
Zoek.exe v5.0.0.0 Updated 19-07-2014
Tool run by Steffie on di 22/07/2014 at 14:59:19,29.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Steffie\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

22/07/2014 15:03:20 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Fotoservice deleted successfully
C:\PROGRA~2\iMesh Applications deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\Steffie\AppData\Roaming\TP deleted successfully
C:\Users\Steffie\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Gast\AppData\Local\VirtualStore deleted successfully
C:\Users\Gast\AppData\Local\{260B33A3-4D5D-4E97-B2CC-4A667BF18B76} deleted successfully
C:\Users\Steffie\AppData\Local\Bundled software uninstaller deleted successfully
C:\Users\Steffie\AppData\Local\CrashDumps deleted successfully
C:\Users\Steffie\AppData\Local\Lollipop deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Internet Explorer\SearchScopes\{aa91a22e-2e6d-4c79-a578-d50109b651aa} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.7 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.7 deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"vProt"=- 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Common Files\DVDVideoSoft deleted
C:\Users\Steffie\AppData\Roaming\DVDVideoSoftIEHelpers deleted
C:\Users\Steffie\AppData\Roaming\ParetoLogic deleted
C:\Users\Steffie\AppData\Roaming\DriverCure deleted
C:\ProgramData\ParetoLogic deleted
C:\PROGRA~2\GUT29A0.tmp deleted
C:\PROGRA~2\GUM299F.tmp deleted
C:\found.000 deleted
C:\found.001 deleted
C:\found.002 deleted
C:\found.003 deleted
C:\found.004 deleted
C:\found.005 deleted
C:\found.006 deleted
C:\found.007 deleted
C:\PROGRA~3\AVG Security Toolbar deleted
C:\PROGRA~3\Partner deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\Users\Gast\AppData\Local\AVG Secure Search deleted
C:\Users\Steffie\AppData\Local\AVG Secure Search deleted
C:\Users\Steffie\Searches deleted
C:\Users\Gast\AppData\LocalLow\AVG Secure Search deleted
C:\Users\Steffie\AppData\LocalLow\AVG Security Toolbar deleted
C:\Users\Steffie\AppData\LocalLow\Minibar deleted
C:\Users\Steffie\AppData\LocalLow\AVG Secure Search deleted
C:\Users\Steffie\AppData\LocalLow\Delta deleted
C:\Users\Steffie\AppData\LocalLow\Conduit deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\wininit.ini deleted
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job deleted
C:\windows\SysNative\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\Windows\tasks\GYUPZDPJY.job" deleted
"C:\Windows\Installer\1d4020.msi" deleted
"C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.7\SiteSafety.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.7\log4cplusU.dll" deleted
"C:\PROGRA~2\AVG Secure Search" not deleted
"C:\PROGRA~2\AVG Secure Search" not deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.7" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.7" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Steffie\AppData\Local\Temp ====
====== Java Cache =====
2014-07-21 08:18:34	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-756068d2
2014-07-21 08:18:35	365A046F27A6013B9F15DBF1D0434012	100	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2014-07-21 08:18:32	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-460897df
2014-07-21 09:15:13	CB2F665D62D11C733E122C2F8921A64E	452	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3d2024a1-105bc58479bdbbfd7e18b1028f8cebff3e5c0601d8dfee1bd21895871acad045-6.0.lap
2014-07-21 11:05:41	92A9A2D4A4A19FCAD211C3E59A8D3D8A	7343	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\6854bba6-46cb13f9
2014-07-21 11:05:39	C8F40408D73F14765E2953D6B0F64B32	722	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\7e0e6928-13e19db6
2014-07-21 09:14:54	3AC6533532787DBE298B56EF5A6FCE54	473	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\7e0e6928-f82587a9a20398ec2f04ebc854456d12a5444904ab7ad96dff59bd4dc4ab8799-6.0.lap
2014-07-21 08:18:35	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-4486a2fb
2014-07-21 08:13:44	A33F2555637967878157F9D494355239	265357	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-2d2a84df
2014-07-21 08:13:08	0719A8334BEBACBFCA55555E98B66AB2	932	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\15572e2f-1adab9b1
2014-07-21 11:05:41	14B33B2B94DB955990459293FC1C7220	807	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\26f5a547-563ec1bc
2014-07-21 08:13:39	0719A8334BEBACBFCA55555E98B66AB2	932	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-1a425ffa
2014-07-21 09:28:39	86C47CA21A599230CA54E8F5EBDB6A07	124	----a-w-	C:\Users\Steffie\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\6619ee07-502459fb
====== C:\Windows\SysWOW64 =====
2014-07-22 06:25:43	204882085A7D984D455AA4DE7B7074C6	5694464	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2014-07-21 11:28:35	AB5EFB103DB01C1912C9D2F545EA5621	17920	----a-w-	C:\Windows\SysWOW64\wksprtPS.dll
2014-07-21 11:28:35	8DEEE20D8D30E9B0FBDCA31E58A027BD	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2014-07-21 11:28:35	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2014-07-21 11:28:35	2EFB1279E7BEA7D12D9F4D6508D27880	50176	----a-w-	C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-21 11:28:34	5E676B296B762E211D83B87635F2C330	855552	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2014-07-21 11:27:58	8999F18D38D55E34D356796507FFD639	192000	----a-w-	C:\Windows\SysWOW64\rdpendp_winip.dll
2014-07-21 11:26:01	AAB5D8C5ABE71873DC19ED004EF25009	792576	----a-w-	C:\Windows\SysWOW64\TSWorkspace.dll
2014-07-21 11:25:59	33B26FA5DBEB69FFAB703EDCB4E6DE4A	514560	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\taskhost.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\igfxtray.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\igfxsrvc.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\igfxpers.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\hkcmd.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\dwm.exe
2014-07-21 09:43:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\conhost.exe
2014-07-21 09:43:32	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\spoolsv.exe
2014-07-21 09:43:32	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\igfxext.exe
2014-07-21 09:43:31	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\lsm.exe
2014-07-21 09:43:30	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\smss.exe
2014-07-21 09:43:30	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\services.exe
2014-07-21 09:43:30	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\lsass.exe
2014-07-21 09:43:30	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\csrss.exe
2014-07-21 08:24:27	67EA1BB7F6428A10C64D5A732976F871	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-07-21 08:24:27	448854C4FE94C0FA329CC38FF103DC74	51200	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-21 08:24:26	E739AEDCA67F214F96C2520BA293B12B	526336	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-07-21 08:24:26	E3065F51EE0BB099EAAE48C3FC3A25B6	592896	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2014-07-21 08:24:26	DFA59840BB1220AFD261FDAE83543959	17276416	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-07-21 08:24:26	BE0EA764820239F7785410CBE3880086	32256	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-21 08:24:26	9385D7C5DF2566D01B1FB150F381D50B	367616	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-07-21 08:24:26	91CF46BBB827E461C498A1D7D1A71AD6	32768	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-07-21 08:24:26	7C44C697BA6D0B698B91AC6516A731C3	1139200	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-07-21 08:24:25	42BF66A4DC35DAD3564065173372CCE9	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-07-21 08:24:24	CE94480E78CC3A1A17B53F2BB65639BD	61952	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-07-21 08:24:24	A9F8343A3234FC7A42DDA4569827B411	43008	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-07-21 08:24:24	A98E303FCB7058C6E78FD1FBBCBB5EEF	240824	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-07-21 08:24:24	4B774E842F268D51DB942EF9637828B9	1964544	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-07-21 08:24:24	084FB28A790685F32A6D7D003777696D	2179072	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-07-21 08:24:23	FC733FD7721200D5136F6F8112E97B00	11742208	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-07-21 08:24:23	F2A99A4293CAF7956FF7801D36D5A3B2	442368	----a-w-	C:\Windows\SysWOW64\ieui.dll
2014-07-21 08:24:23	573E522A27210701EB8A6C476D36FFF6	239616	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-07-21 08:24:21	FDA05E78813F543A6E9AC6B23EC696F2	1068032	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-21 08:24:21	98C7B1AFA0A99EE3BE99EAABEFB72CA0	4254720	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-07-21 08:24:21	09CBE4B1AEF497FC05493B09EA2C1757	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-07-21 08:24:20	CCC198257901BEEA2FBF8EB1E7678356	1791488	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-07-21 08:24:20	8046CF629D8AE766C22145F4A6AFFBE1	164864	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-07-21 08:24:20	557D60DF85D61C290A1D09E7115B294B	62464	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-21 08:24:20	175A663547805367C10746FC416D4605	704512	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2014-07-21 08:24:20	045A91095A605BB20FF2B37546FE62B0	455168	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2014-07-21 08:17:05	7F26D694BC7E78958BE38D1D9AAFC2B9	272808	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-07-21 08:16:50	419094DF76A32252ECD70730382029ED	98216	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-21 08:16:49	67BE34FBF29E783691C713517102E67E	175528	----a-w-	C:\Windows\SysWOW64\javaw.exe
2014-07-16 05:38:19	C6A991D7DF17EBD8DE4739CD1F283133	646144	----a-w-	C:\Windows\SysWOW64\osk.exe
2014-07-16 05:37:35	492FF9C530EC0352B3C904CE9898269D	509440	----a-w-	C:\Windows\SysWOW64\qedit.dll
2014-07-16 05:37:29	1A0BE0092646F564FAF204E678AF8E03	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-07-16 05:37:27	F95E1E9D97D25C11F29CA34C843A6F4D	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-07-16 05:37:27	8BA721F76C97A219599E88722AA48875	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-07-16 05:37:26	C71CC796F0E2E9BD542C87532706FCFE	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-07-16 05:37:26	C61DDFE40204F3BE3DF111981D91560E	220160	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2014-07-16 05:37:26	6CB2616152ADCDF39F05B08E4858F476	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-07-16 05:37:25	E3ECF5FFE3DEDF61DC6877B6A99ACBBF	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2014-07-16 05:33:31	A0E053D8D97ED0F913D56E6AF21DD26F	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-07-16 05:33:31	230AAF45031E87638CA4053C0399C1E6	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-07-22 06:25:46	EF2D8BBA6E077559B675513BC0EE5FC2	3178496	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2014-07-22 06:25:46	2147C5330F983D76A36B73F4A804F778	16384	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2014-07-22 06:25:43	879A3F94118D686E63041A386FE91EBE	6574592	----a-w-	C:\Windows\Sysnative\mstscax.dll
2014-07-21 11:28:38	DDED7C5558B3AE09F568945281A9A6D1	44544	----a-w-	C:\Windows\Sysnative\TsUsbGDCoInstaller.dll
2014-07-21 11:28:36	FEC6178962DFF33074D39CA907971405	12800	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-21 11:28:36	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyControl.exe
2014-07-21 11:28:35	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\Sysnative\mstsc.exe
2014-07-21 11:28:35	7BD2E6E2458A5B95F8341244C7FC7DD4	18944	----a-w-	C:\Windows\Sysnative\wksprtPS.dll
2014-07-21 11:28:35	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\Sysnative\wksprt.exe
2014-07-21 11:28:35	5289A00E2D21BB3A7D6761646543ED5C	62976	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2014-07-21 11:28:35	149A388C17F04AD1F99B477A43BE1A9F	56832	----a-w-	C:\Windows\Sysnative\MsRdpWebAccess.dll
2014-07-21 11:28:35	0D2C2FAC4F29B5868D39B7267058CFEF	83968	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2014-07-21 11:28:34	A4420969E5AB94856E5C0C02E6099D3F	1057280	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2014-07-21 11:27:58	D346E07D62E3D4BEAB040939744EC31B	228864	----a-w-	C:\Windows\Sysnative\rdpendp_winip.dll
2014-07-21 11:27:58	AD4D0AEDB5993EDA31EB80A54EDBC344	243200	----a-w-	C:\Windows\Sysnative\rdpudd.dll
2014-07-21 11:26:01	9E2EDE952A3EC44754A829F048CE93A0	1030144	----a-w-	C:\Windows\Sysnative\TSWorkspace.dll
2014-07-21 11:25:59	973131EB99BE1E19DAC502CB724E72A5	366592	----a-w-	C:\Windows\Sysnative\qdvd.dll
2014-07-21 10:29:58	E642491F64E58CD5BC8FB8B347DCF65F	2229608	----a-w-	C:\Windows\Sysnative\athrx.sys
2014-07-21 10:29:58	C8348D8A72CA1BDD31B969FDA8FC9563	54472	----a-w-	C:\Windows\Sysnative\athrextx.cat
2014-07-21 10:29:58	99DD8A9BE9F0908F1C4B4DBBA46A2D22	343141	----a-w-	C:\Windows\Sysnative\netathrx.inf
2014-07-21 10:20:47	90CFC5C683AC1A1B8CA50F8BC2F5DC00	6656	----a-w-	C:\Windows\Sysnative\bcmwlrc.dll
2014-07-21 08:24:27	FC50DF22550C565DD096ACFAF18A37ED	33792	----a-w-	C:\Windows\Sysnative\iernonce.dll
2014-07-21 08:24:26	DA5BAC4C5BDB22BBC6771534EA95AD33	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-07-21 08:24:26	C2F62DF01E3552DB0571FEF4D514675B	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2014-07-21 08:24:26	C0F9F52C36E584C0339406ABF6DA1FBA	266424	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-07-21 08:24:26	5E646AD50848A409291418B5759595B9	38400	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-07-21 08:24:24	73C7D1FCF6F58F3BF077FB42B0214BC0	1393664	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-07-21 08:24:24	391D68668CFC061F26BE593A61F745E0	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2014-07-21 08:24:23	D8E6706AECD7AA50764E126CE3F36555	631808	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-07-21 08:24:23	CA67F68CEC788C0C69AD47C5125DDD8E	608768	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-07-21 08:24:23	7176CB0FFAAC3E54ABB2014E821120F9	111616	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2014-07-21 08:24:23	2E40D5E11BCC597352EE0314AF629A0F	452608	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-07-21 08:24:22	7469D4E046BD7D155CAC2697BD28B58B	66048	----a-w-	C:\Windows\Sysnative\iesetup.dll
2014-07-21 08:24:22	1685AA234852657C4A6D253CCBBE84E0	2040832	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-07-21 08:24:21	A21C6231459F4CAC212676A9367A1A68	2768384	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-07-21 08:24:20	8B2ADE09864BF3F7AA6D395DAFEC41B5	51200	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-07-21 08:24:19	854C5F171F5CEE272232AC0286F3B3B9	598016	----a-w-	C:\Windows\Sysnative\ieui.dll
2014-07-21 08:24:19	415DF2B045167D6D85223CFFF00FCFC7	292864	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-07-21 08:24:19	366FA6D38406DC8BED62825C196144D1	13527040	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-07-21 08:24:18	CD76B3D60D28634A67B0AD7CB2E45929	139264	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2014-07-21 08:24:18	945FA19B388FCF0FEA6124B5FD71C72F	1249280	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2014-07-21 08:24:18	50FF2DD806CC6CF3B3F98F9A1A711603	752640	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2014-07-21 08:24:18	1FD6C2F6AC489C271565730F6E9E1A05	85504	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-07-21 08:24:17	BDD4A74421B023C81DA63168BD10C01B	846336	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2014-07-21 08:24:17	4EC7738394D2BC7BCB5F7A3657F57252	5721088	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-07-21 08:24:17	2EE102DF0EDD8A1EDD3D1E9B99A91BEC	2266112	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-07-21 08:24:17	00401347C3BC466E5F2516387EBBCA7D	548352	----a-w-	C:\Windows\Sysnative\vbscript.dll
2014-07-21 08:24:16	F876957CA193B20A21D52F91418657D7	195584	----a-w-	C:\Windows\Sysnative\msrating.dll
2014-07-21 08:24:16	89A53CDE0DA5680AF48A181D82C752CA	83968	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2014-07-21 08:24:15	FEC19C351EF1B2C998A85D1BFD765675	23464448	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-07-21 08:24:15	52012C83F7E9AF65D13F04415F0508F5	940032	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-07-16 05:38:20	F1726E14C8F7B40CD828345890AAF764	3157504	----a-w-	C:\Windows\Sysnative\win32k.sys
2014-07-16 05:38:19	A064A1D9CBD7F6959AAEAEAFF96DB2E9	692736	----a-w-	C:\Windows\Sysnative\osk.exe
2014-07-16 05:37:41	03282D1ADC4F64D27D697CBB63F972C2	519168	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-07-16 05:37:39	980394E1FF94E460C4D71C1B098A0B4F	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-07-16 05:37:35	D6AFBAA93169E6772565A1BC896D666B	624128	----a-w-	C:\Windows\Sysnative\qedit.dll
2014-07-16 05:37:30	E8E98B3B7A6E1250F4AA7AF8FA17D5BB	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-07-16 05:37:29	A805B5E68262302D1A60BE3DED5846C9	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-07-16 05:37:27	E23BA7A7BD97FC6B8AB5EA32A46D05CD	307200	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2014-07-16 05:37:27	BFC98590EAB40C785D6134B1FA818A62	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-07-16 05:37:27	7D1017ED11B7C3B162628069742B5E58	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-07-16 05:37:26	79EE13A5A406E4603874686B8005DA72	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-07-16 05:37:25	C9DD5C0D5AF2D7A54BA32E8FBD3B67F1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-07-16 05:33:32	D4CCE15190269486A5E6D4D4E597F798	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
====== C:\Windows\Sysnative\drivers =====
2014-07-21 11:28:36	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2014-07-21 11:27:59	313F68E1A3E6345A4F47A36B07062F34	19456	----a-w-	C:\Windows\Sysnative\drivers\rdpvideominiport.sys
2014-07-16 05:37:37	FA886682CFC5D36718D3E436AACF10B9	497152	----a-w-	C:\Windows\Sysnative\drivers\afd.sys
2014-06-30 10:43:02	CDE60914D4ED81291F0CCFDB2CA311B9	152344	----a-w-	C:\Windows\Sysnative\drivers\avgdiska.sys
====== C:\Windows\Tasks ======
2014-07-21 12:23:27	--------	d-----w-	C:\Windows\Sysnative\Tasks\Safer-Networking
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-07-22 06:03:13	--------	d-----w-	C:\Program Files\trend micro
2014-07-21 10:20:47	--------	d-----w-	C:\Program Files\Broadcom
======= C:\PROGRA~2 =====
2014-07-22 05:37:11	--------	d-----w-	C:\PROGRA~2\Trend Micro
2014-07-21 10:29:58	--------	d-----w-	C:\PROGRA~2\Atheros
2014-07-21 10:21:03	--------	d-----w-	C:\PROGRA~2\Cisco
======= C: =====
====== C:\Users\Steffie\AppData\Roaming ======
2014-07-21 19:55:09	--------	d-----w-	C:\Users\Steffie\AppData\Roaming\AVG2014
2014-07-21 19:54:24	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG2014
2014-07-21 19:52:49	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg2014
2014-07-21 19:50:44	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2014
2014-07-21 19:42:16	--------	d-----w-	C:\Users\Steffie\AppData\Local\Avg2014
2014-07-21 14:18:36	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2014-07-21 10:00:17	B2F40B34865B9094DBD1F5557AC499A4	338705	----a-w-	C:\Users\Steffie\AppData\Local\census.cache
2014-07-21 10:00:17	45780687ADF309CD95B7EF7BE894CFEC	82734	----a-w-	C:\Users\Steffie\AppData\Local\ars.cache
2014-07-21 09:42:11	732ADAA9D0BE28C6442AAACB2C26D9A7	10	----a-w-	C:\Users\Steffie\AppData\Local\sponge.last.runtime.cache
2014-07-21 09:33:03	4817717BDF84B3E500F41AB19454F3BB	36	----a-w-	C:\Users\Steffie\AppData\Local\housecall.guid.cache
2014-07-21 08:14:06	--------	d-----w-	C:\Users\Steffie\AppData\Roaming\Oracle
====== C:\Users\Steffie ======
2014-07-22 06:02:40	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Steffie\Desktop\RSITx64.exe
2014-07-21 19:50:49	--------	d-----w-	C:\ProgramData\AVG2014
2014-07-21 10:29:22	--------	d-----w-	C:\ProgramData\Atheros
2014-07-21 09:15:20	--------	d-----w-	C:\ProgramData\NVIDIA
2014-07-21 08:16:50	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==
2014-07-22 06:03:14	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Steffie.exe
2014-07-22 05:40:57	5B633B7D540F2C1C3179AB17C8153467	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1213378841-128495180-980287969-1000\$IY26M6W.exe
2014-07-22 05:35:30	47811D50390A86A17102D7496E6EABB9	388608	----a-w-	C:\$Recycle.Bin\S-1-5-21-1213378841-128495180-980287969-1000\$RY26M6W.exe
2014-07-21 10:29:50	2D1D65C87EE9D38F5A40E54509667303	460136	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\setup.exe
2014-07-21 10:20:48	C747E980D5B2C846C49633699023B9AB	648504	----a-w-	C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\bcmwls64.exe
2014-07-21 10:20:48	3F8C3BF965C15DA09387E87BB410F43D	243000	----a-w-	C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\bcmwlu00.exe
2014-07-21 09:21:41	FDF98AA9AFB8372B6541A8B5EC14924F	479520	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Display.NView\nvTaskBar.exe
2014-07-21 09:21:41	E53E407A3BA0EB78D66BD977D6F888DF	2728736	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Display.NView\nwiz.exe
2014-07-21 09:21:41	CE4EF54DD0B8074AA23F863A720904C6	19702048	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe
2014-07-21 09:21:41	54992AEB1CD0BFCA54DB55F5BAD8E970	415176	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\setup.exe
2014-07-21 09:21:41	2C0763F604E5AD693C1D1234E7E17685	196440	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Update.Core\WLMerger.exe
2014-07-21 09:21:40	C22ADABFABBC2B7AC189C87D87B1ABD6	1617696	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Network.Service\NVNetworkService.exe
2014-07-21 09:21:40	A04DB12D6EFE73798B9978BB822F54F3	21007192	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe
2014-07-21 09:21:40	80040D0825AC3DF09E6CA2941B128083	128456	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\LEDVisualizer\NvLedVisualizer.exe
2014-07-21 09:21:40	7FF9266C0D6F7433FB323661C116A7AB	1532704	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\ShadowPlay\nvspcaps.exe
2014-07-21 09:21:40	7E6527734E2DB3506C5AB851F071EA90	3821912	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe
2014-07-21 09:21:40	2D926E94F486D4AE37F7AB0B078D0028	1845192	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\ShadowPlay\nvspcaps64.exe
2014-07-21 09:21:40	175F2340C461C2A0601E62C2E76CC9BE	638752	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe
2014-07-21 09:21:40	13C7676555EAF680618C42D9C35100A8	87328	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\LEDVisualizer\NvLedServiceHost.exe
2014-07-21 09:21:40	0D5FFF3EC68C15A0FCFD63C2F4799EDD	5011912	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe
2014-07-21 09:21:31	7DC401750B3E600ABDE44D6911DC6068	82894768	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Display.Driver\NvCplSetupInt.exe
2014-07-21 09:21:31	44FE94FCDF97E574B6986C5A81758628	2199840	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Update.Core\NvBackend.exe
2014-07-21 09:21:30	82D2911D63319E3E061D7631F12F38AC	744736	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Display.NView\nvAppBar.exe
2014-07-21 09:21:30	571C71865C8F3C3133D631FF6B229CBD	541640	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\ShadowPlay\DXSETUP.exe
2014-07-21 09:21:30	55EC605950AF6AD0523B957E533080D5	3823448	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience\GFExperience.exe
2014-07-21 09:21:24	D7B05022A40A82CC349C233B31D4DB60	440152	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\Display.Driver\dbInstaller.exe
2014-07-21 09:21:24	53406E9988306CBD4537677C5336ABA4	889416	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\MS.NET\dotNetFx40_Full_setup.exe
2014-07-21 09:21:24	391A15C882E971FE25B1A561B98E9917	596768	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience\7z.exe
2014-07-21 09:21:24	251743DFD3FDA414570524BAC9E55381	50449456	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\MS.NET\dotNetFx40_SA_Full_x86_x64.exe
2014-07-21 09:21:23	1176A9794E0937337ACB3E7F364CCFCD	18736904	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NV3DVision\3DVision.exe
2014-07-21 08:24:26	61FF1A9683EDD471797FE0F56057FD09	222720	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-07-21 08:24:26	24868C9D422EDB5B249C0C81B01A0C19	810160	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-07-21 08:24:24	CD900EFB4F8946A2BB1950D9F45915C2	812216	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-07-21 08:24:24	65D0ECD485C8605B07C8338708224818	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-07-21 08:24:24	2168067C03FADB690B77633104A2E64B	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-07-21 08:24:22	8395829B1CE9E11C6441753257DC7591	482816	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-07-21 08:16:35	CBBC0857D6E677362AADD3C54FFD6E50	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2014-07-21 08:16:35	992B9F82FE3364B1DE57DD1FA09DC590	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2014-07-21 08:16:35	91B7F0DA8B6C52096CFD8B738F3D3D24	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2014-07-21 08:16:35	74F08806423063B1ABD3B79958DA8B22	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2014-07-21 08:16:35	51CCA1D8C86EEDD01E962F54AD0A40A3	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2014-07-21 08:16:35	24A247CB63FE3A5DEC8E1070F9D49ECE	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2014-07-21 08:16:35	131EE1B71F6F770AB6820FD383BC184E	50088	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2014-07-21 08:16:35	09AD1CE65816D427E12A564A24F3FE11	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2014-07-21 08:16:35	04390E59F4EA447B05B3B31DA4CB23FF	145832	----a-w-	C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2014-07-21 08:16:34	F67B94393ADB74B6616CFEECD1171EFE	68008	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2014-07-21 08:16:34	A980296E1EC9921356F0D8AD06A6EF9C	182696	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2014-07-21 08:16:34	9538F45F86C30E9AB73E9159BA55FE2B	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2014-07-21 08:16:34	7F26D694BC7E78958BE38D1D9AAFC2B9	272808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2014-07-21 08:16:34	7EF928D407D281E66C248AC323995F6E	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\klist.exe
2014-07-21 08:16:34	731F0F68BD4B24C96539E7041162F4B5	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2014-07-21 08:16:34	67BE34FBF29E783691C713517102E67E	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2014-07-21 08:16:34	550D282FDE001860D09544DCE6F3B218	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2014-07-21 08:16:34	4A9C9EB33EC6779E2B8A1CDAB6B22E75	75688	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2014-07-21 08:16:33	FFAECE8AEC1D9CCDCEC1C55C2CA450BA	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java.exe
2014-07-21 08:16:33	C626BC51E0149090DDBA9A98C5E27689	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2014-07-21 08:16:33	6A81137F68B0A8815B9BE3BE11F29CCE	48040	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2014-07-16 05:38:19	20235ED4653CFDDCDEF721F5126A1C47	224768	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-07-16 05:38:18	89D2706FCD45E33CECFBD46BCBAD7E16	10240	----a-w-	C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
=== C: other files ==
2014-07-21 19:50:57	61A7E0B02F82CFF3DB2445BBE50B3589	24144	----a-w-	C:\Program Files (x86)\AVG\AVG2014\Drivers\avgidsfilterx.sys
2014-07-21 19:50:57	0F293406F64B48D5D2F0D3A1117F3A83	29776	----a-w-	C:\Program Files (x86)\AVG\AVG2014\Drivers\avgidsfiltera.sys
2014-07-21 10:20:48	569811941F1E415F31856E84C3DADD29	1735	----a-w-	C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\Uninst_EAPModules.bat
2014-07-21 10:20:47	2D659B569A76CDB83B815675A80D7096	4171328	----a-w-	C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\bcmwl664.sys
2014-07-21 09:21:47	FA3B7E6BD974251CE1160A471B497072	34080	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NvVAD\nvvad32v.sys
2014-07-21 09:21:47	F4992A26D629288ADBBDC3A715629FA1	163104	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\HDAudio\nvhda64.sys
2014-07-21 09:21:47	E366A5681C50785D4ED04FCFD65C3415	197408	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\HDAudio\nvhda64v.sys
2014-07-21 09:21:47	B412100DEC0BE654893AF4801593845D	434264	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NV3DVisionUSB.Driver\nvstusb32.sys
2014-07-21 09:21:47	B16B44B59EA852884153286997609046	17864	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NVI2\NVI2SystemService64.sys
2014-07-21 09:21:47	A88135181D776F8C18550A589A9CAF2D	18776	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\amd64\server\NvStreamKms.sys
2014-07-21 09:21:47	9F8EE4948B7ADD9D12F778F61A2758A4	162592	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\HDAudio\nvhda32v.sys
2014-07-21 09:21:47	75034A4D7C02327D150B617571D4196A	40392	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NvVAD\nvvad64v.sys
2014-07-21 09:21:47	6E41DCD4CA35F3102BDC34E9C5E383CC	451872	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NV3DVisionUSB.Driver\nvstusb64.sys
2014-07-21 09:21:47	47FEB587AAE06F6717FCABF8BCF184FD	129312	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\HDAudio\nvhda32.sys
2014-07-21 09:21:47	20555DC91CF6952BBFDFFB1773147137	15648	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\NVI2\NVI2SystemService32.sys
2014-07-21 09:21:47	048B39EAAAE3A5FDCD7F3B35868298A0	17240	----a-w-	C:\NVIDIA\DisplayDriver\337.88\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\x86\server\NvStreamKms.sys
2014-07-21 08:16:35	C17BF24D0FEB42E51B0C961030CB5F36	18650	----a-w-	C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Steffie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe -h -k"
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"VideoWebCamera"="C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe -a"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Steffie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"PLFSetI"="C:\Windows\PLFSetI.exe"
"Acer ePower Management"="C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""
"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"ROC_roc_dec12"="\"C:\\Program Files (x86)\\AVG Secure Search\\ROC_roc_dec12.exe\" /PROMPT /CMPID=roc_dec12"


==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDTray]
"command"="\"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe\""
"hkey"="HKLM"
"item"="SDTray"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/07/2014 14:59]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{16D36EA4-8B4C-4D5C-88D4-8D986EC70ADA}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{17CFF6A0-D85C-4C95-95EE-88236689B5B7}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/6.1.0.129/nl/abandoninstall?page=tsMain]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"avg@toolbar"="C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49" []

==== Chrome Look ======================

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
"Default_Page_URL"="http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0813&m=easynote_tk36&r=27361210g205l0484z115f48j2h42r"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_nlBE410"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_USERS\S-1-5-21-1213378841-128495180-980287969-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\avg@toolbar deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Steffie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Steffie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HFRG1W97 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1119 folders=401 418656229 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Users\Steffie\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Steffie\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\AVG Secure Search"  not found
"C:\PROGRA~2\AVG Secure Search"  not found
"C:\Users\Steffie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HFRG1W97" not found

==== EOF on di 22/07/2014 at 17:16:43,88 ======================