Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by fransbronselaer on di 26/07/2016 at 10:32:14,81. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\fransbronselaer\Downloads\zoek (15).exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2016-07-26-073505.log 112183 bytes C:\zoek-results2016-07-26-082743.log 392 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 16.02 (x64 edition) ABBYY FineReader 5.0 Sprint ABBYY FineReader 6.0 Adobe Flash Player 22 NPAPI Adobe Reader XI (11.0.11) - Nederlands Advanced SystemCare 9 Affinity Designer Public Beta Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Audacity 2.0.6 Avast Free Antivirus Belfius Smart Card Reader Chrome-App Belgium e-ID middleware 4.1.16 (build 1723) Bonjour Button Generator Canon Easy-WebPrint EX Canon IJ Scan Utility Canon MG2500 series MP Drivers Canon MG2500 series On-screen Manual Canon My Image Garden Canon My Image Garden Design Files Canon My Printer Canon Quick Menu CCleaner Citrix Online Launcher CyberLink LabelPrint 2.5 CyberLink MediaEspresso 6.5 CyberLink Power2Go 8 CyberLink PowerDirector CyberLink PowerDVD 10 CyberLink PowerDVD Copy 1.5 CyberLink YouCam 5 D3DX10 Dolby Home Theater v4 Driver Booster 3.4 Dropbox Dropbox Update Helper DVD Shrink 3.2 Express Burn Disc Burning Software Facebook Video Calling 3.1.0.521 FileHippo.com Update Checker FileZilla Client 3.12.0.2 Fotogalerie Fotogalerija Fotogalleri Fotogalleriet Fotograf Galerisi Fot¢t r Galeria de Fotografias Galer¡a de fotos Galeria fotografii Galerie de photos GDR 4033 for SQL Server 2008 R2 (KB2977320) (64-bit) GDR 4042 for SQL Server 2008 R2 (KB3045313) (64-bit) Gebruikersregistratie voor Canon MG2500 series Google Chrome Google Earth Google Update Helper GPL Ghostscript IIS 8.0 Express IIS Express Application Compatibility Database for x64 IIS Express Application Compatibility Database for x86 Intel PROSet Wireless Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel© PROSet/Wireless WiFi Software Intel© Trusted Connect Service Client IObit Malware Fighter 4 IObit Uninstaller Jasc Paint Shop Pro 8 Java 8 Update 101 Java 8 Update 101 (64-bit) Java Auto Updater Junk Mail filter update KB9X Radio Switch Driver Media Go Media Go Network Downloader Media Go Video Playback Engine 2.12.105.06300 Mediathek Medion Home Cinema 10 Microsoft Application Error Reporting Microsoft ASP.NET MVC 4 Runtime Microsoft Expression Web Microsoft Expression Web 4 Microsoft Expression Web MUI (English) Microsoft Expression Web Service Pack 1 (SP1) Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Home and Student 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (English) 2007 Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server 2008 R2 (64-bit) Microsoft SQL Server 2008 R2 Native Client Microsoft SQL Server 2008 R2 RsFx Driver Microsoft SQL Server 2008 R2 Setup (English) Microsoft SQL Server 2008 Setup Support Files Microsoft SQL Server 2012 Data-Tier App Framework Microsoft SQL Server 2012 Management Objects Microsoft SQL Server 2012 Native Client Microsoft SQL Server 2012 Transact-SQL ScriptDom Microsoft SQL Server Browser Microsoft SQL Server VSS Writer Microsoft System CLR Types for SQL Server 2012 Microsoft System CLR Types for SQL Server 2012 (x64) Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24210 Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24210 Microsoft Web Deploy 3.5 Microsoft Web Platform Installer 5.0 Microsoft WebMatrix 3 MioMore Desktop 7.50 Movie Maker Mozilla Firefox 47.0.1 (x64 nl) Mozilla Firefox 47.0.1 (x86 nl) Mozilla Maintenance Service Mozilla Thunderbird 45.2.0 (x86 nl) MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MyFreeCodec NewBlue Video Essentials for Windows NVIDIA-configuratiescherm 368.39 NVIDIA GeForce Experience 2.11.3.5 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 368.39 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA Optimus Update 2.11.3.5 NVIDIA PhysX Systeem Software 9.16.0318 NVIDIA ShadowPlay 2.11.3.5 NVIDIA Update 2.11.3.5 NVIDIA Update Core NVIDIA Virtual Audio 1.2.40 Nvu 1.0 OpenOffice 4.1.2 Photo Common Photo Gallery PhotoFiltre 7 PhotoFiltre Studio X PIXresizer Plex Media Server Poczta uslugi Windows Live Podstawowe programy Windows Live Posta Windows Live Qualcomm Atheros Killer Network Manager QuickLaunch QuickTime 7 Raccolta foto Realtek High Definition Audio Driver Realtek PCIE Card Reader S?????? f?t???af??? SafeZone Stable 1.48.2066.114 SCM Scribus 1.4.4 (64bit) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687409) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2956110) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2984938) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2984943) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085620) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3114542) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3114742) 32-Bit Edition Security Update for Microsoft Office Access 2007 (KB2596614) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115308) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3115309) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB3115306) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB3114426) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB2889915) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2880510) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB3114429) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2880506) 32-Bit Edition Security Update for Microsoft Office Visio Viewer 2007 (KB2596915) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB3115311) 32-Bit Edition Service Pack 2 for SQL Server 2008 R2 (KB2630458) (64-bit) SHIELD Streaming SHIELD Wireless Controller Driver Skype Click to Call Skype Web Plugin SkypeT 7.25 Smart Defrag 5 Sony Mobile Update Engine Sony PC Companion 2.10.303 SQL Server 2008 R2 SP2 Common Files SQL Server 2008 R2 SP2 Database Engine Services SQL Server 2008 R2 SP2 Database Engine Shared Sql Server Customer Experience Improvement Program Start Menu 8 Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) Surfing Protection Synaptics Pointing Device Driver TeraCopy 2.3 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115307) 32-Bit Edition Update for Microsoft Office Script Editor Help (KB963671) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Vulkan Run Time Libraries 1.0.11.1 WavePad Sound Editor Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 5.01 (32-bit) WinRAR 5.31 (64-bit) ==== Running Processes ====================== C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\SCM\MSIService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\program files (x86)\iobit\Classic Start\SMService.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\program files (x86)\iobit\Classic Start\ClassicStart.exe C:\program files (x86)\iobit\Classic Start\StartMenu_Hook.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files\WindowsApps\Microsoft.Messaging_1.10.22012.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Users\fransbronselaer\Downloads\zoek (15).exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== FireFox Fix ====================== Deleted from C:\Users\FRANSB~1\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default\prefs.js: user_pref("browser.startup.homepage", "https://mysearch.avg.com/?cid={11823743-971C-42E1-8999-95964F072817}&mid=87528137b2d847cc9c4eb17f9b6391cf-59194d8e19d0695d562de271a68d84c8d79cb606&lang=nl&ds=AVG&coid=avgtbavg&cmpid=1015av&pr=fr&d=2015-11-05 07:52:23&v=4.1.8.599&pid=wtu&sg=&sap=hp"); user_pref("browser.newtab.url", "about:newtab"); Added to C:\Users\FRANSB~1\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); Deleted from C:\Users\FRANSB~1\AppData\Roaming\Nvu\Profiles\w6utk5ex.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); Added to C:\Users\FRANSB~1\AppData\Roaming\Nvu\Profiles\w6utk5ex.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); Deleted from C:\Users\FRANSB~1\AppData\Roaming\Thunderbird\Profiles\eij5algc.default\prefs.js: Added to C:\Users\FRANSB~1\AppData\Roaming\Thunderbird\Profiles\eij5algc.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default ---- Lines mysearch removed from prefs.js ---- user_pref("browser.startup.homepage", "https://mysearch.avg.com/?cid={11823743-971C-42E1-8999-95964F072817}&mid=87528137b2d847cc9c4eb17f9b6391cf-59194 ---- Lines browser.startup.page removed from prefs.js ---- user_pref("browser.startup.page", 1); ---- FireFox user.js and prefs.js backups ---- user_20162607_1107_.backup prefs_20162607_1107_.backup ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Nvu\Profiles\w6utk5ex.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20162607_1107_.backup ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Thunderbird\Profiles\eij5algc.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20162607_1107_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin] ==== Deleting Files \ Folders ====================== C:\ProgramData\Avg_Update_0615av not found C:\ProgramData\Avg_Update_1214av not found C:\Users\fransbronselaer\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default\extensions\avg@toolbar not found "C:\WINDOWS\tasks\0615avUpdateInfo.job" not found "C:\WINDOWS\tasks\1214avUpdateInfo.job" not found "C:\Users\fransbronselaer\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default\searchplugins\avg-secure-search.xml" not found C:\PROGRA~3\ProductData deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8084 MB CPU Info: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz CPU Speed: 2404,1 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | NVIDIA GeForce GTX 670MX | NVIDIA GeForce GTX 670MX | NVIDIA GeForce GTX 670MX | NVIDIA GeForce GTX 670MX Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Intel(R) Centrino(R) Wireless-N 2230 | Bluetooth Device (Personal Area Network) | This Qualcomm Atheros network Controller connects you to the network. | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208BB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 635,8GB | D: 60,0GB | F: 465,8GB Hard Disks - Free: C: 548,4GB | D: 39,4GB | F: 410,0GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | MEDION - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: MEDION X682X Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Default Browser: Firefox 47.0.1 Internet Explorer Version: 11.494.10586.0 Mozilla Firefox version: 47.0.1 (x86 nl) Google Chrome version: 51.0.2704.103 Adobe Reader version: 11.0.11.18 Sun Java version: 1.8.0_101 (32-bit) Sun Java version: 1.8.0_101 (64-bit) Flash Player version: 22.0.0.209 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-07-16 06:03:59 E396258CFD8F84E8F2C24930E6D88C67 4515256 ----a-w- C:\WINDOWS\explorer.exe 2016-07-16 06:03:34 430DE1635CE173440D34ABA1676113D7 994816 ----a-w- C:\WINDOWS\HelpPane.exe 2016-07-03 08:43:02 7EFB1577EFBD72521E670188AA546C7D 53208 ----a-w- C:\WINDOWS\avastSS.scr ====== C:\Users\FRANSB~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-07-24 11:03:50 F78D2BF2C551BE9DF6A2F3210A2964C1 97856 ----a-w- C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2016-07-24 11:03:50 150A43E51A708A5F38C761F1A62F9D85 110144 ----a-w- C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll 2016-07-20 10:01:46 91DB6B66FD3B2596BBF7A6B174338EA9 19112 ----a-w- C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll 2016-07-20 10:01:16 2C1A397391D5F6F193F37BC04A1CC0CA 29376 ----a-w- C:\WINDOWS\SysWOW64\aspnet_counters.dll 2016-07-16 06:28:54 955DC56DC263DBF2B433829192D88CD9 828408 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-07-16 06:28:54 26144B5C2B08E127298A71BF79D10B48 176632 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-07-16 06:04:35 D8F75D59301833722BFB4893A47F57F2 13018112 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-07-16 06:04:29 E4873BE74A0BE6F30A6948F882E6E7FC 50176 ----a-w- C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-07-16 06:04:29 CB84B6382E21D875D0EC9665CD6908B8 711680 ----a-w- C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-07-16 06:04:29 B7299EF9D5D4C7D480AC5A8ACEA402E1 87040 ----a-w- C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-07-16 06:04:29 631450FBA9C8677C00F5A577905ECE36 784896 ----a-w- C:\WINDOWS\SysWOW64\NMAA.dll 2016-07-16 06:04:29 3F695F3A23A019E6DF7BAC57276B1E77 349696 ----a-w- C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-07-16 06:04:29 3BFBC5158CC4CA508FEC8284DB6727FD 5205504 ----a-w- C:\WINDOWS\SysWOW64\BingMaps.dll 2016-07-16 06:04:29 0BBEA534AB25CEBFE72BD191FF84F593 59904 ----a-w- C:\WINDOWS\SysWOW64\MosStorage.dll 2016-07-16 06:04:29 0B6A790F69FC2D67EEFF6F015EF24C5B 800768 ----a-w- C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-07-16 06:04:28 D5ACEA2845E642A7ABF383C316CABDA6 6295552 ----a-w- C:\WINDOWS\SysWOW64\mos.dll 2016-07-16 06:04:28 01ECA12A5BF2D571FCE11C05419C3E50 19347968 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2016-07-16 06:04:26 21CB86D69B268182994F981471FCBB82 18674176 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2016-07-16 06:04:22 87755FF83726D908224C08C180D42C72 12586496 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2016-07-16 06:04:20 394B995CB6ADFEED1A37DD15FADE5068 5240960 ----a-w- C:\WINDOWS\SysWOW64\windows.storage.dll 2016-07-16 06:04:18 350ED2186E2C0E80ABCE270C9A52647E 12128256 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2016-07-16 06:04:17 31AC81040FBFB538619282F47C3ED884 5660672 ----a-w- C:\WINDOWS\SysWOW64\Chakra.dll 2016-07-16 06:04:16 79C50C86572AF5891D1196569C9D2EB1 3663360 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2016-07-16 06:04:13 EF539679E1F6FA5DFDCE4D013A3D37CF 6740992 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2016-07-16 06:04:10 53903FCDBE698C8804D0B479F4F5E29B 517632 ----a-w- C:\WINDOWS\SysWOW64\PlayToManager.dll 2016-07-16 06:04:09 BEF902286DC49188F8435B1C2474AE96 687616 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2016-07-16 06:04:09 236B3202BBB1FCD6C3319A994056E108 1522160 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-07-16 06:04:08 447D69BB274546D00C8DBF23C2DBDBCE 2050048 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-07-16 06:04:07 F459F8A639AE35E8ECA718832BEDDB53 2102272 ----a-w- C:\WINDOWS\SysWOW64\xpsservices.dll 2016-07-16 06:04:06 DE4C532C704002ED07B523208327629C 1987072 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2016-07-16 06:04:05 6AA3C6E88196938932ADE02296C33458 268800 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2016-07-16 06:04:05 4C5CD8F1A3B88B8B7B9F57F2E256FAFC 639488 ----a-w- C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-07-16 06:04:04 D6D84F133DC05DB51FE689BB2066D43E 405504 ----a-w- C:\WINDOWS\SysWOW64\webio.dll 2016-07-16 06:04:04 CB82FEFF538C7889DD58EF66B8FDB9FD 2632192 ----a-w- C:\WINDOWS\SysWOW64\rdpcore.dll 2016-07-16 06:04:04 973057A6623492B1620B0167D320BD4D 1526272 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-07-16 06:04:04 32E42A131A187BCAD87EA3A2A09498B9 1249280 ----a-w- C:\WINDOWS\SysWOW64\usercpl.dll 2016-07-16 06:04:04 19157418D05756492D3F54751EC5B041 546816 ----a-w- C:\WINDOWS\SysWOW64\ActionCenterCPL.dll 2016-07-16 06:04:03 F99386465A196CA0129AE92307FF472D 197120 ----a-w- C:\WINDOWS\SysWOW64\netplwiz.dll 2016-07-16 06:04:03 ED3335C188873DD766C73C98F06A3BEA 216576 ----a-w- C:\WINDOWS\SysWOW64\PlayToReceiver.dll 2016-07-16 06:04:03 E3E6CA2D3FAADDEE4FC8A934FA42FA3D 1171456 ----a-w- C:\WINDOWS\SysWOW64\netcenter.dll 2016-07-16 06:04:03 B34DE2B803625C572C664C495FC3F720 846336 ----a-w- C:\WINDOWS\SysWOW64\rasgcw.dll 2016-07-16 06:04:03 968DD3AA844E40932950709FD9CB9556 1976832 ----a-w- C:\WINDOWS\SysWOW64\wpdshext.dll 2016-07-16 06:04:03 9208E440059270395C320190BFA9EE0E 368128 ----a-w- C:\WINDOWS\SysWOW64\wlanui.dll 2016-07-16 06:04:03 86FBB78A2D77D9BDD58F0D72A2E4D934 230400 ----a-w- C:\WINDOWS\SysWOW64\webcheck.dll 2016-07-16 06:04:03 75869FD635879D9B0DCED6B6E4FEFDCD 57344 ----a-w- C:\WINDOWS\SysWOW64\WPDShServiceObj.dll 2016-07-16 06:04:03 5A9CDDA8859CDA201006EE7BB84BC673 254976 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll 2016-07-16 06:04:03 29C26A25041DC901A01A021D31B0FDD8 292864 ----a-w- C:\WINDOWS\SysWOW64\dot3ui.dll 2016-07-16 06:04:03 257C46467A3C9FA96EA59B8B7DFCCA75 559616 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll 2016-07-16 06:04:02 D0A2BA04B1E3F6C1F0E52F65D97EF39D 703840 ----a-w- C:\WINDOWS\SysWOW64\WWAHost.exe 2016-07-16 06:03:58 608F7830161D98DBDD6324F74E9165C4 2921880 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2016-07-16 06:03:57 23D61B1CFA38F287D8C31A4816315454 4413440 ----a-w- C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2016-07-16 06:03:56 76B34D04F94D7A8D47763C4E8285F88B 1117184 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-07-16 06:03:55 FC42E59329315A30F397490033055D28 2217984 ----a-w- C:\WINDOWS\SysWOW64\Wpc.dll 2016-07-16 06:03:55 A233DD6D55CDBC80890E6D0702F727B5 2771968 ----a-w- C:\WINDOWS\SysWOW64\tquery.dll 2016-07-16 06:03:53 6500AB640E37FBFBE0D57B24F8BC6F30 1984000 ----a-w- C:\WINDOWS\SysWOW64\mssrch.dll 2016-07-16 06:03:52 F370A686221023EC003D96BB1FBA57A0 760320 ----a-w- C:\WINDOWS\SysWOW64\SearchIndexer.exe 2016-07-16 06:03:52 EACDCB7EA7696B10EF5CC65040A44923 1349640 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2016-07-16 06:03:52 AF1D02B5F78B3D0522458E8240672582 673280 ----a-w- C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2016-07-16 06:03:51 4F79496B51E1A67B496FF6A407D22D30 1467392 ----a-w- C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-07-16 06:03:50 CF97D32C0BD24525307676C04F4A32DF 298496 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2016-07-16 06:03:50 B99334A08D3E9CE2D4A4BFB8BBC4CB76 1448960 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-07-16 06:03:49 C41C3339364B262957110B2C6C32FF3D 573440 ----a-w- C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll 2016-07-16 06:03:49 A7CD30176029F60B56F5590E37310103 339968 ----a-w- C:\WINDOWS\SysWOW64\WMPhoto.dll 2016-07-16 06:03:49 9FFEF91F0BEE39FAE2305ACE3C11B4A8 3695104 ----a-w- C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2016-07-16 06:03:49 4BC42306D03B539D0EDDD81CC0AE0CD3 244736 ----a-w- C:\WINDOWS\SysWOW64\mssphtb.dll 2016-07-16 06:03:49 2FE56BAE736FE2AD20950ECED0FFD6D1 1588224 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2016-07-16 06:03:48 F3C7017623E0F1F04016E5041A106FC8 119296 ----a-w- C:\WINDOWS\SysWOW64\mssph.dll 2016-07-16 06:03:48 ABFB6150CA07482BCF3D3FDE3B62152A 309760 ----a-w- C:\WINDOWS\SysWOW64\ntprint.dll 2016-07-16 06:03:48 836FF4B7A3AC93E7D659F4FCCF7E0309 779264 ----a-w- C:\WINDOWS\SysWOW64\sbe.dll 2016-07-16 06:03:48 4907E0A9216A6DCEAB351F534A97FAFC 339456 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2016-07-16 06:03:48 1CDEF66CFD26AF241D8546896F77B8A5 489984 ----a-w- C:\WINDOWS\SysWOW64\mbsmsapi.dll 2016-07-16 06:03:47 C2230C9A5F4DA4FE5EF9462047429082 32768 ----a-w- C:\WINDOWS\SysWOW64\msscntrs.dll 2016-07-16 06:03:47 B33928C3DED11908104A38E0C3090F7F 572928 ----a-w- C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2016-07-16 06:03:47 9E2490246907BC5DFF0D06E975A98FE9 12288 ----a-w- C:\WINDOWS\SysWOW64\IconCodecService.dll 2016-07-16 06:03:47 8DBFE13F50BE7578913003EE5256AEBE 282624 ----a-w- C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2016-07-16 06:03:47 64B619A6CE464E494651950794CE8264 541184 ----a-w- C:\WINDOWS\SysWOW64\GamePanel.exe 2016-07-16 06:03:47 4C629B1F6E54578C7875057FD5C53E5F 282624 ----a-w- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2016-07-16 06:03:47 03BF64E3FD79A5C4FD0B51659B164EDC 965120 ----a-w- C:\WINDOWS\SysWOW64\comdlg32.dll 2016-07-16 06:03:46 BBB9376A3D8764A6763183340625FCEA 70656 ----a-w- C:\WINDOWS\SysWOW64\AppCapture.dll 2016-07-16 06:03:46 56BBCFD02C4C5248CAF8EAF8236A4674 667648 ----a-w- C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-07-16 06:03:46 312472050BECE16F51493C95CCE91B57 334336 ----a-w- C:\WINDOWS\SysWOW64\bcastdvr.exe 2016-07-16 06:03:45 A582CC5D97DA29AFE99024BBE96673F3 9919488 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2016-07-16 06:03:44 40C2D19E230CDCBA7707DB5C5A9C6419 5323776 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-07-16 06:03:42 B6113983ED77D6FE99BDEE461E7BE004 4074160 ----a-w- C:\WINDOWS\SysWOW64\explorer.exe 2016-07-16 06:03:41 E5DD7B8A4023B9277C434405849BB43A 2680320 ----a-w- C:\WINDOWS\SysWOW64\msftedit.dll 2016-07-16 06:03:41 C34CC619C1F747F81D2C2C47D5C1B095 2604032 ----a-w- C:\WINDOWS\SysWOW64\CertEnroll.dll 2016-07-16 06:03:40 ADCC41AF6513D5192E0C1A250D2ED4A1 348672 ----a-w- C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-07-16 06:03:40 96E0F50ABD43C92B4B66154113C701DE 2155008 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2016-07-16 06:03:40 766F809BC576BC57FF3B7C343D1E8881 1862008 ----a-w- C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-07-16 06:03:39 D69DDC0073FA31032D7F9379D054679F 503296 ----a-w- C:\WINDOWS\SysWOW64\SettingSync.dll 2016-07-16 06:03:39 0162996989471778328E929D58B1041E 754176 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-07-16 06:03:38 AF3369020E352540743E7664F7CAA189 1355336 ----a-w- C:\WINDOWS\SysWOW64\propsys.dll 2016-07-16 06:03:38 7CF445915FC12FA890EFE5D43AD8B2F9 4078080 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2016-07-16 06:03:38 4102898869C3F72FBD50E7A7D003F530 1866104 ----a-w- C:\WINDOWS\SysWOW64\d3d9.dll 2016-07-16 06:03:38 236FB0CAF33B0EB94893BF7299F3D00D 254656 ----a-w- C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-07-16 06:03:37 D7BDD6C833746E64F1652D6CDE47701F 372224 ----a-w- C:\WINDOWS\SysWOW64\LockAppBroker.dll 2016-07-16 06:03:37 8F81BC95794B0C17812988D44D000170 1582080 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-07-16 06:03:37 643BBA6FB3DA30DC0294F14D72EEFAAB 581632 ----a-w- C:\WINDOWS\SysWOW64\twinapi.dll 2016-07-16 06:03:37 245BCE64F9396340F4E84FB140DD6CA6 489984 ----a-w- C:\WINDOWS\SysWOW64\ShareHost.dll 2016-07-16 06:03:37 1CB309C3183A1249C0F3241BB3BA66DD 736768 ----a-w- C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2016-07-16 06:03:36 D00ACFADE7EE80F0C45CC0B94EB5D21A 465760 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-07-16 06:03:36 67BA16BD6265C9E401A3814137ECF8F4 2578432 ----a-w- C:\WINDOWS\SysWOW64\gameux.dll 2016-07-16 06:03:36 541C337FA4551C852FA4371AD3BF9C5B 764928 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-07-16 06:03:35 DFB970BC93678AFA2F95A51BF1506049 64584 ----a-w- C:\WINDOWS\SysWOW64\Clipc.dll 2016-07-16 06:03:35 BEC15702CE3242133B95F0E2C69FFC88 980480 ----a-w- C:\WINDOWS\SysWOW64\winipcsecproc.dll 2016-07-16 06:03:35 50B851ADFFAC3B2EFD1B5DE4D8A94277 468992 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll 2016-07-16 06:03:35 2F7684C2601F30ED0A5AFCB3AD295152 3301376 ----a-w- C:\WINDOWS\SysWOW64\SyncCenter.dll 2016-07-16 06:03:34 F843B18F29E440CB4599F3674E03B0A5 2849792 ----a-w- C:\WINDOWS\SysWOW64\themeui.dll 2016-07-16 06:03:34 EEB99F0E02F9243F18691C75CD16AEE4 207872 ----a-w- C:\WINDOWS\SysWOW64\licensingdiag.exe 2016-07-16 06:03:34 E2C0139812E0030B26F2E7B156C726A4 184832 ----a-w- C:\WINDOWS\SysWOW64\SettingMonitor.dll 2016-07-16 06:03:34 CEEA8FA78E1652BB7219FC118E9F67EE 330752 ----a-w- C:\WINDOWS\SysWOW64\winipcfile.dll 2016-07-16 06:03:34 C0D3B98EB0C657DDEB0C033D01C6D9E7 574976 ----a-w- C:\WINDOWS\SysWOW64\hgcpl.dll 2016-07-16 06:03:34 AE3444858CB88D033427C1E9D6FE749E 738816 ----a-w- C:\WINDOWS\SysWOW64\appwiz.cpl 2016-07-16 06:03:34 A3E1888B827AD9132A35657C48C9762B 578048 ----a-w- C:\WINDOWS\SysWOW64\wiaaut.dll 2016-07-16 06:03:34 61D86AEAE520B20FD3AE5C68327239EB 400896 ----a-w- C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-07-16 06:03:34 2311952A48D5D22080073E5AD4621509 629760 ----a-w- C:\WINDOWS\SysWOW64\sud.dll 2016-07-16 06:03:34 212B595D06DB8A90B540E970E493CD6F 2519552 ----a-w- C:\WINDOWS\SysWOW64\themecpl.dll 2016-07-16 06:03:33 ED87A6D9B014FC9D5CF57B9D7F54EA15 386560 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll 2016-07-16 06:03:33 D4DE4F98D350823BACCA6D7F753D74D4 6471168 ----a-w- C:\WINDOWS\SysWOW64\mspaint.exe 2016-07-16 06:03:33 B18B0885CEFFA800A8C39EBDF41CE5A8 347648 ----a-w- C:\WINDOWS\SysWOW64\zipfldr.dll 2016-07-16 06:03:33 A65CFA79A13690155545A5FEEEC4FC42 283136 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2016-07-16 06:03:33 9459503897809956B533141003277298 92160 ----a-w- C:\WINDOWS\SysWOW64\IdCtrls.dll 2016-07-16 06:03:33 77D3FB612C75A70CDA55889616DF3969 205312 ----a-w- C:\WINDOWS\SysWOW64\oemlicense.dll 2016-07-16 06:03:33 70BE5D31CD548715F88398D7B56E99B5 315904 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-07-16 06:03:33 6B50CF0D71F727CEDF49216FD4AC0FB9 290304 ----a-w- C:\WINDOWS\SysWOW64\WmpDui.dll 2016-07-16 06:03:33 2086CC9E5A8C75F246A75EE606988B77 1508352 ----a-w- C:\WINDOWS\SysWOW64\winmsipc.dll 2016-07-16 06:03:33 1EEC0939B2B99EF1F53B14D9205041AD 282624 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll 2016-07-16 06:03:33 1E506E10685E8774F12BF5E2F10197F1 736768 ----a-w- C:\WINDOWS\SysWOW64\Display.dll 2016-07-16 06:03:33 1E00F1B16E727B3D23F6516988F2E7EA 502272 ----a-w- C:\WINDOWS\SysWOW64\DevicePairing.dll 2016-07-16 06:03:32 00C8B201BE1C9705906A484DBE5D6332 4759040 ----a-w- C:\WINDOWS\SysWOW64\d2d1.dll 2016-07-16 06:03:30 4963662B1CBB0035FD5D6832824DC7B6 2186864 ----a-w- C:\WINDOWS\SysWOW64\d3d11.dll 2016-07-16 06:03:30 3EEAC377D273ABB2B6FB02DBFE8E307E 21123320 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2016-07-16 06:03:27 A489CECF560EA0421C04277904210395 925576 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2016-07-16 06:03:27 59976482DB1C9F2F41DF62AA9A1B01C5 2062336 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-07-16 06:03:27 21BE44272CAC55D1B6C88C1E0BA78F8E 2501632 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2016-07-16 06:03:26 BD869430C7B7CCD5FE0C3D9D6D344953 2798080 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-07-16 06:03:26 7D5E17FC31FA563A94A8251AF8ADDEE4 1498624 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2016-07-16 06:03:26 57D00F9D60519705D37BAFB852771443 1118208 ----a-w- C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-07-16 06:03:26 0B1427CECB2D744C61E841DF0B905592 1445888 ----a-w- C:\WINDOWS\SysWOW64\SRHInproc.dll 2016-07-16 06:03:26 0313658DF0E7A0F28F9580AF15B37531 1626112 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2016-07-16 06:03:25 E247EAA09FE6397200205FA90BF87C1D 1536600 ----a-w- C:\WINDOWS\SysWOW64\crypt32.dll 2016-07-16 06:03:25 8B70A4CDB39E270F7F892C82BDB641A5 799744 ----a-w- C:\WINDOWS\SysWOW64\SRH.dll 2016-07-16 06:03:25 83CF09D8FE73DC8FA7374C98B32243DF 675064 ----a-w- C:\WINDOWS\SysWOW64\dcomp.dll 2016-07-16 06:03:25 7CDA291CF22B91DDBB88B5089EBE25CE 521152 ----a-w- C:\WINDOWS\SysWOW64\dxgi.dll 2016-07-16 06:03:25 5A69A6CB031970F5E0BBD4E967D32924 1497088 ----a-w- C:\WINDOWS\SysWOW64\WMPDMC.exe 2016-07-16 06:03:25 3B5A60CFD5EA636133A0A9F8CD4EDC45 709176 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2016-07-16 06:03:24 D613DBA2E2D43264B6D5C1933F3A71FC 3459584 ----a-w- C:\WINDOWS\SysWOW64\UIRibbon.dll 2016-07-16 06:03:24 B27FEB21C56278185E7B7A77722C6819 777728 ----a-w- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2016-07-16 06:03:23 CF034E3697C5CA79777F94116D57C6A6 2179584 ----a-w- C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2016-07-16 06:03:22 FC26697351E186D415E53BF83D37DAAD 3555840 ----a-w- C:\WINDOWS\SysWOW64\xpsrchvw.exe 2016-07-16 06:03:22 38F874DC40AED7FE90ABED3006FF20B9 1083656 ----a-w- C:\WINDOWS\SysWOW64\Taskmgr.exe 2016-07-16 06:03:19 FFA3300F8C8542A92015C7FF48A16AF9 28083144 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll 2016-07-16 06:03:17 F964FA5FA4FAB1B2D9E6638A0CF0D7E7 2679808 ----a-w- C:\WINDOWS\SysWOW64\netshell.dll 2016-07-16 06:03:17 4BBFE28B6732D30D01C8880CEB254BB5 256192 ----a-w- C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2016-07-16 06:03:17 42D425CA43C93CC578D1AEA96D1E39F0 157696 ----a-w- C:\WINDOWS\SysWOW64\SimCfg.dll 2016-07-16 06:03:16 FC03376F464F07369BC07A6D9BE8CA8D 88576 ----a-w- C:\WINDOWS\SysWOW64\olepro32.dll 2016-07-16 06:03:16 FBA0E803ED70D649630DCA8EEC625414 240640 ----a-w- C:\WINDOWS\SysWOW64\taskeng.exe 2016-07-16 06:03:16 F45E83301A6C99D342C600B5B29BCD71 1557776 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2016-07-16 06:03:16 E7AF52CE93D93984F11E5021024CA085 356352 ----a-w- C:\WINDOWS\SysWOW64\taskcomp.dll 2016-07-16 06:03:16 BF370250794A9405AD153A4C1A4F5BBD 32552 ----a-w- C:\WINDOWS\SysWOW64\wldp.dll 2016-07-16 06:03:16 B726B6583C0E880B59BE3C4463C27BAB 569752 ----a-w- C:\WINDOWS\SysWOW64\SHCore.dll 2016-07-16 06:03:16 B61C9BA4E125BC5FFF338D7B11BAC6EC 805888 ----a-w- C:\WINDOWS\SysWOW64\WSShared.dll 2016-07-16 06:03:16 B572C03916EC3A8BE05CB2199D4A3263 451936 ----a-w- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2016-07-16 06:03:16 A4879DCB9CBE6F67661F0EF4D5A59092 835072 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-07-16 06:03:16 34B1DD62B3F090A0466241F84F1E9AE0 802816 ----a-w- C:\WINDOWS\SysWOW64\ntshrui.dll 2016-07-16 06:03:16 19D8F7D29B8B94071DAC6453690BB5CA 284160 ----a-w- C:\WINDOWS\SysWOW64\eappcfg.dll 2016-07-16 06:03:15 E71CB29D5B7F76DD58677381CBFE6847 129024 ----a-w- C:\WINDOWS\SysWOW64\SimAuth.dll 2016-07-16 06:03:15 E48A7C15B395A8F1537CE249183D508F 190464 ----a-w- C:\WINDOWS\SysWOW64\apprepapi.dll 2016-07-16 06:03:15 B39E043BCB704FF6F0D0DEADBCBA754D 683008 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-07-16 06:03:15 734026191E38F421D62D0067D89B0E35 1063936 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2016-07-16 06:03:15 702A77C8EB30026CF6C16F9B1439F166 238592 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll 2016-07-16 06:03:15 4A8E1182ECF552141C2C165B0A137E50 186880 ----a-w- C:\WINDOWS\SysWOW64\schtasks.exe 2016-07-16 06:03:14 E78E204A005D6DDEBBFA453380D6E847 585216 ----a-w- C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2016-07-16 06:03:14 A3F164387FAF9C571959C73361317F04 442368 ----a-w- C:\WINDOWS\SysWOW64\dlnashext.dll 2016-07-16 06:03:14 94B32AFBC8D832B3CC39C87DACCF4CEE 879616 ----a-w- C:\WINDOWS\SysWOW64\WebcamUi.dll 2016-07-16 06:03:14 937208F90E70A7A415F05932ABD72DFB 34304 ----a-w- C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2016-07-16 06:03:14 9160F82BF248F5CD2A5CA4C109369D41 55808 ----a-w- C:\WINDOWS\SysWOW64\eappprxy.dll 2016-07-16 06:03:14 733B5C5DCFEB74A288F69272A79FCBF7 248320 ----a-w- C:\WINDOWS\SysWOW64\eapp3hst.dll 2016-07-16 06:03:14 65585F1DB21193BA2DEB7C034984E2E8 519168 ----a-w- C:\WINDOWS\SysWOW64\PrintDialogs.dll 2016-07-16 06:03:14 4FAB17214FC37489C59B19CED55D4B7F 238592 ----a-w- C:\WINDOWS\SysWOW64\eapphost.dll 2016-07-16 06:03:14 3E97CC7E938C4D15FCC27EC33C898606 153088 ----a-w- C:\WINDOWS\SysWOW64\WSSync.dll 2016-07-16 06:03:14 10882529EF2A92C7E5ACCC0E6EDF8390 48640 ----a-w- C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2016-07-16 06:03:13 FC4E7D3027D748E2D131C9DED39D4976 584704 ----a-w- C:\WINDOWS\SysWOW64\UIRibbonRes.dll 2016-07-16 06:03:13 EA11A61E656D6CC6F5001F8366B2BA08 279040 ----a-w- C:\WINDOWS\SysWOW64\edputil.dll 2016-07-16 06:03:13 9A6B1DB1667CDD276A208F5AE5646948 151552 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll 2016-07-16 06:03:13 8A62CEED5A0DD6C76C921F8B47187CA3 477184 ----a-w- C:\WINDOWS\SysWOW64\ieui.dll 2016-07-16 06:03:13 8686191CF27D6707FC890A6CD4CB552A 260096 ----a-w- C:\WINDOWS\SysWOW64\apprepsync.dll 2016-07-16 06:03:13 5642D8C9041FF6F1EE88E42C90639CA8 96256 ----a-w- C:\WINDOWS\SysWOW64\eappgnui.dll 2016-07-16 06:03:13 492C152E65A4F59D0FDDE2F2E0C34DE8 48128 ----a-w- C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2016-07-16 06:03:03 88A5A640F1C46936CEA62B7B42969E8E 502784 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2016-07-16 06:03:02 409D5D7EB68EDC5E5751A1F437F8C58E 2000896 ----a-w- C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-07-16 06:03:01 23F74037E71A1D1D827A3F0DDCB8A697 4404736 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-07-16 06:02:59 F3B12C931650835388F43DB2DF606657 511320 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2016-07-16 06:02:58 A5B6DDDF137C8118B93D00404510741D 836760 ----a-w- C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2016-07-16 06:02:58 644CE64AB3ED902711CB0B86CF4ECA22 434688 ----a-w- C:\WINDOWS\SysWOW64\LogonController.dll 2016-07-16 06:02:58 5AF1EAB54122BA45CA59C10FAF3CC558 1228800 ----a-w- C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2016-07-16 06:02:57 F0781A46DFE3A6C48FCA23FCDDA69B4B 957608 ----a-w- C:\WINDOWS\SysWOW64\ole32.dll 2016-07-16 06:02:57 D0B4D167CB9BA37A62BA8E7B7934F517 460800 ----a-w- C:\WINDOWS\SysWOW64\SearchFolder.dll 2016-07-16 06:02:57 332384C9BF8D46044F3A5189A2E7C6FE 1448960 ----a-w- C:\WINDOWS\SysWOW64\dui70.dll 2016-07-16 06:02:56 9484654938AE332E2BD2EFEA8F596376 569856 ----a-w- C:\WINDOWS\SysWOW64\qdvd.dll 2016-07-16 06:02:56 734C17FFE65F9E0436BDAD566A613D8C 32040 ----a-w- C:\WINDOWS\SysWOW64\mfpmp.exe 2016-07-16 06:02:56 415F514AA00B37A1772639F7B22BC305 217600 ----a-w- C:\WINDOWS\SysWOW64\dmdskmgr.dll 2016-07-16 06:02:55 BC98A3374DAB7CE9E600A667FDCD9F96 193536 ----a-w- C:\WINDOWS\SysWOW64\ExecModelClient.dll 2016-07-16 06:02:55 B6A9C98BFE60CB8DC992033108F3C4F0 1226752 ----a-w- C:\WINDOWS\SysWOW64\wcnwiz.dll 2016-07-16 06:02:55 737FC213AB9B3494E8677D12F08B8703 482816 ----a-w- C:\WINDOWS\SysWOW64\duser.dll 2016-07-16 06:02:55 5A0B501B638941EAF2BEABCE3C645769 413696 ----a-w- C:\WINDOWS\SysWOW64\WLanConn.dll 2016-07-16 06:02:55 414967EA08650001DD671FEFE37633E7 645632 ----a-w- C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll 2016-07-16 06:02:55 404EA5D1E9451EAB6D37403B7CFAD736 123392 ----a-w- C:\WINDOWS\SysWOW64\ProximityCommon.dll 2016-07-16 06:02:55 2E7375FB616E7F729B077628F9BF2537 220672 ----a-w- C:\WINDOWS\SysWOW64\credprovs.dll 2016-07-16 06:02:55 051FDE1463E8468FACFC38C63B4D8FE3 442880 ----a-w- C:\WINDOWS\SysWOW64\efswrt.dll 2016-07-16 06:02:54 80BD175A8820F5D1C0913DE1BA2A0400 40960 ----a-w- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-07-16 06:02:54 7BB466A82CD38CCBEE666D475BB2F3D2 199680 ----a-w- C:\WINDOWS\SysWOW64\GlobCollationHost.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-07-24 11:03:33 150A43E51A708A5F38C761F1A62F9D85 110144 ----a-w- C:\WINDOWS\Sysnative\WindowsAccessBridge-64.dll 2016-07-20 10:01:45 2C9EF2D28368E3239DE174CEB40E0BC1 19112 ----a-w- C:\WINDOWS\Sysnative\msvcr100_clr0400.dll 2016-07-20 10:01:16 41D5EE01114DC24A39DAD1B9E0C8A198 30912 ----a-w- C:\WINDOWS\Sysnative\aspnet_counters.dll 2016-07-16 06:04:33 D5BDFD4F497EE8A2859E72809046CE89 24610304 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2016-07-16 06:04:33 584B28F7DA74E26FF45B83CFABABB599 2773096 ----a-w- C:\WINDOWS\Sysnative\d3d11.dll 2016-07-16 06:04:31 FD8FBE19342CF2032F32C303B7D93A05 5503488 ----a-w- C:\WINDOWS\Sysnative\d2d1.dll 2016-07-16 06:04:31 F823DAB5F96CC6A966DF0F1B487C51A0 22379520 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2016-07-16 06:04:24 6E415D9BFD8D1BC0354C3B0E4A0E1C56 14252544 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2016-07-16 06:04:21 B4EF28C61CE2755D7F1842BFA122B60E 13385728 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2016-07-16 06:04:21 1F4AB277DB73A3C731B669D33C560405 7832576 ----a-w- C:\WINDOWS\Sysnative\Chakra.dll 2016-07-16 06:04:19 95E5BA5E26BE4A4097458E1F316A8616 7469408 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2016-07-16 06:04:17 3CC983011177A815A94218EB38E13241 4895232 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2016-07-16 06:04:16 E3BF6CDE2DDE478E88667F1C9F33DBBC 1092464 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2016-07-16 06:04:16 939D80772D59831E50B03CDBD99049DF 1540224 ----a-w- C:\WINDOWS\Sysnative\sppobjs.dll 2016-07-16 06:04:15 64168D292D236456C6F5E6D48DE90528 2582016 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2016-07-16 06:04:15 0E52D076B5FDCD59AEC112BD7665E2E7 3428864 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2016-07-16 06:04:14 4EC98235B7BFCA3705279A9E9242C648 3589632 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2016-07-16 06:04:13 4EB384E80857EC28F54766042D3BAB1E 3355136 ----a-w- C:\WINDOWS\Sysnative\msftedit.dll 2016-07-16 06:04:11 C9B1B0285A5AA53774BF3D91891072E2 296960 ----a-w- C:\WINDOWS\Sysnative\provengine.dll 2016-07-16 06:04:11 C9AC70AC6FEBDCFE585436FD9E3901B1 287232 ----a-w- C:\WINDOWS\Sysnative\provhandlers.dll 2016-07-16 06:04:11 C64FA0D0AAF5EEE0E65EFB34DDDD2918 1299504 ----a-w- C:\WINDOWS\Sysnative\mfnetsrc.dll 2016-07-16 06:04:11 BD7E2F50A8C984500358E1AE1D1B89FC 648256 ----a-w- C:\WINDOWS\Sysnative\dxgi.dll 2016-07-16 06:04:11 B2FD8E42044B7A2C18AE54A60ACDDE6B 2352128 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2016-07-16 06:04:11 28B5AB1D9C97737A3801658F12BDBCB6 1121792 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2016-07-16 06:04:11 283269F7F32FDF5835B1FB2233013735 284352 ----a-w- C:\WINDOWS\Sysnative\DeviceCensus.exe 2016-07-16 06:04:10 FC0F06DFE5FD20CCFCE17F3180746D24 576000 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.UX.EapRequestHandler.dll 2016-07-16 06:04:10 ED82578312E8B2D2D1D2F87CD77695AC 1387520 ----a-w- C:\WINDOWS\Sysnative\win32kbase.sys 2016-07-16 06:04:10 D08B38F8E8A995FC673E8D5ADABBFD13 192000 ----a-w- C:\WINDOWS\Sysnative\provisioningcsp.dll 2016-07-16 06:04:10 642D4E1DE69A3D180D4962D6977AAAB3 1322248 ----a-w- C:\WINDOWS\Sysnative\ole32.dll 2016-07-16 06:04:10 5D339458DA9FEA6E314817B7DDD4D351 605184 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2016-07-16 06:04:10 556E7C9734B9D2581022C56A23C96B78 2145032 ----a-w- C:\WINDOWS\Sysnative\d3d9.dll 2016-07-16 06:04:10 409A46FE4B2A6133400572D2B26C6152 847656 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2016-07-16 06:04:10 17D3651E968F5E7712110FC70BFC973D 853504 ----a-w- C:\WINDOWS\Sysnative\aadtb.dll 2016-07-16 06:04:09 FA913C83823C2BA250E80AAE2E3905D1 381952 ----a-w- C:\WINDOWS\Sysnative\wuuhext.dll 2016-07-16 06:04:09 F099E147846A9CFF5D26E9292D77F8A9 1797120 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Immersive.dll 2016-07-16 06:04:09 B5D83BCE06D70B120D8AC889EEE4A14A 692136 ----a-w- C:\WINDOWS\Sysnative\sppwinob.dll 2016-07-16 06:04:09 96D121188D91FB4C9C878F30A3F7086F 1552104 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2016-07-16 06:04:09 510702AC9FD86E3A5CDB68AC3DC14928 498960 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2016-07-16 06:04:09 02122FD1A32C205DAA2EEC6462E60226 784384 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2016-07-16 06:04:09 00110FDAF3380A23D360AEA5551B8D03 821760 ----a-w- C:\WINDOWS\Sysnative\TokenBroker.dll 2016-07-16 06:04:08 F6A078D3FC7853D5A220413A239660CC 1603224 ----a-w- C:\WINDOWS\Sysnative\propsys.dll 2016-07-16 06:04:08 66989014C94A5AE3600DAFEA225C4DB8 89600 ----a-w- C:\WINDOWS\Sysnative\NFCProvisioningPlugin.dll 2016-07-16 06:04:08 4C21A65A6ACDF10B181D45E08DC15D24 2127360 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2016-07-16 06:04:08 3F4BDBBA1F3BBECBA656503BD0C16BEA 168960 ----a-w- C:\WINDOWS\Sysnative\provops.dll 2016-07-16 06:04:08 02B2863417FF2E5E34BD42EBF8B49528 841728 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2016-07-16 06:04:07 E54FA914CF17AE4AFB18291F31BA3063 1717248 ----a-w- C:\WINDOWS\Sysnative\GdiPlus.dll 2016-07-16 06:04:07 CE12FF056FBB4D78970A5D695D8C00BB 1755648 ----a-w- C:\WINDOWS\Sysnative\dui70.dll 2016-07-16 06:04:07 CBCA5650B97DFE6D86E4F4DC0D3DD86B 828928 ----a-w- C:\WINDOWS\Sysnative\Windows.AccountsControl.dll 2016-07-16 06:04:07 7FD5DC5E567910FD3B8F6FEA9A80DD4E 4456448 ----a-w- C:\WINDOWS\Sysnative\D3DCompiler_47.dll 2016-07-16 06:04:07 0C66FD155A553C3C1775F9EEE4C52F91 701952 ----a-w- C:\WINDOWS\Sysnative\twinapi.dll 2016-07-16 06:04:06 FC3D54BD8FBD8A053223D1EC6E9103A4 388896 ----a-w- C:\WINDOWS\Sysnative\wmpps.dll 2016-07-16 06:04:06 950575747FCDCAF5CD7692664DBFE903 1434112 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Editing.dll 2016-07-16 06:04:06 82AC452307257A4B3F08856EE84EE2EC 892416 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.SmartCards.dll 2016-07-16 06:04:06 80625D0A23E439BCAA2C3021042A5EBF 2088960 ----a-w- C:\WINDOWS\Sysnative\wpdshext.dll 2016-07-16 06:04:06 603A69A513DCDDBF0DA209395071BA0C 1063936 ----a-w- C:\WINDOWS\Sysnative\comdlg32.dll 2016-07-16 06:04:06 12FEFF0CACF65E3FB5531E2D19728FB0 337336 ----a-w- C:\WINDOWS\Sysnative\Windows.Storage.ApplicationData.dll 2016-07-16 06:04:05 FD0F8299FDBEC22C8DBFA66CB4BD5B1B 725776 ----a-w- C:\WINDOWS\Sysnative\SHCore.dll 2016-07-16 06:04:05 D41EC066D915E4825121AE2687596BC2 496640 ----a-w- C:\WINDOWS\Sysnative\webio.dll 2016-07-16 06:04:05 5B646920CE059478EED19BC7EFF72C7E 167936 ----a-w- C:\WINDOWS\Sysnative\inetpp.dll 2016-07-16 06:04:05 55A6448A7AC0ACB238D56DFF7C280ABE 290816 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2016-07-16 06:04:05 40B3D3F1F3DFF9C839F2FDAAB070D877 465920 ----a-w- C:\WINDOWS\Sysnative\StikyNot.exe 2016-07-16 06:04:05 04F404D7F9CAC583ED45DCA0C496E893 218624 ----a-w- C:\WINDOWS\Sysnative\cdd.dll 2016-07-16 06:04:04 EFFFC67D0F0D2608BC294E01700FB4A3 599040 ----a-w- C:\WINDOWS\Sysnative\duser.dll 2016-07-16 06:04:04 E249D7A2B7998EF00990E56190D738B1 276480 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecsExt.dll 2016-07-16 06:04:04 C2F73C1C869B72BF897379A6B02CB5C2 69120 ----a-w- C:\WINDOWS\Sysnative\WPDShServiceObj.dll 2016-07-16 06:04:04 957FA4FB89B1BE9D699C9927B0F3C384 1240064 ----a-w- C:\WINDOWS\Sysnative\d3d10.dll 2016-07-16 06:04:04 69FB22CE0A11E8D55B0BA43D515B854B 1752576 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2016-07-16 06:04:04 1D5D1656DF134068A04480DB4B1E1753 349184 ----a-w- C:\WINDOWS\Sysnative\ntprint.dll 2016-07-16 06:04:03 F3EB6A22AFB3893ACD4E7C1B02382A3F 262144 ----a-w- C:\WINDOWS\Sysnative\webcheck.dll 2016-07-16 06:04:03 F1BA85CF2AEE08860C8D5BF82C342F44 1671168 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2016-07-16 06:04:03 C7ACF177D1EB5C3F00D4FC728BBF9DFD 764928 ----a-w- C:\WINDOWS\Sysnative\Chakradiag.dll 2016-07-16 06:04:03 9F0D0E63D6B10C2222B4FCC784AA3A4E 315392 ----a-w- C:\WINDOWS\Sysnative\aadcloudap.dll 2016-07-16 06:04:03 780B8E002BC11116E3C28DBEC6A3847D 185856 ----a-w- C:\WINDOWS\Sysnative\d3d10_1.dll 2016-07-16 06:04:03 6C647A171ACA3838441206BBE715B0D7 198144 ----a-w- C:\WINDOWS\Sysnative\winsrv.dll 2016-07-16 06:04:03 63E75187FFFA108A78C67E14122C45B0 865792 ----a-w- C:\WINDOWS\Sysnative\AzureSettingSyncProvider.dll 2016-07-16 06:04:03 34D17C28C8B8DC7F98365A60300B40B4 341504 ----a-w- C:\WINDOWS\Sysnative\RADCUI.dll 2016-07-16 06:04:02 73B90D7C3DEF1941F783BE0391C0F057 11545088 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2016-07-16 06:04:02 0C41EA00D56409637B157DAA3C7ECDE0 808288 ----a-w- C:\WINDOWS\Sysnative\WWAHost.exe 2016-07-16 06:04:00 1EEBC6859473037A1A671738AD083C7D 3026944 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2016-07-16 06:04:00 1CFFDC8E62372CBD2C4C1AB9ADAA0C35 3994624 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll 2016-07-16 06:03:59 FD93D230DAF156F0EAF41C7C039C8D71 3675512 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2016-07-16 06:03:59 240F6A0AAEEAB059BC0B7D8B72637F72 2609664 ----a-w- C:\WINDOWS\Sysnative\NetworkMobileSettings.dll 2016-07-16 06:03:58 FEC2E3FF1F1D79E569DE372A020D1909 3585536 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsThresholdAdminFlowUI.dll 2016-07-16 06:03:57 ED922E0D9B4F1E4821B680EDEEE147EC 1946112 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2016-07-16 06:03:57 E269E5AE6F0B70FC5093DF5D438C5FD2 1390080 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Shell.dll 2016-07-16 06:03:56 6D6E9C9C70E196F6833A96C267327368 2876928 ----a-w- C:\WINDOWS\Sysnative\Wpc.dll 2016-07-16 06:03:56 5C6F3312EACE1409DC2C4C2AD5D2719D 1054208 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2016-07-16 06:03:56 231099370F84D4AA4B373B0BD0B71D8F 1729024 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2016-07-16 06:03:56 1CA267651F0295A6B809EFCED2846F70 697856 ----a-w- C:\WINDOWS\Sysnative\PlayToManager.dll 2016-07-16 06:03:55 B66654D85A6C6F915E7D4827317739FA 2125312 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_Bluetooth.dll 2016-07-16 06:03:55 70B0FB34458FCA020297A595205FC82F 990208 ----a-w- C:\WINDOWS\Sysnative\SharedStartModel.dll 2016-07-16 06:03:55 453207816AB95A0376887BE01FAE30E1 587776 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2016-07-16 06:03:55 244116AB9BC360772163F995CAF7FB8D 1848584 ----a-w- C:\WINDOWS\Sysnative\crypt32.dll 2016-07-16 06:03:54 DFCC151C6AC8E5D50D27ACB34286835C 642048 ----a-w- C:\WINDOWS\Sysnative\enterprisecsps.dll 2016-07-16 06:03:54 8559C1E30B9404590783497563A7A8AA 1902592 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2016-07-16 06:03:54 63EA8167E8F4FC8388E6F95D4D724917 911648 ----a-w- C:\WINDOWS\Sysnative\dcomp.dll 2016-07-16 06:03:54 5E3427306DC41D80467C9B4ACDE7A9B5 849920 ----a-w- C:\WINDOWS\Sysnative\samsrv.dll 2016-07-16 06:03:54 3AE63804B34BC99FFD101DFD54012EB8 303216 ----a-w- C:\WINDOWS\Sysnative\LockAppHost.exe 2016-07-16 06:03:54 1EF7B8D9AF97BA18A61E6256300A2E78 1211904 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Cred.dll 2016-07-16 06:03:54 08C501FB351842DC6B5A34DFA705C28C 1750440 ----a-w- C:\WINDOWS\Sysnative\WpcMon.exe 2016-07-16 06:03:53 79F5E0E53F4D42D1DB0D83D719C551C9 1554152 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2016-07-16 06:03:53 5712B5F645838BFC583AB4A5E9684572 1575936 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Speech.dll 2016-07-16 06:03:53 1AC7CA0E0DA703106B6DFACD2C84E520 2285568 ----a-w- C:\WINDOWS\Sysnative\WpcWebSync.dll 2016-07-16 06:03:53 17139E61D556444B6FCE67920E71D369 2745856 ----a-w- C:\WINDOWS\Sysnative\Windows.StateRepository.dll 2016-07-16 06:03:52 D907D75D41B373D2F8DBD9E0E8B041C1 730352 ----a-w- C:\WINDOWS\Sysnative\Windows.Internal.Shell.Broker.dll 2016-07-16 06:03:52 C439E5B6E3EB38C9C7611C393348503B 1073152 ----a-w- C:\WINDOWS\Sysnative\RDXService.dll 2016-07-16 06:03:52 B26725818ECD6486A3FEB0509ED66CB3 519680 ----a-w- C:\WINDOWS\Sysnative\WLanConn.dll 2016-07-16 06:03:52 B204C799C5903272284D802DBFCF8F37 315392 ----a-w- C:\WINDOWS\Sysnative\RDXTaskFactory.dll 2016-07-16 06:03:52 6FDD8828032595D90AEB946A809089D8 480768 ----a-w- C:\WINDOWS\Sysnative\LockAppBroker.dll 2016-07-16 06:03:52 6630413C9F5E87F0C097D77AD96CBBC3 465920 ----a-w- C:\WINDOWS\Sysnative\wwanconn.dll 2016-07-16 06:03:52 318C685A15E02A8573DC3A2772804B21 253440 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_Maps.dll 2016-07-16 06:03:52 16455536238D9F0920E0AF07037D9434 128000 ----a-w- C:\WINDOWS\Sysnative\dmcsps.dll 2016-07-16 06:03:51 E7A27A6CD6CC6EA66342482FAAA8A2A7 814080 ----a-w- C:\WINDOWS\Sysnative\appwiz.cpl 2016-07-16 06:03:51 D9B2EDDCC1EE10A31389EE62B4CDDEC2 503600 ----a-w- C:\WINDOWS\Sysnative\DMRServer.dll 2016-07-16 06:03:51 C1257DCFD6031469F154CF44E0769613 1141248 ----a-w- C:\WINDOWS\Sysnative\winipcsecproc.dll 2016-07-16 06:03:51 BB46F924BAF7128D44B25783ED785A18 448000 ----a-w- C:\WINDOWS\Sysnative\winipcfile.dll 2016-07-16 06:03:51 980258BAC6A086976DADB45D2A2233BC 941568 ----a-w- C:\WINDOWS\Sysnative\MiracastReceiver.dll 2016-07-16 06:03:51 88E3BA684A7B1247762E1D401076D4C2 287744 ----a-w- C:\WINDOWS\Sysnative\cdpsvc.dll 2016-07-16 06:03:51 7E6CF2485E67AE7AA84B0556612F22CA 714240 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.Handlers.dll 2016-07-16 06:03:51 79E567E98D8F2BA20E52EBFAD92C20ED 2731008 ----a-w- C:\WINDOWS\Sysnative\gameux.dll 2016-07-16 06:03:51 509589754EDDE7F1EE879366F5692990 182784 ----a-w- C:\WINDOWS\Sysnative\shutdownux.dll 2016-07-16 06:03:51 177306E7F752A627A82D1F362A01FADE 1159168 ----a-w- C:\WINDOWS\Sysnative\ApplicationFrame.dll 2016-07-16 06:03:50 FB468F3E01B83C0878F024B8B15F8A78 6572032 ----a-w- C:\WINDOWS\Sysnative\wwanmm.dll 2016-07-16 06:03:50 F2503C00653F06AD926553E2C4F69376 1294336 ----a-w- C:\WINDOWS\Sysnative\wcnwiz.dll 2016-07-16 06:03:50 C4DF2DEF5283FB1C44C6920F2FDD83BC 44032 ----a-w- C:\WINDOWS\Sysnative\musdialoghandlers.dll 2016-07-16 06:03:50 9E5D0971925AF8E8EBAB3A98991500BD 510464 ----a-w- C:\WINDOWS\Sysnative\WlanMediaManager.dll 2016-07-16 06:03:50 7DE46FA7E3A14535E5D971C977F874D9 374008 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2016-07-16 06:03:50 681C50548D26B77E32C5A0ED3054A0C5 3415040 ----a-w- C:\WINDOWS\Sysnative\SyncCenter.dll 2016-07-16 06:03:50 5CD61D0822FCAC328DE501357445577D 484352 ----a-w- C:\WINDOWS\Sysnative\DataSenseHandlers.dll 2016-07-16 06:03:50 511198CBBA38AE0D733553B0F31C770C 636928 ----a-w- C:\WINDOWS\Sysnative\hgcpl.dll 2016-07-16 06:03:50 354D204E888E96FC12E0D1F94A98D300 364032 ----a-w- C:\WINDOWS\Sysnative\OneBackupHandler.dll 2016-07-16 06:03:49 FAAC4810F40849AB551C0B5557DF9D4B 237056 ----a-w- C:\WINDOWS\Sysnative\NetworkDesktopSettings.dll 2016-07-16 06:03:49 F8E7D71D4E1E57EF304805D2D770ED0A 619520 ----a-w- C:\WINDOWS\Sysnative\efswrt.dll 2016-07-16 06:03:49 F78D7C2D5139D658817A2823FCD6037A 775168 ----a-w- C:\WINDOWS\Sysnative\Display.dll 2016-07-16 06:03:49 F35D067F84D5F8EE3ACEEC3188FF3B40 414720 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.BioFeedback.dll 2016-07-16 06:03:49 CAEF382AD301DB79D004254E400719B2 492544 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.UserAccountsHandlers.dll 2016-07-16 06:03:49 B2F6749368EEE07AF0B09755B1636F4F 458752 ----a-w- C:\WINDOWS\Sysnative\PlayToDevice.dll 2016-07-16 06:03:49 A3024762D19A31B0CDC361097E73294D 564224 ----a-w- C:\WINDOWS\Sysnative\DevicePairing.dll 2016-07-16 06:03:49 72BE361C64D50557765CB9C8E56BB9B6 529920 ----a-w- C:\WINDOWS\Sysnative\LogonController.dll 2016-07-16 06:03:49 5A1580ADA5F4F38DC1CD0E9C1B98C6BF 2563584 ----a-w- C:\WINDOWS\Sysnative\themecpl.dll 2016-07-16 06:03:49 324F99E7B2B6739370D398D3C79A6DFD 475648 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.BlockedShutdown.dll 2016-07-16 06:03:49 29BB9364FD70012F169516312CAB0FB7 317440 ----a-w- C:\WINDOWS\Sysnative\Windows.Cortana.OneCore.dll 2016-07-16 06:03:48 EDE31817FC0A574E7CC3AF7E544C8951 279040 ----a-w- C:\WINDOWS\Sysnative\ListSvc.dll 2016-07-16 06:03:48 E57B9A2BBBBB39F369A1141472A3DDFD 392192 ----a-w- C:\WINDOWS\Sysnative\zipfldr.dll 2016-07-16 06:03:48 D3C6155DF570181F97488A3186E4E8E2 412672 ----a-w- C:\WINDOWS\Sysnative\wlanui.dll 2016-07-16 06:03:48 C9BB741EB879D6B5A6CDBE88315B030B 373248 ----a-w- C:\WINDOWS\Sysnative\WmpDui.dll 2016-07-16 06:03:48 BF224299C98EA48FC9E4D3607C3148FB 258560 ----a-w- C:\WINDOWS\Sysnative\credprovs.dll 2016-07-16 06:03:48 AA39F6642940FD8D4781701AD73776AD 188416 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.PicturePassword.dll 2016-07-16 06:03:48 96576465D2259ADDE056451DBCBEAF3D 656896 ----a-w- C:\WINDOWS\Sysnative\sud.dll 2016-07-16 06:03:48 8B46C06B69A8AB4636539783FEACE54F 316928 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll 2016-07-16 06:03:48 86236B9417AA659DF48C45162C148167 64000 ----a-w- C:\WINDOWS\Sysnative\Windows.StateRepositoryClient.dll 2016-07-16 06:03:48 771BC991BEB5DFD93B9347B18F62F216 110080 ----a-w- C:\WINDOWS\Sysnative\IdCtrls.dll 2016-07-16 06:03:48 5DB913462AD1D5EB8766E5A51922D661 2012672 ----a-w- C:\WINDOWS\Sysnative\winmsipc.dll 2016-07-16 06:03:47 F9941B95928AB5717C6AE871941A8F44 387072 ----a-w- C:\WINDOWS\Sysnative\qdvd.dll 2016-07-16 06:03:47 EA4B8BDD3CFFA0B5C7A605189D79184A 6675968 ----a-w- C:\WINDOWS\Sysnative\mspaint.exe 2016-07-16 06:03:47 E3D83E92FB3FAFD2E89A89850A0D9355 90624 ----a-w- C:\WINDOWS\Sysnative\FingerprintEnrollment.dll 2016-07-16 06:03:47 D2DAA7F5299D1612ACEF0C282BE4F47C 492544 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_StorageSense.dll 2016-07-16 06:03:47 9E625D3F5AAC433191CF4F16174DDE05 824320 ----a-w- C:\WINDOWS\Sysnative\WpcWebFilter.dll 2016-07-16 06:03:47 2A64B3002165F3842EDCFA048624284F 283648 ----a-w- C:\WINDOWS\Sysnative\PlayToReceiver.dll 2016-07-16 06:03:47 0B1DA49D8F816ED7CF44B112B2F348DD 59904 ----a-w- C:\WINDOWS\Sysnative\Windows.StateRepositoryBroker.dll 2016-07-16 06:03:47 09291D797572201BF39B685E57B7C73B 556032 ----a-w- C:\WINDOWS\Sysnative\PsmServiceExtHost.dll 2016-07-16 06:03:46 E8720AD5391738C5EBCCCF696B46C000 59392 ----a-w- C:\WINDOWS\Sysnative\cdpreference.exe 2016-07-16 06:03:46 B86D30AE36165FC84E56AAD4EFBCF527 451584 ----a-w- C:\WINDOWS\Sysnative\werui.dll 2016-07-16 06:03:46 5E5BEC886CC2503C4F18AF2153B169AF 957952 ----a-w- C:\WINDOWS\Sysnative\IKEEXT.DLL 2016-07-16 06:03:46 1FD91D9B6FA03C97DC8C1DD29775BBA5 7977472 ----a-w- C:\WINDOWS\Sysnative\mos.dll 2016-07-16 06:03:45 1849F8CCD27258F69EAABC334A87846C 6973952 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2016-07-16 06:03:44 552E1A170B36D372CA67A5990E95BF13 6312448 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2016-07-16 06:03:43 20CD3B9C674909CCB1966F58A778DC68 7200256 ----a-w- C:\WINDOWS\Sysnative\BingMaps.dll 2016-07-16 06:03:42 E7AF5609667C0BF1BC80A9D2E2303C35 3577344 ----a-w- C:\WINDOWS\Sysnative\tquery.dll 2016-07-16 06:03:41 AA27A3DF5CDA714F0DD47A48FE7CA8C3 2168320 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2016-07-16 06:03:41 7B8C0E8D6B84BB841D50779D643C2A22 2066432 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll 2016-07-16 06:03:40 76BA7FDD3EA3764C0CADB522FF3F4715 939520 ----a-w- C:\WINDOWS\Sysnative\MapControlCore.dll 2016-07-16 06:03:40 1D077E04EA82EF6D2E389182FF8C9A31 853504 ----a-w- C:\WINDOWS\Sysnative\MapsStore.dll 2016-07-16 06:03:40 08EF12456EDFB557DC424AFD9CF4AAE1 587456 ----a-w- C:\WINDOWS\Sysnative\generaltel.dll 2016-07-16 06:03:40 05A027F27937EB29B89743A51B1313EA 460800 ----a-w- C:\WINDOWS\Sysnative\MapConfiguration.dll 2016-07-16 06:03:40 04ABF2BA35F85E88076A44B6FF19D3EE 1716736 ----a-w- C:\WINDOWS\Sysnative\SRHInproc.dll 2016-07-16 06:03:40 028CE336DC0BD5D258716403C277674E 2597888 ----a-w- C:\WINDOWS\Sysnative\mssrch.dll 2016-07-16 06:03:39 9F1B8A631FD76E9702A58904D4F249BE 566104 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2016-07-16 06:03:39 9E2BC2A7D1E3862327B5626CEE56C46E 1487872 ----a-w- C:\WINDOWS\Sysnative\SpeechPal.dll 2016-07-16 06:03:39 995974222B873687A88C25FFCDB644F7 965632 ----a-w- C:\WINDOWS\Sysnative\SRH.dll 2016-07-16 06:03:39 6D63B50C49E869AF2F5B189FDD6CE784 1443840 ----a-w- C:\WINDOWS\Sysnative\diagperf.dll 2016-07-16 06:03:39 634E0909C598C5BA50E0890D7CAFD795 870400 ----a-w- C:\WINDOWS\Sysnative\wpncore.dll 2016-07-16 06:03:39 5E126FBE705D91361A3A26DAF9A55838 2103296 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.3D.dll 2016-07-16 06:03:39 13F1408690E108A987CA77141C4358E5 1097216 ----a-w- C:\WINDOWS\Sysnative\dosvc.dll 2016-07-16 06:03:38 F648E0821CACC7E547562321332E12B1 988160 ----a-w- C:\WINDOWS\Sysnative\NMAA.dll 2016-07-16 06:03:38 EBF31825A4C505188DC598F28C4E25F5 586208 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2016-07-16 06:03:38 6E8F12E9EF754A715D62B5EEA045BE62 984576 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2016-07-16 06:03:38 38F120F3E9F4C87A4825F12B33849BA5 938496 ----a-w- C:\WINDOWS\Sysnative\SearchIndexer.exe 2016-07-16 06:03:37 F86A7E3BA31FB9AEF5E6EF29B65E202E 1238584 ----a-w- C:\WINDOWS\Sysnative\Taskmgr.exe 2016-07-16 06:03:37 DA7B203B42D2F32FB03AE8DFEB56F326 529408 ----a-w- C:\WINDOWS\Sysnative\NotificationController.dll 2016-07-16 06:03:37 C821BB49409012C6CD024F21959CC051 638976 ----a-w- C:\WINDOWS\Sysnative\ShareHost.dll 2016-07-16 06:03:37 C0ADEBE6980D501C0D5B2FD321F78D19 270848 ----a-w- C:\WINDOWS\Sysnative\moshostcore.dll 2016-07-16 06:03:37 B9A5A35B9EB23AD507A3BABB35C5B67D 1051648 ----a-w- C:\WINDOWS\Sysnative\MsSpellCheckingFacility.dll 2016-07-16 06:03:37 98E3D2BB421424B0457F8B7C46113110 72704 ----a-w- C:\WINDOWS\Sysnative\moshost.dll 2016-07-16 06:03:37 8EC8ECAB9AF9A5F23872031391AE6BB3 66560 ----a-w- C:\WINDOWS\Sysnative\MosHostClient.dll 2016-07-16 06:03:37 7DF705D181132AAB5AE5B25A8FF32215 613376 ----a-w- C:\WINDOWS\Sysnative\SettingSync.dll 2016-07-16 06:03:37 65A7997831D78845FDA12E2C87491670 896512 ----a-w- C:\WINDOWS\Sysnative\MbaeApiPublic.dll 2016-07-16 06:03:37 4DDF78E93CF079FD19D80CB45DA9611D 1036288 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll 2016-07-16 06:03:37 3AFCB780F17144A42F99128AD7E55A02 1056256 ----a-w- C:\WINDOWS\Sysnative\JpMapControl.dll 2016-07-16 06:03:36 FDDC75FDB8F9B581E3D6513FB85256E8 342016 ----a-w- C:\WINDOWS\Sysnative\APHostService.dll 2016-07-16 06:03:36 D78D829952282676116A92E1C5C3A89F 37232 ----a-w- C:\WINDOWS\Sysnative\wldp.dll 2016-07-16 06:03:36 B3880D0DB160EDC7903B9F32C833812F 74752 ----a-w- C:\WINDOWS\Sysnative\MosStorage.dll 2016-07-16 06:03:36 A5AE758495A6F7BAB269CCDC960CAAD6 549888 ----a-w- C:\WINDOWS\Sysnative\SearchFolder.dll 2016-07-16 06:03:36 7EA42087AEE36B39F2758475B91AD5F3 515072 ----a-w- C:\WINDOWS\Sysnative\OneDriveSettingSyncProvider.dll 2016-07-16 06:03:36 757F9AA7EA001014DC9352C6144301BF 3053568 ----a-w- C:\WINDOWS\Sysnative\rdpcore.dll 2016-07-16 06:03:36 5EE16195544A95C09FB12B5594D229FE 247296 ----a-w- C:\WINDOWS\Sysnative\mssphtb.dll 2016-07-16 06:03:36 56A8197D9FAE5D63ED0CED92BD03F4F8 450048 ----a-w- C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll 2016-07-16 06:03:36 518ABEC8D3C1EEB1C64FDC3B77CD428C 961536 ----a-w- C:\WINDOWS\Sysnative\WSShared.dll 2016-07-16 06:03:35 F6222E15A014A6026CD7F860006407C4 47616 ----a-w- C:\WINDOWS\Sysnative\TpmTasks.dll 2016-07-16 06:03:35 F432A642F2C6266788080704C63C7427 2912256 ----a-w- C:\WINDOWS\Sysnative\CertEnroll.dll 2016-07-16 06:03:35 877EAB65117EF1A49C28F815F10E3A87 334848 ----a-w- C:\WINDOWS\Sysnative\SearchProtocolHost.exe 2016-07-16 06:03:35 4F56CB4CE94272928D1F884A5798456C 538112 ----a-w- C:\WINDOWS\Sysnative\Windows.Cortana.Desktop.dll 2016-07-16 06:03:35 4176712BADB6903C8419B66E678CE816 440320 ----a-w- C:\WINDOWS\Sysnative\fhcfg.dll 2016-07-16 06:03:35 3801440364B05BDFA96CF6071D45CD7C 35656 ----a-w- C:\WINDOWS\Sysnative\mfpmp.exe 2016-07-16 06:03:35 20688A78EC7B410B2C099C80C5F758D8 1128104 ----a-w- C:\WINDOWS\Sysnative\ClipUp.exe 2016-07-16 06:03:35 1E099AE79C6D58063E0B4F538732B87F 3449168 ----a-w- C:\WINDOWS\Sysnative\WSService.dll 2016-07-16 06:03:35 1435F76294D5E1D1017D5C6D47CA3F80 106928 ----a-w- C:\WINDOWS\Sysnative\phoneactivate.exe 2016-07-16 06:03:35 024199E28832EEF1418AC3E93894FB75 376536 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.MediaControl.dll 2016-07-16 06:03:34 EB9699F8F050E41A2661E56090FB9988 992256 ----a-w- C:\WINDOWS\Sysnative\sbe.dll 2016-07-16 06:03:34 BA46DFBCD3D906776F0F803B6C0B5690 185344 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll 2016-07-16 06:03:34 ACF6FB6941AAF8EEBFF3C2B9C79C3F14 287744 ----a-w- C:\WINDOWS\Sysnative\apprepapi.dll 2016-07-16 06:03:34 9D86BE6C15D60535AE36AA0D8DECFC51 394752 ----a-w- C:\WINDOWS\Sysnative\WMPhoto.dll 2016-07-16 06:03:34 97AF27209BA7058F21C8879E773CED86 305152 ----a-w- C:\WINDOWS\Sysnative\edputil.dll 2016-07-16 06:03:34 8FB500C462988EE33368E6E099638384 394240 ----a-w- C:\WINDOWS\Sysnative\Search.ProtocolHandler.MAPI2.dll 2016-07-16 06:03:34 8F533910E5D0A63500B17F486331259F 356864 ----a-w- C:\WINDOWS\Sysnative\ActivationManager.dll 2016-07-16 06:03:34 8E908E944599C9134A209D5876884C07 183808 ----a-w- C:\WINDOWS\Sysnative\WSSync.dll 2016-07-16 06:03:34 89C78489A7F929362858F4DFD86746E7 252928 ----a-w- C:\WINDOWS\Sysnative\fhengine.dll 2016-07-16 06:03:34 81F9278A83AD6F42C5DE6FEAAFBEA8AB 715776 ----a-w- C:\WINDOWS\Sysnative\GamePanel.exe 2016-07-16 06:03:34 4EAE9C70DAB294850557E0A2B13DC3C2 674304 ----a-w- C:\WINDOWS\Sysnative\mbsmsapi.dll 2016-07-16 06:03:34 45521E32AB1D383F9E85674D0F035543 469504 ----a-w- C:\WINDOWS\Sysnative\fhsettingsprovider.dll 2016-07-16 06:03:34 21E74A7A50345F64A2E494C6B6AE0DF2 243712 ----a-w- C:\WINDOWS\Sysnative\SettingMonitor.dll 2016-07-16 06:03:34 20B48DC4AF4492B31A756528444BDA8C 304752 ----a-w- C:\WINDOWS\Sysnative\systemreset.exe 2016-07-16 06:03:33 E274C4B6C496B72CCE171CB56C51C41A 51200 ----a-w- C:\WINDOWS\Sysnative\Windows.Shell.Search.UriHandler.dll 2016-07-16 06:03:33 DA3572238188A1145DC11800F581A30E 28672 ----a-w- C:\WINDOWS\Sysnative\mapsupdatetask.dll 2016-07-16 06:03:33 D627ED29A07745EB1A5A7405FBFA2381 147456 ----a-w- C:\WINDOWS\Sysnative\mssph.dll 2016-07-16 06:03:33 862FCF0385E0D94A2CD2FB4604096CDB 200192 ----a-w- C:\WINDOWS\Sysnative\WUDFPlatform.dll 2016-07-16 06:03:33 7FA43A7587D5D6AA8FFE42A271CF2585 45056 ----a-w- C:\WINDOWS\Sysnative\Windows.Speech.Pal.dll 2016-07-16 06:03:33 7B5D06BDED5DFDF28597A9C5F72E85CE 40960 ----a-w- C:\WINDOWS\Sysnative\msscntrs.dll 2016-07-16 06:03:33 4E762D96FA52AB55A796E373C0557361 203776 ----a-w- C:\WINDOWS\Sysnative\SearchFilterHost.exe 2016-07-16 06:03:33 40A9F59FD6B24C045F1D6076E6489CE6 174592 ----a-w- C:\WINDOWS\Sysnative\easwrt.dll 2016-07-16 06:03:32 B40875B8854291BD6919527ABB8DD8AE 368640 ----a-w- C:\WINDOWS\Sysnative\diagtrack_win.dll 2016-07-16 06:03:32 923EC7EA1E8BE1C7706A2AC5DD28FF5B 120320 ----a-w- C:\WINDOWS\Sysnative\MapsBtSvc.dll 2016-07-16 06:03:32 7B2FEC36A1166CBAB50135FCE044D9CE 86528 ----a-w- C:\WINDOWS\Sysnative\AppCapture.dll 2016-07-16 06:03:32 7A809AC3187F404168EAD29FB96A7854 414720 ----a-w- C:\WINDOWS\Sysnative\bcastdvr.exe 2016-07-16 06:03:32 6FFA21CD6166BB456262BDEFC2C5E3DE 318976 ----a-w- C:\WINDOWS\Sysnative\domgmt.dll 2016-07-16 06:03:32 5BDBA05692A03279E2EB9F26DB53E148 89088 ----a-w- C:\WINDOWS\Sysnative\MapsCSP.dll 2016-07-16 06:03:32 2786EAC53204EC98E5DD85C1A9DBA965 1087488 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2016-07-16 06:03:32 1F1C41F53373FCD4DA82C5A16E748E05 381952 ----a-w- C:\WINDOWS\Sysnative\apprepsync.dll 2016-07-16 06:03:31 749BEA2C23422B51F5340F42784F817D 7533568 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2016-07-16 06:03:27 F2A9089A715EC55EA8A5C660F724A7B3 2280448 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2016-07-16 06:03:26 06A6BED5044BFA97C1988568DD628777 2444800 ----a-w- C:\WINDOWS\Sysnative\twinui.appcore.dll 2016-07-16 06:03:25 FA01865117A7529561E1F19FD0354D2E 4170240 ----a-w- C:\WINDOWS\Sysnative\UIRibbon.dll 2016-07-16 06:03:24 E6AA08DC29AA637E861DAF0AB3E21888 1567744 ----a-w- C:\WINDOWS\Sysnative\Windows.Globalization.dll 2016-07-16 06:03:24 928C7B3D285CD3485267E6B819748DA4 4646912 ----a-w- C:\WINDOWS\Sysnative\xpsrchvw.exe 2016-07-16 06:03:23 9F77B66EC74300D30720B1001E2CD044 1037824 ----a-w- C:\WINDOWS\Sysnative\SmartcardCredentialProvider.dll 2016-07-16 06:03:23 00B6D59BBA3D3061EE5210970ACC758C 4171264 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2016-07-16 06:03:22 AE4655837703FFA4AB079B22B66BB3C2 352256 ----a-w- C:\WINDOWS\Sysnative\eappcfg.dll 2016-07-16 06:03:22 7324FB4B99D7485728862DE165946846 1814528 ----a-w- C:\WINDOWS\Sysnative\pnidui.dll 2016-07-16 06:03:22 5F1CAF0E823BADD5576555CC876F1067 1613664 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2016-07-16 06:03:22 3B6CCFF7AD385842A9638DCF654ABCD4 1872896 ----a-w- C:\WINDOWS\Sysnative\workfolderssvc.dll 2016-07-16 06:03:22 0AC905009A2ED68715675E086B805316 407552 ----a-w- C:\WINDOWS\Sysnative\MusUpdateHandlers.dll 2016-07-16 06:03:21 4FBF7735D43C338B9F6A1F86116451E5 28851224 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecsRaw.dll 2016-07-16 06:03:17 F34470B288B2EF590B3ECA8BA4C90D95 233984 ----a-w- C:\WINDOWS\Sysnative\schtasks.exe 2016-07-16 06:03:17 DEB8CA5DE728ECB09706765DFAC90DBA 596480 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.dll 2016-07-16 06:03:17 C5D55EF423F535D5A6766DB727BEB7E5 160768 ----a-w- C:\WINDOWS\Sysnative\SimAuth.dll 2016-07-16 06:03:17 9B2BFADCB00CF39F0EBD3D690FC56220 1997328 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2016-07-16 06:03:17 6CA35CF766C04B30BBE9F99CB70D1DE1 193024 ----a-w- C:\WINDOWS\Sysnative\SimCfg.dll 2016-07-16 06:03:17 4148FE81CAA1383F97FA4F8A21A4700C 733184 ----a-w- C:\WINDOWS\Sysnative\rasapi32.dll 2016-07-16 06:03:17 150EB8C1C9AE50F354A4CB5778E5951E 459776 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2016-07-16 06:03:17 02DF62B54CEDC85DAC946FF3F01171F5 1385472 ----a-w- C:\WINDOWS\Sysnative\usercpl.dll 2016-07-16 06:03:16 ECDD8B72980581EF23F5BA0AFF04767F 584704 ----a-w- C:\WINDOWS\Sysnative\UIRibbonRes.dll 2016-07-16 06:03:16 E72BB94A4010EBA7074DFEB25D67BDC3 625000 ----a-w- C:\WINDOWS\Sysnative\ClipSVC.dll 2016-07-16 06:03:16 DF85A7B895A73421A50E955B94719F2F 78040 ----a-w- C:\WINDOWS\Sysnative\Clipc.dll 2016-07-16 06:03:16 D9D652506DD07CD49F3D20A3BBDD613B 333312 ----a-w- C:\WINDOWS\Sysnative\eapp3hst.dll 2016-07-16 06:03:16 3E9CD04F3FB54D4C3CEF3393ABF743BC 254464 ----a-w- C:\WINDOWS\Sysnative\ExecModelClient.dll 2016-07-16 06:03:16 329E7ACF649A721B8A5B3F0A9976F91F 2800128 ----a-w- C:\WINDOWS\Sysnative\netshell.dll 2016-07-16 06:03:16 127925766866C52F147A2FFC0C0358A5 87040 ----a-w- C:\WINDOWS\Sysnative\tzautoupdate.dll 2016-07-16 06:03:15 FE87844A9D75F2D6D0752DF25EBF776B 113152 ----a-w- C:\WINDOWS\Sysnative\eappgnui.dll 2016-07-16 06:03:15 D62B0829530BBBA204ECA98B57FC4C58 817152 ----a-w- C:\WINDOWS\Sysnative\Windows.Storage.Search.dll 2016-07-16 06:03:15 CFD91D429BA902F1E3EF09434BFEAF53 1048576 ----a-w- C:\WINDOWS\Sysnative\WebcamUi.dll 2016-07-16 06:03:15 CC270562CC41D32D118D9EA75E966FE5 26408 ----a-w- C:\WINDOWS\Sysnative\wuauclt.exe 2016-07-16 06:03:15 B9F994EA5B90838A7B10DEDCC4E41C2B 270336 ----a-w- C:\WINDOWS\Sysnative\netplwiz.dll 2016-07-16 06:03:15 B7BA7030B50FC782F44D28B63C28B535 2902528 ----a-w- C:\WINDOWS\Sysnative\themeui.dll 2016-07-16 06:03:15 9516AE004E3A945BA090B2CD7754B8AE 870400 ----a-w- C:\WINDOWS\Sysnative\modernexecserver.dll 2016-07-16 06:03:15 827B2A2F64465D19DF9F655FE7F10384 565760 ----a-w- C:\WINDOWS\Sysnative\ActionCenterCPL.dll 2016-07-16 06:03:15 7A576DA811BCF5843C909D9BC9AEC351 522240 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.WiFiDirect.dll 2016-07-16 06:03:15 6A9D3DD35E13B1009E7A712E6D164B8A 274432 ----a-w- C:\WINDOWS\Sysnative\dmdskmgr.dll 2016-07-16 06:03:15 196E3B5FB1D1A76D41A0C9A9A0B2F698 236032 ----a-w- C:\WINDOWS\Sysnative\licensingdiag.exe 2016-07-16 06:03:14 FC749BCC3387CBBEE57539F414B24EB9 583680 ----a-w- C:\WINDOWS\Sysnative\PhotoScreensaver.scr 2016-07-16 06:03:14 F8D77A486B78DB6FA44F2F7DF5D7F65C 285184 ----a-w- C:\WINDOWS\Sysnative\oemlicense.dll 2016-07-16 06:03:14 EB7C132D02CC40FB6538D53447447B2A 308736 ----a-w- C:\WINDOWS\Sysnative\eapphost.dll 2016-07-16 06:03:14 ACEDA3F655270B39586A7E8D37F1ADC2 72192 ----a-w- C:\WINDOWS\Sysnative\eappprxy.dll 2016-07-16 06:03:14 A143C34D5DFADCDDBB88CC396DC1F802 859136 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll 2016-07-16 06:03:14 9430C60EBCAE82C0D27050C3FA231D1D 84480 ----a-w- C:\WINDOWS\Sysnative\rdpudd.dll 2016-07-16 06:03:14 7E6FCD52B7EE309145A51A286ED18224 344064 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Picker.dll 2016-07-16 06:03:14 632C3792D2BFC67E2F8B2A2CFC09CEEF 14848 ----a-w- C:\WINDOWS\Sysnative\IconCodecService.dll 2016-07-16 06:03:14 416CB546F36D3E5A5B5286E0066ED285 585728 ----a-w- C:\WINDOWS\Sysnative\ieui.dll 2016-07-16 06:03:13 531662DC0764C1A1E333BD05D4485333 321536 ----a-w- C:\WINDOWS\Sysnative\GlobCollationHost.dll 2016-07-16 06:03:12 2DEED9D59520DD7DF44C4D4F58C3B046 16985088 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2016-07-16 06:03:11 49B666BCCF59226549F64656584318EA 6536256 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2016-07-16 06:03:08 4B80239138EB21B50A1FBA54FDB15860 6605544 ----a-w- C:\WINDOWS\Sysnative\windows.storage.dll 2016-07-16 06:03:07 B0296912EC10003945B68D19E9F4BC53 440320 ----a-w- C:\WINDOWS\Sysnative\CredProvDataModel.dll 2016-07-16 06:03:07 6ADFA862EDA342F416C05C9E88A69899 22561256 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2016-07-16 06:03:05 B6C299CDD0D76D3A8073D934E00C8400 1505984 ----a-w- C:\WINDOWS\Sysnative\appraiser.dll 2016-07-16 06:03:05 65952E564FABBE1348E8DDBC9E85A5BC 50368 ----a-w- C:\WINDOWS\Sysnative\CompatTelRunner.exe 2016-07-16 06:03:03 F785587BCA673FB606BD3618EB767EEE 92352 ----a-w- C:\WINDOWS\Sysnative\acmigration.dll 2016-07-16 06:03:03 EF6BD61D1F7B3E4C20EEC44F9B07E06D 1223872 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2016-07-16 06:03:02 D29BE449B728CD126D5ACA3E823C8907 4827136 ----a-w- C:\WINDOWS\Sysnative\ExplorerFrame.dll 2016-07-16 06:03:02 A71D446195E2B8090621C884D5DC3532 2656408 ----a-w- C:\WINDOWS\Sysnative\CoreUIComponents.dll 2016-07-16 06:03:02 A2BE69243B678C4FD05DFD4AEC83A725 559808 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2016-07-16 06:03:01 4D82582733D9F437F544D3F8F98CE159 1001472 ----a-w- C:\WINDOWS\Sysnative\schedsvc.dll 2016-07-16 06:03:00 63660131B3B6F976F28E75F37DFB2F5F 1776768 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecs.dll 2016-07-16 06:03:00 5CB0052CBF1DBF36071AD520245F32D6 310464 ----a-w- C:\WINDOWS\Sysnative\invagent.dll 2016-07-16 06:03:00 2AE0CAA966E0FA3ED4DC193A3DD71D3A 5123072 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2016-07-16 06:02:59 DC61C9AF4B96DB3CAB08168B8E9D3455 2050560 ----a-w- C:\WINDOWS\Sysnative\PrintDialogs3D.dll 2016-07-16 06:02:59 83A5F89896E625650148CEFCABD8418D 219136 ----a-w- C:\WINDOWS\Sysnative\aepic.dll 2016-07-16 06:02:59 5FCE18E28E0439C147A16323961CD1FA 3046400 ----a-w- C:\WINDOWS\Sysnative\xpsservices.dll 2016-07-16 06:02:59 50F7B408700BF28CF9986821E0486A16 379392 ----a-w- C:\WINDOWS\Sysnative\usocore.dll 2016-07-16 06:02:59 402CA5304470A5034EAA1FEDBB7564A7 2445312 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2016-07-16 06:02:59 35548DDC03345511E3B3F6C1237FFD6F 1040800 ----a-w- C:\WINDOWS\Sysnative\twinapi.appcore.dll 2016-07-16 06:02:58 E750AFEDBCC48016787CB4F6644923E4 1847808 ----a-w- C:\WINDOWS\Sysnative\WMPDMC.exe 2016-07-16 06:02:58 E5830830FB987CB46C18AB55ECC7763A 341504 ----a-w- C:\WINDOWS\Sysnative\wmicmiplugin.dll 2016-07-16 06:02:58 A09C212408747F8074D957375B9C486C 268288 ----a-w- C:\WINDOWS\Sysnative\updatehandlers.dll 2016-07-16 06:02:58 8CA9FBB305EFB04585BAC36B7B29C14B 172032 ----a-w- C:\WINDOWS\Sysnative\MusNotification.exe 2016-07-16 06:02:58 871DB0260278B46C50D17C5CF4AEB12F 1291776 ----a-w- C:\WINDOWS\Sysnative\werconcpl.dll 2016-07-16 06:02:58 6DF9F08ED418A400857E5570E842A559 838144 ----a-w- C:\WINDOWS\Sysnative\uDWM.dll 2016-07-16 06:02:58 682F73D86501D75B131A1D59539A475D 504320 ----a-w- C:\WINDOWS\Sysnative\AppReadiness.dll 2016-07-16 06:02:58 3182FCAF6AAF478791DE5B430C912D4D 314368 ----a-w- C:\WINDOWS\Sysnative\EnterpriseAppMgmtSvc.dll 2016-07-16 06:02:58 2D27946C8EC1AA93A26FEC2C7909CD05 299520 ----a-w- C:\WINDOWS\Sysnative\taskeng.exe 2016-07-16 06:02:57 F747C037C6CC055E664235BF0EA9A30C 882688 ----a-w- C:\WINDOWS\Sysnative\ntshrui.dll 2016-07-16 06:02:57 E995CBD7C59AB97414489C7CC3B7E09C 504832 ----a-w- C:\WINDOWS\Sysnative\dlnashext.dll 2016-07-16 06:02:57 E7DA2262B7A9C793FEBD14088AE4C72F 900608 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.BackgroundTransfer.dll 2016-07-16 06:02:57 E17447519BC01492E3234C90890800D4 368128 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll 2016-07-16 06:02:57 C93639FAB08F564D92AB5CFF29C2BFCD 1216512 ----a-w- C:\WINDOWS\Sysnative\netcenter.dll 2016-07-16 06:02:57 9DC794AC6F27E96F976990C6C7FC4862 57344 ----a-w- C:\WINDOWS\Sysnative\MusNotificationUx.exe 2016-07-16 06:02:57 210F58F5F18D1DBF0B6F75BE33D8B06C 651776 ----a-w- C:\WINDOWS\Sysnative\UserLanguagesCpl.dll 2016-07-16 06:02:56 C8E72A76B943CEF7A6C830BDB51E7B50 319488 ----a-w- C:\WINDOWS\Sysnative\dot3ui.dll 2016-07-16 06:02:56 C55144832FF73830BBBC0B5B6EED6383 1030416 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2016-07-16 06:02:56 BB861E878479CCBCF55D4242AC400E36 1317640 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2016-07-16 06:02:56 8C01DAF52F9923A4B9DF31F1D9331567 1141504 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2016-07-16 06:02:56 309B981F0EB10916BD0BF2972BB33841 1213440 ----a-w- C:\WINDOWS\Sysnative\sdengin2.dll 2016-07-16 06:02:56 11FB4531482E461A71E5303F53FFDC92 874968 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2016-07-16 06:02:55 FCC66CE466375869F873C9DA3A3C9453 947200 ----a-w- C:\WINDOWS\Sysnative\rasgcw.dll 2016-07-16 06:02:55 E772B8EEE1D142622192ADFF4DA1618B 673280 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.dll 2016-07-16 06:02:55 B5FF07AFF96EFB80B930985B5B1A7CAB 286720 ----a-w- C:\WINDOWS\Sysnative\deviceaccess.dll 2016-07-16 06:02:55 723C6C3DE056D3EB76F7520BEF5947B4 150528 ----a-w- C:\WINDOWS\Sysnative\sdrsvc.dll 2016-07-16 06:02:55 2F022C0682885EFF4CFB0B62143482B5 71168 ----a-w- C:\WINDOWS\Sysnative\LegacyNetUX.dll 2016-07-16 06:02:55 1AD6967BB8F7D4495271715DC3E38CEB 206848 ----a-w- C:\WINDOWS\Sysnative\LegacyNetUXHost.exe 2016-07-16 06:02:55 19348CC554A839CDFE5F79A42EBBBFAB 589824 ----a-w- C:\WINDOWS\Sysnative\PrintDialogs.dll 2016-07-16 06:02:55 064EDB04AB15F985E5E9DE0D9B236958 429056 ----a-w- C:\WINDOWS\Sysnative\taskcomp.dll 2016-07-16 06:02:54 C56BFF5D26E3CD34EEB79213B6220C14 129536 ----a-w- C:\WINDOWS\Sysnative\sdshext.dll 2016-07-16 06:02:54 C063C35A67FBECF53E4F31D44D253170 91136 ----a-w- C:\WINDOWS\Sysnative\browserbroker.dll 2016-07-16 06:02:54 A4BC389CAEA0203FD33849FA8431AA88 224256 ----a-w- C:\WINDOWS\Sysnative\PackageStateRoaming.dll 2016-07-16 06:02:54 A499B4A9A1F4989BD37F812BC6DC0298 4775424 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2016-07-16 06:02:54 8C837B999EE2D443E8C19677C4BB7F60 677376 ----a-w- C:\WINDOWS\Sysnative\wiaaut.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2016-07-16 06:04:15 97BFC3BD9F910B24EB956FF3387C71CF 1987936 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-07-16 06:04:09 91A2D07C017068FD2F11414E8D676EC5 577376 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-07-16 06:04:05 66FDDD2004332EED0A8262E9762EB457 393568 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-07-16 06:03:54 549DFD8240CF20BFBD88AD9D89325DBF 530432 ----a-w- C:\WINDOWS\Sysnative\drivers\nwifi.sys 2016-07-16 06:03:52 EF94E21C3220AE3F8539542EC0B3FF06 331616 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2016-07-16 06:03:52 5DFF4CF4DF7FD11AE5A1DAD8C67619D2 161632 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2016-07-16 06:03:52 309E3CFC5309CECD9317A69990716A87 604928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-07-16 06:03:23 2D54FE808BAF96666D0CE9B05B8C768F 954368 ----a-w- C:\WINDOWS\Sysnative\drivers\bthport.sys 2016-07-16 06:03:12 B32316BCF974882E715A3459C953AD56 84992 ----a-w- C:\WINDOWS\Sysnative\drivers\BTHUSB.SYS 2016-07-16 06:03:12 33110D78697A1B771E1B30675B39CE46 112640 ----a-w- C:\WINDOWS\Sysnative\drivers\bthenum.sys 2016-07-16 06:03:03 CF63BF6AAEDF721E37F9E216FD321B8E 2403168 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2016-07-16 06:02:56 1CDA6D0A2345AA589949AE9C83853913 277856 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2016-07-14 18:12:03 CDB1BE967AFF65D8395B6DF2EA8CBCCF 473592 ----a-w- C:\WINDOWS\Sysnative\drivers\aswsp.sys 2016-07-04 14:47:05 F6B5E463A0BB934C26FB319EDC726F65 162904 ----a-w- C:\WINDOWS\Sysnative\drivers\aswStm.sys 2016-07-04 14:47:05 DA7B392FB478EB42BE925433D27940F8 290088 ----a-w- C:\WINDOWS\Sysnative\drivers\aswVmm.sys 2016-07-04 14:47:05 A629E4799D4CD6361D1B5D573EA5C2CD 37656 ----a-w- C:\WINDOWS\Sysnative\drivers\aswHwid.sys 2016-07-04 14:47:05 9C6C17C495E960E52EDE5D038EE92AE1 108304 ----a-w- C:\WINDOWS\Sysnative\drivers\aswMonFlt.sys 2016-07-04 14:47:05 8F492911129B1B32818BF894DC0C2C73 103064 ----a-w- C:\WINDOWS\Sysnative\drivers\aswRdr2.sys 2016-07-04 14:47:05 4ABDD84A67378E866BC15DDC9916BA71 74544 ----a-w- C:\WINDOWS\Sysnative\drivers\aswRvrt.sys 2016-07-04 14:47:05 409CDD1400B404F655EEC1B5850FD3BE 1070904 ----a-w- C:\WINDOWS\Sysnative\drivers\aswSnx.sys 2016-07-04 14:47:03 97F952A9050CAD88681F5F0F46B8D5A5 37144 ----a-w- C:\WINDOWS\Sysnative\drivers\aswKbd.sys 2016-07-03 08:43:45 51EBFBA074F2002F4DBF76C0AF4DF95D 473592 ----a-w- C:\WINDOWS\Sysnative\drivers\aswsp.sys.146753543639002 ====== C:\WINDOWS\Tasks ====== 2016-07-26 08:32:14 5AF58AB525270EAC06642DA0F6DA226F 3046 ----a-w- C:\WINDOWS\Sysnative\Tasks\Driver Booster SkipUAC (fransbronselaer) 2016-07-24 12:42:58 2FDE0295D1429395208F95F40EF88C9F 310 ----a-w- C:\WINDOWS\Tasks\Uninstaller_SkipUac_fransbronselaer.job 2016-07-24 12:42:58 299CE34E45E21374480757B7D8134867 2536 ----a-w- C:\WINDOWS\Sysnative\Tasks\Uninstaller_SkipUac_fransbronselaer 2016-07-19 10:29:37 86279C5D87750AD31D9116A295833256 270 ----a-w- C:\WINDOWS\Tasks\ASC9_SkipUac_fransbronselaer.job 2016-07-19 10:29:37 0C59207F189EC040360918F0A46E4ADB 2482 ----a-w- C:\WINDOWS\Sysnative\Tasks\ASC9_SkipUac_fransbronselaer 2016-07-04 14:47:34 7CA8A8E26508D3670AE0D8B98B50961A 4000 ----a-w- C:\WINDOWS\Sysnative\Tasks\SafeZone scheduled Autoupdate 1464359632 2016-07-04 14:47:15 5EB33520C26E22709865AB01610CBEA8 4004 ----a-w- C:\WINDOWS\Sysnative\Tasks\avast! Emergency Update ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-07-25 08:04:15 -------- d-----w- C:\Program Files\trend micro 2016-07-20 10:07:37 -------- d-----w- C:\Program Files\Serif 2016-07-17 16:38:35 -------- d-----w- C:\Program Files\eid-chrome-middleware ======= C:\PROGRA~2 ===== 2016-07-24 11:03:20 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-07-06 19:11:46 -------- d---a-w- C:\PROGRA~2\Mozilla Thunderbird ======= C: ===== ====== C:\Users\fransbronselaer\AppData\Roaming ====== 2016-07-25 20:28:14 4E04847BADA94197CADCE629C7F24F13 2265528 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2016-07-24 12:59:05 -------- d-----w- C:\Users\fransbronselaer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mio 2016-07-04 14:57:58 -------- d-----w- C:\Users\fransbronselaer\AppData\Local\CEF ====== C:\Users\fransbronselaer ====== 2016-07-26 09:07:55 -------- d-----w- C:\ProgramData\ProductData 2016-07-26 08:17:58 376D468F5128E9A24F71597FA1482EE2 8136664 ----a-w- C:\Users\fransbronselaer\Downloads\ccsetup520.exe 2016-07-25 08:03:59 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\fransbronselaer\Downloads\RSITx64.exe 2016-07-24 14:11:48 FCBFBA16766A46766E72F90FE582F5F7 576073728 ----a-w- C:\Users\fransbronselaer\MapData_TAEE1_v1512_5001.iso 2016-07-24 13:07:02 565214CAA1915AF648F8C821BD2F4F2A 854 ----a-w- C:\Users\fransbronselaer\isoList.xml 2016-07-24 08:39:08 F0EE0FE6CC055FCEBE2B417D6ACAEF57 5239920 ----a-w- C:\Users\fransbronselaer\Downloads\ParetoLogic PC Health Advisor_nl (3).exe 2016-07-24 08:38:29 F0EE0FE6CC055FCEBE2B417D6ACAEF57 5239920 ----a-w- C:\Users\fransbronselaer\Downloads\ParetoLogic PC Health Advisor_nl (2).exe 2016-07-20 09:06:36 1D5DAC3760DD5B3EF0399E0FE01B7796 238203152 ----a-w- C:\Users\fransbronselaer\Downloads\affinity-designer-public-beta (1).exe 2016-07-17 16:38:03 90B682072BB64EF6DF39B04DB0A11DF7 6479816 ----a-w- C:\Users\fransbronselaer\Downloads\eid-chrome-mw-install-1.1.4-installer.exe 2016-07-17 16:23:08 8304B669747E2DE532E4FF34E2BD6177 1168608 ----a-w- C:\Users\fransbronselaer\Downloads\pcmechanicpm.exe 2016-07-11 19:29:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-07-10 08:25:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serif Applications ====== C: exe-files == 2016-07-26 08:17:58 376D468F5128E9A24F71597FA1482EE2 8136664 ----a-w- C:\Users\fransbronselaer\Downloads\ccsetup520.exe 2016-07-26 05:04:09 97A415AE6F7E83B56319BCA906DA768D 1541624 ----a-w- C:\Users\fransbronselaer\AppData\Local\Google\Chrome\User Data\SwReporter\7.58.1\software_reporter_tool.exe 2016-07-25 08:04:16 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\fransbronselaer.exe 2016-07-25 08:03:59 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\fransbronselaer\Downloads\RSITx64.exe 2016-07-24 12:59:41 18DBE785E9EB384A2B70F0AC3D8BD3A5 23008312 ----a-w- C:\Program Files (x86)\Mio\MioMore Desktop 7.50\MioMore_Setup.exe 2016-07-24 12:59:05 52FD0F92CA48A5B4CD4376A342FB3430 147209 ----a-w- C:\Program Files (x86)\Mio\MioMore Desktop 7.50\Uninstall.exe 2016-07-24 11:03:33 F5A8326F60A523701AEA7BEF036A7D37 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2016-07-24 11:03:33 62CA41748E1E18A4A50DEE097FAF0BFC 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2016-07-24 11:03:33 16D61617123CA3C2AB3E9727B3BCD55A 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2016-07-24 11:02:58 F9F130EACA7F3795A2DA8A5F429FA29E 111168 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jp2launcher.exe 2016-07-24 11:02:58 F073A5683918BCDDCEDF6A6800617E3D 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\rmid.exe 2016-07-24 11:02:58 F00EE26C813416BB4E91A13265FA4732 197184 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\unpack200.exe 2016-07-24 11:02:58 EC1D1720710B9E583EBFA3424CD0E6AC 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\keytool.exe 2016-07-24 11:02:58 B8C5B03DEFBA1449600DADE58DB396C7 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\pack200.exe 2016-07-24 11:02:58 B6B9EE2449BD243C7CC2186FE30A92B5 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\rmiregistry.exe 2016-07-24 11:02:58 A7A87F9DC6E630D38E1533F45D5A693B 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\ktab.exe 2016-07-24 11:02:58 99184E011BEC2254AB52A714CAE8B5BC 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\tnameserv.exe 2016-07-24 11:02:58 8EAB0A00BC60BEF1A5059D3A1E32B883 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\policytool.exe 2016-07-24 11:02:58 8202B34B1F4EC4981C8EE092DBA8C105 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jjs.exe 2016-07-24 11:02:58 78024CFE102D5BB48A473B2B0CCB9694 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\orbd.exe 2016-07-24 11:02:58 484445BF924AF046659B4AC44C63EFE5 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\kinit.exe 2016-07-24 11:02:58 2CE4DC31DE438C559E7518647F761384 69696 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\ssvagent.exe 2016-07-24 11:02:58 1F53119455FDD6878698C3D39BEF6D8B 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\servertool.exe 2016-07-24 11:02:58 0BA5EA8315FA9C293F22EBF32AF59559 16448 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\klist.exe 2016-07-24 11:02:57 F5A8326F60A523701AEA7BEF036A7D37 206912 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\java.exe 2016-07-24 11:02:57 797E9D8EB0F7B7B44C61D9CED0A187BC 15936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\java-rmi.exe 2016-07-24 11:02:57 62CA41748E1E18A4A50DEE097FAF0BFC 318528 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javaws.exe 2016-07-24 11:02:57 4AFFF8F0F9A118876324EC94EFA34053 79936 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javacpl.exe 2016-07-24 11:02:57 2A4E3DE9C7DD69A5757AD0BB1359B51E 34368 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\jabswitch.exe 2016-07-24 11:02:57 16D61617123CA3C2AB3E9727B3BCD55A 206912 ----a-w- C:\Program Files\Java\jre1.8.0_101\bin\javaw.exe 2016-07-24 11:02:10 F434A8AC7F1C8C0E2587B9A9F30E397B 52800 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssvagent.exe 2016-07-24 11:02:10 ED3F3D8E4C382BF8095B9DE217511E29 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\policytool.exe 2016-07-24 11:02:10 E9AA62B1696145A08D223E7190785E25 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\pack200.exe 2016-07-24 11:02:10 CA17B8CBD623477C5D1D334B79890225 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\klist.exe 2016-07-24 11:02:10 C15F0FE651B05F4288CBC3672F6DC3CE 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\unpack200.exe 2016-07-24 11:02:10 B4AD335E868693F009B7644E2ED555C1 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ktab.exe 2016-07-24 11:02:10 9A4CF09834F086568DF469E3F670BF07 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\keytool.exe 2016-07-24 11:02:10 7DA6AA3CC4763C6F9C20B43E6C9A9547 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\orbd.exe 2016-07-24 11:02:10 7624A9B769CDCF3A75FE5A9FEAADD61F 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\tnameserv.exe 2016-07-24 11:02:10 5F85F7F2DFAC397D642834B61809240F 82496 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2launcher.exe 2016-07-24 11:02:10 4F11D43AA2215CE771DA528878F01C8E 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jjs.exe 2016-07-24 11:02:10 4DE6BFE6EA98BC42A5358ED8307107B2 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\kinit.exe 2016-07-24 11:02:10 43C1D1D0E248604CB3B643C0BDF4EC9A 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\servertool.exe 2016-07-24 11:02:10 31C0CED43A07A2DFF3AFC557EBABBE0F 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\rmiregistry.exe 2016-07-24 11:02:10 12B6E1C3205A8B17AC20E00A889DFC43 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\rmid.exe 2016-07-24 11:02:09 F8211DB97BF852C3292C3E9C710C19D9 269888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javaws.exe 2016-07-24 11:02:09 E3E51A21B00CDDE757E4247257AA7891 191040 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\java.exe 2016-07-24 11:02:09 CF2F023D2B5F0BFB2ECF8AEEA7C51481 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\java-rmi.exe 2016-07-24 11:02:09 C2A59C7343D370BC57765896490331E5 70208 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javacpl.exe 2016-07-24 11:02:09 530D5597E565654D378F3C87654CCABA 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jabswitch.exe 2016-07-24 11:02:09 48C96771106DBDD5D42BBA3772E4B414 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javaw.exe 2016-07-24 08:39:08 F0EE0FE6CC055FCEBE2B417D6ACAEF57 5239920 ----a-w- C:\Users\fransbronselaer\Downloads\ParetoLogic PC Health Advisor_nl (3).exe 2016-07-24 08:38:29 F0EE0FE6CC055FCEBE2B417D6ACAEF57 5239920 ----a-w- C:\Users\fransbronselaer\Downloads\ParetoLogic PC Health Advisor_nl (2).exe 2016-07-23 12:55:41 0BEDA4CBC124154089F4D734895CD9A0 8344672 ----a-w- C:\Users\fransbronselaer\AppData\Local\NVIDIA\NvBackend\Packages\00008fba\DAO.20968151.exe 2016-07-22 10:10:56 58D35D43282D4D75C8E7DEBAD5DDD91D 346552 ----a-w- C:\Users\fransbronselaer\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe 2016-07-22 10:10:54 CC3D1ACB28A29979352A1C945B5D1815 403896 ----a-w- C:\Users\fransbronselaer\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe 2016-07-21 10:04:57 DD29AD5B6C8DDCC37914F278DABC9B65 703600 ----a-w- C:\Users\fransbronselaer\AppData\Local\NVIDIA\NvBackend\Packages\00008f33\CoProc update.20960257.exe 2016-07-20 09:06:36 1D5DAC3760DD5B3EF0399E0FE01B7796 238203152 ----a-w- C:\Users\fransbronselaer\Downloads\affinity-designer-public-beta (1).exe 2016-07-19 10:09:58 3CBFF0964ABE3A42028C55D86A4C1612 3176208 ----a-w- C:\Program Files\Serif\Affinity Designer Public Beta\Designer.exe === C: other files == 2016-07-26 07:36:32 144F75610B8582C19C1A7DD16AAA966F 4869 ----a-w- C:\Users\fransbronselaer\AppData\Local\Temp\xpi\tmp.zip 2016-07-24 11:02:58 AA02DCA7BF2E25E6A6D552C5AE501AC4 14156 ----a-w- C:\Program Files\Java\jre1.8.0_101\lib\deploy\ffjcext.zip 2016-07-24 11:02:10 91052ADB799AEF68EA76931997C40CE4 14156 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2745779299-947372766-3440821203-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "FileHippo.com"="C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe /background" "Plex Media Server"="C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" "GoogleChromeAutoLaunch_873596C0D326B141E1460E924C474DBE"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_USERS\S-1-5-21-2745779299-947372766-3440821203-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s" "CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "FileHippo.com"="C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe /background" "Plex Media Server"="C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" "GoogleChromeAutoLaunch_873596C0D326B141E1460E924C474DBE"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64" "Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "Radio Manager"="C:\Program Files (x86)\SCM\Radio Manager.exe" "SCM"="C:\Program Files (x86)\SCM\SCM.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll, C:\\WINDOWS\\system32\\nvinitx.dll" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdvancedSystemCareService9] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SynTPEnhService] ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\ASC9_SkipUac_fransbronselaer.job --a-------- C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [16/05/2016 17:43] C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2745779299-947372766-3440821203-1002Core.job --a-------- C:\Users\fransbronselaer\AppData\Local\Facebook\Update\FacebookUpdate.exe [21/02/2014 14:26] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2745779299-947372766-3440821203-1002UA.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [30/11/2015 18:06] C:\WINDOWS\tasks\Uninstaller_SkipUac_fransbronselaer.job --a-------- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [12/05/2016 13:58] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\ASC9_SkipUac_fransbronselaer" [C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\Driver Booster Scheduler" [C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe] "C:\WINDOWS\SysNative\tasks\Driver Booster SkipUAC (fransbronselaer)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe] "C:\WINDOWS\SysNative\tasks\Driver Booster SkipUAC (SYSTEM)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2745779299-947372766-3440821203-1002Core" [C:\Users\fransbronselaer\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2745779299-947372766-3440821203-1002UA" [C:\Users\fransbronselaer\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\SafeZone scheduled Autoupdate 1464359632" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe] "C:\WINDOWS\SysNative\tasks\SmartDefrag_Update" [C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe] "C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe] "C:\WINDOWS\SysNative\tasks\Uninstaller_SkipUac_fransbronselaer" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default user_pref("browser.startup.homepage", "https://mysearch.avg.com/?cid={11823743-971C-42E1-8999-95964F072817}&mid=87528137b2d847cc9c4eb17f9b6391cf-59194d8e19d0695d562de271a68d84c8d79cb606&lang=nl&ds=AVG&coid=avgtbavg&cmpid=1015av&pr=fr&d=2015-11-05 07:52:23&v=4.1.8.599&pid=wtu&sg=&sap=hp"); user_pref("browser.newtab.url", "about:newtab"); ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Nvu\Profiles\w6utk5ex.default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Thunderbird\Profiles\eij5algc.default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.newtab.url", "about:newtab"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [04/07/2016 16:45] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [04/07/2016 16:45] ==== Firefox Extensions ====================== ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Nvu\Profiles\w6utk5ex.default - Undetermined - %ProfilePath%\extensions\installed-extensions.txt - Nvu default - %ProfilePath%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ProfilePath: C:\Users\FRANSB~1\AppData\Roaming\Thunderbird\Profiles\eij5algc.default - Lightning - C:\Users\fransbronselaer\AppData\Roaming\Thunderbird\Profiles\eij5algc.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103} - Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103} AppDir: C:\Program Files\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\fransbronselaer\AppData\Roaming\Mozilla\Firefox\Profiles\qnke7ac8.default BE6367597C07E72D61AF4D18E41302F3 - c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll - Silverlight Plug-In E3B4EA121F7BDEB0F6366E2BA9608CB5 - C:\Users\fransbronselaer\AppData\Local\Citrix\Plugins\104\npappdetector.dll - Citrix Online Web Deployment Plugin 1.0.0.104 3CD19649B2C3023D65E67C056457A2BC - C:\Users\fransbronselaer\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin D2B5242013356AF422A42B9FAA4056C2 - C:\Users\fransbronselaer\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin.dll - VASCO Card Reader Plugin D63AF2A0A33FC7A9EC1E78AB75A8665F - c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[27/05/2016 16:30] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[27/05/2016 16:30] ihenkjeihefokohmemphikjnjbmegdik - \C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx\[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[25/05/2016 10:31] Belfius Smart Card Reader Chrome Extension - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\agicnfmechmlphpjmeefookfjhifbmhi eID Chrome Extension - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc Dropbox for Gmail - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec Avast SafePrice - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck Skype - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Chrome Web Store Payments - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Chrome Media Router - fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/?gfe_rd=cr&ei=SExbVJvCK-HH8ge50oCQCw&gws_rd=ssl" "Default_Search_URL"="http://www.google.com/ie" "Use Search Asst"="yes" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" "Default"="www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="https://www.google.be/?gfe_rd=cr&ei=SExbVJvCK-HH8ge50oCQCw&gws_rd=ssl" "Use Search Asst"="no" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{82E16C82-CF02-48F5-A747-61B918262958} - http://www.google.com/search?q={searchTerms} ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ihenkjeihefokohmemphikjnjbmegdik deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\Surfing Protection\BROWER~1\ASCPlugin_Protection.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [FileHippo.com] "C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe" /background O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_873596C0D326B141E1460E924C474DBE] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6281.1202" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6301.0127" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fransbronselaer\AppData\Local\Microsoft\OneDrive\17.3.6302.0225" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Microsoft Office\Office12\REFIEBAR.DLL O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU) O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (file missing) (HKCU) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1453124768748 O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: CyberLink PowerDVD 10 MS Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe O23 - Service: CyberLink PowerDVD 10 MS Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe O23 - Service: Dropbox-update-service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: Dropbox-update-service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: Qualcomm Atheros Killer Service - Unknown owner - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: SMService - IObit - C:\program files (x86)\iobit\Classic Start\SMService.exe O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\fransbronselaer\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\fransbronselaer\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\fransbronselaer\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\fransbronselaer\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\fransbronselaer\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\FRANSB~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 26/07/2016 at 11:28:43,83 ======================