Zoek.exe v5.0.0.1 Updated 19-September-2016 Tool run by CvS on do 03-11-2016 at 19:11:26,22. Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\CvS\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe c:\program files\cmcm\Clean Master\cmcore.exe C:\Windows\System32\spoolsv.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Program Files\BDServices\BitDefenderCom.exe C:\Windows\system32\Dwm.exe C:\Program Files\Trend Micro\DRScanner\DRScanner.exe C:\Windows\Explorer.EXE C:\Windows\system32\DbxSvc.exe C:\Windows\System32\svchost.exe -k utcsvc C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Glary Utilities 5\Integrator.exe C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe C:\Program Files\Dropbox\Update\DropboxUpdate.exe C:\Program Files\Macromedia\Dreamweaver 8\Dreamweaver.exe C:\Windows\system32\taskmgr.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\rundll32.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office\Office16\WINWORD.EXE C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\CvS\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchFilterHost.exe C:\Windows\System32\wbem\WmiPrvSE.exe ==== System Restore Info ====================== 3-11-2016 19:40:48 Zoek.exe System Restore Point Created Successfully. ==== Windows Installer Info ====================== Adobe Acrobat Reader DC - Nederlands [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA7DA73401B744CAF070E41400]C:\Windows\Installer\107988.msi Adobe Acrobat XI Pro [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA3301FFFF7706000000000060]C:\Windows\Installer\16efd9f.msi Adobe Dreamweaver CC 2015 v16.0.0.7698 NL [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4DB3AF4ED630BA942BAE7F195FDDD3D5]C:\Windows\Installer\472cb09.msi Adobe Help Manager [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A67173FAAC87B54543FEB8A61215D41D]C:\Windows\Installer\239df4.msi Adobe Illustrator CC 2015 19.0.0 NL [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D0FA0B3041CCD2F469EE57C3E8E01F3B]C:\Windows\Installer\20968d2.msi Adobe Refresh Manager [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA408033019195008142020244]C:\Windows\Installer\8a2dab0.msi AVG PC TuneUp [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B81A4681AA384804A9BB511F3E22C340]C:\Windows\Installer\4cd8c.msi AVG Zen [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\04C4BC4A18107B64E93AE2168C645AC5]C:\Windows\Installer\51732b4.msi Dropbox Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5A812990327ACD34D85B163756A6E149]C:\Windows\Installer\416b813.msi FMW 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8140A3341164AFB439217F00392CCBDE]C:\Windows\Installer\2eab03a.msi Google Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A089CE062ADB6BC44A720BA745894BAC]C:\Windows\Installer\1ea2972.msi Java 8 Update 101 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF2238110100F]C:\Windows\Installer\83da361.msi Java 8 Update 111 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF2238110110F]C:\Windows\Installer\4328e4.msi Macromedia Dreamweaver 8 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\166A73803CEF3B8478C6197E3D02849A]C:\Windows\Installer\3cdef3f.msi Macromedia Dreamweaver 8 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F670E7110BE5D8047B9A9D5411EF38D4]C:\Windows\Installer\47cb5c4.msi Macromedia Extension Manager [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\171F344FB94B546419C585E0E77D9929]C:\Windows\Installer\47cadf9.msi Macromedia Extension Manager [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5BDC64552EC2B8940B95B5B38FF14CF1]C:\Windows\Installer\3cdef3b.msi Macromedia Flash 8 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\503C5DB272B114D46B09A71671D2F2BE]C:\Windows\Installer\76e650.msi Macromedia Flash 8 Video Encoder [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\104C2FB8EC20D424CB62C6F4F94B646B]C:\Windows\Installer\76e63a.msi Microsoft .NET Framework 4.6.1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C7C0050360226CD37929699EA54066D9]C:\Windows\Installer\90616ae.msi Microsoft Access MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109510031400000000000F01FEC]C:\Windows\Installer\296a68.msi Microsoft Application Error Reporting [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000021599B0090400000000000F01FEC]C:\Windows\Installer\275eb57.msi Microsoft DCF MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109090031400000000000F01FEC]C:\Windows\Installer\296a7d.msi Microsoft Excel MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109610031400000000000F01FEC]C:\Windows\Installer\296a84.msi Microsoft Groove MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109AB0031400000000000F01FEC]C:\Windows\Installer\296a8b.msi Microsoft InfoPath MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109440031400000000000F01FEC]C:\Windows\Installer\296a92.msi Microsoft Office Korrekturhilfen 2016 - Deutsch [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F10070400000000000F01FEC]C:\Windows\Installer\296a4c.msi Microsoft Office OSM MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000061091E0031400000000000F01FEC]C:\Windows\Installer\296a76.msi Microsoft Office OSM UX MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000061092E0031400000000000F01FEC]C:\Windows\Installer\296aa0.msi Microsoft Office Professional Plus 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109110000000000000000F01FEC]C:\Windows\Installer\29772d.msi Microsoft Office Proofing (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109C20031400000000000F01FEC]C:\Windows\Installer\296a61.msi Microsoft Office Proofing Tools 2016 - English [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F10090400000000000F01FEC]C:\Windows\Installer\296a5a.msi Microsoft Office Shared MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109E60031400000000000F01FEC]C:\Windows\Installer\296a3e.msi Microsoft OneNote MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000061091A0031400000000000F01FEC]C:\Windows\Installer\296a6f.msi Microsoft Outlook MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109A10031400000000000F01FEC]C:\Windows\Installer\296aa7.msi Microsoft PowerPoint MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109810031400000000000F01FEC]C:\Windows\Installer\296aae.msi Microsoft Primary Interoperability Assemblies 2005 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9B8BD42DC6BB43346991ABC156E0313D]C:\Windows\Installer\a06637.msi Microsoft Publisher MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109910031400000000000F01FEC]C:\Windows\Installer\296ab5.msi Microsoft Skype for Business MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109B21031400000000000F01FEC]C:\Windows\Installer\296a99.msi Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\b25099274a207264182f8181add555d0]C:\Windows\Installer\1237c6.msi Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\c1c4f01781cc94c4c8fb1542c0981a2a]C:\Windows\Installer\47b8017.msi Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6F9E66FF7E38E3A3FA41D89E8A906A4A]C:\Windows\Installer\5c113a4.msi Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D20352A90C039D93DBF6126ECE614057]c:\Windows\Installer\a06622.msi Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\CFD2C1F142D260E3CB8B271543DA9F98]c:\Windows\Installer\a0662a.msi Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6E815EB96CCE9A53884E7857C57002F0]C:\Windows\Installer\47b8143.msi Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D5E3C0FEDA1E123187686FED06E995A]c:\Windows\Installer\78c411.msi Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C025571B2A687A53689168CD7369889B]C:\Windows\Installer\6a0a1b9.msi Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DC8A59DBF9D1DA5389A1E3975220E6BB]C:\Windows\Installer\6a0a1b3.msi Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\22BEFC8F7E2A1793E9ADB411DEFE1C58]C:\Windows\Installer\6a0a1c5.msi Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\21EE4A31AE32173319EEFE3BD6FDFFE3]C:\Windows\Installer\6a0a1bf.msi Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23918 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\96DFC9DB19BEE453C9894D936E909123]C:\Windows\Installer\1237e9.msi Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23918 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5F26CF5B763A5A73F92D6A1E730C90F6]C:\Windows\Installer\1237d3.msi Microsoft Visual Studio 2010 Tools for Office Runtime (x86) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3FB95CD427D08EC3FBFEE1F8FA86E90B]c:\Windows\Installer\78c462.msi Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5A26EE4DCB4BC6C3C99F80A3CF542F10]c:\Windows\Installer\78c483.msi Microsoft Word MUI (Dutch) 2016 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109B10031400000000000F01FEC]C:\Windows\Installer\296abc.msi Microsoft_VC80_CRT_x86 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\91785D291CBB3CC40AB8659C8E48CCC2]C:\Windows\Installer\239ddf.msi Microsoft_VC90_CRT_x86 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\121E2D80A6F7BE3479DF26B944094330]C:\Windows\Installer\239de6.msi Norton PartitionMagic [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6DDBBD125A396234A9409C5A9C415820]C:\Windows\Installer\a0cb47.msi NVIDIA PhysX [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EBF2823CF538D8489AC11A5E51F9F4B]C:\Windows\Installer\3dbd784.msi openElement 1.56 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00B22EBAF50328143AE47FCCECB35430]C:\Windows\Installer\109e41f.msi OpenOffice 4.1.2 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\590B7E148161FC9479F2275B5D324532]C:\Windows\Installer\3bd952a.msi Outils de v‚rification linguistique 2016 de Microsoft Office˙- Fran‡ais [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F100C0400000000000F01FEC]C:\Windows\Installer\296a53.msi Python 3.5.0 Launcher (32-bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\08CF5AAC6FEDAFD4C9603229A1780F29]C:\Windows\Installer\4b44c43.msi Taalprogramma's voor Microsoft Office 2016 - Nederlands [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109F10031400000000000F01FEC]C:\Windows\Installer\296a45.msi Visual Studio 2012 x86 Redistributables [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A91FFE89BA03B4E49B340FB6C136BE8F]C:\Windows\Installer\363382.msi ==== Checking Systemdrive for Symlinks ====================== Het volume in station C heeft geen naam. Het volumenummer is 5CB5-A797 Map van C:\ 14-07-2009 05:53 Documents and Settings [C:\Users] 0 bestand(en) 0 bytes Map van C:\Program Files\Windows NT 13-10-2015 15:01 Bureau-accessoires [C:\Program Files\Windows NT\Accessories] 0 bestand(en) 0 bytes Map van C:\ProgramData 14-07-2009 05:53 Application Data [C:\ProgramData] 13-10-2015 15:01 Bureaublad [C:\Users\Public\Desktop] 14-07-2009 05:53 Desktop [C:\Users\Public\Desktop] 13-10-2015 15:01 Documenten [C:\Users\Public\Documents] 14-07-2009 05:53 Documents [C:\Users\Public\Documents] 13-10-2015 15:01 Favorieten [C:\Users\Public\Favorites] 14-07-2009 05:53 Favorites [C:\Users\Public\Favorites] 13-10-2015 15:01 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 13-10-2015 15:01 Sjablonen [C:\ProgramData\Microsoft\Windows\Templates] 14-07-2009 05:53 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 14-07-2009 05:53 Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\ProgramData\Microsoft\Windows\Start Menu 13-10-2015 15:01 Programma's [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\ProgramData\Oracle\Java\javapath 31-10-2016 00:19 java.exe [C:\Program Files\Java\jre1.8.0_111\bin\java.exe] 31-10-2016 00:19 javaw.exe [C:\Program Files\Java\jre1.8.0_111\bin\javaw.exe] 31-10-2016 00:19 javaws.exe [C:\Program Files\Java\jre1.8.0_111\bin\javaws.exe] 3 bestand(en) 0 bytes Map van C:\Users 14-07-2009 05:53 All Users [C:\ProgramData] 14-07-2009 05:53 Default User [C:\Users\Default] 0 bestand(en) 0 bytes Map van C:\Users\Administrator 08-02-2016 12:30 Application Data [C:\Users\Administrator\AppData\Roaming] 08-02-2016 12:30 Cookies [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Cookies] 08-02-2016 12:30 Local Settings [C:\Users\Administrator\AppData\Local] 08-02-2016 12:30 Menu Start [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu] 08-02-2016 12:30 Mijn documenten [C:\Users\Administrator\Documents] 08-02-2016 12:30 NetHood [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 08-02-2016 12:30 Netwerkprinteromgeving [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 08-02-2016 12:30 Recent [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Recent] 08-02-2016 12:30 SendTo [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\SendTo] 08-02-2016 12:30 Sjablonen [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\Administrator\AppData\Local 08-02-2016 12:30 Application Data [C:\Users\Administrator\AppData\Local] 08-02-2016 12:30 Geschiedenis [C:\Users\Administrator\AppData\Local\Microsoft\Windows\History] 08-02-2016 12:30 Temporary Internet Files [C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 bestand(en) 0 bytes Map van C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu 08-02-2016 12:30 Programma's [C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\Administrator\Documents 08-02-2016 12:30 Mijn afbeeldingen [C:\Users\Administrator\Pictures] 08-02-2016 12:30 Mijn muziek [C:\Users\Administrator\Music] 08-02-2016 12:30 Mijn video's [C:\Users\Administrator\Videos] 0 bestand(en) 0 bytes Map van C:\Users\All Users 14-07-2009 05:53 Application Data [C:\ProgramData] 13-10-2015 15:01 Bureaublad [C:\Users\Public\Desktop] 14-07-2009 05:53 Desktop [C:\Users\Public\Desktop] 13-10-2015 15:01 Documenten [C:\Users\Public\Documents] 14-07-2009 05:53 Documents [C:\Users\Public\Documents] 13-10-2015 15:01 Favorieten [C:\Users\Public\Favorites] 14-07-2009 05:53 Favorites [C:\Users\Public\Favorites] 13-10-2015 15:01 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 13-10-2015 15:01 Sjablonen [C:\ProgramData\Microsoft\Windows\Templates] 14-07-2009 05:53 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 14-07-2009 05:53 Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\All Users\Microsoft\Windows\Start Menu 13-10-2015 15:01 Programma's [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\All Users\Oracle\Java\javapath 31-10-2016 00:19 java.exe [C:\Program Files\Java\jre1.8.0_111\bin\java.exe] 31-10-2016 00:19 javaw.exe [C:\Program Files\Java\jre1.8.0_111\bin\javaw.exe] 31-10-2016 00:19 javaws.exe [C:\Program Files\Java\jre1.8.0_111\bin\javaws.exe] 3 bestand(en) 0 bytes Map van C:\Users\CvS 13-10-2015 15:11 Application Data [C:\Users\CvS\AppData\Roaming] 13-10-2015 15:11 Cookies [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Cookies] 13-10-2015 15:11 Local Settings [C:\Users\CvS\AppData\Local] 13-10-2015 15:11 Menu Start [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Start Menu] 13-10-2015 15:11 Mijn documenten [C:\Users\CvS\Documents] 13-10-2015 15:11 NetHood [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 13-10-2015 15:11 Netwerkprinteromgeving [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 13-10-2015 15:11 Recent [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Recent] 13-10-2015 15:11 SendTo [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\SendTo] 13-10-2015 15:11 Sjablonen [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\CvS\AppData\Local 13-10-2015 15:11 Application Data [C:\Users\CvS\AppData\Local] 13-10-2015 15:11 Geschiedenis [C:\Users\CvS\AppData\Local\Microsoft\Windows\History] 13-10-2015 15:11 Temporary Internet Files [C:\Users\CvS\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 bestand(en) 0 bytes Map van C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Start Menu 13-10-2015 15:11 Programma's [C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\CvS\Documents 13-10-2015 15:11 Mijn afbeeldingen [C:\Users\CvS\Pictures] 13-10-2015 15:11 Mijn muziek [C:\Users\CvS\Music] 13-10-2015 15:11 Mijn video's [C:\Users\CvS\Videos] 0 bestand(en) 0 bytes Map van C:\Users\Default 14-07-2009 05:53 Application Data [C:\Users\Default\AppData\Roaming] 14-07-2009 05:53 Local Settings [C:\Users\Default\AppData\Local] 13-10-2015 15:01 Menu Start [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 13-10-2015 15:01 Mijn documenten [C:\Users\Default\Documents] 14-07-2009 05:53 My Documents [C:\Users\Default\Documents] 14-07-2009 05:53 NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 13-10-2015 15:01 Netwerkprinteromgeving [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 14-07-2009 05:53 PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 14-07-2009 05:53 Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent] 14-07-2009 05:53 SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo] 13-10-2015 15:01 Sjablonen [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 14-07-2009 05:53 Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 14-07-2009 05:53 Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\Default\AppData\Local 14-07-2009 05:53 Application Data [C:\Users\Default\AppData\Local] 13-10-2015 15:01 Geschiedenis [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 14-07-2009 05:53 History [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 14-07-2009 05:53 Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 bestand(en) 0 bytes Map van C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu 13-10-2015 15:01 Programma's [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\Public\Documents 13-10-2015 15:01 Mijn afbeeldingen [C:\Users\Public\Pictures] 13-10-2015 15:01 Mijn muziek [C:\Users\Public\Music] 13-10-2015 15:01 Mijn video's [C:\Users\Public\Videos] 14-07-2009 05:53 My Music [C:\Users\Public\Music] 14-07-2009 05:53 My Pictures [C:\Users\Public\Pictures] 14-07-2009 05:53 My Videos [C:\Users\Public\Videos] 0 bestand(en) 0 bytes Totaal aantal weergegeven bestanden: 6 bestand(en) 0 bytes 86 map(pen) 39.368.593.408 bytes beschikbaar ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3999796690-2714581427-440596665-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69E48444-5D4C-4741-960A-3D117D062906} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 16.04 Adobe Dreamweaver CC 2015 Adobe Dreamweaver CC 2015 v16.0.0.7698 NL Adobe Refresh Manager Avast Premier AVG Zen CCleaner Clean Master Definition Update for Microsoft Office 2016 (KB3115085) 32-Bit Edition Dropbox Dropbox Update Helper Efficient Address Book 5.0 FileZilla Client 3.22.1 FMW 1 Glary Utilities 5.62 Google Chrome Google Update Helper HouseCall for Home Networks IObit Uninstaller Java 8 Update 101 Java 8 Update 111 Java Auto Updater Macromedia Dreamweaver 8 Macromedia Extension Manager Macromedia Flash 8 Macromedia Flash 8 Video Encoder Malwarebytes Anti-Malware versie 2.2.1.1043 Microsoft .NET Framework 4.6.1 Microsoft Access MUI (Dutch) 2016 Microsoft Application Error Reporting Microsoft DCF MUI (Dutch) 2016 Microsoft Excel MUI (Dutch) 2016 Microsoft Groove MUI (Dutch) 2016 Microsoft InfoPath MUI (Dutch) 2016 Microsoft Office Korrekturhilfen 2016 - Deutsch Microsoft Office OSM MUI (Dutch) 2016 Microsoft Office OSM UX MUI (Dutch) 2016 Microsoft Office Professional Plus 2016 Microsoft Office Proofing (Dutch) 2016 Microsoft Office Proofing Tools 2016 - English Microsoft Office Shared MUI (Dutch) 2016 Microsoft OneDrive Microsoft OneNote MUI (Dutch) 2016 Microsoft Primary Interoperability Assemblies 2005 Microsoft Publisher MUI (Dutch) 2016 Microsoft Skype for Business MUI (Dutch) 2016 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23918 Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23918 Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD Microsoft Word MUI (Dutch) 2016 Mozilla Firefox 49.0.2 (x86 nl) Mozilla Maintenance Service Norton PartitionMagic Norton PartitionMagic 8.0 Notepad++ NVIDIA-configuratiescherm 341.95 NVIDIA Install Application NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.13.0604 Outils de v‚rification linguistique 2016 de Microsoft Office˙- Fran‡ais PhotoScape Python 3.5.0 (32-bit) Python 3.5.0 Core Interpreter (32-bit) Python 3.5.0 Development Libraries (32-bit) Python 3.5.0 Documentation (32-bit) Python 3.5.0 Executables (32-bit) Python 3.5.0 Launcher (32-bit) Python 3.5.0 pip Bootstrap (32-bit) Python 3.5.0 Standard Library (32-bit) Python 3.5.0 Tcl/Tk Support (32-bit) Python 3.5.0 Test Suite (32-bit) Python 3.5.0 Utility Scripts (32-bit) Realtek High Definition Audio Driver SafeZone Stable 1.51.2220.62 Security Update for Microsoft .NET Framework 4.6.1 (KB3122661) Security Update for Microsoft .NET Framework 4.6.1 (KB3127233) Security Update for Microsoft .NET Framework 4.6.1 (KB3136000) Security Update for Microsoft .NET Framework 4.6.1 (KB3143693) Security Update for Microsoft Office 2016 (KB2920727) 32-Bit Edition Security Update for Microsoft Office 2016 (KB3085538) 32-Bit Edition Security Update for Microsoft Office 2016 (KB3085635) 32-Bit Edition Security Update for Microsoft Office 2016 (KB3114690) 32-Bit Edition Security Update for Microsoft Publisher 2016 (KB2920680) 32-Bit Edition Security Update for Skype for Business 2016 (KB3114960) 32-Bit Edition SpywareBlaster 5.5 Synaptics Pointing Device Driver Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD Taalprogramma's voor Microsoft Office 2016 - Nederlands Tixati Tweaking.com - Windows Repair Tweaking.com - Windows Repair (All in One) Update for Microsoft Access 2016 (KB3114966) 32-Bit Edition Update for Microsoft Excel 2016 (KB3115090) 32-Bit Edition Update for Microsoft Office 2016 (KB2910954) 32-Bit Edition Update for Microsoft Office 2016 (KB2910979) 32-Bit Edition Update for Microsoft Office 2016 (KB2920678) 32-Bit Edition Update for Microsoft Office 2016 (KB2920684) 32-Bit Edition Update for Microsoft Office 2016 (KB2920699) 32-Bit Edition Update for Microsoft Office 2016 (KB2920712) 32-Bit Edition Update for Microsoft Office 2016 (KB2920718) 32-Bit Edition Update for Microsoft Office 2016 (KB2920720) 32-Bit Edition Update for Microsoft Office 2016 (KB2920724) 32-Bit Edition Update for Microsoft Office 2016 (KB3114369) 32-Bit Edition Update for Microsoft Office 2016 (KB3114378) 32-Bit Edition Update for Microsoft Office 2016 (KB3114533) 32-Bit Edition Update for Microsoft Office 2016 (KB3114535) 32-Bit Edition Update for Microsoft Office 2016 (KB3114689) 32-Bit Edition Update for Microsoft Office 2016 (KB3114694) 32-Bit Edition Update for Microsoft Office 2016 (KB3114712) 32-Bit Edition Update for Microsoft Office 2016 (KB3114854) 32-Bit Edition Update for Microsoft Office 2016 (KB3114859) 32-Bit Edition Update for Microsoft Office 2016 (KB3114903) 32-Bit Edition Update for Microsoft Office 2016 (KB3114968) 32-Bit Edition Update for Microsoft Office 2016 (KB3114971) 32-Bit Edition Update for Microsoft Office 2016 (KB3115084) 32-Bit Edition Update for Microsoft Office 2016 (KB3115091) 32-Bit Edition Update for Microsoft Office 2016 (KB3115096) 32-Bit Edition Update for Microsoft Office 2016 (KB3115100) 32-Bit Edition Update for Microsoft OneDrive for Business (KB3115104) 32-Bit Edition Update for Microsoft OneNote 2016 (KB3114711) 32-Bit Edition Update for Microsoft Outlook 2016 (KB3115101) 32-Bit Edition Update for Microsoft PowerPoint 2016 (KB3115089) 32-Bit Edition Update for Microsoft Project 2016 (KB3115105) 32-Bit Edition Update for Microsoft Visio 2016 (KB3114957) 32-Bit Edition Update for Microsoft Word 2016 (KB3114969) 32-Bit Edition Visual Studio 2012 x86 Redistributables VLC media player WinHTTrack Website Copier 3.48-22 WinRAR 5.20 (32-bit) ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AGSService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AGSService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AdobeARMservice deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AdobeARMservice deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IswSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\IswSvc deleted successfully ==== Deleting Files \ Folders ====================== C:\Users\Administrator\AppData\Roaming\ProductData deleted C:\Users\CvS\AppData\Roaming\AdbWinApi.dll deleted C:\Users\CvS\AppData\Roaming\AdbWinUsbApi.dll deleted C:\Users\CvS\AppData\Roaming\LogFile.txt deleted C:\Users\CvS\AppData\Roaming\Thinstall deleted C:\Users\Default\AppData\Roaming\ProductData deleted C:\PROGRA~2\Kingsoft deleted C:\PROGRA~2\ProductData deleted C:\PROGRA~2\Package Cache deleted C:\Windows\system32\rsrcs.dll deleted C:\Users\CvS\AppData\Roaming\usbboxlite_4001_o_8209_hn.exe deleted C:\Users\CvS\AppData\Roaming\ziptool_wc-9015_setup.exe deleted C:\Windows\system32\config\systemprofile\AppData\Roaming\Fighters deleted "C:\Users\CvS\AppData\Local\{DB7F3FC0-3B45-4F83-8A07-AF1BEE4FCB67}" deleted "C:\Users\CvS\AppData\Roaming\231tLfILzacPUeRjuvGllYl" deleted "C:\Users\CvS\AppData\Roaming\bjBY07q1l3czFIM" deleted "C:\Users\CvS\AppData\Roaming\ci23zWgXXr" deleted "C:\Users\CvS\AppData\Roaming\EjC8GVml" deleted "C:\Users\CvS\AppData\Roaming\f6JgrS3n4tEho" deleted "C:\Users\CvS\AppData\Roaming\OJZSqVOd5" deleted "C:\Users\CvS\AppData\Local\Thinstall" deleted ==== System Specs ====================== Windows: Windows 7 Starter Edition Service Pack 1 (Build 7601) Memory (RAM): 2049 MB CPU Info: Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz CPU Speed: 1828,6 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce 8400M GS | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 800 - 32 bit Network: Network Present Network Adapters: Realtek PCIe FE Family Controller | Broadcom 802.11b/g-netwerkadapter CD / DVD Drives: No optical drives found. Ports: COM3 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 118,1GB | D: 8,5GB | F: 106,2GB Hard Disks - Free: C: 36,6GB | D: 2,8GB | F: 21,5GB Manufacturer *: Hewlett-Packard BIOS Info: AT/AT COMPATIBLE | 06/16/08 | HPQOEM - 6040000 Time Zone: West-Europa (standaardtijd) Motherboard *: Quanta 30D2 Country: Nederland Language: NLD ==== System Specs (Software) ====================== AV: Avast Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Avast Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: Avast Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} Internet Explorer Version: 11.0.9600.18282 Mozilla Firefox version: 49.0.2 (x86 nl) Google Chrome version: 52.0.2743.116 Sun Java version: 1.8.0_111 (32-bit) Flash Player version: 23.0.0.205 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2016-10-30 22:50:50 015B30309491A911E75748AD69C9E680 921280 ----a-w- C:\Windows\ucrtbase.dll 2016-10-30 22:50:34 12EBDA58437CD1EA7066FCB6455241D2 53208 ----a-w- C:\Windows\avastSS.scr 2016-10-30 10:57:45 CA2A8AF1DBAD0F31F9B33A2827DFBC16 207 ----a-w- C:\Windows\tweaking.com-regbackup-CVS-PC-Windows-7-Starter-(32-bit).dat 2016-10-10 07:30:41 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2016-10-10 07:30:41 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2016-10-10 07:30:41 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2016-10-10 07:30:41 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2016-10-10 07:30:41 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe ====== C:\Users\CvS\AppData\Local\Temp ==== 2016-11-03 12:53:17 5C64765A4430EBC7D22AEF00C6F6C918 5139656 ----a-w- C:\Users\CvS\AppData\Local\temp\Rar$EXa0.797\Adobe Dreamweaver CC 2015 Crack Free Download.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== 2016-10-31 23:25:54 9841CB6CB370D4E67F0BC73295D1A3ED 459696 ----a-w- C:\Windows\System32\FNTCACHE.DAT 2016-10-31 16:36:05 3E62CF18441A03A440B280182E4B6935 129872 ----a-w- C:\Windows\System32\MSSTDFMT.DLL 2016-10-30 22:50:50 DBFE0478B53DEAB2466F2B36AD49AABC 319760 ----a-w- C:\Windows\System32\aswBoot.exe 2016-10-26 15:38:18 002707F5382DFF2030579A111F47E984 39696 ----a-w- C:\Windows\System32\authuitu.dll 2016-10-26 15:38:14 BC2D0CD498DCCB5A878D9717F327F624 49424 ----a-w- C:\Windows\System32\uxtuneup.dll 2016-10-26 10:10:56 25D681D920171C52DE32F0F76A01A6E0 49936 ----a-w- C:\Windows\System32\TURegOpt.exe 2016-10-24 13:06:26 476C950C4AB1B426F1B0AAD08A21CCD1 35440 ----a-w- C:\Windows\System32\DbxSvc.exe ====== C:\Windows\system32\drivers ===== 2016-11-01 11:06:06 05C11D2DA6B396F6AD8C590D32CF81D7 17472 ----a-w- C:\Windows\System32\drivers\GUBootStartup.sys 2016-10-31 23:07:44 BF85D404851462FDF3157F49EA870725 81768 ----a-w- C:\Windows\System32\drivers\ksapi.sys 2016-10-31 23:07:44 6968FC608A61791C13CEFE6C8496CBD2 56680 ----a-w- C:\Windows\System32\drivers\ksapi64.sys 2016-10-31 16:47:47 5A615F4641287E5E88968F5455627D45 323808 ----a-w- C:\Windows\System32\drivers\tmcomm.sys 2016-10-30 23:00:51 7393DE24CAE720E128FE61CC1A7632E3 35096 ----a-w- C:\Windows\System32\drivers\aswKbd.sys 2016-10-30 22:51:26 A084E7BEA9EA4D0BE94357BFE8E987D7 118664 ----a-w- C:\Windows\System32\drivers\aswStm.sys 2016-10-30 22:51:24 E061C8C09103BBE429D9DB222ED7F4C3 433768 ----a-w- C:\Windows\System32\drivers\aswsp.sys 2016-10-30 22:51:24 8CA850403483A9373406707E8144EB5C 224752 ----a-w- C:\Windows\System32\drivers\aswvmm.sys 2016-10-30 22:51:23 39445B2AA5CD7711DA5572E816D5DC86 60424 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2016-10-30 22:51:22 ACE407AF9DCE214772E04894C18BC18B 34008 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2016-10-30 22:51:22 9A3BCD9CB36311EC1DB686010CE2E793 92256 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2016-10-30 22:51:21 411E8CF998E01C3247DE094376E3CB3B 91232 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2016-10-30 22:51:20 03AD952FC1287D5623763E310CE081BA 735488 ----a-w- C:\Windows\System32\drivers\aswsnx.sys 2016-10-30 22:51:19 044112EE023F38BF32D87EBC96C0BCEB 338936 ----a-w- C:\Windows\System32\drivers\aswNetSec.sys 2016-10-30 22:50:18 83F1C93475CEE22B14A5052F03E9B4FC 26776 ----a-w- C:\Windows\System32\drivers\aswNetNd6.sys 2016-10-25 15:03:54 0098B71A5D28FEAF321B4AC4549765D9 40504 ----a-w- C:\Windows\System32\drivers\dtliteusbbus.sys 2016-10-25 15:00:36 8A32FF671D452D36CC7421171B78F939 26168 ----a-w- C:\Windows\System32\drivers\dtlitescsibus.sys 2016-10-24 13:06:10 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Windows\System32\drivers\dbx-stable.sys 2016-10-24 13:06:10 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Windows\System32\drivers\dbx-dev.sys 2016-10-24 13:06:10 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Windows\System32\drivers\dbx-canary.sys ====== C:\Windows\Tasks ====== 2016-11-02 21:15:31 81A16F5781803530A10E08D844D4C25F 2884 ----a-w- C:\Windows\system32\Tasks\Uninstaller_SkipUac_CvS 2016-11-02 16:15:58 A0574654A5B9FC437CABB350D2B03585 3130 ----a-w- C:\Windows\system32\Tasks\{0EBD9984-17F5-4F05-86C6-83A044E4486D} 2016-11-02 03:23:52 89B2680B9E67849F8E47C664858A2480 3148 ----a-w- C:\Windows\system32\Tasks\SidebarExecute 2016-11-01 23:29:36 F3747404CFA0C7F205F955248914729B 3622 ----a-w- C:\Windows\system32\Tasks\Tweaking.com - Windows Repair Tray Icon 2016-11-01 11:13:41 643AC69E51FD1821FE2AFDAD661AE5B4 3760 ----a-w- C:\Windows\system32\Tasks\GlaryOneClickOptimizer 5 2016-11-01 11:06:10 BC9041103A264C48C768D6CA2FEEF01A 2952 ----a-w- C:\Windows\system32\Tasks\GU5SkipUAC 2016-11-01 11:06:08 3F6EE3AAE0F3535366B3AF438ABC0122 3282 ----a-w- C:\Windows\system32\Tasks\GlaryInitialize 5 2016-10-31 18:06:03 9B3D5EFAF5ED690168FAFA8BE8A7140E 3116 ----a-w- C:\Windows\system32\Tasks\DRScanner Startup 2016-10-30 23:04:00 512BC0D913E3A9C00033D239553ADF28 3886 ----a-w- C:\Windows\system32\Tasks\SafeZone scheduled Autoupdate 1477868605 2016-10-30 22:51:41 5A0341CB3C853BD5C10109D373D75111 3922 ----a-w- C:\Windows\system32\Tasks\avast! Emergency Update 2016-10-29 22:34:49 6A4FCACC27AC24391872302B6F88E8C7 3306 ----a-w- C:\Windows\system32\Tasks\{8A90F171-F8F8-4918-8F23-3C6FA949A155} 2016-10-29 21:52:43 E124EE09AF720AB7A4CD42839FD83170 3266 ----a-w- C:\Windows\system32\Tasks\{A478F310-E2DE-4868-B83A-2D8E8F9D85D0} 2016-10-26 16:09:35 11CB66AFBA6747006D52DE0ABCBB2EC8 3680 ----a-w- C:\Windows\system32\Tasks\Java Platform SE Auto Updater ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-11-03 12:32:02 -------- d-----w- C:\Program Files\Adobe 2016-11-03 12:29:30 -------- d-----w- C:\Program Files\Common Files\Adobe 2016-11-03 11:12:19 -------- d-----w- C:\Program Files\7-Zip 2016-11-01 11:05:55 -------- d-----w- C:\Program Files\Glary Utilities 5 2016-10-31 23:07:42 -------- d-----w- C:\Program Files\cmcm 2016-10-31 16:36:04 -------- d-----w- C:\Program Files\SpywareBlaster 2016-10-30 23:20:09 -------- d-----w- C:\Program Files\Common Files\Java 2016-10-30 22:51:43 -------- d-----w- C:\Program Files\Common Files\AV 2016-10-30 11:47:07 -------- d-----w- C:\Program Files\Uninstall Information 2016-10-30 10:45:12 -------- d-----w- C:\Program Files\Tweaking.com 2016-10-27 12:55:47 -------- d-----w- C:\Program Files\Efficient Address Book 2016-10-24 15:37:05 -------- d-----w- C:\Program Files\tixati 2016-10-09 11:10:24 -------- d-----w- C:\Program Files\Notepad++ ======= C: ===== ====== C:\Users\CvS\AppData\Roaming ====== 2016-11-03 12:39:51 -------- d-----w- C:\Users\CvS\AppData\Locallow\Adobe 2016-11-03 12:34:43 -------- d-----w- C:\Users\CvS\AppData\Local\Adobe 2016-11-03 12:32:02 -------- d-----w- C:\Users\CvS\AppData\Roaming\Adobe 2016-11-02 22:52:45 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2016-11-02 15:01:59 -------- d-----w- C:\Users\CvS\AppData\Locallow\Temp 2016-11-02 14:00:13 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2016-11-01 12:23:26 -------- d-----w- C:\Users\CvS\AppData\Local\CrashDumps 2016-11-01 11:06:05 -------- d-----w- C:\Users\CvS\AppData\Roaming\GlarySoft 2016-10-31 23:27:42 238F50CC8FA5D785528550ABC0ABCDD8 121256 ----a-w- C:\Users\CvS\AppData\Local\GDIPFONTCACHEV1.DAT 2016-10-31 22:29:51 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\temp 2016-10-30 06:56:00 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\WinRAR 2016-10-28 08:44:35 -------- d-----w- C:\Users\CvS\AppData\Local\temp 2016-10-27 13:33:20 770C74DA951FF328D368E3F863994D9E 9356 ----a-w- C:\Users\CvS\AppData\Roaming\Door komma's gescheiden waarden.EML 2016-10-27 13:08:02 -------- d-----w- C:\Users\CvS\AppData\Roaming\Efficient Software 2016-10-27 13:07:41 -------- d-----w- C:\Users\CvS\AppData\Roaming\Efficient Address Book 2016-10-27 12:56:05 -------- d-----w- C:\Users\CvS\AppData\Roaming\EfficientPIM 2016-10-26 07:48:28 -------- d-----w- C:\Users\Default\AppData\Roaming\IObit 2016-10-26 07:48:28 -------- d-----w- C:\Users\Default User\AppData\Roaming\IObit 2016-10-26 07:47:48 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Google 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-10-26 07:47:36 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Identities 2016-10-26 07:47:29 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-10-24 15:37:28 -------- d-----w- C:\Users\CvS\AppData\Roaming\tixati 2016-10-24 15:37:12 -------- d-----w- C:\Users\CvS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati 2016-10-24 07:22:15 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Adobe 2016-10-24 07:22:15 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Adobe 2016-10-13 14:45:22 -------- d-----w- C:\Users\CvS\AppData\Roaming\NotepadPlusPlusApp 2016-10-13 14:28:27 -------- d-----w- C:\Users\CvS\AppData\Local\IsolatedStorage ====== C:\Users\CvS ====== 2016-11-03 12:39:57 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe 2016-11-03 12:34:28 -------- d-----w- C:\ProgramData\Adobe 2016-11-03 11:12:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2016-11-03 11:11:16 DA7DB29E783780F3A581E6E0BF4C595D 1110564 ----a-w- C:\Users\CvS\Downloads\7z1604.exe 2016-11-03 09:36:28 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\CvS\Desktop\RSIT.exe 2016-11-03 09:35:53 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\CvS\Downloads\RSIT.exe 2016-11-02 16:12:52 56622CBE4CC4B093C9BA33D5A94F0C48 154029728 ----a-w- C:\Users\CvS\Desktop\AcroRdrDC1500720033_MUI.exe 2016-11-02 16:08:05 56622CBE4CC4B093C9BA33D5A94F0C48 154029728 ----a-w- C:\Users\CvS\Downloads\AcroRdrDC1500720033_MUI.exe 2016-11-02 15:59:50 FFE5C996F254B6CD621B5E9603540BA8 1201376 ----a-w- C:\Users\CvS\Downloads\readerdc_nl_xa_install.exe 2016-11-01 22:31:58 B36D4CF63DA2597BC1DCB2938F9D855B 8388608 ----a-w- C:\Users\CvS\Downloads\msert (1).exe 2016-11-01 22:30:34 DAFBE6CBF48FD0E27E1541BB2281F3CF 3145728 ----a-w- C:\Users\CvS\Desktop\msert.exe 2016-11-01 12:06:18 -------- d-----w- C:\ProgramData\GlarySoft 2016-11-01 11:06:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2016-11-01 11:04:22 D2938721DCE6D7DAA765B604162FA7B2 16430784 ----a-w- C:\Users\CvS\Desktop\gu5setup.exe 2016-11-01 10:44:22 D87A1A8579959BC4484FCAA9EE0A43F3 48750920 ----a-w- C:\Users\CvS\Desktop\BDPUARLauncher.exe 2016-10-31 23:07:50 -------- d-----w- C:\ProgramData\cmcm 2016-10-31 23:07:44 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clean Master 2016-10-31 22:54:55 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\CvS\Downloads\mbam-setup-2.2.1 (Do2Dear.Net).exe 2016-10-31 18:16:28 E39FC95F0276DCBB25EFFEC2CFFA8E37 1631928 ----a-w- C:\Users\CvS\Downloads\JRT.exe 2016-10-31 16:47:01 AAE65653923371876F23C93DFFA41606 2105760 ----a-w- C:\Users\CvS\Downloads\HousecallLauncher.exe 2016-10-31 16:36:24 -------- d-----w- C:\ProgramData\Licenses 2016-10-31 16:36:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster 2016-10-31 16:34:46 7793999D940065E8F827841BC5B8098A 4291320 ----a-w- C:\Users\CvS\Downloads\spywareblastersetup55.exe 2016-10-30 22:55:23 -------- d-----w- C:\Windows\system32\config\systemprofile\.oracle_jre_usage 2016-10-30 22:46:45 B6E6FAD911F99B82BF177954930DEABB 6306272 ----a-w- C:\Users\CvS\Downloads\avast_premier_antivirus_setup_online.exe 2016-10-30 22:32:11 6D4140B9F37A766A6E9292A284B29F28 801984 ----a-w- C:\Users\CvS\Downloads\CreativeCloudSet-Up (1).exe 2016-10-30 10:45:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2016-10-30 10:31:54 FE8B0000A60C638040CF3D10D2C74E39 547461 ----a-w- C:\Users\CvS\Downloads\ramrush.exe 2016-10-30 10:20:28 AA333CC9195B71AAE2E7F3589ADF4FC7 63391240 ----a-w- C:\Users\CvS\Downloads\dreamweaver8-es.exe 2016-10-30 10:09:59 778FC018C3DE7F6B670C2F9B0E390239 9783024 ----a-w- C:\Users\CvS\Downloads\dw8_802_update_en.exe 2016-10-29 13:24:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-10-28 22:32:54 121F06C1DA71965212F3B6C13C17C514 3910208 ----a-w- C:\Users\CvS\Desktop\AdwCleaner.exe 2016-10-28 21:45:04 734D1D665E6E9E41D3412F6D387E9B4F 1757184 ----a-w- C:\Users\CvS\Desktop\FRST.exe 2016-10-27 22:31:10 10F48E01220327E53906CA5198E73B2B 62651176 ----a-w- C:\Users\CvS\Downloads\Dreamweaver_8 [1].exe 2016-10-27 13:07:57 -------- d-----w- C:\ProgramData\firebird 2016-10-27 12:56:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Efficient Address Book 2016-10-26 10:10:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\Videos 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\Pictures 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\Music 2016-10-26 07:47:46 -------- d-----r- C:\Windows\system32\config\systemprofile\Downloads 2016-10-26 07:47:29 -------- d-----r- C:\Windows\system32\config\systemprofile\Favorites 2016-10-25 14:50:16 CEAA57526F3A0A33D2C61716DDD23C84 692072 ----a-w- C:\Users\CvS\Downloads\DTLiteInstaller.exe 2016-10-22 17:12:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ ====== C: exe-files == 2016-11-03 11:12:27 43BA0B2491205C6F45D642F555CC976A 14336 ----a-w- C:\Program Files\7-Zip\Uninstall.exe 2016-11-03 11:12:26 E7957B74BEFE1B2451C460B111C8E86F 265216 ----a-w- C:\Program Files\7-Zip\7z.exe 2016-11-03 11:12:26 76686BD748F379AE749925AC3A0BEF24 333824 ----a-w- C:\Program Files\7-Zip\7zG.exe 2016-11-03 11:12:26 0B3E979BEF0D8B96231F7BBC95629F55 495104 ----a-w- C:\Program Files\7-Zip\7zFM.exe 2016-10-31 23:07:43 E3566F4FD0B1FC99C6ED09E318155D67 771912 ----a-w- C:\Program Files\cmcm\Clean Master\cmtray.exe 2016-10-31 23:07:43 C3622DD3BA9BA1793969F3F0826CD71C 2461544 ----a-w- C:\Program Files\cmcm\Clean Master\kcleaner.exe 2016-10-31 23:07:43 B937831896A32FE264B26DD97A3E432D 315208 ----a-w- C:\Program Files\cmcm\Clean Master\cmcore.exe 2016-10-31 23:07:43 5F8B85AA314902554A7198A837312A54 877928 ----a-w- C:\Program Files\cmcm\Clean Master\uni0nst.exe 2016-10-31 23:07:43 1CFFA1F091BBE69463BB61B934E16B6B 671592 ----a-w- C:\Program Files\cmcm\Clean Master\cmlive.exe 2016-10-31 18:05:57 6D49869E04EDEDB6F2988054AD171D99 140800 ----a-w- C:\Program Files\trend micro\DRScanner\Release\DRSource\nmaparser.exe 2016-10-31 18:05:57 12722A9AB65F921E83556C4B31860C6D 432753 ----a-w- C:\Program Files\trend micro\DRScanner\winpcap-nmap-4.13.exe 2016-10-31 18:05:24 52BCFB80DE31E4C58A4B9A03220302DC 2564608 ----a-w- C:\Program Files\trend micro\DRScanner\nmap\nmap.exe 2016-10-31 18:05:03 D9DBBFE2300646C6ACA1A94EC4B35B60 1628672 ----a-w- C:\Program Files\trend micro\DRScanner\DRScanner.exe 2016-10-31 16:36:04 AE13FB6BD8086465217F6A063EC3FCC3 715038 ----a-w- C:\Program Files\SpywareBlaster\unins000.exe 2016-10-31 16:36:04 430F52E6F90343EA26AB73B32C818DF6 2580576 ----a-w- C:\Program Files\SpywareBlaster\spywareblaster.exe 2016-10-31 16:36:04 2AF5DBE3A4C6E04698B1E929AE92DDC7 2134152 ----a-w- C:\Program Files\SpywareBlaster\sbautoupdate.exe 2016-10-31 16:36:04 1F74DB84649CE3222FF50ABBCF6C690D 127064 ----a-w- C:\Program Files\SpywareBlaster\sburlhelper.exe 2016-10-30 23:18:53 ED141A08605AF568747C8F418170FC06 159296 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\unpack200.exe 2016-10-30 23:18:53 6DDA1D127FD0C4B8F93307E6D52B1ABD 16448 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\tnameserv.exe 2016-10-30 23:18:52 F38FB008B3816D9585F10A7D2CC22DF1 16448 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\orbd.exe 2016-10-30 23:18:52 EBF20DDA7DDA14BBD1F6F2F1B37BC113 83008 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\jp2launcher.exe 2016-10-30 23:18:52 C2B897032A8604E1827B0CD07EBB3306 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\java-rmi.exe 2016-10-30 23:18:52 C07D4839606118BBF7C5153FF171301C 70208 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\javacpl.exe 2016-10-30 23:18:52 B8EDC4631E2B5D7AE9E626690F6506FF 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\rmid.exe 2016-10-30 23:18:52 A90E29C3839ED2141F80670A3DB32F69 191552 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\javaw.exe 2016-10-30 23:18:52 A1AD424B821EB9878B985AB43253DCA0 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\keytool.exe 2016-10-30 23:18:52 8448994199BEE00F4C40A561AE77672F 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\kinit.exe 2016-10-30 23:18:52 65E94EC48AE31838C8F6F2F4FC59AB44 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\pack200.exe 2016-10-30 23:18:52 5F2D0025CB3C078E0AAB83E1430827C6 52800 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\ssvagent.exe 2016-10-30 23:18:52 5A92988B4DEC8EAFE62F7D2DBE8AB620 269888 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\javaws.exe 2016-10-30 23:18:52 490D67C45EE587B06833ADA0811F241B 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\servertool.exe 2016-10-30 23:18:52 487C48AA28B0DC99A387F31E7764ABFB 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\jjs.exe 2016-10-30 23:18:52 3FAF0C9A1D59F5D196C0578839A00EFE 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\policytool.exe 2016-10-30 23:18:52 391D35229BF096E04FEE6F8520DC3B21 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\klist.exe 2016-10-30 23:18:52 1D623A885163D6BA50175987B4BB9450 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\rmiregistry.exe 2016-10-30 23:18:52 1B7F15EA9DA5322698988698C7D58959 191040 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\java.exe 2016-10-30 23:18:52 1598CF2FAD014E95975560929F578E05 30784 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\jabswitch.exe 2016-10-30 23:18:52 09C754EFAEE0DA93817D5DC0A5FFE8B4 15936 ----a-w- C:\Program Files\Java\jre1.8.0_111\bin\ktab.exe 2016-10-30 22:51:43 E29E03F59F4FA7CFF645E8C8794BA0B7 184032 ----a-w- C:\Program Files\Common Files\AV\avast! Antivirus\upgrade.exe 2016-10-30 22:51:43 CD11D500328F07AE1666D046F94179E0 702056 ----a-w- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe 2016-10-30 10:45:12 9BDCF813D65265255B820BC7A704DA3C 1388544 ----a-w- C:\Program Files\Tweaking.com\Windows Repair (All in One)\uninstall.exe 2016-10-30 10:11:08 453CB8D7384B0716F69467E9F9E081BC 778240 ----a-w- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriver.exe 2016-10-29 13:24:04 82B1A4ABDD28668EEFB702685D3AC9BB 18392 ----a-w- C:\Program Files\Dropbox\Client\QtWebEngineProcess.exe 2016-10-29 13:23:36 790881A4E93FFF5EA4356443FA1AB9E1 174048 ----a-w- C:\Program Files\Dropbox\Client\DropboxUninstaller.exe 2016-10-29 13:23:35 476C950C4AB1B426F1B0AAD08A21CCD1 35440 ----a-w- C:\Program Files\Dropbox\Client\driver_x86\dbxsvc.exe 2016-10-29 13:23:35 22DE1B88FC48FA1EB0FAC51BF1ACE087 25424008 ----a-w- C:\Program Files\Dropbox\Client\Dropbox.exe 2016-10-29 13:23:34 566BD6ED419F7FBC88EDD579044AD5C9 41576 ----a-w- C:\Program Files\Dropbox\Client\driver_amd64\dbxsvc.exe 2016-10-29 13:21:16 15A1352CAB4086792689DC05C7896A5A 70575032 ----a-w- C:\Program Files\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\13.4.21\DropboxClient_13.4.21.exe 2016-10-28 22:39:50 94B1A6CE13D4B556977E1E9CFEC741B7 1715784 ----a-w- C:\AdwCleaner\quarantine\files\kohvoblaqhqdjpiadtdgxktqmupfzlml\ScriptHelperInstaller\40.3.6\ScriptHelper.exe 2016-10-28 22:39:50 8A46AEE1438647F7288106EC11832508 1349704 ----a-w- C:\AdwCleaner\quarantine\files\kohvoblaqhqdjpiadtdgxktqmupfzlml\vToolbarUpdater\40.3.6\ToolbarUpdater.exe 2016-10-28 22:39:39 E20FC4FC2F02A37CCE9ACC2ACB9BA668 980552 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\WtuSystemSupport.exe 2016-10-28 22:39:39 090D95190F02F5BC351C97CFD560AA20 2180680 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\vprot.exe 2016-10-28 22:39:38 CA095C21BC01C36082634D5B4A73A396 2215496 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\Uninstall.exe 2016-10-28 22:39:37 0E24BE6F54054FE2356C016C7B20B86E 771144 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\lip.exe 2016-10-28 22:39:35 D6725D7CCAD61CA580FF79A503A352AD 1203784 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\CefHost.exe 2016-10-28 22:39:34 A72DFB6DC0E8D0C68A239456A03CD54B 845384 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\BundleInstall.exe === C: other files == 2016-10-31 23:07:44 BF85D404851462FDF3157F49EA870725 81768 ----a-w- C:\Program Files\cmcm\Clean Master\ksapi.sys 2016-10-31 23:07:44 6968FC608A61791C13CEFE6C8496CBD2 56680 ----a-w- C:\Program Files\cmcm\Clean Master\ksapi64.sys 2016-10-30 23:18:53 467720B73E839ED66826EAF59C9A59E7 14156 ----a-w- C:\Program Files\Java\jre1.8.0_111\lib\deploy\ffjcext.zip 2016-10-29 13:23:34 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Program Files\Dropbox\Client\driver_amd64\dbx-stable.sys 2016-10-29 13:23:34 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Program Files\Dropbox\Client\driver_amd64\dbx-dev.sys 2016-10-29 13:23:34 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Program Files\Dropbox\Client\driver_x86\dbx-stable.sys 2016-10-29 13:23:34 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Program Files\Dropbox\Client\driver_x86\dbx-dev.sys 2016-10-29 13:23:34 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Program Files\Dropbox\Client\driver_x86\dbx-canary.sys 2016-10-29 13:23:33 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Program Files\Dropbox\Client\driver_amd64\dbx-canary.sys 2016-10-28 22:39:35 567B5EC265B26994AFB11DB13F53B07A 147960 ----a-w- C:\AdwCleaner\quarantine\files\brbjkvwnzvqcduqagmuwrzknpwffnjee\data.zip 2016-10-28 22:39:28 0E4CDC2C6803624E4E5EB45A5C2D4FE7 181610 ----a-w- C:\AdwCleaner\quarantine\files\xzotfnbydcsdwfaixdcwfhtvyskwlmwc\FireFoxExt\4.3.6.255\avg@toolbar.xpi ==== Orphaned Tasks deleted from Registry ====================== 1015avtUpdateInfo deleted AutoKMS deleted avast Emergency Update deleted Holuge System deleted ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-3999796690-2714581427-440596665-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AvastUI.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AvastUI.exe" "hkey"="HKLM" "command"="\"C:\\Program Files\\AVAST Software\\Avast\\AvastUI.exe\" /nogui" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CCleaner Monitoring" "hkey"="HKCU" "command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cmsc] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="cmsc" "hkey"="HKLM" "command"="\"c:\\program files\\cmcm\\Clean Master\\cmtray.exe\" -autorun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Dropbox] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Dropbox" "hkey"="HKLM" "command"="\"C:\\Program Files\\Dropbox\\Client\\Dropbox.exe\" /systemstartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GUDelayStartup] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="GUDelayStartup" "hkey"="HKCU" "command"="\"C:\\Program Files\\Glary Utilities 5\\StartupManager.exe\" -delayrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SwitchBoard" "hkey"="HKLM" "command"="C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMScheduler] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "CCleaner Monitoring"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "AdobeAAMUpdater-1.0"="\"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"" "SynTPEnh"="%ProgramFiles%\\Synaptics\\SynTP\\SynTPEnh.exe" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2014-11-30 05:44:28 9338 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD 2014-11-30 05:44:28 9338 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD ==== Task Scheduler Jobs ====================== C:\Windows\tasks\DropboxUpdateTaskMachineCore.job --a------ C:\Program Files\Dropbox\Update\DropboxUpdate.exe [03-11-2015 10:42] C:\Windows\tasks\DropboxUpdateTaskMachineUA.job --a------ C:\Program Files\Dropbox\Update\DropboxUpdate.exe [03-11-2015 10:42] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\AdobeAAMUpdater-1.0-CvS-PC-CvS" [C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\system32\tasks\AutoPico Daily Restart" ["C:\Program Files\KMSpico\AutoPico.exe"] "C:\Windows\system32\tasks\AVG EUpdate Task" [avgsetupx.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\system32\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\system32\tasks\DRScanner Startup" [C:\Program Files\Trend Micro\DRScanner\DRScanner.exe] "C:\Windows\system32\tasks\GlaryInitialize 5" [C:\Program Files\Glary Utilities 5\Initialize.exe] "C:\Windows\system32\tasks\GlaryOneClickOptimizer 5" [C:\Program Files\Glary Utilities 5\OneClickMaintenance.exe] "C:\Windows\system32\tasks\GU5SkipUAC" [C:\Program Files\Glary Utilities 5\Integrator.exe] "C:\Windows\system32\tasks\Java Platform SE Auto Updater" [C:\Program Files\Common Files\Java\Java Update\jusched.exe] "C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1477868605" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe] "C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\system32\tasks\Tweaking.com - Windows Repair Tray Icon" [C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe] "C:\Windows\system32\tasks\Uninstaller_SkipUac_CvS" [C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe] "C:\Windows\system32\tasks\{017B15D5-A20A-435B-B589-1502529C87D5}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{024A9A48-664D-4459-93C4-3905171B1383}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{02827BF8-209D-481D-A73F-99AA37F97116}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{1D354AE9-FE8E-4BFF-B6E0-6936A2180BB0}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{1F2DB116-7DB6-4CE4-8FC5-1AFCB6B5B5E2}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{3560E4D7-626A-4E07-BEA2-403F6C66C7F2}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{4EDADAA7-A12D-405D-9E21-1FDAEC18327C}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{77063906-8E0D-46FF-8029-74C16FB3F8A4}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{85D1E714-8682-4DFC-984E-116A5FCB6285}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{8D4A746F-FD2D-489A-85E8-6B7B11DD6F95}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{A47FE7EC-DD70-4E5E-A118-E3DF206ADE13}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{E3038A7F-A341-492C-8611-A78B0283C591}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\{EE2DB721-BDA7-4029-8EF4-CFFCF8BD5913}" [C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE] "C:\Windows\system32\tasks\AVAST Software\Avast settings backup" [C:\Program Files\Common Files\AV\avast Antivirus\backup.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [30-10-2016 23:50]