Zoek.exe v5.0.0.0 Updated 11-August-2014 Tool run by Wies on wo 13-08-2014 at 13:57:36,67. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Wies\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 13-8-2014 14:00:52 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\SlimDrivers deleted successfully C:\Users\Wies\AppData\Local\calibre-cache deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 9.20 (x64 edition) Adobe Digital Editions 3.0 Apple Application Support Apple Mobile Device Support Apple Software Update Auslogics DiskDefrag Auslogics Registry Cleaner Auslogics Registry Defrag AVG 2014 Bonjour calibre CCleaner Conexant HD Audio D3DX10 Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Dropbox Foxit Reader 5.0 Google Drive Google Update Helper HD Tune 2.55 Intel(R) Processor Graphics iTunes Junk Mail filter update K-Lite Codec Pack 10.6.0 Standard LibreOffice 4.3.0.4 Malwarebytes Anti-Malware versie 2.0.2.1012 Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office Office 64-bit Components 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office SharePoint Designer 2010 Microsoft Office SharePoint Designer MUI (Dutch) 2010 Microsoft OneDrive Microsoft SharePoint Designer 2010 Microsoft Silverlight MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Panda Cloud Cleaner Photo Common Picasa 3 SAMSUNG Mobile Composite Device Software SAMSUNG Mobile Modem Driver Set Samsung Mobile phone USB driver Drive Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Samsung PC Studio 3 Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2767915) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2878284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft SharePoint Designer 2010 (KB2810069) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Skype Click to Call SkypeT 6.18 Speccy Synaptics Pointing Device Driver Tweaking.com - Windows Repair (All in One) Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Users\Wies\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Users\Wies\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Users\Wies\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\ProgramData\AVG Security Toolbar deleted C:\Program Files (x86)\AVG Secure Search deleted C:\PROGRA~2\GUT59F2.tmp deleted C:\PROGRA~2\GUM59F1.tmp deleted C:\PROGRA~2\COMMON~1\ParetoLogic deleted C:\PROGRA~2\Wise\Wise Registry Cleaner deleted C:\PROGRA~2\COMMON~1\AVG Secure Search deleted C:\Users\Wies\Searches deleted C:\Users\Wies\Downloads\SoftonicDownloader_voor_samsung-pc-studio.exe deleted C:\Windows\SysNative\config\systemprofile\Searches deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 8104 MB CPU Info: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz CPU Speed: 2540,2 MHz Sound Card: Luidsprekers (Conexant SmartAud | SPDIF-interface (Conexant Smart | Display Adapters: Intel(R) HD Graphics 3000 | Intel(R) HD Graphics 3000 | NVIDIA GeForce GT 630M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Intel(R) Centrino(R) Wireless-N 130 | Atheros AR8151 PCI-E Gigabit Ethernet Controller | Bluetooth-apparaat (Personal Area Network) CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GT60N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 647,5GB | D: 50,0GB | F: 100,0MB Hard Disks - Free: C: 431,3GB | D: 26,6GB | F: 61,4MB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 12/30/11 | MEDION - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Medion P7621 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus 2014 disabled (Outdated) Default Browser: Google Chrome 35.0.1916.153 Internet Explorer Version: 11.0.9600.17207 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-08-06 14:56:17 332FEAB1435662FC6C672E25BEB37BE3 2871808 ----a-w- C:\Windows\explorer.exe 2014-08-06 14:55:54 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe ====== C:\Users\Wies\AppData\Local\Temp ==== 2014-08-13 09:14:08 D11FB7A5078631BE2E183DC56FCD5375 43008 ----a-w- C:\Users\Wies\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpuxulk3.dll 2014-08-08 16:25:08 C95CDDF65F9F8C9433AFF8F0A811375A 189320 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\psmachine_64.dll 2014-08-08 16:25:08 715CCB3F5EDA626198CCADC7AB8CE9A2 189320 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\psuser_64.dll 2014-08-08 16:25:08 3D58798BD1D1F96381C0B47CA859739D 166792 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\psuser.dll 2014-08-08 16:25:07 FB5621842FDABF9F8359775573498FBC 605064 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\npGoogleUpdate3.dll 2014-08-08 16:25:07 DEC1A40D0210FAD3BB67028B97F155A4 26112 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateHelper.msi 2014-08-08 16:25:07 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateBroker.exe 2014-08-08 16:25:07 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleCrashHandler64.exe 2014-08-08 16:25:07 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateOnDemand.exe 2014-08-08 16:25:07 84180917AAB55EE4392C54E0E0BD4022 166792 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\psmachine.dll 2014-08-08 16:25:07 815799F594F4D6276A9809E9A7F25875 895120 ----a-w- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateSetup.exe 2014-08-08 16:25:07 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateComRegisterShell64.exe 2014-08-08 16:25:07 77E585EDD4C7EB7AB2ACC36BC1DC32A5 1696648 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\goopdate.dll 2014-08-08 16:25:07 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdate.exe 2014-08-08 16:25:06 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleCrashHandler.exe 2014-08-06 17:57:54 B6F30625972B2B23418D478E6E2B7688 10432512 ----a-w- C:\Users\Wies\AppData\Local\Temp\SkypeToolbars.msi 2014-08-06 17:57:27 F56C9E0A0944C9C0AA17BB23530EBD32 26509312 ----a-w- C:\Users\Wies\AppData\Local\Temp\Skype.msi ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-08-09 13:04:55 86F1895AE8C5E8B17D99ECE768A70732 348160 ----a-w- C:\Windows\SysWOW64\msvcr71.dll 2014-08-09 12:39:03 89237A73CDEA80FDE79B79C0C8B67758 766 ----a-w- C:\Windows\SysWOW64\Uninstall.ico 2014-08-06 16:50:00 8B696D2B028374CBA8F6721A12C8300B 2096 ----a-w- C:\Windows\SysWOW64\BroomData.bit 2014-08-06 14:56:17 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\SysWOW64\explorer.exe 2014-08-06 14:56:16 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2014-08-06 14:56:09 D96106CF60505734B14F6AE80AAA4B07 1987584 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll 2014-08-06 14:56:09 14800BD31701A5047AC3145BB1E698AE 3419136 ----a-w- C:\Windows\SysWOW64\d2d1.dll 2014-08-06 14:56:06 B4834F08230A2EB7F498DE4E5B6AB814 74240 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2014-08-06 14:56:06 5C3F9DBA818CD93379D1A0F215270374 1699328 ----a-w- C:\Windows\SysWOW64\esent.dll 2014-08-06 14:55:55 A054EA8FBE16D4D34F06D81A4F0088E2 1230336 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2014-08-06 09:09:33 B9A550873AB27DB299AEA3D9DE5489D4 53248 ----a-w- C:\Windows\SysWOW64\CSVer.dll 2014-08-06 07:40:35 A0F43D4AB011F8979E597C1393CA7C50 218200 ----a-w- C:\Windows\SysWOW64\unrar.dll 2014-08-06 06:36:37 8A4CEBF34370D689E198E6673C1F2C40 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_5.dll 2014-08-06 06:36:37 81DFDDFB401D663BA7E6AD1C80364216 527192 ----a-w- C:\Windows\SysWOW64\XAudio2_7.dll 2014-08-06 06:36:36 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Windows\SysWOW64\D3DCompiler_43.dll 2014-08-06 06:36:35 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\Windows\SysWOW64\d3dx11_43.dll 2014-08-06 06:34:32 501AC862517C5445742BEE8A2B88414E 453456 ----a-w- C:\Windows\SysWOW64\d3dx10_42.dll 2014-08-06 06:32:18 26AF232140C88B42D92A88F2198EDF6A 3426072 ----a-w- C:\Windows\SysWOW64\d3dx9_32.dll 2014-08-05 23:48:40 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL 2014-08-05 23:48:39 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll 2014-08-05 23:31:39 03CE39561E967C536571CEC58AD0EE38 9058578 ----a-w- C:\Windows\SysWOW64\PerfStringBackup.INI 2014-08-05 22:22:09 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\SysWOW64\elshyph.dll 2014-08-05 22:21:49 FC733FD7721200D5136F6F8112E97B00 11742208 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-08-05 22:21:49 F2A99A4293CAF7956FF7801D36D5A3B2 442368 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-08-05 22:21:49 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\SysWOW64\html.iec 2014-08-05 22:21:49 CCC198257901BEEA2FBF8EB1E7678356 1791488 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-08-05 22:21:49 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\SysWOW64\ieapfltr.dat 2014-08-05 22:21:49 BE0EA764820239F7785410CBE3880086 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-08-05 22:21:49 A9F8343A3234FC7A42DDA4569827B411 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-08-05 22:21:49 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\SysWOW64\tdc.ocx 2014-08-05 22:21:49 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\SysWOW64\jsIntl.dll 2014-08-05 22:21:49 9385D7C5DF2566D01B1FB150F381D50B 367616 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-08-05 22:21:49 8046CF629D8AE766C22145F4A6AFFBE1 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-08-05 22:21:49 7C44C697BA6D0B698B91AC6516A731C3 1139200 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-08-05 22:21:49 573E522A27210701EB8A6C476D36FFF6 239616 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-08-05 22:21:49 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\SysWOW64\msls31.dll 2014-08-05 22:21:49 175A663547805367C10746FC416D4605 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-08-05 22:21:49 084FB28A790685F32A6D7D003777696D 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-08-05 22:21:48 FDA05E78813F543A6E9AC6B23EC696F2 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2014-08-05 22:21:48 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\SysWOW64\ieuinit.inf 2014-08-05 22:21:48 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\SysWOW64\inseng.dll 2014-08-05 22:21:48 E739AEDCA67F214F96C2520BA293B12B 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-08-05 22:21:48 DFA59840BB1220AFD261FDAE83543959 17276416 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-08-05 22:21:48 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\SysWOW64\url.dll 2014-08-05 22:21:48 CE94480E78CC3A1A17B53F2BB65639BD 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-08-05 22:21:48 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-08-05 22:21:48 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\SysWOW64\licmgr10.dll 2014-08-05 22:21:48 A98E303FCB7058C6E78FD1FBBCBB5EEF 240824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-08-05 22:21:48 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2014-08-05 22:21:48 91CF46BBB827E461C498A1D7D1A71AD6 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-08-05 22:21:48 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\SysWOW64\imgutil.dll 2014-08-05 22:21:48 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\SysWOW64\wextract.exe 2014-08-05 22:21:48 67EA1BB7F6428A10C64D5A732976F871 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-08-05 22:21:48 557D60DF85D61C290A1D09E7115B294B 62464 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-08-05 22:21:48 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\SysWOW64\icardie.dll 2014-08-05 22:21:48 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\SysWOW64\pngfilt.dll 2014-08-05 22:21:48 4B774E842F268D51DB942EF9637828B9 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-08-05 22:21:48 448854C4FE94C0FA329CC38FF103DC74 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-08-05 22:21:48 42BF66A4DC35DAD3564065173372CCE9 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-08-05 22:21:48 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\SysWOW64\occache.dll 2014-08-05 22:21:48 09CBE4B1AEF497FC05493B09EA2C1757 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-08-05 22:21:48 045A91095A605BB20FF2B37546FE62B0 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-08-05 22:21:48 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2014-08-05 22:21:47 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll 2014-08-05 22:21:47 E3065F51EE0BB099EAAE48C3FC3A25B6 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-08-05 22:21:47 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\SysWOW64\mshtmler.dll 2014-08-05 22:21:47 98C7B1AFA0A99EE3BE99EAABEFB72CA0 4254720 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-08-05 22:21:47 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe 2014-08-05 22:21:47 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2014-08-05 22:21:47 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\SysWOW64\jscript.dll 2014-08-05 22:21:47 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll 2014-08-05 22:21:47 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2014-08-05 22:21:47 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2014-08-05 22:12:57 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\SysWOW64\d3d10core.dll 2014-08-05 22:12:57 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\SysWOW64\dxgi.dll 2014-08-05 22:12:57 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\SysWOW64\d3d10_1core.dll 2014-08-05 22:12:57 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\SysWOW64\XpsGdiConverter.dll 2014-08-05 22:12:57 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\SysWOW64\UIAnimation.dll 2014-08-05 22:12:57 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\SysWOW64\d3d10.dll 2014-08-05 22:12:57 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\SysWOW64\XpsPrint.dll 2014-08-05 22:12:57 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2014-08-05 22:12:57 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2014-08-05 22:12:57 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\SysWOW64\WindowsCodecsExt.dll 2014-08-05 22:12:57 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2014-08-05 22:12:57 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\SysWOW64\msmpeg2vdec.dll 2014-08-05 22:12:57 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2014-08-05 22:12:57 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\SysWOW64\d3d10level9.dll 2014-08-05 22:12:57 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2014-08-05 22:12:57 4277F5164DE9B7C665BB928B9145BEE0 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2014-08-05 22:12:57 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\SysWOW64\d3d10_1.dll 2014-08-05 22:12:57 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2014-08-05 22:12:57 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2014-08-05 22:12:57 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2014-08-05 22:12:57 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2014-08-05 21:03:50 03F3B770DFBED6131653CEDA8CA780F0 442880 ----a-w- C:\Windows\SysWOW64\ntshrui.dll 2014-08-05 21:03:38 E9D88493FBDB36D4B65C6F2F7F122C95 12874240 ----a-w- C:\Windows\SysWOW64\shell32.dll 2014-08-05 21:03:35 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\SysWOW64\wintrust.dll 2014-08-05 21:03:24 465DBF63A5049E4DB4BC5C12FFE781CB 1549312 ----a-w- C:\Windows\SysWOW64\tquery.dll 2014-08-05 21:03:24 236F286E103FD44BD85FDD93097FD5DD 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe 2014-08-05 21:03:24 0241CB16136B9A4939CA0395768AE286 1401344 ----a-w- C:\Windows\SysWOW64\mssrch.dll 2014-08-05 21:03:23 E1AC89F6C5252057E6062843E36A6701 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe 2014-08-05 21:03:23 DB67C7C62038BDE813CB6486581A7611 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll 2014-08-05 21:03:23 A6CD6B3F71E13E2E45B727FB8A47EA87 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe 2014-08-05 21:03:23 987323F0247D023AD1AE52195540ECE0 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll 2014-08-05 21:03:23 5BDF8B0B9A3EADE3A2A6F2ED8D44E36D 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll 2014-08-05 21:03:23 2DC6285EC4F902BE08E7C5FA6D3FD017 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll 2014-08-05 21:03:00 EF71BA5DF59034962B0C62314A71351A 193536 ----a-w- C:\Windows\SysWOW64\dhcpcore6.dll 2014-08-05 21:03:00 81F6C1AE23B1C493D9E996C3103915D7 44032 ----a-w- C:\Windows\SysWOW64\dhcpcsvc6.dll 2014-08-05 21:01:24 52D33A22DE04BD9F40E1B1A28B46A95C 3217408 ----a-w- C:\Windows\SysWOW64\mstscax.dll 2014-08-05 21:01:22 F5562EFA9E4867D30EC2330B80FCB25C 131584 ----a-w- C:\Windows\SysWOW64\aaclient.dll 2014-08-05 21:01:21 2A6BFDEDF2C57923E78F970BB15D7E7D 36864 ----a-w- C:\Windows\SysWOW64\tsgqec.dll 2014-08-05 21:01:09 20104EA66332D24D7C65BBB087C56737 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2014-08-05 21:01:07 FB19FC5951A88F3C523E35C2C98D23C0 314880 ----a-w- C:\Windows\SysWOW64\webio.dll 2014-08-05 21:00:37 68783E77D401E6392EA6579EBCEF16C8 514560 ----a-w- C:\Windows\SysWOW64\qdvd.dll 2014-08-05 21:00:37 0AE0C4955E1DE29CCDC9DA1B816FE5EE 1328128 ----a-w- C:\Windows\SysWOW64\quartz.dll 2014-08-05 21:00:34 92FB57D9D865019D26346EB13E15CD75 642048 ----a-w- C:\Windows\SysWOW64\CPFilters.dll 2014-08-05 21:00:34 4D05D7A79E970398D8C687712E65A9B0 850944 ----a-w- C:\Windows\SysWOW64\sbe.dll 2014-08-05 21:00:34 246560C5B7995489F25BF9175F2B6380 199680 ----a-w- C:\Windows\SysWOW64\mpg2splt.ax 2014-08-05 21:00:28 EDF2A5E96BEC469DA3F64E9BDD386111 180224 ----a-w- C:\Windows\SysWOW64\xmllite.dll 2014-08-05 21:00:25 EF37EDC20412A01DDD9A42E8D939A5A3 163840 ----a-w- C:\Windows\SysWOW64\odbctrac.dll 2014-08-05 21:00:25 E2D83DAA6A229CFDAF129189A9245889 86016 ----a-w- C:\Windows\SysWOW64\odbccu32.dll 2014-08-05 21:00:25 66ABBF38123D3113BB55EBAFCF37AB92 122880 ----a-w- C:\Windows\SysWOW64\odbccp32.dll 2014-08-05 21:00:25 534BF06B2DEE965A1389A9312545AE03 81920 ----a-w- C:\Windows\SysWOW64\odbccr32.dll 2014-08-05 21:00:25 3FDB77D0BBEEB36AE35077ABC0BF80EC 319488 ----a-w- C:\Windows\SysWOW64\odbcjt32.dll 2014-08-05 21:00:22 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll 2014-08-05 21:00:19 75F5E1FE8D55CF8E577E0EC5F2290D3F 530432 ----a-w- C:\Windows\SysWOW64\comctl32.dll 2014-08-05 21:00:15 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2014-08-05 21:00:14 DC6612A9EE015A36BA2A27BC9CC12537 1137664 ----a-w- C:\Windows\SysWOW64\mfc42.dll 2014-08-05 21:00:14 24CAEDCD73B5B0E22226283B7B2468C7 1164288 ----a-w- C:\Windows\SysWOW64\mfc42u.dll 2014-08-05 21:00:09 EA093130471090037BB70A4AF86FAD1B 420008 ----a-w- C:\Windows\SysWOW64\locale.nls 2014-08-05 20:49:46 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2014-08-05 20:49:45 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll 2014-08-05 20:49:45 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll 2014-08-05 20:49:19 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll 2014-08-05 20:49:14 7E9917D5309A90E7576653BFE39F80D8 478720 ----a-w- C:\Windows\SysWOW64\timedate.cpl 2014-08-05 20:49:07 4F8CCD3E7D9F17A7C60FA0AE2466CACF 381440 ----a-w- C:\Windows\SysWOW64\wer.dll 2014-08-05 20:48:52 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll 2014-08-05 20:48:16 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2014-08-05 20:48:16 8B8D1CEF498678CAB9DF17145D34BC64 1237504 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-08-05 20:48:16 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll 2014-08-05 20:48:16 0789F82BAE171323F74B8F175D406AB8 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll 2014-08-05 20:47:38 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\SysWOW64\RMActivate_isv.exe 2014-08-05 20:47:38 BBCE3E9E74C7CEA47FA4115B360AC2C6 423936 ----a-w- C:\Windows\SysWOW64\secproc_isv.dll 2014-08-05 20:47:38 9158DBE2F8483434FC72F320690C9DB8 87040 ----a-w- C:\Windows\SysWOW64\secproc_ssp_isv.dll 2014-08-05 20:47:38 7FA485555BF802FE3DB5598004DBDFAC 390144 ----a-w- C:\Windows\SysWOW64\msdrm.dll 2014-08-05 20:47:38 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\SysWOW64\RMActivate.exe 2014-08-05 20:47:38 58712A48D31B40EBCB35B47205F87771 87040 ----a-w- C:\Windows\SysWOW64\secproc_ssp.dll 2014-08-05 20:47:38 12A9F24DC9F465DA79AC2272D829A81E 428032 ----a-w- C:\Windows\SysWOW64\secproc.dll 2014-08-05 20:47:38 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe 2014-08-05 20:47:38 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\SysWOW64\RMActivate_ssp.exe 2014-08-05 20:47:20 7D27E63B54DB093BB0D9E95F81094D75 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll 2014-08-05 20:47:20 5C6B44F9CAAC475B7B9EBBC29CB7F065 295424 ----a-w- C:\Windows\SysWOW64\atmfd.dll 2014-08-05 20:47:20 2342EC9254F4C60CA98441BD65C89E12 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll 2014-08-05 20:47:19 CC23295DA8F7B5C53F93804D2F5D30EB 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll 2014-08-05 20:47:19 8CC4638FA7B5B921B9080CF962582C0B 70656 ----a-w- C:\Windows\SysWOW64\fontsub.dll 2014-08-05 20:47:15 EE7CB55F77465CDAC4C80F587FF7C278 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll 2014-08-05 20:47:15 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\SysWOW64\credui.dll 2014-08-05 20:47:15 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2014-08-05 20:47:01 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-08-05 20:38:15 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\SysWOW64\d3d11.dll 2014-08-05 20:38:09 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\SysWOW64\WMVDECOD.DLL 2014-08-05 20:37:55 75E8EBD7040CE238684333F97014762A 205824 ----a-w- C:\Windows\SysWOW64\WebClnt.dll 2014-08-05 20:37:54 EAF4712B706936C0B10D3B5319B37E81 81920 ----a-w- C:\Windows\SysWOW64\davclnt.dll 2014-08-05 20:37:48 B40420876B9288E0A1C8CCA8A84E5DC9 270336 ----a-w- C:\Windows\SysWOW64\dnsapi.dll 2014-08-05 20:37:48 ACBC1FB1950AC0C41944A6C8917032EF 28672 ----a-w- C:\Windows\SysWOW64\dnscacheugc.exe 2014-08-05 20:37:31 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2014-08-05 20:37:31 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2014-08-05 20:37:30 995B39A08421C7725D1DF8DACEBBFC89 538112 ----a-w- C:\Windows\SysWOW64\objsel.dll 2014-08-05 20:37:29 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 ----a-w- C:\Windows\SysWOW64\adprovider.dll 2014-08-05 20:37:29 834A859BB331B0B2CCAE25BB1986F80D 47616 ----a-w- C:\Windows\SysWOW64\dpapiprovider.dll 2014-08-05 20:37:29 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 ----a-w- C:\Windows\SysWOW64\dimsroam.dll 2014-08-05 20:37:29 461B713DE7F353C6447B744F1A049930 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2014-08-05 20:37:29 38A30B8E4216BE24D30F766EF3BAC2C7 48128 ----a-w- C:\Windows\SysWOW64\capiprovider.dll 2014-08-05 20:37:29 335FA669FC952BC4888CEDBDB42607E2 51200 ----a-w- C:\Windows\SysWOW64\cngprovider.dll 2014-08-05 20:37:28 5E11C55CC4D9330E55CCB22B1F20BB33 35328 ----a-w- C:\Windows\SysWOW64\wincredprovider.dll 2014-08-05 20:37:25 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2014-08-05 20:36:55 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\SysWOW64\dpnet.dll 2014-08-05 20:36:49 492FF9C530EC0352B3C904CE9898269D 509440 ----a-w- C:\Windows\SysWOW64\qedit.dll 2014-08-05 20:36:20 5078492B9CAC9CB721698DB51F039035 175104 ----a-w- C:\Windows\SysWOW64\netcorehc.dll 2014-08-05 20:36:20 140D9F911182357626165EA0BEB98C4F 156672 ----a-w- C:\Windows\SysWOW64\ncsi.dll 2014-08-05 20:36:19 0BA65122FFA7E37564EE86422DBF7AE8 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll 2014-08-05 20:36:17 23FC8068953C9BE2D63AE4EF1129112A 18944 ----a-w- C:\Windows\SysWOW64\netevent.dll 2014-08-05 20:35:10 4DC999CED9429939D75682EBD7D48901 663552 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll 2014-08-05 20:34:45 E94C583CDE2348950155F2AF2876F34D 231424 ----a-w- C:\Windows\SysWOW64\mswsock.dll 2014-08-05 20:34:18 68DCA1777D7224A79A9DC3D47BED6D32 75776 ----a-w- C:\Windows\SysWOW64\psisrndr.ax 2014-08-05 20:34:18 00ADF21DE55AA97297FAC65E4F3A0256 465408 ----a-w- C:\Windows\SysWOW64\psisdecd.dll 2014-08-05 20:33:27 A2B0924D50F4435FD389499047CE553A 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2014-08-05 20:33:27 401D25136E26B237D77DA1BF1198B3BD 619520 ----a-w- C:\Windows\SysWOW64\tdh.dll 2014-08-05 20:33:26 D67472125471784DE7147946EDA25FEB 640512 ----a-w- C:\Windows\SysWOW64\advapi32.dll 2014-08-05 20:33:12 86F34E7288DA428E38E2D8C7E806A871 826880 ----a-w- C:\Windows\SysWOW64\rdpcore.dll 2014-08-05 20:33:09 A6C29DB53ECA94FA8591C5388D604B82 2342400 ----a-w- C:\Windows\SysWOW64\msi.dll 2014-08-05 20:32:30 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\SysWOW64\oflc-nz.rs 2014-08-05 20:32:30 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\SysWOW64\fpb.rs 2014-08-05 20:32:30 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\SysWOW64\grb.rs 2014-08-05 20:32:30 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\SysWOW64\usk.rs 2014-08-05 20:32:30 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\SysWOW64\pegibbfc.rs 2014-08-05 20:32:30 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\SysWOW64\csrr.rs 2014-08-05 20:32:30 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\SysWOW64\pegi.rs 2014-08-05 20:32:30 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\SysWOW64\cob-au.rs 2014-08-05 20:32:30 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\SysWOW64\djctq.rs 2014-08-05 20:32:29 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\SysWOW64\gameux.dll 2014-08-05 20:32:29 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\SysWOW64\pegi-pt.rs 2014-08-05 20:32:29 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\SysWOW64\Wpc.dll 2014-08-05 20:32:16 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\SysWOW64\esrb.rs 2014-08-05 20:32:16 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\SysWOW64\oflc.rs 2014-08-05 20:32:15 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\SysWOW64\cero.rs 2014-08-05 20:32:15 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\SysWOW64\pegi-fi.rs 2014-08-05 20:31:28 F95E1E9D97D25C11F29CA34C843A6F4D 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-08-05 20:31:28 1A0BE0092646F564FAF204E678AF8E03 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2014-08-05 20:31:27 8BA721F76C97A219599E88722AA48875 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2014-08-05 20:31:26 C61DDFE40204F3BE3DF111981D91560E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2014-08-05 20:31:25 C71CC796F0E2E9BD542C87532706FCFE 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2014-08-05 20:31:25 6CB2616152ADCDF39F05B08E4858F476 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2014-08-05 20:31:22 E3ECF5FFE3DEDF61DC6877B6A99ACBBF 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2014-08-05 20:30:29 D23E615E0969AECC1134E372B0B295D1 78336 ----a-w- C:\Windows\SysWOW64\synceng.dll 2014-08-05 20:27:16 5D1BFF0FCE80F9E2E539F436710D4A79 31232 ----a-w- C:\Windows\SysWOW64\prevhost.exe 2014-08-05 20:18:55 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll 2014-08-05 20:17:59 56E3313690866F99CD17AA1342F64AE1 311808 ----a-w- C:\Windows\SysWOW64\gdi32.dll 2014-08-05 20:17:11 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\SysWOW64\win32spl.dll 2014-08-05 20:17:00 F436E847FA799ECD75AD8C313673F450 145920 ----a-w- C:\Windows\SysWOW64\cfgmgr32.dll 2014-08-05 20:17:00 B28BD86791468F427321458985F6A0E3 252928 ----a-w- C:\Windows\SysWOW64\drvinst.exe 2014-08-05 20:17:00 2EEFF4502F5E13B1BED4A04CCAD64C08 64512 ----a-w- C:\Windows\SysWOW64\devobj.dll 2014-08-05 20:17:00 162D247E995EAEBF3EF4289069E1111C 44544 ----a-w- C:\Windows\SysWOW64\devrtl.dll 2014-08-05 20:16:47 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\SysWOW64\cryptdlg.dll 2014-08-05 20:16:28 2A01B40C8334A8124001CFAC256FCA83 102608 ----a-w- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2014-08-05 20:16:25 72910F1DEB838E6E08A9017BFB7D4F0B 41984 ----a-w- C:\Windows\SysWOW64\browcli.dll 2014-08-05 20:16:25 2FCA0D2C59A855C54BAFA22AA329DF0F 57344 ----a-w- C:\Windows\SysWOW64\netapi32.dll 2014-08-05 20:15:44 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe 2014-08-05 20:15:35 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\SysWOW64\certenc.dll 2014-08-05 20:15:20 9DC80A8AAAAAC397BDAB3C67165A824E 690688 ----a-w- C:\Windows\SysWOW64\msvcrt.dll 2014-08-05 20:15:12 76161B9D78A275F8F28DD67436013110 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2014-08-05 20:15:12 2E1D6624EE2C3F454CADF09DC59E78B0 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2014-08-05 20:15:12 1F76F7CB3C690ACB985C2FD419383B49 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2014-08-05 20:15:11 9F3D88540DB73F5213D5044CB50006DF 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2014-08-05 20:15:11 1E886E327F37F34CC7465F1605D1F3CD 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2014-08-05 20:15:10 A30AB03E7C837A17AC70E67E63B8E2F6 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2014-08-05 20:15:06 ED27D1D75BF5E683AD3EDD9E3123520A 741376 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2014-08-05 20:14:50 A81331D7EB6C5D1F7B1E4E4FC15F3EC0 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll 2014-08-05 20:14:43 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe 2014-08-05 20:14:43 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx 2014-08-05 20:14:41 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll 2014-08-05 20:14:41 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe 2014-08-05 20:14:22 A0E053D8D97ED0F913D56E6AF21DD26F 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2014-08-05 20:14:21 230AAF45031E87638CA4053C0399C1E6 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2014-08-05 20:13:20 813845D5C5D8325CA5E8B1F547016378 534528 ----a-w- C:\Windows\SysWOW64\EncDec.dll 2014-08-05 20:13:01 8E01332CC4B68BC6B5B7EFFE374442AA 233472 ----a-w- C:\Windows\SysWOW64\oleacc.dll 2014-08-05 20:13:01 6C765E82B57F2E66CE9C54AC238471D9 571904 ----a-w- C:\Windows\SysWOW64\oleaut32.dll 2014-08-05 20:10:38 3B7C1A53047FF6ACEFD9BA6E281DEBB7 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll 2014-08-05 19:49:17 907281ED4AD35D41B29FFDC211EBAD80 5120 ----a-w- C:\Windows\SysWOW64\wmi.dll 2014-08-05 19:13:09 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL 2014-08-05 19:13:09 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\SysWOW64\nshwfp.dll 2014-08-05 18:36:08 7B90C5F0A510852036822EE860CABF26 67072 ----a-w- C:\Windows\SysWOW64\packager.dll 2014-08-05 18:28:23 D099E9C49B1A3119553FFF6AF7A33DAE 173352 ----a-w- C:\Windows\SysWOW64\SynCOM.dll 2014-08-05 18:28:23 7CDB7F2371C57129D3BDDAB3E69289D3 66856 ----a-w- C:\Windows\SysWOW64\SynTPEnhPS.dll 2014-08-05 18:28:23 4E91FAC682FC6CA75BDBF6D416782255 107816 ----a-w- C:\Windows\SysWOW64\SynTPCOM.dll 2014-08-05 18:28:23 4E556F37B562DC9CFA97EDCC5A028354 218408 ----a-w- C:\Windows\SysWOW64\SynCtrl.dll ====== C:\Windows\SysWOW64\drivers ===== 2014-08-09 12:38:53 306521935042FC0A6988D528643619B3 5632 ----a-w- C:\Windows\SysWOW64\drivers\StarOpen.sys ====== C:\Windows\Sysnative ===== 2014-08-06 16:50:00 9909F37A0AC6D4C7B0307D9CCCB89A9E 22752 ----a-w- C:\Windows\Sysnative\PCloudBroom64.exe 2014-08-06 14:56:16 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2014-08-06 14:56:09 E8710B5DDA963E6BA198DF5FB209E72A 2565120 ----a-w- C:\Windows\Sysnative\d3d10warp.dll 2014-08-06 14:56:09 C676E5EA388AF7C4C031F56F9B42E362 3928064 ----a-w- C:\Windows\Sysnative\d2d1.dll 2014-08-06 14:56:06 6804A0B4AAF1F65277FB8A58DE40EABC 96768 ----a-w- C:\Windows\Sysnative\fsutil.exe 2014-08-06 14:56:06 522B0466ED967A0762E9AF5B37D8F40A 2565632 ----a-w- C:\Windows\Sysnative\esent.dll 2014-08-06 14:55:56 52012C83F7E9AF65D13F04415F0508F5 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-08-06 14:55:55 AFCA5C1ECEAF948FC815178BC077680E 1424384 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2014-08-06 14:55:54 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\Sysnative\spoolsv.exe 2014-08-06 13:44:39 540F5216118AB5AA221DC37242A36CEF 234496 ----a-w- C:\Windows\Sysnative\CNMLM78.DLL 2014-08-06 09:13:03 F160B26B26BA4AFE8CECC12ED5AC231E 198784 ------w- C:\Windows\Sysnative\CxAudMsg64.exe 2014-08-06 07:40:35 F1200BFF711B75C703028D6387008E87 260696 ----a-w- C:\Windows\Sysnative\unrar64.dll 2014-08-06 06:36:37 E9739AE8B2FA28DCD6F2EF5525DA8827 77656 ----a-w- C:\Windows\Sysnative\XAPOFX1_5.dll 2014-08-06 06:36:37 4F7513FF4DE6303088DB28DCBCEF372C 518488 ----a-w- C:\Windows\Sysnative\XAudio2_7.dll 2014-08-06 06:36:36 ADA0C39D4EACDC81FD84163A95D62079 2526056 ----a-w- C:\Windows\Sysnative\D3DCompiler_43.dll 2014-08-06 06:36:35 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll 2014-08-06 06:34:32 B739C423276AE62D7AC91773226EC13B 523088 ----a-w- C:\Windows\Sysnative\d3dx10_42.dll 2014-08-06 06:32:18 A4DDFE5DC4E73D1FED9B1B3A3D885612 4398360 ----a-w- C:\Windows\Sysnative\d3dx9_32.dll 2014-08-05 23:48:40 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL 2014-08-05 23:48:37 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll 2014-08-05 23:15:59 2D01F001F8E45924E57B7BB77CF96BC2 28368 ----a-w- C:\Windows\Sysnative\IEUDINIT.EXE 2014-08-05 22:21:49 8F7FBD0177F79727CF945ABDA657A0AC 235008 ----a-w- C:\Windows\Sysnative\elshyph.dll 2014-08-05 22:21:47 A21C6231459F4CAC212676A9367A1A68 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-08-05 22:21:47 8B2ADE09864BF3F7AA6D395DAFEC41B5 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-08-05 22:21:47 73C7D1FCF6F58F3BF077FB42B0214BC0 1393664 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-08-05 22:21:47 6F1AF8E1206E92256459E3012C20472A 942592 ----a-w- C:\Windows\Sysnative\jsIntl.dll 2014-08-05 22:21:47 2EE102DF0EDD8A1EDD3D1E9B99A91BEC 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-08-05 22:21:47 2EBD0C5B090125AECF017C57344C45AB 247808 ----a-w- C:\Windows\Sysnative\msls31.dll 2014-08-05 22:21:46 F876957CA193B20A21D52F91418657D7 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-08-05 22:21:46 E4A6577D74B2439974C8018AB5F1BFEA 13312 ----a-w- C:\Windows\Sysnative\msfeedssync.exe 2014-08-05 22:21:46 D31AE751B6DACAFD0D7CC99EAE9606C2 131072 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll 2014-08-05 22:21:46 CE8831D2DCB5803A4CBC8EDCCBBC2A05 77312 ----a-w- C:\Windows\Sysnative\tdc.ocx 2014-08-05 22:21:46 854C5F171F5CEE272232AC0286F3B3B9 598016 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-08-05 22:21:46 5E646AD50848A409291418B5759595B9 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-08-05 22:21:46 5141B67F14E2B6CBB6ADF851ABE364A5 90112 ----a-w- C:\Windows\Sysnative\SetIEInstalledDate.exe 2014-08-05 22:21:46 50FF2DD806CC6CF3B3F98F9A1A711603 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-08-05 22:21:46 4EC7738394D2BC7BCB5F7A3657F57252 5721088 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-08-05 22:21:46 366FA6D38406DC8BED62825C196144D1 13527040 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-08-05 22:21:46 2405D24AA28CCC4CC7E0CC0AE008746F 48640 ----a-w- C:\Windows\Sysnative\mshtmler.dll 2014-08-05 22:21:46 0FBEBD36FEFFEE5AF25FDAEE5E35EE99 105984 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2014-08-05 22:21:46 038ABC9BCC86DFF9E181D44E43E2CEBA 52224 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll 2014-08-05 22:21:45 FC50DF22550C565DD096ACFAF18A37ED 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-08-05 22:21:45 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\Sysnative\ieuinit.inf 2014-08-05 22:21:45 F00AE7B953ABEF1B53FBBA187DFC8238 243200 ----a-w- C:\Windows\Sysnative\webcheck.dll 2014-08-05 22:21:45 D8E6706AECD7AA50764E126CE3F36555 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-08-05 22:21:45 CA67F68CEC788C0C69AD47C5125DDD8E 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-08-05 22:21:45 C92173481A58935BE15172079CF122B8 235520 ----a-w- C:\Windows\Sysnative\url.dll 2014-08-05 22:21:45 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\Sysnative\ieapfltr.dat 2014-08-05 22:21:45 C0F9F52C36E584C0339406ABF6DA1FBA 266424 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-08-05 22:21:45 BDD4A74421B023C81DA63168BD10C01B 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-08-05 22:21:45 9675B272086CF5D22B83B541FAA8D4EA 30208 ----a-w- C:\Windows\Sysnative\licmgr10.dll 2014-08-05 22:21:45 945FA19B388FCF0FEA6124B5FD71C72F 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2014-08-05 22:21:45 7469D4E046BD7D155CAC2697BD28B58B 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-08-05 22:21:45 5BBDBE5EBB49EA7C76A2EE7490A45D68 101376 ----a-w- C:\Windows\Sysnative\inseng.dll 2014-08-05 22:21:45 46FD16F9B1924A2EA8CD5C6716CC654F 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe 2014-08-05 22:21:45 415DF2B045167D6D85223CFFF00FCFC7 292864 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-08-05 22:21:45 3A4FD19F13F8809BA08E9F76C0E38832 413696 ----a-w- C:\Windows\Sysnative\html.iec 2014-08-05 22:21:45 2E40D5E11BCC597352EE0314AF629A0F 452608 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-08-05 22:21:45 1FD6C2F6AC489C271565730F6E9E1A05 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-08-05 22:21:45 1EA6500C25A80E8BDB65099C509AF993 143872 ----a-w- C:\Windows\Sysnative\wextract.exe 2014-08-05 22:21:45 1685AA234852657C4A6D253CCBBE84E0 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-08-05 22:21:45 0A9D5716CB1F3AFA73703F39647BB8C2 81408 ----a-w- C:\Windows\Sysnative\icardie.dll 2014-08-05 22:21:44 FEC19C351EF1B2C998A85D1BFD765675 23464448 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-08-05 22:21:44 FD61D51199F3FC9EB0023FBF405EAAD0 147968 ----a-w- C:\Windows\Sysnative\occache.dll 2014-08-05 22:21:44 E70D4270C43CE6C46841B684315B9EFF 62464 ----a-w- C:\Windows\Sysnative\pngfilt.dll 2014-08-05 22:21:44 DA5BAC4C5BDB22BBC6771534EA95AD33 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-08-05 22:21:44 CD76B3D60D28634A67B0AD7CB2E45929 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-08-05 22:21:44 C2F62DF01E3552DB0571FEF4D514675B 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-08-05 22:21:44 BB6DEAFAC5F0AAEC37FEAF3F3AA48347 774144 ----a-w- C:\Windows\Sysnative\jscript.dll 2014-08-05 22:21:44 ADA5C3D49A12CED9F07913DC00E547A8 48128 ----a-w- C:\Windows\Sysnative\imgutil.dll 2014-08-05 22:21:44 95828D670CFD3B16EE188168E083C3C5 13824 ----a-w- C:\Windows\Sysnative\mshta.exe 2014-08-05 22:21:44 89A53CDE0DA5680AF48A181D82C752CA 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-08-05 22:21:44 7176CB0FFAAC3E54ABB2014E821120F9 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-08-05 22:21:44 391D68668CFC061F26BE593A61F745E0 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-08-05 22:21:44 1FCBE949A67939ADEAE7279E423AA684 135680 ----a-w- C:\Windows\Sysnative\iepeers.dll 2014-08-05 22:21:44 00401347C3BC466E5F2516387EBBCA7D 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-08-05 22:12:58 72723D3E4781BADC62C3180C137E7B23 4096 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-user32-l1-1-0.dll 2014-08-05 22:12:57 FB4045578F5180BDB1963AB352B78548 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2014-08-05 22:12:57 FA428BDBCFAB9DC3D58F0BD2CCD50EA2 1682432 ----a-w- C:\Windows\Sysnative\XpsPrint.dll 2014-08-05 22:12:57 F5CEF064C7E6D95DA86B9D064A56A969 3584 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l2-1-0.dll 2014-08-05 22:12:57 F49E92B50CED5C9F1725D3C0329FD933 10752 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l1-1-0.dll 2014-08-05 22:12:57 F1C19F0AA151B90A7416FA1D50DDB582 245248 ----a-w- C:\Windows\Sysnative\WindowsCodecsExt.dll 2014-08-05 22:12:57 E8EEA503870CB6A6DC4E09A2433DF33E 2776576 ----a-w- C:\Windows\Sysnative\msmpeg2vdec.dll 2014-08-05 22:12:57 C4C183E6551084039EC862DA1C945E3D 1175552 ----a-w- C:\Windows\Sysnative\FntCache.dll 2014-08-05 22:12:57 B2CA1AC17E78D986B22FD6C2261CD84F 1238528 ----a-w- C:\Windows\Sysnative\d3d10.dll 2014-08-05 22:12:57 AFC3DB5C6EB8CA8017DDB81D6C0AD02A 9728 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2014-08-05 22:12:57 AFB73882AE41E1629A63E6713FE30FB9 296960 ----a-w- C:\Windows\Sysnative\d3d10core.dll 2014-08-05 22:12:57 9AE80F6A66B30E3ED8CDF858CF28B11B 194560 ----a-w- C:\Windows\Sysnative\d3d10_1.dll 2014-08-05 22:12:57 9108540E866F75C7AF2B91DD921A8091 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shell32-l1-1-0.dll 2014-08-05 22:12:57 9094039A00485F71C4DE64BF51F64C46 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-version-l1-1-0.dll 2014-08-05 22:12:57 8DFB5752FCE145A6B295093C0A8BE131 363008 ----a-w- C:\Windows\Sysnative\dxgi.dll 2014-08-05 22:12:57 6F623BD09CBB4C3F97374F12976E5EA5 522752 ----a-w- C:\Windows\Sysnative\XpsGdiConverter.dll 2014-08-05 22:12:57 64A4AB126E24FD3F58EBE64852773DB5 2560 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-normaliz-l1-1-0.dll 2014-08-05 22:12:57 63F72417CA38D8FC8F53709649B589E3 333312 ----a-w- C:\Windows\Sysnative\d3d10_1core.dll 2014-08-05 22:12:57 63BB89DED1E9104E68D33E54DE4D340D 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll 2014-08-05 22:12:57 3834316FE8A653227282196525E07DFE 648192 ----a-w- C:\Windows\Sysnative\d3d10level9.dll 2014-08-05 22:12:57 0E6FBF19D9DFBB77316C23DF91F8A101 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-ole32-l1-1-0.dll 2014-08-05 22:12:57 04CB7C8FDC6D9640DD82A527208F72C4 221184 ----a-w- C:\Windows\Sysnative\UIAnimation.dll 2014-08-05 21:41:19 A01E5B6BA2766A8AD2583EE5490CEE09 96441528 ----a-w- C:\Windows\Sysnative\MRT.exe 2014-08-05 21:03:50 037A719DAD50603202C978CD802623E4 509952 ----a-w- C:\Windows\Sysnative\ntshrui.dll 2014-08-05 21:03:41 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll 2014-08-05 21:03:39 427015D56DF17241F634611557146C57 14175744 ----a-w- C:\Windows\Sysnative\shell32.dll 2014-08-05 21:03:35 959041D7014C97133D859B45BCA0FC58 224256 ----a-w- C:\Windows\Sysnative\wintrust.dll 2014-08-05 21:03:24 E0B340996A41C9A75DFA3B99BBA9C500 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe 2014-08-05 21:03:24 D9E21CBF9E6A87847AFFD39EA3FA28EE 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe 2014-08-05 21:03:24 7568CC720ACE4D03B84AF97817E745EF 2223616 ----a-w- C:\Windows\Sysnative\mssrch.dll 2014-08-05 21:03:24 589DF683A6C81424A6CECE52ABF98A50 2315776 ----a-w- C:\Windows\Sysnative\tquery.dll 2014-08-05 21:03:23 E503E15C88B4BBDA3F6345E34FED3E92 778752 ----a-w- C:\Windows\Sysnative\mssvp.dll 2014-08-05 21:03:23 4C219239ED8CC35CA41AD26B33A15624 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll 2014-08-05 21:03:23 49A3AD5CE578CD77F445F3D244AEAB2D 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe 2014-08-05 21:03:23 48041BAEB60CE5F34F13CC2A1361E49C 491520 ----a-w- C:\Windows\Sysnative\mssph.dll 2014-08-05 21:03:23 093747DAE1C1A7F6DEA8D16E26D4F648 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll 2014-08-05 21:03:00 3CC16A849E6092E43909F48EF0E60306 226816 ----a-w- C:\Windows\Sysnative\dhcpcore6.dll 2014-08-05 21:03:00 3C06D5A929B798D0B13F6481242A0FD2 55296 ----a-w- C:\Windows\Sysnative\dhcpcsvc6.dll 2014-08-05 21:01:45 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe 2014-08-05 21:01:44 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll 2014-08-05 21:01:24 F4C640E85DB6450CB221E5224AA2AB51 3717632 ----a-w- C:\Windows\Sysnative\mstscax.dll 2014-08-05 21:01:22 9F5C2F0CFEF95B4653E21443CDC0D587 158720 ----a-w- C:\Windows\Sysnative\aaclient.dll 2014-08-05 21:01:21 CE4157E4B1E5041D252EF38EB61E9F0C 44032 ----a-w- C:\Windows\Sysnative\tsgqec.dll 2014-08-05 21:01:09 F28D6538F76DC6ECFABF6176DBDD2664 142336 ----a-w- C:\Windows\Sysnative\poqexec.exe 2014-08-05 21:01:07 603EBD34E216C5654A2D774EAC98D278 395776 ----a-w- C:\Windows\Sysnative\webio.dll 2014-08-05 21:00:37 E44AFEA3C13A96FC79ABA67E5F0DC3AD 366592 ----a-w- C:\Windows\Sysnative\qdvd.dll 2014-08-05 21:00:37 44A8B9185030EA57F7999383643ADFFB 1572864 ----a-w- C:\Windows\Sysnative\quartz.dll 2014-08-05 21:00:34 A5AE40808B72A25379A5499AD9977743 1118720 ----a-w- C:\Windows\Sysnative\sbe.dll 2014-08-05 21:00:34 5A83C43DE44546370CAC4CD05B304F09 961024 ----a-w- C:\Windows\Sysnative\CPFilters.dll 2014-08-05 21:00:34 1E452D8F44D82BFC256E02D0D6FD9608 259072 ----a-w- C:\Windows\Sysnative\mpg2splt.ax 2014-08-05 21:00:28 6F8B48F3D343E4B186AB6A9E302B7E16 199680 ----a-w- C:\Windows\Sysnative\xmllite.dll 2014-08-05 21:00:26 F4F36FEABB4F86ACA6FFD8819D7642C5 106496 ----a-w- C:\Windows\Sysnative\odbccr32.dll 2014-08-05 21:00:26 97DC40842B54AD4E961DECC9345F16FC 106496 ----a-w- C:\Windows\Sysnative\odbccu32.dll 2014-08-05 21:00:25 D10E13E494C5B4437549BE6A4987125E 163840 ----a-w- C:\Windows\Sysnative\odbccp32.dll 2014-08-05 21:00:25 935AE3DFF21465D600185305479A03F7 212992 ----a-w- C:\Windows\Sysnative\odbctrac.dll 2014-08-05 21:00:22 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll 2014-08-05 21:00:19 9028D1621C43DF8DFBD1C76860412A11 633856 ----a-w- C:\Windows\Sysnative\comctl32.dll 2014-08-05 21:00:18 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll 2014-08-05 21:00:18 04F82965C09CBDF646B487E145060301 228864 ----a-w- C:\Windows\Sysnative\wwansvc.dll 2014-08-05 21:00:15 088CF6AFCD5CDD44E40C0ACDE3C1A5E0 801280 ----a-w- C:\Windows\Sysnative\usp10.dll 2014-08-05 21:00:14 7E1CF52C347D8755E5CA5ED0E99B401E 1395712 ----a-w- C:\Windows\Sysnative\mfc42.dll 2014-08-05 21:00:14 19F9B524A525D202194247E96656CB88 1359872 ----a-w- C:\Windows\Sysnative\mfc42u.dll 2014-08-05 21:00:09 EA093130471090037BB70A4AF86FAD1B 420008 ----a-w- C:\Windows\Sysnative\locale.nls 2014-08-05 20:49:46 780F6ECC4F55D76C9730E6B6C9B31913 1474048 ----a-w- C:\Windows\Sysnative\crypt32.dll 2014-08-05 20:49:45 A6B726DCA228F7878E38368A1BDC68BE 139776 ----a-w- C:\Windows\Sysnative\cryptnet.dll 2014-08-05 20:49:45 6B400F211BEE880A37A1ED0368776BF4 184320 ----a-w- C:\Windows\Sysnative\cryptsvc.dll 2014-08-05 20:49:19 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll 2014-08-05 20:49:14 FB10715E4099AF9FA389C71873245226 515584 ----a-w- C:\Windows\Sysnative\timedate.cpl 2014-08-05 20:49:07 1075AB2C077B415760C0E948856B5126 484864 ----a-w- C:\Windows\Sysnative\wer.dll 2014-08-05 20:48:52 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll 2014-08-05 20:48:16 ECA6AC33BD9E441F7B47D173D715D268 1882112 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-08-05 20:48:16 3408DD8081DC22858AE2E6ABD2594C02 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll 2014-08-05 20:48:16 0E3A7EC2B9590EA7767BBB1823630DEA 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll 2014-08-05 20:48:16 0465A8CFDDB4FFDB569802A70B9443D5 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll 2014-08-05 20:47:45 980394E1FF94E460C4D71C1B098A0B4F 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-08-05 20:47:45 03282D1ADC4F64D27D697CBB63F972C2 519168 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-08-05 20:47:39 1B3741488AA7E237961A29D1E7A44C0A 626176 ----a-w- C:\Windows\Sysnative\RMActivate.exe 2014-08-05 20:47:39 17CF3B3F68272BD40C878D4DBAB0EBC9 658432 ----a-w- C:\Windows\Sysnative\RMActivate_isv.exe 2014-08-05 20:47:38 DC6DD779F35BB42E2E76FDFEC565C251 123392 ----a-w- C:\Windows\Sysnative\secproc_ssp_isv.dll 2014-08-05 20:47:38 C6AC2C91541D24F9E236A670C0CA793D 528384 ----a-w- C:\Windows\Sysnative\msdrm.dll 2014-08-05 20:47:38 B41B1FEDEBBD955B4E25676B42087885 123392 ----a-w- C:\Windows\Sysnative\secproc_ssp.dll 2014-08-05 20:47:38 5693212AB2EBCACBBE05EC3A642113E2 485888 ----a-w- C:\Windows\Sysnative\secproc_isv.dll 2014-08-05 20:47:38 399FC1B75790EE606A6FD9F2FB4C891C 488448 ----a-w- C:\Windows\Sysnative\secproc.dll 2014-08-05 20:47:38 297926B15AE5390409F1007EB28A8EFB 552960 ----a-w- C:\Windows\Sysnative\RMActivate_ssp_isv.exe 2014-08-05 20:47:38 03F8F411F118CFDA508E77C747BB05EA 553984 ----a-w- C:\Windows\Sysnative\RMActivate_ssp.exe 2014-08-05 20:47:20 E1BB958681BE311E7CFF06CFEC5F1F2B 368128 ----a-w- C:\Windows\Sysnative\atmfd.dll 2014-08-05 20:47:20 A5ED9421B8D09ED4F57CDA386307713E 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll 2014-08-05 20:47:20 796B47A4B82EF1C39F13435B88834C48 41472 ----a-w- C:\Windows\Sysnative\lpk.dll 2014-08-05 20:47:20 142671F462619CB64BA74F5B70136CB4 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll 2014-08-05 20:47:19 D6BAE9B4B210D71CDDADC224CEFCDB5F 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll 2014-08-05 20:47:16 34152997FB906895290E0199AC94B85F 1930752 ----a-w- C:\Windows\Sysnative\authui.dll 2014-08-05 20:47:15 8563BA40DF4F1E93A61B70E2C8B60CF8 190464 ----a-w- C:\Windows\Sysnative\SmartcardCredentialProvider.dll 2014-08-05 20:47:15 4403D5ECE7D8323CAF1207D1AA38FA01 197120 ----a-w- C:\Windows\Sysnative\credui.dll 2014-08-05 20:47:02 F1726E14C8F7B40CD828345890AAF764 3157504 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-08-05 20:47:00 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\Sysnative\osk.exe 2014-08-05 20:38:15 4C92EB7535CAA1681A77D928FBF9771F 1887232 ----a-w- C:\Windows\Sysnative\d3d11.dll 2014-08-05 20:38:09 D29200AB0B37B7293C6942EAF755295E 1888768 ----a-w- C:\Windows\Sysnative\WMVDECOD.DLL 2014-08-05 20:38:06 53E83F1F6CF9D62F32801CF66D8352A8 209920 ----a-w- C:\Windows\Sysnative\profsvc.dll 2014-08-05 20:38:02 9E5D9177660A76FC8DECDC37A91A5B0D 9216 ----a-w- C:\Windows\Sysnative\rdrmemptylst.exe 2014-08-05 20:38:02 6D5DCC1579B3961D791ABDE286A1CB5E 77312 ----a-w- C:\Windows\Sysnative\rdpwsx.dll 2014-08-05 20:38:02 5B236296E233CAA6BF86BE0C6501A224 149504 ----a-w- C:\Windows\Sysnative\rdpcorekmts.dll 2014-08-05 20:37:55 0EB0E5D22B1760F2DBCE632F2DD7A54D 259584 ----a-w- C:\Windows\Sysnative\WebClnt.dll 2014-08-05 20:37:54 B32AB94A432289AC2DF77A3DCAD32EED 102400 ----a-w- C:\Windows\Sysnative\davclnt.dll 2014-08-05 20:37:48 C7AC9A4D827774B19221D5FE068BF190 30208 ----a-w- C:\Windows\Sysnative\dnscacheugc.exe 2014-08-05 20:37:48 492D07D79E7024CA310867B526D9636D 357888 ----a-w- C:\Windows\Sysnative\dnsapi.dll 2014-08-05 20:37:48 16835866AAA693C7D7FCEBA8FFF706E4 183296 ----a-w- C:\Windows\Sysnative\dnsrslvr.dll 2014-08-05 20:37:32 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2014-08-05 20:37:31 851BB346CD59D9B3BC8854384C7DD5C3 424960 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2014-08-05 20:37:30 89EF1CE0CE43AB8F55247D746739A321 722944 ----a-w- C:\Windows\Sysnative\objsel.dll 2014-08-05 20:37:29 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2014-08-05 20:37:29 CF13522172342AD8196B329C15D68E23 44544 ----a-w- C:\Windows\Sysnative\dimsroam.dll 2014-08-05 20:37:29 BDA8B14AFE99A0C52BFEA64C5AC62171 52736 ----a-w- C:\Windows\Sysnative\dpapiprovider.dll 2014-08-05 20:37:29 9D942180B5B6CE1C882B9CC54EA1F275 57344 ----a-w- C:\Windows\Sysnative\cngprovider.dll 2014-08-05 20:37:29 692E9886B2A475684F7E3294BF66E97D 56832 ----a-w- C:\Windows\Sysnative\adprovider.dll 2014-08-05 20:37:29 4959DE74643CBC4B83E5BC99486A4FC9 53760 ----a-w- C:\Windows\Sysnative\capiprovider.dll 2014-08-05 20:37:28 9A3C6D8593F29A9F66744A3D4E6309B2 39936 ----a-w- C:\Windows\Sysnative\wincredprovider.dll 2014-08-05 20:37:28 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2014-08-05 20:37:25 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2014-08-05 20:37:03 A236B1646E96AB06BE0F8D592B6D9A0D 245760 ----a-w- C:\Windows\Sysnative\OxpsConverter.exe 2014-08-05 20:36:56 374CE9DAB2F0CB173B8FCF3AB8DB5D1B 478208 ----a-w- C:\Windows\Sysnative\dpnet.dll 2014-08-05 20:36:49 D6AFBAA93169E6772565A1BC896D666B 624128 ----a-w- C:\Windows\Sysnative\qedit.dll 2014-08-05 20:36:20 D4FAC263861BAE06971C7F7D0A8EBF15 216576 ----a-w- C:\Windows\Sysnative\ncsi.dll 2014-08-05 20:36:20 8AD77806D336673F270DB31645267293 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll 2014-08-05 20:36:20 59B3BE37BAFBD40715F45D580783738B 246272 ----a-w- C:\Windows\Sysnative\netcorehc.dll 2014-08-05 20:36:20 08C2957BB30058E663720C5606885653 569344 ----a-w- C:\Windows\Sysnative\iphlpsvc.dll 2014-08-05 20:36:18 46BB91A169B9B31FF44EB04C48EC1D41 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll 2014-08-05 20:36:17 DC4382E93770B3BF0774DB7FE46C8239 18944 ----a-w- C:\Windows\Sysnative\netevent.dll 2014-08-05 20:35:11 26036E228D2467DE6975AD819C22C043 1217024 ----a-w- C:\Windows\Sysnative\rpcrt4.dll 2014-08-05 20:34:46 9A9F9F1A77D6A80EE28B57664F00013E 327168 ----a-w- C:\Windows\Sysnative\mswsock.dll 2014-08-05 20:34:19 050AF06F8B0463417E4AED9DA5816A65 613888 ----a-w- C:\Windows\Sysnative\psisdecd.dll 2014-08-05 20:34:16 78394F2B354BDC28C5C61837872DD132 108032 ----a-w- C:\Windows\Sysnative\psisrndr.ax 2014-08-05 20:33:31 63A580C88CFAF72A92550940054569EF 878080 ----a-w- C:\Windows\Sysnative\advapi32.dll 2014-08-05 20:33:27 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll 2014-08-05 20:33:27 A3FCC4F97551087D65F8FEE879FEF736 859648 ----a-w- C:\Windows\Sysnative\tdh.dll 2014-08-05 20:33:13 4474A8AEABD056DF636FD4FBEF49353B 1031680 ----a-w- C:\Windows\Sysnative\rdpcore.dll 2014-08-05 20:33:09 5EB6E9C8BE1ACC5830780E0F9A846255 3216384 ----a-w- C:\Windows\Sysnative\msi.dll 2014-08-05 20:32:30 EBB73E4E8CA01089CF74ECE506EB7607 43520 ----a-w- C:\Windows\Sysnative\csrr.rs 2014-08-05 20:32:30 C4B0793E4B97AA36A2A8C81A7AA1979A 44544 ----a-w- C:\Windows\Sysnative\pegibbfc.rs 2014-08-05 20:32:30 A2E0F1E01A0983E9C94565BBEC862BF7 40960 ----a-w- C:\Windows\Sysnative\cob-au.rs 2014-08-05 20:32:30 997938D423CE830161CB6059434E3C9F 45568 ----a-w- C:\Windows\Sysnative\oflc-nz.rs 2014-08-05 20:32:30 6D540AF9B183FC97DC4CC54369561548 20480 ----a-w- C:\Windows\Sysnative\pegi-pt.rs 2014-08-05 20:32:30 661AE5EAC62C4598DD01795CEB915BAE 20480 ----a-w- C:\Windows\Sysnative\pegi.rs 2014-08-05 20:32:30 65A8302C7551CFE45FAA2BC085C9E7E2 15360 ----a-w- C:\Windows\Sysnative\djctq.rs 2014-08-05 20:32:30 5C48A43FC30FC61ECB1335DC646686BC 30720 ----a-w- C:\Windows\Sysnative\usk.rs 2014-08-05 20:32:30 54B11BB2AFBC3D5EBA9C96F0C1820B9B 46592 ----a-w- C:\Windows\Sysnative\fpb.rs 2014-08-05 20:32:30 4489D5D2CB4BA0799F3FB4625DE181CF 21504 ----a-w- C:\Windows\Sysnative\grb.rs 2014-08-05 20:32:29 2BCBA6052374959A30BD7948444DBB79 2746368 ----a-w- C:\Windows\Sysnative\gameux.dll 2014-08-05 20:32:29 027675ED9B34EE1B91505C3B8752649F 441856 ----a-w- C:\Windows\Sysnative\Wpc.dll 2014-08-05 20:32:16 9BB05674E013C35F4DAED51F5015355D 20480 ----a-w- C:\Windows\Sysnative\pegi-fi.rs 2014-08-05 20:32:16 51D25C805A01A2C4F930F9720CF51FFE 51712 ----a-w- C:\Windows\Sysnative\esrb.rs 2014-08-05 20:32:16 4773EB5962548068547214A620E9ACC3 23552 ----a-w- C:\Windows\Sysnative\oflc.rs 2014-08-05 20:32:15 D0C01412FBF59C1C25630C49F0C1B803 55296 ----a-w- C:\Windows\Sysnative\cero.rs 2014-08-05 20:31:41 CDD0C92A653CAC881D780003E0C4E813 17792 ----a-w- C:\Windows\Sysnative\kdcom.dll 2014-08-05 20:31:41 8AE1C98D96EF1E63FB00A1BB3D14C959 642944 ----a-w- C:\Windows\Sysnative\winload.efi 2014-08-05 20:31:41 78C918D3612FE5937D32E488F053F10A 605552 ----a-w- C:\Windows\Sysnative\winload.exe 2014-08-05 20:31:41 722258D597A0CC4EEFF3AF338681E5B6 19328 ----a-w- C:\Windows\Sysnative\kd1394.dll 2014-08-05 20:31:41 5EF94FF9210ED73B9488C460D1FE173C 566208 ----a-w- C:\Windows\Sysnative\winresume.efi 2014-08-05 20:31:41 5A76F4B8D9D5D9D4C1153DFF4972C196 518672 ----a-w- C:\Windows\Sysnative\winresume.exe 2014-08-05 20:31:41 539AA23C29FAC72FB29D58F33E6931B1 20352 ----a-w- C:\Windows\Sysnative\kdusb.dll 2014-08-05 20:31:29 E8E98B3B7A6E1250F4AA7AF8FA17D5BB 340992 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-08-05 20:31:29 A805B5E68262302D1A60BE3DED5846C9 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2014-08-05 20:31:28 7D1017ED11B7C3B162628069742B5E58 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2014-08-05 20:31:27 E23BA7A7BD97FC6B8AB5EA32A46D05CD 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2014-08-05 20:31:26 79EE13A5A406E4603874686B8005DA72 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2014-08-05 20:31:25 BFC98590EAB40C785D6134B1FA818A62 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2014-08-05 20:31:22 C9DD5C0D5AF2D7A54BA32E8FBD3B67F1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2014-08-05 20:30:29 8699D17DFCFCD327784034DB6BD3A422 95744 ----a-w- C:\Windows\Sysnative\synceng.dll 2014-08-05 20:27:16 5FAC5F264D61D99EE8961480818B9DEF 31232 ----a-w- C:\Windows\Sysnative\prevhost.exe 2014-08-05 20:18:55 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll 2014-08-05 20:18:00 56325BB1FF19F2A5AC8713756AC41140 404480 ----a-w- C:\Windows\Sysnative\gdi32.dll 2014-08-05 20:17:30 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\Sysnative\taskhost.exe 2014-08-05 20:17:11 67CF11E00D026A5C0C88EA5F84D501E5 751104 ----a-w- C:\Windows\Sysnative\win32spl.dll 2014-08-05 20:17:00 25FBDEF06C4D92815B353F6E792C8129 404480 ----a-w- C:\Windows\Sysnative\umpnpmgr.dll 2014-08-05 20:16:47 C06FAAF13E37CE482F612AFF2D2331F3 30720 ----a-w- C:\Windows\Sysnative\cryptdlg.dll 2014-08-05 20:16:28 764DF431D13537A575752009E7740F18 124112 ----a-w- C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2014-08-05 20:16:25 EEEA40F0EDB0A6E5359E539E15D0BC77 73216 ----a-w- C:\Windows\Sysnative\netapi32.dll 2014-08-05 20:16:25 05F5A0D14A2EE1D8255C2AA0E9E8E694 136704 ----a-w- C:\Windows\Sysnative\browser.dll 2014-08-05 20:16:25 012787CEB35505EB78DF82E0A0072888 59392 ----a-w- C:\Windows\Sysnative\browcli.dll 2014-08-05 20:15:44 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\Sysnative\certutil.exe 2014-08-05 20:15:35 189B0BAE1B0EDD51CEF1CD3F4CDEE02E 52224 ----a-w- C:\Windows\Sysnative\certenc.dll 2014-08-05 20:15:20 C391FC68282A000CDF953F8B6B55D2EF 634880 ----a-w- C:\Windows\Sysnative\msvcrt.dll 2014-08-05 20:15:12 D2A513EE880D71BDE7F0257F38B9D019 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll 2014-08-05 20:15:12 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2014-08-05 20:15:12 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2014-08-05 20:15:12 74959C718FF4594369645F35B7DF19C4 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2014-08-05 20:15:12 7434E01FBCA3CB86539C39412A31D5E1 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2014-08-05 20:15:12 2A107B611C91CD256466C58C0D776E9D 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2014-08-05 20:15:11 0F090A77E664CB0F70AB8D3B230B760C 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2014-08-05 20:15:07 142E90CF1A4C5B6E7505810E38B07B9F 976896 ----a-w- C:\Windows\Sysnative\inetcomm.dll 2014-08-05 20:14:59 81A85BA8B536B70E035A9976F9D42873 267776 ----a-w- C:\Windows\Sysnative\FXSCOVER.exe 2014-08-05 20:14:50 D5164131D596A070FF9C82BC4A488F1F 503808 ----a-w- C:\Windows\Sysnative\srcore.dll 2014-08-05 20:14:43 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe 2014-08-05 20:14:43 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll 2014-08-05 20:14:43 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx 2014-08-05 20:14:42 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe 2014-08-05 20:14:26 D4CCE15190269486A5E6D4D4E597F798 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-08-05 20:14:23 C072064F95579C0D6D86AF5B3DC53192 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2014-08-05 20:14:23 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\Sysnative\lsass.exe 2014-08-05 20:14:22 8098627D0AA1706D69C5AF3F74332ABB 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2014-08-05 20:14:22 39312B37C5FE5138F99680A49ACD3AEA 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2014-08-05 20:13:21 1392A9F9E56A876C616D8A33FE272C78 723456 ----a-w- C:\Windows\Sysnative\EncDec.dll 2014-08-05 20:13:01 CF636C92B762B26F0B39B38E92380A09 331776 ----a-w- C:\Windows\Sysnative\oleacc.dll 2014-08-05 20:13:01 C06B32165E23A72A898B7A89679AD754 861696 ----a-w- C:\Windows\Sysnative\oleaut32.dll 2014-08-05 20:12:57 45CFBFA8EDC3DF4E2B7FB0D0260FE051 956928 ----a-w- C:\Windows\Sysnative\localspl.dll 2014-08-05 20:10:33 1FEB1694B13247A451B274E114AFAC45 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll 2014-08-05 19:51:27 51DFBD18A435BAEC1F71A692373ECE4F 9728 ----a-w- C:\Windows\Sysnative\Wdfres.dll 2014-08-05 19:50:45 85D6E8F735865B502D65D1D91A79E3F3 294912 ----a-w- C:\Windows\Sysnative\browserchoice.exe 2014-08-05 19:49:32 B20F051B03A966392364C83F009F7D17 84992 ----a-w- C:\Windows\Sysnative\WUDFSvc.dll 2014-08-05 19:49:32 B1DF2D87DC8BF6072699AC8301B37796 194048 ----a-w- C:\Windows\Sysnative\WUDFPlatform.dll 2014-08-05 19:49:31 F1617F1014D51987D517A4C37A7C733B 45056 ----a-w- C:\Windows\Sysnative\WUDFCoinstaller.dll 2014-08-05 19:49:31 8ABFE00F213F2571498F1B8FD7939A98 229888 ----a-w- C:\Windows\Sysnative\WUDFHost.exe 2014-08-05 19:49:31 25AE683DCB4AE7E6F1B193A0CB9DB35F 744448 ----a-w- C:\Windows\Sysnative\WUDFx.dll 2014-08-05 19:49:17 C00DB14550E4BD49737F311C644E45FF 5120 ----a-w- C:\Windows\Sysnative\wmi.dll 2014-08-05 19:13:10 344789398EC3EE5A4E00C52B31847946 859648 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL 2014-08-05 19:13:09 D07EB640618F96490DB88C3CE58DB608 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL 2014-08-05 19:13:09 660C06F663F27760F565FD567B57625C 830464 ----a-w- C:\Windows\Sysnative\nshwfp.dll 2014-08-05 19:12:29 56661BB55AE4633677F846FFCD080ECA 461312 ----a-w- C:\Windows\Sysnative\scavengeui.dll 2014-08-05 18:36:08 BACE7F36D65968FD07757B239B01F4E2 77312 ----a-w- C:\Windows\Sysnative\packager.dll 2014-08-05 18:28:23 F8222805E5C5033D61C2779226F3E03D 274728 ----a-w- C:\Windows\Sysnative\SynCtrl.dll 2014-08-05 18:28:23 9F7BC08E5E7739A517222907B1422664 148264 ----a-w- C:\Windows\Sysnative\SynTPCo9.dll 2014-08-05 18:28:23 4DA5DA193E0E4F86F6F8FD43EF25329A 1721576 ----a-w- C:\Windows\Sysnative\WdfCoInstaller01009.dll 2014-08-05 18:28:23 40AA30D57430A4D2BC1DAFBDA6B5B364 225576 ----a-w- C:\Windows\Sysnative\SynTPAPI.dll 2014-08-05 18:28:10 CF69B941AE3815EFC8992FD66DDBDC9F 411432 ----a-w- C:\Windows\Sysnative\SynCOM.dll 2014-08-05 18:21:36 21D24F54D9C9A2468EFDACAAD93CF154 81920 ----a-w- C:\Windows\Sysnative\nusb3co1.dll 2014-08-05 18:19:45 D9EF901DCA379CFE914E9FA13B73B4C4 2428952 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2014-08-05 18:19:45 C1C03EA437EDDA8A7D4D8786E5AE6751 57880 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2014-08-05 18:19:45 7FE0D0C8F53735EA17C9AE93EFE7AD5A 44056 ----a-w- C:\Windows\Sysnative\wups2.dll 2014-08-05 18:19:45 50EBD31C3527366FAFA468BD609F7352 2622464 ----a-w- C:\Windows\Sysnative\wucltux.dll 2014-08-05 18:19:17 E746ED90132C6B6313CE9179F56BD31D 38424 ----a-w- C:\Windows\Sysnative\wups.dll 2014-08-05 18:19:17 C47F35CC6FA4F1BDBEF8F87AC1A46537 701976 ----a-w- C:\Windows\Sysnative\wuapi.dll 2014-08-05 18:19:17 4AA6AA52A16EED6481E83D73EED4C8D5 99840 ----a-w- C:\Windows\Sysnative\wudriver.dll 2014-08-05 18:19:06 FF0729002E081668620A681182D63FE6 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe 2014-08-05 18:19:06 3E38C20AC83B01C45723B63B0F7A8FDC 186752 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2014-08-05 18:17:44 A011BB9B8D895C648E1F0B32D5E98D96 2750464 ----a-w- C:\Windows\Sysnative\NETwNr64.dll 2014-08-05 18:17:38 ECE95428E20B66EAAA6EB274F823D211 799232 ----a-w- C:\Windows\Sysnative\NETwNc64.dll ====== C:\Windows\Sysnative\drivers ===== 2014-08-08 14:00:47 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\Sysnative\drivers\GEARAspiWDM.sys 2014-08-06 16:26:35 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\Sysnative\drivers\PSKMAD.sys 2014-08-06 15:12:38 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-08-06 15:12:15 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2014-08-06 15:12:15 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-08-06 15:12:15 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-08-06 14:56:11 738D0E9272F59EB7A1449C3EC118E6C4 552960 ----a-w- C:\Windows\Sysnative\drivers\bthport.sys 2014-08-06 14:56:10 F188B7394D81010767B6DF3178519A37 80384 ----a-w- C:\Windows\Sysnative\drivers\BTHUSB.SYS 2014-08-06 14:56:06 DAB0E87525C10052BF65F06152F37E4A 166272 ----a-w- C:\Windows\Sysnative\drivers\nvstor.sys 2014-08-06 14:56:06 D4121AE6D0C0E7E13AA221AA57EF2D49 107904 ----a-w- C:\Windows\Sysnative\drivers\amdsata.sys 2014-08-06 14:56:06 AAAF44DB3BD0B9D1FB6969B23ECC8366 410496 ----a-w- C:\Windows\Sysnative\drivers\iaStorV.sys 2014-08-06 14:56:06 540DAF1CEA6094886D72126FD7C33048 27008 ----a-w- C:\Windows\Sysnative\drivers\amdxata.sys 2014-08-06 14:56:06 0A92CB65770442ED0DC44834632F66AD 148352 ----a-w- C:\Windows\Sysnative\drivers\nvraid.sys 2014-08-06 14:56:05 FED648B01349A3C8395A5169DB5FB7D6 91648 ----a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS 2014-08-06 11:04:03 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_09_00.Wdf 2014-08-05 21:03:42 88612F1CE3BF42256913BF6E61C70D52 983488 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2014-08-05 21:03:41 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2014-08-05 21:00:42 D711B3C1D5F42C0C2415687BE09FC163 288768 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys 2014-08-05 21:00:42 A5D9106A73DC88564C825D317CAC68AC 158208 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2014-08-05 21:00:42 9423E9D355C8D303E76B8CFBD8A5C30C 128000 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2014-08-05 20:48:18 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys 2014-08-05 20:48:18 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-08-05 20:48:18 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2014-08-05 20:48:10 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys 2014-08-05 20:48:08 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2014-08-05 20:48:08 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys 2014-08-05 20:38:17 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2014-08-05 20:38:17 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\Sysnative\drivers\RNDISMP.sys 2014-08-05 20:37:54 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys 2014-08-05 20:36:59 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys 2014-08-05 20:36:59 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\Sysnative\drivers\usbvideo.sys 2014-08-05 20:36:52 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys 2014-08-05 20:36:33 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys 2014-08-05 20:36:33 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys 2014-08-05 20:36:30 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2014-08-05 20:36:18 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\Sysnative\drivers\tcpipreg.sys 2014-08-05 20:35:13 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys 2014-08-05 20:35:05 B4ADEBBF5E3677CCE9651E0F01F7CC28 410112 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys 2014-08-05 20:35:05 441FBA48BFF01FDB9D5969EBC1838F0B 467456 ----a-w- C:\Windows\Sysnative\drivers\srv.sys 2014-08-05 20:35:05 27E461F0BE5BFF5FC737328F749538C3 168448 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys 2014-08-05 20:35:03 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys 2014-08-05 20:34:57 E61608AA35E98999AF9AAEEEA6114B0A 210944 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys 2014-08-05 20:33:16 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys 2014-08-05 20:33:12 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\Sysnative\drivers\tdtcp.sys 2014-08-05 20:30:43 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys 2014-08-05 20:30:43 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2014-08-05 20:30:43 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys 2014-08-05 20:30:31 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys 2014-08-05 20:30:31 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys 2014-08-05 20:30:31 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys 2014-08-05 20:30:30 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys 2014-08-05 20:30:30 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2014-08-05 20:17:04 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2014-08-05 20:14:54 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys 2014-08-05 20:14:25 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2014-08-05 20:14:25 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2014-08-05 20:14:24 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2014-08-05 20:13:11 6C02A83164F5CC0A262F4199F0871CF5 90624 ----a-w- C:\Windows\Sysnative\drivers\bowser.sys 2014-08-05 19:51:28 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2014-08-05 19:51:27 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\Sysnative\drivers\WdfLdr.sys 2014-08-05 19:49:34 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys 2014-08-05 19:49:34 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys 2014-08-05 19:49:31 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2014-08-05 19:49:17 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\Sysnative\drivers\fs_rec.sys 2014-08-05 19:13:07 D9CED15E158573DE1BB67330C4206763 123672 ----a-w- C:\Windows\Sysnative\drivers\avgmfx64.sys 2014-08-05 19:13:07 C4F9056928B26BCAF15872E46B29184F 31512 ----a-w- C:\Windows\Sysnative\drivers\avgrkx64.sys 2014-08-05 19:13:07 B0E4A1F342A3F8B75C4A4ADB044761C9 190744 ----a-w- C:\Windows\Sysnative\drivers\avgidsha.sys 2014-08-05 19:13:07 5D115BF49AE159D4D7D1EBC640CB138F 235800 ----a-w- C:\Windows\Sysnative\drivers\avgldx64.sys 2014-08-05 19:13:07 50E7E80BB5F3E2BB0B48F3F7E17ED6B1 242968 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys 2014-08-05 19:13:07 0971913995F5FAFD711B0B2426A175E9 269080 ----a-w- C:\Windows\Sysnative\drivers\avgtdia.sys 2014-08-05 18:28:37 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_SynTP_01009.Wdf 2014-08-05 18:28:23 8DF6C536ECE3B538978B53C223AB905D 1424944 ----a-w- C:\Windows\Sysnative\drivers\SynTP.sys 2014-08-05 18:27:26 01266516E6E88D183A2B58722EEB4443 87552 ----a-w- C:\Windows\Sysnative\drivers\nusb3hub.sys 2014-08-05 18:21:36 5EC04F55CC5F165F21752712437DF638 207872 ----a-w- C:\Windows\Sysnative\drivers\nusb3xhc.sys 2014-08-05 18:20:13 A6518DCC42F7A6E999BB3BEA8FD87567 56344 ----a-w- C:\Windows\Sysnative\drivers\HECIx64.sys 2014-08-05 18:17:44 50AD7F7040C22BB7CAA59A0880875A21 8604672 ----a-w- C:\Windows\Sysnative\drivers\NETwNs64.sys 2014-08-05 18:17:01 B48E99A7799D68132EE8F1CF4237234C 75888 ----a-w- C:\Windows\Sysnative\drivers\L1C60x64.sys 2014-07-28 12:16:26 645190CD90E7C4AA29E1F26954998B23 30895 ----a-w- C:\Windows\Sysnative\drivers\Mixer.ini 2014-07-28 12:16:25 A260BE645DD096D90318C8CF98536720 1581184 ----a-w- C:\Windows\Sysnative\drivers\CHDRT64.sys ====== C:\Windows\Tasks ====== 2014-08-08 13:59:18 -------- d-----w- C:\Windows\Sysnative\Tasks\Apple 2014-08-08 11:20:04 -------- d-----w- C:\Windows\Sysnative\Tasks\OfficeSoftwareProtectionPlatform 2014-08-06 08:20:22 DF480A5ACF138DED04BD259DC257A4AA 4048 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2014-08-06 08:20:22 1CC7083B2D79162E0F690DF844F7C4E7 1052 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-06 08:20:20 8708E36BB7F1E1258DCFBD201F530CC6 3796 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2014-08-06 08:20:19 C59D3C14A70738A306AF8673D0D895C8 1048 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-05 19:58:29 9BFCFA86AE4D1374C76F9B30E6267E19 3532 ----a-w- C:\Windows\Sysnative\Tasks\CreateChoiceProcessTask ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-08-12 11:48:04 -------- d-----w- C:\Program Files\trend micro 2014-08-10 09:32:58 -------- d-----w- C:\Program Files\Speccy 2014-08-09 13:11:57 -------- d-----w- C:\Program Files\7-Zip 2014-08-08 14:00:36 -------- d-----w- C:\Program Files\iPod 2014-08-08 14:00:35 -------- d-----w- C:\Program Files\iTunes 2014-08-08 13:59:06 -------- d-----w- C:\Program Files\Common Files\Apple 2014-08-08 13:58:56 -------- d-----w- C:\Program Files\Bonjour 2014-08-08 13:45:33 -------- d-----w- C:\Program Files\Microsoft Silverlight 2014-08-08 11:19:07 -------- d-----w- C:\Program Files\Microsoft Office 2014-08-06 09:12:53 -------- d-----w- C:\Program Files\CONEXANT 2014-08-06 08:41:38 -------- d-----w- C:\Program Files\Windows Live 2014-08-05 21:26:38 -------- d-----w- C:\Program Files\NVIDIA Corporation 2014-08-05 18:28:29 -------- d-----w- C:\Program Files\Synaptics ======= C:\PROGRA~2 ===== 2014-08-09 16:58:19 -------- d-----w- C:\PROGRA~2\COMMON~1\DESIGNER 2014-08-08 11:18:59 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 8 2014-08-06 11:31:40 -------- d-----w- C:\PROGRA~2\Foxit Software 2014-08-06 10:51:16 -------- d-----w- C:\PROGRA~2\LibreOffice 4 2014-08-06 08:39:34 -------- d-----w- C:\PROGRA~2\Windows Live 2014-08-06 06:31:19 -------- d-----w- C:\PROGRA~2\Microsoft OneDrive 2014-08-05 19:18:03 -------- d-----w- C:\PROGRA~2\Wise 2014-08-05 19:17:57 -------- d-----w- C:\PROGRA~2\VS Revo Group 2014-08-05 19:17:57 -------- d-----w- C:\PROGRA~2\Virtual Console 2014-08-05 19:17:52 -------- d--h--w- C:\PROGRA~2\Temp 2014-08-05 19:17:52 -------- d-----w- C:\PROGRA~2\Tweaking.com 2014-08-05 19:17:52 -------- d-----w- C:\PROGRA~2\SDA 2014-08-05 19:17:52 -------- d-----r- C:\PROGRA~2\Skype 2014-08-05 19:17:43 -------- d-----w- C:\PROGRA~2\Samsung 2014-08-05 19:17:26 -------- d-----w- C:\PROGRA~2\Safari 2014-08-05 19:17:13 -------- d-----w- C:\PROGRA~2\QuickTime 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\NVIDIA Corporation 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\NG_CENTER 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\MSECache 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\Microsoft.NET 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\Microsoft SQL Server Compact Edition 2014-08-05 19:17:03 -------- d-----w- C:\PROGRA~2\Microsoft SkyDrive 2014-08-05 19:17:00 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight 2014-08-05 19:16:59 -------- d-----w- C:\PROGRA~2\Microsoft Office 2014-08-05 19:16:59 -------- d-----w- C:\PROGRA~2\MaxUtilities 2014-08-05 19:15:53 -------- d-----w- C:\PROGRA~2\K-Lite Codec Pack 2014-08-05 19:15:11 -------- d-----w- C:\PROGRA~2\iTunes 2014-08-05 19:15:11 -------- d-----w- C:\PROGRA~2\ISO Opener 2014-08-05 19:15:03 -------- d-----w- C:\PROGRA~2\Intel 2014-08-05 19:15:01 -------- d--h--w- C:\PROGRA~2\InstallShield Installation Information 2014-08-05 19:15:01 -------- d-----w- C:\PROGRA~2\HD Tune 2014-08-05 19:14:44 -------- d-----w- C:\PROGRA~2\Google 2014-08-05 19:14:37 -------- d-----w- C:\PROGRA~2\Flashdrive tester 2014-08-05 19:14:23 -------- d-----w- C:\PROGRA~2\epson 2014-08-05 19:14:23 -------- d-----w- C:\PROGRA~2\DriverToolkit 2014-08-05 19:14:12 -------- d-----w- C:\PROGRA~2\CyberLink 2014-08-05 19:14:09 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo 2014-08-05 19:14:01 -------- d-----w- C:\PROGRA~2\Core Design 2014-08-05 19:13:59 -------- d-----w- C:\PROGRA~2\COMMON~1\Windows Live 2014-08-05 19:13:59 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2014-08-05 19:13:59 -------- d-----w- C:\PROGRA~2\COMMON~1\postureAgent 2014-08-05 19:13:58 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-08-05 19:13:57 -------- d-----w- C:\PROGRA~2\COMMON~1\InstallShield 2014-08-05 19:13:35 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple 2014-08-05 19:13:34 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe 2014-08-05 19:13:10 -------- d-----w- C:\PROGRA~2\Calibre2 2014-08-05 19:13:10 -------- d-----w- C:\PROGRA~2\Bonjour 2014-08-05 19:13:09 -------- d-----w- C:\PROGRA~2\BlueSprig 2014-08-05 19:13:09 -------- d-----w- C:\PROGRA~2\Belastingdienst 2014-08-05 19:12:59 -------- d-----w- C:\PROGRA~2\AVG 2014-08-05 19:12:58 -------- d-----w- C:\PROGRA~2\Apple Software Update 2014-08-05 19:12:58 -------- d-----w- C:\PROGRA~2\Any Drive Formatter 2014-08-05 19:12:57 -------- d-----w- C:\PROGRA~2\Adobe ======= C: ===== 2014-08-05 21:41:33 EDB87C2CBA62F1586AB4F85E336EB3C3 1646 ----a-w- C:\Dropbox.lnk 2014-08-05 21:41:33 DE22817B5F4003362AA99560468A2A48 367 ----a-w- C:\RecentPlaces.lnk 2014-08-05 21:41:33 C7274576E63863C93210D3BB38C3797C 246066 ----a-w- C:\Bookmarks 2014-08-05 21:41:33 9B5D263CCE0306422EDF78E592FC17E9 160 ----a-w- C:\iCloud-foto's.lnk 2014-08-05 21:41:33 89256D790E78751653D9B2C8F2E2F257 1703 ----a-w- C:\Google Drive.lnk 2014-08-05 21:41:33 27BD75D5BF81F7CACDE2AA4454811D48 681 ----a-w- C:\OneDrive.lnk 2014-08-04 11:40:15 C26B38869954276D053AA6345FB2263B 796 ----a-w- C:\as.mof ====== C:\Users\Wies\AppData\Roaming ====== 2014-08-10 12:33:25 -------- d-----w- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-08-10 12:31:52 -------- d-----w- C:\Users\Wies\AppData\Roaming\Dropbox 2014-08-10 09:34:18 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2014-08-09 17:01:15 ED064B0587CA1573E3B9C00C65917C3C 447568 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2014-08-09 15:50:33 -------- d-----w- C:\Users\Wies\AppData\Roaming\calibre 2014-08-09 13:29:52 -------- d-----w- C:\Users\Wies\AppData\Roaming\Samsung 2014-08-09 13:10:36 -------- d-----w- C:\Users\Wies\AppData\Local\Adobe_Systems_Incorporate 2014-08-08 14:01:01 -------- d-----w- C:\Users\Wies\AppData\Roaming\Apple Computer 2014-08-08 14:01:01 -------- d-----w- C:\Users\Wies\AppData\Local\Apple Computer 2014-08-08 13:59:17 -------- d-----w- C:\Users\Wies\AppData\Local\Apple 2014-08-08 13:59:12 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer 2014-08-08 12:07:56 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2014-08-08 12:07:56 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help 2014-08-08 11:18:26 -------- d-----w- C:\Users\Wies\AppData\Local\Microsoft Help 2014-08-06 16:52:13 54CBAD08DFE7060B893EA88820C006FC 70352 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT 2014-08-06 11:32:00 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Roaming\Foxit Software 2014-08-06 11:32:00 -------- d-----w- C:\Users\Wies\AppData\Roaming\Foxit Software 2014-08-06 11:31:53 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Foxit Software 2014-08-06 11:30:37 -------- d-sh--w- C:\Users\Wies\AppData\Locallow\EmieUserList 2014-08-06 11:30:11 -------- d-sh--w- C:\Users\Wies\AppData\Local\EmieUserList 2014-08-06 11:30:11 -------- d-sh--w- C:\Users\Wies\AppData\Local\EmieSiteList 2014-08-06 11:30:07 -------- d-sh--w- C:\Users\Wies\AppData\Locallow\EmieSiteList 2014-08-06 10:56:33 -------- d-----w- C:\Users\Wies\AppData\Roaming\LibreOffice 2014-08-06 08:47:16 -------- d-----w- C:\Users\Wies\AppData\Roaming\Windows Live Writer 2014-08-06 08:47:16 -------- d-----w- C:\Users\Wies\AppData\Local\Windows Live Writer 2014-08-06 07:58:06 -------- d-----w- C:\Users\Wies\AppData\Local\ElevatedDiagnostics 2014-08-06 07:38:08 -------- d-----w- C:\Users\Wies\AppData\Local\Programs 2014-08-06 07:05:23 -------- d-----w- C:\Users\Wies\AppData\Local\Skype 2014-08-06 07:05:15 -------- d-----w- C:\Users\Wies\AppData\Roaming\Skype 2014-08-06 06:24:15 -------- d-----w- C:\Users\Wies\AppData\Local\Windows Live 2014-08-06 05:50:06 -------- d-----w- C:\Users\Wies\AppData\Roaming\Adobe 2014-08-06 01:03:04 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2014-08-05 20:02:15 -------- d-----w- C:\Users\Wies\AppData\Local\Google 2014-08-05 20:01:09 9E0B5E9F7D21BF7C1230F568337E931F 73552 ----a-w- C:\Users\Wies\AppData\Local\GDIPFONTCACHEV1.DAT 2014-08-05 20:01:07 -------- d-----w- C:\Users\Wies\AppData\Local\Apps 2014-08-05 20:01:03 -------- d-----w- C:\Users\Wies\AppData\Local\Deployment 2014-08-05 19:33:03 -------- d-----w- C:\Users\Wies\AppData\Roaming\AVG2014 2014-08-05 19:32:40 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG2014 2014-08-05 19:32:06 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg2014 2014-08-05 19:31:57 -------- d-----w- C:\Users\Wies\AppData\Roaming\TuneUp Software 2014-08-05 19:28:58 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2014 2014-08-05 19:23:00 -------- d-----w- C:\Users\Wies\AppData\Local\Avg2014 2014-08-05 17:22:52 -------- d-----w- C:\Users\Wies\AppData\Local\Diagnostics 2014-08-05 17:20:18 -------- d-----w- C:\Users\Wies\AppData\Locallow\Microsoft 2014-08-05 17:16:44 -------- d-----r- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-08-05 17:16:44 -------- d-----r- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-08-05 17:16:30 -------- d-----w- C:\Users\Wies\AppData\Roaming\Identities 2014-08-05 17:16:23 -------- d-----w- C:\Users\Wies\AppData\Local\VirtualStore 2014-08-05 17:16:08 -------- d-----w- C:\Users\Wies\AppData\Roaming\Media Center Programs 2014-08-05 17:16:08 -------- d-----w- C:\Users\Wies\AppData\Local\Temp 2014-08-05 17:16:08 -------- d-----w- C:\Users\Wies\AppData\Local\Microsoft 2014-08-05 17:16:07 -------- d-s---w- C:\Users\Wies\AppData\Roaming\Microsoft 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories ====== C:\Users\Wies ====== 2014-08-12 11:47:46 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Wies\Downloads\RSITx64.exe 2014-08-10 12:40:04 -------- d-----r- C:\Users\Wies\Dropbox 2014-08-10 12:31:45 3842E87DD7E96E126B15265327A438DF 323576 ----a-w- C:\Users\Wies\Downloads\DropboxInstaller.exe 2014-08-10 10:09:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune 2014-08-10 10:08:38 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Wies\Downloads\hdtune_255.exe 2014-08-10 09:32:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2014-08-10 09:31:46 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\Wies\Downloads\spsetup126.exe 2014-08-09 15:49:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management 2014-08-09 13:11:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2014-08-09 13:09:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 2014-08-09 13:06:45 A1BBAA630BAB9F763FB8F01D061E528C 6144272 ----a-w- C:\Users\Wies\Downloads\ADE_3.0_Installer.exe 2014-08-09 13:05:14 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\LauncherAccess.dt 2014-08-09 12:38:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung PC Studio 3 2014-08-08 14:00:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-08 14:00:35 -------- d-----w- C:\ProgramData\Apple Computer 2014-08-08 14:00:35 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-08-08 13:58:38 -------- d-----w- C:\ProgramData\Apple 2014-08-08 13:55:50 EDD30663B483C74F1D0D21F32ADD300A 113492816 ----a-w- C:\Users\Wies\Downloads\iTunes64Setup.exe 2014-08-08 13:45:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-08-08 13:41:57 2EDE6612B7042D8582819CAB084E6883 13087456 ----a-w- C:\Users\Wies\Downloads\Silverlight_x64.exe 2014-08-08 12:25:06 0DE354326E9FB68224E92D646CC196F8 895120 ----a-w- C:\Users\Wies\Downloads\ChromeSetup.exe 2014-08-08 11:23:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-08 11:23:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-08 11:18:18 -------- d-----w- C:\ProgramData\Microsoft Help 2014-08-08 10:29:02 DA946F2A59884CECEEDBE32F0F631FDA 279344216 ----a-w- C:\Users\Wies\Downloads\SharePointDesigner.exe 2014-08-07 11:34:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2014-08-07 11:34:22 798610F0CC4208089886EEDCC5951D96 9521280 ----a-w- C:\Users\Wies\Downloads\tweaking.com_windows_repair_aio_setup.exe 2014-08-06 18:16:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2014-08-06 18:15:47 2294324CC84BA6D4CE08355580723189 17312072 ----a-w- C:\Users\Wies\Downloads\picasa39-setup.exe 2014-08-06 18:04:30 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\Wies\Downloads\MicrosoftFixit.Skype.RNP.133074986258355.1.1.Run.exe 2014-08-06 17:57:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-08-06 17:55:46 82901D6179D63704B923B2CE1E8887C7 1677928 ----a-w- C:\Users\Wies\Downloads\SkypeSetup.exe 2014-08-06 17:10:49 -------- d-----w- C:\Users\Wies\Calibrebibliotheek 2014-08-06 13:44:59 -------- d--h--w- C:\ProgramData\CanonBJ 2014-08-06 12:27:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 5.0 2014-08-06 10:52:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3 2014-08-06 08:26:46 -------- d-----r- C:\Users\Wies\Google Drive 2014-08-06 08:21:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2014-08-06 07:40:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2014-08-06 07:33:07 -------- d-sh--w- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2014-08-06 07:33:05 -------- d-----w- C:\ProgramData\AVG 2014-08-06 07:04:49 -------- d-----w- C:\ProgramData\Skype 2014-08-06 06:43:58 -------- d-----w- C:\Users\Wies\Tracing 2014-08-06 06:31:18 -------- d-----r- C:\Users\Wies\OneDrive 2014-08-06 06:31:06 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2014-08-05 21:26:45 -------- d-----w- C:\ProgramData\NVIDIA Corporation 2014-08-05 19:31:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2014-08-05 19:31:11 -------- d-----w- C:\ProgramData\AVG2014 2014-08-05 19:23:01 -------- d--h--w- C:\ProgramData\Common Files 2014-08-05 18:44:13 -------- d-----w- C:\Users\Wies\Core Design 2014-08-05 18:41:29 -------- d-----w- C:\Users\Wies\Backup 2014-08-05 17:16:25 -------- d-----r- C:\Users\Wies\Contacts 2014-08-05 17:16:08 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Wies\ntuser.ini 2014-08-05 17:16:07 -------- d--h--w- C:\Users\Wies\AppData 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Videos 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Saved Games 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Pictures 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Music 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Links 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Favorites 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Downloads 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Documents 2014-08-05 17:16:07 -------- d-----r- C:\Users\Wies\Desktop ====== C: exe-files == 2014-08-12 11:48:04 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Wies.exe 2014-08-12 11:47:46 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Wies\Downloads\RSITx64.exe 2014-08-10 12:33:14 FE8BCA7B6A8CA07EFAEF8C154C6701CF 225224 ----a-w- C:\Users\Wies\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe 2014-08-10 12:33:14 7A5EB602B07F3412EBB5D2E94E21754A 36414496 ----a-w- C:\Users\Wies\AppData\Roaming\Dropbox\bin\Dropbox.exe 2014-08-10 12:32:41 011E1CC22B6588893136DCD3DEFEB223 39142640 ----a-w- C:\Users\Wies\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M1I4YRDO\Dropbox%202.10.27data[1].exe 2014-08-10 12:31:45 3842E87DD7E96E126B15265327A438DF 323576 ----a-w- C:\Users\Wies\Downloads\DropboxInstaller.exe 2014-08-10 10:08:38 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Wies\Downloads\hdtune_255.exe 2014-08-10 09:31:46 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\Wies\Downloads\spsetup126.exe 2014-08-09 17:14:26 8F55DB407571052EDD6E6F04992703DB 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1036866878-1548828729-1409284516-1000\$I9QW3PN.exe 2014-08-09 13:06:45 A1BBAA630BAB9F763FB8F01D061E528C 6144272 ----a-w- C:\Users\Wies\Downloads\ADE_3.0_Installer.exe 2014-08-09 13:03:22 F12D4F9129EFD06A55D54D1A139D2B5C 73728 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\SSBCUninstall.exe 2014-08-09 12:47:31 0769C0926F7C75F48C33BBE51015AAAC 70904 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\SSSDUninstall.exe 2014-08-09 12:44:22 F5CF42964FDF26C8632537A41C898197 73728 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe 2014-08-09 12:40:57 BB737A47A991FFA00CF3558D2CCD71B4 72968 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\SSM_Uninstall.exe 2014-08-09 12:39:45 70A1F7FD11D4C06BD26DFD348387A1E4 72968 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe 2014-08-09 12:37:13 46D74A8E83BAD54EA60FC0D9DD38CA31 67774464 ----a-w- C:\$Recycle.Bin\S-1-5-21-1036866878-1548828729-1409284516-1000\$R9QW3PN.exe 2014-08-08 16:25:07 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateBroker.exe 2014-08-08 16:25:07 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleCrashHandler64.exe 2014-08-08 16:25:07 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateOnDemand.exe 2014-08-08 16:25:07 815799F594F4D6276A9809E9A7F25875 895120 ----a-w- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateSetup.exe 2014-08-08 16:25:07 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdateComRegisterShell64.exe 2014-08-08 16:25:07 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleUpdate.exe 2014-08-08 16:25:06 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Wies\AppData\Local\Temp\{A27DC4FD-5694-449F-85CF-ECCAB28285DA}\GoogleCrashHandler.exe 2014-08-08 13:55:50 EDD30663B483C74F1D0D21F32ADD300A 113492816 ----a-w- C:\Users\Wies\Downloads\iTunes64Setup.exe 2014-08-08 13:41:57 2EDE6612B7042D8582819CAB084E6883 13087456 ----a-w- C:\Users\Wies\Downloads\Silverlight_x64.exe 2014-08-08 13:10:44 020EEA9C9C93E80A26DD8AB1006C3613 171912 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\StartCD.exe 2014-08-08 13:09:48 93A13358898A54643ADBCA67D1533462 23510720 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\NetFXx86.exe 2014-08-08 13:09:40 E95B784E316EA2C0069ACB79D5FB09AB 1514872 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\ENU\ia64\WindowsServer2003-KB960037-ia64-ENU.exe 2014-08-08 13:09:40 E8DAC430967F7A1B6393F521347FB6A2 1102200 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\JPN\x64\WindowsServer2003.WindowsXP-KB960037-x64-JPN.exe 2014-08-08 13:09:40 D084B34422A7873B397FC7EC5E2253B5 1105784 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\ESN\x64\WindowsServer2003.WindowsXP-KB960037-x64-ESN.exe 2014-08-08 13:09:40 B8A0AED1778C013AF1971C6C55142B9F 1101176 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\KOR\x64\WindowsServer2003.WindowsXP-KB960037-x64-KOR.exe 2014-08-08 13:09:40 B0FD82B39CB7D8E0ACC5A3A60CC680FE 1107320 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\PTB\x64\WindowsServer2003.WindowsXP-KB960037-x64-PTB.exe 2014-08-08 13:09:40 A8B6709962A319E8056E4C086B4EB7EC 1107832 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\DEU\x64\WindowsServer2003.WindowsXP-KB960037-x64-DEU.exe 2014-08-08 13:09:40 A23AD8599957D9430280918888BD09A2 1098616 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\ENU\x64\WindowsServer2003.WindowsXP-KB960037-x64-ENU.exe 2014-08-08 13:09:40 9D409BBC470D62988C7A7AAE58089E2D 1099640 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\CHS\x64\WindowsServer2003.WindowsXP-KB960037-x64-CHS.exe 2014-08-08 13:09:40 9A6E46FEA3B7A8434A4DB2D77AF7A331 1106808 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\ITA\x64\WindowsServer2003.WindowsXP-KB960037-x64-ITA.exe 2014-08-08 13:09:40 951CD2625ED6F9D6A438CCF0BCAB1096 1108344 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\RUS\x64\WindowsServer2003.WindowsXP-KB960037-x64-RUS.exe 2014-08-08 13:09:40 5FE96501B6BAC83A1AA67B101E931B5E 1522040 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\DEU\ia64\WindowsServer2003-KB960037-ia64-DEU.exe 2014-08-08 13:09:40 4F8469C738EC875A3908637A0373E7A4 1522040 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\FRA\ia64\WindowsServer2003-KB960037-ia64-FRA.exe 2014-08-08 13:09:40 48289DA8F87DE5899C86A0CF6406B113 1107832 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\FRA\x64\WindowsServer2003.WindowsXP-KB960037-x64-FRA.exe 2014-08-08 13:09:40 2AC9E07D554F000866597FCFE1AA03F2 2931440 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\WindowsXP-KB914882-x86-NLD.exe 2014-08-08 13:09:40 1F383F3A372DCDD89CD40BC65AF05B37 47400128 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\NetFXamd64.exe 2014-08-08 13:09:40 1F18559009ABF3A4C3EC3219299AD81E 1101688 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\CHT\x64\WindowsServer2003.WindowsXP-KB960037-x64-CHT.exe 2014-08-08 13:09:40 03D75D325C7BC4A0A50802416B1CAE7E 1517432 ----a-w- C:\Users\Wies\Downloads\KB3AIK_NL\HotFix\KB960037\W2K3\JPN\ia64\WindowsServer2003-KB960037-ia64-JPN.exe 2014-08-08 12:25:06 0DE354326E9FB68224E92D646CC196F8 895120 ----a-w- C:\Users\Wies\Downloads\ChromeSetup.exe 2014-08-08 10:29:02 DA946F2A59884CECEEDBE32F0F631FDA 279344216 ----a-w- C:\Users\Wies\Downloads\SharePointDesigner.exe 2014-08-07 18:40:24 CC1A13CC25E44C7A4C1B7FCE49D6BE5F 75776 ----a-r- C:\Program Files (x86)\Calibre2\lrfviewer.exe 2014-08-07 18:40:24 9854A53704856BD833358959468B9D52 24576 ----a-r- C:\Program Files (x86)\Calibre2\lrf2lrs.exe 2014-08-07 18:40:24 7365A2D62D1F9BC310DBEC7EAB5A7322 24576 ----a-r- C:\Program Files (x86)\Calibre2\markdown-calibre.exe 2014-08-07 18:40:24 6B3641F6683AC7FCA7A10107F9226219 24576 ----a-r- C:\Program Files (x86)\Calibre2\lrs2lrf.exe 2014-08-07 18:40:24 1D35060D3B2329D502E1148B5E1DEB81 24576 ----a-r- C:\Program Files (x86)\Calibre2\web2disk.exe 2014-08-07 18:40:22 F346D8DBC26AAD9AE3055DDC0D3F774C 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-server.exe 2014-08-07 18:40:22 E234E4E56082E4ECF55B4A191281B813 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-complete.exe 2014-08-07 18:40:22 B3C4DFE13EAFC90398645BE890A44444 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibredb.exe 2014-08-07 18:40:22 A1A95B965C3AA61BD5D8A45EC33B07DE 24576 ----a-r- C:\Program Files (x86)\Calibre2\ebook-polish.exe 2014-08-07 18:40:22 9CA4FFB74093CB9FE20AECE4BBDA6057 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-parallel.exe 2014-08-07 18:40:22 958C3A9581EBEE4132595F5EB9C7261D 24576 ----a-r- C:\Program Files (x86)\Calibre2\ebook-convert.exe 2014-08-07 18:40:22 9149EF7905944165A2E491C079D5C171 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-smtp.exe 2014-08-07 18:40:22 7EE39B660630A88B37CC5C8CD3535055 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-customize.exe 2014-08-07 18:40:22 7DF8684753EF497C03532AAE0DDD118F 24576 ----a-r- C:\Program Files (x86)\Calibre2\ebook-meta.exe 2014-08-07 18:40:22 629EFAAE54BD975FCF6640EB6A38391F 75776 ----a-r- C:\Program Files (x86)\Calibre2\ebook-viewer.exe 2014-08-07 18:40:22 54021764F7CB6632F6F822FCEC543CF9 24576 ----a-r- C:\Program Files (x86)\Calibre2\fetch-ebook-metadata.exe 2014-08-07 18:40:22 3EE68DB0A11FC569EB9E623EE2313615 75776 ----a-r- C:\Program Files (x86)\Calibre2\ebook-edit.exe 2014-08-07 18:40:22 334677DB1F24BD616CB03C9ACF388AA3 28160 ----a-r- C:\Program Files (x86)\Calibre2\calibre-eject.exe 2014-08-07 18:40:22 276AA9EC4DEE8D0F322806F9F8C20663 172032 ----a-r- C:\Program Files (x86)\Calibre2\calibre.exe 2014-08-07 18:40:22 1F4D1BB9B2BE1D470EA8AC9C657BE62A 24576 ----a-r- C:\Program Files (x86)\Calibre2\calibre-debug.exe 2014-08-07 18:40:22 143E83EFE0FC30219BB23355D78ADE21 24576 ----a-r- C:\Program Files (x86)\Calibre2\ebook-device.exe 2014-08-07 11:34:22 798610F0CC4208089886EEDCC5951D96 9521280 ----a-w- C:\Users\Wies\Downloads\tweaking.com_windows_repair_aio_setup.exe 2014-08-06 20:32:18 EEB46C7333A3DEA27B95DB460240B1D6 5413400 ----a-w- C:\Windows\Temp\ri_{9B699502-F8EC-419B-B555-9BC5402A4300}.exe 2014-08-06 20:29:58 E4C1EFC479F2EEFD6DFEC7D73C9E4167 7128184 ----a-w- C:\Program Files (x86)\AVG\AVG2014\Notification\Launcher.exe 2014-08-06 18:15:47 2294324CC84BA6D4CE08355580723189 17312072 ----a-w- C:\Users\Wies\Downloads\picasa39-setup.exe 2014-08-06 18:04:30 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Users\Wies\Downloads\MicrosoftFixit.Skype.RNP.133074986258355.1.1.Run.exe 2014-08-06 17:55:46 82901D6179D63704B923B2CE1E8887C7 1677928 ----a-w- C:\Users\Wies\Downloads\SkypeSetup.exe 2014-08-06 16:50:00 9909F37A0AC6D4C7B0307D9CCCB89A9E 22752 ----a-w- C:\Windows\System32\PCloudBroom64.exe 2014-08-06 14:56:17 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\SysWOW64\explorer.exe 2014-08-06 14:56:17 332FEAB1435662FC6C672E25BEB37BE3 2871808 ----a-w- C:\Windows\explorer.exe 2014-08-06 14:56:06 B4834F08230A2EB7F498DE4E5B6AB814 74240 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2014-08-06 14:56:06 6804A0B4AAF1F65277FB8A58DE40EABC 96768 ----a-w- C:\Windows\System32\fsutil.exe 2014-08-06 14:55:56 52012C83F7E9AF65D13F04415F0508F5 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-08-06 14:55:54 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\System32\spoolsv.exe 2014-08-06 14:55:54 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe 2014-08-06 13:44:39 24408287F4734217CF99F37FDC70EBCC 16472 ----a-w- C:\Windows\System32\spool\drivers\x64\3\CNMSE78.EXE 2014-08-06 12:27:34 882E035D2AA363DB3763D3841A68A706 1541624 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Updater.exe 2014-08-06 12:27:32 DF33EF729EA7B8CC559A279ECF12C67B 1624056 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe 2014-08-06 12:27:32 B7062C4E93CEDC09761E30FD13254012 20530680 ----a-w- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe 2014-08-06 12:12:23 5CA3B9DB1F03E19C4EAD46A7322D1D3F 39749712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\36.0.1985.125\36.0.1985.125_chrome_installer.exe === C: other files == 2014-08-13 09:13:20 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Wies\AppData\Local\Temp\_MEI40882\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-08-10 12:33:14 53358D850F8D85B5AF7FABB67882EEF0 1129037 ----a-w- C:\Users\Wies\AppData\Roaming\Dropbox\bin\xui_resources.zip 2014-08-09 13:03:23 FC6C053AD70A3F506EA1B0DEB5874E93 83328 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\i386\ssbcbus.sys 2014-08-09 13:03:23 C8D73F27D07C5127B2F52AC305B07065 109696 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\i386\ssbcmdm.sys 2014-08-09 13:03:23 6FA66E5C86EC0A1BFEC558EE60590080 14848 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\i386\ssbcmdfl.sys 2014-08-09 13:03:23 4CBAB95C490E3E4DDFB3747AC98AB30C 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\i386\ssbcwhnt.sys 2014-08-09 13:03:23 0B59E7AECDA9EB115FAAD5208A840424 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\6\i386\ssbccmnt.sys 2014-08-09 12:47:31 D91DAB0FBC823077DC8755F224FCEB23 109696 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdmdm.sys 2014-08-09 12:47:31 9041195AC54409C3A04FB37FD613CDBB 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdwhnt.sys 2014-08-09 12:47:31 8CF55F44E2DBDA0D9A7635CB40900AA3 103808 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdmgmt.sys 2014-08-09 12:47:31 79036AE27F04F1626B77856AF62C18B4 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdcmnt.sys 2014-08-09 12:47:31 761D9EFFDAEECBBC162914A884072F8B 14848 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdmdfl.sys 2014-08-09 12:47:31 72A792F3972391CA453E94E42F7AF1EA 99712 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdobex.sys 2014-08-09 12:47:31 6FBE51E23726EAE21B222FE4F3629F7F 83456 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\5\i386\sssdbus.sys 2014-08-09 12:44:23 B4255635195A8413FCDE7AF5B7C4E382 114304 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdmdm.sys 2014-08-09 12:44:23 9F4F0602660E6F889EDBF3595863520C 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdcmnt.sys 2014-08-09 12:44:23 77A2869D40CC84AF711C321F9B0C7A78 14976 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdmdfl.sys 2014-08-09 12:44:22 92B69020FC480219683D429DCA068D71 87936 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdbus.sys 2014-08-09 12:44:22 26361CC82B167BE8624E9C634A714E2B 12160 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdwhnt.sys 2014-08-09 12:44:22 0D6DE65F5D4254D432014D9540D2812F 94336 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\3\i386\sscdserd.sys 2014-08-09 12:40:58 918CFD32C7FEB174F356A0A6FAD11F4B 109704 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\i386\ssm_mdm.sys 2014-08-09 12:40:58 79B3761947FFDA77F2EF2225C1A1DFB1 12424 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\i386\ssm_cmnt.sys 2014-08-09 12:40:58 43EE5E9FDA61A5E0EAC4C1DE699E6E4D 15112 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\i386\ssm_mdfl.sys 2014-08-09 12:40:58 14622AE81C72B08691EEDAABC1D4A129 83592 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\i386\ssm_bus.sys 2014-08-09 12:40:58 029711A9A56D300E1DC60EC65121403E 12424 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\2\i386\ssm_whnt.sys 2014-08-09 12:39:47 F0A85580E36A3A85059037D39A9CF079 15112 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\i386\ss_mdfl.sys 2014-08-09 12:39:47 A251AEE642F64B8BC5E2CBFEBB437A1D 12424 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\i386\ss_cmnt.sys 2014-08-09 12:39:47 84C3DBFD1BFA4ADC0A950B3D5506CB00 109704 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\i386\ss_mdm.sys 2014-08-09 12:39:47 5A1D0CA8A5F1E7B4EC50B9D76C001F0E 83592 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\i386\ss_bus.sys 2014-08-09 12:39:47 09104A5FE22B716571E90E11B73A042C 12424 ----a-w- C:\Windows\SysWOW64\Samsung_USB_Drivers\1\i386\ss_whnt.sys 2014-08-09 12:38:53 306521935042FC0A6988D528643619B3 5632 ----a-w- C:\Windows\SysWOW64\drivers\StarOpen.sys 2014-08-08 14:00:47 8E98D21EE06192492A5671A6144D092F 33240 -c--a-w- C:\Windows\System32\DRVSTORE\GEARAspiWD_53DFBC3344EBC2614851E0BF38F60B616DF86778\x64\GEARAspiWDM.sys 2014-08-08 14:00:47 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys 2014-08-07 18:40:26 4910704D58A891FB6CB14D751127B19D 47059328 ----a-r- C:\Program Files (x86)\Calibre2\pylib.zip 2014-08-07 18:27:20 F2141C5DBDB021C8CD117BE6C1F529E9 9816185 ----a-r- C:\Program Files (x86)\Calibre2\resources\localization\locales.zip 2014-08-06 16:26:35 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\System32\drivers\PSKMAD.sys 2014-08-06 15:12:38 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-08-06 15:12:15 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-08-06 15:12:15 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-08-06 15:12:15 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-08-06 14:56:11 738D0E9272F59EB7A1449C3EC118E6C4 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys 2014-08-06 14:56:10 F188B7394D81010767B6DF3178519A37 80384 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS 2014-08-06 14:56:06 DAB0E87525C10052BF65F06152F37E4A 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys 2014-08-06 14:56:06 D4121AE6D0C0E7E13AA221AA57EF2D49 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys 2014-08-06 14:56:06 AAAF44DB3BD0B9D1FB6969B23ECC8366 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys 2014-08-06 14:56:06 540DAF1CEA6094886D72126FD7C33048 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys 2014-08-06 14:56:06 0A92CB65770442ED0DC44834632F66AD 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys 2014-08-06 14:56:05 FED648B01349A3C8395A5169DB5FB7D6 91648 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1036866878-1548828729-1409284516-1000\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_12008C8601E3598ED9351A23162D5121"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "SkyDrive"="C:\Users\Wies\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_12008C8601E3598ED9351A23162D5121"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "SkyDrive"="C:\Users\Wies\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "SmartAudio"="C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Folders ====================== 2014-08-10 12:34:10 1014 ----a-w- C:\Users\Wies\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-08-2014 10:20] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06-08-2014 10:20] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chrome Look ====================== CookiesOK - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\afmkbjoakcacgljcdccofbffloabfbni Twitter for Chrome - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdoinklelehcpndgmcddkkdhibpoglnk Last updated at time on date - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Search by Image by Google - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm Google News - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc Marijan en ich sept. 2013 - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphjjjkfckgkibbhhekpdiodpmpigkpd Facebook for Chrome - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp AdBlock - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom New Tab Redirect Plus - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnpoebddognhfcnfbfjdbgmgadkmmdkj Chrome to Mobile - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\idknbmbdnapjicclomlijcgfpikmndhd Google Wallet - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Docs PDFPowerPoint Viewer by Google - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn Teletekst - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\noblnklnhglbnfomoipgcidnbpdjfbom Background Tab - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic Vertalen.nu - Wies\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooiedhfkmchachmfaehplpcacmdleobg ==== Chromium Startpages ====================== C:\Users\Wies\AppData\Local\Google\Chrome\User Data\Default\Preferences "startup_urls": [ "chrome://apps/", "https://www.google.nl/", "https://www.facebook.com/wiessss" ], ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/webhp?source=search_app&gws_rd=cr&ei=CAd9UqSZGoTD4wTV04G4CA" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/webhp?source=search_app&gws_rd=cr&ei=CAd9UqSZGoTD4wTV04G4CA" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_12008C8601E3598ED9351A23162D5121] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [SkyDrive] "C:\Users\Wies\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = C:\Users\Wies\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Wies\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Wies\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Wies\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=557 folders=144 179184489 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Wies\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Wies\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on wo 13-08-2014 at 14:18:54,52 ======================