
Zoek.exe v5.0.0.0 Updated 22-March-2015
Tool run by Marjo on ma 23-03-2015 at 11:04:49,60.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDJZ2E0C\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2015-03-22-111651.log	73659 bytes
C:\zoek-results2015-03-23-080207.log	75642 bytes

==== Empty Folders Check ======================

C:\PROGRA~3\CanonEPP deleted successfully
C:\PROGRA~3\CanonIJEPPEX2 deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\ExpressGateUtil\VAWinService.exe
C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDJZ2E0C\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.ascplugin.protect] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit\Advanced SystemCare 5] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit\Advanced SystemCare 6] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit\ASC] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit\LiveUpdate] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit\Smart Defrag 3] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\IObit] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\IObit Malware Fighter] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\IObitUnstaler] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\//\//\IObit Cloud Anti-Malwre] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\IObit Malware Fighter] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\IObitUnstaler] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\IObit Malware Fighter] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\IObit Malware Fighter] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\IObitUnstaler] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{38A6E5EA-6854-4F3C-AD6C-7FB6E92C5A8C}\1.0\HELPDIR] 
[-HKEY_USERS\.DEFAULT\Software\AppDataLow\Software\IObit Apps\history] 
[-HKEY_USERS\.DEFAULT\Software\AppDataLow\Software\IObit Apps] 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\IObit Uninstaller.exe"=- 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\Advanced SystemCare.exe"=- 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\Driver Booster.exe"=- 
[-HKEY_USERS\S-1-5-21-439288865-1790849198-4091599924-1001\Software\FLEXnet\Connect\db\IObit Malware Fighter_is1.ini] 
[HKEY_USERS\S-1-5-21-439288865-1790849198-4091599924-1001\Software\Microsoft\IntelliPoint\AppSpecific\Suc13_FileShredder.exe] 
"Path"=- 
[-HKEY_USERS\S-1-5-18\Software\AppDataLow\Software\IObit Apps\history] 
[-HKEY_USERS\S-1-5-18\Software\AppDataLow\Software\IObit Apps] 
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\IObit Uninstaller.exe"=- 
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\Smart Defrag.exe"=- 
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\Advanced SystemCare.exe"=- 
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] 
"C:\\ProgramData\\IObit\\ASCDownloader\\Driver Booster.exe"=- 

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{38A6E5EA-6854-4F3C-AD6C-7FB6E92C5A8C}\1.0\HELPDIR] 
[-HKEY_LOCAL_MACHINE\SYSTEM\BDSandBox\Marjo\machine\SOFTWARE\Wow6432Node\IObit] 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Common Files\IObit deleted
C:\ProgramData\IObit deleted
C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppHang_IObitUninstaler._3bbf413fd3f18704fe5f7367eb24a64aa81616_18a9c5de deleted
C:\Users\Default\AppData\Roaming\IObit deleted
C:\Users\Marjo\AppData\LocalLow\IObit deleted
C:\Users\Marjo\AppData\Roaming\IObit deleted
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit deleted
C:\Users\Marjo\AppData\Roaming\Network Meter_Usage.ini deleted
"C:\Users\Marjo\Downloads\iobit-uninstaller.exe" deleted
"C:\Users\Marjo\Downloads\iobituninstaller (1).exe" deleted
"C:\Users\Marjo\Downloads\iobituninstaller.exe" deleted

==== Folders Found ======================

2015-03-23 10:18:03 2015-03-23 10:18:03	--------	d---a-w-	C:\zoek_backup\C_Program Files (x86)_Common Files_IObit
2015-03-23 07:52:39 2015-03-23 07:52:40	--------	d---a-w-	C:\zoek_backup\C_Program Files (x86)_IObit
2015-03-23 10:18:03 2015-03-23 10:18:09	--------	d---a-w-	C:\zoek_backup\C_ProgramData_IObit
2015-03-23 10:18:09 2015-02-14 08:19:51	--------	d---a-w-	C:\zoek_backup\C_ProgramData_Microsoft_Windows_WER_ReportArchive_AppHang_IObitUninstaler._3bbf413fd3f18704fe5f7367eb24a64aa81616_18a9c5de
2015-03-23 10:18:09 2015-03-23 10:18:09	--------	d---a-w-	C:\zoek_backup\C_Users_All Users_IObit
2015-03-23 10:18:09 2015-02-14 08:19:51	--------	d---a-w-	C:\zoek_backup\C_Users_All Users_Microsoft_Windows_WER_ReportArchive_AppHang_IObitUninstaler._3bbf413fd3f18704fe5f7367eb24a64aa81616_18a9c5de
2015-03-23 10:18:09 2015-03-23 10:18:09	--------	d---a-w-	C:\zoek_backup\C_Users_Default_AppData_Roaming_IObit
2015-03-23 10:18:09 2015-03-23 10:18:10	--------	d---a-w-	C:\zoek_backup\C_Users_Marjo_AppData_LocalLow_IObit
2015-03-23 10:18:10 2015-03-23 10:18:20	--------	d---a-w-	C:\zoek_backup\C_Users_Marjo_AppData_Roaming_IObit
2015-03-14 13:11:04 2015-03-14 13:11:04	--------	d---a-w-	C:\zoek_backup\C_Windows_sysWoW64_config_systemprofile_AppData_LocalLow_IObit Apps
2015-03-23 10:18:20 2015-03-23 10:18:20	--------	d---a-w-	C:\zoek_backup\C_Windows_SysWOW64_config_systemprofile_AppData_Roaming_IObit
2015-03-23 10:18:09 2015-03-17 08:16:59	--------	d---a-w-	C:\zoek_backup\C_ProgramData_IObit\IObit Uninstaller
2015-03-23 10:18:09 2015-03-17 08:16:59	--------	d---a-w-	C:\zoek_backup\C_Users_All Users_IObit\IObit Uninstaller
2015-03-23 10:18:20 2015-03-22 07:30:43	--------	d---a-w-	C:\zoek_backup\C_Users_Marjo_AppData_Roaming_IObit\IObit Malware Fighter
2015-03-23 10:18:20 2015-03-22 07:31:49	--------	d---a-w-	C:\zoek_backup\C_Users_Marjo_AppData_Roaming_IObit\IObit Uninstaller

==== Files Found ======================


--- C:\zoek_backup\C_Users_Marjo_Downloads_iobit-uninstaller.exe.vir ---
Company: IObit
File Description: IObit Uninstaller
File Version: 2.2.0.127
Product Name: IObit Uninstaller
Copyright: Copyright(c) 2005-2012
Original Filename: 
File type: ----a-w-
File size: 1688408
Created time: 2015-03-23 10:18:20
Modified time: 2012-07-28 06:29:20
MD5: EB732C43B23E848EBDA2E2C429C55516
SHA1: 1F75ABA505398957750EEAD0D97F9DE87772EF52


--- C:\zoek_backup\C_Users_Marjo_Downloads_iobituninstaller (1).exe.vir ---
Company: IObit
File Description: Uninstall Programs
File Version: 4.2.6.1
Product Name: Uninstall Programs
Copyright: Copyright(C) 2005-2015
Original Filename: 
File type: ----a-w-
File size: 15971616
Created time: 2015-03-23 10:18:20
Modified time: 2015-01-16 07:36:56
MD5: 534F3E0D66985D38C5BD83DBA56F5594
SHA1: 8C90B8DEBDC79C7169EFCBC25F2D5CA6C52785FD


--- C:\zoek_backup\C_Users_Marjo_Downloads_iobituninstaller.exe.vir ---
Company: IObit
File Description: Uninstall Programs
File Version: 4.1.5.30
Product Name: Uninstall Programs
Copyright: Copyright(C) 2005-2015
Original Filename: 
File type: ----a-w-
File size: 17528608
Created time: 2015-03-23 10:18:21
Modified time: 2014-12-31 08:02:11
MD5: 9308CDB2634F426541B7BD194001E4E0
SHA1: E49FF7AB20FFBC680E801FB0E54ED42ABD3F0123


--- C:\zoek_backup\C_ProgramData_IObit\ASCDownloader\IObit Uninstaller.exe ---
Company: IObit
File Description: Uninstall Programs
File Version: 4.1.5.30
Product Name: Uninstall Programs
Copyright: Copyright(C) 2005-2015
Original Filename: 
File type: ----a-w-
File size: 17528608
Created time: 2015-03-23 10:18:04
Modified time: 2014-12-23 10:07:53
MD5: 9308CDB2634F426541B7BD194001E4E0
SHA1: E49FF7AB20FFBC680E801FB0E54ED42ABD3F0123


--- C:\zoek_backup\C_ProgramData_IObit\ASCDownloader\IObit Uninstaller.exe.dat ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 677
Created time: 2015-03-23 10:18:05
Modified time: 2014-12-23 10:08:05
MD5: E6AB2F51222DD0360B117E2310095AD3
SHA1: 75E69254E4B3844CB705FDC317A7EE25B49C61E2


--- C:\zoek_backup\C_Users_All Users_IObit\ASCDownloader\IObit Uninstaller.exe ---
Company: IObit
File Description: Uninstall Programs
File Version: 4.1.5.30
Product Name: Uninstall Programs
Copyright: Copyright(C) 2005-2015
Original Filename: 
File type: ----a-w-
File size: 17528608
Created time: 2015-03-23 10:18:09
Modified time: 2014-12-23 10:07:53
MD5: 9308CDB2634F426541B7BD194001E4E0
SHA1: E49FF7AB20FFBC680E801FB0E54ED42ABD3F0123


--- C:\zoek_backup\C_Users_All Users_IObit\ASCDownloader\IObit Uninstaller.exe.dat ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 677
Created time: 2015-03-23 10:18:09
Modified time: 2014-12-23 10:08:05
MD5: E6AB2F51222DD0360B117E2310095AD3
SHA1: 75E69254E4B3844CB705FDC317A7EE25B49C61E2


==== Registry Search Results for "iobit" ======================


[HKEY_USERS\S-1-5-21-439288865-1790849198-4091599924-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\\Program Files (x86)\\IObit\\IObit Uninstaller\\Uninstaler_SkipUac.exe"="Uninstall Programs"

[HKEY_USERS\S-1-5-21-439288865-1790849198-4091599924-1001_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\\Program Files (x86)\\IObit\\IObit Uninstaller\\Uninstaler_SkipUac.exe"="Uninstall Programs"

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 6055 MB
CPU Info: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz
CPU Speed: 2211,4 MHz
Sound Card: Speakers (Realtek High Definiti | 
Realtek Digital Output (Realtek | 
Display Adapters: Intel(R) HD Graphics 3000 | Intel(R) HD Graphics 3000 | NVIDIA GeForce GT 630M        | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) | Bluetooth Device (Personal Area Network) #2 | Atheros AR9002WB-1NG Wireless Network Adapter
CD / DVD Drives: 1x (E: | ) E: SlimtypeDVD A  DS8A5SH
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  300,0GB | D:  373,6GB
Hard Disks - Free: C:  212,5GB | D:  188,7GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 11/30/11 | _ASUS_ - 6222004
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer Inc. N73SM
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Bitdefender Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Bitdefender Antispyware disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Firewall: Bitdefender Firewall disabled
Default Browser: Internet Explorer	11.00.9600.16428 (winblue_gdr.131013-1700)
Internet Explorer Version: 11.0.9600.17691 
Adobe Reader version: 11.0.10.32
Sun Java version: 1.8.0_40 (32-bit) 
Sun Java version: 1.8.0_40 (64-bit) 
Flash Player version: 16.0.0.305

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Marjo\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-03-21 14:40:02	AD27563BC16AB1EAACAE3033E99C2F78	194048	----a-w-	C:\Windows\SysWOW64\elshyph.dll
2015-03-21 14:39:59	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2015-03-21 14:39:59	EC7038154490E50ACD405A022F51B204	83456	----a-w-	C:\Windows\SysWOW64\inseng.dll
2015-03-21 14:39:59	EA6EA6912F27F05C61D8D747517EB47E	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-03-21 14:39:59	E868396BC5F8957A9E39BD9A28EA814D	12827648	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-03-21 14:39:59	D9F12F54E3B5A092F1D5F191F5286E53	337408	----a-w-	C:\Windows\SysWOW64\html.iec
2015-03-21 14:39:59	CFCE4EFF1D6D909EE2EA3AFCB8F1E677	233472	----a-w-	C:\Windows\SysWOW64\url.dll
2015-03-21 14:39:59	C1A6E565B2782C09BC40AD749B46D9ED	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-03-21 14:39:59	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\SysWOW64\ieapfltr.dat
2015-03-21 14:39:59	BD838E2129623E8311720AA86C5DFBBF	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-03-21 14:39:59	BA10D970EB39913357B224F4473D535B	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-03-21 14:39:59	B8445B89D0EA5C2575C98EA7BD180C5C	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-03-21 14:39:59	B35C35C55FED3DD7F995C77F63CBC29B	1311232	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-03-21 14:39:59	B0B83B31853E15C619FDB91B64F8349A	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-03-21 14:39:59	AD13E719AE506AA0E0BB5D49E0D5B44A	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-03-21 14:39:59	AC35DA94A14679E8E515A44A8CF90804	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-03-21 14:39:59	AB3B2CA52AFB695AFCDD2620A21E5B21	24576	----a-w-	C:\Windows\SysWOW64\licmgr10.dll
2015-03-21 14:39:59	A41C85FDB2275FA9AAA821A118807FDB	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-03-21 14:39:59	A34897A1A39316BDECCA3E61986F98F2	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-03-21 14:39:59	9E170B0AF156B478BD2B1FD6A2250C9E	62464	----a-w-	C:\Windows\SysWOW64\tdc.ocx
2015-03-21 14:39:59	9B8701A380CEE1B05D651B4ED4048C8F	645120	----a-w-	C:\Windows\SysWOW64\jsIntl.dll
2015-03-21 14:39:59	8FDE1162C9DCF7B180AA702DD9EB6071	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-21 14:39:59	756B4F77945C61ADBE68150D7D2EC7A6	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-03-21 14:39:59	52B4DECDC70B8758380D37EA2CDD4254	2278400	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-03-21 14:39:59	4F032F1FDEFEA5EC8EEA3562643B5EE8	69120	----a-w-	C:\Windows\SysWOW64\icardie.dll
2015-03-21 14:39:59	29EDBC5C381F1406A5262351E69BC87A	342696	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-03-21 14:39:59	298FDE634538B62CEEEC266D8773B21A	182272	----a-w-	C:\Windows\SysWOW64\msls31.dll
2015-03-21 14:39:58	FDF0B4DC83627A859D18EE439B8E5A26	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-21 14:39:58	FC5FE9F2D140435FC95CB3EF6724EF0A	4300288	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-03-21 14:39:58	F7B6E341F4B1947BEC0E14EEBE3C627E	111616	----a-w-	C:\Windows\SysWOW64\IEAdvpack.dll
2015-03-21 14:39:58	F5F730ED126DCFBEBDB9BB629BD482C4	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-03-21 14:39:58	BC9CE46C3F05CCC40F8F1EFC7E4B41C7	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-03-21 14:39:58	AE6A2C5ECD3E96556E22F12816842F60	48640	----a-w-	C:\Windows\SysWOW64\mshtmler.dll
2015-03-21 14:39:58	AD1BA932AC31D2BC8C9105DA59BEA6BE	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-03-21 14:39:58	ABDFC692D9FE43E2BA8FE6CB5A8CB95A	13312	----a-w-	C:\Windows\SysWOW64\mshta.exe
2015-03-21 14:39:58	9A33FDDD687A836A1FD478B43C5A95FD	151552	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2015-03-21 14:39:58	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-03-21 14:39:58	95CB6079B3E62D4301958023C2070A48	19720192	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-03-21 14:39:58	887055A3C8DD6C87D200D11EAFDBD45B	74240	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-03-21 14:39:58	83F49FD1BC0A999B006D564C540C7258	86016	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2015-03-21 14:39:58	779E142FE2159935E78C0FA2E190FF1E	610304	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-03-21 14:39:58	6EB0B7301E00F717BD68A742D1391FAF	36352	----a-w-	C:\Windows\SysWOW64\imgutil.dll
2015-03-21 14:39:58	6A92CEC8532056791C6832B2725D170D	139264	----a-w-	C:\Windows\SysWOW64\wextract.exe
2015-03-21 14:39:58	6108ED659B5962DE73DACB3B04D86ED3	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-21 14:39:58	55969AADF0210A614700F89B48976F68	43008	----a-w-	C:\Windows\SysWOW64\msfeedsbs.dll
2015-03-21 14:39:58	53FC62C51CB18C9100A7DFAF2D2A6C47	12800	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2015-03-21 14:39:58	4BCC7EB5F20840DA67943BD86AE95735	56832	----a-w-	C:\Windows\SysWOW64\pngfilt.dll
2015-03-21 14:39:58	1AFBAA54BDF637F69B8E02A5578286B0	116736	----a-w-	C:\Windows\SysWOW64\iepeers.dll
2015-03-21 14:39:58	1200D9C7DB0ADC1B8143A0A9921BF7DA	127488	----a-w-	C:\Windows\SysWOW64\occache.dll
2015-03-21 14:39:58	08B30EB9751858C1C369E8775492D732	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-03-21 14:39:58	03B3541AE6986602CF9CB5B3AD169C33	208384	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2015-03-21 14:39:58	02C0770DA3BE9231EFAF7185EE51020C	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-21 14:39:58	00F39165D6D14302618C20CDD7BB213A	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-03-12 08:07:14	ABB358777FDF4AF51B2FE26137D2B8D4	70656	----a-w-	C:\Windows\SysWOW64\fontsub.dll
2015-03-12 08:07:14	965D6A2B30A95A9F7EF13653988D3D9F	299008	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2015-03-12 08:07:14	55273844B66D77A2F1A2213C17A9EA4A	34304	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2015-03-12 08:07:14	274F0540FD4C88FC845C94CA1569688A	10240	----a-w-	C:\Windows\SysWOW64\dciman32.dll
2015-03-12 08:07:14	01D9C9A70323BC7E5835B92442DD7EC2	25600	----a-w-	C:\Windows\SysWOW64\lpk.dll
2015-03-12 08:07:08	003C51B9FE38287BA4E0E58D3AE080BD	744960	----a-w-	C:\Windows\SysWOW64\blackbox.dll
2015-03-12 08:07:07	DCC148408770F2D55B201F8FC26438A1	988160	----a-w-	C:\Windows\SysWOW64\drmv2clt.dll
2015-03-12 08:07:06	B378B6A865C28CE5C1E23C35760A1199	11411968	----a-w-	C:\Windows\SysWOW64\wmp.dll
2015-03-12 08:07:06	833FCABCB5D95B1911BA6E62FC82AC04	617984	----a-w-	C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-12 08:07:06	5B0C6247027FCF5A2E2F150E298D2FFA	3209728	----a-w-	C:\Windows\SysWOW64\mf.dll
2015-03-12 08:07:05	BB73C907D1BD437B6C30F2C23BB089FC	406016	----a-w-	C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-12 08:07:05	74264B7F57A16D25CB581C07964D324A	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-03-12 08:07:04	6C2D4DC5D2E271F4AE4016FD4587B0B2	3973048	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-12 08:07:04	2CFE69A0A8AFDA8DB9A773D728000BB7	3917760	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-12 08:07:00	2D4814D567E5A85C473228BA772A7AFB	489984	----a-w-	C:\Windows\SysWOW64\evr.dll
2015-03-12 08:06:59	96DB6A923DEDB58FC7CBBF5CFF73314D	1329664	----a-w-	C:\Windows\SysWOW64\quartz.dll
2015-03-12 08:06:58	B7D2BB84C590F0AE9DA51DBB065A780E	1005056	----a-w-	C:\Windows\SysWOW64\cryptui.dll
2015-03-12 08:06:57	C5667EE72D7364BE81516C0707FEF724	354816	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2015-03-12 08:06:57	B54FD1991E659FD61EF1D34EC27AAECD	81408	----a-w-	C:\Windows\SysWOW64\cryptsp.dll
2015-03-12 08:06:55	98C1191C862B44567FCF3C18BAEE859E	519680	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2015-03-12 08:06:54	D5EC42139D6A6158CF188975C50B6A60	179200	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2015-03-12 08:06:54	70E96EBE87A38857619671FCB9C8EC7B	265216	----a-w-	C:\Windows\SysWOW64\msnetobj.dll
2015-03-12 08:06:54	49474B3E37969AF4B5C076F42B623AFF	143872	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2015-03-12 08:06:54	3BAA4BAE71460C5CEB40D5E9339A61BC	103936	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2015-03-12 08:06:54	320A8699369C43CF53B2DB4538D17C52	504320	----a-w-	C:\Windows\SysWOW64\msscp.dll
2015-03-12 08:06:54	2D21189858856316D55EAD55DF4964C2	374784	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2015-03-12 08:06:54	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2015-03-12 08:06:53	E0AB9CA912398BE1AAD14FF7AD75C397	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
2015-03-12 08:06:53	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\SysWOW64\msdxm.ocx
2015-03-12 08:06:53	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\SysWOW64\dxmasf.dll
2015-03-12 08:06:53	AF47EAA4ADDA9AA221FB7647EE22BF53	103424	----a-w-	C:\Windows\SysWOW64\mfps.dll
2015-03-12 08:06:53	A56F4029FDCF4F817E78953CDA953E28	442880	----a-w-	C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-12 08:06:53	A4A2EFB40015B76467F09E6DC388BC26	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-03-12 08:06:53	8B07DBA0D77346545C6359AC67DCB980	8192	----a-w-	C:\Windows\SysWOW64\spwmp.dll
2015-03-12 08:06:53	50B8937A81360D16A5C772302BD32CFE	195584	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2015-03-12 08:06:53	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2015-03-12 08:06:52	FCD5137A10C8943B34C9BE891C50159F	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-03-12 08:06:52	7C1CADCA0E674212412559B0EAD0919A	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2015-03-12 08:06:51	2F3CE58D8C276570EEB69C99CFBAFD58	2048	----a-w-	C:\Windows\SysWOW64\mferror.dll
2015-03-12 08:06:26	B804EAA9E037580F96C22537C2ECB62A	171520	----a-w-	C:\Windows\SysWOW64\ubpm.dll
2015-03-12 08:06:26	340EECB781E6C06A6171B3068DA208AD	12875264	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-03-12 08:06:21	D5063B86DC3F85B93D02AF68099F4C9A	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-03-12 08:06:20	C7D334A01C66BF07B92D04CD7A981B7F	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-03-12 08:06:20	B06A4105DD22E91A1D922D7310803140	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-03-12 08:06:20	ACD0CA819E279E1C17BE5C8A077EF448	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-03-12 08:06:20	84974782ED5D108DA2EFAF3C6534A760	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-03-12 08:06:20	7A71DA6D6F75AB73475128F787DD8EAD	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-03-12 08:06:20	7407DDA27838C393DE67A0BDCDD044D0	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-03-12 08:06:20	69925A266D265DAD96C6FCBB861FA5CD	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-03-12 08:06:20	5E76C26CAE2810EA71C161ED9A2CF0D1	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-03-12 08:06:20	4E15E2D20AE755FDEACD96F359F732DB	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-03-12 08:06:20	30F5B3E28636009A0B194057AAE4392A	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-03-12 08:06:20	04934912B1317F2F8816208067A32B96	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-03-12 08:06:20	0485899A035E02C53014C0545D912405	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-03-12 08:06:17	84B460BB65567ED42DD605FA044DB370	828928	----a-w-	C:\Windows\SysWOW64\msctf.dll
2015-03-12 08:06:16	5F3628DCF926C4499BE1DC74431DFBC8	1230848	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-12 08:05:49	9566C8BBD2271A7962D4432A624762AD	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-03-21 14:57:00	132862B0FC4A1B7CB45C274DE169DBB2	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-03-21 14:39:59	8F7FBD0177F79727CF945ABDA657A0AC	235008	----a-w-	C:\Windows\Sysnative\elshyph.dll
2015-03-21 14:39:58	FD61D51199F3FC9EB0023FBF405EAAD0	147968	----a-w-	C:\Windows\Sysnative\occache.dll
2015-03-21 14:39:58	FB8C4EE9889790466A0174923410649E	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-03-21 14:39:58	F862CD08F1AD4EE39BD506853F3C6103	16284	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2015-03-21 14:39:58	F5E5E96E188934BAB22C0916C91F46B3	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-03-21 14:39:58	F00AE7B953ABEF1B53FBBA187DFC8238	243200	----a-w-	C:\Windows\Sysnative\webcheck.dll
2015-03-21 14:39:58	E70D4270C43CE6C46841B684315B9EFF	62464	----a-w-	C:\Windows\Sysnative\pngfilt.dll
2015-03-21 14:39:58	E4A6577D74B2439974C8018AB5F1BFEA	13312	----a-w-	C:\Windows\Sysnative\msfeedssync.exe
2015-03-21 14:39:58	D3EA5B5E606EF17804B5BF565BEAD937	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-03-21 14:39:58	D373113A84C12BA7F07CE1E9CAF4747F	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-03-21 14:39:58	D31AE751B6DACAFD0D7CC99EAE9606C2	131072	----a-w-	C:\Windows\Sysnative\IEAdvpack.dll
2015-03-21 14:39:58	D2BF72C0A9E26BE91C1DEEACF7C430E0	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-03-21 14:39:58	D0767EA3A59FA70C7ACF59EE0C8CD42A	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-03-21 14:39:58	CE8831D2DCB5803A4CBC8EDCCBBC2A05	77312	----a-w-	C:\Windows\Sysnative\tdc.ocx
2015-03-21 14:39:58	C92173481A58935BE15172079CF122B8	235520	----a-w-	C:\Windows\Sysnative\url.dll
2015-03-21 14:39:58	C17139EAF939964142C7A1AEEE02DC81	616104	----a-w-	C:\Windows\Sysnative\ieapfltr.dat
2015-03-21 14:39:58	BB6DEAFAC5F0AAEC37FEAF3F3AA48347	774144	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-03-21 14:39:58	ADA5C3D49A12CED9F07913DC00E547A8	48128	----a-w-	C:\Windows\Sysnative\imgutil.dll
2015-03-21 14:39:58	A9190899A35431CF8ABBEF5E1BB0C8F9	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-03-21 14:39:58	A1264D16AF506125C974775C833A063C	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-03-21 14:39:58	9E9B757A677927110393A505822D9174	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-03-21 14:39:58	9675B272086CF5D22B83B541FAA8D4EA	30208	----a-w-	C:\Windows\Sysnative\licmgr10.dll
2015-03-21 14:39:58	95828D670CFD3B16EE188168E083C3C5	13824	----a-w-	C:\Windows\Sysnative\mshta.exe
2015-03-21 14:39:58	80B3AD73027A2CCD42C47EBF5C89124F	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-03-21 14:39:58	7FA2B43D940DF41E46B8049B59AB6639	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-03-21 14:39:58	76B53D2150284E138B46410EA54967FA	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-03-21 14:39:58	6F1AF8E1206E92256459E3012C20472A	942592	----a-w-	C:\Windows\Sysnative\jsIntl.dll
2015-03-21 14:39:58	687E11F36832BFF65EF0CD2FA3DB1966	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-03-21 14:39:58	667229C8F194D619D12F05943D7F61F0	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-03-21 14:39:58	62269DEFF17AB006217330A24EA8577B	2886144	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-03-21 14:39:58	5BBDBE5EBB49EA7C76A2EE7490A45D68	101376	----a-w-	C:\Windows\Sysnative\inseng.dll
2015-03-21 14:39:58	585B29EFB4954902FD53C4F8F9A0D39F	389800	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-03-21 14:39:58	5443F21A33DB376734DBE47F7635542C	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-03-21 14:39:58	5141B67F14E2B6CBB6ADF851ABE364A5	90112	----a-w-	C:\Windows\Sysnative\SetIEInstalledDate.exe
2015-03-21 14:39:58	501A38B72FA264605123B4FACF53F057	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-03-21 14:39:58	4870B24EA7D4EEF5E1C4675AC47796B8	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-03-21 14:39:58	46FD16F9B1924A2EA8CD5C6716CC654F	167424	----a-w-	C:\Windows\Sysnative\iexpress.exe
2015-03-21 14:39:58	4399857346DD183683332921500046B1	86016	----a-w-	C:\Windows\Sysnative\RegisterIEPKEYs.exe
2015-03-21 14:39:58	40DF85D8B2B0171EF5F23AA1B5CD9A62	6035456	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-03-21 14:39:58	3A4FD19F13F8809BA08E9F76C0E38832	413696	----a-w-	C:\Windows\Sysnative\html.iec
2015-03-21 14:39:58	36F99BD8A0F09BDBB7850A138845A014	2358784	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-03-21 14:39:58	2EBD0C5B090125AECF017C57344C45AB	247808	----a-w-	C:\Windows\Sysnative\msls31.dll
2015-03-21 14:39:58	2CA6A98547E799812489E5ADF2774D97	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-03-21 14:39:58	289581F0FDA6B93A0FAFE979486AD6FA	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-03-21 14:39:58	2405D24AA28CCC4CC7E0CC0AE008746F	48640	----a-w-	C:\Windows\Sysnative\mshtmler.dll
2015-03-21 14:39:58	2335F6BF8A127E31EB0E2D9A82F188A0	14398976	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-03-21 14:39:58	22C4867C690C38B18B2C1A0B072CD0C4	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-03-21 14:39:58	1FCBE949A67939ADEAE7279E423AA684	135680	----a-w-	C:\Windows\Sysnative\iepeers.dll
2015-03-21 14:39:58	1EC0BF321D3B14D02B9A8BAC134570F4	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-03-21 14:39:58	1EA6500C25A80E8BDB65099C509AF993	143872	----a-w-	C:\Windows\Sysnative\wextract.exe
2015-03-21 14:39:58	1C393E42928BF55B3796E732B678CD5B	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-03-21 14:39:58	1193400D8E29A5A010135FB09A4EB1E8	25021440	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-03-21 14:39:58	0FBEBD36FEFFEE5AF25FDAEE5E35EE99	105984	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2015-03-21 14:39:58	0A9D5716CB1F3AFA73703F39647BB8C2	81408	----a-w-	C:\Windows\Sysnative\icardie.dll
2015-03-21 14:39:58	08892A4ED848386E6B901723C1EF611B	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-03-21 14:39:58	038ABC9BCC86DFF9E181D44E43E2CEBA	52224	----a-w-	C:\Windows\Sysnative\msfeedsbs.dll
2015-03-12 08:07:14	F351B0E520502552734BE70AA5940784	41984	----a-w-	C:\Windows\Sysnative\lpk.dll
2015-03-12 08:07:14	DB0BD8B8D68D8211CA23FBE52DACE549	14336	----a-w-	C:\Windows\Sysnative\dciman32.dll
2015-03-12 08:07:14	85D3E918658C2766780F7DEE5F8FBE57	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2015-03-12 08:07:14	39A108604F51821F6F4E2001E9A1CB60	100864	----a-w-	C:\Windows\Sysnative\fontsub.dll
2015-03-12 08:07:14	1307814243F21EB129852D59B5AB37FB	372224	----a-w-	C:\Windows\Sysnative\atmfd.dll
2015-03-12 08:07:08	DF6104DCED89E13A78BA5539CEF5100A	1202176	----a-w-	C:\Windows\Sysnative\drmv2clt.dll
2015-03-12 08:07:08	A53A63831185FF5339E76221BE45E6B9	842240	----a-w-	C:\Windows\Sysnative\blackbox.dll
2015-03-12 08:07:07	BD311BB00DD0D656C091AC8888C2369D	14632960	----a-w-	C:\Windows\Sysnative\wmp.dll
2015-03-12 08:07:06	FDA5F186596288F0B9ECE9DC7A5AA868	5554104	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-03-12 08:07:06	B2F02AB28864B6D5B5B9BEDA565D41BB	497664	----a-w-	C:\Windows\Sysnative\drmmgrtn.dll
2015-03-12 08:07:06	7F4D59E70DD6E757E96B40570B498D5C	782848	----a-w-	C:\Windows\Sysnative\wmdrmsdk.dll
2015-03-12 08:07:06	3FECBED0EACABD22E024EF4E50CF987B	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-03-12 08:07:05	8DFDB70E3E56C2F1AE09CB3C03E266E5	1574400	----a-w-	C:\Windows\Sysnative\quartz.dll
2015-03-12 08:07:05	5FFEE6CA63E27CBA1F32002743E58F3C	631808	----a-w-	C:\Windows\Sysnative\evr.dll
2015-03-12 08:07:01	410F6B1BE785F3630B4782F8E3D85A24	1069056	----a-w-	C:\Windows\Sysnative\cryptui.dll
2015-03-12 08:07:00	6AEEC5677AD522786CED371A7BEE620C	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-03-12 08:07:00	0BC72EA80234382701EAFC1BE0ECD7E4	432128	----a-w-	C:\Windows\Sysnative\mfplat.dll
2015-03-12 08:06:59	73D81B5B4B2655CB1B5662E770F755D5	532176	----a-w-	C:\Windows\Sysnative\winresume.exe
2015-03-12 08:06:57	DB2D62AA2DF6B1F3D690A9EC9701AA2C	188416	----a-w-	C:\Windows\Sysnative\pcasvc.dll
2015-03-12 08:06:57	94BC902494AFC9F5EBC5FBB61445D73F	82432	----a-w-	C:\Windows\Sysnative\cryptsp.dll
2015-03-12 08:06:56	F88B4A9EA1A956F09D5001D08B546228	641024	----a-w-	C:\Windows\Sysnative\msscp.dll
2015-03-12 08:06:56	29143C7827F9F2AC543E792A8C63FBB0	4121600	----a-w-	C:\Windows\Sysnative\mf.dll
2015-03-12 08:06:55	B7E752FFD95DC61FCB7A6E70E37175E5	693176	----a-w-	C:\Windows\Sysnative\winload.efi
2015-03-12 08:06:55	AE66D26930CA536706078537CB5AC840	325632	----a-w-	C:\Windows\Sysnative\msnetobj.dll
2015-03-12 08:06:55	7A4064169FBA91F39DB1FDC094A18DA8	619056	----a-w-	C:\Windows\Sysnative\winload.exe
2015-03-12 08:06:54	CBE684883A45E5B047DA6B4AC46C2112	55808	----a-w-	C:\Windows\Sysnative\rrinstaller.exe
2015-03-12 08:06:54	C0AE7ABD87254B2789C8CB34AF274A65	296448	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2015-03-12 08:06:54	999A7FD4D9F8B1656F1167D94743E50A	457400	----a-w-	C:\Windows\Sysnative\ci.dll
2015-03-12 08:06:54	93C7D1C3941086162B433107D9E8BCE3	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-03-12 08:06:54	7BC64DEEFD0E6812E21DE89F0CF50A49	500224	----a-w-	C:\Windows\Sysnative\AUDIOKSE.dll
2015-03-12 08:06:54	72D4757510FDA69D729169C00AFC211E	32256	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-03-12 08:06:54	6E974F1C384615DEB0710E44F4847351	126464	----a-w-	C:\Windows\Sysnative\audiodg.exe
2015-03-12 08:06:54	6968D02DC38757C3FBE7ED7C2F9670AA	680960	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2015-03-12 08:06:54	589852B65C91F574E980ABDB8205080A	146944	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2015-03-12 08:06:54	577D0B947B49DB83E2054FA169B2ECBF	229376	----a-w-	C:\Windows\Sysnative\wintrust.dll
2015-03-12 08:06:54	483221CC1AAC288368292899E32B6B9B	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-03-12 08:06:54	3A7BC2DC99D3C5B172465E890B3C3B14	440832	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2015-03-12 08:06:54	3029D8E78E4BF18A0551E22CD4CB892C	371712	----a-w-	C:\Windows\Sysnative\qdvd.dll
2015-03-12 08:06:54	27793FE3FF2D0123896D1A01A2D222C7	37376	----a-w-	C:\Windows\Sysnative\pcadm.dll
2015-03-12 08:06:54	1CD76A83B9E8E9A5A3519B39E28354D9	187904	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2015-03-12 08:06:54	1BE9877B199184D7657BC4CFCB7B4A99	140288	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2015-03-12 08:06:53	FE03B35A22C3D2714B494FC2AB32AC5B	8704	----a-w-	C:\Windows\Sysnative\pcaevts.dll
2015-03-12 08:06:53	F43B09E257121ADC501ABE9367FAA850	9728	----a-w-	C:\Windows\Sysnative\spwmp.dll
2015-03-12 08:06:53	ED6BF1E1C4F40F600DFEC0CB101A1789	9728	----a-w-	C:\Windows\Sysnative\pcalua.exe
2015-03-12 08:06:53	EA285B947EE48103697CDA53D76C9EEC	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-03-12 08:06:53	D3F1F9C784BCCDF2C880669D69FC1970	5120	----a-w-	C:\Windows\Sysnative\msdxm.ocx
2015-03-12 08:06:53	D3F1F9C784BCCDF2C880669D69FC1970	5120	----a-w-	C:\Windows\Sysnative\dxmasf.dll
2015-03-12 08:06:53	C4937B9D6EF4D309A60054D4D00EE9DB	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2015-03-12 08:06:53	BE7DA70C9F4A97CCA9ED78B70BCFC9AC	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-03-12 08:06:53	A84C94CF795E08BBB99E4E145F9E81A3	11264	----a-w-	C:\Windows\Sysnative\pcawrk.exe
2015-03-12 08:06:53	947938F265D7CB99653CDFF2B3C0468D	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2015-03-12 08:06:53	84DB8EB3C184BB549ED90A842020F278	58880	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-03-12 08:06:53	63D3C30B497347495B8EA78A38188969	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-03-12 08:06:53	56FD1BC602EE0E7949F92EE2EE327B72	284672	----a-w-	C:\Windows\Sysnative\EncDump.dll
2015-03-12 08:06:53	29088A5723C81BF75AD909AAB6A91610	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-03-12 08:06:53	0F79883E27BB1AFE2D9BB4656A1CEFCD	11264	----a-w-	C:\Windows\Sysnative\msmmsp.dll
2015-03-12 08:06:53	00EE5D3E16D42F25F7813ACFA10EC803	24576	----a-w-	C:\Windows\Sysnative\mfpmp.exe
2015-03-12 08:06:52	DBCD54B841F2B216B2F0F86E18205C22	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-03-12 08:06:52	77D49942BD5DC97723ABC8A6D2757B6E	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2015-03-12 08:06:51	8364A0F7633414DC5C50A37295B1FAFF	2048	----a-w-	C:\Windows\Sysnative\mferror.dll
2015-03-12 08:06:39	B5CBA15C9DEDBE914D24AA1494A82DF5	3179520	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2015-03-12 08:06:38	35308B0F821CE1E8EDC2FAB96F3073F3	16384	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2015-03-12 08:06:38	15C3986C015EA186BCB4E6096528D656	243200	----a-w-	C:\Windows\Sysnative\rdpudd.dll
2015-03-12 08:06:27	1FB81632476857E8451DDA8A456EF3CE	215552	----a-w-	C:\Windows\Sysnative\ubpm.dll
2015-03-12 08:06:26	01F9FEB7F0C84EA1AC6A9B4D7C6B0435	14177280	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-03-12 08:06:21	DB2904A4CEBC39DF8892A613BEC71512	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-03-12 08:06:21	3807605BDA83C0DA729A5219CEBB9041	341504	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-03-12 08:06:20	FB95F6E11AAD62F24C2DB01E6E9D7BE7	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-03-12 08:06:20	E1404987DCD392AF9D67F6A26CE21175	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-03-12 08:06:20	B6C7729936AAF8E0697F0A7DCA82CED8	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-03-12 08:06:20	9B644AC070576AAE701910874C241DBD	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-03-12 08:06:20	92F920EE9EAF7306B4AB8124D474AB52	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-03-12 08:06:20	7BC39275661EA7DEE54135AA26DF733E	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-03-12 08:06:20	65CF54B1D8CB1B085B6D8BC210E2C45F	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-03-12 08:06:20	6536829F6EA1149527728A210F493B79	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-03-12 08:06:20	54CD467B3A6DA02E9449DB7FB1830612	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-03-12 08:06:20	543553AD3E30CB261C8B436DF644F23E	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-03-12 08:06:20	473BCBFFC55C9FE33D502035322E759D	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-03-12 08:06:20	378B175D0F0A1C38026F280BF6C8D0C6	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-03-12 08:06:20	28CC69865D5DC458EDDCEA35F01D71DA	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-03-12 08:06:20	1DB278E5834B08F9A184F953F2D31FF7	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-03-12 08:06:17	E88A78273D429554B6B2D2BDA945ED9B	1067520	----a-w-	C:\Windows\Sysnative\msctf.dll
2015-03-12 08:06:17	0A4D03A4C0F908B15B8A4C48FB18F197	1424896	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2015-03-12 08:06:16	A0DEE06D68F210CA090FD4D9A33CDC12	3204096	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-03-12 08:05:49	CBA2694BFC61F371181F2BE2BCD66C40	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
====== C:\Windows\Sysnative\drivers =====
2015-03-12 08:07:05	ED6E75158D28D33A2E2A020AC5B2B59D	663552	----a-w-	C:\Windows\Sysnative\drivers\PEAuth.sys
2015-03-12 08:06:57	87BCD1034CBF33537D4D4C251D39BA26	94656	----a-w-	C:\Windows\Sysnative\drivers\mountmgr.sys
2015-03-12 08:06:54	90C53BD47979FB8814F465A08B885102	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-03-12 08:06:21	8BA90F480705D7153AD0060CCA62222A	155576	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-03-12 08:06:21	56ED3EE5FED6BF2FC1305CF872042868	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-03-12 08:06:21	27667A788130A7F7A5858DE27572E6D7	459336	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2015-03-10 13:59:08	8B0E926716A94D545F00CCC67E89BBD2	1944	----a-w-	C:\Windows\Sysnative\drivers\kgpcpy.cfg
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-03-11 08:33:53	--------	d-----w-	C:\Program Files\Registrar Registry Manager
======= C:\PROGRA~2 =====
2015-03-11 11:50:36	--------	d-----w-	C:\PROGRA~2\ESET
======= C: =====
====== C:\Users\Marjo\AppData\Roaming ======
2015-03-23 09:47:58	--------	d-----r-	C:\Users\Marjo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-03-23 07:59:16	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-03-23 07:59:16	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Temp
2015-03-23 07:59:16	--------	d-----w-	C:\Users\Marjo\AppData\Local\Temp
2015-03-23 07:59:16	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-03-23 07:59:16	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-03-03 13:10:12	--------	d-----w-	C:\Users\Marjo\AppData\Roaming\VSRevoGroup
====== C:\Users\Marjo ======
2015-03-21 12:55:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Marjo\Downloads\RSITx64.exe
2015-03-21 12:55:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Marjo\Desktop\RSITx64.exe
2015-03-20 11:45:48	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Downloads\OTL (1).exe
2015-03-20 11:45:06	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Downloads\OTL.exe
2015-03-20 11:45:06	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Desktop\OTL.exe

====== C: exe-files ==
2015-03-21 14:57:00	132862B0FC4A1B7CB45C274DE169DBB2	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-03-21 14:39:59	E931C01E7DD7CEC0BD26CD1B9DA967A3	815272	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-03-21 14:39:59	C1A6E565B2782C09BC40AD749B46D9ED	71680	----a-w-	C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-03-21 14:39:59	B5F3C8A860C39AEC1356A708C2A701A1	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-03-21 14:39:59	5CC34CBBBD90696FD82DB670C38B13FD	469504	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-03-21 14:39:58	EF3BE302619A2C85A1E33FBFAB4C60F8	484864	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-03-21 14:39:58	E4A6577D74B2439974C8018AB5F1BFEA	13312	----a-w-	C:\Windows\System32\msfeedssync.exe
2015-03-21 14:39:58	D3D00B950A174882DAC32F45AB589864	813736	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-03-21 14:39:58	ABDFC692D9FE43E2BA8FE6CB5A8CB95A	13312	----a-w-	C:\Windows\SysWOW64\mshta.exe
2015-03-21 14:39:58	9C7990C221DC5C283BFF5A05CF52D69B	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-03-21 14:39:58	9A33FDDD687A836A1FD478B43C5A95FD	151552	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2015-03-21 14:39:58	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-03-21 14:39:58	95828D670CFD3B16EE188168E083C3C5	13824	----a-w-	C:\Windows\System32\mshta.exe
2015-03-21 14:39:58	887055A3C8DD6C87D200D11EAFDBD45B	74240	----a-w-	C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-03-21 14:39:58	7FA2B43D940DF41E46B8049B59AB6639	718848	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-03-21 14:39:58	7F7F391491C315A4A72EFCAC0D34FA93	25600	----a-w-	C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2015-03-21 14:39:58	6A92CEC8532056791C6832B2725D170D	139264	----a-w-	C:\Windows\SysWOW64\wextract.exe
2015-03-21 14:39:58	53FC62C51CB18C9100A7DFAF2D2A6C47	12800	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2015-03-21 14:39:58	5141B67F14E2B6CBB6ADF851ABE364A5	90112	----a-w-	C:\Windows\System32\SetIEInstalledDate.exe
2015-03-21 14:39:58	46FD16F9B1924A2EA8CD5C6716CC654F	167424	----a-w-	C:\Windows\System32\iexpress.exe
2015-03-21 14:39:58	4399857346DD183683332921500046B1	86016	----a-w-	C:\Windows\System32\RegisterIEPKEYs.exe
2015-03-21 14:39:58	41F922D6A794C0F8425C8436D7077C84	359632	----a-w-	C:\Program Files\Internet Explorer\iediagcmd.exe
2015-03-21 14:39:58	2CA6A98547E799812489E5ADF2774D97	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-03-21 14:39:58	1EC0BF321D3B14D02B9A8BAC134570F4	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-03-21 14:39:58	1EA6500C25A80E8BDB65099C509AF993	143872	----a-w-	C:\Windows\System32\wextract.exe
2015-03-21 12:55:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Marjo\Downloads\RSITx64.exe
2015-03-21 12:55:02	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Marjo\Desktop\RSITx64.exe
2015-03-20 11:45:48	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Downloads\OTL (1).exe
2015-03-20 11:45:06	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Downloads\OTL.exe
2015-03-20 11:45:06	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\Marjo\Desktop\OTL.exe
2015-03-20 10:37:29	0EC0242B7EFA92AFDF538C8C7A70EDDF	5274920	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\Packages\0000724f\DAO.19420491.exe
2015-03-20 08:14:22	304F0859E65A2BBE271BEFCB7851C048	675256	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-03-20 08:14:18	F71300ACCA78CC082E6BD32DB83706FB	172984	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-03-19 08:37:07	9EC37BA26CBCF0A8397D62221C2CD0A1	439696	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\Packages\000071cb\CoProc update.19413874.exe
2015-03-18 08:17:30	06A1352A91DB65C15FEA65BF8E1D8849	5265336	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\Packages\00007150\DAO.19410569.exe
2015-03-18 08:05:25	45A53B304D58A80248A376F6B4DCF488	450480	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\bdwizreg.exe
2015-03-18 08:05:25	3B2B52D90329178A2DACCD7BB984CF08	885616	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\bootoptimizer.exe
2015-03-18 08:05:24	D377ADEDF3C638AF623DC8ABBD30F4CD	533392	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\integratedsupport.exe
2015-03-18 08:05:24	A0679C0F70895CF4545D0455A0DBBC2D	1323920	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe
2015-03-18 08:05:24	5BAE9F987A30464490DA8E35365C6CCA	27680	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\mitm_install_tool.exe
2015-03-18 08:05:23	29EFA73A0CF733000B408912176039F0	803240	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\odscanui.exe
2015-03-18 08:05:23	05DFE426C59555BE90F007A55C1A7D7F	661600	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\bdfvcl.exe
2015-03-18 08:05:19	E1757D6DB8B67F8D01EF31A02119B0E4	471568	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\about.exe
2015-03-18 08:05:19	201D82715DA0138FE9BE61AB17A32C5B	25632	----a-w-	C:\Program Files\Bitdefender\Bitdefender 2015\mitm_install_tool_pc.exe
2015-03-17 08:09:20	9839DA9F59DDABFDD27E2D981A682EAC	5254568	----a-w-	C:\Users\Marjo\AppData\Local\NVIDIA\NvBackend\Packages\00007141\DAO.19407091.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-439288865-1790849198-4091599924-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"Wireless Console 3"="C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"RemoteControl10"="C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"IJNetworkScanUtility"="C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe"
"CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon"
"IJNetworkScannerSelectorEX"="C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll, c:\\windows\\syswow64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 "
"AtherosBtStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"Bdagent"="C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe"
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll, C:\\Windows\\SysWOW64\\nvinit.dll  c:\\windows\\syswow64\\nvinit.dll, C:\\Windows\\SysWOW64\\nvinit.dll   C:\\Windows\\system32\\nvinitx.dll"

==== Startup Registry Disabled ======================

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-]
"Google Update"="\"C:\\Users\\Marjo\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c                                                                                                                                                                                                         "


[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"Nuance PDF Reader-reminder"="\"C:\\Program Files (x86)\\Nuance\\PDF Reader\\Ereg\\Ereg.exe\" -r \"C:\\ProgramData\\Nuance\\PDF Reader\\Ereg\\Ereg.ini\""
"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""


==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iceBackup Autorun]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iceBackup Autorun"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Comnso\\ComnsoBackup\\iceEngine.exe /boot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"
"hkey"="HKLM"
"item"="RtHDVCpl"
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
"backup"="C:\\Windows\\pss\\FancyStart daemon.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Windows\\Installer\\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\\_77B5857C27147149171BE7.exe -d"
"item"="FancyStart daemon"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Fax]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Skype C2C Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineCore1d000a85ebde995.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineUA1d000a85ff05391.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-439288865-1790849198-4091599924-1001Core.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-439288865-1790849198-4091599924-1001UA.job --a------ [Undetermined Task]
C:\Windows\tasks\MarineAquarium_NMDInUseCheck.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Adobe online update program" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS Patch 10430001" [C:\Windows\AsPatch10430001.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe]
"C:\Windows\SysNative\tasks\DeviceDetector" [C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]
"C:\Windows\SysNative\tasks\Driver Booster SkipUAC (SYSTEM)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe]
"C:\Windows\SysNative\tasks\Google Updater and Installer" [C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore1d000a85ebde995" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA1d000a85ff05391" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-439288865-1790849198-4091599924-1001Core" [C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-439288865-1790849198-4091599924-1001UA" [C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\SysNative\tasks\Kromtech updater" [C:\ProgramData\Kromtech\installer.exe]
"C:\Windows\SysNative\tasks\MarineAquarium_NMDInUseCheck" [C:\Users\Marjo\AppData\Local\MarineAquarium\NMD\uninstall.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{824AA900-8B7A-41CD-A376-BC60B88D94E2}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\{01A097D7-08E7-4921-9566-BA7CC5D470EE}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{0A2263C3-F904-4B8D-A23D-A018B2AEBC2B}" [C:\Program Files (x86)\LGNAS\NASMonitor\nasmonitor.exe]
"C:\Windows\SysNative\tasks\{28586848-3FA9-47A3-B62E-FCF953FA3E19}" ["c:\users\marjo\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{3D2A3C48-A865-4FB5-B736-2A96544A73F0}" [C:\Program Files (x86)\LGNAS\NASMonitor\nasmonitor.exe]
"C:\Windows\SysNative\tasks\{64FD62E3-AA23-44B1-9477-7FEB7BAA986D}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{738A42A9-A0D6-4E16-8B7E-B05359360A36}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{9A95B7CA-06F3-4883-95A5-54D049B4232F}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{AF6D5ACF-8EDB-4843-A093-587718C9D2BC}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{BAD43C7F-3AB5-420C-924A-708762593286}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{D09F1E4F-5493-4D34-99F7-F6A375494D91}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{D9CED9B0-2593-48D3-A49A-1702BE8078B5}" [C:\Users\Marjo\Desktop\incredibar_install.exe]
"C:\Windows\SysNative\tasks\{DED5B044-E5A4-443F-9A5F-14B0D8A1D3A4}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\{E0C9D177-E659-4AB9-99E5-0530B5764514}" [C:\Program Files (x86)\LGNAS\NASMonitor\nasmonitor.exe]
"C:\Windows\SysNative\tasks\{EEB8F56E-6FE1-42C8-B758-D46DF581804B}" [C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe]
"C:\Windows\SysNative\tasks\PCMeter\Startup" [C:\Users\Marjo\Desktop\AV en Onderhoud\PCMeterV0.3.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"bdwteff@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff" [11-07-2014 16:33]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Marjo\AppData\Roaming\TomTom\HOME\Profiles\3m0ejt2g.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Carminat TomTom - %ProfilePath%\extensions\RenaultTheme@tomtom.com

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{56C91C4C-7A86-454E-878A-EA78F45DFA38}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{56C91C4C-7A86-454E-878A-EA78F45DFA38} Google  Url="https://www.google.com/search?q={searchTerms}"
{61DB2AF4-1039-468A-91A5-B2EDB4E6ED9E} Google  Url="https://www.google.com/search?q={searchTerms}"

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: PanelClix Software - {FB4D29C1-82DE-4b80-8BB0-A7CDDDCD2773} - C:\Users\Marjo\AppData\Local\Wakoopa Shared\WakoopaBHO.dll
O3 - Toolbar: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Marjo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BdBkpFolder
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll, c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VideAceWindowsService - Unknown owner - C:\ExpressGateUtil\VAWinService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\77XM6240 will be deleted at reboot
C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDJZ2E0C will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2465 folders=713 1182850956 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Marjo\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Marjo\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\77XM6240" deleted
"C:\Users\Marjo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IDJZ2E0C" not found

==== EOF on ma 23-03-2015 at 11:27:16,68 ======================