
Zoek.exe v5.0.0.0 Updated 21-February-2015
Tool run by Ilse on za 21/02/2015 at 12:45:47,06.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Ilse\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

21/02/2015 12:47:15 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Users\Ilse\AppData\Local\VirtualStore deleted successfully
C:\Users\Joeri\AppData\Local\VirtualStore deleted successfully
C:\Users\Joeri\AppData\Local\{1D80D6DD-8B23-4DA7-9B17-7D6E37C25317} deleted successfully
C:\Users\Joeri\AppData\Local\{3FC14E66-9DF2-48C6-B52F-04018194D4FC} deleted successfully
C:\Users\Joeri\AppData\Local\{C037F8E5-0668-4666-9776-A21881EAF3F5} deleted successfully
C:\Users\Marc\AppData\Local\VirtualStore deleted successfully
C:\Users\Marc\AppData\Local\{05F7C64C-921F-4C2F-BCA3-D38F611F3C9F} deleted successfully
C:\Users\Marc\AppData\Local\{5CFAA7DB-D414-454B-B61E-FFAC0B1CAD98} deleted successfully
C:\Users\Marc\AppData\Local\{5D74DA2A-4BF6-4E23-B1D3-822488E066D7} deleted successfully
C:\Users\Marc\AppData\Local\{6FEF2B87-821C-4A40-B385-4B784BAF9EE8} deleted successfully
C:\Users\Marc\AppData\Local\{80DC604A-EC1F-4F7C-941C-469B924E69D5} deleted successfully
C:\Users\Marc\AppData\Local\{82CE70E1-AB81-44D7-BE4C-C3EEA7D0EA1C} deleted successfully
C:\Users\Marc\AppData\Local\{A8DFA199-9F3D-4DE1-9243-3D87089A38DB} deleted successfully
C:\Users\Marc\AppData\Local\{ABAAECE8-B447-4847-9E3F-104B74B4A477} deleted successfully
C:\Users\Marc\AppData\Local\{B621311E-0176-495B-A3F0-17EA8DC15EC3} deleted successfully
C:\Users\Marc\AppData\Local\{EFC06377-83AE-4E89-8B9C-60D3A2B92139} deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avp.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avpui.exe
C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Ilse\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Microsoft deleted
C:\PROGRA~2\Temp deleted
C:\PROGRA~2\Uninstall Information deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Registry Search Results for "WaitToKillServiceTimeout" ======================


[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control]
"WaitToKillServiceTimeout"="1000"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control]
"WaitToKillServiceTimeout"="1000"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control]
"WaitToKillServiceTimeout"="1000"

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 4078 MB
CPU Info: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
CPU Speed: 3088.9 MHz
Sound Card: Speakers (Realtek High Definiti | 
Display Adapters: AMD Radeon HD 6670 | AMD Radeon HD 6670 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SH-S223C
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C:  1356.2GB | D:  40.0GB | F:  1396.9GB | Q:  0.0MB
Hard Disks - Free: C:  1315.3GB | D:  21.0GB | F:  1370.1GB | Q:  0.0MB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 05/10/11 | MEDION - 7292010
Time Zone: Romance (standaardtijd)
Motherboard *: MEDIONPC MS-7728
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

Anti-Virus: Kaspersky Total Security On-access scanning disabled (Outdated)
Anti-Spyware: Kaspersky Total Security disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Firewall: Kaspersky Total Security disabled
Default Browser: Firefox	35.0.1
Internet Explorer Version: 11.0.9600.17633 
Mozilla Firefox version: 35.0.1 (x86 nl)
Adobe Reader version: 11.0.10.32
Sun Java version: 1.8.0_31 (32-bit) 
Sun Java version: 1.8.0_31 (64-bit) 
Flash Player version: 16.0.0.305
Shockwave Player version: 11.5.9r620

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Ilse\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-02-12 11:00:49	01BD2653F2185218837CF4A175617F8A	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-02-12 11:00:48	4FD3763F3917201856B0CBCE310003EA	4300800	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-02-11 13:32:18	B63A6FF4339C9B701A93D3973C7FB6D2	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-02-11 13:32:18	7C893DBA0A58855A99DA68B751FD223B	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-02-11 13:32:17	F3F6BE20A03215209B61CA85B4A83E1F	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 13:32:17	C256EFD3655EC782F8094E96094E8F9E	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-02-11 13:32:17	A12D64A94EC57079C2D96A741CB4FF53	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-02-11 13:32:17	7D94A9161E8432B8521E60E064B1D737	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 13:32:17	3BB446DE24501FEA5FDB9A9DB23A22AE	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 13:32:10	E1A4D24281526DDFEA418F729CDA9DC6	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-02-11 13:32:10	D87759889FE7BCAE4461439139E62BAA	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-02-11 13:32:10	B0F7BD3492C2D60A70F15AEADCE1E2A6	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-11 13:32:10	8E8137569741D3693F88DDF94CC38C20	1307136	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-02-11 13:32:10	74EA6C792F57E453261DA210C1BCEB53	342712	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-02-11 13:32:10	3B9EF1B8E154D202D32A7765E2F33554	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-11 13:32:09	94B1F7CE1AAA5542923E0AD63C4D0050	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-11 13:32:09	8FBC9680719ACDA9351B67D906C682F4	688640	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-02-11 13:32:09	6FA05244FD2E40A3DC08337146B3C425	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-02-11 13:32:09	61C74D794C14E9FC94D93F5F0F72A3F9	19740160	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-02-11 13:32:08	FD6AF61AF029B9BC2CF4EFF57CDD5821	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-02-11 13:32:08	EF05E63ACC834470A07A2E73D519B5FA	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-02-11 13:32:08	AD3F5926EC2C1F21FB45D1CDED6E2A47	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-02-11 13:32:08	9A91F9B5035F54C2D0BA92CF9B16EE34	2277888	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-02-11 13:32:08	994E7459260D315573DD72783D1B78A7	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-02-11 13:32:08	78A1A938D51D4F83A772123B93EE1612	12829184	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-02-11 13:32:08	5FB7E9786F70F4072663746072C9E6CE	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-02-11 13:32:08	55A84600EAAF8F1D3F0E6206E2EF6D48	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-02-11 13:32:08	47B26D89EF9973E2DD586D0C827F61A9	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-02-11 13:32:08	28B2D3CB1B4306D476200D80AF7D87AD	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-02-11 13:32:06	F285D499EC42969D963CA49EADA63218	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-02-11 13:32:06	9DEE691C8FDBC2DE6957F1AE873C78FC	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-02-11 13:32:06	6F10743069DFFC56DEE079204960844E	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-02-11 13:32:06	180168942E4A133C55E7BBF17DA3C142	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-11 13:31:39	793F6658ED65839FDB2957A4884CB63C	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 13:31:37	F312300F29620F74E3AF3AF018151935	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-02-11 13:31:37	F2A743912D404A8866362836CFE7A648	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-02-11 13:31:37	F29BC66CE4A5507A49FB20744A056E61	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-02-11 13:31:37	4E6934926B4C923CC0FF61C6D77814EF	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-02-11 13:31:37	43791D2F736C4E9BE9FE0B33A1E92A5D	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-02-11 13:31:37	36F152AE2F64B12771A44EA77124332B	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-02-11 13:31:27	0C96A745A76C7DD75C5503E86D968E49	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-02-11 13:31:26	E365C7B3EBB96451D3C9DF6B6B6900C2	179200	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2015-02-11 13:31:26	623E143F2DF17C0106A9988F5D7DC878	143872	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2015-02-11 13:31:24	A208DAC2932649CFF82A6A684D8BB1F6	571904	----a-w-	C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 13:31:13	B3BC38B886CA53C92D52EF724A9F0D45	308224	----a-w-	C:\Windows\SysWOW64\scesrv.dll
2015-02-11 13:31:12	62C93E47A424A8EC79F3CF1719A2DCC6	3972544	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 13:31:11	97B7E7E3356F7F7FE5B948AB3ED707DD	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-02-11 13:31:11	6D227897A458DA8A9518DACDC88F1947	3917760	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-10 17:49:14	13D186FA6F19823C598335443CE233BC	98216	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-08 12:38:28	0C9988BDA3CEC3C421B773982C5E2EC6	5703168	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2015-02-07 15:44:12	AB5EFB103DB01C1912C9D2F545EA5621	17920	----a-w-	C:\Windows\SysWOW64\wksprtPS.dll
2015-02-07 15:44:12	8DEEE20D8D30E9B0FBDCA31E58A027BD	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2015-02-07 15:44:12	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2015-02-07 15:44:12	2EFB1279E7BEA7D12D9F4D6508D27880	50176	----a-w-	C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-02-07 15:44:11	5E676B296B762E211D83B87635F2C330	855552	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2015-02-07 15:21:20	AD27563BC16AB1EAACAE3033E99C2F78	194048	----a-w-	C:\Windows\SysWOW64\elshyph.dll
2015-02-07 15:21:18	C1A6E565B2782C09BC40AD749B46D9ED	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-02-07 15:21:18	9B8701A380CEE1B05D651B4ED4048C8F	645120	----a-w-	C:\Windows\SysWOW64\jsIntl.dll
2015-02-07 15:21:18	298FDE634538B62CEEEC266D8773B21A	182272	----a-w-	C:\Windows\SysWOW64\msls31.dll
2015-02-07 15:21:17	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2015-02-07 15:21:17	F7B6E341F4B1947BEC0E14EEBE3C627E	111616	----a-w-	C:\Windows\SysWOW64\IEAdvpack.dll
2015-02-07 15:21:17	EC7038154490E50ACD405A022F51B204	83456	----a-w-	C:\Windows\SysWOW64\inseng.dll
2015-02-07 15:21:17	D9F12F54E3B5A092F1D5F191F5286E53	337408	----a-w-	C:\Windows\SysWOW64\html.iec
2015-02-07 15:21:17	CFCE4EFF1D6D909EE2EA3AFCB8F1E677	233472	----a-w-	C:\Windows\SysWOW64\url.dll
2015-02-07 15:21:17	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\SysWOW64\ieapfltr.dat
2015-02-07 15:21:17	AE6A2C5ECD3E96556E22F12816842F60	48640	----a-w-	C:\Windows\SysWOW64\mshtmler.dll
2015-02-07 15:21:17	ABDFC692D9FE43E2BA8FE6CB5A8CB95A	13312	----a-w-	C:\Windows\SysWOW64\mshta.exe
2015-02-07 15:21:17	AB3B2CA52AFB695AFCDD2620A21E5B21	24576	----a-w-	C:\Windows\SysWOW64\licmgr10.dll
2015-02-07 15:21:17	9E170B0AF156B478BD2B1FD6A2250C9E	62464	----a-w-	C:\Windows\SysWOW64\tdc.ocx
2015-02-07 15:21:17	9A33FDDD687A836A1FD478B43C5A95FD	151552	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2015-02-07 15:21:17	887055A3C8DD6C87D200D11EAFDBD45B	74240	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-02-07 15:21:17	83F49FD1BC0A999B006D564C540C7258	86016	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2015-02-07 15:21:17	779E142FE2159935E78C0FA2E190FF1E	610304	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-02-07 15:21:17	6EB0B7301E00F717BD68A742D1391FAF	36352	----a-w-	C:\Windows\SysWOW64\imgutil.dll
2015-02-07 15:21:17	6A92CEC8532056791C6832B2725D170D	139264	----a-w-	C:\Windows\SysWOW64\wextract.exe
2015-02-07 15:21:17	55969AADF0210A614700F89B48976F68	43008	----a-w-	C:\Windows\SysWOW64\msfeedsbs.dll
2015-02-07 15:21:17	53FC62C51CB18C9100A7DFAF2D2A6C47	12800	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2015-02-07 15:21:17	4F032F1FDEFEA5EC8EEA3562643B5EE8	69120	----a-w-	C:\Windows\SysWOW64\icardie.dll
2015-02-07 15:21:17	4BCC7EB5F20840DA67943BD86AE95735	56832	----a-w-	C:\Windows\SysWOW64\pngfilt.dll
2015-02-07 15:21:17	1AFBAA54BDF637F69B8E02A5578286B0	116736	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2015-02-07 15:21:17	1200D9C7DB0ADC1B8143A0A9921BF7DA	127488	----a-w-	C:\Windows\SysWOW64\occache.dll
2015-02-07 15:21:17	03B3541AE6986602CF9CB5B3AD169C33	208384	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2015-02-07 15:18:01	2413D2216D08FAF7D7178D9E0B481AEB	2285056	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-02-07 14:38:57	E9504E484076585F6DA3C59F0E20E122	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
2015-02-07 14:38:54	79896A78039C9A63C56197843CFBAD0B	1987584	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2015-02-07 14:38:50	14800BD31701A5047AC3145BB1E698AE	3419136	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2015-02-07 14:38:10	1C0E369575F387460E2A5F28269B2CC4	1247744	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2015-02-07 13:51:35	8999F18D38D55E34D356796507FFD639	192000	----a-w-	C:\Windows\SysWOW64\rdpendp_winip.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-02-12 11:00:48	D363FBB2D0223956FF61ADBDBF5499B1	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-02-12 11:00:48	16ACAA0C01F31B39F39446188F6A3593	6041600	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-02-11 13:32:22	64EAD6C9D342E7E0CFCA3559FCBFDDAC	894976	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-02-11 13:32:22	5C09611AB8D508CC252BB2D5A069D1AC	1098752	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-02-11 13:32:22	47709F1B718859ED8AB5EA3EA3974BEB	609280	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-02-11 13:32:21	EF4FA1D31D146EA0C04D16E75FCA6BCF	192000	----a-w-	C:\Windows\Sysnative\aepic.dll
2015-02-11 13:32:21	B5746809407BDEB18D9D4769CD9FF24E	414720	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-02-11 13:32:21	7F2F9AACF457CE48CDDBD643FC53487C	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-02-11 13:32:21	7150E809474BBD4D4AD24B13FA2454E5	1239720	----a-w-	C:\Windows\Sysnative\aitstatic.exe
2015-02-11 13:32:21	5632EB9633EACCC323CEA2C03A0B4133	762368	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-02-11 13:32:18	DDACB408E607655EC64269706BFD504C	341504	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-02-11 13:32:17	C1F9E139B8AE80803CE44DC0377CA342	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-02-11 13:32:17	A46A6C5AD462071B718EBF3C9E117849	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-02-11 13:32:17	8F33880F1863BE3925D3A0121FAC5E8F	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-02-11 13:32:17	6A06BCED1DF1CFE8A32E7D10ABAA7188	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-02-11 13:32:17	5350A548BEC957978B7014CDFF091542	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-02-11 13:32:17	22E30E28865C32C3CF4F4E0E7E277FDC	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-02-11 13:32:10	F42B1DAAB5B7621341243878180446CD	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-02-11 13:32:10	8076BB31004C1D763D5D4AEF9F0BDD4B	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-02-11 13:32:10	71EBA93C5322A52A7E177E03E1AE7161	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-02-11 13:32:10	68A2B96528F58D995882FBEB4D9658A5	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-02-11 13:32:10	01A314677CC80041A63ED109B56A76B0	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-02-11 13:32:09	92BD5080B81EDFA32B0CEE8B923D62C3	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-02-11 13:32:08	DF39C79DFC1C063493D2DB9B3237B29F	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-02-11 13:32:08	CB2528D522FF1F5A7BF9B27D2FB250FF	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-02-11 13:32:08	97F037E09A706ACDA681D740DEE16AE4	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-02-11 13:32:08	76DB5845E168173BBA2D3CCC4B363E42	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-02-11 13:32:08	2E4F8664B54426C2F5523665B279E984	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-02-11 13:32:08	1D824B5A200C284E1A546C2C50704471	389808	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-02-11 13:32:07	A7A3775B0014B165D75A00A1F632E4B5	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-02-11 13:32:07	7A388AFC6885D22F4D988EE9B8D1291A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-02-11 13:32:07	512DD29CE6CDCB22EA615286DA7022E7	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-02-11 13:32:07	15842FB41A3BF2A2F5071518B38C957A	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-02-11 13:32:06	D7922F3AC6BF1EA77240E0061D648174	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-02-11 13:32:06	CA3F410410DE9E5234217D33B9628224	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-02-11 13:32:06	A7814E76ED4ACE0694A83F6E4B6A7272	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-02-11 13:32:06	6916B0663357B183B120D1A4DD7DDAB0	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-02-11 13:32:05	E0F76B5B904E4F448641B2B506496351	14401024	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-02-11 13:32:05	A04F0C4A0B80C92F92E854E7157D6466	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-02-11 13:32:05	4CE68D160D80AF6C9FDB5C60BA087DA5	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-02-11 13:32:04	BF57C911895454A8874E9DFA5716C624	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-02-11 13:32:04	9DFE41A69DF70AAB75CB5BA8C1109EA2	2358272	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-02-11 13:32:04	47162151E35EA0B7152B7C841FA21FDB	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-02-11 13:32:04	4701399F7BA312353ADE8225F6EB512B	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-02-11 13:32:03	CD726C899BD9A398E8420564A957320B	25056256	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-02-11 13:31:39	4861B9AF67E1B0154A55FDE4B3A61EB9	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2015-02-11 13:31:37	E0105F3B5B1C4B0F5B3D788A13504EC6	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-02-11 13:31:37	C97662B6752BFEF07C565D96E8ECC98F	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-02-11 13:31:37	BE4927689BA39E18A104986CB1363C97	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-02-11 13:31:37	94C6BCF9212E20866AC1558A32E9F228	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-02-11 13:31:37	857CED230A6B87E84FCA04B472A3CB1A	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-02-11 13:31:37	6EAD88B508E4785F4AFDFD24F76E8839	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-02-11 13:31:37	51BB93FF96AE3882B4AF7CA11000D3A3	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-02-11 13:31:37	2EE57F4491A402C04FCAA7D012493884	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-02-11 13:31:37	1798826FE9FFEA9E93E74A5868559D4A	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-02-11 13:31:27	E5AF792AB409F600D416CB257C84305D	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-02-11 13:31:27	7FC292D1527EDFEBA2576B6789DE6AB5	229376	----a-w-	C:\Windows\Sysnative\wintrust.dll
2015-02-11 13:31:27	19D511CC455C19DE1ADF60E6C39C85B6	187904	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2015-02-11 13:31:24	AE4FEDD98096C09A8A86E021FC5E9D67	861696	----a-w-	C:\Windows\Sysnative\oleaut32.dll
2015-02-11 13:31:13	FE72C89986E1BA32AD926A820491F23F	406528	----a-w-	C:\Windows\Sysnative\scesrv.dll
2015-02-11 13:31:12	9819614CA9EFB5A96493B379170B9D89	5554112	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-02-11 13:31:11	F7A3018D8F1825427BC11E912D5287CD	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-02-11 13:31:11	D6CDCAF84810641D1D2B455750825ACA	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-02-11 13:31:11	0147AA370862201A443752351F135D31	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-02-11 13:31:03	DF07110F77639E73D0537188703F44F6	3201536	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-02-09 13:05:46	BD9C7DE7BCF46013697DA6F9965A3BC7	1024	----a-w-	C:\Windows\Sysnative\persistent_q.db
2015-02-09 13:05:46	BB7DF04E1B0A2570657527A7E108AE23	32768	----a-w-	C:\Windows\Sysnative\persistent_q.db-shm
2015-02-09 13:05:46	A227E8FBF05A6E507D61BF90D4ED228C	3176	----a-w-	C:\Windows\Sysnative\persistent_q.db-wal
2015-02-08 12:38:27	6DD73E4E947DB3B0608321AE13210D94	6584320	----a-w-	C:\Windows\Sysnative\mstscax.dll
2015-02-08 12:38:00	2A9C3ADBC3B9D061CACDEFFBED67683C	87040	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2015-02-07 15:44:20	DDED7C5558B3AE09F568945281A9A6D1	44544	----a-w-	C:\Windows\Sysnative\TsUsbGDCoInstaller.dll
2015-02-07 15:44:13	FEC6178962DFF33074D39CA907971405	12800	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyExtension.dll
2015-02-07 15:44:13	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyControl.exe
2015-02-07 15:44:12	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\Sysnative\mstsc.exe
2015-02-07 15:44:12	7BD2E6E2458A5B95F8341244C7FC7DD4	18944	----a-w-	C:\Windows\Sysnative\wksprtPS.dll
2015-02-07 15:44:12	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\Sysnative\wksprt.exe
2015-02-07 15:44:12	5289A00E2D21BB3A7D6761646543ED5C	62976	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2015-02-07 15:44:12	149A388C17F04AD1F99B477A43BE1A9F	56832	----a-w-	C:\Windows\Sysnative\MsRdpWebAccess.dll
2015-02-07 15:44:11	A4420969E5AB94856E5C0C02E6099D3F	1057280	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2015-02-07 15:25:12	2D01F001F8E45924E57B7BB77CF96BC2	28368	----a-w-	C:\Windows\Sysnative\IEUDINIT.EXE
2015-02-07 15:21:18	8F7FBD0177F79727CF945ABDA657A0AC	235008	----a-w-	C:\Windows\Sysnative\elshyph.dll
2015-02-07 15:21:17	FD61D51199F3FC9EB0023FBF405EAAD0	147968	----a-w-	C:\Windows\Sysnative\occache.dll
2015-02-07 15:21:17	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2015-02-07 15:21:17	F00AE7B953ABEF1B53FBBA187DFC8238	243200	----a-w-	C:\Windows\Sysnative\webcheck.dll
2015-02-07 15:21:17	E70D4270C43CE6C46841B684315B9EFF	62464	----a-w-	C:\Windows\Sysnative\pngfilt.dll
2015-02-07 15:21:17	E4A6577D74B2439974C8018AB5F1BFEA	13312	----a-w-	C:\Windows\Sysnative\msfeedssync.exe
2015-02-07 15:21:17	D31AE751B6DACAFD0D7CC99EAE9606C2	131072	----a-w-	C:\Windows\Sysnative\IEAdvpack.dll
2015-02-07 15:21:17	CE8831D2DCB5803A4CBC8EDCCBBC2A05	77312	----a-w-	C:\Windows\Sysnative\tdc.ocx
2015-02-07 15:21:17	C92173481A58935BE15172079CF122B8	235520	----a-w-	C:\Windows\Sysnative\url.dll
2015-02-07 15:21:17	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\Sysnative\ieapfltr.dat
2015-02-07 15:21:17	BB6DEAFAC5F0AAEC37FEAF3F3AA48347	774144	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-02-07 15:21:17	ADA5C3D49A12CED9F07913DC00E547A8	48128	----a-w-	C:\Windows\Sysnative\imgutil.dll
2015-02-07 15:21:17	9675B272086CF5D22B83B541FAA8D4EA	30208	----a-w-	C:\Windows\Sysnative\licmgr10.dll
2015-02-07 15:21:17	95828D670CFD3B16EE188168E083C3C5	13824	----a-w-	C:\Windows\Sysnative\mshta.exe
2015-02-07 15:21:17	6F1AF8E1206E92256459E3012C20472A	942592	----a-w-	C:\Windows\Sysnative\jsIntl.dll
2015-02-07 15:21:17	5BBDBE5EBB49EA7C76A2EE7490A45D68	101376	----a-w-	C:\Windows\Sysnative\inseng.dll
2015-02-07 15:21:17	5141B67F14E2B6CBB6ADF851ABE364A5	90112	----a-w-	C:\Windows\Sysnative\SetIEInstalledDate.exe
2015-02-07 15:21:17	46FD16F9B1924A2EA8CD5C6716CC654F	167424	----a-w-	C:\Windows\Sysnative\iexpress.exe
2015-02-07 15:21:17	4399857346DD183683332921500046B1	86016	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2015-02-07 15:21:17	3A4FD19F13F8809BA08E9F76C0E38832	413696	----a-w-	C:\Windows\Sysnative\html.iec
2015-02-07 15:21:17	2EBD0C5B090125AECF017C57344C45AB	247808	----a-w-	C:\Windows\Sysnative\msls31.dll
2015-02-07 15:21:17	2405D24AA28CCC4CC7E0CC0AE008746F	48640	----a-w-	C:\Windows\Sysnative\mshtmler.dll
2015-02-07 15:21:17	1FCBE949A67939ADEAE7279E423AA684	135680	----a-w-	C:\Windows\Sysnative\iepeers.dll
2015-02-07 15:21:17	1EA6500C25A80E8BDB65099C509AF993	143872	----a-w-	C:\Windows\Sysnative\wextract.exe
2015-02-07 15:21:17	0FBEBD36FEFFEE5AF25FDAEE5E35EE99	105984	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2015-02-07 15:21:17	0A9D5716CB1F3AFA73703F39647BB8C2	81408	----a-w-	C:\Windows\Sysnative\icardie.dll
2015-02-07 15:21:17	038ABC9BCC86DFF9E181D44E43E2CEBA	52224	----a-w-	C:\Windows\Sysnative\msfeedsbs.dll
2015-02-07 15:18:01	3469B9FAE899139FEE7356E91693376A	2777088	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2015-02-07 14:38:57	4EDF8812713291DBBFDA67CE6215F236	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
2015-02-07 14:38:54	224C2EEBAAF39CD93DE5332DBE5E5A95	2565120	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2015-02-07 14:38:50	C676E5EA388AF7C4C031F56F9B42E362	3928064	----a-w-	C:\Windows\Sysnative\d2d1.dll
2015-02-07 14:38:49	E9CB5F138943D383DB67F29AAB60453F	3179520	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2015-02-07 14:38:49	2147C5330F983D76A36B73F4A804F778	16384	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2015-02-07 14:38:10	DD85F00EC31F77315AE992B7B0411D65	1643520	----a-w-	C:\Windows\Sysnative\DWrite.dll
2015-02-07 13:51:35	D346E07D62E3D4BEAB040939744EC31B	228864	----a-w-	C:\Windows\Sysnative\rdpendp_winip.dll
2015-02-07 13:51:35	AD4D0AEDB5993EDA31EB80A54EDBC344	243200	----a-w-	C:\Windows\Sysnative\rdpudd.dll
====== C:\Windows\Sysnative\drivers =====
2015-02-11 13:31:37	E45CDE1C8340DFEDF1D6724263F39E5B	458824	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2015-02-11 13:31:37	C60C6B9A2E50B0404F6789C62B428C03	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-02-11 13:31:37	78D152A9FD5747FF6AA89C79F0346F62	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-02-07 15:44:13	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2015-02-07 13:51:35	AD64450A4ABE076F5CB34CC08EEACB07	30208	----a-w-	C:\Windows\Sysnative\drivers\TsUsbGD.sys
2015-02-07 13:51:35	313F68E1A3E6345A4F47A36B07062F34	19456	----a-w-	C:\Windows\Sysnative\drivers\rdpvideominiport.sys
2015-02-07 11:13:02	7A64190934B66C17F41D3921353BAEDD	246456	----a-w-	C:\Windows\Sysnative\drivers\klhk.sys
====== C:\Windows\Tasks ======
2015-02-07 14:09:01	769C1A3CEFB3BA9CD6A7617FCB5DF0D7	3032	----a-w-	C:\Windows\Sysnative\Tasks\{E5FF7EFA-9037-4DB8-A89F-F0C074F2230B}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-02-08 11:59:46	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-02-10 17:49:29	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-02-10 17:48:48	--------	d-----w-	C:\PROGRA~2\Java
2015-02-07 11:13:20	--------	d-----w-	C:\PROGRA~2\Kaspersky Lab
======= C: =====
2015-02-19 17:37:03	EC358CAC5C2D9EB44CB681773A93F71B	1793	----a-w-	C:\DelFix.txt
====== C:\Users\Ilse\AppData\Roaming ======
2015-02-21 11:57:58	--------	d-----w-	C:\Users\Ilse\AppData\Local\VirtualStore
2015-02-10 18:17:46	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Users\Marc\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Users\Joeri\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Users\Ilse\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-02-10 18:17:46	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-02-10 17:47:50	--------	d-----w-	C:\Users\Ilse\AppData\Locallow\Sun
2015-02-10 17:25:37	--------	d-----w-	C:\Users\Ilse\AppData\Local\HP
2015-02-07 14:03:53	--------	d-----w-	C:\Users\Ilse\AppData\Roaming\HD Tune Pro
====== C:\Users\Ilse ======
2015-02-19 17:43:15	45D44A7710432FB898BED8EE8CBA10B8	5325208	----a-w-	C:\Users\Ilse\Downloads\ccsetup502.exe
2015-02-19 17:36:06	6DD947991853486DE376C12FF20A42F7	709564	----a-w-	C:\Users\Ilse\Downloads\delfix_10.8.exe
2015-02-10 17:48:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-10 17:48:51	--------	d-----w-	C:\ProgramData\Oracle
2015-02-10 17:22:22	6713E17AFCB3A28191A747DC8C475721	639912	----a-w-	C:\Users\Ilse\Downloads\jxpiinstall.exe
2015-02-07 15:29:17	B0D99C117EC61DF94FD5A189E3A8FD8B	4159880	----a-w-	C:\Users\Ilse\Downloads\RegistryReviverInstaller.exe
2015-02-07 15:23:04	--------	d-----w-	C:\ProgramData\TweakBit
2015-02-07 15:22:57	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
2015-02-07 15:22:24	7F5110526D3ED6BAB5F26323228FF461	7683352	----a-w-	C:\Users\Ilse\Downloads\driver-updater-setup.exe
2015-02-07 14:55:08	A0844C730F1091B491A8737404F4C914	347816	----a-w-	C:\Users\Ilse\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.Run.exe

====== C: exe-files ==
2015-02-19 17:43:15	45D44A7710432FB898BED8EE8CBA10B8	5325208	----a-w-	C:\Users\Ilse\Downloads\ccsetup502.exe
2015-02-19 17:36:06	6DD947991853486DE376C12FF20A42F7	709564	----a-w-	C:\Users\Ilse\Downloads\delfix_10.8.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3160077220-502388373-3656930774-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"MedionReminder"="C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe"

==== Startup Folders ======================

2014-02-01 15:05:55	1950	----a-w-	C:\Users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Photosmart 5520 series.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/02/2015 12:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 5520 series" ["C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\{E5FF7EFA-9037-4DB8-A89F-F0C074F2230B}" [C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avpui.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Ilse\AppData\Roaming\Mozilla\Firefox\Profiles\yfhgjto1.default-1392228923229
user_pref("browser.startup.homepage", "http://www.google.be/");

ProfilePath: C:\Users\Joeri\AppData\Roaming\Mozilla\Firefox\Profiles\23txp4xz.default
user_pref("browser.startup.homepage", "https://www.google.be");

ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\umlcphot.default
user_pref("browser.startup.homepage", "http://www.google.be");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com"="C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com" [07/02/2015 12:18]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Ilse\AppData\Roaming\Mozilla\Firefox\Profiles\yfhgjto1.default-1392228923229
- Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\content_blocker@kaspersky.com
- Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
- Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com
- Undetermined - belgiumeid@eid.belgium.be
- Undetermined - content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com
- Undetermined - virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com
- Undetermined - online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com
- Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi

ProfilePath: C:\Users\Joeri\AppData\Roaming\Mozilla\Firefox\Profiles\23txp4xz.default
- Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\content_blocker@kaspersky.com
- Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
- Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com
- Undetermined - content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com
- Undetermined - virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com
- Undetermined - online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com

ProfilePath: C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\umlcphot.default
- Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\content_blocker@kaspersky.com
- Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
- Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com
- Undetermined - content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com
- Undetermined - virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com
- Undetermined - online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Ilse\AppData\Roaming\Mozilla\Firefox\Profiles\yfhgjto1.default-1392228923229
C62322C77D1AAB77B1CF1130FCC3673A	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll -	Shockwave Flash
D2B5242013356AF422A42B9FAA4056C2	- C:\Users\Ilse\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin.dll -	VASCO Card Reader Plugin
B07511C6F3BBC07B1E09E44F20EE5B8A	- C:\Windows\SysWoW64\Adobe\Director\np32dsw.dll -	Shockwave for Director / Shockwave for Director
FD63DE29FE0A7E738BD81CA0EDDD8020	- C:\Users\Ilse\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin64.dll -	VASCO Card Reader Plugin


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dbhjdbfgekjfcfkkfjjmlmojhbllhbho - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho[]
lpoimibckejjdjcfbdnajaicnklhfplh - https://chrome.google.com/webstore/detail/lpoimibckejjdjcfbdnajaicnklhfplh[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Page_URL"="http://www.aldi.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{1F0B0ED5-611B-4DB3-AEAC-7CD20FCD496E} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNC_enDE393"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContentBlockerBrowserHelperObject - {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: Safe Money Plugin - {E3D96E85-529D-4269-AC6A-97CF9E2221E3} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Virtueel Toetsenbord - {09A10376-994C-4BBF-9121-F50CF7BA237E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\IEExt\ie_plugin.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1553-72747-17534-1/4 (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Kaspersky Anti-Virus-service 15.0.1 (AVP15.0.1) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ilse\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ilse\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Joeri\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Joeri\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Marc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Marc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Ilse\AppData\Local\Mozilla\Firefox\Profiles\yfhgjto1.default-1392228923229\cache2 emptied successfully
C:\Users\Joeri\AppData\Local\Mozilla\Firefox\Profiles\23txp4xz.default\cache2 emptied successfully
C:\Users\Marc\AppData\Local\Mozilla\Firefox\Profiles\umlcphot.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=3 folders=4 962 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Ilse\AppData\Local\Temp will be emptied at reboot
C:\Users\Joeri\AppData\Local\Temp emptied successfully
C:\Users\Marc\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Ilse\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Ilse\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\MS59E4P6\fbstatic-a.akamaihd.net"  not found

==== EOF on za 21/02/2015 at 13:15:59,04 ======================