
Zoek.exe v5.0.0.1 Updated 04-October-2015
Tool run by Dennis on di 06-10-2015 at  8:07:39,35.
Microsoft Windows 10 Home 10.0.10240  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dennis\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-04-20-194037.log	13275 bytes
C:\zoek-results2015-10-04-210329.log	52754 bytes

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\DropboxCopyHook {FBC9D74C-AF55-4309-9FB2-C426E071637F} C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 


==== Empty Folders Check ======================

C:\Users\postgres\AppData\LocalLow deleted successfully
C:\Users\Dennis\AppData\Local\EmieSiteList deleted successfully
C:\Users\Dennis\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

"C:\WINDOWS\zoek-delete.exe" not found
C:\zoek_backup deleted
"C:\DelFix.txt" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\Dennis\AppData\Local\Temp ====
====== Java Cache =====
2015-10-05 06:31:00	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Dennis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-7649efd6
2015-10-05 06:31:00	12BCAEA7784A0C931992A11B20155E92	425	----a-w-	C:\Users\Dennis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2015-10-05 06:30:59	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Dennis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-23fb9b17
2015-10-05 06:31:03	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\Dennis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\47c58863-7f9995b6
2015-10-05 06:31:00	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\Dennis\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-4ff4f771
====== C:\WINDOWS\SysWOW64 =====
2015-10-05 06:30:20	ADC539F67D3198679F480974EE203678	866720	----a-w-	C:\WINDOWS\SysWOW64\npDeployJava1.dll
2015-10-05 06:30:20	7080B965215703EA1340C3C4903C7D73	274016	----a-w-	C:\WINDOWS\SysWOW64\javaws.exe
2015-10-05 06:30:20	69EC2283D9CB6762FFC7A85E075018F9	788896	----a-w-	C:\WINDOWS\SysWOW64\deployJava1.dll
2015-10-01 11:05:48	5780FAC582AF72AF39D461336E23D39C	18806272	----a-w-	C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-01 11:05:47	96CC96E8D16E315148047DFEB31EEEE9	13027840	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-01 11:05:46	00A63F21DCEF7D6D58BB73C594C6C75F	19325440	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-01 11:05:45	3277E503E6EA72D19CDC16501FD151BA	5120056	----a-w-	C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-01 11:05:43	2DA15A53E965A27A3D5CF99E3CCC430A	6101504	----a-w-	C:\WINDOWS\SysWOW64\mos.dll
2015-10-01 11:05:43	08D6065A1D6D007C77A688271D915B00	5079552	----a-w-	C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-01 11:05:41	8E2D23AB73A5276FC7CDE134B06F0C03	5454848	----a-w-	C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-01 11:05:40	19DFBB25AB67A2F4D23F08A7D765E802	2154808	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-01 11:05:39	EB7E8B15015C784D8852292206EF1461	1918464	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-01 11:05:39	A66B5D22B883373A44764C003078A828	2646528	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-01 11:05:38	BCCB55B18CE7054BA288FFEB27BA6F54	1766952	----a-w-	C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-01 11:05:37	F28E047EF8A68C586F177A3DD625831C	3579904	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-01 11:05:37	73FC0143E518D8DB7AFE9675F4AF8063	2207232	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-10-01 11:05:36	2570B5FA73B119C16E0E721265126C3A	2446648	----a-w-	C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-01 11:05:35	47F3B89782076037F328AEC18245D4B1	962400	----a-w-	C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-01 11:05:34	EE8FDC90138DD93AA6B1ECA831D9D3CE	1162240	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-01 11:05:34	DFAE92F5EF58FF29E81D951B2BDF45B8	1104384	----a-w-	C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-01 11:05:34	C637D94084069A10759E53F79D5DC4C5	899584	----a-w-	C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-01 11:05:34	776339B81E632F579AB1EC6EE503A9C0	58368	----a-w-	C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-01 11:05:33	DAFFF5B7F43F88907A21996E71812D0C	764416	----a-w-	C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-01 11:05:33	BE36E4024EABE75FEF529553E023AEF8	646672	----a-w-	C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-01 11:05:33	6FA73C45D51E7909C68FE5A113D5585F	928256	----a-w-	C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-01 11:05:32	F69835A120E9627327ECE984D2AC87EA	828928	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 11:05:32	001D3D691DD268165A3EE49C69078054	658528	----a-w-	C:\WINDOWS\SysWOW64\mfds.dll
2015-10-01 11:05:31	E03EC1BA7B6061620367F19249705D1F	625152	----a-w-	C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-01 11:05:31	807178C85CF6375FAB2FE42395FE94D7	677888	----a-w-	C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-01 11:05:30	F65307E09D4807EDE95D1016CAF42DAD	587264	----a-w-	C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 11:05:30	F38B52333E0C93A1C55323719103783B	1357888	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2015-10-01 11:05:30	4B5286A021D8CA64BABB07D7B9739AF4	512000	----a-w-	C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-01 11:05:29	E0F11A1D1C7482BBD76448E6FD3AA327	454512	----a-w-	C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-01 11:05:29	A5F48E7E55B076996B67F8F32C9D6D33	2639872	----a-w-	C:\WINDOWS\SysWOW64\esent.dll
2015-10-01 11:05:29	78FBC37D02A39402B685B7E95A83EFE8	428128	----a-w-	C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-01 11:05:29	60242DBD3FCFA6D4163B6C29D76295B7	336384	----a-w-	C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-01 11:05:28	D124F89BBDCFC24A04F159D913852DDC	701952	----a-w-	C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-01 11:05:28	6740B4C8B8B3474F086B8AEBDE4861D8	217088	----a-w-	C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-01 11:05:28	258A4F9A2C91C6C6E36775CDCCB4AFE1	441168	----a-w-	C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-01 11:05:28	1BFDE0B4AC3E0EB180FBC32A22B8A8B4	464896	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-01 11:05:28	1B102F53BD7209D712BBE96E9FAA32CA	313856	----a-w-	C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-01 11:05:28	00682184457B97EDA4C0C157331A7495	454656	----a-w-	C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-01 11:05:27	FFCE532A61DD7518BE997267940D7AE4	466432	----a-w-	C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-01 11:05:27	F4E25F21AC509AEE3617E9DBA086318E	434376	----a-w-	C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-01 11:05:27	53FC0EFBE44591CA16BE1A4309F689DC	253440	----a-w-	C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-01 11:05:26	DC7C56F01B96CA5FDB99D241D4E067FC	311808	----a-w-	C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-01 11:05:26	99CEBD54809E76C9CD1839B0492CCF5E	1895568	----a-w-	C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-01 11:05:25	63900F897A025DDFE83737A260C250A5	371712	----a-w-	C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 11:05:25	1253135EC3029F79601EDCFF55ADC9FC	508248	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2015-10-01 11:05:25	037908D9C8C689490978BFF72532A361	195072	----a-w-	C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 11:05:24	535DCD92E0C7D52A0F1237AF3DCFAAA9	613376	----a-w-	C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-01 11:05:22	E856065895D1133F5457BCDB4452A8D3	74880	----a-w-	C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-01 11:05:22	3C9FDBB0963B18C9D60B54F8AF81DF11	268800	----a-w-	C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-01 11:05:21	DBAAA86B138D2F8B7EDF7A3ED7ADF8B3	557568	----a-w-	C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-01 11:05:21	399BED6CD8A3AA7C7CF48A8E55FB4463	579584	----a-w-	C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-01 11:05:21	1A917EA73F9B46F31F8E0BA3B44FDD8F	525312	----a-w-	C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-01 11:05:20	F2BCE0CF75943E18852148B2875F632B	41472	----a-w-	C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-01 11:05:17	C5FBD8DDCD35F7F1242F3587681A2654	193024	----a-w-	C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-01 11:05:17	8B4E59B0B71ECE3CF6234DFAAE0A05DF	172032	----a-w-	C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-01 11:05:17	80D2AE15F53154CEE71C9E3C131FBB9B	407608	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-01 11:05:17	6C8012BEB3FF973020E9429CBB6C1696	195584	----a-w-	C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-01 11:05:16	D0A5D8270FF8606D2B445C4359A8FCEB	328704	----a-w-	C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-01 11:05:16	C45DE57A004A5BD637923BB2EF410E19	131072	----a-w-	C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-01 11:05:16	9E8E29389AD2E2C31E65400C5BBC06EC	574464	----a-w-	C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-01 11:05:16	54DB5459A808BB03FDEA98325530B946	145920	----a-w-	C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-01 11:05:15	FB3B46B0FFCEDEED7BB5E74D82895118	1171456	----a-w-	C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-01 11:05:15	638747E5050BEB4F5DF9DDE8AC418296	473088	----a-w-	C:\WINDOWS\SysWOW64\wpnapps.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-10-06 06:06:21	ED694F882FA0A3CF7195FF10B19B2E14	16148	----a-w-	C:\WINDOWS\Sysnative\DENNIS-PC_Dennis_HistoryPrediction.bin
2015-10-03 10:18:32	F8BF4DDFBA661FD1289C6B7DA344423A	4956280	----a-w-	C:\WINDOWS\Sysnative\FNTCACHE.DAT
2015-10-01 11:05:49	CD8169F2DE6AFF7CC56A596BCC2326E8	24595456	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-10-01 11:05:49	35DAE99CA54E05DE5EE404EC20DD073F	16708608	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2015-10-01 11:05:48	B91D329CB2EF570B6A7CEB409625DD32	21875712	----a-w-	C:\WINDOWS\Sysnative\edgehtml.dll
2015-10-01 11:05:44	DE82BD1C35547D04241DB1DB3D4808E0	6487248	----a-w-	C:\WINDOWS\Sysnative\windows.storage.dll
2015-10-01 11:05:44	7ED8EF17B3A6C69DA6A0EC90CFBB4ABB	7055872	----a-w-	C:\WINDOWS\Sysnative\BingMaps.dll
2015-10-01 11:05:44	537826436B921256BA9055F65A97ED91	7569408	----a-w-	C:\WINDOWS\Sysnative\mos.dll
2015-10-01 11:05:42	E130DF660C8E4C6ED1255F2276CC2802	7523328	----a-w-	C:\WINDOWS\Sysnative\Chakra.dll
2015-10-01 11:05:42	9D4A09AB97C2F0EC6BFA6B54AA2BA239	3781120	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll
2015-10-01 11:05:41	C9C6D1C3171A866F10C7D58777E9638A	2417664	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2015-10-01 11:05:41	78ECC7FEDA1790706A8ED7D864F754FC	2464216	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2015-10-01 11:05:41	6D6E7210CBD7C0AA2130F3F3F14D32A5	2824248	----a-w-	C:\WINDOWS\Sysnative\msmpeg2vdec.dll
2015-10-01 11:05:40	6FA4BB1AA0C18F5CFB96F228376BD249	2494712	----a-w-	C:\WINDOWS\Sysnative\CoreUIComponents.dll
2015-10-01 11:05:40	33F308FD702D507A7BB28BF2E80C2717	3248640	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2015-10-01 11:05:39	E5D86250453B33900666D92ED1A92ABE	2740224	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-10-01 11:05:37	3C096082A9232B7CEE4653B9C9031769	2228736	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2015-10-01 11:05:36	87E5D206DCDD7E8DB7A597DA59FB9A07	1423872	----a-w-	C:\WINDOWS\Sysnative\UserDataService.dll
2015-10-01 11:05:36	68DE1997977CD3A86D5F8D0FD23056EA	1563392	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2015-10-01 11:05:36	5252CE15DB06AB5A796EBC361EAC1528	8020816	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2015-10-01 11:05:36	390EAAB81E5C1DB0FD4920796C74AB48	1290240	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Shell.dll
2015-10-01 11:05:36	223A5048FE554992D8E7D0195D57AA19	1397088	----a-w-	C:\WINDOWS\Sysnative\LicenseManager.dll
2015-10-01 11:05:36	11AE1E4065376FCD89C0A37C5953164E	4791296	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-10-01 11:05:35	E41C778D6208A51F57557523E2B479B5	1205248	----a-w-	C:\WINDOWS\Sysnative\Unistore.dll
2015-10-01 11:05:35	85AC4CA67BECC08CBC655A8D8919B23B	1331200	----a-w-	C:\WINDOWS\Sysnative\UIAutomationCore.dll
2015-10-01 11:05:35	52C3440B5098BFB99D91E869A26ECB30	1213440	----a-w-	C:\WINDOWS\Sysnative\RemoteNaturalLanguage.dll
2015-10-01 11:05:35	10FC981B716CCC25CDD5D306EBBC022D	1276416	----a-w-	C:\WINDOWS\Sysnative\wifinetworkmanager.dll
2015-10-01 11:05:35	0968D575D9108497A6DC37749D4A6C4F	2093056	----a-w-	C:\WINDOWS\Sysnative\wlidsvc.dll
2015-10-01 11:05:35	031080A610C302B0279A267411EDB7E3	2226688	----a-w-	C:\WINDOWS\Sysnative\NetworkMobileSettings.dll
2015-10-01 11:05:34	D23F211E1AA0787EFEC373D172D4A1C2	1181696	----a-w-	C:\WINDOWS\Sysnative\wwansvc.dll
2015-10-01 11:05:34	C5E2FBB19641860794CEE2B580192732	966416	----a-w-	C:\WINDOWS\Sysnative\twinapi.appcore.dll
2015-10-01 11:05:34	AF34122A1B595218036B4049D802B470	1203712	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll
2015-10-01 11:05:34	8AFDD74F2DC5BAD9B2215FB19DB65240	809352	----a-w-	C:\WINDOWS\Sysnative\CoreMessaging.dll
2015-10-01 11:05:34	36E46F26B5291A7D324466602A88947B	784136	----a-w-	C:\WINDOWS\Sysnative\mfsvr.dll
2015-10-01 11:05:33	DE8B9EE2E86532686497FE5A1E44E90D	467968	----a-w-	C:\WINDOWS\Sysnative\MBMediaManager.dll
2015-10-01 11:05:33	B70FF53144AC4B3C7D98BFB7D7C239BD	2236416	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2015-10-01 11:05:33	A51AC21B1F31FD7F4EC2811E33572AFC	859136	----a-w-	C:\WINDOWS\Sysnative\modernexecserver.dll
2015-10-01 11:05:33	974C92640A3DAA475E15E3C79299B690	1795072	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll
2015-10-01 11:05:33	891C83BE8BA62B7547B9A6576A360C71	1010176	----a-w-	C:\WINDOWS\Sysnative\RDXService.dll
2015-10-01 11:05:33	444016D88142B82366EC516C3CF714E0	2178560	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentServer.dll
2015-10-01 11:05:33	405BD80834094E297664CE0A7EE70EF9	2987520	----a-w-	C:\WINDOWS\Sysnative\esent.dll
2015-10-01 11:05:32	DDCBE4B09287CF224B63015F9C6BD31F	1295712	----a-w-	C:\WINDOWS\Sysnative\wpx.dll
2015-10-01 11:05:32	B82363129E8554D58B95A6935B83891D	781976	----a-w-	C:\WINDOWS\Sysnative\mfds.dll
2015-10-01 11:05:32	B7927A1D40BD17BC963E9353DBB36CD7	869376	----a-w-	C:\WINDOWS\Sysnative\MapControlCore.dll
2015-10-01 11:05:32	7BCC113B00736AA930DAA49CA7858808	856576	----a-w-	C:\WINDOWS\Sysnative\ContactApis.dll
2015-10-01 11:05:32	7505ACFD9362DA74FEB623F21FE3B391	1601536	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.Speech.dll
2015-10-01 11:05:32	3478670E8646CC536E1EF21F077F4DD6	2156400	----a-w-	C:\WINDOWS\Sysnative\hevcdecoder.dll
2015-10-01 11:05:31	F9BD360A4799BB54A01692940C46CA2B	537080	----a-w-	C:\WINDOWS\Sysnative\WWanAPI.dll
2015-10-01 11:05:31	C8C5DFF028EA28D7846E95D8E5461794	570880	----a-w-	C:\WINDOWS\Sysnative\MbaeApi.dll
2015-10-01 11:05:31	3A4A543F135DE9A06ABA9DF982D79DD7	526336	----a-w-	C:\WINDOWS\Sysnative\bisrv.dll
2015-10-01 11:05:31	311F4D131C28DA12595132A35124E955	910848	----a-w-	C:\WINDOWS\Sysnative\SharedStartModel.dll
2015-10-01 11:05:31	2C82D9E55432915A68A609008BDEF41A	1563472	----a-w-	C:\WINDOWS\Sysnative\wmpmde.dll
2015-10-01 11:05:30	D5AAA188C70146977CFEE8D128599F3F	378368	----a-w-	C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll
2015-10-01 11:05:30	D4E92C0C0F9C5054B03D67A3C0B41961	555768	----a-w-	C:\WINDOWS\Sysnative\directmanipulation.dll
2015-10-01 11:05:30	B3CD8B2CBC6E48B194116B28F72CDA67	408064	----a-w-	C:\WINDOWS\Sysnative\CredProvDataModel.dll
2015-10-01 11:05:30	9C2B0E3A21CECD14E20A848F0DE94B24	517632	----a-w-	C:\WINDOWS\Sysnative\NotificationController.dll
2015-10-01 11:05:30	754BC3E56FF301B9EE8A764932D02124	513536	----a-w-	C:\WINDOWS\Sysnative\ngcsvc.dll
2015-10-01 11:05:30	684F1E1B5D07451B600EA3C3D728A534	281600	----a-w-	C:\WINDOWS\Sysnative\VEEventDispatcher.dll
2015-10-01 11:05:30	33FF0B7585F54C0F33C38F5DCAB1DA01	3586560	----a-w-	C:\WINDOWS\Sysnative\win32kfull.sys
2015-10-01 11:05:29	A40484AC27EE08DBE7F8DA5E1F6651ED	591360	----a-w-	C:\WINDOWS\Sysnative\wcmsvc.dll
2015-10-01 11:05:29	913E47FCD3B43EC27215F90884915CAF	780288	----a-w-	C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll
2015-10-01 11:05:29	8D23F0819A00C547814409B734DD3747	503808	----a-w-	C:\WINDOWS\Sysnative\tileobjserver.dll
2015-10-01 11:05:29	5E010B486F7FB28D9B79AAC471FE484F	476760	----a-w-	C:\WINDOWS\Sysnative\MFCaptureEngine.dll
2015-10-01 11:05:29	5424E49F79EB68E5F10439405101A09B	627712	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.dll
2015-10-01 11:05:28	AE8B34FB5B54025E9C6895A45947A515	796160	----a-w-	C:\WINDOWS\Sysnative\TokenBroker.dll
2015-10-01 11:05:28	7614E6E6B53E8FE6E6B8A6D6D3CC2018	1067520	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2015-10-01 11:05:28	363F3F99863C2BB8612C9133E45BF3E6	387584	----a-w-	C:\WINDOWS\Sysnative\LockAppBroker.dll
2015-10-01 11:05:27	D907DFF972354542D5B0B4414B308B75	312832	----a-w-	C:\WINDOWS\Sysnative\SensorsApi.dll
2015-10-01 11:05:27	B9FC9E9B55C74557FEC004BF8B1184F4	359936	----a-w-	C:\WINDOWS\Sysnative\ncsi.dll
2015-10-01 11:05:27	509FF13E5C4FD63846FCA01A5ED912DB	521728	----a-w-	C:\WINDOWS\Sysnative\PsmServiceExtHost.dll
2015-10-01 11:05:27	37B5ECB8C390D9FD5A5BB2FFB7294B9E	553808	----a-w-	C:\WINDOWS\Sysnative\SettingSyncHost.exe
2015-10-01 11:05:27	1CD8BB41436524A2748A77005E5DEB8A	579072	----a-w-	C:\WINDOWS\Sysnative\winlogon.exe
2015-10-01 11:05:26	EA8B28FFF774F7C7862C8746E1FDECF6	273920	----a-w-	C:\WINDOWS\Sysnative\Windows.ApplicationModel.LockScreen.dll
2015-10-01 11:05:26	D1AA97B30A9ED6F89DC3848C8BF53513	224256	----a-w-	C:\WINDOWS\Sysnative\KnobsCore.dll
2015-10-01 11:05:26	C7503A49364DB2AF7A7DE177B233081F	1844736	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2015-10-01 11:05:26	86C0DEE6940878A1496CBBA856FF4E5B	584656	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2015-10-01 11:05:26	506F9F526D42BB4C0A579CB78F923A48	483328	----a-w-	C:\WINDOWS\Sysnative\OneDriveSettingSyncProvider.dll
2015-10-01 11:05:26	49B00A59043431804A5BCB5E48F735B3	414208	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentClient.dll
2015-10-01 11:05:26	157B1CABAF5201237EECA4FB0F34D822	403456	----a-w-	C:\WINDOWS\Sysnative\dmenrollengine.dll
2015-10-01 11:05:26	09247D43F19CAFEEFEBF6A32F3A1225F	118272	----a-w-	C:\WINDOWS\Sysnative\KnobsCsp.dll
2015-10-01 11:05:25	DAFEABE69E915A2374E13C6B24EF331F	690688	----a-w-	C:\WINDOWS\Sysnative\CellularAPI.dll
2015-10-01 11:05:25	B31569B0E7A467D4050FA49CFCBFCEFA	204800	----a-w-	C:\WINDOWS\Sysnative\wcmcsp.dll
2015-10-01 11:05:25	887065722784FD70B880B0D900E4884D	185344	----a-w-	C:\WINDOWS\Sysnative\psmsrv.dll
2015-10-01 11:05:25	7910232E31799A576F2509DA92CB8813	928256	----a-w-	C:\WINDOWS\Sysnative\JpMapControl.dll
2015-10-01 11:05:25	41C0EC5B11375F9CA045AFEF1EB75D5F	366592	----a-w-	C:\WINDOWS\Sysnative\wuuhext.dll
2015-10-01 11:05:25	2C144777278ECD6DFF4B5A90F742C1AA	346112	----a-w-	C:\WINDOWS\Sysnative\ngccredprov.dll
2015-10-01 11:05:25	194239DA484C7DB62E6773ABB5DD4463	269312	----a-w-	C:\WINDOWS\Sysnative\provengine.dll
2015-10-01 11:05:24	D7B28BF9E08128C5A8B89FFD5BEB6B88	465920	----a-w-	C:\WINDOWS\Sysnative\wwanconn.dll
2015-10-01 11:05:24	CF2B0ADDBA61B3B9FA339118FC742032	1812480	----a-w-	C:\WINDOWS\Sysnative\pnidui.dll
2015-10-01 11:05:24	95EC1A9A6926F5091957F6CA52A34F21	162304	----a-w-	C:\WINDOWS\Sysnative\SubscriptionMgr.dll
2015-10-01 11:05:24	88E6A429944544346EC3AE1FD7D24BCC	149504	----a-w-	C:\WINDOWS\Sysnative\tetheringservice.dll
2015-10-01 11:05:24	65A0B3477231CE37B09A719DBBB9FCF1	671232	----a-w-	C:\WINDOWS\Sysnative\WUDFx02000.dll
2015-10-01 11:05:23	D37063C5B492B7B4F26D24C62167C8BE	137728	----a-w-	C:\WINDOWS\Sysnative\VEStoreEventHandlers.dll
2015-10-01 11:05:23	99E14B1011FC214DA89D9559AD816B3A	243760	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2015-10-01 11:05:23	85146ABCB1EF298D1FF6EE4D5541788C	832512	----a-w-	C:\WINDOWS\Sysnative\MapsStore.dll
2015-10-01 11:05:23	7D2165B4B27E11B3E557DB26CAA2BAFF	1382400	----a-w-	C:\WINDOWS\Sysnative\win32kbase.sys
2015-10-01 11:05:23	65F1F4DBB4A6FA971BF9F00129F452A0	494592	----a-w-	C:\WINDOWS\Sysnative\StoreAgent.dll
2015-10-01 11:05:23	38F08B82ADEEA1003B4A5177BB5366B3	347136	----a-w-	C:\WINDOWS\Sysnative\ncryptprov.dll
2015-10-01 11:05:23	327DA4A4DE4E9BECF2C16967366C74E2	186880	----a-w-	C:\WINDOWS\Sysnative\cloudAP.dll
2015-10-01 11:05:23	1547E4F51567E522CA96BC367CC9D295	590336	----a-w-	C:\WINDOWS\Sysnative\MessagingDataModel2.dll
2015-10-01 11:05:22	D61C3ED7C5F0D1B5BD9B351FEC381D57	120832	----a-w-	C:\WINDOWS\Sysnative\omadmclient.exe
2015-10-01 11:05:22	B8401703E619E7BD7B5A659306A9BFE6	84480	----a-w-	C:\WINDOWS\Sysnative\MDMAppInstaller.exe
2015-10-01 11:05:22	9BD143B8F803AC81F701BA0B8486212D	752640	----a-w-	C:\WINDOWS\Sysnative\ChatApis.dll
2015-10-01 11:05:22	888513B8C53C7574A9CC14195F5BFCA3	81488	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-10-01 11:05:22	7DDB731AD3E9F9F91D62E991BD52814F	79872	----a-w-	C:\WINDOWS\Sysnative\HttpsDataSource.dll
2015-10-01 11:05:22	71107775BE0E612150F032CE21DD9C7C	88384	----a-w-	C:\WINDOWS\Sysnative\remoteaudioendpoint.dll
2015-10-01 11:05:22	2481E9E8858AD0A223FA3110916EF0C1	6572032	----a-w-	C:\WINDOWS\Sysnative\wwanmm.dll
2015-10-01 11:05:22	02077F66F8CF2F1FD58403D371482B01	106496	----a-w-	C:\WINDOWS\Sysnative\KeywordDetectorMsftSidAdapter.dll
2015-10-01 11:05:21	C1E6FBEBD285CABA0985533A56144F5F	288256	----a-w-	C:\WINDOWS\Sysnative\PimIndexMaintenance.dll
2015-10-01 11:05:21	B171608F20705895726DE86B34D1FBAC	95744	----a-w-	C:\WINDOWS\Sysnative\LocationWiFiAdapter.dll
2015-10-01 11:05:21	4A54273338073939384A14BF0D7AFC14	88064	----a-w-	C:\WINDOWS\Sysnative\ngckeyenum.dll
2015-10-01 11:05:21	334206DD8DA94B0AEBC46A3196888031	83968	----a-w-	C:\WINDOWS\Sysnative\DeviceEnroller.exe
2015-10-01 11:05:21	02707CF32272B726BB410E6717BBB7E8	446976	----a-w-	C:\WINDOWS\Sysnative\MapConfiguration.dll
2015-10-01 11:05:20	F1A6A22A63F380DFF28C55B11D688B0C	102304	----a-w-	C:\WINDOWS\Sysnative\omadmapi.dll
2015-10-01 11:05:20	EF3BBA8739757B470D0E49C8619A31C0	53760	----a-w-	C:\WINDOWS\Sysnative\Windows.Speech.Pal.dll
2015-10-01 11:05:20	AA38E0578EBAD030D4CB098A9F5E650B	720896	----a-w-	C:\WINDOWS\Sysnative\EmailApis.dll
2015-10-01 11:05:20	A5B7CAFA0327BCBC2FC6F1C9F95191CA	342016	----a-w-	C:\WINDOWS\Sysnative\LocationGeofences.dll
2015-10-01 11:05:19	EBD5F0FDD3EBB6EE6F6EE524206AD0AE	26624	----a-w-	C:\WINDOWS\Sysnative\LicenseManagerShellext.exe
2015-10-01 11:05:19	D88952BD78157D66A0921B63F5DD0EC5	439296	----a-w-	C:\WINDOWS\Sysnative\LocationWebproxy.dll
2015-10-01 11:05:19	C92EBECB1E30E7E6006C0D8B4040C3F6	274944	----a-w-	C:\WINDOWS\Sysnative\syncutil.dll
2015-10-01 11:05:18	DBA8FE1EAA344106C334E193D3D57B66	73728	----a-w-	C:\WINDOWS\Sysnative\wwancfg.dll
2015-10-01 11:05:18	AC180D981BD23443793F7AA71BBE344A	599552	----a-w-	C:\WINDOWS\Sysnative\wpnapps.dll
2015-10-01 11:05:18	77C8CD0AACC1D059EDF6E91920D11550	421888	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll
2015-10-01 11:05:18	43A1B8B43CA4E213E0FD920F2FD6BCBA	267776	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Management.dll
2015-10-01 11:05:18	14503C58C1528D83FB2328840784EC78	621056	----a-w-	C:\WINDOWS\Sysnative\enterprisecsps.dll
2015-10-01 11:05:18	109F35CCD84FE9AD1E3B6A2953CF2C9D	685568	----a-w-	C:\WINDOWS\Sysnative\AppointmentApis.dll
2015-10-01 11:05:17	F57FE0BD8BD7E1F8088FE18D0FD7BEE9	501008	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2015-10-01 11:05:17	E6337423BD19DD12EB6777934B57E0F4	176640	----a-w-	C:\WINDOWS\Sysnative\LocationPeIP.dll
2015-10-01 11:05:17	959695FD137FF0DEFC6152AAB03AA3D6	1216512	----a-w-	C:\WINDOWS\Sysnative\netcenter.dll
2015-10-01 11:05:17	6C9DDD0611379864596D2A8DE7B1870C	504320	----a-w-	C:\WINDOWS\Sysnative\DataSenseHandlers.dll
2015-10-01 11:05:17	3B397ED55AE652520503CCE0996B0D25	160256	----a-w-	C:\WINDOWS\Sysnative\enrollmentapi.dll
2015-10-01 11:05:17	07B5710393558DD734647D5F2F020647	215552	----a-w-	C:\WINDOWS\Sysnative\LocationCrowdsource.dll
2015-10-01 11:05:17	02954F6B3389EF56088EF1C99B6105BA	202240	----a-w-	C:\WINDOWS\Sysnative\accountaccessor.dll
2015-10-01 11:05:16	A0DBB9386BEA8DA1A159C2A2E07081A3	856576	----a-w-	C:\WINDOWS\Sysnative\MPSSVC.dll
2015-10-01 11:05:16	9170F95C48D44BABB9546CBDC2D4CEBA	257024	----a-w-	C:\WINDOWS\Sysnative\UserDataAccountApis.dll
2015-10-01 11:05:16	5BA872CD68B18193FC82DFE125A15FC4	163840	----a-w-	C:\WINDOWS\Sysnative\CallHistoryClient.dll
2015-10-01 11:05:16	52E7F6343A99747CE5772B04FFCE00A3	771072	----a-w-	C:\WINDOWS\Sysnative\Chakradiag.dll
2015-10-01 11:05:16	3AED81953A08DA52C64F3D92D4A21CD8	223232	----a-w-	C:\WINDOWS\Sysnative\PhoneCallHistoryApis.dll
2015-10-01 11:05:15	EA1C2DAB8A63712B94897A58557B086C	371712	----a-w-	C:\WINDOWS\Sysnative\nlasvc.dll
2015-10-01 11:05:15	63D8A023148D8436D6CBA65E2B9ED56A	143360	----a-w-	C:\WINDOWS\Sysnative\provops.dll
2015-10-01 11:05:15	49213BF8E7EEE157F128C58D75043B09	68096	----a-w-	C:\WINDOWS\Sysnative\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 11:05:14	ECA28C8F0FF34A2BD8311CBA2D35B143	121856	----a-w-	C:\WINDOWS\Sysnative\dmcsps.dll
2015-10-01 11:05:14	BBA571F40F08F967531573109F7FA95E	169984	----a-w-	C:\WINDOWS\Sysnative\mdmregistration.dll
2015-10-01 11:05:14	98986780B8D494326D28DCAB6D601450	154624	----a-w-	C:\WINDOWS\Sysnative\dmcertinst.exe
2015-10-01 11:05:14	5793FBBB1F120D1815A8348434ED236C	221184	----a-w-	C:\WINDOWS\Sysnative\LocationPeWiFi.dll
2015-10-01 11:05:14	562078FF6ED0C2B1C09078343437D03E	168960	----a-w-	C:\WINDOWS\Sysnative\mdmmigrator.dll
2015-10-01 11:05:13	F0B43C550BD519423FB79A58A860CE0B	204288	----a-w-	C:\WINDOWS\Sysnative\LocationPeCell.dll
2015-10-01 11:05:13	F01743062DA74A24A0E7836289E33731	187904	----a-w-	C:\WINDOWS\Sysnative\provisioningcsp.dll
2015-10-01 11:05:13	E2AE190B76C27430E4E8258D0C44C79B	317440	----a-w-	C:\WINDOWS\Sysnative\configmanager2.dll
2015-10-01 11:05:13	C66E058599A44E0EEA95B3E0547345D2	30208	----a-w-	C:\WINDOWS\Sysnative\syncmlhook.dll
====== C:\WINDOWS\Sysnative\drivers =====
2015-10-01 11:05:37	89C9C3745F270EF93988DA57BC6AA62B	1983824	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2015-10-01 11:05:37	7EBD20284AC9BF9F0A020B86769BB074	2432336	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2015-10-01 11:05:31	927AD29D7F91B9A0C5294932374DA15E	894256	----a-w-	C:\WINDOWS\Sysnative\drivers\Wdf01000.sys
2015-10-01 11:05:27	FDB239DBE2A14B572D21ABCEDC7BB5D0	505696	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms2.sys
2015-10-01 11:05:27	5A1C6AFFF6946C5C21A27AE05084C0D1	332624	----a-w-	C:\WINDOWS\Sysnative\drivers\fastfat.sys
2015-10-01 11:05:26	C08449092043601887A1743350888635	516448	----a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2015-10-01 11:05:25	B6A33DCEBE437F909615E89BA5FB1385	395088	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
2015-10-01 11:05:22	854AF190F55E6D70EC65A85798F896E2	36352	----a-w-	C:\WINDOWS\Sysnative\drivers\buttonconverter.sys
2015-10-01 11:05:22	70469C8AC4AD367295E70CFDD81B754C	99664	----a-w-	C:\WINDOWS\Sysnative\drivers\pdc.sys
2015-10-01 11:05:21	FA5C94FB36625787063D04CF2F24E890	320000	----a-w-	C:\WINDOWS\Sysnative\drivers\portcls.sys
2015-10-01 11:05:20	616F40B897DA651221F86A1741E9609B	1168736	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2015-10-01 11:05:18	1434CA8A224655AD096D57DB24D3AA85	406864	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2015-10-01 11:05:18	004C66464D8FE76D5DA78BE6777D61AF	278352	----a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
====== C:\WINDOWS\Tasks ======
2015-10-04 17:35:46	A5816654C3DC14F5FA19D894D25B1DD4	214	----a-w-	C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-09-12 13:13:40	B0F18861996FC95BD9842FC51E96783B	1034	----a-w-	C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-12 13:13:40	870A9AA00141F3852F5F04B01A4B36E8	4094	----a-w-	C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineUA
2015-09-12 13:13:40	75A7A7458D4382EB1E80ED39C808EE65	1030	----a-w-	C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-12 13:13:40	5C888D7B622E936AD68B0CD71FAF5AC6	3862	----a-w-	C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineCore
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-10-05 19:09:25	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-10-05 06:35:50	--------	d-----w-	C:\PROGRA~2\ESET
2015-10-05 06:29:32	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-10-01 13:46:25	--------	d-----w-	C:\PROGRA~2\Diablo III
2015-09-12 13:13:39	--------	d-----w-	C:\PROGRA~2\Dropbox
======= C: =====
====== C:\Users\Dennis\AppData\Roaming ======
2015-10-04 17:49:44	--------	d-----w-	C:\Users\Dennis\AppData\Local\Temp
2015-10-01 11:19:44	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Dropbox
2015-09-18 15:17:43	--------	d-----w-	C:\Users\Dennis\AppData\Local\Soundcloud_Playlist_Downl
====== C:\Users\Dennis ======
2015-10-05 08:03:22	C5B68AC8EC40CAB217AB4F479B953B54	2870984	----a-w-	C:\Users\Dennis\Desktop\esetsmartinstaller_enu.exe
2015-10-05 06:29:23	--------	d-----w-	C:\Users\Dennis\.oracle_jre_usage
2015-10-05 06:29:22	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-05 06:29:12	--------	d-----w-	C:\ProgramData\Oracle
2015-10-05 06:28:39	6E6FAC98AF9E39E9131A236F8DAC8C75	584288	----a-w-	C:\Users\Dennis\Downloads\JavaSetup8u60.exe
2015-10-04 21:11:49	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Desktop\adwcleaner_5.010(1).exe
2015-10-04 21:11:30	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Downloads\adwcleaner_5.010(1).exe
2015-10-04 21:10:58	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Downloads\adwcleaner_5.010.exe
2015-10-03 06:48:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-01 13:54:51	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-10-01 11:19:43	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Documents
2015-10-01 11:19:43	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Desktop

====== C: exe-files ==
2015-10-05 19:09:25	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Dennis.exe
2015-10-05 08:03:22	C5B68AC8EC40CAB217AB4F479B953B54	2870984	----a-w-	C:\Users\Dennis\Desktop\esetsmartinstaller_enu.exe
2015-10-05 06:35:53	F0B5FAE0268D84B1CE6EA3B98D4D69EB	331464	----a-w-	C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScannerA.exe
2015-10-05 06:35:52	E78517BD20C282FBCA150D2B3ACCC760	2870984	----a-w-	C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
2015-10-05 06:35:52	B23901621E5BD2EF1AAC3E6E6CB9E7FF	422600	----a-w-	C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
2015-10-05 06:35:52	4B0F506ACF0A8AE6D6B3E4CF6778B722	122568	----a-w-	C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
2015-10-05 06:35:52	21B9AB1916917F9476B767F605345E62	532168	----a-w-	C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
2015-10-05 06:30:20	7080B965215703EA1340C3C4903C7D73	274016	----a-w-	C:\Windows\SysWOW64\javaws.exe
2015-10-05 06:29:22	BC949C957CEB9FAFDF0F3949CDDF1A72	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-10-05 06:29:22	7080B965215703EA1340C3C4903C7D73	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-10-05 06:29:22	5DC0128E8A2017E82289191820C736A5	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-10-05 06:29:18	E408E46C5DD2D03A7474AA12BAABEFEE	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\klist.exe
2015-10-05 06:29:18	D94C31E9C9C9A1273CC67DC6FFAF9984	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\policytool.exe
2015-10-05 06:29:18	BDFF5086FC1F20E631A070EEF43A7BEC	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\tnameserv.exe
2015-10-05 06:29:18	B9DE149653ED8B9C5C6CB68131AB66D2	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\jjs.exe
2015-10-05 06:29:18	B804A4E31F4BAD4D5BA05FE684756BA2	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\servertool.exe
2015-10-05 06:29:18	7A0DE452F677EF2971C7B75B0267B6ED	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssvagent.exe
2015-10-05 06:29:18	7080B965215703EA1340C3C4903C7D73	274016	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\javaws.exe
2015-10-05 06:29:18	6A5A2FDB6D09E02A3283C55237DA10F6	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\unpack200.exe
2015-10-05 06:29:18	606A24A64E164B345A79F8F22A5DAC6F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\pack200.exe
2015-10-05 06:29:18	5A503CFE5B553A9721A469FCC9CE8562	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\rmiregistry.exe
2015-10-05 06:29:18	3292748E640429C2682484BD23D43F6B	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\rmid.exe
2015-10-05 06:29:18	30387BE3E5D04FE969B731441C89D2D8	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\ktab.exe
2015-10-05 06:29:18	21B5D297A9191E4D833BB39456CEDAD0	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\kinit.exe
2015-10-05 06:29:18	0FCF9F3D9518B90FB58CC950FA33998C	76896	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2launcher.exe
2015-10-05 06:29:18	0F6E0DD1263ACB2A1AC559BB7742B54D	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\keytool.exe
2015-10-05 06:29:18	08427EADE480F21412696582170B1167	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\orbd.exe
2015-10-05 06:29:17	BC949C957CEB9FAFDF0F3949CDDF1A72	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\java.exe
2015-10-05 06:29:17	8C6BDB56CD4DEED1AF2790D37B54CFE9	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\javacpl.exe
2015-10-05 06:29:17	86CC77A8189758834CF83F7F2FEA5162	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\java-rmi.exe
2015-10-05 06:29:17	5DC0128E8A2017E82289191820C736A5	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\javaw.exe
2015-10-05 06:29:17	262BBCE84B9C8784CC5A5E1975898022	30304	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\bin\jabswitch.exe
2015-10-05 06:28:39	6E6FAC98AF9E39E9131A236F8DAC8C75	584288	----a-w-	C:\Users\Dennis\Downloads\JavaSetup8u60.exe
2015-10-04 21:11:49	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Desktop\adwcleaner_5.010(1).exe
2015-10-04 21:11:30	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Downloads\adwcleaner_5.010(1).exe
2015-10-04 21:10:58	9429879C217CB59F3E86912573B7E6CB	1681920	----a-w-	C:\Users\Dennis\Downloads\adwcleaner_5.010.exe
2015-10-03 06:48:15	29A95EA006B420C82BBE2415F0B1AE0C	50771064	----a-w-	C:\Program Files (x86)\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\3.10.7\DropboxClient_3.10.7.exe
2015-10-03 02:03:37	E7D00D2EE22AB853AB318BC390D55EB1	5594160	----a-w-	C:\ProgramData\Battle.net\Agent\Agent.4461\Agent.exe
2015-10-01 13:54:51	B26DBB30D048F2CB309ED8EDFE95021B	336432	----a-w-	C:\Program Files (x86)\Diablo III\InspectorReporter\BlizzardError.exe
2015-10-01 13:54:50	3857C52E8A04F654207ACA7BDC60C5F0	25961008	----a-w-	C:\Program Files (x86)\Diablo III\Diablo III.exe
2015-10-01 13:54:43	2C7711CF79312214C98FDA9B5121C722	3066928	----a-w-	C:\Program Files (x86)\Diablo III\Diablo III Launcher.exe
2015-10-01 13:45:58	F9E70DFDD52E9B0E37A84916CFA721EB	10245680	----a-w-	C:\Program Files (x86)\Battle.net\Battle.net.6160\Battle.net.exe
2015-10-01 13:45:37	E04BEC0C5722B589C8920F1135AC1741	5593648	----a-w-	C:\ProgramData\Battle.net\Agent\Agent.4454\Agent.exe
2015-10-01 13:45:23	2321A5A35010F4FDC91273D8D40D4340	5574192	----a-w-	C:\ProgramData\Battle.net\Agent\Agent.4408\Agent.exe
2015-10-01 11:05:46	695DFBE0357DB32E4475F74053D021BC	7455056	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
2015-10-01 11:05:45	4A6E77B420F384AA8CB429904F7BF088	6263152	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2015-10-01 11:05:40	E19833B3E69A5B829AB97D5CBD3BF356	1876832	----a-w-	C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
2015-10-01 11:05:36	5252CE15DB06AB5A796EBC361EAC1528	8020816	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-10-01 11:05:34	5275394FE00E85B13DC535C67961DFEB	1907536	----a-w-	C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
2015-10-01 11:05:32	F55E9DF5284E75728CBED4EC3228A536	624480	----a-w-	C:\Windows\SystemApps\Microsoft.AccountsControl_cw5n1h2txyewy\AccountsControlHost.exe
2015-10-01 11:05:28	258A4F9A2C91C6C6E36775CDCCB4AFE1	441168	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2015-10-01 11:05:27	37B5ECB8C390D9FD5A5BB2FFB7294B9E	553808	----a-w-	C:\Windows\System32\SettingSyncHost.exe
2015-10-01 11:05:27	1CD8BB41436524A2748A77005E5DEB8A	579072	----a-w-	C:\Windows\System32\winlogon.exe
2015-10-01 11:05:25	E1DB432B3147F70BF684846439ADE38B	136192	----a-w-	C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
2015-10-01 11:05:25	948BD4AC1C7C572312048A284D6C9A7F	562688	----a-w-	C:\Windows\System32\Speech\SpeechUX\SpeechUXWiz.exe
2015-10-01 11:05:22	D61C3ED7C5F0D1B5BD9B351FEC381D57	120832	----a-w-	C:\Windows\System32\omadmclient.exe
2015-10-01 11:05:22	B8401703E619E7BD7B5A659306A9BFE6	84480	----a-w-	C:\Windows\System32\MDMAppInstaller.exe
2015-10-01 11:05:21	334206DD8DA94B0AEBC46A3196888031	83968	----a-w-	C:\Windows\System32\DeviceEnroller.exe
2015-10-01 11:05:19	EBD5F0FDD3EBB6EE6F6EE524206AD0AE	26624	----a-w-	C:\Windows\System32\LicenseManagerShellext.exe
2015-10-01 11:05:19	ACF279AB64D406EDB223543E5A113939	220160	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
2015-10-01 11:05:14	98986780B8D494326D28DCAB6D601450	154624	----a-w-	C:\Windows\System32\dmcertinst.exe
2015-10-01 11:05:13	9853C2A9EF7FBC341C65EF89908CA052	482816	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe
2015-09-30 09:43:22	40E63A7B9993496620D503AF6DDC92C3	336896	----a-w-	C:\Users\Dennis\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe
2015-09-30 08:38:41	4E19C3F4919A8ED4A5F955B100472AED	1821536	----a-w-	C:\Users\Dennis\AppData\Roaming\uTorrent\updates\3.4.5_41162.exe
=== C: other files ==
2015-10-06 06:06:38	DE0983FE4B830699312D35A990B3AE1B	1945	----a-w-	C:\Users\Dennis\AppData\Local\Temp\_MEI68322\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx
2015-10-06 06:06:38	82F5C942549405F61A8808D0EA0FA9E2	25575	----a-w-	C:\Users\Dennis\AppData\Local\Temp\_MEI68322\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx
2015-10-05 06:29:19	4E221C69F3B103481534D1B6CB6A90DD	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_60\lib\deploy\ffjcext.zip
2015-10-01 11:05:37	89C9C3745F270EF93988DA57BC6AA62B	1983824	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2015-10-01 11:05:37	7EBD20284AC9BF9F0A020B86769BB074	2432336	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2015-10-01 11:05:31	927AD29D7F91B9A0C5294932374DA15E	894256	----a-w-	C:\Windows\System32\drivers\Wdf01000.sys
2015-10-01 11:05:30	33FF0B7585F54C0F33C38F5DCAB1DA01	3586560	----a-w-	C:\Windows\System32\win32kfull.sys
2015-10-01 11:05:27	FDB239DBE2A14B572D21ABCEDC7BB5D0	505696	----a-w-	C:\Windows\System32\drivers\dxgmms2.sys
2015-10-01 11:05:27	5A1C6AFFF6946C5C21A27AE05084C0D1	332624	----a-w-	C:\Windows\System32\drivers\fastfat.sys
2015-10-01 11:05:26	C08449092043601887A1743350888635	516448	----a-w-	C:\Windows\System32\drivers\USBHUB3.SYS
2015-10-01 11:05:25	B6A33DCEBE437F909615E89BA5FB1385	395088	----a-w-	C:\Windows\System32\drivers\dxgmms1.sys
2015-10-01 11:05:23	7D2165B4B27E11B3E557DB26CAA2BAFF	1382400	----a-w-	C:\Windows\System32\win32kbase.sys
2015-10-01 11:05:22	854AF190F55E6D70EC65A85798F896E2	36352	----a-w-	C:\Windows\System32\drivers\buttonconverter.sys
2015-10-01 11:05:22	70469C8AC4AD367295E70CFDD81B754C	99664	----a-w-	C:\Windows\System32\drivers\pdc.sys
2015-10-01 11:05:21	FA5C94FB36625787063D04CF2F24E890	320000	----a-w-	C:\Windows\System32\drivers\portcls.sys
2015-10-01 11:05:20	616F40B897DA651221F86A1741E9609B	1168736	----a-w-	C:\Windows\System32\drivers\ndis.sys
2015-10-01 11:05:18	1434CA8A224655AD096D57DB24D3AA85	406864	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-10-01 11:05:18	004C66464D8FE76D5DA78BE6777D61AF	278352	----a-w-	C:\Windows\System32\drivers\sdbus.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-2213299290-1646557224-3230048632-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"uTorrent"="C:\Users\Dennis\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"OneDrive"="C:\Users\Dennis\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"DAEMON Tools Lite Automount"="C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe -autorun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Spotify Web Helper"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (1)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify"="C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"
"Akamai NetSession Interface"="C:\Users\Dennis\AppData\Local\Akamai\netsession_win.exe"
"Spybot-S&D Cleaning (1)"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe /autoclean"
"Spotify (1)"="C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Spotify Web Helper (2)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (3)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (4)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"uTorrent (1)"="C:\Users\Dennis\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

[HKEY_USERS\S-1-5-21-2213299290-1646557224-3230048632-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2213299290-1646557224-3230048632-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup"
"Redirector"="C:\Program Files (x86)\Citrix\ICA Client\redirector.exe /startup"
"Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"B2C_AGENT"="C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe"
"MouseDriver"="TiltWheelMouse.exe"
"SDTray"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"MSC (1)"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"CNAP2 Launcher"="C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"uTorrent"="C:\Users\Dennis\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"
"OneDrive"="C:\Users\Dennis\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"DAEMON Tools Lite Automount"="C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe -autorun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Spotify Web Helper"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (1)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify"="C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"
"Akamai NetSession Interface"="C:\Users\Dennis\AppData\Local\Akamai\netsession_win.exe"
"Spybot-S&D Cleaning (1)"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe /autoclean"
"Spotify (1)"="C:\Users\Dennis\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Spotify Web Helper (2)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (3)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Spotify Web Helper (4)"="C:\Users\Dennis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun"
"uTorrent (1)"="C:\Users\Dennis\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"MouseDriver"="TiltWheelMouse.exe"
"CNAP2 Launcher"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE"
"MouseDriver"="TiltWheelMouse.exe"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"MSC (1)"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"CNAP2 Launcher"="C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MouseDriver]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MouseDriver"
"hkey"="HKLM"
"command"="TiltWheelMouse.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\Dennis\\AppData\\Roaming\\Spotify\\Spotify.exe\" -autostart -minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify Web Helper"
"hkey"="HKCU"
"command"="\"C:\\Users\\Dennis\\AppData\\Roaming\\Spotify\\SpotifyWebHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="\"C:\\Users\\Dennis\\AppData\\Roaming\\uTorrent\\uTorrent.exe\"  /MINIMIZED"


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [21-09-2015 19:48]
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job --a-------- C:\WINDOWS\explorer.exe [11-08-2015 12:04]
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [12-09-2015 15:13]
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [12-09-2015 15:13]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 13:25]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 13:25]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\WINDOWS\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\HPCustParticipation HP Photosmart 5520 series" ["C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe"]
"C:\WINDOWS\SysNative\tasks\Hybrid" [C:\IORRT\IORRT.bat]
"C:\WINDOWS\SysNative\tasks\IORRT" [C:\IORRT\IORRT.bat]
"C:\WINDOWS\SysNative\tasks\Motorola Device Manager Engine" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"]
"C:\WINDOWS\SysNative\tasks\Motorola Device Manager Initial Update" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"]
"C:\WINDOWS\SysNative\tasks\Motorola Device Manager Update" ["C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe"]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Folders in C:\PROGRA~3 0-6 Months Old ======================

2015-05-19 15:18:03	--------	d-----w-	C:\PROGRA~3\GOG.com
2015-06-16 07:41:18	--------	d-----w-	C:\PROGRA~3\Dropbox
2015-07-10 11:04:22	--------	d-----w-	C:\PROGRA~3\regid.1991-06.com.microsoft
2015-07-10 11:04:22	--------	d-----w-	C:\PROGRA~3\USOPrivate
2015-07-10 11:04:22	--------	d-s---w-	C:\PROGRA~3\Microsoft
2015-07-10 12:21:38	--------	d-sh--we	C:\PROGRA~3\Application Data
2015-07-10 12:21:38	--------	d-sh--we	C:\PROGRA~3\Desktop
2015-07-10 12:21:38	--------	d-sh--we	C:\PROGRA~3\Documents
2015-07-10 12:21:38	--------	d-sh--we	C:\PROGRA~3\Start Menu
2015-07-10 12:21:38	--------	d-sh--we	C:\PROGRA~3\Templates
2015-07-10 12:22:45	--------	d-----w-	C:\PROGRA~3\USOShared
2015-08-11 14:17:21	--------	d-----w-	C:\PROGRA~3\Microsoft OneDrive
2015-08-21 16:16:32	--------	d-----w-	C:\PROGRA~3\ATI
2015-09-03 17:21:17	--------	d-----w-	C:\PROGRA~3\Citrix
2015-10-05 06:29:12	--------	d-----w-	C:\PROGRA~3\Oracle

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dennis\AppData\Roaming\Mozilla\Firefox\Profiles\ykx4cynv.default
- United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Dennis\AppData\Roaming\Mozilla\Firefox\Profiles\ykx4cynv.default
ADC539F67D3198679F480974EE203678	- C:\WINDOWS\SysWOW64\npDeployJava1.dll -	Java Deployment Toolkit 7.0.210.11
1A62BB86D17B8DC0D4339BACC8D60635	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll -	Shockwave Flash
94F31AAE9024EFF7690019691BAEB7C5	- C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll -	Microsoft� Windows�-besturingssysteem
6316C63005AA518C130149D6CB02EF35	- C:\WINDOWS\SysWOW64\npmproxy.dll -	Microsoft� Windows� Operating System


==== Chromium Look ======================

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
apdfllckaahabafndbhieahigkjlhalf - C:\Users\Dennis\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[30-08-2014 12:07]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

Google Slides - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dennis\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Dennis\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Dennis\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Dennis\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Dennis\AppData\Local\Mozilla\Firefox\Profiles\ykx4cynv.default\cache2 emptied successfully
C:\Users\Ellen Everhardus\AppData\Local\Mozilla\Firefox\Profiles\vh9r6o6p.default\Cache emptied successfully
C:\Users\Ellen Everhardus\AppData\Local\Mozilla\Firefox\Profiles\vh9r6o6p.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Ellen Everhardus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=
==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Dennis\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 06-10-2015 at  8:40:56,16 ======================