Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by BramVDBe on za 27/06/2015 at 19:08:38,57.

Running in: Normal Mode Internet Access Detected
Launched: C:\Users\BramVDBe\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

Failed to create System Restore Point

==== Empty Folders Check ======================

C:\PROGRA~2\AVG deleted successfully
C:\Users\BramVDBe\AppData\Roaming\iLauncher deleted successfully
C:\Users\BramVDBe\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\VeerleL\AppData\Roaming\Apple Computer deleted successfully
C:\Users\BramVDBe\AppData\Local\x-formation deleted successfully
C:\Users\pci\AppData\Local\VirtualStore deleted successfully
C:\Users\VeerleL\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\WtuSystemSupport deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\WtuSystemSupport deleted successfully

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AVG not found
C:\PROGRA~2\WOT deleted
C:\windows\SysNative\Tasks\AVG_SYS_TASK_0615tb_DELETE deleted
C:\windows\SysNative\Tasks\AVG_SYS_TASK_0615tb_VALID deleted
C:\Users\BramVDBe\AppData\Local\AVG Web TuneUp deleted
C:\Users\VeerleL\AppData\Local\AVG Web TuneUp deleted
C:\PROGRA~2\AVG Web TuneUp deleted
C:\PROGRA~2\COMMON~1\AVG Secure Search deleted
C:\Users\BramVDBe\AppData\Local\HWVendorDetection.log deleted
C:\Users\BramVDBe\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\VeerleL\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\tasks\AVG_SYS_TASK_0615tb_DELETE.job deleted
C:\Windows\tasks\AVG_SYS_TASK_0615tb_VALID.job deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
"C:\Windows\Installer\b88e64a.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-06-27 15:32:03	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2015-06-27 15:32:03	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2015-06-27 15:32:03	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2015-06-27 15:32:03	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2015-06-27 15:32:03	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
====== C:\Users\BramVDBe\AppData\Local\Temp ====
2015-06-27 17:24:12	D29CE9CBE3CD7D1C0C7BB0309665AECD	40806984	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\nsjBAA8.tmp\download.exe
2015-06-27 17:23:28	FDD26A402322F212DCA153FF8B1FFB6E	78816	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\pcwintech_tasksch.dll
2015-06-27 17:23:28	E0DC8C6BBC787B972A9A468648DBFD85	1008128	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\libiconv2.dll
2015-06-27 17:23:28	DC7A3BC0FC185CD68848DC6F7D7B026B	40960	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\SSubTmr6.dll
2015-06-27 17:23:28	D202BAA425176287017FFE1FB5D1B77C	103424	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\libintl3.dll
2015-06-27 17:23:28	A107DE2D120C0571B544EEC53D1971AB	1406208	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\TweakingRegistryBackup.exe
2015-06-27 17:23:28	57CAC848FA14AE38F14F9441F8933282	140288	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\pcre3.dll
2015-06-27 17:23:28	547C43567AB8C08EB30F6C6BACB479A3	79360	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\regex2.dll
2015-06-27 17:23:28	1B128828BF5E4353811B6DA58156B7F4	6656	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\files\dosdev.exe
2015-06-27 17:22:57	2E0323A94915FAAB10A25F3BABF82584	157696	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-06-27 17:16:38	0C9988BDA3CEC3C421B773982C5E2EC6	5703168	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2015-06-27 16:57:17	AB5EFB103DB01C1912C9D2F545EA5621	17920	----a-w-	C:\Windows\SysWOW64\wksprtPS.dll
2015-06-27 16:57:17	8DEEE20D8D30E9B0FBDCA31E58A027BD	53248	----a-w-	C:\Windows\SysWOW64\tsgqec.dll
2015-06-27 16:57:17	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2015-06-27 16:57:17	2EFB1279E7BEA7D12D9F4D6508D27880	50176	----a-w-	C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-06-27 16:57:16	5E676B296B762E211D83B87635F2C330	855552	----a-w-	C:\Windows\SysWOW64\rdvidcrl.dll
2015-06-27 16:56:00	8999F18D38D55E34D356796507FFD639	192000	----a-w-	C:\Windows\SysWOW64\rdpendp_winip.dll
2015-06-27 16:03:36	F4AFDB5ABEA0C9079E8193E24D1DB21D	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-06-27 16:03:36	D864C283FFD7C080FDC25FD4C798FF8D	103936	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2015-06-27 16:03:36	588D52C2D0E60EE71FD5A64407865B10	179200	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2015-06-27 16:03:36	33F67BBCC3C0499D3F3382473114CFA8	143872	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2015-06-27 16:03:33	C1D7451054FEDC3F96F2903B6F84A4EE	173056	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2015-06-27 16:03:33	B4667963F9711C644F5E43D9A46D8680	33792	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-06-27 16:03:33	81AE5637F2D2DE4DAF67F540F5A076AA	30208	----a-w-	C:\Windows\SysWOW64\wups.dll
2015-06-27 16:03:33	61302CE8DDB8513A4FF03CEE2A14471F	92672	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2015-06-27 16:03:33	4A99665068B907CCB0EE4A5D3F2584D7	566784	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2015-06-27 16:03:25	F7F135F7702E0FB3EFE89283E2BE2EBB	67584	----a-w-	C:\Windows\SysWOW64\dwmapi.dll
2015-06-27 16:03:25	B01B8C949EDEC1B8A856E3056BDA7C42	1372160	----a-w-	C:\Windows\SysWOW64\dwmcore.dll
2015-06-27 16:03:04	DDE994E9159497D0D5AB2CDF66D1EAD6	76800	----a-w-	C:\Windows\SysWOW64\wdi.dll
2015-06-26 10:04:34	3B9E2AB1F3ABC53D4A423E699EB625C8	419936	----a-w-	C:\Windows\SysWOW64\locale.nls
2015-06-26 07:36:59	858EB73F68B20A2A5C66B6C000D1C0DD	102608	----a-w-	C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-06-26 07:17:50	F26680AF396F89F7ABFDA1D1D6B62011	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-06-26 07:17:50	9F6066005D8B8620598085C7499E9B70	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-06-26 07:17:50	975421AC32F9F6E27A58F75DAB4B5871	19607040	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-06-26 07:17:50	96837E5864777688477AF6DE2332C06D	503808	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-06-26 07:17:50	8C3A03295F56D1FFB51D9D05DA42B12D	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-06-26 07:17:50	81C1182A9EE7AC4D21187811DE66A7D0	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-06-26 07:17:50	7C9F8DB66A56306C5BBE97F9FC0F01EF	342736	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-06-26 07:17:50	6B7210618D7E2CE0404ECF748701253A	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-06-26 07:17:50	53E9614ADFA6A40A452BA014CEF6F261	1309696	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-06-26 07:17:50	2DED8A99E45053C42DD21D6937D3960C	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-06-26 07:17:50	2CBD6D22499EB13A2666F62EF33D00E2	16303	----a-w-	C:\Windows\SysWOW64\ieuinit.inf
2015-06-26 07:17:50	185490A6C3BEDAC5EF547314F68AB07B	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-06-26 07:17:49	C27C8CACEBC712BE2AD791715E9734EC	664064	----a-w-	C:\Windows\SysWOW64\jscript.dll
2015-06-26 07:17:49	B6D8148C1C697A7BF04EE0FE82408B6A	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-06-26 07:17:49	927E38A35E4DFC4E294BD130BAA6F759	2278912	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-06-26 07:17:49	7DBCBB1647B7CD71E2039C1B50A12717	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-06-26 07:17:49	5C06EE62F06E990E9521EA80B8D4D4B8	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-06-26 07:17:49	4ABEEF30EA5B9F4718312DCB60B6C9BC	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-06-26 07:17:48	E21AE910DF0C5CB7D46D8FA17A4567DE	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-26 07:17:48	DB254D50B4527C2821C537E0587B44E8	12829696	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-06-26 07:17:48	C93AE4D14AEF5169791B35D97AE7C9FC	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-06-26 07:17:48	8C8B8C78C0CCD5D36ABCB115B0B581E1	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-06-26 07:17:48	1A628C1F5470F0AF21E37E425026F27A	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-06-26 07:17:48	17B0852D8202A872C3E6D01B518B6A4E	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-06-26 07:17:47	E4EB138060BAE0DBAB1A3B71A3141FE7	1950720	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-06-26 07:17:47	85E21CCF38166E0D6DE2E42D9D3823BD	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-06-26 07:17:47	3FD7E6DB5D81FE400DB4D81D278596E6	4305920	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-06-26 07:17:46	FB5C9234E4BF6BDAF4A954763A4582BA	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-06-26 07:17:46	EF853EA2A6A7BD891CCF31B0C2915352	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2015-06-26 07:17:33	DCC148408770F2D55B201F8FC26438A1	988160	----a-w-	C:\Windows\SysWOW64\drmv2clt.dll
2015-06-26 07:17:33	003C51B9FE38287BA4E0E58D3AE080BD	744960	----a-w-	C:\Windows\SysWOW64\blackbox.dll
2015-06-26 07:17:29	833FCABCB5D95B1911BA6E62FC82AC04	617984	----a-w-	C:\Windows\SysWOW64\wmdrmsdk.dll
2015-06-26 07:17:29	5B0C6247027FCF5A2E2F150E298D2FFA	3209728	----a-w-	C:\Windows\SysWOW64\mf.dll
2015-06-26 07:17:27	BB73C907D1BD437B6C30F2C23BB089FC	406016	----a-w-	C:\Windows\SysWOW64\drmmgrtn.dll
2015-06-26 07:17:23	2D4814D567E5A85C473228BA772A7AFB	489984	----a-w-	C:\Windows\SysWOW64\evr.dll
2015-06-26 07:17:22	C5667EE72D7364BE81516C0707FEF724	354816	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2015-06-26 07:17:22	B7D2BB84C590F0AE9DA51DBB065A780E	1005056	----a-w-	C:\Windows\SysWOW64\cryptui.dll
2015-06-26 07:17:22	B54FD1991E659FD61EF1D34EC27AAECD	81408	----a-w-	C:\Windows\SysWOW64\cryptsp.dll
2015-06-26 07:17:22	96DB6A923DEDB58FC7CBBF5CFF73314D	1329664	----a-w-	C:\Windows\SysWOW64\quartz.dll
2015-06-26 07:17:21	E0AB9CA912398BE1AAD14FF7AD75C397	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
2015-06-26 07:17:21	AF47EAA4ADDA9AA221FB7647EE22BF53	103424	----a-w-	C:\Windows\SysWOW64\mfps.dll
2015-06-26 07:17:21	A56F4029FDCF4F817E78953CDA953E28	442880	----a-w-	C:\Windows\SysWOW64\AUDIOKSE.dll
2015-06-26 07:17:21	98C1191C862B44567FCF3C18BAEE859E	519680	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2015-06-26 07:17:21	70E96EBE87A38857619671FCB9C8EC7B	265216	----a-w-	C:\Windows\SysWOW64\msnetobj.dll
2015-06-26 07:17:21	50B8937A81360D16A5C772302BD32CFE	195584	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2015-06-26 07:17:21	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2015-06-26 07:17:21	320A8699369C43CF53B2DB4538D17C52	504320	----a-w-	C:\Windows\SysWOW64\msscp.dll
2015-06-26 07:17:21	2D21189858856316D55EAD55DF4964C2	374784	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2015-06-26 07:17:21	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2015-06-26 07:17:20	2F3CE58D8C276570EEB69C99CFBAFD58	2048	----a-w-	C:\Windows\SysWOW64\mferror.dll
2015-06-26 07:16:54	641A14E6AC492ED45BC68815E2E2F566	3989440	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-26 07:16:53	BBABC6702529CFADAC0EC2B28168A288	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-06-26 07:16:53	583FFF12D2F0D6E1A8746462C433895F	3934144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-26 07:16:53	2CA16814DA3C5B2D8C7E70DC47A45ED1	551424	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-06-26 07:16:52	8C7635292CFF4901F058269454A1D64E	1310744	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2015-06-26 07:16:51	EA141596564AE0C670EDD0F2636EC29C	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-06-26 07:16:51	4238391DE3E3FDCD2C731C1E4E0F402C	635392	----a-w-	C:\Windows\SysWOW64\tdh.dll
2015-06-26 07:16:51	2E65BF3D85BB2C831669FBCBDE6C9879	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-06-26 07:16:50	F81920ADB15012CF4E9FF8238C85686A	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2015-06-26 07:16:50	D877133532CE090502B1166B360E9516	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2015-06-26 07:16:49	FCA6EFFEE6D7D42E794F0E538297026C	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-06-26 07:16:49	FB224B0A63B8F58E91FE8A314AD295AD	17408	----a-w-	C:\Windows\SysWOW64\diskperf.exe
2015-06-26 07:16:49	F85FA29340A536C8E0A16151B9B03923	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-06-26 07:16:49	F72A9953199EF5807D595AE3694B5D01	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-06-26 07:16:49	EEA17E843EE2EE50D623BEACF50BD815	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-06-26 07:16:49	EC6E5AE2ECFE7A335B370865A1158EF8	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-06-26 07:16:49	A9E8F961F7FE1EDEEF8F46EEB800F2D8	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-06-26 07:16:49	9E68E1BDEBD85FC8803707370BE0FC6E	641536	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2015-06-26 07:16:49	9A50B2567918BF7DDD600ECE5DB5ED76	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-06-26 07:16:49	7E7933E63BBE2BE71CC908EF140458EF	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-06-26 07:16:49	7A9F94E0F53C8F6E09405351AC104A3C	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-06-26 07:16:49	6C730482615C97B923B88C648FF554A3	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2015-06-26 07:16:49	6C06D2B1CF88AB83F1CFB24928F63107	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-06-26 07:16:49	65A5E27C2217D606E212B6088CCD6104	92160	----a-w-	C:\Windows\SysWOW64\sechost.dll
2015-06-26 07:16:49	629AD3FDA168D82D459164044A29F9BB	40448	----a-w-	C:\Windows\SysWOW64\typeperf.exe
2015-06-26 07:16:49	619D5101114C71E1A4A585C5E68301B7	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-06-26 07:16:49	5643A88C6DA8AAEC9CE2845431942650	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-06-26 07:16:49	558227F567E977D71B9182013EF03E9C	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2015-06-26 07:16:49	52C869A640B8169D7C8460FB1646ABF5	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-06-26 07:16:49	3E6731BF36A7D6C62D09671B427B6B67	37888	----a-w-	C:\Windows\SysWOW64\relog.exe
2015-06-26 07:16:49	3C1BE79C3CE6EB378108B11D94CA1072	364544	----a-w-	C:\Windows\SysWOW64\tracerpt.exe
2015-06-26 07:16:49	3B5DA649BF7B7D07510C06DE0AEEB4EB	82944	----a-w-	C:\Windows\SysWOW64\logman.exe
2015-06-26 07:16:49	2D23A10FBFA09DC1B61799128BBA91A2	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-06-26 07:16:34	F8DF49638C28AA77A2EFADCB091BBF8A	79872	----a-w-	C:\Windows\SysWOW64\gpapi.dll
2015-06-26 07:16:09	A208DAC2932649CFF82A6A684D8BB1F6	571904	----a-w-	C:\Windows\SysWOW64\oleaut32.dll
2015-06-26 07:15:54	D0CA74BE380498A0111A73EB9C76CF8F	342016	----a-w-	C:\Windows\SysWOW64\certcli.dll
2015-06-26 07:15:51	C22AB1781BC6F0BB1C9B352CF66DBFFC	1250816	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2015-06-26 07:15:45	340EECB781E6C06A6171B3068DA208AD	12875264	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-06-26 07:15:43	FE48346938C1CDDDF4E4097DB9B99764	52224	----a-w-	C:\Windows\SysWOW64\nlaapi.dll
2015-06-26 07:15:43	92940397DFFB4D237EA5BB22FF912BDC	156672	----a-w-	C:\Windows\SysWOW64\ncsi.dll
2015-06-26 07:15:42	58788565442368B0615DDAF1D452B843	530432	----a-w-	C:\Windows\SysWOW64\comctl32.dll
2015-06-26 07:15:40	A98E8F79C738CAF23C152DBCABD978FE	11411456	----a-w-	C:\Windows\SysWOW64\wmp.dll
2015-06-26 07:15:39	DA27A4EA7B7C77FAFDB3F94D83E310C1	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2015-06-26 07:15:39	605E9B2CFA3445ED7716D0B345EE21EC	8192	----a-w-	C:\Windows\SysWOW64\spwmp.dll
2015-06-26 07:15:39	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\msdxm.ocx
2015-06-26 07:15:39	2401379E0610D15FAB78A4B1646F5B8D	4096	----a-w-	C:\Windows\SysWOW64\dxmasf.dll
2015-06-26 07:15:28	5F3628DCF926C4499BE1DC74431DFBC8	1230848	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2015-06-26 07:15:27	DCA2C6E7990771209CDD8E9DA90ED0E2	5120	----a-w-	C:\Windows\SysWOW64\shimeng.dll
2015-06-26 07:15:27	D3E8C7FADB758E5D222C639CC65790AD	295936	----a-w-	C:\Windows\SysWOW64\apphelp.dll
2015-06-26 07:15:27	715C060150D969B0DE5DD5B365A712AF	20992	----a-w-	C:\Windows\SysWOW64\sdbinst.exe
2015-06-26 07:15:24	418AEC0CE89A13200F2820079B9CDFD9	216064	----a-w-	C:\Windows\SysWOW64\InkEd.dll
2015-06-26 07:15:23	ABB358777FDF4AF51B2FE26137D2B8D4	70656	----a-w-	C:\Windows\SysWOW64\fontsub.dll
2015-06-26 07:15:23	965D6A2B30A95A9F7EF13653988D3D9F	299008	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2015-06-26 07:15:23	55273844B66D77A2F1A2213C17A9EA4A	34304	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2015-06-26 07:15:23	274F0540FD4C88FC845C94CA1569688A	10240	----a-w-	C:\Windows\SysWOW64\dciman32.dll
2015-06-26 07:15:23	01D9C9A70323BC7E5835B92442DD7EC2	25600	----a-w-	C:\Windows\SysWOW64\lpk.dll
2015-06-26 07:15:21	C7673B3F8BB35221B42D67BF7ADAFDFD	7168	----a-w-	C:\Windows\SysWOW64\KBDYAK.DLL
2015-06-26 07:15:21	730B7C639957EA0BF37C1459831A1E19	6656	----a-w-	C:\Windows\SysWOW64\KBDRU1.DLL
2015-06-26 07:15:21	72222991598E173BBE1429426926C020	7168	----a-w-	C:\Windows\SysWOW64\KBDTAT.DLL
2015-06-26 07:15:21	45B308F20FEF040BD7321E85F69DF5E2	6656	----a-w-	C:\Windows\SysWOW64\KBDRU.DLL
2015-06-26 07:15:21	2BD0519015E899A2FF52210CC5875F88	6656	----a-w-	C:\Windows\SysWOW64\KBDBASH.DLL
2015-06-26 07:15:19	744AB3C1A73A57DEED49D631F1BDEA1D	2311168	----a-w-	C:\Windows\SysWOW64\wpdshext.dll
2015-06-26 07:15:15	C489D8B4D8C64F20CC75A93F541F7D91	123904	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-06-26 07:15:14	DA5B856A037872BE089CA6967C7050C5	1237504	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2015-06-26 07:15:14	B804EAA9E037580F96C22537C2ECB62A	171520	----a-w-	C:\Windows\SysWOW64\ubpm.dll
2015-06-26 07:15:13	78492CF3C3697FB5AF4EAABB2BAF8595	2048	----a-w-	C:\Windows\SysWOW64\msxml3r.dll
2015-06-26 07:15:11	2B381229CCACA02AFF9D27B09073E523	311808	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2015-06-26 07:15:10	84B460BB65567ED42DD605FA044DB370	828928	----a-w-	C:\Windows\SysWOW64\msctf.dll
2015-06-26 07:15:09	B3BC38B886CA53C92D52EF724A9F0D45	308224	----a-w-	C:\Windows\SysWOW64\scesrv.dll
2015-06-26 07:15:08	D824C1C235349B67E652A5CA70D1AA49	58880	----a-w-	C:\Windows\SysWOW64\clfsw32.dll
2015-06-26 07:05:45	9566C8BBD2271A7962D4432A624762AD	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-06-27 17:16:38	6DD73E4E947DB3B0608321AE13210D94	6584320	----a-w-	C:\Windows\Sysnative\mstscax.dll
2015-06-27 16:57:18	DDED7C5558B3AE09F568945281A9A6D1	44544	----a-w-	C:\Windows\Sysnative\TsUsbGDCoInstaller.dll
2015-06-27 16:57:17	FEC6178962DFF33074D39CA907971405	12800	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyExtension.dll
2015-06-27 16:57:17	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\Sysnative\mstsc.exe
2015-06-27 16:57:17	7BD2E6E2458A5B95F8341244C7FC7DD4	18944	----a-w-	C:\Windows\Sysnative\wksprtPS.dll
2015-06-27 16:57:17	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\Sysnative\wksprt.exe
2015-06-27 16:57:17	5289A00E2D21BB3A7D6761646543ED5C	62976	----a-w-	C:\Windows\Sysnative\tsgqec.dll
2015-06-27 16:57:17	149A388C17F04AD1F99B477A43BE1A9F	56832	----a-w-	C:\Windows\Sysnative\MsRdpWebAccess.dll
2015-06-27 16:57:17	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\Sysnative\TsUsbRedirectionGroupPolicyControl.exe
2015-06-27 16:57:17	0D2C2FAC4F29B5868D39B7267058CFEF	83968	----a-w-	C:\Windows\Sysnative\TSWbPrxy.exe
2015-06-27 16:57:16	A4420969E5AB94856E5C0C02E6099D3F	1057280	----a-w-	C:\Windows\Sysnative\rdvidcrl.dll
2015-06-27 16:56:01	E9A0777DCA9148157E0EF9B71D7DE353	15360	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2015-06-27 16:56:00	D346E07D62E3D4BEAB040939744EC31B	228864	----a-w-	C:\Windows\Sysnative\rdpendp_winip.dll
2015-06-27 16:56:00	AD4D0AEDB5993EDA31EB80A54EDBC344	243200	----a-w-	C:\Windows\Sysnative\rdpudd.dll
2015-06-27 16:56:00	8F69EE5E0EB0779DC3E90DFD8D8E8683	3174912	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2015-06-27 16:03:36	C5752F5CE47B6B00F914AE91087C0CB4	229376	----a-w-	C:\Windows\Sysnative\wintrust.dll
2015-06-27 16:03:36	7EE0A3B9E904AF4744E4D8F00CB5CA32	140288	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2015-06-27 16:03:36	7BC3E861F7E8EB543A630090FAE779E0	188416	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2015-06-27 16:03:36	71187FA11F58012C188453877E16EB8B	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-06-27 16:03:33	E89F94AED85BF3611F61608C26B64177	135168	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2015-06-27 16:03:33	D7897C17117286A237A639209F53C51C	98304	----a-w-	C:\Windows\Sysnative\wudriver.dll
2015-06-27 16:03:33	C8C3839305F2C4D9A4B33DE6AB83334E	191488	----a-w-	C:\Windows\Sysnative\wuwebv.dll
2015-06-27 16:03:33	A76DAC2E9CBB9595D2F806CBFB5C0BC4	696320	----a-w-	C:\Windows\Sysnative\wuapi.dll
2015-06-27 16:03:33	803E9B4DF2E931FDB3210F342B89BE9F	36864	----a-w-	C:\Windows\Sysnative\wups.dll
2015-06-27 16:03:33	4D9BE5567F9DDC54D41907C9A95F61BF	12288	----a-w-	C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-06-27 16:03:33	478007800DAF83A33CECCD776E7FA734	37888	----a-w-	C:\Windows\Sysnative\wups2.dll
2015-06-27 16:03:33	4152B8E73C7198DBFBB1FD8A5FFD41F9	3147776	----a-w-	C:\Windows\Sysnative\wucltux.dll
2015-06-27 16:03:33	29F4030F3A449AAF68778C1C67603569	87040	----a-w-	C:\Windows\Sysnative\WinSetupUI.dll
2015-06-27 16:03:33	19165E301A50829D28C27A832AD16FB0	36864	----a-w-	C:\Windows\Sysnative\wuapp.exe
2015-06-27 16:03:33	14882A15F5CE7B8EADC8E7F54FD5B53B	2589184	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2015-06-27 16:03:26	20E761A4D203D5F403B6EC2FB95B7A6B	1632768	----a-w-	C:\Windows\Sysnative\dwmcore.dll
2015-06-27 16:03:25	DDFCECAADEE51EFB82A0548BE5EBD8AC	82944	----a-w-	C:\Windows\Sysnative\dwmapi.dll
2015-06-27 16:03:04	D713D6446DDBB474D801F361B4B186EA	950272	----a-w-	C:\Windows\Sysnative\perftrack.dll
2015-06-27 16:03:04	C6F7473B55510F0B93961DA03D8E3B38	91136	----a-w-	C:\Windows\Sysnative\wdi.dll
2015-06-27 16:03:04	AA7079AD52B8BFBAE94167D54C32F84F	29696	----a-w-	C:\Windows\Sysnative\powertracker.dll
2015-06-27 16:02:19	53405CDA694982E5C6A0E9454AC1D407	493504	----a-w-	C:\Windows\Sysnative\mcupdate_GenuineIntel.dll
2015-06-26 10:04:34	3B9E2AB1F3ABC53D4A423E699EB625C8	419936	----a-w-	C:\Windows\Sysnative\locale.nls
2015-06-26 07:36:59	189FB45D7442083AE8A2E4E612233EF7	124112	----a-w-	C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2015-06-26 07:17:50	9E2B8C0601E3D460F78F0233B509CE4F	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-06-26 07:17:50	9DB8E01D5A546FAFCACE95489E351186	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-06-26 07:17:50	73509D13542A90E260F45D1D6D4100A8	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-06-26 07:17:50	70D24021ED327CE7FFA9DEE327BB4C6B	720384	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-06-26 07:17:50	4BD747AAF01C480901B3E777EC48826B	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-06-26 07:17:49	D202078FBA3A77B85D39669EE4110DE2	389840	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-06-26 07:17:49	6ABFC5736EC920C4436F32111F5CBCEE	1545728	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-06-26 07:17:49	3C3E159F284F51D55DB59C3D0B843979	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-06-26 07:17:49	36F3718E67F442F54AB4A39DCDD8FD19	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-06-26 07:17:49	2CBD6D22499EB13A2666F62EF33D00E2	16303	----a-w-	C:\Windows\Sysnative\ieuinit.inf
2015-06-26 07:17:48	86FDFEA67833DB261EC01A777594EDCF	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-06-26 07:17:48	7F8F9AE03D1BA4354671E05F07A40F1A	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-06-26 07:17:48	5F8EE9311ECF078CD9426874FFAD660C	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-06-26 07:17:48	57DFACB53ED16190EF732E2430B39741	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-06-26 07:17:48	083BCA14FCE290D682D8DAC9372CBF23	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-06-26 07:17:47	FF84182188CA8F0DC28CFED06C9B7816	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-06-26 07:17:47	AFF5C12099B87FA645F8867701729894	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-06-26 07:17:47	6E295C7364DAEB151CC0E98434B6AC92	2885632	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-06-26 07:17:47	33B5F1A727FACDEA7CDA0E35FFAADDCF	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-06-26 07:17:47	0EDA3219FA027A486AA11269355AB279	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-06-26 07:17:46	AE5A2843B4A2E1E558B9EE13EF62CCE5	14404096	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-06-26 07:17:46	ACD6FE6C82B93813F023FC01A51CB940	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-06-26 07:17:46	8909A24DA8B5C426CF6595BA843B6CC5	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-06-26 07:17:46	35622F5A652C4E16774234DCA0026E74	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-06-26 07:17:45	CFA52E2FE8E623042A1EEF96EB1B9481	6026240	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-06-26 07:17:45	83781DF625A4448B39410D7FA2BDC48D	816640	----a-w-	C:\Windows\Sysnative\jscript.dll
2015-06-26 07:17:45	4A5A84B457C72E79A64AE4036EC6BB0E	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-06-26 07:17:45	417F80E4AFBA1AA9EBBD618F1C6D9165	2426880	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-06-26 07:17:45	3854BFE1C0F14872C94501421CC40813	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-06-26 07:17:45	2BC2D3A41BB755487FD55C09938F00BC	417792	----a-w-	C:\Windows\Sysnative\html.iec
2015-06-26 07:17:44	A29BAFC1543F9D2234AFFFEA9BCE76C8	24917504	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-06-26 07:17:44	16091938F6CDBCCCBA1CBE24600121BC	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-06-26 07:17:44	06A8CE6C3AE6B7916F026B0EFDDCAAA5	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-06-26 07:17:33	DF6104DCED89E13A78BA5539CEF5100A	1202176	----a-w-	C:\Windows\Sysnative\drmv2clt.dll
2015-06-26 07:17:33	A53A63831185FF5339E76221BE45E6B9	842240	----a-w-	C:\Windows\Sysnative\blackbox.dll
2015-06-26 07:17:30	7F4D59E70DD6E757E96B40570B498D5C	782848	----a-w-	C:\Windows\Sysnative\wmdrmsdk.dll
2015-06-26 07:17:28	B2F02AB28864B6D5B5B9BEDA565D41BB	497664	----a-w-	C:\Windows\Sysnative\drmmgrtn.dll
2015-06-26 07:17:27	999A7FD4D9F8B1656F1167D94743E50A	457400	----a-w-	C:\Windows\Sysnative\ci.dll
2015-06-26 07:17:25	B7E752FFD95DC61FCB7A6E70E37175E5	693176	----a-w-	C:\Windows\Sysnative\winload.efi
2015-06-26 07:17:25	6AEEC5677AD522786CED371A7BEE620C	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-06-26 07:17:23	8DFDB70E3E56C2F1AE09CB3C03E266E5	1574400	----a-w-	C:\Windows\Sysnative\quartz.dll
2015-06-26 07:17:23	7A4064169FBA91F39DB1FDC094A18DA8	619056	----a-w-	C:\Windows\Sysnative\winload.exe
2015-06-26 07:17:23	73D81B5B4B2655CB1B5662E770F755D5	532176	----a-w-	C:\Windows\Sysnative\winresume.exe
2015-06-26 07:17:23	5FFEE6CA63E27CBA1F32002743E58F3C	631808	----a-w-	C:\Windows\Sysnative\evr.dll
2015-06-26 07:17:23	410F6B1BE785F3630B4782F8E3D85A24	1069056	----a-w-	C:\Windows\Sysnative\cryptui.dll
2015-06-26 07:17:22	DB2D62AA2DF6B1F3D690A9EC9701AA2C	188416	----a-w-	C:\Windows\Sysnative\pcasvc.dll
2015-06-26 07:17:22	94BC902494AFC9F5EBC5FBB61445D73F	82432	----a-w-	C:\Windows\Sysnative\cryptsp.dll
2015-06-26 07:17:22	0BC72EA80234382701EAFC1BE0ECD7E4	432128	----a-w-	C:\Windows\Sysnative\mfplat.dll
2015-06-26 07:17:21	F88B4A9EA1A956F09D5001D08B546228	641024	----a-w-	C:\Windows\Sysnative\msscp.dll
2015-06-26 07:17:21	ED6BF1E1C4F40F600DFEC0CB101A1789	9728	----a-w-	C:\Windows\Sysnative\pcalua.exe
2015-06-26 07:17:21	EA285B947EE48103697CDA53D76C9EEC	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-06-26 07:17:21	CBE684883A45E5B047DA6B4AC46C2112	55808	----a-w-	C:\Windows\Sysnative\rrinstaller.exe
2015-06-26 07:17:21	C4937B9D6EF4D309A60054D4D00EE9DB	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2015-06-26 07:17:21	C0AE7ABD87254B2789C8CB34AF274A65	296448	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2015-06-26 07:17:21	AE66D26930CA536706078537CB5AC840	325632	----a-w-	C:\Windows\Sysnative\msnetobj.dll
2015-06-26 07:17:21	A84C94CF795E08BBB99E4E145F9E81A3	11264	----a-w-	C:\Windows\Sysnative\pcawrk.exe
2015-06-26 07:17:21	947938F265D7CB99653CDFF2B3C0468D	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2015-06-26 07:17:21	84DB8EB3C184BB549ED90A842020F278	58880	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-06-26 07:17:21	7BC64DEEFD0E6812E21DE89F0CF50A49	500224	----a-w-	C:\Windows\Sysnative\AUDIOKSE.dll
2015-06-26 07:17:21	72D4757510FDA69D729169C00AFC211E	32256	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-06-26 07:17:21	6E974F1C384615DEB0710E44F4847351	126464	----a-w-	C:\Windows\Sysnative\audiodg.exe
2015-06-26 07:17:21	6968D02DC38757C3FBE7ED7C2F9670AA	680960	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2015-06-26 07:17:21	589852B65C91F574E980ABDB8205080A	146944	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2015-06-26 07:17:21	56FD1BC602EE0E7949F92EE2EE327B72	284672	----a-w-	C:\Windows\Sysnative\EncDump.dll
2015-06-26 07:17:21	3A7BC2DC99D3C5B172465E890B3C3B14	440832	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2015-06-26 07:17:21	3029D8E78E4BF18A0551E22CD4CB892C	371712	----a-w-	C:\Windows\Sysnative\qdvd.dll
2015-06-26 07:17:21	29143C7827F9F2AC543E792A8C63FBB0	4121600	----a-w-	C:\Windows\Sysnative\mf.dll
2015-06-26 07:17:21	27793FE3FF2D0123896D1A01A2D222C7	37376	----a-w-	C:\Windows\Sysnative\pcadm.dll
2015-06-26 07:17:21	0F79883E27BB1AFE2D9BB4656A1CEFCD	11264	----a-w-	C:\Windows\Sysnative\msmmsp.dll
2015-06-26 07:17:21	00EE5D3E16D42F25F7813ACFA10EC803	24576	----a-w-	C:\Windows\Sysnative\mfpmp.exe
2015-06-26 07:17:20	FE03B35A22C3D2714B494FC2AB32AC5B	8704	----a-w-	C:\Windows\Sysnative\pcaevts.dll
2015-06-26 07:17:20	8364A0F7633414DC5C50A37295B1FAFF	2048	----a-w-	C:\Windows\Sysnative\mferror.dll
2015-06-26 07:16:55	AA5319FA8602676B5D3A2B4A1355896D	1255424	----a-w-	C:\Windows\Sysnative\diagtrack.dll
2015-06-26 07:16:55	8A4EB32C7C948F70EAC6F85063596A39	36864	----a-w-	C:\Windows\Sysnative\UtcResources.dll
2015-06-26 07:16:54	9E2A2028228645DD57EF45A02CAC0CCE	5569984	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-06-26 07:16:54	93A05407F8E53BC731C42AAD56163F80	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-06-26 07:16:54	53042708C242959B3924242FBBE297B1	1728960	----a-w-	C:\Windows\Sysnative\ntdll.dll
2015-06-26 07:16:53	8DCA1C70AF170C3FBCE47A4F49BFC887	424960	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2015-06-26 07:16:53	6FDF03A3B110C5264F52F979335AE301	1162752	----a-w-	C:\Windows\Sysnative\kernel32.dll
2015-06-26 07:16:53	6ECD6D92F43C2DC55099F892978D5BE7	728576	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-06-26 07:16:53	66DF73B202105406602941778792FE3D	879104	----a-w-	C:\Windows\Sysnative\tdh.dll
2015-06-26 07:16:53	37DFCC91E419952772E02F2B3BBB2E2B	342016	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-06-26 07:16:52	996EE6571ADB880A60846DD02C8D5869	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-06-26 07:16:51	6ACFCC28E4D60B5A931D8749332A14E2	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-06-26 07:16:51	5A17FF38EDE95B2313E428BF444126D7	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2015-06-26 07:16:51	4FFD08A01047EF6B58F6EB4E6D001A8D	879104	----a-w-	C:\Windows\Sysnative\advapi32.dll
2015-06-26 07:16:50	FF9BBFAE899091C1FF0D1A3F2C587911	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2015-06-26 07:16:50	A5F57F4866C2DC7F8215058D7D56BD21	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-06-26 07:16:50	7C5E375F20F639607376351A8BCC0647	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-06-26 07:16:50	2313AF8D5A9CEB4A55400A01DD311A95	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2015-06-26 07:16:49	E20BF3FA89DE67B00ED713B5254C0BF0	47104	----a-w-	C:\Windows\Sysnative\typeperf.exe
2015-06-26 07:16:49	D68690450978D127E030FB14E9B2023B	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2015-06-26 07:16:49	CCB352B939B77B38983DD878C547451F	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-06-26 07:16:49	AF557D115972A73964FC8F209300948A	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-06-26 07:16:49	AD54856A16B635720B0BE5FAF44526FC	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-06-26 07:16:49	A929B9ABA1083AF35ECE7BD63AF3E42F	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-06-26 07:16:49	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-06-26 07:16:49	858F04B3C39239972959E9EE97CACAE4	43008	----a-w-	C:\Windows\Sysnative\relog.exe
2015-06-26 07:16:49	837BBE4170D5A75F293BD6F294A8FE34	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-06-26 07:16:49	6E882D7CA34073890107559B5A515A24	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-06-26 07:16:49	6ACD3C75BE449F039E1A4E43424D5B6F	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-06-26 07:16:49	6703266C1E56157B5965F9AC868A20AC	404992	----a-w-	C:\Windows\Sysnative\tracerpt.exe
2015-06-26 07:16:49	5EC57AC6DC16CB8A058CA019AA2C188D	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-06-26 07:16:49	4F90A7A0FCBC0ED18E573917860062FF	113664	----a-w-	C:\Windows\Sysnative\sechost.dll
2015-06-26 07:16:49	48C30C54194142910FB6B86D308220ED	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2015-06-26 07:16:49	289D99B0879C6ED5C6D1B3A856CA6DA3	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-06-26 07:16:49	210E7D1EA34369194BE09493784E27BE	104448	----a-w-	C:\Windows\Sysnative\logman.exe
2015-06-26 07:16:49	20BD408AC3F8576997D6A47F48A1C5B2	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2015-06-26 07:16:49	1B93381366141875D8EE7EC1085236B9	19456	----a-w-	C:\Windows\Sysnative\diskperf.exe
2015-06-26 07:16:49	17A6A9AAD04CCC6EE53290585BFC43AF	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-06-26 07:16:49	16154A6682B1552DEAB953BFA4B8E955	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-06-26 07:16:49	13DE715D959DD502CFD52DC920408B33	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-06-26 07:16:49	11D5815F0DC571CE3C72213B375860B1	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-06-26 07:16:49	03BA5D20751137F3A705B389C52DB8D6	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-06-26 07:16:35	FE91DC3D9A696CCDDB9F51C25ACBC53A	782848	----a-w-	C:\Windows\Sysnative\gpsvc.dll
2015-06-26 07:16:09	AE4FEDD98096C09A8A86E021FC5E9D67	861696	----a-w-	C:\Windows\Sysnative\oleaut32.dll
2015-06-26 07:16:00	B6A58491307B4CADA572583D863DC602	210432	----a-w-	C:\Windows\Sysnative\profsvc.dll
2015-06-26 07:15:54	ED4B980701D081AC42F7B121C1E42149	460800	----a-w-	C:\Windows\Sysnative\certcli.dll
2015-06-26 07:15:51	E612E86FA15EA1EF9A52433A2743C447	1179136	----a-w-	C:\Windows\Sysnative\FntCache.dll
2015-06-26 07:15:51	490505F6E53EF046EC70A353BC9CD615	1647104	----a-w-	C:\Windows\Sysnative\DWrite.dll
2015-06-26 07:15:45	01F9FEB7F0C84EA1AC6A9B4D7C6B0435	14177280	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-06-26 07:15:43	8B301D474B478E9A92823BAB50A7BC49	303616	----a-w-	C:\Windows\Sysnative\nlasvc.dll
2015-06-26 07:15:42	51F89CE2D0FEC66070354504E6C4C3E4	633856	----a-w-	C:\Windows\Sysnative\comctl32.dll
2015-06-26 07:15:41	9D80A82B0BB77AC3EF6A87FA0C534E20	14635008	----a-w-	C:\Windows\Sysnative\wmp.dll
2015-06-26 07:15:39	834FD7C31EA16D59CC3B2DC60F2F2620	9728	----a-w-	C:\Windows\Sysnative\spwmp.dll
2015-06-26 07:15:39	51ECEE70F33601310DDEF3EEE39550D3	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2015-06-26 07:15:39	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\msdxm.ocx
2015-06-26 07:15:39	1A8C5D4BE449E4A9D8667A341E535E22	5120	----a-w-	C:\Windows\Sysnative\dxmasf.dll
2015-06-26 07:15:38	1EE2DBA5AD2E5EB618C7FB187C2CFDF4	3206144	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-06-26 07:15:35	71C85477DF9347FE8E7BC55768473FCA	328704	----a-w-	C:\Windows\Sysnative\services.exe
2015-06-26 07:15:33	D4F3D0B720068FF03DE5213D5143F062	105472	----a-w-	C:\Windows\Sysnative\tlntsess.exe
2015-06-26 07:15:31	7150E809474BBD4D4AD24B13FA2454E5	1239720	----a-w-	C:\Windows\Sysnative\aitstatic.exe
2015-06-26 07:15:31	6F07FC190DBCB42C8A5319235F72F906	423424	----a-w-	C:\Windows\Sysnative\devinv.dll
2015-06-26 07:15:31	6E2EB5A36C3CCD917F7FF9BED7C1390E	45568	----a-w-	C:\Windows\Sysnative\acmigration.dll
2015-06-26 07:15:31	2DCA988113A02EB9BCB98A5DC2D34E57	700416	----a-w-	C:\Windows\Sysnative\generaltel.dll
2015-06-26 07:15:30	E87D4371B24BC9E5BAE95AEA60FFD959	193536	----a-w-	C:\Windows\Sysnative\aepic.dll
2015-06-26 07:15:30	CFF429F2234C1D1A5993E80F46C37CFB	1119232	----a-w-	C:\Windows\Sysnative\aeinv.dll
2015-06-26 07:15:30	B23AB4C401E2DE02C47B7497D41E2318	757248	----a-w-	C:\Windows\Sysnative\invagent.dll
2015-06-26 07:15:30	587BBA3B3959144334700EC48232712F	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2015-06-26 07:15:30	52DEF4C743C2EABD6BD3EDC790A0E778	1021440	----a-w-	C:\Windows\Sysnative\appraiser.dll
2015-06-26 07:15:28	0A4D03A4C0F908B15B8A4C48FB18F197	1424896	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2015-06-26 07:15:27	F55F287810AAF708618793764AF7D1BB	23552	----a-w-	C:\Windows\Sysnative\sdbinst.exe
2015-06-26 07:15:27	83BFCCAC53795E8A5055A93672D0C46C	72192	----a-w-	C:\Windows\Sysnative\aelupsvc.dll
2015-06-26 07:15:27	7E21D3072EB20D5400919D435D549A9B	6656	----a-w-	C:\Windows\Sysnative\shimeng.dll
2015-06-26 07:15:27	31D260ADAF1CCFEFC49DB9FBCE9986DA	342016	----a-w-	C:\Windows\Sysnative\apphelp.dll
2015-06-26 07:15:24	6B0F962B1EE486FFE7BCABBC9C736976	24576	----a-w-	C:\Windows\Sysnative\jnwmon.dll
2015-06-26 07:15:24	2B36E0C5C262437E1B098344DEFA55F8	275456	----a-w-	C:\Windows\Sysnative\InkEd.dll
2015-06-26 07:15:23	F351B0E520502552734BE70AA5940784	41984	----a-w-	C:\Windows\Sysnative\lpk.dll
2015-06-26 07:15:23	DB0BD8B8D68D8211CA23FBE52DACE549	14336	----a-w-	C:\Windows\Sysnative\dciman32.dll
2015-06-26 07:15:23	85D3E918658C2766780F7DEE5F8FBE57	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2015-06-26 07:15:23	39A108604F51821F6F4E2001E9A1CB60	100864	----a-w-	C:\Windows\Sysnative\fontsub.dll
2015-06-26 07:15:23	1307814243F21EB129852D59B5AB37FB	372224	----a-w-	C:\Windows\Sysnative\atmfd.dll
2015-06-26 07:15:21	EA21295A386C6DB2A2A90E657B37C5F4	7168	----a-w-	C:\Windows\Sysnative\KBDYAK.DLL
2015-06-26 07:15:21	BE67D99EDA34A68B827868371B5529AD	7168	----a-w-	C:\Windows\Sysnative\KBDTAT.DLL
2015-06-26 07:15:21	920B5C1CC0BAB6E574297BC3D945DA31	7168	----a-w-	C:\Windows\Sysnative\KBDBASH.DLL
2015-06-26 07:15:21	80EDA24B00478FA795F90DFA09C12E86	7168	----a-w-	C:\Windows\Sysnative\KBDRU1.DLL
2015-06-26 07:15:21	353C4A38042819CA83AEFC6F2E7051CD	6656	----a-w-	C:\Windows\Sysnative\KBDRU.DLL
2015-06-26 07:15:19	E5404072A5A9E0B452ADDF1D1339176C	2543104	----a-w-	C:\Windows\Sysnative\wpdshext.dll
2015-06-26 07:15:15	C7E50B04623FC6FF54EAF88938A8936E	142336	----a-w-	C:\Windows\Sysnative\poqexec.exe
2015-06-26 07:15:14	1FB81632476857E8451DDA8A456EF3CE	215552	----a-w-	C:\Windows\Sysnative\ubpm.dll
2015-06-26 07:15:14	0B85F3551337FE233477DA31545DC45C	1882624	----a-w-	C:\Windows\Sysnative\msxml3.dll
2015-06-26 07:15:13	2AA1704C1475AD9D18560AD07BDA66DF	2048	----a-w-	C:\Windows\Sysnative\msxml3r.dll
2015-06-26 07:15:11	72098048AB8AE2CAFA4ECE35D5051D62	404480	----a-w-	C:\Windows\Sysnative\gdi32.dll
2015-06-26 07:15:10	E88A78273D429554B6B2D2BDA945ED9B	1067520	----a-w-	C:\Windows\Sysnative\msctf.dll
2015-06-26 07:15:09	FE72C89986E1BA32AD926A820491F23F	406528	----a-w-	C:\Windows\Sysnative\scesrv.dll
2015-06-26 07:15:08	745DE455E02693423B1B78F448D52961	79360	----a-w-	C:\Windows\Sysnative\clfsw32.dll
2015-06-26 07:15:08	404B7DF9CA4D1CB675045AF220FF3285	367552	----a-w-	C:\Windows\Sysnative\clfs.sys
2015-06-26 07:05:45	CBA2694BFC61F371181F2BE2BCD66C40	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
====== C:\Windows\Sysnative\drivers =====
2015-06-27 16:57:17	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2015-06-27 16:56:00	AD64450A4ABE076F5CB34CC08EEACB07	30208	----a-w-	C:\Windows\Sysnative\drivers\TsUsbGD.sys
2015-06-27 16:56:00	313F68E1A3E6345A4F47A36B07062F34	19456	----a-w-	C:\Windows\Sysnative\drivers\rdpvideominiport.sys
2015-06-26 07:17:26	ED6E75158D28D33A2E2A020AC5B2B59D	663552	----a-w-	C:\Windows\Sysnative\drivers\PEAuth.sys
2015-06-26 07:17:22	87BCD1034CBF33537D4D4C251D39BA26	94656	----a-w-	C:\Windows\Sysnative\drivers\mountmgr.sys
2015-06-26 07:17:21	90C53BD47979FB8814F465A08B885102	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-06-26 07:17:08	27667A788130A7F7A5858DE27572E6D7	459336	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2015-06-26 07:16:51	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-06-26 07:16:49	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2015-06-26 07:16:35	AA0C2BA3782E92BD85E2264BE418E67C	104896	----a-w-	C:\Windows\Sysnative\drivers\mup.sys
2015-06-26 07:16:34	E94368D48ADF90F03AA65112461AD02B	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-06-26 07:16:34	CF1F6326AC44C42F4615D4BD53188AC5	105984	----a-w-	C:\Windows\Sysnative\drivers\dfsc.sys
2015-06-26 07:16:34	71B6F78D6444CCE6F77BC42917A4E8F7	310272	----a-w-	C:\Windows\Sysnative\drivers\rdbss.sys
2015-06-26 07:16:34	5162FAE8A13CF1F5B6DCD863D09173C7	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-06-26 07:16:34	211FB7D41E50BCBFEFC3512290E0339E	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-06-26 07:15:26	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\Sysnative\drivers\stream.sys
2015-06-26 07:15:20	F61634BEC53F73702A10DE69F6DCAF57	754688	----a-w-	C:\Windows\Sysnative\drivers\http.sys
2015-06-26 07:15:17	AE3334958D8F631FF14A0AEB3D7EFB3A	141312	----a-w-	C:\Windows\Sysnative\drivers\mrxdav.sys
2015-06-17 07:05:52	F49FB3C88E263AE9A246593B0BB29294	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
====== C:\Windows\Tasks ======
2015-06-27 17:19:45	DBAFC880E1A023EC8D7C49DACA3AFF94	3104	----a-w-	C:\Windows\Sysnative\Tasks\{F5202C62-B83E-4EAA-A0EA-5CDB14964E2A}
2015-06-27 16:57:47	DBAFC880E1A023EC8D7C49DACA3AFF94	3104	----a-w-	C:\Windows\Sysnative\Tasks\{8D45ADCB-1E70-4A82-BE3C-9013F2D585AD}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-06-17 07:06:31	--------	d-----w-	C:\Program Files\trend micro
2015-06-16 20:14:13	--------	d-----w-	C:\Program Files\FileZilla FTP Client
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\BramVDBe\AppData\Roaming ======
2015-06-27 15:53:56	--------	d-----w-	C:\Users\Administrator\AppData\Local\LenovoEMCStorageManager
2015-06-27 15:52:03	--------	d-----w-	C:\Users\Administrator\AppData\Roaming\WTablet
2015-06-27 15:39:33	--------	d-----w-	C:\Users\VeerleL\AppData\Local\temp
2015-06-27 15:39:33	--------	d-----w-	C:\Users\pci\AppData\Local\temp
2015-06-27 15:39:33	--------	d-----w-	C:\Users\DefaultAppPool\AppData\Local\temp
2015-06-27 15:39:33	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2015-06-27 15:39:33	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2015-06-27 15:39:33	--------	d-----w-	C:\Users\Administrator\AppData\Local\temp
2015-06-27 11:38:03	--------	d-----w-	C:\Users\BramVDBe\AppData\Local\Avg2015
2015-06-21 07:31:46	--------	d-----w-	C:\Users\Administrator\AppData\Roaming\SpiderOak
2015-06-19 05:39:04	--------	d-----w-	C:\Users\Administrator\AppData\Local\CrashDumps
2015-06-19 05:37:45	--------	d-----w-	C:\Users\Administrator\AppData\Local\Google
2015-06-17 06:30:18	144B9C80E6D49DB03D827006D6DB4B01	50	----a-w-	C:\Users\BramVDBe\AppData\Roaming\mbam.context.scan
2015-06-17 05:55:50	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CrashDumps
2015-06-16 20:15:08	--------	d-----w-	C:\Users\BramVDBe\AppData\Local\CrashDumps
2015-06-16 20:14:14	--------	d-----w-	C:\Users\BramVDBe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-06-03 17:51:07	--------	d-----w-	C:\Users\BramVDBe\AppData\Local\Avg
2015-06-03 17:51:06	--------	d-----w-	C:\Users\VeerleL\AppData\Local\Avg
====== C:\Users\BramVDBe ======
2015-06-27 17:23:17	D98CEC4A4A6877C6A063F4BF734E0DAA	2950961	----a-w-	C:\Users\BramVDBe\Desktop\JRT_NEW.exe
2015-06-27 15:52:00	8E1B08222F20E45A3E8DB04C569F9CB7	8	--sha-r-	C:\Users\Administrator\ntuser.pol
2015-06-27 15:32:04	342F79337765760AD4E392EB67D5ED2C	2585872	----a-w-	C:\Users\BramVDBe\Desktop\WindowsInstaller-KB893803-v2-x86.exe
2015-06-27 15:31:17	1A6501B45306B3F5A125FAACE18C5FDE	2244096	----a-w-	C:\Users\BramVDBe\Desktop\AdwCleaner.exe
2015-06-27 15:25:33	1B28807E950FB1B2F4C9AAD546D6568A	1943800	----a-w-	C:\Users\BramVDBe\Desktop\rkill.exe
2015-06-27 11:37:46	EE386D5ACB945089BCD91766697224BB	1037068	----a-w-	C:\Users\BramVDBe\Desktop\JRT.exe

====== C: exe-files ==
2015-06-27 17:25:17	AF10C249227EF076F00CC5C68B033B47	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-2900568480-4167444633-610546693-66317\$IPKCQHJ.exe
2015-06-27 17:24:12	D29CE9CBE3CD7D1C0C7BB0309665AECD	40806984	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\nsjBAA8.tmp\download.exe
2015-06-27 17:23:28	A107DE2D120C0571B544EEC53D1971AB	1406208	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\TweakingRegistryBackup.exe
2015-06-27 17:23:28	1B128828BF5E4353811B6DA58156B7F4	6656	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\tweaking.com_registry_backup_portable\files\dosdev.exe
2015-06-27 17:23:17	D98CEC4A4A6877C6A063F4BF734E0DAA	2950961	----a-w-	C:\Users\BramVDBe\Desktop\JRT_NEW.exe
2015-06-27 17:22:57	2E0323A94915FAAB10A25F3BABF82584	157696	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
2015-06-27 17:21:34	9BDCF813D65265255B820BC7A704DA3C	1388544	----a-w-	C:\New folder\uninstall.exe
2015-06-27 16:57:17	8E75B1112C374EBDF18FD640DA2F0655	1147392	----a-w-	C:\Windows\System32\mstsc.exe
2015-06-27 16:57:17	79EE5ECB4BE89343E4CF1E48F7769F59	420864	----a-w-	C:\Windows\System32\wksprt.exe
2015-06-27 16:57:17	4676AAA9DDF52A50C829FEDB4EA81E54	1068544	----a-w-	C:\Windows\SysWOW64\mstsc.exe
2015-06-27 16:57:17	108C257D765AAD2E6EC46557DA0B02BD	13824	----a-w-	C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
2015-06-27 16:57:17	0D2C2FAC4F29B5868D39B7267058CFEF	83968	----a-w-	C:\Windows\System32\TSWbPrxy.exe
2015-06-27 16:03:33	E89F94AED85BF3611F61608C26B64177	135168	----a-w-	C:\Windows\System32\wuauclt.exe
2015-06-27 16:03:33	B4667963F9711C644F5E43D9A46D8680	33792	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2015-06-27 16:03:33	19165E301A50829D28C27A832AD16FB0	36864	----a-w-	C:\Windows\System32\wuapp.exe
2015-06-27 15:32:04	342F79337765760AD4E392EB67D5ED2C	2585872	----a-w-	C:\Users\BramVDBe\Desktop\WindowsInstaller-KB893803-v2-x86.exe
2015-06-27 15:32:03	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2015-06-27 15:32:03	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2015-06-27 15:32:03	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2015-06-27 15:32:03	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2015-06-27 15:32:03	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
2015-06-27 15:31:17	1A6501B45306B3F5A125FAACE18C5FDE	2244096	----a-w-	C:\Users\BramVDBe\Desktop\AdwCleaner.exe
2015-06-27 15:25:33	1B28807E950FB1B2F4C9AAD546D6568A	1943800	----a-w-	C:\Users\BramVDBe\Desktop\rkill.exe
2015-06-27 11:37:46	EE386D5ACB945089BCD91766697224BB	1037068	----a-w-	C:\Users\BramVDBe\Desktop\JRT.exe
2015-06-26 07:17:50	73509D13542A90E260F45D1D6D4100A8	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-06-26 07:17:50	70D24021ED327CE7FFA9DEE327BB4C6B	720384	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-06-26 07:17:50	2B3CF8F7903266E2AA5C9D9850FAA8F6	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-06-26 07:17:49	9F45DA24EBAE4180F70D03503580E8CA	815312	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-06-26 07:17:49	8D4E75DEAA0FFBEFB5F366A4770D9644	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-06-26 07:17:49	29874C10D7D0088CD8743EC8F5DABBE4	473600	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-06-26 07:17:48	E21AE910DF0C5CB7D46D8FA17A4567DE	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-06-26 07:17:48	57DFACB53ED16190EF732E2430B39741	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2015-06-26 07:17:47	FF9877ABCA06D539264275321C97BB07	814288	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-06-26 07:17:47	52956B4DD1899CB09BB50FB939F6E99D	490496	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-06-26 07:17:47	0EDA3219FA027A486AA11269355AB279	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-06-26 07:17:23	7A4064169FBA91F39DB1FDC094A18DA8	619056	----a-w-	C:\Windows\System32\winload.exe
2015-06-26 07:17:23	7A4064169FBA91F39DB1FDC094A18DA8	619056	----a-w-	C:\Windows\System32\Boot\winload.exe
2015-06-26 07:17:23	73D81B5B4B2655CB1B5662E770F755D5	532176	----a-w-	C:\Windows\System32\winresume.exe
2015-06-26 07:17:23	73D81B5B4B2655CB1B5662E770F755D5	532176	----a-w-	C:\Windows\System32\Boot\winresume.exe
2015-06-26 07:17:23	6B4BE7F9923F727C0298E9CB0FB2A406	497080	----a-w-	C:\Windows\Boot\PCAT\memtest.exe
2015-06-26 07:17:21	ED6BF1E1C4F40F600DFEC0CB101A1789	9728	----a-w-	C:\Windows\System32\pcalua.exe
2015-06-26 07:17:21	EA285B947EE48103697CDA53D76C9EEC	17920	----a-w-	C:\Windows\System32\appidcertstorecheck.exe
2015-06-26 07:17:21	CBE684883A45E5B047DA6B4AC46C2112	55808	----a-w-	C:\Windows\System32\rrinstaller.exe
2015-06-26 07:17:21	A84C94CF795E08BBB99E4E145F9E81A3	11264	----a-w-	C:\Windows\System32\pcawrk.exe
2015-06-26 07:17:21	6E974F1C384615DEB0710E44F4847351	126464	----a-w-	C:\Windows\System32\audiodg.exe
2015-06-26 07:17:21	589852B65C91F574E980ABDB8205080A	146944	----a-w-	C:\Windows\System32\appidpolicyconverter.exe
2015-06-26 07:17:21	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2015-06-26 07:17:21	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2015-06-26 07:17:21	00EE5D3E16D42F25F7813ACFA10EC803	24576	----a-w-	C:\Windows\System32\mfpmp.exe
2015-06-26 07:16:54	9E2A2028228645DD57EF45A02CAC0CCE	5569984	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-06-26 07:16:54	641A14E6AC492ED45BC68815E2E2F566	3989440	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-06-26 07:16:53	583FFF12D2F0D6E1A8746462C433895F	3934144	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-06-26 07:16:49	FB224B0A63B8F58E91FE8A314AD295AD	17408	----a-w-	C:\Windows\SysWOW64\diskperf.exe
2015-06-26 07:16:49	F85FA29340A536C8E0A16151B9B03923	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-06-26 07:16:49	EEA17E843EE2EE50D623BEACF50BD815	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2015-06-26 07:16:49	EC6E5AE2ECFE7A335B370865A1158EF8	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2015-06-26 07:16:49	E20BF3FA89DE67B00ED713B5254C0BF0	47104	----a-w-	C:\Windows\System32\typeperf.exe
2015-06-26 07:16:49	9BBEA639884C0338DD78654277BD188A	112640	----a-w-	C:\Windows\System32\smss.exe
2015-06-26 07:16:49	858F04B3C39239972959E9EE97CACAE4	43008	----a-w-	C:\Windows\System32\relog.exe
2015-06-26 07:16:49	6C06D2B1CF88AB83F1CFB24928F63107	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2015-06-26 07:16:49	6703266C1E56157B5965F9AC868A20AC	404992	----a-w-	C:\Windows\System32\tracerpt.exe
2015-06-26 07:16:49	629AD3FDA168D82D459164044A29F9BB	40448	----a-w-	C:\Windows\SysWOW64\typeperf.exe
2015-06-26 07:16:49	48C30C54194142910FB6B86D308220ED	338432	----a-w-	C:\Windows\System32\conhost.exe
2015-06-26 07:16:49	3E6731BF36A7D6C62D09671B427B6B67	37888	----a-w-	C:\Windows\SysWOW64\relog.exe
2015-06-26 07:16:49	3C1BE79C3CE6EB378108B11D94CA1072	364544	----a-w-	C:\Windows\SysWOW64\tracerpt.exe
2015-06-26 07:16:49	3B5DA649BF7B7D07510C06DE0AEEB4EB	82944	----a-w-	C:\Windows\SysWOW64\logman.exe
2015-06-26 07:16:49	210E7D1EA34369194BE09493784E27BE	104448	----a-w-	C:\Windows\System32\logman.exe
2015-06-26 07:16:49	1B93381366141875D8EE7EC1085236B9	19456	----a-w-	C:\Windows\System32\diskperf.exe
2015-06-26 07:16:49	17A6A9AAD04CCC6EE53290585BFC43AF	31232	----a-w-	C:\Windows\System32\lsass.exe
2015-06-26 07:16:49	16154A6682B1552DEAB953BFA4B8E955	296960	----a-w-	C:\Windows\System32\rstrui.exe
2015-06-26 07:16:49	03BA5D20751137F3A705B389C52DB8D6	64000	----a-w-	C:\Windows\System32\auditpol.exe
2015-06-26 07:15:40	E39D7E7FCC5D4B77B8CBA52FEF8753DE	102912	----a-w-	C:\Program Files\Windows Media Player\wmpshare.exe
2015-06-26 07:15:40	8D3316795ACCC0EC0DD6A844E046DA68	167424	----a-w-	C:\Program Files\Windows Media Player\wmplayer.exe
2015-06-26 07:15:40	5F7B628B5F10531E8DE3E711ED73AAD7	164864	----a-w-	C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2015-06-26 07:15:40	44854DDB738BF2C507FC2162245361D6	102400	----a-w-	C:\Program Files\Windows Media Player\wmpconfig.exe
2015-06-26 07:15:39	6F139F39295000E6301C0D08F7493CC6	101888	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpconfig.exe
2015-06-26 07:15:39	3505E5A7664FD84AC8AE51FE3B545AE1	102400	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpshare.exe
2015-06-26 07:15:35	71C85477DF9347FE8E7BC55768473FCA	328704	----a-w-	C:\Windows\System32\services.exe
2015-06-26 07:15:33	D4F3D0B720068FF03DE5213D5143F062	105472	----a-w-	C:\Windows\System32\tlntsess.exe
2015-06-26 07:15:32	E61C378A29979BD8840EEFAC0F36C231	406528	----a-w-	C:\Windows\SysWOW64\GWX\GWX.exe
2015-06-26 07:15:32	B94C770978AD994F419D92FE24FD3F0F	360240	----a-w-	C:\Windows\System32\GWX\GWXUXWorker.exe
2015-06-26 07:15:32	A9B579DCC2BCAB35AAD2B88F0C22ACF2	476160	----a-w-	C:\Windows\System32\GWX\GWX.exe
2015-06-26 07:15:32	4F7DF2B33A4691E08B2B96FC98A4388F	401408	----a-w-	C:\Windows\System32\GWX\GWXUX.exe
2015-06-26 07:15:32	39553E30D5CE09168F1E82A2FA563FDF	667136	----a-w-	C:\Windows\System32\GWX\GWXConfigManager.exe
2015-06-26 07:15:31	7150E809474BBD4D4AD24B13FA2454E5	1239720	----a-w-	C:\Windows\System32\aitstatic.exe
2015-06-26 07:15:31	17D815AD21D4325CD589E57A9582E311	70840	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2015-06-26 07:15:30	8D06AAF1723B514C412187C5B8B67EEF	46752	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2015-06-26 07:15:30	4AC38FC4C6894B21698A99B9129B1EA4	161952	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2015-06-26 07:15:27	F55F287810AAF708618793764AF7D1BB	23552	----a-w-	C:\Windows\System32\sdbinst.exe
2015-06-26 07:15:27	715C060150D969B0DE5DD5B365A712AF	20992	----a-w-	C:\Windows\SysWOW64\sdbinst.exe
2015-06-26 07:15:24	D5E35700566B225CBF8ECD7F92C460C8	2164224	----a-w-	C:\Program Files\Windows Journal\Journal.exe
2015-06-26 07:15:24	0DBC9BB05703CA0D8792E2075D62B3C3	51200	----a-w-	C:\Program Files\Windows Journal\PDIALOG.exe
2015-06-26 07:15:15	C7E50B04623FC6FF54EAF88938A8936E	142336	----a-w-	C:\Windows\System32\poqexec.exe
2015-06-26 07:15:15	C489D8B4D8C64F20CC75A93F541F7D91	123904	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-06-21 07:24:21	6A61133667A63E3D9CC15F006D17D13A	294912	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_xp.exe
2015-06-21 07:24:21	53D3E33AD31AF6716559F29E889ACA49	306688	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_vista_64.exe
2015-06-21 07:24:20	ED94A8B1E8AA6FEB31387384061FB080	206848	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_vista_32.exe
2015-06-21 07:24:20	D64426C77296E981F5B28709196BE972	29664	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\Backup_Failed_Message.exe
2015-06-21 07:24:20	CD82EA3F01F34AB1A19933FE58A91494	352256	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_2003.exe
2015-06-21 07:24:20	CCEE518E051958CEFB58A81491F3205F	240448	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_7_8_2008_2012_32.exe
2015-06-21 07:24:20	C0CF30371AE2257E1D21CBA60531BEB1	347984	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_7_8_2008_2012_64.exe
2015-06-21 07:24:20	B4B9621A855113141226C1CF90484B73	95200	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_start.exe
2015-06-21 07:24:20	A107DE2D120C0571B544EEC53D1971AB	1406208	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\TweakingRegistryBackup.exe
2015-06-21 07:24:20	5BCE88BF575641349FF8E034F1888422	33760	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\vss_pause.exe
2015-06-21 07:24:20	1B128828BF5E4353811B6DA58156B7F4	6656	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\registry_backup_tool\files\dosdev.exe
2015-06-21 07:24:18	F93B6FC590220F8DE262E8FFF19A56B7	46048	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\tweaking_rati.exe
2015-06-21 07:24:18	61DB058975271F30DB6E35C4E453BB6D	491264	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\tweaking_winverify.exe
2015-06-21 07:24:18	451AE03D3C92777F09840CA56F08AB62	454056	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\SetACL_32.exe
2015-06-21 07:24:18	3E350EB5DF15C06DEC400A39DD1C6F29	559528	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\SetACL_64.exe
2015-06-21 07:24:18	27EC7614F489A47B6B6BB310ABF54DE4	66528	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\Tweaking_CleanMem.exe
2015-06-21 07:24:18	13DE29CF5CEE42AF76A0D20019AF6086	46048	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\files\tweaking_ras.exe
2015-06-21 07:24:17	8007AF9F2434F390AA51F0A516B9756F	66816	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\WR_Tray_Icon.exe
2015-06-21 07:24:17	74406159E0261BB243C320DD64F67A4B	633088	----a-w-	C:\Users\BramVDBe\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair\Repair_Windows.exe
=== C: other files ==
2015-06-27 17:23:28	D6283BDB04541FB657E651DFA7853944	14527	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\mws.bat
2015-06-27 17:23:28	A8F5541C419593F3ECAC0E0A3FB0F2BA	1162	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\surfvox.bat
2015-06-27 17:23:28	49B4FCAB4947D8A494C0108127101009	4756	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\chrome_pref.bat
2015-06-27 17:22:57	FD2FC2375C53B0655D053E023DD34998	16970	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\get.bat
2015-06-27 17:22:57	F206D8CBAD79E949AC9ADBE8AF2D60B7	2374	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\medfos.bat
2015-06-27 17:22:57	D574912A12CAAFD0E47A7757A0D9527F	9174	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\searchlnk.bat
2015-06-27 17:22:57	CC6C23C02BE66014AD87F2678BBB3A1D	8117	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\modules.bat
2015-06-27 17:22:57	C9728DF3740B6E600D04D2142CE9EFD1	7353	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\runvalues.bat
2015-06-27 17:22:57	C16EBCAA02F2976408D2F5A68D2562FF	1771	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\delfolders.bat
2015-06-27 17:22:57	B964B792D3692699CD7D4FDB63EE470E	1239	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\FWPolicy.bat
2015-06-27 17:22:57	B23B16209341AEAE62A7D32117A36F55	1192	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\TDL4.bat
2015-06-27 17:22:57	A6DEDFDFF4E2321F44790819C5F310F1	13907	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\chrome.bat
2015-06-27 17:22:57	93A6196509429319C854A941F14F1E7C	252	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\ev_clear.bat
2015-06-27 17:22:57	9246BABAAAE2978EABF6F0D784B0683D	34543	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\prelim.bat
2015-06-27 17:22:57	81F82F01664FD84D77EF8521A2C39463	23026	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\ask.bat
2015-06-27 17:22:57	7CB56FF85180DD34568A38A34A28CD6C	152939	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\firefox.bat
2015-06-27 17:22:57	728F09FACE1F985FC303732D005110A7	144981	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\misc.bat
2015-06-27 17:22:57	654E9FE74B930A454EE5BDE165794B65	85	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\delorphans.bat
2015-06-27 17:22:57	5AE8F4442CA6D69FE9A6738E8DB411F2	10261	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\JRT.bat
2015-06-27 17:22:57	23083ABAA46752ABDBD21E23836E93B1	31058	----a-w-	C:\Users\BramVDBe\AppData\Local\Temp\jrt\iexplore.bat
2015-06-27 16:57:17	E9981ECE8D894CEF7038FD1D040EB426	56832	----a-w-	C:\Windows\System32\drivers\TsUsbFlt.sys
2015-06-27 16:56:00	AD64450A4ABE076F5CB34CC08EEACB07	30208	----a-w-	C:\Windows\System32\drivers\TsUsbGD.sys
2015-06-27 16:56:00	313F68E1A3E6345A4F47A36B07062F34	19456	----a-w-	C:\Windows\System32\drivers\rdpvideominiport.sys
2015-06-27 15:33:16	DB1001C309E348722962B4F7B2E7CDA2	5127	----a-w-	C:\Qoobox\BackEnv\SetPath.bat
2015-06-26 07:17:26	ED6E75158D28D33A2E2A020AC5B2B59D	663552	----a-w-	C:\Windows\System32\drivers\PEAuth.sys
2015-06-26 07:17:22	87BCD1034CBF33537D4D4C251D39BA26	94656	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2015-06-26 07:17:21	90C53BD47979FB8814F465A08B885102	61440	----a-w-	C:\Windows\System32\drivers\appid.sys
2015-06-26 07:17:08	27667A788130A7F7A5858DE27572E6D7	459336	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-06-26 07:16:51	272C27711C8AA6E7815EE33F8ACA9C66	155584	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-06-26 07:16:49	BF69D973523D539A35807946C6DA7E16	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-06-26 07:16:35	AA0C2BA3782E92BD85E2264BE418E67C	104896	----a-w-	C:\Windows\System32\drivers\mup.sys
2015-06-26 07:16:34	E94368D48ADF90F03AA65112461AD02B	290816	----a-w-	C:\Windows\System32\drivers\mrxsmb10.sys
2015-06-26 07:16:34	CF1F6326AC44C42F4615D4BD53188AC5	105984	----a-w-	C:\Windows\System32\drivers\dfsc.sys
2015-06-26 07:16:34	71B6F78D6444CCE6F77BC42917A4E8F7	310272	----a-w-	C:\Windows\System32\drivers\rdbss.sys
2015-06-26 07:16:34	5162FAE8A13CF1F5B6DCD863D09173C7	129024	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2015-06-26 07:16:34	211FB7D41E50BCBFEFC3512290E0339E	159232	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2015-06-26 07:15:38	1EE2DBA5AD2E5EB618C7FB187C2CFDF4	3206144	----a-w-	C:\Windows\System32\win32k.sys
2015-06-26 07:15:30	7EBB5DAD11B1D0B12317A191C8325991	21128	----a-w-	C:\Windows\System32\appraiser\nxquery.sys
2015-06-26 07:15:26	36E0DDD19038C92B7C7709BFA03F813F	69888	----a-w-	C:\Windows\System32\drivers\stream.sys
2015-06-26 07:15:20	F61634BEC53F73702A10DE69F6DCAF57	754688	----a-w-	C:\Windows\System32\drivers\http.sys
2015-06-26 07:15:17	AE3334958D8F631FF14A0AEB3D7EFB3A	141312	----a-w-	C:\Windows\System32\drivers\mrxdav.sys
2015-06-26 07:15:08	404B7DF9CA4D1CB675045AF220FF3285	367552	----a-w-	C:\Windows\System32\clfs.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Copy"="C:\Users\BramVDBe\AppData\Roaming\Copy\CopyAgent.exe"

[HKEY_USERS\S-1-5-21-2900568480-4167444633-610546693-66317\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_5A1C094BFE2F907DE96399666CC6E97A"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Copy"="C:\Users\BramVDBe\AppData\Roaming\Copy\CopyAgent.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_5A1C094BFE2F907DE96399666CC6E97A"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrobat Assistant 8.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Adobe\\Acrobat 10.0\\Acrobat\\Acrotray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS5.5ServiceManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS5.5ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS5.5ServiceManager\\CS5.5ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ANT Agent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ANT Agent"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Garmin\\ANT Agent\\ANT Agent.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Communicator]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Communicator"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Lync\\communicator.exe\" /fromrunkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Copy]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Copy"
"hkey"="HKCU"
"command"="\"C:\\Users\\BramVDBe\\AppData\\Roaming\\Copy\\CopyAgent.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\BramVDBe\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GoogleChromeAutoLaunch_5A1C094BFE2F907DE96399666CC6E97A]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleChromeAutoLaunch_5A1C094BFE2F907DE96399666CC6E97A"
"hkey"="HKCU"
"command"="\"C:\\Users\\BramVDBe\\AppData\\Local\\Google\\Chrome\\Application\\chrome.exe\" --no-startup-window"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GoogleDriveSync]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleDriveSync"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Google\\Drive\\googledrivesync.exe\" /autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Microsoft Office\\Office14\\GROOVEMN.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HTC Sync Loader]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HTC Sync Loader"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\HTC\\HTC Sync 3.0\\htcUPCTLoader.exe\" -startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OfficeSyncProcess]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="OfficeSyncProcess"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\MSOSYNC.EXE\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SkyDrive]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SkyDrive"
"hkey"="HKCU"
"command"="\"C:\\Users\\BramVDBe\\AppData\\Local\\Microsoft\\SkyDrive\\SkyDrive.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpiderOak]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SpiderOak"
"hkey"="HKCU"
"command"="C:\\Program Files\\SpiderOak\\SpiderOak.exe --windows_startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SugarSync]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SugarSync"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\SugarSync\\SugarSync.exe\" -startInTray -usedelay=true"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk"
"backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PC Auto Backup.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\PC Auto Backup.lnk"
"backup"="C:\\Windows\\pss\\PC Auto Backup.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\Samsung\\PCAUTO~1\\AUTOBA~1.EXE "
"item"="PC Auto Backup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^BramVDBe^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft SharePoint Workspace.lnk]
"path"="C:\\Users\\BramVDBe\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Microsoft SharePoint Workspace.lnk"
"backup"="C:\\Windows\\pss\\Microsoft SharePoint Workspace.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\MICROS~2\\Office14\\GROOVE.EXE /TrayOnly"
"item"="Microsoft SharePoint Workspace"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeActiveFileMonitor10.0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BDESVC]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CcmExec]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\dsNcService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\JuniperAccessService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Microsoft SharePoint Workspace Audit Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WiselinkPro]


==== Startup Folders ======================

2015-06-27 15:53:57	1069	----a-w-	C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technologie monitor 2.0.lnk
2012-02-07 07:54:14	1069	----a-w-	C:\Users\pci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technologie monitor 2.0.lnk
2015-01-14 18:33:12	1109	----a-w-	C:\Users\VeerleL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2014-02-07 19:28:16	1235	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LenovoEMC Storage Manager.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/10/2013 11:43]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/05/2012 21:01]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/05/2012 21:01]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-AGR-BramVDBe" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Launch HTC Sync Loader" [C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe]
"C:\Windows\SysNative\tasks\{8D45ADCB-1E70-4A82-BE3C-9013F2D585AD}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{F5202C62-B83E-4EAA-A0EA-5CDB14964E2A}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [10/02/2012 15:03]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

Docs - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\BramVDBe\AppData\Local\Google\Chrome\User Data\Default\Preferences
gcm.onMessage","identity.onSignInChanged","notifications.onButtonClicked","notifications.onClicked","notifications.onClosed","notifications.onPermissionLevelChanged","notifications.onShowSettings","runtime.onInstalled","runtime.onStartup","runtime.onSuspend","storage.onChanged"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13078955995923441","location":5,"manifest":{"background":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/gcm","https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","gcm","identity","metricsPrivate","notifications","storage","tabs","webstorePrivate","*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/chromenow/v1/*","https://*.googleapis.com/gcm/*","https://*.googleusercontent.com/*"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\43.0.2357.124\\resources\\google_now","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false}}},"http_original_content_length":"170518","http_received_content_length":"170518","intl":{"accept_languages":"en-US,en"},"invalidator":{"client_id":"6uZj3yT57W/LwsNYj8O5fQ=="},"media":{"device_id_salt":"QjKxeZb4ZwbYtpLlzKgm9g=="},"net":{"http_server_properties":{"servers":{"ajax.googleapis.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]}},"version":3}},"pinned_tabs":[],"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"profile":{"avatar_bubble_tutorial_shown":1,"avatar_index":0,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Standaardprofiel","per_host_zoom_levels":{}},"protection":{"macs":{"browser":{"show_home_button":"20B7CD98A1CAAADFCE536C1F83AB66BB0F6995726CC36FD78EFD15511864C691"},"default_search_provider":{"keyword":"AC98122F5353654843508D71614E2B239EB7616C2457E6790A3A02C1232EE41D","name":"39FDC5CEF1254A1C901FFDF580C327FDCA5DB9382B4E493576EB7F6DB2EE1FC4","search_url":"4211340F8CA4ACD23F6372B4E1F2696095A2FA779F396AA07AA4EF5918E20823"},"default_search_provider_data":{"template_url_data":"B5B54F8C6CD5150C4B4766911567C319F3142C67855FD39490B851E1B8880C7D"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"FF749CF4C1E23F6E2EC77CA20B8C74BBC1A4869E1C82B28510C1660355CF289C","bepbmhgboaologfdajaanbcjmnhjmhfn":"278361780C08D47D31F8D32256D67DD9FA44ABFBA13556D11C8438FF620C1507","eemcgdkfndhakfknompkggombfjjjeno":"5910E41F81F1BE1FEC737A06CD073B535BA421FED470169289D50957A13170B8","ennkphjdgehloodpbhlhldgbnhmacadg":"6C554CC37DF4142C1E0254306DC9F2F6F4E81F4080A1FE9E9FC23BC025D8CC57","gfdkimpbcpahaombhbimeihdjnejgicl":"351E43F814EEAB31962BC7A42CAAED12BFE815485C44ABB3FF97CA528C2E4E30","kmendfapggjehodndflmmgagdbamhnfd":"5E43E43173A6CBE81730548E6FBCA45F7F60FD75BCBB24158020B6ED0C752B52","mfehgcgbbipciphmccgaenjidiccnmng":"947D422ABC7319B78C1F86EAF6A5CF54D1BC05DC64CB12287BB04AE72D510057","mfffpogegjflfpflabcdkioaeobkgjik":"9BD5417555E5D70E89EC5639B434A9C5EC0098CD252584AA840BD2F6A4AF7350","mgndgikekgjfcpckkfioiadnlibdjbkf":"4E28EE9B1DD384076E9F51789EDE18B0A0461EACC9C30E9757CDC7325D5DA1D7","mhjfbmdgcfjbbpaeojofohoefgiehjai":"334AD0BD7F40E0EC540F81426FD4CD63EDF590CDD7ECD585FCB1B71283802989","nbpagnldghgfoolbancepceaanlmhfmd":"9ADFE4B3E329C366AD0E03258B89E904A6FC0807CA8576741F80ED860C151718","neajdppkdcdipfabeoofebfddakdcjhd":"85DDCA6B93604D6E63375969C6D698F4D1234F106E520686B7435F6918E9BFB8","nkeimhogjdpnpccoofpliimaahmaaome":"5C8F03FB059B1AC80C7C5183F103EABFB425BAEEA2E27018BE8466F361C15AA9","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"77568B53069D9F511EE256F794157C9E03B2F1D980F300FF6ADB8F2810740F32"}},"google":{"services":{"last_username":"6CA5DF1C0D05CEB5D4B0E52962AD9EA4045ECFA280CA2325B0C9973EA4A94274","username":"ECCBC35003EA40B7DE6A809D94174BC52DA8F4EDF3933D2B3F97D2916A1C0714"}},"homepage":"FE17F63EB8F54AA5F7E4BDF0E92467ADDAD648511351E3F9654F42560B55D6C3","homepage_is_newtabpage":"A2770B9777B24728B5C5CD03754D513FFC55E0D745960BA383E5EDE8980276E1","pinned_tabs":"416CA110E7A8DC1856FEB1D0CC9D9B29E77679A2BC0DEFDE3F79747AED54AF16","prefs":{"preference_reset_time":"EEE70E2B34F4C71C685B2967778A90C8BEAF1189C1D6BC8DE68EDB453B2BF4F7"},"profile":{"reset_prompt_memento":"5C10C9E59CBDE4182D6C870651A5729FD5ADEEA0B4C81F4143399287A9D014E9"},"safebrowsing":{"incidents_sent":"27DA0531A476DC353E009A4AAB32657B433B4C0352DDFAE022D807DDAA18E526"},"search_provider_overrides":"922128C17AD81EC9594D71CCD9D6EC53229F7BE8A906BB1F77F8CC754BF878DD","session":{"restore_on_startup":"3BCCE92B34C55D06106774D0B886737E8AA53993647BF4D0DFD386E679D5415E","startup_urls":"300D705F253E7B4A88FAB041EF41B11A09DC3DF762812B807CED499554815592"},"software_reporter":{"prompt_reason":"AFE9E6D682B0858A5B81A3C7592193CA6533265AD9EBA678D59340DA04200A1F","prompt_seed":"B909ECB650D022576D9ED74DF39F7819323FE15CF3D2523359003BA6F892AFD8","prompt_version":"31F2BCB8C095212E71417D4339841E117DDB4DFFB5C7F5BA4C7C1B4A60662CF6"},"sync":{"remaining_rollback_tries":"4648DB11C4B7D78902538D5565FCC3C328C2673428CF527C390D3529FD8C3FAF"}}},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13078955995897055"},"translate_blocked_languages":["en"],"translate_whitelists":{}}


==== Chromium Fix ======================

C:\Users\VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\http_huizen.trovit.be_0.localstorage deleted successfully
C:\Users\VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Local Storage\http_huizen.trovit.be_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo  Url="http://www.google.com/search?q={sear"
{A83277A4-F5F6-4F4C-BA72-67A60504203E} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F032EE83136FF15488002EF9E5C5E9D7 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F032EE83136FF15488002EF9E5C5E9D7 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_5A1C094BFE2F907DE96399666CC6E97A deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\BramVDBe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\BramVDBe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\pci\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\VeerleL\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\VeerleL\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\BramVDBe\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\VeerleL\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=328 folders=72 174345869 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\temp emptied successfully
C:\Users\BramVDBe\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\temp emptied successfully
C:\Users\pci\AppData\Local\temp emptied successfully
C:\Users\VeerleL\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot