Zoek.exe v5.0.0.0 Updated 17-10-2014
Tool run by Acer on za 18-10-2014 at  8:56:06,45.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Acer\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

18-10-2014 08:58:02 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Bench deleted successfully
C:\PROGRA~2\GreatSavie44U deleted successfully
C:\PROGRA~2\Supporter deleted successfully
C:\PROGRA~3\ClassicShell deleted successfully
C:\PROGRA~3\GreatSavie44U deleted successfully
C:\PROGRA~3\Trusted Publisher deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\RadioController\RfBtnHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Users\Acer\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\webinstrNew deleted successfully

==== Deleting Files \ Folders ======================

C:\ProgramData\GreatSavie44U not found
C:\PROGRA~2\LiveSupport deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 deleted
C:\Windows\Reimage.ini deleted
C:\windows\SysNative\drivers\webinstrNew.sys deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
"C:\windows\Installer\35a03.msi" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}.20141015132636" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{45606A90-3363-3A3B-1C15-C40E77F4DAA0}.20141015135025" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{4820778D-AB0D-6D18-C316-52A6A0E1D507}.20141015132155" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}.20141015132215" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{C87834EB-A2A0-B9D4-AA9A-C263D1191051}.20141015132127" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{C87834EB-A2A0-B9D4-AA9A-C263D1191051}.20141015132620" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{C87834EB-A2A0-B9D4-AA9A-C263D1191051}.20141015132621" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{C87834EB-A2A0-B9D4-AA9A-C263D1191051}.20141015132636" deleted
"C:\PROGRA~3\19e16dd9708fc52a\{F04D4328-4631-1CBE-1907-201B33FAF2E8}.20141006200023" deleted
"C:\PROGRA~3\boost_interprocess\Nobu64AgentService" deleted
"C:\PROGRA~3\boost_interprocess\Nobu64TrayIcon" deleted
"C:\PROGRA~3\19e16dd9708fc52a" deleted
"C:\PROGRA~3\boost_interprocess" not deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8082 MB
CPU Info: Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz
CPU Speed: 2098,3 MHz
Sound Card: Speakers (Realtek High Definiti | 
Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | NVIDIA GeForce 710M
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR5BWB222 Wireless Network Adapter | Broadcom NetLink (TM) Gigabit Ethernet
CD / DVD Drives: 1x (D: | ) D: MATSHITADVD-RAM UJ8E1
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  679,2GB
Hard Disks - Free: C:  624,3GB
Manufacturer *: Insyde Corp.
BIOS Info: AT/AT COMPATIBLE |  | ACRSYS - 1
Time Zone: West-Europa (standaardtijd)
Motherboard *: Acer VA50_HC_CR
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: Spybot - Search and Destroy disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Internet Explorer Version: 10.0.9200.17088 

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-10-17 17:55:51	357CEBBCD99C8928A2D1A61A6CACC168	43152	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\Acer\AppData\Local\Temp ====
2014-10-06 18:48:24	3CE340286C3E17AE5CE7B172B848F1F4	12745272	----a-w-	C:\Users\Acer\AppData\Local\Temp\ReimagePackage.exe
2014-10-06 18:00:38	B0A08E9AF223ACD688C513E0F18AEC12	100864	----a-w-	C:\Users\Acer\AppData\Local\Temp\jdHg7.exe
2014-10-06 18:00:38	2C3046B24228EC994E8217968D7063D7	88576	----a-w-	C:\Users\Acer\AppData\Local\Temp\jdHg7.dll
2014-10-06 17:59:12	8B89890B917D8DFDBD63B43F732C7EC0	488448	----a-w-	C:\Users\Acer\AppData\Local\Temp\TDIR5432D870\Newtonsoft.Json.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-10-18 06:41:32	3E62CF18441A03A440B280182E4B6935	129872	----a-w-	C:\Windows\SysWOW64\MSSTDFMT.DLL
2014-10-18 06:41:32	03B0224FD1E2D8A6DBC2B18404092F21	1070352	----a-w-	C:\Windows\SysWOW64\MSCOMCTL.OCX
2014-10-17 21:54:16	5EA6E0ED314024E4EC47BFC387B29D7B	8858112	----a-w-	C:\Windows\SysWOW64\twinui.dll
2014-10-17 21:54:13	8A05EDB3B6FFF8FFE667095F75095E98	2416128	----a-w-	C:\Windows\SysWOW64\msi.dll
2014-10-17 21:54:13	1122B660FD27AB3BC94534B5EA98259C	754176	----a-w-	C:\Windows\SysWOW64\actxprxy.dll
2014-10-17 21:54:12	50C9B7528610F9F24DA4681BF44C5878	2037760	----a-w-	C:\Windows\SysWOW64\authui.dll
2014-10-17 17:46:26	CA78D7941C6994D98108965CBC940E6F	104904	----a-w-	C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-17 17:46:26	94ED8078A03DC30813EF987114B2DCB8	705480	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-09 18:48:12	0E00BF034EEFEAFF10956356FD543E03	73728	----a-w-	C:\Windows\SysWOW64\tasks.dll
2014-10-07 13:26:46	F40C36251E7A9A7D6383BE8E1A95B078	80384	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-10-07 13:26:46	CC0063D95273352BD705EC5C80025051	163840	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-10-07 13:26:46	B9F7F2B330169FFEB0D329A4F6E76501	357888	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-10-07 13:26:46	ADE7AE4478D5B2095FDE6FAB86B300E6	2706432	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-10-07 13:26:46	534B5BDEE61B520A22F6AD4F066F8269	226816	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-10-07 13:26:45	BFDD0C5F3E435596F197F003609989C4	61440	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-10-07 13:26:45	31DDFFF9F1CCDB8DD48F3E3460B1239C	493056	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-10-07 13:26:44	A7CFDA703AF9AD409DAA521487E0CB53	109056	----a-w-	C:\Windows\SysWOW64\iesysprep.dll
2014-10-07 13:26:44	8EB3BD66E05EAB7E99CD352ACD91903A	1180672	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-10-07 13:26:44	74635CFC1656ACEA197A139ABFBEBA45	690688	----a-w-	C:\Windows\SysWOW64\jscript.dll
2014-10-07 13:26:44	3FA7F736B877B46EDF1EE6BE6051848D	33280	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-10-07 13:26:43	FA15B8EC5D74FCBEAD5D400D95DD67B3	44032	----a-w-	C:\Windows\SysWOW64\UXInit.dll
2014-10-07 13:26:43	EAFDC2376C32B259065971D3B7BBC05F	2055168	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-10-07 13:26:43	31FC369D8E673721FBC401B80634D918	2861568	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-10-07 13:26:42	2CD665EF1353721341B789B78E25B3AC	534528	----a-w-	C:\Windows\SysWOW64\uxtheme.dll
2014-10-07 13:26:41	FC5BDA82D16ABE0CDB2DB33E38536F5B	1440768	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-10-07 13:26:41	87B775A458A73BB7381E5B67B5652496	39424	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-10-07 13:26:41	848D5BAADDDCAE6DA07CCB131FC55743	226816	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-10-07 13:26:41	7D9284D509F8D17EEADE8A486BB3FC19	1766400	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-10-07 13:26:40	61BF3B1CAF1FDB947448EF6CB77E3EB6	13757440	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-10-07 13:26:28	9004D71AD5841653CC67F48B7428EC7D	14369280	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-10-07 13:22:39	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2014-10-07 12:53:05	5F96687B87B35AB996FE125DC0288544	1711616	----a-w-	C:\Windows\SysWOW64\d3d11.dll
2014-10-07 12:52:59	BB494AA9267EBD12DEC13025C2CE9359	375808	----a-w-	C:\Windows\SysWOW64\ReAgent.dll
2014-10-07 12:52:59	09246837DE0FB0AB51EF2CE4B17BDE83	368640	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
2014-10-07 12:52:57	77A8C35CA0804AF869180CA598F8D26D	2382336	----a-w-	C:\Windows\SysWOW64\esent.dll
2014-10-07 12:52:28	7DFD71542F9A7E819DDD241918EFDEEC	1408976	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2014-10-07 12:52:28	319959AB944F14C9D0AB38A7112F0E89	143872	----a-w-	C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-10-07 12:52:28	1FBAD711A0CB737E52EA9C129FE8AB57	566784	----a-w-	C:\Windows\SysWOW64\WSShared.dll
2014-10-07 12:52:28	1E19A295164B72CF06EE70D9DE5C48E1	106496	----a-w-	C:\Windows\SysWOW64\Robocopy.exe
2014-10-07 12:51:51	D8FED3E93970890FC25C5D378E6A5BD6	893952	----a-w-	C:\Windows\SysWOW64\msctf.dll
2014-10-07 12:51:50	E2C9A11BC849BC39384A8C430F17B63C	158208	----a-w-	C:\Windows\SysWOW64\mbsmsapi.dll
2014-10-07 12:51:50	7F8D446C49D3052CD364C01477BCE5ED	100864	----a-w-	C:\Windows\SysWOW64\SettingSyncInfo.dll
2014-10-07 12:51:50	7DD1611953A4CB01F9E3287E86629172	356352	----a-w-	C:\Windows\SysWOW64\SettingSync.dll
2014-10-07 12:51:50	42946DF60DA82E1350AB6D636AE19B3D	199168	----a-w-	C:\Windows\SysWOW64\shdocvw.dll
2014-10-07 12:51:40	BB9B1E4AD29328FAFCA5A9AD05BC9554	1245696	----a-w-	C:\Windows\SysWOW64\wdc.dll
2014-10-07 12:51:39	831EB87A22B5011908334B8481289948	437248	----a-w-	C:\Windows\SysWOW64\wvc.dll
2014-10-07 12:51:39	2A4C4B4921AD0DE90D4DFCD6E4CF8B84	399360	----a-w-	C:\Windows\SysWOW64\sysmon.ocx
2014-10-07 12:51:08	0AC4D04D2D127CAE2BE09FBA48D19639	2273792	----a-w-	C:\Windows\SysWOW64\msftedit.dll
2014-10-07 12:51:07	4F2214EB1269A6B906E2402883E0A658	551424	----a-w-	C:\Windows\SysWOW64\oleaut32.dll
2014-10-07 12:51:06	DF790AE26A476DAA05210BA571B45AAC	160256	----a-w-	C:\Windows\SysWOW64\winmmbase.dll
2014-10-07 12:51:06	3631AE3089DE4FAA50D3BD62E370299E	385768	----a-w-	C:\Windows\SysWOW64\WerFault.exe
2014-10-07 12:51:06	34076BB22B3975BDA4D98E1A0F03F199	268800	----a-w-	C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-10-07 12:51:06	0E38A984BE8C1F4A095B4A4E8BA1EB23	125440	----a-w-	C:\Windows\SysWOW64\winmm.dll
2014-10-07 12:51:04	A179B0FB8241BC7FEF62E0AA5F315F9B	702464	----a-w-	C:\Windows\SysWOW64\nshwfp.dll
2014-10-07 12:51:04	68451FE440B77BD6447E8AF1D21FD62B	245760	----a-w-	C:\Windows\SysWOW64\LocationApi.dll
2014-10-07 12:51:04	499403FAB514EF7C468F1E9157F8F7BA	67072	----a-w-	C:\Windows\SysWOW64\openfiles.exe
2014-10-07 12:51:04	1C51CD68DB8C774E4C69CD628CFC4C80	245248	----a-w-	C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-10-07 12:51:04	1342E8DE249F4049536F38F8D473CE26	154112	----a-w-	C:\Windows\SysWOW64\WinSCard.dll
2014-10-07 12:50:51	2B529B7B7109BE07A9156B198F812E21	17560576	----a-w-	C:\Windows\SysWOW64\shell32.dll
2014-10-07 12:50:28	AC52DA0DC81956307CB8E13B5A0A390E	86016	----a-w-	C:\Windows\SysWOW64\davclnt.dll
2014-10-07 12:50:28	6A10586D2456BBE6E1F7DBAABB2C5F28	550400	----a-w-	C:\Windows\SysWOW64\FirewallAPI.dll
2014-10-07 12:50:28	07577AD2DA7D82B8A077DA4C1981DB9B	199168	----a-w-	C:\Windows\SysWOW64\WebClnt.dll
2014-10-07 12:49:24	985A570128DAEB86F77DE843028BDC9C	974848	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2014-10-07 12:49:24	352190626162123D949303CE208B3E5A	1075200	----a-w-	C:\Windows\SysWOW64\gpedit.dll
2014-10-07 12:38:00	7E25073A2E14B0628F9325859F8D7D48	1339392	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2014-10-07 11:17:35	688C938523639C1A96A66B3832B7E74F	2048	----a-w-	C:\Windows\SysWOW64\tzres.dll
2014-10-07 11:17:07	06C5E22E47C68A204CAA7206ECD6E58B	11878912	----a-w-	C:\Windows\SysWOW64\wmp.dll
2014-10-07 11:17:06	18152CAB34DF83B2B16A7FC0BFE80AAB	2767360	----a-w-	C:\Windows\SysWOW64\tquery.dll
2014-10-07 11:17:04	4B6BCFDA47A2E55C326494F12452D36B	1593344	----a-w-	C:\Windows\SysWOW64\mssrch.dll
2014-10-07 11:17:02	9398353A04C00C3B9B7A9A45DF3C13A9	1113600	----a-w-	C:\Windows\SysWOW64\MSAudDecMFT.dll
2014-10-07 11:17:00	58ABD60925CE849CEAEBAC105E74BE5A	426024	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2014-10-07 11:17:00	4DD38C9F28B9A0D8B1635580E8DF7D86	302592	----a-w-	C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-10-07 11:17:00	49CDF50EDBC11418B1A33959A99961EA	403968	----a-w-	C:\Windows\SysWOW64\mssph.dll
2014-10-07 11:16:59	434D27871C24D123038BCE8507010276	252928	----a-w-	C:\Windows\SysWOW64\rsaenh.dll
2014-10-07 11:16:59	1F2C7F52F7A53751ED38287EF90942C8	324368	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2014-10-07 11:16:59	031397F2F9B2445CD901C8694E4012FD	670208	----a-w-	C:\Windows\SysWOW64\SearchIndexer.exe
2014-10-07 11:16:56	D54A923CB6EEA45576380C197A480142	411136	----a-w-	C:\Windows\SysWOW64\Windows.Networking.dll
2014-10-07 11:16:55	98AE6E68249F47584EB5353D2E371AF4	361984	----a-w-	C:\Windows\SysWOW64\MFMediaEngine.dll
2014-10-07 11:16:55	701B9B1100E251A9125BD72307ABACFF	659456	----a-w-	C:\Windows\SysWOW64\mssvp.dll
2014-10-07 11:16:54	BB208BC1082B114AFBBE6CCBE42AA6CA	171008	----a-w-	C:\Windows\SysWOW64\SearchFilterHost.exe
2014-10-07 11:16:54	973490D8FA14A14C6307BC4F672178DB	123880	----a-w-	C:\Windows\SysWOW64\wscapi.dll
2014-10-07 11:16:53	FAF5D49C4AB753F034CBB11EC4FA2A03	155136	----a-w-	C:\Windows\SysWOW64\XpsRasterService.dll
2014-10-07 11:16:53	450DBA20B14DA7F827C71F880483B859	155648	----a-w-	C:\Windows\SysWOW64\dmvdsitf.dll
2014-10-07 11:16:52	EE6CD55E45FB9022B90C12B760A32876	186880	----a-w-	C:\Windows\SysWOW64\mssphtb.dll
2014-10-07 11:16:52	CE3EE84318F36CEFFE8B35F97BFA2804	214528	----a-w-	C:\Windows\SysWOW64\mfreadwrite.dll
2014-10-07 11:16:52	492EDFADEFB48CCAE6D848BC484E9630	41984	----a-w-	C:\Windows\SysWOW64\fmifs.dll
2014-10-07 11:16:52	2616F018CF3BB7D8CEE0C00EE5730898	364544	----a-w-	C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-10-07 11:16:51	CF3FE167858C4DC3E853AFCC43AB4B7F	35328	----a-w-	C:\Windows\SysWOW64\mssprxy.dll
2014-10-07 11:16:51	48C690A3F2106A23B261442E08992E08	10752	----a-w-	C:\Windows\SysWOW64\msshooks.dll
2014-10-07 11:15:57	54574CAD4D52690EA31BB5BE4DF00608	850944	----a-w-	C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-10-07 11:15:56	1A242673EFA49EC8C16AA691DC027E6F	5091840	----a-w-	C:\Windows\SysWOW64\mstscax.dll
2014-10-07 11:15:55	2072CE914C627A37E8CC8592E68A8851	357888	----a-w-	C:\Windows\SysWOW64\netcfgx.dll
2014-10-07 11:15:54	9DEE93BEA6D719FCA849B7ABFCCE5621	601088	----a-w-	C:\Windows\SysWOW64\Windows.Globalization.dll
2014-10-07 11:15:54	9C4CD6ADB8FB30BAA1B642FFFD04E194	893952	----a-w-	C:\Windows\SysWOW64\winmde.dll
2014-10-07 11:15:53	0BF4D74962263306006C82DFBB114554	550912	----a-w-	C:\Windows\SysWOW64\drvstore.dll
2014-10-07 11:15:50	67A05BE41C37A3BF140377C0CEFFC309	145408	----a-w-	C:\Windows\SysWOW64\powercfg.cpl
2014-10-07 11:15:49	73DC5278EE0A0F01750A0DEF17FE7EFD	36352	----a-w-	C:\Windows\SysWOW64\DevDispItemProvider.dll
2014-10-07 11:13:06	4C48253C6A21CCEBA071B58A5CDF17C1	875688	----a-w-	C:\Windows\SysWOW64\msvcr120_clr0400.dll
2014-10-07 11:12:44	8F5EB145F14A727611E5EA71154F8CB6	10788864	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-10-07 11:12:37	5F27960598F19E9509289DCAA6F6BA84	309760	----a-w-	C:\Windows\SysWOW64\BCP47Langs.dll
2014-10-07 11:12:37	393C22E7945CB7EC7951978F2B304251	247296	----a-w-	C:\Windows\SysWOW64\ubpm.dll
2014-10-07 11:12:36	D273CCF1F17F43A7E26DEEDC4C329287	151040	----a-w-	C:\Windows\SysWOW64\netplwiz.dll
2014-10-07 11:12:36	A5189CC0316DDCD935F360E26904ECA9	14848	----a-w-	C:\Windows\SysWOW64\rars.rs
2014-10-07 11:12:35	EBD3510794753FC266A556EF6ECBFBFD	411136	----a-w-	C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-10-07 11:12:35	E2A0A49905CC14690B3433F7019BCBDC	389632	----a-w-	C:\Windows\SysWOW64\intl.cpl
2014-10-07 11:12:35	D83276FC6EA62F04E57E3EFC48017167	92160	----a-w-	C:\Windows\SysWOW64\biwinrt.dll
2014-10-07 11:12:35	82E03C39A0CA7B3803C46DB54BA30F88	303616	----a-w-	C:\Windows\SysWOW64\stobject.dll
2014-10-07 11:12:35	4811BEA676D8355C158246D1F9B7A4F2	115712	----a-w-	C:\Windows\SysWOW64\netprofm.dll
2014-10-07 11:12:35	10B7F2AFB7E77E5AF276B1E2CE51A13B	449536	----a-w-	C:\Windows\SysWOW64\DevicePairing.dll
2014-10-07 11:12:35	0A52F0EF8C82A1FB42894B3EB88823E9	758784	----a-w-	C:\Windows\SysWOW64\Magnify.exe
2014-10-07 11:12:34	E404E1649DC1CCDEEAD46C4B5F2E07DA	14336	----a-w-	C:\Windows\SysWOW64\muifontsetup.dll
2014-10-07 11:12:34	924601E7E477B3DB2E260EF5CA1CA5AE	15872	----a-w-	C:\Windows\SysWOW64\nlmproxy.dll
2014-10-07 11:12:34	67E95205605338E5FA107724AC2B281F	12288	----a-w-	C:\Windows\SysWOW64\nlmsprep.dll
2014-10-07 11:12:34	3A57A288F098188E92C6B0309CBC50B2	18432	----a-w-	C:\Windows\SysWOW64\npmproxy.dll
2014-10-07 11:12:27	7B7C5753CB4B555C9BC4ADCEE344B811	482816	----a-w-	C:\Windows\SysWOW64\untfs.dll
2014-10-07 11:12:27	61ADD65C9D1E2EAF8BB080A4D6AAB055	793088	----a-w-	C:\Windows\SysWOW64\autochk.exe
2014-10-07 11:03:09	A2476B7D165AFB10A8FA4E335DEC9E88	2620928	----a-w-	C:\Windows\SysWOW64\WMVDECOD.DLL
2014-10-07 11:03:03	C7E96470AD5552C67092B073B667121B	3288576	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2014-10-07 11:03:02	CB0AD586EA7C13AEF616848B64C5CC53	2032640	----a-w-	C:\Windows\SysWOW64\d3d10warp.dll
2014-10-07 10:59:29	FF5ACC9AA26A3FBDC2ECFDA51A735960	567808	----a-w-	C:\Windows\SysWOW64\duser.dll
2014-10-07 10:59:26	E2CA40BC789F2DCEC08C25CDF3D7705D	370688	----a-w-	C:\Windows\SysWOW64\WWanAPI.dll
2014-10-07 10:59:26	BA4A9A39B776E0765505094FF231FC48	410624	----a-w-	C:\Windows\SysWOW64\wlroamextension.dll
2014-10-07 10:59:26	47596B119D4FD13BF457B0E3C36F0FF5	197632	----a-w-	C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2014-10-07 10:59:25	622266A0B510A4826EA23BD153905ABA	80896	----a-w-	C:\Windows\SysWOW64\tasklist.exe
2014-10-07 10:59:25	473201A0FFA27C9B174D97A05D1AF791	79360	----a-w-	C:\Windows\SysWOW64\taskkill.exe
2014-10-07 10:59:24	DA74DB6E019D7B27C7EA25155EE6DE34	55296	----a-w-	C:\Windows\SysWOW64\nlaapi.dll
2014-10-07 10:59:12	F7A43B51E2C1D7C332FB17D0A804AF60	261120	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2014-10-07 10:59:12	AA4D1D67CFC5C9BC17163FA619A070FA	74240	----a-w-	C:\Windows\SysWOW64\apprepsync.dll
2014-10-07 10:59:12	3674D14E4B7D4700BFF7D06DC608334E	87040	----a-w-	C:\Windows\SysWOW64\apprepapi.dll
2014-10-07 10:58:49	57F794FDACC45FABCEFE7C941EF8413F	35328	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2014-10-07 10:58:49	27E18DC09423730863241E3F207A36C4	300032	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2014-10-07 10:58:18	4B38E4C990EF80D03BEF9586F273C149	1437184	----a-w-	C:\Windows\SysWOW64\GdiPlus.dll
2014-10-07 10:57:33	6C034D54DA0E13EEE5AE1A014964C209	25088	----a-w-	C:\Windows\SysWOW64\cryptdlg.dll
2014-10-07 10:57:09	FC925BF83D0EA5E0E524F86E310D64F4	451072	----a-w-	C:\Windows\SysWOW64\msdrm.dll
2014-10-06 19:56:15	7C57257903BBE73B2DBBC6E7104EB867	694272	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2014-10-06 19:49:35	115DAE15480BA4FA00D11096EDA01A26	132608	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2014-10-06 19:42:21	E7CCBE84264E073BB307839E01A33BF7	273408	----a-w-	C:\Windows\SysWOW64\msieftp.dll
2014-10-06 19:02:49	3213F234B8FC8D0869D50B98884EB5F4	1421312	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2014-10-06 19:02:28	80E99EF897E98BFF0C1579FC9024F724	102608	----a-w-	C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-06 19:02:21	A50E9F5111BFB5451750F1A66DFC088B	109056	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2014-10-06 19:02:21	6498FE5EEE819307EDE2FE17CE849994	1013248	----a-w-	C:\Windows\SysWOW64\certutil.exe
2014-10-06 19:02:10	8EF66E7F4CEE23A30917D27C460CDB8D	1569280	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2014-10-06 19:01:53	6954431724A32132E8961D9BA2708786	115712	----a-w-	C:\Windows\SysWOW64\cscript.exe
2014-10-06 19:01:53	55C7A599269BDC4772E795A1327ECFAA	156160	----a-w-	C:\Windows\SysWOW64\scrrun.dll
2014-10-06 19:01:53	23D0BC752AB7539D9886D4E56BF8F69F	162304	----a-w-	C:\Windows\SysWOW64\scrobj.dll
2014-10-06 19:01:01	F8B1D218C6D90674A2BC0E36AD33B44B	452608	----a-w-	C:\Windows\SysWOW64\SHCore.dll
2014-10-06 19:01:01	7D4DCF88AA0F3C5B9CD9F5DB17A0D224	323072	----a-w-	C:\Windows\SysWOW64\schannel.dll
2014-10-06 19:01:01	79453BAE17B59ECF80D5AAB5AC21E289	666624	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2014-10-06 19:01:00	A7EB6E44E7B850028DE3765A00FFC3E6	668160	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2014-10-06 19:01:00	8BE0E10A872DB03E12E9E7AACB5F1707	559104	----a-w-	C:\Windows\SysWOW64\objsel.dll
2014-10-06 19:01:00	54A7E41968B1014510928096E812D6D8	273920	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2014-10-06 19:00:59	7F14619A35EFD2A6C2676A5DA44DF669	961536	----a-w-	C:\Windows\SysWOW64\usercpl.dll
2014-10-06 19:00:59	1C0AC35405717EC499F5E2B8ADC28E97	178688	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2014-10-06 19:00:58	FE08612815D2A3CE56A9A2EFE54DE876	99840	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2014-10-06 19:00:58	80CAD18595095CE6FAFD7B72354ABB3D	76800	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2014-10-06 19:00:58	6C3F68096889CFD2D1CC68212C736E60	38400	----a-w-	C:\Windows\SysWOW64\dimsroam.dll
2014-10-06 19:00:58	3A19DD75AB1ECF87885ED308DFB5D32B	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2014-10-06 19:00:46	9C464C1D692BADC68A56F103B228B9D9	1023488	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2014-10-06 19:00:41	D50C5638CD3AFF9A2023ABCCF38900DD	1419264	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2014-10-06 18:57:38	FC55D667EDC08B5D4157536A3F6C2641	295424	----a-w-	C:\Windows\SysWOW64\msihnd.dll
2014-10-06 18:57:32	1F3780A663053B4CAF108C3524E8CD40	497152	----a-w-	C:\Windows\SysWOW64\qedit.dll
2014-10-06 18:35:07	BC587C9D241C638A825B4D55BF91BAFA	86528	----a-w-	C:\Windows\SysWOW64\wudriver.dll
2014-10-06 18:34:55	B607284B548E9749B7DFE21F0B0EE376	20992	----a-w-	C:\Windows\SysWOW64\wups.dll
2014-10-06 18:34:46	9C8920D4E47E3591203739E051248E42	629248	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2014-10-06 18:33:34	7285D8DF13AA1F2BBDF8BE0C3FB65AF4	128000	----a-w-	C:\Windows\SysWOW64\wuwebv.dll
2014-10-06 18:33:34	0AA8927C7DAE50EBDBFD9D5523A21020	35328	----a-w-	C:\Windows\SysWOW64\wuapp.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-10-18 06:44:36	4D5D8058F17C873B4F0792678BAA6534	34080	----a-w-	C:\Windows\Sysnative\SmartDefragBootTime.exe
2014-10-18 06:44:01	84E8B979BBBDD23AD84E88FD12236306	128288	----a-w-	C:\Windows\Sysnative\IObitSmartDefragExtension.dll20141018084435.dll
2014-10-18 06:44:01	84E8B979BBBDD23AD84E88FD12236306	128288	----a-w-	C:\Windows\Sysnative\IObitSmartDefragExtension.dll
2014-10-17 21:54:16	9BFDECBDE64A16E2015993DAF2197DF3	10115072	----a-w-	C:\Windows\Sysnative\twinui.dll
2014-10-17 21:54:13	AF6D3CC749D97FDC7E4C6051CA296B7F	2146304	----a-w-	C:\Windows\Sysnative\actxprxy.dll
2014-10-17 21:54:13	2D9FC71B37E93E235969D4DCA6C1FD44	2306560	----a-w-	C:\Windows\Sysnative\authui.dll
2014-10-17 21:54:13	160CB3ED0A8FB7F0147B939AAD03D30A	2885120	----a-w-	C:\Windows\Sysnative\msi.dll
2014-10-17 21:45:13	EFE13CACCBD47864A433C6B7A64DB96A	4068352	----a-w-	C:\Windows\Sysnative\win32k.sys
2014-10-17 21:00:41	82446D358A9FB51CB9DA32A5C901D7A0	21040	----a-w-	C:\Windows\Sysnative\sdnclean64.exe
2014-10-17 19:13:58	CCB021D5DB0210BF721CDF20A83205F1	430288	----a-w-	C:\Windows\Sysnative\FNTCACHE.DAT
2014-10-17 17:52:23	B46B41CE922CE5B7B055A28226DE2D79	307344	----a-w-	C:\Windows\Sysnative\aswBoot.exe
2014-10-07 13:26:47	F827BD7A09F9FCDF76AB2C3E27650E71	2706432	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-10-07 13:26:46	C02F21A525D6EFD6279952F5E5CAB8CD	97280	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-10-07 13:26:46	684B82B5883438ACE8D428D549665B54	281600	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-10-07 13:26:46	152AA0F2789F69A7D665244CC2A41793	451584	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-10-07 13:26:45	95907A15CB78541205D11958E6A7D51E	51712	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-10-07 13:26:45	5B757A80DDF5FE632F521D1D4EACFACC	603136	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-10-07 13:26:45	4D8F4B1C99365E3B7E142A8D514CC85E	855552	----a-w-	C:\Windows\Sysnative\jscript.dll
2014-10-07 13:26:44	A505A804ACAEA2CFDF0F14DDF6F3FB9B	1407488	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-10-07 13:26:44	38BEBBC4CF9FE6566262F0037DF843BF	136704	----a-w-	C:\Windows\Sysnative\iesysprep.dll
2014-10-07 13:26:44	386F89BB57C39CB90A3B94D56DDE0DFA	3959296	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-10-07 13:26:43	AD00E5D3B748150CF1A53A1ABB52E320	53760	----a-w-	C:\Windows\Sysnative\UXInit.dll
2014-10-07 13:26:43	4F996DA81FB5FECF12E9E24D7BF8DD40	2655232	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-10-07 13:26:42	5816BE943591F73A42DCFADC359E903F	915968	----a-w-	C:\Windows\Sysnative\uxtheme.dll
2014-10-07 13:26:41	F4BF33022B2B4C567EB57CB2676F23E8	255488	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-10-07 13:26:41	EC5D850ED17252AD109CCFC8F700247C	2239488	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-10-07 13:26:41	C787EBB250080B0EDA7C5777D645FD26	1508864	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-10-07 13:26:41	194125E7839D4902F2490A70049E8F78	53248	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-10-07 13:26:39	BC21828A9F86B456A0D5CEAD4A8A9733	15399424	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-10-07 13:26:32	6EB8264F0EF4B684AF5F625C4C8D8E7B	19280384	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-10-07 13:22:39	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\Windows\Sysnative\TsWpfWrp.exe
2014-10-07 12:53:05	BEB9FF627ACB97F10D0B65D404D62C7A	2062848	----a-w-	C:\Windows\Sysnative\d3d11.dll
2014-10-07 12:52:59	79CAB096514C381152F4306BC87A7B29	1011200	----a-w-	C:\Windows\Sysnative\reseteng.dll
2014-10-07 12:52:59	6669946CF2CF5B5299A90B22C9189350	420864	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
2014-10-07 12:52:57	56DA495DE9758984ADF855D4EA30D4A9	2851840	----a-w-	C:\Windows\Sysnative\esent.dll
2014-10-07 12:52:32	9D87936649E3C7A4B319E6EE87D4280D	6974808	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2014-10-07 12:52:30	079051626A554ED91B75F5CEBF99AEF5	1824808	----a-w-	C:\Windows\Sysnative\ntdll.dll
2014-10-07 12:52:29	FE2BC9B69A0221B3A6C2726DF91127A1	693760	----a-w-	C:\Windows\Sysnative\WSShared.dll
2014-10-07 12:52:29	394B19F39139615C834E50265B544F23	1023488	----a-w-	C:\Windows\Sysnative\localspl.dll
2014-10-07 12:52:28	6B746A9668DB35E67518B658D4092FCB	126464	----a-w-	C:\Windows\Sysnative\Robocopy.exe
2014-10-07 12:52:28	00DC7D597DAA2740100B18BDD8CA8B7E	198656	----a-w-	C:\Windows\Sysnative\Windows.ApplicationModel.Store.dll
2014-10-07 12:51:52	F85D33830D2655FB2916667579D45725	1125888	----a-w-	C:\Windows\Sysnative\msctf.dll
2014-10-07 12:51:51	5690B3793FD93716EF4C5CE71D9FF156	448512	----a-w-	C:\Windows\Sysnative\SettingSync.dll
2014-10-07 12:51:50	DFB8703836AF863A25FC55BF88176591	222208	----a-w-	C:\Windows\Sysnative\shdocvw.dll
2014-10-07 12:51:50	755059FD6A758EA4413B58A1B423E7D1	128512	----a-w-	C:\Windows\Sysnative\SettingSyncInfo.dll
2014-10-07 12:51:50	60CF5B27BBEF38F11729B847541E33A3	225280	----a-w-	C:\Windows\Sysnative\mbsmsapi.dll
2014-10-07 12:51:43	4B916278E1487A5CD5F8F9A521980026	385614	----a-w-	C:\Windows\Sysnative\ApnDatabase.xml
2014-10-07 12:51:40	CA45D615BA0102CEDE9C25F4C6EE0983	1374208	----a-w-	C:\Windows\Sysnative\wdc.dll
2014-10-07 12:51:40	20E76634DE7792397261A8AC442B9ACB	566784	----a-w-	C:\Windows\Sysnative\wvc.dll
2014-10-07 12:51:39	EEB55974CFE4DB0B4FC840E6101090B8	462336	----a-w-	C:\Windows\Sysnative\sysmon.ocx
2014-10-07 12:51:07	97D3B79F36CBD8B70F0D9BA6939D2462	391168	----a-w-	C:\Windows\Sysnative\Windows.Networking.BackgroundTransfer.dll
2014-10-07 12:51:07	7A102E79DD8F1032BCB76064E2E50C4A	778752	----a-w-	C:\Windows\Sysnative\oleaut32.dll
2014-10-07 12:51:07	73133A0C0CA63817BFF2CB9DE65B64E7	723968	----a-w-	C:\Windows\Sysnative\BFE.DLL
2014-10-07 12:51:07	58B7BEACEB8B19A9698FE85B76C88ED9	381952	----a-w-	C:\Windows\Sysnative\FWPUCLNT.DLL
2014-10-07 12:51:07	560A9357766AB0CDF38143EA3A66DA64	2839552	----a-w-	C:\Windows\Sysnative\msftedit.dll
2014-10-07 12:51:07	3884117CE4FEC35E4A1A7A62918B1F34	1156096	----a-w-	C:\Windows\Sysnative\IKEEXT.DLL
2014-10-07 12:51:06	C89FAB42CD5FD672506031D941529A74	439488	----a-w-	C:\Windows\Sysnative\WerFault.exe
2014-10-07 12:51:06	AF1349386D4C6786EF4E34FACEF15042	263680	----a-w-	C:\Windows\Sysnative\wcmsvc.dll
2014-10-07 12:51:06	8E5271A1AC463276023B39BC846F299C	230912	----a-w-	C:\Windows\Sysnative\WinSCard.dll
2014-10-07 12:51:06	827AE73CD7CB3A8292A50EF39169071F	115712	----a-w-	C:\Windows\Sysnative\winmm.dll
2014-10-07 12:51:06	6D9E07436B6646EC8F7EFFD39B6BA288	447488	----a-w-	C:\Windows\Sysnative\wwansvc.dll
2014-10-07 12:51:06	12DE753B04FE08427BC4BA3133BFB1DB	414208	----a-w-	C:\Windows\Sysnative\wwanconn.dll
2014-10-07 12:51:06	0ABF97013CA7400213DCBDC7B499AF85	183808	----a-w-	C:\Windows\Sysnative\winmmbase.dll
2014-10-07 12:51:05	FF2E7B5DEF4C46870E8D00B80BBDB1DC	370688	----a-w-	C:\Windows\Sysnative\Wwanadvui.dll
2014-10-07 12:51:05	8C7D71CE2F03E8CD6F1045D9275E6E1D	74240	----a-w-	C:\Windows\Sysnative\wcmcsp.dll
2014-10-07 12:51:04	DB5C9AD31E50EDC86C6072EDE1E89692	312832	----a-w-	C:\Windows\Sysnative\LocationApi.dll
2014-10-07 12:51:04	B8BF7450DC17F940DD3B1A853F62724F	888832	----a-w-	C:\Windows\Sysnative\nshwfp.dll
2014-10-07 12:51:04	9A218BB2D3EC7CAAC84351D59204013A	77312	----a-w-	C:\Windows\Sysnative\openfiles.exe
2014-10-07 12:51:04	93BBEFF2825AFD81651EA2D938AAFCCA	543744	----a-w-	C:\Windows\Sysnative\wwanmm.dll
2014-10-07 12:50:53	2AFD6F0E07EDE3E7B31C3EE2DA6C403C	19751936	----a-w-	C:\Windows\Sysnative\shell32.dll
2014-10-07 12:50:28	9DE3341BD4E14BC5FADFCAD3019F2D0D	915968	----a-w-	C:\Windows\Sysnative\MPSSVC.dll
2014-10-07 12:50:28	9B1384CE8E681D2D77BB3524B8E86311	227840	----a-w-	C:\Windows\Sysnative\WebClnt.dll
2014-10-07 12:50:28	353F85DB0B6EB92A77DA1DC2B9DD4FEF	104448	----a-w-	C:\Windows\Sysnative\davclnt.dll
2014-10-07 12:50:28	09DC813EA00294A6F5B2B6C75E2740ED	758784	----a-w-	C:\Windows\Sysnative\FirewallAPI.dll
2014-10-07 12:49:25	AA6FD65C372252A338D8CD0E704D30D7	1120768	----a-w-	C:\Windows\Sysnative\gpedit.dll
2014-10-07 12:49:25	7BDE8F40FF491D8507CE3A6BF4EF0851	1258496	----a-w-	C:\Windows\Sysnative\kernel32.dll
2014-10-07 12:38:00	D27626A720F5A62CC163B82596E96DE9	1628160	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2014-10-07 11:18:36	74BC4D08D027F81CB7A6B96E9FDA97CF	144896	----a-w-	C:\Windows\Sysnative\tssdisai.dll
2014-10-07 11:18:35	5762FD609B0FC53B2DF43178607CF60E	148480	----a-w-	C:\Windows\Sysnative\poqexec.exe
2014-10-07 11:17:35	FDA6525D9018812E4237ED5EEB29F5DA	2048	----a-w-	C:\Windows\Sysnative\tzres.dll
2014-10-07 11:17:08	64C3C2FCFECC783279FBC51769673144	3552768	----a-w-	C:\Windows\Sysnative\tquery.dll
2014-10-07 11:17:08	57EF2DC36D34092F79CD9F7F016359F3	14267904	----a-w-	C:\Windows\Sysnative\wmp.dll
2014-10-07 11:17:07	13FC1A4A3463E9DE1EF1881E8525EB56	2107904	----a-w-	C:\Windows\Sysnative\mssrch.dll
2014-10-07 11:17:03	092115A536C478921DA3D24E29C06E3E	1444864	----a-w-	C:\Windows\Sysnative\MSAudDecMFT.dll
2014-10-07 11:17:02	ED40ED9A65F3E79A8C43DD50C5FDADBF	1285632	----a-w-	C:\Windows\Sysnative\schedsvc.dll
2014-10-07 11:17:02	A7FA87716A1F39BECB5CDED4F03C73F7	306952	----a-w-	C:\Windows\Sysnative\kd_02_10ec.dll
2014-10-07 11:17:01	9FDAA6957F04A6D1917463B7CBBEF88A	816128	----a-w-	C:\Windows\Sysnative\SearchIndexer.exe
2014-10-07 11:17:01	810F30FF8490ED5ED510621DF10DE320	785408	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2014-10-07 11:17:00	A6D52417607B399790678AFB2B44CDF3	172544	----a-w-	C:\Windows\Sysnative\dwmredir.dll
2014-10-07 11:17:00	78DF3884149D09A3E703DDCA91BFFD84	446792	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2014-10-07 11:17:00	77DAB73F2AF988D07D72FD2DA0DC91FC	298456	----a-w-	C:\Windows\Sysnative\rsaenh.dll
2014-10-07 11:17:00	7018F9EEEC3B5427046E6D761715BC54	595456	----a-w-	C:\Windows\Sysnative\Windows.Networking.dll
2014-10-07 11:17:00	6B8EDB9EC94DC2D1370C57564E853051	489576	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2014-10-07 11:17:00	58C0CA86362B32ABC87E39A99013C75A	367616	----a-w-	C:\Windows\Sysnative\conhost.exe
2014-10-07 11:17:00	480FB2259449C49C630D4AC3EC1EB426	373760	----a-w-	C:\Windows\Sysnative\SearchProtocolHost.exe
2014-10-07 11:17:00	38069D6F774EB0B83A9301E5698B52CA	435200	----a-w-	C:\Windows\Sysnative\mssph.dll
2014-10-07 11:17:00	09B2F3A41C6A8BFA22640826F70E9810	253544	----a-w-	C:\Windows\Sysnative\audiodg.exe
2014-10-07 11:16:59	E1B0C213296FF324992BEF0E285BB623	1403784	----a-w-	C:\Windows\Sysnative\winload.efi
2014-10-07 11:16:59	AB279D4734BC508911C004F8D1011973	456704	----a-w-	C:\Windows\Sysnative\wpncore.dll
2014-10-07 11:16:59	205162CCEBA17B54C6A7788C31726E95	804352	----a-w-	C:\Windows\Sysnative\RecoveryDrive.exe
2014-10-07 11:16:58	F2027911CBDC096576F0F1F81C790C1B	468992	----a-w-	C:\Windows\Sysnative\MFMediaEngine.dll
2014-10-07 11:16:58	4E1F42D7616BB19253B99E85EDDA6E8C	1267424	----a-w-	C:\Windows\Sysnative\winload.exe
2014-10-07 11:16:57	46159633AA549E4D2CF6455B056CAB96	523264	----a-w-	C:\Windows\Sysnative\XpsGdiConverter.dll
2014-10-07 11:16:57	22B9D38C6A69591811C10D4D1BF96AFE	1217328	----a-w-	C:\Windows\Sysnative\winresume.efi
2014-10-07 11:16:56	F0CFE7AA1100CDEF41ABA210C5610E85	196096	----a-w-	C:\Windows\Sysnative\dmvdsitf.dll
2014-10-07 11:16:56	B7F4C0DEC76583C128D40579C36D6AA8	1093880	----a-w-	C:\Windows\Sysnative\winresume.exe
2014-10-07 11:16:55	365C6C6BC10201CC1080EB97A559BFC1	503080	----a-w-	C:\Windows\Sysnative\ci.dll
2014-10-07 11:16:55	29BCBB222ED7AE4B7F57AFF19A107BE5	228352	----a-w-	C:\Windows\Sysnative\XpsRasterService.dll
2014-10-07 11:16:55	0B43D0E9E00CB4F98FC62AB2FA5D96F3	231936	----a-w-	C:\Windows\Sysnative\fhengine.dll
2014-10-07 11:16:54	BCD7A47EF587DC00DD61D12D9C2D1E44	169472	----a-w-	C:\Windows\Sysnative\AudioEndpointBuilder.dll
2014-10-07 11:16:54	4C1C6E9BB02654EB38CD6DF4ACE6664B	281088	----a-w-	C:\Windows\Sysnative\mfreadwrite.dll
2014-10-07 11:16:53	E8801AF63EE3DEACA29F1F5526C35F53	86280	----a-w-	C:\Windows\Sysnative\kdnet.dll
2014-10-07 11:16:53	61A9A710077526C9A7F068741540D96E	77960	----a-w-	C:\Windows\Sysnative\kdvm.dll
2014-10-07 11:16:53	5D072A59331A34C9BE621C7A55578562	210432	----a-w-	C:\Windows\Sysnative\iuilp.dll
2014-10-07 11:16:53	3EA778FE9D9B56E67C0783A63C4B142E	197120	----a-w-	C:\Windows\Sysnative\SearchFilterHost.exe
2014-10-07 11:16:52	D2EFA32998014927140E40054645CA4E	414720	----a-w-	C:\Windows\Sysnative\GenuineCenter.dll
2014-10-07 11:16:52	8383D48F0A55703A613C339EF586C6AA	50176	----a-w-	C:\Windows\Sysnative\fmifs.dll
2014-10-07 11:16:52	31CAB21D19D8794854E037DEAABB499C	745984	----a-w-	C:\Windows\Sysnative\mssvp.dll
2014-10-07 11:16:52	012CFE7F0F95266F554EE3B91EE2128A	99840	----a-w-	C:\Windows\Sysnative\wscsvc.dll
2014-10-07 11:16:51	E55A2C4497247F8CA09F1B2AAFAEDD3C	13824	----a-w-	C:\Windows\Sysnative\msshooks.dll
2014-10-07 11:16:51	3C77496ED7DB0D802427689F7E613777	96256	----a-w-	C:\Windows\Sysnative\mssprxy.dll
2014-10-07 11:16:51	0E2D8CE7A7A459256CBD5698F90D100A	65024	----a-w-	C:\Windows\Sysnative\msscntrs.dll
2014-10-07 11:16:03	5DF7FCCCCC71E230883DC30AF3FE0203	1161728	----a-w-	C:\Windows\Sysnative\sppobjs.dll
2014-10-07 11:15:58	0E8924B51839B0CC8AB4B9C456220683	1048576	----a-w-	C:\Windows\Sysnative\mfasfsrcsnk.dll
2014-10-07 11:15:58	01344DD46C95BC2A478B52AF07336F4A	5978624	----a-w-	C:\Windows\Sysnative\mstscax.dll
2014-10-07 11:15:57	110B70302AC6EC29FE013C5BB99BA559	1101824	----a-w-	C:\Windows\Sysnative\wmpmde.dll
2014-10-07 11:15:56	D608E0955BF3623B54CFA1A90FCA59FD	1149952	----a-w-	C:\Windows\Sysnative\winmde.dll
2014-10-07 11:15:55	76E6465F3153FCA20F07928BBA62D7B8	951808	----a-w-	C:\Windows\Sysnative\Windows.Globalization.dll
2014-10-07 11:15:55	6FB88606C4A71E1BFAF97D63A676C673	180224	----a-w-	C:\Windows\Sysnative\SystemEventsBrokerServer.dll
2014-10-07 11:15:54	D3CD3034E2292DBECCD3161DC29D8E07	455168	----a-w-	C:\Windows\Sysnative\netcfgx.dll
2014-10-07 11:15:54	4515B9E4140F04FB3907692DF89FCA87	171008	----a-w-	C:\Windows\Sysnative\TimeBrokerServer.dll
2014-10-07 11:15:54	3013658A4D327854BEEC4A08D9655194	103936	----a-w-	C:\Windows\Sysnative\wpdbusenum.dll
2014-10-07 11:15:53	BE611E28DD9AF75A6B904B55F5D6E6C3	245248	----a-w-	C:\Windows\Sysnative\usbmon.dll
2014-10-07 11:15:53	A6B742C6B8CF9A37E0EF470DF890F74B	703488	----a-w-	C:\Windows\Sysnative\drvstore.dll
2014-10-07 11:15:51	821D79C4602C5BF6C8183630D301638A	150016	----a-w-	C:\Windows\Sysnative\discan.dll
2014-10-07 11:15:50	F5BB165DD4C8B784E06E3F0324150E0F	156160	----a-w-	C:\Windows\Sysnative\powercfg.cpl
2014-10-07 11:15:50	50361572A98348A6E780FFE231B55D49	49152	----a-w-	C:\Windows\Sysnative\DevDispItemProvider.dll
2014-10-07 11:15:50	3A014B98C45AA8C0E4ABF2AB764F9AAC	71168	----a-w-	C:\Windows\Sysnative\WSDPrintProxy.DLL
2014-10-07 11:15:50	25FD6AB608C7CFDEAAC24BA882AC4052	117248	----a-w-	C:\Windows\Sysnative\NdisImPlatform.dll
2014-10-07 11:15:50	1F11A9A178E063B2A04C2903C4346B7F	240640	----a-w-	C:\Windows\Sysnative\fsquirt.exe
2014-10-07 11:13:06	8BB7548307EE6147137993A410D64387	869544	----a-w-	C:\Windows\Sysnative\msvcr120_clr0400.dll
2014-10-07 11:12:46	FAEF235108578BF0F2BBBC8FE27400EE	13644288	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2014-10-07 11:12:41	D4F14AF64DC2DB6FB3FA23DA49B6050E	1131520	----a-w-	C:\Windows\Sysnative\AppXDeploymentServer.dll
2014-10-07 11:12:41	A06CB9269D29EE3D0F3F5630ABB660B8	1332736	----a-w-	C:\Windows\Sysnative\sysmain.dll
2014-10-07 11:12:39	D0C69E44BC1E1D4AD290FD84104623D8	1483776	----a-w-	C:\Windows\Sysnative\VSSVC.exe
2014-10-07 11:12:39	35A4FBBC6D422A873F3F21D1661C7177	328192	----a-w-	C:\Windows\Sysnative\ubpm.dll
2014-10-07 11:12:38	7ACA8A8C9180334B88C402F8FB5FC517	389120	----a-w-	C:\Windows\Sysnative\BCP47Langs.dll
2014-10-07 11:12:37	79FA9393C67EBBF92A56923592CF7A7C	470528	----a-w-	C:\Windows\Sysnative\netprofmsvc.dll
2014-10-07 11:12:37	43B20FC33366C5F867C9F05D03DA651F	151552	----a-w-	C:\Windows\Sysnative\netprofm.dll
2014-10-07 11:12:36	E482BED932FFF4CA65099ED19A760574	330240	----a-w-	C:\Windows\Sysnative\stobject.dll
2014-10-07 11:12:36	D69E38C31AE78522BCC92212863C0193	560640	----a-w-	C:\Windows\Sysnative\mfmp4srcsnk.dll
2014-10-07 11:12:36	BAC4C6E060303F461212DEEAD56C2B62	14848	----a-w-	C:\Windows\Sysnative\rars.rs
2014-10-07 11:12:36	B02E9E96AC9C0F23818FA4B1FDE914BE	708096	----a-w-	C:\Windows\Sysnative\AppXDeploymentExtensions.dll
2014-10-07 11:12:36	956F4E14D161D068F9C42AF1FD286181	169984	----a-w-	C:\Windows\Sysnative\netplwiz.dll
2014-10-07 11:12:36	8018DC4AA69B7B2159B4EBEC9833C67E	93696	----a-w-	C:\Windows\Sysnative\psmsrv.dll
2014-10-07 11:12:36	7D727992D410C8387C45D3148468B28C	812544	----a-w-	C:\Windows\Sysnative\Magnify.exe
2014-10-07 11:12:35	E2D62B60E6E8C3A1902C1F312CB70C53	17408	----a-w-	C:\Windows\Sysnative\muifontsetup.dll
2014-10-07 11:12:35	D566F980C5932F34D226A5476C9BDE5E	419840	----a-w-	C:\Windows\Sysnative\intl.cpl
2014-10-07 11:12:35	BCB4D840095140EC137CD2C57C23615C	122368	----a-w-	C:\Windows\Sysnative\biwinrt.dll
2014-10-07 11:12:35	969A5D1871D5CCBC2D90E7A9F509F962	501760	----a-w-	C:\Windows\Sysnative\DevicePairing.dll
2014-10-07 11:12:35	3426BE7D0ED8888ACFE04BA6BB9AF83B	77824	----a-w-	C:\Windows\Sysnative\taskhost.exe
2014-10-07 11:12:35	3123FDC79AC340B60618B03D3EBE6DD3	120736	----a-w-	C:\Windows\Sysnative\AuthHost.exe
2014-10-07 11:12:35	0899BF12B2142213630D49E645B8A507	72192	----a-w-	C:\Windows\Sysnative\taskhostex.exe
2014-10-07 11:12:35	038FA1B55531E7020DB705B42FCCE373	179712	----a-w-	C:\Windows\Sysnative\bisrv.dll
2014-10-07 11:12:27	E47235E8DF26CA48DA189ACFD756329C	888320	----a-w-	C:\Windows\Sysnative\autochk.exe
2014-10-07 11:12:27	46CC344A94F7C6AAE35724A5CFCB8609	542208	----a-w-	C:\Windows\Sysnative\untfs.dll
2014-10-07 11:11:40	962025110A396E6D7790DA2CD4D8D424	265216	----a-w-	C:\Windows\Sysnative\InkEd.dll
2014-10-07 11:03:09	67AB74C4493C123D1E32F013222DA107	2842112	----a-w-	C:\Windows\Sysnative\WMVDECOD.DLL
2014-10-07 11:03:03	D05FDB359808642231FC244CD06E8E4C	2238976	----a-w-	C:\Windows\Sysnative\d3d10warp.dll
2014-10-07 11:03:03	B9868B46EC3A67EF9B85B9437DB2CB65	3842560	----a-w-	C:\Windows\Sysnative\d2d1.dll
2014-10-07 10:59:29	910C8964A4F5212C50601BE31607A138	543232	----a-w-	C:\Windows\Sysnative\wlroamextension.dll
2014-10-07 10:59:29	0E0A4CDB1258FF435D96BA51AB329B7A	729600	----a-w-	C:\Windows\Sysnative\duser.dll
2014-10-07 10:59:28	6B48734D5856F32A8CACE40CD1AD9B33	385024	----a-w-	C:\Windows\Sysnative\ncsi.dll
2014-10-07 10:59:28	1E833CECF75535A4229363C6EB051576	475136	----a-w-	C:\Windows\Sysnative\WWanAPI.dll
2014-10-07 10:59:28	1BAF176DEB4E51E3304B21E96C92C2EE	293376	----a-w-	C:\Windows\Sysnative\Windows.Networking.Connectivity.dll
2014-10-07 10:59:27	65486CEEC02392414ABBB0840D6C3551	260096	----a-w-	C:\Windows\Sysnative\hotspotauth.dll
2014-10-07 10:59:26	D43C6EBB5CD9373D4E463BCD77A4CCF0	102400	----a-w-	C:\Windows\Sysnative\tasklist.exe
2014-10-07 10:59:26	18EE8CBF1E7138A5D0B826678597B423	107520	----a-w-	C:\Windows\Sysnative\taskkill.exe
2014-10-07 10:59:25	5F70EBFC1F75B487DE79501E3CCBDB54	87552	----a-w-	C:\Windows\Sysnative\wersvc.dll
2014-10-07 10:59:25	4205D34C3332FCE30C2BC88A2F5A6AF4	611840	----a-w-	C:\Windows\Sysnative\wpd_ci.dll
2014-10-07 10:59:12	F68F697F5B4E74217159C38FFFD37964	124416	----a-w-	C:\Windows\Sysnative\apprepapi.dll
2014-10-07 10:59:12	E4E889A9CA3E8CCEE6FB5D1B4F94296F	98304	----a-w-	C:\Windows\Sysnative\apprepsync.dll
2014-10-07 10:59:12	74466D77EE8588C04B95AE9DBC693EF8	337408	----a-w-	C:\Windows\Sysnative\wintrust.dll
2014-10-07 10:59:12	5CE2742F063731EC10C1B2EE386A2C08	68096	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2014-10-07 10:58:49	FD16BDF463EF68ADD48026ACCEA100B8	362496	----a-w-	C:\Windows\Sysnative\atmfd.dll
2014-10-07 10:58:49	469A5DCF1E51DC9AF03CE1B3B4360DEE	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2014-10-07 10:58:18	8542BEA78795403D705A21B83ABD589F	1690624	----a-w-	C:\Windows\Sysnative\GdiPlus.dll
2014-10-07 10:57:31	4ECE7A1D8C2AE082CE7EF1A6C96BAE83	30720	----a-w-	C:\Windows\Sysnative\cryptdlg.dll
2014-10-07 10:57:09	9C6302820FEA434728A14B2E356A600A	583680	----a-w-	C:\Windows\Sysnative\msdrm.dll
2014-10-07 07:54:07	F669DAB1142D80DEED3D05687A1D99C4	103265616	----a-w-	C:\Windows\Sysnative\MRT.exe
2014-10-06 19:56:15	F39B36FC340ED4F322E0FB41FC7307BA	1312768	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2014-10-06 19:49:36	6C164DB26B40E4EC1B60AAF87C8BCA63	122880	----a-w-	C:\Windows\Sysnative\VmHostAI.dll
2014-10-06 19:49:36	6BA877DC84A42BB6EFCDD300D32DE230	126976	----a-w-	C:\Windows\Sysnative\RDWebAI.dll
2014-10-06 19:49:36	19D7C8C2186B5D0230361D7BDBA3558D	135680	----a-w-	C:\Windows\Sysnative\appserverai.dll
2014-10-06 19:42:21	709AF101E72F2FB30B1A47B7EBD8034C	312320	----a-w-	C:\Windows\Sysnative\msieftp.dll
2014-10-06 19:02:49	3E57DE8477F6F851B43904B50B1816C5	1838080	----a-w-	C:\Windows\Sysnative\DWrite.dll
2014-10-06 19:02:28	20E0FC5F724B85CA09C82D2776E84C5E	124112	----a-w-	C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2014-10-06 19:02:21	8D454387D12D4DB13805F4128DE8F117	141312	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2014-10-06 19:02:21	3C300826241468F59D7C0244B4D8B867	1255936	----a-w-	C:\Windows\Sysnative\certutil.exe
2014-10-06 19:02:12	93CF42531671EA4E24DA842B124FA269	733184	----a-w-	C:\Windows\Sysnative\win32spl.dll
2014-10-06 19:02:10	61EE56D354A5B425845F6A38CE401F92	1890816	----a-w-	C:\Windows\Sysnative\crypt32.dll
2014-10-06 19:01:53	F5BAFB32D8EC6286B96C23E27CEF2578	146944	----a-w-	C:\Windows\Sysnative\cscript.exe
2014-10-06 19:01:53	D890ECBF9D1BE08B81C7832690DD16B0	143872	----a-w-	C:\Windows\Sysnative\wshom.ocx
2014-10-06 19:01:53	C867433D5C96E4F616F0AEC2E0E46B5D	222720	----a-w-	C:\Windows\Sysnative\scrobj.dll
2014-10-06 19:01:53	907B7589463313452942F17297D8CDB7	194048	----a-w-	C:\Windows\Sysnative\scrrun.dll
2014-10-06 19:01:02	D082B5BEBF77753442BA212DA7BD6D93	827904	----a-w-	C:\Windows\Sysnative\kerberos.dll
2014-10-06 19:01:02	8501267018C90AE5C6D736D673B8DA2A	982016	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2014-10-06 19:01:02	02D1B7DF0EF66CF5C20C7412E4CB094F	1281536	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2014-10-06 19:01:01	A294087B82A4EB0CD179D0A90DE3B651	318464	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2014-10-06 19:01:01	8B072BB69984C8FE36914BF0E9F69281	419328	----a-w-	C:\Windows\Sysnative\schannel.dll
2014-10-06 19:01:01	3A52B02E38CE289A05EAFC42844D714D	588288	----a-w-	C:\Windows\Sysnative\SHCore.dll
2014-10-06 19:01:00	773DF0EC54E53CE2CEEFB776CF941A93	164864	----a-w-	C:\Windows\Sysnative\sspicli.dll
2014-10-06 19:01:00	37C282CF52358E6CF25A36B2D94EC4D1	684032	----a-w-	C:\Windows\Sysnative\objsel.dll
2014-10-06 19:01:00	0D56D94264702B235C87EAD49D443949	179712	----a-w-	C:\Windows\Sysnative\dpapisrv.dll
2014-10-06 19:00:59	D85E906ACB458BE4BF5F3C9B35404A74	439808	----a-w-	C:\Windows\Sysnative\lsm.dll
2014-10-06 19:00:59	D736F2A53EEC2CD9AEAE44B653A7CCDB	1043968	----a-w-	C:\Windows\Sysnative\usercpl.dll
2014-10-06 19:00:59	7926C10A43BBED1D04DFC17A7042FF68	208896	----a-w-	C:\Windows\Sysnative\wdigest.dll
2014-10-06 19:00:58	F1DA34D64F2BA200D28A7451804E2FEE	35840	----a-w-	C:\Windows\Sysnative\lsass.exe
2014-10-06 19:00:58	E6A730CD372B10DB1AA3BC7D4DF39AD7	45056	----a-w-	C:\Windows\Sysnative\dimsroam.dll
2014-10-06 19:00:58	578F8E769CAB4B52D132843B6FE85475	14848	----a-w-	C:\Windows\Sysnative\workerdd.dll
2014-10-06 19:00:58	5579488320C3C827E75F5E8BBDF44AF6	20480	----a-w-	C:\Windows\Sysnative\credssp.dll
2014-10-06 19:00:58	3639852ECE97DF80A23DF26E41C5A9AF	94720	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2014-10-06 19:00:58	14D42343D1FBA771C8884B705637A821	27648	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2014-10-06 19:00:47	A5F88AEFDE2AB3C7B3215B30122754E8	1300992	----a-w-	C:\Windows\Sysnative\gdi32.dll
2014-10-06 19:00:41	4ABAA6956EE250DEFBE31B3BB1F2FEED	1845760	----a-w-	C:\Windows\Sysnative\msxml3.dll
2014-10-06 18:57:39	B8CDF3317BD77FCF8C798EEB9DEFC5C9	393216	----a-w-	C:\Windows\Sysnative\msihnd.dll
2014-10-06 18:57:39	4F750B7EFCB6520AE01E01D082D7D476	70144	----a-w-	C:\Windows\Sysnative\appinfo.dll
2014-10-06 18:57:38	65DF4D0333CFC7AE430F5D210F77F4CE	112984	----a-w-	C:\Windows\Sysnative\consent.exe
2014-10-06 18:57:32	47C22FAAC1EC02467790C79B8DB6FCCB	596480	----a-w-	C:\Windows\Sysnative\qedit.dll
2014-10-06 18:34:55	2762E48274640A6E8F17CACF49AA8DF0	100352	----a-w-	C:\Windows\Sysnative\wudriver.dll
2014-10-06 18:34:55	07DE21A44C96710A2696CAC2D60942FC	176640	----a-w-	C:\Windows\Sysnative\storewuauth.dll
2014-10-06 18:34:52	A0C07056756C94FA19B231BBE58C33DF	49664	----a-w-	C:\Windows\Sysnative\wups.dll
2014-10-06 18:34:52	633B9891D7C18B992CE9C6AF08DF4D05	49152	----a-w-	C:\Windows\Sysnative\wups2.dll
2014-10-06 18:34:49	C7D91C7FF92B935FBEB1285DF720AE89	253440	----a-w-	C:\Windows\Sysnative\WUSettingsProvider.dll
2014-10-06 18:34:49	7B0A0BE4B067C9CC4898CFFC30BAD425	59416	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2014-10-06 18:34:46	F2463B2E9818D242B4F72B237E9BD545	3286528	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2014-10-06 18:34:46	B9E015C3C45556C39AD9A3F1C0F73639	1623040	----a-w-	C:\Windows\Sysnative\wucltux.dll
2014-10-06 18:34:46	3B61E09694F82333A4A0609714469E1E	773632	----a-w-	C:\Windows\Sysnative\wuapi.dll
2014-10-06 18:33:34	E07104ADA4972888FC2FADAC22CE4591	40448	----a-w-	C:\Windows\Sysnative\wuapp.exe
2014-10-06 18:33:34	56BCA2F14F696FBB619D042770859D7B	144384	----a-w-	C:\Windows\Sysnative\wuwebv.dll
====== C:\Windows\Sysnative\drivers =====
2014-10-18 06:43:48	E77CB3736A702D46A6FB15FB4A9894E3	21184	----a-w-	C:\Windows\Sysnative\drivers\SmartDefragDriver.sys
2014-10-17 19:36:12	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-10-17 19:36:00	D3311B31C470E7681B14D9B014CBF9ED	93400	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-10-17 19:36:00	D1F2D4DF0A5D3B700794E26356A55B44	64216	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-10-17 19:36:00	5C3669B71657F22E67A1D4BD49D2CBE7	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-10-17 17:56:18	48DED912CDE54FC0923B9858512366E1	92008	----a-w-	C:\Windows\Sysnative\drivers\aswStm.sys
2014-10-17 17:56:17	D95E64416A4A3ED6986E0F474DA934BD	29208	----a-w-	C:\Windows\Sysnative\drivers\aswHwid.sys
2014-10-17 17:52:24	FF1E537A3632CBB9A0BF72B9FD0878D5	79184	----a-w-	C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-10-17 17:52:24	B8FDEDE963B82CFD23B3A53A3084666D	1041168	----a-w-	C:\Windows\Sysnative\drivers\aswSnx.sys
2014-10-17 17:52:24	A5757DE5F9C83AB40667A53D5126EA40	93568	----a-w-	C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-10-17 17:52:24	645D97385F3F284FB5604F9B970F4D24	65776	----a-w-	C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-10-17 17:52:24	471A311745848B80339436688A8286E6	224896	----a-w-	C:\Windows\Sysnative\drivers\aswVmm.sys
2014-10-17 17:52:24	0DEDC041DF594AEC2C3BD00417CFAF60	427360	----a-w-	C:\Windows\Sysnative\drivers\aswsp.sys
2014-10-07 13:46:12	58CC013EFA9893057160EDA018D8ADCE	71168	----a-w-	C:\Windows\Sysnative\drivers\hdaudbus.sys
2014-10-07 12:51:51	36E2B5A5AC7688FFB3270F57103507D2	411880	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-10-07 12:51:50	0698DEDEAD6A00AD0D468C687D830FBF	69864	----a-w-	C:\Windows\Sysnative\drivers\pdc.sys
2014-10-07 12:51:06	FC2B8B06BDBD3B6457F5A3DA9AD2410E	120144	----a-w-	C:\Windows\Sysnative\drivers\msgpioclx.sys
2014-10-07 12:51:06	F58B030A0664385C707B8C1C63682041	195416	----a-w-	C:\Windows\Sysnative\drivers\sdbus.sys
2014-10-07 12:51:06	DD7B107B2BB3EE845F57315EF4ECAC9A	125784	----a-w-	C:\Windows\Sysnative\drivers\dumpsd.sys
2014-10-07 12:51:06	630555943E5A3FE21010CE91EC7FC84F	341504	----a-w-	C:\Windows\Sysnative\drivers\HdAudio.sys
2014-10-07 12:51:05	BFC7FE4AAEB61317A921871B4085EF4B	119040	----a-w-	C:\Windows\Sysnative\drivers\USBSTOR.SYS
2014-10-07 12:51:05	3F1F31883EAC9DDDF836ACC6D1DAC36C	96512	----a-w-	C:\Windows\Sysnative\drivers\wfplwfs.sys
2014-10-07 12:51:04	25C50F4EDF70D0A831E0566BD181CCF2	321536	----a-w-	C:\Windows\Sysnative\drivers\udfs.sys
2014-10-07 12:50:28	AE3786294CC246A5403783E1B86A0168	100696	----a-w-	C:\Windows\Sysnative\drivers\disk.sys
2014-10-07 12:50:28	4CCBBD4944777CA100B9A6C2F149A46F	74752	----a-w-	C:\Windows\Sysnative\drivers\mpsdrv.sys
2014-10-07 12:49:25	BB0F9E19C5CE4DC765B263E2A5561DE1	247808	----a-w-	C:\Windows\Sysnative\drivers\srvnet.sys
2014-10-07 12:49:25	961A45CC15514178E511BBF1384CE0B8	83968	----a-w-	C:\Windows\Sysnative\drivers\hidclass.sys
2014-10-07 12:49:25	851149B9F9254BD67F907C44A9D2242D	621568	----a-w-	C:\Windows\Sysnative\drivers\srv2.sys
2014-10-07 12:49:25	7A761AEE58658378BBA45D360F874CB0	370688	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2014-10-07 12:49:25	697B78CE3925E4FBFC544232A5E9E2EB	215040	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2014-10-07 12:49:24	A4071DA3AE419F9694BFCB267C7DB8D7	78336	----a-w-	C:\Windows\Sysnative\drivers\IPMIDrv.sys
2014-10-07 12:49:24	346DEF1A9DB0B4133CE0FA38AAF565C0	32768	----a-w-	C:\Windows\Sysnative\drivers\hidparse.sys
2014-10-07 12:49:24	012C354B4AB48E9A7A657DF39E3A2073	27648	----a-w-	C:\Windows\Sysnative\drivers\hidusb.sys
2014-10-07 12:49:23	E7E9DBFDD3F25ED0C05B99AE9FA18BDE	94552	----a-w-	C:\Windows\Sysnative\drivers\mountmgr.sys
2014-10-07 12:49:23	05FACF485F44D1B70E35551D7BB668ED	328024	----a-w-	C:\Windows\Sysnative\drivers\Classpnp.sys
2014-10-07 11:17:03	AC47D05143E1E4D49D451E2A1784B2CB	1455880	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2014-10-07 11:17:00	61FE70659CD43E07F94DA4DC31DEC493	805376	----a-w-	C:\Windows\Sysnative\drivers\PEAuth.sys
2014-10-07 11:16:53	085F150D002B7F0153D3C06DDF33A143	95744	----a-w-	C:\Windows\Sysnative\drivers\hidbth.sys
2014-10-07 11:16:52	61F6972FF9AC9A8D0B4D62076DC30051	83456	----a-w-	C:\Windows\Sysnative\drivers\wanarp.sys
2014-10-07 11:16:52	3730942D7DB2F8BB5F84542B7FF6F650	60416	----a-w-	C:\Windows\Sysnative\drivers\ndproxy.sys
2014-10-07 11:16:52	28619B6E5A37F71AE1145643949CFA60	303848	----a-w-	C:\Windows\Sysnative\drivers\dxgmms1.sys
2014-10-07 11:15:54	13795CAA34239D97A7211E7F9D96E012	1175040	----a-w-	C:\Windows\Sysnative\drivers\bthport.sys
2014-10-07 11:15:54	091607B272C5E7BE2DCEF2D5463A407B	332520	----a-w-	C:\Windows\Sysnative\drivers\storport.sys
2014-10-07 11:15:53	500BE6B2E49883720D0AE8BB859ED7A3	495336	----a-w-	C:\Windows\Sysnative\drivers\vhdmp.sys
2014-10-07 11:15:51	CCBFCABDFE2BC22F0645CEAADDB36004	156672	----a-w-	C:\Windows\Sysnative\drivers\rfcomm.sys
2014-10-07 11:15:50	B240874B2CA0CD02E8CD11E140B14C57	77544	----a-w-	C:\Windows\Sysnative\drivers\storahci.sys
2014-10-07 11:15:50	6F0BFF80EE2A5BC841286A51F893CBAD	148712	----a-w-	C:\Windows\Sysnative\drivers\tpm.sys
2014-10-07 11:15:49	EA8EAD3F5B762F889CC7F3966625B48B	30720	----a-w-	C:\Windows\Sysnative\drivers\monitor.sys
2014-10-07 11:15:49	C0ADEBED913295803B579ED288936CBB	26112	----a-w-	C:\Windows\Sysnative\drivers\mouhid.sys
2014-10-07 11:15:49	1F715957F5236D30B6020A19A4271F6A	74752	----a-w-	C:\Windows\Sysnative\drivers\BTHUSB.SYS
2014-10-07 11:15:48	A8B20D852B07AE19A13B5D47EC4E4C3B	51712	----a-w-	C:\Windows\Sysnative\drivers\bthenum.sys
2014-10-07 11:12:39	CA03D642ACE58E1BA54E4B383F91CD69	427520	----a-w-	C:\Windows\Sysnative\drivers\rdbss.sys
2014-10-07 11:12:36	FD3AF5575B99871BADB94E7699DBCE08	284416	----a-w-	C:\Windows\Sysnative\drivers\spaceport.sys
2014-10-07 10:59:29	03CFE4108D1DE16D6C59455B5C73319C	993512	----a-w-	C:\Windows\Sysnative\drivers\ndis.sys
2014-10-07 10:59:28	76929F4A69E425911A63B407E26C2589	1933544	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2014-10-07 10:59:27	F17DEEAC7D51D44CF1BFF8DD4F0A2B6D	37632	----a-w-	C:\Windows\Sysnative\drivers\BthAvrcpTg.sys
2014-10-07 10:59:27	36C27EA76685391BC5CAA1FA25E29FBF	297984	----a-w-	C:\Windows\Sysnative\drivers\ks.sys
2014-10-07 10:59:25	6B7979E7C1FFDCF917DD749EBCB2BD59	61672	----a-w-	C:\Windows\Sysnative\drivers\crashdmp.sys
2014-10-07 10:57:34	F4A91D985EB9D1D2717D538F3424603C	861184	----a-w-	C:\Windows\Sysnative\drivers\http.sys
2014-10-07 07:41:58	947EA0AFF75E3E70D5BE9F88F6325F30	2641	----a-w-	C:\Windows\Sysnative\drivers\mfencrk.inf
2014-10-07 07:41:57	628DC155C32875B286B2742D10D196C2	5442	----a-w-	C:\Windows\Sysnative\drivers\mfencbdc.inf
2014-10-07 07:35:37	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-10-06 19:56:05	99D404A9A0AFC4734E014EBEBAC13F8F	230904	----a-w-	C:\Windows\Sysnative\drivers\WdFilter.sys
2014-10-06 19:56:00	6F4B5DDDC3B86091E94BC47347A78AF7	35232	----a-w-	C:\Windows\Sysnative\drivers\WdBoot.sys
2014-10-06 19:02:51	F8C2A832DF9403F5EA8080CBDBDA95FB	623448	----a-w-	C:\Windows\Sysnative\drivers\usbhub.sys
2014-10-06 19:02:51	7CB7E04259F323D051A10515B8863564	498008	----a-w-	C:\Windows\Sysnative\drivers\usbport.sys
2014-10-06 19:02:50	C976C4306F9AE133D6BBD47FDFC3BF92	120832	----a-w-	C:\Windows\Sysnative\drivers\usbccgp.sys
2014-10-06 19:02:50	B24FDEB1B18496F1B463782235AA3AF1	79192	----a-w-	C:\Windows\Sysnative\drivers\usbehci.sys
2014-10-06 19:02:50	9F83642C3709D1A4DD49EEE9F48F839D	21848	----a-w-	C:\Windows\Sysnative\drivers\usbd.sys
2014-10-06 19:02:50	1ABF657259DB57F7E5558E4DF1357C0C	32256	----a-w-	C:\Windows\Sysnative\drivers\usbuhci.sys
2014-10-06 19:01:54	BDE6B6048E943717D0B5EED35A821150	20992	----a-w-	C:\Windows\Sysnative\drivers\usb8023.sys
2014-10-06 19:01:01	DBF9E5346431557BF56F41E7F8EC0DC1	570216	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2014-10-06 19:01:00	3DD9C86EA88E8B5A51904AD87E1F2E78	172888	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-10-06 19:00:59	8B3EB6372436195B8EA8AE09A184BCE2	100184	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2014-10-06 19:00:43	B1E910DDC08A8536116214326124903C	447320	----a-w-	C:\Windows\Sysnative\drivers\USBHUB3.SYS
2014-10-06 19:00:43	8DC398D7B8E02C929A2096E74A170970	337752	----a-w-	C:\Windows\Sysnative\drivers\USBXHCI.SYS
2014-10-06 19:00:43	061BA3EE0D2BE17944990544008CF190	213336	----a-w-	C:\Windows\Sysnative\drivers\UCX01000.SYS
2014-10-06 18:57:34	FE7FB9612D354EB41DF4F0FF5D6FB259	576512	----a-w-	C:\Windows\Sysnative\drivers\afd.sys
2014-10-06 18:57:33	0E0C16EE82E2F4EBC2FBCA24C8F00D9E	2233176	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2014-10-06 18:57:32	857433889008F86728E8C099C740729D	288768	----a-w-	C:\Windows\Sysnative\drivers\portcls.sys
2014-10-06 18:00:42	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_webinstrNew_01009.Wdf
====== C:\Windows\Tasks ======
2014-10-18 06:44:36	4509B7DFD1C8C3FF1C590EBB93430454	3162	----a-w-	C:\Windows\Sysnative\Tasks\SmartDefrag3_Update
2014-10-17 19:22:05	FC6115E7A60C1C2C80A30FB90EBA01E4	3144	----a-w-	C:\Windows\Sysnative\Tasks\{B4A065F5-3A1F-4A9E-BC1C-24991294B183}
2014-10-17 17:56:40	D14112D8D2AA9A5EE19ABBE330056C55	4182	----a-w-	C:\Windows\Sysnative\Tasks\avast! Emergency Update
2014-10-06 06:14:08	E4B8020D04EF2D9B277EDC3DF36C044D	3598	----a-w-	C:\Windows\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2710336257-2014284333-629257816-1002
2014-09-29 21:23:20	--------	d-----w-	C:\Windows\Sysnative\Tasks\WPD
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-10-17 21:49:15	--------	d-----w-	C:\Program Files\trend micro
2014-10-15 10:35:01	--------	d-----w-	C:\Program Files\Puran File Recovery
2014-10-13 11:04:27	--------	d-----w-	C:\Program Files\Classic Shell
2014-10-06 19:38:17	--------	d-----w-	C:\Program Files\Microsoft Office 15
2014-09-29 21:23:25	--------	d-----w-	C:\Program Files\Accessory Store
======= C:\PROGRA~2 =====
2014-10-18 06:43:43	--------	d-----w-	C:\PROGRA~2\IObit
2014-10-18 06:41:31	--------	d-----w-	C:\PROGRA~2\SpywareBlaster
2014-10-17 20:13:32	--------	d-----w-	C:\PROGRA~2\VS Revo Group
2014-10-15 12:02:02	--------	d-----w-	C:\PROGRA~2\GetData
2014-10-15 10:27:41	--------	d-----w-	C:\PROGRA~2\File Recovery
2014-10-15 09:34:49	--------	d-----w-	C:\PROGRA~2\Pandora Recovery
2014-10-14 10:36:29	--------	d-----w-	C:\PROGRA~2\CodeMeter
2014-10-13 16:52:40	--------	d-----w-	C:\PROGRA~2\wGXe SOFTWARE
2014-10-13 16:47:21	--------	d-----w-	C:\PROGRA~2\Restore My Files Data Recovery v6.01
2014-10-06 19:50:29	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-10-06 18:00:22	--------	d-----w-	C:\PROGRA~2\TinyWaluLet
2014-09-29 21:23:48	--------	d-----w-	C:\PROGRA~2\OEM
======= C: =====
2014-09-29 22:08:33	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Recovery.txt
====== C:\Users\Acer\AppData\Roaming ======
2014-10-18 06:43:43	--------	d-----w-	C:\Users\Acer\AppData\Locallow\IObit
2014-10-18 06:43:00	--------	d-----w-	C:\Users\Acer\AppData\Roaming\IObit
2014-10-17 21:02:52	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2014-10-17 21:00:49	--------	d-s---w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2014-10-17 20:30:57	--------	d-----w-	C:\Users\Acer\AppData\Local\Diagnostics
2014-10-17 20:13:32	--------	d-----w-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2014-10-17 19:21:33	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2014-10-17 19:19:01	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2014-10-17 18:03:03	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2014-10-15 10:34:50	--------	d-----w-	C:\Users\Acer\AppData\Local\Programs
2014-10-15 09:34:52	--------	d-----w-	C:\Users\Acer\AppData\Roaming\PandoraRecovery
2014-10-13 16:50:46	--------	d-----w-	C:\Users\Acer\AppData\Local\CrashDumps
2014-10-13 11:05:57	--------	d-----w-	C:\Users\Acer\AppData\Roaming\ClassicShell
2014-10-06 19:41:21	--------	d-----w-	C:\Users\Acer\AppData\Local\Apps
2014-10-06 19:41:20	--------	d-----w-	C:\Users\Acer\AppData\Local\Deployment
2014-10-06 18:02:00	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CrashDumps
2014-10-06 18:00:21	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Torch
2014-10-06 18:00:21	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Google
2014-10-06 18:00:21	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Comodo
2014-10-06 18:00:21	--------	d-----w-	C:\Users\UpdatusUser\AppData\Local\Chromatic Browser
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Gast\AppData\Local\Torch
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Gast\AppData\Local\Google
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Gast\AppData\Local\Comodo
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Gast\AppData\Local\Chromatic Browser
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Administrator\AppData\Local\Torch
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Administrator\AppData\Local\Google
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Administrator\AppData\Local\Comodo
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Acer\AppData\Local\Torch
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Acer\AppData\Local\Google
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Acer\AppData\Local\Comodo
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Acer\AppData\Local\Chromatic Browser
2014-10-06 17:51:16	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2014-10-06 08:23:56	--------	d-----w-	C:\Users\Acer\AppData\Local\clear.fi
2014-09-29 21:23:35	--------	d-----w-	C:\Users\Acer\AppData\Roaming\Atheros
2014-09-29 21:23:04	--------	d-----r-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-09-29 21:23:04	--------	d-----r-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-09-29 21:22:57	--------	d-----w-	C:\Users\Acer\AppData\Roaming\Adobe
2014-09-29 21:22:51	--------	d-----w-	C:\Users\Acer\AppData\Roaming\Synaptics
2014-09-29 21:22:48	--------	d-----w-	C:\Users\Acer\AppData\Roaming\lm
2014-09-29 21:21:47	--------	d-----w-	C:\Users\Acer\AppData\Local\VirtualStore
2014-09-29 21:21:46	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages
2014-09-29 21:21:36	--------	d-----w-	C:\Users\Acer\AppData\Local\Packages
2014-09-29 21:21:22	--------	d-s---w-	C:\Users\Acer\AppData\Roaming\Microsoft
2014-09-29 21:21:22	--------	d-----w-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-29 21:21:22	--------	d-----w-	C:\Users\Acer\AppData\Local\Temp
2014-09-29 21:21:22	--------	d-----w-	C:\Users\Acer\AppData\Local\Microsoft
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-29 12:51:01	--------	d-s---w-	C:\Users\Acer\AppData\Locallow\Microsoft
2014-09-29 12:50:53	--------	d-s---w-	C:\Windows\SysNative\config\systemprofile\AppData\Locallow\Microsoft
====== C:\Users\Acer ======
2014-10-18 06:44:01	--------	d-----w-	C:\ProgramData\IObit
2014-10-18 06:43:45	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-10-18 06:41:36	--------	d-----w-	C:\ProgramData\Licenses
2014-10-18 06:41:32	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2014-10-18 06:37:39	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\winhttp
2014-10-17 21:48:28	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Acer\Desktop\RSITx64.exe
2014-10-17 17:50:15	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2014-10-17 16:12:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-10-15 09:34:49	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pandora Recovery
2014-10-13 11:08:06	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-10-06 19:39:04	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-10-06 19:37:21	1D93026DD5291823934DEB9118498794	1056440	----a-w-	C:\Users\Acer\Downloads\Setup.X86.nl-nl_O365ProPlusRetail_0ea9781e-82ab-491c-af01-b12a4b1a5112_TX_PR_.exe
2014-10-06 18:00:23	--------	d-----w-	C:\ProgramData\TinyWaluLet
2014-10-06 18:00:22	02C1EE40968BAA67C3A785CDA9807125	262	--sha-r-	C:\ProgramData\ntuser.pol
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Gast\AppData
2014-10-06 18:00:21	--------	d-----w-	C:\Users\Administrator\AppData
2014-10-06 08:24:17	--------	d-----w-	C:\Users\Acer\PicStream
2014-09-29 21:23:19	--------	d-----w-	C:\ProgramData\OEM_YAHOO
2014-09-29 21:23:04	--------	d-----r-	C:\Users\Acer\Searches
2014-09-29 21:23:03	--------	d-----r-	C:\Users\Acer\Contacts
2014-09-29 21:21:23	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Acer\ntuser.ini
2014-09-29 21:21:22	--------	d--h--w-	C:\Users\Acer\AppData
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Videos
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Saved Games
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Pictures
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Music
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Links
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Favorites
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Downloads
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Documents
2014-09-29 21:21:22	--------	d-----r-	C:\Users\Acer\Desktop
2014-09-29 21:09:49	--------	d--h--r-	C:\Users\Public\AccountPictures

====== C: exe-files ==
2014-10-18 06:44:36	4D5D8058F17C873B4F0792678BAA6534	34080	----a-w-	C:\Windows\System32\SmartDefragBootTime.exe
2014-10-18 06:43:45	B748E0B82FC12BCBAC185E79B0F74C74	1756448	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\ActionCenterDownloader.exe
2014-10-18 06:43:45	2B3D204E0F2DD76CB30967C217C32015	2360096	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
2014-10-18 06:43:45	1CCAFE84382B6A4BA55DBC5A9600D363	2267456	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\SD_FreeSoftwareDownloader.exe
2014-10-18 06:43:45	1CCAFE84382B6A4BA55DBC5A9600D363	2267456	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\Freeware\SD_FreeSoftwareDownloader.exe
2014-10-18 06:43:45	0DF1D3EE56D1A2915F6770A082926148	2129184	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\UninstallPromote.exe
2014-10-18 06:43:44	FD862E75F14941280BFD4CC2FA8906C9	34080	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x64\SmartDefragBootTime.exe
2014-10-18 06:43:44	C7D5606AFDDA7C2DACF5A249AC1DA0BC	34592	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x64\SmartDefragBootTime.exe
2014-10-18 06:43:44	AA5489F0109BFFC72B5F953ADC5B64A1	31008	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x86\SmartDefragBootTime.exe
2014-10-18 06:43:44	9ECDA80D7DDAFAD2184D72EFDD0A0A5F	3431712	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
2014-10-18 06:43:44	95FB4A65214A9E3F3FC040F9398822CB	34080	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x64\SmartDefragBootTime.exe
2014-10-18 06:43:44	7A5B0AA932941D3D809BBBF3A2E27694	31008	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x86\SmartDefragBootTime.exe
2014-10-18 06:43:44	7A5B0AA932941D3D809BBBF3A2E27694	31008	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x86\SmartDefragBootTime.exe
2014-10-18 06:43:44	4D5D8058F17C873B4F0792678BAA6534	34080	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x64\SmartDefragBootTime.exe
2014-10-18 06:43:44	4D5D8058F17C873B4F0792678BAA6534	34080	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x64\SmartDefragBootTime.exe
2014-10-18 06:43:44	2BE91085B88B7CC27060422237D8CA04	31008	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x86\SmartDefragBootTime.exe
2014-10-18 06:43:44	0844717E02574A22DDE810BB4E45FBE7	31520	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x86\SmartDefragBootTime.exe
2014-10-18 06:43:43	EB89A9AF76685854985B59F496096316	1085728	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\SDSendBugReport.exe
2014-10-18 06:43:43	98E338DE91D9FD770C65B35294903498	1195808	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\unins000.exe
2014-10-18 06:43:43	81372DB84C667332653522BCBCAE7C54	4061960	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\ADSRemovalSetup.exe
2014-10-18 06:43:43	648634759661BD37596CC9CF256C4921	1884448	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\SDInit.exe
2014-10-18 06:41:32	0EED9CD892F88435BFD1AE41EF6ED60D	119976	----a-w-	C:\Program Files (x86)\SpywareBlaster\sburlhelper.exe
2014-10-18 06:41:31	BE2EE9C219B016AEC95F604FBFFEE171	2115192	----a-w-	C:\Program Files (x86)\SpywareBlaster\sbautoupdate.exe
2014-10-18 06:41:31	AE13FB6BD8086465217F6A063EC3FCC3	715038	----a-w-	C:\Program Files (x86)\SpywareBlaster\unins000.exe
2014-10-18 06:41:31	1BE8001D5C4EEE56A97980CD6987EB40	2557544	----a-w-	C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe
2014-10-17 21:51:00	3F86AE6D602553F81377F763EEEBACE5	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$I9L25Y2.exe
2014-10-17 21:49:15	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Acer.exe
2014-10-17 21:48:28	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Acer\Desktop\RSITx64.exe
2014-10-17 21:00:41	82446D358A9FB51CB9DA32A5C901D7A0	21040	----a-w-	C:\Windows\System32\sdnclean64.exe
2014-10-17 20:58:25	C70D234CF4A0C57D2291CDDDD20B789C	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$I859A55.exe
2014-10-17 20:17:28	47811D50390A86A17102D7496E6EABB9	388608	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R9L25Y2.exe
2014-10-17 20:13:33	761102A9B90EC601E8B3071120063D74	87550	----a-w-	C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe
2014-10-17 20:11:48	5A275A569DCE6E2F2F0284D82D31310B	699016	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\cbsidlm-cbsi213-Revo_Uninstaller-SEO-10687648.exe
2014-10-17 19:35:27	78130949095E6721B40B50E77C1F1BBC	4095448	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\spywareblastersetup50.exe
2014-10-17 19:35:24	553403187995325C909C8B302111A230	12299272	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\smart-defrag-setup.exe
2014-10-17 19:35:23	33398D340008A0577507FCA7FD443622	19828376	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\mbam-setup-2.0.3.1025.exe
2014-10-17 17:56:06	F33B2BAC968BE5A7AE84964B2B6465FD	423664	----a-w-	C:\ProgramData\NVIDIA\Updatus\Packages\00006647\CoProc update.18983142.exe
2014-10-17 17:52:23	B46B41CE922CE5B7B055A28226DE2D79	307344	----a-w-	C:\Windows\System32\aswBoot.exe
2014-10-17 17:46:26	94ED8078A03DC30813EF987114B2DCB8	705480	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-15 11:46:32	0DE1C4B1585853A8017A2422B745C3E8	836168	----a-w-	C:\Windows\Temp\0123711413373592mcinst.exe
2014-10-13 11:02:53	396904C8A6A44182493C09B0858A4911	87227720	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\avast_free_antivirus_setup.exe
2014-10-13 11:02:47	1DD357157605C3462752FFB0B8B38EB8	6791360	----a-w-	C:\Users\Acer\Desktop\Antispyware programmas 17-10-2014\ClassicShellSetup_4_1_0.exe
2014-10-13 11:02:36	3F9C12E62A0AE1D7A9DBB252195C4C54	4210920	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R859A55.exe
2014-10-13 11:02:19	944BFDBBD5DFB43655C8DA15ED8A161B	4096229	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\WinMend Data Recovery v1.3.7 + Serial Setup\WinMend Data Recovery v1.3.7 + Serial Setup.exe
2014-10-13 11:02:18	276DA50A530D638DDDF6B30C33B521FD	6482205	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Recover Deleted Files v3.0.1 + Serial Setup\Recover Deleted Files v3.0.1 + Serial Setup.exe
2014-10-13 11:02:18	0B921B240B14BAC283AE2A5B5830E873	5511513	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Photo Recovery v1.0.0.2 + Serial Setup\Photo Recovery v1.0.0.2 + Serial Setup.exe
2014-10-13 11:02:17	85F823939F166AD1875BC5274D85ECB7	12962975	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\PC Tools File Recover v8.0.0.39 + Serial Setup\PC Tools File Recover v8.0.0.39 + Serial Setup.exe
2014-10-13 11:02:17	3F08628F504F0461F6A7CDF49C437D73	7286000	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\MiniTool Power Data Recovery v6.0 + Serial Setup\MiniTool Power Data Recovery v6.0 + Serial Setup.exe
2014-10-13 11:02:16	E3BF74CBF7BF499911DB1947AFA7A167	5410524	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\iCare Format Recovery 2.2 + Serial Setup\iCare Format Recovery 2.2 + Serial Setup.exe
2014-10-13 11:02:16	AEBC03BE99F29518DDE442573AF37988	6624938	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\File Recovery Hetman Uneraser v3.1 + Serial Setup\File Recovery Hetman Uneraser v3.1 + Serial Setup.exe
2014-10-13 11:02:15	3E9AE3AF39C2AC35DE8692C82B3ECB83	6334660	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\EASEUS Data Recovery Wizard v5.0.1 Full\EASEUS Data Recovery Wizard v5.0.1 Full.exe
2014-10-13 11:02:15	07451842D4A79BEA9B13AA8C5543EAF6	6785641	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Deleted File Recovery v2.0.1 + Serial Setup\Deleted File Recovery v2.0.1 + Serial Setup.exe
2014-10-13 11:02:14	B7D05894E0C57E124F186D26BF68ADEA	5446907	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Data Recovery Software v4.1 + Serial Setup\Data Recovery Software v4.1 + Serial Setup.exe
2014-10-13 11:02:14	5912DF28DC251201DD32A98BA6236A74	6481735	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\De beste Data Recovery Software\Restore My Files Data Recovery v6.01 + Serial Setup\Restore My Files Data Recovery v6.01 + Serial Setup.exe
2014-10-13 11:02:13	F9BB0E2A4CE09DAA86E53367BA6B775C	6420265	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Aidfile Recovery Software 3.3.1.0 + Serial Setup\Aidfile Recovery Software 3.3.1.0 + Serial Setup.exe
2014-10-13 11:02:13	A4F02667DC37937CCADC2BD1D12BDCE7	5206925	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R4VWKOL\Data Recovery Professional v1.0.0.2 + Serial Setup\Data Recovery Professional v1.0.0.2 + Serial Setup.exe
=== C: other files ==
2014-10-18 06:43:48	E77CB3736A702D46A6FB15FB4A9894E3	21184	----a-w-	C:\Windows\System32\Drivers\SmartDefragDriver.sys
2014-10-18 06:43:44	EBAF78B71431E8729A7809C89FAF5EF9	21184	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x64\SmartDefragDriver.sys
2014-10-18 06:43:44	E77CB3736A702D46A6FB15FB4A9894E3	21184	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x64\SmartDefragDriver.sys
2014-10-18 06:43:44	E5373CBF10497C4473E91479F9F339EC	17088	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x64\SmartDefragDriver.sys
2014-10-18 06:43:44	A5FF19BCD851B3FE87281011E9F04CA7	17088	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x64\SmartDefragDriver.sys
2014-10-18 06:43:44	853DADF45A76CB18EBC415EEBFFE0065	15808	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x86\SmartDefragDriver.sys
2014-10-18 06:43:44	70C20DDD0B62E7325962349FCF9F36F2	18624	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x86\SmartDefragDriver.sys
2014-10-18 06:43:44	536F48D55FFE7AD973B393B4124B13B3	16064	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x86\SmartDefragDriver.sys
2014-10-18 06:43:44	11011926F2C4C853693C9ED909D2B059	18624	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x86\SmartDefragDriver.sys
2014-10-18 06:43:44	081E92E85F03C0BD757F7D3A1F454FD0	21184	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x64\SmartDefragDriver.sys
2014-10-18 06:43:44	01411333E125717D9D0C1193FC08EDD5	18624	----a-w-	C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x86\SmartDefragDriver.sys
2014-10-17 21:45:13	EFE13CACCBD47864A433C6B7A64DB96A	4068352	----a-w-	C:\Windows\System32\win32k.sys
2014-10-17 19:36:12	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\System32\Drivers\MBAMSwissArmy.sys
2014-10-17 19:36:00	D3311B31C470E7681B14D9B014CBF9ED	93400	----a-w-	C:\Windows\System32\Drivers\mbamchameleon.sys
2014-10-17 19:36:00	D1F2D4DF0A5D3B700794E26356A55B44	64216	----a-w-	C:\Windows\System32\Drivers\mwac.sys
2014-10-17 19:36:00	5C3669B71657F22E67A1D4BD49D2CBE7	25816	----a-w-	C:\Windows\System32\Drivers\mbam.sys
2014-10-17 17:56:18	48DED912CDE54FC0923B9858512366E1	92008	----a-w-	C:\Windows\System32\Drivers\aswStm.sys
2014-10-17 17:56:17	D95E64416A4A3ED6986E0F474DA934BD	29208	----a-w-	C:\Windows\System32\Drivers\aswHwid.sys
2014-10-17 17:52:24	FF1E537A3632CBB9A0BF72B9FD0878D5	79184	----a-w-	C:\Windows\System32\Drivers\aswMonFlt.sys
2014-10-17 17:52:24	B8FDEDE963B82CFD23B3A53A3084666D	1041168	----a-w-	C:\Windows\System32\Drivers\aswSnx.sys
2014-10-17 17:52:24	A5757DE5F9C83AB40667A53D5126EA40	93568	----a-w-	C:\Windows\System32\Drivers\aswRdr2.sys
2014-10-17 17:52:24	645D97385F3F284FB5604F9B970F4D24	65776	----a-w-	C:\Windows\System32\Drivers\aswRvrt.sys
2014-10-17 17:52:24	471A311745848B80339436688A8286E6	224896	----a-w-	C:\Windows\System32\Drivers\aswVmm.sys
2014-10-17 17:52:24	0DEDC041DF594AEC2C3BD00417CFAF60	427360	----a-w-	C:\Windows\System32\Drivers\aswsp.sys
2014-10-15 11:58:07	33C629E67098CDABE6A5C55EBD373085	167773	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$RTQZOIO\Restoration programma\Restoration.zip
2014-10-15 10:47:38	33C629E67098CDABE6A5C55EBD373085	167773	----a-w-	C:\$Recycle.Bin\S-1-5-21-2710336257-2014284333-629257816-1002\$R0VY8UT\Restoration programma\Restoration.zip

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"RadioController"="C:\Program Files (x86)\RadioController\RfBtnHelper.exe Start_Run"
"Dolby Home Theater v4"="C:\Dolby PCEE4\pcee4.exe -autostart"
"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SDTray"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ALU" [C:\Program Files (x86)\Acer\Live Updater\updater.exe]
"C:\Windows\SysNative\tasks\ALUAgent" [C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe]
"C:\Windows\SysNative\tasks\DeviceDetector" [C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]
"C:\Windows\SysNative\tasks\iuBrowserIEAgent" ["C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"]
"C:\Windows\SysNative\tasks\iuEmailOutlookAgent" ["C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"]
"C:\Windows\SysNative\tasks\Power Management" ["C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"]
"C:\Windows\SysNative\tasks\SmartDefrag3_Update" [C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [17-10-2014 19:55]

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[24-04-2014 12:12]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[17-10-2014 19:55]

TinyWaluLet - Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Acer\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Acer\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Acer\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Acer\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Administrator\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Administrator\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Administrator\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Administrator\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - Gast\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - Gast\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - Gast\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - Gast\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik
TinyWaluLet - UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia
GoSave - UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb
NextCoup - UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg
Streak for Gmail - UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik

==== Chromium Fix ======================

C:\Users\Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Acer\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\anchdicjefohhokhfljmaaamfmiehkia deleted successfully
C:\Users\Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Acer\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\lbadfcekbbadailnmbnnpmcljjfgmidb deleted successfully
C:\Users\Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Acer\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\njpjdpdajdgpiombcaphcodibehhnpmg deleted successfully
C:\Users\Acer\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Acer\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\UpdatusUser\AppData\Local\Chromatic Browser\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\UpdatusUser\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\UpdatusUser\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully
C:\Users\UpdatusUser\AppData\Local\Torch\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://acer13.msn.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://istart.webssearches.com/web/?type=ds&ts=1412618397&from=irs&uid=TOSHIBAXMQ01ABD075_33LAP62XTXX33LAP62XT&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://istart.webssearches.com/web/?type=ds&ts=1412618397&from=irs&uid=TOSHIBAXMQ01ABD075_33LAP62XTXX33LAP62XT&q={searchTerms}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://acer13.msn.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{AA9A4890-4262-4441-8977-E2FFCBFB706C} Unknown  Url="Not_Found"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2710336257-2014284333-629257816-1002\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} deleted successfully

==== Deleting CLSID Registry Values ======================


==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Help and Support.lnk -  
C:\Users\Public\Desktop\Koop online.lnk - C:\Program Files (x86)\Accessory Store\StartUrl.exe http://go.acer.com/?id=13409&model=Aspire V3-571G
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe 
C:\Users\Public\Desktop\Norton Online Backup.lnk - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe OPEN
C:\Users\Public\Desktop\Smart Defrag 3.lnk - C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe 
C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe 
C:\Users\Public\Desktop\SpywareBlaster.lnk - C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\startscreen.lnk - C:\Program Files (x86)\Classic Shell\ClassicStartMenu.exe -togglenew
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1412618397&from=irs&uid=TOSHIBAXMQ01ABD075_33LAP62XTXX33LAP62XT
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe -hunter
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast\avast Free Antivirus.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Explorer Settings.lnk - C:\Program Files (x86)\Classic Shell\ClassicExplorerSettings.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic IE Settings.lnk - C:\Program Files (x86)\Classic Shell\ClassicIE_32.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Help.lnk - C:\Program Files (x86)\Classic Shell\ClassicShell.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Readme.lnk - C:\Program Files (x86)\Classic Shell\ClassicShellReadme.rtf 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Shell Update.lnk - C:\Program Files (x86)\Classic Shell\ClassicShellUpdate.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell\Classic Start Menu Settings.lnk - C:\Program Files (x86)\Classic Shell\ClassicStartMenu.exe -settings
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\MSACCESS.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\EXCEL.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Designer 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\INFOPATH.EXE /design
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\InfoPath Filler 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\INFOPATH.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Lync 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\lync.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\ONENOTE.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\OUTLOOK.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\POWERPNT.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\MSPUB.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\SkyDrive Pro 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\GROOVE.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Verzenden naar OneNote 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\ONENOTEM.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\WINWORD.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Database Compare 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\client\AppVLP.exe "C:\Program Files\Microsoft Office 15\Root\Office15\DCF\DATABASECOMPARE.EXE"
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\OcPubMgr.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Office 2013 Upload Center.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\MSOUC.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Spreadsheet Compare 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\client\AppVLP.exe "C:\Program Files\Microsoft Office 15\Root\Office15\DCF\SPREADSHEETCOMPARE.EXE"
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Taalvoorkeuren voor Office 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\SETLANG.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetriedashboard voor Office 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\msotd.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetrielogboek voor Office 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\msoev.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3\Smart Defrag 3.lnk - C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3\Verwijder Smart Defrag 3.lnk - C:\Program Files (x86)\IObit\Smart Defrag 3\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster\SpywareBlaster Help.lnk - C:\Program Files (x86)\SpywareBlaster\sbhelp.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster\SpywareBlaster.lnk - C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1412618397&from=irs&uid=TOSHIBAXMQ01ABD075_33LAP62XTXX33LAP62XT
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Acer Device Fast-lane.lnk - C:\Program Files (x86)\Acer\Acer Device Fast-lane\DeviceFastLaneUI.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Acer Power Button.lnk - C:\Program Files (x86)\Acer\Acer Power Management\ePowerButton.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\clear.fi Media.lnk - C:\Program Files (x86)\Acer\clear.fi Media\ClearfiMedia.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\clear.fi Photo.lnk - C:\Program Files (x86)\Acer\clear.fi Photo\ClearfiPhoto.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Docs.lnk - C:\Program Files (x86)\Acer\AcerCloud Docs\AcerCloud Docs.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Libraries 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1412618397&from=irs&uid=TOSHIBAXMQ01ABD075_33LAP62XTXX33LAP62XT
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== shortcuts After Repair ======================

C:\Users\Public\Desktop\Koop online.lnk - C:\Program Files (x86)\Accessory Store\StartUrl.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:49936;https=127.0.0.1:49936"
"ProxyOverride"="<-loopback>"
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\203E62EEA6789D84098513925E9B9999 deleted successfully

==== HijackThis Entries ======================

C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - Unknown owner - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (file missing)
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=249 folders=167 5721724 bytes)

==== Empty Temp Folders ======================

C:\Users\Acer\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Acer\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~3\boost_interprocess"  not deleted

==== EOF on za 18-10-2014 at  9:17:34,58 ======================