
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Koen on wo 22-06-2016 at 14:00:23,94.
Microsoft Windows 10 Pro 10.0.10586  x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Koen\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

22-6-2016 14:02:36 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Program Files\Common Files\AV deleted successfully
C:\PROGRA~2\Comms deleted successfully
C:\PROGRA~2\SoftwareDistribution deleted successfully
C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully
C:\Users\Koen\AppData\Local\ActiveSync deleted successfully
C:\Users\Koen\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Koen\AppData\Local\EmieSiteList deleted successfully
C:\Users\Koen\AppData\Local\EmieUserList deleted successfully
C:\Users\Koen\AppData\Local\NetworkTiles deleted successfully
C:\Users\Koen\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Installed Programs ======================

AMD APP SDK Runtime  
AMD Catalyst Control Center  
AMD Fuel  
AMD Media Foundation Decoders  
AMD VISION Engine Control Center  
Asmedia ASM104x USB 3.0 Host Controller Driver  
Atheros Client Installation Program  
ATI Catalyst Install Manager  
AVG 2015  
Catalyst Control Center - Branding  
Catalyst Control Center InstallProxy  
Catalyst Control Center Localization All  
Catalyst Control Center Profiles Mobile  
ccc-utility  
CCC Help Chinese Standard  
CCC Help Chinese Traditional  
CCC Help Czech  
CCC Help Danish  
CCC Help Dutch  
CCC Help English  
CCC Help Finnish  
CCC Help French  
CCC Help German  
CCC Help Greek  
CCC Help Hungarian  
CCC Help Italian  
CCC Help Japanese  
CCC Help Korean  
CCC Help Norwegian  
CCC Help Polish  
CCC Help Portuguese  
CCC Help Russian  
CCC Help Spanish  
CCC Help Swedish  
CCC Help Thai  
CCC Help Turkish  
Definition Update for Microsoft Office 2013 (KB3115159) 32-Bit Edition  
DVD Profiler Version 3.9.1  
Fitbit Connect  
Fotogoed Designer 3.8.8  
Free YouTube to MP3 Converter version 3.10.11.923  
Game Collector  
Google Chrome  
Google Earth  
Google Update Helper  
Hotkey Service  
Microsoft .NET Framework 4.6.1  
Microsoft Access MUI (English) 2013  
Microsoft Access Setup Metadata MUI (English) 2013  
Microsoft DCF MUI (English) 2013  
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x86)  
Microsoft Excel MUI (English) 2013  
Microsoft Groove MUI (English) 2013  
Microsoft InfoPath MUI (English) 2013  
Microsoft Lync MUI (English) 2013  
Microsoft Office OSM MUI (English) 2013  
Microsoft Office OSM UX MUI (English) 2013  
Microsoft Office Professional Plus 2013  
Microsoft Office Proofing (English) 2013  
Microsoft Office Proofing Tools 2013 - English  
Microsoft Office Proofing Tools 2013 - Espa¤ol  
Microsoft Office Shared MUI (English) 2013  
Microsoft Office Shared Setup Metadata MUI (English) 2013  
Microsoft OneNote MUI (English) 2013  
Microsoft Outlook MUI (English) 2013  
Microsoft PowerPoint MUI (English) 2013  
Microsoft Publisher MUI (English) 2013  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727  
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727  
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727  
Microsoft Visual Studio 2010 Tools for Office Runtime (x86)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD  
Microsoft Word MUI (English) 2013  
Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais  
Ralink RT2860 Wireless LAN Card  
Security Update for Microsoft Office 2013 (KB3039746) 32-Bit Edition  
Security Update for Microsoft Office 2013 (KB3039794) 32-Bit Edition  
Security Update for Microsoft Office 2013 (KB3039798) 32-Bit Edition  
Security Update for Microsoft Office 2013 (KB3054816) 32-Bit Edition  
Security Update for Microsoft Office 2013 (KB3085572) 32-Bit Edition  
Security Update for Microsoft Publisher 2013 (KB3085561) 32-Bit Edition  
Security Update for Microsoft Word 2013 (KB3115173) 32-Bit Edition  
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition  
Synaptics Pointing Device Driver  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD  
Update for Microsoft Access 2013 (KB3114735) 32-Bit Edition  
Update for Microsoft Excel 2013 (KB3115162) 32-Bit Edition  
Update for Microsoft InfoPath 2013 (KB3114818) 32-Bit Edition  
Update for Microsoft InfoPath 2013 (KB3114946) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2760371) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2883095) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2889863) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2899522) 32-Bit Edition  
Update for Microsoft Office 2013 (KB2975869) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3023049) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3023052) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3023068) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039701) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039720) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039756) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039766) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039778) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039795) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3039800) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054783) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054785) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054805) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054819) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054856) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3054941) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3055007) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3085479) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3085486) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3085570) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3085577) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3085587) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3101487) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3114488) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3114499) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3114825) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3114835) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3115151) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3115154) 32-Bit Edition  
Update for Microsoft Office 2013 (KB3115167) 32-Bit Edition  
Update for Microsoft OneDrive for Business (KB3115163) 32-Bit Edition  
Update for Microsoft OneNote 2013 (KB3114725) 32-Bit Edition  
Update for Microsoft Outlook 2013 (KB3115158) 32-Bit Edition  
Update for Microsoft Outlook Social Connector 2013 (KB3054854) 32-Bit Edition  
Update for Microsoft PowerPoint 2013 (KB3115015) 32-Bit Edition  
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition  
Update for Microsoft Word 2013 (KB2878319) 32-Bit Edition  
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition  
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition  
Visual Studio 2012 x86 Redistributables  
VLC media player  
Vuze  
Windows 10-upgradeassistent  

==== Running Processes ======================

c:\PROGRA~1\AVG\AVG2015\avgrsx.exe
C:\Program Files\AVG\AVG2015\avgcsrvx.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\WLANExt.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\AsusService.exe
C:\Program Files\AVG\AVG2015\avgwdsvc.exe
C:\Program Files\AVG\AVG2015\avgidsagent.exe
C:\Program Files\Fitbit Connect\FitbitConnectService.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
C:\Program Files\AVG\AVG2015\avgnsx.exe
C:\Program Files\AVG\AVG2015\avgemcx.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Google\Update\1.3.30.3\GoogleCrashHandler.exe
C:\WINDOWS\System32\WinLogon.exe
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\system32\sihost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\AVG\AVG2015\avgui.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\WINDOWS\System32\fontdrvhost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Users\Koen\Downloads\zoek.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\taskeng.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\System32\svchost.exe -k smphost
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\System32\svchost.exe -k swprv

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 2685 MB
CPU Info: AMD E-450 APU with Radeon(tm) HD Graphics
CPU Speed: 1665,9 MHz
Sound Card: Luidsprekers (High Definition A | 
Display Adapters: AMD Radeon HD 6320 Graphics | AMD Radeon HD 6320 Graphics
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Qualcomm Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.30) | Broadcom 802.11n-netwerkadapter | Microsoft Hosted Network Virtual Adapter
CD / DVD Drives: No optical drives found.
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  240,5GB | D:  224,7GB
Hard Disks - Free: C:  156,3GB | D:  223,5GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 06/17/11 | _ASUS_ - 1072009
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer INC. 1215B
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Internet Explorer Version: 11.420.10586.0 
Google Chrome version: 51.0.2704.103

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2016-06-17 17:47:26	FB8900191867C5B4AA61AF85B8DD1869	4074160	----a-w-	C:\WINDOWS\explorer.exe
2016-06-01 14:43:28	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\WINDOWS\ativpsrm.bin
2016-06-01 12:21:00	8EA55D08F4B1961DB92880352ED2C7CC	10447	----a-w-	C:\WINDOWS\diagerr.xml
2016-06-01 12:21:00	692CA5EBC9E0CEF0A8D0BE4DF7400CEE	9528	----a-w-	C:\WINDOWS\diagwrn.xml
2016-06-01 12:09:07	09394999ADB19901C665454EE964B13C	36	----a-w-	C:\WINDOWS\progress.ini
====== C:\Users\Koen\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\system32 =====
2016-06-17 17:49:47	21D80595A8427CB6F1DDC134E948AECE	6295552	----a-w-	C:\WINDOWS\System32\mos.dll
2016-06-17 17:49:32	105DE7AF1C9763E56D5322CECF3465EB	5205504	----a-w-	C:\WINDOWS\System32\BingMaps.dll
2016-06-17 17:49:14	AE6E1FEA9741D7B2712B6D1DD0D01343	42688	----a-w-	C:\WINDOWS\System32\CompatTelRunner.exe
2016-06-17 17:49:14	74CC07D80D737D33FD3D899522D6A9B6	1232576	----a-w-	C:\WINDOWS\System32\appraiser.dll
2016-06-17 17:49:13	71DF6482300C802BB104514F34B460F0	91648	----a-w-	C:\WINDOWS\System32\tdlrecover.exe
2016-06-17 17:49:10	15206AE3E9E2C180CEF90A6EC5A60330	1800704	----a-w-	C:\WINDOWS\System32\NetworkMobileSettings.dll
2016-06-17 17:48:50	B981A07C0A0CCE68BD90DF3E3EC520DE	1707520	----a-w-	C:\WINDOWS\System32\ActiveSyncProvider.dll
2016-06-17 17:48:34	92347FC58A8BD2A45F440239EA9A4F04	12128256	----a-w-	C:\WINDOWS\System32\ieframe.dll
2016-06-17 17:48:21	388077FF1642D94BF81F9D814F22BBA2	499712	----a-w-	C:\WINDOWS\System32\MessagingDataModel2.dll
2016-06-17 17:48:20	941A9C918A7BD7CA5599352C61A4B473	1896960	----a-w-	C:\WINDOWS\System32\AppXDeploymentServer.dll
2016-06-17 17:48:18	6D879552B32CCD2536F66F4F88F54800	19344384	----a-w-	C:\WINDOWS\System32\mshtml.dll
2016-06-17 17:48:10	DDE33C05D644CC57429340ACB2DA53C5	18674176	----a-w-	C:\WINDOWS\System32\edgehtml.dll
2016-06-17 17:48:07	6762E4ACE8D11FCD80EA4011DD22B857	5660160	----a-w-	C:\WINDOWS\System32\Chakra.dll
2016-06-17 17:48:05	DCAC3EE469A3B0C0EC5660D730DF6BDF	9918976	----a-w-	C:\WINDOWS\System32\twinui.dll
2016-06-17 17:48:04	B09DFF7CD8E40EA77559C87F3BF310DE	703840	----a-w-	C:\WINDOWS\System32\WWAHost.exe
2016-06-17 17:48:03	02ABF6A6775B745CCCEAEB4594AA6354	5323776	----a-w-	C:\WINDOWS\System32\Windows.Data.Pdf.dll
2016-06-17 17:48:02	CA90D72C7249D79017057F1F48FD1958	711680	----a-w-	C:\WINDOWS\System32\MapControlCore.dll
2016-06-17 17:48:02	7823862FA05558EB61C72D8A5A163ADA	3664896	----a-w-	C:\WINDOWS\System32\jscript9.dll
2016-06-17 17:48:01	73A58788F32A98E446220B5E48843967	349696	----a-w-	C:\WINDOWS\System32\MapConfiguration.dll
2016-06-17 17:48:00	357262D7243D6967C19913554DCC759F	612352	----a-w-	C:\WINDOWS\System32\MapsStore.dll
2016-06-17 17:47:57	1E497317417C1C68B5453DD04721B16D	614400	----a-w-	C:\WINDOWS\System32\winhttp.dll
2016-06-17 17:47:56	D8C44C34BC206902947E55E2C94E8D38	2921880	----a-w-	C:\WINDOWS\System32\iertutil.dll
2016-06-17 17:47:55	668CDB16FBD3D83D56909358FC814B18	442368	----a-w-	C:\WINDOWS\System32\MBMediaManager.dll
2016-06-17 17:47:51	B004992A381FCE04934893BB7D9BDD19	504320	----a-w-	C:\WINDOWS\System32\vbscript.dll
2016-06-17 17:47:51	418413F959B1DCAB143A3446B2ED03DF	2880512	----a-w-	C:\WINDOWS\System32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-17 17:47:50	6C77467759109883BD3179044D371091	1193984	----a-w-	C:\WINDOWS\System32\gpsvc.dll
2016-06-17 17:47:49	2B61F5590D75FBFCE614D5EA80E1656F	3196928	----a-w-	C:\WINDOWS\System32\SettingsHandlers_nt.dll
2016-06-17 17:47:48	E391DD57E6965C8D2DB05A4A52F80EC8	546456	----a-w-	C:\WINDOWS\System32\fontdrvhost.exe
2016-06-17 17:47:48	C3BB1475ABDFBC0BB5A37D8BAF3DE733	687616	----a-w-	C:\WINDOWS\System32\msfeeds.dll
2016-06-17 17:47:48	A495EA4706387D12C00641D8C48BA527	890368	----a-w-	C:\WINDOWS\System32\AppxPackaging.dll
2016-06-17 17:47:47	20D8DBFB40E025C2E99F7146E48116CD	800768	----a-w-	C:\WINDOWS\System32\JpMapControl.dll
2016-06-17 17:47:46	92A252E7DAF67D36BC81758A0F8596EB	2195632	----a-w-	C:\WINDOWS\System32\d3d10warp.dll
2016-06-17 17:47:46	5922C03A67F868265E5AB176DB6D641D	316256	----a-w-	C:\WINDOWS\System32\atmfd.dll
2016-06-17 17:47:45	B9AD8E15F6641E328C1543688B5EE2E8	2061824	----a-w-	C:\WINDOWS\System32\MFMediaEngine.dll
2016-06-17 17:47:45	15718A26C782323D8E14D68AB4F74680	393728	----a-w-	C:\WINDOWS\System32\tileobjserver.dll
2016-06-17 17:47:43	38E67993741C4FFFE2ADDD6277C3AB9F	846336	----a-w-	C:\WINDOWS\System32\iphlpsvc.dll
2016-06-17 17:47:42	D3AFC5FFAE385854EAC5D5B8C263505E	1396592	----a-w-	C:\WINDOWS\System32\gdi32.dll
2016-06-17 17:47:40	7FFD756E7DD8BA83B4B4EF41F51B7DF5	1582080	----a-w-	C:\WINDOWS\System32\Windows.UI.Immersive.dll
2016-06-17 17:47:39	836DF245362A9E09CC050EB107E85D74	467456	----a-w-	C:\WINDOWS\System32\AppContracts.dll
2016-06-17 17:47:35	56339962C1448BA2CF4C4D25C89938D2	521664	----a-w-	C:\WINDOWS\System32\dxgi.dll
2016-06-17 17:47:31	8162BC2EC9E529AA90F196A12D887308	4268880	----a-w-	C:\WINDOWS\System32\setupapi.dll
2016-06-17 17:47:30	E724CB02012CEBF773DC9FE304DCD946	501600	----a-w-	C:\WINDOWS\System32\NetSetupEngine.dll
2016-06-17 17:47:30	A142F1D0FF07C172FA90075B7848CCD0	521728	----a-w-	C:\WINDOWS\System32\StructuredQuery.dll
2016-06-17 17:47:29	B011360F95F911F025BC91CB17449798	1500160	----a-w-	C:\WINDOWS\System32\urlmon.dll
2016-06-17 17:47:29	5CE25DC915848E76C75B663E5628BDA7	144384	----a-w-	C:\WINDOWS\System32\wscsvc.dll
2016-06-17 17:47:28	8715D1B7B9E57105FCC997A8F936E655	2974208	----a-w-	C:\WINDOWS\System32\win32kfull.sys
2016-06-17 17:47:27	FBBE8B9147474379F54F8A1BACBF9748	388384	----a-w-	C:\WINDOWS\System32\ws2_32.dll
2016-06-17 17:47:27	3FB5B631FEF2F427BAFDAA0A4C4F370B	613120	----a-w-	C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll
2016-06-17 17:47:27	0D43DCC2C13A048CB098C7A30D0130A5	203264	----a-w-	C:\WINDOWS\System32\moshostcore.dll
2016-06-17 17:47:26	D6FD797C6662E73629DE30C1C9042A68	1075200	----a-w-	C:\WINDOWS\System32\Windows.UI.Shell.dll
2016-06-17 17:47:26	1E4705EF7CFA3377C4F1C47B1F4B8278	274432	----a-w-	C:\WINDOWS\System32\SystemEventsBrokerServer.dll
2016-06-17 17:47:25	F07AE86B2CD1C2CF6AE7812C60299032	535040	----a-w-	C:\WINDOWS\System32\rastls.dll
2016-06-17 17:47:25	8358911BAB0DA1AA9F569D35260CE93C	579072	----a-w-	C:\WINDOWS\System32\gpprefcl.dll
2016-06-17 17:47:25	6A23A4478EDF4CD088C7ACDD0CEA0CB3	249536	----a-w-	C:\WINDOWS\System32\invagent.dll
2016-06-17 17:47:25	41C85050EC867A621F28101CF41501FF	132096	----a-w-	C:\WINDOWS\System32\tetheringservice.dll
2016-06-17 17:47:19	7C94DE2E519F5A07CDB786B9E876759B	5797216	----a-w-	C:\WINDOWS\System32\ntoskrnl.exe
2016-06-17 17:47:18	1B4F03A9F11169672067ED4FD7504AD6	1445888	----a-w-	C:\WINDOWS\System32\SRHInproc.dll
2016-06-17 17:47:18	0B2EB30A9E987E8F85C9B28BDE04F028	254656	----a-w-	C:\WINDOWS\System32\LockAppHost.exe
2016-06-17 17:47:17	FF85D524DD10A69B20B6D1EFAE94E5F1	122368	----a-w-	C:\WINDOWS\System32\omadmclient.exe
2016-06-17 17:47:17	D8C2D0947EAA696FAB16717695F9818A	81088	----a-w-	C:\WINDOWS\System32\acmigration.dll
2016-06-17 17:47:17	9BBE7D1B5B0FC534CBA0B2444BD05204	957608	----a-w-	C:\WINDOWS\System32\ole32.dll
2016-06-17 17:47:17	737C4031C65BDD190E470E051F48B40D	79360	----a-w-	C:\WINDOWS\System32\DeviceEnroller.exe
2016-06-17 17:47:17	67F17B6BBB8D3C41D0A686BA63F8223E	1900032	----a-w-	C:\WINDOWS\System32\wuaueng.dll
2016-06-17 17:47:17	6616FA9F105B6AFEDF121C3299A8DEF3	54784	----a-w-	C:\WINDOWS\System32\moshost.dll
2016-06-17 17:47:17	5E98A6CFB2ACA91D68492B28D3108E2D	740352	----a-w-	C:\WINDOWS\System32\SharedStartModel.dll
2016-06-17 17:47:15	D9A8F691291DA3BAEE3F8110B231F6FD	258560	----a-w-	C:\WINDOWS\System32\usocore.dll
2016-06-17 17:47:15	990E71AF2DDF55C4FF672FD2C456B876	1733632	----a-w-	C:\WINDOWS\System32\AppXDeploymentExtensions.dll
2016-06-17 17:47:15	688687C8D860657E6BFDD77B0FFE1DE4	59904	----a-w-	C:\WINDOWS\System32\MosStorage.dll
2016-06-17 17:47:15	1C09B75EF1869E7790444928F89E3D3C	50176	----a-w-	C:\WINDOWS\System32\MosHostClient.dll
2016-06-17 17:47:14	BE6B9C2EA9C5CA24D6BB73CFAD92ACBF	354656	----a-w-	C:\WINDOWS\System32\halmacpi.dll
2016-06-17 17:47:14	BE6B9C2EA9C5CA24D6BB73CFAD92ACBF	354656	----a-w-	C:\WINDOWS\System32\hal.dll
2016-06-17 17:47:14	B503CB64CC62265B914DA10A5CF87B05	2230272	----a-w-	C:\WINDOWS\System32\wininet.dll
2016-06-17 17:47:13	0CBC2D1C2E94F667B9CC8F0FF8236613	453632	----a-w-	C:\WINDOWS\System32\bisrv.dll
2016-06-17 17:47:12	2CDBCCE96C4D038816734B2919AA0FE8	133120	----a-w-	C:\WINDOWS\System32\mdmmigrator.dll
2016-06-17 17:47:12	110EE87B0F4E38609AD73E9075EF82A4	97096	----a-w-	C:\WINDOWS\System32\ncryptsslp.dll
2016-06-17 17:47:11	8CD58C5006569D5A4EF38E2E7167C324	317280	----a-w-	C:\WINDOWS\System32\mswsock.dll
2016-06-17 17:47:03	C5B6712A64DAC8C73779462376D80740	783872	----a-w-	C:\WINDOWS\System32\RDXService.dll
2016-06-17 17:46:59	D93D6F9BC1EE3329A9DCF3B9591EB156	219136	----a-w-	C:\WINDOWS\System32\VEEventDispatcher.dll
2016-06-17 17:46:58	C4245A2059B4C9F1DC7E8221F2866B7F	136032	----a-w-	C:\WINDOWS\System32\NetworkUXBroker.exe
2016-06-17 17:46:58	BE1502FE9A663BA3DFC1E05F630D68CB	111608	----a-w-	C:\WINDOWS\System32\gpapi.dll
2016-06-17 17:46:58	9D70D8314643E65A11BC9CE702DAF13B	309248	----a-w-	C:\WINDOWS\System32\IPSECSVC.DLL
2016-06-17 17:46:58	551624F398703A90CAFCC5777CEA99E8	450560	----a-w-	C:\WINDOWS\System32\SyncController.dll
2016-06-17 17:46:58	2FDF5001427D457AC43942FADC742404	360480	----a-w-	C:\WINDOWS\System32\bcryptprimitives.dll
2016-06-17 17:46:57	E6CB15ADD1702868915C7ABCD8E13E02	973504	----a-w-	C:\WINDOWS\System32\aeinv.dll
2016-06-17 17:46:57	CD12A269274F2916A3661198E13CBBC4	799744	----a-w-	C:\WINDOWS\System32\SRH.dll
2016-06-17 17:46:57	BBD6B0059B47D33A25C2CBB57774B26E	440512	----a-w-	C:\WINDOWS\System32\devinv.dll
2016-06-17 17:46:56	E00F4912EA28E6AA0740D4DBB344740A	63488	----a-w-	C:\WINDOWS\System32\cryptsvc.dll
2016-06-17 17:46:56	A3B6AED415AEEA114597E5043F45FF18	415232	----a-w-	C:\WINDOWS\System32\StoreAgent.dll
2016-06-17 17:46:56	91E692689D548E3C5E7FFE6D42322D86	23776	----a-w-	C:\WINDOWS\System32\wuauclt.exe
2016-06-17 17:46:56	8000FB1D40149AC05F6BDE9248A6B956	230400	----a-w-	C:\WINDOWS\System32\dhcpcore6.dll
2016-06-17 17:46:56	5B0C0217C5F20C683C8A25969486103C	129024	----a-w-	C:\WINDOWS\System32\SettingsHandlers_Privacy.dll
2016-06-17 17:46:56	19782B3AFF198017DF643D72875B85AD	230400	----a-w-	C:\WINDOWS\System32\RDXTaskFactory.dll
2016-06-17 17:46:55	4DED20A327D15D69FB85310D14D67711	291328	----a-w-	C:\WINDOWS\System32\polstore.dll
2016-06-17 17:46:54	CD3EE15C196D28260898A2968BF7702D	42496	----a-w-	C:\WINDOWS\System32\gpscript.dll
2016-06-17 17:46:54	C68CB4CE7C86922F8942396F816F99AB	161792	----a-w-	C:\WINDOWS\System32\BrokerLib.dll
2016-06-17 17:46:54	861D71E2284DCEA5E9309CDE8D920252	485888	----a-w-	C:\WINDOWS\System32\newdev.dll
2016-06-17 17:46:54	53BD5A0B7D0B027984D99BEDB945CEE6	84832	----a-w-	C:\WINDOWS\System32\NetSetupApi.dll
2016-06-17 17:46:53	D49843E6D8FF8F638C6639C90B6D0E9A	359936	----a-w-	C:\WINDOWS\System32\dmenrollengine.dll
2016-06-17 17:46:53	C13734140AB07E2376387CD9B4C07F69	527872	----a-w-	C:\WINDOWS\System32\vpnike.dll
2016-06-17 17:46:53	12711601CB5C342F60A3621EF206874B	558080	----a-w-	C:\WINDOWS\System32\internetmail.dll
2016-06-17 17:46:49	8FA7F64802B717935AB4E949DE9EF2D0	464896	----a-w-	C:\WINDOWS\System32\enterprisecsps.dll
2016-06-17 17:46:46	CB7870019D9F8787F1DC53808DEAC838	160768	----a-w-	C:\WINDOWS\System32\GnssAdapter.dll
2016-06-17 17:46:46	583A469B50D9EF89E83A4E508A3A91B7	180736	----a-w-	C:\WINDOWS\System32\cdd.dll
2016-06-17 17:46:46	56DEB6F17F290B8C4AF8B2AA10097B55	88576	----a-w-	C:\WINDOWS\System32\olepro32.dll
2016-06-17 17:46:46	4243F729D260C0D6C6A3B605F51FD518	103424	----a-w-	C:\WINDOWS\System32\updatepolicy.dll
2016-06-17 17:46:45	F45748C52B7F62438E61E7EC3CB5E5B1	63488	----a-w-	C:\WINDOWS\System32\ngcpopkeysrv.dll
2016-06-17 17:46:45	ED17649C4B6D4E9A9530F77C60D4ECE1	65024	----a-w-	C:\WINDOWS\System32\adhsvc.dll
2016-06-17 17:46:45	2052711F5D4F398D7074657F152071BC	109056	----a-w-	C:\WINDOWS\System32\httpprxm.dll
2016-06-17 17:46:44	88A3958213B43EED8402D4496149924A	64000	----a-w-	C:\WINDOWS\System32\dhcpcsvc.dll
2016-06-17 17:46:44	74598DB5B7BD6EA952BED4928DACFFDC	16896	----a-w-	C:\WINDOWS\System32\httpprxp.dll
2016-06-17 17:46:44	5DC9ED2C89D94C47892DF237D604BDC8	200192	----a-w-	C:\WINDOWS\System32\Windows.Internal.Management.dll
2016-06-17 17:46:44	4F34CCC76E60CCE8BA12663A747EC05B	57344	----a-w-	C:\WINDOWS\System32\dhcpcsvc6.dll
2016-06-17 17:46:43	EA972DB9D4E5CF7FAC5A5D863FFD4E69	116224	----a-w-	C:\WINDOWS\System32\dmcertinst.exe
2016-06-17 17:46:43	E3486D5688BF02E6DBDF12F84D3A0990	1152000	----a-w-	C:\WINDOWS\System32\win32kbase.sys
2016-06-17 17:46:43	CEF14DB231B344BBDBF7C04A12D8336B	293888	----a-w-	C:\WINDOWS\System32\dhcpcore.dll
2016-06-17 17:46:43	7A98F35CAA944483BE4D12D78F36275C	23552	----a-w-	C:\WINDOWS\System32\mapsupdatetask.dll
2016-06-17 17:46:43	4C6145BBEFDD7092ABFA5F7614BA2E66	53760	----a-w-	C:\WINDOWS\System32\FwRemoteSvr.dll
2016-06-17 17:46:43	3C563003AFDD2E6CDC199C2EBDB07886	784896	----a-w-	C:\WINDOWS\System32\NMAA.dll
2016-06-17 17:46:43	218D67A9C0A9D90CB017C0FB1A8EA164	325120	----a-w-	C:\WINDOWS\System32\MusUpdateHandlers.dll
2016-06-17 17:46:42	F62430C1C9A23E5BAD5C4A43A66F662B	87040	----a-w-	C:\WINDOWS\System32\MapsBtSvc.dll
2016-06-17 17:46:42	D85A4E359C2143E1610C9138A7841578	141824	----a-w-	C:\WINDOWS\System32\enrollmentapi.dll
2016-06-17 17:46:42	A9E193BE154B7145EF06FD0FD10232A0	151040	----a-w-	C:\WINDOWS\System32\mdmregistration.dll
2016-06-17 17:46:42	77A2A2B7770B73B3FD9CEC2FEE649B6D	140800	----a-w-	C:\WINDOWS\System32\MusNotification.exe
2016-06-17 17:46:42	64E6A14C4CE85695035BDAA792DAB617	74752	----a-w-	C:\WINDOWS\System32\MapsCSP.dll
2016-06-17 17:46:42	2B1D3B60AD7B0FFD18AE23BB1E2DED8E	74240	----a-w-	C:\WINDOWS\System32\browserbroker.dll
2016-06-17 17:46:41	9BD17D372080234722C1139DAC039C9D	93696	----a-w-	C:\WINDOWS\System32\fontsub.dll
2016-06-17 17:46:40	CDD21C25CA12F3900D10F5174A4062CB	334336	----a-w-	C:\WINDOWS\System32\bcastdvr.exe
2016-06-17 17:46:40	9EA20A168AC2F1341F7085EFBA3EACA1	70656	----a-w-	C:\WINDOWS\System32\AppCapture.dll
2016-06-17 17:46:40	69E1CFC67F4A4043F01AD3513A73ED02	161280	----a-w-	C:\WINDOWS\System32\InstallAgent.exe
2016-06-17 17:46:40	50F70E15AC5F9F142016D6E43E5720C9	142336	----a-w-	C:\WINDOWS\System32\NetSetupSvc.dll
2016-06-17 17:46:39	FB68B81CBD3F79D09E3EA1D0DFB424B6	37376	----a-w-	C:\WINDOWS\System32\atmlib.dll
====== C:\WINDOWS\system32\drivers =====
2016-06-17 17:47:24	7071E59EECE4D0C5604C17BAF98B228D	23552	----a-w-	C:\WINDOWS\System32\drivers\dumpsdport.sys
2016-06-17 17:47:18	D5DB005C7F6497C018674389F138C1E9	604672	----a-w-	C:\WINDOWS\System32\drivers\srv2.sys
2016-06-17 17:47:18	96171BA96E62A6304A137D591DA0D60E	139616	----a-w-	C:\WINDOWS\System32\drivers\ksecpkg.sys
2016-06-17 17:47:16	15B07D722048FE2AE0DB9D103EFC20A2	1714528	----a-w-	C:\WINDOWS\System32\drivers\dxgkrnl.sys
2016-06-17 17:47:15	335CA3D7AA11884E8AE978110792E2DA	505136	----a-w-	C:\WINDOWS\System32\drivers\cng.sys
2016-06-17 17:47:15	17AB1FA87669F4B800578A54C03A96D6	211456	----a-w-	C:\WINDOWS\System32\drivers\netbt.sys
2016-06-17 17:47:12	7137D8249C89FE7873353B9D644D8F53	260960	----a-w-	C:\WINDOWS\System32\drivers\pci.sys
2016-06-17 17:47:11	B3FE1C6A06E8216D83D144EBB3BEBCDB	340480	----a-w-	C:\WINDOWS\System32\drivers\srv.sys
2016-06-17 17:47:07	56AD3065D84707703706DB20FD579B2C	484192	----a-w-	C:\WINDOWS\System32\drivers\dxgmms2.sys
2016-06-17 17:46:59	EB0C5B63B76C358E7D2DFC524AC8EEB8	173920	----a-w-	C:\WINDOWS\System32\drivers\tpm.sys
2016-06-17 17:46:58	AB6553DCB0C072907EB3953A5E0590AD	186880	----a-w-	C:\WINDOWS\System32\drivers\srvnet.sys
2016-06-17 17:46:56	7288BF26286E3C56440E76258AA2595A	96096	----a-w-	C:\WINDOWS\System32\drivers\partmgr.sys
2016-06-17 17:46:55	4B05B2A387DFD152F538C1546E4FB75F	203104	----a-w-	C:\WINDOWS\System32\drivers\ufx01000.sys
2016-06-17 17:46:45	D0BCF377413EDDDDC744A815D82C7510	104960	----a-w-	C:\WINDOWS\System32\drivers\Ndu.sys
2016-06-17 17:46:44	6D88D7636D560BDCF818E52A592AFC26	114688	----a-w-	C:\WINDOWS\System32\drivers\hidclass.sys
2016-06-07 17:57:43	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-06-01 15:30:56	B2292997F9B42CF0BADE30F455358B29	233984	----a-w-	C:\WINDOWS\System32\drivers\mrxsmb10.sys
2016-06-01 15:30:56	516EEA8ED37DC8C59358CA3B6DDF8AB8	550240	----a-w-	C:\WINDOWS\System32\drivers\fvevol.sys
2016-06-01 15:30:56	418BD058AAB6A6EF198325EE44522C65	1861984	----a-w-	C:\WINDOWS\System32\drivers\tcpip.sys
2016-06-01 15:30:55	C195E7756F795F10338ECE0AD20B72D2	1820512	----a-w-	C:\WINDOWS\System32\drivers\ntfs.sys
2016-06-01 15:30:55	37256414284A0A85A3DDD3FB2A39874B	922456	----a-w-	C:\WINDOWS\System32\drivers\ndis.sys
2016-06-01 15:30:54	BE1E27EBF119A4487BF6B510C8A4D258	114176	----a-w-	C:\WINDOWS\System32\drivers\dfsc.sys
2016-06-01 15:30:54	89A56A86A03414C8ED5A96A52C3BA7B2	381280	----a-w-	C:\WINDOWS\System32\drivers\mrxsmb.sys
2016-06-01 15:30:47	EDD2A57B751ED89810289B87001AA507	424448	----a-w-	C:\WINDOWS\System32\drivers\nwifi.sys
2016-06-01 15:30:47	D49CBC052916F95D184713CA6FC37C5C	80896	----a-w-	C:\WINDOWS\System32\drivers\rasl2tp.sys
2016-06-01 15:30:47	D1DC9881C02C437CC174E59C8B9FFABC	76288	----a-w-	C:\WINDOWS\System32\drivers\filecrypt.sys
2016-06-01 15:30:47	BC689AD98B66EABDA483CCE6813EA7F9	124256	----a-w-	C:\WINDOWS\System32\drivers\appid.sys
2016-06-01 15:30:47	B19EB766868E8462DF6BC2EC41DA8C62	94208	----a-w-	C:\WINDOWS\System32\drivers\bridge.sys
2016-06-01 15:30:47	6A598301C23E2EB0D76559243FE15B2E	771424	----a-w-	C:\WINDOWS\System32\drivers\http.sys
2016-06-01 15:30:47	1DEB289EBBD469CB84C00DE95606B7B6	497152	----a-w-	C:\WINDOWS\System32\drivers\WdiWiFi.sys
2016-06-01 15:30:41	F4CBC1587417F631BBDF941E19255478	107872	----a-w-	C:\WINDOWS\System32\drivers\USBSTOR.SYS
2016-06-01 15:30:41	C52523875786AADA77E2A9FEE4412900	462688	----a-w-	C:\WINDOWS\System32\drivers\acpi.sys
2016-06-01 15:30:41	B44E2C9B9C06B1DA0BAB833CBE191428	48640	----a-w-	C:\WINDOWS\System32\drivers\usbser.sys
2016-06-01 15:30:41	B00C56D908E5FD0F0013F839F6A2CAC0	278368	----a-w-	C:\WINDOWS\System32\drivers\fastfat.sys
2016-06-01 15:30:41	A95DCF5D24562CF80CF407F76AC48D31	77824	----a-w-	C:\WINDOWS\System32\drivers\serial.sys
2016-06-01 15:30:41	A277AF18E4AB00E3E29F23D8EA2B1C63	18944	----a-w-	C:\WINDOWS\System32\drivers\xinputhid.sys
2016-06-01 15:30:41	76E954267C5F2308BBECA6B3A3E604DC	430432	----a-w-	C:\WINDOWS\System32\drivers\USBHUB3.SYS
2016-06-01 15:30:41	76BD7CFECEB5C6217AA75D935EDB9BCB	104800	----a-w-	C:\WINDOWS\System32\drivers\ufxsynopsys.sys
2016-06-01 15:30:41	62EA3346B54204B2C2F61E1241A1FAE5	77664	----a-w-	C:\WINDOWS\System32\drivers\sdport.sys
2016-06-01 15:30:41	5B7AEDE05625BCBCC07B14DCF8A51362	83808	----a-w-	C:\WINDOWS\System32\drivers\pdc.sys
2016-06-01 15:30:41	5895F92727C78EEB4DCC3B64C040A56C	287072	----a-w-	C:\WINDOWS\System32\drivers\USBXHCI.SYS
2016-06-01 15:30:41	47349433740550AE4A383DEDA2534113	336224	----a-w-	C:\WINDOWS\System32\drivers\dxgmms1.sys
2016-06-01 15:30:41	28972E6FEBC61ACFD4A83400D9A6058D	46080	----a-w-	C:\WINDOWS\System32\drivers\UcmCx.sys
2016-06-01 15:30:41	2423043FACA29FD128F7E06FDF40DE93	201216	----a-w-	C:\WINDOWS\System32\drivers\xboxgip.sys
2016-06-01 15:30:41	1458CDE021FA518E6CB3AC93437253AD	241664	----a-w-	C:\WINDOWS\System32\drivers\portcls.sys
2016-06-01 15:30:40	8D537D808124F5D69D904DBB87167DAB	228696	----a-w-	C:\WINDOWS\System32\drivers\sdbus.sys
2016-06-01 15:30:40	5CE18CC3E2C277CB7EA72FD13FF0D3DD	153952	----a-w-	C:\WINDOWS\System32\drivers\dumpsd.sys
2016-06-01 14:43:47	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\System32\drivers\Msft_Kernel_SynTP_01009.Wdf
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2016-06-21 13:27:11	--------	d-----w-	C:\Program Files\trend micro
2016-06-01 15:18:53	--------	d-----w-	C:\Program Files\Reference Assemblies
2016-06-01 15:18:53	--------	d-----w-	C:\Program Files\MSBuild
2016-06-01 14:52:35	--------	d-----w-	C:\Program Files\Common Files\SpeechEngines
2016-06-01 14:44:16	--------	d---a-w-	C:\Program Files\ATI Technologies
2016-06-01 14:43:43	--------	d-----w-	C:\Program Files\Synaptics
2016-06-01 14:43:14	--------	d-----w-	C:\Program Files\AMD
======= C: =====
====== C:\Users\Koen\AppData\Roaming ======
2016-06-17 18:47:19	--------	d-----w-	C:\Users\Koen\AppData\Local\MicrosoftEdge
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\Temp
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\Microsoft
2016-06-14 19:50:29	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local
2016-06-14 19:50:29	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-06-14 19:50:29	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-06-14 19:50:28	--------	d-s---r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-06-14 19:50:28	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-06-14 19:50:28	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Roaming
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-06-03 01:33:33	--------	d-----w-	C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing
2016-06-01 15:40:42	--------	d-----w-	C:\Users\Koen\AppData\Local\Comms
2016-06-01 15:24:30	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles
2016-06-01 15:20:09	--------	d-----w-	C:\Users\Koen\AppData\Local\Publishers
2016-06-01 15:18:19	--------	d-----w-	C:\Users\Koen\AppData\Local\Packages
2016-06-01 15:18:13	--------	d-----w-	C:\Users\Koen\AppData\Local\TileDataLayer
2016-06-01 15:08:01	--------	d-----w-	C:\WINDOWS\system32\config\systemprofile\AppData\Local\Packages
2016-06-01 15:01:01	--------	d-----w-	C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg2015
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2016-06-01 14:49:28	--------	d-s---r-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-06-01 14:49:28	--------	d-----w-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-06-01 14:49:28	--------	d-----w-	C:\Users\Koen\AppData\Roaming
2016-06-01 14:49:28	--------	d-----w-	C:\Users\Koen\AppData\Local\Temp
2016-06-01 14:49:28	--------	d-----w-	C:\Users\Koen\AppData\Local\Microsoft
2016-06-01 14:49:28	--------	d-----w-	C:\Users\Koen\AppData\Local
2016-06-01 14:49:28	--------	d-----r-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-06-01 14:49:28	--------	d-----r-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-06-01 14:49:28	--------	d-----r-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-06-01 14:49:28	--------	d-----r-	C:\Users\Koen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
====== C:\Users\Koen ======
2016-06-21 13:20:36	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Koen\Downloads\RSIT.exe
2016-06-17 19:17:07	65CA6162FCCECF0FC4D8473DC6FD2046	987728	----a-w-	C:\Users\Koen\Downloads\ChromeSetup.exe
2016-06-14 19:50:30	6FC234AD3752E1267B34FB12BCD6718B	20	--sha-w-	C:\Users\DefaultAppPool\ntuser.ini
2016-06-14 19:50:28	--------	d--h--w-	C:\Users\DefaultAppPool\AppData
2016-06-14 19:50:28	--------	d-----w-	C:\Users\DefaultAppPool\Saved Games
2016-06-14 19:50:28	--------	d-----w-	C:\Users\DefaultAppPool\Cookies
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Videos
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Pictures
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Music
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Links
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Favorites
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Downloads
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Documents
2016-06-14 19:50:28	--------	d-----r-	C:\Users\DefaultAppPool\Desktop
2016-06-01 15:32:09	--------	d-----r-	C:\Users\Koen\OneDrive
2016-06-01 15:23:43	--------	d-----w-	C:\ProgramData\ATI
2016-06-01 15:18:00	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Koen\ntuser.ini
2016-06-01 14:59:02	--------	d-----w-	C:\Users\Default\Cookies
2016-06-01 14:49:28	--------	d--h--w-	C:\Users\Koen\AppData
2016-06-01 14:48:35	18AEB69B579FA19914018D0CE49C888D	131072	----a-w-	C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bak
2016-06-01 14:48:35	03371FD934C8C5E0A86EDB13DDA0554A	4194304	----a-w-	C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bin
2016-06-01 14:44:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-06-01 14:44:47	--------	d-----w-	C:\ProgramData\AMD
2016-06-01 14:44:06	--------	d-----w-	C:\ProgramData\Package Cache

====== C: exe-files ==
2016-06-22 11:59:59	39BD7C7C70968101305664E89B51ED9B	102	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$IF44HTH.exe
2016-06-22 11:59:53	76F0BCCB48CC436B906CE817265535F2	102	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$IR1C9Z8.exe
2016-06-22 11:59:38	F1DE0EFFDCE36442D83801169F571041	102	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$I90D96V.exe
2016-06-22 11:59:15	7EA0260488F304D68067A50B33A23AC2	1309184	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$R90D96V.exe
2016-06-21 13:27:11	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Koen.exe
2016-06-21 13:22:59	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$RR1C9Z8.exe
2016-06-21 13:21:13	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2280848091-241635482-3604494453-1000\$RF44HTH.exe
2016-06-21 13:20:36	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Koen\Downloads\RSIT.exe
2016-06-17 19:17:50	535800AD1D619B4F105736D44608DAA3	45780896	----a-w-	C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\51.0.2704.103\51.0.2704.103_chrome_installer.exe
2016-06-17 19:17:07	65CA6162FCCECF0FC4D8473DC6FD2046	987728	----a-w-	C:\Users\Koen\Downloads\ChromeSetup.exe
2016-06-17 17:49:49	200ED9927BF3BAABDD49959754C63B45	6082400	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
2016-06-17 17:49:14	AE6E1FEA9741D7B2712B6D1DD0D01343	42688	----a-w-	C:\Windows\System32\CompatTelRunner.exe
2016-06-17 17:49:13	71DF6482300C802BB104514F34B460F0	91648	----a-w-	C:\Windows\System32\tdlrecover.exe
2016-06-17 17:49:06	61E3A6DA946753F8A0F8F857121FA532	428032	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe
2016-06-17 17:49:05	FB565E653BC5F2CF131534664A9F9256	171520	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
2016-06-17 17:48:04	B09DFF7CD8E40EA77559C87F3BF310DE	703840	----a-w-	C:\Windows\System32\WWAHost.exe
2016-06-17 17:47:59	9C6FFAEF852BD2BDE4A22E4458343E4A	5085552	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2016-06-17 17:47:48	F0785A9FD940D5619441212D73567DEC	80896	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
2016-06-17 17:47:48	E391DD57E6965C8D2DB05A4A52F80EC8	546456	----a-w-	C:\Windows\System32\fontdrvhost.exe
2016-06-17 17:47:26	FB8900191867C5B4AA61AF85B8DD1869	4074160	----a-w-	C:\Windows\explorer.exe
2016-06-17 17:47:19	7C94DE2E519F5A07CDB786B9E876759B	5797216	----a-w-	C:\Windows\System32\ntoskrnl.exe
2016-06-17 17:47:18	0B2EB30A9E987E8F85C9B28BDE04F028	254656	----a-w-	C:\Windows\System32\LockAppHost.exe
2016-06-17 17:47:17	FF85D524DD10A69B20B6D1EFAE94E5F1	122368	----a-w-	C:\Windows\System32\omadmclient.exe
2016-06-17 17:47:17	737C4031C65BDD190E470E051F48B40D	79360	----a-w-	C:\Windows\System32\DeviceEnroller.exe
2016-06-17 17:47:16	257E403813627CF4BDBC9D936C151336	820416	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2016-06-17 17:46:58	C4245A2059B4C9F1DC7E8221F2866B7F	136032	----a-w-	C:\Windows\System32\NetworkUXBroker.exe
2016-06-17 17:46:56	91E692689D548E3C5E7FFE6D42322D86	23776	----a-w-	C:\Windows\System32\wuauclt.exe
2016-06-17 17:46:54	585353BA69D1C2F9F64E148FF981AF5D	115200	----a-w-	C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
2016-06-17 17:46:43	EA972DB9D4E5CF7FAC5A5D863FFD4E69	116224	----a-w-	C:\Windows\System32\dmcertinst.exe
2016-06-17 17:46:42	77A2A2B7770B73B3FD9CEC2FEE649B6D	140800	----a-w-	C:\Windows\System32\MusNotification.exe
2016-06-17 17:46:40	CDD21C25CA12F3900D10F5174A4062CB	334336	----a-w-	C:\Windows\System32\bcastdvr.exe
2016-06-17 17:46:40	69E1CFC67F4A4043F01AD3513A73ED02	161280	----a-w-	C:\Windows\System32\InstallAgent.exe
2016-06-17 17:46:15	1DCFB5841D5212C9EE28A58D6474A9D8	12833960	----a-w-	C:\Users\Koen\AppData\Roaming\Azureus\tmp\AZU5859448892487534388.tmp\Vuze_5.7.2.0_win32.exe
=== C: other files ==
2016-06-17 18:51:15	76CDB2BAD9582D23C1F6F4D868218D6C	22	----a-w-	C:\Users\Koen\Downloads\the-bunny-game_dutch-1157485.zip
2016-06-17 17:47:28	8715D1B7B9E57105FCC997A8F936E655	2974208	----a-w-	C:\Windows\System32\win32kfull.sys
2016-06-17 17:47:24	7071E59EECE4D0C5604C17BAF98B228D	23552	----a-w-	C:\Windows\System32\drivers\dumpsdport.sys
2016-06-17 17:47:18	D5DB005C7F6497C018674389F138C1E9	604672	----a-w-	C:\Windows\System32\drivers\srv2.sys
2016-06-17 17:47:18	96171BA96E62A6304A137D591DA0D60E	139616	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2016-06-17 17:47:16	15B07D722048FE2AE0DB9D103EFC20A2	1714528	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2016-06-17 17:47:15	335CA3D7AA11884E8AE978110792E2DA	505136	----a-w-	C:\Windows\System32\drivers\cng.sys
2016-06-17 17:47:15	17AB1FA87669F4B800578A54C03A96D6	211456	----a-w-	C:\Windows\System32\drivers\netbt.sys
2016-06-17 17:47:12	7137D8249C89FE7873353B9D644D8F53	260960	----a-w-	C:\Windows\System32\DriverStore\FileRepository\pci.inf_x86_82759aab6ef1d8f7\pci.sys
2016-06-17 17:47:12	7137D8249C89FE7873353B9D644D8F53	260960	----a-w-	C:\Windows\System32\drivers\pci.sys
2016-06-17 17:47:11	B3FE1C6A06E8216D83D144EBB3BEBCDB	340480	----a-w-	C:\Windows\System32\drivers\srv.sys
2016-06-17 17:47:07	56AD3065D84707703706DB20FD579B2C	484192	----a-w-	C:\Windows\System32\drivers\dxgmms2.sys
2016-06-17 17:46:59	EB0C5B63B76C358E7D2DFC524AC8EEB8	173920	----a-w-	C:\Windows\System32\DriverStore\FileRepository\tpm.inf_x86_2a634eca5bdf78be\tpm.sys
2016-06-17 17:46:59	EB0C5B63B76C358E7D2DFC524AC8EEB8	173920	----a-w-	C:\Windows\System32\drivers\tpm.sys
2016-06-17 17:46:58	AB6553DCB0C072907EB3953A5E0590AD	186880	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2016-06-17 17:46:56	7288BF26286E3C56440E76258AA2595A	96096	----a-w-	C:\Windows\System32\drivers\partmgr.sys
2016-06-17 17:46:55	4B05B2A387DFD152F538C1546E4FB75F	203104	----a-w-	C:\Windows\System32\drivers\ufx01000.sys
2016-06-17 17:46:45	D0BCF377413EDDDDC744A815D82C7510	104960	----a-w-	C:\Windows\System32\drivers\Ndu.sys
2016-06-17 17:46:45	C6607AD69A29D5047A840807D7DA4A9F	744448	----a-w-	C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\bthport.sys
2016-06-17 17:46:44	6D88D7636D560BDCF818E52A592AFC26	114688	----a-w-	C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_1049fc7c0193da3c\hidclass.sys
2016-06-17 17:46:44	6D88D7636D560BDCF818E52A592AFC26	114688	----a-w-	C:\Windows\System32\drivers\hidclass.sys
2016-06-17 17:46:43	E3486D5688BF02E6DBDF12F84D3A0990	1152000	----a-w-	C:\Windows\System32\win32kbase.sys
2016-06-17 17:46:40	E28862BEDD2C4F314BB4EF05F03CDE46	61952	----a-w-	C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\BTHUSB.SYS
2016-06-17 17:46:39	ACBC2A41111C7EF0E72BEA6B8F856DFF	93184	----a-w-	C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\bthenum.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-2280848091-241635482-3604494453-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\Koen\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe MSRun"
"HotkeyMon"="AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe"
"HotkeyService"="AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2015\avuirunnerx.exe C:\Program Files\AVG\AVG2015\avgui.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SynAsusAcpi"="%ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\Koen\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Fitbit Connect]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Fitbit Connect"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Fitbit Connect\\Fitbit Connect.exe\" /autorun"


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2015 20:18]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2015 20:18]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Chromium Look ======================


Google Search - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Pixlr-o-matic - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehcibdjmpjlekgjhepbfmenfppliikcj
Digital Clock - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo
Google Docs Offline - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
AdBlock - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
CircuitLab - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\haghanbgfkfpmepoohpigmglbfejljoj
Custom Googleâ„¢ Background - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\jepibmfmhopgkplegmkjgifmhabbjadg
Webcam Toy - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade
Google Maps - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh
Clock - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg
Chrome Web Store Payments - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Koen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Chrome Web Store Payments - Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://mysearch.avg.com/?cid=%7BED064264-58A8-4A49-AC1D-70C0589E6104%7D&mid=7dadf304c04f47d2855c854de0d7e04e-b0215c80d42f9774bc6946c3cf3ac95360dc2b04&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-03%2014:08:00&v=4.1.0.411&pid=wtu&sg=&sap=hp"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} - https://mysearch.avg.com/search?cid={ED064264-58A8-4A49-AC1D-70C0589E6104}&mid=7dadf304c04f47d2855c854de0d7e04e-b0215c80d42f9774bc6946c3cf3ac95360dc2b04&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2015-03-03

==== Reset Google Chrome ======================

C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Preferences will be reset at reboot
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences will be reset at reboot
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data-journal was reset successfully

==== HijackThis Entries ======================

O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avuirunnerx.exe" C:\Program Files\AVG\AVG2015\avgui.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Koen\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Koen\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\Windows\system32\AsusService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Fitbit Connect Service (Fitbit Connect) - Fitbit, Inc. - C:\Program Files\Fitbit Connect\FitbitConnectService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Preferences" not found
"C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences" not found
"C:\Users\Koen\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found

==== EOF on wo 22-06-2016 at 14:18:52,51 ======================