48	DDE994E9159497D0D5AB2CDF66D1EAD6	76800	----a-w-	C:\Windows\SysWOW64\wdi.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-02-11 12:38:47	BD6CF5354EAE95D6C2807E6DAE79D3FF	111016	----a-w-	C:\Windows\Sysnative\WindowsAccessBridge-64.dll
2015-02-11 12:33:16	DDACB408E607655EC64269706BFD504C	341504	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-02-11 12:33:16	C1F9E139B8AE80803CE44DC0377CA342	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-02-11 12:33:16	A46A6C5AD462071B718EBF3C9E117849	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-02-11 12:33:16	8F33880F1863BE3925D3A0121FAC5E8F	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-02-11 12:33:16	6A06BCED1DF1CFE8A32E7D10ABAA7188	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-02-11 12:33:16	5350A548BEC957978B7014CDFF091542	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-02-11 12:33:15	22E30E28865C32C3CF4F4E0E7E277FDC	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-02-11 12:33:02	71EBA93C5322A52A7E177E03E1AE7161	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-02-11 12:33:02	01A314677CC80041A63ED109B56A76B0	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-02-11 12:33:01	F42B1DAAB5B7621341243878180446CD	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-02-11 12:33:01	92BD5080B81EDFA32B0CEE8B923D62C3	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-02-11 12:33:01	8076BB31004C1D763D5D4AEF9F0BDD4B	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-02-11 12:33:01	68A2B96528F58D995882FBEB4D9658A5	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-02-11 12:33:00	1D824B5A200C284E1A546C2C50704471	389808	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-02-11 12:32:59	DF39C79DFC1C063493D2DB9B3237B29F	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-02-11 12:32:59	CB2528D522FF1F5A7BF9B27D2FB250FF	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-02-11 12:32:59	97F037E09A706ACDA681D740DEE16AE4	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-02-11 12:32:59	76DB5845E168173BBA2D3CCC4B363E42	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-02-11 12:32:59	2E4F8664B54426C2F5523665B279E984	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-02-11 12:32:58	7A388AFC6885D22F4D988EE9B8D1291A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-02-11 12:32:58	512DD29CE6CDCB22EA615286DA7022E7	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-02-11 12:32:57	A7A3775B0014B165D75A00A1F632E4B5	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-02-11 12:32:57	15842FB41A3BF2A2F5071518B38C957A	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-02-11 12:32:56	A7814E76ED4ACE0694A83F6E4B6A7272	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-02-11 12:32:56	6916B0663357B183B120D1A4DD7DDAB0	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-02-11 12:32:55	D7922F3AC6BF1EA77240E0061D648174	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-02-11 12:32:50	E0F76B5B904E4F448641B2B506496351	14401024	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-02-11 12:32:50	CA3F410410DE9E5234217D33B9628224	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-02-11 12:32:49	F4B79B54D173FF0E6748F8C93E16CF4C	6041088	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-02-11 12:32:49	E6ABEE081FF46AD60FDC5D90F3824768	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-02-11 12:32:49	BF57C911895454A8874E9DFA5716C624	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-02-11 12:32:49	A04F0C4A0B80C92F92E854E7157D6466	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-02-11 12:32:49	4CE68D160D80AF6C9FDB5C60BA087DA5	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-02-11 12:32:48	9DFE41A69DF70AAB75CB5BA8C1109EA2	2358272	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-02-11 12:32:48	47162151E35EA0B7152B7C841FA21FDB	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-02-11 12:32:48	4701399F7BA312353ADE8225F6EB512B	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-02-11 12:32:47	CD726C899BD9A398E8420564A957320B	25056256	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-02-11 12:32:37	4861B9AF67E1B0154A55FDE4B3A61EB9	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2015-02-11 12:32:29	C97662B6752BFEF07C565D96E8ECC98F	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-02-11 12:32:28	6EAD88B508E4785F4AFDFD24F76E8839	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-02-11 12:32:27	E0105F3B5B1C4B0F5B3D788A13504EC6	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-02-11 12:32:27	BE4927689BA39E18A104986CB1363C97	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-02-11 12:32:27	94C6BCF9212E20866AC1558A32E9F228	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-02-11 12:32:27	857CED230A6B87E84FCA04B472A3CB1A	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-02-11 12:32:27	51BB93FF96AE3882B4AF7CA11000D3A3	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-02-11 12:32:27	2EE57F4491A402C04FCAA7D012493884	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-02-11 12:32:27	1798826FE9FFEA9E93E74A5868559D4A	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-02-11 12:32:18	E5AF792AB409F600D416CB257C84305D	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-02-11 12:32:10	AE4FEDD98096C09A8A86E021FC5E9D67	861696	----a-w-	C:\Windows\Sysnative\oleaut32.dll
2015-02-11 12:31:51	FE72C89986E1BA32AD926A820491F23F	406528	----a-w-	C:\Windows\Sysnative\scesrv.dll
2015-02-11 12:31:43	9819614CA9EFB5A96493B379170B9D89	5554112	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-02-11 12:31:38	F7A3018D8F1825427BC11E912D5287CD	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-02-11 12:31:38	D6CDCAF84810641D1D2B455750825ACA	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-02-11 12:31:38	0147AA370862201A443752351F135D31	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-02-11 12:31:18	DF07110F77639E73D0537188703F44F6	3201536	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-02-11 12:18:49	D713D6446DDBB474D801F361B4B186EA	950272	----a-w-	C:\Windows\Sysnative\perftrack.dll
2015-02-11 12:18:49	AA7079AD52B8BFBAE94167D54C32F84F	29696	----a-w-	C:\Windows\Sysnative\powertracker.dll
2015-02-11 12:18:48	C6F7473B55510F0B93961DA03D8E3B38	91136	----a-w-	C:\Windows\Sysnative\wdi.dll
====== C:\Windows\Sysnative\drivers =====
2015-02-11 12:32:28	E45CDE1C8340DFEDF1D6724263F39E5B	458824	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2015-02-11 12:32:27	C60C6B9A2E50B0404F6789C62B428C03	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-02-11 12:32:27	78D152A9FD5747FF6AA89C79F0346F62	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-01-18 14:45:37	33F90B202E9DD9B7D489EB59310FDC34	283064	----a-w-	C:\Windows\Sysnative\drivers\dtsoftbus01.sys
2015-01-18 14:30:01	74D30C2EF66C2EB19F17ED5423AA8038	386680	----a-w-	C:\Windows\Sysnative\drivers\sptd.sys
2015-01-13 18:30:13	AE3334958D8F631FF14A0AEB3D7EFB3A	141312	----a-w-	C:\Windows\Sysnative\drivers\mrxdav.sys
====== C:\Windows\Tasks ======
2015-02-11 12:22:03	86C8BB06BA7FFC6C6FA23E97E7036673	3352	----a-w-	C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2333408980-703389946-724349878-1000
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-02-11 12:43:19	--------	d-----w-	C:\Program Files\trend micro
2015-02-04 18:16:15	--------	d-----w-	C:\Program Files\iPod
2015-02-04 18:16:14	--------	d-----w-	C:\Program Files\iTunes
======= C:\PROGRA~2 =====
2015-02-11 12:47:37	--------	d-----w-	C:\PROGRA~2\Java
2015-02-11 12:38:52	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-01-18 15:07:21	--------	d-----w-	C:\PROGRA~2\Microsoft SQL Server
2015-01-18 14:29:16	--------	d-----w-	C:\PROGRA~2\DAEMON Tools Lite
======= C: =====
====== C:\Users\Sharon\AppData\Roaming ======
2015-02-04 18:14:18	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Roaming\Apple Computer
====== C:\Users\Sharon ======
2015-02-11 12:52:46	E6C28B791A2F04B54F83B3AFD0962015	15023516	----a-w-	C:\Users\Sharon\Downloads\winamp5666_full_all_redux.exe
2015-02-11 12:46:26	--------	d-----w-	C:\ProgramData\Sun
2015-02-11 12:46:05	6AF69BF32D84229FF9A8904AB8ED28D7	639400	----a-w-	C:\Users\Sharon\Downloads\chromeinstall-8u31 (3).exe
2015-02-11 12:44:18	6AF69BF32D84229FF9A8904AB8ED28D7	639400	----a-w-	C:\Users\Sharon\Downloads\chromeinstall-8u31 (2).exe
2015-02-11 12:39:44	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Sharon\Downloads\RSITx64.exe
2015-02-11 12:37:35	--------	d-----w-	C:\ProgramData\Oracle
2015-02-11 12:36:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-02-11 12:36:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-11 12:34:40	6AF69BF32D84229FF9A8904AB8ED28D7	639400	----a-w-	C:\Users\Sharon\Downloads\chromeinstall-8u31 (1).exe
2015-02-11 12:34:30	6AF69BF32D84229FF9A8904AB8ED28D7	639400	----a-w-	C:\Users\Sharon\Downloads\chromeinstall-8u31.exe
2015-02-11 12:32:39	B499D326511AAC7EEA2F74D81B72E7F6	178639264	----a-w-	C:\Users\Sharon\Downloads\jdk-8u31-windows-x64.exe
2015-02-11 12:24:50	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Sharon\Downloads\mbam-setup-2.0.4.1028.exe
2015-02-09 17:36:30	F107C93CF5447698BD37C95243A832E8	594424	----a-w-	C:\Users\Sharon\Downloads\KMSPico_10.0.3.exe
2015-02-09 17:34:07	A556A7BEFA54EC26FD845487D4E268EB	594408	----a-w-	C:\Users\Sharon\Downloads\KMSPico.exe
2015-02-04 18:17:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-01-18 15:09:12	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-01-18 15:07:54	--------	d-----w-	C:\ProgramData\regid.1991-06.com.microsoft
2015-01-18 14:30:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-01-14 18:15:16	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud

====== C: exe-files ==
2015-02-11 12:47:46	F9D744CD9BC58F287F8FA59D32508EDD	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\orbd.exe
2015-02-11 12:47:46	F5EA785B2BCC08DC28CBC2D96E05F2C1	68520	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe
2015-02-11 12:47:46	DF1C8EDDAF14D2960A06A9DF7B2D0A89	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\java-rmi.exe
2015-02-11 12:47:46	DBB5C8AE19ACFA2857CFB90C7305AC56	51112	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssvagent.exe
2015-02-11 12:47:46	DA34E76DE9CD93471F24E7BD43139958	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\kinit.exe
2015-02-11 12:47:46	CDB1FE0DCF2ADB755EBF65C8AEBBC871	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\servertool.exe
2015-02-11 12:47:46	B0D46640968F989830413EB88F43E0D0	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\java.exe
2015-02-11 12:47:46	AF82EA1498FEC5C49B8A1AE5AA0A5F6C	77224	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2launcher.exe
2015-02-11 12:47:46	A8884FB8246655C84F110E77DF5E1B4A	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\ktab.exe
2015-02-11 12:47:46	90C02BD6D01BBC1C620323F9E330E89C	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jjs.exe
2015-02-11 12:47:46	8B6DF9CD28359C5E819446FD79CE3948	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmiregistry.exe
2015-02-11 12:47:46	7479DA0BED071427A3F0017AC51CC27B	159656	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\unpack200.exe
2015-02-11 12:47:46	69BD74EE834B5629226BF89468B8020B	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\keytool.exe
2015-02-11 12:47:46	5F7C51E0DCA813D647F14FC12AE675F2	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\policytool.exe
2015-02-11 12:47:46	577F5DCBA4DE4C345631873670F84E79	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\tnameserv.exe
2015-02-11 12:47:46	52C8B9FD016E6317FDB151296FF90877	272296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaws.exe
2015-02-11 12:47:46	3E72E1AB196855916E2065C604674631	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaw.exe
2015-02-11 12:47:46	39685FC75B6FB2144E793595F1AB111D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\pack200.exe
2015-02-11 12:47:46	2F77C9862B1A2401278C4A5B932DA69D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\klist.exe
2015-02-11 12:47:46	0FB2ACAC796B166F6486B593B604A3FF	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmid.exe
2015-02-11 12:47:46	063A1044A451660B159426B9C5E75957	30632	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\bin\jabswitch.exe
2015-02-11 12:43:24	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Sharon.exe
2015-02-11 12:37:49	FA78A9BBAF7352401B7F982464160448	16808	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\rmiregistry.exe
2015-02-11 12:37:49	F37694550A132DB95F52A14D65C3BF7D	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\kinit.exe
2015-02-11 12:37:49	CB836597AE26F0D031CF7A0C934EC218	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\pack200.exe
2015-02-11 12:37:49	C7FDEF85040A4602C3547E4C5B700CF9	15784	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\keytool.exe
2015-02-11 12:37:49	B9BAB51EDBBF27E480A07F904124F810	197544	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\unpack200.exe
2015-02-11 12:37:49	B53F3B97AA13A200F8DB5BFA2684F953	16808	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\servertool.exe
2015-02-11 12:37:49	B4614F21174A2F1DAA5394062885C8E5	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\ktab.exe
2015-02-11 12:37:49	886C21FEA39553EA786355C58379AB75	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\tnameserv.exe
2015-02-11 12:37:49	713DBD861EC396B286A1970A4F0F6951	16808	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\policytool.exe
2015-02-11 12:37:49	5657E104B156F043BC002C3EDC1C79E4	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\orbd.exe
2015-02-11 12:37:49	4AE110AC85558EF04CB3677754A98427	66472	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\ssvagent.exe
2015-02-11 12:37:49	3B65C09A8A823334CE0EB9AA3F9BDFE5	15784	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\rmid.exe
2015-02-11 12:37:49	0F19A5EE1E440C0F05554FA3A48EF000	100264	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\jp2launcher.exe
2015-02-11 12:37:49	06CE06172AA1185E701647429A9C18C9	15784	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\jjs.exe
2015-02-11 12:37:49	03597BDF891C9FDB3A4F1C2DA591A4C4	16296	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\klist.exe
2015-02-11 12:37:48	F951A8D249C943E7ECDF66D2FE16CDCD	191400	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\javaw.exe
2015-02-11 12:37:48	F40410CE27DE0823A93B2BD4BFE4F3F6	319912	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\javaws.exe
2015-02-11 12:37:48	F1D678998EDEAE9DF3300E6521A119F2	77224	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\javacpl.exe
2015-02-11 12:37:48	6E23278A38DCB78C29B19386B1D509DC	34216	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\jabswitch.exe
2015-02-11 12:37:48	12B174AA182C0C98ACAE637EEA9C52A0	190888	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\java.exe
2015-02-11 12:37:48	1125B37F1D6BAF143AF129831B06D1BD	15784	----a-w-	C:\Program Files\Java\jre1.8.0_31\bin\java-rmi.exe
2015-02-11 12:36:13	85D231F805EBF607A302181D4B310380	158600	----a-w-	C:\Program Files\Java\jdk1.8.0_31\lib\visualvm\platform\lib\nbexec.exe
2015-02-11 12:36:13	1440D0458DC074CDFEFEF6749099823B	216968	----a-w-	C:\Program Files\Java\jdk1.8.0_31\lib\visualvm\platform\lib\nbexec64.exe
2015-02-11 12:35:51	D5FA8E44D397EE6287C64EDF46FC8B0A	197512	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\unpack200.exe
2015-02-11 12:35:51	D1A54D502771DB0B2430E20BAFBA1621	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\servertool.exe
2015-02-11 12:35:51	9FAACFFB0A70ABFBE86AFD49B87890F0	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\tnameserv.exe
2015-02-11 12:35:51	921E4A6177CEF3472DCDC2F8B316B179	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\rmiregistry.exe
2015-02-11 12:35:51	80B375FF19BD81207A446FA7BC66DA03	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\policytool.exe
2015-02-11 12:35:51	5DFE0704D3563D91A943C9D1FD079757	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\orbd.exe
2015-02-11 12:35:51	56D4DA7908FBFC633F2F1C323CBC3891	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\rmid.exe
2015-02-11 12:35:51	28D722C096764DE42A13595636B37550	66440	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\ssvagent.exe
2015-02-11 12:35:51	1D5D9C2DB042E0A5E9F6A0484F727BBF	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\pack200.exe
2015-02-11 12:35:50	D8A7441B3DD5D269B3942777FFECFCEC	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\keytool.exe
2015-02-11 12:35:50	C7A068FD569B9525B95245F29041CEC7	100232	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\jp2launcher.exe
2015-02-11 12:35:50	B1CABD28AAEE6AA5E5BACEB2EE5690D3	191368	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\javaw.exe
2015-02-11 12:35:50	7B7DDD4AC1C0144D114B182FC748A8D7	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\kinit.exe
2015-02-11 12:35:50	719130369394993ECB082C661223BEAD	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\ktab.exe
2015-02-11 12:35:50	4EFC0ED34FC49979DC2ABD46399F6AEA	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\jjs.exe
2015-02-11 12:35:50	12817B942F47B7D462C02CD5DF2830B8	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\klist.exe
2015-02-11 12:35:50	11EC583EA1D0223DB738EA57D8A866B0	319880	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\javaws.exe
2015-02-11 12:35:49	FD680E882065529A70F3E9548AC5F2EA	77192	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\javacpl.exe
2015-02-11 12:35:49	B7A32C3B401100FE1116D6F49EA9816D	190856	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\java.exe
2015-02-11 12:35:49	96CCB20149139864BEE8A0B81E7FD0FE	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\java-rmi.exe
2015-02-11 12:35:49	0E21D66520FCDD4097D2D470DF38E7EC	34184	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\bin\jabswitch.exe
2015-02-11 12:35:46	F7C6757D78B7715AEE683CB466EBDE21	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\rmiregistry.exe
2015-02-11 12:35:46	F754AE533AE877E7349FE1EFA1268E7E	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\appletviewer.exe
2015-02-11 12:35:46	EED843556A79C4BC656E03FB517F8B8A	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javap.exe
2015-02-11 12:35:46	E6278C1963F7DFD77F18807E89041BD8	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javadoc.exe
2015-02-11 12:35:46	E36E3EB63385C6CA8D9B75E8D8A6DC7E	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jps.exe
2015-02-11 12:35:46	E16306AF356F426C3C60403D7B7FE796	94600	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javafxpackager.exe
2015-02-11 12:35:46	DDDC300E8CA40AC1F7DB64B83C27558D	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\keytool.exe
2015-02-11 12:35:46	DA91EAC495F9536F06B70237F8272238	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\java-rmi.exe
2015-02-11 12:35:46	D7D8ADFD09BDC0EC27A7853ADF5AA5E6	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javac.exe
2015-02-11 12:35:46	D3A5ED999530962AFD17209F55010515	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\idlj.exe
2015-02-11 12:35:46	D117FC472F72C2C4000267EB11E3945E	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\extcheck.exe
2015-02-11 12:35:46	CF513760CE8EA38EA7C3BB7BD760514D	94600	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javapackager.exe
2015-02-11 12:35:46	C8BEC1D4017A6F2B7B6A6B6CADD6780C	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javah.exe
2015-02-11 12:35:46	C66437266EE2D1095D9B871D49DE4A10	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\servertool.exe
2015-02-11 12:35:46	C1021311FAB535114F8927DEE1A302B7	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jdeps.exe
2015-02-11 12:35:46	BA3919DE65057F2C55B33C4BB36E972C	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\rmid.exe
2015-02-11 12:35:46	B415EA866D12060CB5997DEB1D861ECE	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jinfo.exe
2015-02-11 12:35:46	B2A5A530F40B355E821DD98D6CFA48ED	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\wsgen.exe
2015-02-11 12:35:46	B26CDFF8BC08E3AECCDFFF01332A948E	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\serialver.exe
2015-02-11 12:35:46	B109DD496319A43D1ABF2C3546E2628C	190856	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\java.exe
2015-02-11 12:35:46	AF5BCA6D2CD54D4E98346AE028A1B999	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\rmic.exe
2015-02-11 12:35:46	AF51E76EE88D1F40163FAE42CE388F6D	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jstack.exe
2015-02-11 12:35:46	9BA93D4A6EAAA598928B9837D7B692F6	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\native2ascii.exe
2015-02-11 12:35:46	9B8B9C9C34E1A472983DDCC18487E834	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jjs.exe
2015-02-11 12:35:46	98FA3DD590E0728D2A9FB9DEBC4A5024	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\ktab.exe
2015-02-11 12:35:46	98B41A4533418E614579E77583392C9F	321928	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jmc.exe
2015-02-11 12:35:46	9026AAA9045E835DD9C6AD22490245FD	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\klist.exe
2015-02-11 12:35:46	8E871DA326372A15CBF86BBA5A36FE56	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\wsimport.exe
2015-02-11 12:35:46	8C0A9722B6F9182C7550F51FEB39D6E3	197000	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jvisualvm.exe
2015-02-11 12:35:46	7E5BF9345D59EE6DA5915EE1B12899B1	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\kinit.exe
2015-02-11 12:35:46	7C9D60723CD3C0C82801FA78DC4A8B99	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\schemagen.exe
2015-02-11 12:35:46	7340D3AA5CFC2B5713F4A7F82954539E	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\pack200.exe
2015-02-11 12:35:46	5FEB2E3CCE8DBCDE370DB1CB8FA52189	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jar.exe
2015-02-11 12:35:46	5F1ACCB06BD1F13C72F61AE1979029A8	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\tnameserv.exe
2015-02-11 12:35:46	5EAA7FA9B9E72553DFF7C0D6125A3CF4	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\policytool.exe
2015-02-11 12:35:46	56AA60E1CC41C20816C930EC0B1C89DB	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\orbd.exe
2015-02-11 12:35:46	4E04A5092E44EDED35D2F644CA425AFC	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\xjc.exe
2015-02-11 12:35:46	48D6C3A2C55B7B06B8D6C084C801D186	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jconsole.exe
2015-02-11 12:35:46	430C1425441A79C912FB30B2CBC395CA	319880	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javaws.exe
2015-02-11 12:35:46	3FE7B6AE5291C91A5C2382F1BF34C435	16776	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jrunscript.exe
2015-02-11 12:35:46	375884657DCFC0A5006FD88A211DE046	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jmap.exe
2015-02-11 12:35:46	374A1B12E6E6434BCE1B1BC1BB5F8897	34184	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jabswitch.exe
2015-02-11 12:35:46	30E30DE9C496A87E9E5B9FFFA0A3D3D6	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jarsigner.exe
2015-02-11 12:35:46	28287FE6AAB74D77CB2425B5EFE96F6A	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jstat.exe
2015-02-11 12:35:46	27A1E6F1CA31CDA0C815D8DD3DD0078E	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jcmd.exe
2015-02-11 12:35:46	275A177AD3E22610B27A1D7DF44F601C	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jsadebugd.exe
2015-02-11 12:35:46	25711FF3C733B6E21D3B12462795D4E0	197512	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\unpack200.exe
2015-02-11 12:35:46	24DC5FB01059064D66F251CA906A078C	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jhat.exe
2015-02-11 12:35:46	1713E643335EB203376936C61F245835	15752	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jstatd.exe
2015-02-11 12:35:46	09A19E0BEEE9D8B9E38F19B4311D0486	191368	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\javaw.exe
2015-02-11 12:35:46	02DCA0B01D205A87AC79CEDB52C8DAE0	16264	----a-w-	C:\Program Files\Java\jdk1.8.0_31\bin\jdb.exe
2015-02-11 12:33:01	D674809F9EC7D6A409F553C0DF91E825	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-02-11 12:33:00	8111C559DAD3A40200AE916874E7E62A	468992	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-02-11 12:33:00	4089C6F953C024E16BC2361F471864D7	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-02-11 12:32:59	363BC25BACB34E9D40441968B1B3D5BE	815288	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-02-11 12:32:58	3FB445C7BF7E342391FF3875413CCC33	484352	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-02-11 12:32:57	2D4AB594AABBEBA938F36BA1BC71C3F6	813744	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-02-09 17:38:57	7011B195B93EE9F264F4969CB41219B0	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2333408980-703389946-724349878-1000\$ISGHXD9.exe
2015-02-09 17:38:48	C91B4465410FCC7C565A80E11BB1781E	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2333408980-703389946-724349878-1000\$IX9JTTQ.exe
2015-02-09 17:36:48	C1DD02521339C8D49524CE80A8EE9D27	843976	----a-w-	C:\$Recycle.Bin\S-1-5-21-2333408980-703389946-724349878-1000\$RX9JTTQ.exe
2015-02-09 17:34:21	C1DD02521339C8D49524CE80A8EE9D27	843976	----a-w-	C:\$Recycle.Bin\S-1-5-21-2333408980-703389946-724349878-1000\$RSGHXD9.exe
2015-02-09 16:40:32	1F9A2717F6C6D3440B1F4A59FF96C708	1043024	----a-w-	C:\Program Files (x86)\Google\Update\Install\{8FB751DD-4A78-443D-980B-0C048A97BD7C}\40.0.2214.111_40.0.2214.94_chrome_updater.exe
2015-02-09 16:40:32	1F9A2717F6C6D3440B1F4A59FF96C708	1043024	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\40.0.2214.111\40.0.2214.111_40.0.2214.94_chrome_updater.exe
2015-02-06 17:34:51	FD98434B6A06FE31A35E4BFBC827B290	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe
2015-02-06 17:34:51	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateSetup.exe
2015-02-06 17:34:51	5F0A3AA68785C49454F56C9F2DDA0237	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe
2015-02-06 17:34:51	4C02536F4CA35911FB3EA5715F300C57	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateBroker.exe
2015-02-06 17:34:47	F3B6470DA7CE34E559D3BA7365CC909C	115528	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe
2015-02-06 17:34:47	E1B44A75947137F4143308D566889837	107848	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdate.exe
2015-02-06 17:34:47	83BB030C71C9727DCFB2737005772C4E	232264	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
2015-02-06 17:34:47	323CFFFDAF253AC65CD194A101BE6231	287048	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
2015-02-06 17:34:43	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files (x86)\Google\Update\Install\{87A1F26B-D14E-42D8-9706-FA6D2F332DAF}\GoogleUpdateSetup.exe
2015-02-06 17:34:43	7CA00A58AA808F4B9844C91845910377	880208	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.26.9\GoogleUpdateSetup.exe
2015-02-04 18:12:06	0E944E42AB48C84036CF4E275AC9F7DF	77104	----a-w-	C:\ProgramData\Apple Computer\Installer Cache\iTunes 12.1.0.71\SetupAdmin.exe
=== C: other files ==
2015-02-11 12:47:47	3315140254247E248C3531F159C79109	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_31\lib\deploy\ffjcext.zip
2015-02-11 12:37:50	CE38122121C784E6380EF424637DBC3F	14130	----a-w-	C:\Program Files\Java\jre1.8.0_31\lib\deploy\ffjcext.zip
2015-02-11 12:35:52	CE38122121C784E6380EF424637DBC3F	14130	----a-w-	C:\Program Files\Java\jdk1.8.0_31\jre\lib\deploy\ffjcext.zip
2015-02-11 12:35:49	2A74A9CF4026183DFF9FD1CF5C484ACC	5025517	----a-w-	C:\Program Files\Java\jdk1.8.0_31\javafx-src.zip
2015-02-11 12:35:46	EADACDA8143EEF2B6B4D980951E3DD2F	1387	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\dblook.bat
2015-02-11 12:35:46	DF3D54E32E15A19252ABC233C15E89AD	1284	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\setNetworkClientCP.bat
2015-02-11 12:35:46	A5C4E1441A3C4FFC212894B48927F2E4	2426	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\derby_common.bat
2015-02-11 12:35:46	A40B148E94D379D685C5680E9C2237F2	1389	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\sysinfo.bat
2015-02-11 12:35:46	9C163DC5EE82C1406B972C91C3AF6C48	1397	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\startNetworkServer.bat
2015-02-11 12:35:46	8B60A818AFAF28D6990ED8DBC38C7629	1273	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\setNetworkServerCP.bat
2015-02-11 12:35:46	80F3240EC26153182653BC231E91D195	1403	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\stopNetworkServer.bat
2015-02-11 12:35:46	354BAED360255170A65BD8165F022FD3	1278	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\setEmbeddedCP.bat
2015-02-11 12:35:46	23CDC9E9ADF8A10F40DD845397036C94	1379	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\ij.bat
2015-02-11 12:35:46	1384CD0AF6BBD83C2F01BD56E30309DC	1413	----a-w-	C:\Program Files\Java\jdk1.8.0_31\db\bin\NetworkServerControl.bat
2015-02-11 12:32:28	E45CDE1C8340DFEDF1D6724263F39E5B	458824	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-02-11 12:32:27	C60C6B9A2E50B0404F6789C62B428C03	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-02-11 12:32:27	78D152A9FD5747FF6AA89C79F0346F62	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-02-11 12:31:18	DF07110F77639E73D0537188703F44F6	3201536	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe"
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Facebook Update"="C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"ooVoo.exe"="C:\Program Files (x86)\ooVoo\oovoo.exe /minimized"
"GameXN GO"="C:\ProgramData\GameXN\GameXNGO.exe /startup"
"ISUSPM"="C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe -scheduler"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"WinampAgent"="C:\Program Files (x86)\Winamp\winampa.exe"
"PMBVolumeWatcher"="C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe -osboot"
"RealDownloader"="C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe"
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Facebook Update"="C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"ooVoo.exe"="C:\Program Files (x86)\ooVoo\oovoo.exe /minimized"
"GameXN GO"="C:\ProgramData\GameXN\GameXNGO.exe /startup"
"ISUSPM"="C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe -scheduler"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"
"HPWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden"
"Bdagent"="C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Folders ======================

2011-07-01 17:05:08	989	----a-w-	C:\Users\Sharon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Socialbox.lnk
2011-05-28 10:03:02	2099	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
2014-06-22 17:22:15	1208	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/02/2015 14:36]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2333408980-703389946-724349878-1000Core.job --a------ C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe [11/07/2012 22:51]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2333408980-703389946-724349878-1000UA.job --a------ C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe [11/07/2012 22:51]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/08/2013 16:46]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/08/2013 16:46]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2333408980-703389946-724349878-1000Core" [C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2333408980-703389946-724349878-1000UA" [C:\Users\Sharon\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\RealDownloader Update Check" [C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe]
"C:\Windows\SysNative\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe]
"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeLogonTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeScheduledTaskS-1-5-21-2333408980-703389946-724349878-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
"C:\Windows\SysNative\tasks\{04BD165D-1AA8-49AC-9ECE-DC9797DA28BD}" ["c:\users\sharon\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{4EE8AC3D-5C9E-4FBF-923B-E90B9ABD4225}" ["c:\users\sharon\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{88EC2184-1BF6-4449-B32B-7877ED77472D}" ["c:\users\sharon\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{C7AA9931-43B0-43EE-993C-1BEB81352E81}" ["c:\users\sharon\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{338950EA-82DB-44C1-930D-0C28E023C9F0}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [18/11/2014 17:30]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Sharon\AppData\Roaming\TomTom\HOME\Profiles\b2z0q762.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 40.0.2214.111 (Up to date, latest Stable version: 40.0.2214.111)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lhdfjaaobagbaepmefnjabfmhnggliop - C:\Users\Sharon\AppData\Local\CRE\lhdfjaaobagbaepmefnjabfmhnggliop.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lhdfjaaobagbaepmefnjabfmhnggliop - C:\Users\Sharon\AppData\Local\CRE\lhdfjaaobagbaepmefnjabfmhnggliop.crx[]

Autumn - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\alibnodcalenogbpgdihbfccibcagloo
YouTube - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
selector is not a valid CSS selector - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Free i-Dressup - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhdfjaaobagbaepmefnjabfmhnggliop
Google Wallet - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Fix ======================

C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhdfjaaobagbaepmefnjabfmhnggliop deleted successfully
C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lhdfjaaobagbaepmefnjabfmhnggliop_0.localstorage deleted successfully
C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_lhdfjaaobagbaepmefnjabfmhnggliop_0 deleted successfully
C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lhdfjaaobagbaepmefnjabfmhnggliop deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=42bba065-eea7-4c0f-859a-b5cd6abe3f1d&searchtype=ds&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=42bba065-eea7-4c0f-859a-b5cd6abe3f1d&searchtype=ds&q={searchTerms}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=BE&userid=42bba065-eea7-4c0f-859a-b5cd6abe3f1d&searchtype=ds&q={searchTerms}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{20383626-078D-4341-A785-74C626C4BA82} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"
{D71F238D-1D76-4B46-B45D-6550A5E0A6CF} Wikipedia  Url="http://nl.wikipedia.org/wiki/Special:Search?search={searchTerms}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B851AF-A4B9-43EF-97D3-28E1B4A5DB9B} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} deleted successfully
HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2333408980-703389946-724349878-1000\Software\Mozilla\Firefox\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2B3EA148-999D-4323-1DB3-51072578241D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2D3DC3E2-682C-4542-B90D-169680394957} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2E24AC7D-FE0D-DAA8-3F54-2656EA909880} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{581883E3-B41B-9E62-B82E-871EAFE290D5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{583CBFB5-FFC7-04EC-93B1-72A0836D06CD} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{70954218-8506-5A82-867F-C37B534F17E0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9212B177-A1FD-6819-47CB-C9C9F26D9E1F} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{926F0A7C-8F37-478E-D3F7-42A91F136E23} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A595517C-FB9C-75DC-FEA0-AE48616EB332} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AA0DBDEF-C976-7EFC-8C87-3B6711AE443B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{BD2DCFBE-6BD4-BDAB-48CF-7506E60F561B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{BD3B4D8A-BE62-9287-F521-06C054F21BDD} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CADF191C-0758-913D-1675-0205B6AF7594} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E13EEB32-CF2A-B1AD-13E5-3186614B6BBB} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E2D3F7AC-0A7D-82CB-319F-6B561EA310B1} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EAA2DC3E-3623-3552-336F-8D98AE3D7E6D} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3BD8B855-BF40-3E89-C73F-8B9B019427B1} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4FE3C717-DB17-4445-A6AE-93359400E5E1} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5A741056-F320-45CE-A725-BB02819732A0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{69EE25CC-A348-4927-ABCC-EB6AB20D073A} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7E7C045B-2EC8-4D7B-AF90-66EAA59F26AD} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CEAC71FA-CD8F-4D36-AFDD-85AD154F530C} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D52CB2BC-8D47-62EB-FB69-65B8D9D649B0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\lhdfjaaobagbaepmefnjabfmhnggliop deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\lhdfjaaobagbaepmefnjabfmhnggliop deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8R8TTFDS will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FN3AQS45 will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FNCSSLGV will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRZOUEXX will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G3V8VPI6 will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GEF6K4UD will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OV1ZMN41 will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QKF9CI1H will be deleted at reboot
C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U40W8G19 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Sharon\AppData\Local\Temp\bdsandbox\HarddiskVolume2\Users\Sharon\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2316 folders=346 548788286 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Sharon\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Sharon\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\Common Files\DVDVideoSoft"  not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8R8TTFDS" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FN3AQS45" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FNCSSLGV" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FRZOUEXX" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G3V8VPI6" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GEF6K4UD" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OV1ZMN41" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QKF9CI1H" not found
"C:\Users\Sharon\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U40W8G19" not found

==== EOF on wo 11/02/2015 at 13:19:46,21 ======================