Zoek.exe v5.0.0.0 Updated 14-December-2014
Tool run by Sofie on ma 15-12-2014 at 10:57:18,12.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Sofie\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2014-12-06-213330.log	71845 bytes
C:\zoek-results2014-12-14-195322.log	69760 bytes

==== Empty Folders Check ======================

C:\Users\Sofie\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Dell Update\DellUpService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
C:\Program Files (x86)\Dell Update\DellUpTray.exe
C:\Users\Sofie\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Sofie\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Dell Backup and Recovery\Components\OnlineCDP\backup.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time deleted
C:\Users\Sofie\AppData\Local\Popcorn-Time deleted
"C:\Windows\Sysnative\Tasks\AutoKMS" deleted
"C:\Windows\AutoKMS\AutoKMS.exe" deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8097 MB
CPU Info: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
CPU Speed: 1728,2 MHz
Sound Card: Luidsprekers/koptelefoons (Real | 
Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | Intel(R) HD Graphics Family
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Bluetooth-apparaat (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Dell Wireless 1705 802.11b/g/n (2.4GHZ) | Realtek PCIe FE Family Controller
CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW SU-208GB
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  922,1GB | X:  750,0MB | Y:  8,1GB
Hard Disks - Free: C:  857,2GB | X:  322,1MB | Y:  735,8MB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE |  | DELL - 1072009
Time Zone: Romance (standaardtijd)
Motherboard *: Dell Inc. 09V1VC
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Default Browser: Google Chrome	39.0.2171.95
Internet Explorer Version: 11.0.9600.17498 
Google Chrome version: 39.0.2171.95

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-12-07 14:45:19	1912BC21221E152BD0442742F8A65D8D	44	----a-w-	C:\Windows\XP-600.ini
2014-11-30 10:07:32	ACDBE1ED38167C8B01B8F63161BB2CEA	2374784	----a-w-	C:\Windows\explorer.exe
2014-11-25 15:45:33	B59EF013D567E5746F1DEE2565F747ED	43152	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\Sofie\AppData\Local\Temp ====
2014-12-15 09:55:28	97511FE2CA09CC2E06C3CD6519C3494E	43008	----a-w-	C:\Users\Sofie\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpxbeiwt.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-14 19:16:35	220505B0B3E96C857DD01729AF0CD369	19749376	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-12-14 19:16:32	B59E370277EDB6643083B62297175628	12836864	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-12-14 19:16:30	5E4E0E43E0A5BF9F089696DFA7A3D677	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-12-14 19:16:29	F728E7E9937117E0F32F39840EB6D737	4299264	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-12-14 19:16:29	F34F6DC38A21FCDBB50CDD1EE97B1EA3	1307136	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-12-14 19:16:29	01777AB557997E98691E322225314E57	2277888	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-12-14 19:16:27	41AFA61E061E98E97272AC02184C8C2C	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2014-12-14 19:16:26	543ADCEA31CF9C2B4EEB900D4AAFD0F9	2052096	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-12-14 19:16:26	37F078B5B435AFC6BF316F2AD14B469A	501248	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2014-12-14 19:16:25	D7A98A4CEA2E89F544065A00BF37FC10	688640	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-12-14 19:16:25	713407DA59A9DBE5BD64A17D7A267DA1	326656	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-12-14 19:16:24	86181845803967FC51B64119E80FC18C	340992	----a-w-	C:\Windows\SysWOW64\html.iec
2014-12-14 19:16:23	F25284C763E728E4DAC248C211D1FC5B	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-12-14 19:16:23	69AC6FD5B0B4DC963723E1EBDEE10A2C	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-12-14 19:16:23	476900A8699F5C3D954ADD4A35D33F89	230400	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2014-12-14 19:16:23	29CED1A4777A43526A4ED8A7B6936883	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-14 19:16:23	0E4D9A13C7C6C8FC3ACCF1C8C28DE200	128000	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2014-12-14 19:16:22	98F2784FC4A4A80CE20016C6281834EE	880128	----a-w-	C:\Windows\SysWOW64\inetcomm.dll
2014-12-14 19:16:21	C6941899E6B0A1893D2D5A89241A43B6	661504	----a-w-	C:\Windows\SysWOW64\jscript.dll
2014-12-14 19:13:20	A9B598B04606F9869C42728FE95CBC7C	1489072	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-06 08:39:28	02E324E880F6E54187A2B3C9F53DD70E	12730880	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-12-06 08:39:17	495B4CA2AF924CE5C08BBC9D5E7E1103	2145472	----a-w-	C:\Windows\SysWOW64\mfcore.dll
2014-12-06 08:39:16	AA3E2CEECFCD89D49FF902ECAD197946	2071552	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2014-12-06 08:39:10	69567319D077611FFF5A07BDCDF2A400	889344	----a-w-	C:\Windows\SysWOW64\Windows.Media.dll
2014-12-06 08:39:08	E011C6CA6921FAC88F8B163C68E554BF	2410976	----a-w-	C:\Windows\SysWOW64\WMVDECOD.DLL
2014-12-06 08:39:06	D39BD0DB9D91A4376F759282B2C276AE	1057792	----a-w-	C:\Windows\SysWOW64\printui.dll
2014-12-06 08:39:06	0C666352A0F9C61AB07019D3928463ED	391000	----a-w-	C:\Windows\SysWOW64\netcfgx.dll
2014-12-06 08:39:06	0120A5300040B9A1E459A03B364A74D5	1741824	----a-w-	C:\Windows\SysWOW64\SRH.dll
2014-12-06 08:39:05	3362D78214C5B0A5CAE9E5C1692FA12B	474112	----a-w-	C:\Windows\SysWOW64\AppxPackaging.dll
2014-12-06 08:39:04	86A8EEFADBDDA52474456818D76DFAAA	302080	----a-w-	C:\Windows\SysWOW64\wlanmsm.dll
2014-12-06 08:39:04	427A26A303BBF3736B054244EAFFAA4D	439296	----a-w-	C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2014-12-06 08:39:03	FB970EC73EAB710FE1F529C139E258A0	477200	----a-w-	C:\Windows\SysWOW64\SHCore.dll
2014-12-06 08:39:03	F7A00AA3EA30F2F923C1F8A0DE76A113	180720	----a-w-	C:\Windows\SysWOW64\mftranscode.dll
2014-12-06 08:39:03	B393F30C63DCD1A0D6977A8E27A42A57	707536	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2014-12-06 08:39:03	9D75171689317D82FBF8B155FCF34AE8	371712	----a-w-	C:\Windows\SysWOW64\winspool.drv
2014-12-06 08:39:03	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\Windows\SysWOW64\locale.nls
2014-12-06 08:39:00	6ADEF3CCE9788849FA7F8D28A85B2833	540672	----a-w-	C:\Windows\SysWOW64\comdlg32.dll
2014-12-06 08:38:58	3EAE3411A4A492C253A88534209E3045	355800	----a-w-	C:\Windows\SysWOW64\mfreadwrite.dll
2014-12-06 08:38:57	95719EC346E3A9FDD87662BE886EB200	1817088	----a-w-	C:\Windows\SysWOW64\Display.dll
2014-12-06 08:38:57	7BB5166433C5319CED9E8D05A0C5F7E8	230400	----a-w-	C:\Windows\SysWOW64\wlanapi.dll
2014-12-06 08:38:56	FEC1F6C1F496944BC40D995957D971CF	1404416	----a-w-	C:\Windows\SysWOW64\storagewmi.dll
2014-12-06 08:38:56	19C5844B56BCA187625D2CFA9A7C1144	127544	----a-w-	C:\Windows\SysWOW64\winmmbase.dll
2014-12-06 08:38:55	190228E527C47A96D9B865F07BF2EC19	889856	----a-w-	C:\Windows\SysWOW64\aclui.dll
2014-12-06 08:38:55	0F3DF44347B0051D30B23EED12973D8C	210944	----a-w-	C:\Windows\SysWOW64\wisp.dll
2014-12-06 08:38:54	F19F4DF5361132D5E19FBE1A0DCDC80B	335680	----a-w-	C:\Windows\SysWOW64\bcryptprimitives.dll
2014-12-06 08:38:53	704AA3D6466B2070D321C63C99368448	95232	----a-w-	C:\Windows\SysWOW64\AppxSip.dll
2014-12-06 08:38:52	E5FB6044A36E74484DA958AC17FA9504	1290752	----a-w-	C:\Windows\SysWOW64\XpsPrint.dll
2014-12-06 08:38:52	8FC068ACF45786301D04CED5B58A13E3	1319936	----a-w-	C:\Windows\SysWOW64\wsecedit.dll
2014-12-06 08:38:51	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\Windows\SysWOW64\SndVol.exe
2014-12-06 08:38:51	21A13082B44A898B8DCC54972B2B5C31	128568	----a-w-	C:\Windows\SysWOW64\winmm.dll
2014-12-06 08:38:50	E1F38BF986C7285AB13FB369243A41E0	448000	----a-w-	C:\Windows\SysWOW64\VAN.dll
2014-12-06 08:38:50	42A350B81E0E9A427D7366E1E8BFBADC	198656	----a-w-	C:\Windows\SysWOW64\WebClnt.dll
2014-12-06 08:38:50	2F6410A7641BE1196DC423025F208285	98048	----a-w-	C:\Windows\SysWOW64\dwmapi.dll
2014-12-06 08:38:49	05B976CBCB4ADE4D3F4E75DAD196EECD	313856	----a-w-	C:\Windows\SysWOW64\clusapi.dll
2014-12-06 08:38:48	DA5AD8EA1331015BCC2FCFB1B7EE4EBC	168960	----a-w-	C:\Windows\SysWOW64\iasnap.dll
2014-12-06 08:38:47	FC36740153F03C81ADA5B5EEF22C8064	1048064	----a-w-	C:\Windows\SysWOW64\gpedit.dll
2014-12-06 08:38:47	EBA5466233255ADAF7D5501F0CC2B9CF	189016	----a-w-	C:\Windows\SysWOW64\rsaenh.dll
2014-12-06 08:38:46	D32E7F10D61EFF5A26FB806934FB1088	1029632	----a-w-	C:\Windows\SysWOW64\mispace.dll
2014-12-06 08:38:46	CB587DCB837D0367B43584855BD22F25	432128	----a-w-	C:\Windows\SysWOW64\Windows.Networking.dll
2014-12-06 08:38:46	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\Windows\SysWOW64\osk.exe
2014-12-06 08:38:45	F7CA5639A235A1E2071500B4D1FCC6F8	51200	----a-w-	C:\Windows\SysWOW64\wshbth.dll
2014-12-06 08:38:45	0836AC3FEF8E7380D1973E6DB14E31A7	459264	----a-w-	C:\Windows\SysWOW64\SettingSync.dll
2014-12-06 08:38:44	FE166ADB02C1E146005789C17E065143	8192	----a-w-	C:\Windows\SysWOW64\KBDRUM.DLL
2014-12-06 08:38:44	F1FCD3780D71FD21EAA2A42D3A924B1F	832512	----a-w-	C:\Windows\SysWOW64\ActionCenter.dll
2014-12-06 08:38:44	14D03A4F5F0AFCDB93CAFB68B77ACDB6	288768	----a-w-	C:\Windows\SysWOW64\stobject.dll
2014-12-06 08:38:43	8A073508726DE4A69ED702A7A6082808	1351168	----a-w-	C:\Windows\SysWOW64\GdiPlus.dll
2014-12-06 08:38:42	0A6ABB521CDCE96D3A50939CF7964E24	206336	----a-w-	C:\Windows\SysWOW64\powercfg.cpl
2014-12-06 08:38:41	FB38126A24BDC4912C175C4C430E911C	7168	----a-w-	C:\Windows\SysWOW64\KBDRU1.DLL
2014-12-06 08:38:41	A40516F4443996DC92350D6890546E4A	7168	----a-w-	C:\Windows\SysWOW64\KBDYAK.DLL
2014-12-06 08:38:41	44AABDB92C816F112E054FC3523B51E8	7168	----a-w-	C:\Windows\SysWOW64\KBDBASH.DLL
2014-12-06 08:38:41	35D1AA379B4C2873F1DD62EDCA740C19	6656	----a-w-	C:\Windows\SysWOW64\KBDRU.DLL
2014-12-06 08:38:39	594CEF2E9CD8A5BB8310B3844614C127	7168	----a-w-	C:\Windows\SysWOW64\KBDTAT.DLL
2014-12-06 08:38:38	7D6731C5BA01769612A3EDC42A7C931B	79872	----a-w-	C:\Windows\SysWOW64\BluetoothApis.dll
2014-12-06 08:38:36	DB46A1A84AEC3A7F0FBA4E20320F3159	7168	----a-w-	C:\Windows\SysWOW64\KBDTT102.DLL
2014-12-06 08:18:05	E3B655AABA7A38E2190514EC0F1A3BE4	106976	----a-w-	C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-06 08:18:05	BBD2925C4F2E027254F2420963D4A174	714720	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-14 19:16:36	D478A4CF07FB8ADF72FB16B88E8030B8	25059840	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-12-14 19:16:33	556D271F4243B273EDA353512BF3608A	14412800	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-12-14 19:16:31	8D64466AD12CA5677CD0099C43C58569	6039552	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-12-14 19:16:30	E7A2061ADF0F4D430FECDA1E8D6B7BA6	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-12-14 19:16:30	982B871A25B5078093FAD82D0AB0E3FC	2885120	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-12-14 19:16:30	4AF089160FE082E5EA5C4AA72782DCA2	2358272	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-12-14 19:16:27	EFBA893429814EA3244C87C2D1256618	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2014-12-14 19:16:26	3FE71E2A5BD3EC652E64FC8BCEFEDD2C	2125312	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-12-14 19:16:25	DDE455CF1B9F43775A53A4E577DFDC54	373760	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-12-14 19:16:25	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-12-14 19:16:25	284070B045F8B11B4A1FB32F72023038	417280	----a-w-	C:\Windows\Sysnative\html.iec
2014-12-14 19:16:25	1D294810D3A8A8F722E86AA001F54DCC	580096	----a-w-	C:\Windows\Sysnative\vbscript.dll
2014-12-14 19:16:25	14BA910E7731FC84EB85328BD0F1EE81	800768	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-12-14 19:16:24	62CFEE2A516C68540486EBF26F18ED4C	145408	----a-w-	C:\Windows\Sysnative\iepeers.dll
2014-12-14 19:16:23	DB10D681314714E0D4623E4C0CF6654A	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-12-14 19:16:23	D248949FCF2B72C1FD4EC15DA92065C0	262144	----a-w-	C:\Windows\Sysnative\webcheck.dll
2014-12-14 19:16:23	17A157A4225CF562202AC71DB8103177	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2014-12-14 19:16:23	0AF0AEF0BA9EF6169E61C78504DCAE55	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-12-14 19:16:22	A41AC7E8D142FD0ECF6EF7F1BB63D478	812544	----a-w-	C:\Windows\Sysnative\jscript.dll
2014-12-14 19:16:22	507DC5EE1363EEB7D986B1026DF4E39D	1032704	----a-w-	C:\Windows\Sysnative\inetcomm.dll
2014-12-14 19:13:20	418B5117F187DFFD96C52325CA0DF153	1762840	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2014-12-07 14:31:38	88369A29F105499230C78B162BB04F32	466432	----a-w-	C:\Windows\Sysnative\esxw2ud.dll
2014-12-07 14:31:38	20ECD0A490A121CB34F553FAD1DBBD39	135824	----a-w-	C:\Windows\Sysnative\escsvc64.exe
2014-12-07 14:30:56	D1690C013B8F6B5A7955B589D7644B3E	558080	----a-w-	C:\Windows\Sysnative\ensppmon.dll
2014-12-07 14:30:56	D1690C013B8F6B5A7955B589D7644B3E	558080	----a-w-	C:\Windows\Sysnative\enppmon.dll
2014-12-07 14:30:56	9AB8B96B7335A4EC626115D527B19804	535040	----a-w-	C:\Windows\Sysnative\ensppui.dll
2014-12-07 14:30:56	9AB8B96B7335A4EC626115D527B19804	535040	----a-w-	C:\Windows\Sysnative\enppui.dll
2014-12-07 14:30:56	81D38F895C26BD9EE13C230AA67F2F94	250880	----a-w-	C:\Windows\Sysnative\enspres.dll
2014-12-07 14:30:56	81D38F895C26BD9EE13C230AA67F2F94	250880	----a-w-	C:\Windows\Sysnative\enpres.dll
2014-12-07 14:22:47	BAC5074667751F72A9CE48CDC31BAC48	10752	----a-w-	C:\Windows\Sysnative\E_GCINST.DLL
2014-12-07 14:22:45	9459134133FB09BA956A28AAFAE78186	120320	----a-w-	C:\Windows\Sysnative\E_ILMJCE.DLL
2014-12-07 14:22:45	8159960E8BA20F1C4A4EBCF0DAEC60E5	83968	----a-w-	C:\Windows\Sysnative\E_ID4BJCE.DLL
2014-12-06 08:39:31	49EEC8569BF200C95A38D00766AFB830	16874496	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2014-12-06 08:39:23	CC59B18DEC31120F9957ABA55EC49FAC	2389504	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2014-12-06 08:39:17	AD3137A754F60D369C176EF4DD5084A0	2141920	----a-w-	C:\Windows\Sysnative\mfcore.dll
2014-12-06 08:39:16	69DB09F0263C637DA8568D404842466A	1261056	----a-w-	C:\Windows\Sysnative\gpsvc.dll
2014-12-06 08:39:16	3F5EF31C6AA204B099EE76497DF80A26	1532416	----a-w-	C:\Windows\Sysnative\wlansvc.dll
2014-12-06 08:39:15	61BF52E9FFAB27A0B6D621BE26088373	1600000	----a-w-	C:\Windows\Sysnative\workfolderssvc.dll
2014-12-06 08:39:13	11FA35E24D76F62BD3E64D43B12656EF	1231872	----a-w-	C:\Windows\Sysnative\Windows.Media.dll
2014-12-06 08:39:09	AEAD37FA03D6E90638D8A4DC30E50408	2050560	----a-w-	C:\Windows\Sysnative\SRH.dll
2014-12-06 08:39:09	8200B4C323229AA1F47C87EB37207E36	2574208	----a-w-	C:\Windows\Sysnative\WMVDECOD.DLL
2014-12-06 08:39:09	17E700D2F6671196D0512BF806BB6435	1182208	----a-w-	C:\Windows\Sysnative\printui.dll
2014-12-06 08:39:07	A9C015F01499761908DE61F172FAF65D	486744	----a-w-	C:\Windows\Sysnative\netcfgx.dll
2014-12-06 08:39:07	4301A4D673F1ACB195C4F30B306B70B9	1992192	----a-w-	C:\Windows\Sysnative\XpsPrint.dll
2014-12-06 08:39:06	BF6897E960C08E9FDD41B80726C61C2F	371200	----a-w-	C:\Windows\Sysnative\wlanmsm.dll
2014-12-06 08:39:06	B2C26168E74EA51BF65518A309B08C19	770048	----a-w-	C:\Windows\Sysnative\WorkfoldersControl.dll
2014-12-06 08:39:06	0A7F97DE49DB63E01CBCA067F4DA7AB8	544768	----a-w-	C:\Windows\Sysnative\AppxPackaging.dll
2014-12-06 08:39:05	793EACA6BAE9F481C2059BCB3743EB4A	324096	----a-w-	C:\Windows\Sysnative\srvsvc.dll
2014-12-06 08:39:05	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\Windows\Sysnative\spoolsv.exe
2014-12-06 08:39:04	79EFAEE6FBD8ABC066B944E1A7A605BB	645592	----a-w-	C:\Windows\Sysnative\SHCore.dll
2014-12-06 08:39:03	FF1CB6C5D9288DAAA0DADAD6B1E35085	205512	----a-w-	C:\Windows\Sysnative\mftranscode.dll
2014-12-06 08:39:03	C40DE04CE3A8905EB8048B5CE0951DF0	882136	----a-w-	C:\Windows\Sysnative\mfplat.dll
2014-12-06 08:39:03	7740658736BD07FC121EACB3CA7C9194	2397184	----a-w-	C:\Windows\Sysnative\storagewmi.dll
2014-12-06 08:39:03	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\Windows\Sysnative\locale.nls
2014-12-06 08:39:02	D0AD65EE089F735BF546ABFE28D192C0	621056	----a-w-	C:\Windows\Sysnative\comdlg32.dll
2014-12-06 08:39:02	D01BA613D268DAD03DD32A0DC5FD24DF	287232	----a-w-	C:\Windows\Sysnative\usbmon.dll
2014-12-06 08:39:02	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\Windows\Sysnative\winload.exe
2014-12-06 08:39:02	40CC457FB140B509B50F96DAD9D8F80B	1660048	----a-w-	C:\Windows\Sysnative\winload.efi
2014-12-06 08:39:01	D249C3A58A4FCF755EF4C94F7047E015	449536	----a-w-	C:\Windows\Sysnative\defragsvc.dll
2014-12-06 08:39:01	C80D4D7AF450F7CAD615FF1D7B40D7AD	1488008	----a-w-	C:\Windows\Sysnative\winresume.efi
2014-12-06 08:39:01	835261C17478103B73F4FFB8454AF849	268288	----a-w-	C:\Windows\Sysnative\wisp.dll
2014-12-06 08:39:01	5B6B32E83E371739B13AA67E260DC5C4	487936	----a-w-	C:\Windows\Sysnative\winspool.drv
2014-12-06 08:39:00	FE7E47BE6E0D9EF4F24D81381A829CEC	1463808	----a-w-	C:\Windows\Sysnative\wsecedit.dll
2014-12-06 08:39:00	A4CF0D2FF18BF8D128389AF26410FD8B	1018368	----a-w-	C:\Windows\Sysnative\aclui.dll
2014-12-06 08:39:00	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\Windows\Sysnative\winresume.exe
2014-12-06 08:38:59	8DC2979BC54C585BA5A4C9E6FABCD1B4	360480	----a-w-	C:\Windows\Sysnative\mfreadwrite.dll
2014-12-06 08:38:58	9D50C0B29FB20DF0A8FD197B332894B7	160600	----a-w-	C:\Windows\Sysnative\winmmbase.dll
2014-12-06 08:38:58	693CC2794DEFB8493ABFF68D509DACC4	127488	----a-w-	C:\Windows\Sysnative\WiFiDisplay.dll
2014-12-06 08:38:58	618A19EB31ECA7B7F2AA0207BAF598A5	84480	----a-w-	C:\Windows\Sysnative\wpdbusenum.dll
2014-12-06 08:38:57	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\Windows\Sysnative\conhost.exe
2014-12-06 08:38:57	CD8CA57C36E596875865F451393C7C66	576512	----a-w-	C:\Windows\Sysnative\SettingSync.dll
2014-12-06 08:38:57	1C683FB45C6CE0BB8A74BB0B1392599D	505344	----a-w-	C:\Windows\Sysnative\VAN.dll
2014-12-06 08:38:56	F8A869262251B011A21DEC79AC1F3F5D	1844224	----a-w-	C:\Windows\Sysnative\Display.dll
2014-12-06 08:38:56	8EE8CA953542A8E70A841C453BC15196	427008	----a-w-	C:\Windows\Sysnative\clusapi.dll
2014-12-06 08:38:56	793DE7C6B82804D5973C43484F527849	117248	----a-w-	C:\Windows\Sysnative\AppxSip.dll
2014-12-06 08:38:56	2C38FF9DE23A3BB335A95099622AB603	65536	----a-w-	C:\Windows\Sysnative\WorkFoldersGPExt.dll
2014-12-06 08:38:56	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\Windows\Sysnative\SndVol.exe
2014-12-06 08:38:55	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\Windows\Sysnative\osk.exe
2014-12-06 08:38:54	83E7C4DA3BF4A21C3F809A506245CAEF	233888	----a-w-	C:\Windows\Sysnative\mfps.dll
2014-12-06 08:38:54	504DDEF8526CECAAD886D5AC5656DF1A	387896	----a-w-	C:\Windows\Sysnative\bcryptprimitives.dll
2014-12-06 08:38:53	CCC106273D4265A9091AA7B619DCC5DA	595456	----a-w-	C:\Windows\Sysnative\Windows.Networking.dll
2014-12-06 08:38:53	A6CB3CBF88DF671AC85FA9AABC33137F	125472	----a-w-	C:\Windows\Sysnative\dwmapi.dll
2014-12-06 08:38:53	7DEAD28D8FB9BCAE4A153A57338315E7	123920	----a-w-	C:\Windows\Sysnative\winmm.dll
2014-12-06 08:38:53	1922AAE64BCD761A0377F6981FC67736	721408	----a-w-	C:\Windows\Sysnative\twinapi.dll
2014-12-06 08:38:52	FD807B56AECFD89E4A46960C261D78BF	1089024	----a-w-	C:\Windows\Sysnative\gpedit.dll
2014-12-06 08:38:52	97F24AEACAD9C9038BEC5B2BA1ADA94C	187392	----a-w-	C:\Windows\Sysnative\WorkFoldersShell.dll
2014-12-06 08:38:52	1A5835F2E6B49A83F0AEAD17B4537AF7	1656832	----a-w-	C:\Windows\Sysnative\GdiPlus.dll
2014-12-06 08:38:51	EF1F8B57323E5D3FC6A0A25F98F90DBC	220160	----a-w-	C:\Windows\Sysnative\profsvc.dll
2014-12-06 08:38:51	91B18D7A1702ED589E67C6C81052B955	226816	----a-w-	C:\Windows\Sysnative\WebClnt.dll
2014-12-06 08:38:51	572EBBCDBBA56736F4C0B5487AE7BFA5	220160	----a-w-	C:\Windows\Sysnative\iasnap.dll
2014-12-06 08:38:49	0A3E1B697F6ACB7BC1C898DC14A96EC7	1287680	----a-w-	C:\Windows\Sysnative\mispace.dll
2014-12-06 08:38:48	FA86C3F979EF9CCCCED109B05DEBDD46	432640	----a-w-	C:\Windows\Sysnative\wwanconn.dll
2014-12-06 08:38:48	6ECFFE49AA43A74DC15701EFE6355621	92160	----a-w-	C:\Windows\Sysnative\dab.dll
2014-12-06 08:38:48	31C2E53FE0C039C1BF0F15154D8596E7	53248	----a-w-	C:\Windows\Sysnative\AppxSysprep.dll
2014-12-06 08:38:48	2B1C2CB5C97962C521CD806F0C86D2FE	102912	----a-w-	C:\Windows\Sysnative\wcmcsp.dll
2014-12-06 08:38:48	28E8D340402C130427F2901004B7FA99	321536	----a-w-	C:\Windows\Sysnative\stobject.dll
2014-12-06 08:38:48	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\Windows\Sysnative\SystemSettingsAdminFlows.exe
2014-12-06 08:38:47	B540693968BCA57F595A7B08DB4B46C3	216368	----a-w-	C:\Windows\Sysnative\rsaenh.dll
2014-12-06 08:38:47	AEDF08DDF4EA929FEDBC0A1CCF01F287	296960	----a-w-	C:\Windows\Sysnative\wlanapi.dll
2014-12-06 08:38:47	53F4FC66B94804BBF2016922CD826891	878592	----a-w-	C:\Windows\Sysnative\ActionCenter.dll
2014-12-06 08:38:46	69AF7212845FFCD0AA1F0FC5D51FB809	63488	----a-w-	C:\Windows\Sysnative\wshbth.dll
2014-12-06 08:38:45	A7762A36F92E57E41B0356EF5C672473	659968	----a-w-	C:\Windows\Sysnative\Windows.Devices.Bluetooth.dll
2014-12-06 08:38:45	3A80675FF8524B09817000B6A2E35B7A	18432	----a-w-	C:\Windows\Sysnative\wlansvcpal.dll
2014-12-06 08:38:45	041A999E4FF9A7CDBE67357751881FB8	134144	----a-w-	C:\Windows\Sysnative\browser.dll
2014-12-06 08:38:44	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\Windows\Sysnative\Defrag.exe
2014-12-06 08:38:44	CB9CEAB473897BE1E8C827D4F4EB1311	207360	----a-w-	C:\Windows\Sysnative\powercfg.cpl
2014-12-06 08:38:44	2067AF0531ACD5D28BD49DB30DF109CE	8192	----a-w-	C:\Windows\Sysnative\KBDRUM.DLL
2014-12-06 08:38:42	A4DE7868879498A4E4CBB12788FAA3E8	105472	----a-w-	C:\Windows\Sysnative\BluetoothApis.dll
2014-12-06 08:38:42	6A9650BDC13F1A770F20E7B99D29EE3D	6656	----a-w-	C:\Windows\Sysnative\KBDRU.DLL
2014-12-06 08:38:42	454A0735E836FBC31C064FED6C120B46	7168	----a-w-	C:\Windows\Sysnative\KBDRU1.DLL
2014-12-06 08:38:42	3429360674DA1E70F638924A6D5985CC	7168	----a-w-	C:\Windows\Sysnative\KBDYAK.DLL
2014-12-06 08:38:42	0AC5A816A01D0115588D4B997842780E	7168	----a-w-	C:\Windows\Sysnative\KBDBASH.DLL
2014-12-06 08:38:39	997E5E28492F02036E5C7BA6DB66ABDC	7168	----a-w-	C:\Windows\Sysnative\KBDTAT.DLL
2014-12-06 08:38:39	933C63C9003379F56BA4AF4149440FC8	226304	----a-w-	C:\Windows\Sysnative\SndVolSSO.dll
2014-12-06 08:38:39	4F6203CBBEFB9FBFA859246682849A24	1144320	----a-w-	C:\Windows\Sysnative\wwanmm.dll
2014-12-06 08:38:38	A5141DD172927F04732F5B6BFBE49C15	443904	----a-w-	C:\Windows\Sysnative\wlansec.dll
2014-12-06 08:38:37	B279922BCFD0E178068B159D85C5CDBE	2100736	----a-w-	C:\Windows\Sysnative\SystemSettingsAdminFlowUI.dll
2014-12-06 08:38:36	68270DE9415C8F8139242D38417B49BE	7168	----a-w-	C:\Windows\Sysnative\KBDTT102.DLL
2014-12-03 18:42:41	718A4F3055EA8442D4FA81536E391C77	898	----a-w-	C:\Windows\Sysnative\.crusader
====== C:\Windows\Sysnative\drivers =====
2014-12-14 19:13:19	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\Windows\Sysnative\drivers\dumpsd.sys
2014-12-14 19:13:19	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\Windows\Sysnative\drivers\intelpep.sys
2014-12-14 19:13:19	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\Windows\Sysnative\drivers\sdbus.sys
2014-12-14 19:13:19	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\Windows\Sysnative\drivers\pdc.sys
2014-12-09 01:15:45	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-09 01:15:44	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-12-09 01:15:44	9D7BFFDB5FA62B600DF1FCB4919D9D79	64216	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-12-09 00:36:46	3C32FF010F869BC184DF71290477384E	40664	----a-w-	C:\Windows\Sysnative\drivers\tap0901.sys
2014-12-07 15:38:39	8E98D21EE06192492A5671A6144D092F	33240	----a-w-	C:\Windows\Sysnative\drivers\GEARAspiWDM.sys
2014-12-06 08:39:11	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\Windows\Sysnative\drivers\srv.sys
2014-12-06 08:39:08	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\Windows\Sysnative\drivers\srv2.sys
2014-12-06 08:39:08	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2014-12-06 08:39:05	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\Windows\Sysnative\drivers\usbccgp.sys
2014-12-06 08:39:02	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\Windows\Sysnative\drivers\spaceport.sys
2014-12-06 08:39:00	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\Windows\Sysnative\drivers\volsnap.sys
2014-12-06 08:38:59	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\Windows\Sysnative\drivers\srvnet.sys
2014-12-06 08:38:59	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\Windows\Sysnative\drivers\nwifi.sys
2014-12-06 08:38:58	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\Windows\Sysnative\drivers\usbhub.sys
2014-12-06 08:38:54	E4B4BE2D7750849C07589DA0B0AABA01	1118040	----a-w-	C:\Windows\Sysnative\drivers\ndis.sys
2014-12-06 08:38:54	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\Windows\Sysnative\drivers\NdisImPlatform.sys
2014-12-06 08:38:53	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\Windows\Sysnative\drivers\hdaudbus.sys
2014-12-06 08:38:53	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2014-12-06 08:38:50	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\Windows\Sysnative\drivers\pci.sys
2014-12-06 08:38:49	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\Windows\Sysnative\drivers\ks.sys
2014-12-06 08:38:48	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\Windows\Sysnative\drivers\IPMIDrv.sys
2014-12-06 08:38:40	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\Windows\Sysnative\drivers\bthpan.sys
2014-12-05 16:24:58	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-11-30 12:36:00	DE8D12B4C3F55FA2C5E9774314F6C58A	258368	----a-w-	C:\Windows\Sysnative\drivers\WdFilter.sys
2014-11-30 12:35:58	4AD874CDC812EC156265E451B6B09DAB	114496	----a-w-	C:\Windows\Sysnative\drivers\WdNisDrv.sys
2014-11-30 12:35:57	0359607177E5E9F6041136CC0A5CB0B6	35320	----a-w-	C:\Windows\Sysnative\drivers\WdBoot.sys
2014-11-30 12:28:20	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\Windows\Sysnative\drivers\msgpioclx.sys
2014-11-30 10:16:47	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2014-11-30 10:10:48	4E1207CE16E615B0B7A70DC889F4500E	563976	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2014-11-30 10:10:47	6D2EE96150E35B9EA49F2B481DE0369A	177472	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-11-30 10:10:46	9F08A6608F98B5407E7DDBCF306573EF	27456	----a-w-	C:\Windows\Sysnative\drivers\rdpvideominiport.sys
2014-11-30 10:06:30	97B9076611291AE4C4C107BC915BD026	1200640	----a-w-	C:\Windows\Sysnative\drivers\bthport.sys
2014-11-30 10:06:27	65392F3F3F65E4C6CC82A0F4F8A0B051	468288	----a-w-	C:\Windows\Sysnative\drivers\USBHUB3.SYS
2014-11-30 10:06:22	E0927EFA25D473367C3341B9F5969779	115712	----a-w-	C:\Windows\Sysnative\drivers\bridge.sys
2014-11-30 09:59:57	CCB3A2BB60FE5073F2DEA63FE83CF8FE	2497344	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2014-11-30 09:59:47	E3FCE2A6B3533D99A3B498504DF9CC47	474432	----a-w-	C:\Windows\Sysnative\drivers\netio.sys
2014-11-30 09:59:36	7F23E38C5B6448F91439E4066645191E	428864	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-11-30 09:59:34	66732C13628BDB1AB0D6FD46027327C2	148800	----a-w-	C:\Windows\Sysnative\drivers\USBSTOR.SYS
2014-11-29 13:35:20	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-11-25 15:46:09	B1881A01E301990B671694CA1623F1B6	436624	----a-w-	C:\Windows\Sysnative\drivers\aswSP.sys
2014-11-25 15:46:09	9BE9F2B83DE80E2752B1405CC427E2EC	29208	----a-w-	C:\Windows\Sysnative\drivers\aswHwid.sys
2014-11-25 15:46:09	7509F07BA6F84C1E3B2C0D78A1F6F782	116728	----a-w-	C:\Windows\Sysnative\drivers\aswStm.sys
2014-11-25 15:46:09	4750016EF9CC1DEC6DA3FE5AF9A7F095	93568	----a-w-	C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-11-25 15:46:09	2DA1C1AEDF454F8E32A863A1AEACDD8C	83280	----a-w-	C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-11-25 15:46:09	1A5BDDE65B648DC3AD48B6ECAA3AE9C8	267632	----a-w-	C:\Windows\Sysnative\drivers\aswVmm.sys
2014-11-25 15:46:09	1323269A92645705DEFA053F3596829D	65776	----a-w-	C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-11-25 15:46:08	E74FD717476B30E23F45354B8F3ACB30	1050432	----a-w-	C:\Windows\Sysnative\drivers\aswsnx.sys
====== C:\Windows\Tasks ======
2014-12-13 12:29:56	FF113D47A600594734BCDEA807024A7C	4038	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-12-13 12:29:56	6F1FF46C412F86F6A2A4086FADC196A4	1066	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-13 12:29:55	8B2A159BBDC637D7CDCB2B2A48499A9E	3802	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2014-12-13 12:29:55	75977A973FB04662A8F57D373433FE51	1062	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-07 15:36:54	--------	d-----w-	C:\Windows\Sysnative\Tasks\Apple
2014-11-29 14:46:35	991DA74D66718A889F3EFE3DF7BB1333	3496	----a-w-	C:\Windows\Sysnative\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-sofie.vanrensbergen@outlook.com
2014-11-29 13:23:24	9A19E2DB3278163BD4FF8D6572728625	3440	----a-w-	C:\Windows\Sysnative\Tasks\PCDEventLauncherTask
2014-11-29 13:23:22	2DC7828BDFA865DC75E4F4837E5E7978	3978	----a-w-	C:\Windows\Sysnative\Tasks\PCDoctorBackgroundMonitorTask
2014-11-29 13:23:20	735DEE18EBA49AA5EEDFB54681C37AA0	3190	----a-w-	C:\Windows\Sysnative\Tasks\SystemToolsDailyTest
2014-11-25 15:46:46	--------	d-----w-	C:\Windows\Sysnative\Tasks\Aviata
2014-11-25 15:46:24	C85C5A0C04DBA17D41B2FE9935085601	4182	----a-w-	C:\Windows\Sysnative\Tasks\avast! Emergency Update
2014-11-25 15:41:11	37D05AC7FD65E2C69F5A4CE21A83B786	3600	----a-w-	C:\Windows\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1346342557-3094049871-1797930786-1001
2014-11-25 15:38:38	40093300F518F4D4E4B83375DF675C51	3946	----a-w-	C:\Windows\Sysnative\Tasks\User_Feed_Synchronization-{45BC21F4-3006-4126-B3A7-1410DDBBA202}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-12-07 15:37:50	--------	d-----w-	C:\Program Files\iPod
2014-12-07 15:37:48	--------	d-----w-	C:\Program Files\iTunes
2014-12-07 15:36:45	--------	d-----w-	C:\Program Files\Common Files\Apple
2014-12-07 15:36:26	--------	d-----w-	C:\Program Files\Bonjour
2014-12-07 14:33:39	--------	d-----w-	C:\Program Files\Common Files\EPSON
2014-12-07 14:30:55	--------	d-----w-	C:\Program Files\EpsonNet
2014-12-07 14:30:49	--------	d-----w-	C:\Program Files\EPSON
2014-12-06 08:33:32	--------	d-----w-	C:\Program Files\trend micro
2014-11-29 14:52:27	--------	d-----w-	C:\Program Files\Common Files\DESIGNER
2014-11-29 14:51:46	--------	d-----w-	C:\Program Files\Microsoft.NET
2014-11-29 14:49:42	--------	d-----w-	C:\Program Files\Microsoft SQL Server
2014-11-29 14:23:39	--------	d-----w-	C:\Program Files\Adobe
2014-11-29 14:19:28	--------	d-----w-	C:\Program Files\Common Files\Adobe
2014-11-29 13:49:14	--------	d-----w-	C:\Program Files\Microsoft Analysis Services
2014-11-29 13:48:45	--------	d-----w-	C:\Program Files\Microsoft Office
======= C:\PROGRA~2 =====
2014-12-14 19:55:49	--------	d-----w-	C:\PROGRA~2\Dell Update
2014-12-07 15:37:48	--------	d-----w-	C:\PROGRA~2\iTunes
2014-12-07 15:36:53	--------	d-----w-	C:\PROGRA~2\Apple Software Update
2014-12-07 15:36:26	--------	d-----w-	C:\PROGRA~2\Bonjour
2014-12-07 15:36:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\Apple
2014-12-07 14:31:28	--------	d-----w-	C:\PROGRA~2\epson
2014-12-07 14:30:58	--------	d-----w-	C:\PROGRA~2\COMMON~1\EPSON
2014-12-07 14:30:40	--------	d-----w-	C:\PROGRA~2\EPSON Software
2014-12-06 08:19:52	--------	d-----w-	C:\PROGRA~2\Dell Digital Delivery
2014-11-29 14:51:47	--------	d-----w-	C:\PROGRA~2\Microsoft SQL Server
2014-11-29 14:21:34	--------	d-----w-	C:\PROGRA~2\COMMON~1\Adobe AIR
2014-11-29 14:21:32	--------	d-----w-	C:\PROGRA~2\Adobe
2014-11-29 14:15:39	--------	d-----w-	C:\PROGRA~2\COMMON~1\Adobe
2014-11-29 13:49:14	--------	d-----w-	C:\PROGRA~2\Microsoft Analysis Services
2014-11-25 15:39:46	--------	d-----w-	C:\PROGRA~2\Google
======= C: =====
2014-11-29 14:18:49	B99B721997D83CF7F2801F5E5027ACAF	113	---ha-w-	C:\DBAR_Ver.txt
====== C:\Users\Sofie\AppData\Roaming ======
2014-12-15 09:55:10	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-12-14 19:48:19	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-12-14 19:48:19	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-12-14 19:48:19	--------	d-----w-	C:\Users\Sofie\AppData\Local\Temp
2014-12-14 19:48:19	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2014-12-14 19:48:19	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2014-12-14 18:17:26	--------	d-----w-	C:\Users\Sofie\AppData\Local\CrashDumps
2014-12-13 12:29:28	--------	d-----w-	C:\Users\Sofie\AppData\Local\Deployment
2014-12-13 12:29:28	--------	d-----w-	C:\Users\Sofie\AppData\Local\Apps
2014-12-13 12:28:01	--------	d-sh--w-	C:\Users\Sofie\AppData\Local\EmieUserList
2014-12-13 12:28:01	--------	d-sh--w-	C:\Users\Sofie\AppData\Local\EmieSiteList
2014-12-13 12:28:01	--------	d-sh--w-	C:\Users\Sofie\AppData\Local\EmieBrowserModeList
2014-12-07 22:58:44	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Epson
2014-12-07 18:05:21	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\PCDr
2014-12-07 16:31:41	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\OpenOffice
2014-12-07 15:40:25	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\BitTorrent
2014-12-07 15:38:46	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Apple Computer
2014-12-07 15:38:46	--------	d-----w-	C:\Users\Sofie\AppData\Local\Apple Computer
2014-12-07 15:36:54	--------	d-----w-	C:\Users\Sofie\AppData\Local\Apple
2014-12-07 15:36:50	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer
2014-12-07 14:45:20	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Leadertech
2014-12-07 14:30:54	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\InstallShield
2014-11-30 12:27:44	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\FileZilla
2014-11-30 12:25:37	--------	d-----w-	C:\Users\Sofie\AppData\Local\Programs
2014-11-30 12:22:28	--------	d-----w-	C:\Users\Sofie\AppData\Locallow\Adobe
2014-11-30 09:57:54	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2014-11-29 14:12:58	--------	d-----w-	C:\Users\Sofie\AppData\Local\Adobe
2014-11-29 13:48:59	--------	d-----w-	C:\Users\Sofie\AppData\Local\Microsoft Help
2014-11-25 15:54:07	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\DropboxOEM
2014-11-25 15:40:21	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-11-25 15:39:43	--------	d-----w-	C:\Users\Sofie\AppData\Local\Google
2014-11-25 15:38:19	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-11-25 15:37:45	--------	d-----w-	C:\Users\Sofie\AppData\Local\Aviata
2014-11-25 15:37:31	--------	d-----w-	C:\Users\Sofie\AppData\Local\Power2Go8
2014-11-25 15:37:23	--------	d-----w-	C:\Users\Sofie\AppData\Local\BMExplorer
2014-11-25 15:37:05	--------	d-----w-	C:\Users\Sofie\AppData\Local\DropboxOEM
2014-11-25 15:36:41	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Atheros
2014-11-25 15:36:00	--------	d-s---w-	C:\Windows\serviceprofiles\networkservice\AppData\Locallow\Microsoft
2014-11-25 15:35:50	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-11-25 15:35:50	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-11-25 15:35:45	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Adobe
2014-11-25 15:35:35	--------	d-----w-	C:\Users\Sofie\AppData\Local\Packages
2014-11-25 15:35:13	--------	d-s---w-	C:\Users\Sofie\AppData\Locallow\Microsoft
2014-11-25 15:35:11	--------	d-s---w-	C:\Users\Sofie\AppData\Roaming\Microsoft
2014-11-25 15:35:11	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-25 15:35:11	--------	d-----w-	C:\Users\Sofie\AppData\Local\Microsoft
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-25 15:30:57	--------	d-s---w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2014-11-25 11:38:02	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-11-25 11:36:41	--------	d-----w-	C:\Users\Sofie\AppData\Roaming\Dropbox
====== C:\Users\Sofie ======
2014-12-13 12:33:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-09 01:14:44	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Sofie\Downloads\mbam-setup-2.0.4.1028 (1).exe
2014-12-09 00:36:02	--------	d-----w-	C:\ProgramData\Microsoft Toolkit
2014-12-09 00:22:00	038B75662205880BE56A8FFA9930F830	5162080	----a-w-	C:\Users\Sofie\Downloads\ccsetup500.exe
2014-12-07 18:04:21	--------	d-----w-	C:\ProgramData\PCDr
2014-12-07 15:40:13	C7DDBE92A00E051072348AE0E1A34BA9	1685080	----a-w-	C:\Users\Sofie\Downloads\BitTorrent.exe
2014-12-07 15:38:44	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-07 15:37:48	--------	d-----w-	C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-12-07 15:37:48	--------	d-----w-	C:\ProgramData\Apple Computer
2014-12-07 15:36:13	--------	d-----w-	C:\ProgramData\Apple
2014-12-07 15:34:47	D1E6D9BEEF71DA6FC161C7B259448581	122418480	----a-w-	C:\Users\Sofie\Downloads\iTunes64Setup.exe
2014-12-07 14:30:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2014-12-07 14:30:40	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2014-12-07 14:22:30	--------	d-----w-	C:\ProgramData\EPSON
2014-12-07 14:14:21	7AE69F7F38838ECE2E276379D24430C2	131201312	----a-w-	C:\Users\Sofie\Downloads\epson15721.exe
2014-12-06 20:13:09	40FC525BC8B26AC7E1A7CEF0E02A08F3	140852175	----a-w-	C:\Users\Sofie\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_en-US.exe
2014-12-06 20:10:41	9FDB23F6AD147EC081F27C998E736DFC	12215885	----a-w-	C:\Users\Sofie\Downloads\Apache_OpenOffice_4.1.1_Win_x86_langpack_nl.exe
2014-12-06 08:33:11	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Sofie\Downloads\RSITx64.exe
2014-12-03 18:34:24	--------	d-----w-	C:\ProgramData\HitmanPro
2014-12-03 17:36:01	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Sofie\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-03 09:30:19	CBDDB6C4BCD895F8879FD6AC588007A0	2154496	----a-w-	C:\Users\Sofie\Downloads\adwcleaner_4.103.exe
2014-11-29 14:53:24	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-11-29 14:43:17	--------	d-----w-	C:\ProgramData\regid.1986-12.com.adobe
2014-11-29 14:34:42	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-11-29 14:22:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
2014-11-29 14:18:22	--------	d-----w-	C:\ProgramData\softthinks
2014-11-29 14:13:57	--------	d-----w-	C:\ProgramData\Adobe
2014-11-29 13:48:44	--------	d-----w-	C:\ProgramData\Microsoft Help
2014-11-25 15:37:52	--------	d---a-w-	C:\Users\Sofie\OneDrive
2014-11-25 15:36:53	--------	d-----w-	C:\ProgramData\Atheros
2014-11-25 15:35:50	--------	d-----r-	C:\Users\Sofie\Searches
2014-11-25 15:35:49	--------	d-----r-	C:\Users\Sofie\Contacts
2014-11-25 15:35:12	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Sofie\ntuser.ini
2014-11-25 15:35:11	--------	d--h--w-	C:\Users\Sofie\AppData
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Videos
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Saved Games
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Pictures
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Music
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Links
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Favorites
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Downloads
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Documents
2014-11-25 15:35:11	--------	d-----r-	C:\Users\Sofie\Desktop
2014-11-25 15:27:58	--------	d--h--r-	C:\Users\Public\AccountPictures
2014-11-25 11:39:53	--------	d-----r-	C:\Users\Sofie\Dropbox

====== C: exe-files ==
2014-12-14 19:16:25	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-12-13 12:33:08	205E775B4B2C165922203A390B115523	40747600	----a-w-	C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\39.0.2171.95\39.0.2171.95_chrome_installer.exe
2014-12-13 12:29:54	F172AD4E906D97ED8F071896FC6789DC	107912	----atw-	C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2014-12-13 12:29:54	F172AD4E906D97ED8F071896FC6789DC	107912	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdate.exe
2014-12-13 12:29:54	EDD3E562684CB4C50704B471BEAB1F86	114568	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe
2014-12-13 12:29:54	CB8C1CC4F46FBAC78150754D77460C73	230792	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
2014-12-13 12:29:54	87EB5AFD21E52CB08883E04605B55829	880784	----a-w-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateSetup.exe
2014-12-13 12:29:54	7161E8E31B7FD3B1CE083C2CA5FD5F44	285064	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
2014-12-13 12:29:54	5B4ED5734945619EE3BCDB9825D2F526	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe
2014-12-13 12:29:54	06036279056145E0F08FC095CB789E6A	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateBroker.exe
2014-12-13 12:29:47	87EB5AFD21E52CB08883E04605B55829	880784	----a-w-	C:\Users\Sofie\AppData\Local\Apps\2.0\Y7EAVWDR.XN0\3D0V2607.CLM\inst...app_4fe91ede9f9bdca3_0001.0003_42ceeda68833d423\GoogleUpdateSetup.exe
2014-12-13 12:29:47	87EB5AFD21E52CB08883E04605B55829	880784	----a-w-	C:\Users\Sofie\AppData\Local\Apps\2.0\Y7EAVWDR.XN0\3D0V2607.CLM\clic...exe_4fe91ede9f9bdca3_0001.0003_none_b1328e123920ace1\GoogleUpdateSetup.exe
2014-12-13 12:29:47	0C03930EAEB2C336A067451192677F28	10120	----a-w-	C:\Users\Sofie\AppData\Local\Apps\2.0\Y7EAVWDR.XN0\3D0V2607.CLM\inst...app_4fe91ede9f9bdca3_0001.0003_42ceeda68833d423\clickonce_bootstrap.exe
2014-12-09 03:49:18	5BDF8CE82C3E4900677CD5A6E2146A3C	262160	----a-w-	C:\Users\Sofie\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
2014-12-09 03:45:30	2F2E573625D314AA7BFBFC57E3EEBA90	225240	----a-w-	C:\Users\Sofie\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
2014-12-09 03:45:28	6226810F26227F083929AC5584122951	39207112	----a-w-	C:\Users\Sofie\AppData\Roaming\Dropbox\bin\Dropbox.exe
2014-12-09 01:14:44	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Sofie\Downloads\mbam-setup-2.0.4.1028 (1).exe
2014-12-09 00:22:00	038B75662205880BE56A8FFA9930F830	5162080	----a-w-	C:\Users\Sofie\Downloads\ccsetup500.exe
=== C: other files ==
2014-12-14 19:13:19	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\Windows\System32\drivers\dumpsd.sys
2014-12-14 19:13:19	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\Windows\System32\drivers\intelpep.sys
2014-12-14 19:13:19	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\Windows\System32\drivers\sdbus.sys
2014-12-14 19:13:19	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\Windows\System32\drivers\pdc.sys
2014-12-09 01:15:45	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-09 01:15:44	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2014-12-09 01:15:44	9D7BFFDB5FA62B600DF1FCB4919D9D79	64216	----a-w-	C:\Windows\System32\drivers\mwac.sys
2014-12-09 00:59:00	42E18DF982093913A13EFCC820A9C48D	11668475	----a-w-	C:\Program Files (x86)\Common Files\Adobe\Adobe\AdobePatchFiles\{C1F95EC9-42C8-4353-9728-41EEC367E578}.zip
2014-12-09 00:58:38	F59AD4A387BF35D0CEAF3A4500EC7BE3	1308589	----a-w-	C:\ProgramData\Adobe\CameraRaw\Adobe\AdobePatchFiles\{7A218A6F-EFC8-4770-9E38-0A60200BD5F0}.zip
2014-12-09 00:58:20	BEEE277FA145E8BA21E1237A47D4EB96	12288515	----a-w-	C:\Program Files\Common Files\Adobe\Adobe\AdobePatchFiles\{1EC760E1-F992-4E17-8549-2182CDDE9886}.zip
2014-12-09 00:57:48	93B2EB7FB34DC1289C170B7DD9CA0990	1803819	----a-w-	C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{BF667E23-0186-41F1-ACAE-5786D4B34F56}.zip
2014-12-09 00:57:28	604BD712E12CE6B6CA8AB22FB010D744	6415388	----a-w-	C:\Program Files\Adobe\Adobe\AdobePatchFiles\{DB03622D-0A16-4C9D-8567-D54135CCC38F}.zip
2014-12-09 00:56:46	C14D8BEAAF8DD31A205A471ADF83803A	9993	----a-w-	C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{6D7CC1C2-62A9-4764-9536-CDC175C7B054}.zip
2014-12-09 00:56:44	3EA374D63115B0D4A89A0E39098A3943	539	----a-w-	C:\Program Files\Adobe\Adobe\AdobePatchFiles\{38633898-91E2-4CB3-9079-3B01CDE02478}.zip
2014-12-09 00:56:09	9F390B26CAEC5037BB3F9BA975F155B2	261210	----a-w-	C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\Adobe\AdobePatchFiles\{3871C312-24AC-4FCA-AD09-AD55E3237B98}.zip
2014-12-09 00:55:11	18090C2C84DF55CCE4D96F492D787217	55046439	----a-w-	C:\Program Files\Adobe\Adobe\AdobePatchFiles\{C2E9AD90-F09F-4160-ADBD-7C41E5D2C7CB}.zip
2014-12-09 00:54:25	E6062A75D8D87C93D18C4DCAB416AB79	3973151	----a-w-	C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{AF124105-3E2F-11E2-9F3B-E75234F9E874}.zip
2014-12-09 00:53:59	C25E25DDA61AC07CA8621B5A3889176C	60585396	----a-w-	C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{A4643BA5-3E2F-11E2-9F3B-CE3A639F26AA}.zip
2014-12-09 00:36:46	3C32FF010F869BC184DF71290477384E	40664	----a-w-	C:\Windows\System32\drivers\tap0901.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1346342557-3094049871-1797930786-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJCE.EXE /EPT EPLTarget\P0000000000000000 /M XP-600 Series"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DropboxOEM"="C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe auto"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Acrobat Speed Launcher"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
"Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
"EEventManager"="C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJCE.EXE /EPT EPLTarget\P0000000000000000 /M XP-600 Series"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX5REC"
"WavesSvc"="C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe"
"QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"

==== Startup Folders ======================

2014-11-25 11:38:38	1186	----a-w-	C:\Users\Sofie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13-12-2014 13:29]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13-12-2014 13:29]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\Windows\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\PCDEventLauncherTask" ["C:\Program Files\My Dell\sessionchecker.exe"]
"C:\Windows\SysNative\tasks\PCDoctorBackgroundMonitorTask" ["C:\Program Files\My Dell\uaclauncher.exe"]
"C:\Windows\SysNative\tasks\SystemToolsDailyTest" ["uaclauncher.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{45BC21F4-3006-4126-B3A7-1410DDBBA202}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Dell\Dell Product Registration" [C:\Program Files (x86)\Dell Product Registration\prodreg.exe]
"C:\Windows\SysNative\tasks\Dell\Dell Product Registration Update" [C:\Program Files (x86)\Dell Product Registration\prodreg.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [29-11-2014 15:33]

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25-11-2014 16:45]

Google Slides - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Avast Online Security - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Sofie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\Sofie\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Sofie\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [DropboxOEM] "C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe" auto
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJCE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-600 Series"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
O4 - Startup: Dropbox.lnk = Sofie\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Data Services - Dell - C:\Program Files\Dell\Dell Data Services\DDSSvc.exe
O23 - Service: Dell Foundation Services - Dell - C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
O23 - Service: Dell Product Registration Manager (DellProdRegManager) - Aviata, Inc. - C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe
O23 - Service: Dell Update Service (DellUpdate) - Dell Inc. - C:\Program Files (x86)\Dell Update\DellUpService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EpsonCustomerParticipation - SEIKO EPSON CORPORATION - C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: My Dell Client Framework - Dell Inc. - C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - CyberLink - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Sofie\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Sofie\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Sofie\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Sofie\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Sofie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4996 folders=111 30653221 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Sofie\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Sofie\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 15-12-2014 at 12:22:37,67 ======================