Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Niek on vr 12-06-2015 at 21:26:23,78.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Niek\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2015-04-06-120500.log	9085 bytes
C:\zoek-results2015-04-06-123256.log	50305 bytes
C:\zoek-results2015-04-18-074350.log	38707 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\predm deleted successfully
C:\PROGRA~2\softutiful deleted successfully
C:\Users\Niek\AppData\Roaming\oursurfing deleted successfully
C:\Users\Niek\AppData\Roaming\SimpleFiles deleted successfully
C:\Users\Niek\AppData\Local\PackageAware deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

Adobe Flash Player ActiveX  
Adobe Photoshop CS6  
Agrar Simulator 2011  
Apple Application Support  
Apple Software Update  
ASUS PCE-N53 WLAN Card Utilities & Driver  
ASUS Product Register Program  
Battle.net  
Battlelog Web Plugins  
Bing Bar  
BitTorrent  
CCleaner  
CinemaPlus-3.2cV05.06  
Craften Terminal 4.0.2  
Crossbrowse  
De SimsT 4  
Definition Update for Microsoft Office 2010 (KB3054883) 64-Bit Edition  
FarSky  
Fences  
Fraps (remove only)  
GamesDesktop 007.282  
GamesDesktop 007.284  
Garbage Truck Simulator  
globalupdate Helper  
Google Chrome  
Google Toolbar for Internet Explorer  
Google Update Helper  
Heavyweight Simulator 1.11  
Intel(R) Chipset Device Software  
Intel(R) Network Connections 19.1.51.0  
Intel(R) Rapid Storage Technology  
Intel(R) USB 3.0 eXtensible Host Controller Driver  
Java 8 Update 45  
Java Auto Updater  
Loadout  
Microsoft .NET Framework 4.5.1  
Microsoft ASP.NET MVC 4 Runtime  
Microsoft Office Access MUI (Dutch) 2010  
Microsoft Office Excel MUI (Dutch) 2010  
Microsoft Office Groove MUI (Dutch) 2010  
Microsoft Office InfoPath MUI (Dutch) 2010  
Microsoft Office Office 32-bit Components 2010  
Microsoft Office OneNote MUI (Dutch) 2010  
Microsoft Office Outlook MUI (Dutch) 2010  
Microsoft Office PowerPoint MUI (Dutch) 2010  
Microsoft Office Professional Plus 2010  
Microsoft Office Proof (Dutch) 2010  
Microsoft Office Proof (English) 2010  
Microsoft Office Proof (French) 2010  
Microsoft Office Proof (German) 2010  
Microsoft Office Proofing (Dutch) 2010  
Microsoft Office Publisher MUI (Dutch) 2010  
Microsoft Office Shared 32-bit MUI (Dutch) 2010  
Microsoft Office Shared MUI (Dutch) 2010  
Microsoft Office Word MUI (Dutch) 2010  
Microsoft Outlook Hotmail Connector 64-bits  
Microsoft Security Client  
Microsoft Security Essentials  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2005 Redistributable (x64)  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030  
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501  
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD  
Microsoft_VC80_CRT_x86  
Microsoft_VC90_CRT_x86  
Minecraft  
Mozilla Firefox 38.0.5 (x86 nl)  
Mozilla Maintenance Service  
MSI GamingApp  
NVIDIA-configuratiescherm 344.60  
NVIDIA 3D Vision controllerstuurprogramma 344.46  
NVIDIA 3D Vision stuurprogramma 344.60  
NVIDIA GeForce Experience 2.1.3  
NVIDIA GeForce Experience Service  
NVIDIA Grafisch stuurprogramma 344.60  
NVIDIA HD Audio-stuurprogramma 1.3.32.1  
NVIDIA Install Application  
NVIDIA LED Visualizer 1.0  
NVIDIA Network Service  
NVIDIA PhysX  
NVIDIA PhysX systeemsoftware 9.14.0702  
NVIDIA ShadowPlay 16.13.56  
NVIDIA Stereoscopic 3D Driver  
NVIDIA Update 16.13.56  
NVIDIA Update Core  
NVIDIA Virtual Audio 1.2.25  
Origin  
PAYDAY 2  
PDF Settings CS6  
PlanetSide 2  
Popcorn Time  
QuickTime 7  
Realtek High Definition Audio Driver  
Reddit Hover Text  
ROBLOX Player for Niek  
Robocraft  
Rust  
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581)  
Security Update for Microsoft Excel 2010 (KB3054845) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2863817) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB3054834) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB3054848) 64-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB3054835) 64-Bit Edition  
Security Update for Microsoft Word 2010 (KB2553428) 64-Bit Edition  
Security Update for Microsoft Word 2010 (KB3054842) 64-Bit Edition  
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition  
Setup  
SHIELD Streaming  
SHIELD Wireless Controller Driver  
SkypeT 7.4  
SmartWeb  
Software voor Intel© Chipset-apparaten  
Space Engineers  
SPORET  
Steam  
Support PL 1.1  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD  
Team Fortress 2  
TeamSpeak 3 Client  
THE SETTLERS - Rise of an Empire  
Theme Hospital  
TomorrowGames  
Total War Battles: KINGDOM  
Trawler Simulator  
Unity Web Player  
Update for Microsoft Access 2010 (KB2837601) 64-Bit Edition  
Update for Microsoft Excel 2010 (KB2956084) 64-Bit Edition  
Update for Microsoft Filter Pack 2.0 (KB2881026) 64-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2965291) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2965296) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2965301) 64-Bit Edition  
Update for Microsoft Office 2010 (KB3054875) 64-Bit Edition  
Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition  
Update for Microsoft OneNote 2010 (KB2965297) 64-Bit Edition  
Update for Microsoft Outlook 2010 (KB3054881) 64-Bit Edition  
Update for Microsoft Outlook Social Connector 2010 (KB2553308) 64-Bit Edition  
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition  
Update for Microsoft Visio 2010 (KB2965292) 64-Bit Edition  
Update for Microsoft Visio Viewer 2010 (KB2881021) 64-Bit Edition  
WinRAR 5.01 (32-bit)  
World of Tanks  
World of Warcraft  
World of Warplanes  

==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
C:\Program Files (x86)\MiuiTab\ProtectService.exe
C:\Program Files (x86)\MiuiTab\cmdshell.exe
C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-6.exe
C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-6.exe
C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-10.exe
C:\Program Files (x86)\MiuiTab\HPNotify.exe
C:\Program Files (x86)\Shop Master\shop_master_helper_service.exe
C:\Program Files (x86)\LuckyTab\LuckyTab.exe
C:\Users\Niek\AppData\Roaming\5D14FF20-1433433296-11DD-B1EB-10C37B6E8879\jnsyD4A9.tmp
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Users\Niek\AppData\Roaming\5D14FF20-1433433296-11DD-B1EB-10C37B6E8879\hnsy1F03.tmp
C:\Users\Niek\AppData\Roaming\5D14FF20-1433433296-11DD-B1EB-10C37B6E8879\nszC76E.tmp
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Niek\AppData\Local\gmsd_nl_284\upgmsd_nl_284.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Users\Niek\AppData\Local\SmartWeb\SmartWebHelper.exe
C:\Users\Niek\AppData\Local\SmartWeb\SmartWebApp.exe
C:\Program Files (x86)\gmsd_nl_284\gmsd_nl_284.exe
C:\Program Files (x86)\gmsd_nl_282\gmsd_nl_282.exe
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
C:\Users\Niek\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Users\Niek\AppData\Local\Temp\nsbDEEC.tmp
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Niek\AppData\Local\Temp\nsm1041.tmp

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\jodekezu deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\jodekezu deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\timuneqi deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\timuneqi deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wovelivy deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\wovelivy deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IHProtect Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\IHProtect Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\globalUpdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\globalUpdatem deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default

user.js not found
---- Lines Edu App removed from prefs.js ----
user_pref("extensions.Edu App.asul", "1433874477378");
user_pref("extensions.Edu App.aul", "1433960724427");
user_pref("extensions.Edu App.irl", true);
user_pref("extensions.Edu App.is", "reckfpNL");
user_pref("extensions.Edu App.ug", "a0a965ef-7d16-4eca-8fb2-78821c02bd70");
---- Lines quick_start removed from prefs.js ----
user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
user_pref("extensions.quick_start.enable_search1", false);
user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
---- Lines Sweet removed from prefs.js ----
user_pref("extensions.xpiState", "{\"app-profile\":{\"searchffv2@gmail.com\":{\"d\":\"C:\\\\Users\\\\Niek\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\
---- Lines Sweet modified from prefs.js ----

user_pref("extensions.enabledAddons", "searchffv2%40gmail.com:0.0.4,sweetsearch%40gmail.com:1.0.0.1031,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:38.0
---- FireFox user.js and prefs.js backups ---- 

prefs_12-06-2015_2135_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

==== Deleting Files \ Folders ======================

C:\PROGRA~2\predm not found
C:\PROGRA~2\softutiful not found
C:\PROGRA~2\PricELeesS deleted
C:\PROGRA~2\youtubeadblocker deleted
C:\PROGRA~2\Reddit Hover Text deleted
C:\Users\Niek\AppData\Roaming\mystartsearch deleted
C:\PROGRA~3\iaeiknknmdlknnohfhkolgpfjdcgiipl deleted
C:\windows\SysNative\Tasks\KJZQF deleted
C:\windows\SysNative\Tasks\ZYICP deleted
C:\windows\SysNative\Tasks\Bidaily Synchronize Task[3c32] deleted
C:\windows\SysNative\Tasks\Bidaily Synchronize Task[973b] deleted
C:\windows\SysNative\Tasks\MTCYOKLOLS1 deleted
C:\Program Files (x86)\Apple Software Update\7aa98114-134b-4967-9011-21c82d11be58.dll deleted
C:\Program Files (x86)\Apple Software Update\55412a66-a48a-473a-b963-fcba143809cd.dll deleted
C:\PROGRA~3\{17cc78d5-23cf-8005-17cc-c78d523ce354} deleted
C:\PROGRA~3\{789a71f5-f53b-7e56-789a-a71f5f53c7d7} deleted
C:\PROGRA~3\19a87fa1ec024bbcbb41931263354405 deleted
C:\PROGRA~3\28341ff220e0446c9fff27c4493d622e deleted
C:\PROGRA~3\7125272534184871677 deleted
C:\PROGRA~2\55412a66-a48a-473a-b963-fcba143809cd deleted
C:\PROGRA~2\globalUpdate deleted
C:\Users\Niek\AppData\Roaming\appdataFr3.bin deleted
C:\Users\Niek\AppData\Roaming\5D14FF20-1433433296-11DD-B1EB-10C37B6E8879 deleted
C:\Users\Niek\AppData\Roaming\5D14FF20-1433433589-11DD-B1EB-10C37B6E8879 deleted
C:\Users\Niek\AppData\Roaming\5D14FF20-1433434732-11DD-B1EB-10C37B6E8879 deleted
C:\PROGRA~3\FlashBeat deleted
C:\PROGRA~3\IHProtectUpDate deleted
C:\PROGRA~3\WindowsMangerProtect deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Niek\AppData\Local\gmsd_nl_282 deleted
C:\Users\Niek\AppData\Local\5D14FF20-1433440760-11DD-B1EB-10C37B6E8879 deleted
C:\Users\Niek\AppData\Local\globalUpdate deleted
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-6.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-7.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-10_user.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-3.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-5.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-5_user.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-6.job deleted
C:\Windows\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-7.job deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-6 deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-7 deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-10_user deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-3 deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-5 deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-5_user deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-6 deleted
C:\windows\SysNative\Tasks\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-7 deleted
C:\Users\Niek\AppData\LocalLow\SmartWeb deleted
C:\Windows\tasks\BYAIAMUF.job deleted
C:\windows\SysNative\tasks\BYAIAMUF deleted
C:\windows\SysNative\tasks\LuckyTab deleted
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job deleted
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job deleted
C:\windows\SysNative\tasks\globalUpdateUpdateTaskMachineCore deleted
C:\windows\SysNative\tasks\globalUpdateUpdateTaskMachineUA deleted
C:\windows\SysNative\tasks\SmartWeb Upgrade Trigger Task deleted
C:\windows\SysNative\drivers\{42f8f729-2fa8-44bb-b01a-28c57a8162c7}w64.sys deleted
C:\windows\SysNative\drivers\{ab573ef7-acd0-4715-a5c0-420d2ee2cd93}w64.sys deleted
C:\windows\SysNative\drivers\{e078d347-5ebe-48a8-818f-0444372a2182}Gw64.sys deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Users\Niek\Documents\Optimizer Pro deleted
C:\Users\Niek\Desktop\Continue GamesDesktop Uninstaller.lnk deleted
C:\Users\Niek\AppData\Roaming\BYAIAMUF.exe deleted
C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default\extensions\sweetsearch@gmail.com deleted
"C:\Users\Niek\AppData\Roaming\BYAIAMUF" deleted
"C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default\searchplugins\istartsurf.xml" deleted
"C:\PROGRA~3\5aae4531dc23473f8da7a5bac9f3a51f\5aae4531dc23473f8da7a5bac9f3a51f.exe" deleted
"C:\PROGRA~3\a872cd9c51ee4e12b7be65c5473b2537\a872cd9c51ee4e12b7be65c5473b2537.exe" deleted
"C:\PROGRA~2\gmsd_nl_282\gmsd_nl_282.exe" deleted
"C:\PROGRA~2\gmsd_nl_284\gmsd_nl_284.exe" deleted
"C:\PROGRA~2\LuckyTab\LuckyTab.exe" deleted
"C:\PROGRA~2\gmsd_nl_282\gmsd_nl_282.exe" deleted
"C:\PROGRA~2\gmsd_nl_284\gmsd_nl_284.exe" deleted
"C:\Users\Niek\AppData\Local\gmsd_nl_284\upgmsd_nl_284.exe" deleted
"C:\Users\Niek\AppData\Local\SmartWeb\SmartWebApp.exe" deleted
"C:\Users\Niek\AppData\Local\SmartWeb\SmartWebHelper.exe" deleted
"C:\Users\Niek\AppData\Local\SmartWeb\swhk.dll" deleted
"C:\Users\Niek\AppData\Local\gmsd_nl_284\upgmsd_nl_284.exe" deleted
"C:\PROGRA~3\5aae4531dc23473f8da7a5bac9f3a51f" deleted
"C:\PROGRA~3\a872cd9c51ee4e12b7be65c5473b2537" deleted
"C:\PROGRA~2\gmsd_nl_282" deleted
"C:\PROGRA~2\gmsd_nl_284" deleted
"C:\PROGRA~2\LuckyTab" deleted
"C:\PROGRA~2\gmsd_nl_282" deleted
"C:\PROGRA~2\gmsd_nl_284" deleted
"C:\Users\Niek\AppData\Local\gmsd_nl_284" deleted
"C:\Users\Niek\AppData\Local\SmartWeb" deleted
"C:\Users\Niek\AppData\Local\gmsd_nl_284" deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8136 MB
CPU Info: Intel(R) Core(TM) i5-4460  CPU @ 3.20GHz
CPU Speed: 3194,6 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Realtek Digital Output(Optical) | 
Realtek Digital Output (Realtek | 
Display Adapters: NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: ASUS PCE-N53 300Mbps 11n Dual band Wireless LAN PCI-E Card | Intel(R) Ethernet Connection (2) I218-V
CD / DVD Drives: 1x (D: | ) D: ASUS    DRW-24F1ST   a
Ports: COM1 LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  931,4GB | N:  931,5GB
Hard Disks - Free: C:  633,8GB | N:  930,8GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 05/29/14 | ALASKA - 1072009
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK COMPUTER INC. Z97-A
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Firefox	38.0.5
Internet Explorer Version: 11.0.9600.17843 
Mozilla Firefox version: 38.0.5 (x86 nl)
Google Chrome version: 43.0.2357.81
Sun Java version: 1.8.0_45 (32-bit) 
Sun Java version: 1.8.0_45 (64-bit) 

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-06-10 18:25:25	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\prleth.sys
2015-06-10 18:25:25	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\hgfs.sys
====== C:\Users\Niek\AppData\Local\Temp ====
2015-06-12 19:33:42	FEBFF2C363C7F7664687EEFE8253087E	16384	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\serlib.dll
2015-06-12 19:33:42	FE3F848E2A306D586AB8F5433738D8DB	58368	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\nsCBHTML5.dll
2015-06-12 19:33:42	5F13DBC378792F23E598079FC1E4422B	40960	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\nsisunz.dll
2015-06-12 19:33:36	B140459077C7C39BE4BEF249C2F84535	67584	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\Math.dll
2015-06-12 19:33:36	94BA775C8A1F4D6C9BB1966EDDCE22B5	26112	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\manlib.dll
2015-06-12 19:33:36	7579ADE7AE1747A31960A228CE02E666	4096	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\UserInfo.dll
2015-06-12 19:33:36	5AFD4A9B7E69E7C6E312B2CE4040394A	22528	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\blowfish.dll
2015-06-12 19:33:36	5264F7D6D89D1DC04955CFB391798446	6656	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\GetVersion.dll
2015-06-12 19:33:36	2B7007ED0262CA02EF69D8990815CBEB	25088	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\registry.dll
2015-06-12 19:33:35	C17103AE9072A06DA581DEC998343FC1	11264	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\System.dll
2015-06-12 19:33:35	C10E04DD4AD4277D5ADC951BB331C777	9728	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\nsDialogs.dll
2015-06-12 19:33:04	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsdA4B7.exe
2015-06-12 19:32:34	91B7C114BD09B2A64BA1C7E6088D65F3	426496	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsw310F.tmp\NSISHelper.dll
2015-06-12 19:32:14	F02155FA3E59A8FC48A74A236B2BB42E	20992	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsrE561.tmp\inetc.dll
2015-06-11 15:45:28	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsdEB67.exe
2015-06-10 18:25:38	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsd690F.exe
2015-06-09 18:36:46	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfF640.exe
2015-06-09 18:23:07	AF8BE6A5B57C82C6D66D39B7A9C0E693	276048	----a-w-	C:\Users\Niek\AppData\Local\Temp\setup_648.exe
2015-06-08 15:44:06	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfCEB4.exe
2015-06-06 16:14:50	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdf384F.exe
2015-06-06 11:25:26	59EFE7758FE0497445EF180A333C0F62	2534400	----a-w-	C:\Users\Niek\AppData\Local\Temp\64C0\temp\TyHelpTFUO.xyz.exe
2015-06-06 11:24:08	79528B68209C77522784BB57DAEFE9B9	2604032	----a-w-	C:\Users\Niek\AppData\Local\Temp\64C0\temp\priceless_p_soft_partner.exe
2015-06-06 11:21:06	F3E0BCAC0A50EA3B7571407A7DA325C7	32768	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateHelper.msi
2015-06-06 11:21:06	A9ECA902185F41CF0FDEF207705B8C8C	155648	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\psuser.dll
2015-06-06 11:21:06	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateOnDemand.exe
2015-06-06 11:21:06	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateBroker.exe
2015-06-06 11:21:06	613B73392333921CB5D6455F28BBB77C	155648	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\psmachine.dll
2015-06-06 11:21:06	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateCrashHandler.exe
2015-06-06 11:21:06	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdate.exe
2015-06-06 11:21:06	3085B51E4A17B80E72E555F9120995FC	220672	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\npglobalupdateUpdate4.dll
2015-06-06 11:21:06	27AF3BD17EEA2E66175D94CBA0DBC1C2	761856	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\goopdate.dll
2015-06-06 11:20:53	3F00DAE9BD82FB8A3FF7DAC27CE85980	13998488	----a-w-	C:\Users\Niek\AppData\Local\Temp\6246.exe
2015-06-06 11:20:05	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfFFD1.exe
2015-06-06 11:18:15	875D1153314632D8D6B6F06255EA9CAE	1918040	----a-w-	C:\Users\Niek\AppData\Local\Temp\1484.exe
2015-06-05 13:46:56	55CED1E147F8204A239519CE611F73C2	306688	----a-w-	C:\Users\Niek\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe
2015-06-05 13:46:49	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdf5782.exe
2015-06-05 13:31:21	715C98AA5955E7E07FB99D87F522E73A	200192	------w-	C:\Users\Niek\AppData\Local\Temp\jna\jna2237633042754507157.dll
2015-06-05 13:16:29	10FFABC748D68C40B68F883058C9B932	50225	----a-w-	C:\Users\Niek\AppData\Local\Temp\81433510186\TE5FLEpSTA==10700.exe
2015-06-05 13:16:26	CAE8A99977CBA4C9F115F2A8957FB234	779816	------w-	C:\Users\Niek\AppData\Local\Temp\beddfafhca.exe
2015-06-05 13:16:21	B9BCDE20B67FD9B3E703E8DD9CBA0A64	653048	----a-w-	C:\Users\Niek\AppData\Local\Temp\mytmpinstaller.exe
2015-06-04 16:18:50	FEFEF2F226FD6BE184BC4A3378B02AAF	155648	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\psmachine.dll
2015-06-04 16:18:50	FC7A2F466F7A0F3E873077505719C1A1	143360	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\GoogleUpdateHelper.msi
2015-06-04 16:18:50	F98DE4108614E4BB81E95E58E36C7000	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\GoogleUpdateBroker.exe
2015-06-04 16:18:50	D858BA2EE718B1DB1CED20646E641D08	68608	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\GoogleUpdate.exe
2015-06-04 16:18:50	8D90BB3A36521B50D0E512A781E36871	155648	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\psuser.dll
2015-06-04 16:18:50	7E767B342E55EB1DFD74A65D24EA4B70	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\GoogleUpdateOnDemand.exe
2015-06-04 16:18:50	5960E5DEAB14363F71E389BF2FCB9FBC	220672	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\npGoogleUpdate4.dll
2015-06-04 16:18:50	2A0049961A76AB15B435DBD081ED0E2C	761856	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\goopdate.dll
2015-06-04 16:18:50	03114DADBD9977FC823F95B21FB987E7	72872	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.145344\GoogleCrashHandler.exe
2015-06-04 16:07:46	875D1153314632D8D6B6F06255EA9CAE	1918040	----a-w-	C:\Users\Niek\AppData\Local\Temp\8206.exe
2015-06-04 16:02:49	1991A5123F300EA651D51489237FD147	5847448	----a-w-	C:\Users\Niek\AppData\Local\Temp\optprosetup.exe
2015-06-04 16:01:44	8B7ED3C133F78DBCC24F0EA9A624DD11	2096898	----a-w-	C:\Users\Niek\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_90.exe
2015-06-04 16:01:43	F87C1DBD57C44E449F91658512E02615	307200	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsdCD69.exe
2015-06-04 16:01:30	7638B31860EDD186E9C4DA19B36787C6	2098983	----a-w-	C:\Users\Niek\AppData\Local\Temp\KwTvicxqqr.exe
2015-06-04 15:57:12	B6A5DA6DA64F09720139FE5B72648D45	644607	----a-w-	C:\Users\Niek\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_64.exe
2015-06-04 15:57:12	3B8CA153116AECE361A92C9C307EE50C	5322463	----a-w-	C:\Users\Niek\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_85.exe
2015-06-04 15:57:10	42088EF271CA8F06A0C9B14D9F3F63AA	695976	----a-w-	C:\Users\Niek\AppData\Local\Temp\~ld135E\fgrs\tmp\wpm_v20.0.0.2289.exe
2015-06-04 15:57:10	3D34AF4890BB90D8F430176F4A0AAC10	2559688	----a-w-	C:\Users\Niek\AppData\Local\Temp\~ld135E\fgrs\tmp\XTab_Setup(2521).exe
2015-06-04 15:57:08	040401B7BBA5D747355AF9BECC2BAF91	2293624	----a-w-	C:\Users\Niek\AppData\Local\Temp\ZigSe4bGsV.exe
2015-06-04 15:56:57	F87C1DBD57C44E449F91658512E02615	307200	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsd76A2.exe
2015-06-04 15:56:56	F87C1DBD57C44E449F91658512E02615	307200	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsd6FDF.exe
2015-06-04 15:55:52	EB76AC83222E5C1F99193945AE376839	2359808	----a-w-	C:\Users\Niek\AppData\Local\Temp\7LQdL1VG74.exe
2015-06-04 15:55:46	EB76AC83222E5C1F99193945AE376839	2359808	----a-w-	C:\Users\Niek\AppData\Local\Temp\ZZpOKMMzKq.exe
2015-06-04 15:53:28	2A5F246B97D00F77B78D15F72923839B	61981	----a-w-	C:\Users\Niek\AppData\Local\Temp\Uninstall.exe
2015-06-04 15:50:23	8CF5CF52217D69B2E949F92DD6CA58F0	483808	----a-w-	C:\Users\Niek\AppData\Local\Temp\pHZ7jgQWTB.exe
2015-06-04 15:49:04	BEE1DF4FEA8D608417317FAC588C800E	641816	----a-w-	C:\Users\Niek\AppData\Local\Temp\qzTvfy2kE0.exe
2015-06-04 15:48:51	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Niek\AppData\Local\Temp\siveyoRfSZ.exe
2015-06-04 15:48:43	11767987375BC3D29C12379D461A75E3	465152	----a-w-	C:\Users\Niek\AppData\Local\Temp\8xqWOG9Gma.exe
2015-06-04 15:48:09	F0D1B4512FF2DCD10B3F5C66302BF9DA	4089792	------w-	C:\Users\Niek\AppData\Local\Temp\Rar$EXa0.715\Adobe_Photoshop_CS6_Extended_Serial_Number_Cracked_Full_downloader.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-06-10 18:10:11	9E68E1BDEBD85FC8803707370BE0FC6E	641536	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2015-06-10 18:10:11	641A14E6AC492ED45BC68815E2E2F566	3989440	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-10 18:10:11	2CA16814DA3C5B2D8C7E70DC47A45ED1	551424	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-06-10 18:10:10	EA141596564AE0C670EDD0F2636EC29C	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-06-10 18:10:10	BBABC6702529CFADAC0EC2B28168A288	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-06-10 18:10:10	8C7635292CFF4901F058269454A1D64E	1310744	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-06-10 18:10:10	583FFF12D2F0D6E1A8746462C433895F	3934144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-10 18:10:10	3C1BE79C3CE6EB378108B11D94CA1072	364544	----a-w-	C:\Windows\SysWOW64\tracerpt.exe
2015-06-10 18:10:09	F85FA29340A536C8E0A16151B9B03923	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-06-10 18:10:09	A9E8F961F7FE1EDEEF8F46EEB800F2D8	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-06-10 18:10:09	9A50B2567918BF7DDD600ECE5DB5ED76	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-06-10 18:10:09	6C06D2B1CF88AB83F1CFB24928F63107	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-06-10 18:10:09	65A5E27C2217D606E212B6088CCD6104	92160	----a-w-	C:\Windows\SysWOW64\sechost.dll
2015-06-10 18:10:09	629AD3FDA168D82D459164044A29F9BB	40448	----a-w-	C:\Windows\SysWOW64\typeperf.exe
2015-06-10 18:10:09	5643A88C6DA8AAEC9CE2845431942650	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-06-10 18:10:09	4238391DE3E3FDCD2C731C1E4E0F402C	635392	----a-w-	C:\Windows\SysWOW64\tdh.dll
2015-06-10 18:10:09	3B5DA649BF7B7D07510C06DE0AEEB4EB	82944	----a-w-	C:\Windows\SysWOW64\logman.exe
2015-06-10 18:10:08	FCA6EFFEE6D7D42E794F0E538297026C	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-06-10 18:10:08	FB224B0A63B8F58E91FE8A314AD295AD	17408	----a-w-	C:\Windows\SysWOW64\diskperf.exe
2015-06-10 18:10:08	F72A9953199EF5807D595AE3694B5D01	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-06-10 18:10:08	D877133532CE090502B1166B360E9516	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-06-10 18:10:08	7A9F94E0F53C8F6E09405351AC104A3C	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-06-10 18:10:08	558227F567E977D71B9182013EF03E9C	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-06-10 18:10:08	3E6731BF36A7D6C62D09671B427B6B67	37888	----a-w-	C:\Windows\SysWOW64\relog.exe
2015-06-10 18:10:08	2D23A10FBFA09DC1B61799128BBA91A2	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-06-10 18:10:07	F81920ADB15012CF4E9FF8238C85686A	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-06-10 18:10:07	6C730482615C97B923B88C648FF554A3	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-06-10 18:10:06	52C869A640B8169D7C8460FB1646ABF5	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-06-10 18:10:05	EEA17E843EE2EE50D623BEACF50BD815	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-06-10 18:10:04	EC6E5AE2ECFE7A335B370865A1158EF8	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-06-10 18:10:04	7E7933E63BBE2BE71CC908EF140458EF	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-06-10 18:10:04	619D5101114C71E1A4A585C5E68301B7	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-06-10 18:10:04	2E65BF3D85BB2C831669FBCBDE6C9879	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-06-10 18:09:33	9F6066005D8B8620598085C7499E9B70	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-10 18:09:33	96837E5864777688477AF6DE2332C06D	503808	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-06-10 18:09:33	8C3A03295F56D1FFB51D9D05DA42B12D	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-10 18:09:33	81C1182A9EE7AC4D21187811DE66A7D0	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-06-10 18:09:33	7C9F8DB66A56306C5BBE97F9FC0F01EF	342736	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 18:09:33	6B7210618D7E2CE0404ECF748701253A	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 18:09:33	53E9614ADFA6A40A452BA014CEF6F261	1309696	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-06-10 18:09:33	185490A6C3BEDAC5EF547314F68AB07B	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-10 18:09:32	F26680AF396F89F7ABFDA1D1D6B62011	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 18:09:32	2DED8A99E45053C42DD21D6937D3960C	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 18:09:31	B6D8148C1C697A7BF04EE0FE82408B6A	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 18:09:31	975421AC32F9F6E27A58F75DAB4B5871	19607040	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-06-10 18:09:31	5C06EE62F06E990E9521EA80B8D4D4B8	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-06-10 18:09:30	E21AE910DF0C5CB7D46D8FA17A4567DE	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-10 18:09:30	C93AE4D14AEF5169791B35D97AE7C9FC	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-06-10 18:09:30	C27C8CACEBC712BE2AD791715E9734EC	664064	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-06-10 18:09:30	927E38A35E4DFC4E294BD130BAA6F759	2278912	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-06-10 18:09:30	7DBCBB1647B7CD71E2039C1B50A12717	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 18:09:30	4ABEEF30EA5B9F4718312DCB60B6C9BC	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 18:09:30	1A628C1F5470F0AF21E37E425026F27A	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-06-10 18:09:30	17B0852D8202A872C3E6D01B518B6A4E	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-06-10 18:09:29	DB254D50B4527C2821C537E0587B44E8	12829696	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-06-10 18:09:29	8C8B8C78C0CCD5D36ABCB115B0B581E1	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-06-10 18:09:28	FB5C9234E4BF6BDAF4A954763A4582BA	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-06-10 18:09:28	EF853EA2A6A7BD891CCF31B0C2915352	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-06-10 18:09:28	E4EB138060BAE0DBAB1A3B71A3141FE7	1950720	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-06-10 18:09:28	85E21CCF38166E0D6DE2E42D9D3823BD	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-10 18:09:28	3FD7E6DB5D81FE400DB4D81D278596E6	4305920	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-06-10 18:09:03	A98E8F79C738CAF23C152DBCABD978FE	11411456	----a-w-	C:\Windows\SysWOW64\wmp.dll
2015-06-10 18:09:02	DA27A4EA7B7C77FAFDB3F94D83E310C1	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2015-06-10 18:09:02	605E9B2CFA3445ED7716D0B345EE21EC	8192	----a-w-	C:\Windows\SysWOW64\spwmp.dll
2015-06-10 18:09:02	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\msdxm.ocx
2015-06-10 18:09:02	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\dxmasf.dll
2015-06-10 18:07:08	58788565442368B0615DDAF1D452B843	530432	----a-w-	C:\Windows\SysWOW64\comctl32.dll
2015-06-09 18:22:46	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\SysWOW64\Number of results
2015-06-05 13:15:22	85B301E146459996706D84FB5FB7F160	4	----a-w-	C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-06-10 18:10:19	52DEF4C743C2EABD6BD3EDC790A0E778	1021440	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-06-10 18:10:18	E87D4371B24BC9E5BAE95AEA60FFD959	193536	----a-w-	C:\Windows\Sysnative\aepic.dll
2015-06-10 18:10:18	CFF429F2234C1D1A5993E80F46C37CFB	1119232	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-06-10 18:10:18	B23AB4C401E2DE02C47B7497D41E2318	757248	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-06-10 18:10:18	6F07FC190DBCB42C8A5319235F72F906	423424	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-06-10 18:10:18	6E2EB5A36C3CCD917F7FF9BED7C1390E	45568	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-06-10 18:10:18	587BBA3B3959144334700EC48232712F	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-06-10 18:10:18	2DCA988113A02EB9BCB98A5DC2D34E57	700416	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-06-10 18:10:12	AA5319FA8602676B5D3A2B4A1355896D	1255424	----a-w-	C:\Windows\Sysnative\diagtrack.dll
2015-06-10 18:10:12	6ECD6D92F43C2DC55099F892978D5BE7	728576	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-06-10 18:10:11	93A05407F8E53BC731C42AAD56163F80	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-06-10 18:10:11	8DCA1C70AF170C3FBCE47A4F49BFC887	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-06-10 18:10:11	6FDF03A3B110C5264F52F979335AE301	1162752	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-06-10 18:10:11	4FFD08A01047EF6B58F6EB4E6D001A8D	879104	----a-w-	C:\Windows\Sysnative\advapi32.dll
2015-06-10 18:10:10	FF9BBFAE899091C1FF0D1A3F2C587911	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-06-10 18:10:10	CCB352B939B77B38983DD878C547451F	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-06-10 18:10:10	9E2A2028228645DD57EF45A02CAC0CCE	5569984	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-06-10 18:10:10	996EE6571ADB880A60846DD02C8D5869	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-06-10 18:10:10	6703266C1E56157B5965F9AC868A20AC	404992	----a-w-	C:\Windows\Sysnative\tracerpt.exe
2015-06-10 18:10:10	53042708C242959B3924242FBBE297B1	1728960	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-06-10 18:10:10	48C30C54194142910FB6B86D308220ED	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-06-10 18:10:10	37DFCC91E419952772E02F2B3BBB2E2B	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-06-10 18:10:10	2313AF8D5A9CEB4A55400A01DD311A95	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-06-10 18:10:10	16154A6682B1552DEAB953BFA4B8E955	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-06-10 18:10:09	E20BF3FA89DE67B00ED713B5254C0BF0	47104	----a-w-	C:\Windows\Sysnative\typeperf.exe
2015-06-10 18:10:09	AD54856A16B635720B0BE5FAF44526FC	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-06-10 18:10:09	A929B9ABA1083AF35ECE7BD63AF3E42F	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-06-10 18:10:09	A5F57F4866C2DC7F8215058D7D56BD21	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-06-10 18:10:09	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-06-10 18:10:09	858F04B3C39239972959E9EE97CACAE4	43008	----a-w-	C:\Windows\Sysnative\relog.exe
2015-06-10 18:10:09	7C5E375F20F639607376351A8BCC0647	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-06-10 18:10:09	66DF73B202105406602941778792FE3D	879104	----a-w-	C:\Windows\Sysnative\tdh.dll
2015-06-10 18:10:09	4F90A7A0FCBC0ED18E573917860062FF	113664	----a-w-	C:\Windows\Sysnative\sechost.dll
2015-06-10 18:10:09	210E7D1EA34369194BE09493784E27BE	104448	----a-w-	C:\Windows\Sysnative\logman.exe
2015-06-10 18:10:09	17A6A9AAD04CCC6EE53290585BFC43AF	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-06-10 18:10:09	03BA5D20751137F3A705B389C52DB8D6	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-06-10 18:10:08	D68690450978D127E030FB14E9B2023B	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-06-10 18:10:08	6ACD3C75BE449F039E1A4E43424D5B6F	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-06-10 18:10:08	5EC57AC6DC16CB8A058CA019AA2C188D	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-06-10 18:10:08	5A17FF38EDE95B2313E428BF444126D7	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-06-10 18:10:08	289D99B0879C6ED5C6D1B3A856CA6DA3	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-06-10 18:10:08	20BD408AC3F8576997D6A47F48A1C5B2	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-06-10 18:10:08	1B93381366141875D8EE7EC1085236B9	19456	----a-w-	C:\Windows\Sysnative\diskperf.exe
2015-06-10 18:10:08	13DE715D959DD502CFD52DC920408B33	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-06-10 18:10:08	11D5815F0DC571CE3C72213B375860B1	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-06-10 18:10:05	AF557D115972A73964FC8F209300948A	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-06-10 18:10:04	8A4EB32C7C948F70EAC6F85063596A39	36864	----a-w-	C:\Windows\Sysnative\UtcResources.dll
2015-06-10 18:10:04	837BBE4170D5A75F293BD6F294A8FE34	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-06-10 18:10:04	6E882D7CA34073890107559B5A515A24	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-06-10 18:10:04	6ACFCC28E4D60B5A931D8749332A14E2	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-06-10 18:09:33	9E2B8C0601E3D460F78F0233B509CE4F	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-06-10 18:09:33	9DB8E01D5A546FAFCACE95489E351186	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-06-10 18:09:33	73509D13542A90E260F45D1D6D4100A8	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-06-10 18:09:33	70D24021ED327CE7FFA9DEE327BB4C6B	720384	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-06-10 18:09:32	4BD747AAF01C480901B3E777EC48826B	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-06-10 18:09:31	3C3E159F284F51D55DB59C3D0B843979	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-06-10 18:09:30	D202078FBA3A77B85D39669EE4110DE2	389840	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-06-10 18:09:30	86FDFEA67833DB261EC01A777594EDCF	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-06-10 18:09:30	6ABFC5736EC920C4436F32111F5CBCEE	1545728	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-06-10 18:09:30	57DFACB53ED16190EF732E2430B39741	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-06-10 18:09:30	36F3718E67F442F54AB4A39DCDD8FD19	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-06-10 18:09:30	083BCA14FCE290D682D8DAC9372CBF23	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-06-10 18:09:29	FF84182188CA8F0DC28CFED06C9B7816	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-06-10 18:09:29	7F8F9AE03D1BA4354671E05F07A40F1A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-06-10 18:09:29	5F8EE9311ECF078CD9426874FFAD660C	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-06-10 18:09:28	AFF5C12099B87FA645F8867701729894	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-06-10 18:09:28	6E295C7364DAEB151CC0E98434B6AC92	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-06-10 18:09:28	33B5F1A727FACDEA7CDA0E35FFAADDCF	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-06-10 18:09:28	0EDA3219FA027A486AA11269355AB279	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-06-10 18:09:27	AE5A2843B4A2E1E558B9EE13EF62CCE5	14404096	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-06-10 18:09:27	ACD6FE6C82B93813F023FC01A51CB940	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-06-10 18:09:27	8909A24DA8B5C426CF6595BA843B6CC5	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-06-10 18:09:27	83781DF625A4448B39410D7FA2BDC48D	816640	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-06-10 18:09:27	4A5A84B457C72E79A64AE4036EC6BB0E	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-06-10 18:09:27	3854BFE1C0F14872C94501421CC40813	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-06-10 18:09:27	35622F5A652C4E16774234DCA0026E74	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-06-10 18:09:26	CFA52E2FE8E623042A1EEF96EB1B9481	6026240	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-06-10 18:09:26	417F80E4AFBA1AA9EBBD618F1C6D9165	2426880	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-06-10 18:09:26	2BC2D3A41BB755487FD55C09938F00BC	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-06-10 18:09:26	16091938F6CDBCCCBA1CBE24600121BC	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-06-10 18:09:26	06A8CE6C3AE6B7916F026B0EFDDCAAA5	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-06-10 18:09:25	A29BAFC1543F9D2234AFFFEA9BCE76C8	24917504	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-06-10 18:09:03	9D80A82B0BB77AC3EF6A87FA0C534E20	14635008	----a-w-	C:\Windows\Sysnative\wmp.dll
2015-06-10 18:09:02	834FD7C31EA16D59CC3B2DC60F2F2620	9728	----a-w-	C:\Windows\Sysnative\spwmp.dll
2015-06-10 18:09:02	51ECEE70F33601310DDEF3EEE39550D3	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2015-06-10 18:09:02	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\msdxm.ocx
2015-06-10 18:09:02	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\dxmasf.dll
2015-06-10 18:07:08	51F89CE2D0FEC66070354504E6C4C3E4	633856	----a-w-	C:\Windows\Sysnative\comctl32.dll
2015-06-10 18:05:30	1EE2DBA5AD2E5EB618C7FB187C2CFDF4	3206144	----a-w-	C:\Windows\Sysnative\win32k.sys
====== C:\Windows\Sysnative\drivers =====
2015-06-10 18:10:10	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-06-10 18:10:10	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-06-10 18:03:41	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\Sysnative\drivers\stream.sys
====== C:\Windows\Tasks ======
2015-06-06 11:24:04	FCE0F82FD28DB28BE29712AE80C5A66B	360	----a-w-	C:\Windows\Tasks\Bidaily Synchronize Task[973b].job
2015-06-06 11:20:16	36708922C223E14A45E463D9438E4CB0	4076	----a-w-	C:\Windows\Sysnative\Tasks\Crossbrowse
2015-06-06 11:20:15	4BAB492C255CCB7B571417803D974141	1054	----a-w-	C:\Windows\Tasks\Crossbrowse.job
2015-06-04 16:25:22	7328CF46EF5C72397DBE083A40BC131D	506	----a-w-	C:\Windows\Tasks\shop_master_helper_service.job
2015-06-04 16:25:22	242DC630B9B1490D4C602B38A4526FE2	3458	----a-w-	C:\Windows\Sysnative\Tasks\shop_master_helper_service
2015-06-04 16:20:07	3697FB40D9F38AC7D7D5DB42F7E182E7	3146	----a-w-	C:\Windows\Sysnative\Tasks\{91905C4C-73A9-4FBF-9EB8-9708486E1B90}
2015-06-04 16:02:48	F68ED09676D58701850ADFF6C7762BD3	338	----a-w-	C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job
2015-06-04 16:01:39	C504CB8ABECA6C5648338612C27AA532	328	----a-w-	C:\Windows\Tasks\MTCYOKLOLS1.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-06-09 18:07:26	--------	d-----w-	C:\PROGRA~2\Mozilla Maintenance Service
2015-06-06 11:21:01	--------	d-----w-	C:\PROGRA~2\CinemaPlus-3.2cV05.06
2015-06-06 11:19:59	--------	d-----w-	C:\PROGRA~2\Crossbrowse
2015-06-04 16:25:21	--------	d-----w-	C:\PROGRA~2\Shop Master
2015-06-04 16:18:38	--------	d-----w-	C:\PROGRA~2\GUPlayer
2015-06-04 15:57:20	--------	d-----w-	C:\PROGRA~2\MiuiTab
2015-06-03 13:51:09	--------	d-----w-	C:\PROGRA~2\Stardock
======= C: =====
====== C:\Users\Niek\AppData\Roaming ======
2015-06-10 19:38:39	--------	d-----w-	C:\Users\Niek\AppData\Roaming\FarSky
2015-06-10 18:25:04	--------	d-----w-	C:\Users\Niek\AppData\Roaming\MailUpdate
2015-06-09 18:23:54	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\FlashGamesRockstar
2015-06-09 18:07:34	--------	d-----w-	C:\Users\Niek\AppData\Roaming\Mozilla
2015-06-09 18:07:34	--------	d-----w-	C:\Users\Niek\AppData\Local\Mozilla
2015-06-06 11:20:17	--------	d-----w-	C:\Users\Niek\AppData\Local\Crossbrowse
2015-06-04 16:11:15	--------	d-----w-	C:\Users\Niek\AppData\Local\GWX
2015-06-03 13:51:12	--------	d-----w-	C:\Users\Niek\AppData\Roaming\Stardock
2015-06-03 13:21:53	--------	d-----w-	C:\Users\Niek\AppData\Roaming\Sony
2015-05-25 18:52:40	--------	d-sh--w-	C:\Users\Niek\AppData\Local\EmieBrowserModeList
====== C:\Users\Niek ======
2015-06-10 18:25:04	--------	d-----w-	C:\ProgramData\MailUpdate
2015-06-09 18:07:27	--------	d-----w-	C:\ProgramData\Mozilla
2015-06-09 18:06:41	05DDCBCEA42DD150BE7A88FF896D5A5A	243480	----a-w-	C:\Users\Niek\Downloads\Firefox Setup Stub 38.0.5.exe
2015-06-06 10:47:55	02C1EE40968BAA67C3A785CDA9807125	262	--sha-r-	C:\ProgramData\ntuser.pol
2015-06-05 13:18:57	--------	d-----w-	C:\ProgramData\e2dae8d000000aa
2015-06-04 16:01:47	--------	d-----w-	C:\ProgramData\NavRight
2015-06-04 15:59:05	--------	d-----w-	C:\ProgramData\TomorrowGames
2015-06-03 13:51:09	--------	dc-h--w-	C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
2015-06-03 13:51:09	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fences
2015-06-03 13:50:26	C016576ADC82CF59EFEB6DB48DC1157C	9056752	----a-w-	C:\Users\Niek\Downloads\fences_public_1.0.exe
2015-05-18 15:48:25	--------	d-----w-	C:\ProgramData\.mono

====== C: exe-files ==
2015-06-12 19:33:32	EA6499025DE7E5875FE0A9793D78E3B7	229116	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8\VuuPC_VO2_8907[1].exe
2015-06-12 19:33:30	502BFD3298490529CCF12F35674782C9	57110	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8\policyname[1].exe
2015-06-12 19:33:04	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsdA4B7.exe
2015-06-12 19:33:02	0CCF900044E0E4EDF36E89008E2C6AA7	254464	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8\setup_362[2].exe
2015-06-12 19:32:35	EDDEC3E7CAD93B0F3B84F63B3193E4D6	759544	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJCF7ZTA\SmartWebInstaller[1].exe
2015-06-12 19:32:22	5D91FAA782C5CDBAA5D4C47CE599E524	2099013	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8\Setup[1].exe
2015-06-12 19:32:21	2A5F246B97D00F77B78D15F72923839B	61981	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8\Validate[1].exe
2015-06-12 19:32:18	AD10BA414668C3A6A26A3189E2969EBF	97243	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJCF7ZTA\SearchUpdater[1].exe
2015-06-12 19:32:16	D9E52A16CB487E5D0A70DBA83AB03001	41444	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8\cmmdWriter[1].exe
2015-06-12 19:12:56	BC8997889CEC700AF51265094CA1E273	7497728	----a-w-	C:\Program Files (x86)\Steam\SteamApps\downloading\218620\payday2_win32_release.exe
2015-06-12 19:08:55	2087E2CA66A9DD3123F7B3EB25742896	19319008	----a-w-	C:\Program Files (x86)\Steam\SteamApps\downloading\252490\RustClient.exe
2015-06-12 19:08:05	D4BFE48DEF6F89306D70D251D1A390E2	72192	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\SpaceEngineers\Tools\VRageEditor\Plugins\ModelViewer\MwmBuilder.exe
2015-06-11 17:58:53	586BFF91069D9CBB4C4F234D98CFF867	5811488	----a-w-	C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\0000782e\DAO.19663661.exe
2015-06-11 15:45:28	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsdEB67.exe
2015-06-11 15:45:23	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8\FinalInstaller_dotnet4[1].exe
2015-06-11 10:04:26	A20BBC8FE97F026EEC92C7537BF2396B	675256	----a-w-	C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-06-11 10:04:22	A8555AF309BAC65C042AC2784883599E	172984	----a-w-	C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-06-10 19:54:34	B335C528B1BE761C75FD7BFCC3F18FFC	744960	----a-w-	C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8\VOsrv[1].exe
2015-06-10 18:39:34	C4FCF458817EB6CFC7CCA0BF40D4F225	740424	----a-w-	C:\Users\Niek\AppData\LocalLow\Unity\WebPlayer\UnityBugReporter.exe
2015-06-10 18:39:34	7E38C6556C2CC4EF9F990C40D033E527	584264	----a-w-	C:\Users\Niek\AppData\LocalLow\Unity\WebPlayer\UnityWebPlayerUpdate.exe
2015-06-10 18:25:38	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\fsd690F.exe
2015-06-10 18:25:04	A641620A7130271808EBFC380A02AC18	70144	----a-w-	C:\ProgramData\MailUpdate\BanAdw.exe
2015-06-10 18:25:04	003215B1024AC879E2CBF1BC589166CC	820736	----a-w-	C:\Users\Niek\AppData\Roaming\MailUpdate\MailUpdate.exe
2015-06-10 18:10:52	06E385EFE67CF111A862B6961CE2D765	1550416	----a-w-	C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{D7D5C13E-8104-3DDE-E5DF-12C7DA1FA723}-d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-6.exe
2015-06-10 18:10:11	641A14E6AC492ED45BC68815E2E2F566	3989440	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-10 18:10:10	9E2A2028228645DD57EF45A02CAC0CCE	5569984	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-06-10 18:10:10	6703266C1E56157B5965F9AC868A20AC	404992	----a-w-	C:\Windows\System32\tracerpt.exe
2015-06-10 18:10:10	583FFF12D2F0D6E1A8746462C433895F	3934144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-10 18:10:10	48C30C54194142910FB6B86D308220ED	338432	----a-w-	C:\Windows\System32\conhost.exe
2015-06-10 18:10:10	3C1BE79C3CE6EB378108B11D94CA1072	364544	----a-w-	C:\Windows\SysWOW64\tracerpt.exe
2015-06-10 18:10:10	16154A6682B1552DEAB953BFA4B8E955	296960	----a-w-	C:\Windows\System32\rstrui.exe
2015-06-10 18:10:09	F85FA29340A536C8E0A16151B9B03923	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-06-10 18:10:09	E20BF3FA89DE67B00ED713B5254C0BF0	47104	----a-w-	C:\Windows\System32\typeperf.exe
2015-06-10 18:10:09	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\System32\smss.exe
2015-06-10 18:10:09	858F04B3C39239972959E9EE97CACAE4	43008	----a-w-	C:\Windows\System32\relog.exe
2015-06-10 18:10:09	6C06D2B1CF88AB83F1CFB24928F63107	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-06-10 18:10:09	629AD3FDA168D82D459164044A29F9BB	40448	----a-w-	C:\Windows\SysWOW64\typeperf.exe
2015-06-10 18:10:09	3B5DA649BF7B7D07510C06DE0AEEB4EB	82944	----a-w-	C:\Windows\SysWOW64\logman.exe
2015-06-10 18:10:09	210E7D1EA34369194BE09493784E27BE	104448	----a-w-	C:\Windows\System32\logman.exe
2015-06-10 18:10:09	17A6A9AAD04CCC6EE53290585BFC43AF	31232	----a-w-	C:\Windows\System32\lsass.exe
2015-06-10 18:10:09	03BA5D20751137F3A705B389C52DB8D6	64000	----a-w-	C:\Windows\System32\auditpol.exe
2015-06-10 18:10:08	FB224B0A63B8F58E91FE8A314AD295AD	17408	----a-w-	C:\Windows\SysWOW64\diskperf.exe
2015-06-10 18:10:08	3E6731BF36A7D6C62D09671B427B6B67	37888	----a-w-	C:\Windows\SysWOW64\relog.exe
2015-06-10 18:10:08	1B93381366141875D8EE7EC1085236B9	19456	----a-w-	C:\Windows\System32\diskperf.exe
2015-06-10 18:10:05	EEA17E843EE2EE50D623BEACF50BD815	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-06-10 18:10:04	EC6E5AE2ECFE7A335B370865A1158EF8	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-06-10 18:09:33	73509D13542A90E260F45D1D6D4100A8	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-06-10 18:09:33	70D24021ED327CE7FFA9DEE327BB4C6B	720384	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-06-10 18:09:33	2B3CF8F7903266E2AA5C9D9850FAA8F6	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-06-10 18:09:31	8D4E75DEAA0FFBEFB5F366A4770D9644	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-06-10 18:09:30	E21AE910DF0C5CB7D46D8FA17A4567DE	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-10 18:09:30	9F45DA24EBAE4180F70D03503580E8CA	815312	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-06-10 18:09:30	57DFACB53ED16190EF732E2430B39741	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-06-10 18:09:30	29874C10D7D0088CD8743EC8F5DABBE4	473600	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-06-10 18:09:29	52956B4DD1899CB09BB50FB939F6E99D	490496	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-06-10 18:09:28	FF9877ABCA06D539264275321C97BB07	814288	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-06-10 18:09:28	0EDA3219FA027A486AA11269355AB279	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-06-10 18:09:03	8D3316795ACCC0EC0DD6A844E046DA68	167424	----a-w-	C:\Program Files\Windows Media Player\wmplayer.exe
2015-06-10 18:09:03	5F7B628B5F10531E8DE3E711ED73AAD7	164864	----a-w-	C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2015-06-10 18:09:02	E39D7E7FCC5D4B77B8CBA52FEF8753DE	102912	----a-w-	C:\Program Files\Windows Media Player\wmpshare.exe
2015-06-10 18:09:02	6F139F39295000E6301C0D08F7493CC6	101888	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpconfig.exe
2015-06-10 18:09:02	44854DDB738BF2C507FC2162245361D6	102400	----a-w-	C:\Program Files\Windows Media Player\wmpconfig.exe
2015-06-10 18:09:02	3505E5A7664FD84AC8AE51FE3B545AE1	102400	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpshare.exe
2015-06-10 17:57:51	173BC0E37B6F439EFE7C0909751AF3DC	37024720	----a-w-	C:\ProgramData\NVIDIA Corporation\NetService\1de0dea5-decd-4627-af42-d1b0716db56c\GeForce_Experience_Update_v2.4.5.44.exe
2015-06-09 18:36:46	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfF640.exe
2015-06-09 18:23:07	AF8BE6A5B57C82C6D66D39B7A9C0E693	276048	----a-w-	C:\Users\Niek\AppData\Local\Temp\setup_648.exe
2015-06-09 18:20:28	81CAA4997F4BB4345A2E3009D218B4DD	527071	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\FarSky\farskyExec.exe
2015-06-09 18:07:28	0A56F1F04397F271E484D4A0FD4C2999	103588	----a-w-	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe
2015-06-09 18:07:27	9FC679D10A7377BB04ECC3D0E2E26B53	148080	----a-w-	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
2015-06-09 18:06:41	05DDCBCEA42DD150BE7A88FF896D5A5A	243480	----a-w-	C:\Users\Niek\Downloads\Firefox Setup Stub 38.0.5.exe
2015-06-09 17:55:18	96B61B8E069832E6B809F24EA74567BA	7194312	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\Total War Battles KINGDOM\_CommonRedist\vcredist\2013\vcredist_x64.exe
2015-06-09 17:55:18	0FC525B6B7B96A87523DAA7A0013C69D	6503984	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\Total War Battles KINGDOM\_CommonRedist\vcredist\2013\vcredist_x86.exe
2015-06-09 17:52:35	8B303EBBC88D0BB795557DA659EE7F92	453720	----a-w-	C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\000077eb\CoProc update.19655412.exe
2015-06-08 15:44:06	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfCEB4.exe
2015-06-08 15:25:09	7DE802E7331C751D0FD112132A2215F5	3983016	----a-w-	C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{ED60A78D-E1B3-334E-41E4-889D870186B2}-gmsd_nl_259.exe
2015-06-08 10:36:48	9ABE828D75780DE127BA6210870CD98B	636040	----a-w-	C:\Program Files (x86)\GUPlayer\GUplayerUninstaller.exe
2015-06-08 07:51:00	98F50B214CF4931ABF8B3D677BF04E09	125056	----a-w-	C:\Program Files (x86)\MiuiTab\ProtectService.exe
2015-06-08 07:51:00	1EF1ADB28F8C5DED15F597016EB1E8ED	673920	----a-w-	C:\Program Files (x86)\MiuiTab\HPNotify.exe
2015-06-08 07:50:58	C37B854F9ED1F287E4521AB90E7D0568	29312	----a-w-	C:\Program Files (x86)\MiuiTab\CmdShell.exe
2015-06-07 12:55:03	7DE802E7331C751D0FD112132A2215F5	3983016	----a-w-	C:\ProgramData\Microsoft\Microsoft Antimalware\LocalCopy\{7640E0FC-651C-2265-6B19-8E5C0C0F0776}-gmsd_nl_259.exe
2015-06-06 16:14:50	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdf384F.exe
2015-06-06 11:25:26	59EFE7758FE0497445EF180A333C0F62	2534400	----a-w-	C:\Users\Niek\AppData\Local\Temp\64C0\temp\TyHelpTFUO.xyz.exe
2015-06-06 11:24:08	79528B68209C77522784BB57DAEFE9B9	2604032	----a-w-	C:\Users\Niek\AppData\Local\Temp\64C0\temp\priceless_p_soft_partner.exe
2015-06-06 11:21:51	8E4BB2583A16495CCEF2401D5A7CAA93	1210960	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-5.exe
2015-06-06 11:21:41	5FC40A0DD64871969A35D620F71939F0	1139280	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-7.exe
2015-06-06 11:21:41	2D8A7E34ECED54200D5D86B931A4E146	1550416	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-1-6.exe
2015-06-06 11:21:26	FD04C8BE8407D8E843EC04D929FABA57	2054736	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-64.exe
2015-06-06 11:21:26	5FC40A0DD64871969A35D620F71939F0	1139280	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-7.exe
2015-06-06 11:21:26	2F246454CAAFBBC54F8282B04A5B14F7	1479248	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-6.exe
2015-06-06 11:21:11	32420EE1E90217BCA0B7A6D2484E0F88	1478736	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-3.exe
2015-06-06 11:21:06	8DF6560ADF608ECDCE5CAF299062A135	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateOnDemand.exe
2015-06-06 11:21:06	6419BCBF0B2569AACF4023942EADFCB8	46080	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateBroker.exe
2015-06-06 11:21:06	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdateCrashHandler.exe
2015-06-06 11:21:06	3C14AAE26EA06BADAC98520773772CEB	68608	----a-w-	C:\Users\Niek\AppData\Local\Temp\comh.174642\globalupdate.exe
2015-06-06 11:21:03	C29AB7E39A539BB03F330FE08D0E0E5B	1538128	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\d6be7d40-7fa5-4b22-ae53-b5653e995c5d-10.exe
2015-06-06 11:21:02	DFB488A2DE82AAC9ABE27D2AB5606645	1863324	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\utils.exe
2015-06-06 11:21:02	C29AB7E39A539BB03F330FE08D0E0E5B	1538128	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\UninstallBrw.exe
2015-06-06 11:21:02	00942746815DBA37A191EA3A5718D549	124496	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\Uninstall.exe
2015-06-06 11:20:53	3F00DAE9BD82FB8A3FF7DAC27CE85980	13998488	----a-w-	C:\Users\Niek\AppData\Local\Temp\6246.exe
2015-06-06 11:20:14	875D1153314632D8D6B6F06255EA9CAE	1918040	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe
2015-06-06 11:20:11	B49B0CFF76BEAF696790BA975A6EBE94	1922560	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\nacl64.exe
2015-06-06 11:20:11	8FA19245CF88D11CFCA1949517FDCC89	1983488	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\delegate_execute.exe
2015-06-06 11:20:11	6BCFCFA512A003A8043CF2F370B0B479	637440	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
2015-06-06 11:20:11	57E7006270E2ACFB4031550A4CAA2EAA	913408	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\setup.exe
2015-06-06 11:20:11	57E7006270E2ACFB4031550A4CAA2EAA	913408	----a-w-	C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe
2015-06-06 11:20:05	667384827BB3604D587780FD7E78260D	2999808	----a-w-	C:\Users\Niek\AppData\Local\Temp\sdfFFD1.exe
2015-06-06 11:18:15	875D1153314632D8D6B6F06255EA9CAE	1918040	----a-w-	C:\Users\Niek\AppData\Local\Temp\1484.exe
=== C: other files ==
2015-06-12 19:33:42	A9FE46386E3AA39BFC436380B2DBB279	68828	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\Offer1.zip
2015-06-12 19:33:42	587D8609AAB1AD72D7BE28EFA22519F4	8171	----a-w-	C:\Users\Niek\AppData\Local\Temp\nsh2202.tmp\Offer2.zip
2015-06-10 18:25:25	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\prleth.sys
2015-06-10 18:25:25	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Windows\hgfs.sys
2015-06-10 18:10:10	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-06-10 18:10:10	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-06-10 18:05:30	1EE2DBA5AD2E5EB618C7FB187C2CFDF4	3206144	----a-w-	C:\Windows\System32\win32k.sys
2015-06-10 18:03:41	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\System32\drivers\stream.sys
2015-06-06 19:44:00	09F6CBB1EEF8825C72AC2C3A195F576E	17281	----a-w-	C:\Program Files (x86)\Steam\SteamApps\common\SpaceEngineers\PrepareScriptMod.bat
2015-06-06 11:21:11	C1BAB1088B167DECC9C7C3521B245708	401463	----a-w-	C:\Program Files (x86)\CinemaPlus-3.2cV05.06\1fad1702-24fc-4b6c-8464-6d0c501807ed.crx

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe  /MINIMIZED"
"GoogleChromeAutoLaunch_AC08B26BB33AE517F3D1CED815A1A927"="C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe --no-startup-window"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
"gmsd_nl_284"="C:\Program Files (x86)\gmsd_nl_284\gmsd_nl_284.exe"
"SmartWeb"="C:\Users\Niek\AppData\Local\SmartWeb\SmartWebHelper.exe"
"gmsd_nl_282"="C:\Program Files (x86)\gmsd_nl_282\gmsd_nl_282.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"upgmsd_nl_284.exe"="C:\Users\Niek\AppData\Local\gmsd_nl_284\upgmsd_nl_284.exe -runonce"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe  /MINIMIZED"
"GoogleChromeAutoLaunch_AC08B26BB33AE517F3D1CED815A1A927"="C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe --no-startup-window"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_Dlls"=" c:\\programdata\\tomorrowgames\\tomorrowgames32.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg_DTS"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"MouseDriver"="TiltWheelMouse.exe"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="  "

==== Startup Folders ======================

2015-06-06 11:20:19	2418	----a-w-	C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Bidaily Synchronize Task[3c32].job --a------ C:\programdata\789a71f5-f53b-7e56-789a-a71f5f53c7d7\hqghumeaylnlf.exe []
C:\Windows\tasks\Bidaily Synchronize Task[973b].job --a------ C:\programdata\17cc78d5-23cf-8005-17cc-c78d523ce354\priceless_p_soft_partner.exe []
C:\Windows\tasks\Crossbrowse.job --a------ C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [06-06-2015 13:18]
C:\Windows\tasks\MTCYOKLOLS1.job --a------ C:\ProgramData\FlashBeat\FlashBeat.exe []
C:\Windows\tasks\shop_master_helper_service.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Niek-PC-Niek" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Crossbrowse" [C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe]
"C:\Windows\SysNative\tasks\shop_master_helper_service" [C:\Program Files (x86)\Shop Master\shop_master_helper_service.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Product Register Service" [C:\Program Files (x86)\ASUS\APRP\aprp.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default
user_pref("browser.startup.homepage", "http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK");
user_pref("browser.search.defaultenginename", "oursurfing");
user_pref("browser.search.selectedEngine", "oursurfing");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sweetsearch@gmail.com"="C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default\extensions\sweetsearch@gmail.com" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default
- QuickSearch - %ProfilePath%\extensions\searchffv2@gmail.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Niek\AppData\Roaming\Mozilla\Firefox\Profiles\9jgxm4du.default
4FD35D3CDAA50F361D930A1798EF2DB1	- C:\Users\Niek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll -	Unity Player
DB46FB355E4BF3231F98DE5C5CC4C0DC	- C:\Users\Niek\AppData\Local\Roblox\Versions\version-e66ffbb509ce4483\NPRobloxProxy.dll -	Roblox Launcher Plugin
FAB903F19BFD5CE0A94D465D2389AB27	- C:\Users\Niek\AppData\Local\Roblox\Versions\version-e66ffbb509ce4483\NPRobloxProxy64.dll -	Roblox Launcher Plugin


==== Chromium Look ======================

Google Wallet - Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Google Slides - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Docs - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
ojkcdipcgfaekbeaelaapakgnjflfglf - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojkcdipcgfaekbeaelaapakgnjflfglf
CinemaPlus-3.2cV05.06 - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp
Gmail - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Preferences
"homepage": "http://google.com/",

C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK",
"startup_urls": [ "http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK" ],


==== Chromium Fix ======================

C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_securehomeservices.org_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_securehomeservices.org_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_papbadoldddalgcjcicnikcfenodpghp_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_papbadoldddalgcjcicnikcfenodpghp_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_papbadoldddalgcjcicnikcfenodpghp_0 deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\papbadoldddalgcjcicnikcfenodpghp deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Search Page"="http://www.oursurfing.com/web/?type=dspp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"
"Default_Page_URL"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Default_Search_URL"="http://www.oursurfing.com/web/?type=dspp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.istartsurf.com/web/?type=ds&ts=1433960704&z=55a073fec3b9dad63722a99g2zac2cat8q2e6q5tat&from=face&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"
"Default_Page_URL"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Start Page"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1433960704&z=55a073fec3b9dad63722a99g2zac2cat8q2e6q5tat&from=face&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.istartsurf.com/web/?type=ds&ts=1433960704&z=55a073fec3b9dad63722a99g2zac2cat8q2e6q5tat&from=face&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"
"Default_Page_URL"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Start Page"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
"Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1433960704&z=55a073fec3b9dad63722a99g2zac2cat8q2e6q5tat&from=face&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.oursurfing.com/?type=hppp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}"
{33BB0A4E-99AF-4226-BDF6-49120163DE86} oursurfing  Url="http://www.oursurfing.com/web/?type=dspp&ts=1433433434&z=55ec00f784680d9d3a325ffg0z1cecczdc1cdz4c6g&from=exp&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK&q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Preferences was reset successfully
C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Secure Preferences was reset successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.bad was reset successfully
C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Web Data will be reset at reboot
C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Web Data-journal will be reset at reboot
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\sweetsearch@gmail.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_nl_282_is1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_nl_284_is1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\CinemaPlus-3.2cV05.06 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{92bf83b8} deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: LuckyTab Class - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} - C:\Program Files (x86)\MiuiTab\SupTab.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [gmsd_nl_284] "C:\Program Files (x86)\gmsd_nl_284\gmsd_nl_284.exe"
O4 - HKLM\..\Run: [SmartWeb] C:\Users\Niek\AppData\Local\SmartWeb\SmartWebHelper.exe
O4 - HKLM\..\Run: [gmsd_nl_282] "C:\Program Files (x86)\gmsd_nl_282\gmsd_nl_282.exe"
O4 - HKLM\..\RunOnce: [upgmsd_nl_284.exe] C:\Users\Niek\AppData\Local\gmsd_nl_284\upgmsd_nl_284.exe -runonce
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_AC08B26BB33AE517F3D1CED815A1A927] "C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: crossbrowse.lnk = C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:  c:\programdata\tomorrowgames\tomorrowgames32.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TomorrowGames - TomorrowGames - C:\ProgramData\TomorrowGames\TomorrowGames.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8 will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BG5LM7DO will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJCF7ZTA will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8 will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Niek\AppData\Local\Mozilla\Firefox\Profiles\9jgxm4du.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache will be emptied at reboot
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=16988 folders=2893 2493900747 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Niek\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Niek\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Web Data" not found
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Web Data-journal" not found
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache\data_0" deleted
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache\data_1" deleted
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache\data_2" deleted
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache\data_3" deleted
"C:\Users\Niek\AppData\Local\Crossbrowse\Crossbrowse\User Data\Default\Cache\index" deleted
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2KO7R1O8" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BG5LM7DO" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IJCF7ZTA" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ939VF8" not found

==== EOF on vr 12-06-2015 at 21:44:33,37 ======================