
Zoek.exe v5.0.0.1 Updated 24-December-2015
Tool run by Rajni-Pc on za 26-12-2015 at 20:57:38,30.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Rajni-Pc\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

26-12-2015 21:00:32 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Synology deleted successfully
C:\PROGRA~3\Synology deleted successfully
C:\Users\Rajni-Pc\AppData\Roaming\MPC-HC deleted successfully
C:\Users\Rajni-Pc\AppData\Roaming\npm deleted successfully
C:\Users\Rajni-Pc\AppData\Local\F-Secure deleted successfully
C:\Users\Rajni-Pc\AppData\Local\MigWiz deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Secunia PSI deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Skype deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
P:\Logitech c310\LWS\Webcam Software\LWS.exe
P:\Logitech c310\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
P:\Teamviewer\TeamViewer_Service.exe
C:\Program Files (x86)\Popcorn Time\Updater.exe
P:\Synology\Assistant\UsbClientService.exe
P:\Teamviewer\TeamViewer.exe
P:\Teamviewer\tv_w32.exe
C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
p:\teamviewer\TeamViewer_Desktop.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Rajni-Pc\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update service deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Synology not found
C:\Program Files (x86)\Popcorn Time deleted
C:\PROGRA~3\Package Cache deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 16291 MB
CPU Info: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
CPU Speed: 3473,3 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Realtek Digital Output (Realtek | 
SyncMaster-4 (NVIDIA High Defin | 
Display Adapters: NVIDIA GeForce GT 630   | NVIDIA GeForce GT 630   | NVIDIA GeForce GT 630   | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; PnP-Monitor (Standard) | 
Screen Resolution: 1600 X 900 - 32 bit
Network: Network Present
Network Adapters: Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (D: | ) D: hp      DVD-RAM GH40L
Ports: COM1 LPT Port NOT Present. 
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C:  209,6GB | O:  488,3GB | P:  293,0GB | T:  150,3GB
Hard Disks - Free: C:  140,8GB | O:  487,5GB | P:  290,1GB | T:  150,1GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 06/13/14 | ALASKA - 1072009
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK COMPUTER INC. B85-PLUS
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

AV: ESET Smart Security 9.0.318.20 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ESET Smart Security 9.0.318.20 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Persoonlijke firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
Default Browser: Firefox	43.0.1
Internet Explorer Version: 11.0.9600.18124 
Mozilla Firefox version: 43.0.1 (x86 nl)
Adobe Reader version: 15.9.20077.160923
Flash Player version: 20.0.0.235
Shockwave Player version: 12.2.1r171

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Rajni-Pc\AppData\Local\Temp ====
2015-12-26 17:47:32	09E099E062988AA6AD75E516E1FF61A5	29245120	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\3456_6656\pepflashplayer.dll
2015-12-20 19:40:40	3FA1DEE7F2A0ECA98586CC908B241A3F	46901368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\SkypeSetup.exe
2015-12-20 18:52:37	933AEF7C856CD5D52B1E19F9762CAB2D	18461088	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\Rar$EXa0.406\Samsung_Magician_Setup_v49.exe
2015-12-20 18:32:05	F76D4ECF94DC677C13061EAEE9D6745A	312832	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\IntlProvider.dll
2015-12-20 18:32:05	EC664AAB47C27667256DDFBD13986239	127488	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\OSProvider.dll
2015-12-20 18:32:05	CD564F5637BBBEB6E5F3464EDD573C80	438272	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DmiProvider.dll
2015-12-20 18:32:05	CCF6EC908566900E9626DC3360B9E35E	112128	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DismCorePS.dll
2015-12-20 18:32:05	A909643B215FC0587A043C9C15959D41	186368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DismProv.dll
2015-12-20 18:32:05	A77A8EB5E9BA6D63A121811F0830F565	302080	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\UnattendProvider.dll
2015-12-20 18:32:05	8DF4C8E300C8D32468F6141D22BBAF24	271360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\SmiProvider.dll
2015-12-20 18:32:05	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\wdscore.dll
2015-12-20 18:32:05	739968678548BA15F6B9372E8760C012	444416	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\TransmogProvider.dll
2015-12-20 18:32:05	6EBC2138A3C9B3B7D1E69E0629B6C815	289792	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DismCore.dll
2015-12-20 18:32:05	64B66A41B61D511E8EBE94625EC0E45A	53760	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\FolderProvider.dll
2015-12-20 18:32:05	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DismHost.exe
2015-12-20 18:32:05	45FF4FA5CA5432BFCCDED4433FE2A85B	216576	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\MsiProvider.dll
2015-12-20 18:32:05	3A9C49943047DE6C6F8DC68CB986A0EC	183296	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\CompatProvider.dll
2015-12-20 18:32:05	2961AB067AE61440ADF11C4BFE085151	1672192	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\CbsProvider.dll
2015-12-20 18:32:05	27EC9795973FB7790059892EF2F363B1	107008	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\LogProvider.dll
2015-12-20 18:32:05	26981358EA5F82938387F6998F861978	471040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\WimProvider.dll
2015-12-20 18:25:35	F76D4ECF94DC677C13061EAEE9D6745A	312832	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\IntlProvider.dll
2015-12-20 18:25:35	EC664AAB47C27667256DDFBD13986239	127488	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\OSProvider.dll
2015-12-20 18:25:35	CD564F5637BBBEB6E5F3464EDD573C80	438272	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DmiProvider.dll
2015-12-20 18:25:35	CCF6EC908566900E9626DC3360B9E35E	112128	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DismCorePS.dll
2015-12-20 18:25:35	A909643B215FC0587A043C9C15959D41	186368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DismProv.dll
2015-12-20 18:25:35	A77A8EB5E9BA6D63A121811F0830F565	302080	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\UnattendProvider.dll
2015-12-20 18:25:35	8DF4C8E300C8D32468F6141D22BBAF24	271360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\SmiProvider.dll
2015-12-20 18:25:35	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\wdscore.dll
2015-12-20 18:25:35	739968678548BA15F6B9372E8760C012	444416	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\TransmogProvider.dll
2015-12-20 18:25:35	6EBC2138A3C9B3B7D1E69E0629B6C815	289792	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DismCore.dll
2015-12-20 18:25:35	64B66A41B61D511E8EBE94625EC0E45A	53760	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\FolderProvider.dll
2015-12-20 18:25:35	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DismHost.exe
2015-12-20 18:25:35	45FF4FA5CA5432BFCCDED4433FE2A85B	216576	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\MsiProvider.dll
2015-12-20 18:25:35	3A9C49943047DE6C6F8DC68CB986A0EC	183296	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\CompatProvider.dll
2015-12-20 18:25:35	2961AB067AE61440ADF11C4BFE085151	1672192	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\CbsProvider.dll
2015-12-20 18:25:35	27EC9795973FB7790059892EF2F363B1	107008	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\LogProvider.dll
2015-12-20 18:25:35	26981358EA5F82938387F6998F861978	471040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\WimProvider.dll
2015-12-19 21:25:12	CC5115F5D531039DD675DD1434692BE6	408264	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\Setup.exe
2015-12-19 21:25:12	77DDC89F0F234DC121B70004CCE2D678	15114040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\msiinstaller.exe
2015-12-19 21:25:12	776D96A2E37A81D09996C5FD459C7212	145096	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\UninstallHPSA.exe
2015-12-19 21:24:19	FD9E709D6107F039A9533DE5FE316E73	324152	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x86\DIFxAPI.dll
2015-12-19 21:24:19	FB0D5236CB97604C26E4ED0EE3561461	2873232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpinkinsB111.exe
2015-12-19 21:24:19	E4848F7374052BB6569E81063E18B125	2216336	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpinkinsB111.exe
2015-12-19 21:24:19	E25E204DA75C9B091F9A1D98DE14D632	505232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpvpldrv09.dll
2015-12-19 21:24:19	E0F71158825F5E0A94A6829D2BAF31B7	1719912	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\Setup.exe
2015-12-19 21:24:19	D7FD47049414798815CB4BCFAF830C8F	331664	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpinkstsB111LM.dll
2015-12-19 21:24:19	D329818570DCAD8B3BC1DA6F89AA1491	590224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpvpldrv09.dll
2015-12-19 21:24:19	BBC82E175B89511A97C69339D3E6E2E9	307304	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x64\RemovePreinstalledDrivers.exe
2015-12-19 21:24:19	B4853AB8A381E102FB1EE7B0251E422E	269712	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpinkcoiB111.dll
2015-12-19 21:24:19	B3E573761417F4E69F60E3853934712B	762368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\unires.dll
2015-12-19 21:24:19	AF8C1F3635148502A9141DA00CA94FD7	538512	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpfime51.dll
2015-12-19 21:24:19	9FEC9008C047DD2F8076D75A8365CEF0	622992	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\drivers\scanner\x64\HPWia2_PS5520.dll
2015-12-19 21:24:19	98FE94DC34015805C20DB7E0AF75A920	255592	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x86\RemovePreinstalledDrivers.exe
2015-12-19 21:24:19	936EFCE03EC6F3ACE172154CC5D97234	2723216	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\drivers\scanner\x64\HPScanTRDrv_PS5520.dll
2015-12-19 21:24:19	9195C8759A6D7D0B798F608C1CB9F660	325224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\HPInstallLogCollector.exe
2015-12-19 21:24:19	90BD05344DCF9D2950AE4C50D8713D91	268688	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpinkstsB111LM.dll
2015-12-19 21:24:19	8B43B71E6D946C4F5531981FC146A102	375296	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\unidrv.dll
2015-12-19 21:24:19	89312F4E8D6AFE9025CB7350EA026333	77712	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpvplui09.dll
2015-12-19 21:24:19	74B491ECC8EC045A639F83FBEFE6224E	556432	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpfime51.dll
2015-12-19 21:24:19	70A72FC276267DBFDB39AC1FD358CFE0	884224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\unidrvui.dll
2015-12-19 21:24:19	6DC38C20D2B27210AA410E21E9929F14	220560	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpinkcoiB111.dll
2015-12-19 21:24:19	6B7622CA9F9E218B37A4CA89CCD2BD3C	747520	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\unidrvui.dll
2015-12-19 21:24:19	5E87AF3E7FA0771C4D70C24428E6C57F	617360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\drivers\scanner\x64\HPWia1_PS5520.dll
2015-12-19 21:24:19	590615D8DFF10CE195890221BF7C3627	529808	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpinkstsB111.dll
2015-12-19 21:24:19	585D2EB9FBED6B7B9D0107BFB5C94043	531512	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x64\DIFxAPI.dll
2015-12-19 21:24:19	4B31039DC5E7E5AC34E3A7E9D4966955	237456	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpvplres09.dll
2015-12-19 21:24:19	416EDAF698AE65E4A0E744299B259361	762368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\unires.dll
2015-12-19 21:24:19	3D1713B5944726304C388C3D3F824E15	74640	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpvplui09.dll
2015-12-19 21:24:19	30989DE0A391F77BCFC46E4F186A997A	237456	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpvplres09.dll
2015-12-19 21:24:19	10082D5492C7BD118FE703AC6CCB8AFC	479232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\unidrv.dll
2015-12-19 21:24:19	0A30836BCD754C2CED78706FDF69EC42	198248	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\hpUrlLauncher.exe
2015-12-19 21:24:19	07084783892A6DE8E3C1CB55A9321D5D	661904	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpinkstsB111.dll
2015-12-19 21:24:18	C7574BC512831AF1B099C857F1612CAD	3223552	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\PS552x64.msi
2015-12-19 21:24:18	2A03C3ED11EE3B3029DE485A7250B0A1	11502184	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\HP-DQEX5.exe
2015-12-19 21:24:11	FD9E709D6107F039A9533DE5FE316E73	324152	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x86\DIFxAPI.dll
2015-12-19 21:24:11	FB0D5236CB97604C26E4ED0EE3561461	2873232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpinkinsB111.exe
2015-12-19 21:24:11	E4848F7374052BB6569E81063E18B125	2216336	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpinkinsB111.exe
2015-12-19 21:24:11	E25E204DA75C9B091F9A1D98DE14D632	505232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpvpldrv09.dll
2015-12-19 21:24:11	E0F71158825F5E0A94A6829D2BAF31B7	1719912	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\Setup.exe
2015-12-19 21:24:11	D7FD47049414798815CB4BCFAF830C8F	331664	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpinkstsB111LM.dll
2015-12-19 21:24:11	D329818570DCAD8B3BC1DA6F89AA1491	590224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpvpldrv09.dll
2015-12-19 21:24:11	BBC82E175B89511A97C69339D3E6E2E9	307304	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x64\RemovePreinstalledDrivers.exe
2015-12-19 21:24:11	B4853AB8A381E102FB1EE7B0251E422E	269712	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpinkcoiB111.dll
2015-12-19 21:24:11	B3E573761417F4E69F60E3853934712B	762368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\unires.dll
2015-12-19 21:24:11	AF8C1F3635148502A9141DA00CA94FD7	538512	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpfime51.dll
2015-12-19 21:24:11	9FEC9008C047DD2F8076D75A8365CEF0	622992	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\drivers\scanner\x64\HPWia2_PS5520.dll
2015-12-19 21:24:11	98FE94DC34015805C20DB7E0AF75A920	255592	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x86\RemovePreinstalledDrivers.exe
2015-12-19 21:24:11	936EFCE03EC6F3ACE172154CC5D97234	2723216	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\drivers\scanner\x64\HPScanTRDrv_PS5520.dll
2015-12-19 21:24:11	9195C8759A6D7D0B798F608C1CB9F660	325224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\HPInstallLogCollector.exe
2015-12-19 21:24:11	90BD05344DCF9D2950AE4C50D8713D91	268688	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpinkstsB111LM.dll
2015-12-19 21:24:11	8B43B71E6D946C4F5531981FC146A102	375296	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\unidrv.dll
2015-12-19 21:24:11	89312F4E8D6AFE9025CB7350EA026333	77712	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpvplui09.dll
2015-12-19 21:24:11	74B491ECC8EC045A639F83FBEFE6224E	556432	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpfime51.dll
2015-12-19 21:24:11	70A72FC276267DBFDB39AC1FD358CFE0	884224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\unidrvui.dll
2015-12-19 21:24:11	6DC38C20D2B27210AA410E21E9929F14	220560	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpinkcoiB111.dll
2015-12-19 21:24:11	6B7622CA9F9E218B37A4CA89CCD2BD3C	747520	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\unidrvui.dll
2015-12-19 21:24:11	5E87AF3E7FA0771C4D70C24428E6C57F	617360	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\drivers\scanner\x64\HPWia1_PS5520.dll
2015-12-19 21:24:11	590615D8DFF10CE195890221BF7C3627	529808	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpinkstsB111.dll
2015-12-19 21:24:11	585D2EB9FBED6B7B9D0107BFB5C94043	531512	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x64\DIFxAPI.dll
2015-12-19 21:24:11	4B31039DC5E7E5AC34E3A7E9D4966955	237456	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpvplres09.dll
2015-12-19 21:24:11	416EDAF698AE65E4A0E744299B259361	762368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\unires.dll
2015-12-19 21:24:11	3D1713B5944726304C388C3D3F824E15	74640	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpvplui09.dll
2015-12-19 21:24:11	30989DE0A391F77BCFC46E4F186A997A	237456	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpvplres09.dll
2015-12-19 21:24:11	2A03C3ED11EE3B3029DE485A7250B0A1	11502184	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\HP-DQEX5.exe
2015-12-19 21:24:11	10082D5492C7BD118FE703AC6CCB8AFC	479232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\unidrv.dll
2015-12-19 21:24:11	0A30836BCD754C2CED78706FDF69EC42	198248	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\hpUrlLauncher.exe
2015-12-19 21:24:11	07084783892A6DE8E3C1CB55A9321D5D	661904	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpinkstsB111.dll
2015-12-19 21:24:10	C7574BC512831AF1B099C857F1612CAD	3223552	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\PS552x64.msi
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-12-19 21:24:29	3D7C1DFE052288F40AC9ABFB2A824B92	741480	------w-	C:\Windows\Sysnative\HPDiscoPMB111.dll
====== C:\Windows\Sysnative\drivers =====
2015-12-09 13:55:21	5BD6B1EC997FF3DD779D62E05D2079A8	146944	----a-w-	C:\Windows\Sysnative\drivers\rmcast.sys
2015-12-07 21:34:38	F037314138494EE6BD7DDC4C19C63012	170280	----a-w-	C:\Windows\Sysnative\drivers\ESETCleanersDriver.sys
2015-12-06 22:38:29	95314C3A08589471983C2C8173F23CDA	16376	----a-w-	C:\Windows\Sysnative\drivers\TVMonitor.sys
2015-12-01 16:33:59	D812362E8AF615B521AD4DF19A93BD5A	205456	----a-w-	C:\Windows\Sysnative\drivers\nvhda64v.sys
2015-12-01 16:33:59	B2E1A2E7911DF19A2A41156F16982ECC	11131184	----a-w-	C:\Windows\Sysnative\drivers\nvlddmkm.sys
2015-12-01 15:18:15	78488AF2AB2111D67B3C4044707A519B	192216	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2015-12-01 15:18:00	D61070CFAD43038DC56AEAD9BFE9CE2A	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2015-12-01 15:18:00	CFBC6C6D8A492697CABD1D353EE64933	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2015-12-01 15:18:00	42B3F5C9FBC9B3F0E0BA6B5D7FC8E849	109272	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2015-12-01 13:10:42	DD3FD48D69F5FBBB21D46D1514C1C2DB	18456	----a-w-	C:\Windows\Sysnative\drivers\psi_mf_amd64.sys
====== C:\Windows\Tasks ======
2015-12-20 18:53:18	C7D3A03DF857B052093F3244334B45D9	3286	----a-w-	C:\Windows\Sysnative\Tasks\SamsungMagician
2015-12-20 18:19:29	F28B76872F1F8E347101680F855B137F	3088	----a-w-	C:\Windows\Sysnative\Tasks\{4418DDE4-18E5-4937-9609-C0CE209929C5}
2015-12-19 21:24:28	--------	d-----w-	C:\Windows\Sysnative\Tasks\Hewlett-Packard
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-12-23 18:46:15	--------	d-----w-	C:\Program Files\trend micro
2015-12-20 13:57:18	--------	d-----w-	C:\Program Files\iPod
2015-12-19 21:24:26	--------	d-----w-	C:\Program Files\HP
2015-12-07 21:19:45	--------	d-----w-	C:\Program Files\ESET
======= C:\PROGRA~2 =====
2015-12-23 18:45:07	--------	d-----w-	C:\PROGRA~2\trend micro
2015-12-20 19:42:40	--------	d-----w-	C:\PROGRA~2\Skype
2015-12-20 19:42:40	--------	d-----w-	C:\PROGRA~2\COMMON~1\Skype
2015-12-20 18:49:20	--------	d-----w-	C:\PROGRA~2\Samsung
2015-12-20 13:57:18	--------	d-----w-	C:\PROGRA~2\iTunes
2015-12-19 21:24:26	--------	d-----w-	C:\PROGRA~2\HP
2015-12-19 21:24:05	--------	d-----w-	C:\PROGRA~2\Hewlett-Packard
======= C: =====
====== C:\Users\Rajni-Pc\AppData\Roaming ======
2015-12-20 15:39:16	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Local\WindowsUpdate
2015-12-20 13:53:18	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Roaming\Hewlett-Packard
2015-12-20 13:53:04	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Local\Hewlett-Packard
2015-12-19 21:25:30	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Roaming\hpqLog
2015-12-19 21:24:20	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Local\HP
2015-12-07 21:20:31	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Roaming\ESET
2015-12-07 21:20:24	--------	d-----w-	C:\Users\Rajni-Pc\AppData\Local\ESET
2015-12-07 21:20:09	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\ESET
====== C:\Users\Rajni-Pc ======
2015-12-23 18:45:49	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rajni-Pc\Desktop\RSITx64.exe
2015-12-20 19:42:40	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-20 18:53:14	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2015-12-20 18:53:11	--------	d-----w-	C:\ProgramData\Samsung
2015-12-20 18:50:55	--------	d-----w-	C:\Users\Rajni-Pc\Samsung
2015-12-20 18:49:20	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2015-12-20 18:10:43	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-12-20 13:58:36	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-12-20 13:57:22	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-12-19 21:26:11	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-12-19 21:25:48	--------	d-----w-	C:\ProgramData\Hewlett-Packard
2015-12-19 21:24:28	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-12-19 21:24:26	--------	d-----w-	C:\ProgramData\HP
2015-12-19 21:24:23	3C7244C003F0915830AEC0617F289D08	57	----a-w-	C:\ProgramData\Ament.ini
2015-12-07 21:19:47	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-12-07 21:19:47	--------	d-----w-	C:\ProgramData\ESET
2015-12-07 20:42:27	--------	d-----w-	C:\ProgramData\F-Secure-UninstallationTool
2015-12-01 16:34:44	--------	d-----w-	C:\ProgramData\NVIDIA

====== C: exe-files ==
2015-12-26 17:09:23	DD3A361397510929971971961205B406	600080	----a-w-	C:\Users\Rajni-Pc\AppData\Local\NVIDIA\NvBackend\Packages\00008472\CoProc update.20288251.exe
2015-12-26 17:09:20	046B1E113CAAB48CF3002D12421E4AE0	7099496	----a-w-	C:\Users\Rajni-Pc\AppData\Local\NVIDIA\NvBackend\Packages\0000848c\DAO.20291057.exe
2015-12-25 15:45:52	AF3BA3E2A71882F1D5620F8ADD7DCBD6	630200	----a-w-	C:\Users\Rajni-Pc\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-12-25 15:45:50	172C3F1833AE0BAA324C376C8D2F3242	172984	----a-w-	C:\Users\Rajni-Pc\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-12-23 18:46:15	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Rajni-Pc.exe
2015-12-23 18:45:49	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rajni-Pc\Desktop\RSITx64.exe
2015-12-23 18:45:07	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files (x86)\trend micro\Rajni-Pc.exe
2015-12-22 12:12:33	FA513DD694E3F827FBAC0E9112CA5206	1238856	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\Installer\setup.exe
2015-12-22 12:12:32	DF4F47EB2B8CD18CBDB6728535F165BC	825672	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\delegate_execute.exe
2015-12-22 12:12:13	916AF50C51E04C37A99D1F97FF14B4F2	2687056	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Update\Download\{4EA16AC7-FD5A-47C3-875B-DBF4A2008C20}\49.0.2599.0\49.0.2599.0_49.0.2598.0_chrome_updater_3stage.exe
2015-12-21 17:14:13	E022FBE52D8A73CCAFD0809B29C07F89	1238856	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\Installer\setup.exe
2015-12-21 17:14:12	007ABCFEDCEA8066FD0E8C720180F26F	823112	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\delegate_execute.exe
2015-12-20 19:40:40	3FA1DEE7F2A0ECA98586CC908B241A3F	46901368	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\SkypeSetup.exe
2015-12-20 18:53:23	933AEF7C856CD5D52B1E19F9762CAB2D	18461088	----a-w-	C:\ProgramData\Samsung\Backup\Samsung_Magician_ML_Setup_Backup.exe
2015-12-20 18:53:14	1CAB323A1A92E71A97907C7828C9D9F3	27744	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\UTF16StrReplace.exe
2015-12-20 18:53:13	27936AD53BA5069722F24FAED65607BE	683504	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\Samsung DOS Application\SecureErase\SEGUI0.EXE
2015-12-20 18:53:13	25BFB13B3A290D07FFDADF44EE51DDAC	695792	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\Samsung DOS Application\DSRD\DSRDGUI0.exe
2015-12-20 18:53:12	D3B15A145610360D9084F58BE6FAA2D9	6292064	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
2015-12-20 18:53:11	FFFAD4D767F0ECE2E33AC866DA6DB9AA	1957472	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\WaitHelpWindow.exe
2015-12-20 18:53:11	A4FBAEF19AED39EB3AECB5DE083A81FC	57344	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\zip.exe
2015-12-20 18:53:11	6392CA351A211E497BB69A14A7B412FA	58880	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\Unzip.exe
2015-12-20 18:53:11	3425B4ABB853C200AA4040604B479043	1413728	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\unins000.exe
2015-12-20 18:52:37	933AEF7C856CD5D52B1E19F9762CAB2D	18461088	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\Rar$EXa0.406\Samsung_Magician_Setup_v49.exe
2015-12-20 18:49:20	F8EF85ADB75B1669600F65788A226CDD	46080	----a-w-	C:\Program Files (x86)\Samsung\Samsung Data Migration\WinClon64x.exe
2015-12-20 18:49:20	E5969E0D82DF30C3FD6104C917391F5D	682120	----a-w-	C:\Program Files (x86)\Samsung\Samsung Data Migration\DisableAP.exe
2015-12-20 18:49:20	8B8145C626F2F305523F70C97EE11500	12787264	----a-w-	C:\Program Files (x86)\Samsung\Samsung Data Migration\Data Migration.exe
2015-12-20 18:49:20	6E2176B926A2F1198C3350504C2166F5	1199104	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{3B304604-0BF5-488E-AB95-F2F2E31206F3}\setup.exe
2015-12-20 18:49:20	62AE8CB5859C9F5481E8588D62243FC1	1894024	----a-w-	C:\Program Files (x86)\Samsung\Samsung Data Migration\WinClon64i.exe
2015-12-20 18:32:05	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\97AAA613-DE49-432D-A240-434FE0BB3441\DismHost.exe
2015-12-20 18:25:35	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\39A49FB1-4FBE-4C16-AEF2-3DCB634C7655\DismHost.exe
2015-12-20 18:05:02	DEA3F34BDAC3F4D3C48E19B8C981D602	1872504	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\installer.{E8A2924E-404B-4AC7-BDE9-45F398A29B7D}\NVNetworkService.exe
2015-12-20 18:05:02	7E235FA5346A9AF6B192DD0970A2128F	414000	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{02554419-8FA8-4E34-8933-0CB5A5B70758}\setup.exe
2015-12-20 14:11:57	07F32A101C2481DD249E5987748EBD49	534635	----a-w-	C:\Program Files (x86)\Secunia\PSI\Uninstall.exe
2015-12-20 13:58:18	869DF2504138DF28DF2595C6986036D4	77080	----a-w-	C:\ProgramData\Apple\Installer Cache\iCloud Control Panel 5.1.0.34\SetupAdmin.exe
2015-12-20 13:55:26	C3CBA0210FB78B1E035AB3A2081C1493	77080	----a-w-	C:\ProgramData\Apple Computer\Installer Cache\iTunes 12.3.2.35\SetupAdmin.exe
2015-12-19 21:25:12	CC5115F5D531039DD675DD1434692BE6	408264	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\Setup.exe
2015-12-19 21:25:12	77DDC89F0F234DC121B70004CCE2D678	15114040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\msiinstaller.exe
2015-12-19 21:25:12	776D96A2E37A81D09996C5FD459C7212	145096	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\HPSALight\UninstallHPSA.exe
2015-12-19 21:24:19	FB0D5236CB97604C26E4ED0EE3561461	2873232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\amd64\hpinkinsB111.exe
2015-12-19 21:24:19	E4848F7374052BB6569E81063E18B125	2216336	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\i386\hpinkinsB111.exe
2015-12-19 21:24:19	E0F71158825F5E0A94A6829D2BAF31B7	1719912	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\Setup.exe
2015-12-19 21:24:19	BBC82E175B89511A97C69339D3E6E2E9	307304	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x64\RemovePreinstalledDrivers.exe
2015-12-19 21:24:19	98FE94DC34015805C20DB7E0AF75A920	255592	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\x86\RemovePreinstalledDrivers.exe
2015-12-19 21:24:19	9195C8759A6D7D0B798F608C1CB9F660	325224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\HPInstallLogCollector.exe
2015-12-19 21:24:19	0A30836BCD754C2CED78706FDF69EC42	198248	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\utils\hpUrlLauncher.exe
2015-12-19 21:24:18	2A03C3ED11EE3B3029DE485A7250B0A1	11502184	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS27B1\HP-DQEX5.exe
2015-12-19 21:24:11	FB0D5236CB97604C26E4ED0EE3561461	2873232	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\amd64\hpinkinsB111.exe
2015-12-19 21:24:11	E4848F7374052BB6569E81063E18B125	2216336	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\i386\hpinkinsB111.exe
2015-12-19 21:24:11	E0F71158825F5E0A94A6829D2BAF31B7	1719912	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\Setup.exe
2015-12-19 21:24:11	BBC82E175B89511A97C69339D3E6E2E9	307304	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x64\RemovePreinstalledDrivers.exe
2015-12-19 21:24:11	98FE94DC34015805C20DB7E0AF75A920	255592	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\x86\RemovePreinstalledDrivers.exe
2015-12-19 21:24:11	9195C8759A6D7D0B798F608C1CB9F660	325224	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\HPInstallLogCollector.exe
2015-12-19 21:24:11	2A03C3ED11EE3B3029DE485A7250B0A1	11502184	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\HP-DQEX5.exe
2015-12-19 21:24:11	0A30836BCD754C2CED78706FDF69EC42	198248	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Temp\7zS2797\utils\hpUrlLauncher.exe
2015-12-19 21:24:06	3F2B49BA01309111E054D6E3BB007259	142864	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPDObject.exe
2015-12-19 21:24:06	0AD4E3B6CF954387A622AA0921A5E527	566288	----a-w-	C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\ActiveCheck\HPAsset.exe
2015-12-19 20:58:28	EB1A070EB6308C1D97E722D2BBA4DBE2	20032120	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamUserAgent.exe
2015-12-19 20:58:28	7E235FA5346A9AF6B192DD0970A2128F	414000	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\setup.exe
2015-12-19 20:58:28	620D08AA83BABEABC33ACE67F458C6B4	196216	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Update.Core\WLMerger.exe
2015-12-19 20:58:28	1A6B0C408C1E22AFF132A77E7713B1A5	21940344	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamUserAgent.exe
2015-12-19 20:58:27	FB9407F47E184208E4880FA1DC28B9D4	1872504	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Network.Service\NVNetworkService.exe
2015-12-19 20:58:27	ED257507950BCF71C4BD08897B97274B	5772408	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe
2015-12-19 20:58:27	DEA3F34BDAC3F4D3C48E19B8C981D602	1872504	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVNetworkService.exe
2015-12-19 20:58:27	BBB0BF00718443EA07F18BF5CFC581FA	637560	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe
2015-12-19 20:58:27	AF2B3D7E5566EA7897D8B89EFBF62F2B	595576	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\7z.exe
2015-12-19 20:58:27	A8FD46F7EA7410847C3EBE84C4B18BB1	6477432	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamService.exe
2015-12-19 20:58:27	9ED4B4B79C08C43A33FBA1C6AA7ABBDD	320080	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvsphelper64.exe
2015-12-19 20:58:27	97DC871A801DF42AD1008F0BBFD1ED8E	1156216	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GfExperienceService\GfExperienceService64.exe
2015-12-19 20:58:27	9363D3926DD2FA74B1DB67D02CB706C0	7596664	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvspcaps64.exe
2015-12-19 20:58:27	89AB223866CF66D69C2B85EA4450A6A8	6585976	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvspcaps.exe
2015-12-19 20:58:27	6AD6D9D2A5828BD469CA6D68C643EED8	1058424	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\LaunchGFExperience.exe
2015-12-19 20:58:27	6686999CA63BD31F23A147AD1F757A6C	126584	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\LEDVisualizer\NvLedVisualizer.exe
2015-12-19 20:58:27	59F14B3C78849982699CE34068708308	2771576	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Update.Core\NvBackend.exe
2015-12-19 20:58:27	59DBA5E6C97E1ADBACAC899A53DC9B01	519800	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\DXSETUP.exe
2015-12-19 20:58:27	57C2C60CBC1B7B64BE2A0A38897374F1	286184	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvsphelper.exe
2015-12-19 20:58:27	50619FA8FDC1E861F0F70A47B1580F4E	922744	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GfExperienceService\GfExperienceService32.exe
2015-12-19 20:58:27	496409C6DEFB2E26D6C8A5108F81099A	5119096	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamService.exe
2015-12-19 20:58:27	4011B7403AA5E75C7D2B5BE281E95FF4	6443128	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamNetworkService.exe
2015-12-19 20:58:27	398AAAAF8DF0BAB26186E492DF52B185	4737656	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\GFExperience.exe
2015-12-19 20:58:27	2F6ABCFB6B992A4DF5EFD9E6B7BAFF2B	8185464	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamNetworkService.exe
2015-12-19 20:58:27	2462D5C621038B2BAC2CFEF9FC453DCF	87160	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\LEDVisualizer\NvLedServiceHost.exe
2015-12-19 20:58:27	02BB9BB84772302FD40116351603A5AC	7217784	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe
=== C: other files ==
2015-12-22 12:12:29	D2F6A1B11344D9AC7BCFB75900D4ADE1	23668	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\default_apps\youtube.crx
2015-12-22 12:12:29	8AD223868AB9974F7746D0227730A0CC	26392	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\default_apps\search.crx
2015-12-22 12:12:29	71E1283B8440F6264CEC99DF9AD81F5B	25561	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\default_apps\drive.crx
2015-12-22 12:12:29	2E2E328E5BF6BE61203164B3E9EA8094	24040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\default_apps\gmail.crx
2015-12-22 12:12:29	2C71C49F991095A1848624907BACBB08	4578	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2599.0\default_apps\docs.crx
2015-12-21 17:14:11	D2F6A1B11344D9AC7BCFB75900D4ADE1	23668	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\default_apps\youtube.crx
2015-12-21 17:14:11	8AD223868AB9974F7746D0227730A0CC	26392	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\default_apps\search.crx
2015-12-21 17:14:11	71E1283B8440F6264CEC99DF9AD81F5B	25561	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\default_apps\drive.crx
2015-12-21 17:14:11	2E2E328E5BF6BE61203164B3E9EA8094	24040	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\default_apps\gmail.crx
2015-12-21 17:14:11	2C71C49F991095A1848624907BACBB08	4578	----a-w-	C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\Application\49.0.2598.0\default_apps\docs.crx
2015-12-20 19:25:12	BC99D12CE9DB8DB55E231F8D195FC67B	271968	-c--a-w-	C:\Windows\System32\DRVSTORE\SamsungRap_3A0D1407F03C42886BC04E9E2BB234F2DF8D62EE\amd64\SamsungRapidDiskFltr.sys
2015-12-20 18:53:13	EDED742C79FCC5523EE2151095213B8F	33	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\FreeDos\AUTOEXEC.BAT
2015-12-20 18:53:13	6D43C5E63BE56E8C6938AEA431DC45C7	66090	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\FreeDos\command.com
2015-12-20 18:53:13	512D8D00492310B425CD329585C1BEC6	45202	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\FreeDos\KERNEL.SYS
2015-12-20 18:53:13	2081DF5E63A220BDBE00457EB5D7B9B7	35	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\FreeDos\SERASE.BAT
2015-12-20 18:53:12	DABC88D3FBF9FFF6FD128C9F2E1EE9FF	13792	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\magdrv.sys
2015-12-20 18:53:12	90CB87F9681440D40140BF17541B6183	22496	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\magdrvia64.sys
2015-12-20 18:53:12	0DCD768E61EA438AD76635CA2E1C29E8	14304	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\magdrvamd64.sys
2015-12-20 18:53:11	3C23D128BBCF161FCEADFE3473B8D6E7	2973	----a-w-	C:\Program Files (x86)\Samsung\Samsung Magician\RAPIDCollectLogs.bat
2015-12-20 18:05:04	C2A9985C97DF5946AEAE7C001625410C	44840	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{ECAEEECD-7454-4824-9C46-9E1B9ED6D870}\nvvad32v.sys
2015-12-20 18:05:04	9D9CAD70EA640AB8D3EB77BFAE6CABE2	28344	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{014BFCB0-5265-4A16-B88E-4BBB86A05B35}\NVSWCFilter64.sys
2015-12-20 18:05:04	7ABD081BB7A1A8CF7E3B1E64183AB812	24760	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{014BFCB0-5265-4A16-B88E-4BBB86A05B35}\NVSWCFilter32.sys
2015-12-20 18:05:04	35DFC12FD7E44B7CB8CCD7E5A2B3975A	50472	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{ECAEEECD-7454-4824-9C46-9E1B9ED6D870}\nvvad64v.sys
2015-12-20 18:05:02	FC2F395707BA5850F2F363BF635D7C72	14456	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{02554419-8FA8-4E34-8933-0CB5A5B70758}\NVI2SystemService32.sys
2015-12-20 18:05:02	880AE3F620539FFA0F9CA839C36CA1BB	15480	----a-w-	C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{02554419-8FA8-4E34-8933-0CB5A5B70758}\NVI2SystemService64.sys
2015-12-19 20:58:30	FC2F395707BA5850F2F363BF635D7C72	14456	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVI2SystemService32.sys
2015-12-19 20:58:30	C2A9985C97DF5946AEAE7C001625410C	44840	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NvVAD\nvvad32v.sys
2015-12-19 20:58:30	9F0938D041D6203DA3B95AA3EBE4C34E	19576	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamKms.sys
2015-12-19 20:58:30	9D9CAD70EA640AB8D3EB77BFAE6CABE2	28344	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShieldWirelessController\NVSWCFilter64.sys
2015-12-19 20:58:30	880AE3F620539FFA0F9CA839C36CA1BB	15480	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVI2SystemService64.sys
2015-12-19 20:58:30	7ABD081BB7A1A8CF7E3B1E64183AB812	24760	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShieldWirelessController\NVSWCFilter32.sys
2015-12-19 20:58:30	35DFC12FD7E44B7CB8CCD7E5A2B3975A	50472	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NvVAD\nvvad64v.sys
2015-12-19 20:58:30	21FB5E025FF98EFB5449522459525E44	18552	----a-w-	C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamKms.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2747472378-2380407209-2335239119-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"HP Photosmart 5520 series (NET)"="C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe -deviceID CN3AH513C60602:NW -scfn HP Photosmart 5520 series (NET) -AutoStart 1"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"LWS"="P:\Logitech c310\LWS\Webcam Software\LWS.exe -hide"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"HP Photosmart 5520 series (NET)"="C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe -deviceID CN3AH513C60602:NW -scfn HP Photosmart 5520 series (NET) -AutoStart 1"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"iTunesHelper"="P:\iTunes\iTunesHelper.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"P:\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"P:\\Skype\\Phone\\Skype.exe\" /minimized /regrun"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Rajni-Pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk]
"item"="EvernoteClipper"
"path"="C:\\Users\\Rajni-Pc\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\EvernoteClipper.lnk"
"backup"="C:\\Windows\\pss\\EvernoteClipper.lnk.Startup"
"backupExtension"=".Startup"
"command"="P:\\Evernote\\EVERNO~2.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Rajni-Pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Productregistratie.lnk]
"item"="Logitech . Productregistratie"
"path"="C:\\Users\\Rajni-Pc\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Logitech . Productregistratie.lnk"
"backup"="C:\\Windows\\pss\\Logitech . Productregistratie.lnk.Startup"
"backupExtension"=".Startup"
"command"="P:\\LOGITE~1\\Ereg\\eReg.exe"


==== Startup Folders ======================

2015-12-19 21:24:55	1952	----a-w-	C:\Users\Rajni-Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Photosmart 5520 series (netwerk).lnk
2015-11-01 21:49:03	1034	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
2015-10-30 12:23:45	2297	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2747472378-2380407209-2335239119-1000Core.job --a------ C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe [01-11-2015 23:00]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2747472378-2380407209-2335239119-1000UA.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["P:\Ccleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2747472378-2380407209-2335239119-1000Core" [C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2747472378-2380407209-2335239119-1000UA" [C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SamsungMagician" ["C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe"]
"C:\Windows\SysNative\tasks\{4418DDE4-18E5-4937-9609-C0CE209929C5}" ["c:\program files (x86)\mozilla firefox\firefox.exe"]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Product Register Service" [C:\Program Files (x86)\ASUS\APRP\aprp.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Rajni-Pc\AppData\Roaming\Mozilla\Firefox\Profiles\6fxi67gj.default
user_pref("browser.startup.homepage", "www.google.nl");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Rajni-Pc\AppData\Roaming\Mozilla\Firefox\Profiles\6fxi67gj.default
- YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi
- YouTube AdBlock - %ProfilePath%\extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Rajni-Pc\AppData\Roaming\Mozilla\Firefox\Profiles\6fxi67gj.default
52CE0DBFD9738AE528CF525A0367EBEB	- P:\Vlc Player\VLC\npvlc.dll -	VLC Web Plugin
88041A1D3DB193614C1DD264CDD7417E	- C:\Windows\SysWOW64\Adobe\Director\np32dsw_1221171.dll -	Shockwave for Director / Shockwave for Director
5DF56521E8985BFD8F21A3D97A4D4574	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll -	Shockwave Flash
3D1497F3F1A344FFB733CE616BB9096D	- C:\Users\Rajni-Pc\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll -	Google Update


==== Chromium Look ======================


Google Slides - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Word search - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ggckablhhmjagmokplgnbamljajnhanm
Google Docs Offline - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Fix ======================

C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage-journal deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{740C6D04-A982-4380-89C0-2D557F708318}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKCU\SearchScopes\{740C6D04-A982-4380-89C0-2D557F708318} - http://www.google.nl/search?hl=nl&q={searchTerms}

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - P:\Evernote\EvernoteIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - P:\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [LWS] P:\Logitech c310\LWS\Webcam Software\LWS.exe -hide
O4 - HKCU\..\Run: [Google Update] "C:\Users\Rajni-Pc\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [HP Photosmart 5520 series (NET)] "C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN3AH513C60602:NW" -scfn "HP Photosmart 5520 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Inktwaarschuwingen controleren - HP Photosmart 5520 series (netwerk).lnk = ?
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://P:\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Afbeelding knippen - P:\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Afbeelding opnemen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Bladwijzer knippen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://P:\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Kopieer selectie - P:\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Kopieer URL - P:\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Nieuwe notitie - P:\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Pagina opemen - P:\Evernote\EvernoteIERes\Clip.html?clipAction=1
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\Microsoft office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\Microsoft office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - P:\Microsoft office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - P:\Microsoft office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @P:\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - P:\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @P:\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - P:\Evernote\\EvernoteIERes\AddNote.html
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - T:\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - P:\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - P:\Teamviewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: UsbClientService - Unknown owner - P:\Synology\Assistant\UsbClientService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rajni-Pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Rajni-Pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Rajni-Pc\AppData\Local\Mozilla\Firefox\Profiles\6fxi67gj.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Rajni-Pc\AppData\Local\Google\Chrome SxS\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1105 folders=140 202085194 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Rajni-Pc\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Rajni-Pc\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 26-12-2015 at 21:10:33,34 ======================