Zoek.exe v5.0.0.0 Updated 05-March-2015 Tool run by Gebruiker on ma 23-03-2015 at 10:37:10,65. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QD61LA05\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 23-3-2015 10:38:57 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Users\Gebruiker\AppData\Roaming\FBDownloader deleted successfully C:\Users\Gebruiker\AppData\Roaming\Snz deleted successfully C:\Users\Administrator\AppData\Local\Comodo deleted successfully C:\Users\Administrator\AppData\Local\Google deleted successfully C:\Users\Gast\AppData\Local\Comodo deleted successfully C:\Users\Gast\AppData\Local\Google deleted successfully C:\Users\Gebruiker\AppData\Local\Comodo deleted successfully C:\Users\Gebruiker\AppData\Local\Secunia PSI deleted successfully C:\Users\Gebruiker\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3575262360-258679368-1463809348-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-3575262360-258679368-1463809348-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3575262360-258679368-1463809348-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{5C2DD58F-613F-4580-8AC0-F10D760AF938} deleted successfully ==== Installed Programs ====================== 3M Products Update version 2012-05 for Microsoft Office 2010 64 Bit HP CIO Components Installer Aangifte inkomstenbelasting 2013 Adobe Reader XI (11.0.10) - Nederlands Adobe Refresh Manager Adobe Shockwave Player 12.1 AIO_CDA_ProductContext AIO_CDA_Software AIO_Scan ANT Drivers Installer x64 Avast Internet Security BufferChm C5100 c5100_Help CCleaner Citrix Authentication Manager Citrix Receiver Citrix Receiver (HDX Flash Redirection) Citrix Receiver Inside Citrix Receiver(Aero) Citrix Receiver(DV) Citrix Receiver(USB) Copy Definition Update for Microsoft Office 2010 (KB2956207) 64-Bit Edition Destinations DeviceDiscovery DocProc Elevated Installer Fax Garmin Express Garmin Express Tray Google Chrome Google Update Helper GPBaseService2 HP Customer Participation Program 14.0 HP Imaging Device Functions 14.0 HP Photosmart All-In-One Driver Software HP Solution Center 14.0 HP Update HPDiagnosticAlert HPPhotoGadget HPProductAssistant Image Resizer for Windows Image Resizer for Windows (64 bit) Intel(R) Processor Graphics Java 8 Update 31 Java 8 Update 40 Java Auto Updater MarketResearch Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office Language Pack 2010 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2010 Microsoft Office Office 32-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared 32-bit MUI (Dutch) 2010 Microsoft Office Shared 32-bit MUI (English) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office SharePoint Designer MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Office X MUI (Dutch) 2010 Microsoft Silverlight Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD MSXML 4.0 SP3 Parser Network64 OCR Software by I.R.I.S. 14.0 Online Plug-in Recuva Security Update for Microsoft Excel 2010 (KB2956142) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2883100) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2889839) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition Security Update for Microsoft Word 2010 (KB2956139) 64-Bit Edition Self-service Plug-in Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 64-Bit Edition SolutionCenter Status Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) swMSM Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD Toolbox TrayApp Update for Microsoft Access 2010 (KB2837601) 64-Bit Edition Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2597089) 64-Bit Edition Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition Update for Microsoft Office 2010 (KB2910896) 64-Bit Edition Update for Microsoft Office 2010 (KB2920813) 64-Bit Edition Update for Microsoft Office 2010 (KB2956141) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2956128) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2956203) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2880517) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition Update for Microsoft Visio 2010 (KB2878283) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition VLC media player WebReg ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe C:\Windows\SysWOW64\svchost.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Citrix\ICA Client\redirector.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\SysWOW64\ctfmon.exe C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QD61LA05\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\Gebruiker\AppData\Roaming\DataMgr deleted C:\Users\Gebruiker\AppData\Roaming\Intermediate deleted C:\Users\Gebruiker\AppData\Roaming\SSync deleted C:\Users\Gebruiker\AppData\Roaming\SCheck deleted C:\Users\Gebruiker\AppData\Roaming\Common deleted C:\Users\Gebruiker\AppData\Local\simple_new_tab deleted C:\windows\SysNative\Tasks\avast! Emergency Update deleted C:\windows\SysNative\Tasks\avastBCLRestartS-1-5-21-3575262360-258679368-1463809348-1001 deleted "C:\PROGRA~2\Windows Multimedia Platform" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8071 MB CPU Info: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz CPU Speed: 3428,9 MHz Sound Card: Luidsprekers (2- High Definitio | Display Adapters: Intel(R) HD Graphics 4400 | Intel(R) HD Graphics 4400 | Intel(R) HD Graphics 4400 Monitors: 1x; SyncMaster P2370HD(Analog) | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SH-224DB Ports: COM1 LPT Port NOT Present. Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 1847,4GB | E: 931,5GB | G: 698,6GB Hard Disks - Free: C: 1616,2GB | E: 855,7GB | G: 577,6GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: MSI H81M-P33 (MS-7817) Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Firewall: avast! Antivirus disabled Internet Explorer Version: 11.0.9600.17690 Google Chrome version: 41.0.2272.101 Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_40 (32-bit) Sun Java version: 1.8.0_40 (64-bit) Shockwave Player version: 12.1r150 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-03-11 10:39:07 C10A66189DC8C090E7C84873EDCEBC88 2501368 ----a-w- C:\Windows\explorer.exe 2015-03-07 11:06:40 80E856B1AFAEB6195EADAAD65945147C 1001472 ----a-w- C:\Windows\HelpPane.exe 2015-03-07 11:01:42 959A31D0CD013CEA0C66DB7C03BCBDDF 221184 ----a-w- C:\Windows\notepad.exe 2015-03-07 10:57:41 B67DB709F5FDAA89CA6C2CB6C1E39B3B 154624 ----a-w- C:\Windows\regedit.exe 2015-03-07 10:57:16 4D9DA155B7B449964E14FC32124CC601 128512 ----a-w- C:\Windows\splwow64.exe 2015-03-07 10:46:52 727B4519FE9919447108CBEC4768F34A 54272 ----a-w- C:\Windows\twain_32.dll 2015-03-07 10:43:11 B934411DFE7DEACFA95A1255A48133C9 17408 ----a-w- C:\Windows\hh.exe 2015-03-07 10:43:08 335C38783B3F1B383ECAC17DB3705895 9728 ----a-w- C:\Windows\winhlp32.exe 2015-03-07 10:43:03 73E19BE0E0ECD88616B5762F621B0226 11264 ----a-w- C:\Windows\write.exe ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== 2015-03-14 12:24:39 ECA0A1B9869AF0EE9D28BEC3A13F270B 7877632 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtWebKit4.dll 2015-03-14 12:24:39 ECA0A1B9869AF0EE9D28BEC3A13F270B 7877632 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtWebKit4.dll 2015-03-14 12:24:39 AB46B5ED48D5D6CFB8108F9A9668F72C 6174208 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtGui4.dll 2015-03-14 12:24:39 20AB4A282C807E95374E36CC52E520BD 518656 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtNetwork4.dll 2015-03-14 12:24:39 20AB4A282C807E95374E36CC52E520BD 518656 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtNetwork4.dll 2015-03-14 12:24:38 FCF71EB3367B39EDE69F60C6297BA6D3 1392312 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\Leap.dll 2015-03-14 12:24:38 FCF71EB3367B39EDE69F60C6297BA6D3 1392312 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\Leap.dll 2015-03-14 12:24:38 E3C817F7FE44CC870ECDBCBC3EA36132 421200 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\msvcp100.dll 2015-03-14 12:24:38 E3C817F7FE44CC870ECDBCBC3EA36132 421200 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\msvcp100.dll 2015-03-14 12:24:38 C469CE60EE54CF6604E9859C6DC31BC8 59392 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\libEGL.dll 2015-03-14 12:24:38 C469CE60EE54CF6604E9859C6DC31BC8 59392 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\libEGL.dll 2015-03-14 12:24:38 BF38660A9125935658CFA3E53FDC7D65 773968 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\msvcr100.dll 2015-03-14 12:24:38 BF38660A9125935658CFA3E53FDC7D65 773968 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\msvcr100.dll 2015-03-14 12:24:38 B754524BC1770F2DC2C634DD56A794DA 18944 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\imageformats\qgif4.dll 2015-03-14 12:24:38 B754524BC1770F2DC2C634DD56A794DA 18944 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\imageformats\qgif4.dll 2015-03-14 12:24:38 AB46B5ED48D5D6CFB8108F9A9668F72C 6174208 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtGui4.dll 2015-03-14 12:24:38 A725A2C0DD788A02A32BDE1DD9C72880 1777664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\QtCore4.dll 2015-03-14 12:24:38 A725A2C0DD788A02A32BDE1DD9C72880 1777664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\QtCore4.dll 2015-03-14 12:24:38 A4C63C679F9726858DDCFC48B70B2FC5 519168 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\libGLESv2.dll 2015-03-14 12:24:38 A4C63C679F9726858DDCFC48B70B2FC5 519168 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\libGLESv2.dll 2015-03-14 12:24:38 7301C1E86530ABAC37A34185B7B28CBF 290816 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGUtils.dll 2015-03-14 12:24:38 7301C1E86530ABAC37A34185B7B28CBF 290816 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGUtils.dll 2015-03-14 12:24:38 6FD84FAA5E911290B691C202B4E3642D 1405952 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\plugin_ax.dll 2015-03-14 12:24:38 63FC0E0BB048DA44C35CDA51598C74BB 885248 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\Plugins\npgeinprocessplugin.dll 2015-03-14 12:24:38 5B92CB0A3EEE50F6B9AE036B4F9B0F0C 923648 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\npgeplugin.dll 2015-03-14 12:24:38 4E4629F35DF9274D40A32375537EF327 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGSg.dll 2015-03-14 12:24:38 0F739BF9F4ACF621CB0348EEDE3B1061 158208 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\imageformats\qjpeg4.dll 2015-03-14 12:24:38 0F739BF9F4ACF621CB0348EEDE3B1061 158208 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\imageformats\qjpeg4.dll 2015-03-14 12:24:37 C35243A826964A115500B6B301F606E1 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGAttrs.dll 2015-03-14 12:24:37 6DD0A58C130A79D7C4D5783631F615D8 1224192 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGCore.dll 2015-03-14 12:24:37 6DD0A58C130A79D7C4D5783631F615D8 1224192 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGCore.dll 2015-03-14 12:24:37 61572891377238DE88D219ECFC648225 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGSg.dll 2015-03-14 12:24:37 61572891377238DE88D219ECFC648225 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGSg.dll 2015-03-14 12:24:37 61572891377238DE88D219ECFC648225 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGSg.dll 2015-03-14 12:24:37 61572891377238DE88D219ECFC648225 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGSg.dll 2015-03-14 12:24:37 5562D0C6D78A5EB832F34DB71D77A210 1050624 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGOpt.dll 2015-03-14 12:24:37 5562D0C6D78A5EB832F34DB71D77A210 1050624 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGOpt.dll 2015-03-14 12:24:37 4E4629F35DF9274D40A32375537EF327 1393664 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGSg.dll 2015-03-14 12:24:37 4475305A7F73EB8AE47E3B73C08E3DB4 3148288 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGGfx.dll 2015-03-14 12:24:37 4475305A7F73EB8AE47E3B73C08E3DB4 3148288 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGGfx.dll 2015-03-14 12:24:37 4475305A7F73EB8AE47E3B73C08E3DB4 3148288 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGGfx.dll 2015-03-14 12:24:37 4475305A7F73EB8AE47E3B73C08E3DB4 3148288 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGGfx.dll 2015-03-14 12:24:37 3F07CB6466279A809A2A9977784B6C18 145408 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\optimizations\IGOptExtension.dll 2015-03-14 12:24:37 3F07CB6466279A809A2A9977784B6C18 145408 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\optimizations\IGOptExtension.dll 2015-03-14 12:24:37 2FBB97BD0DD258E1DDF093682B929DA6 726016 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGExportCommon.dll 2015-03-14 12:24:37 2FBB97BD0DD258E1DDF093682B929DA6 726016 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGExportCommon.dll 2015-03-14 12:24:37 2AE5771C4C414316B22165D26F4CD971 3105280 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\IGGfx.dll 2015-03-14 12:24:37 2AE5771C4C414316B22165D26F4CD971 3105280 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGGfx.dll 2015-03-14 12:24:37 2ADDE7A820E75DF261DA622CD7FA6DCF 631808 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGMath.dll 2015-03-14 12:24:37 2ADDE7A820E75DF261DA622CD7FA6DCF 631808 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGMath.dll 2015-03-14 12:24:36 C35243A826964A115500B6B301F606E1 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\IGAttrs.dll 2015-03-14 12:24:36 6B4CD508390953D6EC8D540DC7CEBB77 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\IGAttrs.dll 2015-03-14 12:24:36 6B4CD508390953D6EC8D540DC7CEBB77 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogl\IGAttrs.dll 2015-03-14 12:24:36 6B4CD508390953D6EC8D540DC7CEBB77 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\IGAttrs.dll 2015-03-14 12:24:36 6B4CD508390953D6EC8D540DC7CEBB77 751104 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogl\IGAttrs.dll 2015-03-14 12:24:36 360B5E2C91140CCA141B5CF51969F5B0 9843200 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\icudt.dll 2015-03-14 12:24:36 360B5E2C91140CCA141B5CF51969F5B0 9843200 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\icudt.dll 2015-03-14 12:24:35 D1F060242851EE7F5407359D2F8CF3B7 15872 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemyext.dll 2015-03-14 12:24:35 D1F060242851EE7F5407359D2F8CF3B7 15872 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemyext.dll 2015-03-14 12:24:35 A9BFB5A8A75FA0D3C0CAF9BE03D51802 86528 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\ge_expat.dll 2015-03-14 12:24:35 A9BFB5A8A75FA0D3C0CAF9BE03D51802 86528 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\ge_expat.dll 2015-03-14 12:24:35 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\d3dx9_43.dll 2015-03-14 12:24:35 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\d3dx9_43.dll 2015-03-14 12:24:35 6A9B8D02C6EBF22ED5AEAC9ACF193967 1207296 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\GoogleEarth.exe 2015-03-14 12:24:35 5F22869442F9B6BB9918D403E14DF9D5 17652224 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\googleearth_free.dll 2015-03-14 12:24:35 5F22869442F9B6BB9918D403E14DF9D5 17652224 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\googleearth_free.dll 2015-03-14 12:24:35 52347385EB760EAF8B1C56A1EB59C5B1 18944 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\earthps.dll 2015-03-14 12:24:35 52347385EB760EAF8B1C56A1EB59C5B1 18944 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\earthps.dll 2015-03-14 12:24:35 479D8C124562F49C83FC9150635962E9 208384 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\geplugin.exe 2015-03-14 12:24:35 479D8C124562F49C83FC9150635962E9 208384 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\googleearth.exe 2015-03-14 12:24:35 2B30226A9C3A529BC98F0D1AFCC27333 51712 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\earthflashsol.exe 2015-03-14 12:24:35 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\plugin\alchemy\ogles20\D3DCompiler_43.dll 2015-03-14 12:24:35 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\alchemy\ogles20\D3DCompiler_43.dll 2015-03-14 12:24:35 10840B6059E7FBB29BF0787B00FD0E12 301056 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\program files\Google\Google Earth\client\gpsbabel.exe 2015-03-14 12:24:34 EE6719E48BF2E094683B05655AE7A024 1319936 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\._msige61\Google Earth.msi 2015-03-09 18:02:27 715C98AA5955E7E07FB99D87F522E73A 200192 ------w- C:\Users\Gebruiker\AppData\Local\Temp\jna\jna7195257633728477986.dll ====== Java Cache ===== 2015-02-21 16:31:28 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-7376a8ac 2015-02-21 16:31:22 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-2064d1e3 2015-02-21 16:31:22 4ABF5F8F29283085D0157D0D33624CE5 424 ----a-w- C:\Users\Gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap 2015-03-18 18:27:01 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-580956df 2015-02-21 16:31:22 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\Gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-279cec4e ====== C:\Windows\SysWOW64 ===== 2015-03-12 08:37:37 BF04E252967D6AA5779A24DD6BBDA7D0 178144 ----a-w- C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-03-12 08:37:37 AFBB78BD6C387FFA4F3AE18B2BB983ED 792032 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-03-11 10:40:29 E26D49197CA9E38BCC6033DE53F720BD 816128 ----a-w- C:\Windows\SysWOW64\calc.exe 2015-03-11 10:40:21 F8B2956CE0F98289F5A8D3FBF638D989 12800 ----a-w- C:\Windows\SysWOW64\winshfhc.dll 2015-03-11 10:39:35 19920B416F3274640B3DE9A5248F0E74 560392 ----a-w- C:\Windows\SysWOW64\SHCore.dll 2015-03-11 10:39:34 EB75202872E2A233CA0C4E84D122B266 35840 ----a-w- C:\Windows\SysWOW64\atmlib.dll 2015-03-11 10:39:34 9E39AC33607AAF228686FA15249E5C42 358912 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-03-11 10:39:34 1E14074826BCDAC8764743D8F92E6CFE 301056 ----a-w- C:\Windows\SysWOW64\atmfd.dll 2015-03-11 10:39:33 8F3E99586FDAD25BD0DA0C37C6DBE1EC 2484224 ----a-w- C:\Windows\SysWOW64\msftedit.dll 2015-03-11 10:39:33 45804906FFF3DD025BC725BE0DC98797 290816 ----a-w- C:\Windows\SysWOW64\photowiz.dll 2015-03-11 10:39:32 B004C599E9DFE8A4C4A7421E80B94FBD 1943040 ----a-w- C:\Windows\SysWOW64\dwmcore.dll 2015-03-11 10:39:31 E094D21FE482A0DC59056B6B9D421B07 1230336 ----a-w- C:\Windows\SysWOW64\mfc42u.dll 2015-03-11 10:39:31 5EB5142C178BED2C4372406203B9BC1D 1204224 ----a-w- C:\Windows\SysWOW64\mfc42.dll 2015-03-11 10:39:30 FCF02D20B26118DD7E4E871323AAAB58 35840 ----a-w- C:\Windows\SysWOW64\atlthunk.dll 2015-03-11 10:39:30 08B8F2E5FAAC73EF1AFD99B2AEC104FD 3551744 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll 2015-03-11 10:39:28 6A978C77BADD838D8A5347DBC06142A7 811008 ----a-w- C:\Windows\SysWOW64\WSShared.dll 2015-03-11 10:39:27 C443536D9279B74A162E3C39A83CB226 60928 ----a-w- C:\Windows\SysWOW64\StorageContextHandler.dll 2015-03-11 10:39:27 93F59EDC3602F47840631BB7F334B66C 1498360 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2015-03-11 10:39:27 154BC2F7D00DA9790A99787B6019535E 2459136 ----a-w- C:\Windows\SysWOW64\authui.dll 2015-03-11 10:39:25 C561022F4E2882B44BDB65AE2B0756C0 266752 ----a-w- C:\Windows\SysWOW64\eapphost.dll 2015-03-11 10:39:25 958A5388C05106844C80AEB95948A32B 91648 ----a-w- C:\Windows\SysWOW64\eappgnui.dll 2015-03-11 10:39:25 4720D1AF566E7C2127B4EEDDD070CA87 278016 ----a-w- C:\Windows\SysWOW64\eappcfg.dll 2015-03-11 10:39:25 20A130BE26CBB3B50C5B19B91BED669B 250880 ----a-w- C:\Windows\SysWOW64\eapp3hst.dll 2015-03-11 10:39:19 95CB6079B3E62D4301958023C2070A48 19720192 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-03-11 10:39:16 FC5FE9F2D140435FC95CB3EF6724EF0A 4300288 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-03-11 10:39:16 E868396BC5F8957A9E39BD9A28EA814D 12827648 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-03-11 10:39:15 EA6EA6912F27F05C61D8D747517EB47E 1888256 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-03-11 10:39:15 BC9CE46C3F05CCC40F8F1EFC7E4B41C7 503296 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-03-11 10:39:15 B35C35C55FED3DD7F995C77F63CBC29B 1311232 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-03-11 10:39:15 52B4DECDC70B8758380D37EA2CDD4254 2278400 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-03-11 10:39:15 1F53B89EDB383115B4DE44019CA6D2E1 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2015-03-11 10:39:14 AD1BA932AC31D2BC8C9105DA59BEA6BE 689152 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-03-11 10:39:14 AD13E719AE506AA0E0BB5D49E0D5B44A 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-03-11 10:39:14 A34897A1A39316BDECCA3E61986F98F2 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-03-11 10:39:14 6458965ED7A412AA6B4A3C5197EEBBD7 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2015-03-11 10:39:14 6108ED659B5962DE73DACB3B04D86ED3 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2015-03-11 10:39:14 00F39165D6D14302618C20CDD7BB213A 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-03-11 10:39:13 CFAB72035AC43BE256A750D1C788D092 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2015-03-11 10:39:13 B59AD24271B8CA366001B52243930E86 664064 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-03-11 10:39:13 A41C85FDB2275FA9AAA821A118807FDB 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2015-03-11 10:39:09 5BD6BE549A4C267D69E86160E3100C14 1123848 ----a-w- C:\Windows\SysWOW64\msctf.dll 2015-03-11 10:39:09 498D5BC0289F8DD995FEEE8E7CD906CA 357376 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2015-03-11 10:39:08 4B56EAB79339F37E0C5B325405C4FF95 1488040 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2015-03-11 10:39:07 91E24273FCA076EA9E65DAFA98901225 2207488 ----a-w- C:\Windows\SysWOW64\explorer.exe 2015-03-11 10:39:07 64FDBD1F4955DA132578392754AA1A79 19731824 ----a-w- C:\Windows\SysWOW64\shell32.dll 2015-03-11 10:39:06 D5496CF5DF8921CFC1EF1770F98C2192 791040 ----a-w- C:\Windows\SysWOW64\MrmCoreR.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-03-11 10:40:29 D82C445E3D484F31CD2638A4338E5FD9 933888 ----a-w- C:\Windows\Sysnative\calc.exe 2015-03-11 10:40:21 72BEE6C5173218A8846D31DF68D2AE4F 14848 ----a-w- C:\Windows\Sysnative\winshfhc.dll 2015-03-11 10:39:45 BDE6152B584ABDA7DA102B363E58354F 396419 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml 2015-03-11 10:39:36 EEB76824DC14283A010CAE4E2B5AB852 723072 ----a-w- C:\Windows\Sysnative\SHCore.dll 2015-03-11 10:39:35 35A579220C411DED00E0DA5AFB755178 4178944 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-03-11 10:39:34 E63FD4AED397626B314B96EA11341220 430080 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-03-11 10:39:34 DF55E2D7D045BA1A2C43029DEDF0B59D 347136 ----a-w- C:\Windows\Sysnative\photowiz.dll 2015-03-11 10:39:34 BBBE2BA24785E3A7ED1FF706B01C7770 358912 ----a-w- C:\Windows\Sysnative\atmfd.dll 2015-03-11 10:39:34 85012538999DC5628E67B7579FF5034F 44032 ----a-w- C:\Windows\Sysnative\atmlib.dll 2015-03-11 10:39:33 C08E7F8AC41901403799B237DA7BA10E 3097600 ----a-w- C:\Windows\Sysnative\msftedit.dll 2015-03-11 10:39:33 7F586D08E965FA00EE085319EF5BBAF1 864256 ----a-w- C:\Windows\Sysnative\win32spl.dll 2015-03-11 10:39:33 77F28E71B2C0297AB67EA81878B1FA83 2257408 ----a-w- C:\Windows\Sysnative\dwmcore.dll 2015-03-11 10:39:33 2AE4D70A3657FA4FA734B370E79F83FF 1091072 ----a-w- C:\Windows\Sysnative\localspl.dll 2015-03-11 10:39:31 81CB7FF2FF19D639FD75B6B992BABC43 4298240 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll 2015-03-11 10:39:31 20433FD8C8F460567DE93F472A4D749F 1488896 ----a-w- C:\Windows\Sysnative\mfc42u.dll 2015-03-11 10:39:30 60629FA01E0CAE23DA527DFA5ECAD5C7 1464832 ----a-w- C:\Windows\Sysnative\mfc42.dll 2015-03-11 10:39:28 9F2265288BCA4EF9B34FAD2D0078070E 7472960 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2015-03-11 10:39:28 44AA550C6B46C80E430A3D29820D629E 1733440 ----a-w- C:\Windows\Sysnative\ntdll.dll 2015-03-11 10:39:28 40CBEB7C0051036CBC1C243A025F206D 971776 ----a-w- C:\Windows\Sysnative\WSShared.dll 2015-03-11 10:39:27 68DF7D160987CF3E0A03A64E5A8F087D 2773504 ----a-w- C:\Windows\Sysnative\authui.dll 2015-03-11 10:39:27 613438C2C3D899F50719B6878579C66D 75264 ----a-w- C:\Windows\Sysnative\StorageContextHandler.dll 2015-03-11 10:39:26 EA10446D574CB8A20D913BF500E34192 3547648 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2015-03-11 10:39:26 992A0252586D9D946535DDBBEF9AB7D5 346112 ----a-w- C:\Windows\Sysnative\eappcfg.dll 2015-03-11 10:39:26 92360C5E0D86B027377381E867BD055A 203264 ----a-w- C:\Windows\Sysnative\ubpm.dll 2015-03-11 10:39:26 66F962AE94FF268070ED2325DAEE88BA 131584 ----a-w- C:\Windows\Sysnative\rdpudd.dll 2015-03-11 10:39:25 62F00DA98A4ABDA58254DB936C1D2D73 339456 ----a-w- C:\Windows\Sysnative\eapphost.dll 2015-03-11 10:39:25 4644F62E41B054A1787225D1210108B2 331776 ----a-w- C:\Windows\Sysnative\eapp3hst.dll 2015-03-11 10:39:24 4E32C419A8B3CC19FCD2CACDEF1BD492 102912 ----a-w- C:\Windows\Sysnative\eappgnui.dll 2015-03-11 10:39:19 1193400D8E29A5A010135FB09A4EB1E8 25021440 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-03-11 10:39:17 40DF85D8B2B0171EF5F23AA1B5CD9A62 6035456 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-03-11 10:39:16 2335F6BF8A127E31EB0E2D9A82F188A0 14398976 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-03-11 10:39:15 A03AF8AD44CAE309908557F5724BC808 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll 2015-03-11 10:39:15 62269DEFF17AB006217330A24EA8577B 2886144 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-03-11 10:39:15 501A38B72FA264605123B4FACF53F057 1548288 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-03-11 10:39:15 36F99BD8A0F09BDBB7850A138845A014 2358784 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-03-11 10:39:14 A9190899A35431CF8ABBEF5E1BB0C8F9 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2015-03-11 10:39:14 80B3AD73027A2CCD42C47EBF5C89124F 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-03-11 10:39:14 7E16095C0BEEF62D1A2674D6A232DEE1 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll 2015-03-11 10:39:14 687E11F36832BFF65EF0CD2FA3DB1966 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-03-11 10:39:14 5443F21A33DB376734DBE47F7635542C 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-03-11 10:39:14 3DE5D78D843D3F44B5D9189D61C2725E 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2015-03-11 10:39:14 22C4867C690C38B18B2C1A0B072CD0C4 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-03-11 10:39:14 1C393E42928BF55B3796E732B678CD5B 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2015-03-11 10:39:13 DF9BF7D44E9EC59924B642AB478E72DA 374272 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-03-11 10:39:13 D373113A84C12BA7F07CE1E9CAF4747F 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-03-11 10:39:13 C010D371BC7FE8ECC01EFE5E92D8E996 2865152 ----a-w- C:\Windows\Sysnative\actxprxy.dll 2015-03-11 10:39:13 9E9B757A677927110393A505822D9174 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2015-03-11 10:39:13 3541B433422C3FEEB8ABFC8386D95275 816128 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-03-11 10:39:09 D103F021B60F27DEBAEC4D316C7A0F42 1384712 ----a-w- C:\Windows\Sysnative\msctf.dll 2015-03-11 10:39:09 6334135544739B49C776DFE0B6F0FA9F 402432 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2015-03-11 10:39:08 B9109627AA19B15BA4BFA5255AAECBF2 22291584 ----a-w- C:\Windows\Sysnative\shell32.dll 2015-03-11 10:39:08 5A1F895338418DF8C1D31E590DC1BAA5 1763352 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2015-03-11 10:39:06 F91E83532107E8B0A1819DB2D96366CB 1090048 ----a-w- C:\Windows\Sysnative\MrmCoreR.dll 2015-03-11 10:39:06 55E39907F34D14E0794DD17C915795E5 46456 ----a-w- C:\Windows\Sysnative\LockScreenContentServer.exe ====== C:\Windows\Sysnative\drivers ===== 2015-03-11 10:40:25 D296D0F0DB2CD1504F90405603664493 264000 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2015-03-11 10:40:24 9F4DF0043965808973023A9B51A11136 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2015-03-11 10:40:24 1751F6B031ADAC34724511057D2E455D 44024 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2015-03-11 10:39:32 6D3A2565E01B3E4B0F1BEDB0D4B00B3F 1113920 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-03-11 10:39:32 42F88B57CAE42FC10059C887B3FCFCEA 97792 -c--a-w- C:\Windows\Sysnative\drivers\hidbth.sys 2015-03-07 11:10:31 65454187E0F8B6C0DCECB0287D06EC43 14144 -c--a-w- C:\Windows\Sysnative\drivers\swenum.sys 2015-03-07 11:09:08 13EFD41E351F31E087283CF66C29A25E 373568 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2015-03-07 11:09:08 00C594D5A1DBD22AD8B2902B9F6EFF94 14528 -c--a-w- C:\Windows\Sysnative\drivers\drmkaud.sys 2015-03-07 11:09:07 468273F7089A3A33D149955F0F203FA4 2485056 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2015-03-07 11:09:02 7F68063A5A0461E02BC860CE0E6BFDDC 2025792 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2015-03-07 11:07:20 E1BB0B6F00F470B451AB45EA13EBA0B3 1552704 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2015-03-07 11:06:38 E796AE43DDD1844281DB4D57294D17C0 533824 -c--a-w- C:\Windows\Sysnative\drivers\acpi.sys 2015-03-07 11:06:38 982B9495F70FEEA269C48F18E960EFDE 389952 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2015-03-07 11:06:30 00D8AC8E3053290BDE6EA2FB6810D2FC 678400 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys 2015-03-07 11:05:57 31233271EDE50D1BBB220F78AFA60486 405504 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2015-03-07 11:05:31 C06E8481E068F170A258441639AC5792 551232 -c--a-w- C:\Windows\Sysnative\drivers\vhdmp.sys 2015-03-07 11:04:55 D24B1945ED1F9C96DA786DBBF1E983CE 415040 -c--a-w- C:\Windows\Sysnative\drivers\spaceport.sys 2015-03-07 11:04:43 2787A73C848128C950385CB3A63A6B91 337728 ----a-w- C:\Windows\Sysnative\drivers\Classpnp.sys 2015-03-07 11:04:28 6276AC2AA203CF47811F6EFBBD214FBF 202752 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2015-03-07 11:04:19 C1FB505A73FA2E9019D32444AB33B75A 354112 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys 2015-03-07 11:03:53 D7B4859227B02BCC1055B279A63C937F 226304 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys 2015-03-07 11:03:43 FAA564A13576F9284546BF016D27B551 467776 -c--a-w- C:\Windows\Sysnative\drivers\USBHUB3.SYS 2015-03-07 11:01:38 481286719402E4BAEFEA0604AB1B5113 113664 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys 2015-03-07 11:00:18 BF8205666BA2F9C2ABFA821DB8230C12 428864 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2015-03-07 11:00:17 C76097CA941FA7CAFEDB1E557969025C 272384 -c--a-w- C:\Windows\Sysnative\drivers\portcls.sys 2015-03-07 10:59:27 4E829B18D5BAEC29893792A3C671A847 100672 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-03-07 10:59:06 BAFF6122CFC9F95CA175AD8C348179A4 88896 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys 2015-03-07 10:58:39 BAB713B409258DB7B5D9F9693F802B0E 136512 ----a-w- C:\Windows\Sysnative\drivers\wfplwfs.sys 2015-03-07 10:58:24 E8FFD8BE3C50E7A71C5FBB87BDD1128E 96768 ----a-w- C:\Windows\Sysnative\drivers\agilevpn.sys 2015-03-07 10:58:04 41F631007A158FEBB67F0E2AD1601BBA 93696 ----a-w- C:\Windows\Sysnative\drivers\rassstp.sys 2015-03-07 10:57:55 FC0141B4A5AD6D637D883C1A89FC45C5 151040 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys 2015-03-07 10:57:53 008F7CED69FD5B30CBDE1E03C6F36A27 445440 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys 2015-03-07 10:57:52 D1D82F007A079A4D623DBD1F36EF30A1 102208 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys 2015-03-07 10:57:48 F00B189ECA74DDF408AD934ADDC72477 89088 -c--a-w- C:\Windows\Sysnative\drivers\drmk.sys 2015-03-07 10:57:41 A7C31B168F371E8E6796219F23E354DB 61248 ----a-w- C:\Windows\Sysnative\drivers\fsdepends.sys 2015-03-07 10:57:40 A1D4D34A56DF1D5122CDB265038A2E72 59712 -c--a-w- C:\Windows\Sysnative\drivers\kbdclass.sys 2015-03-07 10:57:18 A53E798C06D729CCF8459968B4372F6E 89368 ----a-w- C:\Windows\Sysnative\drivers\vmbkmcl.sys 2015-03-07 10:46:49 6505C9E72910F91D4C317EECF22D1DE6 80896 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys 2015-03-07 10:46:40 615DFD97DEA56CE1C3A52185A3038FF8 921920 ----a-w- C:\Windows\Sysnative\drivers\refs.sys 2015-03-07 10:46:05 BC8A79C625568DDB7DCA49D0C2741A64 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys 2015-03-07 10:46:04 511AD3FF957A0127E6BD336FF6F89C38 97048 ----a-w- C:\Windows\Sysnative\drivers\vmbus.sys 2015-03-07 10:45:59 EF31713EE4C7CCFE4049F7E7F15645A2 69952 ----a-w- C:\Windows\Sysnative\drivers\vpci.sys 2015-03-07 10:45:59 8B9486B64E5FC17FB9CC04CA10B77A34 49944 ----a-w- C:\Windows\Sysnative\drivers\vmstorfl.sys 2015-03-07 10:45:59 10A78656BF6126245631705E45F9B9CF 61208 ----a-w- C:\Windows\Sysnative\drivers\winhv.sys 2015-03-07 10:45:56 269882812E9A68FFF1AFE1283D428322 126464 ----a-w- C:\Windows\Sysnative\drivers\NdisImPlatform.sys 2015-03-07 10:45:42 6FC047578785B0435F4E2660946D1ADC 74240 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys 2015-03-07 10:45:27 A2468CC3509394A33C4C32F99563D845 54784 ----a-w- C:\Windows\Sysnative\drivers\wpcfltr.sys 2015-03-07 10:45:27 1A20F03700D2B2ED775E38D751EF2F63 324928 -c--a-w- C:\Windows\Sysnative\drivers\USBXHCI.SYS 2015-03-07 10:45:24 F3C060444777A59FC63D920719E43CCD 115712 ----a-w- C:\Windows\Sysnative\drivers\bridge.sys 2015-03-07 10:45:23 0E046FF5823B95326D10CF1B4AF23541 39424 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys 2015-03-07 10:45:20 807F8CF3E973305FC435C61CBBEE2A49 189248 -c--a-w- C:\Windows\Sysnative\drivers\UCX01000.SYS 2015-03-07 10:45:17 5F66B7BB330AA80067FC66149A692620 33600 ----a-w- C:\Windows\Sysnative\drivers\wimmount.sys 2015-03-07 10:45:17 2A2F8D5284E59815169A88F1FC9CEE28 51008 -c--a-w- C:\Windows\Sysnative\drivers\mouclass.sys 2015-03-07 10:45:06 A57A897E3F87B8E9F30A627C42779A76 21824 ----a-w- C:\Windows\Sysnative\drivers\tbs.sys 2015-03-07 10:44:08 DDD7F92A83F74D1476B71FBA9530A8DC 72192 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys 2015-03-07 10:43:39 D4DCE03870314D3354F3501F9DDD4123 87040 ----a-w- C:\Windows\Sysnative\drivers\netvsc63.sys 2015-03-07 10:43:36 415DD71628795197F7AFC176CBADC74E 82944 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2015-03-07 10:43:21 42FF4975D032CAE558AE4BB8448F6E5A 48128 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys 2015-03-07 10:42:52 13BEA6C882D4D877A5A85CA149C86BC1 40960 ----a-w- C:\Windows\Sysnative\drivers\scfilter.sys 2015-03-07 10:42:46 4A34D7084B862A92F3ABC4969166B3D3 32256 -c--a-w- C:\Windows\Sysnative\drivers\kbdhid.sys 2015-03-07 10:42:45 D887446F3F6051C60C26F4FD1FC8D43F 107520 -c--a-w- C:\Windows\Sysnative\drivers\i8042prt.sys 2015-03-07 10:42:45 D7A41959BB3A8510F1BAC36F5CEC1874 144384 ----a-w- C:\Windows\Sysnative\drivers\rmcast.sys 2015-03-07 10:42:45 91223A2AE2955B3E0DA3DB79C3A897A6 30208 -c--a-w- C:\Windows\Sysnative\drivers\mouhid.sys 2015-03-07 10:42:44 96B01F117057FB4DAE0FF919ACB55770 26112 -c--a-w- C:\Windows\Sysnative\drivers\sermouse.sys 2015-03-07 10:42:44 51B3AC0560848CD6D65AC2033E293113 66560 ----a-w- C:\Windows\Sysnative\drivers\mslldp.sys 2015-03-07 10:42:43 8CECC8DA55F3274181FD1EA28AD76664 43008 ----a-w- C:\Windows\Sysnative\drivers\ndiscap.sys 2015-03-07 10:42:43 83868EB2924E6BC21A54337C65D614D1 47104 ----a-w- C:\Windows\Sysnative\drivers\qwavedrv.sys 2015-03-07 10:42:43 67343511D80BF3D6D9EEDB5BA8D0B06B 57856 -c--a-w- C:\Windows\Sysnative\drivers\bthhfenum.sys 2015-03-07 10:42:43 0F030491BA4A27BD46F8B8ACEEE83F1A 44544 ----a-w- C:\Windows\Sysnative\drivers\usbscan.sys 2015-03-07 10:42:42 9746BA79DE0CA5EB5104406A9ED62D01 11776 ----a-w- C:\Windows\Sysnative\drivers\rootmdm.sys 2015-03-07 10:42:42 82821F4EEC776B4CF11695A38F3ABA46 24576 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys 2015-03-07 10:42:42 3083926D1CC5B56EA0786527B557DD1B 103424 ----a-w- C:\Windows\Sysnative\drivers\Ndu.sys 2015-03-07 10:42:42 20185BEB7512EDE4EFECDFA148AC9F99 29696 -c--a-w- C:\Windows\Sysnative\drivers\TsUsbGD.sys 2015-03-07 10:42:42 0139248F6B95CF0D837B5B46A2722D40 98304 -c--a-w- C:\Windows\Sysnative\drivers\usbcir.sys 2015-03-07 10:42:41 B337B1F1E82A83E20A1743E008E25C0F 17408 ----a-w- C:\Windows\Sysnative\drivers\rasacd.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2015-03-18 18:26:37 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2015-03-14 12:25:10 -------- d-----w- C:\Users\Gebruiker\AppData\Locallow\Google 2015-02-23 09:35:08 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Atari ====== C:\Users\Gebruiker ====== 2015-03-18 18:26:38 -------- d-----w- C:\ProgramData\Sun 2015-03-18 18:19:27 0ED6FD8B4046871E2921C9E3D09343FB 560552 ----a-w- C:\Users\Gebruiker\Downloads\JavaSetup8u40.exe 2015-03-18 18:10:56 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\Gebruiker\Downloads\SpyHunter-Installer.exe 2015-03-14 12:23:46 7D71A566D7A2E09869105FD7E3D2597D 880208 ----a-w- C:\Users\Gebruiker\Downloads\googleupdatesetup.exe 2015-02-21 16:29:42 -------- d-----w- C:\ProgramData\Oracle ====== C: exe-files == 2015-03-21 18:46:24 A38E9C48F13C11CAB641A0C91F8F12A1 885840 ----a-w- C:\Program Files (x86)\Google\Update\Install\{A68B6305-3F26-41F7-AA31-18DBDC9D73BD}\41.0.2272.101_41.0.2272.89_chrome_updater.exe 2015-03-21 18:46:24 A38E9C48F13C11CAB641A0C91F8F12A1 885840 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.101\41.0.2272.101_41.0.2272.89_chrome_updater.exe 2015-03-18 18:26:20 F95C5163F6D8955BEF59A896C7F7112D 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\unpack200.exe 2015-03-18 18:26:20 DFB1F31DD4A08FA5892886DC7117064A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\rmid.exe 2015-03-18 18:26:20 A29B7A1BAD1A1EB608ACF7684F1F1E37 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\tnameserv.exe 2015-03-18 18:26:20 7833052815087E5BF9346AC78FDCED68 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssvagent.exe 2015-03-18 18:26:20 751E8649890CC42727D80F8D6DE1F1CB 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\servertool.exe 2015-03-18 18:26:20 7162180C98D1BE5D1315FC05B3C91E9D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\pack200.exe 2015-03-18 18:26:20 689916BDF4F58C7F7AD25F8B3ABB783A 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\rmiregistry.exe 2015-03-18 18:26:20 0A9C7408BADBA5D2C841817C22ACBF07 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\policytool.exe 2015-03-18 18:26:20 08363434BEC1B0AE6420C77820BC12E9 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\orbd.exe 2015-03-18 18:26:19 AF28DAA2B4EB3AD87203202264A2491C 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\klist.exe 2015-03-18 18:26:19 A07427A93E1133A7F0F4691CC54B9294 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javaws.exe 2015-03-18 18:26:19 946FD6292EAE3FBB93CC3BB01BA8763D 76712 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2launcher.exe 2015-03-18 18:26:19 94017ABBDE345580542D8301793EFF7A 191400 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javaw.exe 2015-03-18 18:26:19 79B6403F5BD398BB9880F00FAF7C69DA 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe 2015-03-18 18:26:19 6031BACB59D93E5ECB4ACDE6E12565EA 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jabswitch.exe 2015-03-18 18:26:19 3DB4CD42B36FD2C98E9B51E3CBC1670E 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jjs.exe 2015-03-18 18:26:19 32700B34EE49959FAF64EC46D96B3630 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\ktab.exe 2015-03-18 18:26:19 30E9397C2F0C8FF128219D6A25E172BB 190888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\java.exe 2015-03-18 18:26:19 2794D464D89260B0316C16A9FE24C660 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\java-rmi.exe 2015-03-18 18:26:19 1FA2D0F07730F502A857BFC63DA6C193 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\kinit.exe 2015-03-18 18:26:19 042B789E469D238D5FA9DEC4241CE3FD 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\keytool.exe 2015-03-18 18:19:27 0ED6FD8B4046871E2921C9E3D09343FB 560552 ----a-w- C:\Users\Gebruiker\Downloads\JavaSetup8u40.exe 2015-03-18 18:10:56 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\Gebruiker\Downloads\SpyHunter-Installer.exe === C: other files == 2015-03-18 18:26:20 9DCBFF045A2A43212A4763C3461A50B9 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-21-3575262360-258679368-1463809348-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "Intermediate"="C:\Users\Gebruiker\AppData\Roaming\Intermediate\Intermediate.exe" "SCheck"="C:\Users\Gebruiker\AppData\Roaming\SCheck\SCheck.exe check " "Snoozer"="C:\Users\Gebruiker\AppData\Roaming\Snz\Snz.exe" "SSync"="C:\Users\Gebruiker\AppData\Roaming\SSync\SSync.exe" "DataMgr"="C:\Users\Gebruiker\AppData\Roaming\DataMgr\DataMgr.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup" "Redirector"="C:\Program Files (x86)\Citrix\ICA Client\redirector.exe /startup" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "Intermediate"="C:\Users\Gebruiker\AppData\Roaming\Intermediate\Intermediate.exe" "SCheck"="C:\Users\Gebruiker\AppData\Roaming\SCheck\SCheck.exe check " "Snoozer"="C:\Users\Gebruiker\AppData\Roaming\Snz\Snz.exe" "SSync"="C:\Users\Gebruiker\AppData\Roaming\SSync\SSync.exe" "DataMgr"="C:\Users\Gebruiker\AppData\Roaming\DataMgr\DataMgr.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" ==== Startup Folders ====================== 2014-07-01 14:26:53 2126 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16-07-2014 13:26] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [07-02-2015 11:11] ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.101 (Possible outdated, latest Stable version: ) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[23-11-2014 20:38] Google Docs - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Avast Online Security - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Google Wallet - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/?trackid=sp-006" "Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/?trackid=sp-006" "Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/?trackid=sp-006" "Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}" "Search Bar"="https://www.google.com/?trackid=sp-006" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {A8952556-12AE-4238-A534-079A5CEB0D03} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=sp-006&q={searchTerms}" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [CitrixReceiver] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk" O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [Redirector] "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" O4 - HKCU\..\Run: [Intermediate] "C:\Users\Gebruiker\AppData\Roaming\Intermediate\Intermediate.exe" O4 - HKCU\..\Run: [SCheck] "C:\Users\Gebruiker\AppData\Roaming\SCheck\SCheck.exe" check O4 - HKCU\..\Run: [Snoozer] "C:\Users\Gebruiker\AppData\Roaming\Snz\Snz.exe" O4 - HKCU\..\Run: [SSync] "C:\Users\Gebruiker\AppData\Roaming\SSync\SSync.exe" O4 - HKCU\..\Run: [DataMgr] "C:\Users\Gebruiker\AppData\Roaming\DataMgr\DataMgr.exe" O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QD61LA05 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=80 folders=17 4338748 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QD61LA05" not found ==== EOF on ma 23-03-2015 at 11:05:28,08 ======================