
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Tommy on ma 25/04/2016 at 14:21:35,33.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tommy\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2016-04-25-071431.log	59868 bytes
C:\zoek-results2016-04-25-121714.log	74640 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

Adobe Acrobat XI Pro  
Adobe Flash Player 11 ActiveX  
Adobe Flash Player 21 NPAPI  
Adobe Refresh Manager  
AMD APP SDK Runtime  
AMD Catalyst Install Manager  
Apple Application Support (64-bit)  
Apple Mobile Device Support  
Apple Software Update  
AVG  
AVG 2016  
AVG PC TuneUp 2015  
AVG PC TuneUp 2015 (nl-NL)  
AVG Protection  
Belgium e-ID middleware 4.1.5 (build 1639)  
Bonjour  
Catalyst Control Center - Branding  
Catalyst Control Center  
Catalyst Control Center Graphics Previews Common  
Catalyst Control Center InstallProxy  
Catalyst Control Center Localization All  
Catalyst Control Center Profiles Desktop  
CBack  
ccc-utility64  
CCC Help Chinese Standard  
CCC Help Chinese Traditional  
CCC Help Czech  
CCC Help Danish  
CCC Help Dutch  
CCC Help English  
CCC Help Finnish  
CCC Help French  
CCC Help German  
CCC Help Greek  
CCC Help Hungarian  
CCC Help Italian  
CCC Help Japanese  
CCC Help Korean  
CCC Help Norwegian  
CCC Help Polish  
CCC Help Portuguese  
CCC Help Russian  
CCC Help Spanish  
CCC Help Swedish  
CCC Help Thai  
CCC Help Turkish  
CCleaner  
Custom  
D3DX10  
Dell Backup and Recovery Manager  
Dell Client System Update  
Dell Data Protection | Access  
Dell Digital Delivery  
Dell Edoc Viewer  
DellAccess  
EMBASSY Client Core  
ERAS Connector  
FMW 1  
GameSpy Arcade  
Garmin BaseCamp  
Garmin USB Drivers  
Gemalto  
GemPcCCID  
Google Analytics Opt-out Browser Add-on  
Google Earth  
Google Update Helper  
HP FWUpdateEDO2  
HP Officejet Pro 8600 Basissoftware van het apparaat  
HP Update  
I.R.I.S. OCR  
Intel(R) Control Center  
Intel(R) Management Engine Components  
Intel(R) Network Connections 17.2.154.0  
Intel(R) Rapid Storage Technology  
Intel(R) USB 3.0 eXtensible Host Controller Driver  
Intel® Trusted Connect Service Client  
IrfanView (remove only)  
iTunes  
Java 8 Update 91  
Java Auto Updater  
Junk Mail filter update  
KBC-beveiligingscomponenten  
KONICA MINOLTA C3850 Series Scanner  
Malwarebytes Anti-Malware versie 2.1.6.1022  
Microsoft .NET Framework 4.6.1  
Microsoft .NET Framework 4.6.1 (Nederlands)  
Microsoft .NET Framework 4.6.1 (NLD)  
Microsoft Application Error Reporting  
Microsoft Office 2013 voor Thuisgebruik en Zelfstandigen - nl-nl  
Microsoft Office Access Runtime (English) 2007  
Microsoft Rise Of Nations  
Microsoft Silverlight  
Microsoft SQL Server 2005 Compact Edition [ENU]  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD  
Movie Maker  
Mozilla Firefox 45.0.2 (x86 nl)  
Mozilla Maintenance Service  
MSVCRT  
MSVCRT_amd64  
MSVCRT110  
MSVCRT110_amd64  
MSXML 4.0 SP2 (KB954430)  
MSXML 4.0 SP2 (KB973688)  
MSXML4 Parser  
Office 15 Click-to-Run Extensibility Component  
Office 15 Click-to-Run Licensing Component  
Office 15 Click-to-Run Localization Component  
PBA Driver  
Photo Common  
Photo Gallery  
Picasa 3  
Preboot Manager  
Private Information Manager  
QuickTime 7  
Rapport  
Realtek High Definition Audio Driver  
Recuva  
Redist CRXI  
Redist MFC  
Revo Uninstaller Pro 3.0.5  
Security Update for Microsoft .NET Framework 4.6.1 (KB3122661)  
Security Update for Microsoft .NET Framework 4.6.1 (KB3127233)  
Security Update for Microsoft .NET Framework 4.6.1 (KB3136000)  
Security Update for Microsoft .NET Framework 4.6.1 (KB3143693)  
Shared C Run-time for x64  
SI TSS  
SPBA (WBF) 5.9  
Stuurprogrammapakket voor Windows - Fedict SmartCard  (08/08/2015 4.1.5)  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD  
TeamViewer 11  
toolkit32for64bit  
Trusted Drive Manager  
Trusteer Eindpuntbeveiliging  
Ultimate Windows Customizer  
Visual Studio 2012 x64 Redistributables  
Visual Studio 2012 x86 Redistributables  
VLC media player  
Wave Crypto Runtime 2.0.9.0 x64  
Wave Crypto Runtime 2.0.9.0 x86  
Wave Infrastructure Installer  
Wave Support Software Installer  
Webclient voor Terminal Services  
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0)  
Windows Live Communications Platform  
Windows Live Essentials  
Windows Live Family Safety  
Windows Live ID Sign-in Assistant  
Windows Live Installer  
Windows Live Mail  
Windows Live MIME IFilter  
Windows Live Photo Common  
Windows Live PIMT Platform  
Windows Live SOXE  
Windows Live SOXE Definitions  
Windows Live UX Platform  
Windows Live UX Platform Language Pack  
Windows Live Writer  
Windows Live Writer Resources  
WinRAR 5.20 beta 4 (64-bit)  

==== Running Processes ======================

C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files (x86)\CBack\OpenAccess.exe
C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Tommy\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Popsy\Bin\Popsy.exe
C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE

==== Deleting Services ======================


==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"Ad-Aware Browsing Protection"=- 

==== Deleting Files \ Folders ======================

C:\ProgramData\Ad-Aware Browsing Protection not found
C:\Program Files (x86)\AVG\AVG PC TuneUp not found
C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\67yq8t0v.default\jetpack deleted

==== System Specs ======================

Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8147 MB
CPU Info: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
CPU Speed: 3416,0 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Display Adapters: AMD Radeon HD 7570 | AMD Radeon HD 7570 | AMD Radeon HD 7570 | AMD Radeon HD 7570 | AMD Radeon HD 7570 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Intel(R) 82579LM Gigabit Network Connection
CD / DVD Drives: 1x (F: | ) F: PLDS    DVD+-RW DS-8A9SH
Ports: COM3 | COM1 LPT Port NOT Present. 
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C:  459,6GB | D:  931,5GB | E:  459,6GB
Hard Disks - Free: C:  385,4GB | D:  732,0GB | E:  440,4GB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 06/11/13 | DELL   - 1072009
Time Zone: Romance (standaardtijd)
Motherboard *: Dell Inc. 00F82W
Country: België 
Language: NLB 

==== System Specs (Software) ======================

AV: AVG Internet Security *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security *Disabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
Default Browser: Firefox	45.0.2
Internet Explorer Version: 10.0.9200.17609 
Mozilla Firefox version: 45.0.2 (x86 nl)
Sun Java version: 1.8.0_91 (32-bit) 
Sun Java version: 1.8.0_91 (64-bit) 
Flash Player version: 21.0.0.213

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-04-21 12:37:15	BBDDF7A8378EC7E6DBCF84E6B0E85013	669134506	----a-w-	C:\Windows\MEMORY.DMP
====== C:\Users\Tommy\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2016-04-20 12:20:07	CB52DEF1B1E1B9950F29548F2F19115A	316416	----a-w-	C:\Windows\SysWOW64\webio.dll
2016-04-20 12:20:07	9AEA39620AAC682DA4A57BC415B827DA	351744	----a-w-	C:\Windows\SysWOW64\winhttp.dll
2016-04-20 12:20:06	1F1D2BEAB6295511F5FF121ADDC1FF28	216064	----a-w-	C:\Windows\SysWOW64\InkEd.dll
2016-04-14 07:12:58	F223A5227F470689FE68D395702A1611	513536	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2016-04-14 07:12:58	B251316D0F18475165F0DA642639B6A0	39424	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2016-04-14 07:12:58	A37C4BBAD6560E05925CBC13E3EE0338	361984	----a-w-	C:\Windows\SysWOW64\html.iec
2016-04-14 07:12:58	94A49A17F47437E8001EF477C043DD7C	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2016-04-14 07:12:58	3D397E7396A62373F1A58BCD7DFAA85E	1181696	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2016-04-14 07:12:58	177677FCBF9A8EAF45269700EF2BBFCF	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2016-04-14 07:12:58	16E34EF276FCD41C6915F7ABD04BA339	226816	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2016-04-14 07:12:57	B43665AF3E8BD860F76C0C276E5AEF62	163840	----a-w-	C:\Windows\SysWOW64\msrating.dll
2016-04-14 07:12:57	AA06FD17BECC59692DFBDB1F9A1AFC48	1441280	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2016-04-14 07:12:57	8300A948EB724DC55770D9F53C3A7F81	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2016-04-14 07:12:57	250B9CCAA16095D59414E5709FBB75D7	1763328	----a-w-	C:\Windows\SysWOW64\wininet.dll
2016-04-14 07:12:56	FE352737DFA30BEE7AA917984D7F8F14	357888	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2016-04-14 07:12:56	F5A1539D8709561F21503DFD88A6CF54	2057216	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2016-04-14 07:12:56	D6418058D7918E97EBE47A674F87EE39	391168	----a-w-	C:\Windows\SysWOW64\ieui.dll
2016-04-14 07:12:56	CB0B05B9FE3CD985A1D351E7012C061E	715776	----a-w-	C:\Windows\SysWOW64\jscript.dll
2016-04-14 07:12:56	780D74CF84CB03C54B4CF7E788736CCA	13723648	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2016-04-14 07:12:56	49FB7F98D5212CABD17A86FF17C0FD6B	80384	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2016-04-14 07:12:56	2822405990669D129297DE87CCD8AA37	2793984	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2016-04-14 07:12:56	258B833211A3194A95F4CE5DE20D6E0F	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2016-04-14 07:12:55	E1199EFC723E0959C9B58515619C06FB	14269440	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2016-04-14 07:12:54	2828157305F466F14DDAFB64878B508B	226816	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2016-04-14 07:12:52	D88C057AE03DBC563D558C538E47ECB2	719360	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2016-04-14 07:12:49	EB022B02FE3ADF07F872A0EBF11FE8FA	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2016-04-14 07:12:49	79ACFDF8E41D187BBB2CC5A33CB25B1A	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-04-13 09:26:59	C225E5307D8D4982A1687F2702C37C78	158720	----a-w-	C:\Windows\SysWOW64\msls31.dll
2016-04-13 09:26:59	338520304B99471BD0ED121954FE7863	82432	----a-w-	C:\Windows\SysWOW64\inseng.dll
2016-04-13 09:26:59	0402BFC25AB49E02256BC24E32829773	185344	----a-w-	C:\Windows\SysWOW64\elshyph.dll
2016-04-13 09:26:58	E14A07B768EC49D382CABCE2F078D576	232960	----a-w-	C:\Windows\SysWOW64\url.dll
2016-04-13 09:26:58	DA7254F14B2C4522FDEBCC738747B7FC	137216	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2016-04-13 09:26:58	B96C13B5C85AC4240FE95DE115945D59	38400	----a-w-	C:\Windows\SysWOW64\imgutil.dll
2016-04-13 09:26:58	A7E8E3A9F92D9B0D495F636A1D282883	48640	----a-w-	C:\Windows\SysWOW64\mshtmler.dll
2016-04-13 09:26:58	9DF7A7C74D8632CB5EBD37E3A374825E	204800	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2016-04-13 09:26:58	8C3D32A4A46326031309A43C52539D7F	1400416	----a-w-	C:\Windows\SysWOW64\ieapfltr.dat
2016-04-13 09:26:58	8A45166CD9874463AB76B552C9C2D3AD	110592	----a-w-	C:\Windows\SysWOW64\IEAdvpack.dll
2016-04-13 09:26:58	828B4A41BE891A7AEC07E693422B4A3A	117248	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2016-04-13 09:26:58	81C4D657D37C3A5418B54BFECE821B84	57344	----a-w-	C:\Windows\SysWOW64\pngfilt.dll
2016-04-13 09:26:58	80B47F0F45C3EBF41C30E0BA367D25D3	125440	----a-w-	C:\Windows\SysWOW64\occache.dll
2016-04-13 09:26:58	6DF2C6438CFF6EFCBBB88AEE01795501	73728	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-04-13 09:26:58	56E51C26745FF7413514EA4DDF33BC6C	11776	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2016-04-13 09:26:58	52A7D73D5570F757D865DDECD087FB41	138752	----a-w-	C:\Windows\SysWOW64\wextract.exe
2016-04-13 09:26:58	414A3D9AAE072CDEFE0B64C2EBEE18D2	61952	----a-w-	C:\Windows\SysWOW64\tdc.ocx
2016-04-13 09:26:58	3AB2A38F7EA9E62D176A78FB58761E24	12800	----a-w-	C:\Windows\SysWOW64\mshta.exe
2016-04-13 09:26:58	2D7A29C35D0894481A69FA3AC45F18F0	41984	----a-w-	C:\Windows\SysWOW64\msfeedsbs.dll
2016-04-13 09:26:58	0F44172A5B34E8F208CD0F209EDD4A73	629248	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2016-04-13 09:26:58	038F76279EC64878A072D988DE13C7B2	150528	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2016-04-13 09:26:57	F0D4AE074D9BC0741DC6E91C741F2F8C	23040	----a-w-	C:\Windows\SysWOW64\licmgr10.dll
2016-04-13 09:26:57	932571EFF79B93F94E84ADF4989A277F	69120	----a-w-	C:\Windows\SysWOW64\icardie.dll
2016-04-13 09:26:57	1FF56AC32B38A94C3C88497BD6E00C96	25185	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2016-04-13 07:45:14	AF0EC95144F76EA4B40A7ED1DD34616C	856064	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2016-04-13 07:45:14	A27593907607A692D0DE105DE29BBC33	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2016-04-13 07:45:14	90E480789256D852FA3EADD39D56FDDA	6131200	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2016-04-13 07:44:59	C86AFCDD4584CFDF7B57335FEC7546E4	111616	----a-w-	C:\Windows\SysWOW64\mtxoci.dll
2016-04-13 07:44:59	936AF75B1A7A663C24F999029A84142C	176128	----a-w-	C:\Windows\SysWOW64\msorcl32.dll
2016-04-13 07:44:55	D25FCA441C69C3E6E78DE1BBCBF97BBC	2048	----a-w-	C:\Windows\SysWOW64\msxml3r.dll
2016-04-13 07:44:55	8007E4C5C9B40FB30F816F6E74284DF1	1240576	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2016-04-13 07:44:53	F1CA4530A435A6741346A1ECF3FE10E9	3943144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2016-04-13 07:44:53	E518B37F8C82A4320732352E4DA9BF41	1414144	----a-w-	C:\Windows\SysWOW64\ole32.dll
2016-04-13 07:44:53	B52C499A81A73E8F74938ACA42734331	275456	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2016-04-13 07:44:53	9F55E7A647A793A4D8C89A32B9543799	644096	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2016-04-13 07:44:53	6B69810EDAEBBC68B205F5BBFD625E84	553984	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2016-04-13 07:44:53	5C47821CC760ED48EA66A28465BD35E4	3998952	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2016-04-13 07:44:53	40A0F37C85DFA5D6E963FFD496439661	1314112	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2016-04-13 07:44:53	405B50ED43C2D73B32056168494DEA24	666112	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2016-04-13 07:44:53	2347F9D5227F8751527C0AA0CDBA7375	342528	----a-w-	C:\Windows\SysWOW64\certcli.dll
2016-04-13 07:44:53	19E838D8DD2CB5576707259C8281EA78	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2016-04-13 07:44:52	F7DF39F60CCB70AD4551BAC41C18ACA1	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2016-04-13 07:44:52	F5042159B95FD2748F55D89E08A89B48	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2016-04-13 07:44:52	E8618EF4CB8D38462D4D8A4ED7DA9850	171520	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2016-04-13 07:44:52	C8AE40931A2AC87E30E05C75E4A61796	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2016-04-13 07:44:52	BCF50CD5076E765200740A97FCB4D74F	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2016-04-13 07:44:52	B782F44A047D0D9459F0078A98AA8542	36352	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2016-04-13 07:44:52	AAF65CD3A15EF6ECB0F4EF32F0D461B8	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2016-04-13 07:44:52	A3ECF0CFA0BFE509A77F0514885EA608	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
2016-04-13 07:44:52	972332B4F1AC8EF3A42AE45BF65D3B60	141312	----a-w-	C:\Windows\SysWOW64\rpchttp.dll
2016-04-13 07:44:52	8DCFB284FC896E2F6F02134298A8F1E1	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2016-04-13 07:44:52	88B9000A87883C908F927AF5036B8309	223232	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2016-04-13 07:44:52	866254892512D27510475080EEC15748	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2016-04-13 07:44:52	6DB3EFE1174B79571A28355A732B3337	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2016-04-13 07:44:52	6B0E139FEF3B7C0061983C1502AE0CA3	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2016-04-13 07:44:52	4DD90351DB68847F9048133E45004B2F	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2016-04-13 07:44:52	47B6BE9CDF6888B7F9FDC5B2DB41B107	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2016-04-13 07:44:52	38958A47AEE19E4CD89A0850640217C3	690688	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2016-04-13 07:44:52	361F32EEFC326C7D34CD2CCF05C469FC	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2016-04-13 07:44:52	28B998D3ACC5AF930B78A982B4698CB8	260608	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2016-04-13 07:44:52	2610C8EF506344326F7250691093A3B9	251392	----a-w-	C:\Windows\SysWOW64\schannel.dll
2016-04-13 07:44:52	1FCAFC14E7B1BA3569DD1E483E486998	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2016-04-13 07:44:52	002E17D37479281C5D241A189F973C5F	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2016-04-13 07:44:46	C2E392F3CE66FE21ADB7CA1158790BAA	15360	----a-w-	C:\Windows\SysWOW64\tbs.dll
2016-04-13 07:43:58	795F356F6027FCA3FD4AD5F3CCD904B7	60416	----a-w-	C:\Windows\SysWOW64\samlib.dll
2016-04-13 07:43:25	386E748E484BA802FCCBF00FC90729C4	2048	----a-w-	C:\Windows\SysWOW64\tzres.dll
2016-04-12 08:38:21	AB5EFB103DB01C1912C9D2F545EA5621	17920	----a-w-	C:\Windows\SysWOW64\wksprtPS.dll
2016-04-12 08:38:21	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2016-04-12 08:38:21	2EFB1279E7BEA7D12D9F4D6508D27880	50176	----a-w-	C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-04-12 08:35:17	9069FD5257A6A4F3AF8A88B5C07359AB	2364928	----a-w-	C:\Windows\SysWOW64\msi.dll
2016-04-12 08:35:16	66A8DBDC308EC11D654A3553A5131E16	1805824	----a-w-	C:\Windows\SysWOW64\authui.dll
2016-04-12 08:35:16	61DE3EA1791D7CDCB3904AF5A0788BFA	337408	----a-w-	C:\Windows\SysWOW64\msihnd.dll
2016-04-12 08:35:16	2C55FD34A7F54C79EC8682A1125A0E97	25088	----a-w-	C:\Windows\SysWOW64\msimsg.dll
2016-04-12 08:32:55	B51A17A1820E8940C0F99D5CCE6CD97E	6656	----a-w-	C:\Windows\SysWOW64\KBDAZEL.DLL
2016-04-12 08:32:55	A326E8C5F54D675AC83639FC9ADA8CDA	69120	----a-w-	C:\Windows\SysWOW64\nlsbres.dll
2016-04-12 08:32:55	4D1ED276529A0EA7177A6830BC842A92	6656	----a-w-	C:\Windows\SysWOW64\kbdgeoqw.dll
2016-04-12 08:32:55	4768E74F674F6DF9AEF172F738A1342B	7168	----a-w-	C:\Windows\SysWOW64\KBDAZE.DLL
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-04-20 12:20:07	C9C06F8E9EB7939BCED9EB5674058D27	444416	----a-w-	C:\Windows\Sysnative\winhttp.dll
2016-04-20 12:20:07	1351A63BEC87BF81E540251966648C5D	396800	----a-w-	C:\Windows\Sysnative\webio.dll
2016-04-20 12:20:06	3CDA7F5C412D07AA8BC04694AA21402D	275456	----a-w-	C:\Windows\Sysnative\InkEd.dll
2016-04-14 07:12:58	AA2879D2E5AA5269DD97E3C6360672F2	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2016-04-14 07:12:57	D9B5F10A18BE306377A6239C27D07353	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2016-04-14 07:12:57	D063B4A417929C6BF4FB0C61807D0D35	441856	----a-w-	C:\Windows\Sysnative\html.iec
2016-04-14 07:12:57	B6D00AC63B3F5376F21BC3FE8D328BE6	3805696	----a-w-	C:\Windows\Sysnative\jscript9.dll
2016-04-14 07:12:57	A0C5EA10F3E0B2B150E19AC04D7D89A7	39936	----a-w-	C:\Windows\Sysnative\iernonce.dll
2016-04-14 07:12:57	664891D7001643C3275FEDD29C65483C	255488	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2016-04-14 07:12:57	39A3C03289386C787F18B5B6A7BB16EA	53248	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2016-04-14 07:12:57	2000100F592A7D7DE32E136707573FA6	1409536	----a-w-	C:\Windows\Sysnative\urlmon.dll
2016-04-14 07:12:57	15C75549084E214F9B8FC7FA6CCED40A	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2016-04-14 07:12:56	D4FDE88F0D1997159EE1DB481354834A	197120	----a-w-	C:\Windows\Sysnative\msrating.dll
2016-04-14 07:12:55	FB18C078E26FE819D8FFF2B8EB094A5C	592896	----a-w-	C:\Windows\Sysnative\vbscript.dll
2016-04-14 07:12:55	7B0199A613A5421759051EB72FF928B3	97280	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2016-04-14 07:12:55	6F6A5F8C76102AC7BC27F2294127531A	67072	----a-w-	C:\Windows\Sysnative\iesetup.dll
2016-04-14 07:12:55	603FAA1BC2302EB7E70222C146E55152	857600	----a-w-	C:\Windows\Sysnative\jscript.dll
2016-04-14 07:12:55	129527DD80CF1B2CA883D0581CB61010	1509376	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2016-04-14 07:12:54	C84217490206A04C6018C5E637D6E744	451584	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2016-04-14 07:12:54	4226794E04CF7C9B7D8F6B40B9E06464	15422976	----a-w-	C:\Windows\Sysnative\ieframe.dll
2016-04-14 07:12:53	F34A9FB73E8EF1CC099BCAA5D1E3B716	2238976	----a-w-	C:\Windows\Sysnative\wininet.dll
2016-04-14 07:12:52	4971B58BEA5A936D09DE40979D40D389	2658304	----a-w-	C:\Windows\Sysnative\iertutil.dll
2016-04-14 07:12:52	32F5618312FD8300B83A785984932936	281600	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2016-04-14 07:12:52	097DB8D76ACF30F0EA9F2753615578EE	526336	----a-w-	C:\Windows\Sysnative\ieui.dll
2016-04-14 07:12:51	B3868F6229EE6C1B0AE91512DCC3E9FD	905728	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2016-04-14 07:12:50	C843DC1742736C19F52DAD79AEB53D58	19349504	----a-w-	C:\Windows\Sysnative\mshtml.dll
2016-04-14 07:12:49	CE0882C9E5B33744DC06D041A71906C3	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2016-04-14 07:12:49	1E757AAC2C09B18E934D1B8398EC65F4	89600	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2016-04-13 09:27:00	5051BB40FFB2BA4870C0A059CA03294F	1054720	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2016-04-13 09:26:59	3531FA12A76A32ECECD972196775DF7C	226304	----a-w-	C:\Windows\Sysnative\elshyph.dll
2016-04-13 09:26:56	F651D95B5043EFC20A6108A853553984	92160	----a-w-	C:\Windows\Sysnative\SetIEInstalledDate.exe
2016-04-13 09:26:56	E965529C43D25F2BDA77D705098BF777	135680	----a-w-	C:\Windows\Sysnative\IEAdvpack.dll
2016-04-13 09:26:56	D9C10A4A0B3411146E6FC8936B079934	167424	----a-w-	C:\Windows\Sysnative\iexpress.exe
2016-04-13 09:26:56	D8076F8A3C34064582035AE6696DC34A	27648	----a-w-	C:\Windows\Sysnative\licmgr10.dll
2016-04-13 09:26:56	D0D4CE6C6CE87269A34A184356475D17	149504	----a-w-	C:\Windows\Sysnative\occache.dll
2016-04-13 09:26:56	C7484143C973829F19E839F674BD45E9	173568	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2016-04-13 09:26:56	C2F21E3059AFF5E616F3E361D9FA10CD	62976	----a-w-	C:\Windows\Sysnative\pngfilt.dll
2016-04-13 09:26:56	BC0D4AFBE94D8E1F81C8926D805C3366	247296	----a-w-	C:\Windows\Sysnative\webcheck.dll
2016-04-13 09:26:56	942E110384668EEFF44751A02EDDF5E4	48640	----a-w-	C:\Windows\Sysnative\mshtmler.dll
2016-04-13 09:26:56	8C3D32A4A46326031309A43C52539D7F	1400416	----a-w-	C:\Windows\Sysnative\ieapfltr.dat
2016-04-13 09:26:56	82D602EBBBA6D08E4691F32269FD3494	12800	----a-w-	C:\Windows\Sysnative\msfeedssync.exe
2016-04-13 09:26:56	658E8FEC79A4AB5BFDE032627B5C9667	13824	----a-w-	C:\Windows\Sysnative\mshta.exe
2016-04-13 09:26:56	63CAE56FE4215F98FEB0188748A99378	52224	----a-w-	C:\Windows\Sysnative\msfeedsbs.dll
2016-04-13 09:26:56	5B15164486C66B76699E1CD2CD2F3A2A	51200	----a-w-	C:\Windows\Sysnative\imgutil.dll
2016-04-13 09:26:56	4E426A67C46379B75A5E671B46FC07F6	102912	----a-w-	C:\Windows\Sysnative\inseng.dll
2016-04-13 09:26:56	40738329209CBE2C9B48F7E30F7C1414	144896	----a-w-	C:\Windows\Sysnative\wextract.exe
2016-04-13 09:26:56	402D797A7905DC3C6FE11E75CD5252EB	235008	----a-w-	C:\Windows\Sysnative\url.dll
2016-04-13 09:26:56	23556D116D5FB93395B2A648EEB24251	81408	----a-w-	C:\Windows\Sysnative\icardie.dll
2016-04-13 09:26:56	1FF56AC32B38A94C3C88497BD6E00C96	25185	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2016-04-13 09:26:56	18A94D6E9D27D169D38DAB91F6A97518	136192	----a-w-	C:\Windows\Sysnative\iepeers.dll
2016-04-13 09:26:56	1456EECCB5CF6B91513200F95D61706E	762368	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2016-04-13 09:26:56	112183DF91C9BAECB498E4A86ECDE598	216064	----a-w-	C:\Windows\Sysnative\msls31.dll
2016-04-13 09:26:55	440104AEB9DAF8AC9842080AE59740FA	77312	----a-w-	C:\Windows\Sysnative\tdc.ocx
2016-04-13 07:45:48	1D0A5FF3C7C7EA7480429D16D38B60EA	3216896	----a-w-	C:\Windows\Sysnative\win32k.sys
2016-04-13 07:45:14	CDA122FCC691D14D3971A83AB035156D	62976	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2016-04-13 07:45:14	C01DC60229F41D33AF2DF4162EDA0F44	7077376	----a-w-	C:\Windows\Sysnative\mstscax.dll
2016-04-13 07:45:14	35A97817FDA4C8F421D8478DCCF045B1	1057792	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2016-04-13 07:45:14	2686F572B3CAF633C4A350A3671835F2	429568	----a-w-	C:\Windows\Sysnative\wksprt.exe
2016-04-13 07:45:00	A575C471CCFC7CBF32F446FA305E7341	156672	----a-w-	C:\Windows\Sysnative\mtxoci.dll
2016-04-13 07:44:57	622C96AFB07BB82C8650B47172137AC4	511488	----a-w-	C:\Windows\Sysnative\rpcss.dll
2016-04-13 07:44:55	F8A05F48B79CB5C087F089BA6C0659FB	1885696	----a-w-	C:\Windows\Sysnative\msxml3.dll
2016-04-13 07:44:55	D303AC584429678DB27DEBD4282CA1DF	2048	----a-w-	C:\Windows\Sysnative\msxml3r.dll
2016-04-13 07:44:53	EF34A098DD383766689A2F21BA2A990E	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2016-04-13 07:44:53	C9F6BB175A7392A851FD86F2A3359088	463872	----a-w-	C:\Windows\Sysnative\certcli.dll
2016-04-13 07:44:53	B46D03BABD31B23E6FCB226CB22D4D6B	1163264	----a-w-	C:\Windows\Sysnative\kernel32.dll
2016-04-13 07:44:53	B3A62D12B93A49189EA8CE51D186FC61	880640	----a-w-	C:\Windows\Sysnative\advapi32.dll
2016-04-13 07:44:53	AE9981D722DA386FBDDC78BEE6E41E56	419840	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2016-04-13 07:44:53	ADFFC3B4418247A562E8727C66DE4428	5551336	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2016-04-13 07:44:53	841BF993597DCD498247684B5D3AE845	215552	----a-w-	C:\Windows\Sysnative\winsrv.dll
2016-04-13 07:44:53	7BE74B8A4BA6D27137E5557229EB83E3	631176	----a-w-	C:\Windows\Sysnative\winresume.efi
2016-04-13 07:44:53	7BBBB5DE05EFEEF2E45A48F9A943B6B0	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2016-04-13 07:44:53	7AE8440A7C8B7E7078EE2654DDB8D21F	1732864	----a-w-	C:\Windows\Sysnative\ntdll.dll
2016-04-13 07:44:53	77372D87A1A5E170C366E436990C6CB5	312320	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2016-04-13 07:44:53	7407A5C092DAD554A3FC768B9859A847	210432	----a-w-	C:\Windows\Sysnative\wdigest.dll
2016-04-13 07:44:53	6FCB62DDF2575ADFFD577A6648B25377	1464320	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2016-04-13 07:44:53	682586CACD78EF53EF7301B4180EB595	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2016-04-13 07:44:53	5817A07A72436A5658E48BF98A91137D	706280	----a-w-	C:\Windows\Sysnative\winload.efi
2016-04-13 07:44:53	54D7B147EB4E7691AA5A2FA110A38363	1212928	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2016-04-13 07:44:53	4F374ED543FC9F3BB17EC6A7C8DF39A1	344064	----a-w-	C:\Windows\Sysnative\schannel.dll
2016-04-13 07:44:53	487D19B284DAFCBAE811AE785CC8B603	731136	----a-w-	C:\Windows\Sysnative\kerberos.dll
2016-04-13 07:44:53	3D6AE177FAF7E3296251DDB05773618E	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2016-04-13 07:44:53	3B44D778B4719B1D5650FC6B1D90AA19	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2016-04-13 07:44:53	3B38C2EDA0D4854ED0E72BA3CBE8D72E	316416	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2016-04-13 07:44:53	2D99A0ECE8475367798F1313197C933D	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2016-04-13 07:44:53	10F466EF4048CA32CAF98FE4A3A16982	2084864	----a-w-	C:\Windows\Sysnative\ole32.dll
2016-04-13 07:44:53	0CBD4E2DBBADABB79BFB8289E6E6227F	135680	----a-w-	C:\Windows\Sysnative\sspicli.dll
2016-04-13 07:44:52	DB651F0E6AC20C42348A9F0E8E7C42D5	690688	----a-w-	C:\Windows\Sysnative\adtschema.dll
2016-04-13 07:44:52	CB7E479501BC4C55328D242D41C1D074	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2016-04-13 07:44:52	C47B6624AF9AEE4146743DCB133A159D	34816	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2016-04-13 07:44:52	BEEC56A8B8B5707B0E7139C6D9D57217	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2016-04-13 07:44:52	BEAD4B03B375B8F02C8C205E25A7CF0A	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2016-04-13 07:44:52	9D8F5EBE48750AF80C5EB5542BEC448B	59904	----a-w-	C:\Windows\Sysnative\appidapi.dll
2016-04-13 07:44:52	9C73710485E2E1540D869BDB8A8A68CA	43520	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2016-04-13 07:44:52	97C1D81250E9E73F7FC8568EF622017A	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2016-04-13 07:44:52	81AA2961530A4F036046CC627B4A90BC	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2016-04-13 07:44:52	811D9D4242A3E53D6DA86A400CCD63D0	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2016-04-13 07:44:52	800AA696A0A773C039D1568F5828EFDE	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2016-04-13 07:44:52	7F9ADD80DE0B27B5EF2ACA7B19EAA3E5	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2016-04-13 07:44:52	6A019F8581D13BC1637DF9F2C92849DB	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2016-04-13 07:44:52	626BE7CD27F44185AA4DCD3603830312	30720	----a-w-	C:\Windows\Sysnative\lsass.exe
2016-04-13 07:44:52	6199722CB619A0887BE81F16A4474538	190464	----a-w-	C:\Windows\Sysnative\rpchttp.dll
2016-04-13 07:44:52	59738954027D75A282D82680C8AFBC54	148480	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2016-04-13 07:44:52	593BC0F0D33A1905B5DC37FA756EB2BA	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2016-04-13 07:44:52	3D347AF86D2FDDEC5F30844537C355D1	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2016-04-13 07:44:52	3A2DF0CC19D68C60F434DA02E1ED01B3	28672	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2016-04-13 07:44:52	1F8F134C7350EF16C79E1C42005BCDE9	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2016-04-13 07:44:52	0E4019A26AE3DB40461B5AA0C3AD6A68	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2016-04-13 07:44:46	D99F8968C0C5CAD46A6B93A1FA6738B2	109568	----a-w-	C:\Windows\Sysnative\fveapibase.dll
2016-04-13 07:44:46	D1035B8EFC83165612F7AAB1816A81B4	451080	----a-w-	C:\Windows\Sysnative\fveapi.dll
2016-04-13 07:44:46	8F39E301AD8B219DADF83BD7DBE9842E	20480	----a-w-	C:\Windows\Sysnative\tbs.dll
2016-04-13 07:44:21	9AD833027AF42AEFCA1FE6CD64F31B22	38120	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2016-04-13 07:44:21	9282C7B69C15B072A9D9F9EDE0AA9C40	1169408	----a-w-	C:\Windows\Sysnative\aeinv.dll
2016-04-13 07:44:21	6E613496CC7CFAD37FA3D1EA86229A26	76800	----a-w-	C:\Windows\Sysnative\acmigration.dll
2016-04-13 07:44:21	4AAF4B88EDABA4CA3ACA82C1A248A3F4	279040	----a-w-	C:\Windows\Sysnative\invagent.dll
2016-04-13 07:44:21	453EEF8F903DE266D9CB16313B5FA796	215040	----a-w-	C:\Windows\Sysnative\aepic.dll
2016-04-13 07:44:21	2A0822070B416170A690D5E061194907	698368	----a-w-	C:\Windows\Sysnative\generaltel.dll
2016-04-13 07:44:21	2816C405CD465CB1D3559D017284FD31	1386496	----a-w-	C:\Windows\Sysnative\appraiser.dll
2016-04-13 07:44:21	24AAC7624C0114C5DAC7DA794D38E18A	499200	----a-w-	C:\Windows\Sysnative\devinv.dll
2016-04-13 07:43:59	48AF282E07C70E053D4E3EE2C732AD0D	760320	----a-w-	C:\Windows\Sysnative\samsrv.dll
2016-04-13 07:43:58	C91E969FDEB819E63E7D6BECF5A8B8D0	106496	----a-w-	C:\Windows\Sysnative\samlib.dll
2016-04-13 07:43:45	2A9C3ADBC3B9D061CACDEFFBED67683C	87040	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2016-04-13 07:43:25	83250E0CE090E705B826C17F3345C758	2048	----a-w-	C:\Windows\Sysnative\tzres.dll
2016-04-12 08:38:30	DDED7C5558B3AE09F568945281A9A6D1	44544	----a-w-	C:\Windows\Sysnative\TsUsbGDCoInstaller.dll
2016-04-12 08:38:22	FEC6178962DFF33074D39CA907971405	12800	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyExtension.dll
2016-04-12 08:38:22	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyControl.exe
2016-04-12 08:38:21	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\Sysnative\mstsc.exe
2016-04-12 08:38:21	7BD2E6E2458A5B95F8341244C7FC7DD4	18944	----a-w-	C:\Windows\Sysnative\wksprtPS.dll
2016-04-12 08:38:21	149A388C17F04AD1F99B477A43BE1A9F	56832	----a-w-	C:\Windows\Sysnative\MsRdpWebAccess.dll
2016-04-12 08:35:26	2CE2E6C71FD01B1DF8992EE5768A8CAD	22528	----a-w-	C:\Windows\Sysnative\icaapi.dll
2016-04-12 08:35:17	CB3F6D92BAA4726A6E2C2CA87659C0CB	1940992	----a-w-	C:\Windows\Sysnative\authui.dll
2016-04-12 08:35:17	A862873A7FF93D9C127F82BFC47C70FB	3243008	----a-w-	C:\Windows\Sysnative\msi.dll
2016-04-12 08:35:16	C60509E8FDD15B99BF09A5E1E3EF25E7	114624	----a-w-	C:\Windows\Sysnative\consent.exe
2016-04-12 08:35:16	2D0B5F22436DACC0115C39FCE41DD30F	504320	----a-w-	C:\Windows\Sysnative\msihnd.dll
2016-04-12 08:35:16	0B49CA61DB9D8C21F309F794D74909A0	25088	----a-w-	C:\Windows\Sysnative\msimsg.dll
2016-04-12 08:35:16	046E837786271237A76C50F7CE1F5BC6	70144	----a-w-	C:\Windows\Sysnative\appinfo.dll
2016-04-12 08:32:55	E77440D732DA943BA77C38BD9C8FF75D	7168	----a-w-	C:\Windows\Sysnative\kbdgeoqw.dll
2016-04-12 08:32:55	CD33834D9CADE5847806EF981888811C	69120	----a-w-	C:\Windows\Sysnative\nlsbres.dll
2016-04-12 08:32:55	8A4415ED740AA7303FDC98853F7DF6C2	7168	----a-w-	C:\Windows\Sysnative\KBDAZEL.DLL
2016-04-12 08:32:55	307C6A4E1A08B232E6E6A1A0839C5616	7168	----a-w-	C:\Windows\Sysnative\KBDAZE.DLL
====== C:\Windows\Sysnative\drivers =====
2016-04-13 07:44:53	FB4397DDCC732DB6A7B33B747C7EB708	154344	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2016-04-13 07:44:53	B6C2FA7F5E5BC1A488A57C6344D29D64	95464	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2016-04-13 07:44:53	ACEC16415275E1AD6F7983EF472810E3	159744	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2016-04-13 07:44:53	0F276F2F2018296FABC7BD2BCCAAB40B	291328	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2016-04-13 07:44:52	A9FB80B0BBA6F765F4E691B7AD4963A7	62464	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2016-04-13 07:44:52	1D4B7972375052F5B7877A6FD9BE33A0	129536	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2016-04-13 07:44:49	616387BBD83372220B09DE95F4E67BBC	73664	----a-w-	C:\Windows\Sysnative\drivers\disk.sys
2016-04-12 08:38:22	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2016-04-12 08:35:26	19BEDA57F3E0A06B8D5EB6D619BD5624	39936	----a-w-	C:\Windows\Sysnative\drivers\tssecsrv.sys
2016-04-04 12:42:02	3D50891CAA71E3479A8A10F25CA9207F	352008	----a-w-	C:\Windows\Sysnative\drivers\cbfs3.sys
====== C:\Windows\Tasks ======
2016-04-14 01:38:24	2E011773843BFA98FEAA6343D7DBF927	4946	----a-w-	C:\Windows\Sysnative\Tasks\WSCEAA
2016-04-12 08:27:57	--------	d-----w-	C:\Windows\Sysnative\Tasks\Taken voor Logboeken
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-04-22 07:09:44	--------	d-----w-	C:\Program Files\trend micro
2016-04-12 08:37:16	--------	d-----w-	C:\Program Files\Common Files\ATI Technologies
2016-04-12 08:37:15	--------	d-----w-	C:\Program Files\AMD
======= C:\PROGRA~2 =====
2016-04-20 10:39:05	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2016-04-04 12:41:51	--------	d-----w-	C:\PROGRA~2\CBack
======= C: =====
====== C:\Users\Tommy\AppData\Roaming ======
2016-04-25 10:31:06	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2016-04-25 10:31:06	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2016-04-25 10:31:06	--------	d-----w-	C:\Users\Tommy\AppData\Local\Temp
2016-04-25 10:31:06	--------	d-----w-	C:\Users\Gast\AppData\Local\temp
2016-04-25 10:31:06	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2016-04-25 10:31:06	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2016-04-20 10:38:50	--------	d-----w-	C:\Users\Tommy\AppData\Roaming\Sun
2016-04-20 09:55:26	--------	d-----w-	C:\Users\Tommy\AppData\Locallow\Oracle
2016-04-04 12:41:51	--------	d-----w-	C:\Users\Tommy\AppData\Local\CBack
====== C:\Users\Tommy ======
2016-04-22 07:40:04	--------	d-----w-	C:\ProgramData\PDF Architect 4
2016-04-22 07:38:19	6E7BE7A9F963C2BA0AAE371F89707688	27650032	----a-w-	C:\Users\Tommy\Downloads\PDFCreator-2_3_0-Setup.exe
2016-04-22 07:09:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tommy\Desktop\RSITx64.exe
2016-04-21 07:09:56	11DB1879DE4EB5DEDCCAE5399E349C4A	59087056	----a-w-	C:\Users\Tommy\Downloads\IE11-Windows6.1-x64-nl-nl.exe
2016-04-20 12:51:16	756A4FC93EE186D9D24FBDB68185350F	4952336	----a-w-	C:\Users\Tommy\Downloads\autodetectutility.exe
2016-04-20 10:38:50	--------	d-----w-	C:\Users\Tommy\.oracle_jre_usage
2016-04-20 09:55:10	78ADF009672CB8AB9D959F396C282C2E	738880	----a-w-	C:\Users\Tommy\Downloads\jxpiinstall.exe
2016-04-04 12:41:51	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CBack

====== C: exe-files ==
2016-04-22 07:40:04	1C564495CB6B9AB149F50A1AD2CB4B66	9795808	----a-w-	C:\ProgramData\PDF Architect 4\Installation\PDFArchitect4Installer.exe
2016-04-22 07:38:19	6E7BE7A9F963C2BA0AAE371F89707688	27650032	----a-w-	C:\Users\Tommy\Downloads\PDFCreator-2_3_0-Setup.exe
2016-04-22 07:09:45	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Tommy.exe
2016-04-22 07:09:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Tommy\Desktop\RSITx64.exe
2016-04-21 07:09:56	11DB1879DE4EB5DEDCCAE5399E349C4A	59087056	----a-w-	C:\Users\Tommy\Downloads\IE11-Windows6.1-x64-nl-nl.exe
2016-04-20 12:51:16	756A4FC93EE186D9D24FBDB68185350F	4952336	----a-w-	C:\Users\Tommy\Downloads\autodetectutility.exe
2016-04-20 10:38:38	DE2D3B374C6EFA769028B811A1203FB1	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\jjs.exe
2016-04-20 10:38:38	D8065554BA4D664A55F57F76E1B4F9E3	77888	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2launcher.exe
2016-04-20 10:38:38	D26A12768BFA19B5565F82DF16B85192	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\kinit.exe
2016-04-20 10:38:38	D117B71E46E9156F1C88146E6F5EDB03	191552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaw.exe
2016-04-20 10:38:38	CCCE1ACFFBFCB34B5F3CD157A78522F8	68672	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\javacpl.exe
2016-04-20 10:38:38	BA45896DE4744CC7AB7EAECF59D6758C	16448	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\orbd.exe
2016-04-20 10:38:38	B6AAFABF90E5FE4683690793F2963388	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\keytool.exe
2016-04-20 10:38:38	AFD756C629D5527D1CFE3BE9D6EBB416	30784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\jabswitch.exe
2016-04-20 10:38:38	AFB89E0B881A2F9F0135AB8984B9FC53	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\pack200.exe
2016-04-20 10:38:38	76E017B33C2C0F72CBBDB77251B00658	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\rmid.exe
2016-04-20 10:38:38	6C58D1081EC589813A197E81CA5CB85C	159296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\unpack200.exe
2016-04-20 10:38:38	56B31942246558D41498912CA9868DF2	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\servertool.exe
2016-04-20 10:38:38	38E67313028C22B78E26D7860494015E	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\policytool.exe
2016-04-20 10:38:38	2EBB23647400B52B56815FEBC59DCCF7	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\ktab.exe
2016-04-20 10:38:38	2C02E97DF732010028B565DA92F3CB0F	51776	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssvagent.exe
2016-04-20 10:38:38	2ABC222E2C3E728136516D6390BDF447	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\klist.exe
2016-04-20 10:38:38	28AC474C021D764DF31736CB9B47DD88	191040	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\java.exe
2016-04-20 10:38:38	1F3D5C9A2D230CDE5B2120AA0F3721B6	16448	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\tnameserv.exe
2016-04-20 10:38:38	1CB2916C0CC541F2A4AC28DAC03F1833	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\rmiregistry.exe
2016-04-20 10:38:38	0BA64EAF4F4080DA2FB79DCC05CB2A14	268352	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaws.exe
2016-04-20 10:38:38	09EABD6F36ECC85644DCE5C3BD709F29	15936	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\bin\java-rmi.exe
2016-04-20 09:55:10	78ADF009672CB8AB9D959F396C282C2E	738880	----a-w-	C:\Users\Tommy\Downloads\jxpiinstall.exe
2016-04-19 09:10:28	F71E0250F483B6BDBE886D0C7BAD7A3C	78608	----a-w-	C:\ProgramData\AVG\Setup\av\avguirux.exe
2016-04-19 09:10:27	107C9276E9553D5E54F01B32AE53EB0A	6069152	----a-w-	C:\ProgramData\AVG\Setup\av\avgmfapx.exe
2016-04-19 09:08:46	57179AF2FE69CAB7F63162108E6B63BB	348944	----a-w-	C:\Program Files (x86)\AVG\Av\avgndisa.exe
2016-04-19 09:07:28	E1E61C9076665694B3B4F633BDB8A3E6	686352	----a-w-	C:\Program Files (x86)\AVG\Setup\avgntdumpx.exe
2016-04-19 09:07:28	B04FDEFC00A4ED0235086EFA39E02868	2289424	----a-w-	C:\Program Files (x86)\AVG\Setup\avgsetupwrkx.exe
2016-04-19 09:07:28	4332495404D0CCEABC57422FDEBEE98E	3206416	----a-w-	C:\Program Files (x86)\AVG\Setup\avgsetupx.exe
=== C: other files ==
2016-04-21 12:27:05	A5F492F23B99B505BB57CB2F987052E0	16139452	----a-w-	C:\Users\Tommy\Downloads\Photos.zip
2016-04-20 12:15:34	0DAF323935284B9F5F9367EB13071A72	47844	----a-w-	C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\67yq8t0v.default\extensions\jid1-uqwEAwSca3FXUo@jetpack.xpi
2016-04-20 10:38:38	CB600FFB53D99A9B07EB870111BA7470	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_91\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-3785183428-280459204-1983174648-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Officejet Pro 8600 (NET)"="C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe -deviceID CN3C2FVHRQ05KD:NW -scfn HP Officejet Pro 8600 (NET) -AutoStart 1"
"Livedrive"="C:\Program Files (x86)\CBack\OpenAccess.exe /setup"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe"
"IsaKbcCertUpdate"="C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe /lps=fmw"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Officejet Pro 8600 (NET)"="C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe -deviceID CN3C2FVHRQ05KD:NW -scfn HP Officejet Pro 8600 (NET) -AutoStart 1"
"Livedrive"="C:\Program Files (x86)\CBack\OpenAccess.exe /setup"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DBRMTray"="C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe"
"TdmNotify"="C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe"
"FAHConsole"="C:\Program Files\File Association Helper\FAHConsole.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""
"QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"


==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrobat Assistant 8.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /AUTO"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DBRMTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DBRMTray"
"hkey"="HKLM"
"command"="C:\\Dell\\DBRM\\Reminder\\DbrmTrayIcon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IsaKbcCertUpdate]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IsaKbcCertUpdate"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Common Files\\Isabel\\isa_kbc_certupdate.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD External Events Utility]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\avgfws]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AVGIDSAgent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\avgwd]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Crypkey License]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DellDigitalDelivery]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\EmbassyService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gusvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\HitmanProScheduler]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\IAStorDataMgrSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel(R) Capability Licensing Service Interface]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel(R) Capability Licensing Service TCP IP Interface]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel(R) PROSet Monitoring Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\iPod Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\jhi_service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LMS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\PbaDrvSvc_x64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RapportMgmtService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SecureStorageService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\tcsd_win32.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TdmService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\UNS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Update lucky leap]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Util lucky leap]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Wave Authentication Manager Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WvPCR]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [20/04/2016 09:08]
C:\Windows\tasks\CCleanerClean.job --a------ C:\Program Files\CCleaner\CCleaner.exe [19/08/2015 20:08]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 01:53]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 01:53]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerClean" [C:\Program Files\CCleaner\CCleaner.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe]
"C:\Windows\SysNative\tasks\WSCEAA" [C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\WSCEAA.exe]
"C:\Windows\SysNative\tasks\{04EB0CDE-8106-4E78-BEA0-CDF1914DFC9B}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{635E9A46-F88A-4EA1-B4A8-865007B2DD16}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{63C653C9-646F-43D0-97D0-D9D6BFB1015D}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{6907BBC0-C370-4E0B-8D8F-7BD80F9861B9}" [C:\Users\Tommy Argenta\Downloads\OJ6500vE709_Full_14.exe]
"C:\Windows\SysNative\tasks\{850ADD1D-2827-471B-93E0-457D2858E006}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{8E6AB5D0-90A1-41A5-B418-80EBDE201F0F}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{980491C3-DA4C-4A7A-8B74-9B6407C67B7F}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{AC036790-4984-4999-AD23-1085C866E239}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{AC31DC8B-0EDF-41A8-8471-EE239BFDE97A}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{B45B2BB4-6045-4DD6-ABBD-D2ECC9843A2D}" [C:\Users\Tommy\Downloads\BitTorrent.exe]
"C:\Windows\SysNative\tasks\{CA97863B-7154-42E0-8E84-05BD212A43A2}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\{D4A8C298-F084-4B0C-9C5F-3F165A290F51}" [C:\Program Files (x86)\iTunes\iTunes.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Dell\Client System Update" ["C:\Program Files (x86)\Dell\ClientSystemUpdate\DellClientSystemUpdate.exe"]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\67yq8t0v.default
- British English Dictionary Marco Pinto - %ProfilePath%\extensions\marcoagpinto@mail.telepac.pt
- Super Start - %ProfilePath%\extensions\superstart@enjoyfreeware.org
- Bitdefender QuickScan - %ProfilePath%\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
- Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi
- CookiesOK - %ProfilePath%\extensions\jid0-UgB5JNMPWHIRM4dcAe76c7EcVis@jetpack.xpi
- Location Guard - %ProfilePath%\extensions\jid1-HdwPLukcGQeOSh@jetpack.xpi
- WhatsApp Desktop - %ProfilePath%\extensions\jid1-uqwEAwSca3FXUo@jetpack.xpi
- English GB Language Pack - %ProfilePath%\extensions\langpack-en-GB@firefox.mozilla.org.xpi
- Video DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\67yq8t0v.default
18CF51689186AEB9D1D149AEB0E92D03	- C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL -	Microsoft Office 2013
87132527E2256CF6683A18C4EB34DD3B	- C:\Windows\system32\Wat\npWatWeb.dll -	Windows Activation Technologies
57C7E359ED8D049132EED23EFA444C63	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll -	Shockwave Flash


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[23/09/2012 20:43]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bbjllphbppobebmjpjcijfbakobcheof - No path found[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.be/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{2A630E6C-443A-4062-9A53-301212918CD1}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\SearchScopes\{2A630E6C-443A-4062-9A53-301212918CD1} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDRJS
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{2A630E6C-443A-4062-9A53-301212918CD1}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes\{2A630E6C-443A-4062-9A53-301212918CD1} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDRJS
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== HijackThis Entries ======================

O2 - BHO: Google Analytics Opt-out Browser Add-on - {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} - C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [IsaKbcCertUpdate] C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [HP Officejet Pro 8600 (NET)] "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN3C2FVHRQ05KD:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Livedrive] "C:\Program Files (x86)\CBack\OpenAccess.exe" /setup
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://cbc-pdf.cbc.be
O15 - Trusted Zone: http://static.cbc.be
O15 - Trusted Zone: http://www.cbccorporate.be
O15 - Trusted Zone: http://www.csob.cz
O15 - Trusted Zone: http://www.csob.sk
O15 - Trusted Zone: http://col.isabel.be
O15 - Trusted Zone: http://www.isabel.be
O15 - Trusted Zone: http://www.beta.isabel.be
O15 - Trusted Zone: http://col.isabel.eu
O15 - Trusted Zone: http://www.isabel.eu
O15 - Trusted Zone: http://www.beta.isabel.eu
O15 - Trusted Zone: http://kbc-pdf.kbc.be
O15 - Trusted Zone: http://static.kbc.be
O15 - Trusted Zone: http://www.kbcam.be
O15 - Trusted Zone: http://www.kbcam.com
O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbcbankingforbusiness.com
O15 - Trusted Zone: http://www.kbccorporates.com
O15 - Trusted Zone: http://www.kbcfi.com
O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kbcmerchantbanking.com
O15 - Trusted Zone: http://www.kh.hu
O16 - DPF: {C5E42A05-3799-4678-B0B6-BBFD122243D3} (CD2SClient Object) - https://www.digichambers.be/common/D2SWSClnt.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{03355A9E-CBAE-4719-950D-5BB6E64AC3B3}: NameServer = 195.238.2.21,195.238.2.22
O17 - HKLM\System\CS2\Services\Tcpip\..\{03355A9E-CBAE-4719-950D-5BB6E64AC3B3}: NameServer = 195.238.2.21,195.238.2.22
O17 - HKLM\System\CS3\Services\Tcpip\..\{03355A9E-CBAE-4719-950D-5BB6E64AC3B3}: NameServer = 195.238.2.21,195.238.2.22
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CBack VSS Service (CBackVSSService) - Unknown owner - C:\Program Files (x86)\CBack\VSSService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EmbassyService - Unknown owner - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Dell PBA x64 Service (PbaDrvSvc_x64) - Unknown owner - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\hapi64\pbadrvsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SecureStorageService - Wave Systems Corp. - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Software Protection (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TdmService - Wave Systems Corp. - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WvPCR - Wave Systems Corp. - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Common\WvPCR.exe

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tommy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Tommy\AppData\Local\Mozilla\Firefox\Profiles\1o6cdkhe.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1913 folders=59 167264488 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Gast\AppData\Local\temp emptied successfully
C:\Users\Tommy\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Tommy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 25/04/2016 at 14:49:27,12 ======================