Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Frank on zo 31-01-2016 at 10:48:16,40. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 31-1-2016 10:50:25 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\Anja\AppData\Local\ActiveSync deleted successfully C:\Users\Anja\AppData\Local\VirtualStore deleted successfully C:\Users\Gebruiker\AppData\Local\ActiveSync deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3215449020-1555931986-942393835-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cdc9b2b6-5796-4d44-bc7a-2fa644057d7f} deleted successfully HKEY_USERS\S-1-5-21-3215449020-1555931986-942393835-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{cdc9b2b6-5796-4d44-bc7a-2fa644057d7f} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{cdc9b2b6-5796-4d44-bc7a-2fa644057d7f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cdc9b2b6-5796-4d44-bc7a-2fa644057d7f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\oldsearch deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe Acrobat Reader DC - Nederlands Adobe Creative Suite 6 Master Collection Adobe Refresh Manager AMD Catalyst Control Center AMD Fuel Audacity 2.1.1 Bob Computers - Hulp op afstand Catalyst Control Center - Branding Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish FileZilla Client 3.14.1 FTP Commander GemistDownloader Google Chrome Google Update Helper HP Deskjet 2540 series Basissoftware van het apparaat Jingle Palette 4.4.5 Logitech SetPoint 6.67 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 PDF Settings CS6 Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085616) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085620) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3114541) 32-Bit Edition Security Update for Microsoft Office Access 2007 (KB2596614) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114457) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3114546) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB3114540) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687406) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB2889915) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB3114429) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2880506) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB3114549) 32-Bit Edition TeamViewer 11 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3114544) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) Winamp WinRAR 5.20 (64-bit) ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleCrashHandler.exe C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE C:\Users\Gebruiker\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 Objects\{cdc9b2b6-5796-4d44-bc7a-2fa644057d7f}] ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\Search Know not found C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\windows\SysNative\GroupPolicy\machine deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 4088 MB CPU Info: Intel(R) Core(TM) i7 CPU 870 @ 2.93GHz CPU Speed: 3008,1 MHz Sound Card: Luidsprekers (High Definition A | Display Adapters: AMD Radeon HD 5450 | AMD Radeon HD 5450 Monitors: 1x; Fujitsu E22W-5 | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (G: | ) G: HL-DT-STDVDRAM GH22NS50 Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 465,3GB Hard Disks - Free: C: 351,3GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 06/10/10 | MEDION - 20100610 Time Zone: West-Europa (standaardtijd) Motherboard *: MEDIONPC MS-7658 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Internet Explorer Version: 11.63.10586.0 Google Chrome version: 48.0.2564.97 Adobe Reader version: 15.10.20056.167417 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2016-01-04 09:53:14 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\ativpsrm.bin 2016-01-04 09:35:33 4C7F44B17E9E919AC956C8E4140773B2 67584 --s-a-w- C:\Windows\bootstat.dat ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2016-01-28 15:10:12 D44345210CAC304817FAFBD4F0671E2C 6971752 ----a-w- C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-01-28 15:10:10 ADF1802719E1C3F5B3093EB2566F109E 18678272 ----a-w- C:\Windows\SysWOW64\edgehtml.dll 2016-01-28 15:10:09 AE6803B8484965EB2B92E4B2AF016B43 19338752 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2016-01-28 15:10:06 8FA6855FCD9F683BC6761B97F7F48408 13018624 ----a-w- C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-01-28 15:10:01 E9FD92C0D2CD0DD877ECD086C6D6F99B 5238360 ----a-w- C:\Windows\SysWOW64\windows.storage.dll 2016-01-28 15:10:00 C95A1EC1C230BCCF0984CEDFCBCF8836 12126208 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2016-01-28 15:09:54 8B160B088DA953EE6C16595AD5DA7787 9918976 ----a-w- C:\Windows\SysWOW64\twinui.dll 2016-01-28 15:09:52 A1EB9EF86954DF012BD3A48803DB36C8 6297088 ----a-w- C:\Windows\SysWOW64\mos.dll 2016-01-28 15:09:51 76D96571FE1FA529C3741B17B57F9696 21125400 ----a-w- C:\Windows\SysWOW64\shell32.dll 2016-01-28 15:09:49 1C22BFBABCF389F2A985A32C01819467 5202944 ----a-w- C:\Windows\SysWOW64\BingMaps.dll 2016-01-28 15:09:48 104ED5E318C5EED6178BE9F4B4E1E5A2 4759040 ----a-w- C:\Windows\SysWOW64\d2d1.dll 2016-01-28 15:09:46 AFA5A77BB7F6FEFBDB9CAE34D3A215CF 1944576 ----a-w- C:\Windows\SysWOW64\InputService.dll 2016-01-28 15:09:46 848606B6742D80BF6A7DD30E580BA7A9 1626624 ----a-w- C:\Windows\SysWOW64\dwmcore.dll 2016-01-28 15:09:44 A680339559FBC02BC0854D73DDE85C7B 1174008 ----a-w- C:\Windows\SysWOW64\msctf.dll 2016-01-28 15:09:44 53F74B2F4AEA9C6A7BB9DABDCC3C7431 613888 ----a-w- C:\Windows\SysWOW64\winhttp.dll 2016-01-28 15:09:43 86128937B83E51BF543CBCB854AE4FFC 405568 ----a-w- C:\Windows\SysWOW64\AudioSes.dll 2016-01-28 15:09:43 5E312BF7E912AAE9DA472B0027C4B8A9 709688 ----a-w- C:\Windows\SysWOW64\mfsvr.dll 2016-01-28 15:09:43 2003BE1653553FBC9D809BA40AEE4D68 1542656 ----a-w- C:\Windows\SysWOW64\quartz.dll 2016-01-28 15:09:41 DDC479FA1A36285BFC1EF25B547403C3 273408 ----a-w- C:\Windows\SysWOW64\SensorsApi.dll 2016-01-28 15:09:41 5814754D92DBD471D5AB7437B20EE3F0 687616 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2016-01-28 15:09:40 8A26A15B852AF385469AD62865CCAE7F 2050048 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2016-01-28 15:09:40 4A49EC3B4063CC569134D2BA64FA5022 350720 ----a-w- C:\Windows\SysWOW64\CredProvDataModel.dll 2016-01-28 15:09:40 3F8B09A6D234877025A5EBECF9151F58 162816 ----a-w- C:\Windows\SysWOW64\MTF.dll 2016-01-28 15:09:40 3A280280AEA583EAB0375C330F7A6CE9 335872 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2016-01-28 15:09:39 B44BC5CC78CF476028D1939A7712BD93 652312 ----a-w- C:\Windows\SysWOW64\evr.dll 2016-01-28 15:09:39 B3A8463C47E0E7007382A12176ACBD46 200704 ----a-w- C:\Windows\SysWOW64\DisplayManager.dll 2016-01-28 15:09:39 7D81335F3FCD9C37DE3C8C9989428C99 431240 ----a-w- C:\Windows\SysWOW64\WWanAPI.dll 2016-01-28 15:09:38 FAA5A3DE34FD44C220691C4527E88453 157696 ----a-w- C:\Windows\SysWOW64\SimCfg.dll 2016-01-28 15:09:38 559358D3C39A1EC0D944714C32FAD582 799744 ----a-w- C:\Windows\SysWOW64\rasdlg.dll 2016-01-28 15:09:38 1C1DC38D8D6E075DE06ED174B9E81FE9 535040 ----a-w- C:\Windows\SysWOW64\rastls.dll 2016-01-28 15:09:37 8880848DC5DEE8BF8FE34DBC57C5655C 129024 ----a-w- C:\Windows\SysWOW64\SimAuth.dll 2016-01-28 15:09:35 A589CD44BDB433F727EE84792FCCF0C0 87040 ----a-w- C:\Windows\SysWOW64\MapsBtSvc.dll 2016-01-28 15:09:35 9797BB52F1943B78CD245B41AE833E1F 653312 ----a-w- C:\Windows\SysWOW64\rasapi32.dll 2016-01-28 15:09:34 A60B02C7D70EEBF8E362BA5C06339177 366224 ----a-w- C:\Windows\SysWOW64\AUDIOKSE.dll 2016-01-28 15:09:23 DBE39E4BDCC3D8F49A2B0277652120D0 41984 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2016-01-28 15:09:23 CF17C8CA575EC10ACDE1671CDED01B73 17408 ----a-w- C:\Windows\SysWOW64\rasautou.exe 2016-01-28 15:09:23 B7B67257F01B0B814066F245DAD34367 93696 ----a-w- C:\Windows\SysWOW64\winbio.dll 2016-01-28 15:09:23 96D60277EF8CB48BD3D920298C9D7F83 11776 ----a-w- C:\Windows\SysWOW64\rastlsext.dll 2016-01-28 15:09:23 650A2E42A8965FEEF24105EF3D19780B 510976 ----a-w- C:\Windows\SysWOW64\wlidcli.dll 2016-01-28 15:09:23 5A414B58FE411CC4F3F84CE0ABDB68F3 133632 ----a-w- C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2016-01-28 15:09:23 4A2AD2C3B186FFE8EFE4DC7AB492F73E 79360 ----a-w- C:\Windows\SysWOW64\winhttpcom.dll 2016-01-28 15:09:23 27C3814755F5078A06B3B95CC6BAD111 13312 ----a-w- C:\Windows\SysWOW64\rasadhlp.dll 2016-01-23 07:58:03 6CE5AB83E582CAF3A95C088DEDFBA41B 421888 ----a-w- C:\Windows\SysWOW64\lame_enc.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2016-01-28 15:10:12 E74825BF1F94A7B360FBF5CBE1FE7517 8728920 ----a-w- C:\Windows\Sysnative\Windows.Media.Protection.PlayReady.dll 2016-01-28 15:10:10 70FC5A0F409D67604BA3B77E58876F47 22394368 ----a-w- C:\Windows\Sysnative\edgehtml.dll 2016-01-28 15:10:08 2B5C192D5E93E7001B6926CCD111C6CB 24602624 ----a-w- C:\Windows\Sysnative\mshtml.dll 2016-01-28 15:10:04 4F0263646FF401695E0C14FE81D3E6A5 16986112 ----a-w- C:\Windows\Sysnative\Windows.UI.Xaml.dll 2016-01-28 15:10:03 ECD20531C75F820FA1B8EC8A975C65AC 11545088 ----a-w- C:\Windows\Sysnative\twinui.dll 2016-01-28 15:10:03 595E6DA6C8E15CD9FE625306F9B7E482 6600904 ----a-w- C:\Windows\Sysnative\windows.storage.dll 2016-01-28 15:10:02 A28210DEA1085BC5B7A5D90A10C2FD8B 13382656 ----a-w- C:\Windows\Sysnative\ieframe.dll 2016-01-28 15:09:52 C8B7EB447B14D73E851C22AEB7A48000 22572624 ----a-w- C:\Windows\Sysnative\shell32.dll 2016-01-28 15:09:52 186B00E5849DA43B2CEF58252105F3CE 5503488 ----a-w- C:\Windows\Sysnative\d2d1.dll 2016-01-28 15:09:51 3FDFB93023689FBA65741B9D92C2D75A 7979008 ----a-w- C:\Windows\Sysnative\mos.dll 2016-01-28 15:09:48 AB55C7400D8B5B79E299EA54BB3514A4 1946624 ----a-w- C:\Windows\Sysnative\dwmcore.dll 2016-01-28 15:09:48 2D6128490CEBAC2499DA97B992E919DC 1053696 ----a-w- C:\Windows\Sysnative\audiosrv.dll 2016-01-28 15:09:48 0B5BE1B40B2F4FA7B85752CA93819681 2624512 ----a-w- C:\Windows\Sysnative\InputService.dll 2016-01-28 15:09:47 F202F182FF6046869E2995DF333C5B2A 7199232 ----a-w- C:\Windows\Sysnative\BingMaps.dll 2016-01-28 15:09:47 80AD89A1EF678960E13D977EF8C047A9 1750440 ----a-w- C:\Windows\Sysnative\WpcMon.exe 2016-01-28 15:09:45 FFD04E8263FC9CDB89BAD8C27C337223 794112 ----a-w- C:\Windows\Sysnative\winhttp.dll 2016-01-28 15:09:45 E48BBF1363F843E030757EC190DD33E6 2057216 ----a-w- C:\Windows\Sysnative\wlidsvc.dll 2016-01-28 15:09:45 BA4DB0DDCF88E0D609E085130773A034 2597888 ----a-w- C:\Windows\Sysnative\NetworkMobileSettings.dll 2016-01-28 15:09:45 6BB898FE9AE437C3D9D1F4920B92B1C3 1500672 ----a-w- C:\Windows\Sysnative\RecoveryDrive.exe 2016-01-28 15:09:44 FFE45E6684CD1628AC6ED60E3717ACA8 536256 ----a-w- C:\Windows\Sysnative\AudioSes.dll 2016-01-28 15:09:44 F232BE986A85BA857E7C5FDBEFC71653 1415200 ----a-w- C:\Windows\Sysnative\msctf.dll 2016-01-28 15:09:44 C42C500565DED5DEE31EF8A2A69F4DFF 1173344 ----a-w- C:\Windows\Sysnative\aeinv.dll 2016-01-28 15:09:43 BDAC897CF7F20BE4E858CC44A99D8A3C 848160 ----a-w- C:\Windows\Sysnative\mfsvr.dll 2016-01-28 15:09:43 A1A4838C326E1C33AACAD537E84880D3 851456 ----a-w- C:\Windows\Sysnative\MapsStore.dll 2016-01-28 15:09:42 844EB2280A13842B9919DCD0113F5487 343552 ----a-w- C:\Windows\Sysnative\SensorsApi.dll 2016-01-28 15:09:42 537DD2C51094543CE389A48341F2E00B 1318912 ----a-w- C:\Windows\Sysnative\wifinetworkmanager.dll 2016-01-28 15:09:42 30A512F0E1F1F58938758CD33D69680E 590848 ----a-w- C:\Windows\Sysnative\SmsRouterSvc.dll 2016-01-28 15:09:42 0307E9C189E8FD376109265BAD5E3475 784384 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2016-01-28 15:09:41 9C17CF2D05F8DA5AC66880B6BEE64E7D 190464 ----a-w- C:\Windows\Sysnative\wscsvc.dll 2016-01-28 15:09:41 72534830694CCABA9A5CBA33F9771C63 260608 ----a-w- C:\Windows\Sysnative\MTFServer.dll 2016-01-28 15:09:41 3A0DBC71CBA845AB06A68DBAA1C66CA7 369912 ----a-w- C:\Windows\Sysnative\audiodg.exe 2016-01-28 15:09:41 2EC83C9326B6731398674C0C0CB1636F 1674240 ----a-w- C:\Windows\Sysnative\quartz.dll 2016-01-28 15:09:41 285D92DAC2C93818615C70A5719DD1F8 440320 ----a-w- C:\Windows\Sysnative\CredProvDataModel.dll 2016-01-28 15:09:40 BF53DA0A9C4BC6A0D8DCF529154DBF74 538632 ----a-w- C:\Windows\Sysnative\WWanAPI.dll 2016-01-28 15:09:40 642EFABF900374FA85639D83B5533AFD 621568 ----a-w- C:\Windows\Sysnative\wbiosrvc.dll 2016-01-28 15:09:40 140201A765860592F320B6AD6AA35155 235008 ----a-w- C:\Windows\Sysnative\MTF.dll 2016-01-28 15:09:39 FEF120F66B71871C35DDC154C43EAD86 617984 ----a-w- C:\Windows\Sysnative\StorSvc.dll 2016-01-28 15:09:39 8E3B324D6479A63B6F23D663307D53A1 477696 ----a-w- C:\Windows\Sysnative\srcore.dll 2016-01-28 15:09:39 777F439F1E5989777805647F1684529D 2127360 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2016-01-28 15:09:38 467F2BD2CC73E322839B3AED763BA2DC 193024 ----a-w- C:\Windows\Sysnative\SimCfg.dll 2016-01-28 15:09:38 446E107CFCFECA7EF4A79414E882D8C8 574976 ----a-w- C:\Windows\Sysnative\Windows.Networking.UX.EapRequestHandler.dll 2016-01-28 15:09:37 A84812FE1FC4EAE9BBD816A2AEE4830D 383488 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2016-01-28 15:09:37 85EB31A46D618AC52726253A32539082 221696 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2016-01-28 15:09:37 7E1AE9B225DEA8A142BAE7AFFC2A78F5 160768 ----a-w- C:\Windows\Sysnative\SimAuth.dll 2016-01-28 15:09:37 79F73D66F612FE53C8E5E607FCDCFAB1 884736 ----a-w- C:\Windows\Sysnative\rasdlg.dll 2016-01-28 15:09:37 6FF8248F3A9D69A095C7F3F42BC29CB2 440152 ----a-w- C:\Windows\Sysnative\services.exe 2016-01-28 15:09:37 50FED971D0FAD2B990C0A05735761D62 733184 ----a-w- C:\Windows\Sysnative\rasapi32.dll 2016-01-28 15:09:37 4776D4D2D41F99CF9938A410E38FAFE3 73728 ----a-w- C:\Windows\Sysnative\SMSRouter.dll 2016-01-28 15:09:37 158D628D1073D42429CB25A6F47DAE17 275456 ----a-w- C:\Windows\Sysnative\AudioEndpointBuilder.dll 2016-01-28 15:09:36 F2E3456FD405F9BEACA0B8CF2BBDF0DE 202472 ----a-w- C:\Windows\Sysnative\wscapi.dll 2016-01-28 15:09:36 B3354E631DE8174E0C38EBEB024980CA 638464 ----a-w- C:\Windows\Sysnative\enterprisecsps.dll 2016-01-28 15:09:35 AFFD518026BA3F904589961003B65BB2 408120 ----a-w- C:\Windows\Sysnative\AUDIOKSE.dll 2016-01-28 15:09:35 6B058785608DAB0D191575E12A45201D 406528 ----a-w- C:\Windows\Sysnative\MusUpdateHandlers.dll 2016-01-28 15:09:35 4BCE40BC42A874A57B0E1B3E0FED0ABA 475648 ----a-w- C:\Windows\Sysnative\DDDS.dll 2016-01-28 15:09:34 D754BB9E00B5D305617461E9C3CB6057 120320 ----a-w- C:\Windows\Sysnative\MapsBtSvc.dll 2016-01-28 15:09:34 D229D73154CD66884BEAD67393ABE5C7 726528 ----a-w- C:\Windows\Sysnative\wlidcli.dll 2016-01-28 15:09:34 4BB6D13AB95409AB66C8D1F1D847D4A1 274944 ----a-w- C:\Windows\Sysnative\DisplayManager.dll 2016-01-28 15:09:34 32276D1150EB30B798BE24EB0946A9B3 457728 ----a-w- C:\Windows\Sysnative\ipnathlp.dll 2016-01-28 15:09:33 CC1005B7209B407EAB23ABDDC2DAD926 3593216 ----a-w- C:\Windows\Sysnative\win32kfull.sys 2016-01-28 15:09:32 5058E240BBD22D66CE29D9C3279C8A91 610816 ----a-w- C:\Windows\Sysnative\rastls.dll 2016-01-28 15:09:29 3FAD094B789D7D8C130D474A8FD479D6 785088 ----a-w- C:\Windows\Sysnative\evr.dll 2016-01-28 15:09:25 44AEBB28BE7A26F5A4068337208B183B 713568 ----a-w- C:\Windows\Sysnative\invagent.dll 2016-01-28 15:09:24 F93E9FA2A54843D6EC529E4754F12946 166400 ----a-w- C:\Windows\Sysnative\MusNotification.exe 2016-01-28 15:09:24 54C5C6E962A873A1D05394DFF553FD18 149504 ----a-w- C:\Windows\Sysnative\FilterDS.dll 2016-01-28 15:09:24 18DF88220B196D0D45644BC2730D6757 55296 ----a-w- C:\Windows\Sysnative\MusNotificationUx.exe 2016-01-28 15:09:24 0EF46CAA4154B54F75E6A52D4B47CFF6 513888 ----a-w- C:\Windows\Sysnative\devinv.dll 2016-01-28 15:09:23 F6D1F548315E07F98B6294940CCBE7FB 97280 ----a-w- C:\Windows\Sysnative\winhttpcom.dll 2016-01-28 15:09:23 F0BA42C8EB6ADB733E35D2EC7714408F 49152 ----a-w- C:\Windows\Sysnative\pcaui.exe 2016-01-28 15:09:23 D60BA4C76D194472D6602FF3D2D51ADE 106496 ----a-w- C:\Windows\Sysnative\rasauto.dll 2016-01-28 15:09:23 9CEBBE3FB11718F2B2B2086102711C2E 19456 ----a-w- C:\Windows\Sysnative\rasautou.exe 2016-01-28 15:09:23 52B49D01CE8F8EEC3D557D2CCD46548B 17408 ----a-w- C:\Windows\Sysnative\rasadhlp.dll 2016-01-28 15:09:23 4F83D9D2478E3421BFA7B7F13FAD614B 130560 ----a-w- C:\Windows\Sysnative\winbio.dll 2016-01-28 15:09:23 4E94E9C26B5CBA895D3F562A3F2F2017 1087488 ----a-w- C:\Windows\Sysnative\reseteng.dll 2016-01-28 15:09:23 4A8EBDA840908BE9E41E845BA71A3BA9 175616 ----a-w- C:\Windows\Sysnative\Windows.UI.Core.TextInput.dll 2016-01-28 15:09:23 266B9C1CC212C255ED61CB13CE3A98A4 13824 ----a-w- C:\Windows\Sysnative\sscoreext.dll 2016-01-28 15:09:23 096671DD1AA23C708FC4493C41D5DB82 13824 ----a-w- C:\Windows\Sysnative\rastlsext.dll 2016-01-23 07:58:02 FE56E75EE96E88D40EAE731C1C3A7C02 628224 ----a-w- C:\Windows\Sysnative\lame_enc.dll ====== C:\Windows\Sysnative\drivers ===== 2016-01-28 15:09:46 DEE20E660C079BDAB5B7533826F99FA8 1998168 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2016-01-28 15:09:41 318E816717431D3C23DC82779900C744 1089880 ----a-w- C:\Windows\Sysnative\drivers\http.sys 2016-01-28 15:09:39 38D6C7E380DB8EE2B3560A678EE85253 576864 ----a-w- C:\Windows\Sysnative\drivers\dxgmms2.sys 2016-01-28 15:09:23 F259A45D6B555B14CC8365AA6BC8DC20 67072 ----a-w- C:\Windows\Sysnative\drivers\usbser.sys 2016-01-08 16:28:42 85ED16A3FEC14DADEE42938FEA34BF8E 34512 ------w- C:\Windows\Sysnative\drivers\stdriverx64.sys 2016-01-07 16:50:00 64AEB5790901EA8854884981F104CAA6 18960 ----a-w- C:\Windows\Sysnative\drivers\LNonPnP.sys 2016-01-05 18:12:32 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf 2016-01-04 09:58:02 EFEFC245B884B1BE0401931398DCD707 2152800 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2016-01-04 09:57:51 70148EFA9A562E7185B75BBE7D376BF7 578912 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2016-01-04 09:57:50 DBBACE77DDE8CCFD85B37B114965C385 147968 ----a-w- C:\Windows\Sysnative\drivers\rmcast.sys 2016-01-04 09:57:50 91D3F2A6253EF83EFBD7903028F58C4D 118624 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys 2016-01-04 09:57:48 DE6D7DC78D956928F59F7415A0F41E13 95072 ----a-w- C:\Windows\Sysnative\drivers\sdstor.sys 2016-01-04 09:57:47 C24C27FDF93B85A4EFCF25F830253AA2 117248 ----a-w- C:\Windows\Sysnative\drivers\capimg.sys 2016-01-04 09:57:47 80977779A19947939D680A4899E829EC 604928 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2016-01-04 09:57:45 EF536C54AB9281FDC4E83B07279FCFC4 35680 ----a-w- C:\Windows\Sysnative\drivers\wimmount.sys 2016-01-04 09:57:45 7D8B9214692C4D0F1646215D9984E19A 161632 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys ====== C:\Windows\Tasks ====== 2016-01-08 16:24:07 -------- d-----w- C:\Windows\Sysnative\Tasks\NCH Software 2016-01-05 16:25:40 9E56D90F5511FAA8005306CFE31D6458 1086 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-05 16:25:40 5E1A2C0E9A1BCE203DC92CEF3C0C7D83 4148 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2016-01-05 16:25:40 5CA9A81F296FCAA5BE58F6D34715F43E 1090 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-05 16:25:40 17937EE023D78981539D9366829918C5 3916 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2016-01-04 14:07:23 3A62AAAF382D0974E7B94BFD58E6C7FE 3972 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Acrobat Update Task ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-01-31 09:14:52 -------- d-----w- C:\Program Files\trend micro 2016-01-09 19:01:10 -------- d---a-w- C:\Program Files\WinRAR 2016-01-09 18:32:45 -------- d-----w- C:\Program Files\Adobe 2016-01-09 18:31:06 -------- d-----w- C:\Program Files\Common Files\Adobe 2016-01-09 15:08:10 -------- d-----w- C:\Program Files\HP 2016-01-08 15:26:53 -------- d-----w- C:\Program Files\FileZilla FTP Client 2016-01-07 16:49:35 -------- d-----w- C:\Program Files\Logitech 2016-01-07 16:49:02 -------- d-----w- C:\Program Files\Common Files\Logishrd 2016-01-05 15:42:27 -------- d-----w- C:\Program Files\Microsoft Office 2016-01-04 09:54:05 -------- d---a-w- C:\Program Files\ATI Technologies 2016-01-04 09:53:11 -------- d-----w- C:\Program Files\Common Files\ATI Technologies 2016-01-04 09:53:07 -------- d-----w- C:\Program Files\AMD 2016-01-04 09:40:57 -------- d--h--w- C:\Program Files\Uninstall Information ======= C:\PROGRA~2 ===== 2016-01-23 08:50:34 -------- d-----w- C:\PROGRA~2\AIMP2 Tools 2016-01-10 16:45:19 -------- d-----w- C:\PROGRA~2\GemistDownloader 2016-01-09 15:44:15 -------- d---a-w- C:\PROGRA~2\Audacity 2016-01-09 15:08:11 -------- d-----w- C:\PROGRA~2\HP 2016-01-09 14:57:53 -------- d---a-w- C:\PROGRA~2\TeamViewer 2016-01-06 18:06:27 -------- d-----w- C:\PROGRA~2\Jingle Palette 2016-01-06 16:57:56 -------- d---a-w- C:\PROGRA~2\COMMON~1\DESIGNER 2016-01-06 16:21:31 -------- d-----w- C:\PROGRA~2\FTP Commander 2016-01-06 15:41:23 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine 2016-01-06 15:41:19 -------- d-----w- C:\PROGRA~2\Winamp 2016-01-05 16:25:38 -------- d-----w- C:\PROGRA~2\Google 2016-01-05 15:45:36 -------- d-----w- C:\PROGRA~2\Microsoft Works 2016-01-05 15:45:31 -------- d---a-w- C:\PROGRA~2\MSBuild 2016-01-05 15:45:24 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 2016-01-05 15:41:51 -------- d---a-w- C:\PROGRA~2\Microsoft Office 2016-01-04 14:07:07 -------- d---a-w- C:\PROGRA~2\COMMON~1\Adobe 2016-01-04 14:07:07 -------- d---a-w- C:\PROGRA~2\Adobe 2016-01-04 09:56:14 -------- d---a-w- C:\PROGRA~2\LogMeIn Rescue Calling Card 2016-01-04 09:53:42 -------- d---a-w- C:\PROGRA~2\ATI Technologies ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2016-01-12 18:05:10 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\LocalLow 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-10 16:45:21 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader 2016-01-09 19:02:50 -------- d-----w- C:\Users\Gebruiker\AppData\Local\AMD 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:01:15 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 19:00:14 -------- d-----w- C:\Users\Gebruiker\AppData\Local\ElevatedDiagnostics 2016-01-09 19:00:02 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Diagnostics 2016-01-09 15:44:05 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Programs 2016-01-09 15:05:58 -------- d-----w- C:\Users\Gebruiker\AppData\Local\HP 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-08 15:26:56 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2016-01-07 16:09:41 -------- d-----w- C:\Users\Gebruiker\AppData\Local\CEF 2016-01-07 16:09:35 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Adobe 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-06 16:21:37 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTP Commander 2016-01-05 18:47:55 888863D27DDBC95FECED6C1B2D6E55E2 90040 ----a-w- C:\Users\Anja\AppData\Local\GDIPFONTCACHEV1.DAT 2016-01-05 18:42:34 -------- d-----w- C:\Users\Anja\AppData\Local\Comms 2016-01-05 18:40:31 -------- d-----w- C:\Users\Anja\AppData\Local\Google 2016-01-05 17:02:31 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2016-01-05 17:02:31 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help 2016-01-05 16:25:35 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Google 2016-01-05 16:11:16 90766FBA663C8115420740A4791BA20A 90040 ----a-w- C:\Users\Gebruiker\AppData\Local\GDIPFONTCACHEV1.DAT 2016-01-05 15:41:52 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Microsoft Help 2016-01-05 10:23:42 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\DataSharing 2016-01-04 14:06:30 -------- d-----w- C:\Users\Anja\AppData\Local\Adobe 2016-01-04 14:04:22 -------- d-----w- C:\Users\Anja\AppData\Local\MicrosoftEdge 2016-01-04 14:03:42 -------- d-----w- C:\Users\Anja\AppData\Local\LogMeIn Rescue Calling Card 2016-01-04 13:56:54 -------- d-----w- C:\Users\Anja\AppData\Local\Publishers 2016-01-04 13:56:12 -------- d-----w- C:\Users\Anja\AppData\Local\Packages 2016-01-04 13:56:10 -------- d-----w- C:\Users\Anja\AppData\Local\TileDataLayer 2016-01-04 13:56:02 -------- d-----w- C:\Users\Anja\AppData\LocalLow 2016-01-04 13:56:01 -------- d-----w- C:\Users\Anja\AppData\Roaming 2016-01-04 13:56:01 -------- d-----w- C:\Users\Anja\AppData\Local\Temp 2016-01-04 13:56:01 -------- d-----w- C:\Users\Anja\AppData\Local\Microsoft 2016-01-04 13:56:01 -------- d-----w- C:\Users\Anja\AppData\Local 2016-01-04 10:07:11 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Comms 2016-01-04 09:56:17 -------- d-----w- C:\Users\Gebruiker\AppData\Local\LogMeIn Rescue Calling Card 2016-01-04 09:56:08 -------- d-s---w- C:\Windows\serviceprofiles\networkservice\AppData\LocalLow 2016-01-04 09:54:36 -------- d-----w- C:\Users\Gebruiker\AppData\Local\MicrosoftEdge 2016-01-04 09:53:16 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft 2016-01-04 09:49:25 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Publishers 2016-01-04 09:49:21 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-01-04 09:48:23 -------- d-----w- C:\Users\Gebruiker\AppData\Local\VirtualStore 2016-01-04 09:48:19 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Packages 2016-01-04 09:48:18 -------- d-----w- C:\Users\Gebruiker\AppData\Local\TileDataLayer 2016-01-04 09:48:08 -------- d-----w- C:\Users\Gebruiker\AppData\LocalLow 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-s---r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Temp 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Microsoft 2016-01-04 09:48:07 -------- d-----w- C:\Users\Gebruiker\AppData\Local 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-01-04 09:38:01 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache 2016-01-04 09:35:09 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming 2016-01-04 09:35:09 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2016-01-04 09:35:08 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming 2016-01-04 09:35:08 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2016-01-04 09:35:08 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft 2016-01-04 09:35:08 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local 2016-01-04 09:35:05 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft ====== C:\Users\Gebruiker ====== 2016-01-31 09:14:38 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64.exe 2016-01-30 18:26:04 A752F420A0920E5D7A00F9BBF5D3BF51 3286400 ----a-w- C:\Users\Gebruiker\Downloads\SpyHunter-Installer.exe 2016-01-30 18:19:41 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\ProgramData\ntuser.pol 2016-01-30 18:14:16 3D189A519F39AB0CDAFCACAB527C42DE 1507840 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner_5.031.exe 2016-01-30 18:01:31 BEFA3328252E26EB96EE40E217382C61 11477024 ----a-w- C:\Users\Gebruiker\Downloads\FreeSoundRecorder.exe 2016-01-23 08:50:10 79AD2F9ABCE65C19441E19821A943CF5 2414490 ----a-w- C:\Users\Gebruiker\Downloads\aimp_tools_2.61.583.exe 2016-01-23 07:57:28 -------- d-----w- C:\ProgramData\Logs 2016-01-23 07:57:27 -------- d-----w- C:\ProgramData\TEMP 2016-01-09 19:01:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-01-09 18:32:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6 2016-01-09 15:08:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2016-01-09 15:07:36 1F3FC538DBD05CDF51833F86EE8A51D8 57 ----a-w- C:\ProgramData\Ament.ini 2016-01-07 16:51:44 -------- d-----w- C:\Users\Public\Documents\Logishrd 2016-01-07 16:49:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2016-01-07 16:49:40 -------- d-----w- C:\ProgramData\Logishrd 2016-01-06 18:06:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jingle Palette 2016-01-06 16:46:21 -------- d-----w- C:\Users\Gebruiker\FRR 2016-01-06 15:42:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp 2016-01-05 17:26:20 -------- d---a-w- C:\ProgramData\HP 2016-01-05 15:46:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-01-05 15:41:50 -------- d-----w- C:\ProgramData\Microsoft Help 2016-01-04 14:06:56 -------- d-----w- C:\ProgramData\Adobe 2016-01-04 13:58:20 -------- d-----r- C:\Users\Anja\OneDrive 2016-01-04 13:56:15 -------- d-----r- C:\Users\Anja\Searches 2016-01-04 13:56:15 -------- d-----r- C:\Users\Anja\Contacts 2016-01-04 13:56:02 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Anja\ntuser.ini 2016-01-04 13:56:01 -------- d--h--w- C:\Users\Anja\AppData 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Videos 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Saved Games 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Pictures 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Music 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Links 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Favorites 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Downloads 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Documents 2016-01-04 13:56:01 -------- d-----r- C:\Users\Anja\Desktop 2016-01-04 13:26:06 -------- d-----w- C:\Users\Gebruiker\__MACOSX 2016-01-04 13:24:40 -------- d-----w- C:\Users\Gebruiker\Trinity 2016-01-04 13:24:40 -------- d-----w- C:\Users\Gebruiker\Telefoon 2016-01-04 13:15:30 -------- d-----w- C:\Users\Gebruiker\Mijn KPN Up 2016-01-04 13:15:24 -------- d-----w- C:\Users\Gebruiker\Flashbackfiles 2016-01-04 13:15:21 -------- d-----r- C:\Users\Gebruiker\Dropbox 2016-01-04 13:05:01 -------- d-----w- C:\Users\Gebruiker\David Mirror - Hou van het leven 2016-01-04 13:04:58 -------- d-----w- C:\Users\Gebruiker\Beltoon 2016-01-04 13:04:58 -------- d-----w- C:\Users\Gebruiker\Banners Radiospektakel 2016-01-04 09:56:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bob Computers - Hulp op afstand 2016-01-04 09:54:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2016-01-04 09:51:05 -------- d-----r- C:\Users\Gebruiker\OneDrive 2016-01-04 09:50:43 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2016-01-04 09:48:28 -------- d--h--r- C:\Users\Public\AccountPictures 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\Searches 2016-01-04 09:48:28 -------- d-----r- C:\Users\Gebruiker\Contacts 2016-01-04 09:48:08 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Gebruiker\ntuser.ini 2016-01-04 09:48:07 -------- d--h--w- C:\Users\Gebruiker\AppData 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Videos 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Saved Games 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Pictures 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Music 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Links 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Favorites 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Downloads 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Documents 2016-01-04 09:48:07 -------- d-----r- C:\Users\Gebruiker\Desktop 2016-01-04 09:40:56 -------- d-----w- C:\ProgramData\USOShared 2016-01-04 09:38:01 -------- d-----w- C:\Windows\serviceprofiles\networkservice\debug 2016-01-04 09:38:00 -------- d-----w- C:\Windows\serviceprofiles\Localservice\winhttp 2016-01-04 09:35:09 -------- d-----w- C:\Windows\serviceprofiles\Localservice\Saved Games 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Videos 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Pictures 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Music 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Links 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Favorites 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Downloads 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Documents 2016-01-04 09:35:09 -------- d-----r- C:\Windows\serviceprofiles\Localservice\Desktop 2016-01-04 09:35:08 -------- d--h--w- C:\Windows\serviceprofiles\networkservice\AppData 2016-01-04 09:35:08 -------- d-----w- C:\Windows\serviceprofiles\networkservice\Saved Games 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Videos 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Pictures 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Music 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Links 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Favorites 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Downloads 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Documents 2016-01-04 09:35:08 -------- d-----r- C:\Windows\serviceprofiles\networkservice\Desktop ====== C: exe-files == 2016-01-31 09:14:53 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Frank.exe 2016-01-31 09:14:38 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64.exe 2016-01-30 18:26:04 A752F420A0920E5D7A00F9BBF5D3BF51 3286400 ----a-w- C:\Users\Gebruiker\Downloads\SpyHunter-Installer.exe 2016-01-30 18:14:16 3D189A519F39AB0CDAFCACAB527C42DE 1507840 ----a-w- C:\Users\Gebruiker\Downloads\adwcleaner_5.031.exe 2016-01-30 18:01:32 7098F1AF0AA9E5E1DC0E7FED5D217AB7 889270 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\ICSW1.17\ICSW1.17_0F1C1P1P0A2Y1Q1L1F0E1Q1L2Z1F1C1.17.exe 2016-01-30 18:01:31 BEFA3328252E26EB96EE40E217382C61 11477024 ----a-w- C:\Users\Gebruiker\Downloads\FreeSoundRecorder.exe 2016-01-30 09:30:40 EC0FAADC62E1C1DADA953DE433BEFB01 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdateOnDemand.exe 2016-01-30 09:30:40 BA7396EF42213C0F84343C186610B851 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdateWebPlugin.exe 2016-01-30 09:30:40 AD8495335C1A605A4E0E32334DF52303 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdateBroker.exe 2016-01-30 09:30:39 AEFE289EB2D21A078DBAA1053D30EF12 927824 ----a-w- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdateSetup.exe 2016-01-30 09:30:38 88FBBB1C601A6BC42054E57C2897FA45 144200 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdate.exe 2016-01-30 09:30:38 7DC16FAEA44C8D96A1C113305A4059A2 245576 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleCrashHandler.exe 2016-01-30 09:30:38 73F542663FD48B49A798A56DAA18C136 307016 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleCrashHandler64.exe 2016-01-30 09:30:38 5424FDF3776F5458EAFAABFB87AA9285 130888 ----atw- C:\Program Files (x86)\Google\Update\1.3.29.2\GoogleUpdateComRegisterShell64.exe 2016-01-30 09:30:36 AEFE289EB2D21A078DBAA1053D30EF12 927824 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.29.2\GoogleUpdateSetup.exe 2016-01-29 16:31:03 DB8D4B390D7B6F725A41BAA41E8D66AB 6070352 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.97\48.0.2564.97_47.0.2526.111_chrome_updater_3stage.exe 2016-01-28 15:10:06 687B32B5B2A5DEFB85EA0583BA717DBE 7300464 ----a-w- C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 2016-01-28 15:09:47 80AD89A1EF678960E13D977EF8C047A9 1750440 ----a-w- C:\Windows\System32\WpcMon.exe 2016-01-28 15:09:45 6BB898FE9AE437C3D9D1F4920B92B1C3 1500672 ----a-w- C:\Windows\System32\RecoveryDrive.exe 2016-01-28 15:09:41 3A0DBC71CBA845AB06A68DBAA1C66CA7 369912 ----a-w- C:\Windows\System32\audiodg.exe 2016-01-28 15:09:37 85EB31A46D618AC52726253A32539082 221696 ----a-w- C:\Windows\System32\ie4uinit.exe 2016-01-28 15:09:37 6FF8248F3A9D69A095C7F3F42BC29CB2 440152 ----a-w- C:\Windows\System32\services.exe 2016-01-28 15:09:34 22725026F4DA5E8B132235CE9D70DAFB 343040 ----a-w- C:\Windows\System32\IME\SHARED\ImeBroker.exe 2016-01-28 15:09:33 3EE26A3CAC87E359F09E8F904741B79C 602624 ----a-w- C:\Windows\System32\IME\IMEJP\IMJPDCT.EXE 2016-01-28 15:09:24 F93E9FA2A54843D6EC529E4754F12946 166400 ----a-w- C:\Windows\System32\MusNotification.exe 2016-01-28 15:09:24 18DF88220B196D0D45644BC2730D6757 55296 ----a-w- C:\Windows\System32\MusNotificationUx.exe 2016-01-28 15:09:23 F0BA42C8EB6ADB733E35D2EC7714408F 49152 ----a-w- C:\Windows\System32\pcaui.exe 2016-01-28 15:09:23 DBE39E4BDCC3D8F49A2B0277652120D0 41984 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2016-01-28 15:09:23 CF17C8CA575EC10ACDE1671CDED01B73 17408 ----a-w- C:\Windows\SysWOW64\rasautou.exe 2016-01-28 15:09:23 9CEBBE3FB11718F2B2B2086102711C2E 19456 ----a-w- C:\Windows\System32\rasautou.exe 2016-01-28 15:09:23 69F62BD8BA07B6A9FFA5827361D88D12 138240 ----a-w- C:\Windows\System32\oobe\windeploy.exe 2016-01-28 15:09:23 5BD26C1FD29FE0A3A42141CCAF21D5B3 491520 ----a-w- C:\Windows\SysWOW64\IME\IMEJP\IMJPDCT.EXE 2016-01-27 16:33:52 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\A4BD1A73-CE73-4B4E-8FFA-6A42C68040C5\DismHost.exe === C: other files == 2016-01-28 15:09:46 DEE20E660C079BDAB5B7533826F99FA8 1998168 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2016-01-28 15:09:41 318E816717431D3C23DC82779900C744 1089880 ----a-w- C:\Windows\System32\drivers\http.sys 2016-01-28 15:09:39 38D6C7E380DB8EE2B3560A678EE85253 576864 ----a-w- C:\Windows\System32\drivers\dxgmms2.sys 2016-01-28 15:09:33 CC1005B7209B407EAB23ABDDC2DAD926 3593216 ----a-w- C:\Windows\System32\win32kfull.sys 2016-01-28 15:09:23 F259A45D6B555B14CC8365AA6BC8DC20 67072 ----a-w- C:\Windows\System32\drivers\usbser.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3215449020-1555931986-942393835-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD External Events Utility] ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05-01-2016 17:25] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05-01-2016 17:25] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F003DA68-8256-4b37-A6C4-350FA04494DF}"="C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt" [07-01-2016 17:49] ==== Chromium Look ====================== Google Docs - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi {scripts [background.js]}content_scripts:[{js:[content.js]matches:[]run_at:document_end}]content_security_policy:script-src 'self' 'unsafe-eval' https://searchknow-a.akamaihd.net https://searchknow-a.akamaihd.net https://cdn.searchitknow.com; object-src 'self'description:homepage_url:http://www.searchitknow.comicons:{48:icon.png}key:MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMPXGovgjD3JHQZ1YKKcVrXiRnCYRIC85JXeDpZfNYWA1A2vl4HW+35hsHg1ZX9eRWE5OfG0Nb3raiI6PQO8s+Ql/LyPj82Uzy/kWgDXbHxRpg5eqx1y8GEcNSKinkinmILt268PWCX9oSDL8Fo1plmn390cQGnElvfW66DO35/DrFwD0oTXyYxKUyF63ybsGuyoBxMy5ewPSr1jAYmQtr6m6Mczcmhj0uhQEPcHScQ4gZitA00dUvkr0fAIgzodYnq7GEaLrTRpM3nZuxTmPjC9ox3p8Ag1bLKTCPkCQylbyxEQKrvOebUZMexuvR8+on7mkmQfJJ/rGpctiS8ttQIDAQABmanifest_version:2name:Search Knowpermissions:[managementstoragetabswebRequestwebRequestBlockingwebNavigation]update_url:http://cdn.searchitknow.com/updateversion:1.0.5870.30153} - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbbiibiicmcbofhnegjmddbppaffnfml Chrome Web Store Payments - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Slides - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo selector is not a valid CSS selector - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Logitech Smooth Scrolling - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk Google Sheets - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage-journal deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbbiibiicmcbofhnegjmddbppaffnfml deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbbiibiicmcbofhnegjmddbppaffnfml_0.localstorage deleted successfully C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kbbiibiicmcbofhnegjmddbppaffnfml deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [OneDrive] "C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Startup: Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Anja\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Anja\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Anja\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=34 folders=19 14702641 bytes) ==== Empty Temp Folders ====================== C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 31-01-2016 at 11:04:02,43 ======================