
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by dv7 2250 on za 30-01-2016 at 19:16:28,05.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\dv7 2250\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

30-1-2016 19:24:28 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\JMHL Loader deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\uTorrent deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\374311380 deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\Fast And Safe deleted successfully
C:\Users\dv7 2250\AppData\Roaming\HP Support Assistant deleted successfully
C:\Users\dv7 2250\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\dv7 2250\AppData\Local\Conduit deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DDA598AD-2261-457C-80F7-645D9D88C2BA} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07BA2FE1-7580-4639-ADC6-B25C872DC0DC} deleted successfully
HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{DDA598AD-2261-457C-80F7-645D9D88C2BA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DDA598AD-2261-457C-80F7-645D9D88C2BA} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5B291E6C-9A74-4034-971B-A4B007A0B315} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CltMngSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\CltMngSvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BackupStack deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NewPlayerUpdaterService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NewPlayerUpdaterService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\NewPlayerUpdaterService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\NewPlayerUpdaterService deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\DV7225~1\AppData\Roaming\Philips-Songbird\Profiles\lqyo2bjr.default

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_30-01-2016_2144_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files (x86)\\Internet Explorer\\iexplore.exe"

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"PlusService"=- 
""=- 
"fst_nl_39"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\JMHL Loader not found
C:\PROGRA~2\uTorrent not found
C:\Program Files (x86)\SweetIM not found
C:\ProgramData\Fast And Safe not found
C:\PROGRA~3\WPM deleted
C:\PROGRA~2\SystemRequirementsLab deleted
C:\PROGRA~2\Windows Live SkyDrive deleted
C:\PROGRA~2\Yontoo deleted
C:\Users\dv7 2250\AppData\Roaming\SupTab deleted
C:\Program Files (x86)\fst_nl_39 deleted
C:\Users\dv7 2250\AppData\Roaming\DVDVideoSoftIEHelpers deleted
C:\Program Files (x86)\Common Files\DVDVideoSoft deleted
C:\Program Files (x86)\MediaPlayerplus deleted
C:\Program Files (x86)\Freeven pro deleted
C:\Program Files (x86)\SupTab deleted
C:\Users\dv7 2250\AppData\Local\fst_nl_39 deleted
C:\Users\dv7 2250\AppData\LocalLow\Conduit deleted
C:\PROGRA~2\Mozilla Firefox\user.js deleted
C:\PROGRA~2\Mozilla Firefox\extensions\ffxtlbr@babylon.com deleted
C:\PROGRA~2\Uninstaller deleted
C:\PROGRA~2\NewPlayer deleted
C:\PROGRA~2\1ClickDownload deleted
C:\user.js deleted
C:\install.exe deleted
C:\Users\dv7 2250\AppData\Roaming\BBMS_EXCEPTION.txt deleted
C:\Users\dv7 2250\AppData\Roaming\aps.scan.quick.results deleted
C:\Users\dv7 2250\AppData\Roaming\aps.scan.results deleted
C:\Users\dv7 2250\AppData\Roaming\aps.uninstall.scan.results deleted
C:\Users\dv7 2250\AppData\Roaming\Babylon deleted
C:\Users\dv7 2250\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\IePluginService deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\{23D58E70-3B83-4B83-A227-68770F84F5EC} deleted
C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001} deleted
C:\PROGRA~3\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E} deleted
C:\PROGRA~3\{D3B41B92-9BC2-43EB-916A-4FA9E8191837} deleted
C:\PROGRA~3\{DA06AA03-DF24-4ECE-939E-1B0939235C66} deleted
C:\PROGRA~3\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60} deleted
C:\PROGRA~3\Trymedia deleted
C:\Users\dv7 2250\AppData\Local\nse1427.tmp deleted
C:\Users\dv7 2250\AppData\Local\Unity deleted
C:\Users\dv7 2250\AppData\Local\Local_Weather_LLC deleted
C:\Users\dv7 2250\AppData\Local\Babylon deleted
C:\Users\dv7 2250\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx deleted
C:\Users\dv7 2250\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopWeatherAlerts.lnk deleted
C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Weather Alerts.lnk deleted
C:\Windows\Tasks\6c0e75e6-f53f-4d19-b513-977d38468083-3.job deleted
C:\Windows\Tasks\6c0e75e6-f53f-4d19-b513-977d38468083-4.job deleted
C:\Windows\Tasks\8687928c-fd49-43da-a206-b124ce6b3aa1-3.job deleted
C:\Windows\Tasks\8687928c-fd49-43da-a206-b124ce6b3aa1-4.job deleted
C:\windows\SysNative\Tasks\6c0e75e6-f53f-4d19-b513-977d38468083-3 deleted
C:\windows\SysNative\Tasks\6c0e75e6-f53f-4d19-b513-977d38468083-4 deleted
C:\windows\SysNative\Tasks\8687928c-fd49-43da-a206-b124ce6b3aa1-3 deleted
C:\windows\SysNative\Tasks\8687928c-fd49-43da-a206-b124ce6b3aa1-4 deleted
C:\Users\dv7 2250\Downloads\FreeYouTubeToMP3Converter (1).exe deleted
C:\Users\dv7 2250\Downloads\FreeYouTubeToMP3Converter (2).exe deleted
C:\Users\dv7 2250\Downloads\FreeYouTubeToMP3Converter.exe deleted
C:\Users\dv7 2250\Downloads\SoftonicDownloader_voor_vlc-media-player.exe deleted
C:\Users\dv7 2250\AppData\LocalLow\RadioBar deleted
C:\Users\dv7 2250\AppData\LocalLow\Unity deleted
C:\Users\dv7 2250\AppData\LocalLow\SweetIM deleted
C:\Users\dv7 2250\AppData\LocalLow\Toolbar4 deleted
C:\END deleted
C:\Users\dv7 2250\Desktop\Continue VuuPC Installation.lnk deleted
C:\Users\dv7 2250\Desktop\Sync Folder.lnk deleted
C:\Users\dv7 2250\Desktop\MyPC Backup.lnk deleted
C:\Users\dv7 2250\Desktop\AnyProtect.lnk deleted
C:\Users\dv7 2250\install_flash_player.exe deleted
C:\Users\dv7 2250\picasa38-setup.exe deleted
C:\Users\dv7 2250\Test Drive Unlimited 2 Editor.exe deleted
"C:\Program Files (x86)\MyPC Backup\AWSSDK.dll" deleted
"C:\Program Files (x86)\MyPC Backup\GetText.dll" deleted
"C:\Program Files (x86)\MyPC Backup\MPCBClient.dll" deleted
"C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe" deleted
"C:\Program Files (x86)\MyPC Backup\ObjectListView.dll" deleted
"C:\Program Files (x86)\MyPC Backup\Shared Stack.dll" deleted
"C:\PROGRA~2\MyPC Backup\AWSSDK.dll" deleted
"C:\PROGRA~2\MyPC Backup\GetText.dll" deleted
"C:\PROGRA~2\MyPC Backup\MPCBClient.dll" deleted
"C:\PROGRA~2\MyPC Backup\MyPC Backup.exe" deleted
"C:\PROGRA~2\MyPC Backup\ObjectListView.dll" deleted
"C:\PROGRA~2\MyPC Backup\Shared Stack.dll" deleted
"C:\Users\dv7 2250\AppData\Local\WeatherAlerts\WeatherAlerts.exe" deleted
"C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe" deleted
"C:\Program Files (x86)\Yuna Software\Messenger Plus!\Languages\Lng_Default.ini" deleted
"C:\Program Files (x86)\Yuna Software\Messenger Plus!\Languages\Lng_Dutch.ini" deleted
"C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll" deleted
"C:\PROGRA~2\Conceptronic Multimedia\CTVDIGUSB2 Device Utilities\RTLRCtl.exe" deleted
"C:\PROGRA~2\MyPC Backup\x64\System.Data.SQLite.dll" deleted
"C:\Program Files (x86)\Yuna Software" deleted
"C:\Program Files (x86)\MyPC Backup" not deleted
"C:\PROGRA~2\Conceptronic Multimedia" deleted
"C:\PROGRA~2\MyPC Backup" not deleted
"C:\Users\dv7 2250\AppData\Local\WeatherAlerts" not deleted
"C:\Program Files (x86)\Yuna Software\Messenger Plus!" deleted
"C:\Program Files (x86)\Yuna Software\Messenger Plus!\Languages" deleted
"C:\Program Files (x86)\MyPC Backup\Database" not deleted
"C:\Program Files (x86)\MyPC Backup\x64" not deleted
"C:\PROGRA~2\Conceptronic Multimedia\CTVDIGUSB2 Device Utilities" deleted
"C:\PROGRA~2\MyPC Backup\Database" not deleted
"C:\PROGRA~2\MyPC Backup\x64" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-01-29 12:49:00	748D1F5A0495A1AA9D44FB51B4C13271	43112	----a-w-	C:\Windows\avastSS.scr
2016-01-29 11:17:16	6E0D31812F81B33F2305D2F62D9E3515	664780106	----a-w-	C:\Windows\MEMORY.DMP
====== C:\Users\DV7225~1\AppData\Local\Temp ====
2016-01-30 17:27:18	5A9D9DA51C243C1FA94E03E4A17AEFAC	110592	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_748_30305\CRX_INSTALL\np_dvs_plugin.dll
2016-01-30 17:12:17	5A9D9DA51C243C1FA94E03E4A17AEFAC	110592	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_6936_132\CRX_INSTALL\np_dvs_plugin.dll
2016-01-30 14:17:36	5A9D9DA51C243C1FA94E03E4A17AEFAC	110592	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_5992_14228\CRX_INSTALL\np_dvs_plugin.dll
2016-01-29 13:17:01	6649D4A3492EFBE1E201710635D69ECD	118784	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\rad5383E.tmp.exe
2016-01-29 12:47:29	5A9D9DA51C243C1FA94E03E4A17AEFAC	110592	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_5064_2462\CRX_INSTALL\np_dvs_plugin.dll
2016-01-29 11:54:30	FE447D1CD38CECAC2331FA932078D9A0	271360	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\SmiProvider.dll
2016-01-29 11:54:30	FC2DB5842190C6E78A40CD7DA483B27C	435712	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\DmiProvider.dll
2016-01-29 11:54:30	FC00A05639494779002682A9B965EF9C	471040	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\WimProvider.dll
2016-01-29 11:54:30	F2B0771A7CD27F20689E0AB787B7EB7C	289792	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\DismCore.dll
2016-01-29 11:54:30	EFCB002ABC3529D71B61E6FB6434566C	762368	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\CbsProvider.dll
2016-01-29 11:54:30	E7CAED467F80B29F4E63BA493614DBB1	127488	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\OSProvider.dll
2016-01-29 11:54:30	C9D74156913061BE6C51D8FC3ACF8E93	53760	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\FolderProvider.dll
2016-01-29 11:54:30	BBB9E4FA2561F6A6E5CCF25DA069AC1B	313344	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\IntlProvider.dll
2016-01-29 11:54:30	9A821D8D62F4C60232B856E98CBA7E4F	96768	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\DismHost.exe
2016-01-29 11:54:30	8D3855B133E21143E8B4BFADB9FB14A3	302080	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\UnattendProvider.dll
2016-01-29 11:54:30	8CA117CB9338C0351236939717CB7084	186368	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\DismProv.dll
2016-01-29 11:54:30	7B38D7916A7CD058C16A0A6CA5077901	271360	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\wdscore.dll
2016-01-29 11:54:30	739968678548BA15F6B9372E8760C012	444416	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\TransmogProvider.dll
2016-01-29 11:54:30	6A4BD682396F29FD7DF5AB389509B950	183296	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\CompatProvider.dll
2016-01-29 11:54:30	62DE64DC805FD98AF3ADA9D93209F6A9	107008	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\LogProvider.dll
2016-01-29 11:54:30	5488E381238FF19687FDD7AB2F44CFCC	111616	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\DismCorePS.dll
2016-01-29 11:54:30	45FF4FA5CA5432BFCCDED4433FE2A85B	216576	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\86F79C62-A459-42E7-A14F-6442EC2BC475\MsiProvider.dll
2016-01-29 11:54:13	69CBF34CAE0D66B5161A7D3E1B8BBE16	39879675	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\sp64126.exe
====== Java Cache =====
2016-01-30 13:13:42	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\dv7 2250\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-2414e5cb
====== C:\Windows\SysWOW64 =====
2016-01-30 17:24:19	9BE834EEA24E39F5ED5069A560F41A40	97888	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-30 16:21:18	02DF0628BE8B64B84D50FBE53549AA3B	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2016-01-30 16:21:17	6C4B2E1A25841077084EB9F76FF6FFA7	11410432	----a-w-	C:\Windows\SysWOW64\wmp.dll
2016-01-30 16:12:19	1ADF47EE89031DE168949CAFA3AAD009	1638256	----a-w-	C:\Windows\SysWOW64\PerfStringBackup.INI
2016-01-30 15:57:10	6A13B4F3B3F575F1E24B877B9359AABA	10752	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-30 15:57:10	6951562DC4625EEFC6EACD52AD165866	9728	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-30 15:57:10	60F4AEFA103D421EA4A40E31409B4756	3072	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-30 15:57:10	589CBC4989F750E1DA35625AB481CF43	4096	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-30 15:57:10	49ACA548B2423F1C67898E6AC719A9A6	3584	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-30 15:57:10	3BE0D923AA45A4DBE091C2D84F0B4FE7	3072	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-30 15:57:10	2E33DFD10F28F86C3FC40EE123CC3904	2560	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-30 15:57:10	1C60E09CA1C3A045BC4D367F67C915B7	5632	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-30 15:57:10	007863E45F25AA47A4C30D0930BBFD85	5632	---ha-w-	C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-30 15:57:09	FB3F036EF6A467F7AF46C821FF5D198D	220160	----a-w-	C:\Windows\SysWOW64\d3d10core.dll
2016-01-30 15:57:09	D4212AB475A3B25EC4DF574536C3EDC5	249856	----a-w-	C:\Windows\SysWOW64\d3d10_1core.dll
2016-01-30 15:57:09	C7A730AFB80B11F93EFC81B1D6F920D7	364544	----a-w-	C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-01-30 15:57:09	8504944851DF6175CC489A8F3328459E	1080832	----a-w-	C:\Windows\SysWOW64\d3d10.dll
2016-01-30 15:57:09	6A7B5A3EFCCDB53DA41CF6838056990F	1158144	----a-w-	C:\Windows\SysWOW64\XpsPrint.dll
2016-01-30 15:57:09	62A6EB5771580CAE445804389F3F7432	207872	----a-w-	C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-01-30 15:57:09	600A65F922CCDCBB2D11467914241556	2284544	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-30 15:57:09	545F1BAAADD0BF1F4FE4586293FCA07D	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
2016-01-30 15:57:09	4FF3EC04CD47DD62181894B71B004E40	604160	----a-w-	C:\Windows\SysWOW64\d3d10level9.dll
2016-01-30 15:57:09	4277F5164DE9B7C665BB928B9145BEE0	1247744	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2016-01-30 15:57:09	3C1936A12C62254F914A01BBC6A8DC69	161792	----a-w-	C:\Windows\SysWOW64\d3d10_1.dll
2016-01-30 15:57:09	3BCECD87AB4E6743BFB45B352AD1A529	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2016-01-30 15:57:08	D4F264FE23F8953D840904418220C15E	293376	----a-w-	C:\Windows\SysWOW64\dxgi.dll
2016-01-30 15:57:08	B3170CCC779B682C3341873EA60CF084	1988096	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2016-01-30 15:57:08	9FF8F684BACF326082E5562F7C104A79	3419136	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2016-01-30 15:57:08	8B285BDAB7735FDFB18E6F7122923B77	187392	----a-w-	C:\Windows\SysWOW64\UIAnimation.dll
2016-01-30 15:54:36	6DE66FE7C526637E74CD066461C7C871	1505280	----a-w-	C:\Windows\SysWOW64\d3d11.dll
2016-01-30 14:14:08	867148EBF47E7E7E7B21C07B4A981929	581600	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2016-01-30 14:14:08	372218B80DEF827063049EBEE76B7501	92672	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2016-01-30 14:14:08	255F0417EC31C71585824269522EC8E9	36320	----a-w-	C:\Windows\SysWOW64\wups.dll
2016-01-30 14:13:28	F419D738BD2AE58D9DF2F9FEB5F43842	33792	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2016-01-30 14:13:28	5AA2CAD923E9E647276A61387E83DDD0	179656	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-01-30 16:21:19	AB272BBFB05A8585C3405EFA9F605774	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2016-01-30 16:21:14	8CBBB27369F9F07BC5E874E750EAF9D0	14631424	----a-w-	C:\Windows\Sysnative\wmp.dll
2016-01-30 15:57:10	FB4045578F5180BDB1963AB352B78548	5632	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-01-30 15:57:10	F5CEF064C7E6D95DA86B9D064A56A969	3584	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-01-30 15:57:10	AFC3DB5C6EB8CA8017DDB81D6C0AD02A	9728	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-01-30 15:57:10	9108540E866F75C7AF2B91DD921A8091	3072	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-01-30 15:57:10	9094039A00485F71C4DE64BF51F64C46	3072	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-version-l1-1-0.dll
2016-01-30 15:57:10	72723D3E4781BADC62C3180C137E7B23	4096	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-user32-l1-1-0.dll
2016-01-30 15:57:10	64A4AB126E24FD3F58EBE64852773DB5	2560	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-01-30 15:57:10	0E6FBF19D9DFBB77316C23DF91F8A101	5632	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-01-30 15:57:09	FA428BDBCFAB9DC3D58F0BD2CCD50EA2	1682432	----a-w-	C:\Windows\Sysnative\XpsPrint.dll
2016-01-30 15:57:09	F49E92B50CED5C9F1725D3C0329FD933	10752	---ha-w-	C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-01-30 15:57:09	E8EEA503870CB6A6DC4E09A2433DF33E	2776576	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2016-01-30 15:57:09	C4C183E6551084039EC862DA1C945E3D	1175552	----a-w-	C:\Windows\Sysnative\FntCache.dll
2016-01-30 15:57:09	C498EF41B93986BCBD483597573EB96D	2565120	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2016-01-30 15:57:09	8DFB5752FCE145A6B295093C0A8BE131	363008	----a-w-	C:\Windows\Sysnative\dxgi.dll
2016-01-30 15:57:09	893E8C1E4A1263EDDB1A6922D0E32201	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
2016-01-30 15:57:09	7E8A672B7B06A6EB11960C22E0360C59	3928064	----a-w-	C:\Windows\Sysnative\d2d1.dll
2016-01-30 15:57:09	6F623BD09CBB4C3F97374F12976E5EA5	522752	----a-w-	C:\Windows\Sysnative\XpsGdiConverter.dll
2016-01-30 15:57:09	63BB89DED1E9104E68D33E54DE4D340D	1643520	----a-w-	C:\Windows\Sysnative\DWrite.dll
2016-01-30 15:57:08	F1C19F0AA151B90A7416FA1D50DDB582	245248	----a-w-	C:\Windows\Sysnative\WindowsCodecsExt.dll
2016-01-30 15:57:08	BDDF242A49E7B7DC5CCEC291BCE53ACB	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2016-01-30 15:57:08	B2CA1AC17E78D986B22FD6C2261CD84F	1238528	----a-w-	C:\Windows\Sysnative\d3d10.dll
2016-01-30 15:57:08	AFB73882AE41E1629A63E6713FE30FB9	296960	----a-w-	C:\Windows\Sysnative\d3d10core.dll
2016-01-30 15:57:08	9AE80F6A66B30E3ED8CDF858CF28B11B	194560	----a-w-	C:\Windows\Sysnative\d3d10_1.dll
2016-01-30 15:57:08	63F72417CA38D8FC8F53709649B589E3	333312	----a-w-	C:\Windows\Sysnative\d3d10_1core.dll
2016-01-30 15:57:08	3834316FE8A653227282196525E07DFE	648192	----a-w-	C:\Windows\Sysnative\d3d10level9.dll
2016-01-30 15:57:08	04CB7C8FDC6D9640DD82A527208F72C4	221184	----a-w-	C:\Windows\Sysnative\UIAnimation.dll
2016-01-30 15:54:35	4C92EB7535CAA1681A77D928FBF9771F	1887232	----a-w-	C:\Windows\Sysnative\d3d11.dll
2016-01-30 14:14:27	EAD9E413A6CEB9FD8E2AD9DC0716C061	58336	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2016-01-30 14:14:27	E76F105AD039B9E4DA9ECE839298C4A2	44512	----a-w-	C:\Windows\Sysnative\wups2.dll
2016-01-30 14:14:27	6335F8B4B89F002A3801473C1A799237	2620928	----a-w-	C:\Windows\Sysnative\wucltux.dll
2016-01-30 14:14:26	61FF576450CCC80564B850BC3FB6713A	2477536	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2016-01-30 14:14:08	7EC6617005F76714C7E16605E7A8AB06	38880	----a-w-	C:\Windows\Sysnative\wups.dll
2016-01-30 14:14:08	1180B5ADFB507258DA10F51B46681A33	97792	----a-w-	C:\Windows\Sysnative\wudriver.dll
2016-01-30 14:14:08	0DB2758CF1BAFE22E0970FDA0785B74C	700384	----a-w-	C:\Windows\Sysnative\wuapi.dll
2016-01-30 14:13:28	45D4BDEA136E72E75CF008D3C38D949A	198600	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2016-01-30 14:13:28	29FE783F75362AD6D2D9C0555BA83BD2	36864	----a-w-	C:\Windows\Sysnative\wuapp.exe
2016-01-30 13:17:39	F54D492A3F3A8506B4F0CAF885AC5753	1049312	----a-w-	C:\Windows\Sysnative\oem11.inf
2016-01-29 12:49:18	C514A8F4AC22AFAFE54B7CA515BBEAE2	386096	----a-w-	C:\Windows\Sysnative\aswBoot.exe
====== C:\Windows\Sysnative\drivers =====
2016-01-29 13:21:14	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_wpdcomp_01_09_00.Wdf
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-01-29 19:15:47	--------	d-----w-	C:\Program Files\trend micro
2016-01-29 11:27:27	--------	d-----w-	C:\Program Files\Common Files\AV
======= C:\PROGRA~2 =====
2016-01-30 17:26:34	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2016-01-30 17:23:17	--------	d-----w-	C:\PROGRA~2\Java
2016-01-30 15:30:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2016-01-29 11:27:27	--------	d-----w-	C:\PROGRA~2\COMMON~1\AV
======= C: =====
====== C:\Users\dv7 2250\AppData\Roaming ======
2016-01-30 14:07:03	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Locallow\Sun
2016-01-30 14:02:41	--------	d-----w-	C:\Users\dv7 2250\AppData\Roaming\Sun
2016-01-30 14:00:38	--------	d-----w-	C:\Users\dv7 2250\AppData\Locallow\Oracle
====== C:\Users\dv7 2250 ======
2016-01-30 17:24:11	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-30 17:17:51	A083B045D3774DDDCB64048F4516409E	643168	----a-w-	C:\Users\dv7 2250\Downloads\chromeinstall-8u71 (2).exe
2016-01-30 16:29:00	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\.oracle_jre_usage
2016-01-30 14:02:39	--------	d-----w-	C:\Users\dv7 2250\.oracle_jre_usage
2016-01-30 14:01:45	--------	d-----w-	C:\ProgramData\Oracle
2016-01-30 13:56:14	A083B045D3774DDDCB64048F4516409E	643168	----a-w-	C:\Users\dv7 2250\Downloads\chromeinstall-8u71 (1).exe
2016-01-30 13:56:10	A083B045D3774DDDCB64048F4516409E	643168	----a-w-	C:\Users\dv7 2250\Downloads\chromeinstall-8u71.exe

====== C: exe-files ==
2016-01-30 18:11:52	CAD2B58E5A94EBBA372D4A963E0CF686	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$IISCOK6.exe
2016-01-30 18:04:21	7EA0260488F304D68067A50B33A23AC2	1309184	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$RISCOK6.exe
2016-01-30 17:37:43	2E9938C868721C8AA1C5062CCF04E238	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$IOQUHTA.exe
2016-01-30 17:37:04	1306E3D36C464857874136327E28157D	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$I1KVZ8C.exe
2016-01-30 17:36:34	7EA0260488F304D68067A50B33A23AC2	1309184	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$ROQUHTA.exe
2016-01-30 17:33:22	7EA0260488F304D68067A50B33A23AC2	1309184	----a-w-	C:\$Recycle.Bin\S-1-5-21-924893983-733953751-686250530-1000\$R1KVZ8C.exe
2016-01-30 17:24:19	C1A4EED6CE27B89E3CF63839DDE14D98	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2016-01-30 17:24:19	3C30DF6FF0EEA713F1F4D251696B93A7	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2016-01-30 17:24:19	099E74EDE92C0B07E85AF3EE6A0C1248	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2016-01-30 17:23:41	F64E8F84D184DB9E1DAA06C468A96564	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssvagent.exe
2016-01-30 17:23:41	E1CCCE3EF4323A08240442EE6D8F9F23	76896	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2launcher.exe
2016-01-30 17:23:41	DFF3A99FE7DF7896A952B758A534364D	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmiregistry.exe
2016-01-30 17:23:41	D2702A2D5C98EB6E2524251099856954	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\servertool.exe
2016-01-30 17:23:41	B562AA86D55096C033BD0CE39BAEE6E7	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\tnameserv.exe
2016-01-30 17:23:41	A12B125D9D3CF87944E7E7A1BA0ED2A3	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\policytool.exe
2016-01-30 17:23:41	8F6A3DF8AEC9E79BF83472783C3EE86F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmid.exe
2016-01-30 17:23:41	7E18299A2B425FB60E47E11DF13CD43E	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\unpack200.exe
2016-01-30 17:23:41	72A41AFF0F7041FEA03914E157C2E22E	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\pack200.exe
2016-01-30 17:23:41	6F93569D77CB789727C4E0F33F934741	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jjs.exe
2016-01-30 17:23:41	5684DB15C4FDDD66CB41A238586C229E	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\klist.exe
2016-01-30 17:23:41	51FDBC4B82654F534D8AF5F39AE249DD	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\keytool.exe
2016-01-30 17:23:41	4A94B0D6D2322581E0D8C6749AA5EA35	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\orbd.exe
2016-01-30 17:23:41	3B25D8E78E7DC350FF489E814C8302FE	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\kinit.exe
2016-01-30 17:23:41	041F2531B37C13CE5211B860DF5EFC64	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\ktab.exe
2016-01-30 17:23:40	F9B4CC285D23A3CC144C5E2EB89413A9	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javacpl.exe
2016-01-30 17:23:40	D317A632CFEE0ED03AAAF884B503421A	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\java-rmi.exe
2016-01-30 17:23:40	C1A4EED6CE27B89E3CF63839DDE14D98	278624	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaws.exe
2016-01-30 17:23:40	7F39A458F3F444973AF0EEE1035D533A	30816	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jabswitch.exe
2016-01-30 17:23:40	3C30DF6FF0EEA713F1F4D251696B93A7	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaw.exe
2016-01-30 17:23:40	099E74EDE92C0B07E85AF3EE6A0C1248	191072	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\java.exe
2016-01-30 16:21:21	D21DD7BFC81C8623DE48EBB17133D59C	167424	----a-w-	C:\Program Files\Windows Media Player\wmplayer.exe
2016-01-30 16:21:21	9AED8E824CF5FAAB67957EDBC5512060	164864	----a-w-	C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2016-01-30 13:15:43	5724CEF14FCAD30DCDB96B10360B39A6	32430320	----a-w-	C:\SwSetup\sp48591\Setup.exe
2016-01-29 19:15:47	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\dv7 2250.exe
2016-01-29 11:27:27	F6CC12DB8DC6FB85136BD5D908409FF9	174904	----a-w-	C:\Program Files\Common Files\AV\avast! Antivirus\upgrade.exe
2016-01-29 11:27:27	F6CC12DB8DC6FB85136BD5D908409FF9	174904	----a-w-	C:\Program Files (x86)\Common Files\AV\avast! Antivirus\upgrade.exe
2016-01-29 11:27:26	0CCB618B6788A5083F85DF4179281E8A	665616	----a-w-	C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
2016-01-29 11:27:26	0CCB618B6788A5083F85DF4179281E8A	665616	----a-w-	C:\Program Files (x86)\Common Files\AV\avast! Antivirus\backup.exe
=== C: other files ==
2016-01-30 17:27:09	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_748_30305\DVDVideoSoftBrowserExtension.crx
2016-01-30 17:23:42	61351FF4B83204E6477FBBCB7107B919	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\lib\deploy\ffjcext.zip
2016-01-30 17:12:00	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_6936_132\DVDVideoSoftBrowserExtension.crx
2016-01-30 14:17:26	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_5992_14228\DVDVideoSoftBrowserExtension.crx
2016-01-30 13:51:36	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_336_23117\DVDVideoSoftBrowserExtension.crx
2016-01-30 13:15:43	6C95DD14CFD30B0617B91DC6A0B1A1FB	3060800	----a-w-	C:\SwSetup\sp48591\bcmwl664.sys
2016-01-30 13:15:43	3DA1C04EA8C09A9F77A951D5AE4F8CFC	2709056	----a-w-	C:\SwSetup\sp48591\bcmwl6.sys
2016-01-29 20:31:52	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_7156_10234\DVDVideoSoftBrowserExtension.crx
2016-01-29 14:42:45	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_6200_18629\DVDVideoSoftBrowserExtension.crx
2016-01-29 14:13:08	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_5876_6099\DVDVideoSoftBrowserExtension.crx
2016-01-29 13:37:10	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_2252_26419\DVDVideoSoftBrowserExtension.crx
2016-01-29 12:47:21	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_5064_2462\DVDVideoSoftBrowserExtension.crx
2016-01-29 11:49:45	6DDD017687C72229218C25173BBA9A24	417580	----a-w-	C:\Users\dv7 2250\AppData\Local\Temp\scoped_dir_3444_15549\DVDVideoSoftBrowserExtension.crx

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted
HPCeeScheduleForDV72250-PC$ deleted

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-924893983-733953751-686250530-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"
"ISUSPM"="C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"
"VeohPlugin"="C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
"SoMud"="C:\Program Files (x86)\SoMud\somud.exe /bg"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Google Update"="C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Akamai NetSession Interface"="C:\Users\dv7 2250\AppData\Local\Akamai\netsession_win.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"HPCam_Menu"="c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe c:\Program Files (x86)\Hewlett-Packard\Media\Webcam UpdateWithCreateOnce Software\Hewlett-Packard\Media\Webcam"
"QlbCtrl.exe"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start"
"NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED"
"UpdatePRCShortCut"="C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Hewlett-Packard\Recovery UpdateWithCreateOnce Software\CyberLink\PowerRecover"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"ArcSoft Connection Service"="C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"BlackBerryAutoUpdate"="C:\Program Files (x86)\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background"
"RoxWatchTray"="C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
"WirelessAssistant"="C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"
"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"
"Philips Device Listener"="C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background"
"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"
"ISUSPM"="C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"
"VeohPlugin"="C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
"SoMud"="C:\Program Files (x86)\SoMud\somud.exe /bg"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Google Update"="C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Akamai NetSession Interface"="C:\Users\dv7 2250\AppData\Local\Akamai\netsession_win.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="  c:\\progra~3\\fastan~1\\fastan~1.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"="c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe Update"

==== Startup Folders ======================

2011-12-26 14:53:02	412	----a-w-	C:\Users\dv7 2250\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CD-MENU.LNK
2010-07-03 15:01:09	2010	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Desktop Manager.lnk
2010-06-16 19:13:11	2341	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Remote Control.lnk
2010-06-16 19:20:21	2008	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [29-01-2016 13:21]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-06-2015 23:41]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-06-2015 23:41]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-924893983-733953751-686250530-1000Core.job --a------ C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe [06-06-2015 23:41]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-924893983-733953751-686250530-1000UA.job --a------ C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe [06-06-2015 23:41]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CapSchedInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]
"C:\Windows\SysNative\tasks\CapSvcInst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]
"C:\Windows\SysNative\tasks\CapUninst" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]
"C:\Windows\SysNative\tasks\CLMLSvc" [c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-924893983-733953751-686250530-1000Core" [C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-924893983-733953751-686250530-1000UA" [C:\Users\dv7 2250\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 2050 J510 series" ["C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\RunAsStdUser Task for VeohWebPlayer" [C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files (x86)\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\TVAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe]
"C:\Windows\SysNative\tasks\{140D368D-1B91-4488-BBB6-9180EDDB04D4}" [C:\Program Files (x86)\Skype\Phone\Skype.exe]
"C:\Windows\SysNative\tasks\{D01957DB-8DCB-4E57-998B-02E12E7622A9}" [C:\Program Files (x86)\Skype\Phone\Skype.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\AVAST Software\Avast settings backup" [C:\Program Files\Common Files\AV\avast Antivirus\backup.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\Alwil Software\Avast5\SafePrice\FF" [29-01-2016 13:49]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" []