
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by computer on zo 07-06-2015 at 18:44:08,55.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\computer\Downloads\zoek (1).exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

7-6-2015 18:45:31 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~3\Riot Games deleted successfully
C:\Users\computer\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\AGEIA Technologies not found
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
"C:\crtm.exe" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\computer\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-06-01 12:53:03	9EA661DB9B393F46046D6181A3DDC4AD	2804528	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-06-01 12:52:54	D11A05032C28EE7588C135ECF7B49E81	1204968	----a-w-	C:\Windows\SysWOW64\winmde.dll
2015-06-01 12:52:54	72B3380DA5EA53028501F3B94E421FBB	2295808	----a-w-	C:\Windows\SysWOW64\authui.dll
2015-06-01 12:52:53	92124EF7B1BF5492EFCA17B3A208E4F4	663680	----a-w-	C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-06-01 12:52:52	FF73CDC3F09904D82B0CCC1CA750CD02	218112	----a-w-	C:\Windows\SysWOW64\Windows.Graphics.dll
2015-06-01 12:52:52	C85EA737B20BEDC46CBA748DCE115184	433664	----a-w-	C:\Windows\SysWOW64\mfds.dll
2015-06-01 12:52:51	ECD4A3F754224C954D3D19B6ECBFE5AA	513536	----a-w-	C:\Windows\SysWOW64\rastls.dll
2015-06-01 12:52:51	CF4C3815E577C7DC32BB8DB90F0B34C1	552624	----a-w-	C:\Windows\SysWOW64\oleaut32.dll
2015-06-01 12:52:51	4E556E5490191ED9B771576D9221A461	273920	----a-w-	C:\Windows\SysWOW64\msieftp.dll
2015-06-01 12:52:51	06730D9C233B01E2F99C1BE2461629F7	980480	----a-w-	C:\Windows\SysWOW64\mispace.dll
2015-06-01 12:50:50	9929F71938D9FCE4550BEB935071F0C8	13949440	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-06-01 12:50:46	D292652F380DFC23897CB31B1940E56C	588800	----a-w-	C:\Windows\SysWOW64\SettingSyncCore.dll
2015-06-01 12:50:46	65ACE54B8EDA937EE7706733D27F40A8	802816	----a-w-	C:\Windows\SysWOW64\MFMediaEngine.dll
2015-06-01 12:50:46	42433CDEC449D40F508752F2D487D8E4	478208	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2015-06-01 12:50:45	DBB6B2FA462A5E7029766B09ED9CDA73	381168	----a-w-	C:\Windows\SysWOW64\mfsvr.dll
2015-06-01 12:50:45	CF8746715C1AA00C29F789825E321C7C	770560	----a-w-	C:\Windows\SysWOW64\ReAgent.dll
2015-06-01 12:50:44	EC308077E9BEEDF523AE3D6BA042E016	630272	----a-w-	C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2015-06-01 12:50:44	A863A4DEF854D579C36EAA9DECF21C80	336896	----a-w-	C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-06-01 12:50:44	986ABF43F76F5B0E3557363FB4925C78	1472048	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-06-01 12:50:44	716046CF7941B176C18AA58785899A2D	174592	----a-w-	C:\Windows\SysWOW64\WSClient.dll
2015-06-01 12:50:43	E2C1E49EBFB8EFA1AFF6966533BAD12B	140800	----a-w-	C:\Windows\SysWOW64\easwrt.dll
2015-06-01 12:50:43	A7DE6E0B69826D5B6F5FF68AABCF7035	218112	----a-w-	C:\Windows\SysWOW64\sti.dll
2015-06-01 12:50:43	A00970DBAD7034523CF9D2C395A944B8	103936	----a-w-	C:\Windows\SysWOW64\OEMLicense.dll
2015-06-01 12:47:50	F0769848C6438AF1FF45E495219222B7	444928	----a-w-	C:\Windows\SysWOW64\msdrm.dll
2015-06-01 12:47:12	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-06-01 12:46:30	5254A52E0F354BC7955E309C4166CE0A	1317376	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2015-06-01 12:45:28	AFA852563F2145C26B34F939487A86E9	835584	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-06-01 12:45:28	7F1FC7E98B7DD19BDBB4B2424F93DA8B	1036288	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-06-01 12:44:49	C9C0B562C7AA50A672766AAC8112DF05	3936256	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2015-06-01 12:44:48	2754B116D797255B6A2F2F5DB1760238	2071552	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2015-06-01 12:44:14	C9D1131E2163CE932DF3EAAF0EEA3673	524288	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-06-01 12:44:14	C863E5A2417DF0F2A31ED32C3B2CB23F	17103872	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-06-01 12:44:14	5D9DC6332A4FC66388B09BBE7CF53750	1156096	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-06-01 12:44:14	34CBED7698D557DDB43F8732FBC2ACB9	2168320	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-06-01 12:44:14	260D6B421E5551E8BA75D16B5CA90D9A	51200	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-01 12:44:14	0E7B7C9F483300F9FF97C6A1E4BC4F57	32768	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-06-01 12:44:13	79FA7D8B488F90EDE325963379A6F738	11266048	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-06-01 12:44:13	6A06EB11F1E5BDAA795DAE7838F9FE20	43008	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-06-01 12:44:13	40E68599FE3A10F816217D3789FCE74E	1964032	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-06-01 12:44:13	408805B8083896DC95E6340F4016BEBD	61952	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-06-01 12:44:13	0F739443669F3A48F1B2325995117BFE	553472	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-06-01 12:44:12	B8F28AAC003060E3B125D2447CFC19E2	164864	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-06-01 12:44:12	B5B3334F177CED627C2D7FE38235B6B1	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-06-01 12:44:12	9C89246184979A070B0C6CCF61C68136	1820160	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-06-01 12:44:12	99280392987A1A96C756A9F38C4CE396	4244480	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-06-01 12:44:12	7D6B20C69CC8EECB8F31D4FAF913BBE8	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-01 12:44:12	5DD49C02D059C1E6E47A8FB4A076C9B1	703488	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-06-01 12:43:34	ECEBFCEF5799B57BFF242D24B27E4FE4	2143960	----a-w-	C:\Windows\SysWOW64\mfcore.dll
2015-06-01 12:43:34	D34CE666D9BA3D5232609D3C15075B70	5770752	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2015-06-01 12:43:34	34823DAA381423CAE81FEE7C2EEE52F4	669352	----a-w-	C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-06-01 12:43:34	2A3626E0B7F5A5317902EBDAF2B4CCE0	1371824	----a-w-	C:\Windows\SysWOW64\combase.dll
2015-06-01 12:43:33	FCD51A3EB7E47FBCE17382A95FD3AB35	2873344	----a-w-	C:\Windows\SysWOW64\dbgeng.dll
2015-06-01 12:43:33	F5033F3C6F8E706D78ACB9351EBF7B3E	1238016	----a-w-	C:\Windows\SysWOW64\dbghelp.dll
2015-06-01 12:43:33	D4A17A8DEB194D77AD9651F0EE0C76EB	138752	----a-w-	C:\Windows\SysWOW64\DWWIN.EXE
2015-06-01 12:43:33	D0B6EB329D696A5C2122352EAE722290	855552	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2015-06-01 12:43:33	878B3C936C3C2850A57C24C6F104EBC5	208896	----a-w-	C:\Windows\SysWOW64\rdpencom.dll
2015-06-01 12:43:33	3DA5CD1E3B9BDAF79731CB6CB1029CB3	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2015-06-01 12:43:33	249DE8C6F690646CC8EC53D49ABC6BE9	408480	----a-w-	C:\Windows\SysWOW64\WerFault.exe
2015-06-01 12:43:33	17500825FE6C7094ACC6E7DC6B578399	369280	----a-w-	C:\Windows\SysWOW64\Faultrep.dll
2015-06-01 12:42:31	ED8ED1CE6CAB56103230E2097763DC2B	695808	----a-w-	C:\Windows\SysWOW64\WSShared.dll
2015-06-01 12:42:13	E31D12A9F5F358D60B8B34A1949DCE45	11702272	----a-w-	C:\Windows\SysWOW64\twinui.dll
2015-06-01 12:42:12	D5B5184F8C258D2C3AC70E3799C7A4BF	830976	----a-w-	C:\Windows\SysWOW64\SearchFolder.dll
2015-06-01 12:42:12	46C6D8A6B4DEBBB55B6DA6B92C100599	1202888	----a-w-	C:\Windows\SysWOW64\propsys.dll
2015-06-01 12:42:12	419E037A7BAE52E665F89FB22FCC5D87	4961792	----a-w-	C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-06-01 12:42:12	2100B28C34C4FCE916A4A61F58E31198	9701	----a-w-	C:\Windows\SysWOW64\connectedsearch-results.searchconnector-ms
2015-06-01 12:42:12	0F060B550E6F487682082E053D28D3DC	628736	----a-w-	C:\Windows\SysWOW64\MrmCoreR.dll
2015-06-01 12:41:53	5200C5F299CBE2079C393306BCC43B75	18644072	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-06-01 12:41:28	77854ABDFA570601755D9D63F1F890DA	454656	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-06-01 12:40:27	F80E8CF9E4A051C2CC338C85088A046C	488448	----a-w-	C:\Windows\SysWOW64\qedit.dll
2015-06-01 12:39:48	9A21A14A25A7BC3D0EC1ED56CC75B4B7	17408	----a-w-	C:\Windows\SysWOW64\pcaui.exe
2015-06-01 12:38:52	A199D32EAB410310E03E4652B69AB4D3	240128	----a-w-	C:\Windows\SysWOW64\mdmregistration.dll
2015-05-31 16:42:47	E99049F129B1DE728BE33BA4AF1F353B	97888	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-29 18:07:26	E6C2F1D8B667DDC04CB55B9F0159EF97	467984	----a-w-	C:\Windows\SysWOW64\d3dx10_39.dll
2015-05-29 18:07:26	D95EAABF5D277EF91D9CA70151209E56	68616	----a-w-	C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-05-29 18:07:26	C4F1972497FE2CEB7D900938C97FCF91	1493528	----a-w-	C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-05-29 18:07:26	8CB3DEFB8887C4F0846DB1FC1304D6D2	3851784	----a-w-	C:\Windows\SysWOW64\D3DX9_39.dll
2015-05-29 18:07:26	50F4A0D5E6A0BAFEFA78F353533B8E06	509448	----a-w-	C:\Windows\SysWOW64\XAudio2_2.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-06-01 20:31:57	65D9D98DBFF574BA9B68F76F0BB1630E	140425016	----a-w-	C:\Windows\Sysnative\MRT.exe
2015-06-01 12:53:19	2B76F592B005FE7CF89B87643FDAB47E	115712	----a-w-	C:\Windows\Sysnative\winbici.dll
2015-06-01 12:53:07	5905265F56C14E67D193DB4D53451154	4106240	----a-w-	C:\Windows\Sysnative\SyncEngine.dll
2015-06-01 12:53:04	32370AF583EC8B24D790E1B9201D6811	3210528	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2015-06-01 12:53:01	9FF95D589B5626852CECA2444C5C5A58	2617344	----a-w-	C:\Windows\Sysnative\authui.dll
2015-06-01 12:52:55	D33E2A482C47ABFDD80185DD9C8C06F1	1399176	----a-w-	C:\Windows\Sysnative\winmde.dll
2015-06-01 12:52:55	728D3349FAB251B0265EFA55C67DCA2D	1503232	----a-w-	C:\Windows\Sysnative\wlansvc.dll
2015-06-01 12:52:54	EF276593AD1BDF5A99032F62D6272848	834048	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2015-06-01 12:52:54	D65B1C952AEB864C2BAC7A770B17ECCE	282112	----a-w-	C:\Windows\Sysnative\SystemEventsBrokerServer.dll
2015-06-01 12:52:54	1A1B60D269F745C021F69564B5906AD0	1374384	----a-w-	C:\Windows\Sysnative\wmpmde.dll
2015-06-01 12:52:53	B9FC41CEC711DC0E1BFE927EEDC49176	745336	----a-w-	C:\Windows\Sysnative\oleaut32.dll
2015-06-01 12:52:53	A6207A88B596F726DE558425F3B7E592	263168	----a-w-	C:\Windows\Sysnative\bisrv.dll
2015-06-01 12:52:53	78AB9F5DC27E317F0B34C45D54ABB6B2	32088	----a-w-	C:\Windows\Sysnative\ploptin.dll
2015-06-01 12:52:53	660891FFB1B22FF39AADB3F45CE15D45	470016	----a-w-	C:\Windows\Sysnative\mfds.dll
2015-06-01 12:52:53	40B228D05DB02F4A5F2452600999F53F	809872	----a-w-	C:\Windows\Sysnative\mfmp4srcsnk.dll
2015-06-01 12:52:53	39435F4007F1CEDEF04356892B18D174	202240	----a-w-	C:\Windows\Sysnative\ubpm.dll
2015-06-01 12:52:52	E18E9C9EBCFCA456B74BB6A80B1DB226	1415680	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-06-01 12:52:52	91433B44B1EF301E7DD696EB5281BC20	589824	----a-w-	C:\Windows\Sysnative\rastls.dll
2015-06-01 12:52:52	54A9F4AC86F2A4E7C3ADE47CAE5DE8E0	136704	----a-w-	C:\Windows\Sysnative\psmsrv.dll
2015-06-01 12:52:52	34F8F7A0B782798F6A9511157BCC3E32	273408	----a-w-	C:\Windows\Sysnative\Windows.Graphics.dll
2015-06-01 12:52:51	FF9F658A51CAD74C25AF83038DBD735D	306688	----a-w-	C:\Windows\Sysnative\msieftp.dll
2015-06-01 12:52:51	CD45E3FE736150D45EFDC9145DA53757	24064	----a-w-	C:\Windows\Sysnative\bi.dll
2015-06-01 12:52:51	BDE4ABD3AB4171CECADFD38F392E656C	1227264	----a-w-	C:\Windows\Sysnative\mispace.dll
2015-06-01 12:52:50	AD95F86C8D1843BE653F89FDE213F9E7	207872	----a-w-	C:\Windows\Sysnative\deviceregistration.dll
2015-06-01 12:50:52	04B5ADB034D17585D3BCFC6DE5CADFF8	18576384	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2015-06-01 12:50:47	E069B63DAD920D231FA8A141DFF43A8C	960512	----a-w-	C:\Windows\Sysnative\MFMediaEngine.dll
2015-06-01 12:50:46	E80700EB046D0B82B694C98CF7231C08	481944	----a-w-	C:\Windows\Sysnative\mfsvr.dll
2015-06-01 12:50:46	D03BF756457B6A1EB305B26046BB9B4D	914944	----a-w-	C:\Windows\Sysnative\ReAgent.dll
2015-06-01 12:50:46	A95838FFFAEAA7500263D491575F7E0C	1214976	----a-w-	C:\Windows\Sysnative\schedsvc.dll
2015-06-01 12:50:46	43D0F8E593ABD37B5BC9573EDD71EFEB	628736	----a-w-	C:\Windows\Sysnative\SettingSyncHost.exe
2015-06-01 12:50:46	1D8F8BE07D2B06C32ADB4B08F0F2A357	749056	----a-w-	C:\Windows\Sysnative\SettingSyncCore.dll
2015-06-01 12:50:45	E287F157F7A0011D93179C64EF8ADCF2	376320	----a-w-	C:\Windows\Sysnative\pnrpsvc.dll
2015-06-01 12:50:45	B88A70259DF2927787C0B766DD4CFB5C	206336	----a-w-	C:\Windows\Sysnative\WSClient.dll
2015-06-01 12:50:45	968FB3BA8E7DF0933A1CF593BD503F4A	461312	----a-w-	C:\Windows\Sysnative\XpsGdiConverter.dll
2015-06-01 12:50:45	847CFF96ACB575CE73C0E2E86C6BA993	842752	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.dll
2015-06-01 12:50:45	1FCA4E287F0ED13BF037A484AA2FE3B1	419160	----a-w-	C:\Windows\Sysnative\hal.dll
2015-06-01 12:50:44	C8ACFF60C553E63949A79DC370B516E4	947712	----a-w-	C:\Windows\Sysnative\reseteng.dll
2015-06-01 12:50:44	A0D3749BB1BC942C7D21C4D99E79A615	131160	----a-w-	C:\Windows\Sysnative\easinvoker.exe
2015-06-01 12:50:44	3D136E8D4C0407D9C40FD8BDD649B587	1720560	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-06-01 12:50:43	68085A085DE8E3540EE8E02CAE575B2E	138240	----a-w-	C:\Windows\Sysnative\OEMLicense.dll
2015-06-01 12:50:43	66F214C9E446407D78048681394820A6	178176	----a-w-	C:\Windows\Sysnative\easwrt.dll
2015-06-01 12:50:43	0B9FBEC5714523FF76DDFEB320FE2DF2	303616	----a-w-	C:\Windows\Sysnative\sti.dll
2015-06-01 12:48:10	695C842DAA76536CE44C336C9E27B25D	1507704	----a-w-	C:\Windows\Sysnative\winload.exe
2015-06-01 12:48:10	1A1DDFD4BA6523979C76BE188984C3AC	1643584	----a-w-	C:\Windows\Sysnative\winload.efi
2015-06-01 12:47:50	BE94090FCBB95B6F22E952D27BD2610E	570880	----a-w-	C:\Windows\Sysnative\msdrm.dll
2015-06-01 12:47:12	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\Windows\Sysnative\poqexec.exe
2015-06-01 12:46:30	AC7C39F7A866BF81103042244CE85827	2152448	----a-w-	C:\Windows\Sysnative\msxml3.dll
2015-06-01 12:45:28	AAC770C00645F25A6CE9CCB711F8E7ED	1287576	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-06-01 12:45:28	82580BA9C29F7553FBB4FF6A80664157	1109424	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-06-01 12:44:49	053472337FDD116BD010C88DB0C34DF1	4604416	----a-w-	C:\Windows\Sysnative\d2d1.dll
2015-06-01 12:44:48	389C4E97E3A498159B625A7A13EA4560	2397184	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2015-06-01 12:44:14	FCFAEDF0AA1A78A1875FDB798598408B	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-06-01 12:44:14	E77092C38028EB0A5C461B3436E0A6D5	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-06-01 12:44:14	6300AD525D639CECBB3D144B6D7B30F9	2765824	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-06-01 12:44:13	FD08F8BA2437A85F500EFFE3FD3158A6	33792	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-06-01 12:44:13	E129D34089E70215B65EA611F802FA9A	111616	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-06-01 12:44:13	CDE728C8FB1D6E132CED44835FA44C87	627200	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-06-01 12:44:13	94C59DD02BC7EA0E421055B9946CA861	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-06-01 12:44:13	22874047B810B5B174C68ACD7C0B6510	1393664	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-06-01 12:44:12	C1E2C16D58D76323800C3EE5E2C5095A	66048	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-06-01 12:44:12	83296DE8CFFEADA636DCC1AB2E3BF643	2041856	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-06-01 12:44:12	27516B54E116D5EF8B0129B5C829A87C	218624	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-06-01 12:44:11	F348B2D0983C91392632B4291C517AA4	817664	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-06-01 12:44:11	DB02F4D37E5F7F07A0D0F9FAA68249EE	13051392	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-06-01 12:44:11	5922EEA922D3AD686342F866CAEE851F	5768704	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-06-01 12:44:11	3906C9640406FC0FC00A324947C74893	708608	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-06-01 12:44:11	338415F2E9A188875B6E43B5269620B0	139264	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-06-01 12:44:10	D016F5092E4FFC41147E8555A71D2DDE	23170048	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-06-01 12:44:10	99ED8FBAFD325550D07A32664D9E3CC8	53760	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-06-01 12:44:10	263B6E451526A90FF8B1CEC759F22956	2334208	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-06-01 12:44:10	1D1D7F52EC84294859642A4309FE648E	195584	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-06-01 12:43:35	C993A0B97BECD3AAF5158E3869878465	6353960	----a-w-	C:\Windows\Sysnative\sppsvc.exe
2015-06-01 12:43:34	C7B69F90B823182CE6BE7C5374832DE5	764864	----a-w-	C:\Windows\Sysnative\mfmpeg2srcsnk.dll
2015-06-01 12:43:34	C039246195C736A602F581D29F18A43D	1928144	----a-w-	C:\Windows\Sysnative\combase.dll
2015-06-01 12:43:34	BAAD43360A7DF630ECC414671AEFA28C	6640640	----a-w-	C:\Windows\Sysnative\mstscax.dll
2015-06-01 12:43:34	977F77CE98456F6B115E5360A1160449	2133208	----a-w-	C:\Windows\Sysnative\mfcore.dll
2015-06-01 12:43:34	819A1E0F89B6AC222E9D95CA000A40B1	4175360	----a-w-	C:\Windows\Sysnative\dbgeng.dll
2015-06-01 12:43:33	C83AFB0B285F293EDECF5EBDEC074A94	458616	----a-w-	C:\Windows\Sysnative\WerFault.exe
2015-06-01 12:43:33	C7DFBE21051D5E44B479CBF74B968335	1486848	----a-w-	C:\Windows\Sysnative\dbghelp.dll
2015-06-01 12:43:33	B5D2EBAD81739185A91D210F5F01824B	407024	----a-w-	C:\Windows\Sysnative\Faultrep.dll
2015-06-01 12:43:33	AFCAB4DC692CCE37E283B00E2D7B438F	447488	----a-w-	C:\Windows\Sysnative\sppcomapi.dll
2015-06-01 12:43:33	99453C649DC4B0BE6D062B701CD2917F	716288	----a-w-	C:\Windows\Sysnative\swprv.dll
2015-06-01 12:43:33	94D79382FB796B0A8C90270654A70563	1057280	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2015-06-01 12:43:33	735CB57F806D292FB7ABE8BDFD3B5853	233920	----a-w-	C:\Windows\Sysnative\mfps.dll
2015-06-01 12:43:33	724ADFEE7743C26C550ABFE04271DCFD	160256	----a-w-	C:\Windows\Sysnative\DWWIN.EXE
2015-06-01 12:43:33	3FFEC6927D4017829A82ECDB277BB23E	64512	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2015-06-01 12:43:33	2684605E822359CBD1ED2BD2C8E76397	249856	----a-w-	C:\Windows\Sysnative\rdpencom.dll
2015-06-01 12:43:33	110BE5198A63D3FF3CE9C30F1DC12EC3	386722	----a-w-	C:\Windows\Sysnative\ApnDatabase.xml
2015-06-01 12:42:32	D8E3A4701376CCFD0BE542D745FA4809	3395920	----a-w-	C:\Windows\Sysnative\WSService.dll
2015-06-01 12:42:31	E3E168E733B0E8383BA5635542FDB96F	848384	----a-w-	C:\Windows\Sysnative\WSShared.dll
2015-06-01 12:42:31	3E245CCA42D78B9626A79FE77E111D7B	84480	----a-w-	C:\Windows\Sysnative\WSCollect.exe
2015-06-01 12:42:13	5BD47B7C7DF76203FD639F2568A8C7B7	13209088	----a-w-	C:\Windows\Sysnative\twinui.dll
2015-06-01 12:42:13	570444FD34EE07261E22536122ECD720	7416832	----a-w-	C:\Windows\Sysnative\Windows.UI.Search.dll
2015-06-01 12:42:12	FE1087767AAED4E33396F50ABE17610B	919040	----a-w-	C:\Windows\Sysnative\MrmCoreR.dll
2015-06-01 12:42:12	A9154084EBC2A190943548AE4275A0E9	1105408	----a-w-	C:\Windows\Sysnative\SearchFolder.dll
2015-06-01 12:42:12	30D839DEBD6B0E89D13B9259C39B3FFA	1462216	----a-w-	C:\Windows\Sysnative\propsys.dll
2015-06-01 12:42:12	2100B28C34C4FCE916A4A61F58E31198	9701	----a-w-	C:\Windows\Sysnative\connectedsearch-results.searchconnector-ms
2015-06-01 12:41:53	AD8C705077689862FC864F94987015EC	21186352	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-06-01 12:41:28	22B4875CBDFA96BEF911F5A79FFA56EA	548864	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-06-01 12:40:27	05894DFC52A78C3B1DD5EF6F30FAD28C	586240	----a-w-	C:\Windows\Sysnative\qedit.dll
2015-06-01 12:39:48	6F531F98B8601A9E7A93F8FEC393E2D1	18944	----a-w-	C:\Windows\Sysnative\pcaui.exe
2015-06-01 12:39:30	1A69D165DDA78A4329B854D4FEDAD132	4189184	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-06-01 12:38:52	8CDDE0EF2D86658A6E6434DA72D87249	615936	----a-w-	C:\Windows\Sysnative\MDMAgent.exe
2015-06-01 12:38:52	5F4963EE6A349987644F3E382FB739B5	287744	----a-w-	C:\Windows\Sysnative\mdmregistration.dll
2015-06-01 12:38:33	EF5A9D7523E4530D2030D4EA2D90FEC3	787968	----a-w-	C:\Windows\Sysnative\uDWM.dll
====== C:\Windows\Sysnative\drivers =====
2015-06-01 12:52:54	ED39D676080A1AEA755F1DEC1A8DF1A4	1119064	----a-w-	C:\Windows\Sysnative\drivers\ndis.sys
2015-06-01 12:52:53	79B6F3DF7CDFD12159871FF71464F0CE	403456	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-06-01 12:52:52	B7342B3C58E91107F6E946A93D9D4EFD	142848	----a-w-	C:\Windows\Sysnative\drivers\ipnat.sys
2015-06-01 12:52:52	4628B415A84EA9D4D396A56F1D0CB6C6	142680	----a-w-	C:\Windows\Sysnative\drivers\USBSTOR.SYS
2015-06-01 12:52:51	1C89EF529DB7DCA98E801EFDCC8437DE	19456	----a-w-	C:\Windows\Sysnative\drivers\BtaMPM.sys
2015-06-01 12:50:46	13B160C1913F012BD1615EB1398D3779	1530712	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2015-06-01 12:50:45	22EDC0DE06A0272DFA4C7B47B5D8E377	382808	----a-w-	C:\Windows\Sysnative\drivers\dxgmms1.sys
2015-06-01 12:50:44	A1A5E79C0D1352AFDC08328A623DA051	408576	----a-w-	C:\Windows\Sysnative\drivers\rdbss.sys
2015-06-01 12:50:43	D22EB844EB57D016CC34178AC86456DF	325464	----a-w-	C:\Windows\Sysnative\drivers\USBXHCI.SYS
2015-06-01 12:43:34	ECC68BD5347BDE9631EE68274858A41F	2543960	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2015-06-01 12:43:33	C85C075DE5B6D0FE116043054DE8EE02	311640	----a-w-	C:\Windows\Sysnative\drivers\volsnap.sys
2015-06-01 12:43:10	B8B663BE41827211737F627473D6D192	377176	----a-w-	C:\Windows\Sysnative\drivers\clfs.sys
2015-06-01 12:43:10	725EF69B2DBEB7B33280019A556201BC	2008408	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2015-06-01 12:42:52	C52148456E0F6EAD9E903020A79207FC	236888	----a-w-	C:\Windows\Sysnative\drivers\WdFilter.sys
2015-06-01 12:42:52	241895E8A9C158DF86E12FDD21033A32	35856	----a-w-	C:\Windows\Sysnative\drivers\WdBoot.sys
2015-06-01 12:42:51	57F22324FAAF92ADF957B281E88F1743	124760	----a-w-	C:\Windows\Sysnative\drivers\WdNisDrv.sys
2015-05-31 14:12:20	29F981739E50305128022CBE10B3659C	197704	----a-w-	C:\Windows\Sysnative\drivers\HipShieldK.sys
2015-05-29 05:20:11	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
====== C:\Windows\Tasks ======
2015-05-29 18:02:40	A91401DD6B39D05C1436429A0E7D593B	1080	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-29 18:02:40	8DC33E861A97EFC780FFEDA2D39B1435	3816	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2015-05-29 18:02:40	350C71D2D6110EA14E6E1B8CE13493B4	4052	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2015-05-29 18:02:40	0B5A7CF1CEDC7F778B44855DC51699C1	1076	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-29 05:30:29	83DBCF98CBF7D7487A37654E8106D793	3598	----a-w-	C:\Windows\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4081929745-2332756740-2340896752-1001
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-06-02 10:40:41	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-05-31 16:42:48	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-05-31 16:42:25	--------	d-----w-	C:\PROGRA~2\Java
2015-05-29 18:02:37	--------	d-----w-	C:\PROGRA~2\Google
======= C: =====
2015-05-29 07:22:04	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Recovery.txt
====== C:\Users\computer\AppData\Roaming ======
2015-06-02 15:17:12	--------	d-----w-	C:\Users\computer\AppData\Roaming\NVIDIA
2015-06-02 15:15:32	--------	d-----w-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2015-05-31 16:41:03	--------	d-----w-	C:\Users\computer\AppData\Locallow\Sun
2015-05-31 14:05:24	--------	d-----w-	C:\Users\computer\AppData\Roaming\LolClient
2015-05-29 18:04:19	--------	d-----w-	C:\Users\computer\AppData\Roaming\Riot Games
2015-05-29 18:02:33	--------	d-----w-	C:\Users\computer\AppData\Local\Google
2015-05-29 18:02:15	--------	d-----w-	C:\Users\computer\AppData\Local\Deployment
2015-05-29 18:02:15	--------	d-----w-	C:\Users\computer\AppData\Local\Apps
2015-05-29 05:29:01	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2015-05-29 05:28:50	--------	d-----w-	C:\Users\computer\AppData\Roaming\WebStorage
2015-05-29 05:27:30	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2015-05-29 05:26:56	--------	d-----w-	C:\Users\computer\AppData\Roaming\Intel Corporation
2015-05-29 05:26:26	--------	d-s---w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2015-05-29 05:26:00	--------	d-s---w-	C:\Users\computer\AppData\Locallow\Microsoft
2015-05-29 05:25:59	--------	d-----w-	C:\Users\computer\AppData\Local\NVIDIA Corporation
2015-05-29 05:25:36	--------	d-----w-	C:\Users\computer\AppData\Local\ASUS
2015-05-29 05:25:05	--------	d-----r-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2015-05-29 05:25:05	--------	d-----r-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2015-05-29 05:24:55	--------	d-----w-	C:\Users\computer\AppData\Roaming\Adobe
2015-05-29 05:24:54	--------	d-----w-	C:\Users\computer\AppData\Local\Packages
2015-05-29 05:24:48	--------	d-----w-	C:\Users\computer\AppData\Local\NVIDIA
2015-05-29 05:24:38	--------	d-s---w-	C:\Users\computer\AppData\Roaming\Microsoft
2015-05-29 05:24:38	--------	d-----w-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-29 05:24:38	--------	d-----w-	C:\Users\computer\AppData\Local\Temp
2015-05-29 05:24:38	--------	d-----w-	C:\Users\computer\AppData\Local\Microsoft
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-29 05:22:11	--------	d-s---w-	C:\Windows\serviceprofiles\networkservice\AppData\Locallow\Microsoft
2015-05-29 05:19:22	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages
2015-05-29 05:19:08	--------	d-s---w-	C:\Windows\SysNative\config\systemprofile\AppData\Locallow\Microsoft
====== C:\Users\computer ======
2015-06-02 15:16:09	ED505C7A491ADCAC2F5F1699238D909E	24	----a-w-	C:\Users\computer\random.dat
2015-06-02 15:16:09	8FCCAD35D84DB0109C4F85D4B739C92E	47	----a-w-	C:\Users\computer\jagex_cl_runescape_LIVE.dat
2015-06-02 15:16:07	6B2E133F603DAE22EF1771FCBED87B32	23	----a-w-	C:\Users\computer\jagexappletviewer.preferences
2015-06-02 15:15:30	--------	d-----w-	C:\Users\computer\jagexcache
2015-06-02 10:42:23	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\computer\Downloads\RSITx64 (1).exe
2015-06-02 10:40:32	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\computer\Desktop\RSITx64.exe
2015-05-31 16:42:49	--------	d-----w-	C:\ProgramData\Sun
2015-05-31 16:42:36	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-05-31 16:42:29	--------	d-----w-	C:\ProgramData\Oracle
2015-05-31 16:40:57	EE001F0D8A06518EB2A133741F265BEC	562272	----a-w-	C:\Users\computer\Downloads\chromeinstall-8u45.exe
2015-05-29 18:07:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-05-29 18:03:51	36673E2B7C5C77F7B71CBC21A0DD9C5A	30668968	----a-w-	C:\Users\computer\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2015-05-29 18:02:56	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-29 05:25:05	--------	d-----r-	C:\Users\computer\Searches
2015-05-29 05:25:04	--------	d-----r-	C:\Users\computer\Contacts
2015-05-29 05:24:39	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\computer\ntuser.ini
2015-05-29 05:24:38	--------	d--h--w-	C:\Users\computer\AppData
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Videos
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Saved Games
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Pictures
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Music
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Links
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Favorites
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Downloads
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Documents
2015-05-29 05:24:38	--------	d-----r-	C:\Users\computer\Desktop
2015-05-29 05:19:17	--------	d--h--r-	C:\Users\Public\AccountPictures

====== C: exe-files ==
2015-06-07 06:50:46	721439C06B74766A436AE7A5ED4E9986	5714224	----a-w-	C:\Users\computer\AppData\Local\NVIDIA\NvBackend\Packages\000077da\DAO.19647222.exe
2015-06-05 10:05:54	8AEE4120BA69BFEC9D6EFB27126D253E	172984	----a-w-	C:\Users\computer\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-06-02 20:52:39	3BA92E68E0A8236A21035BB68EBE4182	5713768	----a-w-	C:\Users\computer\AppData\Local\NVIDIA\NvBackend\Packages\000077a8\DAO.19636188.exe
2015-06-02 15:15:32	35584E099AE63838D815A476B76C7DF2	54005	----a-r-	C:\Users\computer\AppData\Roaming\Microsoft\Installer\{BB1810FD-EB25-4A9D-ADDD-3543190D429A}\launcher.exe
2015-06-02 10:42:23	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\computer\Downloads\RSITx64 (1).exe
2015-06-02 10:40:43	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\computer.exe
2015-06-02 10:40:32	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\computer\Desktop\RSITx64.exe
2015-06-02 10:17:04	6D0F8108F95E3C912F11956B80E116BA	675256	----a-w-	C:\Users\computer\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-06-01 20:31:57	65D9D98DBFF574BA9B68F76F0BB1630E	140425016	----a-w-	C:\Windows\System32\MRT.exe
2015-06-01 12:50:46	43D0F8E593ABD37B5BC9573EDD71EFEB	628736	----a-w-	C:\Windows\System32\SettingSyncHost.exe
2015-06-01 12:50:46	42433CDEC449D40F508752F2D487D8E4	478208	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2015-06-01 12:50:44	A0D3749BB1BC942C7D21C4D99E79A615	131160	----a-w-	C:\Windows\System32\easinvoker.exe
2015-06-01 12:48:10	695C842DAA76536CE44C336C9E27B25D	1507704	----a-w-	C:\Windows\System32\winload.exe
2015-06-01 12:48:10	695C842DAA76536CE44C336C9E27B25D	1507704	----a-w-	C:\Windows\System32\Boot\winload.exe
2015-06-01 12:47:12	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\Windows\System32\poqexec.exe
2015-06-01 12:47:12	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-06-01 12:46:12	728EEDFE76EA55EA207A151CCA143C0A	369640	----a-w-	C:\Windows\vpnplugins\juniper\JunosPulseVpn.exe
2015-06-01 12:44:14	2E032281A818BCD191E3DD92000A8EAE	806064	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-06-01 12:44:13	E129D34089E70215B65EA611F802FA9A	111616	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-06-01 12:44:13	9FBB2F038A2DDCE696BDEE7080241C0C	808112	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-06-01 12:44:13	9E8F9FDD407DDE997965EEFD9E635CCF	469504	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-06-01 12:44:12	AFAB9B381886ABE3490689B7633A858F	482816	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-06-01 12:44:12	7D6B20C69CC8EECB8F31D4FAF913BBE8	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-01 12:44:12	27516B54E116D5EF8B0129B5C829A87C	218624	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-06-01 12:44:11	338415F2E9A188875B6E43B5269620B0	139264	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-06-01 12:43:35	C993A0B97BECD3AAF5158E3869878465	6353960	----a-w-	C:\Windows\System32\sppsvc.exe
2015-06-01 12:43:33	D4A17A8DEB194D77AD9651F0EE0C76EB	138752	----a-w-	C:\Windows\SysWOW64\DWWIN.EXE
2015-06-01 12:43:33	C83AFB0B285F293EDECF5EBDEC074A94	458616	----a-w-	C:\Windows\System32\WerFault.exe
2015-06-01 12:43:33	724ADFEE7743C26C550ABFE04271DCFD	160256	----a-w-	C:\Windows\System32\DWWIN.EXE
2015-06-01 12:43:33	249DE8C6F690646CC8EC53D49ABC6BE9	408480	----a-w-	C:\Windows\SysWOW64\WerFault.exe
2015-06-01 12:42:31	F8309DE5A45867745C7AA835DF50AA29	25304	----a-w-	C:\Windows\WinStore\WSHost.exe
2015-06-01 12:42:31	3E245CCA42D78B9626A79FE77E111D7B	84480	----a-w-	C:\Windows\System32\WSCollect.exe
2015-06-01 12:39:48	9A21A14A25A7BC3D0EC1ED56CC75B4B7	17408	----a-w-	C:\Windows\SysWOW64\pcaui.exe
2015-06-01 12:39:48	6F531F98B8601A9E7A93F8FEC393E2D1	18944	----a-w-	C:\Windows\System32\pcaui.exe
2015-06-01 12:38:52	8CDDE0EF2D86658A6E6434DA72D87249	615936	----a-w-	C:\Windows\System32\MDMAgent.exe
=== C: other files ==
2015-06-01 12:52:54	ED39D676080A1AEA755F1DEC1A8DF1A4	1119064	----a-w-	C:\Windows\System32\drivers\ndis.sys
2015-06-01 12:52:53	79B6F3DF7CDFD12159871FF71464F0CE	403456	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2015-06-01 12:52:52	B7342B3C58E91107F6E946A93D9D4EFD	142848	----a-w-	C:\Windows\System32\drivers\ipnat.sys
2015-06-01 12:52:52	4628B415A84EA9D4D396A56F1D0CB6C6	142680	----a-w-	C:\Windows\System32\drivers\USBSTOR.SYS
2015-06-01 12:52:51	1C89EF529DB7DCA98E801EFDCC8437DE	19456	----a-w-	C:\Windows\System32\drivers\BtaMPM.sys
2015-06-01 12:50:46	13B160C1913F012BD1615EB1398D3779	1530712	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2015-06-01 12:50:45	22EDC0DE06A0272DFA4C7B47B5D8E377	382808	----a-w-	C:\Windows\System32\drivers\dxgmms1.sys
2015-06-01 12:50:44	A1A5E79C0D1352AFDC08328A623DA051	408576	----a-w-	C:\Windows\System32\drivers\rdbss.sys
2015-06-01 12:50:43	D22EB844EB57D016CC34178AC86456DF	325464	----a-w-	C:\Windows\System32\drivers\USBXHCI.SYS
2015-06-01 12:43:34	ECC68BD5347BDE9631EE68274858A41F	2543960	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2015-06-01 12:43:33	C85C075DE5B6D0FE116043054DE8EE02	311640	----a-w-	C:\Windows\System32\drivers\volsnap.sys
2015-06-01 12:43:10	B8B663BE41827211737F627473D6D192	377176	----a-w-	C:\Windows\System32\drivers\clfs.sys
2015-06-01 12:43:10	725EF69B2DBEB7B33280019A556201BC	2008408	----a-w-	C:\Windows\System32\drivers\ntfs.sys
2015-06-01 12:42:52	C52148456E0F6EAD9E903020A79207FC	236888	----a-w-	C:\Windows\System32\drivers\WdFilter.sys
2015-06-01 12:42:52	241895E8A9C158DF86E12FDD21033A32	35856	----a-w-	C:\Windows\System32\drivers\WdBoot.sys
2015-06-01 12:42:51	57F22324FAAF92ADF957B281E88F1743	124760	----a-w-	C:\Windows\System32\drivers\WdNisDrv.sys
2015-06-01 12:39:30	1A69D165DDA78A4329B854D4FEDAD132	4189184	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
"WebStorage"="C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe"
"mcpltui_exe"="C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe /platui /runkey"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX4"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"

==== Startup Folders ======================

2015-05-29 05:38:13	424	----a-w-	C:\Users\computer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crtm - Snelkoppeling.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-05-2015 19:02]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-05-2015 19:02]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AiCharger_Desktop Execute" [C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AiCharger_II TrayIcon" [C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground" [C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Manager BackgroundWindow" [C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Manager HotKey Service" [C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Update Checker" [C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Updater" [C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe]
"C:\Windows\SysNative\tasks\ASUS\Power_Manager_background" [C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [01-06-2015 21:50]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [01-06-2015 21:50]

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.81

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[25-05-2015 15:45]

Google Slides - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
SiteAdvisor - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho
Bookmark Manager - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Google Wallet - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Preferences
tifications.onPermissionLevelChanged","notifications.onShowSettings","runtime.onInstalled","runtime.onStartup","runtime.onSuspend","storage.onChanged"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13077396178902424","location":5,"manifest":{"background":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/gcm","https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","gcm","identity","metricsPrivate","notifications","storage","tabs","webstorePrivate","*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/chromenow/v1/*","https://*.googleapis.com/gcm/*","https://*.googleusercontent.com/*"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\43.0.2357.81\\resources\\google_now","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"pjkljhegncpnkpknbcohdijeoejaedia":{"ack_external":true,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"y","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13077396193342915","lastpingday":"13077529196871062","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"nl","default_locale":"en","description":"Een snelle, doorzoekbare e-mailfunctie met minder spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"535E06321559477568CEAFA364DC260FB768F2B486C22CE14328205F7122263C"},"default_search_provider":{"keyword":"E91F9DAF545B8498C6C105D7AEF32BB1B1CAFABAE322ED3CB29D26E7A3343D13","name":"EA62C07430FCAB5B9EA361A0D61FC19FE44407D1FFDF00ECEC3F98675AA94047","search_url":"AB837385E9B8819343BB38A89C5D9D13EC2BE8E4DDA55EF05FD0E7B329C8DBE7"},"default_search_provider_data":{"template_url_data":"D413310BF5BC4BD8CD2995AE110BC2E74892270437A78F7BE14A6C21856E5207"},"extensions":{"settings":{"aapocclcgogkmnckokdopfmhonfmgoek":"D27A2717EDD3CAE169A0F4986AF924D2742164A44A471E76C2E87D5AFA23E9E3","ahfgeienlihckogmohjhadlkjgocpleb":"CC1109B6E1C73364CD118B347DC0F628AE9DBEA5C13B2187C4B50C61B114F27E","aohghmighlieiainnegkcijnfilokake":"63B3162085C7586E42AC0512F53DC66BF36DB05A78BACF78768C2A03AC52C49D","apdfllckaahabafndbhieahigkjlhalf":"A3B308E1F82992708E366B78534A7E090C03DCB055E736BBD1AE27F157489F01","bepbmhgboaologfdajaanbcjmnhjmhfn":"F12801DAD5F46CF19425CD944DC8580F490CC1230673CF0A8E48BC3423C5B61D","blpcfgokakmgnkcojhhkbfbldkacnbeo":"F6D4C961E24A1085F6BEF0B4ABB2033C617A19297827A10A84F397158CE0C371","coobgpohoikkiipiblmjeljniedjpjpf":"37EBC2A5AEC44CE07EA491F14E6695FC61758EEC2A2BBDA7AB7309B462B8D915","eemcgdkfndhakfknompkggombfjjjeno":"32B1A85A82D129DC6AB14262272E080EE317BA3DC1F60262ECF9ADF6C6B49BCB","ennkphjdgehloodpbhlhldgbnhmacadg":"8528D76F15D263E531ECD6F68989B47F70A4CA185E6F067176ABF05B41F43897","felcaaldnbdncclmgdcncolpebgiejap":"DF70BC35EBE7AD1B524F8689A5FD56B9FE9569E47C0A5C4225B22D3E1D06F02D","fheoggkfdfchfphceeifdbepaooicaho":"2C5CCD71F6B6C8655C852D36AF4C5EE47A617CEF821E7D561D0913237FA0FCCC","gfdkimpbcpahaombhbimeihdjnejgicl":"C9DE740F49ADF6BFEA64DEC89DA6EB96088EC8C77439AEDF2DE4B07BB2E2E0A2","gmlllbghnfkpflemihljekbapjopfjik":"44D8BED3EA53736DF3F749EF7E03124854DA6305AE4685D0BD9AA27E277AEB28","kmendfapggjehodndflmmgagdbamhnfd":"DE1CA389B35CDB1EABAD7CB79383E0D20A02C1736CE4EEF69380E67322AF0B0A","mfehgcgbbipciphmccgaenjidiccnmng":"F66F50F4237137CC85F21D59432482302147EE14CA55C0A05237999E5212A19B","mfffpogegjflfpflabcdkioaeobkgjik":"8B1B61B34BC9A27A83CA6AD7C79FC34ACDBD1157011DB6C7222A922564DDF155","mgndgikekgjfcpckkfioiadnlibdjbkf":"F04F329A8AF124A727386E3F156AB98F5511BE8C65A0619043F994AD9AC32859","mhjfbmdgcfjbbpaeojofohoefgiehjai":"338A899F904A2115F777D90869764AEF9A9D81720E4DB1D770237576BE64E715","neajdppkdcdipfabeoofebfddakdcjhd":"5E276D7D891D91C2A6192444FBEC83D52E3DA7DB8AD5DFF07C9FD3BC8BA42A71","nkeimhogjdpnpccoofpliimaahmaaome":"74117E279361068E9252DC8F975B3B471E4500C6AFD493746A824DE6199933B0","nmmhkkegccagdldgiimedpiccmgmieda":"4B8857E7033AB255C42DED47E3E5FDDAB8E3111BE8BB6382D58E4D7F39F3C8B1","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"6BDA936B94CA04D88EC75CD2B6926BE6EF3B0922A91522084E3FDFCCF3628B18","pjkljhegncpnkpknbcohdijeoejaedia":"3C994768CA620CAD0FFFBB9E47A4D80EFB9A7C88AE1030D6479F9534CB71628B"}},"google":{"services":{"last_username":"F521D6909BE8943350A01D1645ECC70043EB6673F680C5E6B7E5203B21F2CB1C","username":"2E2156253AA8520C1E593FD17E21247A763161F30C95B9ACE4B8F1700A511B13"}},"homepage":"B8800D6EFA605B8C06086FB1684EFFF59B30CB5DAEF011C0489649E7A8BEE951","homepage_is_newtabpage":"FC4B32B69F29C44F978CCEC000DDA869125F6AF14E32F52178699A178C6E323D","pinned_tabs":"D96A32AB55D1C6C8439306F508017C90E504191148427211E4DB4E071A214463","prefs":{"preference_reset_time":"ACB2617036A249CEFEE2D1369A86CDD3BBCAAA9A284AB336034AE77DF45319BC"},"profile":{"reset_prompt_memento":"C8F5DEE661A0F4E3637E7D0BF2A2778E7BAB80A4E9339F0CFA5F005093B64C4A"},"safebrowsing":{"incidents_sent":"301A9CE7994489C95469470A47E5A10459A2DBC40A9C85F9DE989F70DB3A2AA8"},"search_provider_overrides":"627D8C580E2E49A94D80B5AF1B0C7BD6FC9BA44F5AD3798B29361600B3732317","session":{"restore_on_startup":"F994D595575328FAD366ACAAE1B73E7395D8005BA94856FB1FA285FB01776571","startup_urls":"92F3DA39FE783A4A61DE766F45B2C554DAAFBF221552020D42DEA96A49EB2F71"},"software_reporter":{"prompt_reason":"F882283BFA5EC105808E96A836FBA5F88DA61204DA79BF5ADC7A40B7AC5B0BED","prompt_seed":"3F201CA59A879A679C651AF8BA1A993954640A745CB18F3DF380AF8426E78E3A","prompt_version":"34B7D913E04423F06F9D5CE30A239A449780C1D332D61087DAEEF034CD941191"},"sync":{"remaining_rollback_tries":"0BE2806BFDD97C92B677E781BB52C3C79D3F59BAE371217E7E64B34925864EDA"}},"super_mac":"54F3E4B2134D739111BDAEC50CCAEA5803BE5FF7562FD9A0CFE2D44308C80179"}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://asus13.msn.com/?pc=ASJB"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://asus13.msn.com/?pc=ASJB"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\computer\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\computer\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\computer\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\computer\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\computer\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2 folders=0 818866 bytes)

==== Empty Temp Folders ======================

C:\Users\computer\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\computer\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 07-06-2015 at 19:00:33,89 ======================