
Zoek.exe v5.0.0.0 Updated 16-June-2014
Tool run by decalude on 19/06/2014 at 18:49:11.58.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\decalude\Downloads\zoek.exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

19/06/2014 18:50:25 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-995192540-423739602-2840656972-1001\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} deleted successfully
HKEY_USERS\S-1-5-21-995192540-423739602-2840656972-1001\Software\Microsoft\Internet Explorer\SearchScopes\{8fe8d013-c3fd-4802-af48-79274e9f969e} deleted successfully
HKEY_USERS\S-1-5-21-995192540-423739602-2840656972-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A8FBBD84-5331-42A3-B73E-01280FA29F33} deleted successfully
HKEY_USERS\S-1-5-21-995192540-423739602-2840656972-1001\Software\Microsoft\Internet Explorer\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted
C:\PROGRA~3\{BE4DD016-EE56-4AC8-9832-69281423A3D4} deleted
C:\PROGRA~3\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} deleted
C:\PROGRA~2\COMMON~1\ParetoLogic deleted
C:\PROGRA~2\SpeedyPC Software deleted
C:\Users\decalude\AppData\Roaming\ParetoLogic deleted
C:\PROGRA~3\SpeedyPC Software deleted
C:\Users\decalude\AppData\Local\IAC deleted
C:\Users\decalude\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted
C:\Users\decalude\AppData\LocalLow\IAC deleted
C:\WINDOWS\tasks\ParetoLogic Registration3.job deleted
C:\WINDOWS\tasks\ParetoLogic Update Version3.job deleted
C:\WINDOWS\tasks\ParetoLogic Update Version3_triggeronce.job deleted
"C:\Users\decalude\AppData\Roaming\DriverCure\LogFile.txt" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\7ZipDLL.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\CommonLoggingExtension.pxt" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\CommonSpecialist.pxt" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\FSSC.dat" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\LiteUnzip.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\LiteZip.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\MyResources.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\RegCurePro.exe" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\RegHookSpecialist.pxt" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\SBTE.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\SpursDownload.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Utility.pxt" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\vipre.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\AdviceTx.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\bhmem.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\bhsl.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\bmem.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\CatDesc.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\CatID.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\cblk.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ckmem.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\cmem.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\cname.wtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\Cookies.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ctid.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\dexmem.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\dex_hash.dat" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\dnrl.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\dnrlmem.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\elf_hash.dat" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\EPSigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\FastSigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\FileDT.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\FolderDT.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\fsigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\hcol.wtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\hstn.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ih.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ip.vtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\JSSigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\lgpl.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\lib7zip.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libBase64.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libEmail.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libMachoUniv.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libMsCab.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libMsi.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libNSIS.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libOleA.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libRar.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libRTF.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libtd.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libVvs.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\libZip.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\MFastSigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\RegDT.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\remediation.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\RTmem.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\SBFC.dat" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ThreatDT.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\ThreatID.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\TImem.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\vcore.dll" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\VVSSigs.vdx" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\white.wtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions\whsl.wtd" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\btn.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\btn_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_bho.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_defrag.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_file.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_generalsettings.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_ignore.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_junk.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_privacy.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_process.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_registry.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_speedybackup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\button_startup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\settings_button.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\settings_button_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\start.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons\start_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag\c_empty.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag\c_frag.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag\c_unfrag.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag\c_unknown.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag\c_unmove.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\close.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\dlg_title.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\logo.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\max.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\min.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\register.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\register_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\renew.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\renew_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\restore.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\tabactive_bg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\tabover_bg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\tab_bg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\tfn_bg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\tfn_logo.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\title_bar.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\top_logo.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame\upper_divider.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general\collapse.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general\delete.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general\driverbg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general\expand.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general\progress_glow.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\bho.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\ig_drivers.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\ig_proc.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\ig_reg.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_3rd.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_browser.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_email.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_fs.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_im.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_multi.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_office.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\priv_windows.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_apppath.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_com.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_dll.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_extensions.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_filepath.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_font.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_help.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_shortcut.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_startup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\reg_uninstall.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group\startup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_about.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_bho.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_clean.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_defrag.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_driver.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_file.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_junk_settings.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_maintenance.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_process.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_restore.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_settings.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_startup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\header_tools.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\settings_general.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\settings_ignore.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\settings_privacy.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\settings_registry.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers\vipre.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\other.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\check.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage1.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage2.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage3.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage4.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage5.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\damage6.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\error_large.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\Fix.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\Fix_over.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\junk.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\malware.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\md5.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\privacy.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_h.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_h_scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_l.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_l_scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_m.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_mh.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_mh_scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_ml.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_ml_scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\rating_m_scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\registry.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\security_high.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\security_low.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\warning.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs\maintenance.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs\overview.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs\restore.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs\scan.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs\tools.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\cd.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\cpu.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\disk.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\display.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\driver_outdated.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\driver_uptodate.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\floppy.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\mouse_key.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\other.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\power.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\printer.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\software.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\system.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers\usb.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance\defrag.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance\junk.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance\malware.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance\privacy.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance\registry.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\process\bho.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\process\process.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\process\startup.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_malware16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_malware24.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_malware32.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_system16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_system24.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_system32.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unknown16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unknown24.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unknown32.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unwanted16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unwanted24.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_unwanted32.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_userapp16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_userapp24.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations\rec_userapp32.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\01.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\02.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\03.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\04.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\05.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\06.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\07.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\08.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation\09.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_1.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_10.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_11.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_12.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_13.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_14.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_15.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_16.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_17.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_18.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_19.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_2.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_20.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_21.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_22.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_3.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_4.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_5.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_6.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_7.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_8.png" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation\ani_9.png" deleted
"C:\PROGRA~3\ParetoLogic\RegCure Pro\dc_db.db" deleted
"C:\PROGRA~2\ParetoLogic" deleted
"C:\PROGRA~2\COMMON~1\SpeedyPC Software" deleted
"C:\Users\decalude\AppData\Roaming\DriverCure" deleted
"C:\PROGRA~3\ParetoLogic" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Definitions" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\buttons" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\defrag" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Frame" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\general" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\group" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\headers" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Tabs" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\drivers" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\maintenance" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\process" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\list\recommendations" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\animation" deleted
"C:\PROGRA~2\ParetoLogic\RegCure Pro\Images\Scan\driver_animation" deleted
"C:\PROGRA~3\ParetoLogic\RegCure Pro" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2014-06-04 17:30:26	81394C91B7B5A7C799E249AE82491F13	2373784	----a-w-	C:\WINDOWS\explorer.exe
====== C:\Users\decalude\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2014-06-18 14:00:34	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\WINDOWS\SysWOW64\SBRC.dat
2014-06-12 18:51:20	A93E67D9084BEFC32C8E2B75FCC5B02E	11792384	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2014-06-12 18:51:18	A5358F64D4EB5ABE2829981CD9734901	18755672	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2014-06-12 18:51:11	A717D4AC0C44BCBE990DBF8B6EC979AA	12711424	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-06-12 18:51:07	0FDDBC46B0FE68B9516BED5CDC2A5296	5104640	----a-w-	C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-06-12 18:51:05	4550DC04464B86C5EB2CC77D9D27C06C	5833216	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-06-12 18:51:02	1E48870B29C7D7328A7D484A61250AE5	5774848	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2014-06-12 18:50:59	8EAD5F0BC40579B106CDD9D2591CFEC5	1797896	----a-w-	C:\WINDOWS\SysWOW64\d3d9.dll
2014-06-12 18:50:56	E678126493997B951C6A6E91BC15C91C	836608	----a-w-	C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-06-12 18:50:55	E2AAB5EDC278D489C8EF87F277B5E3E6	888320	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-06-12 18:50:55	561945C42E36012B4799C342E6A96498	800768	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-06-12 18:50:54	87AB9959EC23455326C8C55E59DE0A88	669856	----a-w-	C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-06-12 18:50:54	5AE9C90A51256F72C541A2FD81EAB7C4	2144984	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2014-06-12 18:50:53	90C83CF02C884315E595FA07CA9C64EF	387896	----a-w-	C:\WINDOWS\SysWOW64\mfsvr.dll
2014-06-12 18:50:51	A54EB398BC2D792A0C603A97F7975FD8	357376	----a-w-	C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2014-06-12 18:50:51	76892045ECB1D830185618DBD3467562	337408	----a-w-	C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-06-12 18:50:50	EC4FA776548BF1A05DAE3B5EFB0FFE6F	1209616	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2014-06-12 18:50:50	C97E772120135CD320CB217C92105B12	370176	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2014-06-12 18:50:50	5FAEA469BCE03F8FABAFB63D7603DC3C	982016	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-06-12 18:50:50	13CE2AA6D3ACAF0B485DBFE8AF2F5C48	305768	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-06-12 18:50:49	A4F3682781DD8B36E97FD04BA50845A2	209920	----a-w-	C:\WINDOWS\SysWOW64\rdpencom.dll
2014-06-12 18:50:48	008368626F3EFAEDB0C2CD4565BA6797	98584	----a-w-	C:\WINDOWS\SysWOW64\dwmapi.dll
2014-06-12 18:50:47	8C25FBB338147754DA42DF990FB3AE4A	285144	----a-w-	C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-06-12 18:50:46	A624CA7CDFA7941EECD6F96F1A47CCA3	178184	----a-w-	C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2014-06-12 18:50:46	4874EB05C1BE374B8A4AC15DF3DB07B0	111528	----a-w-	C:\WINDOWS\SysWOW64\gpapi.dll
2014-06-12 18:50:46	15905E6B799C1446A37915ED23CD17E5	144384	----a-w-	C:\WINDOWS\SysWOW64\rpchttp.dll
2014-06-12 18:50:45	A9A027378882FFA14000612AE6FDA7AB	1200288	----a-w-	C:\WINDOWS\SysWOW64\propsys.dll
2014-06-12 18:50:45	A3ECC0F6960AA699895CB48BC69BEA3B	326024	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2014-06-12 18:50:45	956D8170AD470804405C0564E10ED6ED	406504	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2014-06-12 18:50:45	88A821BC72CB1A935C92F453586233EF	518544	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2014-06-12 18:50:45	6BAE2EB5EFCEAC999BB1A5BF267C711D	707048	----a-w-	C:\WINDOWS\SysWOW64\mfplat.dll
2014-06-12 18:50:44	619C6E72B8433B3F67738F7E6C972A96	230808	----a-w-	C:\WINDOWS\SysWOW64\wintrust.dll
2014-06-12 18:50:44	06AB75759A0B2D79680F52ACDAE702A1	313344	----a-w-	C:\WINDOWS\SysWOW64\clusapi.dll
2014-06-12 18:50:43	E697F1E4E819EB12C40AE01F88626BAB	219136	----a-w-	C:\WINDOWS\SysWOW64\resutils.dll
2014-06-12 18:50:42	D0E0E176F86C3B1048A67144DE0C5CD3	46592	----a-w-	C:\WINDOWS\SysWOW64\tlscsp.dll
2014-06-12 18:50:42	495C3945889DD59993474F2434863835	11776	----a-w-	C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-06-12 18:50:41	5C74AC34C1CAA9C232836C580272B0DD	1029120	----a-w-	C:\WINDOWS\SysWOW64\mispace.dll
2014-06-12 18:50:40	FF28231D41465C253E9F9EF164DD619C	230400	----a-w-	C:\WINDOWS\SysWOW64\wlanapi.dll
2014-06-12 18:50:40	CF3EA59E07BF906B43058C98B6750D16	855552	----a-w-	C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-06-12 18:50:40	B6803C8A600E3F029A3D688D9E590CA3	300544	----a-w-	C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-06-12 18:50:39	68A23F58F6F16B81BCBFCAA07CDF0680	61440	----a-w-	C:\WINDOWS\SysWOW64\srclient.dll
2014-06-12 18:50:39	3CABBCB26C4E73F3440A8A064EB490FF	11264	----a-w-	C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-06-12 18:48:12	9EAAB4305536829D6B7D9C3A47E92861	2179072	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2014-06-12 18:48:12	7E27FB6AB8976897A530FB30F5FF7691	69632	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-06-12 18:48:12	6D8E6A9A524FFAAFA4D2F6C8EF38D0BB	592896	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-06-12 18:48:11	D5ECBB3BFDC73A59440D9CA79AB3A342	17271296	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-06-12 18:48:11	8DF06ACA017949D37C38B6A0EF747D4E	526336	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2014-06-12 18:48:11	0AFCE8EEF3751810FE2101FD608FB8B3	1143296	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2014-06-12 18:48:11	017B99D09904DCA35D5F66AD79084B5F	368128	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-06-12 18:48:10	C69FDD49AB9E8BCF2BAAC469CE0CC756	1964544	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-06-12 18:48:10	5B5815477A53ED92B89955FFE7EDCB2E	242688	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2014-06-12 18:48:09	C58E97EEB1CB80CE91D5E7FD5E78794F	4244992	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2014-06-12 18:48:09	688227D38A6FF6403B293D0C50B454B9	11725312	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2014-06-12 18:48:08	22D7FFA4B94916F18EB1F1D107B86839	704512	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-06-12 18:48:05	D9F5B424C307B195E16A9B0A21E53BCC	61952	----a-w-	C:\WINDOWS\SysWOW64\iesetup.dll
2014-06-12 18:48:05	771CDBC3D62437D6DB070820BB1EDCCF	1790976	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2014-06-12 18:47:48	55ADDA5B29D1151727470FA165460773	1312256	----a-w-	C:\WINDOWS\SysWOW64\msxml3.dll
2014-06-12 18:47:47	A8358D0521BC91CF30C5C1EE4541B695	754688	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2014-06-12 18:47:43	CB1F941980DCC044542CEF180328D180	1064448	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2014-06-12 18:42:43	61F5222289E052C40274ECD182A8AA99	98816	----a-w-	C:\WINDOWS\SysWOW64\drvinst.exe
2014-06-12 18:42:42	65FCEABE3128592F84B60140F814BDDB	1509888	----a-w-	C:\WINDOWS\SysWOW64\DWrite.dll
2014-06-12 18:42:41	260A56A8164CBDF9884BB9B2895F6AB2	2344448	----a-w-	C:\WINDOWS\SysWOW64\Wpc.dll
2014-06-12 18:40:48	3DA5CD1E3B9BDAF79731CB6CB1029CB3	53248	----a-w-	C:\WINDOWS\SysWOW64\tsgqec.dll
2014-06-12 18:40:15	B8F28AAC003060E3B125D2447CFC19E2	164864	----a-w-	C:\WINDOWS\SysWOW64\msrating.dll
2014-06-12 18:40:14	6A06EB11F1E5BDAA795DAE7838F9FE20	43008	----a-w-	C:\WINDOWS\SysWOW64\jsproxy.dll
2014-06-12 18:40:11	7D6B20C69CC8EECB8F31D4FAF913BBE8	112128	----a-w-	C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-06-12 18:40:11	260D6B421E5551E8BA75D16B5CA90D9A	51200	----a-w-	C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-06-12 18:40:11	0E7B7C9F483300F9FF97C6A1E4BC4F57	32768	----a-w-	C:\WINDOWS\SysWOW64\iernonce.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-06-12 18:51:17	AD2DE3982C7B6E62346098C7570F6A7D	13287936	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2014-06-12 18:51:16	AE7D8835A29FADB39C0D095BA32A9462	21268952	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2014-06-12 18:51:13	0C5C304C3A2D9E9633A7506CBB04929E	16872448	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2014-06-12 18:51:09	151427E526E96471A45FF6CC2257FBA0	8652800	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Search.dll
2014-06-12 18:51:08	F4C09C622BC55A80F775DF7D8AB9984F	6645248	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2014-06-12 18:51:08	AEDD44FDB8B521D443A07146F5CA3A53	7173120	----a-w-	C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll
2014-06-12 18:51:01	8ECEBEE92854C6705877911BA75889A8	2124840	----a-w-	C:\WINDOWS\Sysnative\d3d9.dll
2014-06-12 18:51:01	7E4A8D95B9DBC2CB588B91848A0AE731	2688000	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2014-06-12 18:51:00	383DA813409316D69603C1D849834D24	1308160	----a-w-	C:\WINDOWS\Sysnative\gpsvc.dll
2014-06-12 18:50:58	C2A06D6E746C42E6CE6CA020EE67FFA2	4269056	----a-w-	C:\WINDOWS\Sysnative\SyncEngine.dll
2014-06-12 18:50:58	6B7B2211C293218706D491204FCE8695	1126912	----a-w-	C:\WINDOWS\Sysnative\SearchFolder.dll
2014-06-12 18:50:57	EAE6ED6C5076CF765EB731B92A237149	955904	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2014-06-12 18:50:57	CFB353B4E33AFE922C3A62DBC9C9B0A8	7425368	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2014-06-12 18:50:57	6C6E26E0DB9AB2077F42FBBCDB153C84	2140888	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2014-06-12 18:50:56	6873D09262D32B95D6AC3026FCF8B424	1230336	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2014-06-12 18:50:56	5661481164A164CAD67DBE5A0191207F	4190720	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2014-06-12 18:50:55	AE210430A150FF20A58E3C6B381A832F	1025024	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2014-06-12 18:50:55	7FB9EC74ADFB2353B7782C3EF833F5B7	765408	----a-w-	C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll
2014-06-12 18:50:55	0BBD7EDAEA54D0E30445E9FC1179C60A	1411584	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2014-06-12 18:50:54	A1CD5194ACC156A852136B303F087260	491744	----a-w-	C:\WINDOWS\Sysnative\mfsvr.dll
2014-06-12 18:50:54	5071E71CC05346D88C5A08EB8B5A05E3	1584128	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2014-06-12 18:50:54	411DBFCD6ABAB75B6F7950677AEEFB7D	1403856	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2014-06-12 18:50:52	EEC46BC17F28C528AB7FAC20AFDF69E3	462336	----a-w-	C:\WINDOWS\Sysnative\XpsGdiConverter.dll
2014-06-12 18:50:52	ED7C0A11E655CD8B89BE499F99D56098	486912	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2014-06-12 18:50:52	9ED0E72966FB08F7E6DB15E5519AF8D1	1379064	----a-w-	C:\WINDOWS\Sysnative\wmpmde.dll
2014-06-12 18:50:52	626D19F1771E1AE72208AE9A8F3082F7	491520	----a-w-	C:\WINDOWS\Sysnative\GeofenceMonitorService.dll
2014-06-12 18:50:52	067CB90C277DB4A737D5DEABA3055972	407016	----a-w-	C:\WINDOWS\Sysnative\services.exe
2014-06-12 18:50:51	CB79B5D367376E7B49E2D95BFFB0BEEB	364640	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2014-06-12 18:50:51	98A184F6EC43B178901FCD5D4E2EC43B	1222656	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll
2014-06-12 18:50:51	46378ECCB4A29AA81BF296641C2501EF	323072	----a-w-	C:\WINDOWS\Sysnative\srvsvc.dll
2014-06-12 18:50:51	0BDD786156C820F49EEF5D348B4ACFF4	335872	----a-w-	C:\WINDOWS\Sysnative\MDEServer.exe
2014-06-12 18:50:50	D872C6095AACC13AD897DB5E4D2B5D91	805376	----a-w-	C:\WINDOWS\Sysnative\win32spl.dll
2014-06-12 18:50:49	BAF51BE2DEB387BD99CAC4E3B7850FEC	250368	----a-w-	C:\WINDOWS\Sysnative\rdpencom.dll
2014-06-12 18:50:49	AF3FF97AC2A73E70F8A8D11FB694175B	449536	----a-w-	C:\WINDOWS\Sysnative\defragsvc.dll
2014-06-12 18:50:49	79B134ECE836B406B212E28C24011538	834048	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2014-06-12 18:50:48	95471DDCB3B3FF70015FD9AA13404F44	281600	----a-w-	C:\WINDOWS\Sysnative\resutils.dll
2014-06-12 18:50:48	87CF824E47489DD972FB4FB9FC4EDD0A	324888	----a-w-	C:\WINDOWS\Sysnative\MFCaptureEngine.dll
2014-06-12 18:50:48	850EBB87584484DC16F917E7B6F4A304	718336	----a-w-	C:\WINDOWS\Sysnative\swprv.dll
2014-06-12 18:50:48	67176AA6EAF34FF2A962F14EB8F0478B	263424	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe
2014-06-12 18:50:48	1697E09CDA4DD8741B8276F48A8514DE	32600	----a-w-	C:\WINDOWS\Sysnative\ploptin.dll
2014-06-12 18:50:48	1517EE52367CABAA5615AC736DC96C7D	125496	----a-w-	C:\WINDOWS\Sysnative\dwmapi.dll
2014-06-12 18:50:47	7B12172CCE581F76C9335D7A47E0AD50	130144	----a-w-	C:\WINDOWS\Sysnative\gpapi.dll
2014-06-12 18:50:47	315502228EB37F36E86EF75CB1DA1D44	201920	----a-w-	C:\WINDOWS\Sysnative\MSVideoDSP.dll
2014-06-12 18:50:46	E369C59F2C0852DDD090C07E0DDE0051	1436160	----a-w-	C:\WINDOWS\Sysnative\VSSVC.exe
2014-06-12 18:50:46	9654DE19551093CD73874281E1573C94	135168	----a-w-	C:\WINDOWS\Sysnative\wscsvc.dll
2014-06-12 18:50:46	2A4177EE5446877BD24DD72504105603	191488	----a-w-	C:\WINDOWS\Sysnative\rpchttp.dll
2014-06-12 18:50:45	F4E351BB95D473CB55BB7C1A1FEB2798	467496	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2014-06-12 18:50:45	AE2B9504C975B529D92D9E6603F6D33F	609448	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2014-06-12 18:50:45	4684C8E852065C0A7937C395C165A24F	1466856	----a-w-	C:\WINDOWS\Sysnative\propsys.dll
2014-06-12 18:50:44	BF6FBC9D97A24FABB0AE8B878279CF0B	244880	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2014-06-12 18:50:44	99277BE68298288A0E27CF9E50FAD091	881616	----a-w-	C:\WINDOWS\Sysnative\mfplat.dll
2014-06-12 18:50:44	92B785213F856EC736673516C54FA791	233912	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2014-06-12 18:50:44	88ACBA95BB55B8226D52117462B76CD4	307304	----a-w-	C:\WINDOWS\Sysnative\wintrust.dll
2014-06-12 18:50:44	7B3255A0B833908E4A7ACEA6245D344E	426496	----a-w-	C:\WINDOWS\Sysnative\clusapi.dll
2014-06-12 18:50:44	5EE916C3272A19B459717A8D2397B07A	55296	----a-w-	C:\WINDOWS\Sysnative\energyprov.dll
2014-06-12 18:50:44	01851563CB6FB986A4C0221C15AB6ADC	463256	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2014-06-12 18:50:43	64B2A2630C964BF135A84A52FB2EEF9A	47616	----a-w-	C:\WINDOWS\Sysnative\tlscsp.dll
2014-06-12 18:50:43	414B81DE6CE46022ED43051C09EDB00B	467968	----a-w-	C:\WINDOWS\Sysnative\srcore.dll
2014-06-12 18:50:43	22B8B1F946ACFCB03832793A25216D8C	186880	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2014-06-12 18:50:43	072A99F351C505A45C9FDA32E7324602	28408	----a-w-	C:\WINDOWS\Sysnative\mfpmp.exe
2014-06-12 18:50:42	B24960B79BDE7D5ED1EA638027F9E8F0	143872	----a-w-	C:\WINDOWS\Sysnative\BootMenuUX.dll
2014-06-12 18:50:42	78D26F162E015FF644785C8836B617CA	1287168	----a-w-	C:\WINDOWS\Sysnative\mispace.dll
2014-06-12 18:50:42	69A374DE46C7BAAE30BFB1E40D69C5C6	761856	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2014-06-12 18:50:41	EF252510DB6C3511E30418BD2AC95A2D	1527296	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2014-06-12 18:50:41	E86E7792A2A0854D5560371BBDDA760B	1057280	----a-w-	C:\WINDOWS\Sysnative\rdvidcrl.dll
2014-06-12 18:50:41	E2C26EECF60D9DF94706DF981D074B98	721408	----a-w-	C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll
2014-06-12 18:50:41	8E1866A4E96F1159B6625627860A0454	2100736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll
2014-06-12 18:50:41	88BCAEABEB2A46DB7B336B8432720AC8	443904	----a-w-	C:\WINDOWS\Sysnative\wlansec.dll
2014-06-12 18:50:40	F587513213947A4C7EF47B660DAAFBC5	271872	----a-w-	C:\WINDOWS\Sysnative\rstrui.exe
2014-06-12 18:50:40	F2895547FC275642A29692DC344A847F	296960	----a-w-	C:\WINDOWS\Sysnative\wlanapi.dll
2014-06-12 18:50:40	DC61194C93DE9E5D549AEC5064A06BD4	872448	----a-w-	C:\WINDOWS\Sysnative\SkyDrive.exe
2014-06-12 18:50:40	B6BD22DDEDDD8665080D664749ACFEF5	64512	----a-w-	C:\WINDOWS\Sysnative\tsgqec.dll
2014-06-12 18:50:40	977D67467950D8048E94651EE6081B99	370176	----a-w-	C:\WINDOWS\Sysnative\wlanmsm.dll
2014-06-12 18:50:40	9465F8E72887AC6CCDD97F738A5AB6B6	70656	----a-w-	C:\WINDOWS\Sysnative\srclient.dll
2014-06-12 18:50:40	886767FD022213F7885416134E9082E5	201216	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2014-06-12 18:50:39	82FE5F302FD7C7EF0E41465BB873EFC7	11264	----a-w-	C:\WINDOWS\Sysnative\wlanhlp.dll
2014-06-12 18:48:12	063EF4239479F52DAF9F4849B0B304F1	2768384	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2014-06-12 18:48:10	867DD52B23D3B0390B88F3D7AD1E600C	631808	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2014-06-12 18:48:10	3A1AB9DE852F2BC1ECE6403BDD01B9F0	1398272	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2014-06-12 18:48:10	12BA419E27DBC5DBF9262C8A885FA361	452096	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2014-06-12 18:48:09	3FC3828E8820D1C93DBFBAD4BE456D85	2040832	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2014-06-12 18:48:08	CB8A91074AE1B5051E240B50A328DCF5	295424	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2014-06-12 18:48:08	2DBB9127794BC30BC31D26FA088F8BAB	13522944	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2014-06-12 18:48:07	CC603EF96BA456D4BCD9FF849ED07A2A	85504	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-06-12 18:48:07	AB3FA3D9B1F1D0571CBC43D1487CCD6F	5782528	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2014-06-12 18:48:07	9013D5BBE1B6D3A060F54B4B5BB2C3A3	846336	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2014-06-12 18:48:07	6B9925F498D4E91FB57576CC3776D428	752640	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2014-06-12 18:48:06	790FD40601502C5FE8213D4F335DA0BD	51200	----a-w-	C:\WINDOWS\Sysnative\jsproxy.dll
2014-06-12 18:48:06	56803B20D168C1B740D12CE0BE4588F5	23414784	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-06-12 18:48:05	EAAA62F272858695814A1F42D5E59BD3	608768	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2014-06-12 18:48:05	40BFD9D6EC8E174145F012246CA73CCD	2266112	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2014-06-12 18:47:48	201FE8AAD76FB1E7FB5A3B1337435DC1	2151424	----a-w-	C:\WINDOWS\Sysnative\msxml3.dll
2014-06-12 18:47:47	AA5A86B32FC3975284082C64059F92DF	79872	----a-w-	C:\WINDOWS\Sysnative\WSReset.exe
2014-06-12 18:47:47	A28730EF44FCCBF0040B771CEFC8EE76	921088	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2014-06-12 18:47:43	A4948EA65E584A88BE09029DB49E4D70	1336648	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2014-06-12 18:47:42	CCDFFC83004AF62D0153CF45289028AF	3360256	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2014-06-12 18:42:43	BB7F878413AD3C2E7E89C96193D405DF	57856	----a-w-	C:\WINDOWS\Sysnative\drvcfg.exe
2014-06-12 18:42:43	8E472AA2E916417B55BC1E6727957453	110592	----a-w-	C:\WINDOWS\Sysnative\drvinst.exe
2014-06-12 18:42:42	CC8E86B9C18BCA38D3C467CFD661A466	1975296	----a-w-	C:\WINDOWS\Sysnative\DWrite.dll
2014-06-12 18:42:42	3FA6DC6B29717E32E211C1FD821F2C75	1345536	----a-w-	C:\WINDOWS\Sysnative\FntCache.dll
2014-06-12 18:42:41	8838E982B803E9303ABE051E0CAB5A64	2861056	----a-w-	C:\WINDOWS\Sysnative\WpcWebSync.dll
2014-06-12 18:42:41	60A4EAAA2964A3ECFD91A6EC9F8B72C0	3048904	----a-w-	C:\WINDOWS\Sysnative\WpcMon.exe
2014-06-12 18:42:41	416BE72F050166A6B5820833363AB0F2	3118080	----a-w-	C:\WINDOWS\Sysnative\Wpc.dll
2014-06-12 18:42:40	52E94AE3C9FF1E18A1EA125C4FFB0EEC	2834944	----a-w-	C:\WINDOWS\Sysnative\wpccpl.dll
2014-06-12 18:40:11	FCFAEDF0AA1A78A1875FDB798598408B	48640	----a-w-	C:\WINDOWS\Sysnative\ieetwproxystub.dll
2014-06-12 18:40:11	E77092C38028EB0A5C461B3436E0A6D5	4096	----a-w-	C:\WINDOWS\Sysnative\ieetwcollectorres.dll
2014-06-12 18:40:11	E129D34089E70215B65EA611F802FA9A	111616	----a-w-	C:\WINDOWS\Sysnative\ieetwcollector.exe
2014-06-12 18:40:11	338415F2E9A188875B6E43B5269620B0	139264	----a-w-	C:\WINDOWS\Sysnative\ieUnatt.exe
2014-06-12 18:40:10	FD08F8BA2437A85F500EFFE3FD3158A6	33792	----a-w-	C:\WINDOWS\Sysnative\iernonce.dll
2014-06-12 18:40:10	C1E2C16D58D76323800C3EE5E2C5095A	66048	----a-w-	C:\WINDOWS\Sysnative\iesetup.dll
2014-06-12 18:40:09	1D1D7F52EC84294859642A4309FE648E	195584	----a-w-	C:\WINDOWS\Sysnative\msrating.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-06-12 18:50:52	7C7BE474915166B61B84C025F1F10157	563200	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
2014-06-12 18:50:51	FD163F487CBA9C98AFFEB546C80F49A2	677376	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2014-06-12 18:50:51	DBA635C6398782C549E3BE45CF1D0411	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2014-06-12 18:50:51	78514B073CC5775800A65BFB82A0D66B	443904	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2014-06-12 18:50:51	4BB9BC49DEE1A319EC58274A7BBED663	310616	----a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2014-06-12 18:50:50	0696F66E4D423793951A60562F794D14	402432	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb.sys
2014-06-12 18:50:48	F152D55E497E12256290C43B31C7D0CE	589656	----a-w-	C:\WINDOWS\Sysnative\drivers\fvevol.sys
2014-06-12 18:50:48	CADCE0D6C30427F70A4BFA426256F68C	337240	----a-w-	C:\WINDOWS\Sysnative\drivers\Classpnp.sys
2014-06-12 18:50:48	498288DD5CA42C2D36D125893E968C53	77312	----a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2014-06-12 18:50:47	D90AB68D0FAC9F357F663670FDBB511E	275800	----a-w-	C:\WINDOWS\Sysnative\drivers\msiscsi.sys
2014-06-12 18:50:47	716059F37BCCB1ABEDE99EBE82E8E362	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2014-06-12 18:50:46	6592D192E2823C043EDBC010E7774053	360792	----a-w-	C:\WINDOWS\Sysnative\drivers\fltMgr.sys
2014-06-12 18:50:46	4C1E71E37B56C768900B1FCF81205027	372568	----a-w-	C:\WINDOWS\Sysnative\drivers\storport.sys
2014-06-12 18:50:46	33977549C2CED09936E05BEE7659EAFF	384856	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2014-06-12 18:47:45	A9749FD0A06E22009EA972D8B9CB046B	428888	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2014-06-12 18:47:45	4B666AE119D2ADBAC816BEA7DB4D6881	2518872	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2014-06-12 18:47:44	D18EC2C83C2F773C9476A4FB0AA4C314	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2014-06-12 18:42:40	182561A14F2E93E81E66FE3700D17A5A	55328	----a-w-	C:\WINDOWS\Sysnative\drivers\wpcfltr.sys
2014-06-05 17:55:25	019CC610AD95FF47EAD7C08B7A683B96	257880	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2014-06-05 17:55:24	6CC1BB8F6851A262E2E824F0E92D5EEF	123224	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2014-06-05 17:55:23	F5D4FA3E1F4879C361FFF3855259D2C2	35856	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2014-06-04 17:30:34	179A41249055D5F039F1B6703F3B6D2B	376152	----a-w-	C:\WINDOWS\Sysnative\drivers\clfs.sys
2014-06-04 17:30:32	7FC5667DF73D4B04AA457CC3A4180E09	157016	----a-w-	C:\WINDOWS\Sysnative\drivers\wof.sys
2014-06-04 17:30:25	C7D252742946DD395670649742FBD73D	1557848	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2014-06-04 17:30:25	1C80517BE6836A812F6A9B99B8321351	2013016	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2014-06-04 17:30:19	4030CB06B8D963A45CED9E60C9F2A11E	379224	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
2014-06-04 17:30:16	4627C1FBF2802425A408A2D2AF28CF85	565536	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2014-06-04 17:30:15	F88CC88F4A6D8476F1664E805CA18CC2	180056	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecpkg.sys
2014-06-04 17:30:15	CFC52C49BEFE4D70D87FFA900EAB9777	467800	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2014-06-04 17:30:15	BFBE1C5F57FE7A885673A1962D5532B7	136024	----a-w-	C:\WINDOWS\Sysnative\drivers\wfplwfs.sys
2014-06-04 17:30:15	A03F362C5557E238CBFA914689C77248	134144	----a-w-	C:\WINDOWS\Sysnative\drivers\dfsc.sys
2014-06-04 17:30:14	ABB7341766902F5AAB45E15F34D19E15	111616	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hidclass.sys
2014-06-04 17:30:14	8DB8EAB9D0C6A5DF0BDCADEA239220B4	33280	-c--a-w-	C:\WINDOWS\Sysnative\drivers\hidusb.sys
2014-06-04 17:30:14	41CF802064F72E55F50CA0A221FD36D4	49152	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpipreg.sys
2014-06-04 17:30:14	1D55DADC22D21883A2F80297F5A5AE48	140288	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxdav.sys
2014-06-04 17:30:13	FD9C9E9E3F0ED51502C7E8C066BE26B9	79360	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2014-06-04 17:30:13	3E28B99198B514DFEB152EACF913025E	283648	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys
2014-06-04 17:27:45	F21B77B4D74092A543807D3CEB711A88	1118552	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2014-06-04 17:27:42	9539F7917B4B6D92C90F0FAA6B86C605	539992	-c--a-w-	C:\WINDOWS\Sysnative\drivers\acpi.sys
2014-06-04 17:27:22	A26AEC49F318FEE141DDDB2C5F99B3E6	249688	----a-w-	C:\WINDOWS\Sysnative\drivers\rdyboost.sys
2014-06-04 17:27:13	275AFE3FA35E8D78BE97695DF49817C6	280920	-c--a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2014-06-04 17:27:08	8685379B82AC81187813225905531D1E	272896	-c--a-w-	C:\WINDOWS\Sysnative\drivers\portcls.sys
2014-06-04 17:27:05	EA23453240137F6773174E0D93F61A69	148824	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS
2014-06-04 17:26:46	52E483A3701A5A61A75A06993720347D	551256	-c--a-w-	C:\WINDOWS\Sysnative\drivers\vhdmp.sys
2014-06-04 17:26:36	FDEC5799BA499D18AFA3A540538866E7	236888	-c--a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2014-06-04 17:26:33	48430B0313FC1CFE3D2400553F1A93CD	325464	-c--a-w-	C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS
2014-06-04 17:26:32	DDEE191AB32DFC22C6465002ECDF5EE4	124416	----a-w-	C:\WINDOWS\Sysnative\drivers\luafv.sys
2014-06-04 17:26:31	0ECEE590F2E2EF969FB74A6FC583A1E6	663040	----a-w-	C:\WINDOWS\Sysnative\drivers\PEAuth.sys
2014-06-04 17:26:29	02836172141D3AFA35B07679E253E503	151384	-c--a-w-	C:\WINDOWS\Sysnative\drivers\dumpsd.sys
2014-06-04 17:26:13	EF3AE7773394DF49CE74AF78A1C8D23D	146776	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
2014-06-04 17:26:11	BCFD8B149B3ADF92D0DB1E909CAF0265	79192	----a-w-	C:\WINDOWS\Sysnative\drivers\fileinfo.sys
2014-06-04 17:26:10	E515A287C8FAE901EB8FB42F168E14F2	924504	----a-w-	C:\WINDOWS\Sysnative\drivers\refs.sys
2014-06-04 17:26:07	38A82F4EE8C416A6744B6D30381ED768	33280	-c--a-w-	C:\WINDOWS\Sysnative\drivers\BasicRender.sys
2014-06-04 17:26:04	0B1E929D11A8E358106955603FAC65E8	79192	-c--a-w-	C:\WINDOWS\Sysnative\drivers\sdstor.sys
2014-06-04 17:25:57	61A1C2641321A6B89A2B41C5D481EF48	71888	----a-w-	C:\WINDOWS\Sysnative\drivers\dumpfve.sys
2014-06-04 17:25:56	B034A41891A36457B994307DFA772293	189784	-c--a-w-	C:\WINDOWS\Sysnative\drivers\UCX01000.SYS
2014-06-04 17:25:53	9DDCA7F18983C5410DEFF79F819DF93C	994136	----a-w-	C:\WINDOWS\Sysnative\drivers\http.sys
2014-06-04 17:25:40	9CC0003FB8ED3763B977B43F1012FF63	54272	----a-w-	C:\WINDOWS\Sysnative\drivers\watchdog.sys
====== C:\WINDOWS\Tasks ======
2014-06-16 19:13:04	051924D7EB66A2D2537C7EDD6A3A8D7E	2620	----a-w-	C:\WINDOWS\Sysnative\Tasks\RegCure Pro Startup
2014-06-16 19:13:03	9C1E42E616C708543E35BE431063A46E	480	----a-w-	C:\WINDOWS\Tasks\RegCure Pro Startup.job
2014-06-16 19:13:01	B7AC45B4FDDDFEEEB015BE92B6863916	583	----a-w-	C:\WINDOWS\Tasks\RegCure Pro_sch_3BBAC341-F58A-11E3-BF1E-28924A5988E0.job
2014-06-16 19:13:01	2C2B2F812043A3ED5B490745C3DE10A7	3998	----a-w-	C:\WINDOWS\Sysnative\Tasks\RegCure Pro_sch_3BBAC341-F58A-11E3-BF1E-28924A5988E0
2014-06-06 17:35:14	66315E7424941B285C356FD1B3938509	5052	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft Office 15 Sync Maintenance for KWIBUS-decalude kwibus
2014-06-04 14:53:13	43C6F7FA75AEF78C2FD4CE7F42429453	3098	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-995192540-423739602-2840656972-1001
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-06-18 19:48:14	--------	d-----w-	C:\Program Files\trend micro
2014-06-06 17:29:17	--------	d-----w-	C:\Program Files\Microsoft Office 15
2014-06-04 15:00:40	--------	d-----w-	C:\Program Files\Windows Live
======= C:\PROGRA~2 =====
2014-06-06 17:37:40	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-06-04 17:09:24	--------	d-----w-	C:\PROGRA~2\COMMON~1\Skype
======= C: =====
====== C:\Users\decalude\AppData\Roaming ======
2014-06-05 18:22:06	--------	d-sh--w-	C:\Users\decalude\AppData\Locallow\EmieUserList
2014-06-05 18:22:00	--------	d-sh--w-	C:\Users\decalude\AppData\Local\EmieUserList
2014-06-05 18:22:00	--------	d-sh--w-	C:\Users\decalude\AppData\Local\EmieSiteList
2014-06-05 18:21:51	--------	d-sh--w-	C:\Users\decalude\AppData\Locallow\EmieSiteList
2014-06-05 17:41:52	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg2014
2014-06-05 05:44:11	BB1E7C38325389F69AD31CE8958A233C	7606	----a-w-	C:\Users\decalude\AppData\Local\Resmon.ResmonCfg
2014-06-04 17:56:59	--------	d-----w-	C:\Users\decalude\AppData\Local\ElevatedDiagnostics
2014-06-04 15:02:35	--------	d-----w-	C:\Users\decalude\AppData\Roaming\Windows Live Writer
2014-06-04 15:02:35	--------	d-----w-	C:\Users\decalude\AppData\Local\Windows Live Writer
2014-06-04 14:51:25	--------	d-----w-	C:\Users\decalude\AppData\Local\Windows Live
====== C:\Users\decalude ======
2014-06-18 19:47:05	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\decalude\Desktop\RSITx64.exe
2014-06-17 20:05:00	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-06-06 17:30:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-06-04 14:55:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-06-04 14:53:13	--------	d-----r-	C:\Users\decalude\OneDrive
2014-06-04 14:52:56	--------	d-----w-	C:\ProgramData\Microsoft OneDrive

====== C: exe-files ==
2014-06-18 19:48:14	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\decalude.exe
2014-06-18 19:47:05	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\decalude\Desktop\RSITx64.exe
2014-06-16 18:10:59	5DAF522CDA8478A808DB35614071B33C	217768	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2014-06-16 18:10:58	6DD8C7A6BE4E71F0748F1D4E143703A2	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOSQM.EXE
2014-06-16 18:10:57	E0FF3E1215CF23370F308043007F3441	842448	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DW20.EXE
2014-06-16 18:10:51	3F6136372D72449FC7FC77C5F37962EC	79600	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
2014-06-16 18:10:51	28F54748E682CD5DDCE85E9FCAFDE707	7295192	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe
2014-06-16 18:10:49	644EFF9A5C5918CAC47392A5460D4466	49344	----a-w-	C:\Program Files\Microsoft Office 15\root\flattener\Flattener.exe
2014-06-16 18:10:49	5DE8B45C6EFC0E095A494C6CE3820DCD	39584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\AppSharingHookController64.exe
2014-06-16 18:10:46	7B3EEF526F0310740B80EFB4DE28C972	5399256	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe
2014-06-16 18:10:46	6E8396070F0E1CAE2624295229FFF641	207016	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2014-06-16 18:10:42	B869182BBDCC78EC0723987B51949589	873648	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2014-06-16 18:10:40	BCB2899A58487D3F562B3F7EC3A13626	474344	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DWTRIG20.EXE
2014-06-16 18:10:24	B3D03D15A4A198CA16619B103295F0B5	480984	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SELFCERT.EXE
2014-06-16 18:10:24	4B6F94E2E5A1C242DC632B9A9C4A4BB4	1063128	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2014-06-16 18:10:24	13DBDEA7FD7CAFA146E96739C57A8CD2	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
2014-06-16 18:10:23	51C9DE2FF2FFE80FAA071F462611BDC3	228544	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\CLVIEW.EXE
2014-06-16 18:10:23	460E180470F994F12F6233305CB120BC	21922464	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2014-06-16 18:10:23	2DE73B0C15A287B8510F8731171BBA2F	4522176	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\GRAPH.EXE
2014-06-16 18:10:23	04C3906F9BD53D78CF02428CC9CA7703	497856	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE
2014-06-16 18:10:22	87359736B1BF7BD4C06DF1F47B814142	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\IEContentService.exe
2014-06-16 18:10:20	F90DD89B53883AAFE86584AC9A943FC0	569592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE
2014-06-16 18:10:20	866F5B7DE44901934A3F020C6FEB9E97	40680	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SCANPST.EXE
2014-06-16 18:10:19	FDEF2BA898EFD5029A6DF4C1F3B475F0	528072	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\VPREVIEW.EXE
2014-06-16 18:09:52	86B954D69F90840E540F272F372FE198	588496	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\Integrator.exe
2014-06-16 18:08:52	A7AA6CC8ABC7E0D500508AA2BA9AD6B4	18935976	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
2014-06-16 18:08:50	9F4979BCD93B8880C50219706B03387C	195248	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
2014-06-16 18:08:49	B1C084CC7CE67C18EE2A79FAFFCC320A	1763496	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE
2014-06-16 18:08:48	72698A2BFFFCA7B6670AC7CC99F4AE17	15516840	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSACCESS.EXE
2014-06-16 18:08:35	E0318EA070ADAE7B354A74D9182338B2	1923232	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
2014-06-16 18:08:33	5806F73B31637295BC03D9DAF4FF89BA	10776744	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSPUB.EXE
2014-06-16 18:08:32	7B7FAA23D8DF169021F22A3A81A1B82F	25701536	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE
2014-06-16 18:08:27	1FDD284EA8FBDAEAB8F4FB9630DB4B0F	968872	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\FIRSTRUN.EXE
2014-06-15 15:52:50	03908118737915DFE6E95A00EC46788C	3578880	----a-w-	C:\Users\decalude\AppData\Local\Packages\eBayInc.eBay_1618n3s9xq8tw\AC\Microsoft\CLR_v4.0_32\NativeImages\eBay.CoreApp\7415cd7ffa82408cf2d1de197aee3476\eBay.CoreApp.ni.exe
2014-06-12 19:12:45	DF61864BA778845C6E725F7BF1EAEB0E	2675280	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_35.0.1916.114_chrome_updater.exe
2014-06-12 18:50:57	CFB353B4E33AFE922C3A62DBC9C9B0A8	7425368	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-06-12 18:50:52	067CB90C277DB4A737D5DEABA3055972	407016	----a-w-	C:\Windows\System32\services.exe
2014-06-12 18:50:51	0BDD786156C820F49EEF5D348B4ACFF4	335872	----a-w-	C:\Windows\System32\MDEServer.exe
2014-06-12 18:50:48	67176AA6EAF34FF2A962F14EB8F0478B	263424	----a-w-	C:\Windows\System32\SystemSettingsAdminFlows.exe
2014-06-12 18:50:46	E369C59F2C0852DDD090C07E0DDE0051	1436160	----a-w-	C:\Windows\System32\VSSVC.exe
2014-06-12 18:50:44	CA67486846839817EFE89926A32BFFDA	86808	----a-w-	C:\Windows\ImmersiveControlPanel\SystemSettings.exe
2014-06-12 18:50:44	BF6FBC9D97A24FABB0AE8B878279CF0B	244880	----a-w-	C:\Windows\System32\audiodg.exe
2014-06-12 18:50:43	072A99F351C505A45C9FDA32E7324602	28408	----a-w-	C:\Windows\System32\mfpmp.exe
2014-06-12 18:50:40	F587513213947A4C7EF47B660DAAFBC5	271872	----a-w-	C:\Windows\System32\rstrui.exe
2014-06-12 18:50:40	DC61194C93DE9E5D549AEC5064A06BD4	872448	----a-w-	C:\Windows\System32\SkyDrive.exe
2014-06-12 18:50:39	B194DFF0C303121926CF5AAC3D5165ED	70656	----a-w-	C:\Windows\System32\InputMethod\SHARED\ChxPropertyUI.exe
2014-06-12 18:48:12	D3BB3F9ADE86B1E1E36371195DC8A0B2	810160	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-06-12 18:48:10	A9EBEFD3FC125D31EB33A8BB1AB17BE8	812208	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-06-12 18:48:10	50989AAF09CDCEBC0FD8EB0FE79C2A98	470016	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-06-12 18:48:09	159C5979C61F51EEFC84D9AB17C4E0E7	482816	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-06-12 18:48:05	EAAA62F272858695814A1F42D5E59BD3	608768	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-06-12 18:47:47	AA5A86B32FC3975284082C64059F92DF	79872	----a-w-	C:\Windows\System32\WSReset.exe
2014-06-12 18:47:47	A2C6F2D0CA2E69C4F210795A7CD9BFA7	25304	----a-w-	C:\Windows\WinStore\WSHost.exe
2014-06-12 18:42:43	BB7F878413AD3C2E7E89C96193D405DF	57856	----a-w-	C:\Windows\System32\drvcfg.exe
2014-06-12 18:42:43	8E472AA2E916417B55BC1E6727957453	110592	----a-w-	C:\Windows\System32\drvinst.exe
2014-06-12 18:42:43	61F5222289E052C40274ECD182A8AA99	98816	----a-w-	C:\Windows\SysWOW64\drvinst.exe
2014-06-12 18:42:41	60A4EAAA2964A3ECFD91A6EC9F8B72C0	3048904	----a-w-	C:\Windows\System32\WpcMon.exe
2014-06-12 18:40:11	E129D34089E70215B65EA611F802FA9A	111616	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-06-12 18:40:11	7D6B20C69CC8EECB8F31D4FAF913BBE8	112128	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 18:40:11	338415F2E9A188875B6E43B5269620B0	139264	----a-w-	C:\Windows\System32\ieUnatt.exe
=== C: other files ==
2014-06-17 20:05:22	E178B57D7D59ABF8CEBD8C8D1C7FCAB8	1370673	----a-w-	C:\Program Files (x86)\AVG\AVG2013\banners\banners.zip
2014-06-12 18:50:56	5661481164A164CAD67DBE5A0191207F	4190720	----a-w-	C:\Windows\System32\win32k.sys
2014-06-12 18:50:52	7C7BE474915166B61B84C025F1F10157	563200	----a-w-	C:\Windows\System32\drivers\afd.sys
2014-06-12 18:50:51	FD163F487CBA9C98AFFEB546C80F49A2	677376	----a-w-	C:\Windows\System32\drivers\srv2.sys
2014-06-12 18:50:51	DBA635C6398782C549E3BE45CF1D0411	206848	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2014-06-12 18:50:51	78514B073CC5775800A65BFB82A0D66B	443904	----a-w-	C:\Windows\System32\drivers\nwifi.sys
2014-06-12 18:50:51	4BB9BC49DEE1A319EC58274A7BBED663	310616	----a-w-	C:\Windows\System32\drivers\volsnap.sys
2014-06-12 18:50:50	0696F66E4D423793951A60562F794D14	402432	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2014-06-12 18:50:48	F152D55E497E12256290C43B31C7D0CE	589656	----a-w-	C:\Windows\System32\drivers\fvevol.sys
2014-06-12 18:50:48	CADCE0D6C30427F70A4BFA426256F68C	337240	----a-w-	C:\Windows\System32\drivers\Classpnp.sys
2014-06-12 18:50:48	498288DD5CA42C2D36D125893E968C53	77312	----a-w-	C:\Windows\System32\drivers\hdaudbus.sys
2014-06-12 18:50:47	D90AB68D0FAC9F357F663670FDBB511E	275800	----a-w-	C:\Windows\System32\drivers\msiscsi.sys
2014-06-12 18:50:47	716059F37BCCB1ABEDE99EBE82E8E362	246272	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2014-06-12 18:50:46	6592D192E2823C043EDBC010E7774053	360792	----a-w-	C:\Windows\System32\drivers\fltMgr.sys
2014-06-12 18:50:46	4C1E71E37B56C768900B1FCF81205027	372568	----a-w-	C:\Windows\System32\drivers\storport.sys
2014-06-12 18:50:46	33977549C2CED09936E05BEE7659EAFF	384856	----a-w-	C:\Windows\System32\drivers\spaceport.sys
2014-06-12 18:47:45	A9749FD0A06E22009EA972D8B9CB046B	428888	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-12 18:47:45	4B666AE119D2ADBAC816BEA7DB4D6881	2518872	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2014-06-12 18:47:44	D18EC2C83C2F773C9476A4FB0AA4C314	295424	----a-w-	C:\Windows\System32\drivers\ks.sys
2014-06-12 18:42:40	182561A14F2E93E81E66FE3700D17A5A	55328	----a-w-	C:\Windows\System32\drivers\wpcfltr.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-995192540-423739602-2840656972-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"HP CoolSense"="C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/04/2013 19:44]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/04/2013 19:44]
C:\WINDOWS\tasks\RegCure Pro Startup.job --a-------- C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe []
C:\WINDOWS\tasks\RegCure Pro_sch_3BBAC341-F58A-11E3-BF1E-28924A5988E0.job --a-------- C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe []
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [24/08/2012 10:38]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\CLMLSvc_P2G8" [C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\WINDOWS\SysNative\tasks\RegCure Pro Startup" [C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe]
"C:\WINDOWS\SysNative\tasks\RegCure Pro_sch_3BBAC341-F58A-11E3-BF1E-28924A5988E0" [C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe]
"C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]
"C:\WINDOWS\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{04D2F191-71A8-42AB-AF05-B0CEE24060BC}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Critical Actions Pending" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[03/03/2014 10:53]

YouTube - decalude\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - decalude\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Skype Click to Call - decalude\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Wallet - decalude\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - decalude\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://pandasecurity.mystart.com/?pr=vmn&id=pandasecuritytb&v=4_2&utm_campaign=656&idate=2014-05-20&ent=hp_656&u=7F54A71173091F3683A641537B8A340B"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay  Url="http://rover.ebay.com/rover/1/710-29550-11896-25/4"

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\decalude\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\decalude\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\decalude\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=962 folders=107 243535868 bytes)

==== Empty Temp Folders ======================

C:\Users\decalude\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\decalude\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on 19/06/2014 at 19:03:27.89 ======================