Zoek.exe v5.0.0.1 Updated 19-September-2016
Tool run by Dell on zo 15-01-2017 at 10:47:23,25.
Microsoft Windows 10 Pro 10.0.14393  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dell\Downloads\zoek (36).exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2017-01-13-070545.log	150850 bytes
C:\zoek-results2017-01-13-144349.log	1070 bytes
C:\zoek-results2017-01-13-151528.log	8693 bytes
C:\zoek-results2017-01-14-094444.log	9426 bytes

==== Empty Folders Check ======================

C:\Users\Dell\AppData\Local\NetworkTiles deleted successfully
C:\Users\Dell\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2017-01-15 07:57:21	573043EE0CF168E0802444B57F14CFCE	503671781	----a-w-	C:\WINDOWS\MEMORY.DMP
2017-01-07 17:50:35	6D7FDBF9CEAC51A76750FD38CF801F30	3584	----a-w-	C:\WINDOWS\SECOH-QAD.dll
2017-01-07 17:50:35	38DE5B216C33833AF710E88F7F64FC98	4608	----a-w-	C:\WINDOWS\SECOH-QAD.exe
====== C:\Users\Dell\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2017-01-11 08:30:44	E9A61066D8433692073FB7A71B76BF4F	223232	----a-w-	C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 08:30:44	79079788BFF24158D1F1E945D1AC092D	557568	----a-w-	C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-11 08:30:44	2A046635F3515975AEFBB855CB4E9559	180224	----a-w-	C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-11 08:30:43	6C79DD2C43E95A38FBB567D83DACDC52	263472	----a-w-	C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 08:30:40	BC95B9B72F50130CE7D87093E9F04110	253952	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 08:30:40	AF1CD431B9B08CBFB62F3B97C614951F	213504	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 08:30:40	593B33D87F2EB6BA09D583D782EC5922	285184	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 08:30:40	1220BEFEC4639175792FC0462DD52F3A	866816	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-11 08:30:39	E88811CA8FD0847E359D14C96C5DAE8C	218976	----a-w-	C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-11 08:30:38	FB8657C99B33C9E3AD5197D4AD6B229F	5398016	----a-w-	C:\WINDOWS\SysWOW64\aclui.dll
2017-01-11 08:30:38	677A1A604EA11CEEE78CD62AC0A79972	2206496	----a-w-	C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-11 08:30:37	DEF44B761300AF3C2CF2955273325093	20969928	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2017-01-11 08:30:35	E8866BF59BEBEE221459E82453642290	755712	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-11 08:30:35	C03354B15AB4B40A3D626EEA4BD6AFBB	74752	----a-w-	C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-11 08:30:34	D6BC9443751A6307D6DED2C94438BF9E	1155072	----a-w-	C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-11 08:30:34	1DD77E7ED258C57103D1FF1B0571D3FD	553984	----a-w-	C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-11 08:30:33	16BD10FB0F72B9C844234C07C3130E04	167424	----a-w-	C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-11 08:30:32	E507716406282DED993ED67B192E4B93	382784	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-11 08:30:32	DC195E020B6173087BC61E5694199E7C	198656	----a-w-	C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-11 08:30:31	4F3F93808E5D84E014A417DD7F5ADD90	1631232	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 08:30:31	1375FA26B9483F8C2D607E1741F3A440	822784	----a-w-	C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-11 08:30:31	0C3C22395BBA6B4F6AF5075A0FFADA86	484584	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-11 08:30:30	037C1DD70B4A895EA4B80B3E25D095C8	19417600	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-11 08:30:29	65F4FD7E19758FF07BB5203D65A1C8AA	13869056	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 08:30:28	D32B01BB5724B3600528CFFFB2BAE948	1255936	----a-w-	C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 08:30:28	66E893992BE9048429451B026F85E6C6	6044160	----a-w-	C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-11 08:30:27	2C61DF542F945F12A4FE28FD9C83AC9A	19413504	----a-w-	C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-11 08:30:26	B78C83C57A50A6F32B3A73023F0BCC14	6474752	----a-w-	C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-11 08:30:25	4ABEA64DBFF541F8EFF80CE488D1E2A6	7626752	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2017-01-11 08:30:23	5521425D404C71B95CFDCBB06455FB97	1557808	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2017-01-11 08:30:15	0484DE6C56F366D01C9C57616E74AF9C	231936	----a-w-	C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 08:30:12	94A7B28F9433289C2447B7F701D8AB4A	76984	----a-w-	C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-11 08:30:12	899A18BA61C0D1242A0E6A92752B7329	34304	----a-w-	C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-11 08:30:12	4C10A7F62FD74CC8D7CA096F77997E0A	2748416	----a-w-	C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-11 08:30:11	E0D6916E8A0B269D22231BA00E8630FC	318976	----a-w-	C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-11 08:30:11	827F77A3D43A0B349919C2F66BBCFC4A	7469056	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-11 08:30:11	01E2B9E7C8443F43B0222890A1173E78	237056	----a-w-	C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-11 08:30:10	A522BCEB7132DD667AB8EC9E076BF53E	231424	----a-w-	C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-11 08:30:10	1B6A591492D31591458C7A732830D739	1300480	----a-w-	C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-11 08:30:09	78B393E8F4C1990F7A3E2ECD40A48DF3	3892864	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-11 08:30:09	509C9E1A9DA6CAA6E405DEA9345AC7B3	497152	----a-w-	C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-11 08:30:09	3032268EA235CE27FD2E9E946E3BCFAB	4612608	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-11 08:30:07	50E24324A257CBD80B8E57A96FCAA9B6	1852720	----a-w-	C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-11 08:30:05	DCBAA27489EE9D25E3ED7D727260F876	1277344	----a-w-	C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-11 08:30:05	7FBDC2558247BBDC8935FEF194D0C1E8	1360464	----a-w-	C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-11 08:30:04	6F8A2A1B1411B91B836034457CD797B3	712192	----a-w-	C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-11 08:30:03	FA5384E6FBF90FC1BB7009279F6BDB5F	980832	----a-w-	C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-11 08:30:03	E9CA8EAECA4785A9798056A321C4AD21	1201872	----a-w-	C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 08:30:02	26401C08D6407D11FEE6514FD6786B90	640000	----a-w-	C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-11 08:29:51	D1A551B0B7AB57490179E5ED5C4B24DA	2998272	----a-w-	C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-11 08:29:49	D9CCC54D17C28BC96DEA313DACA9CE96	509792	----a-w-	C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-11 08:29:49	D9A7E46105EF2A77055B6A8E62094DA9	886272	----a-w-	C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-11 08:29:49	975BAA926F998BD296FACF0102D1B4F5	860672	----a-w-	C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-11 08:29:49	86F3DD8105EA18131BAD4A145F31B668	5061120	----a-w-	C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-11 08:29:46	8705CA9066BEEE2A05C90FABB6929A28	1469792	----a-w-	C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-01-11 08:29:46	19F7122EC19F1EDA724D13BF54ABB180	147968	----a-w-	C:\WINDOWS\SysWOW64\win32k.sys
2017-01-11 08:29:45	BBFB3487BC2BA17DD45311D3B764C771	341344	----a-w-	C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-11 08:29:45	7CCEAACEF7840EA15EEF6EC2A098DB72	3733504	----a-w-	C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-11 08:29:42	B827440852CDBF8724A38E698FA0AA2D	806400	----a-w-	C:\WINDOWS\SysWOW64\D3D12.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2017-01-11 08:30:48	74FCE9C9854C94C264AF7639A5F46FF6	1631232	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.Resources.dll
2017-01-11 08:30:47	9EF92B1669413DF478D4A8DCDE201F4C	17188864	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2017-01-11 08:30:45	6586E0291CD53DA7794CD988366AED58	6285312	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2017-01-11 08:30:45	181C169AE98C74A1CC4B9AA0B4A22EA4	4130440	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2017-01-11 08:30:44	0EC298CD8F21F9AC04FEC57505B9150D	1988560	----a-w-	C:\WINDOWS\Sysnative\mfmp4srcsnk.dll
2017-01-11 08:30:43	F139D4F13DBBB417B33A193258660611	1454504	----a-w-	C:\WINDOWS\Sysnative\mfnetsrc.dll
2017-01-11 08:30:43	3E3F64B5A629BDF6DC8C4CFAE77C8E4E	1300600	----a-w-	C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll
2017-01-11 08:30:43	0969BCCDE7E838227140F64382EF64AE	5611008	----a-w-	C:\WINDOWS\Sysnative\d2d1.dll
2017-01-11 08:30:42	E56AF91E9346979B4AA060D42D8F0A94	1702392	----a-w-	C:\WINDOWS\Sysnative\mfasfsrcsnk.dll
2017-01-11 08:30:42	980FB14885AE2404726EE45F8AABB586	4474368	----a-w-	C:\WINDOWS\Sysnative\D3DCompiler_47.dll
2017-01-11 08:30:42	848A3CF59AAE081532C22F7C9A8DAAEC	3134976	----a-w-	C:\WINDOWS\Sysnative\rdpcore.dll
2017-01-11 08:30:42	783B7FCD68D9C42EC4779140ED55E542	1235296	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2017-01-11 08:30:41	A71B83E91B8850F7DC1A691E227BF1F6	1071736	----a-w-	C:\WINDOWS\Sysnative\mfnetcore.dll
2017-01-11 08:30:41	7DDF10FC2C70EA83BAC2BB934DF03CAD	936960	----a-w-	C:\WINDOWS\Sysnative\MCRecvSrc.dll
2017-01-11 08:30:41	4DE2027EC9EB53F11BE46DE27D1B1A72	8075776	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2017-01-11 08:30:40	E35794C871B70206F8DA6C48ABA003DC	360448	----a-w-	C:\WINDOWS\Sysnative\rdpencom.dll
2017-01-11 08:30:40	917F081E2AB667C44F7D96DE1D16DFAE	673792	----a-w-	C:\WINDOWS\Sysnative\winlogon.exe
2017-01-11 08:30:40	8B3D8DF2574E9EAA7FC5A93066AA9260	1005568	----a-w-	C:\WINDOWS\Sysnative\D3D12.dll
2017-01-11 08:30:40	82A72D1FE11ADE12D7213228F27C2351	391168	----a-w-	C:\WINDOWS\Sysnative\wuuhext.dll
2017-01-11 08:30:39	DDB7E452A99E0E5244105C6D2CF4BC9E	2317824	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2017-01-11 08:30:39	B7EF5FF80CC9C0723ADA31B4355B9C13	883712	----a-w-	C:\WINDOWS\Sysnative\samsrv.dll
2017-01-11 08:30:39	92156481488CDD143B4FC5AAEF94F85C	1490432	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2017-01-11 08:30:39	916B789655832BDF681FCE3070AFABB8	1600632	----a-w-	C:\WINDOWS\Sysnative\sppobjs.dll
2017-01-11 08:30:39	13D5AFBE138BADC93960102A4F187DE1	245600	----a-w-	C:\WINDOWS\Sysnative\offlinesam.dll
2017-01-11 08:30:38	CF03DB835BD053C5DF1020B08149334F	22224480	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2017-01-11 08:30:35	E61548BAF8C7B573C40175C28132D51A	869888	----a-w-	C:\WINDOWS\Sysnative\wuapi.dll
2017-01-11 08:30:35	CE793530EC8C3669D9521B01E5EBBD46	136032	----a-w-	C:\WINDOWS\Sysnative\ImplatSetup.dll
2017-01-11 08:30:35	B7B0337702015FE3D8F1B1ABD07C1301	932864	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2017-01-11 08:30:35	2F7824EC4540A5FED80D605BC0AD6B39	404832	----a-w-	C:\WINDOWS\Sysnative\msv1_0.dll
2017-01-11 08:30:34	C4D85EB020B7A610354F94CFAAFAE448	319288	----a-w-	C:\WINDOWS\Sysnative\wow64.dll
2017-01-11 08:30:34	70888F2C61E34DA8C7BC476119375955	90112	----a-w-	C:\WINDOWS\Sysnative\updatepolicy.dll
2017-01-11 08:30:34	2F0111384FB522FE6B62EF1ECC60373A	236544	----a-w-	C:\WINDOWS\Sysnative\WinSCard.dll
2017-01-11 08:30:34	0A9D8B84C895E51D61F85F7AE4E639ED	600576	----a-w-	C:\WINDOWS\Sysnative\cryptui.dll
2017-01-11 08:30:33	C1B5EE58E759C53F9939581709DC70BB	193536	----a-w-	C:\WINDOWS\Sysnative\certprop.dll
2017-01-11 08:30:33	5E8ECCE130A72107B6DFDBE26185A7FB	201728	----a-w-	C:\WINDOWS\Sysnative\ScDeviceEnum.dll
2017-01-11 08:30:28	BD19B0A85E7F7D70543A77C61CE21054	324608	----a-w-	C:\WINDOWS\Sysnative\Windows.ApplicationModel.LockScreen.dll
2017-01-11 08:30:27	A8D1EF5E96E2F4FB513D83040B22FF31	1908224	----a-w-	C:\WINDOWS\Sysnative\AzureSettingSyncProvider.dll
2017-01-11 08:30:26	123D03C4DCE989FAEAB11B69EBE021AF	8129536	----a-w-	C:\WINDOWS\Sysnative\Chakra.dll
2017-01-11 08:30:25	BB22F3FE6B6FA52E6A1A0270530C0607	1513472	----a-w-	C:\WINDOWS\Sysnative\win32kbase.sys
2017-01-11 08:30:24	BBCA1BF191B6F20FF549E51FB80A2868	6664192	----a-w-	C:\WINDOWS\Sysnative\mspaint.exe
2017-01-11 08:30:24	08D9755DADCA7A0FA9C093EC09C84AE0	4749312	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll
2017-01-11 08:30:23	F4886590FE0DF86EB9426A298B81C6B6	23678464	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2017-01-11 08:30:23	939B177EDD2B38D3E8BD994FF05EE27C	261632	----a-w-	C:\WINDOWS\Sysnative\indexeddbserver.dll
2017-01-11 08:30:23	3EFA8AE16B279E0C7C84CD8739ADEAC4	2482280	----a-w-	C:\WINDOWS\Sysnative\msmpeg2vdec.dll
2017-01-11 08:30:22	C9B67DBC82FBBB5688CF8E8293495937	9131008	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2017-01-11 08:30:21	23C699902D38FB40220B9DCC6A5961E7	328008	----a-w-	C:\WINDOWS\Sysnative\Windows.Storage.ApplicationData.dll
2017-01-11 08:30:21	164B90D40F4D459A32008762504CD6DC	425984	----a-w-	C:\WINDOWS\Sysnative\aadcloudap.dll
2017-01-11 08:30:21	0F08A4AA40A0F3663149B182954BA7CA	1694712	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2017-01-11 08:30:20	1B135C7D7C2930F967C40FEF9D0A6BE2	22563840	----a-w-	C:\WINDOWS\Sysnative\edgehtml.dll
2017-01-11 08:30:18	E481F29B8CCA13ED638BCC626D8BC613	1121280	----a-w-	C:\WINDOWS\Sysnative\aadtb.dll
2017-01-11 08:30:16	7BA4E976F904AA6CD237A7A1555385AB	2169184	----a-w-	C:\WINDOWS\Sysnative\AppVEntSubsystems64.dll
2017-01-11 08:30:15	99CA3E622070FDBD7B75EB7E86B2DE40	822624	----a-w-	C:\WINDOWS\Sysnative\AppVClient.exe
2017-01-11 08:30:15	7ECDB81C6F0F8089D3027C8319CFC966	1400160	----a-w-	C:\WINDOWS\Sysnative\AppVEntSubsystemController.dll
2017-01-11 08:30:15	52F502271B9B779E8D630EE9F910F9A0	752992	----a-w-	C:\WINDOWS\Sysnative\AppVOrchestration.dll
2017-01-11 08:30:14	EBF9E40845362DBE2AD0DB3077269488	539648	----a-w-	C:\WINDOWS\Sysnative\usocore.dll
2017-01-11 08:30:14	B20202D8FA469630F21802EB460B43A3	696160	----a-w-	C:\WINDOWS\Sysnative\AppVPublishing.dll
2017-01-11 08:30:14	A01596A65A36416DE9DB3D5A0476EF9A	1669984	----a-w-	C:\WINDOWS\Sysnative\AppVIntegration.dll
2017-01-11 08:30:14	283B67D6DB413AD1F90F234F72945C84	571744	----a-w-	C:\WINDOWS\Sysnative\AppVCatalog.dll
2017-01-11 08:30:14	21A12249A5D06DBD8C40CF186E9DF6C7	4149248	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2017-01-11 08:30:14	13F38871E8AF34DCCB041D1B5BCEE465	43008	----a-w-	C:\WINDOWS\Sysnative\LaunchWinApp.exe
2017-01-11 08:30:13	E9543E74CC957BBD36D537BE9BCD075B	813408	----a-w-	C:\WINDOWS\Sysnative\AppVEntStreamingManager.dll
2017-01-11 08:30:13	E33446727BBCC402913AFF2B440C7DB3	779616	----a-w-	C:\WINDOWS\Sysnative\AppVReporting.dll
2017-01-11 08:30:13	CAD92D19FF3674F36C778D0E79C40772	290816	----a-w-	C:\WINDOWS\Sysnative\updatehandlers.dll
2017-01-11 08:30:13	9D9A803170E3DA9051F0B4B6C95B64E2	406368	----a-w-	C:\WINDOWS\Sysnative\AppVScripting.dll
2017-01-11 08:30:13	556D38A47240BAF62EE4E41A0EA12BF2	704352	----a-w-	C:\WINDOWS\Sysnative\AppVEntVirtualization.dll
2017-01-11 08:30:13	03A3AA14BD6567BD17F973239773C2A9	992096	----a-w-	C:\WINDOWS\Sysnative\AppVManifest.dll
2017-01-11 08:30:12	FA26C660CD221A53EFF56D7E0533A129	947712	----a-w-	C:\WINDOWS\Sysnative\MSVP9DEC.dll
2017-01-11 08:30:12	3F38768BF36874A4E649FAD5F94009AE	513376	----a-w-	C:\WINDOWS\Sysnative\TransportDSA.dll
2017-01-11 08:30:11	ACF2C3CAB1FDC4B25ACB12EB60FA174E	1054048	----a-w-	C:\WINDOWS\Sysnative\AppVPolicy.dll
2017-01-11 08:30:11	8795108A09CCDE6E6D25B1427FD7B593	289792	----a-w-	C:\WINDOWS\Sysnative\DeveloperOptionsSettingsHandlers.dll
2017-01-11 08:30:11	813A5AEC1D548506B98084E916CF4D5F	241504	----a-w-	C:\WINDOWS\Sysnative\AppVShNotify.exe
2017-01-11 08:30:11	62B1292F90D98574FDA94C15455DBE54	92512	----a-w-	C:\WINDOWS\Sysnative\rdpudd.dll
2017-01-11 08:30:11	113124C7ED0B942AD954DD4E81C3B93B	190816	----a-w-	C:\WINDOWS\Sysnative\AppVDllSurrogate.exe
2017-01-11 08:30:10	CB69C94BC348A8435541453D1C1D7F0D	206848	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2017-01-11 08:30:10	87067444E515E123F712F564E5668DAB	368640	----a-w-	C:\WINDOWS\Sysnative\OneBackupHandler.dll
2017-01-11 08:30:10	74159E9FFFE9325BC7729A4E3719875D	49152	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Shell.dll
2017-01-11 08:30:09	3C31E12CEA4F72AAC79ECB89512D7089	3616768	----a-w-	C:\WINDOWS\Sysnative\win32kfull.sys
2017-01-11 08:30:08	26569D6A2BCBC0058340145C4C79488A	1002496	----a-w-	C:\WINDOWS\Sysnative\SRH.dll
2017-01-11 08:30:08	0C968E9C3B514AAA634339ADFDBE5C04	2009600	----a-w-	C:\WINDOWS\Sysnative\SRHInproc.dll
2017-01-11 08:30:07	C9F62A3544BCEBACAF17E3EA22B0F5A2	590960	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2017-01-11 08:30:07	C1AD9597ADC4770E221A25B8BEB7271C	418952	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2017-01-11 08:30:07	82F99FCA5931BB62B465F5B6B1D420DD	534096	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2017-01-11 08:30:07	7B993290E7691C446C16A56A431669BA	942080	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2017-01-11 08:30:07	47A61ECCDD1EC29E66EEAB90416B2064	5511680	----a-w-	C:\WINDOWS\Sysnative\aclui.dll
2017-01-11 08:30:07	466F6475D5161FD26F144967C84FA30F	324096	----a-w-	C:\WINDOWS\Sysnative\domgmt.dll
2017-01-11 08:30:07	2DC3D53FFA0D10EB8C911AE2DB7BF4CF	337920	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2017-01-11 08:30:07	1EB7C2F34EFD0B1AAE841F0272531106	1231872	----a-w-	C:\WINDOWS\Sysnative\dosvc.dll
2017-01-11 08:30:06	FB04124C2D2F68BBF3B9D31950B78222	211968	----a-w-	C:\WINDOWS\Sysnative\InstallAgent.exe
2017-01-11 08:30:06	ED63AA851858968B968BD5C144361075	748544	----a-w-	C:\WINDOWS\Sysnative\StoreAgent.dll
2017-01-11 08:30:06	D4BEF92AFE4C1BBF3216D159E2B9B0F7	1356864	----a-w-	C:\WINDOWS\Sysnative\ClipUp.exe
2017-01-11 08:30:06	AD09DD001BFF1562665F5670F1E76259	1062912	----a-w-	C:\WINDOWS\Sysnative\SettingSyncCore.dll
2017-01-11 08:30:06	9F69F9CF2D6D337D41824E2F2B3921DB	260608	----a-w-	C:\WINDOWS\Sysnative\InstallAgentUserBroker.exe
2017-01-11 08:30:06	38B1A32D777CAEBE248FB608023701D2	584544	----a-w-	C:\WINDOWS\Sysnative\SettingSyncHost.exe
2017-01-11 08:30:05	FBF28125556F3A32518DA015497353F4	223744	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2017-01-11 08:30:04	F77CC6A4AD680477252538615B4F6863	257024	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.CredDialogController.dll
2017-01-11 08:30:04	8C521D161445C3E1F38A494E7649E70D	837632	----a-w-	C:\WINDOWS\Sysnative\wbiosrvc.dll
2017-01-11 08:30:03	C608AF956CE1F99F5B00B9D2AB6C8F4C	352768	----a-w-	C:\WINDOWS\Sysnative\cloudAP.dll
2017-01-11 08:30:03	A707CE085972BBDBA1F6780B444F6D3C	89416	----a-w-	C:\WINDOWS\Sysnative\remoteaudioendpoint.dll
2017-01-11 08:30:02	70703DDFF5F20685B09ED4392139B03D	418304	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.BlockedShutdown.dll
2017-01-11 08:30:02	6DFED1399CF52D877E6C91D470A29916	440320	----a-w-	C:\WINDOWS\Sysnative\fhcfg.dll
2017-01-11 08:30:02	4CA3CFEA3483EDEFFD27A3A3EC92391C	363520	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.BioFeedback.dll
2017-01-11 08:30:02	4C08BF958476A137C78B62B22B5F90A4	147456	----a-w-	C:\WINDOWS\Sysnative\winsrv.dll
2017-01-11 08:30:02	4BF211AAECBBE524D1F141135241C5CE	310784	----a-w-	C:\WINDOWS\Sysnative\SyncSettings.dll
2017-01-11 08:30:02	42AFA15DE8FE204B74B3C8D2E2E12B0D	295424	----a-w-	C:\WINDOWS\Sysnative\CloudBackupSettings.dll
2017-01-11 08:30:02	0D9A63B965E6871809EE83B56697E0B3	462336	----a-w-	C:\WINDOWS\Sysnative\fhsettingsprovider.dll
2017-01-11 08:30:01	4B1302F2DDF5B7F19520B20B380FBE39	455520	----a-w-	C:\WINDOWS\Sysnative\securekernel.exe
2017-01-11 08:30:00	6B4BFAC812452A7DFB04B79266068333	7816032	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2017-01-11 08:29:53	A1D181D6D7D14F4EB36675D0D62CE817	1692672	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentExtensions.onecore.dll
2017-01-11 08:29:52	D70B1453ADA82A92E76EAE72D936A0F6	2275840	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentServer.dll
2017-01-11 08:29:49	6A767EA4AB61E6CD23E21299FF2EB045	707584	----a-w-	C:\WINDOWS\Sysnative\LogonController.dll
2017-01-11 08:29:47	BFBCD0C204BFFFB1CC17FE8A8B734A8B	266752	----a-w-	C:\WINDOWS\Sysnative\ConsoleLogon.dll
2017-01-11 08:29:47	391C0A1E168E6E66D9136DDA4FA2743E	241504	----a-w-	C:\WINDOWS\Sysnative\CloudExperienceHost.dll
2017-01-11 08:29:46	7730E5E104B739368AECE9C00E7C1531	1292288	----a-w-	C:\WINDOWS\Sysnative\MSVPXENC.dll
2017-01-11 08:29:44	639EB29D9311C212A3C35D44A56B1766	349184	----a-w-	C:\WINDOWS\Sysnative\provengine.dll
2017-01-11 08:29:43	EFA5FFD923DB1FF8C0A8E0BE95DF34DA	234496	----a-w-	C:\WINDOWS\Sysnative\KnobsCore.dll
2017-01-11 08:29:43	1188528BD42005037F57A1F7EB9FFEA2	83968	----a-w-	C:\WINDOWS\Sysnative\ProvPluginEng.dll
2017-01-11 08:29:43	0BF189620AE82619BA12C2D0659E719A	119808	----a-w-	C:\WINDOWS\Sysnative\KnobsCsp.dll
2017-01-07 17:50:21	3D733144477CADCF77009EF614413630	90112	----a-w-	C:\WINDOWS\Sysnative\Vestris.ResourceLib.dll
2017-01-06 00:04:24	92DC74466983762D0976DCA6CF3183B1	51504	----a-w-	C:\WINDOWS\Sysnative\DbxSvc.exe
====== C:\WINDOWS\Sysnative\drivers =====
2017-01-12 09:11:32	3BEC6134F1E45AEF5E971F69F0D38510	176064	----a-w-	C:\WINDOWS\Sysnative\drivers\MBAMChameleon.sys
2017-01-12 09:11:17	F3960CA85778E5D7611EE0F501972340	102856	----a-w-	C:\WINDOWS\Sysnative\drivers\farflt.sys
2017-01-12 09:11:17	205C2D377E1CA85A4465491DB8064DA9	91584	----a-w-	C:\WINDOWS\Sysnative\drivers\mwac.sys
2017-01-12 09:11:13	88BD122C3A35DE63D75D382DF75554CE	43968	----a-w-	C:\WINDOWS\Sysnative\drivers\mbam.sys
2017-01-12 09:11:09	ABB371D9AEF728B0489B0E6872B4A1C0	250816	----a-w-	C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys
2017-01-12 09:10:54	4D7F3114147C31390262F19F74E5BF07	77416	----a-w-	C:\WINDOWS\Sysnative\drivers\mbae64.sys
2017-01-11 08:30:36	90C07EB909C42316982E753BDAA7860D	624048	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2017-01-11 08:30:04	3BB8D153A9A514EC9FFCB586251A1925	715104	----a-w-	C:\WINDOWS\Sysnative\drivers\vhdmp.sys
2017-01-11 08:30:01	29AF16726F4DD84376ECA85AB6AFF2C6	335712	----a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2017-01-05 23:48:58	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\WINDOWS\Sysnative\drivers\dbx-stable.sys
2017-01-05 23:48:58	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\WINDOWS\Sysnative\drivers\dbx-dev.sys
2017-01-05 23:48:58	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\WINDOWS\Sysnative\drivers\dbx-canary.sys
2016-12-22 09:37:45	AA0F9F7EC70D19EA1E6390FD0D93E4AB	73928	----a-w-	C:\WINDOWS\Sysnative\drivers\fsbts.sys
====== C:\WINDOWS\Tasks ======
2017-01-14 09:16:15	8415E13DCFE4F020746644B391AB74FF	3324	----a-w-	C:\WINDOWS\Sysnative\Tasks\{F7A09E54-1A0E-4A92-A5B0-C58F40992EDF}
2016-12-26 13:19:21	D50E9DE60F858A7FE1404DCA64AAE678	1038	----a-w-	C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-12-26 13:19:21	A4AAB221C82E9DA619765F4A6D6625FA	4102	----a-w-	C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineUA
2016-12-26 13:19:21	658006E710CE73FDBF3394AC8087F97C	1042	----a-w-	C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-12-26 13:19:21	2F85CC36936F44C11ED72EE8581CA8A1	3870	----a-w-	C:\WINDOWS\Sysnative\Tasks\DropboxUpdateTaskMachineCore
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2017-01-12 07:16:00	--------	d---a-w-	C:\Program Files\Common Files\DESIGNER
2017-01-07 15:39:35	--------	d-----w-	C:\Program Files\Microsoft Office 15
2017-01-02 15:57:19	--------	d-----w-	C:\Program Files\Corel
2017-01-01 13:51:40	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2016-12-31 07:59:44	--------	d-----w-	C:\PROGRA~2\FHG Radium Codec
2016-12-30 09:13:36	--------	d---a-w-	C:\PROGRA~2\NXPowerLite
2016-12-26 13:19:19	--------	d-----w-	C:\PROGRA~2\Dropbox
2016-12-16 12:06:00	--------	d---a-w-	C:\PROGRA~2\Mozilla Thunderbird
======= C: =====
====== C:\Users\Dell\AppData\Roaming ======
2017-01-14 09:39:16	--------	d-----w-	C:\Users\Dell\AppData\Local\Temp
2017-01-12 06:09:51	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\PeerDistRepub
2017-01-02 13:31:53	--------	d-----w-	C:\Users\Dell\AppData\Local\Corel PaintShop Pro
2016-12-31 07:56:32	--------	d-----w-	C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FHG-Radium Codec\FHG Radium Codec\FHG Radium Codec
2016-12-31 07:55:21	--------	d-----w-	C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FHG-Radium Codec\FHG Radium Codec
2016-12-30 21:09:12	--------	d-----w-	C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FHG-Radium Codec
2016-12-26 13:24:08	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Dropbox
2016-12-26 13:19:11	--------	d-----w-	C:\Users\Dell\AppData\Local\Dropbox
2016-12-19 06:41:11	--------	d-----w-	C:\Users\Default\AppData\Local\Google
2016-12-19 06:41:11	--------	d-----w-	C:\Users\Default User\AppData\Local\Google
====== C:\Users\Dell ======
2017-01-15 08:05:25	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Dell\Downloads\RSITx64 (1).exe
2017-01-14 10:34:48	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (11).exe
2017-01-14 10:34:22	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (10).exe
2017-01-14 10:31:34	E05BC40301AB39A2DFC1E03B9B117A99	3988944	----a-w-	C:\Users\Dell\Downloads\adwcleaner_6.042 (1).exe
2017-01-13 18:24:13	E05BC40301AB39A2DFC1E03B9B117A99	3988944	----a-w-	C:\Users\Dell\Downloads\adwcleaner_6.042.exe
2017-01-13 16:00:25	FDF40EA689FAD819AEBF58DA7CF39D89	35580904	----a-w-	C:\Users\Dell\Downloads\Thunderbird Setup 45.6.0 (1).exe
2017-01-13 16:00:07	FDF40EA689FAD819AEBF58DA7CF39D89	35580904	----a-w-	C:\Users\Dell\Downloads\Thunderbird Setup 45.6.0.exe
2017-01-12 18:29:01	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (9).exe
2017-01-12 18:28:43	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (8).exe
2017-01-12 16:25:55	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (7).exe
2017-01-12 15:27:52	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (6).exe
2017-01-12 15:27:38	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (5).exe
2017-01-12 15:25:01	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (4).exe
2017-01-12 09:09:46	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (3).exe
2017-01-12 09:09:31	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (2).exe
2017-01-12 09:09:04	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (1).exe
2017-01-12 09:08:48	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-01-12 07:15:23	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-hulpprogramma's
2017-01-12 06:10:09	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-12 06:09:22	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Documents
2017-01-12 06:09:22	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Desktop
2017-01-11 20:52:26	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Dell\Downloads\RSITx64.exe
2017-01-03 16:32:55	2673CC7F41BABC2E2D662CE4E6DBFB60	24444256	----a-w-	C:\Users\Dell\Downloads\NXPowerLiteSetup71_1 (1).exe
2017-01-03 16:30:19	2673CC7F41BABC2E2D662CE4E6DBFB60	24444256	----a-w-	C:\Users\Dell\Downloads\NXPowerLiteSetup71_1.exe
2017-01-02 15:56:16	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro X7
2017-01-01 10:47:15	6A96DB2F867EFC2BB73FBA15AD0594C2	904328	----a-w-	C:\Users\Dell\Music\setupl3c.exe
2016-12-26 13:24:31	--------	d-----r-	C:\Users\Dell\Dropbox
2016-12-26 13:19:11	--------	d-----w-	C:\ProgramData\Dropbox
2016-12-22 09:34:54	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN Veilig

====== C: exe-files ==
2017-01-15 08:05:25	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Dell\Downloads\RSITx64 (1).exe
2017-01-14 10:34:48	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (11).exe
2017-01-14 10:34:22	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (10).exe
2017-01-14 10:31:34	E05BC40301AB39A2DFC1E03B9B117A99	3988944	----a-w-	C:\Users\Dell\Downloads\adwcleaner_6.042 (1).exe
2017-01-13 18:24:13	E05BC40301AB39A2DFC1E03B9B117A99	3988944	----a-w-	C:\Users\Dell\Downloads\adwcleaner_6.042.exe
2017-01-13 16:00:25	FDF40EA689FAD819AEBF58DA7CF39D89	35580904	----a-w-	C:\Users\Dell\Downloads\Thunderbird Setup 45.6.0 (1).exe
2017-01-13 16:00:07	FDF40EA689FAD819AEBF58DA7CF39D89	35580904	----a-w-	C:\Users\Dell\Downloads\Thunderbird Setup 45.6.0.exe
2017-01-13 09:05:22	8553ACF0A5E6422C4896ACA9A9D42358	195552	----a-w-	C:\ProgramData\F-Secure\GUTS2\hydrawin\1484295654\install.exe
2017-01-12 18:29:01	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (9).exe
2017-01-12 18:28:43	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (8).exe
2017-01-12 16:25:55	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (7).exe
2017-01-12 15:32:34	B3924BA4C1F56C55E13C8F48F357A06C	3927744	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\IntegratedOffice.exe
2017-01-12 15:32:34	ACFB2A62301C6A903FA6A97DB84E9C31	3699904	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\OfficeClickToRun.exe
2017-01-12 15:32:34	948227FFC3BDF9CF10F25D61A962AF5B	358616	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\MavInject32.exe
2017-01-12 15:32:34	367138576CFD918C02A8D694F322C7E6	3861184	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\OfficeC2RClient.exe
2017-01-12 15:32:34	32F39ADB5C6EFFA448A0A9B135926BB5	263896	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\AppVShNotify.exe
2017-01-12 15:32:33	FFFB46CC89595ADD6E3864B851A37467	2053848	----a-w-	C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.7571.2109\appvcleaner.exe
2017-01-12 15:27:52	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (6).exe
2017-01-12 15:27:38	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (5).exe
2017-01-12 15:25:01	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (4).exe
2017-01-12 15:14:43	EF768F110473BC4AA47FD9F10BDEC707	1121248	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fs_ols_ca.exe
2017-01-12 09:09:46	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (3).exe
2017-01-12 09:09:31	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (2).exe
2017-01-12 09:09:04	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299 (1).exe
2017-01-12 09:08:48	C5EE10B806249B92666E8AA1415C6FBC	54199488	----a-w-	C:\Users\Dell\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-01-12 06:48:26	285ED97CA2C68A207467CAC90476E722	107720	----a-w-	C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\130\SQLDumper.exe
2017-01-12 06:48:15	4BBBEDB5265B17DED591E085FE50AA89	127176	----a-w-	C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Analysis Services\AS OLEDB\130\SQLDumper.exe
2017-01-12 06:09:39	E072C89E36A1CCE358DFC825A68E71F4	174072	----a-w-	C:\Program Files (x86)\Dropbox\Client\DropboxUninstaller.exe
2017-01-12 06:09:38	D9D8DAFA1062025C66D8C3906FC1C262	26287016	----a-w-	C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
2017-01-12 06:09:38	97C84088ABAC51837A8DE190607A009C	44848	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_x86\dbxsvc.exe
2017-01-12 06:09:38	92DC74466983762D0976DCA6CF3183B1	51504	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbxsvc.exe
2017-01-12 06:06:55	8196554E8EB50CD6D6D0E89786696082	75550440	----a-w-	C:\Program Files (x86)\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\17.4.33\DropboxClient_17.4.33.exe
2017-01-11 20:52:26	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Dell\Downloads\RSITx64.exe
2017-01-11 08:06:32	69B9EF9C6ADBBB13DC545C00B48F4702	20466392	----a-w-	C:\Users\Dell\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
2017-01-11 08:06:32	69B9EF9C6ADBBB13DC545C00B48F4702	20466392	----a-w-	C:\Users\Dell\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\OneDriveSetup.exe
2017-01-11 08:06:07	95C4A764D538341B62F5F183C0DE655C	229080	----a-w-	C:\Users\Dell\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncConfig.exe
2017-01-11 08:06:06	62BB6F8FED4F31B26DAA085918B0C2EB	215264	----a-w-	C:\Users\Dell\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileCoAuth.exe
=== C: other files ==
2017-01-15 08:00:45	DE0983FE4B830699312D35A990B3AE1B	1945	----a-r-	C:\Users\Dell\AppData\Local\Temp\_MEI73602\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx
2017-01-15 08:00:45	82F5C942549405F61A8808D0EA0FA9E2	25575	----a-r-	C:\Users\Dell\AppData\Local\Temp\_MEI73602\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx
2017-01-12 15:14:47	5BF936B10B49D58816A4B46366257A8F	90320	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsni32.sys
2017-01-12 15:14:47	03F2623C024FBEC3173168CB629B3B70	110800	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsni64.sys
2017-01-12 15:14:42	FB2BB7C3DCE8C5A9940BAE73BEEC9225	52792	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsnixp32.sys
2017-01-12 15:14:42	F4FB88D3067F5FCDD62C9C4A190C8B33	31712	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsnitdi64.sys
2017-01-12 15:14:42	DA70E272DC2CA1DE20C516029B4F3848	23608	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsnitdi32.sys
2017-01-12 15:14:41	A6FBDA1E2B5E79558DBC0182CEEC7838	61920	----a-w-	C:\ProgramData\F-Secure\GUTS2\nifbin\1483355818\fsnixp64.sys
2017-01-12 09:11:32	3BEC6134F1E45AEF5E971F69F0D38510	176064	----a-w-	C:\Windows\System32\drivers\MBAMChameleon.sys
2017-01-12 09:11:17	F3960CA85778E5D7611EE0F501972340	102856	----a-w-	C:\Windows\System32\drivers\farflt.sys
2017-01-12 09:11:17	205C2D377E1CA85A4465491DB8064DA9	91584	----a-w-	C:\Windows\System32\drivers\mwac.sys
2017-01-12 09:11:13	88BD122C3A35DE63D75D382DF75554CE	43968	----a-w-	C:\Windows\System32\drivers\mbam.sys
2017-01-12 09:11:09	ABB371D9AEF728B0489B0E6872B4A1C0	250816	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2017-01-12 09:10:54	4D7F3114147C31390262F19F74E5BF07	77416	----a-w-	C:\Windows\System32\drivers\mbae64.sys
2017-01-12 06:09:38	BC2A3C653B42F5C7E9D4607C2C1F69C3	63592	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-stable.sys
2017-01-12 06:09:38	BC2A3C653B42F5C7E9D4607C2C1F69C3	63592	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-dev.sys
2017-01-12 06:09:38	BC2A3C653B42F5C7E9D4607C2C1F69C3	63592	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-canary.sys
2017-01-12 06:09:38	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-stable.sys
2017-01-12 06:09:38	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-dev.sys
2017-01-12 06:09:38	4032C71C9CB3F6FE1B918BD9F72B9588	75888	----a-w-	C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-canary.sys
2017-01-11 08:30:36	90C07EB909C42316982E753BDAA7860D	624048	----a-w-	C:\Windows\System32\drivers\cng.sys
2017-01-11 08:30:25	BB22F3FE6B6FA52E6A1A0270530C0607	1513472	----a-w-	C:\Windows\System32\win32kbase.sys
2017-01-11 08:30:10	CB69C94BC348A8435541453D1C1D7F0D	206848	----a-w-	C:\Windows\System32\win32k.sys
2017-01-11 08:30:09	3C31E12CEA4F72AAC79ECB89512D7089	3616768	----a-w-	C:\Windows\System32\win32kfull.sys
2017-01-11 08:30:04	3BB8D153A9A514EC9FFCB586251A1925	715104	----a-w-	C:\Windows\System32\drivers\vhdmp.sys
2017-01-11 08:30:01	29AF16726F4DD84376ECA85AB6AFF2C6	335712	----a-w-	C:\Windows\System32\drivers\pci.sys
2017-01-11 08:29:51	D1A551B0B7AB57490179E5ED5C4B24DA	2998272	----a-w-	C:\Windows\SysWOW64\win32kfull.sys
2017-01-11 08:29:46	19F7122EC19F1EDA724D13BF54ABB180	147968	----a-w-	C:\Windows\SysWOW64\win32k.sys
2017-01-11 08:06:06	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\Dell\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\CollectOneDriveLogs.bat
2017-01-09 18:29:03	0178D23FE2F6059AAA691CF137B60597	1995396	----a-w-	C:\Users\Dell\Downloads\snowflakes.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-1228188433-2901408171-3400588621-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\Dell\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Spotify Web Helper"="C:\Users\Dell\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KPN Assistent"="C:\Program Files (x86)\KPN\KPN Assistent\KPN_Assistent.exe /auto"
"Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\Dell\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"Spotify Web Helper"="C:\Users\Dell\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"Malwarebytes TrayApp"="C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [26-12-2016 14:19]
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [26-12-2016 14:19]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\OneDrive Standalone Update Task v2" [%localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{7DFBBC03-FDDA-43AC-9C5E-4695F900AE9D}" [C:\Windows\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\F-Secure\F-Secure GUI" ["C:\Program Files (x86)\KPN Veilig\FsGuiStarter.exe"]
"C:\WINDOWS\SysNative\tasks\NCH Software\ExpressBurnSevenDays" [C:\Program Files (x86)\NCH Software\ExpressBurn\ExpressBurn.exe]
"C:\WINDOWS\SysNative\tasks\NCH Software\MixPadSevenDays" [C:\Program Files (x86)\NCH Software\MixPad\MixPad.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"ols@f-secure.com"="C:\Program Files (x86)\KPN Veilig\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi" [12-01-2017 16:14]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ols@f-secure.com"="C:\Program Files (x86)\KPN Veilig\apps\CCF_Scanning\bin\browser\install\fs_firefox_https\fs_firefox_https.xpi" [12-01-2017 16:14]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dell\AppData\Roaming\Thunderbird\Profiles\8ac8zwc0.default
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]
jmjjnhpacphpjmnnlnccpfmhkcloaade - C:/Program Files (x86)/KPN Veilig/apps/CCF_Scanning/bin/browser/install/fs_chrome_https/fs_chrome_https.crx[23-10-2015 14:54]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
apdfllckaahabafndbhieahigkjlhalf - C:\Users\Dell\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx[02-12-2016 22:04]
gkmikccifolokanfakbeadbmgchomeli - No path found[]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

Google Docs - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Google Cast - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd
selector is not a valid CSS selector - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Adobe Acrobat - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
Google Docs Offline - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Search by F-Secure - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkmikccifolokanfakbeadbmgchomeli
Pinterest Save Button - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic
Browsing Protection by F-Secure - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade
View in G - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jndbagjpbbeidhnphdcbmgohdkmfolbh
Google Drive App Launcher - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
Chrome Web Store Payments - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Chrome Media Router - Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== C:\zoek_backup content ======================

C:\zoek_backup (files=685 folders=190 285939735 bytes)

==== EOF on zo 15-01-2017 at 10:57:19,89 ======================