Zoek.exe v5.0.0.1 Updated 25-October-2015
Tool run by Henk on di 27-10-2015 at 20:01:14,61.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Henk\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

27-10-2015 20:03:59 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Program Files\ATI Technologies deleted successfully
C:\Program Files\Hornil deleted successfully
D:\Henk\AppData\Roaming\\Hornil deleted successfully
D:\Henk\AppData\Roaming\\JAM Software deleted successfully
D:\Henk\AppData\Local\\EmieBrowserModeList deleted successfully
D:\Henk\AppData\Local\\EmieSiteList deleted successfully
D:\Henk\AppData\Local\\EmieUserList deleted successfully

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-10-10 18:35:44	F0ECBDA4D2FD129FF15C299AF8462FC8	43112	----a-w-	C:\Windows\avastSS.scr
====== D:\Henk\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-10-27 18:25:08	C39FB2F1EB2DF9F3820BD7775F3AFC81	97888	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-10-14 14:31:40	F811B932E3DBA308014F8C870F752F16	12875776	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-10-14 14:31:39	5CB2886338C82E388F68557E2745200F	1498624	----a-w-	C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-14 14:31:22	0E036A353DB9D8F4F642AC0F9412F09E	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-10-14 14:31:21	A7028D5D5E3DCF820B3C0AFE0137A87E	130048	----a-w-	C:\Windows\SysWOW64\occache.dll
2015-10-14 14:31:21	9F36964CDB9A920779314395E3911503	504832	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-10-14 14:31:21	908BBA41A5B57DDB126B85EC14DD58EF	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-10-14 14:31:21	098F6097F919EE77EA490E16D11E427A	1311232	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-10-14 14:31:21	04BB7AF8E0DAE83982155F0752308666	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-10-14 14:31:21	00FBEDF0E74AD8815469A95271C0E562	345688	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-10-14 14:31:20	D586CB95B4EADC0525E8929A241898F5	20357632	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-10-14 14:31:20	C89372B642726F1CF3EB479397976DA3	279040	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-10-14 14:31:20	C848E013BB85C48C787001E1EA36905F	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-10-14 14:31:20	060409834CC8FAC3F1231DA3F0648CC5	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-10-14 14:31:18	B87A11C95703AB19ACB43993DDA0F1A3	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-10-14 14:31:18	7E8EABA6A2B10FE11E2381378A57322B	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-10-14 14:31:18	12DCE9300FF5B74DC2F7DBAC96B0614E	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-10-14 14:31:17	F274AF14C7DB6C52C023BCBDA4197D17	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-10-14 14:31:17	AFC4F34507B555D1C9C4F049CCA1475F	416256	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-10-14 14:31:17	9F4234838400CC3A964AF53DE4410A50	2279936	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-10-14 14:31:17	8C9BCE16E894D4FBCE151F4A5FE05F55	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-10-14 14:31:17	816B489E2BBFE2479C844AAD486ABB42	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-10-14 14:31:17	73189A2739491ABB556872737C501F8E	663552	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-10-14 14:31:17	584E6632F1F4027AB64DEB0F4139E7D7	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-10-14 14:31:17	4A3CA2C73C4D66A90C63E9E532746020	480256	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-10-14 14:31:16	BE1263EE0CB8CF942FC35CC86E0C3941	12853760	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-10-14 14:31:14	E401E66CCB2AE219CF41F7F901C410C1	2011136	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-10-14 14:31:14	DE53F76D63CA64E172B336BC7CFF6EDA	4527616	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-10-14 14:31:14	CEDBC9DBD9800E0EE81B0840EBC2BAC5	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-10-14 14:31:14	A25C9DD040CA9799C2A7E41732D0752A	230400	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2015-10-14 14:31:14	17B66052348D3A3681A9411EDD839E18	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-10-14 14:31:13	A7012A7032207D1C16B7236EDF91F4BB	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-10-14 14:31:13	5EE17D52CAF79663211C01C614594620	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-10-14 14:30:47	DDCABBADA6116E8E3472D93FDF56FE66	93696	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-10-14 14:30:47	C4240CA64E6B3523110DE3CAF4066F07	566784	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-10-14 14:30:47	7902FB8C129A6DCAA9E0002BD3600F00	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-10-14 14:30:47	6CE7ACA0022C27A3FAECB600E097F81B	30208	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-10-14 14:30:47	693F6EC2312B8B3F57B7277B069B91A3	174080	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-10-14 14:30:34	C19537A50B723E0F7B53D413163B35EE	3936192	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-14 14:30:34	63FD03CED9739062E9B94F0D1E54A406	3990976	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-14 14:30:32	9E83A4F6E776F7A3E5F7FB90180FBC0B	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-10-14 14:30:30	CA504606753BD62FA3128D3056320264	552960	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-10-14 14:30:30	4EB6A0445891D56D56BB4580B3906BEA	1311768	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-10-14 14:30:30	22BF275468F714A4F7E6F36449D1DCE2	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-10-14 14:30:30	0834E70A068360D85CDC47697A4B7898	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-10-14 14:30:29	C7293C9340BDC8291F6718913F3F7B14	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-10-14 14:30:29	C00E4CD3AC3A0D8E339635E06546B77D	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-10-14 14:30:29	8A4ED460B6557EDCA637236073794DFF	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-10-14 14:30:29	6D16D1B9DB2526B985BBB9B27A56B70B	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-10-14 14:30:29	5FC0F48FD38D0AC7FC54EBEFBC3F69C5	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-10-14 14:30:29	3FA49981A847AE62259E6AEB585C84B8	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-10-14 14:30:29	15192FC6BFCB37AE43A645A9C84AEF2F	36864	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2015-10-14 14:30:28	D8269205300BB593C3698BB77178E8D3	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-10-14 14:30:28	C142CBB756205146B88DDB66D00BFE66	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-10-14 14:30:28	6848FA8B421A0CEC8990AFE7A615574F	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-10-14 14:30:28	2464CEAC16185B73774662AC625F695D	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-10-14 14:30:28	2421C989BF8485B6A9EBBAC35ACADF1D	665088	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2015-10-14 14:30:28	1ADCC4F94981430FE968EE992353C535	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-10-14 14:30:27	D9F5F78F8EA5749CA651B71335A96421	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-10-14 14:30:26	B421B311420FD650BE3B25EAC217E685	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-10-14 14:30:26	1BE5DF925C30D9D1FAD1212FB215E469	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-10-14 14:30:25	FE7B23203C757148CBCCA0A39EAD3C59	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-10-14 14:30:25	D414A645F6853BB2C8A24B85C1C86581	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-10-14 14:30:25	64B92847AA0945992BB49B62D9B0440E	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-10-14 14:30:25	09BA6677E9CCBB1884CD0FB24F6EF584	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-10-14 14:29:33	0D0FF2A38473552DDFF4F21756700F9B	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
2015-10-14 14:29:02	B23936CF83DAC4B64660A88711B5234A	12128	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 14:29:02	85CEBA9A21CE5D51B35EF2DE9EBFBAC4	12128	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 14:29:02	80BEB858D2EEE9CA657647B599E5D844	11616	----a-w-	C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 14:29:02	4669249FB01EA369C7FD40A530966FA1	12640	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 14:29:01	CBF3CFC9EE1FD29707D95C63A5E7A78B	19808	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 14:29:01	C1096DA4634AD3356A10C00B24F53393	22368	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 14:29:01	9F9FE5F52E9B2AD655C896B849883B1A	12128	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 14:29:01	9D66FCC681389EC619D4E801F1DDBB2F	17760	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 14:29:01	94FEB4417CF3E39C8C58A1B73620687E	66400	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 14:29:01	8E534F49C77D787DB69BABFF931A497A	12640	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 14:29:01	73CED8B30963E54D262DAE2559116E46	13664	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 14:29:01	6C7F782FDBF9AEFFE7663FA1579A610E	17760	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 14:29:01	5B55E9A1360A6C52CC988DA6804D6CA2	901264	----a-w-	C:\Windows\SysWOW64\ucrtbase.dll
2015-10-14 14:29:01	408019E57D3D2DA62A9F28389EED0AC1	16224	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 14:29:01	39F9D0F1B698D53D78C79576C7C60526	14176	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 14:29:01	33E8CCBE05123C8146CD16293B688417	15712	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 14:29:01	00A0A24BB2E9AADE11494B627EB164C4	12640	----a-w-	C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-10-15 08:57:04	F03EA93F045D009830C890010750B34A	25432	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2015-10-15 08:57:04	AFE7905DD772DEA54B9C443C6634740A	700416	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-10-15 08:57:04	9F780E22C79AACBF3A93F6ACDE2A4E0A	766464	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-10-15 08:57:04	952D66DCA6CB744381B7298F8AAE994F	73216	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-10-15 08:57:04	21C89857E5671990BBF2B430BD75B9C9	1291264	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-10-15 08:57:04	1AC3E0E57844764B0CA6D2BF0F76C773	503808	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-10-15 08:57:04	14A5CC0EE60278D483A88124B88F3524	1163776	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-10-14 14:31:43	885B08E5EC912D2680F533094B87770D	14176768	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-10-14 14:31:41	0F08BB62CD162883E9A3004BBE7914BD	1866752	----a-w-	C:\Windows\Sysnative\ExplorerFrame.dll
2015-10-14 14:31:21	BF8A5B4E696F4E8F3B2B5E9902467418	720896	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-10-14 14:31:21	9E0D0522908C1106E0D77708CB9926FE	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-10-14 14:31:21	9AEE2A881FD10E6A463588303D8027AD	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-10-14 14:31:21	80E9DF296F127B3BC965EBC5A2C8F044	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-10-14 14:31:21	3A0773E21355B41176ACAD8BB099D9B3	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-10-14 14:31:20	521E1A87D4F750FD9694DBF3AB37B38F	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-10-14 14:31:17	D661A17B4634171C58373699CBD6455B	315392	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-10-14 14:31:17	8A2A46DD0C51E5D2D0A2EF2AA289DA4D	1546752	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-10-14 14:31:17	6E1EEB1CE2F9F3AB14A9E8A6B1E82455	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-10-14 14:31:17	4AEB3F2FB0CC23A18ED997F6C0476819	391784	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-10-14 14:31:17	3295B811A0260C0A5B346ECB73C5FCF0	152064	----a-w-	C:\Windows\Sysnative\occache.dll
2015-10-14 14:31:17	2A898891EB7FBCF0774F0B96AAD05561	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-10-14 14:31:17	12C1DECE9502828C0A5ADB50AB1673A0	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-10-14 14:31:16	F6F91F217D760981017E4AA4F1C7E633	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-10-14 14:31:16	0FA614470B3A78FC5B8F3F3F742B9837	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-10-14 14:31:15	E91FD3ACC10C971CBA991FCD058ABB58	2886656	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-10-14 14:31:15	7C3050383491011FEDD40961A37A2D99	2126336	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-10-14 14:31:14	A865136AC6436533E0A4A3C67F259401	585728	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-10-14 14:31:13	84C63F3D2D488A918A947E06BD1105EF	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-10-14 14:31:12	BC92D9D88959542FBAF1F8CF21F86B38	14458368	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-10-14 14:31:12	88D3F690043A1AA43F33DEC6DDA82178	616960	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-10-14 14:31:12	45A56A2CC2D6A4B649B7DC3B5DF259FF	489984	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-10-14 14:31:11	4A9FFAC9325EFFDEFD7E8C0830B0ABEC	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-10-14 14:31:10	B0917E6238C1675E48CFE64947DD9FD9	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-10-14 14:31:10	5175A9C2C71D49394424C07CA856B803	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-10-14 14:31:10	373B3EFBBF1A2706F8660C4DE4202694	262144	----a-w-	C:\Windows\Sysnative\webcheck.dll
2015-10-14 14:31:09	454669BB12162610D93954BCC942A41C	817664	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-10-14 14:31:09	1DE918244ED8AB9D3F2C4B9A1F91A24D	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-10-14 14:31:08	E36C7069B9C56DF9A53DD4FA5DCDDE72	5990912	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-10-14 14:31:08	BD06D875FB79E92DAF724C91DE743AFA	2487808	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-10-14 14:31:06	BEA081F4F2D507D6461B142AB11995B3	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-10-14 14:31:06	58DD42AC31D1F86D303BAAF5955A59BA	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-10-14 14:31:06	0783994A921469A6E97F3117AA0934DD	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-10-14 14:31:04	99BA96F5AC545D857E662A9FC576D919	25851904	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-10-14 14:30:47	ECB1C858D9989C4F19FDCE3B7F8BA1F7	696320	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-10-14 14:30:47	DA4450EE180CBDFB800FB230978BBC58	98816	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-10-14 14:30:47	C64C6AA9F061E89AE6CA1B484AC3F94E	192512	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-10-14 14:30:47	B322CE702FA01DA60876BC5D417B15FE	36864	----a-w-	C:\Windows\Sysnative\wups.dll
2015-10-14 14:30:47	96983751026F0940CAEEB15901B49FF2	37888	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-10-14 14:30:47	7A2E35CA7131819A8CCE1FA1368D7813	37888	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-10-14 14:30:47	74F288D562E78E1062D4AA2A6C3AB74C	12288	----a-w-	C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-10-14 14:30:47	64B432FB351118B222A5342A7A461696	140288	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-10-14 14:30:47	5F1A7C984117F478F7411BDD98411B58	91136	----a-w-	C:\Windows\Sysnative\WinSetupUI.dll
2015-10-14 14:30:47	2FFBB9A44A8BA9CBC9589C31E0A36605	3168768	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-10-14 14:30:47	291778E1A36716182AFBC1731B2DFEAB	2607104	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-10-14 14:30:35	3FE5671328B8A655F766D872D12DC373	5569472	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-10-14 14:30:33	11C18D613F66CB5CE829B821599ED339	1164800	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-10-14 14:30:32	6C190505923A971F0474F8BA8DA50789	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-10-14 14:30:31	CD349AD99C801523B55030AC234CC1EF	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-10-14 14:30:31	A06A96A26FE0BE22B08B641362296B68	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-10-14 14:30:31	91DDAFAFCEC3E360881FE35AF06B9EE4	1730496	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-10-14 14:30:31	5401C9D2F4B0A98B60259C621DDF1EB6	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-10-14 14:30:31	338FD40323ADD43B5C94B4A6CB91874B	1216512	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2015-10-14 14:30:30	F337ACC4CF6B9DFBE46D9A7E54E10756	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-10-14 14:30:30	EE035334B7A58C7F748C3D0394574A35	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-10-14 14:30:30	E43F36D0B4C674FEA2C992564A3E0F28	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-10-14 14:30:30	D2BF3CD0F66139B5F1BA1D35C6613E78	315392	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-10-14 14:30:30	5B9427E47B86AFDA813A8D252713FC35	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-10-14 14:30:30	4AD1C61152A0199E3D7F9A82C07AC629	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-10-14 14:30:30	365480590A46ECB0E4BF1DBD7BC69713	729088	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-10-14 14:30:29	E9CCB68290F27837A3D7058FEB51F7A8	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-10-14 14:30:29	D2E2A613EBD0C959E72556C3A63A6B4A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-10-14 14:30:29	96DE914D834FD7809A1720AF5D913C96	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-10-14 14:30:29	95E4E6C645175731B1DC8084329121AA	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-10-14 14:30:29	8F15F0D6F42A2B8A58EDD1AA55D7FB98	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-10-14 14:30:29	78461527B753B9A6043038AEF25745D3	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-10-14 14:30:29	5424EC756808C1002457033D969115C7	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-10-14 14:30:29	3CF93F8BA5016A86073F7ACE4A225D69	44032	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2015-10-14 14:30:29	23682AD752DE308760672C84A7E74554	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-10-14 14:30:29	06AA22DBBD294BB40F01E23BF826AA9C	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-10-14 14:30:28	FCFE939A325054DFC69E1D8C58751A62	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-10-14 14:30:28	E91002F7EC3A9BF7F62BF1E215A32451	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-10-14 14:30:28	C0EC18A77CBE5505019AF1BEB6CE824D	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-10-14 14:30:28	8260FD420E49C1E3DD6539BCEA2B376E	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-10-14 14:30:28	4E10C0CD94FD2E9F04B0AA11C4DB1592	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-10-14 14:30:26	023394934150F7EC547EBCC2107EEA5F	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-10-14 14:30:25	DD01EBF9D35E614CAEA1BF4876B07134	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-10-14 14:30:25	B5D2DF46AB955A070F67FF192C52E7BD	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-10-14 14:30:25	7CDA2FE5F02370B5879DF8D35133B0E1	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-10-14 14:29:37	87FEDB1FF42C3A10FFE2CE95AB2AF306	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-10-14 14:29:37	541B7C53EDA8F84790A593B13FB32E56	692672	----a-w-	C:\Windows\Sysnative\winload.efi
2015-10-14 14:29:33	B6C85437FDC8EC6464BE359D41BBC3F7	59392	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-10-14 14:29:33	7030F95F994B2F2CCC1C521E342369DB	147456	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2015-10-14 14:29:32	B17B1E5FB5CE63DA4DB4D49E3683487F	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-10-14 14:29:32	ABC373B9C6275D45F17DB559408FFD1B	32768	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-10-14 14:29:32	7503BAD9B2A08B8A95319F7C0CA9F869	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2015-10-14 14:29:02	ED14B64C94F543974B7FDC592FA0594B	12640	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 14:29:02	56556659C691DD043DBE24B0A195D64C	20832	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 14:29:02	32B2264317EA6200DA5DEEEC7DCB0EEB	11616	----a-w-	C:\Windows\Sysnative\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 14:29:02	2381E189321EAD521FF71E72D08A6B17	984448	----a-w-	C:\Windows\Sysnative\ucrtbase.dll
2015-10-14 14:29:02	090DD0BB2BDDEE3EAAE5B6FF15FAE209	14176	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 14:29:01	F97E7878A2B372291B1269D80327BBF6	12640	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 14:29:01	ECCF5973B80D771A79643732017CEA9A	17760	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 14:29:01	E9F6D776545843A9817D8ACF38D06D09	19808	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 14:29:01	CC337898E64D9078CB697AC19F995C7F	12128	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 14:29:01	BBAE7B5436D6D1B0FC967FF67E35415F	16224	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 14:29:01	AF851DFD0D9FECB76FF2B403F3C30F5B	12128	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 14:29:01	761DDD8669A661D57D9CF9C335949C06	12128	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 14:29:01	6631C212F79350458589A5281374B38B	12640	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 14:29:01	653CB5DF3CEC6A4A0E402B33D8AA5C08	63840	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 14:29:01	53E9526AF1FDCE39F799BFE9217397A8	17760	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 14:29:01	1908861649E67CDC20C563C234A89914	15712	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 14:29:01	0F143310FADE4DE116070A3917A79C18	13664	----a-w-	C:\Windows\Sysnative\api-ms-win-crt-filesystem-l1-1-0.dll
====== C:\Windows\Sysnative\drivers =====
2015-10-14 14:30:32	C6330F7C2E92A00E6773E82F79078AFC	157016	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-10-14 14:30:32	3A8C03156C3E31E70EF84E48CA179B46	97112	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-10-14 14:30:31	ACB6782973BD93760D597FC7BB37E692	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-10-14 14:30:28	8C0376974AA28398FF501E78C04ACB30	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-10-14 14:30:28	262BF7BB7D0E44CFAA9B12A1E0A6EDF1	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-10-14 14:29:31	27DABFB4A6B0140C34DBEC713469592B	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-09-30 10:40:09	8F22037D3F5A6BB676525D825A1388B9	113880	----a-w-	C:\Windows\Sysnative\drivers\72D05010.sys
====== C:\Windows\Tasks ======
2015-10-17 09:23:20	F2B4DED2E9E37169FF67963974752ADB	3120	----a-w-	C:\Windows\Sysnative\Tasks\{47D8A755-9A19-4D3E-BB07-DF076BEC5DC5}
2015-10-08 14:58:28	F6EF6A88C1AB2937F89FF49F2A3FAA9E	3180	----a-w-	C:\Windows\Sysnative\Tasks\HPCeeScheduleForHenk
2015-10-08 14:58:28	D74AB0E32260DA220CF0366EC35BA918	328	----a-w-	C:\Windows\Tasks\HPCeeScheduleForHenk.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-10-16 15:29:05	--------	d-----w-	C:\PROGRA~2\AVG
2015-10-08 14:43:26	--------	d-----w-	C:\PROGRA~2\Hewlett-Packard
======= D: =====
====== D:\Henk\AppData\Roaming ======
2015-10-16 15:30:20	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog
2015-10-16 15:30:20	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg
2015-10-16 15:30:06	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg
2015-10-08 14:52:56	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Roaming\Hewlett-Packard
====== D:\Henk ======
2015-10-27 18:25:07	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-27 18:09:00	461A1FEB2BE3C9AD35CD9206470BDA89	584288	----a-w-	D:\Henk\Downloads\Niet bevestigd 878159.crdownload
2015-10-24 22:06:28	--------	d-----w-	D:\Henk\Pictures\25-10-2015 lekkage hal en raam stuk
2015-10-21 14:15:32	9FC10EFA493046DA3DD9444DCCF5B885	56	----a-w-	D:\Henk\.oracle_jre_usage\48ac84126bcac2af.timestamp
2015-10-19 20:07:01	F000757C403C93838510A9BD0C620EC9	2383	----a-w-	D:\Henk\Desktop\LostInReefs3.exe - Snelkoppeling.lnk
2015-10-19 19:59:18	C21FC727AB21A0FE692D1AB558F680DE	64	----a-w-	D:\Henk\Desktop\Torrents Plaza - Postvak-in.url
2015-10-19 19:50:53	D24BE7DC910103652D419C4A5E34C4FE	14333	----a-w-	D:\Henk\Downloads\LostinReefs Antarctic NL NIEUW.torrent
2015-10-18 21:10:12	E575B6CAB669D0CA3D00C3981F185B59	465328	----a-w-	D:\Henk\Downloads\manual_mirror_cabinet_mounted_light_v15072014 (1).pdf
2015-10-18 21:09:24	D01310BDE0428A0E01288E4E9CDC2DF2	1351536	----a-w-	D:\Henk\Downloads\SP1601_Manual_mirror_cabinet_NL-FR_v02092014 (1).pdf
2015-10-18 21:04:58	D01310BDE0428A0E01288E4E9CDC2DF2	1351536	----a-w-	D:\Henk\Downloads\SP1601_Manual_mirror_cabinet_NL-FR_v02092014.pdf
2015-10-18 20:58:15	E575B6CAB669D0CA3D00C3981F185B59	465328	----a-w-	D:\Henk\Downloads\manual_mirror_cabinet_mounted_light_v15072014.pdf
2015-10-18 13:09:24	--------	d-----w-	C:\ProgramData\Fugazo
2015-10-18 13:08:24	5C539E6F6685993DC2BA1D5473A4A468	711	----a-w-	D:\Henk\Desktop\WorldMosaics4.exe - Snelkoppeling.lnk
2015-10-18 13:07:44	92828EF180FBF6EDC80F0D714E768E84	746	----a-w-	D:\Henk\Desktop\worldmosaics2.exe - Snelkoppeling.lnk
2015-10-18 12:10:32	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	D:\Henk\Downloads\RSITx64.exe
2015-10-18 11:10:02	678AB0E8665345E72D11149A36F965BE	5127432	----a-w-	D:\Henk\Downloads\spsetup128 (2).exe
2015-10-18 10:43:45	36471462188ABE0E03BA3258C49B40A4	52	----a-w-	D:\Henk\Desktop\Tribal Wars - Het online spel.url
2015-10-17 09:26:29	--------	d-----w-	D:\Henk\Downloads\Chameleon
2015-10-17 09:24:54	0D703760F1C5F997B16418954425370B	6383209	----a-w-	D:\Henk\Downloads\mbam-chameleon-3.1.25.0.zip
2015-10-16 20:04:16	--------	d---a-w-	C:\ProgramData\Reprise
2015-10-16 20:03:27	--------	d-----w-	C:\ProgramData\SketchUp
2015-10-16 15:29:05	--------	d-----w-	C:\ProgramData\Avg
2015-10-16 13:08:33	4128F63699B46923743560AF32BB5AB2	17506	----a-w-	D:\Henk\Desktop\3e offerte 123176.pdf
2015-10-15 18:22:49	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-15 18:20:00	856F65089DE0B278ED09B3F6C37F19CD	929872	----a-w-	D:\Henk\Downloads\ChromeSetup.exe
2015-10-08 14:44:48	--------	d-----w-	C:\ProgramData\{ECA9D0D4-7782-4B7F-96E2-FDB0CF0A57D5}
2015-10-08 14:05:50	--------	d-----w-	D:\Henk\Documents\HpReg_Backup

====== C: exe-files ==
2015-10-27 18:25:08	A53E431775DF91EA016AF5817DF26B41	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-10-27 18:25:08	50CC4A65F784A51813A169EA33CF319A	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-10-27 18:25:08	4547FB479010206D8BEA10B2694C5C6D	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-10-27 18:24:52	FA5E33B54BD044F489BA4281B3D6ED95	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\servertool.exe
2015-10-27 18:24:52	CC0CF93D2BF12A423DA4134FFB9C324D	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssvagent.exe
2015-10-27 18:24:52	6211595DD15306DFD8E07B95E6F2984D	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\tnameserv.exe
2015-10-27 18:24:52	4D2DDC988E4F67E7E07E78954FBEED2D	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\unpack200.exe
2015-10-27 18:24:51	FAE99E011922F5BE4CB2160E316D057B	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmiregistry.exe
2015-10-27 18:24:51	BBC68E5519B11A74B8208AA7B85F3B80	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmid.exe
2015-10-27 18:24:51	B6DBE62611DA178B2CA578BC2B7BBA30	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javacpl.exe
2015-10-27 18:24:51	B61623580A304714A4E2FE6A5E73327F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\pack200.exe
2015-10-27 18:24:51	AA79E5830F4B6C29A5A976891ED0E86B	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jjs.exe
2015-10-27 18:24:51	A53E431775DF91EA016AF5817DF26B41	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaw.exe
2015-10-27 18:24:51	940EE00C074A46D638A756723964D65D	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\orbd.exe
2015-10-27 18:24:51	8ED50DA4BAE0046E05BEC0110CF20B17	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\java-rmi.exe
2015-10-27 18:24:51	857117663B1F28ABBA4E1C6110A09282	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\policytool.exe
2015-10-27 18:24:51	66B01DCB41FBE8C3CAB13D3F8ED4FA58	30816	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jabswitch.exe
2015-10-27 18:24:51	56DCBCE6CF84B5F12185AF6DB7B85EB2	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\keytool.exe
2015-10-27 18:24:51	50CC4A65F784A51813A169EA33CF319A	278624	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaws.exe
2015-10-27 18:24:51	4547FB479010206D8BEA10B2694C5C6D	191072	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\java.exe
2015-10-27 18:24:51	2AA43B8A44341F90DCCFAE38107BA484	76896	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2launcher.exe
2015-10-27 18:24:51	1A859E08A65ECBA7B687ACAED5EA5080	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\ktab.exe
2015-10-27 18:24:51	1933BBD87F9759CC2D7DC2909C4CA0CD	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\klist.exe
2015-10-27 18:24:51	0AD21325149141252F05B32F7809F441	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\kinit.exe
2015-10-27 18:11:46	1359A14B642DE38FEEC2A448BF8D281C	584288	----a-w-	C:\Users\Henk\Bureaublad\FF bewaren\jxpiinstall(1).exe
2015-10-24 09:36:04	0E84D08A5C8A3291F9A65422A4E8D44D	939088	----a-w-	C:\Program Files (x86)\Google\Update\Install\{F6CEF24E-7C1A-403C-9D84-07D1E78D698B}\46.0.2490.80_46.0.2490.71_chrome_updater.exe
2015-10-24 09:36:04	0E84D08A5C8A3291F9A65422A4E8D44D	939088	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\46.0.2490.80\46.0.2490.80_46.0.2490.71_chrome_updater.exe
=== C: other files ==
2015-10-27 18:24:52	577B724A8DB4380F8B8F0098D1C9A722	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2771351034-1752285704-1091563883-1008\Software\Microsoft\Windows\CurrentVersion\Run]
"Wisdom-soft ScreenHunter 5.1 Free"="C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"
"StartCCC"="C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Wisdom-soft ScreenHunter 5.1 Free"="C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Google Update"="D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe /c"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry"

==== Startup Registry Disabled ======================

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-]
"Google Update"="\"D:\\Henk\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""


==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\!SASCORE]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD External Events Utility]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD FUEL Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Creative ALchemy AL6 Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Creative Audio Engine Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CTAudSvcService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gusvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMScheduler]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\sdAuxService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\sdCoreService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Sound Blaster X-Fi MB Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ThreatFire]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TomTomHOMEService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VIAKaraokeService]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16-10-2015 22:36]
C:\Windows\tasks\CCleanerClean.job --a------ C:\Program Files\C:leaner\C:leaner.exe []
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core.job --a------ [Undetermined Task]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA.job --a------ C:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe []
C:\Windows\tasks\Google Software Updater.job --a------ C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [07-09-2011 18:49]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 22:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 22:24]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core.job --a------ C:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA.job --a------ C:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\HPCeeScheduleForHenk.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Adobe online update program" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CCleanerClean" [C:\Program Files\CCleaner\CCleaner.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core" [D:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA" [D:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\Google Software Updater" [C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe]
"C:\Windows\SysNative\tasks\Google Updater and Installer" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForHenk" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 1010 series" ["C:\Program Files\HP\HP Deskjet 1010 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\SysNative\tasks\ShouldIRemoveIt_Notifications" [C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{722E2EDB-48D9-45C6-B267-3418D47ED143}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{E1139F21-08C1-44BB-A074-AB90112287DD}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{77CFD4D3-DDEB-4AA5-B501-8E1389EA906C}" [C:\Program Files\Alwil Software\Avast5\AvastUI.exe]
"C:\Windows\SysNative\tasks\{EFBB3A01-09C5-412F-8123-89935713112A}" [C:\Program Files\Alwil Software\Avast5\AvastUI.exe]

==== Firefox Start and Search pages ======================

ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default
user_pref("browser.startup.homepage", "www.google.nl");
user_pref("browser.search.defaulturl", "https://www.google.com/search");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.bdtoolbar.orig_keyword_url", "chrome://browser-region/locale/region.properties");
user_pref("keyword.URL", "https://www.google.com/search");

ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\spnf0wg6.default
user_pref("browser.search.defaultenginename", "Yahoo!");
user_pref("browser.search.selectedEngine", "Yahoo!");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\Alwil Software\Avast5\WebRep\FF" [10-10-2015 19:35]

==== Firefox Extensions ======================

ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default
- Avast Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF

ProfilePath: D:\Henk\AppData\Roaming\TomTom\HOME\Profiles\iy0ambly.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default
FC5866F7793AF2CBCD425CC4B8D32A9E	- C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll -	Zylom Plugin
DCB0BCEF594E2C410793C4A823C318F3	- C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll -	Shockwave for Director / Shockwave for Director
684F2DF31062413E094280891DCB6EE1	- C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll -	Shockwave for Director / Shockwave for Director
863AF0003392FEBC2667A8A790DED955	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll -	Shockwave Flash
D8D88FC2ECB4F0F54051086A4901C182	- D:\Henk\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll -	Unity Player
7D127425BBE91DF37448A7F44C1DDA52	- D:\Henk\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll -	Google Update
3CD19649B2C3023D65E67C056457A2BC	- D:\Henk\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll -	Facebook Video Calling Plugin
A0D63D14016C75D718F5432B13FC6576	- D:\Henk\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll -	Google Talk Plugin
4CD25DDA1221224BB92591756ED12602	- D:\Henk\AppData\Roaming\Mozilla\plugins\npo1d.dll -	Google Talk Plugin Video Renderer
FE5EBC41BC74FEB22D64FCB715F067F5	- D:\Henk\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll -	Google Talk Plugin Video Accelerator
DDC4B753983AF90EEDA7360C16D4D39A	- D:\Henk\AppData\Roaming\Mozilla\plugins\npoctoshape.dll -	Octoshape Streaming Services


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.80

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx[19-03-2015 17:01]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx[19-03-2015 17:01]

Google Drive - AppData\Local - Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf
TV - AppData\Local - Profile 3\Extensions\beobeededemalmllhkmnkinmfembdimh
YouTube - AppData\Local - Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
selector is not a valid CSS selector - AppData\Local - Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - AppData\Local - Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Sport bubble shooter - AppData\Local - Profile 3\Extensions\djpbeidibgdgnhcgoamegepdcgmnlbaj
Tribal Wars 2 - AppData\Local - Profile 3\Extensions\eobjhojdadaenpabnnicegiibjiagibj
Avast SafePrice - AppData\Local - Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Unblock Car 3D - AppData\Local - Profile 3\Extensions\ndaflanlochpiijbgjgofgmnbgmhgkmd
Chrome Web Store Payments - AppData\Local - Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - AppData\Local - Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== C:\zoek_backup content ======================

C:\zoek_backup (files=70 folders=25 6733852 bytes)

==== EOF on di 27-10-2015 at 20:13:59,47 ======================