
Zoek.exe v5.0.0.0 Updated 24-08-2014
Tool run by Eddy on zo 24/08/2014 at 16:13:50,24.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\ZTemp\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

24/08/2014 16:15:27 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~3\Binarysense deleted successfully
C:\Users\Eddy\AppData\Roaming\Canon deleted successfully
C:\Users\Eddy\AppData\Local\Adobe deleted successfully
C:\Users\Eddy\AppData\Local\CrashDumps deleted successfully
C:\Users\Eddy\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Eddy\AppData\Roaming\OpenCandy deleted
C:\Users\Eddy\Searches deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\Windows\Installer\c4c36.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Eddy\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-08-20 21:18:30	867148EBF47E7E7E7B21C07B4A981929	581600	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2014-08-20 21:18:30	372218B80DEF827063049EBEE76B7501	92672	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2014-08-20 21:18:29	255F0417EC31C71585824269522EC8E9	36320	----a-w-	C:\Windows\SysWOW64\wups.dll
2014-08-20 21:18:28	F419D738BD2AE58D9DF2F9FEB5F43842	33792	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2014-08-20 21:18:28	5AA2CAD923E9E647276A61387E83DDD0	179656	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2014-08-19 10:16:19	AF6655214DEBB2C8446DE843A02AAEBA	99480	----a-w-	C:\Windows\SysWOW64\infocardapi.dll
2014-08-19 10:16:18	8D466B36076BCD7997838C0DDB69764C	619672	----a-w-	C:\Windows\SysWOW64\icardagt.exe
2014-08-19 10:16:17	370FC4421ADE62FC89AC93B345570388	8856	----a-w-	C:\Windows\SysWOW64\icardres.dll
2014-08-19 10:16:05	28A8B99DE70F376B18709E6B07D6A352	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-19 09:51:19	A5F833506BF6A1B5D693E1499DEE2444	626688	----a-w-	C:\Windows\SysWOW64\usp10.dll
2014-08-19 09:51:12	E227B810296AA27E6C69307A7B6456E5	1389056	----a-w-	C:\Windows\SysWOW64\msxml6.dll
2014-08-19 09:51:12	8B8D1CEF498678CAB9DF17145D34BC64	1237504	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2014-08-19 09:51:12	2E673E776136354ECFB57BFD62E7EC3D	2048	----a-w-	C:\Windows\SysWOW64\msxml6r.dll
2014-08-19 09:51:12	0789F82BAE171323F74B8F175D406AB8	2048	----a-w-	C:\Windows\SysWOW64\msxml3r.dll
2014-08-19 09:51:07	C6A991D7DF17EBD8DE4739CD1F283133	646144	----a-w-	C:\Windows\SysWOW64\osk.exe
2014-08-19 09:51:06	492FF9C530EC0352B3C904CE9898269D	509440	----a-w-	C:\Windows\SysWOW64\qedit.dll
2014-08-19 09:51:04	D08819FEE0CDB8A8A58E2B34D05E7A11	2048	----a-w-	C:\Windows\SysWOW64\tzres.dll
2014-08-19 09:51:01	C212A43AA83A717AD38505F23ACDCB33	2363392	----a-w-	C:\Windows\SysWOW64\msi.dll
2014-08-19 09:51:01	9DA1CCDBBF8136AC2383C2624CA8CD14	337408	----a-w-	C:\Windows\SysWOW64\msihnd.dll
2014-08-19 09:51:01	43CD23B65CBF04D6F8ACA984B0EF93FE	1805824	----a-w-	C:\Windows\SysWOW64\authui.dll
2014-08-19 09:50:57	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-19 09:50:57	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-19 09:50:56	995B39A08421C7725D1DF8DACEBBFC89	538112	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-08-19 09:50:56	461B713DE7F353C6447B744F1A049930	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-08-19 09:50:55	FBC78B5D12A4F5A62D9C91E0E0E46D46	49664	----a-w-	C:\Windows\SysWOW64\adprovider.dll
2014-08-19 09:50:55	834A859BB331B0B2CCAE25BB1986F80D	47616	----a-w-	C:\Windows\SysWOW64\dpapiprovider.dll
2014-08-19 09:50:55	62C0798CC68EBF42F29C92E6CD6DC3D6	36864	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-08-19 09:50:55	5E11C55CC4D9330E55CCB22B1F20BB33	35328	----a-w-	C:\Windows\SysWOW64\wincredprovider.dll
2014-08-19 09:50:55	38A30B8E4216BE24D30F766EF3BAC2C7	48128	----a-w-	C:\Windows\SysWOW64\capiprovider.dll
2014-08-19 09:50:55	335FA669FC952BC4888CEDBDB42607E2	51200	----a-w-	C:\Windows\SysWOW64\cngprovider.dll
2014-08-19 09:50:48	F95E1E9D97D25C11F29CA34C843A6F4D	247808	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-08-19 09:50:48	C71CC796F0E2E9BD542C87532706FCFE	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-08-19 09:50:48	C61DDFE40204F3BE3DF111981D91560E	220160	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2014-08-19 09:50:48	8BA721F76C97A219599E88722AA48875	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-08-19 09:50:48	6CB2616152ADCDF39F05B08E4858F476	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-08-19 09:50:48	1A0BE0092646F564FAF204E678AF8E03	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-08-19 09:50:47	E3ECF5FFE3DEDF61DC6877B6A99ACBBF	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2014-08-19 09:50:43	386BF6FD9FC562B1A5558C49E1C3A6FB	12874240	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-08-19 09:50:42	444EB30B1610A35FC99D62A91B2BCAA7	69632	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-08-19 09:50:42	41A3A54603686FD437FA4E8EB95025F9	51200	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-19 09:50:41	FEE3E022B00A5165ED645E38C1E6C776	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-19 09:50:41	E9B28B60C0272E2E1E462E6FB38E6B55	367104	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-08-19 09:50:41	8453DDF167CE2986AA4AB04BC6824925	17524224	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-08-19 09:50:41	6D017C0E499443ACDE3D9B5DCD753F32	1169920	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-08-19 09:50:41	478824EC0BCE9968C0DC787164B1753B	32768	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-08-19 09:50:41	24FA5F74D3B4BA62539DF87285BA934E	597504	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2014-08-19 09:50:41	1A05CFA45B6AEBFCCC835DCF68CBD1D0	526336	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-08-19 09:50:40	E70C00791A18866BB23B3A652E3390A0	2001920	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-08-19 09:50:40	7B051C4A70F23A84A09366999FE63CBD	307384	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-08-19 09:50:40	4D0E91438CE181AF94C653B3BBE3C65A	61952	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-08-19 09:50:39	FF4A917DD7C387BD2715A5F67307FED1	2184704	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-08-19 09:50:39	F48A1A114382AB4EF8000E1943E6CF1F	438784	----a-w-	C:\Windows\SysWOW64\ieui.dll
2014-08-19 09:50:39	90FF511B751A0327D07C4073760F1578	11772928	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-08-19 09:50:39	36B67392AFB8901CC442EA988AD4603D	43008	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-08-19 09:50:39	239575F9EA0D227516843EEE8B7342CA	239616	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-08-19 09:50:38	E8D46F442AB53A52BDBB3EA0C51BDABD	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-08-19 09:50:37	B945BAA81B4805AD6BDDF4D026DCFB47	1792512	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-08-19 09:50:37	9D16B568E318F49535AD72539C9997C2	455168	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2014-08-19 09:50:37	87C2B5010779DF6BE4732751C5DB5D64	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-08-19 09:50:37	7C1BFC2ABE297BCA1A7BA77A8292C088	4204032	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-08-19 09:50:37	49FFD37673BD20279A8BF27CC20040B3	1068032	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-19 09:50:37	18A3154606E3F8945956948A4E708007	704512	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2014-08-19 09:50:36	B91AA3BC8083E66925FAE29FDA485CEA	164864	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-08-19 09:50:36	272420427EB96EA052C719AA796C09F2	61952	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-19 09:50:23	A0E053D8D97ED0F913D56E6AF21DD26F	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2014-08-19 09:50:23	230AAF45031E87638CA4053C0399C1E6	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-08-19 09:50:20	D8BED6BA298DBAAF6F3D746739FCD333	664064	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-08-20 21:18:34	EAD9E413A6CEB9FD8E2AD9DC0716C061	58336	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2014-08-20 21:18:34	E76F105AD039B9E4DA9ECE839298C4A2	44512	----a-w-	C:\Windows\Sysnative\wups2.dll
2014-08-20 21:18:33	6335F8B4B89F002A3801473C1A799237	2620928	----a-w-	C:\Windows\Sysnative\wucltux.dll
2014-08-20 21:18:33	61FF576450CCC80564B850BC3FB6713A	2477536	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2014-08-20 21:18:30	7EC6617005F76714C7E16605E7A8AB06	38880	----a-w-	C:\Windows\Sysnative\wups.dll
2014-08-20 21:18:30	1180B5ADFB507258DA10F51B46681A33	97792	----a-w-	C:\Windows\Sysnative\wudriver.dll
2014-08-20 21:18:30	0DB2758CF1BAFE22E0970FDA0785B74C	700384	----a-w-	C:\Windows\Sysnative\wuapi.dll
2014-08-20 21:18:28	45D4BDEA136E72E75CF008D3C38D949A	198600	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2014-08-20 21:18:28	29FE783F75362AD6D2D9C0555BA83BD2	36864	----a-w-	C:\Windows\Sysnative\wuapp.exe
2014-08-19 10:16:18	9C44FB5B3A8A192FCE1103AC9BA4E576	171160	----a-w-	C:\Windows\Sysnative\infocardapi.dll
2014-08-19 10:16:18	8A08BB0D12BE40DC09632CD5D04A48A0	1389208	----a-w-	C:\Windows\Sysnative\icardagt.exe
2014-08-19 10:16:17	EE415EC9288182BCFB6E6896A376EA53	8856	----a-w-	C:\Windows\Sysnative\icardres.dll
2014-08-19 10:16:05	E4312738B500577BABC232A49F67A67D	35480	----a-w-	C:\Windows\Sysnative\TsWpfWrp.exe
2014-08-19 10:01:37	3D7C1DFE052288F40AC9ABFB2A824B92	741480	------w-	C:\Windows\Sysnative\HPDiscoPMAF11.dll
2014-08-19 09:51:19	088CF6AFCD5CDD44E40C0ACDE3C1A5E0	801280	----a-w-	C:\Windows\Sysnative\usp10.dll
2014-08-19 09:51:12	ECA6AC33BD9E441F7B47D173D715D268	1882112	----a-w-	C:\Windows\Sysnative\msxml3.dll
2014-08-19 09:51:12	3408DD8081DC22858AE2E6ABD2594C02	2048	----a-w-	C:\Windows\Sysnative\msxml6r.dll
2014-08-19 09:51:12	0E3A7EC2B9590EA7767BBB1823630DEA	2002432	----a-w-	C:\Windows\Sysnative\msxml6.dll
2014-08-19 09:51:12	0465A8CFDDB4FFDB569802A70B9443D5	2048	----a-w-	C:\Windows\Sysnative\msxml3r.dll
2014-08-19 09:51:07	F1726E14C8F7B40CD828345890AAF764	3157504	----a-w-	C:\Windows\Sysnative\win32k.sys
2014-08-19 09:51:07	A064A1D9CBD7F6959AAEAEAFF96DB2E9	692736	----a-w-	C:\Windows\Sysnative\osk.exe
2014-08-19 09:51:07	2147C5330F983D76A36B73F4A804F778	16384	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2014-08-19 09:51:06	EF2D8BBA6E077559B675513BC0EE5FC2	3178496	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2014-08-19 09:51:06	D6AFBAA93169E6772565A1BC896D666B	624128	----a-w-	C:\Windows\Sysnative\qedit.dll
2014-08-19 09:51:04	EBFEF789E32279C2ED7C81260B186AD7	2048	----a-w-	C:\Windows\Sysnative\tzres.dll
2014-08-19 09:51:01	B0F8CCA08DBC392442E27377B98DD0CD	112064	----a-w-	C:\Windows\Sysnative\consent.exe
2014-08-19 09:51:01	A6D0DC3B30F6BB1421DAA92537424822	504320	----a-w-	C:\Windows\Sysnative\msihnd.dll
2014-08-19 09:51:01	5DFFC12BF7DB53BDB401804A3C3A475E	1941504	----a-w-	C:\Windows\Sysnative\authui.dll
2014-08-19 09:51:01	3B39F9D51E4D8BAABDA6518955B58C13	3241984	----a-w-	C:\Windows\Sysnative\msi.dll
2014-08-19 09:50:56	89EF1CE0CE43AB8F55247D746739A321	722944	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-08-19 09:50:56	851BB346CD59D9B3BC8854384C7DD5C3	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-08-19 09:50:56	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-08-19 09:50:55	CF13522172342AD8196B329C15D68E23	44544	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-08-19 09:50:55	BDA8B14AFE99A0C52BFEA64C5AC62171	52736	----a-w-	C:\Windows\Sysnative\dpapiprovider.dll
2014-08-19 09:50:55	9D942180B5B6CE1C882B9CC54EA1F275	57344	----a-w-	C:\Windows\Sysnative\cngprovider.dll
2014-08-19 09:50:55	9A3C6D8593F29A9F66744A3D4E6309B2	39936	----a-w-	C:\Windows\Sysnative\wincredprovider.dll
2014-08-19 09:50:55	692E9886B2A475684F7E3294BF66E97D	56832	----a-w-	C:\Windows\Sysnative\adprovider.dll
2014-08-19 09:50:55	4959DE74643CBC4B83E5BC99486A4FC9	53760	----a-w-	C:\Windows\Sysnative\capiprovider.dll
2014-08-19 09:50:48	E8E98B3B7A6E1250F4AA7AF8FA17D5BB	340992	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-08-19 09:50:48	E23BA7A7BD97FC6B8AB5EA32A46D05CD	307200	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2014-08-19 09:50:48	BFC98590EAB40C785D6134B1FA818A62	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-08-19 09:50:48	A805B5E68262302D1A60BE3DED5846C9	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-08-19 09:50:48	7D1017ED11B7C3B162628069742B5E58	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-08-19 09:50:48	79EE13A5A406E4603874686B8005DA72	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-08-19 09:50:47	C9DD5C0D5AF2D7A54BA32E8FBD3B67F1	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-08-19 09:50:44	AE57F6C7AB3ED244B5F14151C4EA0057	14175744	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-08-19 09:50:41	19FA60D3AE1804A559306DE931A5B415	72704	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-08-19 09:50:41	08C5E6033786C1E41B63FD38CA22917A	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2014-08-19 09:50:40	FE7D99399F7761AA2695A7B1AD30DAAF	1431040	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-08-19 09:50:40	6598F2A876E13B6FFA5AE418D41CE7D6	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-08-19 09:50:40	5574B09C4676E8E2EBE125C18BDF9FBF	33792	----a-w-	C:\Windows\Sysnative\iernonce.dll
2014-08-19 09:50:40	52D2151908C2A6388B6561A373488F6F	692736	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-08-19 09:50:39	FCF5C8BB9AFD8D15B324B702F9B186B7	111616	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2014-08-19 09:50:39	F00D0AE7648CA45C6434E2885485BE0B	452096	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-08-19 09:50:39	1FD1F16C35946BA28FDEB40F18B7729D	631808	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-08-19 09:50:39	13A852B606F3644A7A35EDD99F74A685	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2014-08-19 09:50:38	DF485877CCE229776E6B8BB9116B67FE	66048	----a-w-	C:\Windows\Sysnative\iesetup.dll
2014-08-19 09:50:38	9C9FE69902CD45A7D9AB1F0C4EDE646C	348856	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-08-19 09:50:38	39A85C005BCDEEF4092646EBBC2526AA	2087936	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-08-19 09:50:37	FCC86367BB0FB6DEB6614885CBE74FD5	51200	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-08-19 09:50:37	DB382D89D8004F40BD2C55BAE6A15B30	2774528	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-08-19 09:50:36	72B7D166D1B0D353330A34FDED3F5AA6	598016	----a-w-	C:\Windows\Sysnative\ieui.dll
2014-08-19 09:50:36	1DE8B71A1C7D8943034188556AF50B07	292864	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-08-19 09:50:36	1B26610C1659EF54ED000233FB96F20C	13547008	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-08-19 09:50:35	920F690FC7424DE71888AA2E46E917EA	758272	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2014-08-19 09:50:35	472C409F9B0FF67C1015F511C73E1889	5824512	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-08-19 09:50:35	2639E152D246F2A651F09764807CA153	85504	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-08-19 09:50:35	1F02286D001AB5EA5719540C587224FE	1249280	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2014-08-19 09:50:35	1EEF9FE30DBE458A89B5F7A16FC68397	139264	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2014-08-19 09:50:34	EDF22FBAE75ACB48BF51D099C6808B39	195584	----a-w-	C:\Windows\Sysnative\msrating.dll
2014-08-19 09:50:34	C02C78DE9BB4E68F6C78B1588ADD6ADC	83968	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2014-08-19 09:50:34	BAC44396088ECC1C9021ED3E3345337C	846336	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2014-08-19 09:50:34	8E71A5CB5312B8392D4DA4CA37BB5868	2266624	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-08-19 09:50:34	6ED6DA2A04F8F0C9BDAD647284BAEFB6	548352	----a-w-	C:\Windows\Sysnative\vbscript.dll
2014-08-19 09:50:33	ECA387DCD57F683C52171C766CF400F0	23645696	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-08-19 09:50:33	1C660588CFFB3A17BCF0F6B4779BF985	940032	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-08-19 09:50:24	D4CCE15190269486A5E6D4D4E597F798	1460736	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-08-19 09:50:23	C072064F95579C0D6D86AF5B3DC53192	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-08-19 09:50:23	8098627D0AA1706D69C5AF3F74332ABB	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-08-19 09:50:23	39312B37C5FE5138F99680A49ACD3AEA	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2014-08-19 09:50:23	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2014-08-19 09:50:20	F947D57534E01E3CA597BCF2AD8AE65B	1216000	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2014-08-19 09:50:19	9D455E3049B7F93483D7165422B7D0AF	529920	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-08-19 09:50:19	349CF386805783D2E6810A767642F1B8	424448	----a-w-	C:\Windows\Sysnative\aeinv.dll
====== C:\Windows\Sysnative\drivers =====
2014-08-19 09:51:13	17F685B67C74B8F7BFED4308790B71DE	288192	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-08-19 09:51:13	04ADD18EE5CC9FBEDAEC1DD1CD0CB45E	1903552	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2014-08-19 09:51:06	FA886682CFC5D36718D3E436AACF10B9	497152	----a-w-	C:\Windows\Sysnative\drivers\afd.sys
2014-08-19 09:50:50	87CE5C8965E101CCCED1F4675557E868	985536	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2014-08-19 09:50:23	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2014-08-19 09:50:23	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-08-24 11:14:10	--------	d-----w-	C:\Program Files\trend micro
2014-08-19 10:01:25	--------	d-----w-	C:\Program Files\HP
======= C:\PROGRA~2 =====
2014-08-23 22:50:05	--------	d-----w-	C:\PROGRA~2\HD Tune
2014-08-19 10:34:56	--------	d-----w-	C:\PROGRA~2\Wallpaper Master
2014-08-19 10:21:57	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-08-19 10:01:26	--------	d-----w-	C:\PROGRA~2\HP
2014-08-19 09:54:47	--------	d-----w-	C:\PROGRA~2\SumatraPDF
======= C: =====
====== C:\Users\Eddy\AppData\Roaming ======
2014-08-19 10:01:38	--------	d-----w-	C:\Users\Eddy\AppData\Roaming\HpUpdate
2014-08-19 09:58:50	--------	d-----w-	C:\Users\Eddy\AppData\Local\HP
2014-08-19 09:54:52	--------	d-----w-	C:\Users\Eddy\AppData\Roaming\SumatraPDF
====== C:\Users\Eddy ======
2014-08-24 10:13:25	--------	d-----w-	C:\ProgramData\Licenses
2014-08-24 10:13:24	--------	d---a-w-	C:\ProgramData\TEMP
2014-08-23 22:50:06	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2014-08-19 10:34:57	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wallpaper Master
2014-08-19 10:01:36	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-08-19 10:01:28	--------	d-----w-	C:\ProgramData\HP
2014-08-19 10:01:23	3320743816B8DF7C969E6D9D3D9B2FEA	57	----a-w-	C:\ProgramData\Ament.ini

====== C: exe-files ==
2014-08-24 11:14:11	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Eddy.exe
2014-08-23 22:50:05	F8FC2D14DF813CC920A39B3CB7E59CBC	401408	----a-w-	C:\Program Files (x86)\HD Tune\HDTune.exe
2014-08-23 22:50:05	CEFC20D14D9940D53505E9B9769139E7	682266	----a-w-	C:\Program Files (x86)\HD Tune\unins000.exe
2014-08-20 21:18:34	EAD9E413A6CEB9FD8E2AD9DC0716C061	58336	----a-w-	C:\Windows\System32\wuauclt.exe
2014-08-20 21:18:28	F419D738BD2AE58D9DF2F9FEB5F43842	33792	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2014-08-20 21:18:28	29FE783F75362AD6D2D9C0555BA83BD2	36864	----a-w-	C:\Windows\System32\wuapp.exe
2014-08-19 10:34:56	532EE729C4B1DB10C6FFC0212E7D3620	321536	----a-w-	C:\Program Files (x86)\Wallpaper Master\Wallpaper.exe
2014-08-19 10:34:56	3C68ECBCAD97A38B1CC705C797C615B0	667914	----a-w-	C:\Program Files (x86)\Wallpaper Master\unins000.exe
2014-08-19 10:16:18	8D466B36076BCD7997838C0DDB69764C	619672	----a-w-	C:\Windows\SysWOW64\icardagt.exe
2014-08-19 10:16:18	8A08BB0D12BE40DC09632CD5D04A48A0	1389208	----a-w-	C:\Windows\System32\icardagt.exe
2014-08-19 10:16:05	E4312738B500577BABC232A49F67A67D	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2014-08-19 10:16:05	28A8B99DE70F376B18709E6B07D6A352	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-19 09:54:49	17D1D2A2D4E0A06FD78F2883F9E6D66F	240624	----a-w-	C:\Program Files (x86)\SumatraPDF\uninstall.exe
2014-08-19 09:54:47	049D38D1063A963B66C17873410AD3AC	2314752	----a-w-	C:\Program Files (x86)\SumatraPDF\SumatraPDF.exe
2014-08-19 09:51:10	A1CF92651A2274E887189DABD2929DEF	82944	----a-w-	C:\Windows\SysWOW64\Dism\DismHost.exe
2014-08-19 09:51:10	516A5FCE06BB388499238A5F9286CB74	96768	----a-w-	C:\Windows\System32\Dism\DismHost.exe
2014-08-19 09:51:07	C6A991D7DF17EBD8DE4739CD1F283133	646144	----a-w-	C:\Windows\SysWOW64\osk.exe
2014-08-19 09:51:07	A064A1D9CBD7F6959AAEAEAFF96DB2E9	692736	----a-w-	C:\Windows\System32\osk.exe
2014-08-19 09:51:07	89D2706FCD45E33CECFBD46BCBAD7E16	10240	----a-w-	C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
2014-08-19 09:51:07	20235ED4653CFDDCDEF721F5126A1C47	224768	----a-w-	C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-08-19 09:51:04	37C7C89B03F9D39629EDA545A1645D68	49664	----a-w-	C:\Windows\servicing\GC64\tzupd.exe
2014-08-19 09:51:01	B0F8CCA08DBC392442E27377B98DD0CD	112064	----a-w-	C:\Windows\System32\consent.exe
2014-08-19 09:50:57	4D59F470985D08139E42D15842816C47	3969984	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-19 09:50:57	31FA2485DFC773F1E718A4D19F443FA9	3914176	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-19 09:50:56	6B47CF5C27865DDF6680E4D834FBE34F	5550016	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-08-19 09:50:41	7BAF83ECFCB4AC9E90A4B459BDD59BCA	222720	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-08-19 09:50:41	31A7689F580F37B52F65B9653F8916D4	810176	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-08-19 09:50:40	CDF01A5C7927786A708EAEE91F14797B	812224	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-08-19 09:50:40	8D526C6DFC13CC2F81395771B7BE1AC6	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-08-19 09:50:40	6A60D0D167D35A07646EBCF796D770B4	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-08-19 09:50:40	52D2151908C2A6388B6561A373488F6F	692736	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-08-19 09:50:39	FCF5C8BB9AFD8D15B324B702F9B186B7	111616	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-08-19 09:50:38	7D709E893B53092E3F5995FF5C3061E2	483328	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-08-19 09:50:37	87C2B5010779DF6BE4732751C5DB5D64	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-08-19 09:50:35	1EEF9FE30DBE458A89B5F7A16FC68397	139264	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-08-19 09:50:33	1C660588CFFB3A17BCF0F6B4779BF985	940032	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2014-08-19 09:50:23	204F3F58212B3E422C90BD9691A2DF28	31232	----a-w-	C:\Windows\System32\lsass.exe
2014-08-19 09:50:19	5BB980114F9A3D750A5C827B69C8A13B	156672	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-08-19 09:50:19	1E3976298791F63775B64BE5B9C97618	31232	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
=== C: other files ==
2014-08-19 09:51:13	17F685B67C74B8F7BFED4308790B71DE	288192	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-08-19 09:51:13	04ADD18EE5CC9FBEDAEC1DD1CD0CB45E	1903552	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2014-08-19 09:51:07	F1726E14C8F7B40CD828345890AAF764	3157504	----a-w-	C:\Windows\System32\win32k.sys
2014-08-19 09:51:06	FA886682CFC5D36718D3E436AACF10B9	497152	----a-w-	C:\Windows\System32\drivers\afd.sys
2014-08-19 09:50:50	87CE5C8965E101CCCED1F4675557E868	985536	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2014-08-19 09:50:23	353009DEDF918B2A51414F330CF72DEC	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2014-08-19 09:50:23	1C2D8E18AA8FD50CD04C15CC27F7F5AB	155072	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1628379351-2547568367-1920840196-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"DesktopOK"="D:\Eddy\Programma's\DesktopOK\DesktopOK.exe  -bg -startup"
"IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe"
"WallpaperChanger"="C:\Program Files (x86)\Wallpaper Master\Wallpaper.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DesktopOK"="D:\Eddy\Programma's\DesktopOK\DesktopOK.exe  -bg -startup"
"IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe"
"WallpaperChanger"="C:\Program Files (x86)\Wallpaper Master\Wallpaper.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"vksts"="C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe"
"TrayApplication"="C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe"
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CsrAudioguiCtrl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CsrAudioguiCtrl"
"hkey"="HKLM"
"command"="C:\\Program Files\\CSR\\CSR Harmony Wireless Software Stack\\CsrAudioguiCtrl.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CSRHarmonySkypePlugin]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CSRHarmonySkypePlugin"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\CSR\\CSR Harmony Wireless Software Stack\\CSRHarmonySkypePlugin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CsrHCRPServer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CsrHCRPServer"
"hkey"="HKLM"
"command"="C:\\Program Files\\CSR\\CSR Harmony Wireless Software Stack\\CsrHCRPServer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CsrSyncMLServer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CsrSyncMLServer"
"hkey"="HKLM"
"command"="C:\\Program Files\\CSR\\CSR Harmony Wireless Software Stack\\CsrSyncMLServer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HarmonyUserStartup]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HarmonyUserStartup"
"hkey"="HKLM"
"command"="C:\\Program Files\\CSR\\CSR Harmony Wireless Software Stack\\HarmonyUserStartup.exe"


==== Startup Folders ======================

2014-08-19 10:05:24	1954	----a-w-	C:\Users\Eddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Photosmart 6520 series.lnk

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.be/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{17EBD67B-65C4-4E18-9FD5-299673FBA5C9}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{17EBD67B-65C4-4E18-9FD5-299673FBA5C9} Google  Url="https://www.google.com/search?q={searchTerms}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C18BC956E45B1FD46B813F757793A345 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{659CB81C-B54E-4DF1-B618-F35777393A54} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\C18BC956E45B1FD46B813F757793A345 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Eddy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Eddy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=8 folders=4 41113492 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Eddy\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Eddy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 24/08/2014 at 16:26:47,16 ======================