
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Bernqde on Tue 21/07/2015 at 10:55:39.61.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Bernqde\Jonass\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2015-07-17-162957.log	847978 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3234131037-588384857-3811332105-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{1CA1377B-DC1D-4A52-9585-6E06050FAC53} deleted successfully
HKEY_USERS\S-1-5-21-3234131037-588384857-3811332105-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} deleted successfully

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-07-19 17:20:07	ADE89E60542049519FA76E96AD6F47E6	542855157	----a-w-	C:\Windows\MEMORY.DMP
====== C:\Users\Bernqde\AppData\Local\Temp ====
2015-07-19 18:27:25	F327703F5351BB4A512E8CE9F66ABB9F	563808	----a-w-	C:\Users\Bernqde\AppData\Local\Temp\jre-8u51-windows-au.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-07-20 18:39:52	D80ECB18D64AE3C2A9D8220ABEBCE40A	25600	----a-w-	C:\Windows\SysWOW64\lpk.dll
2015-07-20 18:39:52	BBA0C61CB01BA4351C41DC36BBEB55B4	299008	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2015-07-20 18:39:52	900DB967084C22C6D83D637529B77E8F	34304	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2015-07-20 18:39:52	2DD3D6B44442EF17675554D0482E7BC2	70656	----a-w-	C:\Windows\SysWOW64\fontsub.dll
2015-07-20 18:39:52	0A6495A400140B89242268A13C807841	10240	----a-w-	C:\Windows\SysWOW64\dciman32.dll
2015-07-19 17:16:04	8DA070295A9E0ED01F1395D3F14435A7	416256	----a-w-	C:\Windows\SysWOW64\System.dll
2015-07-15 17:09:30	6E91F67335D57DDFFE798C815444B0E3	210432	----a-w-	C:\Windows\SysWOW64\cewmdm.dll
2015-07-15 17:09:29	E2A2B221A47271DD4176FB9B93F670E6	93184	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-07-15 17:09:29	CBC91E2E6158358E82D153D811B73C38	30208	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-07-15 17:09:29	7F13188A9656355F664313334971DA22	173056	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-07-15 17:09:29	1728A7831E95BCEEEA3F0D07AE6F74EE	566784	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-07-15 17:09:29	13810657EE732C2F5453C0C877FD5DB2	34816	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-07-15 17:09:24	3D73FC0D0997DA1EF6F705EF9936AB20	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-07-15 17:09:24	31165F9D71D3C249AB97FBAE55DE4B49	4520448	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-07-15 17:09:24	143046AC227C193B5B2E0E20BC0CF1DD	312320	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2015-07-15 17:09:23	116F506573B59B85CD0DC18527E9951A	19877376	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-07-15 17:09:22	AFAEB9E4269846C64DC9721B1BFA5CEC	12855296	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-07-15 17:09:22	4E4B3CAC5C62415AF5C6B0167A376EB8	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-07-15 17:09:22	37BC6BC6CFC38A6202B28459F7CCE4CD	479232	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-07-15 17:09:22	05CA106A1B68770BDABB9AA7AEAE516A	1310720	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-07-15 17:09:20	8EDF7B6D3A563DAA06DD87053C734168	2279424	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-07-15 17:09:08	E8F3572F002B556D19AC3AE4A11CAC2E	342736	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-07-15 17:09:08	E42BB0E02C8F6C8D1CCBFE6AB8EB199F	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-07-15 17:09:08	E3883C13DB4D19E29095C9F4BC27B755	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-07-15 17:09:08	D503616B296B869486AA84D6DB8FB6A5	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-15 17:09:08	1A04239A054D810CF32C46F2B70C47B7	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-07-15 17:09:07	95C40DFE3B3CFCEBA2DF9E493945A7B5	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-07-15 17:09:07	87E5B70C9F0DE7E3D620E1E3A60AA274	504320	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-07-15 17:09:07	18465944F711AD3FDE58675C3C42FA99	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-07-15 17:09:07	019019007E6980EACAC80DE04B5D330A	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-07-15 17:09:06	CC044CFF6018AD0368AF3A8149721407	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-07-15 17:09:06	442DB5B16073DE2E79E1912D0B77F343	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-07-15 17:09:06	2CC6836C44C84583386702468125654F	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-07-15 17:09:05	E475D4B65088F4F7FABF7D427CD3D30E	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-07-15 17:09:05	81ED1F775E5DDBE990D9C3AFF507DAC2	664064	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-07-15 17:09:05	43CF584D989A4A0EA6B5D3EBFAD260B7	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-07-15 17:09:05	0CB44ADB09C5BE7CE9D1D1F04E909067	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-07-15 17:09:03	72D524ED31A2FBA7432801361CE41FC3	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-07-15 17:09:03	63B01F72FD727D5736DBEF54174D8F93	1951232	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-07-15 17:09:03	17DFCBA042195666632C889E04913E19	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-07-15 17:09:03	0DE5FE06603CF80238EFD9D67AB45A56	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-07-15 17:08:37	4548507ED3C17DB4739DBBEAF6378004	1414656	----a-w-	C:\Windows\SysWOW64\ole32.dll
2015-07-15 17:08:32	F4AFDB5ABEA0C9079E8193E24D1DB21D	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-07-15 17:08:32	D864C283FFD7C080FDC25FD4C798FF8D	103936	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2015-07-15 17:08:32	588D52C2D0E60EE71FD5A64407865B10	179200	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2015-07-15 17:08:32	33F67BBCC3C0499D3F3382473114CFA8	143872	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2015-07-15 17:08:27	E97B4515FC3846CB5C6853C40E71EF28	36864	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2015-07-15 17:08:27	E344031017D52F5F1A4C759A815625CC	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-07-15 17:08:27	CA017983095846BFCFBE9C02B40958B3	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-07-15 17:08:27	98226182583DF1715F1BE6CCEA6E8D95	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-07-15 17:08:27	96741CBB4CC3638A2BCB11F93B92B738	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-07-15 17:08:27	81E207D09B2A7723A549EFB34B47C7EA	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-07-15 17:08:27	6AE6E08938D5BA9D8BA305506620B48D	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-07-15 17:08:27	4466D67AC240FE1CCCB32BE743BCB488	552960	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-07-15 17:08:27	393FDE87F56A8E98AC1B37ADB2181332	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-07-15 17:08:27	2E8C9C3223E05F4B42FB89C03DD09C1D	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-07-15 17:08:27	2B4A31319D74B3D3407AB64942B7FF32	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-07-15 17:08:27	02CD86D59807467D065F521BE81BB858	665088	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2015-07-15 17:08:26	E6F375BAA4F839592627DA3E95BF3977	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-07-15 17:08:26	A719B9156A6DCDBACC201D9163AFF8D1	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-07-15 17:08:26	A41BF25E4F145E1BC00445B6421B9E11	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-07-15 17:08:16	F61A069A5517F85662ED9A6C5AD5445A	73216	----a-w-	C:\Windows\SysWOW64\msiexec.exe
2015-07-15 17:08:16	D7C4ABB0F1FFA371928EED0C7A6E24DC	2364416	----a-w-	C:\Windows\SysWOW64\msi.dll
2015-07-15 17:08:16	C08582E7F8EA706A2D4A3C7BD5AC35C1	337408	----a-w-	C:\Windows\SysWOW64\msihnd.dll
2015-07-15 17:08:16	7B4277F9E9F48D5D8E6AEA341F8048E8	1805824	----a-w-	C:\Windows\SysWOW64\authui.dll
2015-07-15 17:08:15	A344B1EFA7DB86AE1407039CD596FB1E	25088	----a-w-	C:\Windows\SysWOW64\msimsg.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-07-20 18:39:52	D57C03D365BC71C7A30504644515F3F8	41984	----a-w-	C:\Windows\Sysnative\lpk.dll
2015-07-20 18:39:52	37C6F4906A4B3F837780AF078A1718BA	14336	----a-w-	C:\Windows\Sysnative\dciman32.dll
2015-07-20 18:39:52	2D0E2C197BA9CD67105DE5BBFBEF72A7	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2015-07-20 18:39:52	1C4FF36152EBDF5C10A612FC9B2E1F8A	100864	----a-w-	C:\Windows\Sysnative\fontsub.dll
2015-07-20 18:39:52	08D58C21888BC2DC754F591C23709C33	372224	----a-w-	C:\Windows\Sysnative\atmfd.dll
2015-07-19 15:02:51	BD72AE71784A7EF2DB19F9B394F9401B	70536	----a-w-	C:\Windows\Sysnative\akshhl31.dll
2015-07-19 07:52:16	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\Sysnative\RAIHVDump.dmp
2015-07-15 17:09:32	782C216AFEE0561680706698F70B2A93	1085440	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-07-15 17:09:32	5D507961F680D0A0392CC5EB6515E70A	726528	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-07-15 17:09:32	474EA5201E3883F747D540D3EF57C1F2	1145856	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-07-15 17:09:31	D236055773550118989C0C81CBE79A29	765440	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-07-15 17:09:31	BBA5CB528CB7482E118D0FEAF808987A	17856	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2015-07-15 17:09:31	658B5EC540CD94D76889D0E8390B1C04	433664	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-07-15 17:09:31	5663847B3DCC8382B1D1F1EEB4A92994	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-07-15 17:09:31	0919F433ED64E6CD1912C016F1E80BE7	67584	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-07-15 17:09:30	60696836CAD56F1B47059E1BA739787D	254976	----a-w-	C:\Windows\Sysnative\cewmdm.dll
2015-07-15 17:09:29	F56E83C1EFEDEF919033CBFF071602B6	36864	----a-w-	C:\Windows\Sysnative\wups.dll
2015-07-15 17:09:29	D79E3C2D45315ADCAA267A05355DFBF5	12288	----a-w-	C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-07-15 17:09:29	BC80574FF264848F8613A3F6F7AF7642	192000	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-07-15 17:09:29	AA3E844A2595B1AA5825C70CA50D963E	2603008	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-07-15 17:09:29	84CEF9B2D8ED8006B3975DC1D8109B3D	696320	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-07-15 17:09:29	80381DD7C4797A601E59F8E001B46793	3154944	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-07-15 17:09:29	3F9239D5F65F1318A53EBAEC01C092F1	139776	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-07-15 17:09:29	3EDB01024BA86C5B4D2CB307DC5D3AC0	37376	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-07-15 17:09:29	2896A06239E19379CE44FAFCDB1675B1	91136	----a-w-	C:\Windows\Sysnative\WinSetupUI.dll
2015-07-15 17:09:29	00DCC688DF459A9FEE42C7397668C62B	98304	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-07-15 17:09:29	00383E521D3D039968B92A0998BA76FD	37888	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-07-15 17:09:26	C4EA3D63E8BF077ECD1E93BF6556AE99	3207168	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-07-15 17:09:24	EFFFE1C77ACCE66C82CCFD18A9687F48	404992	----a-w-	C:\Windows\Sysnative\gdi32.dll
2015-07-15 17:09:24	837BD6BB879405B416A4326C8B723D83	5923840	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-07-15 17:09:24	2A795629E0746D82A229A01EEE75FCE5	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-07-15 17:09:23	FC165889E97E37BCB55C5B79BEB3D331	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-07-15 17:09:22	78E4D3781E5632BA88E5153510BEB625	1545728	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-07-15 17:09:21	D74E2BE157B8A2A9CF29BEBB052B8A42	25193984	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-07-15 17:09:21	6A70888EEC05B45C8990E8977C480019	14453248	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-07-15 17:09:21	120E3CE08505A9637CAB72D35A2D2E8C	615936	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-07-15 17:09:20	41D59904967A4033FB4497DCED7320AD	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-07-15 17:09:08	A51BF63E9EA6DDED50A69797EAD23576	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-07-15 17:09:08	50AAC6B4AFD93060456134A29C35FB1E	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-07-15 17:09:08	44D98BF1ED7B520602A55446E28D8840	720384	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-07-15 17:09:08	3A46FC42EDE2021399FCD9E4A7A406F8	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-07-15 17:09:07	4887D79B5CE61A00FCC5C53AA2216007	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-07-15 17:09:06	7EEC52D1B800230A4E8EC81B92D61118	389832	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-07-15 17:09:05	DAECFA33350D863D49157506587D5EF8	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-07-15 17:09:05	BCE51D1B0F7BC8977CDAECD24A0D4C88	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-07-15 17:09:05	80E899C111219316B94BBA72FAFF7D11	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-07-15 17:09:05	434CBA59035C4F3A02E5AB92FD6C816B	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-07-15 17:09:04	BB33A140CA61A22B5882486881E2191A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-07-15 17:09:04	AF3D4DA49A9C9C9778953CE9D7470C11	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-07-15 17:09:04	58243D92748201D38AACDAEA22527412	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-07-15 17:09:03	B5164F4515C4BC4F45FBF5B3A99685C0	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-07-15 17:09:03	9B9D2B99A865CB3B9BAA9BE77A300680	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-07-15 17:09:03	142D20CA55870589B009D53C37C0B75C	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-07-15 17:09:02	F30702F2607AEE462A6AB8715E72FC03	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-07-15 17:09:02	74F367C596EEF3106EBC65625F04C807	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-07-15 17:09:02	4024752E6B341B07F3823B7DA72C45D2	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-07-15 17:09:01	E066FDC3A2074D926903B8C31EF3B347	2427392	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-07-15 17:09:01	88E26FC9F8BDE0635F379BB8FE6BFFF1	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-07-15 17:09:01	796A89701B2560FF453FF08FF941A169	816640	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-07-15 17:09:00	C95EE658B7816B3588418E948EF55F83	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-07-15 17:09:00	8DA3623D372E5147914973383D998980	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-07-15 17:08:37	E3EB94B45A2735D4559558B5899732E8	2087424	----a-w-	C:\Windows\Sysnative\ole32.dll
2015-07-15 17:08:32	C5752F5CE47B6B00F914AE91087C0CB4	229376	----a-w-	C:\Windows\Sysnative\wintrust.dll
2015-07-15 17:08:32	7EE0A3B9E904AF4744E4D8F00CB5CA32	140288	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2015-07-15 17:08:32	7BC3E861F7E8EB543A630090FAE779E0	188416	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2015-07-15 17:08:32	71187FA11F58012C188453877E16EB8B	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-07-15 17:08:27	F66102F990EE913261ED7907403718ED	729088	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-07-15 17:08:27	F01A58E45BB8E28CCE6BCF272FF0F9A8	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-07-15 17:08:27	E8560BC8E1B85A5A081AEF43626187B1	44032	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2015-07-15 17:08:27	D5844B744F7BAF826965DD634FF8DB00	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-07-15 17:08:27	C3F6A9A41CC8591EF0370708E54DE474	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-07-15 17:08:27	C3F0594AF92FE71B13A44177FDB80784	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-07-15 17:08:27	B1D191D0EDEB86197A5FD5030B65420F	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-07-15 17:08:27	A66FF313F2F8A6CBF9BB2B0CC92D5ACD	1216512	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2015-07-15 17:08:27	9F2CCDE3F30C224C082984B6F95D3D95	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-07-15 17:08:27	9EA6DA45B95599C27B1661C1D99307D7	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-07-15 17:08:27	97D879A884E7CDFED51AD63348A35254	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-07-15 17:08:27	750C44D6F7A708F0C6618F075A0A68A7	315392	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-07-15 17:08:27	48A88348F1539CC7C8CB4E032DD79DAA	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-07-15 17:08:27	3B96392CBE54FF44BEAEB0B4BCC65487	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-07-15 17:08:27	09730D830B2B69B626817F4A95945308	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-07-15 17:08:26	EEB192537935BB12A998CAB8F5A07E78	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-07-15 17:08:26	7C26CACB82ECA09874B984B155B06AD4	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-07-15 17:08:26	55750A7588D91B102EB17E69BFF2AAF1	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-07-15 17:08:16	D9A91A779B5059E72D7FAD2B38275EA4	3242496	----a-w-	C:\Windows\Sysnative\msi.dll
2015-07-15 17:08:16	CDAD406033C31DB34185DDAECDD35FE2	504320	----a-w-	C:\Windows\Sysnative\msihnd.dll
2015-07-15 17:08:16	978DC0A1FBE9CC91B21B40AF66CB396A	70656	----a-w-	C:\Windows\Sysnative\appinfo.dll
2015-07-15 17:08:16	81CB8D34112178CE1826C86BA5F268C3	128000	----a-w-	C:\Windows\Sysnative\msiexec.exe
2015-07-15 17:08:16	5489E74E56C0255159C8AE2C70744458	1941504	----a-w-	C:\Windows\Sysnative\authui.dll
2015-07-15 17:08:16	0D9514850CC3A99A6600643F2888858B	112064	----a-w-	C:\Windows\Sysnative\consent.exe
2015-07-15 17:08:15	91593D4FB7D89249014564A5F3EC389B	25088	----a-w-	C:\Windows\Sysnative\msimsg.dll
====== C:\Windows\Sysnative\drivers =====
2015-07-19 15:02:51	A6C6F0718E7F7B6C1D045D5A34AB6E9A	21448	----a-w-	C:\Windows\Sysnative\drivers\aksclass.sys
2015-07-19 15:02:51	8D584711424446969B5E4CB16870A898	303624	----a-w-	C:\Windows\Sysnative\drivers\aksusb.sys
2015-07-19 15:02:51	3921C845A24C62CA1F44EEF4826263E9	331608	----a-w-	C:\Windows\Sysnative\drivers\hardlock.sys
2015-07-19 15:02:51	35E43EE8FE28CFD581E8CE42847DFE2B	60488	----a-w-	C:\Windows\Sysnative\drivers\akshasp.sys
2015-07-19 15:02:51	3190C577746303CA4C65114441192FE2	91784	----a-w-	C:\Windows\Sysnative\drivers\aksdf.sys
2015-07-19 15:02:51	2845A05E5AF65B5C7A143D637F08496D	162136	----a-w-	C:\Windows\Sysnative\drivers\aksfridge.sys
2015-07-19 15:02:51	053B204554F104CB5DC3D94B61BDA458	63944	----a-w-	C:\Windows\Sysnative\drivers\akshhl.sys
2015-07-15 17:08:27	C0A6C3D6E02B61B5D100FE17306C276F	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-07-15 17:08:27	7A7328E427694CC7244235C3BC299F80	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-07-15 17:08:27	45A03A0B6461EFBEE77E0A6AC2816EDA	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-07-15 17:08:27	21AF322605D8C7F2A627C22634D1C9C9	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-07-15 17:08:27	1877EB1495CFBDAB27D6A32F6DDF3818	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-06-26 07:49:10	E3DC1089EDAD57F5279804167E6142E9	293296	----a-w-	C:\Windows\Sysnative\drivers\avgidsdrivera.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-07-19 18:29:19	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-07-19 18:28:30	--------	d-----w-	C:\PROGRA~2\Java
2015-07-19 15:09:10	--------	d-----w-	C:\PROGRA~2\I-Cliqq V2.68
======= C: =====
====== C:\Users\Bernqde\AppData\Roaming ======
2015-07-18 09:16:10	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\CrashDumps
2015-07-17 08:30:55	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Temp
2015-07-17 08:30:55	--------	d-----w-	C:\Users\Public\AppData\Local\Temp
2015-07-17 08:30:55	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-07-17 08:30:55	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-07-17 08:30:54	--------	d-----w-	C:\Users\Bernqde\AppData\Local\Temp
2015-06-23 17:59:23	--------	d-----w-	C:\Users\Bernqde\AppData\Local\Avg
====== C:\Users\Bernqde ======
2015-07-19 15:09:13	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I-Cliqq Ver2.68
2015-07-19 15:08:01	841E83AFBD7700C9297A6D6D6E0258C1	114722751	----a-w-	C:\Users\Bernqde\Downloads\I-Cliqq_Ver2.68(Build2015-06-02).exe
2015-07-17 08:48:04	--------	d-----r-	C:\Windows\SysNative\config\systemprofile\Searches

====== C: exe-files ==
2015-07-19 18:28:39	A4D1AC4078F1A819ECECC546F64907A1	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-07-19 18:28:36	F52607E7F53DA8FE1C4A3C1F11CE2AE7	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\java-rmi.exe
2015-07-19 18:28:36	F3D19B026E09B8150D9FF40D537C8F2A	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\rmid.exe
2015-07-19 18:28:36	EF442149A0502661D49628A66A69F33C	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\policytool.exe
2015-07-19 18:28:36	E7ABC6445E6A2F1EDE5F8BB082ECEEA1	30304	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jabswitch.exe
2015-07-19 18:28:36	D50189686D9D144CB4EC807652640FC0	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\ktab.exe
2015-07-19 18:28:36	C4B3393396204E759E6EDFF92A9CAA50	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\tnameserv.exe
2015-07-19 18:28:36	BC66611222047778694C7650B7814978	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe
2015-07-19 18:28:36	B5AA17A9ACE57080909B9CB47CD74C39	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\kinit.exe
2015-07-19 18:28:36	A4D1AC4078F1A819ECECC546F64907A1	190560	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\java.exe
2015-07-19 18:28:36	9A474C07C5242EF2AE12FF6BF387F334	273504	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javaws.exe
2015-07-19 18:28:36	8B09EF707CE0895D5478300CC2CE90DB	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\rmiregistry.exe
2015-07-19 18:28:36	8516D08420A7AB22A9B722FAF631E320	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssvagent.exe
2015-07-19 18:28:36	76BD4372DD5C5A316F64D562C2404BF8	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\orbd.exe
2015-07-19 18:28:36	6790CB3F51E280A2A3EEAA3C5BD58EFF	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\keytool.exe
2015-07-19 18:28:36	5E1561548895218973EB5C833D96BD60	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\unpack200.exe
2015-07-19 18:28:36	56C175D9B0D7EE7D1DA92B8D8A12772A	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\servertool.exe
2015-07-19 18:28:36	547F9D4CB6FAAC8E941F1689D5555CDB	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jjs.exe
2015-07-19 18:28:36	4E022C0940633A9538892CB26B65BD0D	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\javaw.exe
2015-07-19 18:28:36	46AD9258E9B6EA56AFC8723CEFDF8425	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\pack200.exe
2015-07-19 18:28:36	235015745A6A6FE26BCDA8F227C9132B	15456	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\klist.exe
2015-07-19 18:28:36	0CFCEE90C8711D4DEAD9EC7046918A45	77920	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2launcher.exe
2015-07-19 18:27:25	F327703F5351BB4A512E8CE9F66ABB9F	563808	----a-w-	C:\Users\Bernqde\AppData\Local\Temp\jre-8u51-windows-au.exe
2015-07-19 15:37:57	47F051F00CC8323CAF71AC4214336496	41622928	----a-w-	C:\Users\Bernqde\AppData\Local\Spotify\Update\spotify_installer-1.0.9.133.gcedaee38-122.exe
2015-07-19 15:09:14	C8D4026D98A612AB7340A53146D2CF01	1448960	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\I-CliqqActivationCode.exe
2015-07-19 15:09:14	B92DFB945577E6ED5DEB5541C8265A4E	1444160	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\hasp_rt.exe
2015-07-19 15:09:14	A0E394B2C9723B534FA168BF02ADDFC6	3466752	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\RefreshHardlock.exe
2015-07-19 15:09:14	38FFAD07431D3A6E97E7C3CC656D54D6	2636288	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\LanguageEditor.exe
2015-07-19 15:09:14	13E00EA92575BE986895F3CCC1229B4F	848896	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\I-CliqqFind.exe
2015-07-19 15:09:14	09B88769DF736ED3AAEC66E424EFE90F	3915264	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\I-Cliqq.exe
2015-07-19 15:09:13	8EC1889FA200CCC8347BAF3BF8E404AF	363520	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\GetText.exe
2015-07-19 15:09:10	3F49CCB07DD991746FBC6EFB32D26CFD	805376	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{8C2CA5B8-B434-491D-A519-19D483EAE7C7}\setup.exe
2015-07-19 15:08:01	841E83AFBD7700C9297A6D6D6E0258C1	114722751	----a-w-	C:\Users\Bernqde\Downloads\I-Cliqq_Ver2.68(Build2015-06-02).exe
2015-07-19 14:44:17	FBA3EFD9B8D3102614396FF814F9AC38	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-3234131037-588384857-3811332105-1001\$I5DGZ07.exe
2015-07-19 10:02:55	3695841D075E4CC6D30BDCD10C2C31A1	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-3234131037-588384857-3811332105-1001\$I8T9MIF.exe
2015-07-19 10:02:38	4C54E2CC2483B14D010D43F887058DB8	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-3234131037-588384857-3811332105-1001\$I6S2KN8.exe
2015-07-19 10:02:29	A486F0B6B3DFF5D1DD5BFA155ED77BEF	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-3234131037-588384857-3811332105-1001\$IPPRSQ8.exe
2015-07-16 18:16:18	4217D37BC38064ACF9D5733D96BC009A	1003632	----a-w-	C:\Program Files (x86)\AVG\AVG2015\Notification\Launcher.exe
2015-07-16 06:21:09	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Bernqde\Jonass\Desktop\RSITx64.exe
2015-07-16 05:59:40	B3DBD6A2286BA43018F58349E51EC8B1	691712	----a-w-	C:\Windows\System32\GWX\GWXConfigManager.exe
2015-07-16 05:59:40	7B375C10CACC2FEBEC978D023ADBAB9C	513024	----a-w-	C:\Windows\System32\GWX\GWX.exe
2015-07-16 05:59:40	621FC2FCBB852684C1F1106E28CCC84F	438784	----a-w-	C:\Windows\SysWOW64\GWX\GWX.exe
2015-07-16 05:59:40	6008147E0BDAC5C23A0A314E96783F72	413696	----a-w-	C:\Windows\System32\GWX\GWXUX.exe
2015-07-16 05:59:40	1608E63BD26C74BEBB31BCAFDFC96BD6	343040	----a-w-	C:\Windows\System32\GWX\GWXDetector.exe
2015-07-16 05:59:40	0A31B851379818A8ECF1F7643FFA3F5A	382768	----a-w-	C:\Windows\System32\GWX\GWXUXWorker.exe
2015-07-15 17:09:31	BBA5CB528CB7482E118D0FEAF808987A	17856	----a-w-	C:\Windows\System32\CompatTelRunner.exe
2015-07-15 17:09:29	3F9239D5F65F1318A53EBAEC01C092F1	139776	----a-w-	C:\Windows\System32\wuauclt.exe
2015-07-15 17:09:29	3EDB01024BA86C5B4D2CB307DC5D3AC0	37376	----a-w-	C:\Windows\System32\wuapp.exe
2015-07-15 17:09:29	13810657EE732C2F5453C0C877FD5DB2	34816	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-07-15 17:09:22	3698C298719803F6502612D651A852B2	491008	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-07-15 17:09:22	26492D0AE6279B60A3801EDBE3CB794C	473600	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-07-15 17:09:08	8EA2ED812E996D95DE37CD2CE3158C2C	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-07-15 17:09:08	50AAC6B4AFD93060456134A29C35FB1E	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-07-15 17:09:08	44D98BF1ED7B520602A55446E28D8840	720384	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-07-15 17:09:06	C899B9E60D663BE24B35EFBC29192A7C	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-07-15 17:09:05	E475D4B65088F4F7FABF7D427CD3D30E	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-07-15 17:09:05	A7B6589F92C9CB498CDBA42EBEB23EE4	815312	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-07-15 17:09:05	80E899C111219316B94BBA72FAFF7D11	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-07-15 17:09:03	D295049B06D31020A88B170445123D33	814280	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-07-15 17:09:03	142D20CA55870589B009D53C37C0B75C	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-07-15 17:08:27	F01A58E45BB8E28CCE6BCF272FF0F9A8	64000	----a-w-	C:\Windows\System32\auditpol.exe
2015-07-15 17:08:27	97D879A884E7CDFED51AD63348A35254	31232	----a-w-	C:\Windows\System32\lsass.exe
2015-07-15 17:08:27	2B4A31319D74B3D3407AB64942B7FF32	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-07-15 17:08:16	F61A069A5517F85662ED9A6C5AD5445A	73216	----a-w-	C:\Windows\SysWOW64\msiexec.exe
2015-07-15 17:08:16	81CB8D34112178CE1826C86BA5F268C3	128000	----a-w-	C:\Windows\System32\msiexec.exe
2015-07-15 17:08:16	0D9514850CC3A99A6600643F2888858B	112064	----a-w-	C:\Windows\System32\consent.exe
2015-07-14 16:14:46	ABC17DA2F5952C0BFA3D38FF6FB42BA8	514472	----a-r-	C:\ProgramData\NVIDIA\Updatus\Download\7A87\updatus.19763320_RUNASUSER.exe
=== C: other files ==
2015-07-19 18:28:36	5F7B14A65C88D4AEB0E3DF49C6A0941F	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_51\lib\deploy\ffjcext.zip
2015-07-19 15:09:16	1D95D36DB805787D54EB50E45ED4AF40	3584	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\DLPORTIO.SYS
2015-07-19 15:09:12	9A496C9B3A62715EAF66A3794CC158BA	1793937	----a-w-	C:\Program Files (x86)\I-Cliqq V2.68\Fonts\Korean Fonts.zip
2015-07-19 15:02:51	A6C6F0718E7F7B6C1D045D5A34AB6E9A	21448	----a-w-	C:\Windows\System32\drivers\aksclass.sys
2015-07-19 15:02:51	8D584711424446969B5E4CB16870A898	303624	----a-w-	C:\Windows\System32\drivers\aksusb.sys
2015-07-19 15:02:51	3921C845A24C62CA1F44EEF4826263E9	331608	----a-w-	C:\Windows\System32\drivers\hardlock.sys
2015-07-19 15:02:51	35E43EE8FE28CFD581E8CE42847DFE2B	60488	----a-w-	C:\Windows\System32\drivers\akshasp.sys
2015-07-19 15:02:51	3190C577746303CA4C65114441192FE2	91784	----a-w-	C:\Windows\System32\drivers\aksdf.sys
2015-07-19 15:02:51	2845A05E5AF65B5C7A143D637F08496D	162136	----a-w-	C:\Windows\System32\drivers\aksfridge.sys
2015-07-19 15:02:51	053B204554F104CB5DC3D94B61BDA458	63944	----a-w-	C:\Windows\System32\drivers\akshhl.sys
2015-07-15 17:09:26	C4EA3D63E8BF077ECD1E93BF6556AE99	3207168	----a-w-	C:\Windows\System32\win32k.sys
2015-07-15 17:08:27	C0A6C3D6E02B61B5D100FE17306C276F	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-07-15 17:08:27	7A7328E427694CC7244235C3BC299F80	155584	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-07-15 17:08:27	45A03A0B6461EFBEE77E0A6AC2816EDA	129024	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2015-07-15 17:08:27	21AF322605D8C7F2A627C22634D1C9C9	290816	----a-w-	C:\Windows\System32\drivers\mrxsmb10.sys
2015-07-15 17:08:27	1877EB1495CFBDAB27D6A32F6DDF3818	159232	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3234131037-588384857-3811332105-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Spotify Web Helper"="C:\Users\Bernqde\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"uTorrent"="C:\Users\Bernqde\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"="C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"USBestCR"="C:\Program Files (x86)\Sitecom MD-020 SIM Editor\iconcs2377439.exe RunFromReg"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"
"vProt"="C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Spotify Web Helper"="C:\Users\Bernqde\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"uTorrent"="C:\Users\Bernqde\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BootRacer"="C:\Program Files (x86)\BootRacer\Bootrace.exe /2"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="C:\Windows\system32\igfxpers.exe"
"IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
"USBestCR"="C:\Program Files (x86)\Sitecom MD-020 SIM Editor\iconcs2377439.exe RunFromReg"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BootRacer"="C:\Program Files (x86)\BootRacer\Bootrace.exe /2"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Jing]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Jing"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\TechSmith\\Jing\\Jing.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Nikon Message Center 2]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Nikon Message Center 2"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Nikon\\Nikon Message Center 2\\NkMC2.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Nuance PDF Reader-reminder]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Nuance PDF Reader-reminder"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Nuance\\PDF Reader\\Ereg\\Ereg.exe\" -r \"C:\\ProgramData\\Nuance\\PDF Reader\\Ereg\\Ereg.ini\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\Bernqde\\AppData\\Roaming\\Spotify\\Spotify.exe\" -autostart -minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify Web Helper"
"hkey"="HKCU"
"command"="\"C:\\Users\\Bernqde\\AppData\\Roaming\\Spotify\\SpotifyWebHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateLBPShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateLBPShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\LabelPrint\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\LabelPrint\" UpdateWithCreateOnce \"Software\\CyberLink\\LabelPrint\\2.5\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateP2GoShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateP2GoShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\Power2Go\" UpdateWithCreateOnce \"SOFTWARE\\CyberLink\\Power2Go\\6.0\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="\"C:\\Users\\Bernqde\\AppData\\Roaming\\uTorrent\\uTorrent.exe\"  /MINIMIZED"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
"item"="AsusVibeLauncher"
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\AsusVibeLauncher.lnk"
"backup"="C:\\Windows\\pss\\AsusVibeLauncher.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\ASUS\\AsusVibe\\ASUSVI~2.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Bernqde^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Download Better Call Saul S01E04-E06 HDTV NL Subs DutchReleaseTeam Torrent - KickassTorrents.lnk]
"item"="Download Better Call Saul S01E04-E06 HDTV NL Subs DutchReleaseTeam Torrent - KickassTorrents"
"path"="C:\\Users\\Bernqde\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Download Better Call Saul S01E04-E06 HDTV NL Subs DutchReleaseTeam Torrent - KickassTorrents.lnk"
"backup"="C:\\Windows\\pss\\Download Better Call Saul S01E04-E06 HDTV NL Subs DutchReleaseTeam Torrent - KickassTorrents.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\ProgramData\\{b985a174-61e3-83ea-b985-5a17461e85d1}\\Download Better Call Saul S01E04-E06 HDTV NL Subs DutchReleaseTeam Torrent - KickassTorrents.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Bernqde^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Intel(R) Turbo Boost Technology Monitor 2.0.lnk]
"item"="Intel(R) Turbo Boost Technology Monitor 2.0"
"path"="C:\\Users\\Bernqde\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Intel(R) Turbo Boost Technology Monitor 2.0.lnk"
"backup"="C:\\Windows\\pss\\Intel(R) Turbo Boost Technology Monitor 2.0.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~1\\Intel\\TURBOB~1\\SIGNAL~1.EXE"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16/07/2015 10:42 PM]
C:\Windows\tasks\Bidaily Synchronize Task[973b].job --a------ C:\programdata\b7a108c9-bee4-fbc5-b7a1-108c9bee2326\deux jours une nuit 2014 brrip xvid nl subs. dmt.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{3868B9FB-3C52-4AB3-881A-C0FB7724B821}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{B5FD578C-6133-4BBB-8FD3-D7149FD08B00}" ["c:\program files (x86)\mozilla firefox\firefox.exe"]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Bernqde\AppData\Roaming\Mozilla\Firefox\Profiles\1d5vmg5q.default-1434294827394
- Google Analytics - %ProfilePath%\extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Bernqde\AppData\Roaming\Mozilla\Firefox\Profiles\1d5vmg5q.default-1434294827394
FD82108FD60B63010325D9AF6F00AF99	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll -	Shockwave Flash


==== Chromium Look ======================


Google Slides - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Chrome Hotword Shared Module - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg
Google Wallet - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Bernqde\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== C:\zoek_backup content ======================

C:\zoek_backup (files=239 folders=73 85355821 bytes)

==== EOF on Tue 21/07/2015 at 11:03:50.11 ======================