Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Gebruiker on zo 24-07-2016 at 7:34:47,95. Microsoft Windows 10 Home 10.0.10586 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek (1).exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 24-7-2016 07:37:25 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Program Files\FastestTube deleted successfully C:\Program Files\FunWebProducts deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\Nokia deleted successfully C:\Program Files\Common Files\Apple deleted successfully C:\PROGRA~2\338bef5a deleted successfully C:\PROGRA~2\a564eac1-2143-1 deleted successfully C:\PROGRA~2\a564eac1-22f7-0 deleted successfully C:\PROGRA~2\b0a48b4d-0063-0 deleted successfully C:\PROGRA~2\b0a48b4d-0281-0 deleted successfully C:\PROGRA~2\b0a48b4d-08d1-0 deleted successfully C:\PROGRA~2\b0a48b4d-0a63-0 deleted successfully C:\PROGRA~2\b0a48b4d-1121-1 deleted successfully C:\PROGRA~2\b0a48b4d-1353-0 deleted successfully C:\PROGRA~2\b0a48b4d-2fe7-1 deleted successfully C:\PROGRA~2\b0a48b4d-3eb3-0 deleted successfully C:\PROGRA~2\b0a48b4d-4cb1-0 deleted successfully C:\PROGRA~2\b0a48b4d-5b21-1 deleted successfully C:\PROGRA~2\b0a48b4d-78c7-0 deleted successfully C:\PROGRA~2\Comms deleted successfully C:\PROGRA~2\SoftwareDistribution deleted successfully C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\Gebruiker\AppData\Local\ActiveSync deleted successfully C:\Users\Gebruiker\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Gebruiker\AppData\Local\EmieSiteList deleted successfully C:\Users\Gebruiker\AppData\Local\EmieUserList deleted successfully C:\Users\Gebruiker\AppData\Local\FSDART deleted successfully C:\Users\Gebruiker\AppData\Local\genienext deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9e28b297-11d4-4293-aa6f-558658ee66ae} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{cc28794a-99d4-4b1b-bccf-b065ce5f9feb} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} deleted successfully HKEY_CLASSES_ROOT\CLSID\{b287e6b2-868b-4ac1-acce-c69eb5fd29d1} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9e28b297-11d4-4293-aa6f-558658ee66ae} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cc28794a-99d4-4b1b-bccf-b065ce5f9feb} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully HKEY_CLASSES_ROOT\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{b287e6b2-868b-4ac1-acce-c69eb5fd29d1} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{665CB5B7-4C3B-4995-8CEC-1F4D5860EDC9} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{3136026a-7920-40da-bacb-7518f36747c5} deleted successfully ==== Installed Programs ====================== 7-Zip 15.14 7-Zip 9.22beta Adobe Acrobat DC Adobe Acrobat Reader DC - Nederlands Adobe Refresh Manager ANT Drivers Installer x86 Belgium e-ID middleware 4.1.5 (build 1639) CCleaner Computer Security 14.139.101.0 (release) Definition Update for Microsoft Office 2010 (KB3115321) 32-Bit Edition Elevated Installer F-Secure CCF Reputation F-Secure CCF Scanning 1.66.103.568 (release) F-Secure Network CCF 1.03.139 F-Secure SafeSearch 1.07.110.0 (release) Garmin Express Garmin Express Tray Google Earth Google Update Helper Internet Speed Tracker Internet Explorer Toolbar Java 8 Update 101 Java Auto Updater Microsoft .NET Framework 4.5.1 (NLD) Microsoft .NET Framework 4.5.2 Microsoft Application Error Reporting Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x86) Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Home and Student 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Single Image 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD Microsoft Works Microsoft_VC100_CRT_SP1_x86 MSVC80_x86_v2 MSVC90_x86 Online Safety 2.139.3446.2391 QuickTime 7 Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3115322) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956063) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054984) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101520) 32-Bit Edition Security Update for Microsoft Outlook 2010 (KB3115246) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3115118) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3114872) 32-Bit Edition Security Update for Microsoft Visio Viewer 2010 (KB2999465) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3115317) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD Telenet Security Pack TomTom HOME Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2999508) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2494150) Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2881030) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft Office 2010 (KB3114750) 32-Bit Edition Update for Microsoft Office 2010 (KB3114989) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft OneNote 2010 (KB3114410) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114756) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update voor het stuurprogramma voor Windows Mobile Apparaatcentrum VASCO Card Reader Plug-In (32-Bit) VASCO Smart Card Reader Plug-In (User) Visual Studio C++ 10.0 Runtime VLC media player Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources ==== Running Processes ====================== C:\WINDOWS\system32\lsass.exe C:\Windows\System32\WUDFHost.exe C:\WINDOWS\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Telenet Security Pack\fshoster32.exe C:\Program Files\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\mqsvc.exe C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Anti-Virus\fssm32.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\System32\WinLogon.exe C:\WINDOWS\System32\dwm.exe C:\Windows\System32\WUDFHost.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\taskhostw.exe C:\WINDOWS\Explorer.EXE C:\Windows\System32\RuntimeBroker.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe C:\Program Files\Telenet Security Pack\fshoster32.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\Nikon\NkView6\NkvMon.exe C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE C:\Program Files\Canon\Quick Menu\CNQMSWCS.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\System32\fontdrvhost.exe C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Common\FSLAUNCH.EXE C:\Users\Gebruiker\Downloads\zoek (1).exe C:\WINDOWS\system32\conhost.exe C:\WINDOWS\system32\conhost.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k apphost C:\WINDOWS\System32\svchost.exe -k utcsvc C:\WINDOWS\system32\svchost.exe -k iissvcs C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k appmodel C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\System32\svchost.exe -k swprv ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9e28b297-11d4-4293-aa6f-558658ee66ae}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cc28794a-99d4-4b1b-bccf-b065ce5f9feb}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\Program Files\InternetSpeedTracker_9t deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 3037 MB CPU Info: Intel(R) Celeron(R) CPU E3200 @ 2.40GHz CPU Speed: 2409,3 MHz Sound Card: Luidsprekers (High Definition A | Digitale audio (S/PDIF) (High D | Display Adapters: Intel(R) G41 Express Chipset (Microsoft Corporation - WDDM 1.1) | Intel(R) G41 Express Chipset (Microsoft Corporation - WDDM 1.1) Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SH-S223C Ports: COM1 | COM2 | COM3 LPT1 Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 465,2GB | K: 100,0MB Hard Disks - Free: C: 205,9GB | K: 31,9MB Manufacturer *: Award Software International, Inc. BIOS Info: AT/AT COMPATIBLE | 11/04/09 | GBT - 42302e31 Time Zone: Romance (standaardtijd) Motherboard *: Gigabyte Technology Co., Ltd. G41M-ES2L Country: Nederland Language: NLD ==== System Specs (Software) ====================== Internet Explorer Version: 11.494.10586.0 Adobe Reader version: 15.17.20050.192152 Sun Java version: 1.8.0_101 (32-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-07-13 16:37:06 B6113983ED77D6FE99BDEE461E7BE004 4074160 ----a-w- C:\WINDOWS\explorer.exe 2016-07-13 16:36:25 57FC18732C2B6A90B8DF6337A9029D26 898048 ----a-w- C:\WINDOWS\HelpPane.exe 2016-06-24 13:19:44 6BC736FF5F41862074AF6989877BBCDE 20702 ----a-w- C:\WINDOWS\prodsett_copy.ini ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\system32 ===== 2016-07-13 16:37:59 FC03376F464F07369BC07A6D9BE8CA8D 88576 ----a-w- C:\WINDOWS\System32\olepro32.dll 2016-07-13 16:37:59 F5DE16C4E48D0D44D10948D42FC1E241 23552 ----a-w- C:\WINDOWS\System32\mapsupdatetask.dll 2016-07-13 16:37:59 E4873BE74A0BE6F30A6948F882E6E7FC 50176 ----a-w- C:\WINDOWS\System32\MosHostClient.dll 2016-07-13 16:37:59 B7299EF9D5D4C7D480AC5A8ACEA402E1 87040 ----a-w- C:\WINDOWS\System32\MapsBtSvc.dll 2016-07-13 16:37:59 3F695F3A23A019E6DF7BAC57276B1E77 349696 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll 2016-07-13 16:37:58 F51050F1C1AC01ABB2FFE27D11F13775 612352 ----a-w- C:\WINDOWS\System32\MapsStore.dll 2016-07-13 16:37:58 E1070F3504C85D60C5866B6775E6589A 74752 ----a-w- C:\WINDOWS\System32\MapsCSP.dll 2016-07-13 16:37:58 3A847DC60430E6B788D3986CA2EFDE5B 54784 ----a-w- C:\WINDOWS\System32\moshost.dll 2016-07-13 16:37:58 0BBEA534AB25CEBFE72BD191FF84F593 59904 ----a-w- C:\WINDOWS\System32\MosStorage.dll 2016-07-13 16:37:58 0B6A790F69FC2D67EEFF6F015EF24C5B 800768 ----a-w- C:\WINDOWS\System32\JpMapControl.dll 2016-07-13 16:37:57 F0781A46DFE3A6C48FCA23FCDDA69B4B 957608 ----a-w- C:\WINDOWS\System32\ole32.dll 2016-07-13 16:37:57 E5E4601DFC477E92C2DEFBC50569AA2B 1896960 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll 2016-07-13 16:37:57 7D5E17FC31FA563A94A8251AF8ADDEE4 1498624 ----a-w- C:\WINDOWS\System32\urlmon.dll 2016-07-13 16:37:56 D5543D8C9168DBE558C93438F08CE7DB 203776 ----a-w- C:\WINDOWS\System32\moshostcore.dll 2016-07-13 16:37:56 631450FBA9C8677C00F5A577905ECE36 784896 ----a-w- C:\WINDOWS\System32\NMAA.dll 2016-07-13 16:37:56 21BE44272CAC55D1B6C88C1E0BA78F8E 2501632 ----a-w- C:\WINDOWS\System32\wininet.dll 2016-07-13 16:37:55 CB84B6382E21D875D0EC9665CD6908B8 711680 ----a-w- C:\WINDOWS\System32\MapControlCore.dll 2016-07-13 16:37:55 3BFBC5158CC4CA508FEC8284DB6727FD 5205504 ----a-w- C:\WINDOWS\System32\BingMaps.dll 2016-07-13 16:37:54 608F7830161D98DBDD6324F74E9165C4 2921880 ----a-w- C:\WINDOWS\System32\iertutil.dll 2016-07-13 16:37:53 D0A2BA04B1E3F6C1F0E52F65D97EF39D 703840 ----a-w- C:\WINDOWS\System32\WWAHost.exe 2016-07-13 16:37:53 3011BF9500EE0A70CAEB8641E5311840 1733632 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.dll 2016-07-13 16:37:52 D5ACEA2845E642A7ABF383C316CABDA6 6295552 ----a-w- C:\WINDOWS\System32\mos.dll 2016-07-13 16:37:51 00C8B201BE1C9705906A484DBE5D6332 4759040 ----a-w- C:\WINDOWS\System32\d2d1.dll 2016-07-13 16:37:50 D8F75D59301833722BFB4893A47F57F2 13018112 ----a-w- C:\WINDOWS\System32\Windows.UI.Xaml.dll 2016-07-13 16:37:49 DFA5B5265D65E635A0BAE3ED0AD1E9E6 1152000 ----a-w- C:\WINDOWS\System32\win32kbase.sys 2016-07-13 16:37:49 AE25638F69C8DB0F22C5B86992C0BD39 180736 ----a-w- C:\WINDOWS\System32\cdd.dll 2016-07-13 16:37:48 E4C9CBFBCF45A8432CED1F30EAE9BF40 2973696 ----a-w- C:\WINDOWS\System32\win32kfull.sys 2016-07-13 16:37:47 84265A0795371B9B4CF6E2030029E3FA 5793632 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe 2016-07-13 16:37:46 94C9FEB399F8077E01CF7EA32C826DF8 5598832 ----a-w- C:\WINDOWS\System32\sppsvc.exe 2016-07-13 16:37:44 7CDA291CF22B91DDBB88B5089EBE25CE 521152 ----a-w- C:\WINDOWS\System32\dxgi.dll 2016-07-13 16:37:43 4963662B1CBB0035FD5D6832824DC7B6 2186864 ----a-w- C:\WINDOWS\System32\d3d11.dll 2016-07-13 16:37:42 446341875596024C4AA262B1709BB017 1337680 ----a-w- C:\WINDOWS\System32\sppobjs.dll 2016-07-13 16:37:40 E5DD7B8A4023B9277C434405849BB43A 2680320 ----a-w- C:\WINDOWS\System32\msftedit.dll 2016-07-13 16:37:40 C34CC619C1F747F81D2C2C47D5C1B095 2604032 ----a-w- C:\WINDOWS\System32\CertEnroll.dll 2016-07-13 16:37:39 0313658DF0E7A0F28F9580AF15B37531 1626112 ----a-w- C:\WINDOWS\System32\dwmcore.dll 2016-07-13 16:37:38 E247EAA09FE6397200205FA90BF87C1D 1536600 ----a-w- C:\WINDOWS\System32\crypt32.dll 2016-07-13 16:37:38 4658DC0CC3D348B92FA2F947C2D04567 1300016 ----a-w- C:\WINDOWS\System32\WpcMon.exe 2016-07-13 16:37:37 FC42E59329315A30F397490033055D28 2217984 ----a-w- C:\WINDOWS\System32\Wpc.dll 2016-07-13 16:37:37 4718A99B5829ACE7BA5A9D73D42F548D 727752 ----a-w- C:\WINDOWS\System32\dcomp.dll 2016-07-13 16:37:36 A2F1083A19153E3FF9399065A68D65E0 145920 ----a-w- C:\WINDOWS\System32\MusNotification.exe 2016-07-13 16:37:36 3F11F65E9CF4BB42B27CCAA1895B660F 439296 ----a-w- C:\WINDOWS\System32\Windows.Networking.UX.EapRequestHandler.dll 2016-07-13 16:37:35 D613DBA2E2D43264B6D5C1933F3A71FC 3459584 ----a-w- C:\WINDOWS\System32\UIRibbon.dll 2016-07-13 16:37:35 4BA59CBF527499CF2A65BD444C5D7320 705024 ----a-w- C:\WINDOWS\System32\samsrv.dll 2016-07-13 16:37:35 4102898869C3F72FBD50E7A7D003F530 1866104 ----a-w- C:\WINDOWS\System32\d3d9.dll 2016-07-13 16:37:34 CF034E3697C5CA79777F94116D57C6A6 2179584 ----a-w- C:\WINDOWS\System32\Windows.StateRepository.dll 2016-07-13 16:37:34 AD5D16BA745652816BE494BC6467F51B 633192 ----a-w- C:\WINDOWS\System32\sppwinob.dll 2016-07-13 16:37:33 236B3202BBB1FCD6C3319A994056E108 1522160 ----a-w- C:\WINDOWS\System32\WindowsCodecs.dll 2016-07-13 16:37:32 705C5657D8D373BE6EBA17210DB39F2B 1334680 ----a-w- C:\WINDOWS\System32\wmpmde.dll 2016-07-13 16:37:32 692D5D0DB97C91EED689E4CE8A9A2A2D 673280 ----a-w- C:\WINDOWS\System32\aadtb.dll 2016-07-13 16:37:32 5AF1EAB54122BA45CA59C10FAF3CC558 1228800 ----a-w- C:\WINDOWS\System32\Windows.Globalization.dll 2016-07-13 16:37:31 DE4C532C704002ED07B523208327629C 1987072 ----a-w- C:\WINDOWS\System32\DWrite.dll 2016-07-13 16:37:31 B9D078DCBA77C86348937DAC1C308B52 1764864 ----a-w- C:\WINDOWS\System32\pnidui.dll 2016-07-13 16:37:31 42D425CA43C93CC578D1AEA96D1E39F0 157696 ----a-w- C:\WINDOWS\System32\SimCfg.dll 2016-07-13 16:37:30 4F79496B51E1A67B496FF6A407D22D30 1467392 ----a-w- C:\WINDOWS\System32\GdiPlus.dll 2016-07-13 16:37:30 332384C9BF8D46044F3A5189A2E7C6FE 1448960 ----a-w- C:\WINDOWS\System32\dui70.dll 2016-07-13 16:37:30 0185537B188E0D77E2861628221B1A04 1166848 ----a-w- C:\WINDOWS\System32\werconcpl.dll 2016-07-13 16:37:29 43482C0BCD27FFC1E351DAAA2BA2AB09 1635840 ----a-w- C:\WINDOWS\System32\WpcWebSync.dll 2016-07-13 16:37:29 25D3ECA267A457219757D7F5BF5C04E0 49152 ----a-w- C:\WINDOWS\System32\MusNotificationUx.exe 2016-07-13 16:37:28 F964FA5FA4FAB1B2D9E6638A0CF0D7E7 2679808 ----a-w- C:\WINDOWS\System32\netshell.dll 2016-07-13 16:37:28 4C5CD8F1A3B88B8B7B9F57F2E256FAFC 639488 ----a-w- C:\WINDOWS\System32\TokenBroker.dll 2016-07-13 16:37:27 EF92A4868458485B144B04AED319681D 995296 ----a-w- C:\WINDOWS\System32\ClipUp.exe 2016-07-13 16:37:27 B99334A08D3E9CE2D4A4BFB8BBC4CB76 1448960 ----a-w- C:\WINDOWS\System32\Windows.Graphics.Printing.3D.dll 2016-07-13 16:37:27 8E4EF6589ADC681CEB20CFEBC588AEC9 385024 ----a-w- C:\WINDOWS\System32\wwanconn.dll 2016-07-13 16:37:27 50B851ADFFAC3B2EFD1B5DE4D8A94277 468992 ----a-w- C:\WINDOWS\System32\Windows.Graphics.Printing.dll 2016-07-13 16:37:26 9484654938AE332E2BD2EFEA8F596376 569856 ----a-w- C:\WINDOWS\System32\qdvd.dll 2016-07-13 16:37:26 76CBB93D895992C774D116BC7106E48A 792328 ----a-w- C:\WINDOWS\System32\rpcrt4.dll 2016-07-13 16:37:26 19D8F7D29B8B94071DAC6453690BB5CA 284160 ----a-w- C:\WINDOWS\System32\eappcfg.dll 2016-07-13 16:37:25 E71CB29D5B7F76DD58677381CBFE6847 129024 ----a-w- C:\WINDOWS\System32\SimAuth.dll 2016-07-13 16:37:25 B436CC0B1D4DB5A6C94A56516C386A3C 689152 ----a-w- C:\WINDOWS\System32\modernexecserver.dll 2016-07-13 16:37:25 9FFEF91F0BEE39FAE2305ACE3C11B4A8 3695104 ----a-w- C:\WINDOWS\System32\D3DCompiler_47.dll 2016-07-13 16:37:24 737FC213AB9B3494E8677D12F08B8703 482816 ----a-w- C:\WINDOWS\System32\duser.dll 2016-07-13 16:37:24 702A77C8EB30026CF6C16F9B1439F166 238592 ----a-w- C:\WINDOWS\System32\WindowsCodecsExt.dll 2016-07-13 16:37:24 404EA5D1E9451EAB6D37403B7CFAD736 123392 ----a-w- C:\WINDOWS\System32\ProximityCommon.dll 2016-07-13 16:37:23 C9D05CF1D20B213BF15CB7C3694453C6 826368 ----a-w- C:\WINDOWS\System32\audiosrv.dll 2016-07-13 16:37:23 73F3892DF71699E7136CAB8DF4084E8C 199680 ----a-w- C:\WINDOWS\System32\cdpsvc.dll 2016-07-13 16:37:23 44E757E3ED213ECDF25DBB65F8ED3609 401920 ----a-w- C:\WINDOWS\System32\StikyNot.exe 2016-07-13 16:37:22 E48A7C15B395A8F1537CE249183D508F 190464 ----a-w- C:\WINDOWS\System32\apprepapi.dll 2016-07-13 16:37:22 A0FEBE2531D36DC1B264670845FB5D40 6529024 ----a-w- C:\WINDOWS\System32\wwanmm.dll 2016-07-13 16:37:21 B6A9C98BFE60CB8DC992033108F3C4F0 1226752 ----a-w- C:\WINDOWS\System32\wcnwiz.dll 2016-07-13 16:37:21 B34DE2B803625C572C664C495FC3F720 846336 ----a-w- C:\WINDOWS\System32\rasgcw.dll 2016-07-13 16:37:21 041FC126ED1BFC252BDD624F72E3E3BD 66560 ----a-w- C:\WINDOWS\System32\tzautoupdate.dll 2016-07-13 16:37:20 9160F82BF248F5CD2A5CA4C109369D41 55808 ----a-w- C:\WINDOWS\System32\eappprxy.dll 2016-07-13 16:37:20 4907E0A9216A6DCEAB351F534A97FAFC 339456 ----a-w- C:\WINDOWS\System32\certcli.dll 2016-07-13 16:37:20 3F0CBFF06988DA85E283E79461AABD3F 395776 ----a-w- C:\WINDOWS\System32\WlanMediaManager.dll 2016-07-13 16:37:19 5A0B501B638941EAF2BEABCE3C645769 413696 ----a-w- C:\WINDOWS\System32\WLanConn.dll 2016-07-13 16:37:19 4DEFC3A4DF8506E6824CBE183B54DDC7 542720 ----a-w- C:\WINDOWS\System32\msra.exe 2016-07-13 16:37:19 10882529EF2A92C7E5ACCC0E6EDF8390 48640 ----a-w- C:\WINDOWS\System32\Windows.StateRepositoryClient.dll 2016-07-13 16:37:18 C52454047290A0D2D7E57D6EA4B65E0E 246784 ----a-w- C:\WINDOWS\System32\aadcloudap.dll 2016-07-13 16:37:18 733B5C5DCFEB74A288F69272A79FCBF7 248320 ----a-w- C:\WINDOWS\System32\eapp3hst.dll 2016-07-13 16:37:18 6B50CF0D71F727CEDF49216FD4AC0FB9 290304 ----a-w- C:\WINDOWS\System32\WmpDui.dll 2016-07-13 16:37:18 4FAB17214FC37489C59B19CED55D4B7F 238592 ----a-w- C:\WINDOWS\System32\eapphost.dll 2016-07-13 16:37:17 8DB2C4EACA33C85586192D5F509ADA45 164352 ----a-w- C:\WINDOWS\System32\winsrv.dll 2016-07-13 16:37:17 7BB466A82CD38CCBEE666D475BB2F3D2 199680 ----a-w- C:\WINDOWS\System32\GlobCollationHost.dll 2016-07-13 16:37:17 5642D8C9041FF6F1EE88E42C90639CA8 96256 ----a-w- C:\WINDOWS\System32\eappgnui.dll 2016-07-13 16:37:17 492C152E65A4F59D0FDDE2F2E0C34DE8 48128 ----a-w- C:\WINDOWS\System32\Windows.StateRepositoryBroker.dll 2016-07-13 16:37:17 29C26A25041DC901A01A021D31B0FDD8 292864 ----a-w- C:\WINDOWS\System32\dot3ui.dll 2016-07-13 16:37:16 FC4E7D3027D748E2D131C9DED39D4976 584704 ----a-w- C:\WINDOWS\System32\UIRibbonRes.dll 2016-07-13 16:37:16 B33928C3DED11908104A38E0C3090F7F 572928 ----a-w- C:\WINDOWS\System32\WpcWebFilter.dll 2016-07-13 16:37:16 8686191CF27D6707FC890A6CD4CB552A 260096 ----a-w- C:\WINDOWS\System32\apprepsync.dll 2016-07-13 16:37:15 4A12540CAA7A983ECA02B8A87F10F287 49152 ----a-w- C:\WINDOWS\System32\cdpreference.exe 2016-07-13 16:37:13 885314A6538EBC45846551900B0D4519 1800704 ----a-w- C:\WINDOWS\System32\NetworkMobileSettings.dll 2016-07-13 16:37:11 8F81BC95794B0C17812988D44D000170 1582080 ----a-w- C:\WINDOWS\System32\Windows.UI.Immersive.dll 2016-07-13 16:37:11 0118EEDA12F408373E1592B202FDE947 3196928 ----a-w- C:\WINDOWS\System32\SettingsHandlers_nt.dll 2016-07-13 16:37:10 A582CC5D97DA29AFE99024BBE96673F3 9919488 ----a-w- C:\WINDOWS\System32\twinui.dll 2016-07-13 16:37:07 87755FF83726D908224C08C180D42C72 12586496 ----a-w- C:\WINDOWS\System32\wmp.dll 2016-07-13 16:37:00 C6067AA23C45976EAFD557C4F07FB78C 783872 ----a-w- C:\WINDOWS\System32\RDXService.dll 2016-07-13 16:37:00 BFDF93B18EE43C568E5ED4392FA37A30 1075200 ----a-w- C:\WINDOWS\System32\Windows.UI.Shell.dll 2016-07-13 16:37:00 BDD024D6683027B841552B43863E8447 740352 ----a-w- C:\WINDOWS\System32\SharedStartModel.dll 2016-07-13 16:37:00 2255BD9E263298D817C4B885A6F82505 230912 ----a-w- C:\WINDOWS\System32\RDXTaskFactory.dll 2016-07-13 16:36:58 394B995CB6ADFEED1A37DD15FADE5068 5240960 ----a-w- C:\WINDOWS\System32\windows.storage.dll 2016-07-13 16:36:58 2321ED202AD6C4EF2BA3D11ED770AC36 23776 ----a-w- C:\WINDOWS\System32\wuauclt.exe 2016-07-13 16:36:57 71ACD991985937A797809DC460C66223 1900032 ----a-w- C:\WINDOWS\System32\wuaueng.dll 2016-07-13 16:36:56 BBB9376A3D8764A6763183340625FCEA 70656 ----a-w- C:\WINDOWS\System32\AppCapture.dll 2016-07-13 16:36:56 ACE55293E4764AEEB994D5837B43E5C4 613120 ----a-w- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll 2016-07-13 16:36:55 312472050BECE16F51493C95CCE91B57 334336 ----a-w- C:\WINDOWS\System32\bcastdvr.exe 2016-07-13 16:36:54 3EEAC377D273ABB2B6FB02DBFE8E307E 21123320 ----a-w- C:\WINDOWS\System32\shell32.dll 2016-07-13 16:36:50 9AFADED6C803568EC78309DBC6A0C6E8 2880512 ----a-w- C:\WINDOWS\System32\SystemSettingsThresholdAdminFlowUI.dll 2016-07-13 16:36:47 23D61B1CFA38F287D8C31A4816315454 4413440 ----a-w- C:\WINDOWS\System32\ExplorerFrame.dll 2016-07-13 16:36:44 23F74037E71A1D1D827A3F0DDCB8A697 4404736 ----a-w- C:\WINDOWS\System32\Windows.UI.Search.dll 2016-07-13 16:36:43 766F809BC576BC57FF3B7C343D1E8881 1862008 ----a-w- C:\WINDOWS\System32\CoreUIComponents.dll 2016-07-13 16:36:43 60BDF3616BE5000C01D0CDAF767372E1 925184 ----a-w- C:\WINDOWS\System32\localspl.dll 2016-07-13 16:36:42 96E0F50ABD43C92B4B66154113C701DE 2155008 ----a-w- C:\WINDOWS\System32\authui.dll 2016-07-13 16:36:42 05133B33670DBEBB8FCE962633D24105 267776 ----a-w- C:\WINDOWS\System32\usocore.dll 2016-07-13 16:36:41 AB142B88BF5DE8CD6CE30A4309179570 813056 ----a-w- C:\WINDOWS\System32\dosvc.dll 2016-07-13 16:36:40 53903FCDBE698C8804D0B479F4F5E29B 517632 ----a-w- C:\WINDOWS\System32\PlayToManager.dll 2016-07-13 16:36:39 80BBA3ACFB994EE71EE44DB6D25925B9 601600 ----a-w- C:\WINDOWS\System32\win32spl.dll 2016-07-13 16:36:38 EACDCB7EA7696B10EF5CC65040A44923 1349640 ----a-w- C:\WINDOWS\System32\winmde.dll 2016-07-13 16:36:38 AF3369020E352540743E7664F7CAA189 1355336 ----a-w- C:\WINDOWS\System32\propsys.dll 2016-07-13 16:36:37 6951A9D7DD8EBDA12A83B046FC315A8B 1106944 ----a-w- C:\WINDOWS\System32\SpeechPal.dll 2016-07-13 16:36:37 644CE64AB3ED902711CB0B86CF4ECA22 434688 ----a-w- C:\WINDOWS\System32\LogonController.dll 2016-07-13 16:36:36 7715F2B3D002A3C5AF975495E7EA7E7E 231936 ----a-w- C:\WINDOWS\System32\updatehandlers.dll 2016-07-13 16:36:36 643BBA6FB3DA30DC0294F14D72EEFAAB 581632 ----a-w- C:\WINDOWS\System32\twinapi.dll 2016-07-13 16:36:35 F86B36A83D1BAD61283E25704D3F6EF9 1484800 ----a-w- C:\WINDOWS\System32\PrintDialogs3D.dll 2016-07-13 16:36:35 D7BDD6C833746E64F1652D6CDE47701F 372224 ----a-w- C:\WINDOWS\System32\LockAppBroker.dll 2016-07-13 16:36:34 541C337FA4551C852FA4371AD3BF9C5B 764928 ----a-w- C:\WINDOWS\System32\Windows.UI.Cred.dll 2016-07-13 16:36:33 67BA16BD6265C9E401A3814137ECF8F4 2578432 ----a-w- C:\WINDOWS\System32\gameux.dll 2016-07-13 16:36:33 3007C3B32336A5DB00035B91CBC084DD 261632 ----a-w- C:\WINDOWS\System32\EnterpriseAppMgmtSvc.dll 2016-07-13 16:36:33 1822067468771C92A50D1C768CE3A915 183808 ----a-w- C:\WINDOWS\System32\SettingsHandlers_Maps.dll 2016-07-13 16:36:32 BEC15702CE3242133B95F0E2C69FFC88 980480 ----a-w- C:\WINDOWS\System32\winipcsecproc.dll 2016-07-13 16:36:32 B726B6583C0E880B59BE3C4463C27BAB 569752 ----a-w- C:\WINDOWS\System32\SHCore.dll 2016-07-13 16:36:32 B61C9BA4E125BC5FFF338D7B11BAC6EC 805888 ----a-w- C:\WINDOWS\System32\WSShared.dll 2016-07-13 16:36:32 AB6B502F8A7DA09AD9CDE0BB988568C2 140800 ----a-w- C:\WINDOWS\System32\shutdownux.dll 2016-07-13 16:36:31 D0B4D167CB9BA37A62BA8E7B7934F517 460800 ----a-w- C:\WINDOWS\System32\SearchFolder.dll 2016-07-13 16:36:31 6C9486A072CC08F929C67CB5113A35C1 1746944 ----a-w- C:\WINDOWS\System32\SettingsHandlers_Bluetooth.dll 2016-07-13 16:36:31 3395E8357AD6922923D67815D47305EC 417280 ----a-w- C:\WINDOWS\System32\Windows.Cortana.Desktop.dll 2016-07-13 16:36:30 DFB970BC93678AFA2F95A51BF1506049 64584 ----a-w- C:\WINDOWS\System32\Clipc.dll 2016-07-13 16:36:30 8E370B335238A592882E99266134335E 2885680 ----a-w- C:\WINDOWS\System32\WSService.dll 2016-07-13 16:36:30 34B1DD62B3F090A0466241F84F1E9AE0 802816 ----a-w- C:\WINDOWS\System32\ntshrui.dll 2016-07-13 16:36:30 04055E69A26246AF9050BFC7C3A4B44B 510880 ----a-w- C:\WINDOWS\System32\ClipSVC.dll 2016-07-13 16:36:29 A3E1888B827AD9132A35657C48C9762B 578048 ----a-w- C:\WINDOWS\System32\wiaaut.dll 2016-07-13 16:36:29 4823E34C6FF40AEC1F4514E10E64FE20 36352 ----a-w- C:\WINDOWS\System32\musdialoghandlers.dll 2016-07-13 16:36:28 C0D3B98EB0C657DDEB0C033D01C6D9E7 574976 ----a-w- C:\WINDOWS\System32\hgcpl.dll 2016-07-13 16:36:28 AE3444858CB88D033427C1E9D6FE749E 738816 ----a-w- C:\WINDOWS\System32\appwiz.cpl 2016-07-13 16:36:28 9A4C8179AF42586466DE792D15423F9D 1035776 ----a-w- C:\WINDOWS\System32\ApplicationFrame.dll 2016-07-13 16:36:28 2FE56BAE736FE2AD20950ECED0FFD6D1 1588224 ----a-w- C:\WINDOWS\System32\msxml3.dll 2016-07-13 16:36:27 B39E043BCB704FF6F0D0DEADBCBA754D 683008 ----a-w- C:\WINDOWS\System32\Windows.Networking.BackgroundTransfer.dll 2016-07-13 16:36:27 A7CD30176029F60B56F5590E37310103 339968 ----a-w- C:\WINDOWS\System32\WMPhoto.dll 2016-07-13 16:36:27 580A963F680D63AEE87D6F7DF6EDB6B4 138240 ----a-w- C:\WINDOWS\System32\inetpp.dll 2016-07-13 16:36:26 C41C3339364B262957110B2C6C32FF3D 573440 ----a-w- C:\WINDOWS\System32\UserLanguagesCpl.dll 2016-07-13 16:36:26 212B595D06DB8A90B540E970E493CD6F 2519552 ----a-w- C:\WINDOWS\System32\themecpl.dll 2016-07-13 16:36:25 EEB99F0E02F9243F18691C75CD16AEE4 207872 ----a-w- C:\WINDOWS\System32\licensingdiag.exe 2016-07-13 16:36:25 CEEA8FA78E1652BB7219FC118E9F67EE 330752 ----a-w- C:\WINDOWS\System32\winipcfile.dll 2016-07-13 16:36:25 836FF4B7A3AC93E7D659F4FCCF7E0309 779264 ----a-w- C:\WINDOWS\System32\sbe.dll 2016-07-13 16:36:24 ABFB6150CA07482BCF3D3FDE3B62152A 309760 ----a-w- C:\WINDOWS\System32\ntprint.dll 2016-07-13 16:36:24 9459503897809956B533141003277298 92160 ----a-w- C:\WINDOWS\System32\IdCtrls.dll 2016-07-13 16:36:24 70BE5D31CD548715F88398D7B56E99B5 315904 ----a-w- C:\WINDOWS\System32\Windows.UI.BlockedShutdown.dll 2016-07-13 16:36:24 3E97CC7E938C4D15FCC27EC33C898606 153088 ----a-w- C:\WINDOWS\System32\WSSync.dll 2016-07-13 16:36:24 0B709D13B267158668E5D208566D1796 373248 ----a-w- C:\WINDOWS\System32\SystemSettings.UserAccountsHandlers.dll 2016-07-13 16:36:23 937208F90E70A7A415F05932ABD72DFB 34304 ----a-w- C:\WINDOWS\System32\Windows.Speech.Pal.dll 2016-07-13 16:36:23 77D3FB612C75A70CDA55889616DF3969 205312 ----a-w- C:\WINDOWS\System32\oemlicense.dll 2016-07-13 16:36:23 1EEC0939B2B99EF1F53B14D9205041AD 282624 ----a-w- C:\WINDOWS\System32\msieftp.dll 2016-07-13 16:36:22 5C2B14556CAD597D1EE36F4F1E5AA61B 253440 ----a-w- C:\WINDOWS\System32\OneBackupHandler.dll 2016-07-13 16:36:21 9A6B1DB1667CDD276A208F5AE5646948 151552 ----a-w- C:\WINDOWS\System32\WSClient.dll 2016-07-13 16:36:21 1E00F1B16E727B3D23F6516988F2E7EA 502272 ----a-w- C:\WINDOWS\System32\DevicePairing.dll 2016-07-13 16:36:20 D4DE4F98D350823BACCA6D7F753D74D4 6471168 ----a-w- C:\WINDOWS\System32\mspaint.exe 2016-07-13 16:36:20 8A62CEED5A0DD6C76C921F8B47187CA3 477184 ----a-w- C:\WINDOWS\System32\ieui.dll 2016-07-13 16:36:20 2086CC9E5A8C75F246A75EE606988B77 1508352 ----a-w- C:\WINDOWS\System32\winmsipc.dll 2016-07-13 16:36:19 64B619A6CE464E494651950794CE8264 541184 ----a-w- C:\WINDOWS\System32\GamePanel.exe 2016-07-13 16:36:18 80BD175A8820F5D1C0913DE1BA2A0400 40960 ----a-w- C:\WINDOWS\System32\Windows.Shell.Search.UriHandler.dll 2016-07-13 16:36:13 40C2D19E230CDCBA7707DB5C5A9C6419 5323776 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll 2016-07-13 16:36:12 350ED2186E2C0E80ABCE270C9A52647E 12128256 ----a-w- C:\WINDOWS\System32\ieframe.dll 2016-07-13 16:36:10 21CB86D69B268182994F981471FCBB82 18674176 ----a-w- C:\WINDOWS\System32\edgehtml.dll 2016-07-13 16:36:04 01ECA12A5BF2D571FCE11C05419C3E50 19347968 ----a-w- C:\WINDOWS\System32\mshtml.dll 2016-07-13 16:36:01 88A5A640F1C46936CEA62B7B42969E8E 502784 ----a-w- C:\WINDOWS\System32\vbscript.dll 2016-07-13 16:36:01 31AC81040FBFB538619282F47C3ED884 5660672 ----a-w- C:\WINDOWS\System32\Chakra.dll 2016-07-13 16:36:00 79C50C86572AF5891D1196569C9D2EB1 3663360 ----a-w- C:\WINDOWS\System32\jscript9.dll 2016-07-13 16:35:59 DA53EBECEC5D582AD239621A5F363611 1303744 ----a-w- C:\WINDOWS\System32\appraiser.dll 2016-07-13 16:35:59 80313197B2A3E0CD74F035CF1B2C493C 81088 ----a-w- C:\WINDOWS\System32\acmigration.dll 2016-07-13 16:35:59 59976482DB1C9F2F41DF62AA9A1B01C5 2062336 ----a-w- C:\WINDOWS\System32\MFMediaEngine.dll 2016-07-13 16:35:59 0A67719E934B3681F933458C62E4C3BC 476864 ----a-w- C:\WINDOWS\System32\devinv.dll 2016-07-13 16:35:58 EFEBEC06C2D547D2A04B2960E4905285 1020096 ----a-w- C:\WINDOWS\System32\aeinv.dll 2016-07-13 16:35:58 A489CECF560EA0421C04277904210395 925576 ----a-w- C:\WINDOWS\System32\mfplat.dll 2016-07-13 16:35:58 7EB97AE01AD5DE8CB1B732923D98BDD7 266944 ----a-w- C:\WINDOWS\System32\invagent.dll 2016-07-13 16:35:57 BD869430C7B7CCD5FE0C3D9D6D344953 2798080 ----a-w- C:\WINDOWS\System32\Windows.Media.dll 2016-07-13 16:35:57 409D5D7EB68EDC5E5751A1F437F8C58E 2000896 ----a-w- C:\WINDOWS\System32\twinui.appcore.dll 2016-07-13 16:35:56 BEF902286DC49188F8435B1C2474AE96 687616 ----a-w- C:\WINDOWS\System32\msfeeds.dll 2016-07-13 16:35:54 BFFE89784505F66497C8D0230CDD8DE5 207872 ----a-w- C:\WINDOWS\System32\provengine.dll 2016-07-13 16:35:54 BF2166843DEAB6A7D2DBD5A4010A802B 199680 ----a-w- C:\WINDOWS\System32\provhandlers.dll 2016-07-13 16:35:54 7EA97C328FB2BF7D6F137AC02C862AA3 326144 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll 2016-07-13 16:35:54 76B34D04F94D7A8D47763C4E8285F88B 1117184 ----a-w- C:\WINDOWS\System32\Windows.Media.Speech.dll 2016-07-13 16:35:53 57D00F9D60519705D37BAFB852771443 1118208 ----a-w- C:\WINDOWS\System32\mfnetsrc.dll 2016-07-13 16:35:53 3B5A60CFD5EA636133A0A9F8CD4EDC45 709176 ----a-w- C:\WINDOWS\System32\mfsvr.dll 2016-07-13 16:35:53 203502B642408451465795C046981F12 484544 ----a-w- C:\WINDOWS\System32\generaltel.dll 2016-07-13 16:35:52 A6D37F7970C1F60FE1A35BE1866A5325 227008 ----a-w- C:\WINDOWS\System32\DeviceCensus.exe 2016-07-13 16:35:52 A233DD6D55CDBC80890E6D0702F727B5 2771968 ----a-w- C:\WINDOWS\System32\tquery.dll 2016-07-13 16:35:52 1F26E5DF1A48EE0443194DD99AE8C7D2 45760 ----a-w- C:\WINDOWS\System32\CompatTelRunner.exe 2016-07-13 16:35:52 0162996989471778328E929D58B1041E 754176 ----a-w- C:\WINDOWS\System32\SettingSyncCore.dll 2016-07-13 16:35:51 F6D85D3698712AC221B979BB8C45DA77 179712 ----a-w- C:\WINDOWS\System32\aepic.dll 2016-07-13 16:35:51 D69DDC0073FA31032D7F9379D054679F 503296 ----a-w- C:\WINDOWS\System32\SettingSync.dll 2016-07-13 16:35:51 B27FEB21C56278185E7B7A77722C6819 777728 ----a-w- C:\WINDOWS\System32\MsSpellCheckingFacility.dll 2016-07-13 16:35:50 F3B12C931650835388F43DB2DF606657 511320 ----a-w- C:\WINDOWS\System32\mf.dll 2016-07-13 16:35:50 7CF445915FC12FA890EFE5D43AD8B2F9 4078080 ----a-w- C:\WINDOWS\System32\dbgeng.dll 2016-07-13 16:35:50 6500AB640E37FBFBE0D57B24F8BC6F30 1984000 ----a-w- C:\WINDOWS\System32\mssrch.dll 2016-07-13 16:35:49 DE90E4D4F432DA6BD49956E2F81220D0 66560 ----a-w- C:\WINDOWS\System32\NFCProvisioningPlugin.dll 2016-07-13 16:35:49 447D69BB274546D00C8DBF23C2DBDBCE 2050048 ----a-w- C:\WINDOWS\System32\inetcpl.cpl 2016-07-13 16:35:48 FC26697351E186D415E53BF83D37DAAD 3555840 ----a-w- C:\WINDOWS\System32\xpsrchvw.exe 2016-07-13 16:35:48 A5B6DDDF137C8118B93D00404510741D 836760 ----a-w- C:\WINDOWS\System32\twinapi.appcore.dll 2016-07-13 16:35:48 3B66EF163DE1118255FC2360C4093812 120832 ----a-w- C:\WINDOWS\System32\provops.dll 2016-07-13 16:35:48 38F874DC40AED7FE90ABED3006FF20B9 1083656 ----a-w- C:\WINDOWS\System32\Taskmgr.exe 2016-07-13 16:35:47 F370A686221023EC003D96BB1FBA57A0 760320 ----a-w- C:\WINDOWS\System32\SearchIndexer.exe 2016-07-13 16:35:47 AFF040FE80E49EEAF85D87FA481B2C4A 1561392 ----a-w- C:\WINDOWS\System32\KernelBase.dll 2016-07-13 16:35:47 245BCE64F9396340F4E84FB140DD6CA6 489984 ----a-w- C:\WINDOWS\System32\ShareHost.dll 2016-07-13 16:35:46 FFA3300F8C8542A92015C7FF48A16AF9 28083144 ----a-w- C:\WINDOWS\System32\WindowsCodecsRaw.dll 2016-07-13 16:35:46 7757D5D2DC5A4DE6DE273792246D546E 942592 ----a-w- C:\WINDOWS\System32\reseteng.dll 2016-07-13 16:35:44 CD2B8FE81EDB0AAD150428AE19701020 403920 ----a-w- C:\WINDOWS\System32\DMRServer.dll 2016-07-13 16:35:44 8964282B584D2A72AB003676C850BCB6 748032 ----a-w- C:\WINDOWS\System32\wpncore.dll 2016-07-13 16:35:43 D00ACFADE7EE80F0C45CC0B94EB5D21A 465760 ----a-w- C:\WINDOWS\System32\SettingSyncHost.exe 2016-07-13 16:35:43 BF370250794A9405AD153A4C1A4F5BBD 32552 ----a-w- C:\WINDOWS\System32\wldp.dll 2016-07-13 16:35:43 B2EBC6118CF0926B3FEC54976C61A8D9 413184 ----a-w- C:\WINDOWS\System32\NotificationController.dll 2016-07-13 16:35:42 EB347BC4B4063DB7654A76FCA6569AC1 279376 ----a-w- C:\WINDOWS\System32\systemreset.exe 2016-07-13 16:35:42 A4879DCB9CBE6F67661F0EF4D5A59092 835072 ----a-w- C:\WINDOWS\System32\Windows.Media.Streaming.dll 2016-07-13 16:35:42 734C17FFE65F9E0436BDAD566A613D8C 32040 ----a-w- C:\WINDOWS\System32\mfpmp.exe 2016-07-13 16:35:42 187D966A14D7F9CB4D3B4996B53CDE73 39424 ----a-w- C:\WINDOWS\System32\TpmTasks.dll 2016-07-13 16:35:41 D59495AC726686A6719398A1389F60E6 1401856 ----a-w- C:\WINDOWS\System32\workfolderssvc.dll 2016-07-13 16:35:41 6AA3C6E88196938932ADE02296C33458 268800 ----a-w- C:\WINDOWS\System32\dxtrans.dll 2016-07-13 16:35:41 4BC42306D03B539D0EDDD81CC0AE0CD3 244736 ----a-w- C:\WINDOWS\System32\mssphtb.dll 2016-07-13 16:35:40 F3C7017623E0F1F04016E5041A106FC8 119296 ----a-w- C:\WINDOWS\System32\mssph.dll 2016-07-13 16:35:40 D6D84F133DC05DB51FE689BB2066D43E 405504 ----a-w- C:\WINDOWS\System32\webio.dll 2016-07-13 16:35:40 973057A6623492B1620B0167D320BD4D 1526272 ----a-w- C:\WINDOWS\System32\ieapfltr.dll 2016-07-13 16:35:40 734026191E38F421D62D0067D89B0E35 1063936 ----a-w- C:\WINDOWS\System32\Windows.Media.Editing.dll 2016-07-13 16:35:39 94B32AFBC8D832B3CC39C87DACCF4CEE 879616 ----a-w- C:\WINDOWS\System32\WebcamUi.dll 2016-07-13 16:35:39 61D86AEAE520B20FD3AE5C68327239EB 400896 ----a-w- C:\WINDOWS\System32\OneDriveSettingSyncProvider.dll 2016-07-13 16:35:39 32E42A131A187BCAD87EA3A2A09498B9 1249280 ----a-w- C:\WINDOWS\System32\usercpl.dll 2016-07-13 16:35:38 968DD3AA844E40932950709FD9CB9556 1976832 ----a-w- C:\WINDOWS\System32\wpdshext.dll 2016-07-13 16:35:38 64AC1BD9453DBEF453999ED0796B909C 334848 ----a-w- C:\WINDOWS\System32\fhsettingsprovider.dll 2016-07-13 16:35:38 1CDEF66CFD26AF241D8546896F77B8A5 489984 ----a-w- C:\WINDOWS\System32\mbsmsapi.dll 2016-07-13 16:35:38 015A5BB42F54AB325B36AF49905AC8E6 248320 ----a-w- C:\WINDOWS\System32\Windows.Cortana.OneCore.dll 2016-07-13 16:35:37 9DE1CA4A77B05084FDFF9C415E968D1E 190976 ----a-w- C:\WINDOWS\System32\fhengine.dll 2016-07-13 16:35:37 86FBB78A2D77D9BDD58F0D72A2E4D934 230400 ----a-w- C:\WINDOWS\System32\webcheck.dll 2016-07-13 16:35:37 6D5F0E1D058B906CFA803954C2F573E4 320000 ----a-w- C:\WINDOWS\System32\fhcfg.dll 2016-07-13 16:35:36 ED3335C188873DD766C73C98F06A3BEA 216576 ----a-w- C:\WINDOWS\System32\PlayToReceiver.dll 2016-07-13 16:35:36 8DBFE13F50BE7578913003EE5256AEBE 282624 ----a-w- C:\WINDOWS\System32\Search.ProtocolHandler.MAPI2.dll 2016-07-13 16:35:36 75869FD635879D9B0DCED6B6E4FEFDCD 57344 ----a-w- C:\WINDOWS\System32\WPDShServiceObj.dll 2016-07-13 16:35:36 4C629B1F6E54578C7875057FD5C53E5F 282624 ----a-w- C:\WINDOWS\System32\SearchProtocolHost.exe 2016-07-13 16:35:35 C2230C9A5F4DA4FE5EF9462047429082 32768 ----a-w- C:\WINDOWS\System32\msscntrs.dll 2016-07-13 16:35:35 56BBCFD02C4C5248CAF8EAF8236A4674 667648 ----a-w- C:\WINDOWS\System32\AzureSettingSyncProvider.dll 2016-07-13 16:35:35 3C95603CFF6A2F1DB0C531095D3B1ECF 742400 ----a-w- C:\WINDOWS\System32\IKEEXT.DLL 2016-07-13 16:35:31 EF539679E1F6FA5DFDCE4D013A3D37CF 6740992 ----a-w- C:\WINDOWS\System32\mstscax.dll 2016-07-13 16:35:31 1A708192281C03919D933FD8DC7E7AD8 465408 ----a-w- C:\WINDOWS\System32\enterprisecsps.dll 2016-07-13 16:35:30 A9B3BF6FE0D98B868BC489C869EEE906 814080 ----a-w- C:\WINDOWS\System32\schedsvc.dll 2016-07-13 16:35:30 5A69A6CB031970F5E0BBD4E967D32924 1497088 ----a-w- C:\WINDOWS\System32\WMPDMC.exe 2016-07-13 16:35:30 3CB5565F8D66C3E505990BEA1ACA476F 74240 ----a-w- C:\WINDOWS\System32\browserbroker.dll 2016-07-13 16:35:29 B6A697A95DA81E6B63F7E2AD53886180 3483648 ----a-w- C:\WINDOWS\System32\rdpcorets.dll 2016-07-13 16:35:29 5A4D29E49813430AD5C946482345F7AE 291840 ----a-w- C:\WINDOWS\System32\wuuhext.dll 2016-07-13 16:35:28 E2332EFA0C57231D5CD0F78AF1AEC06A 105472 ----a-w- C:\WINDOWS\System32\dmcsps.dll 2016-07-13 16:35:27 FBA0E803ED70D649630DCA8EEC625414 240640 ----a-w- C:\WINDOWS\System32\taskeng.exe 2016-07-13 16:35:27 92E095238890F0AA0A783C23AC83D426 272384 ----a-w- C:\WINDOWS\System32\wmicmiplugin.dll 2016-07-13 16:35:26 AF2A50A1B7ACB64A368ABEEEF6A8AB4A 771120 ----a-w- C:\WINDOWS\System32\winresume.exe 2016-07-13 16:35:26 72DD03ABD39DFC82EE87F099F8C41D4B 1051584 ----a-w- C:\WINDOWS\System32\winload.efi 2016-07-13 16:35:26 53997DE4B242341CA2F1DCCD6B2B0430 875992 ----a-w- C:\WINDOWS\System32\winresume.efi 2016-07-13 16:35:26 407E2B474D12B2FF0C7229DF562F94AD 927080 ----a-w- C:\WINDOWS\System32\winload.exe 2016-07-13 16:35:25 4A8E1182ECF552141C2C165B0A137E50 186880 ----a-w- C:\WINDOWS\System32\schtasks.exe 2016-07-13 16:35:25 414967EA08650001DD671FEFE37633E7 645632 ----a-w- C:\WINDOWS\System32\Windows.Storage.Search.dll 2016-07-13 16:35:24 C48A377F4AD5F1D28895EED21640D195 72192 ----a-w- C:\WINDOWS\System32\rdpudd.dll 2016-07-13 16:35:24 A3F164387FAF9C571959C73361317F04 442368 ----a-w- C:\WINDOWS\System32\dlnashext.dll 2016-07-13 16:35:23 E78E204A005D6DDEBBFA453380D6E847 585216 ----a-w- C:\WINDOWS\System32\Windows.AccountsControl.dll 2016-07-13 16:35:23 CEFD0ACBA7B6D982286FE752F6F55BAC 159232 ----a-w- C:\WINDOWS\System32\LegacyNetUXHost.exe 2016-07-13 16:35:23 348454261C1304A1FF98627E41B35789 56832 ----a-w- C:\WINDOWS\System32\LegacyNetUX.dll 2016-07-13 16:35:23 1BCBA180697CF7D3A876B7962008664F 173056 ----a-w- C:\WINDOWS\System32\WUDFPlatform.dll ====== C:\WINDOWS\system32\drivers ===== 2016-07-13 16:37:49 8BF35C6A6E2675AF6054711D19366DA1 1712480 ----a-w- C:\WINDOWS\System32\drivers\dxgkrnl.sys 2016-07-13 16:37:48 F4B2E265344195CF15DABA85BB0713F0 139616 ----a-w- C:\WINDOWS\System32\drivers\ksecpkg.sys 2016-07-13 16:37:48 A65BBA24AB7BD8133B8E0DE1072462BA 260448 ----a-w- C:\WINDOWS\System32\drivers\pci.sys 2016-07-13 16:37:42 6DBE436CB55E48AA9F6345FCC60064FF 505136 ----a-w- C:\WINDOWS\System32\drivers\cng.sys 2016-07-13 16:37:41 3D2E5FDB0C41E062994FAA8AEEFB3060 484192 ----a-w- C:\WINDOWS\System32\drivers\dxgmms2.sys 2016-07-13 16:37:33 A8CC656C4BF3EFB2F01F728AB35834CD 424448 ----a-w- C:\WINDOWS\System32\drivers\nwifi.sys 2016-07-13 16:37:26 6D83C0E6F3686336A18E3EA04946AED4 336224 ----a-w- C:\WINDOWS\System32\drivers\dxgmms1.sys 2016-07-13 16:35:56 F23C630B5B76F7A51F25364C470830C5 1861984 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys 2016-07-13 16:35:28 2677CB0AF2FD572F0CB64D972C13DC1A 228704 ----a-w- C:\WINDOWS\System32\drivers\sdbus.sys 2016-06-24 13:20:13 892B79FC0482A821C760BE573AEB4A8D 62160 ----a-w- C:\WINDOWS\System32\drivers\fsbts.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-07-23 12:56:42 -------- d-----w- C:\Program Files\trend micro 2016-07-22 13:08:02 -------- d-----w- C:\Program Files\Common Files\Java ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2016-07-11 14:41:41 -------- d-----w- C:\Users\TEMP\AppData\Local\TileDataLayer 2016-07-11 14:41:30 -------- d-----w- C:\Users\TEMP\AppData\Local 2016-06-24 13:16:31 -------- d-----w- C:\WINDOWS\system32\config\systemprofile\AppData\Local\Temp 2016-06-24 13:10:09 -------- d-----w- C:\Users\Gebruiker\AppData\Local\F-Secure ====== C:\Users\Gebruiker ====== 2016-07-23 12:55:11 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Gebruiker\Downloads\RSIT.exe 2016-07-11 14:41:30 -------- d--h--w- C:\Users\TEMP\AppData 2016-07-08 08:52:18 -------- d-----w- C:\ProgramData\Kaspersky Lab Setup Files ====== C: exe-files == 2016-07-23 12:56:43 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Gebruiker.exe 2016-07-23 12:55:11 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Gebruiker\Downloads\RSIT.exe 2016-07-22 14:59:11 C5A067D39E46BDBF9FAC843349A1BAEA 196568 ----a-w- C:\ProgramData\f-secure\GUTS2\hydrawin\1469194203\install.exe 2016-07-22 13:06:53 F434A8AC7F1C8C0E2587B9A9F30E397B 52800 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\ssvagent.exe 2016-07-22 13:06:53 ED3F3D8E4C382BF8095B9DE217511E29 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\policytool.exe 2016-07-22 13:06:53 E9AA62B1696145A08D223E7190785E25 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\pack200.exe 2016-07-22 13:06:53 C15F0FE651B05F4288CBC3672F6DC3CE 159296 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\unpack200.exe 2016-07-22 13:06:53 7624A9B769CDCF3A75FE5A9FEAADD61F 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\tnameserv.exe 2016-07-22 13:06:53 43C1D1D0E248604CB3B643C0BDF4EC9A 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\servertool.exe 2016-07-22 13:06:53 31C0CED43A07A2DFF3AFC557EBABBE0F 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\rmiregistry.exe 2016-07-22 13:06:53 12B6E1C3205A8B17AC20E00A889DFC43 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\rmid.exe 2016-07-22 13:06:52 CA17B8CBD623477C5D1D334B79890225 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\klist.exe 2016-07-22 13:06:52 B4AD335E868693F009B7644E2ED555C1 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\ktab.exe 2016-07-22 13:06:52 9A4CF09834F086568DF469E3F670BF07 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\keytool.exe 2016-07-22 13:06:52 7DA6AA3CC4763C6F9C20B43E6C9A9547 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\orbd.exe 2016-07-22 13:06:52 5F85F7F2DFAC397D642834B61809240F 82496 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jp2launcher.exe 2016-07-22 13:06:52 4F11D43AA2215CE771DA528878F01C8E 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jjs.exe 2016-07-22 13:06:52 4DE6BFE6EA98BC42A5358ED8307107B2 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\kinit.exe 2016-07-22 13:06:51 F8211DB97BF852C3292C3E9C710C19D9 269888 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javaws.exe 2016-07-22 13:06:51 E3E51A21B00CDDE757E4247257AA7891 191040 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\java.exe 2016-07-22 13:06:51 CF2F023D2B5F0BFB2ECF8AEEA7C51481 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\java-rmi.exe 2016-07-22 13:06:51 C2A59C7343D370BC57765896490331E5 70208 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javacpl.exe 2016-07-22 13:06:51 530D5597E565654D378F3C87654CCABA 30784 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jabswitch.exe 2016-07-22 13:06:51 48C96771106DBDD5D42BBA3772E4B414 191552 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javaw.exe 2016-07-22 13:05:05 78E00B88F4967B4162213602C0E08B02 741440 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\jre-8u101-windows-au.exe 2016-07-18 12:15:47 28F0C9CC5764586AA2BE756DB669D9EA 1255904 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fs_ols_ca.exe === C: other files == 2016-07-22 13:06:53 91052ADB799AEF68EA76931997C40CE4 14156 ----a-w- C:\Program Files\Java\jre1.8.0_101\lib\deploy\ffjcext.zip 2016-07-18 12:15:48 871A3BA042138DC62BFEA137FEB85CF4 110272 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsni64.sys 2016-07-18 12:15:48 1B0E700B2A855466161E40E6257E3298 89792 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsni32.sys 2016-07-18 12:15:47 3FE5813C970E467412BA866D74E0954F 58941 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\browser\install\fs_firefox_https\fs_firefox_https.xpi 2016-07-18 12:15:46 D8CD6121CE8A0961E714E73FC4933ABA 23592 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsnitdi32.sys 2016-07-18 12:15:46 B342D9F996B89B2D4DADB43011DE82C8 52776 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsnixp32.sys 2016-07-18 12:15:46 AF7A6FF158C563F92FD32118C7AE45F8 31712 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsnitdi64.sys 2016-07-18 12:15:46 AC21D7AA57EC279E77EEE4F82A8606E4 5941 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\browser\install\fs_chrome_https\fs_chrome_https.crx 2016-07-18 12:15:46 6DA818A99BB93A7D0A76336E0E6C7688 61920 ----a-w- C:\ProgramData\f-secure\GUTS2\nifbin\1468843031\fsnixp64.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3007779795-2027465761-1496148414-1000\Software\Microsoft\Windows\CurrentVersion\Run] "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "OneDrive"="C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot" "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "SweetIM"="C:\Program Files\SweetIM\Messenger\SweetIM.exe" "CanonQuickMenu"="C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon" "AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe" "F-Secure Hoster (44163)"="C:\Program Files\Telenet Security Pack\fshoster32.exe -app -hosterid:1" "F-Secure Manager"="C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Common\FSM32.EXE /splash" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Windows Mobile-based device management"="%WINDIR%\WindowsMobile\wmdcBase.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "OneDrive"="C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-12-2015 18:23] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [29-08-2015 17:05] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [29-08-2015 17:05] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\WINDOWS\system32\tasks\GarminUpdaterTask" [C:\Program Files\Garmin\Express Self Updater\ExpressSelfUpdater.exe] "C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{6945F063-0CE4-484B-B7EE-43A6419D8898}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\system32\tasks\{0D101015-DF21-4575-B535-A4753BD75654}" [C:\Program Files\Microsoft Office\Office12\PPTVIEW.EXE] "C:\WINDOWS\system32\tasks\{5CFF11C0-2955-45A9-A0E7-99378B60A7EB}" [C:\Program Files\Alwil Software\Avast5\AvastUI.exe] "C:\WINDOWS\system32\tasks\{61B17DD0-CB31-4265-B52A-830E75916497}" [C:\Program Files\Microsoft Office\Office12\PPTVIEW.EXE] "C:\WINDOWS\system32\tasks\{A6C00839-2AA9-43B2-A6C0-61A5F735D970}" [C:\Program Files\Microsoft Office\Office12\PPTVIEW.EXE] "C:\WINDOWS\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "ols@f-secure.com"="C:\Program Files\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi" [18-07-2016 14:15] ==== Firefox Extensions ====================== ProfilePath: C:\Users\GEBRUI~1\AppData\Roaming\TomTom\HOME\Profiles\cwqopyp3.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.9.430.890926@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.9.510.1234792@tomtom.com AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions efaidnbmnnnibpcajpcglclefindmkaj - No path found[] jmjjnhpacphpjmnnlnccpfmhkcloaade - C:/Program Files/Telenet Security Pack/apps/CCF_Scanning/bin/browser/install/fs_chrome_https/fs_chrome_https.crx[18-07-2016 14:15] ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/?trackid=sp-006" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{a0892e19-6051-4ae6-9a5f-91542a166b2b} - http://search.tb.ask.com/search/GGmain.jhtml?p2=^BBQ^xdm025^YYA^be&si=downloadispeed&ptb=FF074155-585F-427E-92E2-33A8E903F689&ind=2015031307&n=781af00b&psa=&st=sb&searchfor={searchTerms} HKLM\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} - https://www.google.com/search?trackid=sp-006&q={searchTerms} HKCU\SearchScopes "DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{46499032-EB07-4BE1-B951-26723B1F57B4} - http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=%5EBBE%5EOSJ000%5EYY%5EBE&gct=&itbv=12.15.5.30&apn_uid=CD80D1AE-F948-436B-9C59-5390C5BC829F&apn_ptnrs=BBE&apn_dtid=%5EOSJ000%5EYY%5EBE&apn_dbr=ie_11.0.9600.17207&doi=2014-08-06&trgb=IE&q={searchTerms}&psv=&pt=tb HKCU\SearchScopes\{a0892e19-6051-4ae6-9a5f-91542a166b2b} - http://search.tb.ask.com/search/GGmain.jhtml?p2=^BBQ^xdm025^YYA^be&si=downloadispeed&ptb=FF074155-585F-427E-92E2-33A8E903F689&ind=2015031307&n=781af00b&psa=&st=sb&searchfor={searchTerms} HKCU\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} - https://www.google.com/search?trackid=sp-006&q={searchTerms} ==== HijackThis Entries ====================== O2 - BHO: Browsing Protection by F-Secure - {45BBE08D-81C5-4A67-AF20-B2A077C67747} - C:\Program Files\Telenet Security Pack\apps\CCF_Scanning\bin\browser\install\fs_ie_https\fs_ie_https.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe O4 - HKLM\..\Run: [Windows Mobile-based device management] %WINDIR%\WindowsMobile\wmdcBase.exe O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [F-Secure Hoster (44163)] "C:\Program Files\Telenet Security Pack\fshoster32.exe" -app -hosterid:1 O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [OneDrive] "C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView6\NkvMon.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: &Webpagina converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECapture.html O8 - Extra context menu item: Doel van &koppeling toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Webpagina toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll/AcroIEAppend.html O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{8832b12e-a2f5-478b-9842-f6848d539ba6}: NameServer = 82.163.143.171 82.163.142.173 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173 O17 - HKLM\System\CS1\Services\Tcpip\..\{8832b12e-a2f5-478b-9842-f6848d539ba6}: NameServer = 82.163.143.171 82.163.142.173 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173 O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing) O23 - Service: F-Secure Dll Hoster (fshoster) - F-Secure Corporation - C:\Program Files\Telenet Security Pack\fshoster32.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Telenet Security Pack\apps\ComputerSecurity\Common\FSMA32.EXE O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\Telenet Security Pack\apps\CCF_Reputation\fsorsp.exe O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe ==== C:\zoek_backup content ====================== C:\zoek_backup (files=10 folders=13 281447 bytes) ==== EOF on zo 24-07-2016 at 7:49:19,65 ======================