Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Kevin on ma 11-07-2016 at 10:08:10,03. Microsoft Windows 10 Pro 10.0.10586 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Kevin\Desktop\zoek(1).exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-08-28-131911.log 53483 bytes C:\zoek-results2014-09-01-075535.log 34908 bytes ==== Empty Folders Check ====================== C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\Kevin\AppData\Local\ActiveSync deleted successfully C:\Users\Kevin\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Kevin\AppData\Local\EmieSiteList deleted successfully C:\Users\Kevin\AppData\Local\EmieUserList deleted successfully C:\Users\Kevin\AppData\Local\PeerDistRepub deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3630730252-1380453509-1967557004-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe Flash Player 22 NPAPI Adobe Reader XI (11.0.16) - Nederlands Adobe Refresh Manager Audacity 2.0.3 Avast Free Antivirus Belgium e-ID middleware 4.0.4 (build 7251) Citrix online plug-in - web Citrix online plug-in (DV) Citrix online plug-in (HDX) Citrix online plug-in (USB) Citrix online plug-in (Web) Craften Terminal 4.1.2 D3DX10 Definition Update for Microsoft Office 2010 (KB3115247) 32-Bit Edition Dia (remove only) Dropbox GeoGebra 4.4 Google Chrome Google Update Helper Griffith 0.13.1 H1Z1 HandBrake 0.9.8 HD Tune 2.55 Java 8 Update 77 Java 8 Update 91 Java Auto Updater Kruidvat fotoservice Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.5.2 (NLD) Microsoft Application Error Reporting Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x86) Microsoft Lync 2010 Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server 2008 Microsoft SQL Server 2008 Browser Microsoft SQL Server 2008 Common Files Microsoft SQL Server 2008 Database Engine Services Microsoft SQL Server 2008 Database Engine Shared Microsoft SQL Server 2008 Native Client Microsoft SQL Server 2008 RsFx Driver Microsoft SQL Server 2008 Setup Support Files Microsoft SQL Server VSS Writer Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506 Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506 Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD Minecraft MonkeyTales - De Prinses Van Sundara v2.0 Movie Maker Mozilla Firefox 47.0 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT110 NirSoft BlueScreenView NVIDIA-configuratiescherm 341.92 NVIDIA 3D Vision controllerstuurprogramma 306.97 NVIDIA 3D Vision stuurprogramma 311.06 NVIDIA Display Control Panel NVIDIA Drivers NVIDIA ForceWare Network Access Manager NVIDIA Grafisch stuurprogramma 311.06 NVIDIA Install Application NVIDIA MediaShield NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.12.0604 NVIDIA Stereoscopic 3D Driver NVIDIA Update 1.11.3 NVIDIA Update Components Ogg Codecs 0.81.15562 Orban/Coding Technologies AAC/aacPlus Player PluginT 1.0 Photo Common Photo Gallery SafeZone Stable 1.48.2066.114 Secure Download Manager Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3115130) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB3114414) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956063) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054984) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101520) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3114872) 32-Bit Edition Security Update for Microsoft Visio Viewer 2010 (KB2999465) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3115243) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Sql Server Customer Experience Improvement Program Steam Stuurprogrammapakket voor Windows - Fedict SmartCard (10/04/2011 4.0.0.5) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD tiptoi© Manager 3.0.9 Unity Web Player Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2999508) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2881030) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft Office 2010 (KB3114750) 32-Bit Edition Update for Microsoft Office 2010 (KB3114989) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft OneNote 2010 (KB3114410) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114756) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3115127) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB3114867) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition VLC media player Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack yEd Graph Editor 3.10 ==== Running Processes ====================== C:\WINDOWS\system32\lsass.exe C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\WINDOWS\system32\nvvsvc.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\WINDOWS\system32\mqsvc.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe C:\Program Files\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\sqlservr.exe C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe C:\WINDOWS\system32\dashost.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\WINDOWS\System32\WinLogon.exe C:\WINDOWS\System32\dwm.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\WINDOWS\system32\nvvsvc.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\taskhostw.exe C:\WINDOWS\Explorer.EXE C:\Windows\System32\RuntimeBroker.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE C:\WINDOWS\System32\fontdrvhost.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Defender\MpCmdRun.exe C:\Users\Kevin\Desktop\zoek(1).exe C:\WINDOWS\system32\conhost.exe C:\WINDOWS\system32\conhost.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k apphost C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k iissvcs C:\WINDOWS\system32\svchost.exe -k appmodel C:\WINDOWS\System32\svchost.exe -k utcsvc C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9jsr.default-1352063216321 user.js not found ---- Lines WiseEnhance removed from prefs.js ---- user_pref("extensions.WiseEnhance.asul", "1398493817579"); user_pref("extensions.WiseEnhance.aul", "1398585479944"); user_pref("extensions.WiseEnhance.irl", true); user_pref("extensions.WiseEnhance.is", "isgiwhBE"); user_pref("extensions.WiseEnhance.ug", "20EBFFF7-8118-4137-9A86-5C94C2A38983"); ---- FireFox user.js and prefs.js backups ---- prefs_11-07-2016_1025_.backup ==== Deleting Files \ Folders ====================== C:\Users\Kevin\AppData\Roaming\.technic deleted C:\found.000 deleted C:\PROGRA~3\Package Cache deleted C:\Users\Kevin\AppData\Local\Unity deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\Kevin\AppData\LocalLow\Unity deleted "C:\found.001" not deleted "C:\found.001\dir0000.chk" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 3072 MB CPU Info: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz CPU Speed: 2500,6 MHz Sound Card: Luidsprekers (High Definition A | Digitale audio (S/PDIF) (High D | Luidsprekers (High Definition A | Display Adapters: NVIDIA GeForce G100 | NVIDIA GeForce G100 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: NVIDIA nForce Networking Controller CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GH40F Ports: COM1 LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 342,1GB | D: 341,9GB Hard Disks - Free: C: 206,8GB | D: 341,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 02/26/09 | ACRSYS - 20090226 Time Zone: Romance (standaardtijd) Motherboard *: ACER MCP73VE Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Firefox 47.0 Internet Explorer Version: 11.420.10586.0 Mozilla Firefox version: 47.0 (x86 nl) Google Chrome version: 51.0.2704.103 Adobe Reader version: 11.0.16.13 Sun Java version: 1.8.0_91 (32-bit) Flash Player version: 22.0.0.192 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-07-06 15:52:45 7EFB1577EFBD72521E670188AA546C7D 53208 ----a-w- C:\WINDOWS\avastSS.scr 2016-07-06 15:48:23 FB8900191867C5B4AA61AF85B8DD1869 4074160 ----a-w- C:\WINDOWS\explorer.exe 2016-07-05 19:40:30 F955ACDA319098480A9387D86E179232 19053 ----a-w- C:\WINDOWS\diagwrn.xml 2016-07-05 19:40:30 D7FDF31447A5AA8D5B4A06D2477B41E5 22737 ----a-w- C:\WINDOWS\diagerr.xml 2016-06-30 15:28:31 BFF9FF54D28A3023A6EEDF99DE29A80E 921280 ----a-w- C:\WINDOWS\ucrtbase.dll ====== C:\Users\Kevin\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\system32 ===== 2016-07-06 15:52:58 69CD2A5DAF1F645EBC71243AFE94E6E8 319248 ----a-w- C:\WINDOWS\System32\aswBoot.exe 2016-07-06 15:52:23 A82F594EE2471B4F304DA1DF068552EE 758 ----a-w- C:\WINDOWS\System32\license.rtf 2016-07-06 15:48:29 F6B8035A4B4D0339976A2F5A82430C8F 445952 ----a-w- C:\WINDOWS\System32\PsmServiceExtHost.dll 2016-07-06 15:48:29 E724CB02012CEBF773DC9FE304DCD946 501600 ----a-w- C:\WINDOWS\System32\NetSetupEngine.dll 2016-07-06 15:48:29 E18B5F1FC336DD9FABF09D7F290FE5C7 826368 ----a-w- C:\WINDOWS\System32\audiosrv.dll 2016-07-06 15:48:29 DAA8D7786C55033CE13BDDC8766945D9 782336 ----a-w- C:\WINDOWS\System32\fvewiz.dll 2016-07-06 15:48:29 CD36155EE56E94B4E8830FA90822511F 503296 ----a-w- C:\WINDOWS\System32\SettingSync.dll 2016-07-06 15:48:29 CBA88F103DC43FF8D993F6E016F73F64 307712 ----a-w- C:\WINDOWS\System32\bdesvc.dll 2016-07-06 15:48:29 C523201E8C11F6A4F6C6A23B64F0A38D 73216 ----a-w- C:\WINDOWS\System32\wpdbusenum.dll 2016-07-06 15:48:29 BB131B8D48CAA0A6D294569734AF2BA9 110080 ----a-w- C:\WINDOWS\System32\BitLockerDeviceEncryption.exe 2016-07-06 15:48:29 B9AD8E15F6641E328C1543688B5EE2E8 2061824 ----a-w- C:\WINDOWS\System32\MFMediaEngine.dll 2016-07-06 15:48:29 9A9CDAB4049BDB383C5CA8746F44E4CB 269824 ----a-w- C:\WINDOWS\System32\FWPUCLNT.DLL 2016-07-06 15:48:29 993CC008F0A73F3731DD3920B65B3762 742400 ----a-w- C:\WINDOWS\System32\IKEEXT.DLL 2016-07-06 15:48:29 97BFB36F948E5A2ECF9A8F6FBEEFDEDF 297072 ----a-w- C:\WINDOWS\System32\audiodg.exe 2016-07-06 15:48:29 8D9CB9BB31AC17112D75456E928C3839 103936 ----a-w- C:\WINDOWS\System32\Windows.Media.Devices.dll 2016-07-06 15:48:29 6BC4844BD633B3980668DBBBAB4A9F82 88576 ----a-w- C:\WINDOWS\System32\BdeHdCfgLib.dll 2016-07-06 15:48:29 6A559FCA31C74D4D046D430D5189A223 265216 ----a-w- C:\WINDOWS\System32\fveui.dll 2016-07-06 15:48:29 594B367C2F895C531DFFDFA5E9C928F9 673280 ----a-w- C:\WINDOWS\System32\MPSSVC.dll 2016-07-06 15:48:29 583F043AE4433F20EB051813BC7BEBD0 192512 ----a-w- C:\WINDOWS\System32\fveapibase.dll 2016-07-06 15:48:29 540637986EA75DCA56C6EC6CAC3BFB3D 614912 ----a-w- C:\WINDOWS\System32\fveapi.dll 2016-07-06 15:48:29 53BF04808BD667A4F74D1907A5E1CA85 227328 ----a-w- C:\WINDOWS\System32\ListSvc.dll 2016-07-06 15:48:29 53BD5A0B7D0B027984D99BEDB945CEE6 84832 ----a-w- C:\WINDOWS\System32\NetSetupApi.dll 2016-07-06 15:48:29 50F70E15AC5F9F142016D6E43E5720C9 142336 ----a-w- C:\WINDOWS\System32\NetSetupSvc.dll 2016-07-06 15:48:29 3B6A9955350DF92683A46ED54EDBBAD2 59904 ----a-w- C:\WINDOWS\System32\fveskybackup.dll 2016-07-06 15:48:29 3A565562CA89069C1E0337791D513D57 154112 ----a-w- C:\WINDOWS\System32\SystemSettings.DeviceEncryptionHandlers.dll 2016-07-06 15:48:29 359765C7C700F7CED909A69C5DBBD943 140800 ----a-w- C:\WINDOWS\System32\BrowserSettingSync.dll 2016-07-06 15:48:29 2CE163D00A7DA251D77F7B39E267382B 925064 ----a-w- C:\WINDOWS\System32\mfplat.dll 2016-07-06 15:48:29 287FAD133D3E5F47DB367B86DC523631 2798080 ----a-w- C:\WINDOWS\System32\Windows.Media.dll 2016-07-06 15:48:29 1587235261E629DFFAA0C39A72CAD1A6 667648 ----a-w- C:\WINDOWS\System32\AzureSettingSyncProvider.dll 2016-07-06 15:48:29 15298850351DDECB5836F26382D75CCE 554496 ----a-w- C:\WINDOWS\System32\BFE.DLL 2016-07-06 15:48:29 1521149810D6680716E740A6D747FB71 310272 ----a-w- C:\WINDOWS\System32\fvecpl.dll 2016-07-06 15:48:29 0E3E48DE5DFDDF5821DCCCCC94F5C2D0 856928 ----a-w- C:\WINDOWS\System32\SecConfig.efi 2016-07-06 15:48:29 03B7C4D05DB7FF060E49FA900FCE627E 451928 ----a-w- C:\WINDOWS\System32\MFCaptureEngine.dll 2016-07-06 15:48:28 FBBE8B9147474379F54F8A1BACBF9748 388384 ----a-w- C:\WINDOWS\System32\ws2_32.dll 2016-07-06 15:48:28 E907A68BDF610D4178B678919D1394D1 1541792 ----a-w- C:\WINDOWS\System32\ntdll.dll 2016-07-06 15:48:28 DDE33C05D644CC57429340ACB2DA53C5 18674176 ----a-w- C:\WINDOWS\System32\edgehtml.dll 2016-07-06 15:48:28 CD3EE15C196D28260898A2968BF7702D 42496 ----a-w- C:\WINDOWS\System32\gpscript.dll 2016-07-06 15:48:28 CB7870019D9F8787F1DC53808DEAC838 160768 ----a-w- C:\WINDOWS\System32\GnssAdapter.dll 2016-07-06 15:48:28 CAFBFADE0C49650CEB17A509ACEA7AB8 294912 ----a-w- C:\WINDOWS\System32\ncbservice.dll 2016-07-06 15:48:28 C3BB1475ABDFBC0BB5A37D8BAF3DE733 687616 ----a-w- C:\WINDOWS\System32\msfeeds.dll 2016-07-06 15:48:28 BB52D26B0C472BA382DC6A58EE8037B5 792328 ----a-w- C:\WINDOWS\System32\rpcrt4.dll 2016-07-06 15:48:28 9CAC58EBAFB3E32711920568810CDCD7 307200 ----a-w- C:\WINDOWS\System32\ieproxy.dll 2016-07-06 15:48:28 92347FC58A8BD2A45F440239EA9A4F04 12128256 ----a-w- C:\WINDOWS\System32\ieframe.dll 2016-07-06 15:48:28 8358911BAB0DA1AA9F569D35260CE93C 579072 ----a-w- C:\WINDOWS\System32\gpprefcl.dll 2016-07-06 15:48:28 7823862FA05558EB61C72D8A5A163ADA 3664896 ----a-w- C:\WINDOWS\System32\jscript9.dll 2016-07-06 15:48:28 6D879552B32CCD2536F66F4F88F54800 19344384 ----a-w- C:\WINDOWS\System32\mshtml.dll 2016-07-06 15:48:28 6762E4ACE8D11FCD80EA4011DD22B857 5660160 ----a-w- C:\WINDOWS\System32\Chakra.dll 2016-07-06 15:48:28 30E3DC9ED2C6641709AC961CB7CE72BB 647680 ----a-w- C:\WINDOWS\System32\jscript.dll 2016-07-06 15:48:28 2FDF5001427D457AC43942FADC742404 360480 ----a-w- C:\WINDOWS\System32\bcryptprimitives.dll 2016-07-06 15:48:28 210C06823E0ACFDA0ADAC49D906DD9E0 1561392 ----a-w- C:\WINDOWS\System32\KernelBase.dll 2016-07-06 15:48:28 1AAB625120072DEFCF892910B8B9B70C 55808 ----a-w- C:\WINDOWS\System32\basesrv.dll 2016-07-06 15:48:24 FB68B81CBD3F79D09E3EA1D0DFB424B6 37376 ----a-w- C:\WINDOWS\System32\atmlib.dll 2016-07-06 15:48:24 E48F0A089D9BAE356BF14FE3A16B1147 489984 ----a-w- C:\WINDOWS\System32\Windows.UI.dll 2016-07-06 15:48:24 E391DD57E6965C8D2DB05A4A52F80EC8 546456 ----a-w- C:\WINDOWS\System32\fontdrvhost.exe 2016-07-06 15:48:24 D7F32F4526844C3ADF4119B9E002AFD1 49504 ----a-w- C:\WINDOWS\System32\dwminit.dll 2016-07-06 15:48:24 9BD17D372080234722C1139DAC039C9D 93696 ----a-w- C:\WINDOWS\System32\fontsub.dll 2016-07-06 15:48:24 92A252E7DAF67D36BC81758A0F8596EB 2195632 ----a-w- C:\WINDOWS\System32\d3d10warp.dll 2016-07-06 15:48:24 91ED19257EAA98C1C95A7E5F0FF07FF0 10240 ----a-w- C:\WINDOWS\System32\oleacchooks.dll 2016-07-06 15:48:24 5922C03A67F868265E5AB176DB6D641D 316256 ----a-w- C:\WINDOWS\System32\atmfd.dll 2016-07-06 15:48:24 1A341701906986F1865766C6849269FC 323072 ----a-w- C:\WINDOWS\System32\oleacc.dll 2016-07-06 15:48:23 FF85D524DD10A69B20B6D1EFAE94E5F1 122368 ----a-w- C:\WINDOWS\System32\omadmclient.exe 2016-07-06 15:48:23 FCCA4EF837C8F30AA77F1379DE77D81C 305296 ----a-w- C:\WINDOWS\System32\SystemSettingsAdminFlows.exe 2016-07-06 15:48:23 F85C009CF05F129A0FC67248FA981786 193536 ----a-w- C:\WINDOWS\System32\DAFWSD.dll 2016-07-06 15:48:23 F297B1F54D3FF42732C89C738AEC041F 141824 ----a-w- C:\WINDOWS\System32\easwrt.dll 2016-07-06 15:48:23 F220A110AA7594A0964C1B51FF4F01B7 365056 ----a-w- C:\WINDOWS\System32\DataSenseHandlers.dll 2016-07-06 15:48:23 F07AE86B2CD1C2CF6AE7812C60299032 535040 ----a-w- C:\WINDOWS\System32\rastls.dll 2016-07-06 15:48:23 ED17649C4B6D4E9A9530F77C60D4ECE1 65024 ----a-w- C:\WINDOWS\System32\adhsvc.dll 2016-07-06 15:48:23 EA972DB9D4E5CF7FAC5A5D863FFD4E69 116224 ----a-w- C:\WINDOWS\System32\dmcertinst.exe 2016-07-06 15:48:23 E880AEDD34280AF3F54EA22D964793B1 576192 ----a-w- C:\WINDOWS\System32\generaltel.dll 2016-07-06 15:48:23 E84A0D77142F47275CC24F643B880731 1028608 ----a-w- C:\WINDOWS\System32\wifinetworkmanager.dll 2016-07-06 15:48:23 E6CB15ADD1702868915C7ABCD8E13E02 973504 ----a-w- C:\WINDOWS\System32\aeinv.dll 2016-07-06 15:48:23 E61EC272F739E5618932823024311269 66560 ----a-w- C:\WINDOWS\System32\NFCProvisioningPlugin.dll 2016-07-06 15:48:23 DD0FA09CBD6EB1F296F2B11FB30FBADA 70144 ----a-w- C:\WINDOWS\System32\MDMAppInstaller.exe 2016-07-06 15:48:23 DCAC3EE469A3B0C0EC5660D730DF6BDF 9918976 ----a-w- C:\WINDOWS\System32\twinui.dll 2016-07-06 15:48:23 DB2E69C20C446A55A1628319CA8A12E7 310112 ----a-w- C:\WINDOWS\System32\wifitask.exe 2016-07-06 15:48:23 D9A8F691291DA3BAEE3F8110B231F6FD 258560 ----a-w- C:\WINDOWS\System32\usocore.dll 2016-07-06 15:48:23 D8C44C34BC206902947E55E2C94E8D38 2921880 ----a-w- C:\WINDOWS\System32\iertutil.dll 2016-07-06 15:48:23 D8C2D0947EAA696FAB16717695F9818A 81088 ----a-w- C:\WINDOWS\System32\acmigration.dll 2016-07-06 15:48:23 D85A4E359C2143E1610C9138A7841578 141824 ----a-w- C:\WINDOWS\System32\enrollmentapi.dll 2016-07-06 15:48:23 D6FD797C6662E73629DE30C1C9042A68 1075200 ----a-w- C:\WINDOWS\System32\Windows.UI.Shell.dll 2016-07-06 15:48:23 D5BF10F0C309C82820813A7190CE1F5F 65536 ----a-w- C:\WINDOWS\System32\wininetlui.dll 2016-07-06 15:48:23 D49843E6D8FF8F638C6639C90B6D0E9A 359936 ----a-w- C:\WINDOWS\System32\dmenrollengine.dll 2016-07-06 15:48:23 D3187BFDAA6E37E11DB7AF21F15F364A 601600 ----a-w- C:\WINDOWS\System32\win32spl.dll 2016-07-06 15:48:23 CDD21C25CA12F3900D10F5174A4062CB 334336 ----a-w- C:\WINDOWS\System32\bcastdvr.exe 2016-07-06 15:48:23 CD12A269274F2916A3661198E13CBBC4 799744 ----a-w- C:\WINDOWS\System32\SRH.dll 2016-07-06 15:48:23 CC0126649EEB0D9751C01B1ADB661416 484864 ----a-w- C:\WINDOWS\System32\wcmsvc.dll 2016-07-06 15:48:23 CA3C908B5C24293F1F1FB89301D63F16 1588224 ----a-w- C:\WINDOWS\System32\msxml3.dll 2016-07-06 15:48:23 C9D7861D1C984E1997A3778A97DD1AF9 162816 ----a-w- C:\WINDOWS\System32\MTF.dll 2016-07-06 15:48:23 C68CB4CE7C86922F8942396F816F99AB 161792 ----a-w- C:\WINDOWS\System32\BrokerLib.dll 2016-07-06 15:48:23 C64AD9BED6D55690482D48878D7E383B 33792 ----a-w- C:\WINDOWS\System32\dmenterprisediagnostics.dll 2016-07-06 15:48:23 C5B6712A64DAC8C73779462376D80740 783872 ----a-w- C:\WINDOWS\System32\RDXService.dll 2016-07-06 15:48:23 C31BB8559C52E389B82A4B533C2FB39A 764928 ----a-w- C:\WINDOWS\System32\Windows.UI.Cred.dll 2016-07-06 15:48:23 C13734140AB07E2376387CD9B4C07F69 527872 ----a-w- C:\WINDOWS\System32\vpnike.dll 2016-07-06 15:48:23 C0457DBE259A80A27CE19C8A8CEDFFF0 103424 ----a-w- C:\WINDOWS\System32\wificonnapi.dll 2016-07-06 15:48:23 BE6B9C2EA9C5CA24D6BB73CFAD92ACBF 354656 ----a-w- C:\WINDOWS\System32\halmacpi.dll 2016-07-06 15:48:23 BE6B9C2EA9C5CA24D6BB73CFAD92ACBF 354656 ----a-w- C:\WINDOWS\System32\hal.dll 2016-07-06 15:48:23 BE1502FE9A663BA3DFC1E05F630D68CB 111608 ----a-w- C:\WINDOWS\System32\gpapi.dll 2016-07-06 15:48:23 BBD6B0059B47D33A25C2CBB57774B26E 440512 ----a-w- C:\WINDOWS\System32\devinv.dll 2016-07-06 15:48:23 B981A07C0A0CCE68BD90DF3E3EC520DE 1707520 ----a-w- C:\WINDOWS\System32\ActiveSyncProvider.dll 2016-07-06 15:48:23 B6506139C8A4CE3BDD3B4EFDF63A87B5 348672 ----a-w- C:\WINDOWS\System32\CredProvDataModel.dll 2016-07-06 15:48:23 B503CB64CC62265B914DA10A5CF87B05 2230272 ----a-w- C:\WINDOWS\System32\wininet.dll 2016-07-06 15:48:23 B4643C990D071EE99D9713336052F97B 193024 ----a-w- C:\WINDOWS\System32\credprovhost.dll 2016-07-06 15:48:23 B1D8636E375413D57B50BDE20CA5E710 358400 ----a-w- C:\WINDOWS\System32\AccountsRt.dll 2016-07-06 15:48:23 B09DFF7CD8E40EA77559C87F3BF310DE 703840 ----a-w- C:\WINDOWS\System32\WWAHost.exe 2016-07-06 15:48:23 B011360F95F911F025BC91CB17449798 1500160 ----a-w- C:\WINDOWS\System32\urlmon.dll 2016-07-06 15:48:23 B004992A381FCE04934893BB7D9BDD19 504320 ----a-w- C:\WINDOWS\System32\vbscript.dll 2016-07-06 15:48:23 AE6E1FEA9741D7B2712B6D1DD0D01343 42688 ----a-w- C:\WINDOWS\System32\CompatTelRunner.exe 2016-07-06 15:48:23 AD1EC1102124182624F1224768FFAE96 564224 ----a-w- C:\WINDOWS\System32\WSDApi.dll 2016-07-06 15:48:23 ACE2B02BA07DF7F13F59D07F7A38AA18 161792 ----a-w- C:\WINDOWS\System32\msorcl32.dll 2016-07-06 15:48:23 A9E193BE154B7145EF06FD0FD10232A0 151040 ----a-w- C:\WINDOWS\System32\mdmregistration.dll 2016-07-06 15:48:23 A81096C7614E48BB406000E28560F954 133120 ----a-w- C:\WINDOWS\System32\SubscriptionMgr.dll 2016-07-06 15:48:23 A5DA4435BC6081272F84659588D9DECB 97792 ----a-w- C:\WINDOWS\System32\CloudDomainJoinDataModelServer.dll 2016-07-06 15:48:23 A495EA4706387D12C00641D8C48BA527 890368 ----a-w- C:\WINDOWS\System32\AppxPackaging.dll 2016-07-06 15:48:23 9EA20A168AC2F1341F7085EFBA3EACA1 70656 ----a-w- C:\WINDOWS\System32\AppCapture.dll 2016-07-06 15:48:23 9E6DBA611E99BE75589D6A358F54364F 137728 ----a-w- C:\WINDOWS\System32\shacct.dll 2016-07-06 15:48:23 9D70D8314643E65A11BC9CE702DAF13B 309248 ----a-w- C:\WINDOWS\System32\IPSECSVC.DLL 2016-07-06 15:48:23 9BBE7D1B5B0FC534CBA0B2444BD05204 957608 ----a-w- C:\WINDOWS\System32\ole32.dll 2016-07-06 15:48:23 9B034D049D1C6EC9BED55D2F27D86ED9 2186 ----a-w- C:\WINDOWS\System32\AppxProvisioning.xml 2016-07-06 15:48:23 990E71AF2DDF55C4FF672FD2C456B876 1733632 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.dll 2016-07-06 15:48:23 96BFB1E4B3F38D999E418D286BE45BFB 118272 ----a-w- C:\WINDOWS\System32\mtxoci.dll 2016-07-06 15:48:23 941A9C918A7BD7CA5599352C61A4B473 1896960 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll 2016-07-06 15:48:23 92B98A16E41005D74CF7B2EF28AB1FCF 26112 ----a-w- C:\WINDOWS\System32\wsdchngr.dll 2016-07-06 15:48:23 8FA7F64802B717935AB4E949DE9EF2D0 464896 ----a-w- C:\WINDOWS\System32\enterprisecsps.dll 2016-07-06 15:48:23 8BA66BA61196F1D68849498636BCC7AD 757192 ----a-w- C:\WINDOWS\System32\iuilp.dll 2016-07-06 15:48:23 8AD6E4D830E83344F3A86F1D5CE12220 107520 ----a-w- C:\WINDOWS\System32\browser.dll 2016-07-06 15:48:23 861D71E2284DCEA5E9309CDE8D920252 485888 ----a-w- C:\WINDOWS\System32\newdev.dll 2016-07-06 15:48:23 8162BC2EC9E529AA90F196A12D887308 4268880 ----a-w- C:\WINDOWS\System32\setupapi.dll 2016-07-06 15:48:23 7FFD756E7DD8BA83B4B4EF41F51B7DF5 1582080 ----a-w- C:\WINDOWS\System32\Windows.UI.Immersive.dll 2016-07-06 15:48:23 7D276C5DF303462091092C3311027D30 129024 ----a-w- C:\WINDOWS\System32\AboveLockAppHost.dll 2016-07-06 15:48:23 7C94DE2E519F5A07CDB786B9E876759B 5797216 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe 2016-07-06 15:48:23 76766FFFE4D7B966158C7C64EF2CB193 927072 ----a-w- C:\WINDOWS\System32\winload.exe 2016-07-06 15:48:23 74CC07D80D737D33FD3D899522D6A9B6 1232576 ----a-w- C:\WINDOWS\System32\appraiser.dll 2016-07-06 15:48:23 74598DB5B7BD6EA952BED4928DACFFDC 16896 ----a-w- C:\WINDOWS\System32\httpprxp.dll 2016-07-06 15:48:23 7431E8DD956A930522CD6B6ADCEAC170 813056 ----a-w- C:\WINDOWS\System32\dosvc.dll 2016-07-06 15:48:23 737C4031C65BDD190E470E051F48B40D 79360 ----a-w- C:\WINDOWS\System32\DeviceEnroller.exe 2016-07-06 15:48:23 6C77467759109883BD3179044D371091 1193984 ----a-w- C:\WINDOWS\System32\gpsvc.dll 2016-07-06 15:48:23 6C2B2CA75F486449921ED10A39DB9799 69744 ----a-w- C:\WINDOWS\System32\netapi32.dll 2016-07-06 15:48:23 6A23A4478EDF4CD088C7ACDD0CEA0CB3 249536 ----a-w- C:\WINDOWS\System32\invagent.dll 2016-07-06 15:48:23 66E06142A6CE4B854C210CA54D6A92A0 168448 ----a-w- C:\WINDOWS\System32\wcmcsp.dll 2016-07-06 15:48:23 64229C17CFE9262689EAE3E852D3975F 296488 ----a-w- C:\WINDOWS\System32\policymanager.dll 2016-07-06 15:48:23 5E98A6CFB2ACA91D68492B28D3108E2D 740352 ----a-w- C:\WINDOWS\System32\SharedStartModel.dll 2016-07-06 15:48:23 5E26ADA7E461FCFE1AEC28C9CEA6A6D6 63008 ----a-w- C:\WINDOWS\System32\easinvoker.exe 2016-07-06 15:48:23 5DC9ED2C89D94C47892DF237D604BDC8 200192 ----a-w- C:\WINDOWS\System32\Windows.Internal.Management.dll 2016-07-06 15:48:23 5D9BB3289D25FDEA1B2DD491C9771778 21123320 ----a-w- C:\WINDOWS\System32\shell32.dll 2016-07-06 15:48:23 5CE25DC915848E76C75B663E5628BDA7 144384 ----a-w- C:\WINDOWS\System32\wscsvc.dll 2016-07-06 15:48:23 5B0C0217C5F20C683C8A25969486103C 129024 ----a-w- C:\WINDOWS\System32\SettingsHandlers_Privacy.dll 2016-07-06 15:48:23 594D1C58958A1F980336964B643784F3 3671040 ----a-w- C:\WINDOWS\System32\msi.dll 2016-07-06 15:48:23 56DEB6F17F290B8C4AF8B2AA10097B55 88576 ----a-w- C:\WINDOWS\System32\olepro32.dll 2016-07-06 15:48:23 551624F398703A90CAFCC5777CEA99E8 450560 ----a-w- C:\WINDOWS\System32\SyncController.dll 2016-07-06 15:48:23 51CFF0A35CAF4F36E6017814E29C8685 71680 ----a-w- C:\WINDOWS\System32\AppxSysprep.dll 2016-07-06 15:48:23 4DED20A327D15D69FB85310D14D67711 291328 ----a-w- C:\WINDOWS\System32\polstore.dll 2016-07-06 15:48:23 4CD092A1C74FD62BDC76BF09BA38C2BA 497664 ----a-w- C:\WINDOWS\System32\StorSvc.dll 2016-07-06 15:48:23 4C6145BBEFDD7092ABFA5F7614BA2E66 53760 ----a-w- C:\WINDOWS\System32\FwRemoteSvr.dll 2016-07-06 15:48:23 4AECB6D0F5FDE5F3472154E5ED1BD02A 177664 ----a-w- C:\WINDOWS\System32\aepic.dll 2016-07-06 15:48:23 4AE45F3077E79A3E3B22996F80DA9E7A 354304 ----a-w- C:\WINDOWS\System32\NetSetupShim.dll 2016-07-06 15:48:23 4A618D1B1D6D46B2FE635A85A3B10F3E 494592 ----a-w- C:\WINDOWS\System32\winlogon.exe 2016-07-06 15:48:23 49A21B514FC10B2D55499D58DC78E862 45568 ----a-w- C:\WINDOWS\System32\jsproxy.dll 2016-07-06 15:48:23 418413F959B1DCAB143A3446B2ED03DF 2880512 ----a-w- C:\WINDOWS\System32\SystemSettingsThresholdAdminFlowUI.dll 2016-07-06 15:48:23 400912A54723A7579A0009091B3AAA9E 204800 ----a-w- C:\WINDOWS\System32\provengine.dll 2016-07-06 15:48:23 3FB5B631FEF2F427BAFDAA0A4C4F370B 613120 ----a-w- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll 2016-07-06 15:48:23 3D91D5229C09C8BD8D6A08D9415507F6 875992 ----a-w- C:\WINDOWS\System32\winresume.efi 2016-07-06 15:48:23 3C5D8B400B295E084A53B843B6232C95 527360 ----a-w- C:\WINDOWS\System32\PhoneProviders.dll 2016-07-06 15:48:23 38E67993741C4FFFE2ADDD6277C3AB9F 846336 ----a-w- C:\WINDOWS\System32\iphlpsvc.dll 2016-07-06 15:48:23 32A696B0A48CCCCE5FC8E8E572FD4E90 434688 ----a-w- C:\WINDOWS\System32\LogonController.dll 2016-07-06 15:48:23 30F680D95B0CCABE46C775672C912C0A 306832 ----a-w- C:\WINDOWS\System32\wlanapi.dll 2016-07-06 15:48:23 2EEF3CC9E804E82920FD4790CDCC88BA 84216 ----a-w- C:\WINDOWS\System32\omadmapi.dll 2016-07-06 15:48:23 2CDBCCE96C4D038816734B2919AA0FE8 133120 ----a-w- C:\WINDOWS\System32\mdmmigrator.dll 2016-07-06 15:48:23 2B61F5590D75FBFCE614D5EA80E1656F 3196928 ----a-w- C:\WINDOWS\System32\SettingsHandlers_nt.dll 2016-07-06 15:48:23 2B1D3B60AD7B0FFD18AE23BB1E2DED8E 74240 ----a-w- C:\WINDOWS\System32\browserbroker.dll 2016-07-06 15:48:23 2A729C31B2A5D2A9EA1D23AD31580700 199680 ----a-w- C:\WINDOWS\System32\provhandlers.dll 2016-07-06 15:48:23 29643A79D5258D5E643765A68FEA1AF9 771120 ----a-w- C:\WINDOWS\System32\winresume.exe 2016-07-06 15:48:23 2052711F5D4F398D7074657F152071BC 109056 ----a-w- C:\WINDOWS\System32\httpprxm.dll 2016-07-06 15:48:23 1E4705EF7CFA3377C4F1C47B1F4B8278 274432 ----a-w- C:\WINDOWS\System32\SystemEventsBrokerServer.dll 2016-07-06 15:48:23 1B4F03A9F11169672067ED4FD7504AD6 1445888 ----a-w- C:\WINDOWS\System32\SRHInproc.dll 2016-07-06 15:48:23 1B26C71109A2EA27DD6684719BF493EC 188256 ----a-w- C:\WINDOWS\System32\AppxAllUserStore.dll 2016-07-06 15:48:23 198351C97D6807F64A2F25A750324A42 57856 ----a-w- C:\WINDOWS\System32\EnterpriseDesktopAppMgmtCSP.dll 2016-07-06 15:48:23 19782B3AFF198017DF643D72875B85AD 230400 ----a-w- C:\WINDOWS\System32\RDXTaskFactory.dll 2016-07-06 15:48:23 168F532B5A373E2CDD216BD8D3023E4A 106496 ----a-w- C:\WINDOWS\System32\dmcsps.dll 2016-07-06 15:48:23 160AA914CA613F6226C36014285D0DEF 73728 ----a-w- C:\WINDOWS\System32\policymanagerprecheck.dll 2016-07-06 15:48:23 15D996BEE7D5A41DA8932A646319DB9C 204800 ----a-w- C:\WINDOWS\System32\accountaccessor.dll 2016-07-06 15:48:23 15206AE3E9E2C180CEF90A6EC5A60330 1800704 ----a-w- C:\WINDOWS\System32\NetworkMobileSettings.dll 2016-07-06 15:48:23 12711601CB5C342F60A3621EF206874B 558080 ----a-w- C:\WINDOWS\System32\internetmail.dll 2016-07-06 15:48:23 122F8F0FAF690B88FBDE2DB097740AB6 569744 ----a-w- C:\WINDOWS\System32\SHCore.dll 2016-07-06 15:48:23 0F5A8C9BB2C09E03C1D0AA2670945501 1051584 ----a-w- C:\WINDOWS\System32\winload.efi 2016-07-06 15:48:23 0DB3E3B7675CA296243902626931C46A 951808 ----a-w- C:\WINDOWS\System32\wwansvc.dll 2016-07-06 15:48:23 0CBC2D1C2E94F667B9CC8F0FF8236613 453632 ----a-w- C:\WINDOWS\System32\bisrv.dll 2016-07-06 15:48:23 0BF6FDE72035DDC32FAF24344853B80B 777728 ----a-w- C:\WINDOWS\System32\MsSpellCheckingFacility.dll 2016-07-06 15:48:23 0B2EB30A9E987E8F85C9B28BDE04F028 254656 ----a-w- C:\WINDOWS\System32\LockAppHost.exe 2016-07-06 15:48:19 FAD56D0A789345614220D9B770DF400A 465760 ----a-w- C:\WINDOWS\System32\SettingSyncHost.exe 2016-07-06 15:48:19 FA9C9F9178138F5F9B795F230030E41B 545432 ----a-w- C:\WINDOWS\System32\CoreMessaging.dll 2016-07-06 15:48:19 FA6CCFE5305E3D276F06A104EAA83029 4759040 ----a-w- C:\WINDOWS\System32\d2d1.dll 2016-07-06 15:48:19 F62430C1C9A23E5BAD5C4A43A66F662B 87040 ----a-w- C:\WINDOWS\System32\MapsBtSvc.dll 2016-07-06 15:48:19 F5814ED9E8B83F872FBDCB139B001C8A 23552 ----a-w- C:\WINDOWS\System32\wups.dll 2016-07-06 15:48:19 F45748C52B7F62438E61E7EC3CB5E5B1 63488 ----a-w- C:\WINDOWS\System32\ngcpopkeysrv.dll 2016-07-06 15:48:19 EFDC1155AAF65E6AC95171677DC2EFF1 85504 ----a-w- C:\WINDOWS\System32\FontProvider.dll 2016-07-06 15:48:19 EAF904785CA7849C66F6DC2EF0A0E0E7 22528 ----a-w- C:\WINDOWS\System32\TokenBrokerCookies.exe 2016-07-06 15:48:19 E9E7FA1FC796ADC16A1169736EFC7AF3 84480 ----a-w- C:\WINDOWS\System32\VEDataLayerHelpers.dll 2016-07-06 15:48:19 E92296572637E229CB8598F8A0FDFD86 22528 ----a-w- C:\WINDOWS\System32\LicenseManagerShellext.exe 2016-07-06 15:48:19 E793B893135F3B6942B6230D45E27610 61440 ----a-w- C:\WINDOWS\System32\samlib.dll 2016-07-06 15:48:19 E49F71895EF40C0358C671562C023D2B 498176 ----a-w- C:\WINDOWS\System32\ngcsvc.dll 2016-07-06 15:48:19 E3486D5688BF02E6DBDF12F84D3A0990 1152000 ----a-w- C:\WINDOWS\System32\win32kbase.sys 2016-07-06 15:48:19 E2D88FB7452D9AD159B8C41122ACD94D 66560 ----a-w- C:\WINDOWS\System32\tzautoupdate.dll 2016-07-06 15:48:19 E00F4912EA28E6AA0740D4DBB344740A 63488 ----a-w- C:\WINDOWS\System32\cryptsvc.dll 2016-07-06 15:48:19 DA97C8A8C517210E4ACA90E45C836E80 80896 ----a-w- C:\WINDOWS\System32\BluetoothApis.dll 2016-07-06 15:48:19 D93D6F9BC1EE3329A9DCF3B9591EB156 219136 ----a-w- C:\WINDOWS\System32\VEEventDispatcher.dll 2016-07-06 15:48:19 D57F7D9FB771CA0B434E975F76413430 1072128 ----a-w- C:\WINDOWS\System32\Windows.Web.Http.dll 2016-07-06 15:48:19 D3AFC5FFAE385854EAC5D5B8C263505E 1396592 ----a-w- C:\WINDOWS\System32\gdi32.dll 2016-07-06 15:48:19 D28C3C4AAB51D00FD6EFA07F6DCC1CBA 1862008 ----a-w- C:\WINDOWS\System32\CoreUIComponents.dll 2016-07-06 15:48:19 D1600085065675F98F41A01DCD03AA6E 854528 ----a-w- C:\WINDOWS\System32\Windows.Devices.Bluetooth.dll 2016-07-06 15:48:19 CEF14DB231B344BBDBF7C04A12D8336B 293888 ----a-w- C:\WINDOWS\System32\dhcpcore.dll 2016-07-06 15:48:19 CD1A836088962907B1BF11FEF383EB05 149696 ----a-w- C:\WINDOWS\System32\DeviceCensus.exe 2016-07-06 15:48:19 CC68ABFB0AA40F62E7BD740101A0C92B 1117184 ----a-w- C:\WINDOWS\System32\Windows.Media.Speech.dll 2016-07-06 15:48:19 CC2F923F02D8EB36D0C442CE709B6CD9 1139712 ----a-w- C:\WINDOWS\System32\UIAutomationCore.dll 2016-07-06 15:48:19 CA90D72C7249D79017057F1F48FD1958 711680 ----a-w- C:\WINDOWS\System32\MapControlCore.dll 2016-07-06 15:48:19 C4245A2059B4C9F1DC7E8221F2866B7F 136032 ----a-w- C:\WINDOWS\System32\NetworkUXBroker.exe 2016-07-06 15:48:19 C3063049D15E3C93194463E0A7F213A5 192704 ----a-w- C:\WINDOWS\System32\wininit.exe 2016-07-06 15:48:19 C122D52ED9662F09EC2650B010544468 73872 ----a-w- C:\WINDOWS\System32\srvcli.dll 2016-07-06 15:48:19 C0812763FB9ED4B7A9BE52466F83B8BB 222720 ----a-w- C:\WINDOWS\System32\dnsrslvr.dll 2016-07-06 15:48:19 BF769A5BEA8E50F12264746D30D57C6F 52736 ----a-w- C:\WINDOWS\System32\OnDemandConnRouteHelper.dll 2016-07-06 15:48:19 B91176A909798C7EAC28AB4FE786CA53 705536 ----a-w- C:\WINDOWS\System32\wuapi.dll 2016-07-06 15:48:19 B65D241B81A010B6A78CCEEA900CCFC0 56320 ----a-w- C:\WINDOWS\System32\wkscli.dll 2016-07-06 15:48:19 AB48B90C4DB88D2F31D1A6F460F76D29 241664 ----a-w- C:\WINDOWS\System32\cryptngc.dll 2016-07-06 15:48:19 A85B14CB84997E497D6AEB62DFF75978 137728 ----a-w- C:\WINDOWS\System32\dafBth.dll 2016-07-06 15:48:19 A825405D442EB9A2526468E16296DD58 513368 ----a-w- C:\WINDOWS\System32\d3d10level9.dll 2016-07-06 15:48:19 A3B6AED415AEEA114597E5043F45FF18 415232 ----a-w- C:\WINDOWS\System32\StoreAgent.dll 2016-07-06 15:48:19 A1A9DDD5C6A335C0B97423A2F75C9299 453472 ----a-w- C:\WINDOWS\System32\directmanipulation.dll 2016-07-06 15:48:19 A142F1D0FF07C172FA90075B7848CCD0 521728 ----a-w- C:\WINDOWS\System32\StructuredQuery.dll 2016-07-06 15:48:19 9DFF58D3EF668FD8520F4E77DA8B1049 239616 ----a-w- C:\WINDOWS\System32\SensorService.dll 2016-07-06 15:48:19 98DFDD01D5DDD88325E2BD89792895D5 272384 ----a-w- C:\WINDOWS\System32\NgcCtnr.dll 2016-07-06 15:48:19 98DA8D97E83C73E7AD7A142A801E1898 2193408 ----a-w- C:\WINDOWS\System32\actxprxy.dll 2016-07-06 15:48:19 98B8B22277207D0FDB3A8E0FB8D188E8 704000 ----a-w- C:\WINDOWS\System32\samsrv.dll 2016-07-06 15:48:19 928E9904F8801257E11D6AC6C4334AEF 689152 ----a-w- C:\WINDOWS\System32\modernexecserver.dll 2016-07-06 15:48:19 91E692689D548E3C5E7FFE6D42322D86 23776 ----a-w- C:\WINDOWS\System32\wuauclt.exe 2016-07-06 15:48:19 8E8FBA400CD678AB46D46BB24921A051 342528 ----a-w- C:\WINDOWS\System32\AppXDeploymentClient.dll 2016-07-06 15:48:19 8CD58C5006569D5A4EF38E2E7167C324 317280 ----a-w- C:\WINDOWS\System32\mswsock.dll 2016-07-06 15:48:19 89C74675E6DE7888153B1F6644772774 1536088 ----a-w- C:\WINDOWS\System32\crypt32.dll 2016-07-06 15:48:19 89C06DA6E3B3C06F69E2CAFB3431CAF5 31232 ----a-w- C:\WINDOWS\System32\ByteCodeGenerator.exe 2016-07-06 15:48:19 897906025BD3616BF9C30A3979A73DEE 712704 ----a-w- C:\WINDOWS\System32\RemoteNaturalLanguage.dll 2016-07-06 15:48:19 88A3958213B43EED8402D4496149924A 64000 ----a-w- C:\WINDOWS\System32\dhcpcsvc.dll 2016-07-06 15:48:19 8715D1B7B9E57105FCC997A8F936E655 2974208 ----a-w- C:\WINDOWS\System32\win32kfull.sys 2016-07-06 15:48:19 8450005F7BA8662A64E3FB7B0C3EE836 51712 ----a-w- C:\WINDOWS\System32\wshbth.dll 2016-07-06 15:48:19 836DF245362A9E09CC050EB107E85D74 467456 ----a-w- C:\WINDOWS\System32\AppContracts.dll 2016-07-06 15:48:19 806D3A66BBC91F7F2B4FCC337C13EFAE 239104 ----a-w- C:\WINDOWS\System32\NotificationObjFactory.dll 2016-07-06 15:48:19 8000FB1D40149AC05F6BDE9248A6B956 230400 ----a-w- C:\WINDOWS\System32\dhcpcore6.dll 2016-07-06 15:48:19 7D51637A2E604113F1A4E96FF3F2727C 51128 ----a-w- C:\WINDOWS\System32\SensorsNativeApi.dll 2016-07-06 15:48:19 7D02D4745EAD4FC38543C812325D4815 487936 ----a-w- C:\WINDOWS\System32\ngccredprov.dll 2016-07-06 15:48:19 7C7CC816CEEB07022EBCC6B779B16E1D 521728 ----a-w- C:\WINDOWS\System32\Windows.Networking.Connectivity.dll 2016-07-06 15:48:19 7C557ABB26C2B2D930AA005FF6A8C025 592384 ----a-w- C:\WINDOWS\System32\Windows.Web.dll 2016-07-06 15:48:19 7A98F35CAA944483BE4D12D78F36275C 23552 ----a-w- C:\WINDOWS\System32\mapsupdatetask.dll 2016-07-06 15:48:19 77A2A2B7770B73B3FD9CEC2FEE649B6D 140800 ----a-w- C:\WINDOWS\System32\MusNotification.exe 2016-07-06 15:48:19 73A58788F32A98E446220B5E48843967 349696 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll 2016-07-06 15:48:19 72DF09EB58F3D7675A1EB740A858BB92 221184 ----a-w- C:\WINDOWS\System32\NgcCtnrSvc.dll 2016-07-06 15:48:19 71DF6482300C802BB104514F34B460F0 91648 ----a-w- C:\WINDOWS\System32\tdlrecover.exe 2016-07-06 15:48:19 717DDEC1ABA5678EDC9F2AF1044BAA69 2000896 ----a-w- C:\WINDOWS\System32\twinui.appcore.dll 2016-07-06 15:48:19 70128BC69D515F2D38577D2438861424 133632 ----a-w- C:\WINDOWS\System32\Windows.UI.Core.TextInput.dll 2016-07-06 15:48:19 6D062C6E2C47B3DCDE8F4C3FDB634DEE 83456 ----a-w- C:\WINDOWS\System32\InputLocaleManager.dll 2016-07-06 15:48:19 6B0B5260CEB372E28FECFE58F13D32CF 246272 ----a-w- C:\WINDOWS\System32\profsvc.dll 2016-07-06 15:48:19 6A7ACABAE92C837F5C1330188EAE36AE 535080 ----a-w- C:\WINDOWS\System32\dnsapi.dll 2016-07-06 15:48:19 69E1CFC67F4A4043F01AD3513A73ED02 161280 ----a-w- C:\WINDOWS\System32\InstallAgent.exe 2016-07-06 15:48:19 688687C8D860657E6BFDD77B0FFE1DE4 59904 ----a-w- C:\WINDOWS\System32\MosStorage.dll 2016-07-06 15:48:19 67F17B6BBB8D3C41D0A686BA63F8223E 1900032 ----a-w- C:\WINDOWS\System32\wuaueng.dll 2016-07-06 15:48:19 668CDB16FBD3D83D56909358FC814B18 442368 ----a-w- C:\WINDOWS\System32\MBMediaManager.dll 2016-07-06 15:48:19 6616FA9F105B6AFEDF121C3299A8DEF3 54784 ----a-w- C:\WINDOWS\System32\moshost.dll 2016-07-06 15:48:19 64E6A14C4CE85695035BDAA792DAB617 74752 ----a-w- C:\WINDOWS\System32\MapsCSP.dll 2016-07-06 15:48:19 63F463A716A4273B32A5A0ED9D0D5F8E 118784 ----a-w- C:\WINDOWS\System32\VEStoreEventHandlers.dll 2016-07-06 15:48:19 5E52C817BCF919CF11CD523A2EC4A456 638464 ----a-w- C:\WINDOWS\System32\Windows.Networking.dll 2016-07-06 15:48:19 5BD2C4DEDDD4FA6D10047C203AC8E8C0 289792 ----a-w- C:\WINDOWS\System32\ActivationManager.dll 2016-07-06 15:48:19 5AEDC6D333BC8D8B1DE5928FCE2150DB 400896 ----a-w- C:\WINDOWS\System32\OneDriveSettingSyncProvider.dll 2016-07-06 15:48:19 588454298D5160155B522C58EFD81DC4 1273720 ----a-w- C:\WINDOWS\System32\user32.dll 2016-07-06 15:48:19 583A469B50D9EF89E83A4E508A3A91B7 180736 ----a-w- C:\WINDOWS\System32\cdd.dll 2016-07-06 15:48:19 56B22E50C52A0C9DF8F3D2F4E7231B2D 28160 ----a-w- C:\WINDOWS\System32\wuautoappupdate.dll 2016-07-06 15:48:19 56339962C1448BA2CF4C4D25C89938D2 521664 ----a-w- C:\WINDOWS\System32\dxgi.dll 2016-07-06 15:48:19 4F34CCC76E60CCE8BA12663A747EC05B 57344 ----a-w- C:\WINDOWS\System32\dhcpcsvc6.dll 2016-07-06 15:48:19 4D6EC171CBC82E0744F5D53BC2A7D33C 538624 ----a-w- C:\WINDOWS\System32\XblAuthManager.dll 2016-07-06 15:48:19 4B71644224F39A390B6DCC482B3D582A 639488 ----a-w- C:\WINDOWS\System32\TokenBroker.dll 2016-07-06 15:48:19 4B4E9162C3B49AA1FD2FDCD729E99D22 1085952 ----a-w- C:\WINDOWS\System32\lsasrv.dll 2016-07-06 15:48:19 468AA89AF32BEE9D6B0ABBDF7C88CF20 5240960 ----a-w- C:\WINDOWS\System32\windows.storage.dll 2016-07-06 15:48:19 4243F729D260C0D6C6A3B605F51FD518 103424 ----a-w- C:\WINDOWS\System32\updatepolicy.dll 2016-07-06 15:48:19 41C85050EC867A621F28101CF41501FF 132096 ----a-w- C:\WINDOWS\System32\tetheringservice.dll 2016-07-06 15:48:19 408AF8141C4A44BC120F4204F8F79A75 1944576 ----a-w- C:\WINDOWS\System32\InputService.dll 2016-07-06 15:48:19 402A33FCE08200518FB0012A6BF2E966 2722816 ----a-w- C:\WINDOWS\System32\esent.dll 2016-07-06 15:48:19 3F8A279661504764793DE0420D481850 150016 ----a-w- C:\WINDOWS\System32\storewuauth.dll 2016-07-06 15:48:19 3EB91A44E6BCD05CA257E113FCA1DA0C 43520 ----a-w- C:\WINDOWS\System32\browcli.dll 2016-07-06 15:48:19 3C563003AFDD2E6CDC199C2EBDB07886 784896 ----a-w- C:\WINDOWS\System32\NMAA.dll 2016-07-06 15:48:19 3ABE2040F4F9BDDD008EC5D4713D5ABE 294752 ----a-w- C:\WINDOWS\System32\msv1_0.dll 2016-07-06 15:48:19 395AC69CCD9E2D590775AA6ADD2AE1D2 649728 ----a-w- C:\WINDOWS\System32\Windows.ApplicationModel.Store.dll 2016-07-06 15:48:19 388077FF1642D94BF81F9D814F22BBA2 499712 ----a-w- C:\WINDOWS\System32\MessagingDataModel2.dll 2016-07-06 15:48:19 357262D7243D6967C19913554DCC759F 612352 ----a-w- C:\WINDOWS\System32\MapsStore.dll 2016-07-06 15:48:19 318E2A6EC26C9703A5B273B015672660 388608 ----a-w- C:\WINDOWS\System32\schannel.dll 2016-07-06 15:48:19 2E947792E9B1C738E33FD5794B1650F9 30208 ----a-w- C:\WINDOWS\System32\tbauth.dll 2016-07-06 15:48:19 2C0BBF7FC5526D7285BEAD239895C473 682496 ----a-w- C:\WINDOWS\System32\Windows.UI.Input.Inking.dll 2016-07-06 15:48:19 2823A28AB08EE9DCE85436C700799D66 80384 ----a-w- C:\WINDOWS\System32\SensorsNativeApi.V2.dll 2016-07-06 15:48:19 265DB46FE368D8F701A74976D3823ADC 986976 ----a-w- C:\WINDOWS\System32\LicenseManager.dll 2016-07-06 15:48:19 25B0BAA64D6D62873FAA7719DB64015C 183904 ----a-w- C:\WINDOWS\System32\rsaenh.dll 2016-07-06 15:48:19 21D80595A8427CB6F1DDC134E948AECE 6295552 ----a-w- C:\WINDOWS\System32\mos.dll 2016-07-06 15:48:19 218D67A9C0A9D90CB017C0FB1A8EA164 325120 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll 2016-07-06 15:48:19 20D8DBFB40E025C2E99F7146E48116CD 800768 ----a-w- C:\WINDOWS\System32\JpMapControl.dll 2016-07-06 15:48:19 1F90253211F8E102D814F4DE4D550B85 1626624 ----a-w- C:\WINDOWS\System32\dwmcore.dll 2016-07-06 15:48:19 1E497317417C1C68B5453DD04721B16D 614400 ----a-w- C:\WINDOWS\System32\winhttp.dll 2016-07-06 15:48:19 1D04327817511268754ED6F177DAD3E8 754176 ----a-w- C:\WINDOWS\System32\SettingSyncCore.dll 2016-07-06 15:48:19 1C09B75EF1869E7790444928F89E3D3C 50176 ----a-w- C:\WINDOWS\System32\MosHostClient.dll 2016-07-06 15:48:19 15F732C297CE4B169D85214A96A16559 792064 ----a-w- C:\WINDOWS\System32\kerberos.dll 2016-07-06 15:48:19 15718A26C782323D8E14D68AB4F74680 393728 ----a-w- C:\WINDOWS\System32\tileobjserver.dll 2016-07-06 15:48:19 110EE87B0F4E38609AD73E9075EF82A4 97096 ----a-w- C:\WINDOWS\System32\ncryptsslp.dll 2016-07-06 15:48:19 105DE7AF1C9763E56D5322CECF3465EB 5205504 ----a-w- C:\WINDOWS\System32\BingMaps.dll 2016-07-06 15:48:19 10564E7A7EE807FF580E34A94ACF5590 1522152 ----a-w- C:\WINDOWS\System32\WindowsCodecs.dll 2016-07-06 15:48:19 0D43DCC2C13A048CB098C7A30D0130A5 203264 ----a-w- C:\WINDOWS\System32\moshostcore.dll 2016-07-06 15:48:19 0D19695F93813C63B4656E42536892FA 47104 ----a-w- C:\WINDOWS\System32\hmkd.dll 2016-07-06 15:48:19 0561104CC8619EC5A53848F642434235 13018112 ----a-w- C:\WINDOWS\System32\Windows.UI.Xaml.dll 2016-07-06 15:48:19 02ABF6A6775B745CCCEAEB4594AA6354 5323776 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll 2016-07-06 15:45:22 CEFEF0297A2DD097D86017A842BABB4B 5739520 ----a-w- C:\WINDOWS\System32\prm0009.dll 2016-07-06 15:45:22 6F2CA3BDD1C78C465BC0C1E5DDA15B28 2629632 ----a-w- C:\WINDOWS\System32\NlsLexicons0009.dll 2016-07-06 15:45:22 14129011499850E46153AB0E6C325F87 4847616 ----a-w- C:\WINDOWS\System32\NlsData0009.dll 2016-07-06 15:37:21 F432E0E5B0958F4982D40EB622FBD7FC 35480 ----a-w- C:\WINDOWS\System32\TsWpfWrp.exe 2016-07-06 15:37:21 BF9CAA33ADD4C21C118148B5CFC5494B 778936 ----a-w- C:\WINDOWS\System32\PresentationNative_v0300.dll 2016-07-06 15:37:21 6F391E9286733CC6B34FC0FAB23B8DF3 103120 ----a-w- C:\WINDOWS\System32\PresentationCFFRasterizerNative_v0300.dll 2016-07-06 15:12:49 95F05484B45C79F177B116DB00AA0133 21552 ----a-w- C:\WINDOWS\System32\emptyregdb.dat 2016-07-06 14:57:00 88FE842C7C8DAB619A63621CBE526C1D 2270966 ----a-w- C:\WINDOWS\System32\PerfStringBackup.INI 2016-07-06 14:54:51 FC89995E80F32D37006FCFDBE8DABE55 2553520 ----a-w- C:\WINDOWS\System32\nvsvcr.dll 2016-07-06 14:54:51 F6DC883BC86D8F7471D967173CE04011 374904 ----a-w- C:\WINDOWS\System32\nvmctray.dll 2016-07-06 14:54:51 A97DF51AE53268451AB5716DE9D29352 61560 ----a-w- C:\WINDOWS\System32\nvshext.dll 2016-07-06 14:54:51 A3590C4A76A95946057225E6B52B8591 5972783 ----a-w- C:\WINDOWS\System32\nvcoproc.bin 2016-07-06 14:54:51 9A6CE1049FC9CC533446E42C0E63ED78 3060912 ----a-w- C:\WINDOWS\System32\nvsvc.dll 2016-07-06 14:54:51 7137488F35BAE86CA8F8B71E054814F8 670512 ----a-w- C:\WINDOWS\System32\nvvsvc.exe 2016-07-06 14:54:51 0A7B8E174811F6B4EAB5A22E49709513 4388016 ----a-w- C:\WINDOWS\System32\nvcpl.dll ====== C:\WINDOWS\system32\drivers ===== 2016-07-06 15:54:18 51E5565FFF270B3EB26A410FDC71E5D8 35096 ----a-w- C:\WINDOWS\System32\drivers\aswKbd.sys 2016-07-06 15:53:08 EFA158947B395F5F4D290D469223C586 222056 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys 2016-07-06 15:53:08 C9BBE51518BEFAF0341B999518CD8EB9 118152 ----a-w- C:\WINDOWS\System32\drivers\aswStm.sys 2016-07-06 15:53:08 58733858AAB70E911C381C9D3C2D75BE 438296 ----a-w- C:\WINDOWS\System32\drivers\aswsp.sys 2016-07-06 15:53:08 5221F7CB1711BD867086071D15D5B9DB 91680 ----a-w- C:\WINDOWS\System32\drivers\aswMonFlt.sys 2016-07-06 15:53:08 21EA2103B4134DD90B7A801B1CA4C823 60424 ----a-w- C:\WINDOWS\System32\drivers\aswRvrt.sys 2016-07-06 15:53:08 18D895883C1B1FB824186A4C5E05FC0F 91232 ----a-w- C:\WINDOWS\System32\drivers\aswRdr2.sys 2016-07-06 15:53:08 053DED81E59A6C6154DDF14AB9E2A9A9 816304 ----a-w- C:\WINDOWS\System32\drivers\aswSnx.sys 2016-07-06 15:53:08 0131536A662C9DB2E0AE25A152C63AFC 34008 ----a-w- C:\WINDOWS\System32\drivers\aswHwid.sys 2016-07-06 15:48:29 B3FE1C6A06E8216D83D144EBB3BEBCDB 340480 ----a-w- C:\WINDOWS\System32\drivers\srv.sys 2016-07-06 15:48:29 7071E59EECE4D0C5604C17BAF98B228D 23552 ----a-w- C:\WINDOWS\System32\drivers\dumpsdport.sys 2016-07-06 15:48:29 516EEA8ED37DC8C59358CA3B6DDF8AB8 550240 ----a-w- C:\WINDOWS\System32\drivers\fvevol.sys 2016-07-06 15:48:29 418BD058AAB6A6EF198325EE44522C65 1861984 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys 2016-07-06 15:48:28 C195E7756F795F10338ECE0AD20B72D2 1820512 ----a-w- C:\WINDOWS\System32\drivers\ntfs.sys 2016-07-06 15:48:28 7288BF26286E3C56440E76258AA2595A 96096 ----a-w- C:\WINDOWS\System32\drivers\partmgr.sys 2016-07-06 15:48:28 37256414284A0A85A3DDD3FB2A39874B 922456 ----a-w- C:\WINDOWS\System32\drivers\ndis.sys 2016-07-06 15:48:24 D5DB005C7F6497C018674389F138C1E9 604672 ----a-w- C:\WINDOWS\System32\drivers\srv2.sys 2016-07-06 15:48:24 BE1E27EBF119A4487BF6B510C8A4D258 114176 ----a-w- C:\WINDOWS\System32\drivers\dfsc.sys 2016-07-06 15:48:24 AB6553DCB0C072907EB3953A5E0590AD 186880 ----a-w- C:\WINDOWS\System32\drivers\srvnet.sys 2016-07-06 15:48:23 EDD2A57B751ED89810289B87001AA507 424448 ----a-w- C:\WINDOWS\System32\drivers\nwifi.sys 2016-07-06 15:48:23 D1DC9881C02C437CC174E59C8B9FFABC 76288 ----a-w- C:\WINDOWS\System32\drivers\filecrypt.sys 2016-07-06 15:48:23 6A598301C23E2EB0D76559243FE15B2E 771424 ----a-w- C:\WINDOWS\System32\drivers\http.sys 2016-07-06 15:48:23 1DEB289EBBD469CB84C00DE95606B7B6 497152 ----a-w- C:\WINDOWS\System32\drivers\WdiWiFi.sys 2016-07-06 15:48:23 17AB1FA87669F4B800578A54C03A96D6 211456 ----a-w- C:\WINDOWS\System32\drivers\netbt.sys 2016-07-06 15:48:19 EB0C5B63B76C358E7D2DFC524AC8EEB8 173920 ----a-w- C:\WINDOWS\System32\drivers\tpm.sys 2016-07-06 15:48:19 D0BCF377413EDDDDC744A815D82C7510 104960 ----a-w- C:\WINDOWS\System32\drivers\Ndu.sys 2016-07-06 15:48:19 B44E2C9B9C06B1DA0BAB833CBE191428 48640 ----a-w- C:\WINDOWS\System32\drivers\usbser.sys 2016-07-06 15:48:19 B00C56D908E5FD0F0013F839F6A2CAC0 278368 ----a-w- C:\WINDOWS\System32\drivers\fastfat.sys 2016-07-06 15:48:19 A95DCF5D24562CF80CF407F76AC48D31 77824 ----a-w- C:\WINDOWS\System32\drivers\serial.sys 2016-07-06 15:48:19 A277AF18E4AB00E3E29F23D8EA2B1C63 18944 ----a-w- C:\WINDOWS\System32\drivers\xinputhid.sys 2016-07-06 15:48:19 96171BA96E62A6304A137D591DA0D60E 139616 ----a-w- C:\WINDOWS\System32\drivers\ksecpkg.sys 2016-07-06 15:48:19 8D537D808124F5D69D904DBB87167DAB 228696 ----a-w- C:\WINDOWS\System32\drivers\sdbus.sys 2016-07-06 15:48:19 76E954267C5F2308BBECA6B3A3E604DC 430432 ----a-w- C:\WINDOWS\System32\drivers\USBHUB3.SYS 2016-07-06 15:48:19 76BD7CFECEB5C6217AA75D935EDB9BCB 104800 ----a-w- C:\WINDOWS\System32\drivers\ufxsynopsys.sys 2016-07-06 15:48:19 7137D8249C89FE7873353B9D644D8F53 260960 ----a-w- C:\WINDOWS\System32\drivers\pci.sys 2016-07-06 15:48:19 6D88D7636D560BDCF818E52A592AFC26 114688 ----a-w- C:\WINDOWS\System32\drivers\hidclass.sys 2016-07-06 15:48:19 62EA3346B54204B2C2F61E1241A1FAE5 77664 ----a-w- C:\WINDOWS\System32\drivers\sdport.sys 2016-07-06 15:48:19 5CE18CC3E2C277CB7EA72FD13FF0D3DD 153952 ----a-w- C:\WINDOWS\System32\drivers\dumpsd.sys 2016-07-06 15:48:19 5B7AEDE05625BCBCC07B14DCF8A51362 83808 ----a-w- C:\WINDOWS\System32\drivers\pdc.sys 2016-07-06 15:48:19 5895F92727C78EEB4DCC3B64C040A56C 287072 ----a-w- C:\WINDOWS\System32\drivers\USBXHCI.SYS 2016-07-06 15:48:19 56AD3065D84707703706DB20FD579B2C 484192 ----a-w- C:\WINDOWS\System32\drivers\dxgmms2.sys 2016-07-06 15:48:19 4B05B2A387DFD152F538C1546E4FB75F 203104 ----a-w- C:\WINDOWS\System32\drivers\ufx01000.sys 2016-07-06 15:48:19 47349433740550AE4A383DEDA2534113 336224 ----a-w- C:\WINDOWS\System32\drivers\dxgmms1.sys 2016-07-06 15:48:19 335CA3D7AA11884E8AE978110792E2DA 505136 ----a-w- C:\WINDOWS\System32\drivers\cng.sys 2016-07-06 15:48:19 28972E6FEBC61ACFD4A83400D9A6058D 46080 ----a-w- C:\WINDOWS\System32\drivers\UcmCx.sys 2016-07-06 15:48:19 15B07D722048FE2AE0DB9D103EFC20A2 1714528 ----a-w- C:\WINDOWS\System32\drivers\dxgkrnl.sys 2016-07-06 15:48:19 1458CDE021FA518E6CB3AC93437253AD 241664 ----a-w- C:\WINDOWS\System32\drivers\portcls.sys 2016-07-06 14:54:15 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf ====== C:\WINDOWS\Tasks ====== 2016-07-06 15:54:49 67E66478380315D49B72C82F4AD183CA 4006 ----a-w- C:\WINDOWS\system32\Tasks\SafeZone scheduled Autoupdate 1467820480 2016-07-06 15:53:15 F7239AE468233F7C33BCC8F5EB501C23 4004 ----a-w- C:\WINDOWS\system32\Tasks\avast! Emergency Update ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-07-06 15:38:09 -------- d-----w- C:\Program Files\Reference Assemblies 2016-07-06 15:38:09 -------- d-----w- C:\Program Files\MSBuild 2016-07-06 15:01:25 -------- d-----w- C:\Program Files\Common Files\SpeechEngines 2016-07-06 14:54:23 -------- d-----w- C:\Program Files\NVIDIA Corporation 2016-06-29 14:25:38 -------- d-----w- C:\Program Files\Fotoservice ======= C: ===== 2016-07-05 19:48:35 93B885ADFE0DA089CDF634904FD59F71 1 --sha-w- C:\BOOTNXT ====== C:\Users\Kevin\AppData\Roaming ====== 2016-07-06 16:04:04 -------- d-----w- C:\Users\Kevin\AppData\Local\Comms 2016-07-06 15:57:57 -------- d-s---r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Roaming 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Temp 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Microsoft Help 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local\Microsoft 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\AppData\Local 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-07-06 15:44:05 -------- d-----w- C:\Users\Kevin\AppData\Local\Publishers 2016-07-06 15:43:21 -------- d-----w- C:\Users\Kevin\AppData\Local\Packages 2016-07-06 15:43:18 -------- d-----w- C:\Users\Kevin\AppData\Local\TileDataLayer 2016-07-06 15:27:17 -------- d-----w- C:\WINDOWS\system32\config\systemprofile\AppData\Local\DataSharing 2016-07-06 15:12:56 -------- d-----w- C:\WINDOWS\system32\config\systemprofile\AppData\Local\Packages 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help 2016-07-06 14:57:41 -------- d-s---r- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-07-06 14:57:41 -------- d-----w- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-07-06 14:57:41 -------- d-----w- C:\Users\Kevin\AppData\Roaming 2016-07-06 14:57:41 -------- d-----w- C:\Users\Kevin\AppData\Local\Temp 2016-07-06 14:57:41 -------- d-----w- C:\Users\Kevin\AppData\Local\Microsoft 2016-07-06 14:57:41 -------- d-----w- C:\Users\Kevin\AppData\Local 2016-07-06 14:57:41 -------- d-----r- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-07-06 14:57:41 -------- d-----r- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-07-06 14:57:41 -------- d-----r- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-07-06 14:57:41 -------- d-----r- C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-07-06 14:57:40 -------- d-s---r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Roaming 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Temp 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Microsoft 2016-07-06 14:57:40 -------- d-----w- C:\Users\UpdatusUser\AppData\Local 2016-07-06 14:57:40 -------- d-----r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-07-06 14:57:40 -------- d-----r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-07-06 14:57:40 -------- d-----r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility ====== C:\Users\Kevin ====== 2016-07-09 20:54:05 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Kevin\Downloads\RSIT(1).exe 2016-07-07 08:26:32 5096826AAA1181F8607244E37FA0BABF 3712064 ----a-w- C:\Users\Kevin\Downloads\AdwCleaner.exe 2016-07-06 16:00:32 8DE9F588DFB1641F2C0EA05BD4B60605 218 ----a-w- C:\Users\Kevin\.recently-used.xbel 2016-07-06 15:57:58 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\DefaultAppPool\ntuser.ini 2016-07-06 15:57:57 -------- d--h--w- C:\Users\DefaultAppPool\AppData 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\Saved Games 2016-07-06 15:57:57 -------- d-----w- C:\Users\DefaultAppPool\Cookies 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Videos 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Pictures 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Music 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Links 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Favorites 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Downloads 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Documents 2016-07-06 15:57:57 -------- d-----r- C:\Users\DefaultAppPool\Desktop 2016-07-06 15:53:31 -------- d-----w- C:\WINDOWS\system32\config\systemprofile\.oracle_jre_usage 2016-07-06 15:50:55 5220867053FD15364A3DA5D73514E9CE 6253800 ----a-w- C:\Users\Kevin\Downloads\avast_free_antivirus_setup_online.exe 2016-07-06 15:47:02 -------- d-----r- C:\Users\Kevin\OneDrive 2016-07-06 15:43:12 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Kevin\ntuser.ini 2016-07-06 15:06:07 -------- d-----w- C:\Users\Default\Cookies 2016-07-06 14:57:41 -------- d--h--w- C:\Users\Kevin\AppData 2016-07-06 14:57:40 -------- d--h--w- C:\Users\UpdatusUser\AppData 2016-07-06 14:57:10 B36107204846C59B620F4E4E4A2E5658 4194304 ----a-w- C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bin 2016-07-06 14:57:10 503A156BC743F381E605DFFBCE84C4DF 4194304 ----a-w- C:\WINDOWS\serviceprofiles\networkservice\msmqlog.bak 2016-07-06 14:54:56 -------- d-----w- C:\ProgramData\NVIDIA 2016-07-06 14:54:37 -------- d-----w- C:\ProgramData\NVIDIA Corporation 2016-06-29 14:32:48 -------- d-----w- C:\ProgramData\tmp 2016-06-29 14:25:16 B20D44338C22B16CE91F27353E25326E 1558656 ----a-w- C:\Users\Kevin\Downloads\setup_Kruidvat_fotoservice(1).exe ====== C: exe-files == 2016-07-08 18:59:09 58E08D1BFE49158D1D87980687F6A7AB 120000 ----a-w- C:\Users\Kevin\AppData\Local\Temp\96AC4474-0B4B-4190-B1BD-11B1F9CD0065\DismHost.exe 2016-07-08 07:40:46 58E08D1BFE49158D1D87980687F6A7AB 120000 ----a-w- C:\Users\Kevin\AppData\Local\Temp\02287BEC-513C-43D4-84A3-9A89DB63AF96\DismHost.exe 2016-07-06 15:48:28 97FF7539F4E46E86A802CD5876549ACA 476160 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2016-07-06 15:48:28 257E403813627CF4BDBC9D936C151336 820416 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2016-07-06 15:47:25 89CAC0480C8105BB1F585C3B5E125434 9040072 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe 2016-07-06 15:47:25 89CAC0480C8105BB1F585C3B5E125434 9040072 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\OneDriveSetup.exe 2016-07-06 15:47:12 EBEC2BE509FBB6D922D2F04E4CE40946 493256 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\OneDriveStandaloneUpdater.exe 2016-07-06 15:47:10 9D8F8170A6432030DAA3CF1864E16DC4 178888 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncConfig.exe 2016-07-06 15:47:09 B18567F84F296ADB03E3C3F023C7422D 176840 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe 2016-07-06 15:47:01 8F2EA5EE0695CCE2285D92C44108375C 554184 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\OneDrive.exe 2016-07-06 14:54:56 2CC0C5064499F0C27D81E3B9E4D0A3AC 414000 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\SETUP.EXE 2016-07-06 14:54:51 CACD66D3E28B0822E60F1C23921C23DE 1818928 ----a-w- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 2016-07-06 14:54:51 C5D6C66B8F0AE0DEA4319F078A1E52A6 62072 ----a-w- C:\Program Files\NVIDIA Corporation\Display\nvsmartmaxapp.exe 2016-07-06 14:54:51 28E55E5E3E32794A7C72923404C8D2B9 938160 ----a-w- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 2016-07-06 14:54:50 CEB5EC170C9F4B5E7AF09656FA3DB31C 5929592 ----a-w- C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe 2016-07-06 14:54:50 C99D67D671E1B74333AA5621EE31FA85 2801272 ----a-w- C:\Program Files\NVIDIA Corporation\Control Panel Client\NvGpuUtilization.exe 2016-07-06 14:54:50 2CC0C5064499F0C27D81E3B9E4D0A3AC 414000 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{49E781CD-F883-4656-A6F6-3800F057FAD3}\setup.exe 2016-07-06 14:54:23 09DFA5BADF7FCC899625418F98C7CBD8 600680 ----a-w- C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe === C: other files == 2016-07-06 15:54:18 51E5565FFF270B3EB26A410FDC71E5D8 35096 ----a-w- C:\Windows\System32\drivers\aswKbd.sys 2016-07-06 15:53:08 EFA158947B395F5F4D290D469223C586 222056 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2016-07-06 15:53:08 C9BBE51518BEFAF0341B999518CD8EB9 118152 ----a-w- C:\Windows\System32\drivers\aswStm.sys 2016-07-06 15:53:08 58733858AAB70E911C381C9D3C2D75BE 438296 ----a-w- C:\Windows\System32\drivers\aswsp.sys 2016-07-06 15:53:08 5221F7CB1711BD867086071D15D5B9DB 91680 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2016-07-06 15:53:08 21EA2103B4134DD90B7A801B1CA4C823 60424 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2016-07-06 15:53:08 18D895883C1B1FB824186A4C5E05FC0F 91232 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2016-07-06 15:53:08 053DED81E59A6C6154DDF14AB9E2A9A9 816304 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2016-07-06 15:53:08 0131536A662C9DB2E0AE25A152C63AFC 34008 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2016-07-06 15:48:29 B3FE1C6A06E8216D83D144EBB3BEBCDB 340480 ----a-w- C:\Windows\System32\drivers\srv.sys 2016-07-06 15:48:29 7071E59EECE4D0C5604C17BAF98B228D 23552 ----a-w- C:\Windows\System32\drivers\dumpsdport.sys 2016-07-06 15:48:29 516EEA8ED37DC8C59358CA3B6DDF8AB8 550240 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2016-07-06 15:48:29 418BD058AAB6A6EF198325EE44522C65 1861984 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2016-07-06 15:48:28 C195E7756F795F10338ECE0AD20B72D2 1820512 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2016-07-06 15:48:28 7288BF26286E3C56440E76258AA2595A 96096 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2016-07-06 15:48:28 37256414284A0A85A3DDD3FB2A39874B 922456 ----a-w- C:\Windows\System32\drivers\ndis.sys 2016-07-06 15:48:24 D5DB005C7F6497C018674389F138C1E9 604672 ----a-w- C:\Windows\System32\drivers\srv2.sys 2016-07-06 15:48:24 BE1E27EBF119A4487BF6B510C8A4D258 114176 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2016-07-06 15:48:24 AB6553DCB0C072907EB3953A5E0590AD 186880 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2016-07-06 15:48:23 EDD2A57B751ED89810289B87001AA507 424448 ----a-w- C:\Windows\System32\drivers\nwifi.sys 2016-07-06 15:48:23 D1DC9881C02C437CC174E59C8B9FFABC 76288 ----a-w- C:\Windows\System32\drivers\filecrypt.sys 2016-07-06 15:48:23 6A598301C23E2EB0D76559243FE15B2E 771424 ----a-w- C:\Windows\System32\drivers\http.sys 2016-07-06 15:48:23 1DEB289EBBD469CB84C00DE95606B7B6 497152 ----a-w- C:\Windows\System32\drivers\WdiWiFi.sys 2016-07-06 15:48:23 17AB1FA87669F4B800578A54C03A96D6 211456 ----a-w- C:\Windows\System32\drivers\netbt.sys 2016-07-06 15:48:19 EB0C5B63B76C358E7D2DFC524AC8EEB8 173920 ----a-w- C:\Windows\System32\DriverStore\FileRepository\tpm.inf_x86_2a634eca5bdf78be\tpm.sys 2016-07-06 15:48:19 EB0C5B63B76C358E7D2DFC524AC8EEB8 173920 ----a-w- C:\Windows\System32\drivers\tpm.sys 2016-07-06 15:48:19 E3486D5688BF02E6DBDF12F84D3A0990 1152000 ----a-w- C:\Windows\System32\win32kbase.sys 2016-07-06 15:48:19 E28862BEDD2C4F314BB4EF05F03CDE46 61952 ----a-w- C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\BTHUSB.SYS 2016-07-06 15:48:19 DAE4B9F83FAD1E344C9096D52F86F1A7 140288 ----a-w- C:\Windows\System32\DriverStore\FileRepository\tdibth.inf_x86_cff4edc8e1758dad\rfcomm.sys 2016-07-06 15:48:19 D0BCF377413EDDDDC744A815D82C7510 104960 ----a-w- C:\Windows\System32\drivers\Ndu.sys 2016-07-06 15:48:19 C6607AD69A29D5047A840807D7DA4A9F 744448 ----a-w- C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\bthport.sys 2016-07-06 15:48:19 B44E2C9B9C06B1DA0BAB833CBE191428 48640 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbser.inf_x86_5847d86e2d6a58df\usbser.sys 2016-07-06 15:48:19 B44E2C9B9C06B1DA0BAB833CBE191428 48640 ----a-w- C:\Windows\System32\drivers\usbser.sys 2016-07-06 15:48:19 B00C56D908E5FD0F0013F839F6A2CAC0 278368 ----a-w- C:\Windows\System32\drivers\fastfat.sys 2016-07-06 15:48:19 ACBC2A41111C7EF0E72BEA6B8F856DFF 93184 ----a-w- C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_f08d86df1925643b\bthenum.sys 2016-07-06 15:48:19 A95DCF5D24562CF80CF407F76AC48D31 77824 ----a-w- C:\Windows\System32\DriverStore\FileRepository\msports.inf_x86_eb205c4949c3db9d\serial.sys 2016-07-06 15:48:19 A95DCF5D24562CF80CF407F76AC48D31 77824 ----a-w- C:\Windows\System32\drivers\serial.sys 2016-07-06 15:48:19 A277AF18E4AB00E3E29F23D8EA2B1C63 18944 ----a-w- C:\Windows\System32\DriverStore\FileRepository\xinputhid.inf_x86_f93103f26fb3c15c\xinputhid.sys 2016-07-06 15:48:19 A277AF18E4AB00E3E29F23D8EA2B1C63 18944 ----a-w- C:\Windows\System32\drivers\xinputhid.sys 2016-07-06 15:48:19 96171BA96E62A6304A137D591DA0D60E 139616 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2016-07-06 15:48:19 8D537D808124F5D69D904DBB87167DAB 228696 ----a-w- C:\Windows\System32\DriverStore\FileRepository\sdbus.inf_x86_2eaecd403108059a\sdbus.sys 2016-07-06 15:48:19 8D537D808124F5D69D904DBB87167DAB 228696 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2016-07-06 15:48:19 8715D1B7B9E57105FCC997A8F936E655 2974208 ----a-w- C:\Windows\System32\win32kfull.sys 2016-07-06 15:48:19 76E954267C5F2308BBECA6B3A3E604DC 430432 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbhub3.inf_x86_877a67801c675cc4\USBHUB3.SYS 2016-07-06 15:48:19 76E954267C5F2308BBECA6B3A3E604DC 430432 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2016-07-06 15:48:19 76BD7CFECEB5C6217AA75D935EDB9BCB 104800 ----a-w- C:\Windows\System32\DriverStore\FileRepository\ufxsynopsys.inf_x86_6ae9df2c0200a8e1\ufxsynopsys.sys 2016-07-06 15:48:19 76BD7CFECEB5C6217AA75D935EDB9BCB 104800 ----a-w- C:\Windows\System32\drivers\ufxsynopsys.sys 2016-07-06 15:48:19 7137D8249C89FE7873353B9D644D8F53 260960 ----a-w- C:\Windows\System32\DriverStore\FileRepository\pci.inf_x86_82759aab6ef1d8f7\pci.sys 2016-07-06 15:48:19 7137D8249C89FE7873353B9D644D8F53 260960 ----a-w- C:\Windows\System32\drivers\pci.sys 2016-07-06 15:48:19 6D88D7636D560BDCF818E52A592AFC26 114688 ----a-w- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_1049fc7c0193da3c\hidclass.sys 2016-07-06 15:48:19 6D88D7636D560BDCF818E52A592AFC26 114688 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2016-07-06 15:48:19 62EA3346B54204B2C2F61E1241A1FAE5 77664 ----a-w- C:\Windows\System32\drivers\sdport.sys 2016-07-06 15:48:19 5CE18CC3E2C277CB7EA72FD13FF0D3DD 153952 ----a-w- C:\Windows\System32\DriverStore\FileRepository\sdbus.inf_x86_2eaecd403108059a\dumpsd.sys 2016-07-06 15:48:19 5CE18CC3E2C277CB7EA72FD13FF0D3DD 153952 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2016-07-06 15:48:19 5B7AEDE05625BCBCC07B14DCF8A51362 83808 ----a-w- C:\Windows\System32\drivers\pdc.sys 2016-07-06 15:48:19 5895F92727C78EEB4DCC3B64C040A56C 287072 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbxhci.inf_x86_ab9b62ac4aab545f\USBXHCI.SYS 2016-07-06 15:48:19 5895F92727C78EEB4DCC3B64C040A56C 287072 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS 2016-07-06 15:48:19 56AD3065D84707703706DB20FD579B2C 484192 ----a-w- C:\Windows\System32\drivers\dxgmms2.sys 2016-07-06 15:48:19 4B05B2A387DFD152F538C1546E4FB75F 203104 ----a-w- C:\Windows\System32\drivers\ufx01000.sys 2016-07-06 15:48:19 486813462DAC420C58396210FE3A8EF4 200192 ----a-w- C:\Windows\System32\DriverStore\FileRepository\bthleenum.inf_x86_b04a82d4d5aeca23\BthLEEnum.sys 2016-07-06 15:48:19 47349433740550AE4A383DEDA2534113 336224 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2016-07-06 15:48:19 335CA3D7AA11884E8AE978110792E2DA 505136 ----a-w- C:\Windows\System32\drivers\cng.sys 2016-07-06 15:48:19 28972E6FEBC61ACFD4A83400D9A6058D 46080 ----a-w- C:\Windows\System32\drivers\UcmCx.sys 2016-07-06 15:48:19 15B07D722048FE2AE0DB9D103EFC20A2 1714528 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2016-07-06 15:48:19 1458CDE021FA518E6CB3AC93437253AD 241664 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_9ea80ea0b44198c0\portcls.sys 2016-07-06 15:48:19 1458CDE021FA518E6CB3AC93437253AD 241664 ----a-w- C:\Windows\System32\drivers\portcls.sys 2016-07-06 15:47:09 8CF4163521FDB8E53482003C7EFA7121 5850 ----a-w- C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\CollectOneDriveLogs.bat ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\System32\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3630730252-1380453509-1967557004-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files\Steam\steam.exe -silent" "OneDrive"="C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Communicator"="C:\Program Files\Microsoft Lync\communicator.exe /fromrunkey" "ConnectionCenter"="C:\Program Files\Citrix\ICA Client\concentr.exe /startup" "NVRaidService"="C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files\Steam\steam.exe -silent" "OneDrive"="C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:;0C:\ProgramC:Files\Google\Update\GoogleUpdate.exe [] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files\Google\Update\GoogleUpdate.exe [31-08-2015 17:06] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1467820480" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe] "C:\WINDOWS\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [06-07-2016 17:52] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9jsr.default-1352063216321 - Greasemonkey - %ProfilePath%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9jsr.default-1352063216321 D7DBAEE9D0A08EA2D0FEC28BD8D1F6FA - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat 2690AC6D6740E6F24E31218207631FD8 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 9E06237FA096EA98C2964DD6BF325A08 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin C426F7E678D6E539041847556059D5E8 - C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll - Google Update D7EFF0B98C370E03D7E2593399D9B669 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision 75A1232EAC640B782CDD2132B5271AA8 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION 3B00376AE69AC2E815425E54DEBFF750 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery A3257C59695BD691B433DFF4B3E36C86 - C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll - Silverlight Plug-In 02C26C61FB7527DFAFABD4E7BD72F475 - C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U91 BEAF98A3FFC5D4044CF196438EF3AE96 - C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.910.14 05F4E9B3912EA16B04C5928758E8AA75 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll - Shockwave Flash 274C5170DF9AFE81421F0728BF301682 - C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 Google Chrome Version: 22.0.1229.92 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions eofcbnmajmjmplflapaojjnihcjkigck - No path found[] gomekmidlodglbbmalcneegieacbdmki - No path found[] Slither.io Skins Mods Hack Guide - Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dggomkijbihggjgcgdbnleolpleddaid Tampermonkey - Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo Avast Online Security - Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Chrome Web Store Payments - Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Deleting Registry Keys ====================== HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Lync add-on BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Lync\OCHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Communicator] "C:\Program Files\Microsoft Lync\communicator.exe" /fromrunkey O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [NVRaidService] C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent O4 - HKCU\..\Run: [OneDrive] "C:\Users\Kevin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Invoegtoepassing voor Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Lync\OCHelper.dll O9 - Extra 'Tools' menuitem: Invoegtoepassing voor Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Lync\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ==== Empty IE Cache ====================== C:\Users\Kevin\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Kevin\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Kevin\AppData\Local\Mozilla\Firefox\Profiles\rc5w9jsr.default-1352063216321\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=4254 folders=451 1556611401 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Kevin\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\found.001" not found ==== EOF on ma 11-07-2016 at 10:47:48,66 ======================