
Zoek.exe v5.0.0.1 Updated 18-October-2015
Tool run by PC on ma 19-10-2015 at 18:57:51,39.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\PC\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

19-10-2015 18:59:23 Zoek.exe System Restore Point Created Successfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 


==== Empty Folders Check ======================

C:\PROGRA~2\Cyanide deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\Users\PC\AppData\Roaming\IObit deleted successfully
C:\Users\PC\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\PC\AppData\Local\EmieSiteList deleted successfully
C:\Users\PC\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Cyanide not found
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\PC\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-10-13 17:50:36	F811B932E3DBA308014F8C870F752F16	12875776	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-10-13 17:50:36	5CB2886338C82E388F68557E2745200F	1498624	----a-w-	C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-13 17:50:31	C89372B642726F1CF3EB479397976DA3	279040	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-10-13 17:50:31	C848E013BB85C48C787001E1EA36905F	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-10-13 17:50:31	A7028D5D5E3DCF820B3C0AFE0137A87E	130048	----a-w-	C:\Windows\SysWOW64\occache.dll
2015-10-13 17:50:31	9F36964CDB9A920779314395E3911503	504832	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-10-13 17:50:31	908BBA41A5B57DDB126B85EC14DD58EF	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-10-13 17:50:31	0E036A353DB9D8F4F642AC0F9412F09E	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-10-13 17:50:31	098F6097F919EE77EA490E16D11E427A	1311232	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-10-13 17:50:31	04BB7AF8E0DAE83982155F0752308666	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-10-13 17:50:31	00FBEDF0E74AD8815469A95271C0E562	345688	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-10-13 17:50:30	D586CB95B4EADC0525E8929A241898F5	20357632	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-10-13 17:50:30	7E8EABA6A2B10FE11E2381378A57322B	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-10-13 17:50:30	060409834CC8FAC3F1231DA3F0648CC5	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-10-13 17:50:29	F274AF14C7DB6C52C023BCBDA4197D17	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-10-13 17:50:29	B87A11C95703AB19ACB43993DDA0F1A3	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-10-13 17:50:29	9F4234838400CC3A964AF53DE4410A50	2279936	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-10-13 17:50:29	8C9BCE16E894D4FBCE151F4A5FE05F55	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-10-13 17:50:29	816B489E2BBFE2479C844AAD486ABB42	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-10-13 17:50:29	73189A2739491ABB556872737C501F8E	663552	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-10-13 17:50:29	584E6632F1F4027AB64DEB0F4139E7D7	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-10-13 17:50:29	12DCE9300FF5B74DC2F7DBAC96B0614E	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-10-13 17:50:28	BE1263EE0CB8CF942FC35CC86E0C3941	12853760	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-10-13 17:50:28	AFC4F34507B555D1C9C4F049CCA1475F	416256	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-10-13 17:50:28	4A3CA2C73C4D66A90C63E9E532746020	480256	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-10-13 17:50:26	E401E66CCB2AE219CF41F7F901C410C1	2011136	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-10-13 17:50:26	DE53F76D63CA64E172B336BC7CFF6EDA	4527616	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-10-13 17:50:26	CEDBC9DBD9800E0EE81B0840EBC2BAC5	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-10-13 17:50:26	A7012A7032207D1C16B7236EDF91F4BB	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-10-13 17:50:26	A25C9DD040CA9799C2A7E41732D0752A	230400	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2015-10-13 17:50:26	5EE17D52CAF79663211C01C614594620	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-10-13 17:50:26	17B66052348D3A3681A9411EDD839E18	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-10-13 17:50:10	C19537A50B723E0F7B53D413163B35EE	3936192	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-13 17:50:10	63FD03CED9739062E9B94F0D1E54A406	3990976	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-13 17:50:09	CA504606753BD62FA3128D3056320264	552960	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-10-13 17:50:09	C7293C9340BDC8291F6718913F3F7B14	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-10-13 17:50:09	9E83A4F6E776F7A3E5F7FB90180FBC0B	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-10-13 17:50:09	4EB6A0445891D56D56BB4580B3906BEA	1311768	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-10-13 17:50:09	22BF275468F714A4F7E6F36449D1DCE2	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-10-13 17:50:09	0834E70A068360D85CDC47697A4B7898	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-10-13 17:50:08	D9F5F78F8EA5749CA651B71335A96421	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-10-13 17:50:08	D8269205300BB593C3698BB77178E8D3	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-10-13 17:50:08	C142CBB756205146B88DDB66D00BFE66	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-10-13 17:50:08	C00E4CD3AC3A0D8E339635E06546B77D	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-10-13 17:50:08	8A4ED460B6557EDCA637236073794DFF	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-10-13 17:50:08	6D16D1B9DB2526B985BBB9B27A56B70B	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-10-13 17:50:08	6848FA8B421A0CEC8990AFE7A615574F	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-10-13 17:50:08	5FC0F48FD38D0AC7FC54EBEFBC3F69C5	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-10-13 17:50:08	3FA49981A847AE62259E6AEB585C84B8	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-10-13 17:50:08	2464CEAC16185B73774662AC625F695D	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-10-13 17:50:08	2421C989BF8485B6A9EBBAC35ACADF1D	665088	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2015-10-13 17:50:08	1ADCC4F94981430FE968EE992353C535	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-10-13 17:50:08	15192FC6BFCB37AE43A645A9C84AEF2F	36864	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2015-10-13 17:50:07	FE7B23203C757148CBCCA0A39EAD3C59	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-10-13 17:50:07	D414A645F6853BB2C8A24B85C1C86581	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-10-13 17:50:07	B421B311420FD650BE3B25EAC217E685	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-10-13 17:50:07	64B92847AA0945992BB49B62D9B0440E	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-10-13 17:50:07	1BE5DF925C30D9D1FAD1212FB215E469	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-10-13 17:50:07	09BA6677E9CCBB1884CD0FB24F6EF584	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-10-13 17:49:58	DDCABBADA6116E8E3472D93FDF56FE66	93696	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-10-13 17:49:58	C4240CA64E6B3523110DE3CAF4066F07	566784	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-10-13 17:49:58	7902FB8C129A6DCAA9E0002BD3600F00	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-10-13 17:49:58	6CE7ACA0022C27A3FAECB600E097F81B	30208	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-10-13 17:49:58	693F6EC2312B8B3F57B7277B069B91A3	174080	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-10-13 17:49:28	0D0FF2A38473552DDFF4F21756700F9B	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-10-18 13:55:25	E6780D03227190FD0C8695113B8E9C4C	410160	----a-w-	C:\Windows\Sysnative\FNTCACHE.DAT
2015-10-13 17:50:39	21C89857E5671990BBF2B430BD75B9C9	1291264	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-10-13 17:50:38	F03EA93F045D009830C890010750B34A	25432	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2015-10-13 17:50:38	AFE7905DD772DEA54B9C443C6634740A	700416	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-10-13 17:50:38	9F780E22C79AACBF3A93F6ACDE2A4E0A	766464	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-10-13 17:50:38	952D66DCA6CB744381B7298F8AAE994F	73216	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-10-13 17:50:38	1AC3E0E57844764B0CA6D2BF0F76C773	503808	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-10-13 17:50:38	14A5CC0EE60278D483A88124B88F3524	1163776	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-10-13 17:50:37	885B08E5EC912D2680F533094B87770D	14176768	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-10-13 17:50:36	0F08BB62CD162883E9A3004BBE7914BD	1866752	----a-w-	C:\Windows\Sysnative\ExplorerFrame.dll
2015-10-13 17:50:31	BF8A5B4E696F4E8F3B2B5E9902467418	720896	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-10-13 17:50:31	9E0D0522908C1106E0D77708CB9926FE	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-10-13 17:50:31	9AEE2A881FD10E6A463588303D8027AD	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-10-13 17:50:31	80E9DF296F127B3BC965EBC5A2C8F044	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-10-13 17:50:31	521E1A87D4F750FD9694DBF3AB37B38F	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-10-13 17:50:31	3A0773E21355B41176ACAD8BB099D9B3	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-10-13 17:50:29	8A2A46DD0C51E5D2D0A2EF2AA289DA4D	1546752	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-10-13 17:50:29	4AEB3F2FB0CC23A18ED997F6C0476819	391784	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-10-13 17:50:29	3295B811A0260C0A5B346ECB73C5FCF0	152064	----a-w-	C:\Windows\Sysnative\occache.dll
2015-10-13 17:50:29	12C1DECE9502828C0A5ADB50AB1673A0	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-10-13 17:50:28	F6F91F217D760981017E4AA4F1C7E633	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-10-13 17:50:28	D661A17B4634171C58373699CBD6455B	315392	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-10-13 17:50:28	6E1EEB1CE2F9F3AB14A9E8A6B1E82455	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-10-13 17:50:28	2A898891EB7FBCF0774F0B96AAD05561	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-10-13 17:50:28	0FA614470B3A78FC5B8F3F3F742B9837	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-10-13 17:50:27	E91FD3ACC10C971CBA991FCD058ABB58	2886656	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-10-13 17:50:27	7C3050383491011FEDD40961A37A2D99	2126336	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-10-13 17:50:26	A865136AC6436533E0A4A3C67F259401	585728	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-10-13 17:50:26	84C63F3D2D488A918A947E06BD1105EF	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-10-13 17:50:25	BC92D9D88959542FBAF1F8CF21F86B38	14458368	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-10-13 17:50:25	88D3F690043A1AA43F33DEC6DDA82178	616960	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-10-13 17:50:25	4A9FFAC9325EFFDEFD7E8C0830B0ABEC	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-10-13 17:50:25	45A56A2CC2D6A4B649B7DC3B5DF259FF	489984	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-10-13 17:50:24	E36C7069B9C56DF9A53DD4FA5DCDDE72	5990912	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-10-13 17:50:24	BD06D875FB79E92DAF724C91DE743AFA	2487808	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-10-13 17:50:24	B0917E6238C1675E48CFE64947DD9FD9	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-10-13 17:50:24	5175A9C2C71D49394424C07CA856B803	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-10-13 17:50:24	454669BB12162610D93954BCC942A41C	817664	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-10-13 17:50:24	373B3EFBBF1A2706F8660C4DE4202694	262144	----a-w-	C:\Windows\Sysnative\webcheck.dll
2015-10-13 17:50:24	1DE918244ED8AB9D3F2C4B9A1F91A24D	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-10-13 17:50:23	BEA081F4F2D507D6461B142AB11995B3	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-10-13 17:50:23	99BA96F5AC545D857E662A9FC576D919	25851904	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-10-13 17:50:23	58DD42AC31D1F86D303BAAF5955A59BA	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-10-13 17:50:23	0783994A921469A6E97F3117AA0934DD	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-10-13 17:50:11	3FE5671328B8A655F766D872D12DC373	5569472	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-10-13 17:50:09	F337ACC4CF6B9DFBE46D9A7E54E10756	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-10-13 17:50:09	EE035334B7A58C7F748C3D0394574A35	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-10-13 17:50:09	E43F36D0B4C674FEA2C992564A3E0F28	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-10-13 17:50:09	D2BF3CD0F66139B5F1BA1D35C6613E78	315392	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-10-13 17:50:09	CD349AD99C801523B55030AC234CC1EF	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-10-13 17:50:09	A06A96A26FE0BE22B08B641362296B68	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-10-13 17:50:09	96DE914D834FD7809A1720AF5D913C96	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-10-13 17:50:09	91DDAFAFCEC3E360881FE35AF06B9EE4	1730496	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-10-13 17:50:09	6C190505923A971F0474F8BA8DA50789	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-10-13 17:50:09	5B9427E47B86AFDA813A8D252713FC35	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-10-13 17:50:09	5401C9D2F4B0A98B60259C621DDF1EB6	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-10-13 17:50:09	4AD1C61152A0199E3D7F9A82C07AC629	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-10-13 17:50:09	365480590A46ECB0E4BF1DBD7BC69713	729088	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-10-13 17:50:09	338FD40323ADD43B5C94B4A6CB91874B	1216512	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2015-10-13 17:50:09	11C18D613F66CB5CE829B821599ED339	1164800	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-10-13 17:50:08	FCFE939A325054DFC69E1D8C58751A62	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-10-13 17:50:08	E9CCB68290F27837A3D7058FEB51F7A8	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-10-13 17:50:08	E91002F7EC3A9BF7F62BF1E215A32451	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-10-13 17:50:08	D2E2A613EBD0C959E72556C3A63A6B4A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-10-13 17:50:08	C0EC18A77CBE5505019AF1BEB6CE824D	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-10-13 17:50:08	95E4E6C645175731B1DC8084329121AA	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-10-13 17:50:08	8F15F0D6F42A2B8A58EDD1AA55D7FB98	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-10-13 17:50:08	8260FD420E49C1E3DD6539BCEA2B376E	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-10-13 17:50:08	78461527B753B9A6043038AEF25745D3	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-10-13 17:50:08	5424EC756808C1002457033D969115C7	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-10-13 17:50:08	4E10C0CD94FD2E9F04B0AA11C4DB1592	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-10-13 17:50:08	3CF93F8BA5016A86073F7ACE4A225D69	44032	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2015-10-13 17:50:08	23682AD752DE308760672C84A7E74554	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-10-13 17:50:08	06AA22DBBD294BB40F01E23BF826AA9C	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-10-13 17:50:07	DD01EBF9D35E614CAEA1BF4876B07134	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-10-13 17:50:07	B5D2DF46AB955A070F67FF192C52E7BD	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-10-13 17:50:07	7CDA2FE5F02370B5879DF8D35133B0E1	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-10-13 17:50:07	023394934150F7EC547EBCC2107EEA5F	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-10-13 17:49:59	291778E1A36716182AFBC1731B2DFEAB	2607104	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-10-13 17:49:58	ECB1C858D9989C4F19FDCE3B7F8BA1F7	696320	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-10-13 17:49:58	DA4450EE180CBDFB800FB230978BBC58	98816	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-10-13 17:49:58	C64C6AA9F061E89AE6CA1B484AC3F94E	192512	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-10-13 17:49:58	B322CE702FA01DA60876BC5D417B15FE	36864	----a-w-	C:\Windows\Sysnative\wups.dll
2015-10-13 17:49:58	96983751026F0940CAEEB15901B49FF2	37888	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-10-13 17:49:58	7A2E35CA7131819A8CCE1FA1368D7813	37888	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-10-13 17:49:58	74F288D562E78E1062D4AA2A6C3AB74C	12288	----a-w-	C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-10-13 17:49:58	64B432FB351118B222A5342A7A461696	140288	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-10-13 17:49:58	5F1A7C984117F478F7411BDD98411B58	91136	----a-w-	C:\Windows\Sysnative\WinSetupUI.dll
2015-10-13 17:49:58	2FFBB9A44A8BA9CBC9589C31E0A36605	3168768	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-10-13 17:49:29	87FEDB1FF42C3A10FFE2CE95AB2AF306	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-10-13 17:49:29	541B7C53EDA8F84790A593B13FB32E56	692672	----a-w-	C:\Windows\Sysnative\winload.efi
2015-10-13 17:49:28	B6C85437FDC8EC6464BE359D41BBC3F7	59392	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-10-13 17:49:28	B17B1E5FB5CE63DA4DB4D49E3683487F	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-10-13 17:49:28	ABC373B9C6275D45F17DB559408FFD1B	32768	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-10-13 17:49:28	7503BAD9B2A08B8A95319F7C0CA9F869	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2015-10-13 17:49:28	7030F95F994B2F2CCC1C521E342369DB	147456	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
====== C:\Windows\Sysnative\drivers =====
2015-10-13 17:50:09	C6330F7C2E92A00E6773E82F79078AFC	157016	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-10-13 17:50:09	3A8C03156C3E31E70EF84E48CA179B46	97112	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-10-13 17:50:08	ACB6782973BD93760D597FC7BB37E692	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-10-13 17:50:08	8C0376974AA28398FF501E78C04ACB30	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-10-13 17:50:08	262BF7BB7D0E44CFAA9B12A1E0A6EDF1	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-10-13 17:49:27	27DABFB4A6B0140C34DBEC713469592B	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-09-29 18:24:48	19BEDA57F3E0A06B8D5EB6D619BD5624	39936	----a-w-	C:\Windows\Sysnative\drivers\tssecsrv.sys
2015-09-29 15:36:04	F037314138494EE6BD7DDC4C19C63012	170280	----a-w-	C:\Windows\Sysnative\drivers\ESETCleanersDriver.sys
====== C:\Windows\Tasks ======
2015-09-26 15:36:06	F1A9BBA96378E60D8C33095B510D5FEB	940	----a-w-	C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-26 15:36:06	C9D400934CBC0CF893C5F9998280E8FA	3878	----a-w-	C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-10-17 19:58:42	--------	d-----w-	C:\Program Files\trend micro
2015-10-16 14:21:28	--------	d-----w-	C:\Program Files\Speccy
2015-09-29 16:25:39	--------	d-----w-	C:\Program Files\ESET
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\PC\AppData\Roaming ======
2015-10-18 13:56:58	4B04913183062BAE6A2C681DB2440966	109296	----a-w-	C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-30 14:57:50	--------	d-----w-	C:\Users\PC\AppData\Roaming\TeamViewer
====== C:\Users\PC ======
2015-10-17 19:57:28	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\PC\Desktop\RSITx64.exe
2015-10-16 14:21:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-10-14 18:46:32	--------	d-----w-	C:\ProgramData\SecTaskMan
2015-10-14 18:19:12	8BA618F15C8D721B12668D602DBAE5DB	1682432	----a-w-	C:\Users\PC\Desktop\adwcleaner_5.013.exe
2015-09-29 16:25:39	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-09-29 16:25:39	--------	d-----w-	C:\ProgramData\ESET

====== C: exe-files ==
2015-10-17 19:58:42	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\PC.exe
2015-10-17 19:57:28	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\PC\Desktop\RSITx64.exe
2015-10-15 15:34:08	635DBF6CD989626ABEE812AF15948A8A	1369416	----a-w-	C:\Users\PC\AppData\Local\Google\Chrome\User Data\SwReporter\4.32.1\software_reporter_tool.exe
2015-10-15 15:31:06	2378C5CC4237C2B561460C69580E8035	9064016	----a-w-	C:\Program Files (x86)\Google\Update\Install\{F18D039C-19CB-41B3-8725-07FEF0AF826D}\46.0.2490.71_45.0.2454.101_chrome_updater.exe
2015-10-15 15:31:05	2378C5CC4237C2B561460C69580E8035	9064016	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\46.0.2490.71\46.0.2490.71_45.0.2454.101_chrome_updater.exe
2015-10-14 18:19:12	8BA618F15C8D721B12668D602DBAE5DB	1682432	----a-w-	C:\Users\PC\Desktop\adwcleaner_5.013.exe
2015-10-13 17:50:38	F03EA93F045D009830C890010750B34A	25432	----a-w-	C:\Windows\System32\CompatTelRunner.exe
2015-10-13 17:50:35	D8AF0D6A806ADA9660C55DD891E80AF2	224768	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-10-13 17:50:35	4FCAED5CA1A9C704DBF172283A283B53	10240	----a-w-	C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
2015-10-13 17:50:31	BF8A5B4E696F4E8F3B2B5E9902467418	720896	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-10-13 17:50:31	9AEE2A881FD10E6A463588303D8027AD	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-10-13 17:50:31	1A480EC5EFC71B92735BB420E2B92348	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-10-13 17:50:29	7FD2748E2B08B5E9FD6FF73669B2ECBF	818264	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-10-13 17:50:29	2D59CD5D6C1DCB3507431281BDBF935F	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-10-13 17:50:29	03AE49CC0AD731C579E4041921450266	473600	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-10-13 17:50:28	2A898891EB7FBCF0774F0B96AAD05561	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-10-13 17:50:27	E4509963A72F1941B17DA730BB94AD20	491008	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-10-13 17:50:27	5F95E34F57E2E85295510EEEF724012D	815720	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-10-13 17:50:26	17B66052348D3A3681A9411EDD839E18	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-10-13 17:50:24	B0917E6238C1675E48CFE64947DD9FD9	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-10-13 17:50:11	3FE5671328B8A655F766D872D12DC373	5569472	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-10-13 17:50:10	C19537A50B723E0F7B53D413163B35EE	3936192	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-13 17:50:10	63FD03CED9739062E9B94F0D1E54A406	3990976	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-13 17:50:09	5B9427E47B86AFDA813A8D252713FC35	296960	----a-w-	C:\Windows\System32\rstrui.exe
2015-10-13 17:50:09	5401C9D2F4B0A98B60259C621DDF1EB6	338432	----a-w-	C:\Windows\System32\conhost.exe
2015-10-13 17:50:08	D2E2A613EBD0C959E72556C3A63A6B4A	112640	----a-w-	C:\Windows\System32\smss.exe
2015-10-13 17:50:08	C00E4CD3AC3A0D8E339635E06546B77D	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-10-13 17:50:08	95E4E6C645175731B1DC8084329121AA	64000	----a-w-	C:\Windows\System32\auditpol.exe
2015-10-13 17:50:08	5FC0F48FD38D0AC7FC54EBEFBC3F69C5	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-10-13 17:50:08	5424EC756808C1002457033D969115C7	31232	----a-w-	C:\Windows\System32\lsass.exe
2015-10-13 17:50:07	B421B311420FD650BE3B25EAC217E685	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-10-13 17:50:07	09BA6677E9CCBB1884CD0FB24F6EF584	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-10-13 17:49:58	96983751026F0940CAEEB15901B49FF2	37888	----a-w-	C:\Windows\System32\wuapp.exe
2015-10-13 17:49:58	7902FB8C129A6DCAA9E0002BD3600F00	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-10-13 17:49:58	64B432FB351118B222A5342A7A461696	140288	----a-w-	C:\Windows\System32\wuauclt.exe
2015-10-13 17:49:28	B17B1E5FB5CE63DA4DB4D49E3683487F	17920	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-10-13 17:49:28	7030F95F994B2F2CCC1C521E342369DB	147456	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
=== C: other files ==
2015-10-13 17:50:09	C6330F7C2E92A00E6773E82F79078AFC	157016	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-10-13 17:50:09	3A8C03156C3E31E70EF84E48CA179B46	97112	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-10-13 17:50:08	ACB6782973BD93760D597FC7BB37E692	159232	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2015-10-13 17:50:08	8C0376974AA28398FF501E78C04ACB30	129024	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2015-10-13 17:50:08	262BF7BB7D0E44CFAA9B12A1E0A6EDF1	290816	----a-w-	C:\Windows\System32\drivers\mrxsmb10.sys
2015-10-13 17:49:27	27DABFB4A6B0140C34DBEC713469592B	61440	----a-w-	C:\Windows\System32\drivers\appid.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Origin Client Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Steam Client Service]


==== Startup Folders ======================

2015-04-20 19:47:54	1942	----a-w-	C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-09-2015 20:19]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-09-2015 20:19]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

==== Folders in C:\PROGRA~3 0-6 Months Old ======================

2015-04-24 07:33:55	--------	d-----w-	C:\PROGRA~3\Electronic Arts
2015-04-24 07:33:56	--------	d-----w-	C:\PROGRA~3\Origin
2015-04-24 18:10:50	--------	d-----w-	C:\PROGRA~3\EA Core
2015-04-26 07:47:42	--------	d-----w-	C:\PROGRA~3\IObit
2015-04-26 09:50:02	--------	d-----w-	C:\PROGRA~3\Malwarebytes
2015-09-29 16:25:39	--------	d-----w-	C:\PROGRA~3\ESET
2015-10-14 18:46:32	--------	d-----w-	C:\PROGRA~3\SecTaskMan

==== Chromium Look ======================

Google Docs - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Docs Offline - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.nl/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{4EFD4F4B-D74C-463E-B17E-992E615A4658} Google  Url="http://www.google.nl/search?hl=nl&q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=3 folders=1 789 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\PC\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\PC\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 19-10-2015 at 19:36:45,77 ======================