Zoek.exe v5.0.0.1 Updated 03-November-2015
Tool run by Cronos on wo 04/11/2015 at  8:35:26,27.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Cronos\Downloads\zoek.exe [Scan all users]   [Deep Scan] 

==== System Restore Info ======================

4/11/2015 8:36:31 Zoek.exe System Restore Point Created Successfully.

==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Users\Cronos\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8132 MB
CPU Info: Intel(R) Core(TM) i5-4460  CPU @ 3.20GHz
CPU Speed: 3246,1 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Display Adapters: NVIDIA GeForce GTX 745 | NVIDIA GeForce GTX 745 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen niet-PnP-beeldscherm | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Qualcomm Atheros AR5BWB222 Wireless Network Adapter | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GHB0N
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 8 Button Wheel Mouse Present
Hard Disks: C:  117,9GB | E:  31,2GB
Hard Disks - Free: C:  78,5GB | E:  31,0GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 03/21/14 | ACRSYS - 1072009
Time Zone: Romance (standaardtijd)
Motherboard *: Acer Aspire TC-605
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

AV: AVG Internet Security 2015 *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security 2015 *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security 2015 *Disabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
Default Browser: Firefox	41.0.2
Internet Explorer Version: 11.0.9600.18059 
Mozilla Firefox version: 41.0.2 (x86 nl)
Flash Player version: 19.0.0.228

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-11-02 13:59:07	4A308E930ADA5F8CE0118E7AF93A461F	17	----a-w-	C:\Windows\Stellar Phoenix Windows Data Recovery.INI
2015-11-02 01:36:43	E927DE0218778BA45A10360725855E08	1806960	----a-w-	C:\Windows\ampa.exe
2015-11-01 22:32:50	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2015-11-01 22:32:50	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2015-11-01 22:32:50	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2015-11-01 22:32:50	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2015-11-01 22:32:50	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
====== C:\Users\Cronos\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-11-02 01:36:43	091F08BCEE2AEDDC89070370552DFD34	17008	----a-w-	C:\Windows\SysWOW64\ampa.sys
2015-11-01 20:39:55	D7FC64FF2442CBE50407AC86E3D17EBA	9898752	----a-w-	C:\Windows\SysWOW64\RsCRIcon.dll
2015-11-01 07:49:06	FE73CF52448BE6AF52B5FFB00E875F55	9888360	----a-w-	C:\Windows\SysWOW64\RtsUVStoricon.dll
2015-10-31 22:56:51	A7028D5D5E3DCF820B3C0AFE0137A87E	130048	----a-w-	C:\Windows\SysWOW64\occache.dll
2015-10-31 22:56:51	9F36964CDB9A920779314395E3911503	504832	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-10-31 22:56:51	908BBA41A5B57DDB126B85EC14DD58EF	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-10-31 22:56:51	0E036A353DB9D8F4F642AC0F9412F09E	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-10-31 22:56:51	098F6097F919EE77EA490E16D11E427A	1311232	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-10-31 22:56:51	04BB7AF8E0DAE83982155F0752308666	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-10-31 22:56:51	00FBEDF0E74AD8815469A95271C0E562	345688	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-10-31 22:56:50	D586CB95B4EADC0525E8929A241898F5	20357632	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-10-31 22:56:50	C89372B642726F1CF3EB479397976DA3	279040	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-10-31 22:56:50	C848E013BB85C48C787001E1EA36905F	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-10-31 22:56:50	B87A11C95703AB19ACB43993DDA0F1A3	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-10-31 22:56:50	7E8EABA6A2B10FE11E2381378A57322B	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-10-31 22:56:50	12DCE9300FF5B74DC2F7DBAC96B0614E	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-10-31 22:56:50	060409834CC8FAC3F1231DA3F0648CC5	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-10-31 22:56:49	F274AF14C7DB6C52C023BCBDA4197D17	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-10-31 22:56:49	BE1263EE0CB8CF942FC35CC86E0C3941	12853760	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-10-31 22:56:49	AFC4F34507B555D1C9C4F049CCA1475F	416256	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-10-31 22:56:49	9F4234838400CC3A964AF53DE4410A50	2279936	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-10-31 22:56:49	8C9BCE16E894D4FBCE151F4A5FE05F55	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-10-31 22:56:49	816B489E2BBFE2479C844AAD486ABB42	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-10-31 22:56:49	73189A2739491ABB556872737C501F8E	663552	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-10-31 22:56:49	584E6632F1F4027AB64DEB0F4139E7D7	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-10-31 22:56:49	4A3CA2C73C4D66A90C63E9E532746020	480256	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-10-31 22:56:48	E401E66CCB2AE219CF41F7F901C410C1	2011136	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-10-31 22:56:48	DE53F76D63CA64E172B336BC7CFF6EDA	4527616	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-10-31 22:56:48	CEDBC9DBD9800E0EE81B0840EBC2BAC5	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-10-31 22:56:48	A25C9DD040CA9799C2A7E41732D0752A	230400	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2015-10-31 22:56:48	17B66052348D3A3681A9411EDD839E18	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-10-31 22:56:47	A7012A7032207D1C16B7236EDF91F4BB	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-10-31 22:56:47	5EE17D52CAF79663211C01C614594620	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-10-31 22:56:28	DDCABBADA6116E8E3472D93FDF56FE66	93696	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-10-31 22:56:28	C4240CA64E6B3523110DE3CAF4066F07	566784	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-10-31 22:56:28	7902FB8C129A6DCAA9E0002BD3600F00	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-10-31 22:56:28	693F6EC2312B8B3F57B7277B069B91A3	174080	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-10-31 22:56:27	6CE7ACA0022C27A3FAECB600E097F81B	30208	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-10-31 22:56:16	F811B932E3DBA308014F8C870F752F16	12875776	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-10-31 22:56:15	5CB2886338C82E388F68557E2745200F	1498624	----a-w-	C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-31 22:56:07	C19537A50B723E0F7B53D413163B35EE	3936192	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-31 22:56:06	63FD03CED9739062E9B94F0D1E54A406	3990976	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-31 22:56:05	9E83A4F6E776F7A3E5F7FB90180FBC0B	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-10-31 22:56:02	CA504606753BD62FA3128D3056320264	552960	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-10-31 22:56:01	4EB6A0445891D56D56BB4580B3906BEA	1311768	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-10-31 22:56:01	22BF275468F714A4F7E6F36449D1DCE2	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-10-31 22:56:01	0834E70A068360D85CDC47697A4B7898	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-10-31 22:56:00	C7293C9340BDC8291F6718913F3F7B14	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-10-31 22:56:00	6D16D1B9DB2526B985BBB9B27A56B70B	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-10-31 22:56:00	3FA49981A847AE62259E6AEB585C84B8	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-10-31 22:55:59	C00E4CD3AC3A0D8E339635E06546B77D	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-10-31 22:55:59	8A4ED460B6557EDCA637236073794DFF	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-10-31 22:55:59	5FC0F48FD38D0AC7FC54EBEFBC3F69C5	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-10-31 22:55:58	D8269205300BB593C3698BB77178E8D3	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-10-31 22:55:58	2464CEAC16185B73774662AC625F695D	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-10-31 22:55:58	2421C989BF8485B6A9EBBAC35ACADF1D	665088	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2015-10-31 22:55:58	1ADCC4F94981430FE968EE992353C535	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-10-31 22:55:58	15192FC6BFCB37AE43A645A9C84AEF2F	36864	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2015-10-31 22:55:57	D9F5F78F8EA5749CA651B71335A96421	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-10-31 22:55:57	C142CBB756205146B88DDB66D00BFE66	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-10-31 22:55:57	6848FA8B421A0CEC8990AFE7A615574F	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-10-31 22:55:51	B421B311420FD650BE3B25EAC217E685	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-10-31 22:55:50	1BE5DF925C30D9D1FAD1212FB215E469	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-10-31 22:55:45	D414A645F6853BB2C8A24B85C1C86581	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-10-31 22:55:45	64B92847AA0945992BB49B62D9B0440E	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-10-31 22:55:45	09BA6677E9CCBB1884CD0FB24F6EF584	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-10-31 22:55:44	FE7B23203C757148CBCCA0A39EAD3C59	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-10-31 22:55:07	0D0FF2A38473552DDFF4F21756700F9B	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-11-02 01:36:43	091F08BCEE2AEDDC89070370552DFD34	17008	----a-w-	C:\Windows\Sysnative\ampa.sys
2015-11-01 20:40:07	334BE6167EC12894F14985A28F8C74FD	39240	----a-w-	C:\Windows\Sysnative\nvhdap64.dll
2015-11-01 20:40:04	29E13A93D35CD5CDF285E9D968F2863B	21496	----a-w-	C:\Windows\Sysnative\btinstall.dll
2015-11-01 20:39:55	B0BA83B5CFBECCA182072013D2D18759	91904	----a-w-	C:\Windows\Sysnative\RtCRX64.dll
2015-11-01 20:39:51	D10864C1730172780C2D4BE633B9220A	1795952	----a-w-	C:\Windows\Sysnative\WdfCoInstaller01011.dll
2015-11-01 20:39:42	D53977F08872B0DECDAE063727288B79	614000	----a-w-	C:\Windows\Sysnative\jmccgpInst.dll
2015-11-01 08:48:49	24E487B411B159BC2DE05476DE4C1B44	3210240	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-11-01 07:47:30	AE1823E4C7E71BE7B6B4A74E0C259471	84072	----a-w-	C:\Windows\Sysnative\RtNicProp64.dll
2015-11-01 06:42:55	8A074AF494080C051DB5C81EB5D09E7D	110459	----a-w-	C:\Windows\Sysnative\WA.ico
2015-11-01 04:27:27	7CD08E63219E00BB206077F5BA708677	17848	----a-w-	C:\Windows\Sysnative\amwrtdrv.sys
2015-10-31 22:56:51	BF8A5B4E696F4E8F3B2B5E9902467418	720896	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-10-31 22:56:51	9E0D0522908C1106E0D77708CB9926FE	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-10-31 22:56:51	9AEE2A881FD10E6A463588303D8027AD	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-10-31 22:56:51	80E9DF296F127B3BC965EBC5A2C8F044	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-10-31 22:56:51	3A0773E21355B41176ACAD8BB099D9B3	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-10-31 22:56:50	521E1A87D4F750FD9694DBF3AB37B38F	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-10-31 22:56:50	3295B811A0260C0A5B346ECB73C5FCF0	152064	----a-w-	C:\Windows\Sysnative\occache.dll
2015-10-31 22:56:49	D661A17B4634171C58373699CBD6455B	315392	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-10-31 22:56:49	8A2A46DD0C51E5D2D0A2EF2AA289DA4D	1546752	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-10-31 22:56:49	6E1EEB1CE2F9F3AB14A9E8A6B1E82455	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-10-31 22:56:49	4AEB3F2FB0CC23A18ED997F6C0476819	391784	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-10-31 22:56:49	2A898891EB7FBCF0774F0B96AAD05561	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-10-31 22:56:49	12C1DECE9502828C0A5ADB50AB1673A0	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-10-31 22:56:48	F6F91F217D760981017E4AA4F1C7E633	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-10-31 22:56:48	E91FD3ACC10C971CBA991FCD058ABB58	2886656	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-10-31 22:56:48	A865136AC6436533E0A4A3C67F259401	585728	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-10-31 22:56:48	7C3050383491011FEDD40961A37A2D99	2126336	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-10-31 22:56:48	0FA614470B3A78FC5B8F3F3F742B9837	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-10-31 22:56:47	BC92D9D88959542FBAF1F8CF21F86B38	14458368	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-10-31 22:56:47	88D3F690043A1AA43F33DEC6DDA82178	616960	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-10-31 22:56:47	84C63F3D2D488A918A947E06BD1105EF	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-10-31 22:56:47	45A56A2CC2D6A4B649B7DC3B5DF259FF	489984	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-10-31 22:56:46	B0917E6238C1675E48CFE64947DD9FD9	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-10-31 22:56:46	5175A9C2C71D49394424C07CA856B803	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-10-31 22:56:46	4A9FFAC9325EFFDEFD7E8C0830B0ABEC	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-10-31 22:56:46	454669BB12162610D93954BCC942A41C	817664	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-10-31 22:56:46	373B3EFBBF1A2706F8660C4DE4202694	262144	----a-w-	C:\Windows\Sysnative\webcheck.dll
2015-10-31 22:56:45	E36C7069B9C56DF9A53DD4FA5DCDDE72	5990912	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-10-31 22:56:45	BD06D875FB79E92DAF724C91DE743AFA	2487808	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-10-31 22:56:45	58DD42AC31D1F86D303BAAF5955A59BA	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-10-31 22:56:45	1DE918244ED8AB9D3F2C4B9A1F91A24D	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-10-31 22:56:44	BEA081F4F2D507D6461B142AB11995B3	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-10-31 22:56:44	0783994A921469A6E97F3117AA0934DD	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-10-31 22:56:43	99BA96F5AC545D857E662A9FC576D919	25851904	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-10-31 22:56:29	2FFBB9A44A8BA9CBC9589C31E0A36605	3168768	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-10-31 22:56:29	291778E1A36716182AFBC1731B2DFEAB	2607104	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-10-31 22:56:28	ECB1C858D9989C4F19FDCE3B7F8BA1F7	696320	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-10-31 22:56:28	DA4450EE180CBDFB800FB230978BBC58	98816	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-10-31 22:56:28	C64C6AA9F061E89AE6CA1B484AC3F94E	192512	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-10-31 22:56:28	96983751026F0940CAEEB15901B49FF2	37888	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-10-31 22:56:28	7A2E35CA7131819A8CCE1FA1368D7813	37888	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-10-31 22:56:28	64B432FB351118B222A5342A7A461696	140288	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-10-31 22:56:28	5F1A7C984117F478F7411BDD98411B58	91136	----a-w-	C:\Windows\Sysnative\WinSetupUI.dll
2015-10-31 22:56:27	B322CE702FA01DA60876BC5D417B15FE	36864	----a-w-	C:\Windows\Sysnative\wups.dll
2015-10-31 22:56:27	74F288D562E78E1062D4AA2A6C3AB74C	12288	----a-w-	C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-10-31 22:56:17	885B08E5EC912D2680F533094B87770D	14176768	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-10-31 22:56:15	0F08BB62CD162883E9A3004BBE7914BD	1866752	----a-w-	C:\Windows\Sysnative\ExplorerFrame.dll
2015-10-31 22:56:07	3FE5671328B8A655F766D872D12DC373	5569472	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-10-31 22:56:05	6C190505923A971F0474F8BA8DA50789	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-10-31 22:56:05	11C18D613F66CB5CE829B821599ED339	1164800	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-10-31 22:56:04	91DDAFAFCEC3E360881FE35AF06B9EE4	1730496	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-10-31 22:56:03	CD349AD99C801523B55030AC234CC1EF	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-10-31 22:56:03	A06A96A26FE0BE22B08B641362296B68	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-10-31 22:56:03	5401C9D2F4B0A98B60259C621DDF1EB6	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-10-31 22:56:03	338FD40323ADD43B5C94B4A6CB91874B	1216512	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2015-10-31 22:56:02	F337ACC4CF6B9DFBE46D9A7E54E10756	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-10-31 22:56:02	5B9427E47B86AFDA813A8D252713FC35	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-10-31 22:56:02	4AD1C61152A0199E3D7F9A82C07AC629	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-10-31 22:56:02	365480590A46ECB0E4BF1DBD7BC69713	729088	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-10-31 22:56:01	EE035334B7A58C7F748C3D0394574A35	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-10-31 22:56:01	E43F36D0B4C674FEA2C992564A3E0F28	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-10-31 22:56:01	D2BF3CD0F66139B5F1BA1D35C6613E78	315392	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-10-31 22:56:00	E9CCB68290F27837A3D7058FEB51F7A8	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-10-31 22:56:00	D2E2A613EBD0C959E72556C3A63A6B4A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-10-31 22:56:00	96DE914D834FD7809A1720AF5D913C96	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-10-31 22:56:00	06AA22DBBD294BB40F01E23BF826AA9C	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-10-31 22:55:59	95E4E6C645175731B1DC8084329121AA	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-10-31 22:55:59	8F15F0D6F42A2B8A58EDD1AA55D7FB98	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-10-31 22:55:59	78461527B753B9A6043038AEF25745D3	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-10-31 22:55:59	5424EC756808C1002457033D969115C7	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-10-31 22:55:59	3CF93F8BA5016A86073F7ACE4A225D69	44032	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2015-10-31 22:55:59	23682AD752DE308760672C84A7E74554	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-10-31 22:55:58	FCFE939A325054DFC69E1D8C58751A62	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-10-31 22:55:58	E91002F7EC3A9BF7F62BF1E215A32451	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-10-31 22:55:58	C0EC18A77CBE5505019AF1BEB6CE824D	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-10-31 22:55:58	8260FD420E49C1E3DD6539BCEA2B376E	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-10-31 22:55:58	4E10C0CD94FD2E9F04B0AA11C4DB1592	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-10-31 22:55:50	023394934150F7EC547EBCC2107EEA5F	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-10-31 22:55:45	DD01EBF9D35E614CAEA1BF4876B07134	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-10-31 22:55:45	7CDA2FE5F02370B5879DF8D35133B0E1	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-10-31 22:55:44	B5D2DF46AB955A070F67FF192C52E7BD	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-10-31 22:55:17	AFE7905DD772DEA54B9C443C6634740A	700416	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-10-31 22:55:17	9F780E22C79AACBF3A93F6ACDE2A4E0A	766464	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-10-31 22:55:17	21C89857E5671990BBF2B430BD75B9C9	1291264	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-10-31 22:55:17	1AC3E0E57844764B0CA6D2BF0F76C773	503808	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-10-31 22:55:16	F03EA93F045D009830C890010750B34A	25432	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2015-10-31 22:55:16	952D66DCA6CB744381B7298F8AAE994F	73216	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-10-31 22:55:16	14A5CC0EE60278D483A88124B88F3524	1163776	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-10-31 22:55:09	87FEDB1FF42C3A10FFE2CE95AB2AF306	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-10-31 22:55:09	541B7C53EDA8F84790A593B13FB32E56	692672	----a-w-	C:\Windows\Sysnative\winload.efi
2015-10-31 22:55:07	B6C85437FDC8EC6464BE359D41BBC3F7	59392	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-10-31 22:55:07	7030F95F994B2F2CCC1C521E342369DB	147456	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2015-10-31 22:55:06	B17B1E5FB5CE63DA4DB4D49E3683487F	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-10-31 22:55:06	ABC373B9C6275D45F17DB559408FFD1B	32768	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-10-31 22:55:06	7503BAD9B2A08B8A95319F7C0CA9F869	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
====== C:\Windows\Sysnative\drivers =====
2015-11-02 12:21:26	E38C06074161DE1C344A10FA57BC3A4E	48304	----a-w-	C:\Windows\Sysnative\drivers\RegHiveRecovery.sys
2015-11-02 11:32:11	72CC30F0D6DF8D3FBD5CD728259A8F69	296736	----a-w-	C:\Windows\Sysnative\drivers\file_tracker.sys
2015-11-02 11:32:04	42129994A3FE633D608936F21959D2C2	234784	----a-w-	C:\Windows\Sysnative\drivers\tib_mounter.sys
2015-11-02 11:32:03	E0BABFD8D7391252874A1C812CB0050E	1328928	----a-w-	C:\Windows\Sysnative\drivers\tib.sys
2015-11-02 11:31:59	2F7A6F88A9516EB47B0BF13024434244	304416	----a-w-	C:\Windows\Sysnative\drivers\snapman.sys
2015-11-02 11:21:38	9BD0273A5B650CC16E8A54AD9B312BEB	134432	----a-w-	C:\Windows\Sysnative\drivers\fltsrv.sys
2015-11-02 10:53:13	2CAF6E9B08605A82D66E11C157CCBE02	41984	----a-w-	C:\Windows\Sysnative\drivers\USB3Ver.dll
2015-11-01 22:50:51	FD44FA80DA03EA144153A76DEBBB61B4	35064	----a-w-	C:\Windows\Sysnative\drivers\TrueSight.sys
2015-11-01 20:41:26	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_ETDSMBus_01009.Wdf
2015-11-01 20:40:59	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-11-01 20:40:07	D812362E8AF615B521AD4DF19A93BD5A	205456	----a-w-	C:\Windows\Sysnative\drivers\nvhda64v.sys
2015-11-01 20:40:04	CC8915599391541075FA669ECEA595EC	51264	----a-w-	C:\Windows\Sysnative\drivers\btcusb.sys
2015-11-01 20:40:02	2C3E71FF4F6E859AE3833BA206B00614	10368	----a-w-	C:\Windows\Sysnative\drivers\whfltr2k.sys
2015-11-01 20:40:01	F70B2887AA4D32DDBA781443A0A7D953	31464	----a-w-	C:\Windows\Sysnative\drivers\ETDSMBus.sys
2015-11-01 20:39:58	E4951FCACFF04ECB08E2AF4976EB2F93	4161536	----a-w-	C:\Windows\Sysnative\drivers\athrx.sys
2015-11-01 20:39:55	8B3CD4BF5A1853C4B89A492CA416F5BE	410880	----a-w-	C:\Windows\Sysnative\drivers\RtsUer.sys
2015-11-01 20:39:52	6ED151E48EE0F594767D440BD3204598	65248	----a-w-	C:\Windows\Sysnative\drivers\amdkmpfd.sys
2015-11-01 20:39:51	D82D6EA098C4448A964ACB14B3728786	180480	----a-w-	C:\Windows\Sysnative\drivers\TeeDriverx64.sys
2015-11-01 20:39:46	231ADCE77616144B8E3D29707B282C82	38680	----a-w-	C:\Windows\Sysnative\drivers\ICCWDT.sys
2015-11-01 20:39:44	00D87BD549BEA63EF2612F3AB5BE91D8	394992	----a-w-	C:\Windows\Sysnative\drivers\iusb3hub.sys
2015-11-01 20:39:42	6E76CFA02D7EBE9DBB5E8C60CC23CAA1	17136	----a-w-	C:\Windows\Sysnative\drivers\jmccgp.sys
2015-11-01 19:51:23	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_blockmounter_01_09_00.Wdf
2015-11-01 07:52:11	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2015-11-01 07:49:06	E54A5586A28D0630A79A68BBAB84BFCF	307304	----a-w-	C:\Windows\Sysnative\drivers\rtsuvstor.sys
2015-11-01 07:49:06	37C936FF32950D4235F6C71ACEC54B65	17512	----a-w-	C:\Windows\Sysnative\drivers\diskperf64.sys
2015-11-01 07:47:30	46C200885F182C04DAFDA6FB5B3CE058	981744	----a-w-	C:\Windows\Sysnative\drivers\Rt64win7.sys
2015-10-31 22:56:04	3A8C03156C3E31E70EF84E48CA179B46	97112	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-10-31 22:56:01	C6330F7C2E92A00E6773E82F79078AFC	157016	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-10-31 22:55:58	ACB6782973BD93760D597FC7BB37E692	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-10-31 22:55:57	8C0376974AA28398FF501E78C04ACB30	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-10-31 22:55:57	262BF7BB7D0E44CFAA9B12A1E0A6EDF1	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-10-31 22:55:05	27DABFB4A6B0140C34DBEC713469592B	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-10-19 12:32:18	A77AF0ABA67969E7AC28B34E686ACC5C	315312	----a-w-	C:\Windows\Sysnative\drivers\avgidsdrivera.sys
====== C:\Windows\Tasks ======
2015-11-01 07:36:02	944E0E9A2E4DCFD8072ED86FC3453E84	3192	----a-w-	C:\Windows\Sysnative\Tasks\{05D04178-8A49-43E7-8A09-CC25215E1F0F}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-11-01 20:40:18	--------	d-----w-	C:\Program Files\DIFX
2015-11-01 16:56:25	--------	d-----w-	C:\Program Files\Easy 7-Zip
======= C:\PROGRA~2 =====
2015-11-02 12:20:52	--------	d-----w-	C:\PROGRA~2\Windows Kits
2015-11-02 11:21:27	--------	d-----w-	C:\PROGRA~2\Acronis
2015-11-02 11:21:26	--------	d-----w-	C:\PROGRA~2\COMMON~1\Acronis
2015-11-01 20:53:51	--------	d-----w-	C:\PROGRA~2\EaseUS
======= C: =====
2015-11-02 01:36:44	53D4B2B96F83A50410B13BABDEBFE525	1024	---h--w-	C:\AMTAG.BIN
====== C:\Users\Cronos\AppData\Roaming ======
2015-12-02 11:35:14	--------	d-----w-	C:\Users\Cronos\AppData\Roaming\Acronis
2015-11-02 13:20:30	--------	d-----w-	C:\Users\Cronos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pegtop
2015-11-02 12:57:38	--------	d-----w-	C:\Users\Cronos\AppData\Local\Windows Performance Analyzer
2015-11-02 12:57:17	--------	d-----w-	C:\Users\Cronos\AppData\Local\Microsoft_Corporation
2015-11-02 12:56:57	--------	d-----w-	C:\Users\Cronos\AppData\Local\Windows Assessment Console
2015-11-02 11:27:50	--------	d-----w-	C:\Users\Cronos\AppData\Local\Diagnostics
2015-11-02 04:01:08	--------	d-----w-	C:\Users\Cronos\AppData\Local\Apps
2015-11-01 22:48:04	--------	d-----w-	C:\Users\Public\AppData\Local\temp
2015-11-01 22:48:04	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2015-11-01 22:48:04	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2015-11-01 20:02:34	--------	d-----w-	C:\Users\Cronos\AppData\Roaming\QuickScan
2015-11-01 19:49:59	--------	d-----w-	C:\Users\Cronos\AppData\Local\Downloaded Installations
2015-11-01 05:10:05	--------	d-----w-	C:\Users\Cronos\AppData\Local\ShamurShamur
2015-11-01 03:02:20	--------	d-----w-	C:\Users\Cronos\AppData\Roaming\Tools
2015-10-31 23:18:44	--------	d-----w-	C:\Users\Cronos\AppData\Local\GWX
2015-10-31 22:47:54	--------	d-----w-	C:\Users\Cronos\AppData\Local\transmission
2015-10-31 22:47:45	--------	d-----w-	C:\Users\Cronos\AppData\Roaming\transmission
2015-10-31 22:12:09	--------	d-----w-	C:\Users\Default\AppData\Roaming\TuneUp Software
2015-10-31 22:12:09	--------	d-----w-	C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-10-31 22:10:45	--------	d-----w-	C:\Users\Cronos\AppData\Local\Avg
====== C:\Users\Cronos ======
2015-11-02 13:20:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pegtop
2015-11-02 12:20:53	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-11-02 11:31:49	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2015-11-02 11:22:02	--------	d-----w-	C:\ProgramData\Acronis
2015-11-01 22:48:04	--------	d-----w-	C:\Users\Public\AppData
2015-11-01 20:34:34	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultra ISO Prem. v9.3.6.2750 by Moon-Dancer
2015-11-01 19:51:36	--------	d-----w-	C:\ProgramData\launcher
2015-11-01 19:36:09	B0FECFAF19AEE8A3F0D6DA543C1B8938	15067872	----a-w-	C:\Users\Cronos\Documents\Cameyo.exe
2015-11-01 18:04:14	--------	d---a-w-	C:\ProgramData\TEMP
2015-11-01 16:56:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy 7-Zip
2015-11-01 16:07:39	--------	d-----w-	C:\Users\Cronos\dwhelper
2015-11-01 13:10:35	46C118303D2812E6E3A06217FD737220	14336	--sha-w-	C:\Users\Cronos\Thumbs.db
2015-11-01 11:08:05	2979843F16D352759F707D84426D30CD	5449014	----a-w-	C:\Users\Cronos\fotowall-background4.bmp
2015-11-01 11:07:57	CB036E4C3904B005C77E120C902D8D1D	6220854	----a-w-	C:\Users\Cronos\fotowall-background3.bmp
2015-11-01 11:04:05	CB036E4C3904B005C77E120C902D8D1D	6220854	----a-w-	C:\Users\Cronos\fotowall-background2.bmp
2015-11-01 11:03:25	14F6F59FA500F98DD45BFDEEAFCE2800	6220854	----a-w-	C:\Users\Cronos\fotowall-background1.bmp
2015-11-01 08:43:10	E4DD18766FEACC72FA0C3588664622DC	3503616	----a-w-	C:\Users\Cronos\Downloads\Fotowall 0.9 WinXP Vista 7.exe
2015-11-01 07:34:07	--------	d-----w-	C:\ProgramData\Dell
2015-11-01 05:19:04	D801FF09E22A8A6B27D0505ABF1B72C3	1310075	----a-w-	C:\Users\Cronos\Downloads\YUMI-2.0.1.9.exe

====== C: exe-files ==
2015-11-02 11:54:09	69715B5EC4877C87BFDB49B062B008EE	40552	----a-w-	C:\ProgramData\Package Cache\0064021117CBC471DCDC15853D78658B974094C4\Installers\InstallRegHiveRecoveryDriverAmd64.exe
2015-11-02 11:54:07	F115909385CBD7D8ABB883E31FD11614	34408	----a-w-	C:\ProgramData\Package Cache\CDD81EC0BE898CEF3DCD3618FDEA7D75775308EA\Installers\WimMountAdkSetupAmd64.exe
2015-11-02 11:53:38	E00BB8A9571846829F1A74C0A9C4A277	1435680	----a-w-	C:\ProgramData\Package Cache\{e9e06304-a604-434b-b35f-d9beb94dc06d}\adksetup.exe
2015-11-02 11:32:08	8588B8F21CE15DBB96A63E5F352178C1	3996664	----a-w-	C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2015-11-02 10:53:38	CB46168FFDEA91E2B3435E51BB436558	296216	----a-w-	C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
2015-11-02 10:53:13	CBE9D12E13E3846697996D9C335BC554	985368	----a-w-	C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\uninstall\Setup.exe
2015-11-02 10:53:13	B92B6C0E0C271EDD176EDEFD5F0EB1E7	155416	----a-w-	C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\uninstall\x64\Drv64.exe
2015-11-02 01:36:43	E927DE0218778BA45A10360725855E08	1806960	----a-w-	C:\Windows\ampa.exe
2015-11-01 22:49:48	8D498649C852E56285479359232D3812	1101640	----a-w-	C:\Users\Cronos\Documents\bleeping computer\rkill64.exe
2015-11-01 22:32:50	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2015-11-01 22:32:50	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2015-11-01 22:32:50	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2015-11-01 22:32:50	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2015-11-01 22:32:50	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
2015-11-01 21:47:52	9D8A4379868618F46677DBF2B94C800A	2508432	----a-w-	C:\Users\Cronos\Documents\bleeping computer\procexp.exe
2015-11-01 21:46:30	456FD750BA7349202281AF7729ECD987	2019656	----a-w-	C:\Users\Cronos\Documents\bleeping computer\rkill.exe
2015-11-01 21:43:50	7F6842A22C9BA5AB6A219BA843F44300	18965064	----a-w-	C:\Users\Cronos\Documents\bleeping computer\RogueKiller.exe
2015-11-01 21:43:32	1C9456D798E7FD4421BF892F5A568DD8	1708032	----a-w-	C:\Users\Cronos\Documents\bleeping computer\AdwCleaner.exe
2015-11-01 21:43:09	38BE4E69AED17CFF7C001E56C4AC95A0	1801288	----a-w-	C:\Users\Cronos\Documents\bleeping computer\JRT.exe
2015-11-01 21:42:21	A94038A3658B0004A42315E9D83AA877	696984	----a-w-	C:\Users\Cronos\Documents\bleeping computer\autoruns.exe
2015-11-01 20:53:53	D61B2927B8E558D14184383AF85C6FC4	44712	----a-w-	C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.0\bin\ureport.exe
2015-11-01 20:40:18	60006202DAB508342ADD4C8304C8B2E0	677832	----a-w-	C:\Program Files\DIFX\153DFC3F47202812\dpinst64.exe
2015-11-01 19:36:09	B0FECFAF19AEE8A3F0D6DA543C1B8938	15067872	----a-w-	C:\Users\Cronos\Documents\Cameyo.exe
2015-11-01 17:12:10	1EAB131DC1EFFDAE2213826F6BCC8C2F	20492	----a-w-	C:\Users\Cronos\AppData\Local\Spoon\Sandbox\1.0.0.0\local\stubexe\0x699495394811B7D4\WinToUSB.exe
2015-11-01 16:56:25	F8B55AC789D0590EAF737E64E6EA1E83	1223168	----a-w-	C:\Program Files\Easy 7-Zip\7zFM.exe
2015-11-01 16:56:25	EC83805216D5A93F0A64B20E729845C5	872960	----a-w-	C:\Program Files\Easy 7-Zip\7zG.exe
2015-11-01 16:56:25	8439096FEE9A90521D3D31F8D52F9779	1198871	----a-w-	C:\Program Files\Easy 7-Zip\unins000.exe
2015-11-01 16:56:25	20BCD2BA646C3218CEB743E94953C4EB	698368	----a-w-	C:\Program Files\Easy 7-Zip\7z.exe
2015-11-01 08:43:10	E4DD18766FEACC72FA0C3588664622DC	3503616	----a-w-	C:\Users\Cronos\Downloads\Fotowall 0.9 WinXP Vista 7.exe
2015-11-01 07:49:06	EF27CAD440DABFB53D8229FDC2D6CDBB	13824	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\addfilter64.exe
2015-11-01 07:49:06	ABFC81E872507D850BE11A871DF66FAA	89704	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\revcon.exe
2015-11-01 07:49:06	7F5924AF8B6338C8C7913D4C2482150B	10240	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\InfDefaultInstall.exe
2015-11-01 07:49:06	5C94706D2AEAC08BF216179D94FE26B9	379496	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{62BBB2F0-E220-4821-A564-730807D2C34D}\setup.exe
2015-11-01 07:47:29	AC289739817AFE881C68460E9700A6A4	195288	----a-w-	C:\Program Files (x86)\Realtek\NICDRV_8169\RTINSTALLER64.EXE
2015-11-01 07:35:46	74A2638034301416DC6D61CB0EE680A3	953352	----a-w-	C:\Dell\Drivers\66P3R\ufx86\ESIF_UF.EXE
2015-11-01 07:35:46	109292A38B00CBBC5931A0C7BC265831	144896	----a-w-	C:\Dell\Drivers\66P3R\x64\Drv64.exe
2015-11-01 07:35:46	0705AC8DBAAE089C0448918ED11648B3	1073728	----a-w-	C:\Dell\Drivers\66P3R\ufx64\ESIF_UF.EXE
2015-11-01 07:35:45	BEB48ABE9479A7DD710AFAD5D2C6D495	1226064	----a-w-	C:\Dell\Drivers\66P3R\setup.exe
2015-11-01 05:19:04	D801FF09E22A8A6B27D0505ABF1B72C3	1310075	----a-w-	C:\Users\Cronos\Downloads\YUMI-2.0.1.9.exe
2015-10-31 22:56:51	BF8A5B4E696F4E8F3B2B5E9902467418	720896	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-10-31 22:56:51	9AEE2A881FD10E6A463588303D8027AD	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-10-31 22:56:51	1A480EC5EFC71B92735BB420E2B92348	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-10-31 22:56:50	2D59CD5D6C1DCB3507431281BDBF935F	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-10-31 22:56:50	03AE49CC0AD731C579E4041921450266	473600	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-10-31 22:56:49	7FD2748E2B08B5E9FD6FF73669B2ECBF	818264	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-10-31 22:56:49	2A898891EB7FBCF0774F0B96AAD05561	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-10-31 22:56:48	E4509963A72F1941B17DA730BB94AD20	491008	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-10-31 22:56:48	5F95E34F57E2E85295510EEEF724012D	815720	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-10-31 22:56:48	17B66052348D3A3681A9411EDD839E18	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-10-31 22:56:46	B0917E6238C1675E48CFE64947DD9FD9	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-10-31 22:56:28	96983751026F0940CAEEB15901B49FF2	37888	----a-w-	C:\Windows\System32\wuapp.exe
2015-10-31 22:56:28	7902FB8C129A6DCAA9E0002BD3600F00	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-10-31 22:56:28	64B432FB351118B222A5342A7A461696	140288	----a-w-	C:\Windows\System32\wuauclt.exe
2015-10-31 22:56:20	D8AF0D6A806ADA9660C55DD891E80AF2	224768	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-10-31 22:56:19	4FCAED5CA1A9C704DBF172283A283B53	10240	----a-w-	C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
2015-10-31 22:56:07	C19537A50B723E0F7B53D413163B35EE	3936192	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-31 22:56:07	3FE5671328B8A655F766D872D12DC373	5569472	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-10-31 22:56:06	63FD03CED9739062E9B94F0D1E54A406	3990976	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-31 22:56:03	5401C9D2F4B0A98B60259C621DDF1EB6	338432	----a-w-	C:\Windows\System32\conhost.exe
2015-10-31 22:56:02	5B9427E47B86AFDA813A8D252713FC35	296960	----a-w-	C:\Windows\System32\rstrui.exe
2015-10-31 22:56:00	D2E2A613EBD0C959E72556C3A63A6B4A	112640	----a-w-	C:\Windows\System32\smss.exe
2015-10-31 22:55:59	C00E4CD3AC3A0D8E339635E06546B77D	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-10-31 22:55:59	95E4E6C645175731B1DC8084329121AA	64000	----a-w-	C:\Windows\System32\auditpol.exe
2015-10-31 22:55:59	5FC0F48FD38D0AC7FC54EBEFBC3F69C5	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-10-31 22:55:59	5424EC756808C1002457033D969115C7	31232	----a-w-	C:\Windows\System32\lsass.exe
2015-10-31 22:55:51	B421B311420FD650BE3B25EAC217E685	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-10-31 22:55:45	09BA6677E9CCBB1884CD0FB24F6EF584	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-10-31 22:55:16	F03EA93F045D009830C890010750B34A	25432	----a-w-	C:\Windows\System32\CompatTelRunner.exe
2015-10-31 22:55:07	7030F95F994B2F2CCC1C521E342369DB	147456	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
2015-10-31 22:55:06	B17B1E5FB5CE63DA4DB4D49E3683487F	17920	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-10-31 22:51:25	D3F0E4F448CFD98F60D55D01A97939E7	707072	----a-w-	C:\Windows\System32\GWX\GWXConfigManager.exe
2015-10-31 22:51:24	A45BD2EFB89B0870E8D46E36A101FA50	418304	----a-w-	C:\Windows\System32\GWX\GWXUX.exe
2015-10-31 22:51:24	8C1FAC4BA4A1A3F4991763FA01527CB9	523264	----a-w-	C:\Windows\System32\GWX\GWX.exe
2015-10-31 22:51:24	7E925A9A931C8AE2B15EC801BE0183D6	388400	----a-w-	C:\Windows\System32\GWX\GWXUXWorker.exe
2015-10-31 22:51:24	26A2294858EA67A297D8A4920A0AF71C	360960	----a-w-	C:\Windows\System32\GWX\GWXDetector.exe
2015-10-31 22:51:24	0D400710E06F502D715853A5AF1FF98C	445952	----a-w-	C:\Windows\SysWOW64\GWX\GWX.exe
2015-10-31 22:10:43	359E0E559B0169051CEA6FE796804C04	360872	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgndisa.exe
2015-10-31 22:08:55	CB49115481D5CDE6F5B44FA424A7C3BF	24488	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe
2015-10-31 22:08:55	BB04EE204FBB5F925F408B0857994DAF	25512	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe
2015-10-31 22:08:55	922C08C5DFDE261049CEB8189F1EE3BA	6922928	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
2015-10-31 22:08:55	357FD727079C5F0E1C7DC11B4DB9D3DB	71592	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avguirux.exe
=== C: other files ==
2015-11-02 13:38:38	3FF922045E1A4E5AD0780CD314E2CE31	25612	----a-w-	C:\StudioPortable\Data\Spoon\Sandbox\Spoon Studio\12.0.340.17\local\stubexe\0xD54F27C412938BF7\Studio.com
2015-11-02 12:21:26	E38C06074161DE1C344A10FA57BC3A4E	48304	----a-w-	C:\Windows\System32\drivers\RegHiveRecovery.sys
2015-11-02 11:32:11	72CC30F0D6DF8D3FBD5CD728259A8F69	296736	----a-w-	C:\Windows\System32\drivers\file_tracker.sys
2015-11-02 11:32:04	42129994A3FE633D608936F21959D2C2	234784	----a-w-	C:\Windows\System32\drivers\tib_mounter.sys
2015-11-02 11:32:03	E0BABFD8D7391252874A1C812CB0050E	1328928	----a-w-	C:\Windows\System32\drivers\tib.sys
2015-11-02 11:31:59	2F7A6F88A9516EB47B0BF13024434244	304416	----a-w-	C:\Windows\System32\drivers\snapman.sys
2015-11-02 11:21:38	9BD0273A5B650CC16E8A54AD9B312BEB	134432	----a-w-	C:\Windows\System32\drivers\fltsrv.sys
2015-11-02 01:36:43	091F08BCEE2AEDDC89070370552DFD34	17008	----a-w-	C:\Windows\SysWOW64\ampa.sys
2015-11-02 01:36:43	091F08BCEE2AEDDC89070370552DFD34	17008	----a-w-	C:\Windows\System32\ampa.sys
2015-11-02 00:46:43	988017A518155F4918DDE174340C1F1F	1150	----a-w-	C:\Users\Cronos\AppData\Local\transmission\cache\favicons\rarbg.com
2015-11-01 22:50:51	FD44FA80DA03EA144153A76DEBBB61B4	35064	----a-w-	C:\Windows\System32\drivers\TrueSight.sys
2015-11-01 20:40:07	D812362E8AF615B521AD4DF19A93BD5A	205456	----a-w-	C:\Windows\System32\drivers\nvhda64v.sys
2015-11-01 20:40:04	CC8915599391541075FA669ECEA595EC	51264	----a-w-	C:\Windows\System32\drivers\btcusb.sys
2015-11-01 20:40:02	2C3E71FF4F6E859AE3833BA206B00614	10368	----a-w-	C:\Windows\System32\drivers\whfltr2k.sys
2015-11-01 20:40:01	F70B2887AA4D32DDBA781443A0A7D953	31464	----a-w-	C:\Windows\System32\drivers\ETDSMBus.sys
2015-11-01 20:39:58	E4951FCACFF04ECB08E2AF4976EB2F93	4161536	----a-w-	C:\Windows\System32\drivers\athrx.sys
2015-11-01 20:39:55	8B3CD4BF5A1853C4B89A492CA416F5BE	410880	----a-w-	C:\Windows\System32\drivers\RtsUer.sys
2015-11-01 20:39:52	6ED151E48EE0F594767D440BD3204598	65248	----a-w-	C:\Windows\System32\drivers\amdkmpfd.sys
2015-11-01 20:39:51	D82D6EA098C4448A964ACB14B3728786	180480	----a-w-	C:\Windows\System32\drivers\TeeDriverx64.sys
2015-11-01 20:39:46	231ADCE77616144B8E3D29707B282C82	38680	----a-w-	C:\Windows\System32\drivers\ICCWDT.sys
2015-11-01 20:39:44	00D87BD549BEA63EF2612F3AB5BE91D8	394992	----a-w-	C:\Windows\System32\drivers\iusb3hub.sys
2015-11-01 20:39:42	6E76CFA02D7EBE9DBB5E8C60CC23CAA1	17136	----a-w-	C:\Windows\System32\drivers\jmccgp.sys
2015-11-01 16:28:38	B3902CA8BDDA92DDB4E1DBA8178B906F	1406	----a-w-	C:\Users\Cronos\AppData\Local\transmission\cache\favicons\desync.com
2015-11-01 08:48:49	24E487B411B159BC2DE05476DE4C1B44	3210240	----a-w-	C:\Windows\System32\win32k.sys
2015-11-01 07:49:06	E54A5586A28D0630A79A68BBAB84BFCF	307304	----a-w-	C:\Windows\System32\drivers\rtsuvstor.sys
2015-11-01 07:49:06	E54A5586A28D0630A79A68BBAB84BFCF	307304	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\rtsuvstor.sys
2015-11-01 07:49:06	DE7490879D1518CE27A0287B29EE9436	119	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\Enable64.bat
2015-11-01 07:49:06	68BF197A43C7C62017D3CA081A3E56FD	127	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\Disable64.bat
2015-11-01 07:49:06	37C936FF32950D4235F6C71ACEC54B65	17512	----a-w-	C:\Windows\System32\drivers\diskperf64.sys
2015-11-01 07:49:06	37C936FF32950D4235F6C71ACEC54B65	17512	----a-w-	C:\Program Files (x86)\Realtek\Realtek USB 2.0 Reader Driver\diskperf64.sys
2015-11-01 07:47:30	46C200885F182C04DAFDA6FB5B3CE058	981744	----a-w-	C:\Windows\System32\drivers\Rt64win7.sys
2015-11-01 07:47:30	46C200885F182C04DAFDA6FB5B3CE058	981744	----a-w-	C:\Program Files (x86)\Realtek\NICDRV_8169\WIN7\rt64win7.sys
2015-11-01 07:35:45	DB3C9C8C044F4203221DC944AB539603	192624	----a-w-	C:\Dell\Drivers\66P3R\drivers\x64\esif_lf.sys
2015-11-01 07:35:45	B74D6B084F54C7BED04DE4C5729CEBC1	31992	----a-w-	C:\Dell\Drivers\66P3R\drivers\x86\dptf_pch.sys
2015-11-01 07:35:45	B31A92531653C8A48989FA79360B5C96	172992	----a-w-	C:\Dell\Drivers\66P3R\drivers\x86\esif_lf.sys
2015-11-01 07:35:45	8D084FB8492ED27D8B80FA02D3774C18	37656	----a-w-	C:\Dell\Drivers\66P3R\drivers\x86\dptf_acpi.sys
2015-11-01 07:35:45	7C1A276BE7C932996E793426D75624C2	35136	----a-w-	C:\Dell\Drivers\66P3R\drivers\x64\dptf_cpu.sys
2015-11-01 07:35:45	78B6A2474F2C6A9EDDD24E855CFB957B	41824	----a-w-	C:\Dell\Drivers\66P3R\drivers\x64\dptf_acpi.sys
2015-11-01 07:35:45	2FE664B44EDC33F428649581FA003D06	34072	----a-w-	C:\Dell\Drivers\66P3R\drivers\x64\dptf_pch.sys
2015-11-01 07:35:45	1BB618E2D8A7EACC4D1FC16094959424	32504	----a-w-	C:\Dell\Drivers\66P3R\drivers\x86\dptf_cpu.sys
2015-11-01 04:27:27	7CD08E63219E00BB206077F5BA708677	17848	----a-w-	C:\Windows\System32\amwrtdrv.sys
2015-10-31 22:56:04	3A8C03156C3E31E70EF84E48CA179B46	97112	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-10-31 22:56:01	C6330F7C2E92A00E6773E82F79078AFC	157016	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-10-31 22:55:58	ACB6782973BD93760D597FC7BB37E692	159232	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2015-10-31 22:55:57	8C0376974AA28398FF501E78C04ACB30	129024	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2015-10-31 22:55:57	262BF7BB7D0E44CFAA9B12A1E0A6EDF1	290816	----a-w-	C:\Windows\System32\drivers\mrxsmb10.sys
2015-10-31 22:55:05	27DABFB4A6B0140C34DBEC713469592B	61440	----a-w-	C:\Windows\System32\drivers\appid.sys
2015-10-31 22:48:59	914EE9B48A579FB7FE651E699759C602	99678	----a-w-	C:\Users\Cronos\AppData\Local\transmission\cache\favicons\demonii.com

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3820229090-3648224812-387460116-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [31/10/2015 23:39]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{87DF1520-7E0F-464F-AA28-F8646DAC7CF2}" [C:\Windows\system32\msfeedssync.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Cronos\AppData\Roaming\Mozilla\Firefox\Profiles\l8n7map7.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.search.defaultenginename", "Google Default");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Cronos\AppData\Roaming\Mozilla\Firefox\Profiles\l8n7map7.default
- WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
- ImageHost Grabber em:version1.6.5.5.1-signed em:creatorCybormatt em:descriptionDownloads all the images hosted on many of the popular free image hosts. em:homepageURLhttp:imagehost-grabber.com em:iconURLchrome:imagegrabbercontentimagegrabber.png em:optionsURLchrome:imagegrabbercontentinterfacesoptions.xul em:aboutURLchrome:imagegrabberlocalehelp.html - %ProfilePath%\extensions\{E4091D66-127C-11DB-903A-DE80D2EFDFE8}
- Adblock Plus Pop-up Addon - %ProfilePath%\extensions\adblockpopups@jessehakanen.net.xpi
- Ghostery - %ProfilePath%\extensions\firefox@ghostery.com.xpi
- Microsoft .NET Framework Assistant - %ProfilePath%\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
- Updated Ad Blocker for Firefox 11 - %ProfilePath%\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3618C}.xpi
- Google Image Search - %ProfilePath%\extensions\{73007fef-a6e0-47d3-b4e7-dfc116ed6f65}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Cronos\AppData\Roaming\Mozilla\Firefox\Profiles\l8n7map7.default
AD2E733270637401D134072FBF794193	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_228.dll -	Shockwave Flash


==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== HijackThis Entries ======================

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on wo 04/11/2015 at  8:38:16,87 ======================