Zoek.exe v5.0.0.0 Updated 20-06-2014 Tool run by WoutSr on zo 22-06-2014 at 16:00:29,60. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\WoutSr\Documents\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 22-6-2014 16:03:04 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully C:\PROGRA~2\COMMON~1\Intel deleted successfully C:\PROGRA~3\ScanToPDF_4 deleted successfully C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully C:\Users\WoutSr\AppData\Roaming\Malwarebytes deleted successfully C:\Users\WoutSr_2\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\WoutSr\AppData\Roaming\Mozilla\Firefox\Profiles\4hlq8qdq.default ---- Lines zonealarm removed from prefs.js ---- user_pref("browser.search.defaultenginename", "Search By ZoneAlarm"); user_pref("browser.search.selectedEngine", "Search By ZoneAlarm"); user_pref("extensions.dntp.addonId", "ffxtlbr@zonealarm.com"); user_pref("extensions.ffxtlbr@zonealarm.com.conflict.checked", "true"); user_pref("extensions.zonealarm.admin", false); user_pref("extensions.zonealarm.aflt", "1025"); user_pref("extensions.zonealarm.appId", "{C56C48A0-DA4E-46F6-9859-1553DC865F84}"); user_pref("extensions.zonealarm.autoRvrt", "false"); user_pref("extensions.zonealarm.cntry", "NL"); user_pref("extensions.zonealarm.dfltLng", "EN"); user_pref("extensions.zonealarm.dfltSrch", true); user_pref("extensions.zonealarm.dnsErr", true); user_pref("extensions.zonealarm.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,7 user_pref("extensions.zonealarm.dspFFXOld", "Conduit Search"); user_pref("extensions.zonealarm.excTlbr", false); user_pref("extensions.zonealarm.ffxUnstlRst", false); user_pref("extensions.zonealarm.hdrMd5", "A50D683134ECA9FDD7858106E682474E"); user_pref("extensions.zonealarm.id", "f6c2588e000000000000801f02cc908d"); user_pref("extensions.zonealarm.instlDay", "16209"); user_pref("extensions.zonealarm.instlRef", "ZLN34558726105249-1001"); user_pref("extensions.zonealarm.kw_url", "http://search.zonealarm.com/search?src=sp&tbid=HFA5&Lan=EN&gu=cd43678610354b97be1b7868064e187a&tu=10GXy00E12 user_pref("extensions.zonealarm.lastB", "http://search.conduit.com/?ctid=CT3321897&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP868BD56C-7B88 user_pref("extensions.zonealarm.lastVrsnTs", "1.8.29.1710:53:02"); user_pref("extensions.zonealarm.newTab", false); user_pref("extensions.zonealarm.prdct", "zonealarm"); user_pref("extensions.zonealarm.prtnrId", "checkpoint"); user_pref("extensions.zonealarm.rvrt", "false"); user_pref("extensions.zonealarm.sg", "NewUSR"); user_pref("extensions.zonealarm.smplGrp", "NewUSR"); user_pref("extensions.zonealarm.srchPrvdr", "Search By ZoneAlarm"); user_pref("extensions.zonealarm.tlbrId", "HFA5"); user_pref("extensions.zonealarm.tlbrSrchUrl", "http://search.zonealarm.com/search?src=tb&tbid=HFA5&Lan={dfltLng}&gu=cd43678610354b97be1b7868064e187a&t user_pref("extensions.zonealarm.vrsn", "1.8.29.17"); user_pref("extensions.zonealarm.vrsnTs", "1.8.29.1710:53:02"); user_pref("extensions.zonealarm.vrsni", "1.8.29.17"); ---- Lines zonealarm removed from user.js ---- user_pref("extensions.zonealarm.tlbrSrchUrl", "http://search.zonealarm.com/search?src=tb&tbid=HFA5&Lan={dfltLng}&gu=cd43678610354b97be1b7868064e187a&tu=10GXy00E12D13P0&sku=&tstsId=&ver=&&q="); user_pref("extensions.zonealarm.id", "f6c2588e000000000000801f02cc908d"); user_pref("extensions.zonealarm.appId", "{C56C48A0-DA4E-46F6-9859-1553DC865F84}"); user_pref("extensions.zonealarm.instlDay", "16209"); user_pref("extensions.zonealarm.vrsn", "1.8.29.17"); user_pref("extensions.zonealarm.vrsni", "1.8.29.17"); user_pref("extensions.zonealarm.vrsnTs", "1.8.29.1710:53:02"); user_pref("extensions.zonealarm.prtnrId", "checkpoint"); user_pref("extensions.zonealarm.prdct", "zonealarm"); user_pref("extensions.zonealarm.aflt", "1025"); user_pref("extensions.zonealarm.smplGrp", "NewUSR"); user_pref("extensions.zonealarm.tlbrId", "HFA5"); user_pref("extensions.zonealarm.instlRef", "ZLN34558726105249-1001"); user_pref("extensions.zonealarm.dfltLng", "EN"); user_pref("extensions.zonealarm.excTlbr", false); user_pref("extensions.zonealarm.ffxUnstlRst", false); user_pref("extensions.zonealarm.admin", false); user_pref("extensions.zonealarm.autoRvrt", "false"); user_pref("extensions.zonealarm.rvrt", "false"); user_pref("extensions.zonealarm.dfltSrch", true); user_pref("extensions.zonealarm.srchPrvdr", "Search By ZoneAlarm"); user_pref("extensions.zonealarm.kw_url", "http://search.zonealarm.com/search?src=sp&tbid=HFA5&Lan=EN&gu=cd43678610354b97be1b7868064e187a&tu=10GXy00E12D13P0&sku=&tstsId=&ver=&&q="); user_pref("extensions.zonealarm.dnsErr", true); user_pref("extensions.zonealarm.newTab", false); ---- Lines conduit removed from prefs.js ---- user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3321897&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP868BD56C-7B88-4 ---- FireFox user.js and prefs.js backups ---- user_22-06-2014_1610_.backup prefs_22-06-2014_1610_.backup ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Allmyapps Update"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found C:\Users\WoutSr\AppData\Roaming\Allmyapps deleted C:\Users\WoutSr\AppData\Roaming\DriverCure deleted C:\PROGRA~2\MyPC Backup deleted C:\Users\WoutSr\AppData\Roaming\UpdaterEX deleted C:\Users\WoutSr\AppData\Roaming\pdfforge deleted C:\Users\WoutSr\AppData\Local\Systweak deleted C:\Users\WoutSr\Searches deleted C:\Users\WoutSr\AppData\LocalLow\boost_interprocess deleted C:\windows\SysNative\tasks\AllmyappsUpdateTask deleted C:\END deleted C:\Users\WoutSr\aaw6.exe deleted C:\Users\WoutSr\Cleanup.exe deleted C:\Users\WoutSr\ie6setup.exe deleted C:\Users\WoutSr\noadware.exe deleted C:\Users\WoutSr\qc1040nld.exe deleted C:\Users\WoutSr\spywareguardsetup.exe deleted "C:\Users\WoutSr\AppData\Roaming\Mozilla\Firefox\Profiles\4hlq8qdq.default\searchplugins\zonealarm.xml" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\WoutSr\AppData\Local\Temp ==== 2014-06-20 13:37:42 6D57AD64C3E9120D0D433981C49C5D72 38056 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\iv_uninstall.exe 2014-06-17 11:27:23 F9744856A70C803BAC565F2622A0EFFC 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpvplres09.dll 2014-06-17 11:27:23 EFE45117D3B7C93C32E3906B8ACDAB99 74640 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpvplui09.dll 2014-06-17 11:27:23 B3E573761417F4E69F60E3853934712B 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\unires.dll 2014-06-17 11:27:23 B295A304AC7731E909472026D34EDE83 77712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpvplui09.dll 2014-06-17 11:27:23 AD0F9A610C9B84539B9787AB2CB67B08 495504 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x32\HPWia1_DJ3070_B611.dll 2014-06-17 11:27:23 90A71C3E3FDD3733C34F048EEA95831D 617360 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x64\HPWia1_DJ3070_B611.dll 2014-06-17 11:27:23 8B43B71E6D946C4F5531981FC146A102 375296 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\unidrv.dll 2014-06-17 11:27:23 88E9956F312303026731DD009B80DDDD 499088 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x32\HPWia2_DJ3070_B611.dll 2014-06-17 11:27:23 70A72FC276267DBFDB39AC1FD358CFE0 884224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\unidrvui.dll 2014-06-17 11:27:23 6E66C780A7B31825E45177248EA72757 622992 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x64\HPWia2_DJ3070_B611.dll 2014-06-17 11:27:23 6B7622CA9F9E218B37A4CA89CCD2BD3C 747520 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\unidrvui.dll 2014-06-17 11:27:23 416EDAF698AE65E4A0E744299B259361 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\unires.dll 2014-06-17 11:27:23 10082D5492C7BD118FE703AC6CCB8AFC 479232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\unidrv.dll 2014-06-17 11:27:22 F14FA78EC2351F9C95FF3FB78105205E 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpvplres09.dll 2014-06-17 11:27:22 BD2A1ABF9DF7A9CE320EA716DA2BBBF7 2723216 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x64\HPScanTRDrv_DJ3070_B611.dll 2014-06-17 11:27:22 7B6AE5EF5E74CF0EF9AA3EC4EE24D2F9 505232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpvpldrv09.dll 2014-06-17 11:27:22 2CBA668ED45412B700648C98B904096B 590224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpvpldrv09.dll 2014-06-17 11:27:21 FD9E709D6107F039A9533DE5FE316E73 324152 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x86\DIFxAPI.dll 2014-06-17 11:27:21 F7BB82263749E4024129CE464A291E31 220560 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpinkcoia211.dll 2014-06-17 11:27:21 D465D76B4FD00B28F73BF6E013D1AD5D 556432 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpfime51.dll 2014-06-17 11:27:21 D02E4049A835485A9DFBBDFDA4B45C82 529808 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpinkstsa211.dll 2014-06-17 11:27:21 CB4B58F078F2DCBAACA0E57917DE7170 268688 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpinkstsa211LM.dll 2014-06-17 11:27:21 C24C1639479E7098511DE5B9DEA43FBB 661904 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpinkstsa211.dll 2014-06-17 11:27:21 8AB16EE858A4009FEFBACCC829F76786 269712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpinkcoia211.dll 2014-06-17 11:27:21 6A376BAABCF59DBDC0E11C5F77D33E47 331664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpinkstsa211LM.dll 2014-06-17 11:27:21 5A352BB10A6D71F567C92FA88DB2B753 1979280 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\drivers\scanner\x32\HPScanTRDrv_DJ3070_B611.dll 2014-06-17 11:27:21 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x64\DIFxAPI.dll 2014-06-17 11:27:21 0EE68DD5F81C167224F1FA643E2F0C65 538512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpfime51.dll 2014-06-17 11:27:20 E48077AAE55A33AE3F8C59D293A88E6B 890272 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Toolbar\smartprintsetup.exe 2014-06-17 11:27:20 E0F71158825F5E0A94A6829D2BAF31B7 1719912 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Setup.exe 2014-06-17 11:27:16 BBC82E175B89511A97C69339D3E6E2E9 307304 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x64\RemovePreinstalledDrivers.exe 2014-06-17 11:27:16 AE2A23229873B9CDC2E9E319BD692B20 1773672 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\RLBootstrap.exe 2014-06-17 11:27:15 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpinkinsa211.exe 2014-06-17 11:27:15 E4848F7374052BB6569E81063E18B125 2216336 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpinkinsa211.exe 2014-06-17 11:27:15 BE215EB72965C7A198479085195C877D 5671192 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Toolbar\BingBarSetup.exe 2014-06-17 11:27:15 98FE94DC34015805C20DB7E0AF75A920 255592 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x86\RemovePreinstalledDrivers.exe 2014-06-17 11:27:15 2A03C3ED11EE3B3029DE485A7250B0A1 11502184 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\HP-DQEX5.exe 2014-06-17 11:27:15 0A30836BCD754C2CED78706FDF69EC42 198248 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\hpUrlLauncher.exe 2014-06-17 11:27:12 E33F882E2F45D4EFC77A7D50AF698214 3313664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\D3070x64.msi 2014-06-17 11:27:12 9B293F2301B59A3FB6B391BB53D54660 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\D307Ux86.msi 2014-06-17 11:27:12 811EEE021FA9A25752663F00F1260A5C 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\D307Ux64.msi 2014-06-17 11:27:12 5765FCF822DB89C79903E162FB12A540 129536 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\lp-dj3070_b611MSI.msi 2014-06-17 11:27:12 44A993D311ACC25AE08F35C8F5E45FD6 3112960 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\D3070x86.msi 2014-06-17 11:27:12 261A52040B3E81765422EB9B3DCE3C12 964096 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\HP Update.msi 2014-06-15 08:00:29 F9744856A70C803BAC565F2622A0EFFC 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpvplres09.dll 2014-06-15 08:00:29 F14FA78EC2351F9C95FF3FB78105205E 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpvplres09.dll 2014-06-15 08:00:29 EFE45117D3B7C93C32E3906B8ACDAB99 74640 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpvplui09.dll 2014-06-15 08:00:29 B3E573761417F4E69F60E3853934712B 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\unires.dll 2014-06-15 08:00:29 B295A304AC7731E909472026D34EDE83 77712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpvplui09.dll 2014-06-15 08:00:29 AD0F9A610C9B84539B9787AB2CB67B08 495504 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x32\HPWia1_DJ3070_B611.dll 2014-06-15 08:00:29 90A71C3E3FDD3733C34F048EEA95831D 617360 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x64\HPWia1_DJ3070_B611.dll 2014-06-15 08:00:29 8B43B71E6D946C4F5531981FC146A102 375296 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\unidrv.dll 2014-06-15 08:00:29 88E9956F312303026731DD009B80DDDD 499088 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x32\HPWia2_DJ3070_B611.dll 2014-06-15 08:00:29 70A72FC276267DBFDB39AC1FD358CFE0 884224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\unidrvui.dll 2014-06-15 08:00:29 6E66C780A7B31825E45177248EA72757 622992 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x64\HPWia2_DJ3070_B611.dll 2014-06-15 08:00:29 6B7622CA9F9E218B37A4CA89CCD2BD3C 747520 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\unidrvui.dll 2014-06-15 08:00:29 416EDAF698AE65E4A0E744299B259361 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\unires.dll 2014-06-15 08:00:29 10082D5492C7BD118FE703AC6CCB8AFC 479232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\unidrv.dll 2014-06-15 08:00:28 F7BB82263749E4024129CE464A291E31 220560 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpinkcoia211.dll 2014-06-15 08:00:28 D465D76B4FD00B28F73BF6E013D1AD5D 556432 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpfime51.dll 2014-06-15 08:00:28 D02E4049A835485A9DFBBDFDA4B45C82 529808 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpinkstsa211.dll 2014-06-15 08:00:28 CB4B58F078F2DCBAACA0E57917DE7170 268688 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpinkstsa211LM.dll 2014-06-15 08:00:28 C24C1639479E7098511DE5B9DEA43FBB 661904 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpinkstsa211.dll 2014-06-15 08:00:28 BD2A1ABF9DF7A9CE320EA716DA2BBBF7 2723216 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x64\HPScanTRDrv_DJ3070_B611.dll 2014-06-15 08:00:28 8AB16EE858A4009FEFBACCC829F76786 269712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpinkcoia211.dll 2014-06-15 08:00:28 7B6AE5EF5E74CF0EF9AA3EC4EE24D2F9 505232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpvpldrv09.dll 2014-06-15 08:00:28 6A376BAABCF59DBDC0E11C5F77D33E47 331664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpinkstsa211LM.dll 2014-06-15 08:00:28 5A352BB10A6D71F567C92FA88DB2B753 1979280 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\drivers\scanner\x32\HPScanTRDrv_DJ3070_B611.dll 2014-06-15 08:00:28 2CBA668ED45412B700648C98B904096B 590224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpvpldrv09.dll 2014-06-15 08:00:28 0EE68DD5F81C167224F1FA643E2F0C65 538512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpfime51.dll 2014-06-15 08:00:27 FD9E709D6107F039A9533DE5FE316E73 324152 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\utils\x86\DIFxAPI.dll 2014-06-15 08:00:27 E48077AAE55A33AE3F8C59D293A88E6B 890272 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Toolbar\smartprintsetup.exe 2014-06-15 08:00:27 E0F71158825F5E0A94A6829D2BAF31B7 1719912 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Setup.exe 2014-06-15 08:00:27 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\utils\x64\DIFxAPI.dll 2014-06-15 08:00:22 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\amd64\hpinkinsa211.exe 2014-06-15 08:00:22 E4848F7374052BB6569E81063E18B125 2216336 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\i386\hpinkinsa211.exe 2014-06-15 08:00:22 BE215EB72965C7A198479085195C877D 5671192 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Toolbar\BingBarSetup.exe 2014-06-15 08:00:22 BBC82E175B89511A97C69339D3E6E2E9 307304 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\utils\x64\RemovePreinstalledDrivers.exe 2014-06-15 08:00:22 AE2A23229873B9CDC2E9E319BD692B20 1773672 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Optional\RLBootstrap.exe 2014-06-15 08:00:22 98FE94DC34015805C20DB7E0AF75A920 255592 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\utils\x86\RemovePreinstalledDrivers.exe 2014-06-15 08:00:22 2A03C3ED11EE3B3029DE485A7250B0A1 11502184 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\HP-DQEX5.exe 2014-06-15 08:00:22 0A30836BCD754C2CED78706FDF69EC42 198248 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\utils\hpUrlLauncher.exe 2014-06-15 08:00:19 E33F882E2F45D4EFC77A7D50AF698214 3313664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\D3070x64.msi 2014-06-15 08:00:19 9B293F2301B59A3FB6B391BB53D54660 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Optional\D307Ux86.msi 2014-06-15 08:00:19 811EEE021FA9A25752663F00F1260A5C 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Optional\D307Ux64.msi 2014-06-15 08:00:19 5765FCF822DB89C79903E162FB12A540 129536 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Optional\lp-dj3070_b611MSI.msi 2014-06-15 08:00:19 44A993D311ACC25AE08F35C8F5E45FD6 3112960 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\D3070x86.msi 2014-06-15 08:00:19 261A52040B3E81765422EB9B3DCE3C12 964096 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS46E6\Optional\HP Update.msi 2014-06-11 10:44:47 F9744856A70C803BAC565F2622A0EFFC 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpvplres09.dll 2014-06-11 10:44:47 F14FA78EC2351F9C95FF3FB78105205E 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpvplres09.dll 2014-06-11 10:44:47 EFE45117D3B7C93C32E3906B8ACDAB99 74640 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpvplui09.dll 2014-06-11 10:44:47 BD2A1ABF9DF7A9CE320EA716DA2BBBF7 2723216 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x64\HPScanTRDrv_DJ3070_B611.dll 2014-06-11 10:44:47 B3E573761417F4E69F60E3853934712B 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\unires.dll 2014-06-11 10:44:47 B295A304AC7731E909472026D34EDE83 77712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpvplui09.dll 2014-06-11 10:44:47 AD0F9A610C9B84539B9787AB2CB67B08 495504 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x32\HPWia1_DJ3070_B611.dll 2014-06-11 10:44:47 90A71C3E3FDD3733C34F048EEA95831D 617360 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x64\HPWia1_DJ3070_B611.dll 2014-06-11 10:44:47 8B43B71E6D946C4F5531981FC146A102 375296 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\unidrv.dll 2014-06-11 10:44:47 88E9956F312303026731DD009B80DDDD 499088 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x32\HPWia2_DJ3070_B611.dll 2014-06-11 10:44:47 7B6AE5EF5E74CF0EF9AA3EC4EE24D2F9 505232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpvpldrv09.dll 2014-06-11 10:44:47 70A72FC276267DBFDB39AC1FD358CFE0 884224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\unidrvui.dll 2014-06-11 10:44:47 6E66C780A7B31825E45177248EA72757 622992 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x64\HPWia2_DJ3070_B611.dll 2014-06-11 10:44:47 6B7622CA9F9E218B37A4CA89CCD2BD3C 747520 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\unidrvui.dll 2014-06-11 10:44:47 416EDAF698AE65E4A0E744299B259361 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\unires.dll 2014-06-11 10:44:47 2CBA668ED45412B700648C98B904096B 590224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpvpldrv09.dll 2014-06-11 10:44:47 10082D5492C7BD118FE703AC6CCB8AFC 479232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\unidrv.dll 2014-06-11 10:44:46 FD9E709D6107F039A9533DE5FE316E73 324152 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\utils\x86\DIFxAPI.dll 2014-06-11 10:44:46 F7BB82263749E4024129CE464A291E31 220560 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpinkcoia211.dll 2014-06-11 10:44:46 D465D76B4FD00B28F73BF6E013D1AD5D 556432 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpfime51.dll 2014-06-11 10:44:46 D02E4049A835485A9DFBBDFDA4B45C82 529808 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpinkstsa211.dll 2014-06-11 10:44:46 CB4B58F078F2DCBAACA0E57917DE7170 268688 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpinkstsa211LM.dll 2014-06-11 10:44:46 C24C1639479E7098511DE5B9DEA43FBB 661904 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpinkstsa211.dll 2014-06-11 10:44:46 8AB16EE858A4009FEFBACCC829F76786 269712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpinkcoia211.dll 2014-06-11 10:44:46 6A376BAABCF59DBDC0E11C5F77D33E47 331664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpinkstsa211LM.dll 2014-06-11 10:44:46 5A352BB10A6D71F567C92FA88DB2B753 1979280 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\drivers\scanner\x32\HPScanTRDrv_DJ3070_B611.dll 2014-06-11 10:44:46 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\utils\x64\DIFxAPI.dll 2014-06-11 10:44:46 0EE68DD5F81C167224F1FA643E2F0C65 538512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpfime51.dll 2014-06-11 10:44:45 E48077AAE55A33AE3F8C59D293A88E6B 890272 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Toolbar\smartprintsetup.exe 2014-06-11 10:44:45 E0F71158825F5E0A94A6829D2BAF31B7 1719912 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Setup.exe 2014-06-11 10:44:40 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\amd64\hpinkinsa211.exe 2014-06-11 10:44:40 E4848F7374052BB6569E81063E18B125 2216336 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\i386\hpinkinsa211.exe 2014-06-11 10:44:40 BE215EB72965C7A198479085195C877D 5671192 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Toolbar\BingBarSetup.exe 2014-06-11 10:44:40 BBC82E175B89511A97C69339D3E6E2E9 307304 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\utils\x64\RemovePreinstalledDrivers.exe 2014-06-11 10:44:40 AE2A23229873B9CDC2E9E319BD692B20 1773672 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Optional\RLBootstrap.exe 2014-06-11 10:44:40 98FE94DC34015805C20DB7E0AF75A920 255592 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\utils\x86\RemovePreinstalledDrivers.exe 2014-06-11 10:44:40 2A03C3ED11EE3B3029DE485A7250B0A1 11502184 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\HP-DQEX5.exe 2014-06-11 10:44:40 0A30836BCD754C2CED78706FDF69EC42 198248 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\utils\hpUrlLauncher.exe 2014-06-11 10:44:37 E33F882E2F45D4EFC77A7D50AF698214 3313664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\D3070x64.msi 2014-06-11 10:44:37 9B293F2301B59A3FB6B391BB53D54660 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Optional\D307Ux86.msi 2014-06-11 10:44:37 811EEE021FA9A25752663F00F1260A5C 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Optional\D307Ux64.msi 2014-06-11 10:44:37 5765FCF822DB89C79903E162FB12A540 129536 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Optional\lp-dj3070_b611MSI.msi 2014-06-11 10:44:37 44A993D311ACC25AE08F35C8F5E45FD6 3112960 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\D3070x86.msi 2014-06-11 10:44:37 261A52040B3E81765422EB9B3DCE3C12 964096 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0C1B\Optional\HP Update.msi 2014-06-10 13:27:52 F9744856A70C803BAC565F2622A0EFFC 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpvplres09.dll 2014-06-10 13:27:52 F14FA78EC2351F9C95FF3FB78105205E 237456 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpvplres09.dll 2014-06-10 13:27:52 EFE45117D3B7C93C32E3906B8ACDAB99 74640 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpvplui09.dll 2014-06-10 13:27:52 B3E573761417F4E69F60E3853934712B 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\unires.dll 2014-06-10 13:27:52 B295A304AC7731E909472026D34EDE83 77712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpvplui09.dll 2014-06-10 13:27:52 AD0F9A610C9B84539B9787AB2CB67B08 495504 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x32\HPWia1_DJ3070_B611.dll 2014-06-10 13:27:52 90A71C3E3FDD3733C34F048EEA95831D 617360 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x64\HPWia1_DJ3070_B611.dll 2014-06-10 13:27:52 8B43B71E6D946C4F5531981FC146A102 375296 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\unidrv.dll 2014-06-10 13:27:52 88E9956F312303026731DD009B80DDDD 499088 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x32\HPWia2_DJ3070_B611.dll 2014-06-10 13:27:52 7B6AE5EF5E74CF0EF9AA3EC4EE24D2F9 505232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpvpldrv09.dll 2014-06-10 13:27:52 70A72FC276267DBFDB39AC1FD358CFE0 884224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\unidrvui.dll 2014-06-10 13:27:52 6E66C780A7B31825E45177248EA72757 622992 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x64\HPWia2_DJ3070_B611.dll 2014-06-10 13:27:52 6B7622CA9F9E218B37A4CA89CCD2BD3C 747520 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\unidrvui.dll 2014-06-10 13:27:52 416EDAF698AE65E4A0E744299B259361 762368 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\unires.dll 2014-06-10 13:27:52 2CBA668ED45412B700648C98B904096B 590224 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpvpldrv09.dll 2014-06-10 13:27:52 10082D5492C7BD118FE703AC6CCB8AFC 479232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\unidrv.dll 2014-06-10 13:27:51 FD9E709D6107F039A9533DE5FE316E73 324152 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\utils\x86\DIFxAPI.dll 2014-06-10 13:27:51 F7BB82263749E4024129CE464A291E31 220560 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpinkcoia211.dll 2014-06-10 13:27:51 D465D76B4FD00B28F73BF6E013D1AD5D 556432 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpfime51.dll 2014-06-10 13:27:51 D02E4049A835485A9DFBBDFDA4B45C82 529808 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpinkstsa211.dll 2014-06-10 13:27:51 CB4B58F078F2DCBAACA0E57917DE7170 268688 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpinkstsa211LM.dll 2014-06-10 13:27:51 C24C1639479E7098511DE5B9DEA43FBB 661904 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpinkstsa211.dll 2014-06-10 13:27:51 BD2A1ABF9DF7A9CE320EA716DA2BBBF7 2723216 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x64\HPScanTRDrv_DJ3070_B611.dll 2014-06-10 13:27:51 8AB16EE858A4009FEFBACCC829F76786 269712 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpinkcoia211.dll 2014-06-10 13:27:51 6A376BAABCF59DBDC0E11C5F77D33E47 331664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpinkstsa211LM.dll 2014-06-10 13:27:51 5A352BB10A6D71F567C92FA88DB2B753 1979280 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\drivers\scanner\x32\HPScanTRDrv_DJ3070_B611.dll 2014-06-10 13:27:51 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\utils\x64\DIFxAPI.dll 2014-06-10 13:27:51 0EE68DD5F81C167224F1FA643E2F0C65 538512 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpfime51.dll 2014-06-10 13:27:50 E48077AAE55A33AE3F8C59D293A88E6B 890272 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Toolbar\smartprintsetup.exe 2014-06-10 13:27:50 E0F71158825F5E0A94A6829D2BAF31B7 1719912 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Setup.exe 2014-06-10 13:27:45 AE2A23229873B9CDC2E9E319BD692B20 1773672 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Optional\RLBootstrap.exe 2014-06-10 13:27:44 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\amd64\hpinkinsa211.exe 2014-06-10 13:27:44 E4848F7374052BB6569E81063E18B125 2216336 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\i386\hpinkinsa211.exe 2014-06-10 13:27:44 BE215EB72965C7A198479085195C877D 5671192 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Toolbar\BingBarSetup.exe 2014-06-10 13:27:44 BBC82E175B89511A97C69339D3E6E2E9 307304 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\utils\x64\RemovePreinstalledDrivers.exe 2014-06-10 13:27:44 98FE94DC34015805C20DB7E0AF75A920 255592 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\utils\x86\RemovePreinstalledDrivers.exe 2014-06-10 13:27:44 2A03C3ED11EE3B3029DE485A7250B0A1 11502184 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\HP-DQEX5.exe 2014-06-10 13:27:44 0A30836BCD754C2CED78706FDF69EC42 198248 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\utils\hpUrlLauncher.exe 2014-06-10 13:27:41 E33F882E2F45D4EFC77A7D50AF698214 3313664 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\D3070x64.msi 2014-06-10 13:27:41 9B293F2301B59A3FB6B391BB53D54660 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Optional\D307Ux86.msi 2014-06-10 13:27:41 811EEE021FA9A25752663F00F1260A5C 245760 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Optional\D307Ux64.msi 2014-06-10 13:27:41 5765FCF822DB89C79903E162FB12A540 129536 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Optional\lp-dj3070_b611MSI.msi 2014-06-10 13:27:41 44A993D311ACC25AE08F35C8F5E45FD6 3112960 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\D3070x86.msi 2014-06-10 13:27:41 261A52040B3E81765422EB9B3DCE3C12 964096 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS3AC7\Optional\HP Update.msi ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-06-22 09:04:09 949E0E42DAAD0418513B44C31A697CA5 1797896 ----a-w- C:\Windows\SysWOW64\d3d9.dll 2014-06-22 09:04:09 5BD2BD14753D3B0ADDE842CDF25A4C60 2144984 ----a-w- C:\Windows\SysWOW64\mfcore.dll 2014-06-22 09:04:08 E65B5352AD0743F1F59BDA9466719EFE 265216 ----a-w- C:\Windows\SysWOW64\SkyDriveShell.dll 2014-06-22 09:04:08 1E14463F10B324B02EB2DA7415345D15 1473080 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2014-06-22 09:04:07 EA15CC7B75A2DE287E3B0C266A35490C 235008 ----a-w- C:\Windows\SysWOW64\framedynos.dll 2014-06-22 09:04:07 E4783EB6A6B2D04F3B541B378E843617 229888 ----a-w- C:\Windows\SysWOW64\dhcpcore6.dll 2014-06-22 09:04:07 E28501E3A241DDC5DC65382E55661B1D 285696 ----a-w- C:\Windows\SysWOW64\dhcpcore.dll 2014-06-22 09:04:07 59E587B3096F906330318A0BDE0E7A51 2317824 ----a-w- C:\Windows\SysWOW64\authui.dll 2014-06-22 09:04:07 566C13049E035A5CE6345428FBDE709B 735232 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2014-06-22 09:04:06 A750BB0258ECF6265A903905A0B14EB3 198656 ----a-w- C:\Windows\SysWOW64\WebClnt.dll 2014-06-22 09:04:06 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\Windows\SysWOW64\Robocopy.exe 2014-06-22 09:04:06 0CCDFED2DFCD4FBA73EE989249379458 52736 ----a-w- C:\Windows\SysWOW64\ncobjapi.dll 2014-06-22 09:04:05 BEA7A26C2C22381B6DD88758352B9D9B 62976 ----a-w- C:\Windows\SysWOW64\dhcpcsvc.dll 2014-06-22 09:04:05 BA6E52B0D82682EDE4B49D9CCC7D529B 207360 ----a-w- C:\Windows\SysWOW64\framedyn.dll 2014-06-22 09:04:05 855D508F0053CEDC3BBAF2CB245A674A 1035264 ----a-w- C:\Windows\SysWOW64\actxprxy.dll 2014-06-22 09:04:05 57E0A896C38C41C8B5B7F3127F8FD0D9 56320 ----a-w- C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-06-22 09:04:04 191B7F25BE13D9F9E56B2B4EA595AC62 11776 ----a-w- C:\Windows\SysWOW64\d3d8thk.dll 2014-06-12 17:07:29 55ADDA5B29D1151727470FA165460773 1312256 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-06-12 17:07:27 CB1F941980DCC044542CEF180328D180 1064448 ----a-w- C:\Windows\SysWOW64\gdi32.dll 2014-06-12 17:07:24 5B5815477A53ED92B89955FFE7EDCB2E 242688 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-06-12 17:07:24 017B99D09904DCA35D5F66AD79084B5F 368128 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-06-12 17:07:07 7E27FB6AB8976897A530FB30F5FF7691 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-06-12 17:07:05 D5ECBB3BFDC73A59440D9CA79AB3A342 17271296 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-06-12 17:06:52 C58E97EEB1CB80CE91D5E7FD5E78794F 4244992 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-06-12 17:06:50 688227D38A6FF6403B293D0C50B454B9 11725312 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-06-12 17:06:47 771CDBC3D62437D6DB070820BB1EDCCF 1790976 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-06-12 17:06:46 9EAAB4305536829D6B7D9C3A47E92861 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-06-12 17:06:45 0AFCE8EEF3751810FE2101FD608FB8B3 1143296 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-06-12 17:06:43 6D8E6A9A524FFAAFA4D2F6C8EF38D0BB 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-06-12 17:06:42 22D7FFA4B94916F18EB1F1D107B86839 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-06-12 17:06:41 C69FDD49AB9E8BCF2BAAC469CE0CC756 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-06-12 17:06:40 8DF06ACA017949D37C38B6A0EF747D4E 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-06-12 17:06:39 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-06-12 17:06:28 A8358D0521BC91CF30C5C1EE4541B695 754688 ----a-w- C:\Windows\SysWOW64\WSShared.dll 2014-06-12 17:06:04 0FDDBC46B0FE68B9516BED5CDC2A5296 5104640 ----a-w- C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2014-06-12 17:06:03 A717D4AC0C44BCBE990DBF8B6EC979AA 12711424 ----a-w- C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2014-06-12 17:06:01 A5358F64D4EB5ABE2829981CD9734901 18755672 ----a-w- C:\Windows\SysWOW64\shell32.dll 2014-06-12 17:05:57 A93E67D9084BEFC32C8E2B75FCC5B02E 11792384 ----a-w- C:\Windows\SysWOW64\twinui.dll 2014-06-12 17:05:57 4550DC04464B86C5EB2CC77D9D27C06C 5833216 ----a-w- C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-06-12 17:05:56 87AB9959EC23455326C8C55E59DE0A88 669856 ----a-w- C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2014-06-12 17:05:54 1E48870B29C7D7328A7D484A61250AE5 5774848 ----a-w- C:\Windows\SysWOW64\mstscax.dll 2014-06-12 17:05:51 EC4FA776548BF1A05DAE3B5EFB0FFE6F 1209616 ----a-w- C:\Windows\SysWOW64\winmde.dll 2014-06-12 17:05:51 561945C42E36012B4799C342E6A96498 800768 ----a-w- C:\Windows\SysWOW64\MFMediaEngine.dll 2014-06-12 17:05:51 13CE2AA6D3ACAF0B485DBFE8AF2F5C48 305768 ----a-w- C:\Windows\SysWOW64\AUDIOKSE.dll 2014-06-12 17:05:50 5FAEA469BCE03F8FABAFB63D7603DC3C 982016 ----a-w- C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2014-06-12 17:05:45 E678126493997B951C6A6E91BC15C91C 836608 ----a-w- C:\Windows\SysWOW64\SearchFolder.dll 2014-06-12 17:05:43 E2AAB5EDC278D489C8EF87F277B5E3E6 888320 ----a-w- C:\Windows\SysWOW64\Windows.Media.dll 2014-06-12 17:05:43 90C83CF02C884315E595FA07CA9C64EF 387896 ----a-w- C:\Windows\SysWOW64\mfsvr.dll 2014-06-12 17:05:43 008368626F3EFAEDB0C2CD4565BA6797 98584 ----a-w- C:\Windows\SysWOW64\dwmapi.dll 2014-06-12 17:05:42 76892045ECB1D830185618DBD3467562 337408 ----a-w- C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-06-12 17:05:41 A54EB398BC2D792A0C603A97F7975FD8 357376 ----a-w- C:\Windows\SysWOW64\GeofenceMonitorService.dll 2014-06-12 17:05:41 8C25FBB338147754DA42DF990FB3AE4A 285144 ----a-w- C:\Windows\SysWOW64\MFCaptureEngine.dll 2014-06-12 17:05:40 C97E772120135CD320CB217C92105B12 370176 ----a-w- C:\Windows\SysWOW64\winspool.drv 2014-06-12 17:05:40 4874EB05C1BE374B8A4AC15DF3DB07B0 111528 ----a-w- C:\Windows\SysWOW64\gpapi.dll 2014-06-12 17:05:39 A9A027378882FFA14000612AE6FDA7AB 1200288 ----a-w- C:\Windows\SysWOW64\propsys.dll 2014-06-12 17:05:39 A624CA7CDFA7941EECD6F96F1A47CCA3 178184 ----a-w- C:\Windows\SysWOW64\MSVideoDSP.dll 2014-06-12 17:05:39 A4F3682781DD8B36E97FD04BA50845A2 209920 ----a-w- C:\Windows\SysWOW64\rdpencom.dll 2014-06-12 17:05:39 88A821BC72CB1A935C92F453586233EF 518544 ----a-w- C:\Windows\SysWOW64\mf.dll 2014-06-12 17:05:39 15905E6B799C1446A37915ED23CD17E5 144384 ----a-w- C:\Windows\SysWOW64\rpchttp.dll 2014-06-12 17:05:38 A3ECC0F6960AA699895CB48BC69BEA3B 326024 ----a-w- C:\Windows\SysWOW64\AudioSes.dll 2014-06-12 17:05:38 956D8170AD470804405C0564E10ED6ED 406504 ----a-w- C:\Windows\SysWOW64\AudioEng.dll 2014-06-12 17:05:38 6BAE2EB5EFCEAC999BB1A5BF267C711D 707048 ----a-w- C:\Windows\SysWOW64\mfplat.dll 2014-06-12 17:05:38 619C6E72B8433B3F67738F7E6C972A96 230808 ----a-w- C:\Windows\SysWOW64\wintrust.dll 2014-06-12 17:05:37 06AB75759A0B2D79680F52ACDAE702A1 313344 ----a-w- C:\Windows\SysWOW64\clusapi.dll 2014-06-12 17:05:36 E697F1E4E819EB12C40AE01F88626BAB 219136 ----a-w- C:\Windows\SysWOW64\resutils.dll 2014-06-12 17:05:35 D0E0E176F86C3B1048A67144DE0C5CD3 46592 ----a-w- C:\Windows\SysWOW64\tlscsp.dll 2014-06-12 17:05:34 5C74AC34C1CAA9C232836C580272B0DD 1029120 ----a-w- C:\Windows\SysWOW64\mispace.dll 2014-06-12 17:05:33 CF3EA59E07BF906B43058C98B6750D16 855552 ----a-w- C:\Windows\SysWOW64\rdvidcrl.dll 2014-06-12 17:05:32 FF28231D41465C253E9F9EF164DD619C 230400 ----a-w- C:\Windows\SysWOW64\wlanapi.dll 2014-06-12 17:05:32 B6803C8A600E3F029A3D688D9E590CA3 300544 ----a-w- C:\Windows\SysWOW64\wlanmsm.dll 2014-06-12 17:05:32 68A23F58F6F16B81BCBFCAA07CDF0680 61440 ----a-w- C:\Windows\SysWOW64\srclient.dll 2014-06-12 17:05:32 3CABBCB26C4E73F3440A8A064EB490FF 11264 ----a-w- C:\Windows\SysWOW64\wlanhlp.dll 2014-06-12 17:02:23 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\Windows\SysWOW64\drvinst.exe 2014-06-12 17:02:21 65FCEABE3128592F84B60140F814BDDB 1509888 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2014-06-12 17:02:08 260A56A8164CBDF9884BB9B2895F6AB2 2344448 ----a-w- C:\Windows\SysWOW64\Wpc.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-06-22 09:04:11 1DF648DE1492F93D198F47D48E8D8844 4720640 ----a-w- C:\Windows\Sysnative\SyncEngine.dll 2014-06-22 09:04:11 0AF6EC3A8114A5BF73B90D35A161B0BC 1417216 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-06-22 09:04:10 DCC0493E96C56C130D27118504BCB5FE 4190208 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-06-22 09:04:10 C1E44A99F7CF8C3A08CD5ADDF451636C 2125344 ----a-w- C:\Windows\Sysnative\d3d9.dll 2014-06-22 09:04:10 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\Windows\Sysnative\SkyDrive.exe 2014-06-22 09:04:10 0CD0356C5BBCFDC1B7BCEEDE74AB348B 2140888 ----a-w- C:\Windows\Sysnative\mfcore.dll 2014-06-22 09:04:09 B6E947CE54A5AAD55484E0D3BC2D5948 1025536 ----a-w- C:\Windows\Sysnative\localspl.dll 2014-06-22 09:04:09 9A0C624F608236FE4EECE6B32C62BC27 716800 ----a-w- C:\Windows\Sysnative\SkyDriveTelemetry.dll 2014-06-22 09:04:09 9700BAA88E172AD628D352C3EE3E7D4E 3464192 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2014-06-22 09:04:08 EA432A85ABF371E14FB364D5F4405897 403968 ----a-w- C:\Windows\Sysnative\vpnike.dll 2014-06-22 09:04:08 D71845D255EA3FDC96A2DED98EE4C7D9 2844160 ----a-w- C:\Windows\Sysnative\actxprxy.dll 2014-06-22 09:04:08 D21440EA5236E34DCD7F8C1607790910 2641920 ----a-w- C:\Windows\Sysnative\authui.dll 2014-06-22 09:04:08 CED9FA1ECCF3E6B7028940FE22C69B40 1726224 ----a-w- C:\Windows\Sysnative\ntdll.dll 2014-06-22 09:04:08 6B374D279DC423FE69DB8DD1401E84FC 301056 ----a-w- C:\Windows\Sysnative\framedynos.dll 2014-06-22 09:04:08 61FE99A86352AD6E27FA480CDC8B225A 285696 ----a-w- C:\Windows\Sysnative\SkyDriveShell.dll 2014-06-22 09:04:08 05DE04005CE0D84D0E6AD21CAEB369C6 353280 ----a-w- C:\Windows\Sysnative\dhcpcore.dll 2014-06-22 09:04:07 FBB1841434072FFA76E4AD287448E34A 262656 ----a-w- C:\Windows\Sysnative\framedyn.dll 2014-06-22 09:04:07 E07C80468D0C599BFF01D9D4EC7AEDC3 339456 ----a-w- C:\Windows\Sysnative\bdesvc.dll 2014-06-22 09:04:07 98D0985521BF8F7086EA9C860898A1EE 721408 ----a-w- C:\Windows\Sysnative\fveapi.dll 2014-06-22 09:04:07 6CDCCD5323EEB8EBD66E02CB8C9C703F 118272 ----a-w- C:\Windows\Sysnative\winbici.dll 2014-06-22 09:04:07 20FB137ADDE1255F15F265A7BD9579BE 827392 ----a-w- C:\Windows\Sysnative\BFE.DLL 2014-06-22 09:04:07 1EBDE2EF54A762DB6907C7717A1EAC81 735232 ----a-w- C:\Windows\Sysnative\adtschema.dll 2014-06-22 09:04:07 1824052F17B12B5D7B21445B869EE9F2 71168 ----a-w- C:\Windows\Sysnative\ncobjapi.dll 2014-06-22 09:04:07 10AC9494ECE22A2362E4E4D98C528D01 271872 ----a-w- C:\Windows\Sysnative\dhcpcore6.dll 2014-06-22 09:04:06 DEE3131D604DA3D424B9A8987C15FA32 54776 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2014-06-22 09:04:06 DEA76F90F9777E3427D70E380222B23B 1063424 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL 2014-06-22 09:04:06 D3883FBCA97D10C8A39632D6CDDC6E85 65024 ----a-w- C:\Windows\Sysnative\dhcpcsvc6.dll 2014-06-22 09:04:06 D261A12A43D33122CB90E70D3BC1CC68 226816 ----a-w- C:\Windows\Sysnative\WebClnt.dll 2014-06-22 09:04:06 7E1EBDB3424337ABB553F249A7811D94 87552 ----a-w- C:\Windows\Sysnative\dhcpcsvc.dll 2014-06-22 09:04:06 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\Windows\Sysnative\Robocopy.exe 2014-06-22 09:04:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\Windows\Sysnative\BulkOperationHost.exe 2014-06-22 09:04:04 B7CC32E00C5C5152D221DF182827F58E 50745 ----a-w- C:\Windows\Sysnative\srms.dat 2014-06-22 09:04:04 71BAEAFD05B3040173F5BBEA2CFE9607 997888 ----a-w- C:\Windows\Sysnative\reseteng.dll 2014-06-17 11:27:59 3D7C1DFE052288F40AC9ABFB2A824B92 741480 ------w- C:\Windows\Sysnative\HPDiscoPMa211.dll 2014-06-12 17:07:32 CCDFFC83004AF62D0153CF45289028AF 3360256 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2014-06-12 17:07:30 201FE8AAD76FB1E7FB5A3B1337435DC1 2151424 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-06-12 17:07:27 A4948EA65E584A88BE09029DB49E4D70 1336648 ----a-w- C:\Windows\Sysnative\gdi32.dll 2014-06-12 17:07:24 CB8A91074AE1B5051E240B50A328DCF5 295424 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-06-12 17:07:24 12BA419E27DBC5DBF9262C8A885FA361 452096 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-06-12 17:07:23 CC603EF96BA456D4BCD9FF849ED07A2A 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-06-12 17:07:08 56803B20D168C1B740D12CE0BE4588F5 23414784 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-06-12 17:06:58 AB3FA3D9B1F1D0571CBC43D1487CCD6F 5782528 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-06-12 17:06:55 2DBB9127794BC30BC31D26FA088F8BAB 13522944 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-06-12 17:06:49 40BFD9D6EC8E174145F012246CA73CCD 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-06-12 17:06:47 063EF4239479F52DAF9F4849B0B304F1 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-06-12 17:06:46 3A1AB9DE852F2BC1ECE6403BDD01B9F0 1398272 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-06-12 17:06:44 9013D5BBE1B6D3A060F54B4B5BB2C3A3 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-06-12 17:06:44 6B9925F498D4E91FB57576CC3776D428 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-06-12 17:06:43 EAAA62F272858695814A1F42D5E59BD3 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-06-12 17:06:42 867DD52B23D3B0390B88F3D7AD1E600C 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-06-12 17:06:41 3FC3828E8820D1C93DBFBAD4BE456D85 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-06-12 17:06:39 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-06-12 17:06:28 A28730EF44FCCBF0040B771CEFC8EE76 921088 ----a-w- C:\Windows\Sysnative\WSShared.dll 2014-06-12 17:06:26 AA5A86B32FC3975284082C64059F92DF 79872 ----a-w- C:\Windows\Sysnative\WSReset.exe 2014-06-12 17:06:07 AE7D8835A29FADB39C0D095BA32A9462 21268952 ----a-w- C:\Windows\Sysnative\shell32.dll 2014-06-12 17:06:06 AEDD44FDB8B521D443A07146F5CA3A53 7173120 ----a-w- C:\Windows\Sysnative\Windows.Data.Pdf.dll 2014-06-12 17:06:05 0C5C304C3A2D9E9633A7506CBB04929E 16872448 ----a-w- C:\Windows\Sysnative\Windows.UI.Xaml.dll 2014-06-12 17:06:04 151427E526E96471A45FF6CC2257FBA0 8652800 ----a-w- C:\Windows\Sysnative\Windows.UI.Search.dll 2014-06-12 17:05:59 AD2DE3982C7B6E62346098C7570F6A7D 13287936 ----a-w- C:\Windows\Sysnative\twinui.dll 2014-06-12 17:05:59 383DA813409316D69603C1D849834D24 1308160 ----a-w- C:\Windows\Sysnative\gpsvc.dll 2014-06-12 17:05:57 7FB9EC74ADFB2353B7782C3EF833F5B7 765408 ----a-w- C:\Windows\Sysnative\mfmpeg2srcsnk.dll 2014-06-12 17:05:57 7E4A8D95B9DBC2CB588B91848A0AE731 2688000 ----a-w- C:\Windows\Sysnative\SettingsHandlers.dll 2014-06-12 17:05:56 F4C09C622BC55A80F775DF7D8AB9984F 6645248 ----a-w- C:\Windows\Sysnative\mstscax.dll 2014-06-12 17:05:55 9ED0E72966FB08F7E6DB15E5519AF8D1 1379064 ----a-w- C:\Windows\Sysnative\wmpmde.dll 2014-06-12 17:05:55 5071E71CC05346D88C5A08EB8B5A05E3 1584128 ----a-w- C:\Windows\Sysnative\workfolderssvc.dll 2014-06-12 17:05:55 411DBFCD6ABAB75B6F7950677AEEFB7D 1403856 ----a-w- C:\Windows\Sysnative\winmde.dll 2014-06-12 17:05:54 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\Windows\Sysnative\services.exe 2014-06-12 17:05:53 CB79B5D367376E7B49E2D95BFFB0BEEB 364640 ----a-w- C:\Windows\Sysnative\AUDIOKSE.dll 2014-06-12 17:05:53 98A184F6EC43B178901FCD5D4E2EC43B 1222656 ----a-w- C:\Windows\Sysnative\Windows.Media.Streaming.dll 2014-06-12 17:05:53 6B7B2211C293218706D491204FCE8695 1126912 ----a-w- C:\Windows\Sysnative\SearchFolder.dll 2014-06-12 17:05:52 EAE6ED6C5076CF765EB731B92A237149 955904 ----a-w- C:\Windows\Sysnative\MFMediaEngine.dll 2014-06-12 17:05:52 46378ECCB4A29AA81BF296641C2501EF 323072 ----a-w- C:\Windows\Sysnative\srvsvc.dll 2014-06-12 17:05:51 A1CD5194ACC156A852136B303F087260 491744 ----a-w- C:\Windows\Sysnative\mfsvr.dll 2014-06-12 17:05:51 6873D09262D32B95D6AC3026FCF8B424 1230336 ----a-w- C:\Windows\Sysnative\Windows.Media.dll 2014-06-12 17:05:45 EEC46BC17F28C528AB7FAC20AFDF69E3 462336 ----a-w- C:\Windows\Sysnative\XpsGdiConverter.dll 2014-06-12 17:05:44 ED7C0A11E655CD8B89BE499F99D56098 486912 ----a-w- C:\Windows\Sysnative\winspool.drv 2014-06-12 17:05:44 D872C6095AACC13AD897DB5E4D2B5D91 805376 ----a-w- C:\Windows\Sysnative\win32spl.dll 2014-06-12 17:05:44 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2014-06-12 17:05:44 AF3FF97AC2A73E70F8A8D11FB694175B 449536 ----a-w- C:\Windows\Sysnative\defragsvc.dll 2014-06-12 17:05:44 79B134ECE836B406B212E28C24011538 834048 ----a-w- C:\Windows\Sysnative\audiosrv.dll 2014-06-12 17:05:43 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\Windows\Sysnative\SystemSettingsAdminFlows.exe 2014-06-12 17:05:43 626D19F1771E1AE72208AE9A8F3082F7 491520 ----a-w- C:\Windows\Sysnative\GeofenceMonitorService.dll 2014-06-12 17:05:43 1517EE52367CABAA5615AC736DC96C7D 125496 ----a-w- C:\Windows\Sysnative\dwmapi.dll 2014-06-12 17:05:42 95471DDCB3B3FF70015FD9AA13404F44 281600 ----a-w- C:\Windows\Sysnative\resutils.dll 2014-06-12 17:05:42 87CF824E47489DD972FB4FB9FC4EDD0A 324888 ----a-w- C:\Windows\Sysnative\MFCaptureEngine.dll 2014-06-12 17:05:42 1697E09CDA4DD8741B8276F48A8514DE 32600 ----a-w- C:\Windows\Sysnative\ploptin.dll 2014-06-12 17:05:42 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\Windows\Sysnative\MDEServer.exe 2014-06-12 17:05:41 850EBB87584484DC16F917E7B6F4A304 718336 ----a-w- C:\Windows\Sysnative\swprv.dll 2014-06-12 17:05:41 7B12172CCE581F76C9335D7A47E0AD50 130144 ----a-w- C:\Windows\Sysnative\gpapi.dll 2014-06-12 17:05:41 315502228EB37F36E86EF75CB1DA1D44 201920 ----a-w- C:\Windows\Sysnative\MSVideoDSP.dll 2014-06-12 17:05:40 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\Windows\Sysnative\VSSVC.exe 2014-06-12 17:05:40 BAF51BE2DEB387BD99CAC4E3B7850FEC 250368 ----a-w- C:\Windows\Sysnative\rdpencom.dll 2014-06-12 17:05:40 9654DE19551093CD73874281E1573C94 135168 ----a-w- C:\Windows\Sysnative\wscsvc.dll 2014-06-12 17:05:40 2A4177EE5446877BD24DD72504105603 191488 ----a-w- C:\Windows\Sysnative\rpchttp.dll 2014-06-12 17:05:39 AE2B9504C975B529D92D9E6603F6D33F 609448 ----a-w- C:\Windows\Sysnative\mf.dll 2014-06-12 17:05:39 4684C8E852065C0A7937C395C165A24F 1466856 ----a-w- C:\Windows\Sysnative\propsys.dll 2014-06-12 17:05:38 F4E351BB95D473CB55BB7C1A1FEB2798 467496 ----a-w- C:\Windows\Sysnative\AudioSes.dll 2014-06-12 17:05:38 5EE916C3272A19B459717A8D2397B07A 55296 ----a-w- C:\Windows\Sysnative\energyprov.dll 2014-06-12 17:05:38 01851563CB6FB986A4C0221C15AB6ADC 463256 ----a-w- C:\Windows\Sysnative\AudioEng.dll 2014-06-12 17:05:37 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\Windows\Sysnative\audiodg.exe 2014-06-12 17:05:37 99277BE68298288A0E27CF9E50FAD091 881616 ----a-w- C:\Windows\Sysnative\mfplat.dll 2014-06-12 17:05:37 88ACBA95BB55B8226D52117462B76CD4 307304 ----a-w- C:\Windows\Sysnative\wintrust.dll 2014-06-12 17:05:37 7B3255A0B833908E4A7ACEA6245D344E 426496 ----a-w- C:\Windows\Sysnative\clusapi.dll 2014-06-12 17:05:37 414B81DE6CE46022ED43051C09EDB00B 467968 ----a-w- C:\Windows\Sysnative\srcore.dll 2014-06-12 17:05:37 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\Windows\Sysnative\mfpmp.exe 2014-06-12 17:05:36 64B2A2630C964BF135A84A52FB2EEF9A 47616 ----a-w- C:\Windows\Sysnative\tlscsp.dll 2014-06-12 17:05:36 22B8B1F946ACFCB03832793A25216D8C 186880 ----a-w- C:\Windows\Sysnative\WorkFoldersShell.dll 2014-06-12 17:05:35 B24960B79BDE7D5ED1EA638027F9E8F0 143872 ----a-w- C:\Windows\Sysnative\BootMenuUX.dll 2014-06-12 17:05:35 78D26F162E015FF644785C8836B617CA 1287168 ----a-w- C:\Windows\Sysnative\mispace.dll 2014-06-12 17:05:35 69A374DE46C7BAAE30BFB1E40D69C5C6 761856 ----a-w- C:\Windows\Sysnative\WorkfoldersControl.dll 2014-06-12 17:05:34 EF252510DB6C3511E30418BD2AC95A2D 1527296 ----a-w- C:\Windows\Sysnative\wlansvc.dll 2014-06-12 17:05:34 E86E7792A2A0854D5560371BBDDA760B 1057280 ----a-w- C:\Windows\Sysnative\rdvidcrl.dll 2014-06-12 17:05:34 8E1866A4E96F1159B6625627860A0454 2100736 ----a-w- C:\Windows\Sysnative\SystemSettingsAdminFlowUI.dll 2014-06-12 17:05:34 88BCAEABEB2A46DB7B336B8432720AC8 443904 ----a-w- C:\Windows\Sysnative\wlansec.dll 2014-06-12 17:05:34 886767FD022213F7885416134E9082E5 201216 ----a-w- C:\Windows\Sysnative\AudioEndpointBuilder.dll 2014-06-12 17:05:33 F2895547FC275642A29692DC344A847F 296960 ----a-w- C:\Windows\Sysnative\wlanapi.dll 2014-06-12 17:05:33 977D67467950D8048E94651EE6081B99 370176 ----a-w- C:\Windows\Sysnative\wlanmsm.dll 2014-06-12 17:05:32 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\Windows\Sysnative\rstrui.exe 2014-06-12 17:05:32 B6BD22DDEDDD8665080D664749ACFEF5 64512 ----a-w- C:\Windows\Sysnative\tsgqec.dll 2014-06-12 17:05:32 9465F8E72887AC6CCDD97F738A5AB6B6 70656 ----a-w- C:\Windows\Sysnative\srclient.dll 2014-06-12 17:05:32 82FE5F302FD7C7EF0E41465BB873EFC7 11264 ----a-w- C:\Windows\Sysnative\wlanhlp.dll 2014-06-12 17:02:23 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\Windows\Sysnative\drvcfg.exe 2014-06-12 17:02:23 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\Windows\Sysnative\drvinst.exe 2014-06-12 17:02:22 CC8E86B9C18BCA38D3C467CFD661A466 1975296 ----a-w- C:\Windows\Sysnative\DWrite.dll 2014-06-12 17:02:22 3FA6DC6B29717E32E211C1FD821F2C75 1345536 ----a-w- C:\Windows\Sysnative\FntCache.dll 2014-06-12 17:02:10 60A4EAAA2964A3ECFD91A6EC9F8B72C0 3048904 ----a-w- C:\Windows\Sysnative\WpcMon.exe 2014-06-12 17:02:10 416BE72F050166A6B5820833363AB0F2 3118080 ----a-w- C:\Windows\Sysnative\Wpc.dll 2014-06-12 17:02:09 8838E982B803E9303ABE051E0CAB5A64 2861056 ----a-w- C:\Windows\Sysnative\WpcWebSync.dll 2014-06-12 17:02:07 52E94AE3C9FF1E18A1EA125C4FFB0EEC 2834944 ----a-w- C:\Windows\Sysnative\wpccpl.dll ====== C:\Windows\Sysnative\drivers ===== 2014-06-22 09:04:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2014-06-22 09:04:08 3EFEB62E6DCF4F19C42FEFE425006B31 440664 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys 2014-06-22 09:04:08 0F35ADB37DF6AF6BDFB725ECC6C2FD1B 418136 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2014-06-22 09:04:07 DE9C8D03C010969CAD96ACAFC9FD1901 89944 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys 2014-06-22 09:04:07 BE7C78A9EB5886E3DF2D74A7C33ADE22 27480 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys 2014-06-22 09:04:07 6BD2B29B58E12B478B2FB2E8866AE784 37376 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys 2014-06-22 09:04:07 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\Windows\Sysnative\drivers\agilevpn.sys 2014-06-22 09:04:06 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\Windows\Sysnative\drivers\vwifimp.sys 2014-06-22 09:04:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\Windows\Sysnative\drivers\vwififlt.sys 2014-06-22 09:04:00 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2014-06-12 19:28:55 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-06-12 19:28:35 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-06-12 19:28:35 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-06-12 17:06:33 4B666AE119D2ADBAC816BEA7DB4D6881 2518872 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2014-06-12 17:06:32 A9749FD0A06E22009EA972D8B9CB046B 428888 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-06-12 17:06:31 D18EC2C83C2F773C9476A4FB0AA4C314 295424 ----a-w- C:\Windows\Sysnative\drivers\ks.sys 2014-06-12 17:05:54 7C7BE474915166B61B84C025F1F10157 563200 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2014-06-12 17:05:52 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys 2014-06-12 17:05:51 4BB9BC49DEE1A319EC58274A7BBED663 310616 ----a-w- C:\Windows\Sysnative\drivers\volsnap.sys 2014-06-12 17:05:43 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys 2014-06-12 17:05:43 498288DD5CA42C2D36D125893E968C53 77312 ----a-w- C:\Windows\Sysnative\drivers\hdaudbus.sys 2014-06-12 17:05:42 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys 2014-06-12 17:05:42 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\Windows\Sysnative\drivers\Classpnp.sys 2014-06-12 17:05:41 D90AB68D0FAC9F357F663670FDBB511E 275800 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys 2014-06-12 17:05:41 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys 2014-06-12 17:05:40 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2014-06-12 17:05:39 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys 2014-06-12 17:05:39 33977549C2CED09936E05BEE7659EAFF 384856 ----a-w- C:\Windows\Sysnative\drivers\spaceport.sys 2014-06-12 17:02:06 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\Windows\Sysnative\drivers\wpcfltr.sys 2014-05-26 17:57:56 0AC797F70F2F3E5B69A34FF2F63496F3 12688328 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys ====== C:\Windows\Tasks ====== 2014-06-20 13:06:11 156D6E3C1AC02C7518C91A2449D3DA57 3350 ----a-w- C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3839719292-3166028433-122956788-1002 2014-06-17 11:28:02 14A2071C597D57C7F6DD764CC467A3B3 3634 ----a-w- C:\Windows\Sysnative\Tasks\HPCustParticipation HP Deskjet 3070 B611 series ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-22 09:13:52 -------- d-----w- C:\Program Files\trend micro 2014-06-17 11:27:51 -------- d-----w- C:\Program Files\HP ======= C:\PROGRA~2 ===== 2014-06-06 11:51:25 -------- d-----w- C:\PROGRA~2\Soft4Boost 2014-06-06 11:51:25 -------- d-----w- C:\PROGRA~2\COMMON~1\Soft4Boost 2014-06-03 08:06:54 -------- d-----w- C:\PROGRA~2\NSIS Uninstall Information ======= C: ===== ====== C:\Users\WoutSr\AppData\Roaming ====== 2014-06-12 17:05:45 -------- d-----w- C:\Users\WoutSr\AppData\Local\Adobe ====== C:\Users\WoutSr ====== 2014-06-18 13:41:49 6F0C2884CFD111C6B08E6C8ADFC4F621 22528 ----a-w- C:\Users\WoutSr\Sigma handleiding\start.exe 2014-06-18 13:41:49 0413501B3827D9BBF11A03559AB60134 15 ----a-w- C:\Users\WoutSr\Sigma handleiding\start.bat 2014-06-18 13:40:55 -------- d-----w- C:\Users\WoutSr\Sigma handleiding 2014-06-17 11:28:08 -------- d-----w- C:\ProgramData\Visan 2014-06-17 11:27:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2014-06-12 19:39:08 2283402A274EED4CAA0C8D3FAF1AA26E 3754 ----a-w- C:\Users\WoutSr\Malware 140612.txt 2014-06-06 11:51:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost 2014-06-04 06:57:04 A2861AC9DC9DAF67934A2813AC68E3A7 73728 ----a-w- C:\Users\WoutSr\Algpers 1406.doc 2014-06-03 08:06:57 -------- d-----w- C:\ProgramData\PDVD 2014-06-03 08:06:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14 2014-06-03 08:04:20 -------- d-----w- C:\ProgramData\SUPPORTDIR ====== C: exe-files == 2014-06-22 09:13:56 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\WoutSr.exe 2014-06-22 09:12:54 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\WoutSr\Documents\Downloads\RSITx64.exe 2014-06-22 09:04:10 9289A1927350EA1F7FD4D4DC64D3F32F 1408504 ----a-w- C:\Windows\Camera\Camera.exe 2014-06-22 09:04:10 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-06-22 09:04:07 1064CF2438DC44A13EFD13551915586D 321024 ----a-w- C:\Windows\System32\IME\SHARED\ImeBroker.exe 2014-06-22 09:04:06 FEF22922E4FA075C6C1FFF4385D74A95 99136 ----a-w- C:\Windows\FileManager\FileManager.exe 2014-06-22 09:04:06 DEE3131D604DA3D424B9A8987C15FA32 54776 ----a-w- C:\Windows\System32\wuauclt.exe 2014-06-22 09:04:06 A83FCE24AE4103F9DA32E8707C4B4C43 124928 ----a-w- C:\Windows\SysWOW64\wbem\WMIADAP.exe 2014-06-22 09:04:06 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\Windows\SysWOW64\Robocopy.exe 2014-06-22 09:04:06 34215162FF8440E3342071D5A7FDCB3C 1192280 ----a-w- C:\Windows\Boot\PCAT\memtest.exe 2014-06-22 09:04:06 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\Windows\System32\Robocopy.exe 2014-06-22 09:04:06 0C8AF6461266A72BE61552BB42BC13D8 361496 ----a-w- C:\Windows\FileManager\PhotosApp.exe 2014-06-22 09:04:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\Windows\System32\BulkOperationHost.exe 2014-06-22 09:04:05 A09657B30C532DCF848F2B33404EF190 166400 ----a-w- C:\Windows\System32\wbem\WMIADAP.exe 2014-06-21 08:23:13 3A836FD241858D62466AE43AC64143F8 3633616 ----a-w- C:\Users\WoutSr\AppData\Local\NVIDIA\NvBackend\Packages\00005c18\DAO.18618300.exe 2014-06-20 13:37:42 6D57AD64C3E9120D0D433981C49C5D72 38056 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\iv_uninstall.exe 2014-06-18 13:41:49 6F0C2884CFD111C6B08E6C8ADFC4F621 22528 ----a-w- C:\Users\WoutSr\Sigma handleiding\start.exe 2014-06-18 07:41:33 859AAC3C91210E72A87E19DF68651A6D 3604320 ----a-w- C:\Users\WoutSr\AppData\Local\NVIDIA\NvBackend\Packages\00005be7\DAO.18606833.exe 2014-06-17 11:27:20 E48077AAE55A33AE3F8C59D293A88E6B 890272 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Toolbar\smartprintsetup.exe 2014-06-17 11:27:20 E0F71158825F5E0A94A6829D2BAF31B7 1719912 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Setup.exe 2014-06-17 11:27:16 BBC82E175B89511A97C69339D3E6E2E9 307304 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x64\RemovePreinstalledDrivers.exe 2014-06-17 11:27:16 AE2A23229873B9CDC2E9E319BD692B20 1773672 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Optional\RLBootstrap.exe 2014-06-17 11:27:15 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\amd64\hpinkinsa211.exe 2014-06-17 11:27:15 E4848F7374052BB6569E81063E18B125 2216336 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\i386\hpinkinsa211.exe 2014-06-17 11:27:15 BE215EB72965C7A198479085195C877D 5671192 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\Toolbar\BingBarSetup.exe 2014-06-17 11:27:15 98FE94DC34015805C20DB7E0AF75A920 255592 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\x86\RemovePreinstalledDrivers.exe 2014-06-17 11:27:15 2A03C3ED11EE3B3029DE485A7250B0A1 11502184 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\HP-DQEX5.exe 2014-06-17 11:27:15 0A30836BCD754C2CED78706FDF69EC42 198248 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\utils\hpUrlLauncher.exe 2014-06-17 11:06:41 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\WoutSr\Documents\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.132643397481912.1.1.Run.exe 2014-06-16 08:07:15 AC8ABA7D6A081BBD577ACD6BCE0770B0 5979312 ----a-w- C:\Users\WoutSr\Documents\Downloads\WindowsDataRecovery.exe === C: other files == 2014-06-22 09:04:10 DCC0493E96C56C130D27118504BCB5FE 4190208 ----a-w- C:\Windows\System32\win32k.sys 2014-06-22 09:04:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-06-22 09:04:08 3EFEB62E6DCF4F19C42FEFE425006B31 440664 ----a-w- C:\Windows\System32\drivers\usbport.sys 2014-06-22 09:04:08 0F35ADB37DF6AF6BDFB725ECC6C2FD1B 418136 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2014-06-22 09:04:07 DE9C8D03C010969CAD96ACAFC9FD1901 89944 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2014-06-22 09:04:07 BE7C78A9EB5886E3DF2D74A7C33ADE22 27480 ----a-w- C:\Windows\System32\drivers\usbd.sys 2014-06-22 09:04:07 6BD2B29B58E12B478B2FB2E8866AE784 37376 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2014-06-22 09:04:07 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\Windows\System32\drivers\agilevpn.sys 2014-06-22 09:04:06 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\Windows\System32\drivers\vwifimp.sys 2014-06-22 09:04:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\Windows\System32\drivers\vwififlt.sys 2014-06-22 09:04:00 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2014-06-18 13:41:49 0413501B3827D9BBF11A03559AB60134 15 ----a-w- C:\Users\WoutSr\Sigma handleiding\start.bat 2014-06-17 11:27:12 E5A66920DCD993EA66340D6D494CAF46 7288591 ----a-w- C:\Users\WoutSr\AppData\Local\Temp\7zS0182\licensing\OpenSource\OpenSource.zip ==== Startup Registry Enabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ZoneAlarm"="C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "PowerDVD14Agent"="C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" ==== Startup Folders ====================== 2014-06-17 11:29:23 1970 ----a-w- C:\Users\WoutSr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series.lnk 2014-04-28 18:05:41 1211 ----a-w- C:\Users\WoutSr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots Wallpaper & Screensaver.lnk 2014-04-22 17:07:48 1126 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\Windows\SysNative\tasks\DivX-online actualiseringsprogramma" [C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe] "C:\Windows\SysNative\tasks\HP-Online updateprogramma" [C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 3070 B611 series" ["C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\Real Player-online actualiseringsprogramma" [C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe] "C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3839719292-3166028433-122956788-1002" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3839719292-3166028433-122956788-1002" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [14-11-2013 21:14] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\WoutSr\AppData\Roaming\Mozilla\Firefox\Profiles\4hlq8qdq.default 738C29EAC995029E13333034C1402F56 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll - Shockwave Flash D6ED6EB98E759460AD8C66DE23070132 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013 BE126CB7049E89ED6F3038016668B502 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) EAC427FEF96A13058C1ACD17C38966CF - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) 96B3689320E9B16EDF38B7A5001C35F0 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) F8CB60A5ACA5D73807ECBD9942A8BCB7 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[14-08-2013 16:24] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {591C4082-A281-434F-90DD-A13980CB3150} NU.nl Url="http://www.nu.nl/zoeken/?q={searchTerms}&origin=nu_ie8" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== shortcuts on Users Desktops ====================== C:\Users\Default\Desktop\ALDI Foto Service.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.aldifoto.nl C:\Users\Default\Desktop\ALDI Talk.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medionmobile.nl C:\Users\Default\Desktop\Hartelijk welkom bij ALDI.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.aldi.nl C:\Users\Default\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medion.com/nl C:\Users\Default User\Desktop\ALDI Foto Service.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.aldifoto.nl C:\Users\Default User\Desktop\ALDI Talk.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medionmobile.nl C:\Users\Default User\Desktop\Hartelijk welkom bij ALDI.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.aldi.nl C:\Users\Default User\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medion.com/nl C:\Users\WoutSr\Desktop\Afsluiten.lnk - C:\Windows\System32\shutdown.exe -s -t 00 C:\Users\WoutSr\Desktop\Clean Disk Security.lnk - C:\Program Files (x86)\Clean Disk Security\clndisk.exe C:\Users\WoutSr\Desktop\Prisma Italiaans - Nederlands.lnk - C:\Program Files (x86)\Prisma\I-N\Prisma.exe C:\Users\WoutSr\Desktop\Prisma Nederlands - Italiaans .lnk - C:\Program Files (x86)\Prisma\N-I\Prisma.exe C:\Users\WoutSr\Desktop\Webshots Wallpaper & Screensaver.lnk - C:\Program Files (x86)\Webshots\Wallpaper\WallScreen.exe C:\Users\WoutSr\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medion.com/nl C:\Users\WoutSr_2\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.medion.com/nl ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe C:\Users\Public\Desktop\Advanced File Optimizer.lnk - C:\Program Files (x86)\Advanced File Optimizer\AdvancedFileOptimizer.exe C:\Program Files (x86)\Advanced File Optimizer\AdvancedFileOptimizer.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe C:\Users\Public\Desktop\HP Deskjet 3070 B611 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3070 B611 series\Bin\HP Deskjet 3070 B611 series.exe -Start UDCDevicePage C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Users\Public\Desktop\PDFCreator.lnk - C:\Program Files (x86)\PDFCreator\PDFCreator.exe ==== shortcuts in Users Start Menu ====================== C:\Users\WoutSr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series.lnk - C:\Windows\system32\RunDll32.exe "C:\Program Files\HP\HP Deskjet 3070 B611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN1AN4717L05MQ;CONNECTION=USB;MONITOR=1; C:\Users\WoutSr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots Wallpaper & Screensaver.lnk - C:\Program Files (x86)\Webshots\Wallpaper\WallScreen.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14\CyberLink PowerDVD 14.lnk - C:\Program Files (x86)\CyberLink\PowerDVD14\PDVDLP.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Update.lnk - C:\Program Files (x86)\HP\HP Software Update\hpwucli.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 3070 B611 series\HP Deskjet 3070 B611 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3070 B611 series\Bin\HP Deskjet 3070 B611 series.exe -Start UDCDevicePage C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe /show C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost\FixComponents.lnk - C:\Program Files (x86)\Common Files\Soft4Boost\FixComponents.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost\Any Uninstaller\Any Uninstaller.lnk - C:\Program Files (x86)\Soft4Boost\Any Uninstaller\S4BAnyUninstaller.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost\Any Uninstaller\Help.lnk - C:\Program Files (x86)\Soft4Boost\Any Uninstaller\AnyUninstaller.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost\Any Uninstaller\Uninstall.lnk - C:\Program Files (x86)\Soft4Boost\Any Uninstaller\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft4Boost\Any Uninstaller\User Guide.lnk - C:\Program Files (x86)\Soft4Boost\Any Uninstaller\AnyUninstaller.pdf ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Advanced File Optimizer.lnk - C:\Program Files (x86)\Advanced File Optimizer\AdvancedFileOptimizer.exe C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1390401215&from=obw&uid=ST1000DM003-1CH162_Z1D7DN9RXXXXZ1D7DN9R C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk - C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE /recycle C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Excel 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\EXCEL.EXE C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1390401215&from=obw&uid=ST1000DM003-1CH162_Z1D7DN9RXXXXZ1D7DN9R C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://aartemis.com/?type=sc&ts=1390401215&from=obw&uid=ST1000DM003-1CH162_Z1D7DN9RXXXXZ1D7DN9R C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Outlook 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\OUTLOOK.EXE C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Tor Browser.lnk - C:\Users\WoutSr\Desktop\Tor Browser\Start Tor Browser.exe C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\WINWORD.EXE C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Excel 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\EXCEL.EXE C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Outlook 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\OUTLOOK.EXE C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PhotoDirector 3.lnk - C:\Program Files (x86)\CyberLink\PhotoDirector3\PhotoDirector3.exe C:\Users\WoutSr_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Word 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\WINWORD.EXE ==== shortcuts After Repair ====================== C:\Users\Default\Desktop\ALDI Foto Service.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default\Desktop\ALDI Talk.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default\Desktop\Hartelijk welkom bij ALDI.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default User\Desktop\ALDI Foto Service.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default User\Desktop\ALDI Talk.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default User\Desktop\Hartelijk welkom bij ALDI.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Default User\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\WoutSr\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\WoutSr_2\Desktop\Welkom bij MEDION.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\WoutSr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\WoutSr\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\WoutSr\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Users\WoutSr_2\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\WoutSr_2\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=116 folders=14 92972569 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\WoutSr\AppData\Local\Temp will be emptied at reboot C:\Users\WoutSr_2\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\WoutSr\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 22-06-2014 at 16:21:30,94 ======================