Ga naar inhoud

Henry1960

Lid
  • Items

    44
  • Registratiedatum

  • Laatst bezocht

Alles dat geplaatst werd door Henry1960

  1. Sorry, ik was wat te vroeg met "Opgelost" aan te vinken zo kon het berichtje niet meer gelezen worden. De Pc gedraagt zich redelijk, ik neem aan dat het HijackThis log geen kwaad kan omdat het onveranderd is gebleven.
  2. Sorry dat ik wat laat ben. ***************** # AdwCleaner v3.309 - Rapport aangemaakt 11/09/2014 op 19:03:35 # Laatste Update 02/09/2014 door Xplode # Besturingssysteem : Windows 8.1 (64 bits) # Gebruikersnaam : Henry - PIETERS-PC # Gestart vanuit : C:\Users\Henry\Desktop\adwcleaner_3.309.exe # Optie : Verwijderen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\Users\Public\Pokki ***** [ Taken ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** Sleutel Verwijderd : HKCU\Software\Classes\pokki Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASAPI32 Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\SafeFinder_RASMANCS Sleutel Verwijderd : HKCU\Software\SmartBar Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17278 -\\ Mozilla Firefox v32.0 (x86 nl) [ Bestand : C:\Users\Henry\AppData\Roaming\Mozilla\Firefox\Profiles\hcc75mpq.default\prefs.js ] ************************* AdwCleaner[R0].txt - [1287 octets] - [11/09/2014 19:01:49] AdwCleaner[s0].txt - [1170 octets] - [11/09/2014 19:03:35] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1230 octets] ##########
  3. Ga ik nu doen. a.u.b. zoek-results ************** Zoek.exe v5.0.0.0 Updated 10-September-2014 Tool run by Henry on wo 10-09-2014 at 14:22:50,96. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Henry\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 10-9-2014 14:26:20 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Users\Henry\AppData\Local\LSC deleted successfully C:\Users\Henry\AppData\Local\PackageStaging deleted successfully C:\Users\Henry\AppData\Local\start deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE C:\Windows\jmesoft\Service.exe C:\Program Files\Lenovo\iMController\SystemAgentService.exe C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Windows\jmesoft\hotkey.exe C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe C:\Windows\jmesoft\JME_LOAD.exe C:\windows\SysWOW64\UMonit64.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe C:\Users\Henry\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~3\Package Cache deleted C:\Users\Default\AppData\Local\Pokki deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\SysNative\config\systemprofile\Searches deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8125 MB CPU Info: Intel® Core i5-4440 CPU @ 3.10GHz CPU Speed: 3184,5 MHz Sound Card: Speakers (Realtek High Definiti | Realtek Digital Output (Realtek | Display Adapters: AMD Radeon R7 240 | AMD Radeon R7 240 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter #3 | 1x1 11b/g/n Wireless LAN PCI Express Half Mini Card Adapter | Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (F: | ) F: HL-DT-STDVD-RAM GHB0N Ports: COM2 LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 905,3GB | D: 298,1GB Hard Disks - Free: C: 766,0GB | D: 284,3GB Manufacturer *: LENOVO BIOS Info: AT/AT COMPATIBLE | | LENOVO - 1220 Time Zone: West-Europa (standaardtijd) Motherboard *: LENOVO Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Internet Explorer Version: 11.0.9600.17278 Mozilla Firefox version: 32.0 (x86 nl) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2014-09-10 05:28:14 ACDBE1ED38167C8B01B8F63161BB2CEA 2374784 ----a-w- C:\WINDOWS\explorer.exe 2014-09-05 12:08:41 3782D037B5425D7F313B8230DD9AB812 505 ----a-w- C:\WINDOWS\demdata.txt 2014-09-05 10:13:00 F0E857AA9EFCC374C1931F7E9978C480 24768 ----a-w- C:\WINDOWS\diagwrn.xml 2014-09-05 10:13:00 F0E857AA9EFCC374C1931F7E9978C480 24768 ----a-w- C:\WINDOWS\diagerr.xml ====== C:\Users\Henry\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-09-10 05:47:25 CA573004E12C7D5F474D3614F5532074 706016 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-09-10 05:47:25 0F945C84360FA65F1B074DB471730E34 105440 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-10 05:30:48 1E2AEB0238F0FE156FC1E4EE918446DD 61952 ----a-w- C:\WINDOWS\SysWOW64\MshtmlDac.dll 2014-09-10 05:30:46 B9361205DC3168E724E6288F64D0D867 69632 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2014-09-10 05:30:46 1C9DF9ABA72C6F6ED0AAAD9AC3F0DAC5 454656 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2014-09-10 05:30:44 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-09-10 05:30:44 6A89CC35530F7021B91571D2C2DF7009 312320 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2014-09-10 05:30:44 332E39115D7AE6071357E453574FCD48 365056 ----a-w- C:\WINDOWS\SysWOW64\dxtmsft.dll 2014-09-10 05:30:44 089A1B20B83F147184D28E8633DC0F5E 243200 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2014-09-10 05:30:43 96C9E7D834583F5F48CC0390F7755CE1 678400 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-09-10 05:30:43 734FB412C293001F7777DEF89BC510BF 603136 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-09-10 05:30:43 4E9D7F3948E0B1DB2F861A0C9BA186AB 597504 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-09-10 05:30:43 2BFB1103B7D2B45A094B0600CDD775F3 60416 ----a-w- C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll 2014-09-10 05:30:40 A98F492B4C63CA5E11DAAEB36A0CEFCE 2185728 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-09-10 05:30:40 6DBE009D0DECBD8F1F170366332BE432 1190400 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-09-10 05:30:40 26E85EDDE755D489A20CC67C4DAAD8BC 2014208 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-09-10 05:30:40 1A03F9B1D9F0493B18B1E648F4F82D4F 1812992 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-09-10 05:30:39 7E1AB823D5F57E18392A2C6BC7466B07 11769856 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-09-10 05:30:38 FA5275F6BE4D2615B754F06E7CF228DB 17455104 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-09-10 05:30:38 6D6E5210CA43AAC67082C69A8BA53705 4232704 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-09-10 05:28:23 4C48253C6A21CCEBA071B58A5CDF17C1 875688 ----a-w- C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2014-09-10 05:28:14 A1EE5C4A020DB9A8DB216C660C3FBDBE 11818496 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2014-09-10 05:28:14 195822ACCDAA2B4815DD01BAFC335595 2084520 ----a-w- C:\WINDOWS\SysWOW64\explorer.exe 2014-09-10 05:28:13 C0281344E7702939DCE4A17734269E58 1038336 ----a-w- C:\WINDOWS\SysWOW64\actxprxy.dll 2014-09-10 05:28:13 1E4CD5DB4F61DF2A9053C8B9A46B4013 50176 ----a-w- C:\WINDOWS\SysWOW64\UXInit.dll 2014-09-06 15:33:48 128EC9879D462F89829E663417FE5DBD 710144 ----a-w- C:\WINDOWS\SysWOW64\rpcrt4.dll 2014-09-06 15:33:45 8A9CB0FE11800DBBDBA8FE4F54828892 779264 ----a-w- C:\WINDOWS\SysWOW64\osk.exe 2014-09-06 15:33:43 55ADDA5B29D1151727470FA165460773 1312256 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-09-06 15:33:42 2C01D8EA2B0FA834597FCD96AAAE4F52 406400 ----a-w- C:\WINDOWS\SysWOW64\dxgi.dll 2014-09-06 15:33:38 1DEC681B79501A714F0D3FA2787183C3 305152 ----a-w- C:\WINDOWS\SysWOW64\wusa.exe 2014-09-06 15:31:24 38045850ACB96313A1983A8803302906 35480 ----a-w- C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2014-09-06 15:31:19 9EE0C96C5D9840DF3517C9B7D19ED590 318976 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2014-09-06 15:31:19 7DB59908D49605F2CD0CFB0CF9940E86 735232 ----a-w- C:\WINDOWS\SysWOW64\adtschema.dll 2014-09-06 15:31:18 DB3ED0BA26D7C598481A23E7D06A370E 2344448 ----a-w- C:\WINDOWS\SysWOW64\Wpc.dll 2014-09-06 15:31:16 DC72DC452793C9622E6F056B89F9302C 123904 ----a-w- C:\WINDOWS\SysWOW64\wuwebv.dll 2014-09-06 15:31:16 D8C63F333D4A8D8433849A9ADC092BE9 31232 ----a-w- C:\WINDOWS\SysWOW64\wuapp.exe 2014-09-06 15:31:16 8DA8026471B3470085B4AFB9C77BF45F 25088 ----a-w- C:\WINDOWS\SysWOW64\wups.dll 2014-09-06 15:31:16 0542A44401EA9451D82D3DF4BF3BD871 419928 ----a-w- C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2014-09-06 15:31:14 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\WINDOWS\SysWOW64\drvinst.exe 2014-09-06 15:31:09 949E0E42DAAD0418513B44C31A697CA5 1797896 ----a-w- C:\WINDOWS\SysWOW64\d3d9.dll 2014-09-06 15:31:09 5BD2BD14753D3B0ADDE842CDF25A4C60 2144984 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2014-09-06 15:31:09 1E14463F10B324B02EB2DA7415345D15 1473080 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2014-09-06 15:31:08 E65B5352AD0743F1F59BDA9466719EFE 265216 ----a-w- C:\WINDOWS\SysWOW64\SkyDriveShell.dll 2014-09-06 15:31:07 EA15CC7B75A2DE287E3B0C266A35490C 235008 ----a-w- C:\WINDOWS\SysWOW64\framedynos.dll 2014-09-06 15:31:07 E28501E3A241DDC5DC65382E55661B1D 285696 ----a-w- C:\WINDOWS\SysWOW64\dhcpcore.dll 2014-09-06 15:31:06 E4783EB6A6B2D04F3B541B378E843617 229888 ----a-w- C:\WINDOWS\SysWOW64\dhcpcore6.dll 2014-09-06 15:31:05 BEA7A26C2C22381B6DD88758352B9D9B 62976 ----a-w- C:\WINDOWS\SysWOW64\dhcpcsvc.dll 2014-09-06 15:31:05 BA6E52B0D82682EDE4B49D9CCC7D529B 207360 ----a-w- C:\WINDOWS\SysWOW64\framedyn.dll 2014-09-06 15:31:05 A750BB0258ECF6265A903905A0B14EB3 198656 ----a-w- C:\WINDOWS\SysWOW64\WebClnt.dll 2014-09-06 15:31:05 57E0A896C38C41C8B5B7F3127F8FD0D9 56320 ----a-w- C:\WINDOWS\SysWOW64\dhcpcsvc6.dll 2014-09-06 15:31:05 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\WINDOWS\SysWOW64\Robocopy.exe 2014-09-06 15:31:05 0CCDFED2DFCD4FBA73EE989249379458 52736 ----a-w- C:\WINDOWS\SysWOW64\ncobjapi.dll 2014-09-06 15:31:04 191B7F25BE13D9F9E56B2B4EA595AC62 11776 ----a-w- C:\WINDOWS\SysWOW64\d3d8thk.dll 2014-09-06 15:31:03 BA4FA107EF9A728C58A81B2EFCD6FE2B 26784 ----a-w- C:\WINDOWS\SysWOW64\mrt100.dll 2014-09-06 15:31:03 6923D6FAB7CBA8D82BD792182B4F3DE4 80032 ----a-w- C:\WINDOWS\SysWOW64\mrt_map.dll 2014-09-06 15:31:03 65FCEABE3128592F84B60140F814BDDB 1509888 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2014-09-06 15:31:00 FBE8AE41ED2A9FE4C2DE069C522CA9C0 12711424 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-09-06 15:30:57 854E970293BA92F9BB69FFD1CE051D9C 189016 ----a-w- C:\WINDOWS\SysWOW64\rsaenh.dll 2014-09-06 15:30:57 684CF6A72A8DF7D66D262AC4A6E07845 270848 ----a-w- C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll 2014-09-06 15:30:53 0FDDBC46B0FE68B9516BED5CDC2A5296 5104640 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2014-09-06 15:30:51 A5358F64D4EB5ABE2829981CD9734901 18755672 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-09-06 15:30:49 4550DC04464B86C5EB2CC77D9D27C06C 5833216 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2014-09-06 15:30:48 87AB9959EC23455326C8C55E59DE0A88 669856 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-09-06 15:30:47 561945C42E36012B4799C342E6A96498 800768 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-09-06 15:30:47 1E48870B29C7D7328A7D484A61250AE5 5774848 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2014-09-06 15:30:47 13CE2AA6D3ACAF0B485DBFE8AF2F5C48 305768 ----a-w- C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2014-09-06 15:30:46 EC4FA776548BF1A05DAE3B5EFB0FFE6F 1209616 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2014-09-06 15:30:46 E678126493997B951C6A6E91BC15C91C 836608 ----a-w- C:\WINDOWS\SysWOW64\SearchFolder.dll 2014-09-06 15:30:46 90C83CF02C884315E595FA07CA9C64EF 387896 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2014-09-06 15:30:46 5FAEA469BCE03F8FABAFB63D7603DC3C 982016 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2014-09-06 15:30:45 E2AAB5EDC278D489C8EF87F277B5E3E6 888320 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2014-09-06 15:30:45 A54EB398BC2D792A0C603A97F7975FD8 357376 ----a-w- C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll 2014-09-06 15:30:45 76892045ECB1D830185618DBD3467562 337408 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-09-06 15:30:45 008368626F3EFAEDB0C2CD4565BA6797 98584 ----a-w- C:\WINDOWS\SysWOW64\dwmapi.dll 2014-09-06 15:30:44 C97E772120135CD320CB217C92105B12 370176 ----a-w- C:\WINDOWS\SysWOW64\winspool.drv 2014-09-06 15:30:44 A9A027378882FFA14000612AE6FDA7AB 1200288 ----a-w- C:\WINDOWS\SysWOW64\propsys.dll 2014-09-06 15:30:44 A624CA7CDFA7941EECD6F96F1A47CCA3 178184 ----a-w- C:\WINDOWS\SysWOW64\MSVideoDSP.dll 2014-09-06 15:30:44 A4F3682781DD8B36E97FD04BA50845A2 209920 ----a-w- C:\WINDOWS\SysWOW64\rdpencom.dll 2014-09-06 15:30:44 A3ECC0F6960AA699895CB48BC69BEA3B 326024 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2014-09-06 15:30:44 956D8170AD470804405C0564E10ED6ED 406504 ----a-w- C:\WINDOWS\SysWOW64\AudioEng.dll 2014-09-06 15:30:44 8C25FBB338147754DA42DF990FB3AE4A 285144 ----a-w- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2014-09-06 15:30:44 88A821BC72CB1A935C92F453586233EF 518544 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2014-09-06 15:30:44 6BAE2EB5EFCEAC999BB1A5BF267C711D 707048 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2014-09-06 15:30:44 619C6E72B8433B3F67738F7E6C972A96 230808 ----a-w- C:\WINDOWS\SysWOW64\wintrust.dll 2014-09-06 15:30:44 4874EB05C1BE374B8A4AC15DF3DB07B0 111528 ----a-w- C:\WINDOWS\SysWOW64\gpapi.dll 2014-09-06 15:30:44 15905E6B799C1446A37915ED23CD17E5 144384 ----a-w- C:\WINDOWS\SysWOW64\rpchttp.dll 2014-09-06 15:30:43 E697F1E4E819EB12C40AE01F88626BAB 219136 ----a-w- C:\WINDOWS\SysWOW64\resutils.dll 2014-09-06 15:30:43 D0E0E176F86C3B1048A67144DE0C5CD3 46592 ----a-w- C:\WINDOWS\SysWOW64\tlscsp.dll 2014-09-06 15:30:43 CF3EA59E07BF906B43058C98B6750D16 855552 ----a-w- C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-09-06 15:30:43 B6803C8A600E3F029A3D688D9E590CA3 300544 ----a-w- C:\WINDOWS\SysWOW64\wlanmsm.dll 2014-09-06 15:30:43 5C74AC34C1CAA9C232836C580272B0DD 1029120 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2014-09-06 15:30:43 06AB75759A0B2D79680F52ACDAE702A1 313344 ----a-w- C:\WINDOWS\SysWOW64\clusapi.dll 2014-09-06 15:30:42 FF28231D41465C253E9F9EF164DD619C 230400 ----a-w- C:\WINDOWS\SysWOW64\wlanapi.dll 2014-09-06 15:30:42 68A23F58F6F16B81BCBFCAA07CDF0680 61440 ----a-w- C:\WINDOWS\SysWOW64\srclient.dll 2014-09-06 15:30:42 3CABBCB26C4E73F3440A8A064EB490FF 11264 ----a-w- C:\WINDOWS\SysWOW64\wlanhlp.dll 2014-09-06 15:30:40 86DB4BA87BAF3D467D04821602E586A9 3304448 ----a-w- C:\WINDOWS\SysWOW64\msi.dll 2014-09-06 15:30:39 F8D0951A75826AD557CFAC323A936AA6 281088 ----a-w- C:\WINDOWS\SysWOW64\msihnd.dll 2014-09-06 15:30:39 16CDD058883E38FB43D582FB080F721A 2318336 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2014-09-06 15:30:37 0A9EB3956BCB7E5CDE15AF987BD81543 488960 ----a-w- C:\WINDOWS\SysWOW64\qedit.dll 2014-09-06 15:28:39 819E423A2914A67CD23D53997F7B4E8D 756224 ----a-w- C:\WINDOWS\SysWOW64\WSShared.dll 2014-09-06 15:28:39 77B0DF38B67C00EFB5B131D279FC12ED 666624 ----a-w- C:\WINDOWS\SysWOW64\wuapi.dll 2014-09-06 15:28:38 4B7FA0A3D7B9D316BC6B2A409701E47D 828928 ----a-w- C:\WINDOWS\SysWOW64\twinui.appcore.dll 2014-09-06 15:28:37 9E9182A652F5287DA05B3893A2E19FEC 80896 ----a-w- C:\WINDOWS\SysWOW64\wudriver.dll 2014-09-06 02:51:02 04BAB8F7E5D38C8F33F56E8D0458BF02 630272 ----a-w- C:\WINDOWS\SysWOW64\OobeFldr.dll 2014-09-06 02:51:01 6BF8B0D30525E9E7864B2111E054ED9A 8946688 ----a-w- C:\WINDOWS\SysWOW64\glcndFilter.dll 2014-09-06 02:50:58 1EB4589BD34FB1C05AE164F1237BC04A 11776000 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2014-09-06 02:50:56 CA3037553B0D975A51991F94B5A1BD78 2643456 ----a-w- C:\WINDOWS\SysWOW64\tquery.dll 2014-09-06 02:50:55 457AE9AFCFB725C33CCAB36958B82479 1716736 ----a-w- C:\WINDOWS\SysWOW64\mssrch.dll 2014-09-06 02:50:51 D47C2645C635D42AE5C1F5B2644EA093 1374384 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2014-09-06 02:50:51 8DBA497E4C9D1B4BBFCC70A887B9A984 1077944 ----a-w- C:\WINDOWS\SysWOW64\webservices.dll 2014-09-06 02:50:48 015633FC83ED7475DFCCBCAE2AD859DE 2410496 ----a-w- C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2014-09-06 02:50:47 A5BFF3597F39015F18AC756F2B475D58 1341440 ----a-w- C:\WINDOWS\SysWOW64\dui70.dll 2014-09-06 02:50:46 92CB3D967CE7C330EA14EB2E74D9CCAA 1011280 ----a-w- C:\WINDOWS\SysWOW64\mfnetsrc.dll 2014-09-06 02:50:45 DF08FD7C895BCF593C885F813F7D649F 1496576 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2014-09-06 02:50:45 85A76669AC9B0A3A80FEC8A7EA3285E9 650736 ----a-w- C:\WINDOWS\SysWOW64\mfnetcore.dll 2014-09-06 02:50:45 7B50AD3FE6FA23D5D0E69455740986C6 418304 ----a-w- C:\WINDOWS\SysWOW64\StructuredQuery.dll 2014-09-06 02:50:44 D2BB10FED65199D4E0F1BED5BDBCD8BC 422968 ----a-w- C:\WINDOWS\SysWOW64\wer.dll 2014-09-06 02:50:44 C500954647E81A00700D3767C2B3CC4B 1767440 ----a-w- C:\WINDOWS\SysWOW64\setupapi.dll 2014-09-06 02:50:44 C3243F65447388A35107A996AC8B30C2 2428928 ----a-w- C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2014-09-06 02:50:44 7DCF616EF2D3197832396EC9D13C44D9 792576 ----a-w- C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2014-09-06 02:50:42 81B57798E73112445D7F0F92315B729E 477744 ----a-w- C:\WINDOWS\SysWOW64\SHCore.dll 2014-09-06 02:50:42 37C863F568421EE07CEAD1F181138F79 1369736 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2014-09-06 02:50:41 EE31594481B710BBDA613D5AD3A2E517 1258496 ----a-w- C:\WINDOWS\SysWOW64\RacEngn.dll 2014-09-06 02:50:41 831A3FB06E63850AEE5856BBF4394814 1063976 ----a-w- C:\WINDOWS\SysWOW64\Taskmgr.exe 2014-09-06 02:50:40 F5C43BFE7EF27521ED25B912C9366CD9 1017936 ----a-w- C:\WINDOWS\SysWOW64\msctf.dll 2014-09-06 02:50:38 DB0FE6E51909BEB42004242EB08FEF47 517120 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-09-06 02:50:38 8DF7F2A9B72B7CA4294BB9E59FEAEFCD 514560 ----a-w- C:\WINDOWS\SysWOW64\WWAHost.exe 2014-09-06 02:50:37 F96DE54F7C84265FF0493C91D9AA8DBE 367616 ----a-w- C:\WINDOWS\SysWOW64\mssph.dll 2014-09-06 02:50:37 3A9A05B5DA85CE849980A1FFF8396BD6 1403392 ----a-w- C:\WINDOWS\SysWOW64\storagewmi.dll 2014-09-06 02:50:36 CCDD8577F7D66E678603675C8F974B5E 600576 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-09-06 02:50:36 7EC611582CF2124499A28946AEEBC3B4 296448 ----a-w- C:\WINDOWS\SysWOW64\MMDevAPI.dll 2014-09-06 02:50:36 4B76E621AFB97D0441F36978611A961C 617472 ----a-w- C:\WINDOWS\SysWOW64\apphelp.dll 2014-09-06 02:50:35 DA4AEA90705604A44AF5E06418A3AA79 344576 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2014-09-06 02:50:35 C7099D6A46B880EE194F7A4473D71E10 1361408 ----a-w- C:\WINDOWS\SysWOW64\user32.dll 2014-09-06 02:50:35 B93A75EEFB2818F790FA0D2BA536A339 658432 ----a-w- C:\WINDOWS\SysWOW64\SearchIndexer.exe 2014-09-06 02:50:35 0593F976DE28E1EE533DD4810C1A57C5 556032 ----a-w- C:\WINDOWS\SysWOW64\twinapi.dll 2014-09-06 02:50:33 EB6A3B8B72F2A3DAF38D3CF8ED983434 832512 ----a-w- C:\WINDOWS\SysWOW64\ActionCenter.dll 2014-09-06 02:50:33 CC4A07377E8D987CF3077B18FC6D133B 148992 ----a-w- C:\WINDOWS\SysWOW64\slc.dll 2014-09-06 02:50:33 C6AD0070469803D274E1F828D637A107 336232 ----a-w- C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2014-09-06 02:50:33 03C2F6FF02D37A00965CFF3FFFF0ED7C 752640 ----a-w- C:\WINDOWS\SysWOW64\tdh.dll 2014-09-06 02:50:32 73B5AFA32DBE1B599A8697187F0EC2EA 675328 ----a-w- C:\WINDOWS\SysWOW64\mssvp.dll 2014-09-06 02:50:32 421D685787762BBAE821159279B3000C 490136 ----a-w- C:\WINDOWS\SysWOW64\advapi32.dll 2014-09-06 02:50:32 3912F1946EFAC8F2CB9B6CA87A48996C 551424 ----a-w- C:\WINDOWS\SysWOW64\wimgapi.dll 2014-09-06 02:50:32 2716EEC7A0B6016F11B0A0F8B423DBBE 876544 ----a-w- C:\WINDOWS\SysWOW64\uxtheme.dll 2014-09-06 02:50:31 FDDB338071096A0FB4532C9E5639A702 288768 ----a-w- C:\WINDOWS\SysWOW64\stobject.dll 2014-09-06 02:50:31 9F534F974C13C3A94BBC515621AC0D35 528896 ----a-w- C:\WINDOWS\SysWOW64\comdlg32.dll 2014-09-06 02:50:30 EFD9B12C1CD8FDFD50C48153AF0A49F3 644608 ----a-w- C:\WINDOWS\SysWOW64\ntshrui.dll 2014-09-06 02:50:28 F7EDF905549E40BC5AD7262699555C94 117760 ----a-w- C:\WINDOWS\SysWOW64\thumbcache.dll 2014-09-06 02:50:28 110D9D6D6FF4785DEB5B614CEBAD3C9F 317584 ----a-w- C:\WINDOWS\SysWOW64\msvproc.dll 2014-09-06 02:50:27 C5010B79B13DA3E17D74825880C36695 258560 ----a-w- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2014-09-06 02:50:27 9FA3559B2E8805F6290934EC3EAD5CDE 459776 ----a-w- C:\WINDOWS\SysWOW64\DismApi.dll 2014-09-06 02:50:27 93EB9E9FF37FDAB796FE895C7D43C3BD 2811392 ----a-w- C:\WINDOWS\SysWOW64\themeui.dll 2014-09-06 02:50:27 57D5376D3B642E8BB83EA01A4DB59CAB 169472 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll 2014-09-06 02:50:26 FA3A111B94D371FF40FB924B4341E12C 473600 ----a-w- C:\WINDOWS\SysWOW64\AppxPackaging.dll 2014-09-06 02:50:26 F32D6220ED4DCA5028A5D063C5940CC3 518144 ----a-w- C:\WINDOWS\SysWOW64\MrmIndexer.dll 2014-09-06 02:50:26 B6A37C8C64DC87031293357F06DA1A7F 211968 ----a-w- C:\WINDOWS\SysWOW64\Dism.exe 2014-09-06 02:50:26 ABCCF220548BA6EE8A27DA85951D0569 89848 ----a-w- C:\WINDOWS\SysWOW64\ncryptsslp.dll 2014-09-06 02:50:26 8EEEEA65BAFEA09CC54074099349BB83 191488 ----a-w- C:\WINDOWS\SysWOW64\InputSwitch.dll 2014-09-06 02:50:26 4A5F18DD1DEC0C593EC124411A395B63 217600 ----a-w- C:\WINDOWS\SysWOW64\mssphtb.dll 2014-09-06 02:50:25 B58D8A205369DCAD4161649855773CC9 1162752 ----a-w- C:\WINDOWS\SysWOW64\usercpl.dll 2014-09-06 02:50:23 A52F459CFD08A1B0EC4D964C9D1D11B1 448000 ----a-w- C:\WINDOWS\SysWOW64\VAN.dll 2014-09-06 02:50:23 7C4829EC5B8ECF4B3C43CAFA1C175939 95232 ----a-w- C:\WINDOWS\SysWOW64\sppc.dll 2014-09-06 02:50:22 E11F500601345505CC8A201773B4AF7F 709120 ----a-w- C:\WINDOWS\SysWOW64\msctfuimanager.dll 2014-09-06 02:50:22 CCCBB9FAC2B1248F1A0930E66267BCCF 2165760 ----a-w- C:\WINDOWS\SysWOW64\SyncCenter.dll 2014-09-06 02:50:22 C9DDB8B1096B12DB54B26F949647496B 943104 ----a-w- C:\WINDOWS\SysWOW64\WlanMM.dll 2014-09-06 02:50:22 4F4AE5041395BF472EED0AC2EFE734E7 459264 ----a-w- C:\WINDOWS\SysWOW64\SettingSync.dll 2014-09-06 02:50:22 3463868E894DE0D4BCD516EAA255DD3C 180240 ----a-w- C:\WINDOWS\SysWOW64\SndVol.exe 2014-09-06 02:50:22 26B2170BEC5EA59B297D07BBB894FBAB 410568 ----a-w- C:\WINDOWS\SysWOW64\WerFault.exe 2014-09-06 02:50:22 069D06FE70439AD09B72F3CE880369F6 506120 ----a-w- C:\WINDOWS\SysWOW64\WinTypes.dll 2014-09-06 02:50:21 7A6B4C081B14750EE46CDB971589F961 176128 ----a-w- C:\WINDOWS\SysWOW64\authz.dll 2014-09-06 02:50:20 A1114F6DC4F8C13B68B59177BB454FD5 3085824 ----a-w- C:\WINDOWS\SysWOW64\rdpcore.dll 2014-09-06 02:50:19 C7DA053E0003F4416507D11EE9F2286C 242688 ----a-w- C:\WINDOWS\SysWOW64\mdmregistration.dll 2014-09-06 02:50:19 BACD9D28E19839CDFBA3151CE52F3AA2 292864 ----a-w- C:\WINDOWS\SysWOW64\ninput.dll 2014-09-06 02:50:18 9DB8537C03BE40548968C445FC595753 552632 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2014-09-06 02:50:17 D8242B0126F39B0E92975A16ADC2E578 232896 ----a-w- C:\WINDOWS\SysWOW64\sqmapi.dll 2014-09-06 02:50:17 25A95594FFFA99652BBF1D9695A7D85B 369288 ----a-w- C:\WINDOWS\SysWOW64\Faultrep.dll 2014-09-06 02:50:16 62969A88DE12FD62D59A6C7821A929BC 137728 ----a-w- C:\WINDOWS\SysWOW64\imm32.dll 2014-09-06 02:50:16 4D052EB17981CF9360BA28A4F990D795 41320 ----a-w- C:\WINDOWS\SysWOW64\CloudNotifications.exe 2014-09-06 02:50:16 48E55FE508257F28C6DB4BA4A39B7CDC 140456 ----a-w- C:\WINDOWS\SysWOW64\wscapi.dll 2014-09-06 02:50:16 40429BD440764EE2EC36A4D0FF3FA907 112640 ----a-w- C:\WINDOWS\SysWOW64\fsutil.exe 2014-09-06 02:50:15 C2BD0BF038EA196DABE53E6A091501A9 2537472 ----a-w- C:\WINDOWS\SysWOW64\gameux.dll 2014-09-06 02:50:15 B4069D2379487C118C5DF646120428CE 214016 ----a-w- C:\WINDOWS\SysWOW64\SndVolSSO.dll 2014-09-06 02:50:15 4C20F550B6A99F2F8F8C5DB3E8776F37 470016 ----a-w- C:\WINDOWS\SysWOW64\timedate.cpl 2014-09-06 02:50:15 4941D400842A522C92332098CA8E9175 409600 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2014-09-06 02:50:15 38ABAF8F3CED2EF51C693F03E2398E78 1392640 ----a-w- C:\WINDOWS\SysWOW64\WMPDMC.exe 2014-09-06 02:50:14 E128F9D10AEAE1EFB1D2CC12A276A6A1 137344 ----a-w- C:\WINDOWS\SysWOW64\wermgr.exe 2014-09-06 02:50:14 AA195EEF529D57407B4E75D0ADF2CEF1 251504 ----a-w- C:\WINDOWS\SysWOW64\powrprof.dll 2014-09-06 02:50:14 774BEEDA19E96F51149A515D103A6720 391680 ----a-w- C:\WINDOWS\SysWOW64\WLanConn.dll 2014-09-06 02:50:14 470879333CC4C30E2A3F6482800A82FE 137216 ----a-w- C:\WINDOWS\SysWOW64\PlayToManager.dll 2014-09-06 02:50:13 FF3EB7AEA154FF3034073E7F13F98A01 835584 ----a-w- C:\WINDOWS\SysWOW64\rasgcw.dll 2014-09-06 02:50:13 FE12B5270B9C2578099F01C9342920E0 89848 ----a-w- C:\WINDOWS\SysWOW64\RestoreOptIn.exe 2014-09-06 02:50:13 E6B8806DEC8FA31D9E1620E61EE02ACD 402944 ----a-w- C:\WINDOWS\SysWOW64\zipfldr.dll 2014-09-06 02:50:13 E6151D13221D4FAEBF07EF9EFC862DDC 507392 ----a-w- C:\WINDOWS\SysWOW64\WSDApi.dll 2014-09-06 02:50:12 8A5FF82A1E58543DFE1959FA4108CBE2 308224 ----a-w- C:\WINDOWS\SysWOW64\srchadmin.dll 2014-09-06 02:50:12 754896CD60E3B8251D1C520926E28179 29912 ----a-w- C:\WINDOWS\SysWOW64\UserAccountBroker.exe 2014-09-06 02:50:12 404FE63DD356D15F4F0E3FDEF57F6115 109568 ----a-w- C:\WINDOWS\SysWOW64\wscinterop.dll 2014-09-06 02:50:12 059A7EB8ABB9DAD1DB46F81EAFACC4DE 307200 ----a-w- C:\WINDOWS\SysWOW64\newdev.dll 2014-09-06 02:50:11 7FE2C12C064FBC38283B5F31DEC7F186 213504 ----a-w- C:\WINDOWS\SysWOW64\cleanmgr.exe 2014-09-06 02:50:11 7B7AD0D37EAA405FC9F87BFD32ADCBB7 79496 ----a-w- C:\WINDOWS\SysWOW64\bcd.dll 2014-09-06 02:50:09 1647317F3D6E812658D6BC10BCC3FE09 356352 ----a-w- C:\WINDOWS\SysWOW64\taskeng.exe 2014-09-06 02:50:06 F1100B1CA05FEB775FCEBF25241B7762 260608 ----a-w- C:\WINDOWS\SysWOW64\BioCredProv.dll 2014-09-06 02:50:06 B81304A7B26C618C0B458C4E53E6A3B0 151040 ----a-w- C:\WINDOWS\SysWOW64\dmvdsitf.dll 2014-09-06 02:50:06 A7A776EC7C8ECB79D7980856F38CCD42 33056 ----a-w- C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2014-09-06 02:50:06 A15755E94062C768A1AC3F1720610A98 98304 ----a-w- C:\WINDOWS\SysWOW64\netid.dll 2014-09-06 02:50:05 4262CC96E6D490E6973295FE5DA043A5 167936 ----a-w- C:\WINDOWS\SysWOW64\netiohlp.dll 2014-09-06 02:50:05 3DD31DFE0146104B90BEDCCD4DCB7635 155136 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 02:50:05 3BAD9F36E1EF31762BC54C7940BD9235 12288 ----a-w- C:\WINDOWS\SysWOW64\clrhost.dll 2014-09-06 02:50:05 0351FD3F47AA0DE9B7A0CA276DD5FBBD 164352 ----a-w- C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2014-09-06 02:50:04 9281FA6B56D3B7A64CB140CE310686DE 109056 ----a-w- C:\WINDOWS\SysWOW64\bcrypt.dll 2014-09-06 02:50:04 76646923CD7635715615B120A0F9B60C 207872 ----a-w- C:\WINDOWS\SysWOW64\dmdskmgr.dll 2014-09-06 02:50:03 CA547BADA550D494626B31C72CC21DB6 251904 ----a-w- C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2014-09-06 02:50:03 9FAF625C560728E860517DF9DBB9D960 62976 ----a-w- C:\WINDOWS\SysWOW64\samlib.dll 2014-09-06 02:50:03 80425342540998BAB3EE066E1E4E49C8 116736 ----a-w- C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2014-09-06 02:50:03 6097263AB790AC06536C34F1CAD5F934 154624 ----a-w- C:\WINDOWS\SysWOW64\netplwiz.dll 2014-09-06 02:50:03 5F1330B8997248D68D484CF759E0C019 156672 ----a-w- C:\WINDOWS\SysWOW64\scrrun.dll 2014-09-06 02:50:03 4491E85C62A83CB3BE7B82DA974F73C4 147968 ----a-w- C:\WINDOWS\SysWOW64\deviceaccess.dll 2014-09-06 02:50:03 16B05ECB7FE1DE4DE13F3E2AE4880F5A 45568 ----a-w- C:\WINDOWS\SysWOW64\acppage.dll 2014-09-06 02:50:02 872F0C4D6114670DDA1DABDA0892C5C1 165376 ----a-w- C:\WINDOWS\SysWOW64\scrobj.dll 2014-09-06 02:50:02 7B617B465FC0BE2162A33239141FCFCD 185856 ----a-w- C:\WINDOWS\SysWOW64\wlidcredprov.dll 2014-09-06 02:50:02 74063A3A00A577AD98EB549778BB7FF7 195584 ----a-w- C:\WINDOWS\SysWOW64\PkgMgr.exe 2014-09-06 02:50:02 6D78C1FB8024B0F22CC2E5C14DEC2A23 780288 ----a-w- C:\WINDOWS\SysWOW64\autofmt.exe 2014-09-06 02:50:02 4FC945E08AF63491AFCC902C99046735 321536 ----a-w- C:\WINDOWS\SysWOW64\provsvc.dll 2014-09-06 02:50:02 40C42FE241AA67B34AD93521A754AC18 1057792 ----a-w- C:\WINDOWS\SysWOW64\printui.dll 2014-09-06 02:50:02 30FC899ABD3BC969D2895A86861A913D 14848 ----a-w- C:\WINDOWS\SysWOW64\slpts.dll 2014-09-06 02:50:01 78A65E694B2512EC9FFB3D5FF28967CB 439808 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2014-09-06 02:50:01 420E32FF08359CCF8336863057447DA1 800256 ----a-w- C:\WINDOWS\SysWOW64\autoconv.exe 2014-09-06 02:50:01 391EACC3F9D9633252CDB30CC93DB049 99840 ----a-w- C:\WINDOWS\SysWOW64\AuthBroker.dll 2014-09-06 02:50:01 28F2600864E7A46FBCC20201A28802BC 27136 ----a-w- C:\WINDOWS\SysWOW64\winbrand.dll 2014-09-06 02:50:01 28154466F239C8437A09EF16F36B9492 484864 ----a-w- C:\WINDOWS\SysWOW64\untfs.dll 2014-09-06 02:50:01 1D31E78ED5C40B5C6CC8D3DE713177A5 792576 ----a-w- C:\WINDOWS\SysWOW64\autochk.exe 2014-09-06 02:50:00 DC6C267FA152D4E5C068C747D00D1C56 47104 ----a-w- C:\WINDOWS\SysWOW64\mssprxy.dll 2014-09-06 02:50:00 D3633D8320294144FB2BDCFE8DE1AC41 138752 ----a-w- C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-09-06 02:50:00 750E4BE8B6987BA644F3FF96935070B8 59392 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 02:50:00 5AEEFA1C03E58A4EAF92248489C4A281 352768 ----a-w- C:\WINDOWS\SysWOW64\spwizeng.dll 2014-09-06 02:50:00 1F2EDE388EC6CCB146B35C229C209AC9 59392 ----a-w- C:\WINDOWS\SysWOW64\StorageContextHandler.dll 2014-09-06 02:49:59 3AAA7338C3752D8B45A3BAC2520C8FC5 68096 ----a-w- C:\WINDOWS\SysWOW64\spbcd.dll 2014-09-06 02:49:59 119E0F7A71775A5CFB208B036ECE35E1 2255 ----a-w- C:\WINDOWS\SysWOW64\WimBootCompress.ini 2014-09-06 02:49:58 D050F4DCF90AEEFC9D603D692585ABB5 592896 ----a-w- C:\WINDOWS\SysWOW64\sud.dll 2014-09-06 02:49:55 78503FFC0092E152626A05EFDADD8817 130560 ----a-w- C:\WINDOWS\SysWOW64\SettingMonitor.dll 2014-09-06 02:49:55 66F44ACC5DC705BFF72A9093C39282E0 544768 ----a-w- C:\WINDOWS\SysWOW64\wlidcli.dll 2014-09-06 02:49:54 C9634BC6BDED782253F7BFD79A905591 1136128 ----a-w- C:\WINDOWS\SysWOW64\wscui.cpl 2014-09-06 02:49:54 0A8FD01951AFD20F89CE1847B4CA789C 47104 ----a-w- C:\WINDOWS\SysWOW64\offreg.dll 2014-09-06 02:49:53 E79C408D32840F5F01AD804288CD6093 97280 ----a-w- C:\WINDOWS\SysWOW64\migisol.dll 2014-09-06 02:49:53 E332EF2E6551CCC2B7A1118A962A0D1C 30720 ----a-w- C:\WINDOWS\SysWOW64\deviceassociation.dll 2014-09-06 02:49:53 D3B9803EB2D8A9FB219F01F6790749AE 559104 ----a-w- C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll 2014-09-06 02:49:53 C7CAA2A56A66BCB587F30B73A418E0DB 159232 ----a-w- C:\WINDOWS\SysWOW64\werui.dll 2014-09-06 02:49:53 B22EE6357ACAD5BA5DD13319EAC7F342 82432 ----a-w- C:\WINDOWS\SysWOW64\IdCtrls.dll 2014-09-06 02:49:53 8A082D36DF5A4BBF40D96533B46BE15B 109056 ----a-w- C:\WINDOWS\SysWOW64\SSShim.dll 2014-09-06 02:49:53 8912CFFECB3018BD1657398AE4DBBDC4 270336 ----a-w- C:\WINDOWS\SysWOW64\winsku.dll 2014-09-06 02:49:53 717FF2BBD15A1047CEA8B9327C2650EA 203776 ----a-w- C:\WINDOWS\SysWOW64\PlayToDevice.dll 2014-09-06 02:49:53 417A1BFFAD79639B5E44B380B64A4E34 109568 ----a-w- C:\WINDOWS\SysWOW64\CloudStorageWizard.exe 2014-09-06 02:49:53 1A2892C4742B9EDAB7074A229C1F0D46 67584 ----a-w- C:\WINDOWS\SysWOW64\powercfg.exe 2014-09-06 02:49:52 ADF3C04436056E400BCF24AFA9B235C6 23040 ----a-w- C:\WINDOWS\SysWOW64\ReAgentc.exe 2014-09-06 02:49:52 5CE230DBA05F35DE72602EB7D863CF2C 140288 ----a-w- C:\WINDOWS\SysWOW64\easwrt.dll 2014-09-06 02:49:52 5979D087E744F7771B9295931C925F85 561664 ----a-w- C:\WINDOWS\SysWOW64\dfrgui.exe 2014-09-06 02:49:52 29DA788E9C2FBD0ED0AD56CE7D11896C 136192 ----a-w- C:\WINDOWS\SysWOW64\diskpart.exe 2014-09-06 02:49:51 9B7F10C41D7D5E09D2F88B59A7556748 118272 ----a-w- C:\WINDOWS\SysWOW64\cscript.exe 2014-09-06 02:49:51 58A79835B276C869C0B2B45EEDA95BFC 51712 ----a-w- C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll 2014-09-06 02:49:51 3AD30A2F12CF91C66EA01AB882CE60AE 17920 ----a-w- C:\WINDOWS\SysWOW64\sxshared.dll 2014-09-06 02:49:51 3446C9E2DDF3F1A3597FA1A84249D45D 208384 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2014-09-06 02:49:51 2B945A334F50170137F541D0BE4158C8 10240 ----a-w- C:\WINDOWS\SysWOW64\msshooks.dll 2014-09-06 02:49:49 F9D8E8E9C931DED73B71EB9A4E898274 5632 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 02:49:49 B08E2CCB561100858F354ED207F4D615 106496 ----a-w- C:\WINDOWS\SysWOW64\setupugc.exe 2014-09-06 02:49:49 358ABF671CB11C8B3ED533C60A62805F 256000 ----a-w- C:\WINDOWS\SysWOW64\wincorlib.dll 2014-09-06 02:49:48 DE461B86C05946D10E519F512D09E389 100197 ----a-w- C:\WINDOWS\SysWOW64\RacRules.xml 2014-09-06 02:49:48 B0B1AEAC427EC6943D851150EC135589 2544128 ----a-w- C:\WINDOWS\SysWOW64\themecpl.dll 2014-09-06 02:49:48 67863ACDD7D2EA4B4A4B5B812927CEC2 27648 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll 2014-09-06 02:49:48 215C0AE11C772F890458E0E912BC356A 13312 ----a-w- C:\WINDOWS\SysWOW64\finger.exe 2014-09-06 02:49:47 F62BEC071CF36069161FD270BE6A6E7D 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 02:49:47 F1DB86EA935C13CDFF27AB957297136A 7762 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms 2014-09-06 02:49:47 E535EA7F37E3AEA716057267ABD7D6A8 146944 ----a-w- C:\WINDOWS\SysWOW64\korwbrkr.dll 2014-09-06 02:49:47 A30586158BE8810E7A6672462B2E7384 163328 ----a-w- C:\WINDOWS\SysWOW64\ocsetapi.dll 2014-09-06 02:49:47 850DC38AE4A068DC47F9D0E1D1D1B33C 202240 ----a-w- C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2014-09-06 02:49:47 1FDF29F970E2E843B4DC5D0626D0EDD5 7130 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms 2014-09-06 02:49:46 C31E30DEB0BAF08CFF9225181CBEB155 34304 ----a-w- C:\WINDOWS\SysWOW64\dataclen.dll 2014-09-06 02:49:46 65E9B707B157DB2D2844AD4D4ADF4EE9 193024 ----a-w- C:\WINDOWS\SysWOW64\bthprops.cpl 2014-09-06 02:49:46 2DCD7ABA661E6E85CA6F426EEDE5C718 8192 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 02:49:45 F3539A38A1BFB9CED91B2DD9C4F2A565 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 02:49:45 869AE389F9F1EF3F715936FA30244ACA 127488 ----a-w- C:\WINDOWS\SysWOW64\occache.dll 2014-09-06 02:49:45 5E69CA54D2FE1088C78687EB8E58CB51 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll 2014-09-06 02:49:44 9CED2ACC26435D787616526692FBBE20 28160 ----a-w- C:\WINDOWS\SysWOW64\f3ahvoas.dll 2014-09-06 02:49:43 E7B53AF004BEE5112F787A6E5B04D737 11109 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms 2014-09-06 02:48:10 2169BB3BA0596881EE717A93EC60037D 35328 ----a-w- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2014-09-06 02:48:08 83058B0F0CEC63A5A7438818B71C0935 1679128 ----a-w- C:\WINDOWS\SysWOW64\msxml6.dll 2014-09-06 02:48:08 5AEFC877161F7A481DD7CC137F97E761 2270208 ----a-w- C:\WINDOWS\SysWOW64\msftedit.dll 2014-09-06 02:48:07 21DDC5D6CFAC0A5FEE3B364A9B58A7CB 1764864 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2014-09-06 02:48:06 67F3D0E0D8F009FF665A0E452C6F13E8 629760 ----a-w- C:\WINDOWS\SysWOW64\MrmCoreR.dll 2014-09-06 02:48:06 67D2296474FB0F3B858E1758FFA3AC79 1779800 ----a-w- C:\WINDOWS\SysWOW64\d3d11.dll 2014-09-06 02:48:05 55237559D07288EEEA3133451FE4F386 836096 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2014-09-06 02:48:04 FF0EE1B87E5DD7A82F7BB124D5CA8BB6 494592 ----a-w- C:\WINDOWS\SysWOW64\dnsapi.dll 2014-09-06 02:48:04 7C0E08F3F04ED8874E19DD23753DE2C6 356864 ----a-w- C:\WINDOWS\SysWOW64\wlidprov.dll 2014-09-06 02:48:04 775C3D06C408F4F093254B39637A6F1E 755712 ----a-w- C:\WINDOWS\SysWOW64\kerberos.dll 2014-09-06 02:48:04 2BDB085AA7ECA65D1793D150CEC960AF 1095488 ----a-w- C:\WINDOWS\SysWOW64\ole32.dll 2014-09-06 02:48:03 F9EA1AF4C99275C56B47F2C1F436B5E9 1066496 ----a-w- C:\WINDOWS\SysWOW64\gdi32.dll 2014-09-06 02:48:03 D30975FD233E399744E2FB083F5E5545 222720 ----a-w- C:\WINDOWS\SysWOW64\dcomp.dll 2014-09-06 02:48:03 C06B6C8E002EDB492D93F2494E32F9CA 605184 ----a-w- C:\WINDOWS\SysWOW64\rasapi32.dll 2014-09-06 02:48:03 A6880BA9A4F02D3C742DF956EA9CC44D 1351168 ----a-w- C:\WINDOWS\SysWOW64\GdiPlus.dll 2014-09-06 02:48:03 9264B57E8C0BCCA14F92EBA56B9B5106 800256 ----a-w- C:\WINDOWS\SysWOW64\ReAgent.dll 2014-09-06 02:48:02 EB40EFEBE9EB4ACA3DD950A1AFA0F51B 171008 ----a-w- C:\WINDOWS\SysWOW64\SensorsApi.dll 2014-09-06 02:48:02 B3F1B6A3CC07E967B60584E7454B0890 390488 ----a-w- C:\WINDOWS\SysWOW64\netcfgx.dll 2014-09-06 02:48:01 B4309F7821BDE5A31E1E4FB24ED97C5C 197632 ----a-w- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2014-09-06 02:48:01 595653478434F2A8451EDA55CD954CED 1036288 ----a-w- C:\WINDOWS\SysWOW64\kernel32.dll 2014-09-06 02:48:01 4F3AD1A7C0ED3CF5C4EBE49F61074E41 226304 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2014-09-06 02:48:00 FE85E0B190DD141E4826FEC9F015FA18 139776 ----a-w- C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2014-09-06 02:48:00 BD9306F715EA9B959EDB892614F6D581 94016 ----a-w- C:\WINDOWS\SysWOW64\userenv.dll 2014-09-06 02:48:00 AF2A68F7890A680DAE0637EC49456A7B 85504 ----a-w- C:\WINDOWS\SysWOW64\davclnt.dll 2014-09-06 02:48:00 ADC071E4F65BAC3AEF4807B23438472A 280576 ----a-w- C:\WINDOWS\SysWOW64\SessEnv.dll 2014-09-06 02:48:00 5B8D7F29CA815E6DB156DF9853F0472D 2030080 ----a-w- C:\WINDOWS\SysWOW64\WsmSvc.dll 2014-09-06 02:48:00 1AFACFDB26C1B81586801AFF8BB0ABF1 222720 ----a-w- C:\WINDOWS\SysWOW64\spp.dll 2014-09-06 02:48:00 0303523E283AB4D03590C9AE56A8386A 355832 ----a-w- C:\WINDOWS\SysWOW64\mfreadwrite.dll 2014-09-06 02:47:59 411201FFB3882554D5B833E6EC2EC649 254976 ----a-w- C:\WINDOWS\SysWOW64\pdh.dll 2014-09-06 02:47:58 FB32EF390BCAC55E11E0C5D12F4C9A45 1816576 ----a-w- C:\WINDOWS\SysWOW64\Display.dll 2014-09-06 02:47:58 B918D220FCD67E5A4AF05018515E4C14 172544 ----a-w- C:\WINDOWS\SysWOW64\ReInfo.dll 2014-09-06 02:47:58 AFFB4EB53FC1D04495C8A5EC80B1EBCD 264192 ----a-w- C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2014-09-06 02:47:58 91F6883B61C0E5BEAE9B734D8E46829B 386560 ----a-w- C:\WINDOWS\SysWOW64\wlangpui.dll 2014-09-06 02:47:58 75DE8AED4FE16D07E7E22208BA88F0C5 887296 ----a-w- C:\WINDOWS\SysWOW64\aclui.dll 2014-09-06 02:47:58 59BB015A6FEB79D7911005D3E5F8C770 402432 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll 2014-09-06 02:47:58 503281E8561B81FC080887ECAF5F5E31 151040 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll 2014-09-06 02:47:58 3D83889B6343386C918AB45F5C4C9355 262656 ----a-w- C:\WINDOWS\SysWOW64\LocationApi.dll 2014-09-06 02:47:58 37725B5D560398E5BF4DAF85E4F89249 70656 ----a-w- C:\WINDOWS\SysWOW64\w32tm.exe 2014-09-06 02:47:58 1FE14EDDEED70613E3A032182C7796FB 27136 ----a-w- C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll 2014-09-06 02:47:57 FBA4497DEBB5C07F5FA230618857A329 58368 ----a-w- C:\WINDOWS\SysWOW64\l2gpstore.dll 2014-09-06 02:47:57 A82DF6AB70BF4558B58D0B2827B61C3C 33792 ----a-w- C:\WINDOWS\SysWOW64\sxproxy.dll 2014-09-06 02:47:57 6F389E3C60FD27DA4322F78D2233E1FC 567296 ----a-w- C:\WINDOWS\SysWOW64\nshwfp.dll 2014-09-05 15:38:39 EB5F811C1F78005B3C147599A0CCCF51 608448 ----a-w- C:\WINDOWS\SysWOW64\comctl32.ocx 2014-09-05 15:38:39 D04F7AACA2319A3BCDB2C5D5DD6F6026 487424 ----a-w- C:\WINDOWS\SysWOW64\msvcp70.dll 2014-09-05 15:38:39 9972A6ED4F2388DBFA8E0A96F6F3FDF1 344064 ----a-w- C:\WINDOWS\SysWOW64\msvcr70.dll 2014-09-05 15:38:39 09AEF167EB1531E965053D0DCF6CC573 974848 ----a-w- C:\WINDOWS\SysWOW64\mfc70.dll 2014-09-05 13:02:42 D16CF34B17899F90A8FCF2A3F77B4A27 15872 ----a-w- C:\WINDOWS\SysWOW64\CNHMCA.dll 2014-09-05 13:02:42 86802456CB4AD11942447D1112242CA0 320000 ----a-w- C:\WINDOWS\SysWOW64\CNC_B8L.dll 2014-09-05 13:02:42 7E29A9BD894FC34A26126DB13499A99D 103424 ----a-w- C:\WINDOWS\SysWOW64\CNC_B8U.dll 2014-09-05 13:02:42 6F6C16E5D711E35FABE3FCD8C49E7A69 77568 ----a-w- C:\WINDOWS\SysWOW64\CNC1762D.TBL 2014-09-05 12:51:29 5BD847F32884318CCB1C6CF74D2CAECA 366592 ----a-w- C:\WINDOWS\SysWOW64\CNMNPPM.DLL 2014-09-05 11:42:47 A5B71BE51D4F96E249B90F9C97EE28B5 39776 ----a-w- C:\WINDOWS\SysWOW64\DfSdkBt.exe 2014-09-05 11:42:47 A43182C212AD802B5D48AD3A3C89143D 33632 ----a-w- C:\WINDOWS\SysWOW64\DfSdkBt32.exe 2014-09-05 11:00:05 9EA661DB9B393F46046D6181A3DDC4AD 2804528 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2014-09-05 10:59:57 92124EF7B1BF5492EFCA17B3A208E4F4 663680 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2014-09-05 10:59:56 FF73CDC3F09904D82B0CCC1CA750CD02 218112 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2014-09-05 10:59:56 C85EA737B20BEDC46CBA748DCE115184 433664 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll 2014-09-05 10:59:54 ECD4A3F754224C954D3D19B6ECBFE5AA 513536 ----a-w- C:\WINDOWS\SysWOW64\rastls.dll 2014-09-05 10:59:54 4E556E5490191ED9B771576D9221A461 273920 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll 2014-09-05 10:56:29 EC308077E9BEEDF523AE3D6BA042E016 630272 ----a-w- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2014-09-05 10:56:26 A00970DBAD7034523CF9D2C395A944B8 103936 ----a-w- C:\WINDOWS\SysWOW64\OEMLicense.dll 2014-09-05 10:56:25 A7DE6E0B69826D5B6F5FF68AABCF7035 218112 ----a-w- C:\WINDOWS\SysWOW64\sti.dll 2014-09-05 10:48:39 F0769848C6438AF1FF45E495219222B7 444928 ----a-w- C:\WINDOWS\SysWOW64\msdrm.dll 2014-09-05 10:48:39 5AA28997F6A30EB196A5AB09F684B7BE 70680 ----a-w- C:\WINDOWS\SysWOW64\imagehlp.dll 2014-09-05 10:48:38 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-09-05 10:48:38 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2014-09-05 10:48:36 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2014-09-05 10:48:36 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-09-05 10:48:35 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-09-05 10:48:35 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-09-05 10:48:18 3A27CEE08AF2EC8383CDDC1F4B36DBC3 348160 ----a-w- C:\WINDOWS\SysWOW64\WMPhoto.dll 2014-09-05 10:48:12 C9C0B562C7AA50A672766AAC8112DF05 3936256 ----a-w- C:\WINDOWS\SysWOW64\d2d1.dll 2014-09-05 10:48:12 2754B116D797255B6A2F2F5DB1760238 2071552 ----a-w- C:\WINDOWS\SysWOW64\d3d10warp.dll 2014-09-05 10:48:08 FCD51A3EB7E47FBCE17382A95FD3AB35 2873344 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2014-09-05 10:48:08 F5033F3C6F8E706D78ACB9351EBF7B3E 1238016 ----a-w- C:\WINDOWS\SysWOW64\dbghelp.dll 2014-09-05 10:48:07 3DA5CD1E3B9BDAF79731CB6CB1029CB3 53248 ----a-w- C:\WINDOWS\SysWOW64\tsgqec.dll 2014-09-05 10:47:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\WINDOWS\SysWOW64\pcaui.exe 2014-09-05 10:47:56 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\WINDOWS\SysWOW64\poqexec.exe ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-09-10 05:30:48 343A53C71F8CE8DE172880F210BF50CB 83968 ----a-w- C:\WINDOWS\Sysnative\MshtmlDac.dll 2014-09-10 05:30:47 E7852ACED4314BF475DE89C388247CAD 85504 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2014-09-10 05:30:46 550531ED60E7AD5CA02EDB0FAFA6280B 72704 ----a-w- C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll 2014-09-10 05:30:46 19FB8104F320C31BB0E34D5A926ECD1C 547328 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2014-09-10 05:30:46 0B52D185504457310D42B5413783D6DC 758272 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-09-10 05:30:44 F519886D6075BFF0286793B3891E0675 727040 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-09-10 05:30:44 B2AA93A6FC3BB1EFBF25410DAA6BB1D2 359424 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2014-09-10 05:30:44 910AAE6634F7C809E93EE0341C850180 289280 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2014-09-10 05:30:44 7F733479C6DC92B649B2B1298EE6D6B6 446464 ----a-w- C:\WINDOWS\Sysnative\dxtmsft.dll 2014-09-10 05:30:44 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-09-10 05:30:44 1FA34F04CB4529000AD818268F059D3E 707072 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-09-10 05:30:43 E86022F8AE3F9251459C744E175309F9 775168 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-09-10 05:30:42 47942CCF5A5CD57AE1BB44F17725A912 23591424 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-09-10 05:30:40 7F88F6790401199B2C9C932FD91965F9 2793984 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-09-10 05:30:40 4C56EBB6A31E8323D3CBBC476C81B998 1447424 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-09-10 05:30:40 30C355249224173151874A7B86A8BB66 2310656 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-09-10 05:30:39 4EBE88D6CC494B9BE3705B400562A587 2104832 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-09-10 05:30:39 3EC77C4625862483BFCF4CEE1231EED7 13588480 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-09-10 05:30:38 5107C9AEF01636FF8A04E8F28CF7C316 5833728 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-09-10 05:28:23 8BB7548307EE6147137993A410D64387 869544 ----a-w- C:\WINDOWS\Sysnative\msvcr120_clr0400.dll 2014-09-10 05:28:18 D3AE5DB16EAF913860EC28654CE00E6B 1212928 ----a-w- C:\WINDOWS\Sysnative\schedsvc.dll 2014-09-10 05:28:15 91AEA2A8671DDDFA526604B2379867F3 13423104 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2014-09-10 05:28:15 888FC771B2D081EB39677868C882FB76 738816 ----a-w- C:\WINDOWS\Sysnative\aepdu.dll 2014-09-10 05:28:15 5F776A54E4B7C5D54E96D2FF8D580706 527360 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2014-09-10 05:28:15 5C809DB631BEB5DCC63C23203102D91A 97280 ----a-w- C:\WINDOWS\Sysnative\aepic.dll 2014-09-10 05:28:14 A4EE37B24370FABA65EF64FF24B5539E 2860032 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2014-09-10 05:28:14 00CD1254837739E310505EBCB19F7971 796672 ----a-w- C:\WINDOWS\Sysnative\uDWM.dll 2014-09-10 05:28:13 04AE20974DF91DC7B9075FC5A126B77C 68096 ----a-w- C:\WINDOWS\Sysnative\UXInit.dll 2014-09-06 16:17:39 E09BF40AA766B183F0F385C96B37D9E5 299520 ----a-w- C:\WINDOWS\Sysnative\WSDMon.dll 2014-09-06 16:17:39 DA947D89F64B72A40F678AAAE76F7564 205824 ----a-w- C:\WINDOWS\Sysnative\tcpmon.dll 2014-09-06 15:50:36 3D748E5558FD9A9F03182CB2330698DC 1018880 ----a-w- C:\WINDOWS\Sysnative\termsrv.dll 2014-09-06 15:33:48 1BB9CC78C91536CBA7B04B61ED0F85C4 1273184 ----a-w- C:\WINDOWS\Sysnative\rpcrt4.dll 2014-09-06 15:33:47 83E3C080E9B0E0677DBCDF9D7F434166 4190720 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2014-09-06 15:33:46 15750011454B89F4950D7E7E4A947EC1 834048 ----a-w- C:\WINDOWS\Sysnative\osk.exe 2014-09-06 15:33:43 201FE8AAD76FB1E7FB5A3B1337435DC1 2151424 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-09-06 15:33:42 59EAFAE3A34B4925990A2E679CA91C5B 517528 ----a-w- C:\WINDOWS\Sysnative\dxgi.dll 2014-09-06 15:33:41 454978FB3D24DE5C4199162D5F81FBEE 2133504 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2014-09-06 15:33:38 326715361A7D1C65983BFE920990E4EF 308224 ----a-w- C:\WINDOWS\Sysnative\wusa.exe 2014-09-06 15:31:24 6DBE73C09215E281F4283641144110A5 35480 ----a-w- C:\WINDOWS\Sysnative\TsWpfWrp.exe 2014-09-06 15:31:19 CCDFFC83004AF62D0153CF45289028AF 3360256 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2014-09-06 15:31:19 C3028569F244470F3D54026884E16E06 1417216 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-09-06 15:31:19 423D68307E57654A000AA484B009DD16 735232 ----a-w- C:\WINDOWS\Sysnative\adtschema.dll 2014-09-06 15:31:19 3B78D6DC57654CDD96E073724A2228AE 436224 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2014-09-06 15:31:18 E7DE316FEEFC79327CFAD8F527979CC0 3118080 ----a-w- C:\WINDOWS\Sysnative\Wpc.dll 2014-09-06 15:31:18 E2F4125BFAC99244088324A1841C0B83 3048880 ----a-w- C:\WINDOWS\Sysnative\WpcMon.exe 2014-09-06 15:31:18 6BC31FB4E24A962C98801D3687A984C0 2861056 ----a-w- C:\WINDOWS\Sysnative\WpcWebSync.dll 2014-09-06 15:31:16 FD3638782572A8281BCF12520F6579F4 79872 ----a-w- C:\WINDOWS\Sysnative\WSReset.exe 2014-09-06 15:31:16 E9F333234A5641E2FEF2F5240BDD56B8 35328 ----a-w- C:\WINDOWS\Sysnative\wuapp.exe 2014-09-06 15:31:16 850FC6B2E385766B9972CDBE947989F6 381440 ----a-w- C:\WINDOWS\Sysnative\WUSettingsProvider.dll 2014-09-06 15:31:16 736046C9AFD66BA29BA61ACD582E7A7B 137728 ----a-w- C:\WINDOWS\Sysnative\wuwebv.dll 2014-09-06 15:31:16 68CB2B575F0C67BB14590D1471285287 201728 ----a-w- C:\WINDOWS\Sysnative\ubpm.dll 2014-09-06 15:31:16 4FB80968811FAD6E88ABFAA98E51305C 1705472 ----a-w- C:\WINDOWS\Sysnative\wucltux.dll 2014-09-06 15:31:16 3DF281C1553A6124DEF875C19D46AC0D 190976 ----a-w- C:\WINDOWS\Sysnative\storewuauth.dll 2014-09-06 15:31:16 1EC3AACDB335533A7470245C683ACF94 56320 ----a-w- C:\WINDOWS\Sysnative\wups.dll 2014-09-06 15:31:14 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\WINDOWS\Sysnative\drvcfg.exe 2014-09-06 15:31:14 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\WINDOWS\Sysnative\drvinst.exe 2014-09-06 15:31:10 1DF648DE1492F93D198F47D48E8D8844 4720640 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2014-09-06 15:31:09 CED9FA1ECCF3E6B7028940FE22C69B40 1726224 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2014-09-06 15:31:09 C1E44A99F7CF8C3A08CD5ADDF451636C 2125344 ----a-w- C:\WINDOWS\Sysnative\d3d9.dll 2014-09-06 15:31:09 B6E947CE54A5AAD55484E0D3BC2D5948 1025536 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2014-09-06 15:31:09 9A0C624F608236FE4EECE6B32C62BC27 716800 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-09-06 15:31:09 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-09-06 15:31:09 0CD0356C5BBCFDC1B7BCEEDE74AB348B 2140888 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2014-09-06 15:31:08 EA432A85ABF371E14FB364D5F4405897 403968 ----a-w- C:\WINDOWS\Sysnative\vpnike.dll 2014-09-06 15:31:08 6B374D279DC423FE69DB8DD1401E84FC 301056 ----a-w- C:\WINDOWS\Sysnative\framedynos.dll 2014-09-06 15:31:08 61FE99A86352AD6E27FA480CDC8B225A 285696 ----a-w- C:\WINDOWS\Sysnative\SkyDriveShell.dll 2014-09-06 15:31:08 05DE04005CE0D84D0E6AD21CAEB369C6 353280 ----a-w- C:\WINDOWS\Sysnative\dhcpcore.dll 2014-09-06 15:31:07 E07C80468D0C599BFF01D9D4EC7AEDC3 339456 ----a-w- C:\WINDOWS\Sysnative\bdesvc.dll 2014-09-06 15:31:07 98D0985521BF8F7086EA9C860898A1EE 721408 ----a-w- C:\WINDOWS\Sysnative\fveapi.dll 2014-09-06 15:31:07 10AC9494ECE22A2362E4E4D98C528D01 271872 ----a-w- C:\WINDOWS\Sysnative\dhcpcore6.dll 2014-09-06 15:31:06 FBB1841434072FFA76E4AD287448E34A 262656 ----a-w- C:\WINDOWS\Sysnative\framedyn.dll 2014-09-06 15:31:06 6CDCCD5323EEB8EBD66E02CB8C9C703F 118272 ----a-w- C:\WINDOWS\Sysnative\winbici.dll 2014-09-06 15:31:06 20FB137ADDE1255F15F265A7BD9579BE 827392 ----a-w- C:\WINDOWS\Sysnative\BFE.DLL 2014-09-06 15:31:06 1824052F17B12B5D7B21445B869EE9F2 71168 ----a-w- C:\WINDOWS\Sysnative\ncobjapi.dll 2014-09-06 15:31:05 DEA76F90F9777E3427D70E380222B23B 1063424 ----a-w- C:\WINDOWS\Sysnative\IKEEXT.DLL 2014-09-06 15:31:05 D3883FBCA97D10C8A39632D6CDDC6E85 65024 ----a-w- C:\WINDOWS\Sysnative\dhcpcsvc6.dll 2014-09-06 15:31:05 D261A12A43D33122CB90E70D3BC1CC68 226816 ----a-w- C:\WINDOWS\Sysnative\WebClnt.dll 2014-09-06 15:31:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\WINDOWS\Sysnative\BulkOperationHost.exe 2014-09-06 15:31:05 7E1EBDB3424337ABB553F249A7811D94 87552 ----a-w- C:\WINDOWS\Sysnative\dhcpcsvc.dll 2014-09-06 15:31:05 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\WINDOWS\Sysnative\Robocopy.exe 2014-09-06 15:31:04 B7CC32E00C5C5152D221DF182827F58E 50745 ----a-w- C:\WINDOWS\Sysnative\srms.dat 2014-09-06 15:31:04 71BAEAFD05B3040173F5BBEA2CFE9607 997888 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2014-09-06 15:31:03 D178F55D53B9A10FFBDC134C95517846 28320 ----a-w- C:\WINDOWS\Sysnative\mrt100.dll 2014-09-06 15:31:03 CC8E86B9C18BCA38D3C467CFD661A466 1975296 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2014-09-06 15:31:03 A750229C96A406EE123F43916053F142 86688 ----a-w- C:\WINDOWS\Sysnative\mrt_map.dll 2014-09-06 15:31:03 3FA6DC6B29717E32E211C1FD821F2C75 1345536 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2014-09-06 15:31:02 50A49F3F16EF82E30BFB11E6B6A8F4A6 16871936 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2014-09-06 15:30:57 B312E157D20E727F30EAB3A250441B6F 284672 ----a-w- C:\WINDOWS\Sysnative\WUDFHost.exe 2014-09-06 15:30:57 9CDC2059A23E3C9B57696178508777E7 99840 ----a-w- C:\WINDOWS\Sysnative\WUDFSvc.dll 2014-09-06 15:30:57 42D257559F97B30A94A027EB4555C62F 323584 ----a-w- C:\WINDOWS\Sysnative\DaOtpCredentialProvider.dll 2014-09-06 15:30:57 313117AE2B0986ED7D3AA6AE10603239 216368 ----a-w- C:\WINDOWS\Sysnative\rsaenh.dll 2014-09-06 15:30:57 1A54E3DF2CBB8DBE8A17C87BB07E3A7E 209408 ----a-w- C:\WINDOWS\Sysnative\WUDFPlatform.dll 2014-09-06 15:30:57 08DCA300264238F9AE941302321F3D54 423768 ----a-w- C:\WINDOWS\Sysnative\hal.dll 2014-09-06 15:30:54 AE7D8835A29FADB39C0D095BA32A9462 21268952 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-09-06 15:30:53 AEDD44FDB8B521D443A07146F5CA3A53 7173120 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2014-09-06 15:30:52 151427E526E96471A45FF6CC2257FBA0 8652800 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2014-09-06 15:30:49 383DA813409316D69603C1D849834D24 1308160 ----a-w- C:\WINDOWS\Sysnative\gpsvc.dll 2014-09-06 15:30:48 F4C09C622BC55A80F775DF7D8AB9984F 6645248 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2014-09-06 15:30:48 9ED0E72966FB08F7E6DB15E5519AF8D1 1379064 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2014-09-06 15:30:48 7FB9EC74ADFB2353B7782C3EF833F5B7 765408 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll 2014-09-06 15:30:48 7E4A8D95B9DBC2CB588B91848A0AE731 2688000 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers.dll 2014-09-06 15:30:48 5071E71CC05346D88C5A08EB8B5A05E3 1584128 ----a-w- C:\WINDOWS\Sysnative\workfolderssvc.dll 2014-09-06 15:30:48 411DBFCD6ABAB75B6F7950677AEEFB7D 1403856 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2014-09-06 15:30:47 EAE6ED6C5076CF765EB731B92A237149 955904 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2014-09-06 15:30:47 CB79B5D367376E7B49E2D95BFFB0BEEB 364640 ----a-w- C:\WINDOWS\Sysnative\AUDIOKSE.dll 2014-09-06 15:30:47 98A184F6EC43B178901FCD5D4E2EC43B 1222656 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll 2014-09-06 15:30:47 6B7B2211C293218706D491204FCE8695 1126912 ----a-w- C:\WINDOWS\Sysnative\SearchFolder.dll 2014-09-06 15:30:47 46378ECCB4A29AA81BF296641C2501EF 323072 ----a-w- C:\WINDOWS\Sysnative\srvsvc.dll 2014-09-06 15:30:47 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\WINDOWS\Sysnative\services.exe 2014-09-06 15:30:46 EEC46BC17F28C528AB7FAC20AFDF69E3 462336 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll 2014-09-06 15:30:46 ED7C0A11E655CD8B89BE499F99D56098 486912 ----a-w- C:\WINDOWS\Sysnative\winspool.drv 2014-09-06 15:30:46 D872C6095AACC13AD897DB5E4D2B5D91 805376 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2014-09-06 15:30:46 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2014-09-06 15:30:46 AF3FF97AC2A73E70F8A8D11FB694175B 449536 ----a-w- C:\WINDOWS\Sysnative\defragsvc.dll 2014-09-06 15:30:46 A1CD5194ACC156A852136B303F087260 491744 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2014-09-06 15:30:46 79B134ECE836B406B212E28C24011538 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-09-06 15:30:46 6873D09262D32B95D6AC3026FCF8B424 1230336 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2014-09-06 15:30:46 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2014-09-06 15:30:46 626D19F1771E1AE72208AE9A8F3082F7 491520 ----a-w- C:\WINDOWS\Sysnative\GeofenceMonitorService.dll 2014-09-06 15:30:46 1517EE52367CABAA5615AC736DC96C7D 125496 ----a-w- C:\WINDOWS\Sysnative\dwmapi.dll 2014-09-06 15:30:45 95471DDCB3B3FF70015FD9AA13404F44 281600 ----a-w- C:\WINDOWS\Sysnative\resutils.dll 2014-09-06 15:30:45 87CF824E47489DD972FB4FB9FC4EDD0A 324888 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2014-09-06 15:30:45 1697E09CDA4DD8741B8276F48A8514DE 32600 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll 2014-09-06 15:30:45 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\WINDOWS\Sysnative\MDEServer.exe 2014-09-06 15:30:44 F4E351BB95D473CB55BB7C1A1FEB2798 467496 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2014-09-06 15:30:44 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\WINDOWS\Sysnative\VSSVC.exe 2014-09-06 15:30:44 BAF51BE2DEB387BD99CAC4E3B7850FEC 250368 ----a-w- C:\WINDOWS\Sysnative\rdpencom.dll 2014-09-06 15:30:44 AE2B9504C975B529D92D9E6603F6D33F 609448 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2014-09-06 15:30:44 99277BE68298288A0E27CF9E50FAD091 881616 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2014-09-06 15:30:44 9654DE19551093CD73874281E1573C94 135168 ----a-w- C:\WINDOWS\Sysnative\wscsvc.dll 2014-09-06 15:30:44 88ACBA95BB55B8226D52117462B76CD4 307304 ----a-w- C:\WINDOWS\Sysnative\wintrust.dll 2014-09-06 15:30:44 850EBB87584484DC16F917E7B6F4A304 718336 ----a-w- C:\WINDOWS\Sysnative\swprv.dll 2014-09-06 15:30:44 7B3255A0B833908E4A7ACEA6245D344E 426496 ----a-w- C:\WINDOWS\Sysnative\clusapi.dll 2014-09-06 15:30:44 7B12172CCE581F76C9335D7A47E0AD50 130144 ----a-w- C:\WINDOWS\Sysnative\gpapi.dll 2014-09-06 15:30:44 5EE916C3272A19B459717A8D2397B07A 55296 ----a-w- C:\WINDOWS\Sysnative\energyprov.dll 2014-09-06 15:30:44 4684C8E852065C0A7937C395C165A24F 1466856 ----a-w- C:\WINDOWS\Sysnative\propsys.dll 2014-09-06 15:30:44 315502228EB37F36E86EF75CB1DA1D44 201920 ----a-w- C:\WINDOWS\Sysnative\MSVideoDSP.dll 2014-09-06 15:30:44 2A4177EE5446877BD24DD72504105603 191488 ----a-w- C:\WINDOWS\Sysnative\rpchttp.dll 2014-09-06 15:30:44 01851563CB6FB986A4C0221C15AB6ADC 463256 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2014-09-06 15:30:43 F2895547FC275642A29692DC344A847F 296960 ----a-w- C:\WINDOWS\Sysnative\wlanapi.dll 2014-09-06 15:30:43 EF252510DB6C3511E30418BD2AC95A2D 1527296 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2014-09-06 15:30:43 E86E7792A2A0854D5560371BBDDA760B 1057280 ----a-w- C:\WINDOWS\Sysnative\rdvidcrl.dll 2014-09-06 15:30:43 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\WINDOWS\Sysnative\audiodg.exe 2014-09-06 15:30:43 B24960B79BDE7D5ED1EA638027F9E8F0 143872 ----a-w- C:\WINDOWS\Sysnative\BootMenuUX.dll 2014-09-06 15:30:43 977D67467950D8048E94651EE6081B99 370176 ----a-w- C:\WINDOWS\Sysnative\wlanmsm.dll 2014-09-06 15:30:43 8E1866A4E96F1159B6625627860A0454 2100736 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll 2014-09-06 15:30:43 88BCAEABEB2A46DB7B336B8432720AC8 443904 ----a-w- C:\WINDOWS\Sysnative\wlansec.dll 2014-09-06 15:30:43 886767FD022213F7885416134E9082E5 201216 ----a-w- C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll 2014-09-06 15:30:43 78D26F162E015FF644785C8836B617CA 1287168 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2014-09-06 15:30:43 69A374DE46C7BAAE30BFB1E40D69C5C6 761856 ----a-w- C:\WINDOWS\Sysnative\WorkfoldersControl.dll 2014-09-06 15:30:43 64B2A2630C964BF135A84A52FB2EEF9A 47616 ----a-w- C:\WINDOWS\Sysnative\tlscsp.dll 2014-09-06 15:30:43 414B81DE6CE46022ED43051C09EDB00B 467968 ----a-w- C:\WINDOWS\Sysnative\srcore.dll 2014-09-06 15:30:43 22B8B1F946ACFCB03832793A25216D8C 186880 ----a-w- C:\WINDOWS\Sysnative\WorkFoldersShell.dll 2014-09-06 15:30:43 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\WINDOWS\Sysnative\mfpmp.exe 2014-09-06 15:30:42 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\WINDOWS\Sysnative\rstrui.exe 2014-09-06 15:30:42 B6BD22DDEDDD8665080D664749ACFEF5 64512 ----a-w- C:\WINDOWS\Sysnative\tsgqec.dll 2014-09-06 15:30:42 9465F8E72887AC6CCDD97F738A5AB6B6 70656 ----a-w- C:\WINDOWS\Sysnative\srclient.dll 2014-09-06 15:30:42 82FE5F302FD7C7EF0E41465BB873EFC7 11264 ----a-w- C:\WINDOWS\Sysnative\wlanhlp.dll 2014-09-06 15:30:40 28E0C3AAA68579ABD9A27B92DFD5F119 2790912 ----a-w- C:\WINDOWS\Sysnative\msi.dll 2014-09-06 15:30:39 68F887EF33C09CDA957A51ECE871D642 2642944 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2014-09-06 15:30:39 10D8859CF01C1284603582ABD9B0482C 114520 ----a-w- C:\WINDOWS\Sysnative\consent.exe 2014-09-06 15:30:39 08914C8989AB93F5EC3A452D014E2C8D 356352 ----a-w- C:\WINDOWS\Sysnative\msihnd.dll 2014-09-06 15:30:37 78FC2B2BA0E5E1C9249E3157D4EE9BC7 586240 ----a-w- C:\WINDOWS\Sysnative\qedit.dll 2014-09-06 15:30:36 591B2C8C5C6B944AF538F182B7AF00A6 385536 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2014-09-06 15:30:33 52E94AE3C9FF1E18A1EA125C4FFB0EEC 2834944 ----a-w- C:\WINDOWS\Sysnative\wpccpl.dll 2014-09-06 15:30:32 00AD15C6BA3C337CB68A476C0AD05338 918528 ----a-w- C:\WINDOWS\Sysnative\MrmCoreR.dll 2014-09-06 15:30:31 F381B380B7B2704EA4C0F8D8C49C1C50 623616 ----a-w- C:\WINDOWS\Sysnative\MDMAgent.exe 2014-09-06 15:28:40 E66AC3CA92FC471BFE69F61549193A64 3463680 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2014-09-06 15:28:39 CCC6D7250D01DA7E5499B0722CF6CAE3 1054208 ----a-w- C:\WINDOWS\Sysnative\twinui.appcore.dll 2014-09-06 15:28:39 C2F515FC027867E5EAF12AC9815B3ABD 923136 ----a-w- C:\WINDOWS\Sysnative\WSShared.dll 2014-09-06 15:28:39 53BEF9A65EA686018B9EDF9665F5EBDE 827392 ----a-w- C:\WINDOWS\Sysnative\wuapi.dll 2014-09-06 15:28:38 9FA466A42109F408AC6C2848E851C38A 555736 ----a-w- C:\WINDOWS\Sysnative\twinapi.appcore.dll 2014-09-06 15:28:38 4A12C727502A07C4B89B663B942DF289 54776 ----a-w- C:\WINDOWS\Sysnative\wuauclt.exe 2014-09-06 15:28:38 2C28079658CCA1E8C3810E185CCC2234 93696 ----a-w- C:\WINDOWS\Sysnative\wudriver.dll 2014-09-06 02:51:16 FFFCC3C3ED6886A95D3C0E1B49C652BA 139600 ----a-w- C:\WINDOWS\Sysnative\systemsf.ebd 2014-09-06 02:51:09 95B6670E6933E1DEE19686C55BE709A0 3394384 ----a-w- C:\WINDOWS\Sysnative\WSService.dll 2014-09-06 02:51:05 977BDBE33ADE22EE88EE9E7C54511300 11742720 ----a-w- C:\WINDOWS\Sysnative\glcndFilter.dll 2014-09-06 02:51:02 B0E0F3BB71615DC726AA5A610019A197 630784 ----a-w- C:\WINDOWS\Sysnative\OobeFldr.dll 2014-09-06 02:51:00 FE7F81BADAAC7A7A17BA751E1CE471C9 13933568 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2014-09-06 02:50:59 1060AE975A2E63E5E5D2F0ABDC5D557D 1435304 ----a-w- C:\WINDOWS\Sysnative\sppobjs.dll 2014-09-06 02:50:58 EFF09C9865290B159F79980113358299 3494912 ----a-w- C:\WINDOWS\Sysnative\tquery.dll 2014-09-06 02:50:57 3DA26652B12E9AB43FD04976AC6DFD33 1192448 ----a-w- C:\WINDOWS\Sysnative\sysmain.dll 2014-09-06 02:50:57 19AF77545FD61995E1062277320A92AF 2368512 ----a-w- C:\WINDOWS\Sysnative\mssrch.dll 2014-09-06 02:50:54 F0D53BA526018350E227F6E3E80C3966 1445616 ----a-w- C:\WINDOWS\Sysnative\webservices.dll 2014-09-06 02:50:54 6AFE9D20019BA4C76188A458573F4461 1927600 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2014-09-06 02:50:54 06BA7518958966587474CCDDE4F8A42A 2574240 ----a-w- C:\WINDOWS\Sysnative\WMVDECOD.DLL 2014-09-06 02:50:53 837F8649A2FE7880899711FAA25A2AE3 1728000 ----a-w- C:\WINDOWS\Sysnative\dui70.dll 2014-09-06 02:50:53 5F56C0DE776C7AE43AF749845BFAA1EF 1576960 ----a-w- C:\WINDOWS\Sysnative\wlidsvc.dll 2014-09-06 02:50:52 7EAEE7DEDDA6C3123B3700A1A48CFA3A 628224 ----a-w- C:\WINDOWS\Sysnative\msTextPrediction.dll 2014-09-06 02:50:51 865E3C79BB0DB64D4AB2F6BA8FF5BD2C 1132032 ----a-w- C:\WINDOWS\Sysnative\Windows.Globalization.dll 2014-09-06 02:50:51 4E730667CA97D127D9E4AD05150A18C5 1215832 ----a-w- C:\WINDOWS\Sysnative\mfnetsrc.dll 2014-09-06 02:50:50 EABE2125857B68D7B80EE5A2E1FB13EA 800552 ----a-w- C:\WINDOWS\Sysnative\mfnetcore.dll 2014-09-06 02:50:48 F79C112FCC0FEF9EBE07F903CEA05F9F 647168 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2014-09-06 02:50:48 E7F88B66FD5C0DA438371C998273FD0D 1929608 ----a-w- C:\WINDOWS\Sysnative\setupapi.dll 2014-09-06 02:50:48 CAFB5D7373DDAE675A9A091A21642041 390656 ----a-w- C:\WINDOWS\Sysnative\DfpCommon.dll 2014-09-06 02:50:48 AB7892A876ED44FC9C1D80FD9F3046E0 584704 ----a-w- C:\WINDOWS\Sysnative\StructuredQuery.dll 2014-09-06 02:50:48 81979817943D830BF24571B7C1B28A1A 753664 ----a-w- C:\WINDOWS\Sysnative\rpcss.dll 2014-09-06 02:50:48 657D52EEB153FDE9C8AC94997E223228 27648 ----a-w- C:\WINDOWS\Sysnative\WofTasks.dll 2014-09-06 02:50:48 10B3D632CA42A042F9E38CC30830A800 2825216 ----a-w- C:\WINDOWS\Sysnative\ExplorerFrame.dll 2014-09-06 02:50:47 44BFD45AD17507C7129F90656729E569 1621504 ----a-w- C:\WINDOWS\Sysnative\RacEngn.dll 2014-09-06 02:50:47 11C2A9D3D34632FC17EF8B3411AA972B 1640960 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Immersive.dll 2014-09-06 02:50:46 CBE142AAF990CDA24CDEFF8FF3EBB201 645104 ----a-w- C:\WINDOWS\Sysnative\SHCore.dll 2014-09-06 02:50:46 B83C0950E4F89CE586C2D38BD50218C6 1653352 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecs.dll 2014-09-06 02:50:46 7D7C2B72B81BABF192F1033460A3C434 1290688 ----a-w- C:\WINDOWS\Sysnative\msctf.dll 2014-09-06 02:50:45 722B1ED8A1C3115E0B215215FB56738D 777728 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2014-09-06 02:50:45 22C3168D2AAA6C0546FE215CD079DBBB 526304 ----a-w- C:\WINDOWS\Sysnative\wer.dll 2014-09-06 02:50:44 59245D8023A7C5D192C2ED7A1BD80F36 825344 ----a-w- C:\WINDOWS\Sysnative\samsrv.dll 2014-09-06 02:50:44 561A97E82FA0645CB786C19B8D442C31 1163264 ----a-w- C:\WINDOWS\Sysnative\uxtheme.dll 2014-09-06 02:50:43 DBC61FE275917E75AE077A04E701C474 845824 ----a-w- C:\WINDOWS\Sysnative\SearchIndexer.exe 2014-09-06 02:50:43 CEB069C882A0DFEDBE5C1590D44B1052 1519520 ----a-w- C:\WINDOWS\Sysnative\user32.dll 2014-09-06 02:50:43 BA24011607AD814778CA343291D418D6 2395136 ----a-w- C:\WINDOWS\Sysnative\storagewmi.dll 2014-09-06 02:50:42 CEAE26D9492F7D481916FF44C120D339 1206000 ----a-w- C:\WINDOWS\Sysnative\Taskmgr.exe 2014-09-06 02:50:42 9A1190B2934CFAB102D1B62F74971A0B 721408 ----a-w- C:\WINDOWS\Sysnative\twinapi.dll 2014-09-06 02:50:42 1169646AAD0239C23CCF9C46BA00B2D6 391008 ----a-w- C:\WINDOWS\Sysnative\MMDevAPI.dll 2014-09-06 02:50:41 8F8356461CE4BF9CFBC8C31A9B118237 427520 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2014-09-06 02:50:41 4A87A56606776CC9E1520D8A2741E9AE 1000424 ----a-w- C:\WINDOWS\Sysnative\WinTypes.dll 2014-09-06 02:50:40 DCF2510E0745720E543E84F5E921FCC0 262335 ----a-w- C:\WINDOWS\Sysnative\dfpinc.dat 2014-09-06 02:50:40 D33C175C081B6770C32C6F4A561E99E4 635904 ----a-w- C:\WINDOWS\Sysnative\WWAHost.exe 2014-09-06 02:50:40 CE10041A39A0E6F598BFA50A5AB64CF3 569856 ----a-w- C:\WINDOWS\Sysnative\wpncore.dll 2014-09-06 02:50:40 8EBB271E4588D835784A3FF7E80076A8 710656 ----a-w- C:\WINDOWS\Sysnative\lsm.dll 2014-09-06 02:50:40 561F1AB95F4F01C691BDABA5FD5C67FC 669896 ----a-w- C:\WINDOWS\Sysnative\advapi32.dll 2014-09-06 02:50:40 1062C1D05E95306D878FFFE0A23B84C0 1107456 ----a-w- C:\WINDOWS\Sysnative\perftrack.dll 2014-09-06 02:50:39 B087305F29D8CE043DD31AD69AFDF1A9 752640 ----a-w- C:\WINDOWS\Sysnative\mssvp.dll 2014-09-06 02:50:39 A07CFC4B593D15B6BF06813C3B5B33BF 366080 ----a-w- C:\WINDOWS\Sysnative\wcmsvc.dll 2014-09-06 02:50:39 8541EE27ADD14F84844DB43E9C7BBE3E 467456 ----a-w- C:\WINDOWS\Sysnative\energy.dll 2014-09-06 02:50:39 1524579B894C9B99F42A695B86881254 545792 ----a-w- C:\WINDOWS\Sysnative\apphelp.dll 2014-09-06 02:50:39 021C7541C55625D083753DA241169A97 1428480 ----a-w- C:\WINDOWS\Sysnative\RecoveryDrive.exe 2014-09-06 02:50:38 B61462AED373BD130EA031767F83E0D2 1659056 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2014-09-06 02:50:38 65FBC4306DA606058136DF5D552A4872 968704 ----a-w- C:\WINDOWS\Sysnative\tdh.dll 2014-09-06 02:50:37 A4A3542D65C180AFDC41B8A824C6CD40 653312 ----a-w- C:\WINDOWS\Sysnative\DismApi.dll 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2014-09-06 02:50:36 D4A699D489758A270A5099DE1B4EE2FB 1487520 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2014-09-06 02:50:36 CCCDE17347904396A0102A9EE3669555 1224192 ----a-w- C:\WINDOWS\Sysnative\werconcpl.dll 2014-09-06 02:50:36 CBFC4C292C125A86DA4D2BC831CD4634 388408 ----a-w- C:\WINDOWS\Sysnative\bcryptprimitives.dll 2014-09-06 02:50:36 858E46BB06924EB01C3DF8AEF2DC1CDF 441344 ----a-w- C:\WINDOWS\Sysnative\mssph.dll 2014-09-06 02:50:36 090E4DE444439DF828CB726D60EA9CFD 878592 ----a-w- C:\WINDOWS\Sysnative\ActionCenter.dll 2014-09-06 02:50:35 8F464EE568C36C174DC403EFC8F85A21 321536 ----a-w- C:\WINDOWS\Sysnative\stobject.dll 2014-09-06 02:50:34 E2A34E0E6DC58712BC527338C7E0A8E4 576512 ----a-w- C:\WINDOWS\Sysnative\SettingSync.dll 2014-09-06 02:50:34 DDE972537280676F685DEC67CE28932D 320000 ----a-w- C:\WINDOWS\Sysnative\SearchProtocolHost.exe 2014-09-06 02:50:34 BCE2EB8D8437FA7100F51BD8D9120F3E 18432 ----a-w- C:\WINDOWS\Sysnative\WofUtil.dll 2014-09-06 02:50:34 68966CD60BED0180B01387B7362779C7 666624 ----a-w- C:\WINDOWS\Sysnative\wimgapi.dll 2014-09-06 02:50:34 604064FB0094B0B7433C5EB8BF91512A 1791752 ----a-w- C:\WINDOWS\Sysnative\WMALFXGFXDSP.dll 2014-09-06 02:50:34 39C288E39B7B02614F997FB2077575ED 244848 ----a-w- C:\WINDOWS\Sysnative\sppwinob.dll 2014-09-06 02:50:33 D8F7C3E57F2C09C6589AECD1820E0CA9 31232 ----a-w- C:\WINDOWS\Sysnative\dfp.exe 2014-09-06 02:50:33 B1C2856F8199A9386C22E8325BC34D87 156672 ----a-w- C:\WINDOWS\Sysnative\slc.dll 2014-09-06 02:50:33 A6306E2A24C11555D5A4E572291C551D 716288 ----a-w- C:\WINDOWS\Sysnative\ntshrui.dll 2014-09-06 02:50:33 725E3C8A4B420BD26FD002485FA463A9 690688 ----a-w- C:\WINDOWS\Sysnative\MrmIndexer.dll 2014-09-06 02:50:33 5762739795A3CA941E4C07E601073BAA 761792 ----a-w- C:\WINDOWS\Sysnative\iuilp.dll 2014-09-06 02:50:33 390793BD9F3DEF111DB2B21559B6293A 584192 ----a-w- C:\WINDOWS\Sysnative\recimg.exe 2014-09-06 02:50:33 375AEB31780A494920ABCBEA2E631A23 747008 ----a-w- C:\WINDOWS\Sysnative\wlidcli.dll 2014-09-06 02:50:33 152152B5EE3512ED85C526967C350355 159744 ----a-w- C:\WINDOWS\Sysnative\thumbcache.dll 2014-09-06 02:50:33 0F17D49BE041B7EFF1D33BF1414E7AC6 208896 ----a-w- C:\WINDOWS\Sysnative\aelupsvc.dll 2014-09-06 02:50:32 F2559A492AF8D653D1F47ADABA4C3E97 269824 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2014-09-06 02:50:32 CFDEF7C849D5AFDB689473073B0EE82D 606208 ----a-w- C:\WINDOWS\Sysnative\comdlg32.dll 2014-09-06 02:50:32 CB12C47647D8BDAFAA94C0856B14128B 530944 ----a-w- C:\WINDOWS\Sysnative\AppReadiness.dll 2014-09-06 02:50:32 C88774D3BC1A61C57C5B02AE407FD1E0 546304 ----a-w- C:\WINDOWS\Sysnative\AppxPackaging.dll 2014-09-06 02:50:32 91F8F05881459330D83259A070D3642E 275456 ----a-w- C:\WINDOWS\Sysnative\Dism.exe 2014-09-06 02:50:32 8FE82BF3C091D0B1387A0081DAF4D234 912384 ----a-w- C:\WINDOWS\Sysnative\nettrace.dll 2014-09-06 02:50:32 7FF1EBF5A376F5B17421E6868F353627 609792 ----a-w- C:\WINDOWS\Sysnative\pnidui.dll 2014-09-06 02:50:31 E804E9734A493A01316F209BA99F1F48 136192 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll 2014-09-06 02:50:31 8C569B429D897647A26A83D9901D3225 152064 ----a-w- C:\WINDOWS\Sysnative\dwmredir.dll 2014-09-06 02:50:31 6D79CDD66FE672937F251ED67C7FF11E 1757184 ----a-w- C:\WINDOWS\Sysnative\WMPDMC.exe 2014-09-06 02:50:30 F6701835ECF0E4C9E69D804E78D8CE7B 1008640 ----a-w- C:\WINDOWS\Sysnative\WlanMM.dll 2014-09-06 02:50:30 8CF4AE81A247E1F6103FD1635C8816AF 232448 ----a-w- C:\WINDOWS\Sysnative\InputSwitch.dll 2014-09-06 02:50:29 F26EF8EB298CD2BE8A2F6B9BACA3EEF3 505344 ----a-w- C:\WINDOWS\Sysnative\VAN.dll 2014-09-06 02:50:29 ED3387CE1F9F848A3F3BAA3FCE86E315 388096 ----a-w- C:\WINDOWS\Sysnative\ninput.dll 2014-09-06 02:50:29 CC9503365C5AC3D6A8E152194CE62669 372360 ----a-w- C:\WINDOWS\Sysnative\msvproc.dll 2014-09-06 02:50:29 1A74CE3B49A227D0189712D9886D7772 275456 ----a-w- C:\WINDOWS\Sysnative\authz.dll 2014-09-06 02:50:28 DE6533132FC2BD8A2ED5D370D41CBED3 2288640 ----a-w- C:\WINDOWS\Sysnative\SyncCenter.dll 2014-09-06 02:50:28 82BCCF5FBE47AC9E8CBA2020994DFB3F 107008 ----a-w- C:\WINDOWS\Sysnative\wersvc.dll 2014-09-06 02:50:28 7A726EAF0D7592217936200997C43965 615936 ----a-w- C:\WINDOWS\Sysnative\rdbui.dll 2014-09-06 02:50:28 629152E8745B63E63978FD1848ABC7AE 286720 ----a-w- C:\WINDOWS\Sysnative\wlidcredprov.dll 2014-09-06 02:50:28 59D079196F554E01CA59F52EFA117CB4 2862592 ----a-w- C:\WINDOWS\Sysnative\themeui.dll 2014-09-06 02:50:28 3CA1EE5BE6C9D92DD672FC5A09E17AE2 356864 ----a-w- C:\WINDOWS\Sysnative\conhost.exe 2014-09-06 02:50:28 183360914EFC9D25E2A13D335D5E9EB8 469504 ----a-w- C:\WINDOWS\Sysnative\taskeng.exe 2014-09-06 02:50:27 61692DB39AD3DF2F29392D68EAA7BB93 1543680 ----a-w- C:\WINDOWS\Sysnative\wbengine.exe 2014-09-06 02:50:27 4BA57ED44973409C15406EE0CAD58778 289752 ----a-w- C:\WINDOWS\Sysnative\sqmapi.dll 2014-09-06 02:50:27 2203F8DA390024C0EEF00DB8472C534D 105864 ----a-w- C:\WINDOWS\Sysnative\ncryptsslp.dll 2014-09-06 02:50:27 12A7999B64CB4F89B422B759369E1FCE 290816 ----a-w- C:\WINDOWS\Sysnative\mdmregistration.dll 2014-09-06 02:50:27 01AE2AC5A32158EC6D568B5C5C1EB7B9 3596800 ----a-w- C:\WINDOWS\Sysnative\rdpcore.dll 2014-09-06 02:50:26 FFF2BF211D8E2EE4C72EA94C37CAD9D2 755200 ----a-w- C:\WINDOWS\Sysnative\msctfuimanager.dll 2014-09-06 02:50:26 F56ACDD6374CAFC64E8339D387CB70E4 152848 ----a-w- C:\WINDOWS\Sysnative\bcrypt.dll 2014-09-06 02:50:26 C6ED6A63B57560EB5C99F88F93E7EDBF 461176 ----a-w- C:\WINDOWS\Sysnative\WerFault.exe 2014-09-06 02:50:26 C1D7228D5743995256A17D8225FDC704 123904 ----a-w- C:\WINDOWS\Sysnative\sppc.dll 2014-09-06 02:50:26 9FB865E91832AC1CFF43A00351821C39 210736 ----a-w- C:\WINDOWS\Sysnative\SndVol.exe 2014-09-06 02:50:26 812F9BECC3D67371B4B6A41E09E1AEFE 559104 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Connectivity.dll 2014-09-06 02:50:26 48EBD5B3241D2324A92BA8EB993B2076 745328 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2014-09-06 02:50:25 1470D84723018488F2A51138FB94BA9A 196608 ----a-w- C:\WINDOWS\Sysnative\PkgMgr.exe 2014-09-06 02:50:23 DA7855E0898381621FC4114684DA0FFE 483840 ----a-w- C:\WINDOWS\Sysnative\WLanConn.dll 2014-09-06 02:50:23 CCF57046826C605CC8782D85225A77AF 164352 ----a-w- C:\WINDOWS\Sysnative\wscinterop.dll 2014-09-06 02:50:23 B43A08ADE0AB5546F9129B0D10C1C6D9 1144320 ----a-w- C:\WINDOWS\Sysnative\wwanmm.dll 2014-09-06 02:50:23 46D718075C456CF241BEBFEC9D5F13BD 531128 ----a-w- C:\WINDOWS\Sysnative\ci.dll 2014-09-06 02:50:23 30EC406493F585A43BC3F6E813E266A7 196096 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll 2014-09-06 02:50:23 2ED38EE952E6E02678237FE22C6EE581 512000 ----a-w- C:\WINDOWS\Sysnative\wimserv.exe 2014-09-06 02:50:22 FE9C4A3BDD3F5EA5B93D88CCA73DBE8B 245248 ----a-w- C:\WINDOWS\Sysnative\microsoft-windows-system-events.dll 2014-09-06 02:50:22 FCD3596AC11042A543CF54294A54B579 2706432 ----a-w- C:\WINDOWS\Sysnative\gameux.dll 2014-09-06 02:50:22 F9D54CA2C64D660292E87EE66BD49CD5 693248 ----a-w- C:\WINDOWS\Sysnative\fhcfg.dll 2014-09-06 02:50:22 79F0B9A95376C8F0CD8CFD67FFBA94D5 797696 ----a-w- C:\WINDOWS\Sysnative\PurchaseWindowsLicense.dll 2014-09-06 02:50:22 615BC7FA7AA1F97C4FD14F38B6C8FF56 722432 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgradeui.exe 2014-09-06 02:50:22 2E3340A90140E1F0965DAD96C5B28A41 109568 ----a-w- C:\WINDOWS\Sysnative\dwm.exe 2014-09-06 02:50:21 81B25C0252AB25C6ABDCE596A8112802 935424 ----a-w- C:\WINDOWS\Sysnative\rasgcw.dll 2014-09-06 02:50:21 3849F7FD5BDE8EFE8EBB673CA8DD36F0 273408 ----a-w- C:\WINDOWS\Sysnative\dmdskmgr.dll 2014-09-06 02:50:21 3711306C8D1A859351D735D93090C1C0 83120 ----a-w- C:\WINDOWS\Sysnative\taskhost.exe 2014-09-06 02:50:21 00DD4D2ACC2E72155A8AAA82018BEC0D 193024 ----a-w- C:\WINDOWS\Sysnative\winsrv.dll 2014-09-06 02:50:20 D3EC1112BE0E06ED94308A7B97C929EF 350720 ----a-w- C:\WINDOWS\Sysnative\srchadmin.dll 2014-09-06 02:50:20 9371F0B982A5ECCABE5DB9266C6D447A 170952 ----a-w- C:\WINDOWS\Sysnative\wscapi.dll 2014-09-06 02:50:20 88060469AFD9DE814CAAF497922D3910 139464 ----a-w- C:\WINDOWS\Sysnative\wermgr.exe 2014-09-06 02:50:20 19440A7EA6C2FF961C5B8188E532F82F 407536 ----a-w- C:\WINDOWS\Sysnative\Faultrep.dll 2014-09-06 02:50:19 F734881DD480B0AC9462A31ADB2DB002 1227776 ----a-w- C:\WINDOWS\Sysnative\usercpl.dll 2014-09-06 02:50:18 D8564418BAC13776E43DB5F6B4FA775E 142576 ----a-w- C:\WINDOWS\Sysnative\smss.exe 2014-09-06 02:50:18 C4D32A2A0032C65587993E637F2B78F6 108032 ----a-w- C:\WINDOWS\Sysnative\AltTab.dll 2014-09-06 02:50:18 AB6ADF3E3B774A1CF3FA83DB1A4D45DF 226304 ----a-w- C:\WINDOWS\Sysnative\SndVolSSO.dll 2014-09-06 02:50:18 9CF60747CA286C65255BC7E1546C87EB 188464 ----a-w- C:\WINDOWS\Sysnative\systemreset.exe 2014-09-06 02:50:18 766B12FB02BD1E5D0BBA9488E091EE6D 316416 ----a-w- C:\WINDOWS\Sysnative\BioCredProv.dll 2014-09-06 02:50:18 73F7354D8E4EA674FB93D9AD67EDBB02 463872 ----a-w- C:\WINDOWS\Sysnative\RASMM.dll 2014-09-06 02:50:18 73CCAD0503D2AE86E9AAC08E99B7761B 432640 ----a-w- C:\WINDOWS\Sysnative\wwanconn.dll 2014-09-06 02:50:18 5D84CD163C267D056D4709B42FAE3D88 359936 ----a-w- C:\WINDOWS\Sysnative\vmrdvcore.dll 2014-09-06 02:50:18 4983684E2DDB7B617AA8EA94E037360F 209160 ----a-w- C:\WINDOWS\Sysnative\imm32.dll 2014-09-06 02:50:18 1C3A8E71F3648A2A82F97B0316F9B167 376320 ----a-w- C:\WINDOWS\Sysnative\wsqmcons.exe 2014-09-06 02:50:17 FF48213516573E515185F3E03ED9DAFC 194560 ----a-w- C:\WINDOWS\Sysnative\SearchFilterHost.exe 2014-09-06 02:50:17 FCEBE292E567C313E81CA112DD55B56A 236544 ----a-w- C:\WINDOWS\Sysnative\vdsbas.dll 2014-09-06 02:50:17 EE587980B94E521D812D755C21BC7E87 135168 ----a-w- C:\WINDOWS\Sysnative\fsutil.exe 2014-09-06 02:50:17 C22EDA808C009EA235356B983D1A031E 1185280 ----a-w- C:\WINDOWS\Sysnative\printui.dll 2014-09-06 02:50:17 B892C2FE3190255AA3E1082ACF92C0CF 397824 ----a-w- C:\WINDOWS\Sysnative\sharemediacpl.dll 2014-09-06 02:50:17 B7B3D612C5D6749814FA0CDE8C8E4202 510976 ----a-w- C:\WINDOWS\Sysnative\timedate.cpl 2014-09-06 02:50:17 8F387C2C99EE09C6E2AC316205F86A17 399872 ----a-w- C:\WINDOWS\Sysnative\das.dll 2014-09-06 02:50:17 7E3B7FB5C09804CEEEBA232940A484B4 322048 ----a-w- C:\WINDOWS\Sysnative\fhcpl.dll 2014-09-06 02:50:17 6C7D8104433471A5252624DF470C109A 43408 ----a-w- C:\WINDOWS\Sysnative\CloudNotifications.exe 2014-09-06 02:50:17 498146AA5B4E08AE00B13C1BC2636B6F 135168 ----a-w- C:\WINDOWS\Sysnative\netid.dll 2014-09-06 02:50:17 31652454F3A5150F401E1DE4D857698B 208896 ----a-w- C:\WINDOWS\Sysnative\PlayToManager.dll 2014-09-06 02:50:17 1D8303D3ED5F8C403984A8820E5E599A 80048 ----a-w- C:\WINDOWS\Sysnative\taskhostex.exe 2014-09-06 02:50:16 93664065662467289E77F0982FA61D37 615936 ----a-w- C:\WINDOWS\Sysnative\WSDApi.dll 2014-09-06 02:50:16 8897583230ADFF2A002F00B45D82310A 660480 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll 2014-09-06 02:50:16 833D2DE53608A1C5B9DD71C867718448 275312 ----a-w- C:\WINDOWS\Sysnative\powrprof.dll 2014-09-06 02:50:16 605E304B8A09FA8A71685F9B674A134F 897024 ----a-w- C:\WINDOWS\Sysnative\sdclt.exe 2014-09-06 02:50:16 5B6EAF5BBB526E2B042016A1F061AC4D 132608 ----a-w- C:\WINDOWS\Sysnative\mssprxy.dll 2014-09-06 02:50:16 03044D5F8F2537FEDA81A29B1A8DD8CC 619520 ----a-w- C:\WINDOWS\Sysnative\UserLanguagesCpl.dll 2014-09-06 02:50:15 E3203EC9AAE6A5675A7C051A49002AD1 331264 ----a-w- C:\WINDOWS\Sysnative\newdev.dll 2014-09-06 02:50:15 9920143F48EC5B2A823E19B8FAABA8C4 101216 ----a-w- C:\WINDOWS\Sysnative\RestoreOptIn.exe 2014-09-06 02:50:15 8AA7BFEE4586865C86C145DF3EEBFA5E 444416 ----a-w- C:\WINDOWS\Sysnative\spwizeng.dll 2014-09-06 02:50:15 7E5DC7317E51FA61E1A7C4A93162D3AE 249856 ----a-w- C:\WINDOWS\Sysnative\rascustom.dll 2014-09-06 02:50:15 6BBAE8197E8CC8D0504703D05500B2C1 432640 ----a-w- C:\WINDOWS\Sysnative\zipfldr.dll 2014-09-06 02:50:15 6B3F9F4A507F645DE6F504E998EDA2EA 173056 ----a-w- C:\WINDOWS\Sysnative\dmvdsitf.dll 2014-09-06 02:50:14 E3EF58D4123B5AA29C8E19825AF84A5E 1283584 ----a-w- C:\WINDOWS\Sysnative\vds.exe 2014-09-06 02:50:14 D04D884242F02CC02E9264A4DBF532DB 413184 ----a-w- C:\WINDOWS\Sysnative\wow64win.dll 2014-09-06 02:50:14 CDF5DDB3F917546C3955C4F6AE0D0446 32544 ----a-w- C:\WINDOWS\Sysnative\UserAccountBroker.exe 2014-09-06 02:50:14 8D6F535461F6CFF75A8ADDF83024C904 109568 ----a-w- C:\WINDOWS\Sysnative\appinfo.dll 2014-09-06 02:50:14 5CF3AEA2734E55D9A7E0F9486F050422 155648 ----a-w- C:\WINDOWS\Sysnative\MicrosoftAccountTokenProvider.dll 2014-09-06 02:50:14 2C4A4FD0E89C56673E31B1802097A288 123904 ----a-w- C:\WINDOWS\Sysnative\LockScreenContent.dll 2014-09-06 02:50:14 23D1FCFDDD105C4D3146FA025C8CA2F6 336384 ----a-w- C:\WINDOWS\Sysnative\MbaeApiPublic.dll 2014-09-06 02:50:14 1EA5BDB37498D5E317920822648A2B49 128512 ----a-w- C:\WINDOWS\Sysnative\microsoft-windows-kernel-power-events.dll 2014-09-06 02:50:13 E084D7E544D71D23E83F23CD6B0E5E46 245248 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Vpn.dll 2014-09-06 02:50:13 8188CB2B8EB82BF56D10E40994860B6B 14848 ----a-w- C:\WINDOWS\Sysnative\clrhost.dll 2014-09-06 02:50:13 62EA9ABDC92E731DD031035639B80938 233472 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 02:50:13 4A42BFC345A0CED7B6E0F596283BA118 52736 ----a-w- C:\WINDOWS\Sysnative\AppxSysprep.dll 2014-09-06 02:50:13 3F309BCE152FDA40C758B09771310C2D 141824 ----a-w- C:\WINDOWS\Sysnative\dot3mm.dll 2014-09-06 02:50:13 14CF2EAFCFA0BDC736BFDA130BD95EB2 94560 ----a-w- C:\WINDOWS\Sysnative\bcd.dll 2014-09-06 02:50:12 F85CF4F2AF6CB0CEF87DEF945470C870 3312128 ----a-w- C:\WINDOWS\Sysnative\bootux.dll 2014-09-06 02:50:12 6B0FDFE751F24F1EFCA68E574227180E 112640 ----a-w- C:\WINDOWS\Sysnative\DAMM.dll 2014-09-06 02:50:12 254D664FE36D7F68C870BAF372E360ED 131168 ----a-w- C:\WINDOWS\Sysnative\easinvoker.exe 2014-09-06 02:50:11 DC679AA88F833B86B226F0BA05F229C3 216576 ----a-w- C:\WINDOWS\Sysnative\cleanmgr.exe 2014-09-06 02:50:11 B8C9BC3542EDA9DB99B95543555877BC 110592 ----a-w- C:\WINDOWS\Sysnative\samlib.dll 2014-09-06 02:50:11 77BA0D87906CC2D86588D89A75372EC7 104448 ----a-w- C:\WINDOWS\Sysnative\WiFiDisplay.dll 2014-09-06 02:50:10 5C7B86EE33505E36026AFAAB62DA6364 534528 ----a-w- C:\WINDOWS\Sysnative\rasmans.dll 2014-09-06 02:50:10 3046F6548AFAEEC4671A987685919D33 162176 ----a-w- C:\WINDOWS\Sysnative\AuthHost.exe 2014-09-06 02:50:10 1A4DA1D6287B99033D144B436C23B656 405504 ----a-w- C:\WINDOWS\Sysnative\provsvc.dll 2014-09-06 02:50:09 6FD7B481607E6D8361D10FBAC11FB6DA 203264 ----a-w- C:\WINDOWS\Sysnative\netiohlp.dll 2014-09-06 02:50:06 F299BD172B73C6D0E50E6CB6ADC9020C 184320 ----a-w- C:\WINDOWS\Sysnative\deviceaccess.dll 2014-09-06 02:50:06 EC3BCAACA76E8987F1F0F2DE3D64ED98 197120 ----a-w- C:\WINDOWS\Sysnative\scrrun.dll 2014-09-06 02:50:06 87C750D1E9CC44D0EC47C6B799F41CEB 36200 ----a-w- C:\WINDOWS\Sysnative\WerFaultSecure.exe 2014-09-06 02:50:06 3EF272C510EF337772BF994875FDD4E3 182272 ----a-w- C:\WINDOWS\Sysnative\korwbrkr.dll 2014-09-06 02:50:05 8C726499602B715ACABFBD96FDFF8362 177664 ----a-w- C:\WINDOWS\Sysnative\easwrt.dll 2014-09-06 02:50:04 D7CE0CB807892C06EB03FC5B28E04D53 167424 ----a-w- C:\WINDOWS\Sysnative\netplwiz.dll 2014-09-06 02:50:04 89421C10560D60B563D62E3D647601EF 128512 ----a-w- C:\WINDOWS\Sysnative\CloudStorageWizard.exe 2014-09-06 02:50:04 883B5FE0605EF11BCF90B0117AEBBA07 102912 ----a-w- C:\WINDOWS\Sysnative\wcmcsp.dll 2014-09-06 02:50:04 7FFA7836A7268ED8470A02F08B4A84E3 214016 ----a-w- C:\WINDOWS\Sysnative\scrobj.dll 2014-09-06 02:50:04 434CB271E2A815CCBD437C7AD1BB53C8 53248 ----a-w- C:\WINDOWS\Sysnative\acppage.dll 2014-09-06 02:50:04 23065815C35146F455985878E0FEA1A8 124416 ----a-w- C:\WINDOWS\Sysnative\AuthBroker.dll 2014-09-06 02:50:04 12E734CC38BF7B48E0D68139C0484D8D 38680 ----a-w- C:\WINDOWS\Sysnative\LockScreenContentServer.exe 2014-09-06 02:50:03 A540959E7BF78079C1F1D197BF7E22AE 15872 ----a-w- C:\WINDOWS\Sysnative\slpts.dll 2014-09-06 02:50:03 A340B32445BB448D6C4D96194488F82E 160256 ----a-w- C:\WINDOWS\Sysnative\DWWIN.EXE 2014-09-06 02:50:03 9AB9CD13EA34BDD31EE03DCADD3FCEBA 902144 ----a-w- C:\WINDOWS\Sysnative\autoconv.exe 2014-09-06 02:50:03 7FB2433AD4F18556CAB45092AF621FA2 198656 ----a-w- C:\WINDOWS\Sysnative\wpnprv.dll 2014-09-06 02:50:03 76C3A3F212D8ABE96B0B4BDA2A67F66F 74752 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 02:50:03 61E9834E1CA04DB74F0053BD8AE67BFC 36352 ----a-w- C:\WINDOWS\Sysnative\winbrand.dll 2014-09-06 02:50:03 49A5228F730EEA60A01BB34D1A427239 283136 ----a-w- C:\WINDOWS\Sysnative\wbadmin.exe 2014-09-06 02:50:03 424C9777CB8507A6358BC142B7917143 874496 ----a-w- C:\WINDOWS\Sysnative\autofmt.exe 2014-09-06 02:50:03 22C4A7BCD36100D1655A1CD72327A40D 349696 ----a-w- C:\WINDOWS\Sysnative\bcdedit.exe 2014-09-06 02:50:03 1DEFAA7CE8C496D63EDE8AB7FD8DCB6E 610304 ----a-w- C:\WINDOWS\Sysnative\sud.dll 2014-09-06 02:50:03 081EFB3179E58A757115D129E9DB4631 1152512 ----a-w- C:\WINDOWS\Sysnative\wscui.cpl 2014-09-06 02:50:02 E337D5898804BC8EAC8CC7FD31CAAD46 68096 ----a-w- C:\WINDOWS\Sysnative\setbcdlocale.dll 2014-09-06 02:50:02 A8A7758F4E4043D48A75BD61F0FD5E70 127488 ----a-w- C:\WINDOWS\Sysnative\migisol.dll 2014-09-06 02:50:02 9CEC771F2C6882E54C8B4049167B65AB 165376 ----a-w- C:\WINDOWS\Sysnative\bcdboot.exe 2014-09-06 02:50:02 80A6E162B5C556E414DE5A02DF11CFD2 148992 ----a-w- C:\WINDOWS\Sysnative\sppnp.dll 2014-09-06 02:50:02 7A47BC7C0743A5A05CC29E87743FBCDA 545280 ----a-w- C:\WINDOWS\Sysnative\untfs.dll 2014-09-06 02:50:02 64DBE5C403B603164AD8FDDFD7CFF8B6 27480 ----a-w- C:\WINDOWS\Sysnative\SysResetErr.exe 2014-09-06 02:50:02 42DAF0C2C4461D4611ED271A8694E20A 82944 ----a-w- C:\WINDOWS\Sysnative\spbcd.dll 2014-09-06 02:50:02 3BC1D1D56637A32CD91C8AE08E2484AA 453632 ----a-w- C:\WINDOWS\Sysnative\wbiosrvc.dll 2014-09-06 02:50:02 387A1E98BE548E4F199343CBA01E9D6D 890880 ----a-w- C:\WINDOWS\Sysnative\autochk.exe 2014-09-06 02:50:02 09E9F7679FD338DC6DDDF96F4C613E74 69632 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Renewal.dll 2014-09-06 02:50:01 E2936E745B84FB5B631E1CB0BCA9B71B 92160 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgradeResults.exe 2014-09-06 02:50:01 C33D905BF1738C54560F09ED8AC47023 95744 ----a-w- C:\WINDOWS\Sysnative\IdCtrls.dll 2014-09-06 02:50:01 7AA2C803C0D6A07085843D5F6C9E99F2 92672 ----a-w- C:\WINDOWS\Sysnative\dafBth.dll 2014-09-06 02:50:01 6C9659E72326A34E9CED71E166F1616B 51200 ----a-w- C:\WINDOWS\Sysnative\DAConn.dll 2014-09-06 02:50:01 646B7DD5DA46CAB6F48A35BA2786B41A 71680 ----a-w- C:\WINDOWS\Sysnative\fhevents.dll 2014-09-06 02:50:00 F217D2868BF46B4DFE1A7A410CB236BB 148992 ----a-w- C:\WINDOWS\Sysnative\cscript.exe 2014-09-06 02:50:00 EC3CD12410AF8B5DC881BF323423C3F6 188416 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgrade.exe 2014-09-06 02:50:00 DEEAC72E46070C4F8D3905174A23E3BF 130048 ----a-w- C:\WINDOWS\Sysnative\vdsutil.dll 2014-09-06 02:50:00 7D4688ECFA4F61023A23B50F17AB5689 94720 ----a-w- C:\WINDOWS\Sysnative\spcompat.dll 2014-09-06 02:50:00 4DAFE3D3D45F9D487BD6C57B7C76FC88 18432 ----a-w- C:\WINDOWS\Sysnative\energytask.dll 2014-09-06 02:49:59 B867E81F7A7FD95AC894584B9EB10480 173056 ----a-w- C:\WINDOWS\Sysnative\werui.dll 2014-09-06 02:49:59 2146E40FDBA2FE1E466BE59D3FE2601C 79872 ----a-w- C:\WINDOWS\Sysnative\powercfg.exe 2014-09-06 02:49:59 119E0F7A71775A5CFB208B036ECE35E1 2255 ----a-w- C:\WINDOWS\Sysnative\WimBootCompress.ini 2014-09-06 02:49:59 0205D31F27DFB30E7192FFAF6EE4C8A7 146944 ----a-w- C:\WINDOWS\Sysnative\diskpart.exe 2014-09-06 02:49:58 CBC4C3820ACED29A1A772EC6CCF6CD17 116736 ----a-w- C:\WINDOWS\Sysnative\pnpclean.dll 2014-09-06 02:49:58 C5784EFEEADA38050706FF368B6DD21F 38400 ----a-w- C:\WINDOWS\Sysnative\deviceassociation.dll 2014-09-06 02:49:58 5B374F8F32C61364AF287165B5B60589 156672 ----a-w- C:\WINDOWS\Sysnative\RelPost.exe 2014-09-06 02:49:58 0512FCA695595018A289C032A409EA64 155136 ----a-w- C:\WINDOWS\Sysnative\SettingMonitor.dll 2014-09-06 02:49:55 8CFA00C8103F9132990CEF8B655EA666 269312 ----a-w- C:\WINDOWS\Sysnative\PlayToDevice.dll 2014-09-06 02:49:55 76B7BB05C1BCC11C69162FB7C2CE8901 92160 ----a-w- C:\WINDOWS\Sysnative\dasHost.exe 2014-09-06 02:49:54 B3FDE405C043BE9AA9193D1430FE7418 25088 ----a-w- C:\WINDOWS\Sysnative\ReAgentc.exe 2014-09-06 02:49:54 93B934AE4F812AECBA5254DBB07B29DA 248832 ----a-w- C:\WINDOWS\Sysnative\srrstr.dll 2014-09-06 02:49:54 6523161D8468E0C685EC04DD32BAC18B 224256 ----a-w- C:\WINDOWS\Sysnative\ActionQueue.dll 2014-09-06 02:49:54 5DB4DFF11E4B8EE396237FD717498643 299008 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll 2014-09-06 02:49:54 28EE7EA21F969D7AA096DFD751E5F2CD 60416 ----a-w- C:\WINDOWS\Sysnative\offreg.dll 2014-09-06 02:49:53 CD05BEF06D01444E3AE4145FA18D5538 468480 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.Handlers.dll 2014-09-06 02:49:53 B117A586AF354814BA3BF653A8DBBEBB 13824 ----a-w- C:\WINDOWS\Sysnative\msshooks.dll 2014-09-06 02:49:53 A221A2982E9FF3360FA6F0292C080519 56320 ----a-w- C:\WINDOWS\Sysnative\mf3216.dll 2014-09-06 02:49:53 962D2CB61A17AE290D2ABDDEA39D2BD7 575488 ----a-w- C:\WINDOWS\Sysnative\dfrgui.exe 2014-09-06 02:49:53 09CBB2EE26F9273FB3163DC939FB1C65 41472 ----a-w- C:\WINDOWS\Sysnative\f3ahvoas.dll 2014-09-06 02:49:52 F7041B2A7CA6CF4AE84DBFDA5A528865 183808 ----a-w- C:\WINDOWS\Sysnative\Defrag.exe 2014-09-06 02:49:52 DBB297B0850F160AA635F37D1210F216 504832 ----a-w- C:\WINDOWS\Sysnative\DevicePairing.dll 2014-09-06 02:49:52 CEA27892349131C8705F88D24B65A8E6 27136 ----a-w- C:\WINDOWS\Sysnative\LockScreenContentHost.dll 2014-09-06 02:49:52 BA47711E618A43B6464F354483E91E40 2566656 ----a-w- C:\WINDOWS\Sysnative\themecpl.dll 2014-09-06 02:49:52 959534ACF085C137D2D094384EF89C45 81408 ----a-w- C:\WINDOWS\Sysnative\wercplsupport.dll 2014-09-06 02:49:52 817005B17E25BD6E2369635D5A33DA51 55296 ----a-w- C:\WINDOWS\Sysnative\AepRoam.dll 2014-09-06 02:49:52 7D2E7D61830872279617C8030FE71FC1 316416 ----a-w- C:\WINDOWS\Sysnative\winsku.dll 2014-09-06 02:49:52 77D31321788337630FFA15D40FBB2FAA 589312 ----a-w- C:\WINDOWS\Sysnative\vdsdyn.dll 2014-09-06 02:49:52 562A3AB5CC3CA265D0C213B2B2D3B2E4 145408 ----a-w- C:\WINDOWS\Sysnative\wshom.ocx 2014-09-06 02:49:52 32890534D93EAAB2DD048E30A99F2F70 57344 ----a-w- C:\WINDOWS\Sysnative\SrTasks.exe 2014-09-06 02:49:51 AE279702A8549E0EB2008501AEE4A9F2 112640 ----a-w- C:\WINDOWS\Sysnative\scavengeui.dll 2014-09-06 02:49:51 58B1CE1AF4B629F92639D0E502508AAC 59392 ----a-w- C:\WINDOWS\Sysnative\ConfigureExpandedStorage.dll 2014-09-06 02:49:49 98A755F17458A425CCE6389346BA6540 355328 ----a-w- C:\WINDOWS\Sysnative\wincorlib.dll 2014-09-06 02:49:48 DE461B86C05946D10E519F512D09E389 100197 ----a-w- C:\WINDOWS\Sysnative\RacRules.xml 2014-09-06 02:49:48 BEDB85FBE0B6577A2A46866DE398D9A3 323584 ----a-w- C:\WINDOWS\Sysnative\GlobCollationHost.dll 2014-09-06 02:49:48 AACECE80A24B309935DF4023F25C129E 30208 ----a-w- C:\WINDOWS\Sysnative\SettingSyncPolicy.dll 2014-09-06 02:49:48 2BE71A590E07E855B1ACEA857ECA1FB8 173568 ----a-w- C:\WINDOWS\Sysnative\syncui.dll 2014-09-06 02:49:48 1F90F231C1E2B6D19B3A7C10BBF2B42F 220160 ----a-w- C:\WINDOWS\Sysnative\wmpdxm.dll 2014-09-06 02:49:47 F1DB86EA935C13CDFF27AB957297136A 7762 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-suggestions.searchconnector-ms 2014-09-06 02:49:47 E267BC3EEF80CC447680593038D10B0B 156160 ----a-w- C:\WINDOWS\Sysnative\aitagent.exe 2014-09-06 02:49:47 9F6F3B62C502F35153E3837E219DC841 113152 ----a-w- C:\WINDOWS\Sysnative\shsetup.dll 2014-09-06 02:49:47 9D6F2CDA0D23E1494C55E7ABB0FB35BC 39936 ----a-w- C:\WINDOWS\Sysnative\dataclen.dll 2014-09-06 02:49:47 735AB5AF130DD05B7CAD21EB8898B10A 71680 ----a-w- C:\WINDOWS\Sysnative\StorageContextHandler.dll 2014-09-06 02:49:47 570C0052EAF82BA7C4D95EA04201F7D2 162816 ----a-w- C:\WINDOWS\Sysnative\ocsetapi.dll 2014-09-06 02:49:47 499CFCE4CCA7CC4D3FA07251C86A8641 5632 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 02:49:47 1FDF29F970E2E843B4DC5D0626D0EDD5 7130 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-zeroinput.searchconnector-ms 2014-09-06 02:49:47 19A6B3C62F673903C75B46279C20E10B 3584 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 02:49:46 FA89BD2A29A00016E248D14EBAA421C3 6144 ----a-w- C:\WINDOWS\Sysnative\msdxm.ocx 2014-09-06 02:49:46 FA89BD2A29A00016E248D14EBAA421C3 6144 ----a-w- C:\WINDOWS\Sysnative\dxmasf.dll 2014-09-06 02:49:46 7E757E3635CD441B2A8D8CB4B507CB40 8704 ----a-w- C:\WINDOWS\Sysnative\lpksetupproxyserv.dll 2014-09-06 02:49:46 7CEA4BDCFD24CEFFD2689162876F12E8 7168 ----a-w- C:\WINDOWS\Sysnative\shimeng.dll 2014-09-06 02:49:46 797DE44BF9DF0231E9D39E3FA7B5898E 3584 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 02:49:46 61695710BD16FCCFFD22B425692EF83A 20992 ----a-w- C:\WINDOWS\Sysnative\fhsvcctl.dll 2014-09-06 02:49:46 22E1B49330D76F27FD0A13AD16A16A56 8192 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 02:49:45 EA3E41DCEA0F503073CBCE9C3A166DD1 147968 ----a-w- C:\WINDOWS\Sysnative\occache.dll 2014-09-06 02:49:45 5C615EB69963F31CB9034702169ABCCB 15360 ----a-w- C:\WINDOWS\Sysnative\finger.exe 2014-09-06 02:49:45 3917A6F3DAAB7D70B5C01E55C6880DD2 54784 ----a-w- C:\WINDOWS\Sysnative\fveskybackup.dll 2014-09-06 02:49:43 E7B53AF004BEE5112F787A6E5B04D737 11109 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-results.searchconnector-ms 2014-09-06 02:48:14 8596E6030C8DE66439DDF21C7F7B5006 40960 ----a-w- C:\WINDOWS\Sysnative\Windows.Shell.Search.UriHandler.dll 2014-09-06 02:48:09 398990EFC34218C3B6C4E6384502083B 2900992 ----a-w- C:\WINDOWS\Sysnative\msftedit.dll 2014-09-06 02:48:09 1B2CAD40A6FD2E9DC336F3A338293B29 2331000 ----a-w- C:\WINDOWS\Sysnative\msxml6.dll 2014-09-06 02:48:08 F7529BD3FFAC9C33D15F6DE3B7353B03 1306624 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2014-09-06 02:48:08 B0630FEE31D7A9B73E49A2F31CF61C1C 1112536 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2014-09-06 02:48:07 8E5C2B32EE4166A3084B133183A00F2A 2141912 ----a-w- C:\WINDOWS\Sysnative\d3d11.dll 2014-09-06 02:48:07 332E5E35DE9E8175A9550501E57E0612 1542768 ----a-w- C:\WINDOWS\Sysnative\ole32.dll 2014-09-06 02:48:06 F3523E611AB0B0977B048263A12DCF2A 1291200 ----a-w- C:\WINDOWS\Sysnative\kernel32.dll 2014-09-06 02:48:06 B7E51F949ED8C3A75C1D3121AF9A4B6C 655360 ----a-w- C:\WINDOWS\Sysnative\dnsapi.dll 2014-09-06 02:48:06 42F4D353A2AC24F7112FB4D6BD2D4F7C 1339240 ----a-w- C:\WINDOWS\Sysnative\gdi32.dll 2014-09-06 02:48:06 2C727D11CDF4F8B2477FC2B1B305ECB9 512000 ----a-w- C:\WINDOWS\Sysnative\wlidprov.dll 2014-09-06 02:48:05 C253B8484DCABB3EBE6D60E67CADB373 356848 ----a-w- C:\WINDOWS\Sysnative\dcomp.dll 2014-09-06 02:48:05 7CDB6060224CFAD4D5AC49FFC5414F41 939520 ----a-w- C:\WINDOWS\Sysnative\kerberos.dll 2014-09-06 02:48:04 7C75BF2879AEAD311DAE25CB5F1A2C83 669696 ----a-w- C:\WINDOWS\Sysnative\rasapi32.dll 2014-09-06 02:48:03 5BCABCE516486337E39DDD005BCBB1CA 1656832 ----a-w- C:\WINDOWS\Sysnative\GdiPlus.dll 2014-09-06 02:48:03 06E5962471CFC5890F6B7AB2BF527250 950784 ----a-w- C:\WINDOWS\Sysnative\ReAgent.dll 2014-09-06 02:48:02 FE7656474448BE6A6C68E5C9BEB7CA94 254464 ----a-w- C:\WINDOWS\Sysnative\dnsrslvr.dll 2014-09-06 02:48:02 DD5DF99540AB97806DF63B1494C809A8 488280 ----a-w- C:\WINDOWS\Sysnative\netcfgx.dll 2014-09-06 02:48:02 65A3992EC59D8D33D7622E3AF4C50DBF 247296 ----a-w- C:\WINDOWS\Sysnative\SensorsApi.dll 2014-09-06 02:48:01 D5C3776CBD8BC307DCCA3FD4CE667A37 324096 ----a-w- C:\WINDOWS\Sysnative\SessEnv.dll 2014-09-06 02:48:01 C8D6344BDE2691A196E61C0D3372EAB7 2479616 ----a-w- C:\WINDOWS\Sysnative\WsmSvc.dll 2014-09-06 02:48:01 BC6849C62DB407573C6AD8CB1A4D2628 115200 ----a-w- C:\WINDOWS\Sysnative\umpnpmgr.dll 2014-09-06 02:48:01 B2A890D96C05E33FDD2BF3F3D4D0DF92 220160 ----a-w- C:\WINDOWS\Sysnative\profsvc.dll 2014-09-06 02:48:01 A2BF5D466853422C143571064C7DD94F 252928 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentClient.dll 2014-09-06 02:48:01 A1C6BA515120C44E8D5A1EA3E927C7C2 291840 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Sensors.dll 2014-09-06 02:48:01 8183820F2D9648A619AA3200EFC62D0B 299008 ----a-w- C:\WINDOWS\Sysnative\pdh.dll 2014-09-06 02:48:01 7A61F17976F7C5077D9862E4EC25BB3E 360512 ----a-w- C:\WINDOWS\Sysnative\mfreadwrite.dll 2014-09-06 02:48:01 5AEFB4F09549545FA3BBD58A6FFF4962 924160 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll 2014-09-06 02:48:01 19F84D6153C06FE71203517BDAC9EA9F 102912 ----a-w- C:\WINDOWS\Sysnative\davclnt.dll 2014-09-06 02:48:01 16E9AD0F7A34C4F071E40CDD76E7C86D 113648 ----a-w- C:\WINDOWS\Sysnative\userenv.dll 2014-09-06 02:48:00 A40262C252A65BAD0186D9DDBB3083DA 1015808 ----a-w- C:\WINDOWS\Sysnative\aclui.dll 2014-09-06 02:48:00 94CD5DE7D2989AA64594F1925339C97E 542208 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.dll 2014-09-06 02:48:00 5ABA673EF6433BE68AAE77AE5C5FAFAA 412672 ----a-w- C:\WINDOWS\Sysnative\FWPUCLNT.DLL 2014-09-06 02:48:00 4DD9C026AAB3C12A5BF7FF9A0C038422 186368 ----a-w- C:\WINDOWS\Sysnative\dafWfdProvider.dll 2014-09-06 02:48:00 18297BC1CE8A0C0BF9A703A3C45DACC1 462336 ----a-w- C:\WINDOWS\Sysnative\wlangpui.dll 2014-09-06 02:48:00 14BEA911F78B44E47CBD18210E541A43 212992 ----a-w- C:\WINDOWS\Sysnative\cdd.dll 2014-09-06 02:48:00 06304D50B5228BF1EB6E829A72A629DB 271872 ----a-w- C:\WINDOWS\Sysnative\spp.dll 2014-09-06 02:47:59 48F25CC79C6CCFD4B776C8FDA9ED7271 160768 ----a-w- C:\WINDOWS\Sysnative\AppxAllUserStore.dll 2014-09-06 02:47:59 0633C74EFAAEF72FCC33B86CB86B2ED5 79360 ----a-w- C:\WINDOWS\Sysnative\w32tm.exe 2014-09-06 02:47:58 FF94F2D1E80D09FEE3B90A263759163A 210944 ----a-w- C:\WINDOWS\Sysnative\fveapibase.dll 2014-09-06 02:47:58 EEA0EB275D329DAA7EAA397417477C8F 794112 ----a-w- C:\WINDOWS\Sysnative\fvewiz.dll 2014-09-06 02:47:58 CC6F6A993FE36A55AF8207B9393407D6 325632 ----a-w- C:\WINDOWS\Sysnative\LocationApi.dll 2014-09-06 02:47:58 9F83D40B242C7CD2868DBF7550F3FF4C 86016 ----a-w- C:\WINDOWS\Sysnative\RMapi.dll 2014-09-06 02:47:58 9F0759C6D691E7030BF33105EDA2C690 30208 ----a-w- C:\WINDOWS\Sysnative\CredentialMigrationHandler.dll 2014-09-06 02:47:58 7563B7860E857D463C407085EC1BE731 100352 ----a-w- C:\WINDOWS\Sysnative\BitLockerDeviceEncryption.exe 2014-09-06 02:47:58 71133C77DD8089DA3F74813F90361F81 83968 ----a-w- C:\WINDOWS\Sysnative\sxproxy.dll 2014-09-06 02:47:58 6DEA7E51085C4CEC311DBD5A1AF8C759 717312 ----a-w- C:\WINDOWS\Sysnative\nshwfp.dll 2014-09-06 02:47:58 5F58A221937B5D58E33F4B21AEF92210 192000 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Scanners.dll 2014-09-06 02:47:58 3ED1FD93AA4C381A374C3835CF7A5C92 201216 ----a-w- C:\WINDOWS\Sysnative\ReInfo.dll 2014-09-06 02:47:58 2DE56913AE88DF760F279264023908BC 1843712 ----a-w- C:\WINDOWS\Sysnative\Display.dll 2014-09-06 02:47:58 1DCD97010190EF9377E77AB0A846C720 115200 ----a-w- C:\WINDOWS\Sysnative\DevPropMgr.dll 2014-09-06 02:47:57 C1D7A9932D7F468534F1913FB1F65572 40448 ----a-w- C:\WINDOWS\Sysnative\SetNetworkLocation.dll 2014-09-06 02:47:57 8DAE6957A4F0EC461575F68239E0A13E 69120 ----a-w- C:\WINDOWS\Sysnative\l2gpstore.dll 2014-09-06 02:47:57 7043428E344AF62EC540BDF49317D321 99328 ----a-w- C:\WINDOWS\Sysnative\BdeHdCfgLib.dll 2014-09-06 02:47:57 12B0701B1CEC1A7BB0E4C71D97661E23 387210 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2014-09-06 02:47:57 04D6FAB6BE09C83DF591D58E1FBADA59 274944 ----a-w- C:\WINDOWS\Sysnative\WsmWmiPl.dll 2014-09-05 12:52:12 B399E2C282D74B058CD8EAAFE9F64CDB 287744 ----a-w- C:\WINDOWS\Sysnative\CNC_B8C.dll 2014-09-05 12:52:12 B0F07A3C1091DA091174731B82BF6B3F 106496 ----a-w- C:\WINDOWS\Sysnative\CNC_B8I.dll 2014-09-05 12:52:12 6FEC047D14B5F512AE61A39C7E59D68A 363520 ----a-w- C:\WINDOWS\Sysnative\CNC_B8L.dll 2014-09-05 12:52:12 6F6C16E5D711E35FABE3FCD8C49E7A69 77568 ----a-w- C:\WINDOWS\Sysnative\CNC1762D.TBL 2014-09-05 12:52:12 493574E218AA18161D14EECFD572A0E8 17920 ----a-w- C:\WINDOWS\Sysnative\CNHMCA6.dll 2014-09-05 12:52:05 FA132E1DAB518B28F4B20DB154A647FC 389120 ----a-w- C:\WINDOWS\Sysnative\CNMLMB8.DLL 2014-09-05 12:51:30 BE3660521C98A7D12FCC925582B6EC89 39424 ----a-w- C:\WINDOWS\Sysnative\CNMN6UI.DLL 2014-09-05 12:51:29 6FE535FAAB7D0EC3B815818D29F07814 359936 ----a-w- C:\WINDOWS\Sysnative\CNMN6PPM.DLL 2014-09-05 11:08:35 66FC85C4728B6FBA8E7AAD59854F3730 101694776 ----a-w- C:\WINDOWS\Sysnative\MRT.exe 2014-09-05 11:00:05 32370AF583EC8B24D790E1B9201D6811 3210528 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2014-09-05 11:00:00 D65B1C952AEB864C2BAC7A770B17ECCE 282112 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll 2014-09-05 10:59:58 40B228D05DB02F4A5F2452600999F53F 809872 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2014-09-05 10:59:57 660891FFB1B22FF39AADB3F45CE15D45 470016 ----a-w- C:\WINDOWS\Sysnative\mfds.dll 2014-09-05 10:59:56 91433B44B1EF301E7DD696EB5281BC20 589824 ----a-w- C:\WINDOWS\Sysnative\rastls.dll 2014-09-05 10:59:56 34F8F7A0B782798F6A9511157BCC3E32 273408 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll 2014-09-05 10:59:55 FF9F658A51CAD74C25AF83038DBD735D 306688 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll 2014-09-05 10:59:54 CD45E3FE736150D45EFDC9145DA53757 24064 ----a-w- C:\WINDOWS\Sysnative\bi.dll 2014-09-05 10:59:53 AD95F86C8D1843BE653F89FDE213F9E7 207872 ----a-w- C:\WINDOWS\Sysnative\deviceregistration.dll 2014-09-05 10:56:31 E287F157F7A0011D93179C64EF8ADCF2 376320 ----a-w- C:\WINDOWS\Sysnative\pnrpsvc.dll 2014-09-05 10:56:31 847CFF96ACB575CE73C0E2E86C6BA993 842752 ----a-w- C:\WINDOWS\Sysnative\MsSpellCheckingFacility.dll 2014-09-05 10:56:28 0B9FBEC5714523FF76DDFEB320FE2DF2 303616 ----a-w- C:\WINDOWS\Sysnative\sti.dll 2014-09-05 10:56:26 68085A085DE8E3540EE8E02CAE575B2E 138240 ----a-w- C:\WINDOWS\Sysnative\OEMLicense.dll 2014-09-05 10:48:39 BE94090FCBB95B6F22E952D27BD2610E 570880 ----a-w- C:\WINDOWS\Sysnative\msdrm.dll 2014-09-05 10:48:39 447CB6699A8EAD2BC516991738A16277 75360 ----a-w- C:\WINDOWS\Sysnative\imagehlp.dll 2014-09-05 10:48:37 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-09-05 10:48:37 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\WINDOWS\Sysnative\ieetwcollectorres.dll 2014-09-05 10:48:37 94C59DD02BC7EA0E421055B9946CA861 2724864 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2014-09-05 10:48:36 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-09-05 10:48:36 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-09-05 10:48:36 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-09-05 10:48:34 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-09-05 10:48:33 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\WINDOWS\Sysnative\msrating.dll 2014-09-05 10:48:18 5F84D8C3831A559CEB55F894CD24E2B5 393216 ----a-w- C:\WINDOWS\Sysnative\WMPhoto.dll 2014-09-05 10:48:12 389C4E97E3A498159B625A7A13EA4560 2397184 ----a-w- C:\WINDOWS\Sysnative\d3d10warp.dll 2014-09-05 10:48:12 053472337FDD116BD010C88DB0C34DF1 4604416 ----a-w- C:\WINDOWS\Sysnative\d2d1.dll 2014-09-05 10:48:11 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\WINDOWS\Sysnative\WSCollect.exe 2014-09-05 10:48:10 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2014-09-05 10:48:08 C7DFBE21051D5E44B479CBF74B968335 1486848 ----a-w- C:\WINDOWS\Sysnative\dbghelp.dll 2014-09-05 10:48:08 819A1E0F89B6AC222E9D95CA000A40B1 4175360 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2014-09-05 10:48:07 AFCAB4DC692CCE37E283B00E2D7B438F 447488 ----a-w- C:\WINDOWS\Sysnative\sppcomapi.dll 2014-09-05 10:47:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\WINDOWS\Sysnative\pcaui.exe 2014-09-05 10:47:56 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\WINDOWS\Sysnative\poqexec.exe 2014-09-05 10:41:57 6FB598E8DE02D879D17B35F144A1B3BC 270496 ------w- C:\WINDOWS\Sysnative\MpSigStub.exe 2014-09-05 10:18:58 D9B4BED45B1E6F83B05F5ABEB86F7EC6 2356592 ----a-w- C:\WINDOWS\Sysnative\WudfUpdate_01011.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-09-07 06:54:29 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2014-09-07 06:54:20 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\WINDOWS\Sysnative\drivers\mbam.sys 2014-09-07 06:54:20 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys 2014-09-07 06:54:20 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\WINDOWS\Sysnative\drivers\mwac.sys 2014-09-07 06:35:03 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\WINDOWS\Sysnative\drivers\48230029.sys 2014-09-06 16:17:39 8DF1254093B5C354CE725EB6B9B0DE19 146752 ----a-w- C:\WINDOWS\Sysnative\drivers\msgpioclx.sys 2014-09-06 15:33:52 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2014-09-06 15:33:42 313DCE665B57000B18CB26C6B6A10DFE 1557848 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2014-09-06 15:33:36 019CC610AD95FF47EAD7C08B7A683B96 257880 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2014-09-06 15:33:35 6CC1BB8F6851A262E2E824F0E92D5EEF 123224 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2014-09-06 15:33:34 F5D4FA3E1F4879C361FFF3855259D2C2 35856 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys 2014-09-06 15:31:19 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2014-09-06 15:31:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-09-06 15:31:06 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2014-09-06 15:31:05 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\WINDOWS\Sysnative\drivers\vwifimp.sys 2014-09-06 15:31:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\WINDOWS\Sysnative\drivers\vwififlt.sys 2014-09-06 15:31:03 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2014-09-06 15:30:58 FE0ADF5028EB8C1339B66B3AEDE3FEF9 440664 ----a-w- C:\WINDOWS\Sysnative\drivers\usbport.sys 2014-09-06 15:30:58 93435654DCA210298BA0F986EB51C679 419672 ----a-w- C:\WINDOWS\Sysnative\drivers\usbhub.sys 2014-09-06 15:30:58 25AC0B50A71938890970E1508F107196 2518360 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-09-06 15:30:57 D79920BE4E6683D3AB50F71457A4F6C6 27480 ----a-w- C:\WINDOWS\Sysnative\drivers\usbd.sys 2014-09-06 15:30:57 D537815E450A149752C15868392AD1F3 110592 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFPf.sys 2014-09-06 15:30:57 8FCE57F7E5CDA5751FDE01A316180488 428888 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2014-09-06 15:30:57 83C9C45D59C72FEFDAE9A5686BE31FEA 467800 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2014-09-06 15:30:57 7CCBBCEE408A5DBE3FE47297DB5A6CFC 227840 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFRd.sys 2014-09-06 15:30:57 48BA326A3DBA5B5BEB5F2777F4618696 89944 ----a-w- C:\WINDOWS\Sysnative\drivers\usbehci.sys 2014-09-06 15:30:57 064260B3A5868AC894A4943543BC7AB7 37376 ----a-w- C:\WINDOWS\Sysnative\drivers\usbuhci.sys 2014-09-06 15:30:47 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\WINDOWS\Sysnative\drivers\srv2.sys 2014-09-06 15:30:47 4BB9BC49DEE1A319EC58274A7BBED663 310616 ----a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys 2014-09-06 15:30:46 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\WINDOWS\Sysnative\drivers\nwifi.sys 2014-09-06 15:30:46 498288DD5CA42C2D36D125893E968C53 77312 ----a-w- C:\WINDOWS\Sysnative\drivers\hdaudbus.sys 2014-09-06 15:30:45 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\WINDOWS\Sysnative\drivers\fvevol.sys 2014-09-06 15:30:45 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\WINDOWS\Sysnative\drivers\Classpnp.sys 2014-09-06 15:30:44 D90AB68D0FAC9F357F663670FDBB511E 275800 ----a-w- C:\WINDOWS\Sysnative\drivers\msiscsi.sys 2014-09-06 15:30:44 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\WINDOWS\Sysnative\drivers\srvnet.sys 2014-09-06 15:30:44 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\WINDOWS\Sysnative\drivers\fltMgr.sys 2014-09-06 15:30:44 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2014-09-06 15:30:44 33977549C2CED09936E05BEE7659EAFF 384856 ----a-w- C:\WINDOWS\Sysnative\drivers\spaceport.sys 2014-09-06 15:30:32 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\WINDOWS\Sysnative\drivers\wpcfltr.sys 2014-09-06 02:50:46 9539F7917B4B6D92C90F0FAA6B86C605 539992 ----a-w- C:\WINDOWS\Sysnative\drivers\acpi.sys 2014-09-06 02:50:45 F21B77B4D74092A543807D3CEB711A88 1118552 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2014-09-06 02:50:41 A26AEC49F318FEE141DDDB2C5F99B3E6 249688 ----a-w- C:\WINDOWS\Sysnative\drivers\rdyboost.sys 2014-09-06 02:50:38 275AFE3FA35E8D78BE97695DF49817C6 280920 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2014-09-06 02:50:36 233A4C961703D6B3EBA4EC1A3E85AACE 298496 ----a-w- C:\WINDOWS\Sysnative\drivers\ks.sys 2014-09-06 02:50:34 EA23453240137F6773174E0D93F61A69 148824 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2014-09-06 02:50:29 8685379B82AC81187813225905531D1E 272896 ----a-w- C:\WINDOWS\Sysnative\drivers\portcls.sys 2014-09-06 02:50:28 52E483A3701A5A61A75A06993720347D 551256 ----a-w- C:\WINDOWS\Sysnative\drivers\vhdmp.sys 2014-09-06 02:50:21 DDEE191AB32DFC22C6465002ECDF5EE4 124416 ----a-w- C:\WINDOWS\Sysnative\drivers\luafv.sys 2014-09-06 02:50:21 0ECEE590F2E2EF969FB74A6FC583A1E6 663040 ----a-w- C:\WINDOWS\Sysnative\drivers\PEAuth.sys 2014-09-06 02:50:19 FDEC5799BA499D18AFA3A540538866E7 236888 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2014-09-06 02:50:16 E515A287C8FAE901EB8FB42F168E14F2 924504 ----a-w- C:\WINDOWS\Sysnative\drivers\refs.sys 2014-09-06 02:50:16 BCFD8B149B3ADF92D0DB1E909CAF0265 79192 ----a-w- C:\WINDOWS\Sysnative\drivers\fileinfo.sys 2014-09-06 02:50:16 38A82F4EE8C416A6744B6D30381ED768 33280 ----a-w- C:\WINDOWS\Sysnative\drivers\BasicRender.sys 2014-09-06 02:50:15 0B1E929D11A8E358106955603FAC65E8 79192 ----a-w- C:\WINDOWS\Sysnative\drivers\sdstor.sys 2014-09-06 02:50:15 02836172141D3AFA35B07679E253E503 151384 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2014-09-06 02:50:11 61A1C2641321A6B89A2B41C5D481EF48 71888 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpfve.sys 2014-09-06 02:50:11 48430B0313FC1CFE3D2400553F1A93CD 325464 ----a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2014-09-06 02:50:09 B034A41891A36457B994307DFA772293 189784 ----a-w- C:\WINDOWS\Sysnative\drivers\UCX01000.SYS 2014-09-06 02:50:05 9DDCA7F18983C5410DEFF79F819DF93C 994136 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2014-09-06 02:50:00 9CC0003FB8ED3763B977B43F1012FF63 54272 ----a-w- C:\WINDOWS\Sysnative\drivers\watchdog.sys 2014-09-06 02:48:08 1C80517BE6836A812F6A9B99B8321351 2013016 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2014-09-06 02:48:04 7FC5667DF73D4B04AA457CC3A4180E09 157016 ----a-w- C:\WINDOWS\Sysnative\drivers\wof.sys 2014-09-06 02:48:03 4030CB06B8D963A45CED9E60C9F2A11E 379224 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2014-09-06 02:48:03 179A41249055D5F039F1B6703F3B6D2B 376152 ----a-w- C:\WINDOWS\Sysnative\drivers\clfs.sys 2014-09-06 02:48:00 F88CC88F4A6D8476F1664E805CA18CC2 180056 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2014-09-06 02:48:00 A03F362C5557E238CBFA914689C77248 134144 ----a-w- C:\WINDOWS\Sysnative\drivers\dfsc.sys 2014-09-06 02:47:59 BFBE1C5F57FE7A885673A1962D5532B7 136024 ----a-w- C:\WINDOWS\Sysnative\drivers\wfplwfs.sys 2014-09-06 02:47:59 8DB8EAB9D0C6A5DF0BDCADEA239220B4 33280 ----a-w- C:\WINDOWS\Sysnative\drivers\hidusb.sys 2014-09-06 02:47:58 ABB7341766902F5AAB45E15F34D19E15 111616 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys 2014-09-06 02:47:58 41CF802064F72E55F50CA0A221FD36D4 49152 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpipreg.sys 2014-09-06 02:47:58 1D55DADC22D21883A2F80297F5A5AE48 140288 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2014-09-06 02:47:57 FD9C9E9E3F0ED51502C7E8C066BE26B9 79360 ----a-w- C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys 2014-09-06 02:47:57 3E28B99198B514DFEB152EACF913025E 283648 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys 2014-09-05 17:05:02 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_LocationProvider_01_11_00.Wdf 2014-09-05 12:18:37 EFE63BDFC12A1DD65FBB9E621F29B78C 10224 ------w- C:\WINDOWS\Sysnative\drivers\cdr4_xp.sys 2014-09-05 12:18:37 87B04878A6D59D6C79251DC960C674C1 55856 ------w- C:\WINDOWS\Sysnative\drivers\PxHlpa64.sys 2014-09-05 12:18:37 60B3B1A2544EB7843F26EC291BB590BB 10224 ------w- C:\WINDOWS\Sysnative\drivers\cdralw2k.sys 2014-09-05 10:59:55 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys 2014-09-05 10:59:54 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys 2014-09-05 10:56:53 139CFCDCD36B1B1782FD8C0014AC9B0E 39768 ----a-w- C:\WINDOWS\Sysnative\drivers\intelpep.sys 2014-09-05 10:56:53 0044B31F93946D5D41982314381FE431 146776 ----a-w- C:\WINDOWS\Sysnative\drivers\SerCx2.sys 2014-09-05 10:56:52 B9D968D8E2B0F9C6301CEB39CFC9B9E4 86872 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2014-09-05 10:56:28 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2014-09-05 10:56:23 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\WINDOWS\Sysnative\drivers\USBAUDIO.sys 2014-09-05 10:41:57 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf ====== C:\WINDOWS\Tasks ====== 2014-09-08 04:17:26 032B5127146DE1C460A905F768927A33 3126 ----a-w- C:\WINDOWS\Sysnative\Tasks\{E6C37035-6262-4B07-B8F7-BF938969C6D2} 2014-09-08 04:15:32 493A6288FE498EC53F3777C1206B9F32 3130 ----a-w- C:\WINDOWS\Sysnative\Tasks\{9A8F0D86-12CA-4165-A6B6-CF0E0E5519EC} 2014-09-06 03:19:12 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Cybertron 2014-09-05 12:25:36 6031CBF80D60580E0D20C32218E19104 3506 ----a-w- C:\WINDOWS\Sysnative\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Danny750@outlook.com 2014-09-05 11:17:25 E5C48ED2D8DE3C8D9B84EC1C97C4709B 3554 ----a-w- C:\WINDOWS\Sysnative\Tasks\CreateChoiceProcessTask 2014-09-05 10:22:12 FBE104AF0A5F420FC38C753AD09A24B5 3598 ----a-w- C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-108903256-2374480697-3855323451-1001 2014-09-05 10:17:35 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\WPD ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-09-08 12:05:55 -------- d-----w- C:\Program Files\Microsoft Office 2014-09-07 08:50:30 -------- d-----w- C:\Program Files\trend micro 2014-09-06 15:27:51 -------- d-----w- C:\Program Files\Wipe 2014-09-06 07:15:33 -------- d-----w- C:\Program Files\Common Files\Propellerhead Software 2014-09-06 07:14:28 -------- d-----w- C:\Program Files\Avid 2014-09-06 04:21:01 -------- d-----w- C:\Program Files\Speccy 2014-09-06 03:19:11 -------- d-----w- C:\Program Files\Cybertron 2014-09-05 15:54:03 -------- d-----w- C:\Program Files\Microsoft Silverlight 2014-09-05 13:16:46 -------- d-----w- C:\Program Files\RFA 9 2014-09-05 13:07:36 -------- d-----w- C:\Program Files\Classic Shell 2014-09-05 12:59:55 -------- d-----w- C:\Program Files\Common Files\CANON 2014-09-05 12:53:24 -------- d-----w- C:\Program Files\Canon 2014-09-05 12:51:48 -------- d--h--w- C:\Program Files\CanonBJ 2014-09-05 12:21:07 -------- d-----w- C:\Program Files\Common Files\Adobe 2014-09-05 11:53:53 -------- d-----w- C:\Program Files\Garritan ======= C:\PROGRA~2 ===== 2014-09-10 05:36:23 -------- d-----w- C:\PROGRA~2\COMMON~1\DESIGNER 2014-09-08 12:08:02 -------- d-----w- C:\PROGRA~2\Microsoft Works 2014-09-06 15:47:29 -------- d-----w- C:\PROGRA~2\Microsoft Office 2014-09-06 08:23:39 -------- d-----w- C:\PROGRA~2\ImgBurn 2014-09-06 07:26:53 604 ---ha-w- C:\PROGRA~2\_Z2 2014-09-06 07:15:33 -------- d-----w- C:\PROGRA~2\COMMON~1\Propellerhead Software 2014-09-06 07:15:23 -------- d-----w- C:\PROGRA~2\COMMON~1\Avid 2014-09-06 05:16:36 -------- d-----w- C:\PROGRA~2\Microsoft Games 2014-09-06 03:09:40 -------- d-----w- C:\PROGRA~2\AVID 2014-09-05 17:27:51 -------- d-----w- C:\PROGRA~2\OpenOffice 4 2014-09-05 16:40:38 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2014-09-05 16:40:34 -------- d-----w- C:\PROGRA~2\Mozilla Thunderbird 2014-09-05 16:19:51 -------- d-----w- C:\PROGRA~2\Autorun Organizer 2014-09-05 15:54:03 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight 2014-09-05 15:47:19 -------- d-----w- C:\PROGRA~2\Pixarra 2014-09-05 15:38:39 -------- d-----w- C:\PROGRA~2\AML Products 2014-09-05 12:50:21 -------- d-----w- C:\PROGRA~2\Canon 2014-09-05 12:18:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Sonic Shared 2014-09-05 12:18:23 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine 2014-09-05 12:16:40 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe 2014-09-05 11:50:50 -------- d-----w- C:\PROGRA~2\Finale 2010 2014-09-05 11:42:43 -------- d-----w- C:\PROGRA~2\Ashampoo ======= C: ===== 2014-08-28 15:18:46 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Recovery.txt ====== C:\Users\Henry\AppData\Roaming ====== 2014-09-10 12:16:35 -------- d-----w- C:\Users\Henry\AppData\Local\Temp 2014-09-08 11:43:42 219E12D6FB7EF2F9E9090791BAAC5012 102472 ----a-w- C:\Users\Henry\AppData\Local\GDIPFONTCACHEV1.DAT 2014-09-06 14:34:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Wipe 2014-09-06 08:25:14 -------- d-s---w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft 2014-09-06 07:29:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Leadertech 2014-09-06 07:15:57 -------- d-----w- C:\Users\Henry\AppData\Local\Downloaded Installations 2014-09-06 07:14:28 -------- d-----w- C:\Users\Henry\AppData\Roaming\Avid 2014-09-06 05:16:11 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Programs 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-09-06 05:16:10 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft 2014-09-06 05:12:38 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2014-09-06 04:36:58 -------- d-----w- C:\Users\Henry\AppData\Local\ElevatedDiagnostics 2014-09-06 04:36:40 -------- d-----w- C:\Users\Henry\AppData\Local\Diagnostics 2014-09-06 04:21:10 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2014-09-06 03:20:48 -------- d-----w- C:\Users\Henry\AppData\Roaming\Cybertron 2014-09-06 03:13:09 -------- d-sh--w- C:\Users\Henry\AppData\Local\EmieUserList 2014-09-06 03:13:09 -------- d-sh--w- C:\Users\Henry\AppData\Local\EmieSiteList 2014-09-06 02:53:13 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2014-09-05 18:19:00 -------- d-----w- C:\Users\Henry\AppData\Local\Mozilla 2014-09-05 17:56:37 -------- d-----w- C:\Users\Henry\AppData\Roaming\ATI 2014-09-05 17:56:37 -------- d-----w- C:\Users\Henry\AppData\Local\ATI 2014-09-05 17:28:47 -------- d-----w- C:\Users\Henry\AppData\Roaming\OpenOffice 2014-09-05 17:28:13 -------- d-s---w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Thunderbird 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Mozilla 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Local\Thunderbird 2014-09-05 16:19:56 -------- d-----w- C:\Users\Henry\AppData\Local\ChemTable Software 2014-09-05 16:02:04 -------- d-----w- C:\Users\Henry\AppData\Roaming\Nitro 2014-09-05 16:02:04 -------- d-----w- C:\Users\Henry\AppData\Roaming\FileOpen 2014-09-05 15:47:29 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwistedBrush 2014-09-05 15:38:28 -------- d-----w- C:\Users\Henry\AppData\Local\Programs 2014-09-05 15:28:40 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bandizip 2014-09-05 15:28:38 -------- d-----w- C:\Users\Henry\AppData\Local\Bandizip 2014-09-05 13:08:11 -------- d-----w- C:\Users\Henry\AppData\Roaming\ClassicShell 2014-09-05 13:05:27 -------- d-----w- C:\Users\Henry\AppData\Roaming\Canon 2014-09-05 12:37:16 -------- d-----w- C:\Users\Henry\AppData\Local\Microsoft Help 2014-09-05 11:54:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Garritan 2014-09-05 11:53:12 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010 2014-09-05 11:42:47 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo 2014-09-05 10:55:50 -------- d-s---w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2014-09-05 10:42:12 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Nitro PDF 2014-09-05 10:31:24 -------- d-----w- C:\Users\Henry\AppData\Roaming\Nitro PDF 2014-09-05 10:26:42 -------- d-----w- C:\Users\Henry\AppData\Local\Adobe 2014-09-05 10:26:12 -------- d-----w- C:\Users\Henry\AppData\Roaming\LSC 2014-09-05 10:25:40 -------- d-----w- C:\Users\Henry\AppData\Roaming\Maxthon3 2014-09-05 10:18:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Intel Corporation 2014-09-05 10:17:57 -------- d-----w- C:\Users\Henry\AppData\Local\Lenovo 2014-09-05 10:17:55 -------- d-----w- C:\Users\Henry\AppData\Local\Power2Go 2014-09-05 10:17:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Lenovo 2014-09-05 10:17:11 -------- d-s---w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Locallow\Microsoft 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-09-05 10:15:42 C9D23395B299686C14F92317DF5E7B5D 193 ----a-w- C:\Users\Henry\AppData\Local\RegisteredPackageInformation.xml 2014-09-05 10:15:15 -------- d-----w- C:\Users\Henry\AppData\Roaming\Adobe 2014-09-05 10:15:12 -------- d-----w- C:\Users\Henry\AppData\Local\VirtualStore 2014-09-05 10:14:45 -------- d-s---w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Locallow\Microsoft 2014-09-05 10:14:09 FB656C74D371A5D484C45B0176E27C02 6395 ----a-w- C:\Users\Administrator\AppData\Local\Application.xml 2014-09-05 10:13:17 -------- d-s---w- C:\Users\Henry\AppData\Roaming\Microsoft 2014-09-05 10:13:17 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-09-05 10:13:17 -------- d-----w- C:\Users\Henry\AppData\Local\Microsoft 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility ====== C:\Users\Henry ====== 2014-09-09 15:24:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wipe 2014-09-08 12:08:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-09-07 08:43:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Henry\Desktop\RSITx64.exe 2014-09-06 08:23:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2014-09-06 07:26:54 -------- d-----w- C:\ProgramData\Pinnacle 2014-09-06 07:15:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid 2014-09-06 07:14:28 -------- d-----w- C:\ProgramData\Avid 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Saved Games 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Links 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Favorites 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Downloads 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Documents 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Videos 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Searches 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Pictures 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\OneDrive 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Music 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Desktop 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Contacts 2014-09-06 04:28:26 -------- d-----w- C:\ProgramData\WRData 2014-09-06 03:19:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy Eraser 2014-09-06 02:30:51 504523988B43B6747B4CB35B51531C43 767600 ----a-w- C:\Users\Henry\Desktop\Syswranalyzer.exe 2014-09-05 17:56:37 -------- d-----w- C:\ProgramData\ATI 2014-09-05 16:40:39 -------- d-----w- C:\ProgramData\Mozilla 2014-09-05 16:19:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Organizer 2014-09-05 16:02:04 -------- d-----w- C:\ProgramData\FileOpen 2014-09-05 15:54:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-05 15:38:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AML Free Registry Cleaner 2014-09-05 13:16:59 -------- d-----w- C:\ProgramData\RFA_Backups 2014-09-05 13:16:46 -------- d-s---w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 9 2014-09-05 13:16:46 -------- d-----w- C:\ProgramData\Registry First Aid 2014-09-05 13:08:02 -------- d-----w- C:\ProgramData\ClassicShell 2014-09-05 13:07:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell 2014-09-05 13:05:24 -------- d--h--w- C:\ProgramData\CanonIJQuickMenu 2014-09-05 13:05:21 -------- d--h--w- C:\ProgramData\CanonIJEGV 2014-09-05 13:00:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG3200 series 2014-09-05 12:59:41 -------- d-----w- C:\ProgramData\CanonIJWSpt 2014-09-05 12:53:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-09-05 12:53:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series Manual 2014-09-05 12:52:22 -------- d--h--w- C:\ProgramData\CanonBJ 2014-09-05 12:52:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series 2014-09-05 12:50:54 -------- d-----w- C:\ProgramData\CanonIJPLM 2014-09-05 12:50:49 -------- d--h--w- C:\ProgramData\CanonIJETV 2014-09-05 12:37:15 -------- d-----w- C:\ProgramData\Microsoft Help 2014-09-05 12:29:38 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe 2014-09-05 11:53:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan Instruments for Finale 2014-09-05 11:42:43 -------- d-----w- C:\ProgramData\page 2014-09-05 10:18:16 -------- d-----w- C:\Users\Public\Pokki 2014-09-05 10:15:43 -------- d---a-r- C:\Users\Henry\SkyDrive 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\Searches 2014-09-05 10:14:50 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Henry\ntuser.ini 2014-09-05 10:13:17 -------- d--h--w- C:\Users\Henry\AppData 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\Documents 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\Desktop 2014-09-02 15:40:22 5AE66927DD76A0A69287736B05040FE5 80959 ----a-w- C:\Users\Henry\ANVIL-CHORUS-VERDI.3.sib 2014-08-28 06:24:57 3FA2C4080F68712A2447A6EB3D8812B0 77671 ----a-w- C:\Users\Henry\Jung san ma! Fesch san Ma!-goed.sib 2014-08-24 16:33:08 461A03C82494813C2D1936F9FCF9F2D1 77662 ----a-w- C:\Users\Henry\Jung san ma! Fesch san Ma!.sib ====== C: exe-files == 2014-09-10 07:41:33 D6D1D3B947BE2D82FC68DFDF6770248F 1295872 ----a-w- C:\Users\Henry\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\AC\Microsoft\CLR_v4.0_32\NativeImages\Lenovo.Discovery\450d2715c211469b058f3809855d7586\Lenovo.Discovery.ni.exe 2014-09-10 05:47:25 CA573004E12C7D5F474D3614F5532074 706016 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-10 05:30:48 DDD8FE19F8B571E4E49F21967812E1B5 483328 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-09-10 05:30:48 8BE3B372BA391D85BB8C2FAD8AEC18E8 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-09-10 05:30:44 1FA34F04CB4529000AD818268F059D3E 707072 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-09-10 05:30:40 4471E9E8C84548856668F7EA0692A212 810128 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-09-10 05:30:40 154E6F681AE6AA93252EB0EB36D20389 812184 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-09-10 05:28:15 0C3028324C475485D6C24D626D9149C3 176288 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe 2014-09-10 05:28:14 ACDBE1ED38167C8B01B8F63161BB2CEA 2374784 ----a-w- C:\Windows\explorer.exe 2014-09-10 05:28:14 195822ACCDAA2B4815DD01BAFC335595 2084520 ----a-w- C:\Windows\SysWOW64\explorer.exe 2014-09-09 15:24:48 CAAF8E52D2F40B822F6B0854248E6299 546968 ----a-w- C:\Program Files\Wipe\net1.exe 2014-09-09 15:24:44 A23E6299693231148EA99560EFF4EDEF 380144 ----a-w- C:\Program Files\Wipe\Wipe.exe 2014-09-07 12:36:00 4AA63CFADAD71EA1BCE696F6DC7DF130 1295872 ----a-w- C:\Users\Henry\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\AC\Microsoft\CLR_v4.0_32\NativeImages\Lenovo.Discovery\a30ba1306e41a1f94930051492a615b2\Lenovo.Discovery.ni.exe 2014-09-07 12:36:00 1D7D686FA026ED9CD66E0D77047F1C45 1598464 ----a-w- C:\Users\Henry\AppData\Local\Packages\15737ProductivityLab.RoamingFavorites_pbe8dt886qeb4\AC\Microsoft\CLR_v4.0\NativeImages\FavoritesBrowser\49ee1f4e3795b04059768b8071dc5ecf\FavoritesBrowser.ni.exe 2014-09-07 08:50:30 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Henry.exe 2014-09-07 08:43:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Henry\Desktop\RSITx64.exe 2014-09-06 15:33:46 15750011454B89F4950D7E7E4A947EC1 834048 ----a-w- C:\Windows\System32\osk.exe 2014-09-06 15:33:45 8A9CB0FE11800DBBDBA8FE4F54828892 779264 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-09-06 15:33:38 326715361A7D1C65983BFE920990E4EF 308224 ----a-w- C:\Windows\System32\wusa.exe 2014-09-06 15:33:38 1DEC681B79501A714F0D3FA2787183C3 305152 ----a-w- C:\Windows\SysWOW64\wusa.exe 2014-09-06 15:31:24 6DBE73C09215E281F4283641144110A5 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-09-06 15:31:24 38045850ACB96313A1983A8803302906 35480 ----a-w- C:\Windows\SysWOW64\TsWpfWrp.exe 2014-09-06 15:31:18 E2F4125BFAC99244088324A1841C0B83 3048880 ----a-w- C:\Windows\System32\WpcMon.exe 2014-09-06 15:31:16 FD3638782572A8281BCF12520F6579F4 79872 ----a-w- C:\Windows\System32\WSReset.exe 2014-09-06 15:31:16 E9F333234A5641E2FEF2F5240BDD56B8 35328 ----a-w- C:\Windows\System32\wuapp.exe 2014-09-06 15:31:16 D8C63F333D4A8D8433849A9ADC092BE9 31232 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-09-06 15:31:16 BE1FAE2B208F1E0B38FD4EF353D067C8 25304 ----a-w- C:\Windows\WinStore\WSHost.exe 2014-09-06 15:31:14 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\Windows\System32\drvcfg.exe 2014-09-06 15:31:14 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\Windows\System32\drvinst.exe 2014-09-06 15:31:14 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\Windows\SysWOW64\drvinst.exe 2014-09-06 15:31:09 9289A1927350EA1F7FD4D4DC64D3F32F 1408504 ----a-w- C:\Windows\Camera\Camera.exe 2014-09-06 15:31:09 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-09-06 15:31:06 1064CF2438DC44A13EFD13551915586D 321024 ----a-w- C:\Windows\System32\IME\SHARED\ImeBroker.exe 2014-09-06 15:31:05 FEF22922E4FA075C6C1FFF4385D74A95 99136 ----a-w- C:\Windows\FileManager\FileManager.exe 2014-09-06 15:31:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\Windows\System32\BulkOperationHost.exe 2014-09-06 15:31:05 A83FCE24AE4103F9DA32E8707C4B4C43 124928 ----a-w- C:\Windows\SysWOW64\wbem\WMIADAP.exe 2014-09-06 15:31:05 A09657B30C532DCF848F2B33404EF190 166400 ----a-w- C:\Windows\System32\wbem\WMIADAP.exe 2014-09-06 15:31:05 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\Windows\SysWOW64\Robocopy.exe 2014-09-06 15:31:05 34215162FF8440E3342071D5A7FDCB3C 1192280 ----a-w- C:\Windows\Boot\PCAT\memtest.exe 2014-09-06 15:31:05 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\Windows\System32\Robocopy.exe 2014-09-06 15:31:05 0C8AF6461266A72BE61552BB42BC13D8 361496 ----a-w- C:\Windows\FileManager\PhotosApp.exe 2014-09-06 15:30:57 B312E157D20E727F30EAB3A250441B6F 284672 ----a-w- C:\Windows\System32\WUDFHost.exe 2014-09-06 15:30:47 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\Windows\System32\services.exe 2014-09-06 15:30:46 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\Windows\System32\ntoskrnl.exe 2014-09-06 15:30:46 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\Windows\System32\SystemSettingsAdminFlows.exe 2014-09-06 15:30:45 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\Windows\System32\MDEServer.exe 2014-09-06 15:30:44 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\Windows\System32\VSSVC.exe 2014-09-06 15:30:44 CA67486846839817EFE89926A32BFFDA 86808 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2014-09-06 15:30:43 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\Windows\System32\audiodg.exe 2014-09-06 15:30:43 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\Windows\System32\mfpmp.exe 2014-09-06 15:30:42 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\Windows\System32\rstrui.exe 2014-09-06 15:30:42 B194DFF0C303121926CF5AAC3D5165ED 70656 ----a-w- C:\Windows\System32\InputMethod\SHARED\ChxPropertyUI.exe 2014-09-06 15:30:39 6946919260BB72A21C69037C6BA2CDB5 2095616 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2014-09-06 15:30:39 10D8859CF01C1284603582ABD9B0482C 114520 ----a-w- C:\Windows\System32\consent.exe 2014-09-06 15:30:37 679A800CFFBB8EA970506887045F2E41 46752 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe 2014-09-06 15:30:37 35687E363B171A26E1D96C9E98DA7312 369640 ----a-w- C:\Windows\vpnplugins\juniper\JunosPulseVpn.exe 2014-09-06 15:30:31 F381B380B7B2704EA4C0F8D8C49C1C50 623616 ----a-w- C:\Windows\System32\MDMAgent.exe 2014-09-06 15:29:09 B2F53B344EE8C54A37E059C11DE5368D 518000 ----a-w- C:\Users\Henry\Desktop\Voor Stick 16mb\Wipe, verwijder ongewenste data van je systeem---\setup_wipe.exe 2014-09-06 15:28:38 4A12C727502A07C4B89B663B942DF289 54776 ----a-w- C:\Windows\System32\wuauclt.exe 2014-09-06 08:23:43 BAA47E14DC9181081E076CA6F715C93C 73465 ----a-w- C:\Program Files (x86)\ImgBurn\uninstall.exe 2014-09-06 07:17:01 A87C991A89190E1E009D87175482DF4E 1173955 ----a-w- C:\Program Files\Avid\Sibelius 7\unins000.exe 2014-09-06 07:15:24 1EA45E5091D93FD170F5C24BD51486FD 2993664 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\SibeliusRegistration.exe 2014-09-06 07:15:23 1EA45E5091D93FD170F5C24BD51486FD 2993664 ----a-w- C:\Program Files\Avid\Sibelius 7\SibeliusRegistration.exe 2014-09-06 07:15:21 D91DC3A5C8345711330842EB3E45BB12 54066608 ----a-w- C:\Program Files\Avid\Sibelius 7\Sibelius.exe 2014-09-06 07:15:20 AEEC3191E18A60B706AFADC24C414342 39586224 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\Sibelius.exe 2014-09-06 07:15:20 4A5B181A6228C4D635A248253ADBDDA2 309168 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\RegTool.exe 2014-09-06 07:15:20 1A67D51EE240C2DF3EE222556C617E00 435120 ----a-w- C:\Program Files\Avid\Sibelius 7\RegTool.exe 2014-09-06 07:15:19 1BFA3B30A2A22D818D1EAB10FC4E3822 34816 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\Report.exe 2014-09-06 07:15:19 14B66DD02E009233648DCCF3B275C6E3 46592 ----a-w- C:\Program Files\Avid\Sibelius 7\Report.exe 2014-09-06 03:19:11 A76CF1C72687CBA28ED31A3987C54585 714728 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\unins000.exe 2014-09-06 03:19:11 5FE075E33A9A95F314233B8AF1EE0963 5531624 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser64.exe 2014-09-06 03:19:11 12976D66D515F42AB003702A1B9014E6 4080616 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser.exe 2014-09-06 02:50:48 F79C112FCC0FEF9EBE07F903CEA05F9F 647168 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2014-09-06 02:50:43 DBC61FE275917E75AE077A04E701C474 845824 ----a-w- C:\Windows\System32\SearchIndexer.exe 2014-09-06 02:50:42 CEAE26D9492F7D481916FF44C120D339 1206000 ----a-w- C:\Windows\System32\Taskmgr.exe 2014-09-06 02:50:41 831A3FB06E63850AEE5856BBF4394814 1063976 ----a-w- C:\Windows\SysWOW64\Taskmgr.exe 2014-09-06 02:50:40 D33C175C081B6770C32C6F4A561E99E4 635904 ----a-w- C:\Windows\System32\WWAHost.exe 2014-09-06 02:50:39 021C7541C55625D083753DA241169A97 1428480 ----a-w- C:\Windows\System32\RecoveryDrive.exe 2014-09-06 02:50:38 DB0FE6E51909BEB42004242EB08FEF47 517120 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2014-09-06 02:50:38 8DF7F2A9B72B7CA4294BB9E59FEAEFCD 514560 ----a-w- C:\Windows\SysWOW64\WWAHost.exe 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\Windows\System32\winload.exe 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\Windows\System32\Boot\winload.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\Windows\System32\winresume.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\Windows\System32\Boot\winresume.exe 2014-09-06 02:50:35 B93A75EEFB2818F790FA0D2BA536A339 658432 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe 2014-09-06 02:50:34 DDE972537280676F685DEC67CE28932D 320000 ----a-w- C:\Windows\System32\SearchProtocolHost.exe 2014-09-06 02:50:33 D8F7C3E57F2C09C6589AECD1820E0CA9 31232 ----a-w- C:\Windows\System32\dfp.exe 2014-09-06 02:50:33 390793BD9F3DEF111DB2B21559B6293A 584192 ----a-w- C:\Windows\System32\recimg.exe 2014-09-06 02:50:32 A8775E27277EB516E3D2DDD87CD34DAD 1403392 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe 2014-09-06 02:50:32 91F8F05881459330D83259A070D3642E 275456 ----a-w- C:\Windows\System32\Dism.exe 2014-09-06 02:50:31 6D79CDD66FE672937F251ED67C7FF11E 1757184 ----a-w- C:\Windows\System32\WMPDMC.exe 2014-09-06 02:50:28 3CA1EE5BE6C9D92DD672FC5A09E17AE2 356864 ----a-w- C:\Windows\System32\conhost.exe 2014-09-06 02:50:28 183360914EFC9D25E2A13D335D5E9EB8 469504 ----a-w- C:\Windows\System32\taskeng.exe 2014-09-06 02:50:27 C5010B79B13DA3E17D74825880C36695 258560 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe 2014-09-06 02:50:27 61692DB39AD3DF2F29392D68EAA7BB93 1543680 ----a-w- C:\Windows\System32\wbengine.exe 2014-09-06 02:50:26 C6ED6A63B57560EB5C99F88F93E7EDBF 461176 ----a-w- C:\Windows\System32\WerFault.exe 2014-09-06 02:50:26 B6A37C8C64DC87031293357F06DA1A7F 211968 ----a-w- C:\Windows\SysWOW64\Dism.exe 2014-09-06 02:50:26 9FB865E91832AC1CFF43A00351821C39 210736 ----a-w- C:\Windows\System32\SndVol.exe 2014-09-06 02:50:25 46706CA9611EBA516A286CD1B8CC3CBA 819200 ----a-w- C:\Windows\System32\InputMethod\JPN\JpnIME.exe 2014-09-06 02:50:25 1470D84723018488F2A51138FB94BA9A 196608 ----a-w- C:\Windows\System32\PkgMgr.exe 2014-09-06 02:50:23 2ED38EE952E6E02678237FE22C6EE581 512000 ----a-w- C:\Windows\System32\wimserv.exe 2014-09-06 02:50:22 C8D26BF823B162195ADD0496E165F081 456192 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe 2014-09-06 02:50:22 6CA4A0755B75B8E23B931F744319F888 615936 ----a-w- C:\Windows\System32\IME\SHARED\IMEWDBLD.EXE 2014-09-06 02:50:22 615BC7FA7AA1F97C4FD14F38B6C8FF56 722432 ----a-w- C:\Windows\System32\WindowsAnytimeUpgradeui.exe 2014-09-06 02:50:22 3463868E894DE0D4BCD516EAA255DD3C 180240 ----a-w- C:\Windows\SysWOW64\SndVol.exe 2014-09-06 02:50:22 2E3340A90140E1F0965DAD96C5B28A41 109568 ----a-w- C:\Windows\System32\dwm.exe 2014-09-06 02:50:22 26B2170BEC5EA59B297D07BBB894FBAB 410568 ----a-w- C:\Windows\SysWOW64\WerFault.exe 2014-09-06 02:50:21 3711306C8D1A859351D735D93090C1C0 83120 ----a-w- C:\Windows\System32\taskhost.exe 2014-09-06 02:50:21 341460DC88B59905249BF75B77D43AAE 516096 ----a-w- C:\Windows\System32\migwiz\migwiz.exe 2014-09-06 02:50:20 88060469AFD9DE814CAAF497922D3910 139464 ----a-w- C:\Windows\System32\wermgr.exe 2014-09-06 02:50:18 D8564418BAC13776E43DB5F6B4FA775E 142576 ----a-w- C:\Windows\System32\smss.exe 2014-09-06 02:50:18 9CF60747CA286C65255BC7E1546C87EB 188464 ----a-w- C:\Windows\System32\systemreset.exe 2014-09-06 02:50:18 1C3A8E71F3648A2A82F97B0316F9B167 376320 ----a-w- C:\Windows\System32\wsqmcons.exe 2014-09-06 02:50:17 FF48213516573E515185F3E03ED9DAFC 194560 ----a-w- C:\Windows\System32\SearchFilterHost.exe 2014-09-06 02:50:17 EE587980B94E521D812D755C21BC7E87 135168 ----a-w- C:\Windows\System32\fsutil.exe 2014-09-06 02:50:17 6C7D8104433471A5252624DF470C109A 43408 ----a-w- C:\Windows\System32\CloudNotifications.exe 2014-09-06 02:50:17 1D8303D3ED5F8C403984A8820E5E599A 80048 ----a-w- C:\Windows\System32\taskhostex.exe 2014-09-06 02:50:16 605E304B8A09FA8A71685F9B674A134F 897024 ----a-w- C:\Windows\System32\sdclt.exe 2014-09-06 02:50:16 4D052EB17981CF9360BA28A4F990D795 41320 ----a-w- C:\Windows\SysWOW64\CloudNotifications.exe 2014-09-06 02:50:16 40429BD440764EE2EC36A4D0FF3FA907 112640 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2014-09-06 02:50:15 B1B97114D180B5B1B05EB84F50441091 140464 ----a-w- C:\Windows\System32\Dism\DismHost.exe 2014-09-06 02:50:15 9920143F48EC5B2A823E19B8FAABA8C4 101216 ----a-w- C:\Windows\System32\RestoreOptIn.exe 2014-09-06 02:50:15 38ABAF8F3CED2EF51C693F03E2398E78 1392640 ----a-w- C:\Windows\SysWOW64\WMPDMC.exe 2014-09-06 02:50:14 E3EF58D4123B5AA29C8E19825AF84A5E 1283584 ----a-w- C:\Windows\System32\vds.exe 2014-09-06 02:50:14 E128F9D10AEAE1EFB1D2CC12A276A6A1 137344 ----a-w- C:\Windows\SysWOW64\wermgr.exe 2014-09-06 02:50:14 CDF5DDB3F917546C3955C4F6AE0D0446 32544 ----a-w- C:\Windows\System32\UserAccountBroker.exe 2014-09-06 02:50:14 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Windows\SysWOW64\Dism\DismHost.exe 2014-09-06 02:50:14 991E910BA00DF3DDF805C6180BFC675F 268976 ----a-w- C:\Windows\System32\oobe\Setup.exe 2014-09-06 02:50:13 FE12B5270B9C2578099F01C9342920E0 89848 ----a-w- C:\Windows\SysWOW64\RestoreOptIn.exe 2014-09-06 02:50:12 754896CD60E3B8251D1C520926E28179 29912 ----a-w- C:\Windows\SysWOW64\UserAccountBroker.exe 2014-09-06 02:50:12 254D664FE36D7F68C870BAF372E360ED 131168 ----a-w- C:\Windows\System32\easinvoker.exe 2014-09-06 02:50:11 DC679AA88F833B86B226F0BA05F229C3 216576 ----a-w- C:\Windows\System32\cleanmgr.exe 2014-09-06 02:50:11 7FE2C12C064FBC38283B5F31DEC7F186 213504 ----a-w- C:\Windows\SysWOW64\cleanmgr.exe 2014-09-06 02:50:11 47FC29F87915C862AD1886EE4DB574C1 244224 ----a-w- C:\Windows\SysWOW64\IME\IMEJP\imjpuexc.exe 2014-09-06 02:50:10 887CC44830D3F367CAD17A0CA7CCA5C8 99840 ----a-w- C:\Windows\servicing\TrustedInstaller.exe 2014-09-06 02:50:10 3046F6548AFAEEC4671A987685919D33 162176 ----a-w- C:\Windows\System32\AuthHost.exe 2014-09-06 02:50:10 1DD9E560A768ADB660454B6071AC8E6A 111104 ----a-w- C:\Windows\System32\InputMethod\CHS\ChsIME.exe 2014-09-06 02:50:09 1647317F3D6E812658D6BC10BCC3FE09 356352 ----a-w- C:\Windows\SysWOW64\taskeng.exe 2014-09-06 02:50:06 A7A776EC7C8ECB79D7980856F38CCD42 33056 ----a-w- C:\Windows\SysWOW64\WerFaultSecure.exe 2014-09-06 02:50:06 92F1BFCA973F8814ADB80584B20E0315 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-09-06 02:50:06 87C750D1E9CC44D0EC47C6B799F41CEB 36200 ----a-w- C:\Windows\System32\WerFaultSecure.exe 2014-09-06 02:50:06 2F7FC0D3019832F9C32C9BE9A533FECC 1815040 ----a-w- C:\Program Files (x86)\Windows Media Player\setup_wm.exe 2014-09-06 02:50:05 304165ABBE7A027261AA95C0A215E64D 1846272 ----a-w- C:\Program Files\Windows Media Player\setup_wm.exe 2014-09-06 02:50:05 0351FD3F47AA0DE9B7A0CA276DD5FBBD 164352 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe 2014-09-06 02:50:04 89421C10560D60B563D62E3D647601EF 128512 ----a-w- C:\Windows\System32\CloudStorageWizard.exe 2014-09-06 02:50:04 4114CB815387C6377B4753BAB526A0D9 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-09-06 02:50:04 25348D8EE4A0345DEED084A731A5D528 173056 ----a-w- C:\Windows\System32\oobe\windeploy.exe 2014-09-06 02:50:04 12E734CC38BF7B48E0D68139C0484D8D 38680 ----a-w- C:\Windows\System32\LockScreenContentServer.exe 2014-09-06 02:50:03 A340B32445BB448D6C4D96194488F82E 160256 ----a-w- C:\Windows\System32\DWWIN.EXE 2014-09-06 02:50:03 9AB9CD13EA34BDD31EE03DCADD3FCEBA 902144 ----a-w- C:\Windows\System32\autoconv.exe 2014-09-06 02:50:03 49A5228F730EEA60A01BB34D1A427239 283136 ----a-w- C:\Windows\System32\wbadmin.exe 2014-09-06 02:50:03 424C9777CB8507A6358BC142B7917143 874496 ----a-w- C:\Windows\System32\autofmt.exe 2014-09-06 02:50:03 22C4A7BCD36100D1655A1CD72327A40D 349696 ----a-w- C:\Windows\System32\bcdedit.exe 2014-09-06 02:50:02 9CEC771F2C6882E54C8B4049167B65AB 165376 ----a-w- C:\Windows\System32\bcdboot.exe 2014-09-06 02:50:02 74063A3A00A577AD98EB549778BB7FF7 195584 ----a-w- C:\Windows\SysWOW64\PkgMgr.exe 2014-09-06 02:50:02 6D78C1FB8024B0F22CC2E5C14DEC2A23 780288 ----a-w- C:\Windows\SysWOW64\autofmt.exe 2014-09-06 02:50:02 64DBE5C403B603164AD8FDDFD7CFF8B6 27480 ----a-w- C:\Windows\System32\SysResetErr.exe 2014-09-06 02:50:02 3A879CF2920350EB94ABF04A726167C9 479744 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMEWDBLD.EXE 2014-09-06 02:50:02 387A1E98BE548E4F199343CBA01E9D6D 890880 ----a-w- C:\Windows\System32\autochk.exe 2014-09-06 02:50:02 1D8972776F1DC0E41DBA395A9A491736 313344 ----a-w- C:\Windows\System32\IME\IMEJP\imjpuexc.exe 2014-09-06 02:50:01 E2936E745B84FB5B631E1CB0BCA9B71B 92160 ----a-w- C:\Windows\System32\WindowsAnytimeUpgradeResults.exe 2014-09-06 02:50:01 420E32FF08359CCF8336863057447DA1 800256 ----a-w- C:\Windows\SysWOW64\autoconv.exe 2014-09-06 02:50:01 1D31E78ED5C40B5C6CC8D3DE713177A5 792576 ----a-w- C:\Windows\SysWOW64\autochk.exe 2014-09-06 02:50:00 F217D2868BF46B4DFE1A7A410CB236BB 148992 ----a-w- C:\Windows\System32\cscript.exe 2014-09-06 02:50:00 EC3CD12410AF8B5DC881BF323423C3F6 188416 ----a-w- C:\Windows\System32\WindowsAnytimeUpgrade.exe 2014-09-06 02:50:00 D3633D8320294144FB2BDCFE8DE1AC41 138752 ----a-w- C:\Windows\SysWOW64\DWWIN.EXE 2014-09-06 02:49:59 2146E40FDBA2FE1E466BE59D3FE2601C 79872 ----a-w- C:\Windows\System32\powercfg.exe 2014-09-06 02:49:59 0205D31F27DFB30E7192FFAF6EE4C8A7 146944 ----a-w- C:\Windows\System32\diskpart.exe 2014-09-06 02:49:58 5B374F8F32C61364AF287165B5B60589 156672 ----a-w- C:\Windows\System32\RelPost.exe 2014-09-06 02:49:55 76B7BB05C1BCC11C69162FB7C2CE8901 92160 ----a-w- C:\Windows\System32\dasHost.exe 2014-09-06 02:49:54 B3FDE405C043BE9AA9193D1430FE7418 25088 ----a-w- C:\Windows\System32\ReAgentc.exe 2014-09-06 02:49:54 1577AD02C2B93E14D1CDEA041354EFAA 51712 ----a-w- C:\Windows\System32\SystemResetPlatform\SystemResetOSUpdates.exe 2014-09-06 02:49:54 0313DEA994238B342081071A1351CEDB 60416 ----a-w- C:\Windows\System32\oobe\oobeldr.exe 2014-09-06 02:49:53 D34D12D7D6010076E6D1E1ADB612017F 432640 ----a-w- C:\Windows\System32\Sysprep\sysprep.exe 2014-09-06 02:49:53 962D2CB61A17AE290D2ABDDEA39D2BD7 575488 ----a-w- C:\Windows\System32\dfrgui.exe 2014-09-06 02:49:53 417A1BFFAD79639B5E44B380B64A4E34 109568 ----a-w- C:\Windows\SysWOW64\CloudStorageWizard.exe 2014-09-06 02:49:53 1A2892C4742B9EDAB7074A229C1F0D46 67584 ----a-w- C:\Windows\SysWOW64\powercfg.exe 2014-09-06 02:49:52 F7041B2A7CA6CF4AE84DBFDA5A528865 183808 ----a-w- C:\Windows\System32\Defrag.exe 2014-09-06 02:49:52 ADF3C04436056E400BCF24AFA9B235C6 23040 ----a-w- C:\Windows\SysWOW64\ReAgentc.exe 2014-09-06 02:49:52 5979D087E744F7771B9295931C925F85 561664 ----a-w- C:\Windows\SysWOW64\dfrgui.exe 2014-09-06 02:49:52 32890534D93EAAB2DD048E30A99F2F70 57344 ----a-w- C:\Windows\System32\SrTasks.exe 2014-09-06 02:49:52 29DA788E9C2FBD0ED0AD56CE7D11896C 136192 ----a-w- C:\Windows\SysWOW64\diskpart.exe 2014-09-06 02:49:51 9B7F10C41D7D5E09D2F88B59A7556748 118272 ----a-w- C:\Windows\SysWOW64\cscript.exe 2014-09-06 02:49:49 B9DD602D02E7CD445F7D071D0404D86C 837632 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\ShapeCollector.exe 2014-09-06 02:49:49 B08E2CCB561100858F354ED207F4D615 106496 ----a-w- C:\Windows\SysWOW64\setupugc.exe 2014-09-06 02:49:48 215C0AE11C772F890458E0E912BC356A 13312 ----a-w- C:\Windows\SysWOW64\finger.exe 2014-09-06 02:49:48 2098403119918C4B49D92A095232B243 587264 ----a-w- C:\Windows\System32\IME\IMEJP\IMJPDCT.EXE 2014-09-06 02:49:47 E267BC3EEF80CC447680593038D10B0B 156160 ----a-w- C:\Windows\System32\aitagent.exe 2014-09-06 02:49:46 D6B85CC267293FFF3A9B83E98453BEB2 439296 ----a-w- C:\Windows\System32\IME\IMETC\IMTCPROP.exe 2014-09-06 02:49:46 B2B86ACAD5005337030CD240F3D11837 421888 ----a-w- C:\Windows\SysWOW64\IME\IMETC\IMTCPROP.exe 2014-09-06 02:49:46 1436FB6A4384D4608DD18DC238879177 475136 ----a-w- C:\Windows\SysWOW64\IME\IMEJP\IMJPDCT.EXE 2014-09-06 02:49:45 5C615EB69963F31CB9034702169ABCCB 15360 ----a-w- C:\Windows\System32\finger.exe 2014-09-06 02:48:04 F6B3260AA99A2E2C903EFD08C70EA714 349680 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 2014-09-06 02:47:59 0633C74EFAAEF72FCC33B86CB86B2ED5 79360 ----a-w- C:\Windows\System32\w32tm.exe 2014-09-06 02:47:58 7563B7860E857D463C407085EC1BE731 100352 ----a-w- C:\Windows\System32\BitLockerDeviceEncryption.exe 2014-09-06 02:47:58 37725B5D560398E5BF4DAF85E4F89249 70656 ----a-w- C:\Windows\SysWOW64\w32tm.exe 2014-09-06 02:47:44 F4CB8993FCF17B83D390A7DC49C44157 393216 ----a-w- C:\Windows\System32\IME\SHARED\IMCCPHR.exe 2014-09-06 02:47:44 C2A08906E0F22E2C8820183DE9F21801 264192 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMEPADSV.EXE 2014-09-06 02:47:44 5F6E3413CB36FC9CE29E2A501A614ADC 371712 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMCCPHR.exe 2014-09-06 02:47:44 0ED90B54834BE5A5F81A8A8E3F3AA801 296448 ----a-w- C:\Windows\System32\IME\SHARED\IMEPADSV.EXE 2014-09-06 02:30:51 504523988B43B6747B4CB35B51531C43 767600 ----a-w- C:\Users\Henry\Desktop\Syswranalyzer.exe 2014-09-05 17:59:30 6A35B295812CE7064CFBCD9F254169CF 390616 ----a-w- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 2014-09-05 17:57:11 1DD071EF86CC8E5C020A484F852F2245 187024 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\RTINSTALLER64.EXE 2014-09-05 16:59:39 C55A249E7BA51CCFB00E1256A202B603 26984104 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\76\C\Users\Henry\Desktop\Thunderbird Setup 31.1.0.exe 2014-09-05 16:40:39 43BCA4038E290F75B5B6FECBFF5288A2 114288 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 2014-09-05 16:40:39 3594139060E866CE04C9F14D6A38A79C 109886 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe 2014-09-05 16:40:34 DF64AC8DB231445483660F7FDAF49551 117360 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\crashreporter.exe 2014-09-05 16:40:34 8518F08CCF44D3CEB7731FB73B8A1D0E 119408 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\maintenanceservice.exe 2014-09-05 16:40:34 6E04812FAC21D5B2DF7FCC01CF794FB1 277616 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\updater.exe 2014-09-05 16:40:34 5BA18AE8604EE142840B2DC26A539FBE 194176 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\maintenanceservice_installer.exe 2014-09-05 16:40:34 37DF9BFF17FBD13440A52ACF515FACE7 22640 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\WSEnable.exe 2014-09-05 16:40:34 3013252539F5EAC75B7B0629828DF5CB 389744 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe 2014-09-05 16:40:34 0B164CA8C4019D2327660F56E6E7B5FB 18544 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\plugin-container.exe 2014-09-05 16:40:34 09D9B4815D1A2C62E1458D960761A9ED 901232 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe 2014-09-05 16:19:52 7787ED4AB5AA72E437BCF04DCB85DD33 3278936 ----a-w- C:\Program Files (x86)\Autorun Organizer\AutorunOrganizer.exe 2014-09-05 16:19:52 7111808D6F21C320417B33DE863DC1DB 1672792 ----a-w- C:\Program Files (x86)\Autorun Organizer\ChemtableStartupChecker.exe 2014-09-05 16:19:52 69B556D55733D92C9880DB3519FC0AAF 106104 ----a-w- C:\Program Files (x86)\Autorun Organizer\Reg64Call.exe 2014-09-05 16:19:52 38F12429F84C446D23BFF35894063EA9 1625208 ----a-w- C:\Program Files (x86)\Autorun Organizer\Updater.exe 2014-09-05 16:19:51 D5B6280007DD0B79B9027E7F20B279B7 1177688 ----a-w- C:\Program Files (x86)\Autorun Organizer\unins000.exe 2014-09-05 15:47:21 E172C1C5D26B7288B77B41EA8360454F 137869 ----a-w- C:\Program Files (x86)\Pixarra\TwistedBrush\Uninstal.exe 2014-09-05 15:38:40 AE08B11C3380F2D45FFCEA9FD1C9E15D 24424 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\FRC.exe 2014-09-05 15:38:40 62CF82729FB3A0F0EA19B0534C3A2233 65384 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\startup.exe 2014-09-05 15:38:40 2F22568680F909F79F68BDAA6223A64B 147304 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regsearch.exe 2014-09-05 15:38:40 2502ABB1302A5FFEDFCBCF6D06DD1DA8 88280 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\sysres.exe 2014-09-05 15:38:40 107DA30C452CD9C6CB6CDBF0DFAE8795 132176 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\clean.exe 2014-09-05 15:38:40 06C023D52FB34E170915D184F69F39A2 137432 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\pm.exe 2014-09-05 15:38:39 DDC90316E73CE9081798029CAF64F5A3 1193161 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\unins000.exe 2014-09-05 15:38:39 D6265310D5048A206B50B3F16422413B 520040 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regback.exe 2014-09-05 15:38:39 18616088EA08DC20BCE8D5EE05921B67 574544 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe 2014-09-05 15:28:40 DF8F50000451ACD360AA9A8B8B34A52B 74318 ----a-w- C:\Users\Henry\AppData\Local\Bandizip\Uninstall.exe 2014-09-05 15:27:35 652D2746E6573A64C29D4CB27441861C 17008611 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\TwistedBrush.Pro.Studio.v16.05.Incl.Serials=Goed\tbrusha.exe 2014-09-05 15:27:35 2B8933F6D1F2802DD0FE95C84AAC60C7 1803848 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Winzip81+reg.DezeGebruikIK\winzip81.exe 2014-09-05 15:27:34 9A007565345CD8296BE9DD537C975CA3 4323736 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Bandizip Zipp snel met Update\bandizip-setup-gl.exe 2014-09-05 15:27:34 414252046C17569B79EBC072AFFD61C8 1017213 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\WinRAR v3.51 FREE\WRAR351.exe 2014-09-05 15:27:34 0792526E7A86176CBBDF89E7B1EB0E64 4514064 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Bandizip Zipp snel met Update\BandiZip-Update\BANDIZIP-SETUP.EXE 2014-09-05 13:26:00 38E3FFB65F9E43A16A3C7DF5AB9A1274 2884432 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\AML-RegistryCleaner-10.04.13-regcleaner--\AML-RegistryCleaner--regcleaner.exe 2014-09-05 13:25:59 A5CF227A724DA27D44DED8AADC103251 2191720 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\autorun-organizer-setup.exe 2014-09-05 13:25:59 2C1A2256CAA86CA96EB31FC18771D9E8 2220312 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\autorun-organizer-setup-2.11mb.exe 2014-09-05 13:25:58 78AC633B80C9D081770D1982C47D9CCC 731000 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\AutorunsV10.06Win7\autoruns.exe 2014-09-05 13:25:58 70F2772AF8E6DB0EBCD2BA87CD6A86F1 595832 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\AutorunsV10.06Win7\autorunsc.exe 2014-09-05 13:25:57 D76796508592906DEDF7CBB16817D318 6497648 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\rfasetup.exe 2014-09-05 13:25:57 826E18621EA18F901D64A4BA1A648F6C 1433155 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\klavar-2009-02.exe 2014-09-05 13:16:47 E37C03948F74B2F516B4726D6A6A73A4 266840 ----a-w- C:\Program Files\RFA 9\rstpnt.exe 2014-09-05 13:16:47 D13F5317FAE1775A73F25E8AD41C28A8 313432 ----a-w- C:\Program Files\RFA 9\sysrep64.exe 2014-09-05 13:16:47 1FB834BD51A211212BEB7447AE0D67DE 483416 ----a-w- C:\Program Files\RFA 9\RFA_start.exe 2014-09-05 13:16:46 68217062422DE4D26CDA14594A02F8DF 1475115 ----a-w- C:\Program Files\RFA 9\unins000.exe 2014-09-05 13:16:46 4BE227276E78EE1AD9D9A974455B0D9D 3272280 ----a-w- C:\Program Files\RFA 9\rfagent64.exe 2014-09-05 13:16:46 2B9D9BAE3B92503690AEB7144EA0B315 5389400 ----a-w- C:\Program Files\RFA 9\reg1aid64.exe 2014-09-05 13:04:54 EDCCC8C13B1EB882F77BA0ABB84566E7 140456 ----a-w- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe 2014-09-05 13:04:54 EA5075E4077194D58773A9479E7557FA 392872 ----a-w- C:\Program Files (x86)\Canon\IJPLM\ijplmui.exe 2014-09-05 13:04:54 CB259AAA050B244D3A09F0F1B3A14154 93864 ----a-r- C:\Program Files (x86)\Canon\IJPLM\setup.exe 2014-09-05 13:02:47 1ADC65B105DD6B51067BFCD1D8D9E1DC 122992 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe 2014-09-05 13:02:46 4638E4D1C3EE5208E72AF78A2B5DD715 1062032 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe 2014-09-05 13:02:46 19F53A797CF3CDEC7B26D6C677E3F678 93808 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\MAPI.exe 2014-09-05 13:02:44 5C419D58C3BE22C3730ACBB583E22C87 420488 ---ha-w- C:\Program Files (x86)\Canon\IJ Scan Utility\MAINT.exe 2014-09-05 13:00:40 985EC64A4D5FE84B4DE369CD5E6A1600 403568 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\IJEREG.exe 2014-09-05 13:00:40 69E8D9C6D360F511470024308B0B3EE3 72304 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\UNINST.EXE 2014-09-05 13:00:40 4431E07D73A9538B3E5A7FA3F4556D1F 69232 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\IJRMF.exe 2014-09-05 13:00:32 61446FDD76788229D3EBAEABE84DF38C 887896 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\dotNetFx40_Client_setup.exe 2014-09-05 13:00:31 B05FCC8AE92C5EC4CE7FE41AC7FD1DA4 110184 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\addprinter.exe 2014-09-05 13:00:31 73913CC49926CAB5CC37BAF3DE13A4E0 725088 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\ewpexapp.exe 2014-09-05 13:00:31 61446FDD76788229D3EBAEABE84DF38C 887896 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\dotNetFx40_Client_setup.exe 2014-09-05 13:00:31 4669FF378F9895A672037B0FF36F9027 2265088 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbrk.exe 2014-09-05 13:00:31 13940BA025548132C1D0F5F177A0B7A7 110184 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addprinter.exe 2014-09-05 13:00:30 C95B0C1EED7E60EE94C184B66D3FC05C 725088 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexapp.exe 2014-09-05 13:00:30 BB749C5E36C107EAFE7F3752A640BDCC 1865328 ---ha-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\uninst.exe 2014-09-05 13:00:30 7760472A5EA8DB92278498E375B068EB 1674848 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbrk.exe 2014-09-05 13:00:04 5A2BE6FB08B12B9208916B568A08D622 122000 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexdl.exe 2014-09-05 12:59:40 CDFFB0058BA113ED8C6099DE11FAAD49 1273448 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE 2014-09-05 12:59:40 C2AFC01FA404ADFD3B915730C7DB2D55 940168 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE 2014-09-05 12:59:40 BE4F25620D39E7FA1A9CB715E2F60E96 1087608 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE 2014-09-05 12:59:40 B0E7F6B7CD997EA2E124C02EA0862D27 589952 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMLNCR.EXE 2014-09-05 12:59:40 AA6E41C1A24A1E6EFEA498D628FC9E15 381560 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNSEMAIN.EXE 2014-09-05 12:59:40 8998C26CC61025D4B842B98DF8C277E2 619144 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMULNC.EXE 2014-09-05 12:59:40 30F3D597E6AE93F7C43D112D12E38765 778392 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMINST.EXE 2014-09-05 12:59:39 A5CB53CC0AB71AA5B82AF9F36ADDBE76 768656 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMACNF.EXE 2014-09-05 12:59:30 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\Quick Menu\uninst.exe 2014-09-05 12:55:20 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\My Image Garden\AddOn\uninst.exe 2014-09-05 12:54:26 18102952358185C0FDACAFEA5B5E2865 3332240 ----a-w- C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\cnmiggipi.exe 2014-09-05 12:54:12 C82884FD99A4A17A43B1EC6F654E8EDF 559736 ----a-w- C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe 2014-09-05 12:53:48 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\My Image Garden\uninst.exe 2014-09-05 12:53:27 F45501D4E0D70F852D8D705588CE4292 392296 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyRst.exe 2014-09-05 12:53:27 D3DA7EE243A82A25255ABC965E870809 917096 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe 2014-09-05 12:53:27 B8C3131A49C8AF133DD3C75A2215CF02 2301032 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyDgn.exe 2014-09-05 12:53:24 60AD34E174F5EAA3203AB1ECD24EE538 1852032 ---ha-w- C:\Program Files\Canon\MyPrinter\uninst.exe 2014-09-05 12:53:05 AD8D6E3DF0F47A2CECC9EEFA78438475 354424 ----a-r- C:\Program Files (x86)\Canon\IJ Manual\CANON MG3200 SERIES\uninstall.exe 2014-09-05 12:52:42 45ED61A91F8CC88711EE4EB06B40D3D8 56456 ----a-w- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmvdrv.exe 2014-09-05 12:52:40 FDC2D7F38BECA0CDB7CB72D72BA8F5D2 2165880 ----a-w- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe 2014-09-05 12:52:14 87E3907428358946E8A3EFF99EB19F3D 728184 ----a-r- C:\Windows\System32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3200_series\DELDRV64.exe 2014-09-05 12:52:13 AC198D55B1F4CCD49A8ACE4856507EC7 55432 ------w- C:\Program Files\CanonBJ\IJPrinter\Canon MG3200 series\IJDIA6.exe 2014-09-05 12:52:07 35AFA8AFF085348E4542FE01D61B947B 60528 ----a-w- C:\Windows\System32\spool\drivers\x64\3\CNMVSB8.EXE 2014-09-05 12:52:06 3C10FAAA0E0BD71A39C5CD096282744F 20592 ----a-w- C:\Windows\System32\spool\drivers\x64\3\CNMSEB8.EXE 2014-09-05 12:20:59 4FF649DDE64C97FBC8C094F212E797C9 142848 ----a-w- C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe 2014-09-05 11:53:55 2469BB4697D2F27B3E6389FC6EF05447 487424 ----a-w- C:\Program Files\Garritan\Instruments for Finale\Garritan Instruments for Finale.exe 2014-09-05 11:53:53 B6CF388AE30FE3737C63C8B01480CFA9 695642 ----a-w- C:\Program Files\Garritan\Instruments for Finale\unins000.exe 2014-09-05 11:42:47 D5944ED8ADECD40442BC3E7F88D6C7B3 548704 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe 2014-09-05 11:42:47 A5B71BE51D4F96E249B90F9C97EE28B5 39776 ----a-w- C:\Windows\SysWOW64\DfSdkBt.exe 2014-09-05 11:42:47 A43182C212AD802B5D48AD3A3C89143D 33632 ----a-w- C:\Windows\SysWOW64\DfSdkBt32.exe 2014-09-05 11:42:47 423C428326549DE67FB808C3A2F33F78 410976 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS32.exe 2014-09-05 11:42:45 D3C68AE9218568EC7968CDB6AE1D702A 66896 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\ash_updateMediator.exe 2014-09-05 11:42:45 C72A91C37FD784A93E32797E1413D3D9 585568 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DeleteUserData.exe 2014-09-05 11:42:45 08B319655840BE9B9D9AA82D09C09A1A 578912 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\exit_WO6.exe 2014-09-05 11:42:44 75DC79323E883066D4C2822A58AA5ECF 839008 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\EXEDecrypt.exe 2014-09-05 11:42:44 58A187E98356B1240D1933386721FA8A 1402208 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exe 2014-09-05 11:42:44 3A29187EFC458A9CB02A7D3F4C00515A 4628832 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\VisualStyler.exe 2014-09-05 11:42:43 A08D9558D8C2058184FA1D512A090658 6328672 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\WO6.exe 2014-09-05 11:42:43 784A91F2AF617BDBA43D8EA69C29CC19 708432 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\unins000.exe 2014-09-05 11:08:35 66FC85C4728B6FBA8E7AAD59854F3730 101694776 ----a-w- C:\Windows\System32\MRT.exe 2014-09-05 10:48:36 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-09-05 10:48:35 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-09-05 10:48:34 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-09-05 10:48:16 642F850B5D94E08AB6CFF997BE09C688 86816 ----a-w- C:\Windows\BrowserChoice\browserchoice.exe 2014-09-05 10:48:11 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\Windows\System32\WSCollect.exe 2014-09-05 10:48:10 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\Windows\System32\sppsvc.exe 2014-09-05 10:47:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2014-09-05 10:47:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\Windows\System32\pcaui.exe 2014-09-05 10:47:56 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\Windows\System32\poqexec.exe 2014-09-05 10:47:56 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2014-09-05 10:41:57 6FB598E8DE02D879D17B35F144A1B3BC 270496 ------w- C:\Windows\System32\MpSigStub.exe 2014-09-05 10:29:00 D2CE2EDEC8D8E0A83D7F6267EF1299B6 96768 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2014-09-05 10:29:00 6B257B43F10588490320D7F1D42345B8 54432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2014-09-05 10:29:00 6B257B43F10588490320D7F1D42345B8 54432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2014-09-05 10:29:00 5F68D1BE6D42CFFE0EF534575B0F6C89 130208 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2014-09-05 10:29:00 31EDF20EF02603C690B6DCDC008B2235 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2014-09-05 10:27:08 3CC254108EFBE94E31132F2B0C886547 37217224 ----a-w- C:\Users\Henry\AppData\Roaming\LSC\Local Store\LSCSetup64.exe 2014-09-05 10:25:55 24A179EAB5D74773F1CED1190F242EA3 233784 ----a-w- C:\Users\Henry\AppData\Roaming\Maxthon3\Temp\MxUp\MxUpTool.exe 2014-09-05 10:25:53 ED372CB2FF3E2BE495D0E8C9626FF81A 1719608 ----a-w- C:\Users\Henry\AppData\Roaming\Maxthon3\Temp\MxUp\mxupnew.exe 2014-09-05 10:18:55 7E8D8C1CD88ADDE0C2319FA39627892F 1184605 ----a-w- C:\Program Files\lenovo\iMController\unins000.exe 2014-09-05 10:18:10 604CA6D7BD5E94F8CC45FDE07D2A4D98 12893808 ----a-w- C:\Program Files\lenovo\iMController\PluginUpdates\Installer\LeniMPkg.exe 2014-09-04 15:23:53 E90BF9E1562F40140161573B79CD5720 17292760 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\71\C\Users\Henry\Desktop\Voor Stick 16mb\Mbam-setup-2.0.2.1012--16,4mb--4.9.2014.exe 2014-09-04 06:19:13 B2F53B344EE8C54A37E059C11DE5368D 518000 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\70\C\Users\Henry\Desktop\setup_wipe.exe === C: other files == 2014-09-09 15:24:41 835A3526F68B0F9FC3B3B99E0690ED49 709529 ----a-w- C:\Program Files\Wipe\Plugins.zip 2014-09-07 06:54:29 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-09-07 06:54:20 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-09-07 06:54:20 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-09-07 06:54:20 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-09-07 06:35:03 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\48230029.sys 2014-09-06 16:17:39 8DF1254093B5C354CE725EB6B9B0DE19 146752 ----a-w- C:\Windows\System32\drivers\msgpioclx.sys 2014-09-06 15:33:52 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\Windows\System32\drivers\afd.sys 2014-09-06 15:33:47 83E3C080E9B0E0677DBCDF9D7F434166 4190720 ----a-w- C:\Windows\System32\win32k.sys 2014-09-06 15:33:42 313DCE665B57000B18CB26C6B6A10DFE 1557848 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-09-06 15:33:36 019CC610AD95FF47EAD7C08B7A683B96 257880 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2014-09-06 15:33:35 6CC1BB8F6851A262E2E824F0E92D5EEF 123224 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys 2014-09-06 15:33:34 F5D4FA3E1F4879C361FFF3855259D2C2 35856 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2014-09-06 15:31:19 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\Windows\System32\drivers\cng.sys 2014-09-06 15:31:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-09-06 15:31:06 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\Windows\System32\drivers\agilevpn.sys 2014-09-06 15:31:05 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\Windows\System32\drivers\vwifimp.sys 2014-09-06 15:31:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\Windows\System32\drivers\vwififlt.sys 2014-09-06 15:31:03 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2014-09-06 15:30:58 FE0ADF5028EB8C1339B66B3AEDE3FEF9 440664 ----a-w- C:\Windows\System32\drivers\usbport.sys 2014-09-06 15:30:58 93435654DCA210298BA0F986EB51C679 419672 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2014-09-06 15:30:58 25AC0B50A71938890970E1508F107196 2518360 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-09-06 15:30:57 D79920BE4E6683D3AB50F71457A4F6C6 27480 ----a-w- C:\Windows\System32\drivers\usbd.sys 2014-09-06 15:30:57 D537815E450A149752C15868392AD1F3 110592 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2014-09-06 15:30:57 8FCE57F7E5CDA5751FDE01A316180488 428888 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-09-06 15:30:57 83C9C45D59C72FEFDAE9A5686BE31FEA 467800 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2014-09-06 15:30:57 7CCBBCEE408A5DBE3FE47297DB5A6CFC 227840 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2014-09-06 15:30:57 48BA326A3DBA5B5BEB5F2777F4618696 89944 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2014-09-06 15:30:57 064260B3A5868AC894A4943543BC7AB7 37376 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2014-09-06 15:30:47 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\Windows\System32\drivers\srv2.sys 2014-09-06 15:30:47 4BB9BC49DEE1A319EC58274A7BBED663 310616 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2014-09-06 15:30:46 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\Windows\System32\drivers\nwifi.sys 2014-09-06 15:30:46 498288DD5CA42C2D36D125893E968C53 77312 ----a-w- C:\Windows\System32\drivers\hdaudbus.sys 2014-09-06 15:30:45 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2014-09-06 15:30:45 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\Windows\System32\drivers\Classpnp.sys 2014-09-06 15:30:44 D90AB68D0FAC9F357F663670FDBB511E 275800 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2014-09-06 15:30:44 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2014-09-06 15:30:44 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\Windows\System32\drivers\fltMgr.sys 2014-09-06 15:30:44 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\Windows\System32\drivers\storport.sys 2014-09-06 15:30:44 33977549C2CED09936E05BEE7659EAFF 384856 ----a-w- C:\Windows\System32\drivers\spaceport.sys 2014-09-06 15:30:32 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\Windows\System32\drivers\wpcfltr.sys 2014-09-06 02:50:46 9539F7917B4B6D92C90F0FAA6B86C605 539992 ----a-w- C:\Windows\System32\drivers\acpi.sys 2014-09-06 02:50:45 F21B77B4D74092A543807D3CEB711A88 1118552 ----a-w- C:\Windows\System32\drivers\ndis.sys 2014-09-06 02:50:41 A26AEC49F318FEE141DDDB2C5F99B3E6 249688 ----a-w- C:\Windows\System32\drivers\rdyboost.sys 2014-09-06 02:50:38 275AFE3FA35E8D78BE97695DF49817C6 280920 ----a-w- C:\Windows\System32\drivers\pci.sys 2014-09-06 02:50:36 233A4C961703D6B3EBA4EC1A3E85AACE 298496 ----a-w- C:\Windows\System32\drivers\ks.sys 2014-09-06 02:50:34 EA23453240137F6773174E0D93F61A69 148824 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-09-06 02:50:29 8685379B82AC81187813225905531D1E 272896 ----a-w- C:\Windows\System32\drivers\portcls.sys 2014-09-06 02:50:28 52E483A3701A5A61A75A06993720347D 551256 ----a-w- C:\Windows\System32\drivers\vhdmp.sys 2014-09-06 02:50:21 DDEE191AB32DFC22C6465002ECDF5EE4 124416 ----a-w- C:\Windows\System32\drivers\luafv.sys 2014-09-06 02:50:21 0ECEE590F2E2EF969FB74A6FC583A1E6 663040 ----a-w- C:\Windows\System32\drivers\PEAuth.sys 2014-09-06 02:50:19 FDEC5799BA499D18AFA3A540538866E7 236888 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2014-09-06 02:50:16 E515A287C8FAE901EB8FB42F168E14F2 924504 ----a-w- C:\Windows\System32\drivers\refs.sys 2014-09-06 02:50:16 BCFD8B149B3ADF92D0DB1E909CAF0265 79192 ----a-w- C:\Windows\System32\drivers\fileinfo.sys 2014-09-06 02:50:16 38A82F4EE8C416A6744B6D30381ED768 33280 ----a-w- C:\Windows\System32\drivers\BasicRender.sys 2014-09-06 02:50:15 0B1E929D11A8E358106955603FAC65E8 79192 ----a-w- C:\Windows\System32\drivers\sdstor.sys 2014-09-06 02:50:15 02836172141D3AFA35B07679E253E503 151384 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2014-09-06 02:50:11 61A1C2641321A6B89A2B41C5D481EF48 71888 ----a-w- C:\Windows\System32\drivers\dumpfve.sys 2014-09-06 02:50:11 48430B0313FC1CFE3D2400553F1A93CD 325464 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS 2014-09-06 02:50:09 B034A41891A36457B994307DFA772293 189784 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS 2014-09-06 02:50:05 9DDCA7F18983C5410DEFF79F819DF93C 994136 ----a-w- C:\Windows\System32\drivers\http.sys 2014-09-06 02:50:00 9CC0003FB8ED3763B977B43F1012FF63 54272 ----a-w- C:\Windows\System32\drivers\watchdog.sys 2014-09-06 02:48:08 1C80517BE6836A812F6A9B99B8321351 2013016 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2014-09-06 02:48:04 7FC5667DF73D4B04AA457CC3A4180E09 157016 ----a-w- C:\Windows\System32\drivers\wof.sys 2014-09-06 02:48:03 4030CB06B8D963A45CED9E60C9F2A11E 379224 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2014-09-06 02:48:03 179A41249055D5F039F1B6703F3B6D2B 376152 ----a-w- C:\Windows\System32\drivers\clfs.sys 2014-09-06 02:48:00 F88CC88F4A6D8476F1664E805CA18CC2 180056 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-09-06 02:48:00 A03F362C5557E238CBFA914689C77248 134144 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2014-09-06 02:47:59 BFBE1C5F57FE7A885673A1962D5532B7 136024 ----a-w- C:\Windows\System32\drivers\wfplwfs.sys 2014-09-06 02:47:59 8DB8EAB9D0C6A5DF0BDCADEA239220B4 33280 ----a-w- C:\Windows\System32\drivers\hidusb.sys 2014-09-06 02:47:58 ABB7341766902F5AAB45E15F34D19E15 111616 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2014-09-06 02:47:58 41CF802064F72E55F50CA0A221FD36D4 49152 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2014-09-06 02:47:58 1D55DADC22D21883A2F80297F5A5AE48 140288 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2014-09-06 02:47:57 FD9C9E9E3F0ED51502C7E8C066BE26B9 79360 ----a-w- C:\Windows\System32\drivers\IPMIDrv.sys 2014-09-06 02:47:57 3E28B99198B514DFEB152EACF913025E 283648 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2014-09-05 17:57:11 948D5E71CF9DB59961353A355EA45139 816344 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\WIN8\rt630x64.sys 2014-09-05 16:59:40 5F8A6A3D4F3EC596C05E63255BCF6884 21211 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\76\C\Users\Henry\Desktop\Wipe alles samen\Help voor in tijd van nood.-.zip 2014-09-05 13:16:47 7F2525187995BEDBF036C6525EE68CB9 88 ----a-w- C:\Program Files\RFA 9\save_settings.bat 2014-09-05 13:16:47 5DF030DB155ED600A7F1337FBC65D2B9 1510 ----a-w- C:\Program Files\RFA 9\repl_ag.bat 2014-09-05 12:25:36 6031CBF80D60580E0D20C32218E19104 3506 ----a-w- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Danny750@outlook.com 2014-09-05 12:18:37 EFE63BDFC12A1DD65FBB9E621F29B78C 10224 ------w- C:\Windows\System32\drivers\cdr4_xp.sys 2014-09-05 12:18:37 87B04878A6D59D6C79251DC960C674C1 55856 ------w- C:\Windows\System32\drivers\PxHlpa64.sys 2014-09-05 12:18:37 60B3B1A2544EB7843F26EC291BB590BB 10224 ------w- C:\Windows\System32\drivers\cdralw2k.sys 2014-09-05 10:59:55 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\Windows\System32\drivers\ipnat.sys 2014-09-05 10:59:54 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\Windows\System32\drivers\BtaMPM.sys 2014-09-05 10:56:53 139CFCDCD36B1B1782FD8C0014AC9B0E 39768 ----a-w- C:\Windows\System32\drivers\intelpep.sys 2014-09-05 10:56:53 0044B31F93946D5D41982314381FE431 146776 ----a-w- C:\Windows\System32\drivers\SerCx2.sys 2014-09-05 10:56:52 B9D968D8E2B0F9C6301CEB39CFC9B9E4 86872 ----a-w- C:\Windows\System32\drivers\pdc.sys 2014-09-05 10:56:28 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2014-09-05 10:56:23 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-108903256-2374480697-3855323451-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Wipe Maintance"="C:\Program Files\Wipe\net1.exe windowsStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "jmekey"="C:\windows\jmesoft\hotkey.exe" "jmesoft"="C:\Windows\jmesoft\ServiceLoader.exe" "CLMLServer"="C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" "Lenovo App Shop"="C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4" "ModeSwitch"="C:\Program Files\Lenovo\Power Control Switch\LitModeSwitch.exe /AutoRun" "LVT"="C:\Program Files\Lenovo\LVT\LJYZ.exe 1" "RemoteControl10"="C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" "CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon" "AML Registry Cleaner"="C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe /min" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Wipe Maintance"="C:\Program Files\Wipe\net1.exe windowsStartup" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun" "rfagent"="C:\Program Files\RFA 9\rfagent64.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Startup Folders ====================== 2014-09-06 14:35:51 1828 ----a-w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wipe Tray Agent.lnk ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\UMonitor Task" [C:\windows\SysWOW64\UMonit64.exe] "C:\WINDOWS\SysNative\tasks\Cybertron\Privacy Eraser\SkipUAC" [C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Dependency Package Auto Update" [C:\Program Files\Lenovo\iMController\AutoUpdate.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Experience Improvement" [C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.bing.com/?scope=web&mkt=nl-NL" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.bing.com/?scope=web&mkt=nl-NL" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {A750AB68-646F-4BA3-BE63-A1F79807FA58} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-108903256-2374480697-3855323451-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A750AB68-646F-4BA3-BE63-A1F79807FA58} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [Lenovo App Shop] "C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKCU\..\Run: [Wipe Maintance] "C:\Program Files\Wipe\net1.exe" windowsStartup O4 - Startup: Wipe Tray Agent.lnk = C:\Program Files\Wipe\Wipe.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Microsoft Office\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe O23 - Service: LenovoCOMService (LenovoCOMSvc) - Lenovo - C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe O23 - Service: LitModeCtrl - Lenovo - C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Henry\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Henry\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=519 folders=69 118372939 bytes) ==== Empty Temp Folders ====================== C:\Users\Administrator\AppData\Local\Temp emptied successfully C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Henry\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Users\Henry\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on wo 10-09-2014 at 14:38:48,27 ====================== - - - Updated - - - a.u.b. zoek-results *********************** Zoek.exe v5.0.0.0 Updated 10-September-2014 Tool run by Henry on wo 10-09-2014 at 14:22:50,96. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Henry\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 10-9-2014 14:26:20 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Users\Henry\AppData\Local\LSC deleted successfully C:\Users\Henry\AppData\Local\PackageStaging deleted successfully C:\Users\Henry\AppData\Local\start deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE C:\Windows\jmesoft\Service.exe C:\Program Files\Lenovo\iMController\SystemAgentService.exe C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Windows\jmesoft\hotkey.exe C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe C:\Windows\jmesoft\JME_LOAD.exe C:\windows\SysWOW64\UMonit64.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe C:\Users\Henry\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~3\Package Cache deleted C:\Users\Default\AppData\Local\Pokki deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\SysNative\config\systemprofile\Searches deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8125 MB CPU Info: Intel® Core i5-4440 CPU @ 3.10GHz CPU Speed: 3184,5 MHz Sound Card: Speakers (Realtek High Definiti | Realtek Digital Output (Realtek | Display Adapters: AMD Radeon R7 240 | AMD Radeon R7 240 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter #3 | 1x1 11b/g/n Wireless LAN PCI Express Half Mini Card Adapter | Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (F: | ) F: HL-DT-STDVD-RAM GHB0N Ports: COM2 LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 905,3GB | D: 298,1GB Hard Disks - Free: C: 766,0GB | D: 284,3GB Manufacturer *: LENOVO BIOS Info: AT/AT COMPATIBLE | | LENOVO - 1220 Time Zone: West-Europa (standaardtijd) Motherboard *: LENOVO Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Internet Explorer Version: 11.0.9600.17278 Mozilla Firefox version: 32.0 (x86 nl) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2014-09-10 05:28:14 ACDBE1ED38167C8B01B8F63161BB2CEA 2374784 ----a-w- C:\WINDOWS\explorer.exe 2014-09-05 12:08:41 3782D037B5425D7F313B8230DD9AB812 505 ----a-w- C:\WINDOWS\demdata.txt 2014-09-05 10:13:00 F0E857AA9EFCC374C1931F7E9978C480 24768 ----a-w- C:\WINDOWS\diagwrn.xml 2014-09-05 10:13:00 F0E857AA9EFCC374C1931F7E9978C480 24768 ----a-w- C:\WINDOWS\diagerr.xml ====== C:\Users\Henry\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-09-10 05:47:25 CA573004E12C7D5F474D3614F5532074 706016 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-09-10 05:47:25 0F945C84360FA65F1B074DB471730E34 105440 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-10 05:30:48 1E2AEB0238F0FE156FC1E4EE918446DD 61952 ----a-w- C:\WINDOWS\SysWOW64\MshtmlDac.dll 2014-09-10 05:30:46 B9361205DC3168E724E6288F64D0D867 69632 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2014-09-10 05:30:46 1C9DF9ABA72C6F6ED0AAAD9AC3F0DAC5 454656 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2014-09-10 05:30:44 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-09-10 05:30:44 6A89CC35530F7021B91571D2C2DF7009 312320 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2014-09-10 05:30:44 332E39115D7AE6071357E453574FCD48 365056 ----a-w- C:\WINDOWS\SysWOW64\dxtmsft.dll 2014-09-10 05:30:44 089A1B20B83F147184D28E8633DC0F5E 243200 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2014-09-10 05:30:43 96C9E7D834583F5F48CC0390F7755CE1 678400 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-09-10 05:30:43 734FB412C293001F7777DEF89BC510BF 603136 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-09-10 05:30:43 4E9D7F3948E0B1DB2F861A0C9BA186AB 597504 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-09-10 05:30:43 2BFB1103B7D2B45A094B0600CDD775F3 60416 ----a-w- C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll 2014-09-10 05:30:40 A98F492B4C63CA5E11DAAEB36A0CEFCE 2185728 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-09-10 05:30:40 6DBE009D0DECBD8F1F170366332BE432 1190400 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-09-10 05:30:40 26E85EDDE755D489A20CC67C4DAAD8BC 2014208 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-09-10 05:30:40 1A03F9B1D9F0493B18B1E648F4F82D4F 1812992 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-09-10 05:30:39 7E1AB823D5F57E18392A2C6BC7466B07 11769856 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-09-10 05:30:38 FA5275F6BE4D2615B754F06E7CF228DB 17455104 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-09-10 05:30:38 6D6E5210CA43AAC67082C69A8BA53705 4232704 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-09-10 05:28:23 4C48253C6A21CCEBA071B58A5CDF17C1 875688 ----a-w- C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2014-09-10 05:28:14 A1EE5C4A020DB9A8DB216C660C3FBDBE 11818496 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2014-09-10 05:28:14 195822ACCDAA2B4815DD01BAFC335595 2084520 ----a-w- C:\WINDOWS\SysWOW64\explorer.exe 2014-09-10 05:28:13 C0281344E7702939DCE4A17734269E58 1038336 ----a-w- C:\WINDOWS\SysWOW64\actxprxy.dll 2014-09-10 05:28:13 1E4CD5DB4F61DF2A9053C8B9A46B4013 50176 ----a-w- C:\WINDOWS\SysWOW64\UXInit.dll 2014-09-06 15:33:48 128EC9879D462F89829E663417FE5DBD 710144 ----a-w- C:\WINDOWS\SysWOW64\rpcrt4.dll 2014-09-06 15:33:45 8A9CB0FE11800DBBDBA8FE4F54828892 779264 ----a-w- C:\WINDOWS\SysWOW64\osk.exe 2014-09-06 15:33:43 55ADDA5B29D1151727470FA165460773 1312256 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-09-06 15:33:42 2C01D8EA2B0FA834597FCD96AAAE4F52 406400 ----a-w- C:\WINDOWS\SysWOW64\dxgi.dll 2014-09-06 15:33:38 1DEC681B79501A714F0D3FA2787183C3 305152 ----a-w- C:\WINDOWS\SysWOW64\wusa.exe 2014-09-06 15:31:24 38045850ACB96313A1983A8803302906 35480 ----a-w- C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2014-09-06 15:31:19 9EE0C96C5D9840DF3517C9B7D19ED590 318976 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2014-09-06 15:31:19 7DB59908D49605F2CD0CFB0CF9940E86 735232 ----a-w- C:\WINDOWS\SysWOW64\adtschema.dll 2014-09-06 15:31:18 DB3ED0BA26D7C598481A23E7D06A370E 2344448 ----a-w- C:\WINDOWS\SysWOW64\Wpc.dll 2014-09-06 15:31:16 DC72DC452793C9622E6F056B89F9302C 123904 ----a-w- C:\WINDOWS\SysWOW64\wuwebv.dll 2014-09-06 15:31:16 D8C63F333D4A8D8433849A9ADC092BE9 31232 ----a-w- C:\WINDOWS\SysWOW64\wuapp.exe 2014-09-06 15:31:16 8DA8026471B3470085B4AFB9C77BF45F 25088 ----a-w- C:\WINDOWS\SysWOW64\wups.dll 2014-09-06 15:31:16 0542A44401EA9451D82D3DF4BF3BD871 419928 ----a-w- C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2014-09-06 15:31:14 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\WINDOWS\SysWOW64\drvinst.exe 2014-09-06 15:31:09 949E0E42DAAD0418513B44C31A697CA5 1797896 ----a-w- C:\WINDOWS\SysWOW64\d3d9.dll 2014-09-06 15:31:09 5BD2BD14753D3B0ADDE842CDF25A4C60 2144984 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2014-09-06 15:31:09 1E14463F10B324B02EB2DA7415345D15 1473080 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2014-09-06 15:31:08 E65B5352AD0743F1F59BDA9466719EFE 265216 ----a-w- C:\WINDOWS\SysWOW64\SkyDriveShell.dll 2014-09-06 15:31:07 EA15CC7B75A2DE287E3B0C266A35490C 235008 ----a-w- C:\WINDOWS\SysWOW64\framedynos.dll 2014-09-06 15:31:07 E28501E3A241DDC5DC65382E55661B1D 285696 ----a-w- C:\WINDOWS\SysWOW64\dhcpcore.dll 2014-09-06 15:31:06 E4783EB6A6B2D04F3B541B378E843617 229888 ----a-w- C:\WINDOWS\SysWOW64\dhcpcore6.dll 2014-09-06 15:31:05 BEA7A26C2C22381B6DD88758352B9D9B 62976 ----a-w- C:\WINDOWS\SysWOW64\dhcpcsvc.dll 2014-09-06 15:31:05 BA6E52B0D82682EDE4B49D9CCC7D529B 207360 ----a-w- C:\WINDOWS\SysWOW64\framedyn.dll 2014-09-06 15:31:05 A750BB0258ECF6265A903905A0B14EB3 198656 ----a-w- C:\WINDOWS\SysWOW64\WebClnt.dll 2014-09-06 15:31:05 57E0A896C38C41C8B5B7F3127F8FD0D9 56320 ----a-w- C:\WINDOWS\SysWOW64\dhcpcsvc6.dll 2014-09-06 15:31:05 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\WINDOWS\SysWOW64\Robocopy.exe 2014-09-06 15:31:05 0CCDFED2DFCD4FBA73EE989249379458 52736 ----a-w- C:\WINDOWS\SysWOW64\ncobjapi.dll 2014-09-06 15:31:04 191B7F25BE13D9F9E56B2B4EA595AC62 11776 ----a-w- C:\WINDOWS\SysWOW64\d3d8thk.dll 2014-09-06 15:31:03 BA4FA107EF9A728C58A81B2EFCD6FE2B 26784 ----a-w- C:\WINDOWS\SysWOW64\mrt100.dll 2014-09-06 15:31:03 6923D6FAB7CBA8D82BD792182B4F3DE4 80032 ----a-w- C:\WINDOWS\SysWOW64\mrt_map.dll 2014-09-06 15:31:03 65FCEABE3128592F84B60140F814BDDB 1509888 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2014-09-06 15:31:00 FBE8AE41ED2A9FE4C2DE069C522CA9C0 12711424 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-09-06 15:30:57 854E970293BA92F9BB69FFD1CE051D9C 189016 ----a-w- C:\WINDOWS\SysWOW64\rsaenh.dll 2014-09-06 15:30:57 684CF6A72A8DF7D66D262AC4A6E07845 270848 ----a-w- C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll 2014-09-06 15:30:53 0FDDBC46B0FE68B9516BED5CDC2A5296 5104640 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2014-09-06 15:30:51 A5358F64D4EB5ABE2829981CD9734901 18755672 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-09-06 15:30:49 4550DC04464B86C5EB2CC77D9D27C06C 5833216 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2014-09-06 15:30:48 87AB9959EC23455326C8C55E59DE0A88 669856 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-09-06 15:30:47 561945C42E36012B4799C342E6A96498 800768 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-09-06 15:30:47 1E48870B29C7D7328A7D484A61250AE5 5774848 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2014-09-06 15:30:47 13CE2AA6D3ACAF0B485DBFE8AF2F5C48 305768 ----a-w- C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2014-09-06 15:30:46 EC4FA776548BF1A05DAE3B5EFB0FFE6F 1209616 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2014-09-06 15:30:46 E678126493997B951C6A6E91BC15C91C 836608 ----a-w- C:\WINDOWS\SysWOW64\SearchFolder.dll 2014-09-06 15:30:46 90C83CF02C884315E595FA07CA9C64EF 387896 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2014-09-06 15:30:46 5FAEA469BCE03F8FABAFB63D7603DC3C 982016 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2014-09-06 15:30:45 E2AAB5EDC278D489C8EF87F277B5E3E6 888320 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2014-09-06 15:30:45 A54EB398BC2D792A0C603A97F7975FD8 357376 ----a-w- C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll 2014-09-06 15:30:45 76892045ECB1D830185618DBD3467562 337408 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-09-06 15:30:45 008368626F3EFAEDB0C2CD4565BA6797 98584 ----a-w- C:\WINDOWS\SysWOW64\dwmapi.dll 2014-09-06 15:30:44 C97E772120135CD320CB217C92105B12 370176 ----a-w- C:\WINDOWS\SysWOW64\winspool.drv 2014-09-06 15:30:44 A9A027378882FFA14000612AE6FDA7AB 1200288 ----a-w- C:\WINDOWS\SysWOW64\propsys.dll 2014-09-06 15:30:44 A624CA7CDFA7941EECD6F96F1A47CCA3 178184 ----a-w- C:\WINDOWS\SysWOW64\MSVideoDSP.dll 2014-09-06 15:30:44 A4F3682781DD8B36E97FD04BA50845A2 209920 ----a-w- C:\WINDOWS\SysWOW64\rdpencom.dll 2014-09-06 15:30:44 A3ECC0F6960AA699895CB48BC69BEA3B 326024 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2014-09-06 15:30:44 956D8170AD470804405C0564E10ED6ED 406504 ----a-w- C:\WINDOWS\SysWOW64\AudioEng.dll 2014-09-06 15:30:44 8C25FBB338147754DA42DF990FB3AE4A 285144 ----a-w- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2014-09-06 15:30:44 88A821BC72CB1A935C92F453586233EF 518544 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2014-09-06 15:30:44 6BAE2EB5EFCEAC999BB1A5BF267C711D 707048 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2014-09-06 15:30:44 619C6E72B8433B3F67738F7E6C972A96 230808 ----a-w- C:\WINDOWS\SysWOW64\wintrust.dll 2014-09-06 15:30:44 4874EB05C1BE374B8A4AC15DF3DB07B0 111528 ----a-w- C:\WINDOWS\SysWOW64\gpapi.dll 2014-09-06 15:30:44 15905E6B799C1446A37915ED23CD17E5 144384 ----a-w- C:\WINDOWS\SysWOW64\rpchttp.dll 2014-09-06 15:30:43 E697F1E4E819EB12C40AE01F88626BAB 219136 ----a-w- C:\WINDOWS\SysWOW64\resutils.dll 2014-09-06 15:30:43 D0E0E176F86C3B1048A67144DE0C5CD3 46592 ----a-w- C:\WINDOWS\SysWOW64\tlscsp.dll 2014-09-06 15:30:43 CF3EA59E07BF906B43058C98B6750D16 855552 ----a-w- C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-09-06 15:30:43 B6803C8A600E3F029A3D688D9E590CA3 300544 ----a-w- C:\WINDOWS\SysWOW64\wlanmsm.dll 2014-09-06 15:30:43 5C74AC34C1CAA9C232836C580272B0DD 1029120 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2014-09-06 15:30:43 06AB75759A0B2D79680F52ACDAE702A1 313344 ----a-w- C:\WINDOWS\SysWOW64\clusapi.dll 2014-09-06 15:30:42 FF28231D41465C253E9F9EF164DD619C 230400 ----a-w- C:\WINDOWS\SysWOW64\wlanapi.dll 2014-09-06 15:30:42 68A23F58F6F16B81BCBFCAA07CDF0680 61440 ----a-w- C:\WINDOWS\SysWOW64\srclient.dll 2014-09-06 15:30:42 3CABBCB26C4E73F3440A8A064EB490FF 11264 ----a-w- C:\WINDOWS\SysWOW64\wlanhlp.dll 2014-09-06 15:30:40 86DB4BA87BAF3D467D04821602E586A9 3304448 ----a-w- C:\WINDOWS\SysWOW64\msi.dll 2014-09-06 15:30:39 F8D0951A75826AD557CFAC323A936AA6 281088 ----a-w- C:\WINDOWS\SysWOW64\msihnd.dll 2014-09-06 15:30:39 16CDD058883E38FB43D582FB080F721A 2318336 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2014-09-06 15:30:37 0A9EB3956BCB7E5CDE15AF987BD81543 488960 ----a-w- C:\WINDOWS\SysWOW64\qedit.dll 2014-09-06 15:28:39 819E423A2914A67CD23D53997F7B4E8D 756224 ----a-w- C:\WINDOWS\SysWOW64\WSShared.dll 2014-09-06 15:28:39 77B0DF38B67C00EFB5B131D279FC12ED 666624 ----a-w- C:\WINDOWS\SysWOW64\wuapi.dll 2014-09-06 15:28:38 4B7FA0A3D7B9D316BC6B2A409701E47D 828928 ----a-w- C:\WINDOWS\SysWOW64\twinui.appcore.dll 2014-09-06 15:28:37 9E9182A652F5287DA05B3893A2E19FEC 80896 ----a-w- C:\WINDOWS\SysWOW64\wudriver.dll 2014-09-06 02:51:02 04BAB8F7E5D38C8F33F56E8D0458BF02 630272 ----a-w- C:\WINDOWS\SysWOW64\OobeFldr.dll 2014-09-06 02:51:01 6BF8B0D30525E9E7864B2111E054ED9A 8946688 ----a-w- C:\WINDOWS\SysWOW64\glcndFilter.dll 2014-09-06 02:50:58 1EB4589BD34FB1C05AE164F1237BC04A 11776000 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2014-09-06 02:50:56 CA3037553B0D975A51991F94B5A1BD78 2643456 ----a-w- C:\WINDOWS\SysWOW64\tquery.dll 2014-09-06 02:50:55 457AE9AFCFB725C33CCAB36958B82479 1716736 ----a-w- C:\WINDOWS\SysWOW64\mssrch.dll 2014-09-06 02:50:51 D47C2645C635D42AE5C1F5B2644EA093 1374384 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2014-09-06 02:50:51 8DBA497E4C9D1B4BBFCC70A887B9A984 1077944 ----a-w- C:\WINDOWS\SysWOW64\webservices.dll 2014-09-06 02:50:48 015633FC83ED7475DFCCBCAE2AD859DE 2410496 ----a-w- C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2014-09-06 02:50:47 A5BFF3597F39015F18AC756F2B475D58 1341440 ----a-w- C:\WINDOWS\SysWOW64\dui70.dll 2014-09-06 02:50:46 92CB3D967CE7C330EA14EB2E74D9CCAA 1011280 ----a-w- C:\WINDOWS\SysWOW64\mfnetsrc.dll 2014-09-06 02:50:45 DF08FD7C895BCF593C885F813F7D649F 1496576 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2014-09-06 02:50:45 85A76669AC9B0A3A80FEC8A7EA3285E9 650736 ----a-w- C:\WINDOWS\SysWOW64\mfnetcore.dll 2014-09-06 02:50:45 7B50AD3FE6FA23D5D0E69455740986C6 418304 ----a-w- C:\WINDOWS\SysWOW64\StructuredQuery.dll 2014-09-06 02:50:44 D2BB10FED65199D4E0F1BED5BDBCD8BC 422968 ----a-w- C:\WINDOWS\SysWOW64\wer.dll 2014-09-06 02:50:44 C500954647E81A00700D3767C2B3CC4B 1767440 ----a-w- C:\WINDOWS\SysWOW64\setupapi.dll 2014-09-06 02:50:44 C3243F65447388A35107A996AC8B30C2 2428928 ----a-w- C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2014-09-06 02:50:44 7DCF616EF2D3197832396EC9D13C44D9 792576 ----a-w- C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2014-09-06 02:50:42 81B57798E73112445D7F0F92315B729E 477744 ----a-w- C:\WINDOWS\SysWOW64\SHCore.dll 2014-09-06 02:50:42 37C863F568421EE07CEAD1F181138F79 1369736 ----a-w- C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2014-09-06 02:50:41 EE31594481B710BBDA613D5AD3A2E517 1258496 ----a-w- C:\WINDOWS\SysWOW64\RacEngn.dll 2014-09-06 02:50:41 831A3FB06E63850AEE5856BBF4394814 1063976 ----a-w- C:\WINDOWS\SysWOW64\Taskmgr.exe 2014-09-06 02:50:40 F5C43BFE7EF27521ED25B912C9366CD9 1017936 ----a-w- C:\WINDOWS\SysWOW64\msctf.dll 2014-09-06 02:50:38 DB0FE6E51909BEB42004242EB08FEF47 517120 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-09-06 02:50:38 8DF7F2A9B72B7CA4294BB9E59FEAEFCD 514560 ----a-w- C:\WINDOWS\SysWOW64\WWAHost.exe 2014-09-06 02:50:37 F96DE54F7C84265FF0493C91D9AA8DBE 367616 ----a-w- C:\WINDOWS\SysWOW64\mssph.dll 2014-09-06 02:50:37 3A9A05B5DA85CE849980A1FFF8396BD6 1403392 ----a-w- C:\WINDOWS\SysWOW64\storagewmi.dll 2014-09-06 02:50:36 CCDD8577F7D66E678603675C8F974B5E 600576 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-09-06 02:50:36 7EC611582CF2124499A28946AEEBC3B4 296448 ----a-w- C:\WINDOWS\SysWOW64\MMDevAPI.dll 2014-09-06 02:50:36 4B76E621AFB97D0441F36978611A961C 617472 ----a-w- C:\WINDOWS\SysWOW64\apphelp.dll 2014-09-06 02:50:35 DA4AEA90705604A44AF5E06418A3AA79 344576 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2014-09-06 02:50:35 C7099D6A46B880EE194F7A4473D71E10 1361408 ----a-w- C:\WINDOWS\SysWOW64\user32.dll 2014-09-06 02:50:35 B93A75EEFB2818F790FA0D2BA536A339 658432 ----a-w- C:\WINDOWS\SysWOW64\SearchIndexer.exe 2014-09-06 02:50:35 0593F976DE28E1EE533DD4810C1A57C5 556032 ----a-w- C:\WINDOWS\SysWOW64\twinapi.dll 2014-09-06 02:50:33 EB6A3B8B72F2A3DAF38D3CF8ED983434 832512 ----a-w- C:\WINDOWS\SysWOW64\ActionCenter.dll 2014-09-06 02:50:33 CC4A07377E8D987CF3077B18FC6D133B 148992 ----a-w- C:\WINDOWS\SysWOW64\slc.dll 2014-09-06 02:50:33 C6AD0070469803D274E1F828D637A107 336232 ----a-w- C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2014-09-06 02:50:33 03C2F6FF02D37A00965CFF3FFFF0ED7C 752640 ----a-w- C:\WINDOWS\SysWOW64\tdh.dll 2014-09-06 02:50:32 73B5AFA32DBE1B599A8697187F0EC2EA 675328 ----a-w- C:\WINDOWS\SysWOW64\mssvp.dll 2014-09-06 02:50:32 421D685787762BBAE821159279B3000C 490136 ----a-w- C:\WINDOWS\SysWOW64\advapi32.dll 2014-09-06 02:50:32 3912F1946EFAC8F2CB9B6CA87A48996C 551424 ----a-w- C:\WINDOWS\SysWOW64\wimgapi.dll 2014-09-06 02:50:32 2716EEC7A0B6016F11B0A0F8B423DBBE 876544 ----a-w- C:\WINDOWS\SysWOW64\uxtheme.dll 2014-09-06 02:50:31 FDDB338071096A0FB4532C9E5639A702 288768 ----a-w- C:\WINDOWS\SysWOW64\stobject.dll 2014-09-06 02:50:31 9F534F974C13C3A94BBC515621AC0D35 528896 ----a-w- C:\WINDOWS\SysWOW64\comdlg32.dll 2014-09-06 02:50:30 EFD9B12C1CD8FDFD50C48153AF0A49F3 644608 ----a-w- C:\WINDOWS\SysWOW64\ntshrui.dll 2014-09-06 02:50:28 F7EDF905549E40BC5AD7262699555C94 117760 ----a-w- C:\WINDOWS\SysWOW64\thumbcache.dll 2014-09-06 02:50:28 110D9D6D6FF4785DEB5B614CEBAD3C9F 317584 ----a-w- C:\WINDOWS\SysWOW64\msvproc.dll 2014-09-06 02:50:27 C5010B79B13DA3E17D74825880C36695 258560 ----a-w- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2014-09-06 02:50:27 9FA3559B2E8805F6290934EC3EAD5CDE 459776 ----a-w- C:\WINDOWS\SysWOW64\DismApi.dll 2014-09-06 02:50:27 93EB9E9FF37FDAB796FE895C7D43C3BD 2811392 ----a-w- C:\WINDOWS\SysWOW64\themeui.dll 2014-09-06 02:50:27 57D5376D3B642E8BB83EA01A4DB59CAB 169472 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll 2014-09-06 02:50:26 FA3A111B94D371FF40FB924B4341E12C 473600 ----a-w- C:\WINDOWS\SysWOW64\AppxPackaging.dll 2014-09-06 02:50:26 F32D6220ED4DCA5028A5D063C5940CC3 518144 ----a-w- C:\WINDOWS\SysWOW64\MrmIndexer.dll 2014-09-06 02:50:26 B6A37C8C64DC87031293357F06DA1A7F 211968 ----a-w- C:\WINDOWS\SysWOW64\Dism.exe 2014-09-06 02:50:26 ABCCF220548BA6EE8A27DA85951D0569 89848 ----a-w- C:\WINDOWS\SysWOW64\ncryptsslp.dll 2014-09-06 02:50:26 8EEEEA65BAFEA09CC54074099349BB83 191488 ----a-w- C:\WINDOWS\SysWOW64\InputSwitch.dll 2014-09-06 02:50:26 4A5F18DD1DEC0C593EC124411A395B63 217600 ----a-w- C:\WINDOWS\SysWOW64\mssphtb.dll 2014-09-06 02:50:25 B58D8A205369DCAD4161649855773CC9 1162752 ----a-w- C:\WINDOWS\SysWOW64\usercpl.dll 2014-09-06 02:50:23 A52F459CFD08A1B0EC4D964C9D1D11B1 448000 ----a-w- C:\WINDOWS\SysWOW64\VAN.dll 2014-09-06 02:50:23 7C4829EC5B8ECF4B3C43CAFA1C175939 95232 ----a-w- C:\WINDOWS\SysWOW64\sppc.dll 2014-09-06 02:50:22 E11F500601345505CC8A201773B4AF7F 709120 ----a-w- C:\WINDOWS\SysWOW64\msctfuimanager.dll 2014-09-06 02:50:22 CCCBB9FAC2B1248F1A0930E66267BCCF 2165760 ----a-w- C:\WINDOWS\SysWOW64\SyncCenter.dll 2014-09-06 02:50:22 C9DDB8B1096B12DB54B26F949647496B 943104 ----a-w- C:\WINDOWS\SysWOW64\WlanMM.dll 2014-09-06 02:50:22 4F4AE5041395BF472EED0AC2EFE734E7 459264 ----a-w- C:\WINDOWS\SysWOW64\SettingSync.dll 2014-09-06 02:50:22 3463868E894DE0D4BCD516EAA255DD3C 180240 ----a-w- C:\WINDOWS\SysWOW64\SndVol.exe 2014-09-06 02:50:22 26B2170BEC5EA59B297D07BBB894FBAB 410568 ----a-w- C:\WINDOWS\SysWOW64\WerFault.exe 2014-09-06 02:50:22 069D06FE70439AD09B72F3CE880369F6 506120 ----a-w- C:\WINDOWS\SysWOW64\WinTypes.dll 2014-09-06 02:50:21 7A6B4C081B14750EE46CDB971589F961 176128 ----a-w- C:\WINDOWS\SysWOW64\authz.dll 2014-09-06 02:50:20 A1114F6DC4F8C13B68B59177BB454FD5 3085824 ----a-w- C:\WINDOWS\SysWOW64\rdpcore.dll 2014-09-06 02:50:19 C7DA053E0003F4416507D11EE9F2286C 242688 ----a-w- C:\WINDOWS\SysWOW64\mdmregistration.dll 2014-09-06 02:50:19 BACD9D28E19839CDFBA3151CE52F3AA2 292864 ----a-w- C:\WINDOWS\SysWOW64\ninput.dll 2014-09-06 02:50:18 9DB8537C03BE40548968C445FC595753 552632 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2014-09-06 02:50:17 D8242B0126F39B0E92975A16ADC2E578 232896 ----a-w- C:\WINDOWS\SysWOW64\sqmapi.dll 2014-09-06 02:50:17 25A95594FFFA99652BBF1D9695A7D85B 369288 ----a-w- C:\WINDOWS\SysWOW64\Faultrep.dll 2014-09-06 02:50:16 62969A88DE12FD62D59A6C7821A929BC 137728 ----a-w- C:\WINDOWS\SysWOW64\imm32.dll 2014-09-06 02:50:16 4D052EB17981CF9360BA28A4F990D795 41320 ----a-w- C:\WINDOWS\SysWOW64\CloudNotifications.exe 2014-09-06 02:50:16 48E55FE508257F28C6DB4BA4A39B7CDC 140456 ----a-w- C:\WINDOWS\SysWOW64\wscapi.dll 2014-09-06 02:50:16 40429BD440764EE2EC36A4D0FF3FA907 112640 ----a-w- C:\WINDOWS\SysWOW64\fsutil.exe 2014-09-06 02:50:15 C2BD0BF038EA196DABE53E6A091501A9 2537472 ----a-w- C:\WINDOWS\SysWOW64\gameux.dll 2014-09-06 02:50:15 B4069D2379487C118C5DF646120428CE 214016 ----a-w- C:\WINDOWS\SysWOW64\SndVolSSO.dll 2014-09-06 02:50:15 4C20F550B6A99F2F8F8C5DB3E8776F37 470016 ----a-w- C:\WINDOWS\SysWOW64\timedate.cpl 2014-09-06 02:50:15 4941D400842A522C92332098CA8E9175 409600 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2014-09-06 02:50:15 38ABAF8F3CED2EF51C693F03E2398E78 1392640 ----a-w- C:\WINDOWS\SysWOW64\WMPDMC.exe 2014-09-06 02:50:14 E128F9D10AEAE1EFB1D2CC12A276A6A1 137344 ----a-w- C:\WINDOWS\SysWOW64\wermgr.exe 2014-09-06 02:50:14 AA195EEF529D57407B4E75D0ADF2CEF1 251504 ----a-w- C:\WINDOWS\SysWOW64\powrprof.dll 2014-09-06 02:50:14 774BEEDA19E96F51149A515D103A6720 391680 ----a-w- C:\WINDOWS\SysWOW64\WLanConn.dll 2014-09-06 02:50:14 470879333CC4C30E2A3F6482800A82FE 137216 ----a-w- C:\WINDOWS\SysWOW64\PlayToManager.dll 2014-09-06 02:50:13 FF3EB7AEA154FF3034073E7F13F98A01 835584 ----a-w- C:\WINDOWS\SysWOW64\rasgcw.dll 2014-09-06 02:50:13 FE12B5270B9C2578099F01C9342920E0 89848 ----a-w- C:\WINDOWS\SysWOW64\RestoreOptIn.exe 2014-09-06 02:50:13 E6B8806DEC8FA31D9E1620E61EE02ACD 402944 ----a-w- C:\WINDOWS\SysWOW64\zipfldr.dll 2014-09-06 02:50:13 E6151D13221D4FAEBF07EF9EFC862DDC 507392 ----a-w- C:\WINDOWS\SysWOW64\WSDApi.dll 2014-09-06 02:50:12 8A5FF82A1E58543DFE1959FA4108CBE2 308224 ----a-w- C:\WINDOWS\SysWOW64\srchadmin.dll 2014-09-06 02:50:12 754896CD60E3B8251D1C520926E28179 29912 ----a-w- C:\WINDOWS\SysWOW64\UserAccountBroker.exe 2014-09-06 02:50:12 404FE63DD356D15F4F0E3FDEF57F6115 109568 ----a-w- C:\WINDOWS\SysWOW64\wscinterop.dll 2014-09-06 02:50:12 059A7EB8ABB9DAD1DB46F81EAFACC4DE 307200 ----a-w- C:\WINDOWS\SysWOW64\newdev.dll 2014-09-06 02:50:11 7FE2C12C064FBC38283B5F31DEC7F186 213504 ----a-w- C:\WINDOWS\SysWOW64\cleanmgr.exe 2014-09-06 02:50:11 7B7AD0D37EAA405FC9F87BFD32ADCBB7 79496 ----a-w- C:\WINDOWS\SysWOW64\bcd.dll 2014-09-06 02:50:09 1647317F3D6E812658D6BC10BCC3FE09 356352 ----a-w- C:\WINDOWS\SysWOW64\taskeng.exe 2014-09-06 02:50:06 F1100B1CA05FEB775FCEBF25241B7762 260608 ----a-w- C:\WINDOWS\SysWOW64\BioCredProv.dll 2014-09-06 02:50:06 B81304A7B26C618C0B458C4E53E6A3B0 151040 ----a-w- C:\WINDOWS\SysWOW64\dmvdsitf.dll 2014-09-06 02:50:06 A7A776EC7C8ECB79D7980856F38CCD42 33056 ----a-w- C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2014-09-06 02:50:06 A15755E94062C768A1AC3F1720610A98 98304 ----a-w- C:\WINDOWS\SysWOW64\netid.dll 2014-09-06 02:50:05 4262CC96E6D490E6973295FE5DA043A5 167936 ----a-w- C:\WINDOWS\SysWOW64\netiohlp.dll 2014-09-06 02:50:05 3DD31DFE0146104B90BEDCCD4DCB7635 155136 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 02:50:05 3BAD9F36E1EF31762BC54C7940BD9235 12288 ----a-w- C:\WINDOWS\SysWOW64\clrhost.dll 2014-09-06 02:50:05 0351FD3F47AA0DE9B7A0CA276DD5FBBD 164352 ----a-w- C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2014-09-06 02:50:04 9281FA6B56D3B7A64CB140CE310686DE 109056 ----a-w- C:\WINDOWS\SysWOW64\bcrypt.dll 2014-09-06 02:50:04 76646923CD7635715615B120A0F9B60C 207872 ----a-w- C:\WINDOWS\SysWOW64\dmdskmgr.dll 2014-09-06 02:50:03 CA547BADA550D494626B31C72CC21DB6 251904 ----a-w- C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2014-09-06 02:50:03 9FAF625C560728E860517DF9DBB9D960 62976 ----a-w- C:\WINDOWS\SysWOW64\samlib.dll 2014-09-06 02:50:03 80425342540998BAB3EE066E1E4E49C8 116736 ----a-w- C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2014-09-06 02:50:03 6097263AB790AC06536C34F1CAD5F934 154624 ----a-w- C:\WINDOWS\SysWOW64\netplwiz.dll 2014-09-06 02:50:03 5F1330B8997248D68D484CF759E0C019 156672 ----a-w- C:\WINDOWS\SysWOW64\scrrun.dll 2014-09-06 02:50:03 4491E85C62A83CB3BE7B82DA974F73C4 147968 ----a-w- C:\WINDOWS\SysWOW64\deviceaccess.dll 2014-09-06 02:50:03 16B05ECB7FE1DE4DE13F3E2AE4880F5A 45568 ----a-w- C:\WINDOWS\SysWOW64\acppage.dll 2014-09-06 02:50:02 872F0C4D6114670DDA1DABDA0892C5C1 165376 ----a-w- C:\WINDOWS\SysWOW64\scrobj.dll 2014-09-06 02:50:02 7B617B465FC0BE2162A33239141FCFCD 185856 ----a-w- C:\WINDOWS\SysWOW64\wlidcredprov.dll 2014-09-06 02:50:02 74063A3A00A577AD98EB549778BB7FF7 195584 ----a-w- C:\WINDOWS\SysWOW64\PkgMgr.exe 2014-09-06 02:50:02 6D78C1FB8024B0F22CC2E5C14DEC2A23 780288 ----a-w- C:\WINDOWS\SysWOW64\autofmt.exe 2014-09-06 02:50:02 4FC945E08AF63491AFCC902C99046735 321536 ----a-w- C:\WINDOWS\SysWOW64\provsvc.dll 2014-09-06 02:50:02 40C42FE241AA67B34AD93521A754AC18 1057792 ----a-w- C:\WINDOWS\SysWOW64\printui.dll 2014-09-06 02:50:02 30FC899ABD3BC969D2895A86861A913D 14848 ----a-w- C:\WINDOWS\SysWOW64\slpts.dll 2014-09-06 02:50:01 78A65E694B2512EC9FFB3D5FF28967CB 439808 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2014-09-06 02:50:01 420E32FF08359CCF8336863057447DA1 800256 ----a-w- C:\WINDOWS\SysWOW64\autoconv.exe 2014-09-06 02:50:01 391EACC3F9D9633252CDB30CC93DB049 99840 ----a-w- C:\WINDOWS\SysWOW64\AuthBroker.dll 2014-09-06 02:50:01 28F2600864E7A46FBCC20201A28802BC 27136 ----a-w- C:\WINDOWS\SysWOW64\winbrand.dll 2014-09-06 02:50:01 28154466F239C8437A09EF16F36B9492 484864 ----a-w- C:\WINDOWS\SysWOW64\untfs.dll 2014-09-06 02:50:01 1D31E78ED5C40B5C6CC8D3DE713177A5 792576 ----a-w- C:\WINDOWS\SysWOW64\autochk.exe 2014-09-06 02:50:00 DC6C267FA152D4E5C068C747D00D1C56 47104 ----a-w- C:\WINDOWS\SysWOW64\mssprxy.dll 2014-09-06 02:50:00 D3633D8320294144FB2BDCFE8DE1AC41 138752 ----a-w- C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-09-06 02:50:00 750E4BE8B6987BA644F3FF96935070B8 59392 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 02:50:00 5AEEFA1C03E58A4EAF92248489C4A281 352768 ----a-w- C:\WINDOWS\SysWOW64\spwizeng.dll 2014-09-06 02:50:00 1F2EDE388EC6CCB146B35C229C209AC9 59392 ----a-w- C:\WINDOWS\SysWOW64\StorageContextHandler.dll 2014-09-06 02:49:59 3AAA7338C3752D8B45A3BAC2520C8FC5 68096 ----a-w- C:\WINDOWS\SysWOW64\spbcd.dll 2014-09-06 02:49:59 119E0F7A71775A5CFB208B036ECE35E1 2255 ----a-w- C:\WINDOWS\SysWOW64\WimBootCompress.ini 2014-09-06 02:49:58 D050F4DCF90AEEFC9D603D692585ABB5 592896 ----a-w- C:\WINDOWS\SysWOW64\sud.dll 2014-09-06 02:49:55 78503FFC0092E152626A05EFDADD8817 130560 ----a-w- C:\WINDOWS\SysWOW64\SettingMonitor.dll 2014-09-06 02:49:55 66F44ACC5DC705BFF72A9093C39282E0 544768 ----a-w- C:\WINDOWS\SysWOW64\wlidcli.dll 2014-09-06 02:49:54 C9634BC6BDED782253F7BFD79A905591 1136128 ----a-w- C:\WINDOWS\SysWOW64\wscui.cpl 2014-09-06 02:49:54 0A8FD01951AFD20F89CE1847B4CA789C 47104 ----a-w- C:\WINDOWS\SysWOW64\offreg.dll 2014-09-06 02:49:53 E79C408D32840F5F01AD804288CD6093 97280 ----a-w- C:\WINDOWS\SysWOW64\migisol.dll 2014-09-06 02:49:53 E332EF2E6551CCC2B7A1118A962A0D1C 30720 ----a-w- C:\WINDOWS\SysWOW64\deviceassociation.dll 2014-09-06 02:49:53 D3B9803EB2D8A9FB219F01F6790749AE 559104 ----a-w- C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll 2014-09-06 02:49:53 C7CAA2A56A66BCB587F30B73A418E0DB 159232 ----a-w- C:\WINDOWS\SysWOW64\werui.dll 2014-09-06 02:49:53 B22EE6357ACAD5BA5DD13319EAC7F342 82432 ----a-w- C:\WINDOWS\SysWOW64\IdCtrls.dll 2014-09-06 02:49:53 8A082D36DF5A4BBF40D96533B46BE15B 109056 ----a-w- C:\WINDOWS\SysWOW64\SSShim.dll 2014-09-06 02:49:53 8912CFFECB3018BD1657398AE4DBBDC4 270336 ----a-w- C:\WINDOWS\SysWOW64\winsku.dll 2014-09-06 02:49:53 717FF2BBD15A1047CEA8B9327C2650EA 203776 ----a-w- C:\WINDOWS\SysWOW64\PlayToDevice.dll 2014-09-06 02:49:53 417A1BFFAD79639B5E44B380B64A4E34 109568 ----a-w- C:\WINDOWS\SysWOW64\CloudStorageWizard.exe 2014-09-06 02:49:53 1A2892C4742B9EDAB7074A229C1F0D46 67584 ----a-w- C:\WINDOWS\SysWOW64\powercfg.exe 2014-09-06 02:49:52 ADF3C04436056E400BCF24AFA9B235C6 23040 ----a-w- C:\WINDOWS\SysWOW64\ReAgentc.exe 2014-09-06 02:49:52 5CE230DBA05F35DE72602EB7D863CF2C 140288 ----a-w- C:\WINDOWS\SysWOW64\easwrt.dll 2014-09-06 02:49:52 5979D087E744F7771B9295931C925F85 561664 ----a-w- C:\WINDOWS\SysWOW64\dfrgui.exe 2014-09-06 02:49:52 29DA788E9C2FBD0ED0AD56CE7D11896C 136192 ----a-w- C:\WINDOWS\SysWOW64\diskpart.exe 2014-09-06 02:49:51 9B7F10C41D7D5E09D2F88B59A7556748 118272 ----a-w- C:\WINDOWS\SysWOW64\cscript.exe 2014-09-06 02:49:51 58A79835B276C869C0B2B45EEDA95BFC 51712 ----a-w- C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll 2014-09-06 02:49:51 3AD30A2F12CF91C66EA01AB882CE60AE 17920 ----a-w- C:\WINDOWS\SysWOW64\sxshared.dll 2014-09-06 02:49:51 3446C9E2DDF3F1A3597FA1A84249D45D 208384 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2014-09-06 02:49:51 2B945A334F50170137F541D0BE4158C8 10240 ----a-w- C:\WINDOWS\SysWOW64\msshooks.dll 2014-09-06 02:49:49 F9D8E8E9C931DED73B71EB9A4E898274 5632 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 02:49:49 B08E2CCB561100858F354ED207F4D615 106496 ----a-w- C:\WINDOWS\SysWOW64\setupugc.exe 2014-09-06 02:49:49 358ABF671CB11C8B3ED533C60A62805F 256000 ----a-w- C:\WINDOWS\SysWOW64\wincorlib.dll 2014-09-06 02:49:48 DE461B86C05946D10E519F512D09E389 100197 ----a-w- C:\WINDOWS\SysWOW64\RacRules.xml 2014-09-06 02:49:48 B0B1AEAC427EC6943D851150EC135589 2544128 ----a-w- C:\WINDOWS\SysWOW64\themecpl.dll 2014-09-06 02:49:48 67863ACDD7D2EA4B4A4B5B812927CEC2 27648 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll 2014-09-06 02:49:48 215C0AE11C772F890458E0E912BC356A 13312 ----a-w- C:\WINDOWS\SysWOW64\finger.exe 2014-09-06 02:49:47 F62BEC071CF36069161FD270BE6A6E7D 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 02:49:47 F1DB86EA935C13CDFF27AB957297136A 7762 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms 2014-09-06 02:49:47 E535EA7F37E3AEA716057267ABD7D6A8 146944 ----a-w- C:\WINDOWS\SysWOW64\korwbrkr.dll 2014-09-06 02:49:47 A30586158BE8810E7A6672462B2E7384 163328 ----a-w- C:\WINDOWS\SysWOW64\ocsetapi.dll 2014-09-06 02:49:47 850DC38AE4A068DC47F9D0E1D1D1B33C 202240 ----a-w- C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2014-09-06 02:49:47 1FDF29F970E2E843B4DC5D0626D0EDD5 7130 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms 2014-09-06 02:49:46 C31E30DEB0BAF08CFF9225181CBEB155 34304 ----a-w- C:\WINDOWS\SysWOW64\dataclen.dll 2014-09-06 02:49:46 65E9B707B157DB2D2844AD4D4ADF4EE9 193024 ----a-w- C:\WINDOWS\SysWOW64\bthprops.cpl 2014-09-06 02:49:46 2DCD7ABA661E6E85CA6F426EEDE5C718 8192 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 02:49:45 F3539A38A1BFB9CED91B2DD9C4F2A565 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 02:49:45 869AE389F9F1EF3F715936FA30244ACA 127488 ----a-w- C:\WINDOWS\SysWOW64\occache.dll 2014-09-06 02:49:45 5E69CA54D2FE1088C78687EB8E58CB51 3584 ---ha-w- C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll 2014-09-06 02:49:44 9CED2ACC26435D787616526692FBBE20 28160 ----a-w- C:\WINDOWS\SysWOW64\f3ahvoas.dll 2014-09-06 02:49:43 E7B53AF004BEE5112F787A6E5B04D737 11109 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms 2014-09-06 02:48:10 2169BB3BA0596881EE717A93EC60037D 35328 ----a-w- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2014-09-06 02:48:08 83058B0F0CEC63A5A7438818B71C0935 1679128 ----a-w- C:\WINDOWS\SysWOW64\msxml6.dll 2014-09-06 02:48:08 5AEFC877161F7A481DD7CC137F97E761 2270208 ----a-w- C:\WINDOWS\SysWOW64\msftedit.dll 2014-09-06 02:48:07 21DDC5D6CFAC0A5FEE3B364A9B58A7CB 1764864 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2014-09-06 02:48:06 67F3D0E0D8F009FF665A0E452C6F13E8 629760 ----a-w- C:\WINDOWS\SysWOW64\MrmCoreR.dll 2014-09-06 02:48:06 67D2296474FB0F3B858E1758FFA3AC79 1779800 ----a-w- C:\WINDOWS\SysWOW64\d3d11.dll 2014-09-06 02:48:05 55237559D07288EEEA3133451FE4F386 836096 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2014-09-06 02:48:04 FF0EE1B87E5DD7A82F7BB124D5CA8BB6 494592 ----a-w- C:\WINDOWS\SysWOW64\dnsapi.dll 2014-09-06 02:48:04 7C0E08F3F04ED8874E19DD23753DE2C6 356864 ----a-w- C:\WINDOWS\SysWOW64\wlidprov.dll 2014-09-06 02:48:04 775C3D06C408F4F093254B39637A6F1E 755712 ----a-w- C:\WINDOWS\SysWOW64\kerberos.dll 2014-09-06 02:48:04 2BDB085AA7ECA65D1793D150CEC960AF 1095488 ----a-w- C:\WINDOWS\SysWOW64\ole32.dll 2014-09-06 02:48:03 F9EA1AF4C99275C56B47F2C1F436B5E9 1066496 ----a-w- C:\WINDOWS\SysWOW64\gdi32.dll 2014-09-06 02:48:03 D30975FD233E399744E2FB083F5E5545 222720 ----a-w- C:\WINDOWS\SysWOW64\dcomp.dll 2014-09-06 02:48:03 C06B6C8E002EDB492D93F2494E32F9CA 605184 ----a-w- C:\WINDOWS\SysWOW64\rasapi32.dll 2014-09-06 02:48:03 A6880BA9A4F02D3C742DF956EA9CC44D 1351168 ----a-w- C:\WINDOWS\SysWOW64\GdiPlus.dll 2014-09-06 02:48:03 9264B57E8C0BCCA14F92EBA56B9B5106 800256 ----a-w- C:\WINDOWS\SysWOW64\ReAgent.dll 2014-09-06 02:48:02 EB40EFEBE9EB4ACA3DD950A1AFA0F51B 171008 ----a-w- C:\WINDOWS\SysWOW64\SensorsApi.dll 2014-09-06 02:48:02 B3F1B6A3CC07E967B60584E7454B0890 390488 ----a-w- C:\WINDOWS\SysWOW64\netcfgx.dll 2014-09-06 02:48:01 B4309F7821BDE5A31E1E4FB24ED97C5C 197632 ----a-w- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2014-09-06 02:48:01 595653478434F2A8451EDA55CD954CED 1036288 ----a-w- C:\WINDOWS\SysWOW64\kernel32.dll 2014-09-06 02:48:01 4F3AD1A7C0ED3CF5C4EBE49F61074E41 226304 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2014-09-06 02:48:00 FE85E0B190DD141E4826FEC9F015FA18 139776 ----a-w- C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2014-09-06 02:48:00 BD9306F715EA9B959EDB892614F6D581 94016 ----a-w- C:\WINDOWS\SysWOW64\userenv.dll 2014-09-06 02:48:00 AF2A68F7890A680DAE0637EC49456A7B 85504 ----a-w- C:\WINDOWS\SysWOW64\davclnt.dll 2014-09-06 02:48:00 ADC071E4F65BAC3AEF4807B23438472A 280576 ----a-w- C:\WINDOWS\SysWOW64\SessEnv.dll 2014-09-06 02:48:00 5B8D7F29CA815E6DB156DF9853F0472D 2030080 ----a-w- C:\WINDOWS\SysWOW64\WsmSvc.dll 2014-09-06 02:48:00 1AFACFDB26C1B81586801AFF8BB0ABF1 222720 ----a-w- C:\WINDOWS\SysWOW64\spp.dll 2014-09-06 02:48:00 0303523E283AB4D03590C9AE56A8386A 355832 ----a-w- C:\WINDOWS\SysWOW64\mfreadwrite.dll 2014-09-06 02:47:59 411201FFB3882554D5B833E6EC2EC649 254976 ----a-w- C:\WINDOWS\SysWOW64\pdh.dll 2014-09-06 02:47:58 FB32EF390BCAC55E11E0C5D12F4C9A45 1816576 ----a-w- C:\WINDOWS\SysWOW64\Display.dll 2014-09-06 02:47:58 B918D220FCD67E5A4AF05018515E4C14 172544 ----a-w- C:\WINDOWS\SysWOW64\ReInfo.dll 2014-09-06 02:47:58 AFFB4EB53FC1D04495C8A5EC80B1EBCD 264192 ----a-w- C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2014-09-06 02:47:58 91F6883B61C0E5BEAE9B734D8E46829B 386560 ----a-w- C:\WINDOWS\SysWOW64\wlangpui.dll 2014-09-06 02:47:58 75DE8AED4FE16D07E7E22208BA88F0C5 887296 ----a-w- C:\WINDOWS\SysWOW64\aclui.dll 2014-09-06 02:47:58 59BB015A6FEB79D7911005D3E5F8C770 402432 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll 2014-09-06 02:47:58 503281E8561B81FC080887ECAF5F5E31 151040 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll 2014-09-06 02:47:58 3D83889B6343386C918AB45F5C4C9355 262656 ----a-w- C:\WINDOWS\SysWOW64\LocationApi.dll 2014-09-06 02:47:58 37725B5D560398E5BF4DAF85E4F89249 70656 ----a-w- C:\WINDOWS\SysWOW64\w32tm.exe 2014-09-06 02:47:58 1FE14EDDEED70613E3A032182C7796FB 27136 ----a-w- C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll 2014-09-06 02:47:57 FBA4497DEBB5C07F5FA230618857A329 58368 ----a-w- C:\WINDOWS\SysWOW64\l2gpstore.dll 2014-09-06 02:47:57 A82DF6AB70BF4558B58D0B2827B61C3C 33792 ----a-w- C:\WINDOWS\SysWOW64\sxproxy.dll 2014-09-06 02:47:57 6F389E3C60FD27DA4322F78D2233E1FC 567296 ----a-w- C:\WINDOWS\SysWOW64\nshwfp.dll 2014-09-05 15:38:39 EB5F811C1F78005B3C147599A0CCCF51 608448 ----a-w- C:\WINDOWS\SysWOW64\comctl32.ocx 2014-09-05 15:38:39 D04F7AACA2319A3BCDB2C5D5DD6F6026 487424 ----a-w- C:\WINDOWS\SysWOW64\msvcp70.dll 2014-09-05 15:38:39 9972A6ED4F2388DBFA8E0A96F6F3FDF1 344064 ----a-w- C:\WINDOWS\SysWOW64\msvcr70.dll 2014-09-05 15:38:39 09AEF167EB1531E965053D0DCF6CC573 974848 ----a-w- C:\WINDOWS\SysWOW64\mfc70.dll 2014-09-05 13:02:42 D16CF34B17899F90A8FCF2A3F77B4A27 15872 ----a-w- C:\WINDOWS\SysWOW64\CNHMCA.dll 2014-09-05 13:02:42 86802456CB4AD11942447D1112242CA0 320000 ----a-w- C:\WINDOWS\SysWOW64\CNC_B8L.dll 2014-09-05 13:02:42 7E29A9BD894FC34A26126DB13499A99D 103424 ----a-w- C:\WINDOWS\SysWOW64\CNC_B8U.dll 2014-09-05 13:02:42 6F6C16E5D711E35FABE3FCD8C49E7A69 77568 ----a-w- C:\WINDOWS\SysWOW64\CNC1762D.TBL 2014-09-05 12:51:29 5BD847F32884318CCB1C6CF74D2CAECA 366592 ----a-w- C:\WINDOWS\SysWOW64\CNMNPPM.DLL 2014-09-05 11:42:47 A5B71BE51D4F96E249B90F9C97EE28B5 39776 ----a-w- C:\WINDOWS\SysWOW64\DfSdkBt.exe 2014-09-05 11:42:47 A43182C212AD802B5D48AD3A3C89143D 33632 ----a-w- C:\WINDOWS\SysWOW64\DfSdkBt32.exe 2014-09-05 11:00:05 9EA661DB9B393F46046D6181A3DDC4AD 2804528 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2014-09-05 10:59:57 92124EF7B1BF5492EFCA17B3A208E4F4 663680 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2014-09-05 10:59:56 FF73CDC3F09904D82B0CCC1CA750CD02 218112 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2014-09-05 10:59:56 C85EA737B20BEDC46CBA748DCE115184 433664 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll 2014-09-05 10:59:54 ECD4A3F754224C954D3D19B6ECBFE5AA 513536 ----a-w- C:\WINDOWS\SysWOW64\rastls.dll 2014-09-05 10:59:54 4E556E5490191ED9B771576D9221A461 273920 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll 2014-09-05 10:56:29 EC308077E9BEEDF523AE3D6BA042E016 630272 ----a-w- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2014-09-05 10:56:26 A00970DBAD7034523CF9D2C395A944B8 103936 ----a-w- C:\WINDOWS\SysWOW64\OEMLicense.dll 2014-09-05 10:56:25 A7DE6E0B69826D5B6F5FF68AABCF7035 218112 ----a-w- C:\WINDOWS\SysWOW64\sti.dll 2014-09-05 10:48:39 F0769848C6438AF1FF45E495219222B7 444928 ----a-w- C:\WINDOWS\SysWOW64\msdrm.dll 2014-09-05 10:48:39 5AA28997F6A30EB196A5AB09F684B7BE 70680 ----a-w- C:\WINDOWS\SysWOW64\imagehlp.dll 2014-09-05 10:48:38 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-09-05 10:48:38 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2014-09-05 10:48:36 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2014-09-05 10:48:36 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-09-05 10:48:35 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-09-05 10:48:35 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-09-05 10:48:18 3A27CEE08AF2EC8383CDDC1F4B36DBC3 348160 ----a-w- C:\WINDOWS\SysWOW64\WMPhoto.dll 2014-09-05 10:48:12 C9C0B562C7AA50A672766AAC8112DF05 3936256 ----a-w- C:\WINDOWS\SysWOW64\d2d1.dll 2014-09-05 10:48:12 2754B116D797255B6A2F2F5DB1760238 2071552 ----a-w- C:\WINDOWS\SysWOW64\d3d10warp.dll 2014-09-05 10:48:08 FCD51A3EB7E47FBCE17382A95FD3AB35 2873344 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2014-09-05 10:48:08 F5033F3C6F8E706D78ACB9351EBF7B3E 1238016 ----a-w- C:\WINDOWS\SysWOW64\dbghelp.dll 2014-09-05 10:48:07 3DA5CD1E3B9BDAF79731CB6CB1029CB3 53248 ----a-w- C:\WINDOWS\SysWOW64\tsgqec.dll 2014-09-05 10:47:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\WINDOWS\SysWOW64\pcaui.exe 2014-09-05 10:47:56 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\WINDOWS\SysWOW64\poqexec.exe ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-09-10 05:30:48 343A53C71F8CE8DE172880F210BF50CB 83968 ----a-w- C:\WINDOWS\Sysnative\MshtmlDac.dll 2014-09-10 05:30:47 E7852ACED4314BF475DE89C388247CAD 85504 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2014-09-10 05:30:46 550531ED60E7AD5CA02EDB0FAFA6280B 72704 ----a-w- C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll 2014-09-10 05:30:46 19FB8104F320C31BB0E34D5A926ECD1C 547328 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2014-09-10 05:30:46 0B52D185504457310D42B5413783D6DC 758272 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-09-10 05:30:44 F519886D6075BFF0286793B3891E0675 727040 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-09-10 05:30:44 B2AA93A6FC3BB1EFBF25410DAA6BB1D2 359424 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2014-09-10 05:30:44 910AAE6634F7C809E93EE0341C850180 289280 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2014-09-10 05:30:44 7F733479C6DC92B649B2B1298EE6D6B6 446464 ----a-w- C:\WINDOWS\Sysnative\dxtmsft.dll 2014-09-10 05:30:44 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-09-10 05:30:44 1FA34F04CB4529000AD818268F059D3E 707072 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-09-10 05:30:43 E86022F8AE3F9251459C744E175309F9 775168 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-09-10 05:30:42 47942CCF5A5CD57AE1BB44F17725A912 23591424 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-09-10 05:30:40 7F88F6790401199B2C9C932FD91965F9 2793984 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-09-10 05:30:40 4C56EBB6A31E8323D3CBBC476C81B998 1447424 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-09-10 05:30:40 30C355249224173151874A7B86A8BB66 2310656 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-09-10 05:30:39 4EBE88D6CC494B9BE3705B400562A587 2104832 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-09-10 05:30:39 3EC77C4625862483BFCF4CEE1231EED7 13588480 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-09-10 05:30:38 5107C9AEF01636FF8A04E8F28CF7C316 5833728 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-09-10 05:28:23 8BB7548307EE6147137993A410D64387 869544 ----a-w- C:\WINDOWS\Sysnative\msvcr120_clr0400.dll 2014-09-10 05:28:18 D3AE5DB16EAF913860EC28654CE00E6B 1212928 ----a-w- C:\WINDOWS\Sysnative\schedsvc.dll 2014-09-10 05:28:15 91AEA2A8671DDDFA526604B2379867F3 13423104 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2014-09-10 05:28:15 888FC771B2D081EB39677868C882FB76 738816 ----a-w- C:\WINDOWS\Sysnative\aepdu.dll 2014-09-10 05:28:15 5F776A54E4B7C5D54E96D2FF8D580706 527360 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2014-09-10 05:28:15 5C809DB631BEB5DCC63C23203102D91A 97280 ----a-w- C:\WINDOWS\Sysnative\aepic.dll 2014-09-10 05:28:14 A4EE37B24370FABA65EF64FF24B5539E 2860032 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2014-09-10 05:28:14 00CD1254837739E310505EBCB19F7971 796672 ----a-w- C:\WINDOWS\Sysnative\uDWM.dll 2014-09-10 05:28:13 04AE20974DF91DC7B9075FC5A126B77C 68096 ----a-w- C:\WINDOWS\Sysnative\UXInit.dll 2014-09-06 16:17:39 E09BF40AA766B183F0F385C96B37D9E5 299520 ----a-w- C:\WINDOWS\Sysnative\WSDMon.dll 2014-09-06 16:17:39 DA947D89F64B72A40F678AAAE76F7564 205824 ----a-w- C:\WINDOWS\Sysnative\tcpmon.dll 2014-09-06 15:50:36 3D748E5558FD9A9F03182CB2330698DC 1018880 ----a-w- C:\WINDOWS\Sysnative\termsrv.dll 2014-09-06 15:33:48 1BB9CC78C91536CBA7B04B61ED0F85C4 1273184 ----a-w- C:\WINDOWS\Sysnative\rpcrt4.dll 2014-09-06 15:33:47 83E3C080E9B0E0677DBCDF9D7F434166 4190720 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2014-09-06 15:33:46 15750011454B89F4950D7E7E4A947EC1 834048 ----a-w- C:\WINDOWS\Sysnative\osk.exe 2014-09-06 15:33:43 201FE8AAD76FB1E7FB5A3B1337435DC1 2151424 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-09-06 15:33:42 59EAFAE3A34B4925990A2E679CA91C5B 517528 ----a-w- C:\WINDOWS\Sysnative\dxgi.dll 2014-09-06 15:33:41 454978FB3D24DE5C4199162D5F81FBEE 2133504 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2014-09-06 15:33:38 326715361A7D1C65983BFE920990E4EF 308224 ----a-w- C:\WINDOWS\Sysnative\wusa.exe 2014-09-06 15:31:24 6DBE73C09215E281F4283641144110A5 35480 ----a-w- C:\WINDOWS\Sysnative\TsWpfWrp.exe 2014-09-06 15:31:19 CCDFFC83004AF62D0153CF45289028AF 3360256 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2014-09-06 15:31:19 C3028569F244470F3D54026884E16E06 1417216 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-09-06 15:31:19 423D68307E57654A000AA484B009DD16 735232 ----a-w- C:\WINDOWS\Sysnative\adtschema.dll 2014-09-06 15:31:19 3B78D6DC57654CDD96E073724A2228AE 436224 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2014-09-06 15:31:18 E7DE316FEEFC79327CFAD8F527979CC0 3118080 ----a-w- C:\WINDOWS\Sysnative\Wpc.dll 2014-09-06 15:31:18 E2F4125BFAC99244088324A1841C0B83 3048880 ----a-w- C:\WINDOWS\Sysnative\WpcMon.exe 2014-09-06 15:31:18 6BC31FB4E24A962C98801D3687A984C0 2861056 ----a-w- C:\WINDOWS\Sysnative\WpcWebSync.dll 2014-09-06 15:31:16 FD3638782572A8281BCF12520F6579F4 79872 ----a-w- C:\WINDOWS\Sysnative\WSReset.exe 2014-09-06 15:31:16 E9F333234A5641E2FEF2F5240BDD56B8 35328 ----a-w- C:\WINDOWS\Sysnative\wuapp.exe 2014-09-06 15:31:16 850FC6B2E385766B9972CDBE947989F6 381440 ----a-w- C:\WINDOWS\Sysnative\WUSettingsProvider.dll 2014-09-06 15:31:16 736046C9AFD66BA29BA61ACD582E7A7B 137728 ----a-w- C:\WINDOWS\Sysnative\wuwebv.dll 2014-09-06 15:31:16 68CB2B575F0C67BB14590D1471285287 201728 ----a-w- C:\WINDOWS\Sysnative\ubpm.dll 2014-09-06 15:31:16 4FB80968811FAD6E88ABFAA98E51305C 1705472 ----a-w- C:\WINDOWS\Sysnative\wucltux.dll 2014-09-06 15:31:16 3DF281C1553A6124DEF875C19D46AC0D 190976 ----a-w- C:\WINDOWS\Sysnative\storewuauth.dll 2014-09-06 15:31:16 1EC3AACDB335533A7470245C683ACF94 56320 ----a-w- C:\WINDOWS\Sysnative\wups.dll 2014-09-06 15:31:14 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\WINDOWS\Sysnative\drvcfg.exe 2014-09-06 15:31:14 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\WINDOWS\Sysnative\drvinst.exe 2014-09-06 15:31:10 1DF648DE1492F93D198F47D48E8D8844 4720640 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2014-09-06 15:31:09 CED9FA1ECCF3E6B7028940FE22C69B40 1726224 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2014-09-06 15:31:09 C1E44A99F7CF8C3A08CD5ADDF451636C 2125344 ----a-w- C:\WINDOWS\Sysnative\d3d9.dll 2014-09-06 15:31:09 B6E947CE54A5AAD55484E0D3BC2D5948 1025536 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2014-09-06 15:31:09 9A0C624F608236FE4EECE6B32C62BC27 716800 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-09-06 15:31:09 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-09-06 15:31:09 0CD0356C5BBCFDC1B7BCEEDE74AB348B 2140888 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2014-09-06 15:31:08 EA432A85ABF371E14FB364D5F4405897 403968 ----a-w- C:\WINDOWS\Sysnative\vpnike.dll 2014-09-06 15:31:08 6B374D279DC423FE69DB8DD1401E84FC 301056 ----a-w- C:\WINDOWS\Sysnative\framedynos.dll 2014-09-06 15:31:08 61FE99A86352AD6E27FA480CDC8B225A 285696 ----a-w- C:\WINDOWS\Sysnative\SkyDriveShell.dll 2014-09-06 15:31:08 05DE04005CE0D84D0E6AD21CAEB369C6 353280 ----a-w- C:\WINDOWS\Sysnative\dhcpcore.dll 2014-09-06 15:31:07 E07C80468D0C599BFF01D9D4EC7AEDC3 339456 ----a-w- C:\WINDOWS\Sysnative\bdesvc.dll 2014-09-06 15:31:07 98D0985521BF8F7086EA9C860898A1EE 721408 ----a-w- C:\WINDOWS\Sysnative\fveapi.dll 2014-09-06 15:31:07 10AC9494ECE22A2362E4E4D98C528D01 271872 ----a-w- C:\WINDOWS\Sysnative\dhcpcore6.dll 2014-09-06 15:31:06 FBB1841434072FFA76E4AD287448E34A 262656 ----a-w- C:\WINDOWS\Sysnative\framedyn.dll 2014-09-06 15:31:06 6CDCCD5323EEB8EBD66E02CB8C9C703F 118272 ----a-w- C:\WINDOWS\Sysnative\winbici.dll 2014-09-06 15:31:06 20FB137ADDE1255F15F265A7BD9579BE 827392 ----a-w- C:\WINDOWS\Sysnative\BFE.DLL 2014-09-06 15:31:06 1824052F17B12B5D7B21445B869EE9F2 71168 ----a-w- C:\WINDOWS\Sysnative\ncobjapi.dll 2014-09-06 15:31:05 DEA76F90F9777E3427D70E380222B23B 1063424 ----a-w- C:\WINDOWS\Sysnative\IKEEXT.DLL 2014-09-06 15:31:05 D3883FBCA97D10C8A39632D6CDDC6E85 65024 ----a-w- C:\WINDOWS\Sysnative\dhcpcsvc6.dll 2014-09-06 15:31:05 D261A12A43D33122CB90E70D3BC1CC68 226816 ----a-w- C:\WINDOWS\Sysnative\WebClnt.dll 2014-09-06 15:31:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\WINDOWS\Sysnative\BulkOperationHost.exe 2014-09-06 15:31:05 7E1EBDB3424337ABB553F249A7811D94 87552 ----a-w- C:\WINDOWS\Sysnative\dhcpcsvc.dll 2014-09-06 15:31:05 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\WINDOWS\Sysnative\Robocopy.exe 2014-09-06 15:31:04 B7CC32E00C5C5152D221DF182827F58E 50745 ----a-w- C:\WINDOWS\Sysnative\srms.dat 2014-09-06 15:31:04 71BAEAFD05B3040173F5BBEA2CFE9607 997888 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2014-09-06 15:31:03 D178F55D53B9A10FFBDC134C95517846 28320 ----a-w- C:\WINDOWS\Sysnative\mrt100.dll 2014-09-06 15:31:03 CC8E86B9C18BCA38D3C467CFD661A466 1975296 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2014-09-06 15:31:03 A750229C96A406EE123F43916053F142 86688 ----a-w- C:\WINDOWS\Sysnative\mrt_map.dll 2014-09-06 15:31:03 3FA6DC6B29717E32E211C1FD821F2C75 1345536 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2014-09-06 15:31:02 50A49F3F16EF82E30BFB11E6B6A8F4A6 16871936 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2014-09-06 15:30:57 B312E157D20E727F30EAB3A250441B6F 284672 ----a-w- C:\WINDOWS\Sysnative\WUDFHost.exe 2014-09-06 15:30:57 9CDC2059A23E3C9B57696178508777E7 99840 ----a-w- C:\WINDOWS\Sysnative\WUDFSvc.dll 2014-09-06 15:30:57 42D257559F97B30A94A027EB4555C62F 323584 ----a-w- C:\WINDOWS\Sysnative\DaOtpCredentialProvider.dll 2014-09-06 15:30:57 313117AE2B0986ED7D3AA6AE10603239 216368 ----a-w- C:\WINDOWS\Sysnative\rsaenh.dll 2014-09-06 15:30:57 1A54E3DF2CBB8DBE8A17C87BB07E3A7E 209408 ----a-w- C:\WINDOWS\Sysnative\WUDFPlatform.dll 2014-09-06 15:30:57 08DCA300264238F9AE941302321F3D54 423768 ----a-w- C:\WINDOWS\Sysnative\hal.dll 2014-09-06 15:30:54 AE7D8835A29FADB39C0D095BA32A9462 21268952 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-09-06 15:30:53 AEDD44FDB8B521D443A07146F5CA3A53 7173120 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2014-09-06 15:30:52 151427E526E96471A45FF6CC2257FBA0 8652800 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2014-09-06 15:30:49 383DA813409316D69603C1D849834D24 1308160 ----a-w- C:\WINDOWS\Sysnative\gpsvc.dll 2014-09-06 15:30:48 F4C09C622BC55A80F775DF7D8AB9984F 6645248 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2014-09-06 15:30:48 9ED0E72966FB08F7E6DB15E5519AF8D1 1379064 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2014-09-06 15:30:48 7FB9EC74ADFB2353B7782C3EF833F5B7 765408 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll 2014-09-06 15:30:48 7E4A8D95B9DBC2CB588B91848A0AE731 2688000 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers.dll 2014-09-06 15:30:48 5071E71CC05346D88C5A08EB8B5A05E3 1584128 ----a-w- C:\WINDOWS\Sysnative\workfolderssvc.dll 2014-09-06 15:30:48 411DBFCD6ABAB75B6F7950677AEEFB7D 1403856 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2014-09-06 15:30:47 EAE6ED6C5076CF765EB731B92A237149 955904 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2014-09-06 15:30:47 CB79B5D367376E7B49E2D95BFFB0BEEB 364640 ----a-w- C:\WINDOWS\Sysnative\AUDIOKSE.dll 2014-09-06 15:30:47 98A184F6EC43B178901FCD5D4E2EC43B 1222656 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll 2014-09-06 15:30:47 6B7B2211C293218706D491204FCE8695 1126912 ----a-w- C:\WINDOWS\Sysnative\SearchFolder.dll 2014-09-06 15:30:47 46378ECCB4A29AA81BF296641C2501EF 323072 ----a-w- C:\WINDOWS\Sysnative\srvsvc.dll 2014-09-06 15:30:47 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\WINDOWS\Sysnative\services.exe 2014-09-06 15:30:46 EEC46BC17F28C528AB7FAC20AFDF69E3 462336 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll 2014-09-06 15:30:46 ED7C0A11E655CD8B89BE499F99D56098 486912 ----a-w- C:\WINDOWS\Sysnative\winspool.drv 2014-09-06 15:30:46 D872C6095AACC13AD897DB5E4D2B5D91 805376 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2014-09-06 15:30:46 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2014-09-06 15:30:46 AF3FF97AC2A73E70F8A8D11FB694175B 449536 ----a-w- C:\WINDOWS\Sysnative\defragsvc.dll 2014-09-06 15:30:46 A1CD5194ACC156A852136B303F087260 491744 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2014-09-06 15:30:46 79B134ECE836B406B212E28C24011538 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-09-06 15:30:46 6873D09262D32B95D6AC3026FCF8B424 1230336 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2014-09-06 15:30:46 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2014-09-06 15:30:46 626D19F1771E1AE72208AE9A8F3082F7 491520 ----a-w- C:\WINDOWS\Sysnative\GeofenceMonitorService.dll 2014-09-06 15:30:46 1517EE52367CABAA5615AC736DC96C7D 125496 ----a-w- C:\WINDOWS\Sysnative\dwmapi.dll 2014-09-06 15:30:45 95471DDCB3B3FF70015FD9AA13404F44 281600 ----a-w- C:\WINDOWS\Sysnative\resutils.dll 2014-09-06 15:30:45 87CF824E47489DD972FB4FB9FC4EDD0A 324888 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2014-09-06 15:30:45 1697E09CDA4DD8741B8276F48A8514DE 32600 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll 2014-09-06 15:30:45 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\WINDOWS\Sysnative\MDEServer.exe 2014-09-06 15:30:44 F4E351BB95D473CB55BB7C1A1FEB2798 467496 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2014-09-06 15:30:44 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\WINDOWS\Sysnative\VSSVC.exe 2014-09-06 15:30:44 BAF51BE2DEB387BD99CAC4E3B7850FEC 250368 ----a-w- C:\WINDOWS\Sysnative\rdpencom.dll 2014-09-06 15:30:44 AE2B9504C975B529D92D9E6603F6D33F 609448 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2014-09-06 15:30:44 99277BE68298288A0E27CF9E50FAD091 881616 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2014-09-06 15:30:44 9654DE19551093CD73874281E1573C94 135168 ----a-w- C:\WINDOWS\Sysnative\wscsvc.dll 2014-09-06 15:30:44 88ACBA95BB55B8226D52117462B76CD4 307304 ----a-w- C:\WINDOWS\Sysnative\wintrust.dll 2014-09-06 15:30:44 850EBB87584484DC16F917E7B6F4A304 718336 ----a-w- C:\WINDOWS\Sysnative\swprv.dll 2014-09-06 15:30:44 7B3255A0B833908E4A7ACEA6245D344E 426496 ----a-w- C:\WINDOWS\Sysnative\clusapi.dll 2014-09-06 15:30:44 7B12172CCE581F76C9335D7A47E0AD50 130144 ----a-w- C:\WINDOWS\Sysnative\gpapi.dll 2014-09-06 15:30:44 5EE916C3272A19B459717A8D2397B07A 55296 ----a-w- C:\WINDOWS\Sysnative\energyprov.dll 2014-09-06 15:30:44 4684C8E852065C0A7937C395C165A24F 1466856 ----a-w- C:\WINDOWS\Sysnative\propsys.dll 2014-09-06 15:30:44 315502228EB37F36E86EF75CB1DA1D44 201920 ----a-w- C:\WINDOWS\Sysnative\MSVideoDSP.dll 2014-09-06 15:30:44 2A4177EE5446877BD24DD72504105603 191488 ----a-w- C:\WINDOWS\Sysnative\rpchttp.dll 2014-09-06 15:30:44 01851563CB6FB986A4C0221C15AB6ADC 463256 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2014-09-06 15:30:43 F2895547FC275642A29692DC344A847F 296960 ----a-w- C:\WINDOWS\Sysnative\wlanapi.dll 2014-09-06 15:30:43 EF252510DB6C3511E30418BD2AC95A2D 1527296 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2014-09-06 15:30:43 E86E7792A2A0854D5560371BBDDA760B 1057280 ----a-w- C:\WINDOWS\Sysnative\rdvidcrl.dll 2014-09-06 15:30:43 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\WINDOWS\Sysnative\audiodg.exe 2014-09-06 15:30:43 B24960B79BDE7D5ED1EA638027F9E8F0 143872 ----a-w- C:\WINDOWS\Sysnative\BootMenuUX.dll 2014-09-06 15:30:43 977D67467950D8048E94651EE6081B99 370176 ----a-w- C:\WINDOWS\Sysnative\wlanmsm.dll 2014-09-06 15:30:43 8E1866A4E96F1159B6625627860A0454 2100736 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll 2014-09-06 15:30:43 88BCAEABEB2A46DB7B336B8432720AC8 443904 ----a-w- C:\WINDOWS\Sysnative\wlansec.dll 2014-09-06 15:30:43 886767FD022213F7885416134E9082E5 201216 ----a-w- C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll 2014-09-06 15:30:43 78D26F162E015FF644785C8836B617CA 1287168 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2014-09-06 15:30:43 69A374DE46C7BAAE30BFB1E40D69C5C6 761856 ----a-w- C:\WINDOWS\Sysnative\WorkfoldersControl.dll 2014-09-06 15:30:43 64B2A2630C964BF135A84A52FB2EEF9A 47616 ----a-w- C:\WINDOWS\Sysnative\tlscsp.dll 2014-09-06 15:30:43 414B81DE6CE46022ED43051C09EDB00B 467968 ----a-w- C:\WINDOWS\Sysnative\srcore.dll 2014-09-06 15:30:43 22B8B1F946ACFCB03832793A25216D8C 186880 ----a-w- C:\WINDOWS\Sysnative\WorkFoldersShell.dll 2014-09-06 15:30:43 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\WINDOWS\Sysnative\mfpmp.exe 2014-09-06 15:30:42 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\WINDOWS\Sysnative\rstrui.exe 2014-09-06 15:30:42 B6BD22DDEDDD8665080D664749ACFEF5 64512 ----a-w- C:\WINDOWS\Sysnative\tsgqec.dll 2014-09-06 15:30:42 9465F8E72887AC6CCDD97F738A5AB6B6 70656 ----a-w- C:\WINDOWS\Sysnative\srclient.dll 2014-09-06 15:30:42 82FE5F302FD7C7EF0E41465BB873EFC7 11264 ----a-w- C:\WINDOWS\Sysnative\wlanhlp.dll 2014-09-06 15:30:40 28E0C3AAA68579ABD9A27B92DFD5F119 2790912 ----a-w- C:\WINDOWS\Sysnative\msi.dll 2014-09-06 15:30:39 68F887EF33C09CDA957A51ECE871D642 2642944 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2014-09-06 15:30:39 10D8859CF01C1284603582ABD9B0482C 114520 ----a-w- C:\WINDOWS\Sysnative\consent.exe 2014-09-06 15:30:39 08914C8989AB93F5EC3A452D014E2C8D 356352 ----a-w- C:\WINDOWS\Sysnative\msihnd.dll 2014-09-06 15:30:37 78FC2B2BA0E5E1C9249E3157D4EE9BC7 586240 ----a-w- C:\WINDOWS\Sysnative\qedit.dll 2014-09-06 15:30:36 591B2C8C5C6B944AF538F182B7AF00A6 385536 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2014-09-06 15:30:33 52E94AE3C9FF1E18A1EA125C4FFB0EEC 2834944 ----a-w- C:\WINDOWS\Sysnative\wpccpl.dll 2014-09-06 15:30:32 00AD15C6BA3C337CB68A476C0AD05338 918528 ----a-w- C:\WINDOWS\Sysnative\MrmCoreR.dll 2014-09-06 15:30:31 F381B380B7B2704EA4C0F8D8C49C1C50 623616 ----a-w- C:\WINDOWS\Sysnative\MDMAgent.exe 2014-09-06 15:28:40 E66AC3CA92FC471BFE69F61549193A64 3463680 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2014-09-06 15:28:39 CCC6D7250D01DA7E5499B0722CF6CAE3 1054208 ----a-w- C:\WINDOWS\Sysnative\twinui.appcore.dll 2014-09-06 15:28:39 C2F515FC027867E5EAF12AC9815B3ABD 923136 ----a-w- C:\WINDOWS\Sysnative\WSShared.dll 2014-09-06 15:28:39 53BEF9A65EA686018B9EDF9665F5EBDE 827392 ----a-w- C:\WINDOWS\Sysnative\wuapi.dll 2014-09-06 15:28:38 9FA466A42109F408AC6C2848E851C38A 555736 ----a-w- C:\WINDOWS\Sysnative\twinapi.appcore.dll 2014-09-06 15:28:38 4A12C727502A07C4B89B663B942DF289 54776 ----a-w- C:\WINDOWS\Sysnative\wuauclt.exe 2014-09-06 15:28:38 2C28079658CCA1E8C3810E185CCC2234 93696 ----a-w- C:\WINDOWS\Sysnative\wudriver.dll 2014-09-06 02:51:16 FFFCC3C3ED6886A95D3C0E1B49C652BA 139600 ----a-w- C:\WINDOWS\Sysnative\systemsf.ebd 2014-09-06 02:51:09 95B6670E6933E1DEE19686C55BE709A0 3394384 ----a-w- C:\WINDOWS\Sysnative\WSService.dll 2014-09-06 02:51:05 977BDBE33ADE22EE88EE9E7C54511300 11742720 ----a-w- C:\WINDOWS\Sysnative\glcndFilter.dll 2014-09-06 02:51:02 B0E0F3BB71615DC726AA5A610019A197 630784 ----a-w- C:\WINDOWS\Sysnative\OobeFldr.dll 2014-09-06 02:51:00 FE7F81BADAAC7A7A17BA751E1CE471C9 13933568 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2014-09-06 02:50:59 1060AE975A2E63E5E5D2F0ABDC5D557D 1435304 ----a-w- C:\WINDOWS\Sysnative\sppobjs.dll 2014-09-06 02:50:58 EFF09C9865290B159F79980113358299 3494912 ----a-w- C:\WINDOWS\Sysnative\tquery.dll 2014-09-06 02:50:57 3DA26652B12E9AB43FD04976AC6DFD33 1192448 ----a-w- C:\WINDOWS\Sysnative\sysmain.dll 2014-09-06 02:50:57 19AF77545FD61995E1062277320A92AF 2368512 ----a-w- C:\WINDOWS\Sysnative\mssrch.dll 2014-09-06 02:50:54 F0D53BA526018350E227F6E3E80C3966 1445616 ----a-w- C:\WINDOWS\Sysnative\webservices.dll 2014-09-06 02:50:54 6AFE9D20019BA4C76188A458573F4461 1927600 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2014-09-06 02:50:54 06BA7518958966587474CCDDE4F8A42A 2574240 ----a-w- C:\WINDOWS\Sysnative\WMVDECOD.DLL 2014-09-06 02:50:53 837F8649A2FE7880899711FAA25A2AE3 1728000 ----a-w- C:\WINDOWS\Sysnative\dui70.dll 2014-09-06 02:50:53 5F56C0DE776C7AE43AF749845BFAA1EF 1576960 ----a-w- C:\WINDOWS\Sysnative\wlidsvc.dll 2014-09-06 02:50:52 7EAEE7DEDDA6C3123B3700A1A48CFA3A 628224 ----a-w- C:\WINDOWS\Sysnative\msTextPrediction.dll 2014-09-06 02:50:51 865E3C79BB0DB64D4AB2F6BA8FF5BD2C 1132032 ----a-w- C:\WINDOWS\Sysnative\Windows.Globalization.dll 2014-09-06 02:50:51 4E730667CA97D127D9E4AD05150A18C5 1215832 ----a-w- C:\WINDOWS\Sysnative\mfnetsrc.dll 2014-09-06 02:50:50 EABE2125857B68D7B80EE5A2E1FB13EA 800552 ----a-w- C:\WINDOWS\Sysnative\mfnetcore.dll 2014-09-06 02:50:48 F79C112FCC0FEF9EBE07F903CEA05F9F 647168 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2014-09-06 02:50:48 E7F88B66FD5C0DA438371C998273FD0D 1929608 ----a-w- C:\WINDOWS\Sysnative\setupapi.dll 2014-09-06 02:50:48 CAFB5D7373DDAE675A9A091A21642041 390656 ----a-w- C:\WINDOWS\Sysnative\DfpCommon.dll 2014-09-06 02:50:48 AB7892A876ED44FC9C1D80FD9F3046E0 584704 ----a-w- C:\WINDOWS\Sysnative\StructuredQuery.dll 2014-09-06 02:50:48 81979817943D830BF24571B7C1B28A1A 753664 ----a-w- C:\WINDOWS\Sysnative\rpcss.dll 2014-09-06 02:50:48 657D52EEB153FDE9C8AC94997E223228 27648 ----a-w- C:\WINDOWS\Sysnative\WofTasks.dll 2014-09-06 02:50:48 10B3D632CA42A042F9E38CC30830A800 2825216 ----a-w- C:\WINDOWS\Sysnative\ExplorerFrame.dll 2014-09-06 02:50:47 44BFD45AD17507C7129F90656729E569 1621504 ----a-w- C:\WINDOWS\Sysnative\RacEngn.dll 2014-09-06 02:50:47 11C2A9D3D34632FC17EF8B3411AA972B 1640960 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Immersive.dll 2014-09-06 02:50:46 CBE142AAF990CDA24CDEFF8FF3EBB201 645104 ----a-w- C:\WINDOWS\Sysnative\SHCore.dll 2014-09-06 02:50:46 B83C0950E4F89CE586C2D38BD50218C6 1653352 ----a-w- C:\WINDOWS\Sysnative\WindowsCodecs.dll 2014-09-06 02:50:46 7D7C2B72B81BABF192F1033460A3C434 1290688 ----a-w- C:\WINDOWS\Sysnative\msctf.dll 2014-09-06 02:50:45 722B1ED8A1C3115E0B215215FB56738D 777728 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2014-09-06 02:50:45 22C3168D2AAA6C0546FE215CD079DBBB 526304 ----a-w- C:\WINDOWS\Sysnative\wer.dll 2014-09-06 02:50:44 59245D8023A7C5D192C2ED7A1BD80F36 825344 ----a-w- C:\WINDOWS\Sysnative\samsrv.dll 2014-09-06 02:50:44 561A97E82FA0645CB786C19B8D442C31 1163264 ----a-w- C:\WINDOWS\Sysnative\uxtheme.dll 2014-09-06 02:50:43 DBC61FE275917E75AE077A04E701C474 845824 ----a-w- C:\WINDOWS\Sysnative\SearchIndexer.exe 2014-09-06 02:50:43 CEB069C882A0DFEDBE5C1590D44B1052 1519520 ----a-w- C:\WINDOWS\Sysnative\user32.dll 2014-09-06 02:50:43 BA24011607AD814778CA343291D418D6 2395136 ----a-w- C:\WINDOWS\Sysnative\storagewmi.dll 2014-09-06 02:50:42 CEAE26D9492F7D481916FF44C120D339 1206000 ----a-w- C:\WINDOWS\Sysnative\Taskmgr.exe 2014-09-06 02:50:42 9A1190B2934CFAB102D1B62F74971A0B 721408 ----a-w- C:\WINDOWS\Sysnative\twinapi.dll 2014-09-06 02:50:42 1169646AAD0239C23CCF9C46BA00B2D6 391008 ----a-w- C:\WINDOWS\Sysnative\MMDevAPI.dll 2014-09-06 02:50:41 8F8356461CE4BF9CFBC8C31A9B118237 427520 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2014-09-06 02:50:41 4A87A56606776CC9E1520D8A2741E9AE 1000424 ----a-w- C:\WINDOWS\Sysnative\WinTypes.dll 2014-09-06 02:50:40 DCF2510E0745720E543E84F5E921FCC0 262335 ----a-w- C:\WINDOWS\Sysnative\dfpinc.dat 2014-09-06 02:50:40 D33C175C081B6770C32C6F4A561E99E4 635904 ----a-w- C:\WINDOWS\Sysnative\WWAHost.exe 2014-09-06 02:50:40 CE10041A39A0E6F598BFA50A5AB64CF3 569856 ----a-w- C:\WINDOWS\Sysnative\wpncore.dll 2014-09-06 02:50:40 8EBB271E4588D835784A3FF7E80076A8 710656 ----a-w- C:\WINDOWS\Sysnative\lsm.dll 2014-09-06 02:50:40 561F1AB95F4F01C691BDABA5FD5C67FC 669896 ----a-w- C:\WINDOWS\Sysnative\advapi32.dll 2014-09-06 02:50:40 1062C1D05E95306D878FFFE0A23B84C0 1107456 ----a-w- C:\WINDOWS\Sysnative\perftrack.dll 2014-09-06 02:50:39 B087305F29D8CE043DD31AD69AFDF1A9 752640 ----a-w- C:\WINDOWS\Sysnative\mssvp.dll 2014-09-06 02:50:39 A07CFC4B593D15B6BF06813C3B5B33BF 366080 ----a-w- C:\WINDOWS\Sysnative\wcmsvc.dll 2014-09-06 02:50:39 8541EE27ADD14F84844DB43E9C7BBE3E 467456 ----a-w- C:\WINDOWS\Sysnative\energy.dll 2014-09-06 02:50:39 1524579B894C9B99F42A695B86881254 545792 ----a-w- C:\WINDOWS\Sysnative\apphelp.dll 2014-09-06 02:50:39 021C7541C55625D083753DA241169A97 1428480 ----a-w- C:\WINDOWS\Sysnative\RecoveryDrive.exe 2014-09-06 02:50:38 B61462AED373BD130EA031767F83E0D2 1659056 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2014-09-06 02:50:38 65FBC4306DA606058136DF5D552A4872 968704 ----a-w- C:\WINDOWS\Sysnative\tdh.dll 2014-09-06 02:50:37 A4A3542D65C180AFDC41B8A824C6CD40 653312 ----a-w- C:\WINDOWS\Sysnative\DismApi.dll 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2014-09-06 02:50:36 D4A699D489758A270A5099DE1B4EE2FB 1487520 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2014-09-06 02:50:36 CCCDE17347904396A0102A9EE3669555 1224192 ----a-w- C:\WINDOWS\Sysnative\werconcpl.dll 2014-09-06 02:50:36 CBFC4C292C125A86DA4D2BC831CD4634 388408 ----a-w- C:\WINDOWS\Sysnative\bcryptprimitives.dll 2014-09-06 02:50:36 858E46BB06924EB01C3DF8AEF2DC1CDF 441344 ----a-w- C:\WINDOWS\Sysnative\mssph.dll 2014-09-06 02:50:36 090E4DE444439DF828CB726D60EA9CFD 878592 ----a-w- C:\WINDOWS\Sysnative\ActionCenter.dll 2014-09-06 02:50:35 8F464EE568C36C174DC403EFC8F85A21 321536 ----a-w- C:\WINDOWS\Sysnative\stobject.dll 2014-09-06 02:50:34 E2A34E0E6DC58712BC527338C7E0A8E4 576512 ----a-w- C:\WINDOWS\Sysnative\SettingSync.dll 2014-09-06 02:50:34 DDE972537280676F685DEC67CE28932D 320000 ----a-w- C:\WINDOWS\Sysnative\SearchProtocolHost.exe 2014-09-06 02:50:34 BCE2EB8D8437FA7100F51BD8D9120F3E 18432 ----a-w- C:\WINDOWS\Sysnative\WofUtil.dll 2014-09-06 02:50:34 68966CD60BED0180B01387B7362779C7 666624 ----a-w- C:\WINDOWS\Sysnative\wimgapi.dll 2014-09-06 02:50:34 604064FB0094B0B7433C5EB8BF91512A 1791752 ----a-w- C:\WINDOWS\Sysnative\WMALFXGFXDSP.dll 2014-09-06 02:50:34 39C288E39B7B02614F997FB2077575ED 244848 ----a-w- C:\WINDOWS\Sysnative\sppwinob.dll 2014-09-06 02:50:33 D8F7C3E57F2C09C6589AECD1820E0CA9 31232 ----a-w- C:\WINDOWS\Sysnative\dfp.exe 2014-09-06 02:50:33 B1C2856F8199A9386C22E8325BC34D87 156672 ----a-w- C:\WINDOWS\Sysnative\slc.dll 2014-09-06 02:50:33 A6306E2A24C11555D5A4E572291C551D 716288 ----a-w- C:\WINDOWS\Sysnative\ntshrui.dll 2014-09-06 02:50:33 725E3C8A4B420BD26FD002485FA463A9 690688 ----a-w- C:\WINDOWS\Sysnative\MrmIndexer.dll 2014-09-06 02:50:33 5762739795A3CA941E4C07E601073BAA 761792 ----a-w- C:\WINDOWS\Sysnative\iuilp.dll 2014-09-06 02:50:33 390793BD9F3DEF111DB2B21559B6293A 584192 ----a-w- C:\WINDOWS\Sysnative\recimg.exe 2014-09-06 02:50:33 375AEB31780A494920ABCBEA2E631A23 747008 ----a-w- C:\WINDOWS\Sysnative\wlidcli.dll 2014-09-06 02:50:33 152152B5EE3512ED85C526967C350355 159744 ----a-w- C:\WINDOWS\Sysnative\thumbcache.dll 2014-09-06 02:50:33 0F17D49BE041B7EFF1D33BF1414E7AC6 208896 ----a-w- C:\WINDOWS\Sysnative\aelupsvc.dll 2014-09-06 02:50:32 F2559A492AF8D653D1F47ADABA4C3E97 269824 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2014-09-06 02:50:32 CFDEF7C849D5AFDB689473073B0EE82D 606208 ----a-w- C:\WINDOWS\Sysnative\comdlg32.dll 2014-09-06 02:50:32 CB12C47647D8BDAFAA94C0856B14128B 530944 ----a-w- C:\WINDOWS\Sysnative\AppReadiness.dll 2014-09-06 02:50:32 C88774D3BC1A61C57C5B02AE407FD1E0 546304 ----a-w- C:\WINDOWS\Sysnative\AppxPackaging.dll 2014-09-06 02:50:32 91F8F05881459330D83259A070D3642E 275456 ----a-w- C:\WINDOWS\Sysnative\Dism.exe 2014-09-06 02:50:32 8FE82BF3C091D0B1387A0081DAF4D234 912384 ----a-w- C:\WINDOWS\Sysnative\nettrace.dll 2014-09-06 02:50:32 7FF1EBF5A376F5B17421E6868F353627 609792 ----a-w- C:\WINDOWS\Sysnative\pnidui.dll 2014-09-06 02:50:31 E804E9734A493A01316F209BA99F1F48 136192 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll 2014-09-06 02:50:31 8C569B429D897647A26A83D9901D3225 152064 ----a-w- C:\WINDOWS\Sysnative\dwmredir.dll 2014-09-06 02:50:31 6D79CDD66FE672937F251ED67C7FF11E 1757184 ----a-w- C:\WINDOWS\Sysnative\WMPDMC.exe 2014-09-06 02:50:30 F6701835ECF0E4C9E69D804E78D8CE7B 1008640 ----a-w- C:\WINDOWS\Sysnative\WlanMM.dll 2014-09-06 02:50:30 8CF4AE81A247E1F6103FD1635C8816AF 232448 ----a-w- C:\WINDOWS\Sysnative\InputSwitch.dll 2014-09-06 02:50:29 F26EF8EB298CD2BE8A2F6B9BACA3EEF3 505344 ----a-w- C:\WINDOWS\Sysnative\VAN.dll 2014-09-06 02:50:29 ED3387CE1F9F848A3F3BAA3FCE86E315 388096 ----a-w- C:\WINDOWS\Sysnative\ninput.dll 2014-09-06 02:50:29 CC9503365C5AC3D6A8E152194CE62669 372360 ----a-w- C:\WINDOWS\Sysnative\msvproc.dll 2014-09-06 02:50:29 1A74CE3B49A227D0189712D9886D7772 275456 ----a-w- C:\WINDOWS\Sysnative\authz.dll 2014-09-06 02:50:28 DE6533132FC2BD8A2ED5D370D41CBED3 2288640 ----a-w- C:\WINDOWS\Sysnative\SyncCenter.dll 2014-09-06 02:50:28 82BCCF5FBE47AC9E8CBA2020994DFB3F 107008 ----a-w- C:\WINDOWS\Sysnative\wersvc.dll 2014-09-06 02:50:28 7A726EAF0D7592217936200997C43965 615936 ----a-w- C:\WINDOWS\Sysnative\rdbui.dll 2014-09-06 02:50:28 629152E8745B63E63978FD1848ABC7AE 286720 ----a-w- C:\WINDOWS\Sysnative\wlidcredprov.dll 2014-09-06 02:50:28 59D079196F554E01CA59F52EFA117CB4 2862592 ----a-w- C:\WINDOWS\Sysnative\themeui.dll 2014-09-06 02:50:28 3CA1EE5BE6C9D92DD672FC5A09E17AE2 356864 ----a-w- C:\WINDOWS\Sysnative\conhost.exe 2014-09-06 02:50:28 183360914EFC9D25E2A13D335D5E9EB8 469504 ----a-w- C:\WINDOWS\Sysnative\taskeng.exe 2014-09-06 02:50:27 61692DB39AD3DF2F29392D68EAA7BB93 1543680 ----a-w- C:\WINDOWS\Sysnative\wbengine.exe 2014-09-06 02:50:27 4BA57ED44973409C15406EE0CAD58778 289752 ----a-w- C:\WINDOWS\Sysnative\sqmapi.dll 2014-09-06 02:50:27 2203F8DA390024C0EEF00DB8472C534D 105864 ----a-w- C:\WINDOWS\Sysnative\ncryptsslp.dll 2014-09-06 02:50:27 12A7999B64CB4F89B422B759369E1FCE 290816 ----a-w- C:\WINDOWS\Sysnative\mdmregistration.dll 2014-09-06 02:50:27 01AE2AC5A32158EC6D568B5C5C1EB7B9 3596800 ----a-w- C:\WINDOWS\Sysnative\rdpcore.dll 2014-09-06 02:50:26 FFF2BF211D8E2EE4C72EA94C37CAD9D2 755200 ----a-w- C:\WINDOWS\Sysnative\msctfuimanager.dll 2014-09-06 02:50:26 F56ACDD6374CAFC64E8339D387CB70E4 152848 ----a-w- C:\WINDOWS\Sysnative\bcrypt.dll 2014-09-06 02:50:26 C6ED6A63B57560EB5C99F88F93E7EDBF 461176 ----a-w- C:\WINDOWS\Sysnative\WerFault.exe 2014-09-06 02:50:26 C1D7228D5743995256A17D8225FDC704 123904 ----a-w- C:\WINDOWS\Sysnative\sppc.dll 2014-09-06 02:50:26 9FB865E91832AC1CFF43A00351821C39 210736 ----a-w- C:\WINDOWS\Sysnative\SndVol.exe 2014-09-06 02:50:26 812F9BECC3D67371B4B6A41E09E1AEFE 559104 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Connectivity.dll 2014-09-06 02:50:26 48EBD5B3241D2324A92BA8EB993B2076 745328 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2014-09-06 02:50:25 1470D84723018488F2A51138FB94BA9A 196608 ----a-w- C:\WINDOWS\Sysnative\PkgMgr.exe 2014-09-06 02:50:23 DA7855E0898381621FC4114684DA0FFE 483840 ----a-w- C:\WINDOWS\Sysnative\WLanConn.dll 2014-09-06 02:50:23 CCF57046826C605CC8782D85225A77AF 164352 ----a-w- C:\WINDOWS\Sysnative\wscinterop.dll 2014-09-06 02:50:23 B43A08ADE0AB5546F9129B0D10C1C6D9 1144320 ----a-w- C:\WINDOWS\Sysnative\wwanmm.dll 2014-09-06 02:50:23 46D718075C456CF241BEBFEC9D5F13BD 531128 ----a-w- C:\WINDOWS\Sysnative\ci.dll 2014-09-06 02:50:23 30EC406493F585A43BC3F6E813E266A7 196096 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll 2014-09-06 02:50:23 2ED38EE952E6E02678237FE22C6EE581 512000 ----a-w- C:\WINDOWS\Sysnative\wimserv.exe 2014-09-06 02:50:22 FE9C4A3BDD3F5EA5B93D88CCA73DBE8B 245248 ----a-w- C:\WINDOWS\Sysnative\microsoft-windows-system-events.dll 2014-09-06 02:50:22 FCD3596AC11042A543CF54294A54B579 2706432 ----a-w- C:\WINDOWS\Sysnative\gameux.dll 2014-09-06 02:50:22 F9D54CA2C64D660292E87EE66BD49CD5 693248 ----a-w- C:\WINDOWS\Sysnative\fhcfg.dll 2014-09-06 02:50:22 79F0B9A95376C8F0CD8CFD67FFBA94D5 797696 ----a-w- C:\WINDOWS\Sysnative\PurchaseWindowsLicense.dll 2014-09-06 02:50:22 615BC7FA7AA1F97C4FD14F38B6C8FF56 722432 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgradeui.exe 2014-09-06 02:50:22 2E3340A90140E1F0965DAD96C5B28A41 109568 ----a-w- C:\WINDOWS\Sysnative\dwm.exe 2014-09-06 02:50:21 81B25C0252AB25C6ABDCE596A8112802 935424 ----a-w- C:\WINDOWS\Sysnative\rasgcw.dll 2014-09-06 02:50:21 3849F7FD5BDE8EFE8EBB673CA8DD36F0 273408 ----a-w- C:\WINDOWS\Sysnative\dmdskmgr.dll 2014-09-06 02:50:21 3711306C8D1A859351D735D93090C1C0 83120 ----a-w- C:\WINDOWS\Sysnative\taskhost.exe 2014-09-06 02:50:21 00DD4D2ACC2E72155A8AAA82018BEC0D 193024 ----a-w- C:\WINDOWS\Sysnative\winsrv.dll 2014-09-06 02:50:20 D3EC1112BE0E06ED94308A7B97C929EF 350720 ----a-w- C:\WINDOWS\Sysnative\srchadmin.dll 2014-09-06 02:50:20 9371F0B982A5ECCABE5DB9266C6D447A 170952 ----a-w- C:\WINDOWS\Sysnative\wscapi.dll 2014-09-06 02:50:20 88060469AFD9DE814CAAF497922D3910 139464 ----a-w- C:\WINDOWS\Sysnative\wermgr.exe 2014-09-06 02:50:20 19440A7EA6C2FF961C5B8188E532F82F 407536 ----a-w- C:\WINDOWS\Sysnative\Faultrep.dll 2014-09-06 02:50:19 F734881DD480B0AC9462A31ADB2DB002 1227776 ----a-w- C:\WINDOWS\Sysnative\usercpl.dll 2014-09-06 02:50:18 D8564418BAC13776E43DB5F6B4FA775E 142576 ----a-w- C:\WINDOWS\Sysnative\smss.exe 2014-09-06 02:50:18 C4D32A2A0032C65587993E637F2B78F6 108032 ----a-w- C:\WINDOWS\Sysnative\AltTab.dll 2014-09-06 02:50:18 AB6ADF3E3B774A1CF3FA83DB1A4D45DF 226304 ----a-w- C:\WINDOWS\Sysnative\SndVolSSO.dll 2014-09-06 02:50:18 9CF60747CA286C65255BC7E1546C87EB 188464 ----a-w- C:\WINDOWS\Sysnative\systemreset.exe 2014-09-06 02:50:18 766B12FB02BD1E5D0BBA9488E091EE6D 316416 ----a-w- C:\WINDOWS\Sysnative\BioCredProv.dll 2014-09-06 02:50:18 73F7354D8E4EA674FB93D9AD67EDBB02 463872 ----a-w- C:\WINDOWS\Sysnative\RASMM.dll 2014-09-06 02:50:18 73CCAD0503D2AE86E9AAC08E99B7761B 432640 ----a-w- C:\WINDOWS\Sysnative\wwanconn.dll 2014-09-06 02:50:18 5D84CD163C267D056D4709B42FAE3D88 359936 ----a-w- C:\WINDOWS\Sysnative\vmrdvcore.dll 2014-09-06 02:50:18 4983684E2DDB7B617AA8EA94E037360F 209160 ----a-w- C:\WINDOWS\Sysnative\imm32.dll 2014-09-06 02:50:18 1C3A8E71F3648A2A82F97B0316F9B167 376320 ----a-w- C:\WINDOWS\Sysnative\wsqmcons.exe 2014-09-06 02:50:17 FF48213516573E515185F3E03ED9DAFC 194560 ----a-w- C:\WINDOWS\Sysnative\SearchFilterHost.exe 2014-09-06 02:50:17 FCEBE292E567C313E81CA112DD55B56A 236544 ----a-w- C:\WINDOWS\Sysnative\vdsbas.dll 2014-09-06 02:50:17 EE587980B94E521D812D755C21BC7E87 135168 ----a-w- C:\WINDOWS\Sysnative\fsutil.exe 2014-09-06 02:50:17 C22EDA808C009EA235356B983D1A031E 1185280 ----a-w- C:\WINDOWS\Sysnative\printui.dll 2014-09-06 02:50:17 B892C2FE3190255AA3E1082ACF92C0CF 397824 ----a-w- C:\WINDOWS\Sysnative\sharemediacpl.dll 2014-09-06 02:50:17 B7B3D612C5D6749814FA0CDE8C8E4202 510976 ----a-w- C:\WINDOWS\Sysnative\timedate.cpl 2014-09-06 02:50:17 8F387C2C99EE09C6E2AC316205F86A17 399872 ----a-w- C:\WINDOWS\Sysnative\das.dll 2014-09-06 02:50:17 7E3B7FB5C09804CEEEBA232940A484B4 322048 ----a-w- C:\WINDOWS\Sysnative\fhcpl.dll 2014-09-06 02:50:17 6C7D8104433471A5252624DF470C109A 43408 ----a-w- C:\WINDOWS\Sysnative\CloudNotifications.exe 2014-09-06 02:50:17 498146AA5B4E08AE00B13C1BC2636B6F 135168 ----a-w- C:\WINDOWS\Sysnative\netid.dll 2014-09-06 02:50:17 31652454F3A5150F401E1DE4D857698B 208896 ----a-w- C:\WINDOWS\Sysnative\PlayToManager.dll 2014-09-06 02:50:17 1D8303D3ED5F8C403984A8820E5E599A 80048 ----a-w- C:\WINDOWS\Sysnative\taskhostex.exe 2014-09-06 02:50:16 93664065662467289E77F0982FA61D37 615936 ----a-w- C:\WINDOWS\Sysnative\WSDApi.dll 2014-09-06 02:50:16 8897583230ADFF2A002F00B45D82310A 660480 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll 2014-09-06 02:50:16 833D2DE53608A1C5B9DD71C867718448 275312 ----a-w- C:\WINDOWS\Sysnative\powrprof.dll 2014-09-06 02:50:16 605E304B8A09FA8A71685F9B674A134F 897024 ----a-w- C:\WINDOWS\Sysnative\sdclt.exe 2014-09-06 02:50:16 5B6EAF5BBB526E2B042016A1F061AC4D 132608 ----a-w- C:\WINDOWS\Sysnative\mssprxy.dll 2014-09-06 02:50:16 03044D5F8F2537FEDA81A29B1A8DD8CC 619520 ----a-w- C:\WINDOWS\Sysnative\UserLanguagesCpl.dll 2014-09-06 02:50:15 E3203EC9AAE6A5675A7C051A49002AD1 331264 ----a-w- C:\WINDOWS\Sysnative\newdev.dll 2014-09-06 02:50:15 9920143F48EC5B2A823E19B8FAABA8C4 101216 ----a-w- C:\WINDOWS\Sysnative\RestoreOptIn.exe 2014-09-06 02:50:15 8AA7BFEE4586865C86C145DF3EEBFA5E 444416 ----a-w- C:\WINDOWS\Sysnative\spwizeng.dll 2014-09-06 02:50:15 7E5DC7317E51FA61E1A7C4A93162D3AE 249856 ----a-w- C:\WINDOWS\Sysnative\rascustom.dll 2014-09-06 02:50:15 6BBAE8197E8CC8D0504703D05500B2C1 432640 ----a-w- C:\WINDOWS\Sysnative\zipfldr.dll 2014-09-06 02:50:15 6B3F9F4A507F645DE6F504E998EDA2EA 173056 ----a-w- C:\WINDOWS\Sysnative\dmvdsitf.dll 2014-09-06 02:50:14 E3EF58D4123B5AA29C8E19825AF84A5E 1283584 ----a-w- C:\WINDOWS\Sysnative\vds.exe 2014-09-06 02:50:14 D04D884242F02CC02E9264A4DBF532DB 413184 ----a-w- C:\WINDOWS\Sysnative\wow64win.dll 2014-09-06 02:50:14 CDF5DDB3F917546C3955C4F6AE0D0446 32544 ----a-w- C:\WINDOWS\Sysnative\UserAccountBroker.exe 2014-09-06 02:50:14 8D6F535461F6CFF75A8ADDF83024C904 109568 ----a-w- C:\WINDOWS\Sysnative\appinfo.dll 2014-09-06 02:50:14 5CF3AEA2734E55D9A7E0F9486F050422 155648 ----a-w- C:\WINDOWS\Sysnative\MicrosoftAccountTokenProvider.dll 2014-09-06 02:50:14 2C4A4FD0E89C56673E31B1802097A288 123904 ----a-w- C:\WINDOWS\Sysnative\LockScreenContent.dll 2014-09-06 02:50:14 23D1FCFDDD105C4D3146FA025C8CA2F6 336384 ----a-w- C:\WINDOWS\Sysnative\MbaeApiPublic.dll 2014-09-06 02:50:14 1EA5BDB37498D5E317920822648A2B49 128512 ----a-w- C:\WINDOWS\Sysnative\microsoft-windows-kernel-power-events.dll 2014-09-06 02:50:13 E084D7E544D71D23E83F23CD6B0E5E46 245248 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Vpn.dll 2014-09-06 02:50:13 8188CB2B8EB82BF56D10E40994860B6B 14848 ----a-w- C:\WINDOWS\Sysnative\clrhost.dll 2014-09-06 02:50:13 62EA9ABDC92E731DD031035639B80938 233472 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 02:50:13 4A42BFC345A0CED7B6E0F596283BA118 52736 ----a-w- C:\WINDOWS\Sysnative\AppxSysprep.dll 2014-09-06 02:50:13 3F309BCE152FDA40C758B09771310C2D 141824 ----a-w- C:\WINDOWS\Sysnative\dot3mm.dll 2014-09-06 02:50:13 14CF2EAFCFA0BDC736BFDA130BD95EB2 94560 ----a-w- C:\WINDOWS\Sysnative\bcd.dll 2014-09-06 02:50:12 F85CF4F2AF6CB0CEF87DEF945470C870 3312128 ----a-w- C:\WINDOWS\Sysnative\bootux.dll 2014-09-06 02:50:12 6B0FDFE751F24F1EFCA68E574227180E 112640 ----a-w- C:\WINDOWS\Sysnative\DAMM.dll 2014-09-06 02:50:12 254D664FE36D7F68C870BAF372E360ED 131168 ----a-w- C:\WINDOWS\Sysnative\easinvoker.exe 2014-09-06 02:50:11 DC679AA88F833B86B226F0BA05F229C3 216576 ----a-w- C:\WINDOWS\Sysnative\cleanmgr.exe 2014-09-06 02:50:11 B8C9BC3542EDA9DB99B95543555877BC 110592 ----a-w- C:\WINDOWS\Sysnative\samlib.dll 2014-09-06 02:50:11 77BA0D87906CC2D86588D89A75372EC7 104448 ----a-w- C:\WINDOWS\Sysnative\WiFiDisplay.dll 2014-09-06 02:50:10 5C7B86EE33505E36026AFAAB62DA6364 534528 ----a-w- C:\WINDOWS\Sysnative\rasmans.dll 2014-09-06 02:50:10 3046F6548AFAEEC4671A987685919D33 162176 ----a-w- C:\WINDOWS\Sysnative\AuthHost.exe 2014-09-06 02:50:10 1A4DA1D6287B99033D144B436C23B656 405504 ----a-w- C:\WINDOWS\Sysnative\provsvc.dll 2014-09-06 02:50:09 6FD7B481607E6D8361D10FBAC11FB6DA 203264 ----a-w- C:\WINDOWS\Sysnative\netiohlp.dll 2014-09-06 02:50:06 F299BD172B73C6D0E50E6CB6ADC9020C 184320 ----a-w- C:\WINDOWS\Sysnative\deviceaccess.dll 2014-09-06 02:50:06 EC3BCAACA76E8987F1F0F2DE3D64ED98 197120 ----a-w- C:\WINDOWS\Sysnative\scrrun.dll 2014-09-06 02:50:06 87C750D1E9CC44D0EC47C6B799F41CEB 36200 ----a-w- C:\WINDOWS\Sysnative\WerFaultSecure.exe 2014-09-06 02:50:06 3EF272C510EF337772BF994875FDD4E3 182272 ----a-w- C:\WINDOWS\Sysnative\korwbrkr.dll 2014-09-06 02:50:05 8C726499602B715ACABFBD96FDFF8362 177664 ----a-w- C:\WINDOWS\Sysnative\easwrt.dll 2014-09-06 02:50:04 D7CE0CB807892C06EB03FC5B28E04D53 167424 ----a-w- C:\WINDOWS\Sysnative\netplwiz.dll 2014-09-06 02:50:04 89421C10560D60B563D62E3D647601EF 128512 ----a-w- C:\WINDOWS\Sysnative\CloudStorageWizard.exe 2014-09-06 02:50:04 883B5FE0605EF11BCF90B0117AEBBA07 102912 ----a-w- C:\WINDOWS\Sysnative\wcmcsp.dll 2014-09-06 02:50:04 7FFA7836A7268ED8470A02F08B4A84E3 214016 ----a-w- C:\WINDOWS\Sysnative\scrobj.dll 2014-09-06 02:50:04 434CB271E2A815CCBD437C7AD1BB53C8 53248 ----a-w- C:\WINDOWS\Sysnative\acppage.dll 2014-09-06 02:50:04 23065815C35146F455985878E0FEA1A8 124416 ----a-w- C:\WINDOWS\Sysnative\AuthBroker.dll 2014-09-06 02:50:04 12E734CC38BF7B48E0D68139C0484D8D 38680 ----a-w- C:\WINDOWS\Sysnative\LockScreenContentServer.exe 2014-09-06 02:50:03 A540959E7BF78079C1F1D197BF7E22AE 15872 ----a-w- C:\WINDOWS\Sysnative\slpts.dll 2014-09-06 02:50:03 A340B32445BB448D6C4D96194488F82E 160256 ----a-w- C:\WINDOWS\Sysnative\DWWIN.EXE 2014-09-06 02:50:03 9AB9CD13EA34BDD31EE03DCADD3FCEBA 902144 ----a-w- C:\WINDOWS\Sysnative\autoconv.exe 2014-09-06 02:50:03 7FB2433AD4F18556CAB45092AF621FA2 198656 ----a-w- C:\WINDOWS\Sysnative\wpnprv.dll 2014-09-06 02:50:03 76C3A3F212D8ABE96B0B4BDA2A67F66F 74752 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 02:50:03 61E9834E1CA04DB74F0053BD8AE67BFC 36352 ----a-w- C:\WINDOWS\Sysnative\winbrand.dll 2014-09-06 02:50:03 49A5228F730EEA60A01BB34D1A427239 283136 ----a-w- C:\WINDOWS\Sysnative\wbadmin.exe 2014-09-06 02:50:03 424C9777CB8507A6358BC142B7917143 874496 ----a-w- C:\WINDOWS\Sysnative\autofmt.exe 2014-09-06 02:50:03 22C4A7BCD36100D1655A1CD72327A40D 349696 ----a-w- C:\WINDOWS\Sysnative\bcdedit.exe 2014-09-06 02:50:03 1DEFAA7CE8C496D63EDE8AB7FD8DCB6E 610304 ----a-w- C:\WINDOWS\Sysnative\sud.dll 2014-09-06 02:50:03 081EFB3179E58A757115D129E9DB4631 1152512 ----a-w- C:\WINDOWS\Sysnative\wscui.cpl 2014-09-06 02:50:02 E337D5898804BC8EAC8CC7FD31CAAD46 68096 ----a-w- C:\WINDOWS\Sysnative\setbcdlocale.dll 2014-09-06 02:50:02 A8A7758F4E4043D48A75BD61F0FD5E70 127488 ----a-w- C:\WINDOWS\Sysnative\migisol.dll 2014-09-06 02:50:02 9CEC771F2C6882E54C8B4049167B65AB 165376 ----a-w- C:\WINDOWS\Sysnative\bcdboot.exe 2014-09-06 02:50:02 80A6E162B5C556E414DE5A02DF11CFD2 148992 ----a-w- C:\WINDOWS\Sysnative\sppnp.dll 2014-09-06 02:50:02 7A47BC7C0743A5A05CC29E87743FBCDA 545280 ----a-w- C:\WINDOWS\Sysnative\untfs.dll 2014-09-06 02:50:02 64DBE5C403B603164AD8FDDFD7CFF8B6 27480 ----a-w- C:\WINDOWS\Sysnative\SysResetErr.exe 2014-09-06 02:50:02 42DAF0C2C4461D4611ED271A8694E20A 82944 ----a-w- C:\WINDOWS\Sysnative\spbcd.dll 2014-09-06 02:50:02 3BC1D1D56637A32CD91C8AE08E2484AA 453632 ----a-w- C:\WINDOWS\Sysnative\wbiosrvc.dll 2014-09-06 02:50:02 387A1E98BE548E4F199343CBA01E9D6D 890880 ----a-w- C:\WINDOWS\Sysnative\autochk.exe 2014-09-06 02:50:02 09E9F7679FD338DC6DDDF96F4C613E74 69632 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Renewal.dll 2014-09-06 02:50:01 E2936E745B84FB5B631E1CB0BCA9B71B 92160 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgradeResults.exe 2014-09-06 02:50:01 C33D905BF1738C54560F09ED8AC47023 95744 ----a-w- C:\WINDOWS\Sysnative\IdCtrls.dll 2014-09-06 02:50:01 7AA2C803C0D6A07085843D5F6C9E99F2 92672 ----a-w- C:\WINDOWS\Sysnative\dafBth.dll 2014-09-06 02:50:01 6C9659E72326A34E9CED71E166F1616B 51200 ----a-w- C:\WINDOWS\Sysnative\DAConn.dll 2014-09-06 02:50:01 646B7DD5DA46CAB6F48A35BA2786B41A 71680 ----a-w- C:\WINDOWS\Sysnative\fhevents.dll 2014-09-06 02:50:00 F217D2868BF46B4DFE1A7A410CB236BB 148992 ----a-w- C:\WINDOWS\Sysnative\cscript.exe 2014-09-06 02:50:00 EC3CD12410AF8B5DC881BF323423C3F6 188416 ----a-w- C:\WINDOWS\Sysnative\WindowsAnytimeUpgrade.exe 2014-09-06 02:50:00 DEEAC72E46070C4F8D3905174A23E3BF 130048 ----a-w- C:\WINDOWS\Sysnative\vdsutil.dll 2014-09-06 02:50:00 7D4688ECFA4F61023A23B50F17AB5689 94720 ----a-w- C:\WINDOWS\Sysnative\spcompat.dll 2014-09-06 02:50:00 4DAFE3D3D45F9D487BD6C57B7C76FC88 18432 ----a-w- C:\WINDOWS\Sysnative\energytask.dll 2014-09-06 02:49:59 B867E81F7A7FD95AC894584B9EB10480 173056 ----a-w- C:\WINDOWS\Sysnative\werui.dll 2014-09-06 02:49:59 2146E40FDBA2FE1E466BE59D3FE2601C 79872 ----a-w- C:\WINDOWS\Sysnative\powercfg.exe 2014-09-06 02:49:59 119E0F7A71775A5CFB208B036ECE35E1 2255 ----a-w- C:\WINDOWS\Sysnative\WimBootCompress.ini 2014-09-06 02:49:59 0205D31F27DFB30E7192FFAF6EE4C8A7 146944 ----a-w- C:\WINDOWS\Sysnative\diskpart.exe 2014-09-06 02:49:58 CBC4C3820ACED29A1A772EC6CCF6CD17 116736 ----a-w- C:\WINDOWS\Sysnative\pnpclean.dll 2014-09-06 02:49:58 C5784EFEEADA38050706FF368B6DD21F 38400 ----a-w- C:\WINDOWS\Sysnative\deviceassociation.dll 2014-09-06 02:49:58 5B374F8F32C61364AF287165B5B60589 156672 ----a-w- C:\WINDOWS\Sysnative\RelPost.exe 2014-09-06 02:49:58 0512FCA695595018A289C032A409EA64 155136 ----a-w- C:\WINDOWS\Sysnative\SettingMonitor.dll 2014-09-06 02:49:55 8CFA00C8103F9132990CEF8B655EA666 269312 ----a-w- C:\WINDOWS\Sysnative\PlayToDevice.dll 2014-09-06 02:49:55 76B7BB05C1BCC11C69162FB7C2CE8901 92160 ----a-w- C:\WINDOWS\Sysnative\dasHost.exe 2014-09-06 02:49:54 B3FDE405C043BE9AA9193D1430FE7418 25088 ----a-w- C:\WINDOWS\Sysnative\ReAgentc.exe 2014-09-06 02:49:54 93B934AE4F812AECBA5254DBB07B29DA 248832 ----a-w- C:\WINDOWS\Sysnative\srrstr.dll 2014-09-06 02:49:54 6523161D8468E0C685EC04DD32BAC18B 224256 ----a-w- C:\WINDOWS\Sysnative\ActionQueue.dll 2014-09-06 02:49:54 5DB4DFF11E4B8EE396237FD717498643 299008 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll 2014-09-06 02:49:54 28EE7EA21F969D7AA096DFD751E5F2CD 60416 ----a-w- C:\WINDOWS\Sysnative\offreg.dll 2014-09-06 02:49:53 CD05BEF06D01444E3AE4145FA18D5538 468480 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.Handlers.dll 2014-09-06 02:49:53 B117A586AF354814BA3BF653A8DBBEBB 13824 ----a-w- C:\WINDOWS\Sysnative\msshooks.dll 2014-09-06 02:49:53 A221A2982E9FF3360FA6F0292C080519 56320 ----a-w- C:\WINDOWS\Sysnative\mf3216.dll 2014-09-06 02:49:53 962D2CB61A17AE290D2ABDDEA39D2BD7 575488 ----a-w- C:\WINDOWS\Sysnative\dfrgui.exe 2014-09-06 02:49:53 09CBB2EE26F9273FB3163DC939FB1C65 41472 ----a-w- C:\WINDOWS\Sysnative\f3ahvoas.dll 2014-09-06 02:49:52 F7041B2A7CA6CF4AE84DBFDA5A528865 183808 ----a-w- C:\WINDOWS\Sysnative\Defrag.exe 2014-09-06 02:49:52 DBB297B0850F160AA635F37D1210F216 504832 ----a-w- C:\WINDOWS\Sysnative\DevicePairing.dll 2014-09-06 02:49:52 CEA27892349131C8705F88D24B65A8E6 27136 ----a-w- C:\WINDOWS\Sysnative\LockScreenContentHost.dll 2014-09-06 02:49:52 BA47711E618A43B6464F354483E91E40 2566656 ----a-w- C:\WINDOWS\Sysnative\themecpl.dll 2014-09-06 02:49:52 959534ACF085C137D2D094384EF89C45 81408 ----a-w- C:\WINDOWS\Sysnative\wercplsupport.dll 2014-09-06 02:49:52 817005B17E25BD6E2369635D5A33DA51 55296 ----a-w- C:\WINDOWS\Sysnative\AepRoam.dll 2014-09-06 02:49:52 7D2E7D61830872279617C8030FE71FC1 316416 ----a-w- C:\WINDOWS\Sysnative\winsku.dll 2014-09-06 02:49:52 77D31321788337630FFA15D40FBB2FAA 589312 ----a-w- C:\WINDOWS\Sysnative\vdsdyn.dll 2014-09-06 02:49:52 562A3AB5CC3CA265D0C213B2B2D3B2E4 145408 ----a-w- C:\WINDOWS\Sysnative\wshom.ocx 2014-09-06 02:49:52 32890534D93EAAB2DD048E30A99F2F70 57344 ----a-w- C:\WINDOWS\Sysnative\SrTasks.exe 2014-09-06 02:49:51 AE279702A8549E0EB2008501AEE4A9F2 112640 ----a-w- C:\WINDOWS\Sysnative\scavengeui.dll 2014-09-06 02:49:51 58B1CE1AF4B629F92639D0E502508AAC 59392 ----a-w- C:\WINDOWS\Sysnative\ConfigureExpandedStorage.dll 2014-09-06 02:49:49 98A755F17458A425CCE6389346BA6540 355328 ----a-w- C:\WINDOWS\Sysnative\wincorlib.dll 2014-09-06 02:49:48 DE461B86C05946D10E519F512D09E389 100197 ----a-w- C:\WINDOWS\Sysnative\RacRules.xml 2014-09-06 02:49:48 BEDB85FBE0B6577A2A46866DE398D9A3 323584 ----a-w- C:\WINDOWS\Sysnative\GlobCollationHost.dll 2014-09-06 02:49:48 AACECE80A24B309935DF4023F25C129E 30208 ----a-w- C:\WINDOWS\Sysnative\SettingSyncPolicy.dll 2014-09-06 02:49:48 2BE71A590E07E855B1ACEA857ECA1FB8 173568 ----a-w- C:\WINDOWS\Sysnative\syncui.dll 2014-09-06 02:49:48 1F90F231C1E2B6D19B3A7C10BBF2B42F 220160 ----a-w- C:\WINDOWS\Sysnative\wmpdxm.dll 2014-09-06 02:49:47 F1DB86EA935C13CDFF27AB957297136A 7762 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-suggestions.searchconnector-ms 2014-09-06 02:49:47 E267BC3EEF80CC447680593038D10B0B 156160 ----a-w- C:\WINDOWS\Sysnative\aitagent.exe 2014-09-06 02:49:47 9F6F3B62C502F35153E3837E219DC841 113152 ----a-w- C:\WINDOWS\Sysnative\shsetup.dll 2014-09-06 02:49:47 9D6F2CDA0D23E1494C55E7ABB0FB35BC 39936 ----a-w- C:\WINDOWS\Sysnative\dataclen.dll 2014-09-06 02:49:47 735AB5AF130DD05B7CAD21EB8898B10A 71680 ----a-w- C:\WINDOWS\Sysnative\StorageContextHandler.dll 2014-09-06 02:49:47 570C0052EAF82BA7C4D95EA04201F7D2 162816 ----a-w- C:\WINDOWS\Sysnative\ocsetapi.dll 2014-09-06 02:49:47 499CFCE4CCA7CC4D3FA07251C86A8641 5632 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 02:49:47 1FDF29F970E2E843B4DC5D0626D0EDD5 7130 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-zeroinput.searchconnector-ms 2014-09-06 02:49:47 19A6B3C62F673903C75B46279C20E10B 3584 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 02:49:46 FA89BD2A29A00016E248D14EBAA421C3 6144 ----a-w- C:\WINDOWS\Sysnative\msdxm.ocx 2014-09-06 02:49:46 FA89BD2A29A00016E248D14EBAA421C3 6144 ----a-w- C:\WINDOWS\Sysnative\dxmasf.dll 2014-09-06 02:49:46 7E757E3635CD441B2A8D8CB4B507CB40 8704 ----a-w- C:\WINDOWS\Sysnative\lpksetupproxyserv.dll 2014-09-06 02:49:46 7CEA4BDCFD24CEFFD2689162876F12E8 7168 ----a-w- C:\WINDOWS\Sysnative\shimeng.dll 2014-09-06 02:49:46 797DE44BF9DF0231E9D39E3FA7B5898E 3584 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 02:49:46 61695710BD16FCCFFD22B425692EF83A 20992 ----a-w- C:\WINDOWS\Sysnative\fhsvcctl.dll 2014-09-06 02:49:46 22E1B49330D76F27FD0A13AD16A16A56 8192 ---ha-w- C:\WINDOWS\Sysnative\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 02:49:45 EA3E41DCEA0F503073CBCE9C3A166DD1 147968 ----a-w- C:\WINDOWS\Sysnative\occache.dll 2014-09-06 02:49:45 5C615EB69963F31CB9034702169ABCCB 15360 ----a-w- C:\WINDOWS\Sysnative\finger.exe 2014-09-06 02:49:45 3917A6F3DAAB7D70B5C01E55C6880DD2 54784 ----a-w- C:\WINDOWS\Sysnative\fveskybackup.dll 2014-09-06 02:49:43 E7B53AF004BEE5112F787A6E5B04D737 11109 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-results.searchconnector-ms 2014-09-06 02:48:14 8596E6030C8DE66439DDF21C7F7B5006 40960 ----a-w- C:\WINDOWS\Sysnative\Windows.Shell.Search.UriHandler.dll 2014-09-06 02:48:09 398990EFC34218C3B6C4E6384502083B 2900992 ----a-w- C:\WINDOWS\Sysnative\msftedit.dll 2014-09-06 02:48:09 1B2CAD40A6FD2E9DC336F3A338293B29 2331000 ----a-w- C:\WINDOWS\Sysnative\msxml6.dll 2014-09-06 02:48:08 F7529BD3FFAC9C33D15F6DE3B7353B03 1306624 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2014-09-06 02:48:08 B0630FEE31D7A9B73E49A2F31CF61C1C 1112536 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2014-09-06 02:48:07 8E5C2B32EE4166A3084B133183A00F2A 2141912 ----a-w- C:\WINDOWS\Sysnative\d3d11.dll 2014-09-06 02:48:07 332E5E35DE9E8175A9550501E57E0612 1542768 ----a-w- C:\WINDOWS\Sysnative\ole32.dll 2014-09-06 02:48:06 F3523E611AB0B0977B048263A12DCF2A 1291200 ----a-w- C:\WINDOWS\Sysnative\kernel32.dll 2014-09-06 02:48:06 B7E51F949ED8C3A75C1D3121AF9A4B6C 655360 ----a-w- C:\WINDOWS\Sysnative\dnsapi.dll 2014-09-06 02:48:06 42F4D353A2AC24F7112FB4D6BD2D4F7C 1339240 ----a-w- C:\WINDOWS\Sysnative\gdi32.dll 2014-09-06 02:48:06 2C727D11CDF4F8B2477FC2B1B305ECB9 512000 ----a-w- C:\WINDOWS\Sysnative\wlidprov.dll 2014-09-06 02:48:05 C253B8484DCABB3EBE6D60E67CADB373 356848 ----a-w- C:\WINDOWS\Sysnative\dcomp.dll 2014-09-06 02:48:05 7CDB6060224CFAD4D5AC49FFC5414F41 939520 ----a-w- C:\WINDOWS\Sysnative\kerberos.dll 2014-09-06 02:48:04 7C75BF2879AEAD311DAE25CB5F1A2C83 669696 ----a-w- C:\WINDOWS\Sysnative\rasapi32.dll 2014-09-06 02:48:03 5BCABCE516486337E39DDD005BCBB1CA 1656832 ----a-w- C:\WINDOWS\Sysnative\GdiPlus.dll 2014-09-06 02:48:03 06E5962471CFC5890F6B7AB2BF527250 950784 ----a-w- C:\WINDOWS\Sysnative\ReAgent.dll 2014-09-06 02:48:02 FE7656474448BE6A6C68E5C9BEB7CA94 254464 ----a-w- C:\WINDOWS\Sysnative\dnsrslvr.dll 2014-09-06 02:48:02 DD5DF99540AB97806DF63B1494C809A8 488280 ----a-w- C:\WINDOWS\Sysnative\netcfgx.dll 2014-09-06 02:48:02 65A3992EC59D8D33D7622E3AF4C50DBF 247296 ----a-w- C:\WINDOWS\Sysnative\SensorsApi.dll 2014-09-06 02:48:01 D5C3776CBD8BC307DCCA3FD4CE667A37 324096 ----a-w- C:\WINDOWS\Sysnative\SessEnv.dll 2014-09-06 02:48:01 C8D6344BDE2691A196E61C0D3372EAB7 2479616 ----a-w- C:\WINDOWS\Sysnative\WsmSvc.dll 2014-09-06 02:48:01 BC6849C62DB407573C6AD8CB1A4D2628 115200 ----a-w- C:\WINDOWS\Sysnative\umpnpmgr.dll 2014-09-06 02:48:01 B2A890D96C05E33FDD2BF3F3D4D0DF92 220160 ----a-w- C:\WINDOWS\Sysnative\profsvc.dll 2014-09-06 02:48:01 A2BF5D466853422C143571064C7DD94F 252928 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentClient.dll 2014-09-06 02:48:01 A1C6BA515120C44E8D5A1EA3E927C7C2 291840 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Sensors.dll 2014-09-06 02:48:01 8183820F2D9648A619AA3200EFC62D0B 299008 ----a-w- C:\WINDOWS\Sysnative\pdh.dll 2014-09-06 02:48:01 7A61F17976F7C5077D9862E4EC25BB3E 360512 ----a-w- C:\WINDOWS\Sysnative\mfreadwrite.dll 2014-09-06 02:48:01 5AEFB4F09549545FA3BBD58A6FFF4962 924160 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll 2014-09-06 02:48:01 19F84D6153C06FE71203517BDAC9EA9F 102912 ----a-w- C:\WINDOWS\Sysnative\davclnt.dll 2014-09-06 02:48:01 16E9AD0F7A34C4F071E40CDD76E7C86D 113648 ----a-w- C:\WINDOWS\Sysnative\userenv.dll 2014-09-06 02:48:00 A40262C252A65BAD0186D9DDBB3083DA 1015808 ----a-w- C:\WINDOWS\Sysnative\aclui.dll 2014-09-06 02:48:00 94CD5DE7D2989AA64594F1925339C97E 542208 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.Printing.dll 2014-09-06 02:48:00 5ABA673EF6433BE68AAE77AE5C5FAFAA 412672 ----a-w- C:\WINDOWS\Sysnative\FWPUCLNT.DLL 2014-09-06 02:48:00 4DD9C026AAB3C12A5BF7FF9A0C038422 186368 ----a-w- C:\WINDOWS\Sysnative\dafWfdProvider.dll 2014-09-06 02:48:00 18297BC1CE8A0C0BF9A703A3C45DACC1 462336 ----a-w- C:\WINDOWS\Sysnative\wlangpui.dll 2014-09-06 02:48:00 14BEA911F78B44E47CBD18210E541A43 212992 ----a-w- C:\WINDOWS\Sysnative\cdd.dll 2014-09-06 02:48:00 06304D50B5228BF1EB6E829A72A629DB 271872 ----a-w- C:\WINDOWS\Sysnative\spp.dll 2014-09-06 02:47:59 48F25CC79C6CCFD4B776C8FDA9ED7271 160768 ----a-w- C:\WINDOWS\Sysnative\AppxAllUserStore.dll 2014-09-06 02:47:59 0633C74EFAAEF72FCC33B86CB86B2ED5 79360 ----a-w- C:\WINDOWS\Sysnative\w32tm.exe 2014-09-06 02:47:58 FF94F2D1E80D09FEE3B90A263759163A 210944 ----a-w- C:\WINDOWS\Sysnative\fveapibase.dll 2014-09-06 02:47:58 EEA0EB275D329DAA7EAA397417477C8F 794112 ----a-w- C:\WINDOWS\Sysnative\fvewiz.dll 2014-09-06 02:47:58 CC6F6A993FE36A55AF8207B9393407D6 325632 ----a-w- C:\WINDOWS\Sysnative\LocationApi.dll 2014-09-06 02:47:58 9F83D40B242C7CD2868DBF7550F3FF4C 86016 ----a-w- C:\WINDOWS\Sysnative\RMapi.dll 2014-09-06 02:47:58 9F0759C6D691E7030BF33105EDA2C690 30208 ----a-w- C:\WINDOWS\Sysnative\CredentialMigrationHandler.dll 2014-09-06 02:47:58 7563B7860E857D463C407085EC1BE731 100352 ----a-w- C:\WINDOWS\Sysnative\BitLockerDeviceEncryption.exe 2014-09-06 02:47:58 71133C77DD8089DA3F74813F90361F81 83968 ----a-w- C:\WINDOWS\Sysnative\sxproxy.dll 2014-09-06 02:47:58 6DEA7E51085C4CEC311DBD5A1AF8C759 717312 ----a-w- C:\WINDOWS\Sysnative\nshwfp.dll 2014-09-06 02:47:58 5F58A221937B5D58E33F4B21AEF92210 192000 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Scanners.dll 2014-09-06 02:47:58 3ED1FD93AA4C381A374C3835CF7A5C92 201216 ----a-w- C:\WINDOWS\Sysnative\ReInfo.dll 2014-09-06 02:47:58 2DE56913AE88DF760F279264023908BC 1843712 ----a-w- C:\WINDOWS\Sysnative\Display.dll 2014-09-06 02:47:58 1DCD97010190EF9377E77AB0A846C720 115200 ----a-w- C:\WINDOWS\Sysnative\DevPropMgr.dll 2014-09-06 02:47:57 C1D7A9932D7F468534F1913FB1F65572 40448 ----a-w- C:\WINDOWS\Sysnative\SetNetworkLocation.dll 2014-09-06 02:47:57 8DAE6957A4F0EC461575F68239E0A13E 69120 ----a-w- C:\WINDOWS\Sysnative\l2gpstore.dll 2014-09-06 02:47:57 7043428E344AF62EC540BDF49317D321 99328 ----a-w- C:\WINDOWS\Sysnative\BdeHdCfgLib.dll 2014-09-06 02:47:57 12B0701B1CEC1A7BB0E4C71D97661E23 387210 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2014-09-06 02:47:57 04D6FAB6BE09C83DF591D58E1FBADA59 274944 ----a-w- C:\WINDOWS\Sysnative\WsmWmiPl.dll 2014-09-05 12:52:12 B399E2C282D74B058CD8EAAFE9F64CDB 287744 ----a-w- C:\WINDOWS\Sysnative\CNC_B8C.dll 2014-09-05 12:52:12 B0F07A3C1091DA091174731B82BF6B3F 106496 ----a-w- C:\WINDOWS\Sysnative\CNC_B8I.dll 2014-09-05 12:52:12 6FEC047D14B5F512AE61A39C7E59D68A 363520 ----a-w- C:\WINDOWS\Sysnative\CNC_B8L.dll 2014-09-05 12:52:12 6F6C16E5D711E35FABE3FCD8C49E7A69 77568 ----a-w- C:\WINDOWS\Sysnative\CNC1762D.TBL 2014-09-05 12:52:12 493574E218AA18161D14EECFD572A0E8 17920 ----a-w- C:\WINDOWS\Sysnative\CNHMCA6.dll 2014-09-05 12:52:05 FA132E1DAB518B28F4B20DB154A647FC 389120 ----a-w- C:\WINDOWS\Sysnative\CNMLMB8.DLL 2014-09-05 12:51:30 BE3660521C98A7D12FCC925582B6EC89 39424 ----a-w- C:\WINDOWS\Sysnative\CNMN6UI.DLL 2014-09-05 12:51:29 6FE535FAAB7D0EC3B815818D29F07814 359936 ----a-w- C:\WINDOWS\Sysnative\CNMN6PPM.DLL 2014-09-05 11:08:35 66FC85C4728B6FBA8E7AAD59854F3730 101694776 ----a-w- C:\WINDOWS\Sysnative\MRT.exe 2014-09-05 11:00:05 32370AF583EC8B24D790E1B9201D6811 3210528 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2014-09-05 11:00:00 D65B1C952AEB864C2BAC7A770B17ECCE 282112 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll 2014-09-05 10:59:58 40B228D05DB02F4A5F2452600999F53F 809872 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2014-09-05 10:59:57 660891FFB1B22FF39AADB3F45CE15D45 470016 ----a-w- C:\WINDOWS\Sysnative\mfds.dll 2014-09-05 10:59:56 91433B44B1EF301E7DD696EB5281BC20 589824 ----a-w- C:\WINDOWS\Sysnative\rastls.dll 2014-09-05 10:59:56 34F8F7A0B782798F6A9511157BCC3E32 273408 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll 2014-09-05 10:59:55 FF9F658A51CAD74C25AF83038DBD735D 306688 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll 2014-09-05 10:59:54 CD45E3FE736150D45EFDC9145DA53757 24064 ----a-w- C:\WINDOWS\Sysnative\bi.dll 2014-09-05 10:59:53 AD95F86C8D1843BE653F89FDE213F9E7 207872 ----a-w- C:\WINDOWS\Sysnative\deviceregistration.dll 2014-09-05 10:56:31 E287F157F7A0011D93179C64EF8ADCF2 376320 ----a-w- C:\WINDOWS\Sysnative\pnrpsvc.dll 2014-09-05 10:56:31 847CFF96ACB575CE73C0E2E86C6BA993 842752 ----a-w- C:\WINDOWS\Sysnative\MsSpellCheckingFacility.dll 2014-09-05 10:56:28 0B9FBEC5714523FF76DDFEB320FE2DF2 303616 ----a-w- C:\WINDOWS\Sysnative\sti.dll 2014-09-05 10:56:26 68085A085DE8E3540EE8E02CAE575B2E 138240 ----a-w- C:\WINDOWS\Sysnative\OEMLicense.dll 2014-09-05 10:48:39 BE94090FCBB95B6F22E952D27BD2610E 570880 ----a-w- C:\WINDOWS\Sysnative\msdrm.dll 2014-09-05 10:48:39 447CB6699A8EAD2BC516991738A16277 75360 ----a-w- C:\WINDOWS\Sysnative\imagehlp.dll 2014-09-05 10:48:37 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-09-05 10:48:37 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\WINDOWS\Sysnative\ieetwcollectorres.dll 2014-09-05 10:48:37 94C59DD02BC7EA0E421055B9946CA861 2724864 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2014-09-05 10:48:36 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-09-05 10:48:36 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-09-05 10:48:36 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-09-05 10:48:34 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-09-05 10:48:33 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\WINDOWS\Sysnative\msrating.dll 2014-09-05 10:48:18 5F84D8C3831A559CEB55F894CD24E2B5 393216 ----a-w- C:\WINDOWS\Sysnative\WMPhoto.dll 2014-09-05 10:48:12 389C4E97E3A498159B625A7A13EA4560 2397184 ----a-w- C:\WINDOWS\Sysnative\d3d10warp.dll 2014-09-05 10:48:12 053472337FDD116BD010C88DB0C34DF1 4604416 ----a-w- C:\WINDOWS\Sysnative\d2d1.dll 2014-09-05 10:48:11 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\WINDOWS\Sysnative\WSCollect.exe 2014-09-05 10:48:10 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2014-09-05 10:48:08 C7DFBE21051D5E44B479CBF74B968335 1486848 ----a-w- C:\WINDOWS\Sysnative\dbghelp.dll 2014-09-05 10:48:08 819A1E0F89B6AC222E9D95CA000A40B1 4175360 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2014-09-05 10:48:07 AFCAB4DC692CCE37E283B00E2D7B438F 447488 ----a-w- C:\WINDOWS\Sysnative\sppcomapi.dll 2014-09-05 10:47:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\WINDOWS\Sysnative\pcaui.exe 2014-09-05 10:47:56 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\WINDOWS\Sysnative\poqexec.exe 2014-09-05 10:41:57 6FB598E8DE02D879D17B35F144A1B3BC 270496 ------w- C:\WINDOWS\Sysnative\MpSigStub.exe 2014-09-05 10:18:58 D9B4BED45B1E6F83B05F5ABEB86F7EC6 2356592 ----a-w- C:\WINDOWS\Sysnative\WudfUpdate_01011.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-09-07 06:54:29 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2014-09-07 06:54:20 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\WINDOWS\Sysnative\drivers\mbam.sys 2014-09-07 06:54:20 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys 2014-09-07 06:54:20 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\WINDOWS\Sysnative\drivers\mwac.sys 2014-09-07 06:35:03 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\WINDOWS\Sysnative\drivers\48230029.sys 2014-09-06 16:17:39 8DF1254093B5C354CE725EB6B9B0DE19 146752 ----a-w- C:\WINDOWS\Sysnative\drivers\msgpioclx.sys 2014-09-06 15:33:52 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2014-09-06 15:33:42 313DCE665B57000B18CB26C6B6A10DFE 1557848 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2014-09-06 15:33:36 019CC610AD95FF47EAD7C08B7A683B96 257880 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2014-09-06 15:33:35 6CC1BB8F6851A262E2E824F0E92D5EEF 123224 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2014-09-06 15:33:34 F5D4FA3E1F4879C361FFF3855259D2C2 35856 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys 2014-09-06 15:31:19 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2014-09-06 15:31:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-09-06 15:31:06 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2014-09-06 15:31:05 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\WINDOWS\Sysnative\drivers\vwifimp.sys 2014-09-06 15:31:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\WINDOWS\Sysnative\drivers\vwififlt.sys 2014-09-06 15:31:03 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2014-09-06 15:30:58 FE0ADF5028EB8C1339B66B3AEDE3FEF9 440664 ----a-w- C:\WINDOWS\Sysnative\drivers\usbport.sys 2014-09-06 15:30:58 93435654DCA210298BA0F986EB51C679 419672 ----a-w- C:\WINDOWS\Sysnative\drivers\usbhub.sys 2014-09-06 15:30:58 25AC0B50A71938890970E1508F107196 2518360 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-09-06 15:30:57 D79920BE4E6683D3AB50F71457A4F6C6 27480 ----a-w- C:\WINDOWS\Sysnative\drivers\usbd.sys 2014-09-06 15:30:57 D537815E450A149752C15868392AD1F3 110592 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFPf.sys 2014-09-06 15:30:57 8FCE57F7E5CDA5751FDE01A316180488 428888 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2014-09-06 15:30:57 83C9C45D59C72FEFDAE9A5686BE31FEA 467800 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2014-09-06 15:30:57 7CCBBCEE408A5DBE3FE47297DB5A6CFC 227840 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFRd.sys 2014-09-06 15:30:57 48BA326A3DBA5B5BEB5F2777F4618696 89944 ----a-w- C:\WINDOWS\Sysnative\drivers\usbehci.sys 2014-09-06 15:30:57 064260B3A5868AC894A4943543BC7AB7 37376 ----a-w- C:\WINDOWS\Sysnative\drivers\usbuhci.sys 2014-09-06 15:30:47 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\WINDOWS\Sysnative\drivers\srv2.sys 2014-09-06 15:30:47 4BB9BC49DEE1A319EC58274A7BBED663 310616 ----a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys 2014-09-06 15:30:46 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\WINDOWS\Sysnative\drivers\nwifi.sys 2014-09-06 15:30:46 498288DD5CA42C2D36D125893E968C53 77312 ----a-w- C:\WINDOWS\Sysnative\drivers\hdaudbus.sys 2014-09-06 15:30:45 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\WINDOWS\Sysnative\drivers\fvevol.sys 2014-09-06 15:30:45 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\WINDOWS\Sysnative\drivers\Classpnp.sys 2014-09-06 15:30:44 D90AB68D0FAC9F357F663670FDBB511E 275800 ----a-w- C:\WINDOWS\Sysnative\drivers\msiscsi.sys 2014-09-06 15:30:44 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\WINDOWS\Sysnative\drivers\srvnet.sys 2014-09-06 15:30:44 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\WINDOWS\Sysnative\drivers\fltMgr.sys 2014-09-06 15:30:44 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2014-09-06 15:30:44 33977549C2CED09936E05BEE7659EAFF 384856 ----a-w- C:\WINDOWS\Sysnative\drivers\spaceport.sys 2014-09-06 15:30:32 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\WINDOWS\Sysnative\drivers\wpcfltr.sys 2014-09-06 02:50:46 9539F7917B4B6D92C90F0FAA6B86C605 539992 ----a-w- C:\WINDOWS\Sysnative\drivers\acpi.sys 2014-09-06 02:50:45 F21B77B4D74092A543807D3CEB711A88 1118552 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2014-09-06 02:50:41 A26AEC49F318FEE141DDDB2C5F99B3E6 249688 ----a-w- C:\WINDOWS\Sysnative\drivers\rdyboost.sys 2014-09-06 02:50:38 275AFE3FA35E8D78BE97695DF49817C6 280920 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2014-09-06 02:50:36 233A4C961703D6B3EBA4EC1A3E85AACE 298496 ----a-w- C:\WINDOWS\Sysnative\drivers\ks.sys 2014-09-06 02:50:34 EA23453240137F6773174E0D93F61A69 148824 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2014-09-06 02:50:29 8685379B82AC81187813225905531D1E 272896 ----a-w- C:\WINDOWS\Sysnative\drivers\portcls.sys 2014-09-06 02:50:28 52E483A3701A5A61A75A06993720347D 551256 ----a-w- C:\WINDOWS\Sysnative\drivers\vhdmp.sys 2014-09-06 02:50:21 DDEE191AB32DFC22C6465002ECDF5EE4 124416 ----a-w- C:\WINDOWS\Sysnative\drivers\luafv.sys 2014-09-06 02:50:21 0ECEE590F2E2EF969FB74A6FC583A1E6 663040 ----a-w- C:\WINDOWS\Sysnative\drivers\PEAuth.sys 2014-09-06 02:50:19 FDEC5799BA499D18AFA3A540538866E7 236888 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2014-09-06 02:50:16 E515A287C8FAE901EB8FB42F168E14F2 924504 ----a-w- C:\WINDOWS\Sysnative\drivers\refs.sys 2014-09-06 02:50:16 BCFD8B149B3ADF92D0DB1E909CAF0265 79192 ----a-w- C:\WINDOWS\Sysnative\drivers\fileinfo.sys 2014-09-06 02:50:16 38A82F4EE8C416A6744B6D30381ED768 33280 ----a-w- C:\WINDOWS\Sysnative\drivers\BasicRender.sys 2014-09-06 02:50:15 0B1E929D11A8E358106955603FAC65E8 79192 ----a-w- C:\WINDOWS\Sysnative\drivers\sdstor.sys 2014-09-06 02:50:15 02836172141D3AFA35B07679E253E503 151384 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2014-09-06 02:50:11 61A1C2641321A6B89A2B41C5D481EF48 71888 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpfve.sys 2014-09-06 02:50:11 48430B0313FC1CFE3D2400553F1A93CD 325464 ----a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2014-09-06 02:50:09 B034A41891A36457B994307DFA772293 189784 ----a-w- C:\WINDOWS\Sysnative\drivers\UCX01000.SYS 2014-09-06 02:50:05 9DDCA7F18983C5410DEFF79F819DF93C 994136 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2014-09-06 02:50:00 9CC0003FB8ED3763B977B43F1012FF63 54272 ----a-w- C:\WINDOWS\Sysnative\drivers\watchdog.sys 2014-09-06 02:48:08 1C80517BE6836A812F6A9B99B8321351 2013016 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2014-09-06 02:48:04 7FC5667DF73D4B04AA457CC3A4180E09 157016 ----a-w- C:\WINDOWS\Sysnative\drivers\wof.sys 2014-09-06 02:48:03 4030CB06B8D963A45CED9E60C9F2A11E 379224 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2014-09-06 02:48:03 179A41249055D5F039F1B6703F3B6D2B 376152 ----a-w- C:\WINDOWS\Sysnative\drivers\clfs.sys 2014-09-06 02:48:00 F88CC88F4A6D8476F1664E805CA18CC2 180056 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2014-09-06 02:48:00 A03F362C5557E238CBFA914689C77248 134144 ----a-w- C:\WINDOWS\Sysnative\drivers\dfsc.sys 2014-09-06 02:47:59 BFBE1C5F57FE7A885673A1962D5532B7 136024 ----a-w- C:\WINDOWS\Sysnative\drivers\wfplwfs.sys 2014-09-06 02:47:59 8DB8EAB9D0C6A5DF0BDCADEA239220B4 33280 ----a-w- C:\WINDOWS\Sysnative\drivers\hidusb.sys 2014-09-06 02:47:58 ABB7341766902F5AAB45E15F34D19E15 111616 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys 2014-09-06 02:47:58 41CF802064F72E55F50CA0A221FD36D4 49152 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpipreg.sys 2014-09-06 02:47:58 1D55DADC22D21883A2F80297F5A5AE48 140288 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2014-09-06 02:47:57 FD9C9E9E3F0ED51502C7E8C066BE26B9 79360 ----a-w- C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys 2014-09-06 02:47:57 3E28B99198B514DFEB152EACF913025E 283648 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys 2014-09-05 17:05:02 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_LocationProvider_01_11_00.Wdf 2014-09-05 12:18:37 EFE63BDFC12A1DD65FBB9E621F29B78C 10224 ------w- C:\WINDOWS\Sysnative\drivers\cdr4_xp.sys 2014-09-05 12:18:37 87B04878A6D59D6C79251DC960C674C1 55856 ------w- C:\WINDOWS\Sysnative\drivers\PxHlpa64.sys 2014-09-05 12:18:37 60B3B1A2544EB7843F26EC291BB590BB 10224 ------w- C:\WINDOWS\Sysnative\drivers\cdralw2k.sys 2014-09-05 10:59:55 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys 2014-09-05 10:59:54 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys 2014-09-05 10:56:53 139CFCDCD36B1B1782FD8C0014AC9B0E 39768 ----a-w- C:\WINDOWS\Sysnative\drivers\intelpep.sys 2014-09-05 10:56:53 0044B31F93946D5D41982314381FE431 146776 ----a-w- C:\WINDOWS\Sysnative\drivers\SerCx2.sys 2014-09-05 10:56:52 B9D968D8E2B0F9C6301CEB39CFC9B9E4 86872 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2014-09-05 10:56:28 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2014-09-05 10:56:23 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\WINDOWS\Sysnative\drivers\USBAUDIO.sys 2014-09-05 10:41:57 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf ====== C:\WINDOWS\Tasks ====== 2014-09-08 04:17:26 032B5127146DE1C460A905F768927A33 3126 ----a-w- C:\WINDOWS\Sysnative\Tasks\{E6C37035-6262-4B07-B8F7-BF938969C6D2} 2014-09-08 04:15:32 493A6288FE498EC53F3777C1206B9F32 3130 ----a-w- C:\WINDOWS\Sysnative\Tasks\{9A8F0D86-12CA-4165-A6B6-CF0E0E5519EC} 2014-09-06 03:19:12 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Cybertron 2014-09-05 12:25:36 6031CBF80D60580E0D20C32218E19104 3506 ----a-w- C:\WINDOWS\Sysnative\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Danny750@outlook.com 2014-09-05 11:17:25 E5C48ED2D8DE3C8D9B84EC1C97C4709B 3554 ----a-w- C:\WINDOWS\Sysnative\Tasks\CreateChoiceProcessTask 2014-09-05 10:22:12 FBE104AF0A5F420FC38C753AD09A24B5 3598 ----a-w- C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-108903256-2374480697-3855323451-1001 2014-09-05 10:17:35 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\WPD ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-09-08 12:05:55 -------- d-----w- C:\Program Files\Microsoft Office 2014-09-07 08:50:30 -------- d-----w- C:\Program Files\trend micro 2014-09-06 15:27:51 -------- d-----w- C:\Program Files\Wipe 2014-09-06 07:15:33 -------- d-----w- C:\Program Files\Common Files\Propellerhead Software 2014-09-06 07:14:28 -------- d-----w- C:\Program Files\Avid 2014-09-06 04:21:01 -------- d-----w- C:\Program Files\Speccy 2014-09-06 03:19:11 -------- d-----w- C:\Program Files\Cybertron 2014-09-05 15:54:03 -------- d-----w- C:\Program Files\Microsoft Silverlight 2014-09-05 13:16:46 -------- d-----w- C:\Program Files\RFA 9 2014-09-05 13:07:36 -------- d-----w- C:\Program Files\Classic Shell 2014-09-05 12:59:55 -------- d-----w- C:\Program Files\Common Files\CANON 2014-09-05 12:53:24 -------- d-----w- C:\Program Files\Canon 2014-09-05 12:51:48 -------- d--h--w- C:\Program Files\CanonBJ 2014-09-05 12:21:07 -------- d-----w- C:\Program Files\Common Files\Adobe 2014-09-05 11:53:53 -------- d-----w- C:\Program Files\Garritan ======= C:\PROGRA~2 ===== 2014-09-10 05:36:23 -------- d-----w- C:\PROGRA~2\COMMON~1\DESIGNER 2014-09-08 12:08:02 -------- d-----w- C:\PROGRA~2\Microsoft Works 2014-09-06 15:47:29 -------- d-----w- C:\PROGRA~2\Microsoft Office 2014-09-06 08:23:39 -------- d-----w- C:\PROGRA~2\ImgBurn 2014-09-06 07:26:53 604 ---ha-w- C:\PROGRA~2\_Z2 2014-09-06 07:15:33 -------- d-----w- C:\PROGRA~2\COMMON~1\Propellerhead Software 2014-09-06 07:15:23 -------- d-----w- C:\PROGRA~2\COMMON~1\Avid 2014-09-06 05:16:36 -------- d-----w- C:\PROGRA~2\Microsoft Games 2014-09-06 03:09:40 -------- d-----w- C:\PROGRA~2\AVID 2014-09-05 17:27:51 -------- d-----w- C:\PROGRA~2\OpenOffice 4 2014-09-05 16:40:38 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2014-09-05 16:40:34 -------- d-----w- C:\PROGRA~2\Mozilla Thunderbird 2014-09-05 16:19:51 -------- d-----w- C:\PROGRA~2\Autorun Organizer 2014-09-05 15:54:03 -------- d-----w- C:\PROGRA~2\Microsoft Silverlight 2014-09-05 15:47:19 -------- d-----w- C:\PROGRA~2\Pixarra 2014-09-05 15:38:39 -------- d-----w- C:\PROGRA~2\AML Products 2014-09-05 12:50:21 -------- d-----w- C:\PROGRA~2\Canon 2014-09-05 12:18:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Sonic Shared 2014-09-05 12:18:23 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine 2014-09-05 12:16:40 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe 2014-09-05 11:50:50 -------- d-----w- C:\PROGRA~2\Finale 2010 2014-09-05 11:42:43 -------- d-----w- C:\PROGRA~2\Ashampoo ======= C: ===== 2014-08-28 15:18:46 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Recovery.txt ====== C:\Users\Henry\AppData\Roaming ====== 2014-09-10 12:16:35 -------- d-----w- C:\Users\Henry\AppData\Local\Temp 2014-09-08 11:43:42 219E12D6FB7EF2F9E9090791BAAC5012 102472 ----a-w- C:\Users\Henry\AppData\Local\GDIPFONTCACHEV1.DAT 2014-09-06 14:34:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Wipe 2014-09-06 08:25:14 -------- d-s---w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft 2014-09-06 07:29:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Leadertech 2014-09-06 07:15:57 -------- d-----w- C:\Users\Henry\AppData\Local\Downloaded Installations 2014-09-06 07:14:28 -------- d-----w- C:\Users\Henry\AppData\Roaming\Avid 2014-09-06 05:16:11 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Programs 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-09-06 05:16:10 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft 2014-09-06 05:12:38 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2014-09-06 04:36:58 -------- d-----w- C:\Users\Henry\AppData\Local\ElevatedDiagnostics 2014-09-06 04:36:40 -------- d-----w- C:\Users\Henry\AppData\Local\Diagnostics 2014-09-06 04:21:10 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2014-09-06 03:20:48 -------- d-----w- C:\Users\Henry\AppData\Roaming\Cybertron 2014-09-06 03:13:09 -------- d-sh--w- C:\Users\Henry\AppData\Local\EmieUserList 2014-09-06 03:13:09 -------- d-sh--w- C:\Users\Henry\AppData\Local\EmieSiteList 2014-09-06 02:53:13 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2014-09-05 18:19:00 -------- d-----w- C:\Users\Henry\AppData\Local\Mozilla 2014-09-05 17:56:37 -------- d-----w- C:\Users\Henry\AppData\Roaming\ATI 2014-09-05 17:56:37 -------- d-----w- C:\Users\Henry\AppData\Local\ATI 2014-09-05 17:28:47 -------- d-----w- C:\Users\Henry\AppData\Roaming\OpenOffice 2014-09-05 17:28:13 -------- d-s---w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Thunderbird 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Mozilla 2014-09-05 16:40:42 -------- d-----w- C:\Users\Henry\AppData\Local\Thunderbird 2014-09-05 16:19:56 -------- d-----w- C:\Users\Henry\AppData\Local\ChemTable Software 2014-09-05 16:02:04 -------- d-----w- C:\Users\Henry\AppData\Roaming\Nitro 2014-09-05 16:02:04 -------- d-----w- C:\Users\Henry\AppData\Roaming\FileOpen 2014-09-05 15:47:29 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwistedBrush 2014-09-05 15:38:28 -------- d-----w- C:\Users\Henry\AppData\Local\Programs 2014-09-05 15:28:40 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bandizip 2014-09-05 15:28:38 -------- d-----w- C:\Users\Henry\AppData\Local\Bandizip 2014-09-05 13:08:11 -------- d-----w- C:\Users\Henry\AppData\Roaming\ClassicShell 2014-09-05 13:05:27 -------- d-----w- C:\Users\Henry\AppData\Roaming\Canon 2014-09-05 12:37:16 -------- d-----w- C:\Users\Henry\AppData\Local\Microsoft Help 2014-09-05 11:54:42 -------- d-----w- C:\Users\Henry\AppData\Roaming\Garritan 2014-09-05 11:53:12 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010 2014-09-05 11:42:47 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo 2014-09-05 10:55:50 -------- d-s---w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2014-09-05 10:42:12 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Nitro PDF 2014-09-05 10:31:24 -------- d-----w- C:\Users\Henry\AppData\Roaming\Nitro PDF 2014-09-05 10:26:42 -------- d-----w- C:\Users\Henry\AppData\Local\Adobe 2014-09-05 10:26:12 -------- d-----w- C:\Users\Henry\AppData\Roaming\LSC 2014-09-05 10:25:40 -------- d-----w- C:\Users\Henry\AppData\Roaming\Maxthon3 2014-09-05 10:18:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Intel Corporation 2014-09-05 10:17:57 -------- d-----w- C:\Users\Henry\AppData\Local\Lenovo 2014-09-05 10:17:55 -------- d-----w- C:\Users\Henry\AppData\Local\Power2Go 2014-09-05 10:17:52 -------- d-----w- C:\Users\Henry\AppData\Roaming\Lenovo 2014-09-05 10:17:11 -------- d-s---w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Locallow\Microsoft 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-09-05 10:15:42 C9D23395B299686C14F92317DF5E7B5D 193 ----a-w- C:\Users\Henry\AppData\Local\RegisteredPackageInformation.xml 2014-09-05 10:15:15 -------- d-----w- C:\Users\Henry\AppData\Roaming\Adobe 2014-09-05 10:15:12 -------- d-----w- C:\Users\Henry\AppData\Local\VirtualStore 2014-09-05 10:14:45 -------- d-s---w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Locallow\Microsoft 2014-09-05 10:14:09 FB656C74D371A5D484C45B0176E27C02 6395 ----a-w- C:\Users\Administrator\AppData\Local\Application.xml 2014-09-05 10:13:17 -------- d-s---w- C:\Users\Henry\AppData\Roaming\Microsoft 2014-09-05 10:13:17 -------- d-----w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-09-05 10:13:17 -------- d-----w- C:\Users\Henry\AppData\Local\Microsoft 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility ====== C:\Users\Henry ====== 2014-09-09 15:24:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wipe 2014-09-08 12:08:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-09-07 08:43:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Henry\Desktop\RSITx64.exe 2014-09-06 08:23:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2014-09-06 07:26:54 -------- d-----w- C:\ProgramData\Pinnacle 2014-09-06 07:15:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avid 2014-09-06 07:14:28 -------- d-----w- C:\ProgramData\Avid 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Saved Games 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Links 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Favorites 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Downloads 2014-09-06 05:16:11 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Documents 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Videos 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Searches 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Pictures 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\OneDrive 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Music 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Desktop 2014-09-06 05:16:10 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Contacts 2014-09-06 04:28:26 -------- d-----w- C:\ProgramData\WRData 2014-09-06 03:19:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy Eraser 2014-09-06 02:30:51 504523988B43B6747B4CB35B51531C43 767600 ----a-w- C:\Users\Henry\Desktop\Syswranalyzer.exe 2014-09-05 17:56:37 -------- d-----w- C:\ProgramData\ATI 2014-09-05 16:40:39 -------- d-----w- C:\ProgramData\Mozilla 2014-09-05 16:19:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Organizer 2014-09-05 16:02:04 -------- d-----w- C:\ProgramData\FileOpen 2014-09-05 15:54:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-05 15:38:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AML Free Registry Cleaner 2014-09-05 13:16:59 -------- d-----w- C:\ProgramData\RFA_Backups 2014-09-05 13:16:46 -------- d-s---w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 9 2014-09-05 13:16:46 -------- d-----w- C:\ProgramData\Registry First Aid 2014-09-05 13:08:02 -------- d-----w- C:\ProgramData\ClassicShell 2014-09-05 13:07:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell 2014-09-05 13:05:24 -------- d--h--w- C:\ProgramData\CanonIJQuickMenu 2014-09-05 13:05:21 -------- d--h--w- C:\ProgramData\CanonIJEGV 2014-09-05 13:00:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG3200 series 2014-09-05 12:59:41 -------- d-----w- C:\ProgramData\CanonIJWSpt 2014-09-05 12:53:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-09-05 12:53:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series Manual 2014-09-05 12:52:22 -------- d--h--w- C:\ProgramData\CanonBJ 2014-09-05 12:52:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series 2014-09-05 12:50:54 -------- d-----w- C:\ProgramData\CanonIJPLM 2014-09-05 12:50:49 -------- d--h--w- C:\ProgramData\CanonIJETV 2014-09-05 12:37:15 -------- d-----w- C:\ProgramData\Microsoft Help 2014-09-05 12:29:38 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe 2014-09-05 11:53:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan Instruments for Finale 2014-09-05 11:42:43 -------- d-----w- C:\ProgramData\page 2014-09-05 10:18:16 -------- d-----w- C:\Users\Public\Pokki 2014-09-05 10:15:43 -------- d---a-r- C:\Users\Henry\SkyDrive 2014-09-05 10:15:43 -------- d-----r- C:\Users\Henry\Searches 2014-09-05 10:14:50 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Henry\ntuser.ini 2014-09-05 10:13:17 -------- d--h--w- C:\Users\Henry\AppData 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\Documents 2014-09-05 10:13:17 -------- d-----r- C:\Users\Henry\Desktop 2014-09-02 15:40:22 5AE66927DD76A0A69287736B05040FE5 80959 ----a-w- C:\Users\Henry\ANVIL-CHORUS-VERDI.3.sib 2014-08-28 06:24:57 3FA2C4080F68712A2447A6EB3D8812B0 77671 ----a-w- C:\Users\Henry\Jung san ma! Fesch san Ma!-goed.sib 2014-08-24 16:33:08 461A03C82494813C2D1936F9FCF9F2D1 77662 ----a-w- C:\Users\Henry\Jung san ma! Fesch san Ma!.sib ====== C: exe-files == 2014-09-10 07:41:33 D6D1D3B947BE2D82FC68DFDF6770248F 1295872 ----a-w- C:\Users\Henry\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\AC\Microsoft\CLR_v4.0_32\NativeImages\Lenovo.Discovery\450d2715c211469b058f3809855d7586\Lenovo.Discovery.ni.exe 2014-09-10 05:47:25 CA573004E12C7D5F474D3614F5532074 706016 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-10 05:30:48 DDD8FE19F8B571E4E49F21967812E1B5 483328 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-09-10 05:30:48 8BE3B372BA391D85BB8C2FAD8AEC18E8 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-09-10 05:30:44 1FA34F04CB4529000AD818268F059D3E 707072 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-09-10 05:30:40 4471E9E8C84548856668F7EA0692A212 810128 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-09-10 05:30:40 154E6F681AE6AA93252EB0EB36D20389 812184 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-09-10 05:28:15 0C3028324C475485D6C24D626D9149C3 176288 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe 2014-09-10 05:28:14 ACDBE1ED38167C8B01B8F63161BB2CEA 2374784 ----a-w- C:\Windows\explorer.exe 2014-09-10 05:28:14 195822ACCDAA2B4815DD01BAFC335595 2084520 ----a-w- C:\Windows\SysWOW64\explorer.exe 2014-09-09 15:24:48 CAAF8E52D2F40B822F6B0854248E6299 546968 ----a-w- C:\Program Files\Wipe\net1.exe 2014-09-09 15:24:44 A23E6299693231148EA99560EFF4EDEF 380144 ----a-w- C:\Program Files\Wipe\Wipe.exe 2014-09-07 12:36:00 4AA63CFADAD71EA1BCE696F6DC7DF130 1295872 ----a-w- C:\Users\Henry\AppData\Local\Packages\E046963F.LenovoCompanion_k1h2ywk1493x8\AC\Microsoft\CLR_v4.0_32\NativeImages\Lenovo.Discovery\a30ba1306e41a1f94930051492a615b2\Lenovo.Discovery.ni.exe 2014-09-07 12:36:00 1D7D686FA026ED9CD66E0D77047F1C45 1598464 ----a-w- C:\Users\Henry\AppData\Local\Packages\15737ProductivityLab.RoamingFavorites_pbe8dt886qeb4\AC\Microsoft\CLR_v4.0\NativeImages\FavoritesBrowser\49ee1f4e3795b04059768b8071dc5ecf\FavoritesBrowser.ni.exe 2014-09-07 08:50:30 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Henry.exe 2014-09-07 08:43:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Henry\Desktop\RSITx64.exe 2014-09-06 15:33:46 15750011454B89F4950D7E7E4A947EC1 834048 ----a-w- C:\Windows\System32\osk.exe 2014-09-06 15:33:45 8A9CB0FE11800DBBDBA8FE4F54828892 779264 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-09-06 15:33:38 326715361A7D1C65983BFE920990E4EF 308224 ----a-w- C:\Windows\System32\wusa.exe 2014-09-06 15:33:38 1DEC681B79501A714F0D3FA2787183C3 305152 ----a-w- C:\Windows\SysWOW64\wusa.exe 2014-09-06 15:31:24 6DBE73C09215E281F4283641144110A5 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-09-06 15:31:24 38045850ACB96313A1983A8803302906 35480 ----a-w- C:\Windows\SysWOW64\TsWpfWrp.exe 2014-09-06 15:31:18 E2F4125BFAC99244088324A1841C0B83 3048880 ----a-w- C:\Windows\System32\WpcMon.exe 2014-09-06 15:31:16 FD3638782572A8281BCF12520F6579F4 79872 ----a-w- C:\Windows\System32\WSReset.exe 2014-09-06 15:31:16 E9F333234A5641E2FEF2F5240BDD56B8 35328 ----a-w- C:\Windows\System32\wuapp.exe 2014-09-06 15:31:16 D8C63F333D4A8D8433849A9ADC092BE9 31232 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-09-06 15:31:16 BE1FAE2B208F1E0B38FD4EF353D067C8 25304 ----a-w- C:\Windows\WinStore\WSHost.exe 2014-09-06 15:31:14 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\Windows\System32\drvcfg.exe 2014-09-06 15:31:14 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\Windows\System32\drvinst.exe 2014-09-06 15:31:14 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\Windows\SysWOW64\drvinst.exe 2014-09-06 15:31:09 9289A1927350EA1F7FD4D4DC64D3F32F 1408504 ----a-w- C:\Windows\Camera\Camera.exe 2014-09-06 15:31:09 616D465943838810AEEAF57798481EEB 1118720 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-09-06 15:31:06 1064CF2438DC44A13EFD13551915586D 321024 ----a-w- C:\Windows\System32\IME\SHARED\ImeBroker.exe 2014-09-06 15:31:05 FEF22922E4FA075C6C1FFF4385D74A95 99136 ----a-w- C:\Windows\FileManager\FileManager.exe 2014-09-06 15:31:05 CFD6DBED27511D7A5FBE33AFA7E6B669 76800 ----a-w- C:\Windows\System32\BulkOperationHost.exe 2014-09-06 15:31:05 A83FCE24AE4103F9DA32E8707C4B4C43 124928 ----a-w- C:\Windows\SysWOW64\wbem\WMIADAP.exe 2014-09-06 15:31:05 A09657B30C532DCF848F2B33404EF190 166400 ----a-w- C:\Windows\System32\wbem\WMIADAP.exe 2014-09-06 15:31:05 4E07710A2C9EA43E7509BF7D0452430E 106496 ----a-w- C:\Windows\SysWOW64\Robocopy.exe 2014-09-06 15:31:05 34215162FF8440E3342071D5A7FDCB3C 1192280 ----a-w- C:\Windows\Boot\PCAT\memtest.exe 2014-09-06 15:31:05 2616E8E9C8B66A67CFB6197E9517A2F2 123392 ----a-w- C:\Windows\System32\Robocopy.exe 2014-09-06 15:31:05 0C8AF6461266A72BE61552BB42BC13D8 361496 ----a-w- C:\Windows\FileManager\PhotosApp.exe 2014-09-06 15:30:57 B312E157D20E727F30EAB3A250441B6F 284672 ----a-w- C:\Windows\System32\WUDFHost.exe 2014-09-06 15:30:47 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\Windows\System32\services.exe 2014-09-06 15:30:46 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\Windows\System32\ntoskrnl.exe 2014-09-06 15:30:46 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\Windows\System32\SystemSettingsAdminFlows.exe 2014-09-06 15:30:45 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\Windows\System32\MDEServer.exe 2014-09-06 15:30:44 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\Windows\System32\VSSVC.exe 2014-09-06 15:30:44 CA67486846839817EFE89926A32BFFDA 86808 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2014-09-06 15:30:43 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\Windows\System32\audiodg.exe 2014-09-06 15:30:43 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\Windows\System32\mfpmp.exe 2014-09-06 15:30:42 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\Windows\System32\rstrui.exe 2014-09-06 15:30:42 B194DFF0C303121926CF5AAC3D5165ED 70656 ----a-w- C:\Windows\System32\InputMethod\SHARED\ChxPropertyUI.exe 2014-09-06 15:30:39 6946919260BB72A21C69037C6BA2CDB5 2095616 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2014-09-06 15:30:39 10D8859CF01C1284603582ABD9B0482C 114520 ----a-w- C:\Windows\System32\consent.exe 2014-09-06 15:30:37 679A800CFFBB8EA970506887045F2E41 46752 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe 2014-09-06 15:30:37 35687E363B171A26E1D96C9E98DA7312 369640 ----a-w- C:\Windows\vpnplugins\juniper\JunosPulseVpn.exe 2014-09-06 15:30:31 F381B380B7B2704EA4C0F8D8C49C1C50 623616 ----a-w- C:\Windows\System32\MDMAgent.exe 2014-09-06 15:29:09 B2F53B344EE8C54A37E059C11DE5368D 518000 ----a-w- C:\Users\Henry\Desktop\Voor Stick 16mb\Wipe, verwijder ongewenste data van je systeem---\setup_wipe.exe 2014-09-06 15:28:38 4A12C727502A07C4B89B663B942DF289 54776 ----a-w- C:\Windows\System32\wuauclt.exe 2014-09-06 08:23:43 BAA47E14DC9181081E076CA6F715C93C 73465 ----a-w- C:\Program Files (x86)\ImgBurn\uninstall.exe 2014-09-06 07:17:01 A87C991A89190E1E009D87175482DF4E 1173955 ----a-w- C:\Program Files\Avid\Sibelius 7\unins000.exe 2014-09-06 07:15:24 1EA45E5091D93FD170F5C24BD51486FD 2993664 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\SibeliusRegistration.exe 2014-09-06 07:15:23 1EA45E5091D93FD170F5C24BD51486FD 2993664 ----a-w- C:\Program Files\Avid\Sibelius 7\SibeliusRegistration.exe 2014-09-06 07:15:21 D91DC3A5C8345711330842EB3E45BB12 54066608 ----a-w- C:\Program Files\Avid\Sibelius 7\Sibelius.exe 2014-09-06 07:15:20 AEEC3191E18A60B706AFADC24C414342 39586224 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\Sibelius.exe 2014-09-06 07:15:20 4A5B181A6228C4D635A248253ADBDDA2 309168 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\RegTool.exe 2014-09-06 07:15:20 1A67D51EE240C2DF3EE222556C617E00 435120 ----a-w- C:\Program Files\Avid\Sibelius 7\RegTool.exe 2014-09-06 07:15:19 1BFA3B30A2A22D818D1EAB10FC4E3822 34816 ----a-w- C:\Program Files (x86)\AVID\Sibelius 7\Report.exe 2014-09-06 07:15:19 14B66DD02E009233648DCCF3B275C6E3 46592 ----a-w- C:\Program Files\Avid\Sibelius 7\Report.exe 2014-09-06 03:19:11 A76CF1C72687CBA28ED31A3987C54585 714728 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\unins000.exe 2014-09-06 03:19:11 5FE075E33A9A95F314233B8AF1EE0963 5531624 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser64.exe 2014-09-06 03:19:11 12976D66D515F42AB003702A1B9014E6 4080616 ----a-w- C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser.exe 2014-09-06 02:50:48 F79C112FCC0FEF9EBE07F903CEA05F9F 647168 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2014-09-06 02:50:43 DBC61FE275917E75AE077A04E701C474 845824 ----a-w- C:\Windows\System32\SearchIndexer.exe 2014-09-06 02:50:42 CEAE26D9492F7D481916FF44C120D339 1206000 ----a-w- C:\Windows\System32\Taskmgr.exe 2014-09-06 02:50:41 831A3FB06E63850AEE5856BBF4394814 1063976 ----a-w- C:\Windows\SysWOW64\Taskmgr.exe 2014-09-06 02:50:40 D33C175C081B6770C32C6F4A561E99E4 635904 ----a-w- C:\Windows\System32\WWAHost.exe 2014-09-06 02:50:39 021C7541C55625D083753DA241169A97 1428480 ----a-w- C:\Windows\System32\RecoveryDrive.exe 2014-09-06 02:50:38 DB0FE6E51909BEB42004242EB08FEF47 517120 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2014-09-06 02:50:38 8DF7F2A9B72B7CA4294BB9E59FEAEFCD 514560 ----a-w- C:\Windows\SysWOW64\WWAHost.exe 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\Windows\System32\winload.exe 2014-09-06 02:50:37 91406FB600CA9A57E5ADE0FCE07C59F0 1519592 ----a-w- C:\Windows\System32\Boot\winload.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\Windows\System32\winresume.exe 2014-09-06 02:50:36 E741CC1224A29A2C271798EF3645D81B 1356360 ----a-w- C:\Windows\System32\Boot\winresume.exe 2014-09-06 02:50:35 B93A75EEFB2818F790FA0D2BA536A339 658432 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe 2014-09-06 02:50:34 DDE972537280676F685DEC67CE28932D 320000 ----a-w- C:\Windows\System32\SearchProtocolHost.exe 2014-09-06 02:50:33 D8F7C3E57F2C09C6589AECD1820E0CA9 31232 ----a-w- C:\Windows\System32\dfp.exe 2014-09-06 02:50:33 390793BD9F3DEF111DB2B21559B6293A 584192 ----a-w- C:\Windows\System32\recimg.exe 2014-09-06 02:50:32 A8775E27277EB516E3D2DDD87CD34DAD 1403392 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe 2014-09-06 02:50:32 91F8F05881459330D83259A070D3642E 275456 ----a-w- C:\Windows\System32\Dism.exe 2014-09-06 02:50:31 6D79CDD66FE672937F251ED67C7FF11E 1757184 ----a-w- C:\Windows\System32\WMPDMC.exe 2014-09-06 02:50:28 3CA1EE5BE6C9D92DD672FC5A09E17AE2 356864 ----a-w- C:\Windows\System32\conhost.exe 2014-09-06 02:50:28 183360914EFC9D25E2A13D335D5E9EB8 469504 ----a-w- C:\Windows\System32\taskeng.exe 2014-09-06 02:50:27 C5010B79B13DA3E17D74825880C36695 258560 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe 2014-09-06 02:50:27 61692DB39AD3DF2F29392D68EAA7BB93 1543680 ----a-w- C:\Windows\System32\wbengine.exe 2014-09-06 02:50:26 C6ED6A63B57560EB5C99F88F93E7EDBF 461176 ----a-w- C:\Windows\System32\WerFault.exe 2014-09-06 02:50:26 B6A37C8C64DC87031293357F06DA1A7F 211968 ----a-w- C:\Windows\SysWOW64\Dism.exe 2014-09-06 02:50:26 9FB865E91832AC1CFF43A00351821C39 210736 ----a-w- C:\Windows\System32\SndVol.exe 2014-09-06 02:50:25 46706CA9611EBA516A286CD1B8CC3CBA 819200 ----a-w- C:\Windows\System32\InputMethod\JPN\JpnIME.exe 2014-09-06 02:50:25 1470D84723018488F2A51138FB94BA9A 196608 ----a-w- C:\Windows\System32\PkgMgr.exe 2014-09-06 02:50:23 2ED38EE952E6E02678237FE22C6EE581 512000 ----a-w- C:\Windows\System32\wimserv.exe 2014-09-06 02:50:22 C8D26BF823B162195ADD0496E165F081 456192 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe 2014-09-06 02:50:22 6CA4A0755B75B8E23B931F744319F888 615936 ----a-w- C:\Windows\System32\IME\SHARED\IMEWDBLD.EXE 2014-09-06 02:50:22 615BC7FA7AA1F97C4FD14F38B6C8FF56 722432 ----a-w- C:\Windows\System32\WindowsAnytimeUpgradeui.exe 2014-09-06 02:50:22 3463868E894DE0D4BCD516EAA255DD3C 180240 ----a-w- C:\Windows\SysWOW64\SndVol.exe 2014-09-06 02:50:22 2E3340A90140E1F0965DAD96C5B28A41 109568 ----a-w- C:\Windows\System32\dwm.exe 2014-09-06 02:50:22 26B2170BEC5EA59B297D07BBB894FBAB 410568 ----a-w- C:\Windows\SysWOW64\WerFault.exe 2014-09-06 02:50:21 3711306C8D1A859351D735D93090C1C0 83120 ----a-w- C:\Windows\System32\taskhost.exe 2014-09-06 02:50:21 341460DC88B59905249BF75B77D43AAE 516096 ----a-w- C:\Windows\System32\migwiz\migwiz.exe 2014-09-06 02:50:20 88060469AFD9DE814CAAF497922D3910 139464 ----a-w- C:\Windows\System32\wermgr.exe 2014-09-06 02:50:18 D8564418BAC13776E43DB5F6B4FA775E 142576 ----a-w- C:\Windows\System32\smss.exe 2014-09-06 02:50:18 9CF60747CA286C65255BC7E1546C87EB 188464 ----a-w- C:\Windows\System32\systemreset.exe 2014-09-06 02:50:18 1C3A8E71F3648A2A82F97B0316F9B167 376320 ----a-w- C:\Windows\System32\wsqmcons.exe 2014-09-06 02:50:17 FF48213516573E515185F3E03ED9DAFC 194560 ----a-w- C:\Windows\System32\SearchFilterHost.exe 2014-09-06 02:50:17 EE587980B94E521D812D755C21BC7E87 135168 ----a-w- C:\Windows\System32\fsutil.exe 2014-09-06 02:50:17 6C7D8104433471A5252624DF470C109A 43408 ----a-w- C:\Windows\System32\CloudNotifications.exe 2014-09-06 02:50:17 1D8303D3ED5F8C403984A8820E5E599A 80048 ----a-w- C:\Windows\System32\taskhostex.exe 2014-09-06 02:50:16 605E304B8A09FA8A71685F9B674A134F 897024 ----a-w- C:\Windows\System32\sdclt.exe 2014-09-06 02:50:16 4D052EB17981CF9360BA28A4F990D795 41320 ----a-w- C:\Windows\SysWOW64\CloudNotifications.exe 2014-09-06 02:50:16 40429BD440764EE2EC36A4D0FF3FA907 112640 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2014-09-06 02:50:15 B1B97114D180B5B1B05EB84F50441091 140464 ----a-w- C:\Windows\System32\Dism\DismHost.exe 2014-09-06 02:50:15 9920143F48EC5B2A823E19B8FAABA8C4 101216 ----a-w- C:\Windows\System32\RestoreOptIn.exe 2014-09-06 02:50:15 38ABAF8F3CED2EF51C693F03E2398E78 1392640 ----a-w- C:\Windows\SysWOW64\WMPDMC.exe 2014-09-06 02:50:14 E3EF58D4123B5AA29C8E19825AF84A5E 1283584 ----a-w- C:\Windows\System32\vds.exe 2014-09-06 02:50:14 E128F9D10AEAE1EFB1D2CC12A276A6A1 137344 ----a-w- C:\Windows\SysWOW64\wermgr.exe 2014-09-06 02:50:14 CDF5DDB3F917546C3955C4F6AE0D0446 32544 ----a-w- C:\Windows\System32\UserAccountBroker.exe 2014-09-06 02:50:14 C12A33DAAD54F7930CB6B99D8FA64B08 115376 ----a-w- C:\Windows\SysWOW64\Dism\DismHost.exe 2014-09-06 02:50:14 991E910BA00DF3DDF805C6180BFC675F 268976 ----a-w- C:\Windows\System32\oobe\Setup.exe 2014-09-06 02:50:13 FE12B5270B9C2578099F01C9342920E0 89848 ----a-w- C:\Windows\SysWOW64\RestoreOptIn.exe 2014-09-06 02:50:12 754896CD60E3B8251D1C520926E28179 29912 ----a-w- C:\Windows\SysWOW64\UserAccountBroker.exe 2014-09-06 02:50:12 254D664FE36D7F68C870BAF372E360ED 131168 ----a-w- C:\Windows\System32\easinvoker.exe 2014-09-06 02:50:11 DC679AA88F833B86B226F0BA05F229C3 216576 ----a-w- C:\Windows\System32\cleanmgr.exe 2014-09-06 02:50:11 7FE2C12C064FBC38283B5F31DEC7F186 213504 ----a-w- C:\Windows\SysWOW64\cleanmgr.exe 2014-09-06 02:50:11 47FC29F87915C862AD1886EE4DB574C1 244224 ----a-w- C:\Windows\SysWOW64\IME\IMEJP\imjpuexc.exe 2014-09-06 02:50:10 887CC44830D3F367CAD17A0CA7CCA5C8 99840 ----a-w- C:\Windows\servicing\TrustedInstaller.exe 2014-09-06 02:50:10 3046F6548AFAEEC4671A987685919D33 162176 ----a-w- C:\Windows\System32\AuthHost.exe 2014-09-06 02:50:10 1DD9E560A768ADB660454B6071AC8E6A 111104 ----a-w- C:\Windows\System32\InputMethod\CHS\ChsIME.exe 2014-09-06 02:50:09 1647317F3D6E812658D6BC10BCC3FE09 356352 ----a-w- C:\Windows\SysWOW64\taskeng.exe 2014-09-06 02:50:06 A7A776EC7C8ECB79D7980856F38CCD42 33056 ----a-w- C:\Windows\SysWOW64\WerFaultSecure.exe 2014-09-06 02:50:06 92F1BFCA973F8814ADB80584B20E0315 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-09-06 02:50:06 87C750D1E9CC44D0EC47C6B799F41CEB 36200 ----a-w- C:\Windows\System32\WerFaultSecure.exe 2014-09-06 02:50:06 2F7FC0D3019832F9C32C9BE9A533FECC 1815040 ----a-w- C:\Program Files (x86)\Windows Media Player\setup_wm.exe 2014-09-06 02:50:05 304165ABBE7A027261AA95C0A215E64D 1846272 ----a-w- C:\Program Files\Windows Media Player\setup_wm.exe 2014-09-06 02:50:05 0351FD3F47AA0DE9B7A0CA276DD5FBBD 164352 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe 2014-09-06 02:50:04 89421C10560D60B563D62E3D647601EF 128512 ----a-w- C:\Windows\System32\CloudStorageWizard.exe 2014-09-06 02:50:04 4114CB815387C6377B4753BAB526A0D9 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-09-06 02:50:04 25348D8EE4A0345DEED084A731A5D528 173056 ----a-w- C:\Windows\System32\oobe\windeploy.exe 2014-09-06 02:50:04 12E734CC38BF7B48E0D68139C0484D8D 38680 ----a-w- C:\Windows\System32\LockScreenContentServer.exe 2014-09-06 02:50:03 A340B32445BB448D6C4D96194488F82E 160256 ----a-w- C:\Windows\System32\DWWIN.EXE 2014-09-06 02:50:03 9AB9CD13EA34BDD31EE03DCADD3FCEBA 902144 ----a-w- C:\Windows\System32\autoconv.exe 2014-09-06 02:50:03 49A5228F730EEA60A01BB34D1A427239 283136 ----a-w- C:\Windows\System32\wbadmin.exe 2014-09-06 02:50:03 424C9777CB8507A6358BC142B7917143 874496 ----a-w- C:\Windows\System32\autofmt.exe 2014-09-06 02:50:03 22C4A7BCD36100D1655A1CD72327A40D 349696 ----a-w- C:\Windows\System32\bcdedit.exe 2014-09-06 02:50:02 9CEC771F2C6882E54C8B4049167B65AB 165376 ----a-w- C:\Windows\System32\bcdboot.exe 2014-09-06 02:50:02 74063A3A00A577AD98EB549778BB7FF7 195584 ----a-w- C:\Windows\SysWOW64\PkgMgr.exe 2014-09-06 02:50:02 6D78C1FB8024B0F22CC2E5C14DEC2A23 780288 ----a-w- C:\Windows\SysWOW64\autofmt.exe 2014-09-06 02:50:02 64DBE5C403B603164AD8FDDFD7CFF8B6 27480 ----a-w- C:\Windows\System32\SysResetErr.exe 2014-09-06 02:50:02 3A879CF2920350EB94ABF04A726167C9 479744 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMEWDBLD.EXE 2014-09-06 02:50:02 387A1E98BE548E4F199343CBA01E9D6D 890880 ----a-w- C:\Windows\System32\autochk.exe 2014-09-06 02:50:02 1D8972776F1DC0E41DBA395A9A491736 313344 ----a-w- C:\Windows\System32\IME\IMEJP\imjpuexc.exe 2014-09-06 02:50:01 E2936E745B84FB5B631E1CB0BCA9B71B 92160 ----a-w- C:\Windows\System32\WindowsAnytimeUpgradeResults.exe 2014-09-06 02:50:01 420E32FF08359CCF8336863057447DA1 800256 ----a-w- C:\Windows\SysWOW64\autoconv.exe 2014-09-06 02:50:01 1D31E78ED5C40B5C6CC8D3DE713177A5 792576 ----a-w- C:\Windows\SysWOW64\autochk.exe 2014-09-06 02:50:00 F217D2868BF46B4DFE1A7A410CB236BB 148992 ----a-w- C:\Windows\System32\cscript.exe 2014-09-06 02:50:00 EC3CD12410AF8B5DC881BF323423C3F6 188416 ----a-w- C:\Windows\System32\WindowsAnytimeUpgrade.exe 2014-09-06 02:50:00 D3633D8320294144FB2BDCFE8DE1AC41 138752 ----a-w- C:\Windows\SysWOW64\DWWIN.EXE 2014-09-06 02:49:59 2146E40FDBA2FE1E466BE59D3FE2601C 79872 ----a-w- C:\Windows\System32\powercfg.exe 2014-09-06 02:49:59 0205D31F27DFB30E7192FFAF6EE4C8A7 146944 ----a-w- C:\Windows\System32\diskpart.exe 2014-09-06 02:49:58 5B374F8F32C61364AF287165B5B60589 156672 ----a-w- C:\Windows\System32\RelPost.exe 2014-09-06 02:49:55 76B7BB05C1BCC11C69162FB7C2CE8901 92160 ----a-w- C:\Windows\System32\dasHost.exe 2014-09-06 02:49:54 B3FDE405C043BE9AA9193D1430FE7418 25088 ----a-w- C:\Windows\System32\ReAgentc.exe 2014-09-06 02:49:54 1577AD02C2B93E14D1CDEA041354EFAA 51712 ----a-w- C:\Windows\System32\SystemResetPlatform\SystemResetOSUpdates.exe 2014-09-06 02:49:54 0313DEA994238B342081071A1351CEDB 60416 ----a-w- C:\Windows\System32\oobe\oobeldr.exe 2014-09-06 02:49:53 D34D12D7D6010076E6D1E1ADB612017F 432640 ----a-w- C:\Windows\System32\Sysprep\sysprep.exe 2014-09-06 02:49:53 962D2CB61A17AE290D2ABDDEA39D2BD7 575488 ----a-w- C:\Windows\System32\dfrgui.exe 2014-09-06 02:49:53 417A1BFFAD79639B5E44B380B64A4E34 109568 ----a-w- C:\Windows\SysWOW64\CloudStorageWizard.exe 2014-09-06 02:49:53 1A2892C4742B9EDAB7074A229C1F0D46 67584 ----a-w- C:\Windows\SysWOW64\powercfg.exe 2014-09-06 02:49:52 F7041B2A7CA6CF4AE84DBFDA5A528865 183808 ----a-w- C:\Windows\System32\Defrag.exe 2014-09-06 02:49:52 ADF3C04436056E400BCF24AFA9B235C6 23040 ----a-w- C:\Windows\SysWOW64\ReAgentc.exe 2014-09-06 02:49:52 5979D087E744F7771B9295931C925F85 561664 ----a-w- C:\Windows\SysWOW64\dfrgui.exe 2014-09-06 02:49:52 32890534D93EAAB2DD048E30A99F2F70 57344 ----a-w- C:\Windows\System32\SrTasks.exe 2014-09-06 02:49:52 29DA788E9C2FBD0ED0AD56CE7D11896C 136192 ----a-w- C:\Windows\SysWOW64\diskpart.exe 2014-09-06 02:49:51 9B7F10C41D7D5E09D2F88B59A7556748 118272 ----a-w- C:\Windows\SysWOW64\cscript.exe 2014-09-06 02:49:49 B9DD602D02E7CD445F7D071D0404D86C 837632 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\ShapeCollector.exe 2014-09-06 02:49:49 B08E2CCB561100858F354ED207F4D615 106496 ----a-w- C:\Windows\SysWOW64\setupugc.exe 2014-09-06 02:49:48 215C0AE11C772F890458E0E912BC356A 13312 ----a-w- C:\Windows\SysWOW64\finger.exe 2014-09-06 02:49:48 2098403119918C4B49D92A095232B243 587264 ----a-w- C:\Windows\System32\IME\IMEJP\IMJPDCT.EXE 2014-09-06 02:49:47 E267BC3EEF80CC447680593038D10B0B 156160 ----a-w- C:\Windows\System32\aitagent.exe 2014-09-06 02:49:46 D6B85CC267293FFF3A9B83E98453BEB2 439296 ----a-w- C:\Windows\System32\IME\IMETC\IMTCPROP.exe 2014-09-06 02:49:46 B2B86ACAD5005337030CD240F3D11837 421888 ----a-w- C:\Windows\SysWOW64\IME\IMETC\IMTCPROP.exe 2014-09-06 02:49:46 1436FB6A4384D4608DD18DC238879177 475136 ----a-w- C:\Windows\SysWOW64\IME\IMEJP\IMJPDCT.EXE 2014-09-06 02:49:45 5C615EB69963F31CB9034702169ABCCB 15360 ----a-w- C:\Windows\System32\finger.exe 2014-09-06 02:48:04 F6B3260AA99A2E2C903EFD08C70EA714 349680 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 2014-09-06 02:47:59 0633C74EFAAEF72FCC33B86CB86B2ED5 79360 ----a-w- C:\Windows\System32\w32tm.exe 2014-09-06 02:47:58 7563B7860E857D463C407085EC1BE731 100352 ----a-w- C:\Windows\System32\BitLockerDeviceEncryption.exe 2014-09-06 02:47:58 37725B5D560398E5BF4DAF85E4F89249 70656 ----a-w- C:\Windows\SysWOW64\w32tm.exe 2014-09-06 02:47:44 F4CB8993FCF17B83D390A7DC49C44157 393216 ----a-w- C:\Windows\System32\IME\SHARED\IMCCPHR.exe 2014-09-06 02:47:44 C2A08906E0F22E2C8820183DE9F21801 264192 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMEPADSV.EXE 2014-09-06 02:47:44 5F6E3413CB36FC9CE29E2A501A614ADC 371712 ----a-w- C:\Windows\SysWOW64\IME\SHARED\IMCCPHR.exe 2014-09-06 02:47:44 0ED90B54834BE5A5F81A8A8E3F3AA801 296448 ----a-w- C:\Windows\System32\IME\SHARED\IMEPADSV.EXE 2014-09-06 02:30:51 504523988B43B6747B4CB35B51531C43 767600 ----a-w- C:\Users\Henry\Desktop\Syswranalyzer.exe 2014-09-05 17:59:30 6A35B295812CE7064CFBCD9F254169CF 390616 ----a-w- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 2014-09-05 17:57:11 1DD071EF86CC8E5C020A484F852F2245 187024 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\RTINSTALLER64.EXE 2014-09-05 16:59:39 C55A249E7BA51CCFB00E1256A202B603 26984104 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\76\C\Users\Henry\Desktop\Thunderbird Setup 31.1.0.exe 2014-09-05 16:40:39 43BCA4038E290F75B5B6FECBFF5288A2 114288 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 2014-09-05 16:40:39 3594139060E866CE04C9F14D6A38A79C 109886 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe 2014-09-05 16:40:34 DF64AC8DB231445483660F7FDAF49551 117360 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\crashreporter.exe 2014-09-05 16:40:34 8518F08CCF44D3CEB7731FB73B8A1D0E 119408 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\maintenanceservice.exe 2014-09-05 16:40:34 6E04812FAC21D5B2DF7FCC01CF794FB1 277616 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\updater.exe 2014-09-05 16:40:34 5BA18AE8604EE142840B2DC26A539FBE 194176 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\maintenanceservice_installer.exe 2014-09-05 16:40:34 37DF9BFF17FBD13440A52ACF515FACE7 22640 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\WSEnable.exe 2014-09-05 16:40:34 3013252539F5EAC75B7B0629828DF5CB 389744 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe 2014-09-05 16:40:34 0B164CA8C4019D2327660F56E6E7B5FB 18544 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\plugin-container.exe 2014-09-05 16:40:34 09D9B4815D1A2C62E1458D960761A9ED 901232 ----a-w- C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe 2014-09-05 16:19:52 7787ED4AB5AA72E437BCF04DCB85DD33 3278936 ----a-w- C:\Program Files (x86)\Autorun Organizer\AutorunOrganizer.exe 2014-09-05 16:19:52 7111808D6F21C320417B33DE863DC1DB 1672792 ----a-w- C:\Program Files (x86)\Autorun Organizer\ChemtableStartupChecker.exe 2014-09-05 16:19:52 69B556D55733D92C9880DB3519FC0AAF 106104 ----a-w- C:\Program Files (x86)\Autorun Organizer\Reg64Call.exe 2014-09-05 16:19:52 38F12429F84C446D23BFF35894063EA9 1625208 ----a-w- C:\Program Files (x86)\Autorun Organizer\Updater.exe 2014-09-05 16:19:51 D5B6280007DD0B79B9027E7F20B279B7 1177688 ----a-w- C:\Program Files (x86)\Autorun Organizer\unins000.exe 2014-09-05 15:47:21 E172C1C5D26B7288B77B41EA8360454F 137869 ----a-w- C:\Program Files (x86)\Pixarra\TwistedBrush\Uninstal.exe 2014-09-05 15:38:40 AE08B11C3380F2D45FFCEA9FD1C9E15D 24424 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\FRC.exe 2014-09-05 15:38:40 62CF82729FB3A0F0EA19B0534C3A2233 65384 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\startup.exe 2014-09-05 15:38:40 2F22568680F909F79F68BDAA6223A64B 147304 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regsearch.exe 2014-09-05 15:38:40 2502ABB1302A5FFEDFCBCF6D06DD1DA8 88280 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\sysres.exe 2014-09-05 15:38:40 107DA30C452CD9C6CB6CDBF0DFAE8795 132176 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\clean.exe 2014-09-05 15:38:40 06C023D52FB34E170915D184F69F39A2 137432 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\pm.exe 2014-09-05 15:38:39 DDC90316E73CE9081798029CAF64F5A3 1193161 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\unins000.exe 2014-09-05 15:38:39 D6265310D5048A206B50B3F16422413B 520040 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regback.exe 2014-09-05 15:38:39 18616088EA08DC20BCE8D5EE05921B67 574544 ----a-w- C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe 2014-09-05 15:28:40 DF8F50000451ACD360AA9A8B8B34A52B 74318 ----a-w- C:\Users\Henry\AppData\Local\Bandizip\Uninstall.exe 2014-09-05 15:27:35 652D2746E6573A64C29D4CB27441861C 17008611 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\TwistedBrush.Pro.Studio.v16.05.Incl.Serials=Goed\tbrusha.exe 2014-09-05 15:27:35 2B8933F6D1F2802DD0FE95C84AAC60C7 1803848 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Winzip81+reg.DezeGebruikIK\winzip81.exe 2014-09-05 15:27:34 9A007565345CD8296BE9DD537C975CA3 4323736 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Bandizip Zipp snel met Update\bandizip-setup-gl.exe 2014-09-05 15:27:34 414252046C17569B79EBC072AFFD61C8 1017213 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\WinRAR v3.51 FREE\WRAR351.exe 2014-09-05 15:27:34 0792526E7A86176CBBDF89E7B1EB0E64 4514064 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\75\C\Users\Henry\Desktop\Bandizip Zipp snel met Update\BandiZip-Update\BANDIZIP-SETUP.EXE 2014-09-05 13:26:00 38E3FFB65F9E43A16A3C7DF5AB9A1274 2884432 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\AML-RegistryCleaner-10.04.13-regcleaner--\AML-RegistryCleaner--regcleaner.exe 2014-09-05 13:25:59 A5CF227A724DA27D44DED8AADC103251 2191720 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\autorun-organizer-setup.exe 2014-09-05 13:25:59 2C1A2256CAA86CA96EB31FC18771D9E8 2220312 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\autorun-organizer-setup-2.11mb.exe 2014-09-05 13:25:58 78AC633B80C9D081770D1982C47D9CCC 731000 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\AutorunsV10.06Win7\autoruns.exe 2014-09-05 13:25:58 70F2772AF8E6DB0EBCD2BA87CD6A86F1 595832 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\Autorun 1.12+Autorun 1V10.06Win7\AutorunsV10.06Win7\autorunsc.exe 2014-09-05 13:25:57 D76796508592906DEDF7CBB16817D318 6497648 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\rfasetup.exe 2014-09-05 13:25:57 826E18621EA18F901D64A4BA1A648F6C 1433155 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\74\C\Users\Henry\Desktop\klavar-2009-02.exe 2014-09-05 13:16:47 E37C03948F74B2F516B4726D6A6A73A4 266840 ----a-w- C:\Program Files\RFA 9\rstpnt.exe 2014-09-05 13:16:47 D13F5317FAE1775A73F25E8AD41C28A8 313432 ----a-w- C:\Program Files\RFA 9\sysrep64.exe 2014-09-05 13:16:47 1FB834BD51A211212BEB7447AE0D67DE 483416 ----a-w- C:\Program Files\RFA 9\RFA_start.exe 2014-09-05 13:16:46 68217062422DE4D26CDA14594A02F8DF 1475115 ----a-w- C:\Program Files\RFA 9\unins000.exe 2014-09-05 13:16:46 4BE227276E78EE1AD9D9A974455B0D9D 3272280 ----a-w- C:\Program Files\RFA 9\rfagent64.exe 2014-09-05 13:16:46 2B9D9BAE3B92503690AEB7144EA0B315 5389400 ----a-w- C:\Program Files\RFA 9\reg1aid64.exe 2014-09-05 13:04:54 EDCCC8C13B1EB882F77BA0ABB84566E7 140456 ----a-w- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe 2014-09-05 13:04:54 EA5075E4077194D58773A9479E7557FA 392872 ----a-w- C:\Program Files (x86)\Canon\IJPLM\ijplmui.exe 2014-09-05 13:04:54 CB259AAA050B244D3A09F0F1B3A14154 93864 ----a-r- C:\Program Files (x86)\Canon\IJPLM\setup.exe 2014-09-05 13:02:47 1ADC65B105DD6B51067BFCD1D8D9E1DC 122992 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe 2014-09-05 13:02:46 4638E4D1C3EE5208E72AF78A2B5DD715 1062032 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe 2014-09-05 13:02:46 19F53A797CF3CDEC7B26D6C677E3F678 93808 ----a-w- C:\Program Files (x86)\Canon\IJ Scan Utility\MAPI.exe 2014-09-05 13:02:44 5C419D58C3BE22C3730ACBB583E22C87 420488 ---ha-w- C:\Program Files (x86)\Canon\IJ Scan Utility\MAINT.exe 2014-09-05 13:00:40 985EC64A4D5FE84B4DE369CD5E6A1600 403568 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\IJEREG.exe 2014-09-05 13:00:40 69E8D9C6D360F511470024308B0B3EE3 72304 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\UNINST.EXE 2014-09-05 13:00:40 4431E07D73A9538B3E5A7FA3F4556D1F 69232 ------w- C:\Program Files (x86)\Canon\IJEREG\MG3200 series\IJRMF.exe 2014-09-05 13:00:32 61446FDD76788229D3EBAEABE84DF38C 887896 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\dotNetFx40_Client_setup.exe 2014-09-05 13:00:31 B05FCC8AE92C5EC4CE7FE41AC7FD1DA4 110184 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\addprinter.exe 2014-09-05 13:00:31 73913CC49926CAB5CC37BAF3DE13A4E0 725088 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\ewpexapp.exe 2014-09-05 13:00:31 61446FDD76788229D3EBAEABE84DF38C 887896 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\dotNetFx40_Client_setup.exe 2014-09-05 13:00:31 4669FF378F9895A672037B0FF36F9027 2265088 ----a-w- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbrk.exe 2014-09-05 13:00:31 13940BA025548132C1D0F5F177A0B7A7 110184 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addprinter.exe 2014-09-05 13:00:30 C95B0C1EED7E60EE94C184B66D3FC05C 725088 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexapp.exe 2014-09-05 13:00:30 BB749C5E36C107EAFE7F3752A640BDCC 1865328 ---ha-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\uninst.exe 2014-09-05 13:00:30 7760472A5EA8DB92278498E375B068EB 1674848 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbrk.exe 2014-09-05 13:00:04 5A2BE6FB08B12B9208916B568A08D622 122000 ----a-w- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexdl.exe 2014-09-05 12:59:40 CDFFB0058BA113ED8C6099DE11FAAD49 1273448 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE 2014-09-05 12:59:40 C2AFC01FA404ADFD3B915730C7DB2D55 940168 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE 2014-09-05 12:59:40 BE4F25620D39E7FA1A9CB715E2F60E96 1087608 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE 2014-09-05 12:59:40 B0E7F6B7CD997EA2E124C02EA0862D27 589952 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMLNCR.EXE 2014-09-05 12:59:40 AA6E41C1A24A1E6EFEA498D628FC9E15 381560 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNSEMAIN.EXE 2014-09-05 12:59:40 8998C26CC61025D4B842B98DF8C277E2 619144 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMULNC.EXE 2014-09-05 12:59:40 30F3D597E6AE93F7C43D112D12E38765 778392 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMINST.EXE 2014-09-05 12:59:39 A5CB53CC0AB71AA5B82AF9F36ADDBE76 768656 ----a-w- C:\Program Files (x86)\Canon\Quick Menu\CNQMACNF.EXE 2014-09-05 12:59:30 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\Quick Menu\uninst.exe 2014-09-05 12:55:20 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\My Image Garden\AddOn\uninst.exe 2014-09-05 12:54:26 18102952358185C0FDACAFEA5B5E2865 3332240 ----a-w- C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\cnmiggipi.exe 2014-09-05 12:54:12 C82884FD99A4A17A43B1EC6F654E8EDF 559736 ----a-w- C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe 2014-09-05 12:53:48 E15F7B3B095196F38B3C88E23F1F2BDF 1852032 ---ha-w- C:\Program Files (x86)\Canon\My Image Garden\uninst.exe 2014-09-05 12:53:27 F45501D4E0D70F852D8D705588CE4292 392296 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyRst.exe 2014-09-05 12:53:27 D3DA7EE243A82A25255ABC965E870809 917096 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe 2014-09-05 12:53:27 B8C3131A49C8AF133DD3C75A2215CF02 2301032 ----a-w- C:\Program Files\Canon\MyPrinter\BJMyDgn.exe 2014-09-05 12:53:24 60AD34E174F5EAA3203AB1ECD24EE538 1852032 ---ha-w- C:\Program Files\Canon\MyPrinter\uninst.exe 2014-09-05 12:53:05 AD8D6E3DF0F47A2CECC9EEFA78438475 354424 ----a-r- C:\Program Files (x86)\Canon\IJ Manual\CANON MG3200 SERIES\uninstall.exe 2014-09-05 12:52:42 45ED61A91F8CC88711EE4EB06B40D3D8 56456 ----a-w- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmvdrv.exe 2014-09-05 12:52:40 FDC2D7F38BECA0CDB7CB72D72BA8F5D2 2165880 ----a-w- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe 2014-09-05 12:52:14 87E3907428358946E8A3EFF99EB19F3D 728184 ----a-r- C:\Windows\System32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3200_series\DELDRV64.exe 2014-09-05 12:52:13 AC198D55B1F4CCD49A8ACE4856507EC7 55432 ------w- C:\Program Files\CanonBJ\IJPrinter\Canon MG3200 series\IJDIA6.exe 2014-09-05 12:52:07 35AFA8AFF085348E4542FE01D61B947B 60528 ----a-w- C:\Windows\System32\spool\drivers\x64\3\CNMVSB8.EXE 2014-09-05 12:52:06 3C10FAAA0E0BD71A39C5CD096282744F 20592 ----a-w- C:\Windows\System32\spool\drivers\x64\3\CNMSEB8.EXE 2014-09-05 12:20:59 4FF649DDE64C97FBC8C094F212E797C9 142848 ----a-w- C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe 2014-09-05 11:53:55 2469BB4697D2F27B3E6389FC6EF05447 487424 ----a-w- C:\Program Files\Garritan\Instruments for Finale\Garritan Instruments for Finale.exe 2014-09-05 11:53:53 B6CF388AE30FE3737C63C8B01480CFA9 695642 ----a-w- C:\Program Files\Garritan\Instruments for Finale\unins000.exe 2014-09-05 11:42:47 D5944ED8ADECD40442BC3E7F88D6C7B3 548704 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe 2014-09-05 11:42:47 A5B71BE51D4F96E249B90F9C97EE28B5 39776 ----a-w- C:\Windows\SysWOW64\DfSdkBt.exe 2014-09-05 11:42:47 A43182C212AD802B5D48AD3A3C89143D 33632 ----a-w- C:\Windows\SysWOW64\DfSdkBt32.exe 2014-09-05 11:42:47 423C428326549DE67FB808C3A2F33F78 410976 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS32.exe 2014-09-05 11:42:45 D3C68AE9218568EC7968CDB6AE1D702A 66896 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\ash_updateMediator.exe 2014-09-05 11:42:45 C72A91C37FD784A93E32797E1413D3D9 585568 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\DeleteUserData.exe 2014-09-05 11:42:45 08B319655840BE9B9D9AA82D09C09A1A 578912 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\exit_WO6.exe 2014-09-05 11:42:44 75DC79323E883066D4C2822A58AA5ECF 839008 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\EXEDecrypt.exe 2014-09-05 11:42:44 58A187E98356B1240D1933386721FA8A 1402208 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exe 2014-09-05 11:42:44 3A29187EFC458A9CB02A7D3F4C00515A 4628832 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\VisualStyler.exe 2014-09-05 11:42:43 A08D9558D8C2058184FA1D512A090658 6328672 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\WO6.exe 2014-09-05 11:42:43 784A91F2AF617BDBA43D8EA69C29CC19 708432 ----a-w- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\unins000.exe 2014-09-05 11:08:35 66FC85C4728B6FBA8E7AAD59854F3730 101694776 ----a-w- C:\Windows\System32\MRT.exe 2014-09-05 10:48:36 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-09-05 10:48:35 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-09-05 10:48:34 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-09-05 10:48:16 642F850B5D94E08AB6CFF997BE09C688 86816 ----a-w- C:\Windows\BrowserChoice\browserchoice.exe 2014-09-05 10:48:11 3E245CCA42D78B9626A79FE77E111D7B 84480 ----a-w- C:\Windows\System32\WSCollect.exe 2014-09-05 10:48:10 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\Windows\System32\sppsvc.exe 2014-09-05 10:47:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2014-09-05 10:47:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\Windows\System32\pcaui.exe 2014-09-05 10:47:56 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\Windows\System32\poqexec.exe 2014-09-05 10:47:56 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2014-09-05 10:41:57 6FB598E8DE02D879D17B35F144A1B3BC 270496 ------w- C:\Windows\System32\MpSigStub.exe 2014-09-05 10:29:00 D2CE2EDEC8D8E0A83D7F6267EF1299B6 96768 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2014-09-05 10:29:00 6B257B43F10588490320D7F1D42345B8 54432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2014-09-05 10:29:00 6B257B43F10588490320D7F1D42345B8 54432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2014-09-05 10:29:00 5F68D1BE6D42CFFE0EF534575B0F6C89 130208 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2014-09-05 10:29:00 31EDF20EF02603C690B6DCDC008B2235 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2014-09-05 10:27:08 3CC254108EFBE94E31132F2B0C886547 37217224 ----a-w- C:\Users\Henry\AppData\Roaming\LSC\Local Store\LSCSetup64.exe 2014-09-05 10:25:55 24A179EAB5D74773F1CED1190F242EA3 233784 ----a-w- C:\Users\Henry\AppData\Roaming\Maxthon3\Temp\MxUp\MxUpTool.exe 2014-09-05 10:25:53 ED372CB2FF3E2BE495D0E8C9626FF81A 1719608 ----a-w- C:\Users\Henry\AppData\Roaming\Maxthon3\Temp\MxUp\mxupnew.exe 2014-09-05 10:18:55 7E8D8C1CD88ADDE0C2319FA39627892F 1184605 ----a-w- C:\Program Files\lenovo\iMController\unins000.exe 2014-09-05 10:18:10 604CA6D7BD5E94F8CC45FDE07D2A4D98 12893808 ----a-w- C:\Program Files\lenovo\iMController\PluginUpdates\Installer\LeniMPkg.exe 2014-09-04 15:23:53 E90BF9E1562F40140161573B79CD5720 17292760 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\71\C\Users\Henry\Desktop\Voor Stick 16mb\Mbam-setup-2.0.2.1012--16,4mb--4.9.2014.exe 2014-09-04 06:19:13 B2F53B344EE8C54A37E059C11DE5368D 518000 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\70\C\Users\Henry\Desktop\setup_wipe.exe === C: other files == 2014-09-09 15:24:41 835A3526F68B0F9FC3B3B99E0690ED49 709529 ----a-w- C:\Program Files\Wipe\Plugins.zip 2014-09-07 06:54:29 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-09-07 06:54:20 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-09-07 06:54:20 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-09-07 06:54:20 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-09-07 06:35:03 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\48230029.sys 2014-09-06 16:17:39 8DF1254093B5C354CE725EB6B9B0DE19 146752 ----a-w- C:\Windows\System32\drivers\msgpioclx.sys 2014-09-06 15:33:52 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\Windows\System32\drivers\afd.sys 2014-09-06 15:33:47 83E3C080E9B0E0677DBCDF9D7F434166 4190720 ----a-w- C:\Windows\System32\win32k.sys 2014-09-06 15:33:42 313DCE665B57000B18CB26C6B6A10DFE 1557848 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-09-06 15:33:36 019CC610AD95FF47EAD7C08B7A683B96 257880 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2014-09-06 15:33:35 6CC1BB8F6851A262E2E824F0E92D5EEF 123224 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys 2014-09-06 15:33:34 F5D4FA3E1F4879C361FFF3855259D2C2 35856 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2014-09-06 15:31:19 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\Windows\System32\drivers\cng.sys 2014-09-06 15:31:08 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-09-06 15:31:06 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\Windows\System32\drivers\agilevpn.sys 2014-09-06 15:31:05 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\Windows\System32\drivers\vwifimp.sys 2014-09-06 15:31:05 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\Windows\System32\drivers\vwififlt.sys 2014-09-06 15:31:03 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2014-09-06 15:30:58 FE0ADF5028EB8C1339B66B3AEDE3FEF9 440664 ----a-w- C:\Windows\System32\drivers\usbport.sys 2014-09-06 15:30:58 93435654DCA210298BA0F986EB51C679 419672 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2014-09-06 15:30:58 25AC0B50A71938890970E1508F107196 2518360 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-09-06 15:30:57 D79920BE4E6683D3AB50F71457A4F6C6 27480 ----a-w- C:\Windows\System32\drivers\usbd.sys 2014-09-06 15:30:57 D537815E450A149752C15868392AD1F3 110592 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2014-09-06 15:30:57 8FCE57F7E5CDA5751FDE01A316180488 428888 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-09-06 15:30:57 83C9C45D59C72FEFDAE9A5686BE31FEA 467800 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2014-09-06 15:30:57 7CCBBCEE408A5DBE3FE47297DB5A6CFC 227840 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2014-09-06 15:30:57 48BA326A3DBA5B5BEB5F2777F4618696 89944 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2014-09-06 15:30:57 064260B3A5868AC894A4943543BC7AB7 37376 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2014-09-06 15:30:47 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\Windows\System32\drivers\srv2.sys 2014-09-06 15:30:47 4BB9BC49DEE1A319EC58274A7BBED663 310616 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2014-09-06 15:30:46 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\Windows\System32\drivers\nwifi.sys 2014-09-06 15:30:46 498288DD5CA42C2D36D125893E968C53 77312 ----a-w- C:\Windows\System32\drivers\hdaudbus.sys 2014-09-06 15:30:45 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2014-09-06 15:30:45 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\Windows\System32\drivers\Classpnp.sys 2014-09-06 15:30:44 D90AB68D0FAC9F357F663670FDBB511E 275800 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2014-09-06 15:30:44 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2014-09-06 15:30:44 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\Windows\System32\drivers\fltMgr.sys 2014-09-06 15:30:44 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\Windows\System32\drivers\storport.sys 2014-09-06 15:30:44 33977549C2CED09936E05BEE7659EAFF 384856 ----a-w- C:\Windows\System32\drivers\spaceport.sys 2014-09-06 15:30:32 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\Windows\System32\drivers\wpcfltr.sys 2014-09-06 02:50:46 9539F7917B4B6D92C90F0FAA6B86C605 539992 ----a-w- C:\Windows\System32\drivers\acpi.sys 2014-09-06 02:50:45 F21B77B4D74092A543807D3CEB711A88 1118552 ----a-w- C:\Windows\System32\drivers\ndis.sys 2014-09-06 02:50:41 A26AEC49F318FEE141DDDB2C5F99B3E6 249688 ----a-w- C:\Windows\System32\drivers\rdyboost.sys 2014-09-06 02:50:38 275AFE3FA35E8D78BE97695DF49817C6 280920 ----a-w- C:\Windows\System32\drivers\pci.sys 2014-09-06 02:50:36 233A4C961703D6B3EBA4EC1A3E85AACE 298496 ----a-w- C:\Windows\System32\drivers\ks.sys 2014-09-06 02:50:34 EA23453240137F6773174E0D93F61A69 148824 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-09-06 02:50:29 8685379B82AC81187813225905531D1E 272896 ----a-w- C:\Windows\System32\drivers\portcls.sys 2014-09-06 02:50:28 52E483A3701A5A61A75A06993720347D 551256 ----a-w- C:\Windows\System32\drivers\vhdmp.sys 2014-09-06 02:50:21 DDEE191AB32DFC22C6465002ECDF5EE4 124416 ----a-w- C:\Windows\System32\drivers\luafv.sys 2014-09-06 02:50:21 0ECEE590F2E2EF969FB74A6FC583A1E6 663040 ----a-w- C:\Windows\System32\drivers\PEAuth.sys 2014-09-06 02:50:19 FDEC5799BA499D18AFA3A540538866E7 236888 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2014-09-06 02:50:16 E515A287C8FAE901EB8FB42F168E14F2 924504 ----a-w- C:\Windows\System32\drivers\refs.sys 2014-09-06 02:50:16 BCFD8B149B3ADF92D0DB1E909CAF0265 79192 ----a-w- C:\Windows\System32\drivers\fileinfo.sys 2014-09-06 02:50:16 38A82F4EE8C416A6744B6D30381ED768 33280 ----a-w- C:\Windows\System32\drivers\BasicRender.sys 2014-09-06 02:50:15 0B1E929D11A8E358106955603FAC65E8 79192 ----a-w- C:\Windows\System32\drivers\sdstor.sys 2014-09-06 02:50:15 02836172141D3AFA35B07679E253E503 151384 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2014-09-06 02:50:11 61A1C2641321A6B89A2B41C5D481EF48 71888 ----a-w- C:\Windows\System32\drivers\dumpfve.sys 2014-09-06 02:50:11 48430B0313FC1CFE3D2400553F1A93CD 325464 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS 2014-09-06 02:50:09 B034A41891A36457B994307DFA772293 189784 ----a-w- C:\Windows\System32\drivers\UCX01000.SYS 2014-09-06 02:50:05 9DDCA7F18983C5410DEFF79F819DF93C 994136 ----a-w- C:\Windows\System32\drivers\http.sys 2014-09-06 02:50:00 9CC0003FB8ED3763B977B43F1012FF63 54272 ----a-w- C:\Windows\System32\drivers\watchdog.sys 2014-09-06 02:48:08 1C80517BE6836A812F6A9B99B8321351 2013016 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2014-09-06 02:48:04 7FC5667DF73D4B04AA457CC3A4180E09 157016 ----a-w- C:\Windows\System32\drivers\wof.sys 2014-09-06 02:48:03 4030CB06B8D963A45CED9E60C9F2A11E 379224 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2014-09-06 02:48:03 179A41249055D5F039F1B6703F3B6D2B 376152 ----a-w- C:\Windows\System32\drivers\clfs.sys 2014-09-06 02:48:00 F88CC88F4A6D8476F1664E805CA18CC2 180056 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-09-06 02:48:00 A03F362C5557E238CBFA914689C77248 134144 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2014-09-06 02:47:59 BFBE1C5F57FE7A885673A1962D5532B7 136024 ----a-w- C:\Windows\System32\drivers\wfplwfs.sys 2014-09-06 02:47:59 8DB8EAB9D0C6A5DF0BDCADEA239220B4 33280 ----a-w- C:\Windows\System32\drivers\hidusb.sys 2014-09-06 02:47:58 ABB7341766902F5AAB45E15F34D19E15 111616 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2014-09-06 02:47:58 41CF802064F72E55F50CA0A221FD36D4 49152 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2014-09-06 02:47:58 1D55DADC22D21883A2F80297F5A5AE48 140288 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2014-09-06 02:47:57 FD9C9E9E3F0ED51502C7E8C066BE26B9 79360 ----a-w- C:\Windows\System32\drivers\IPMIDrv.sys 2014-09-06 02:47:57 3E28B99198B514DFEB152EACF913025E 283648 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2014-09-05 17:57:11 948D5E71CF9DB59961353A355EA45139 816344 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\WIN8\rt630x64.sys 2014-09-05 16:59:40 5F8A6A3D4F3EC596C05E63255BCF6884 21211 ----a-r- C:\Users\Henry\AppData\Local\Microsoft\Windows\FileHistory\Data\76\C\Users\Henry\Desktop\Wipe alles samen\Help voor in tijd van nood.-.zip 2014-09-05 13:16:47 7F2525187995BEDBF036C6525EE68CB9 88 ----a-w- C:\Program Files\RFA 9\save_settings.bat 2014-09-05 13:16:47 5DF030DB155ED600A7F1337FBC65D2B9 1510 ----a-w- C:\Program Files\RFA 9\repl_ag.bat 2014-09-05 12:25:36 6031CBF80D60580E0D20C32218E19104 3506 ----a-w- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Danny750@outlook.com 2014-09-05 12:18:37 EFE63BDFC12A1DD65FBB9E621F29B78C 10224 ------w- C:\Windows\System32\drivers\cdr4_xp.sys 2014-09-05 12:18:37 87B04878A6D59D6C79251DC960C674C1 55856 ------w- C:\Windows\System32\drivers\PxHlpa64.sys 2014-09-05 12:18:37 60B3B1A2544EB7843F26EC291BB590BB 10224 ------w- C:\Windows\System32\drivers\cdralw2k.sys 2014-09-05 10:59:55 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\Windows\System32\drivers\ipnat.sys 2014-09-05 10:59:54 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\Windows\System32\drivers\BtaMPM.sys 2014-09-05 10:56:53 139CFCDCD36B1B1782FD8C0014AC9B0E 39768 ----a-w- C:\Windows\System32\drivers\intelpep.sys 2014-09-05 10:56:53 0044B31F93946D5D41982314381FE431 146776 ----a-w- C:\Windows\System32\drivers\SerCx2.sys 2014-09-05 10:56:52 B9D968D8E2B0F9C6301CEB39CFC9B9E4 86872 ----a-w- C:\Windows\System32\drivers\pdc.sys 2014-09-05 10:56:28 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2014-09-05 10:56:23 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-108903256-2374480697-3855323451-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Wipe Maintance"="C:\Program Files\Wipe\net1.exe windowsStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "jmekey"="C:\windows\jmesoft\hotkey.exe" "jmesoft"="C:\Windows\jmesoft\ServiceLoader.exe" "CLMLServer"="C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" "Lenovo App Shop"="C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4" "ModeSwitch"="C:\Program Files\Lenovo\Power Control Switch\LitModeSwitch.exe /AutoRun" "LVT"="C:\Program Files\Lenovo\LVT\LJYZ.exe 1" "RemoteControl10"="C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" "CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon" "AML Registry Cleaner"="C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe /min" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Wipe Maintance"="C:\Program Files\Wipe\net1.exe windowsStartup" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun" "rfagent"="C:\Program Files\RFA 9\rfagent64.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Startup Folders ====================== 2014-09-06 14:35:51 1828 ----a-w- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wipe Tray Agent.lnk ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\UMonitor Task" [C:\windows\SysWOW64\UMonit64.exe] "C:\WINDOWS\SysNative\tasks\Cybertron\Privacy Eraser\SkipUAC" [C:\Program Files\Cybertron\Privacy Eraser\PrivacyEraser.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Dependency Package Auto Update" [C:\Program Files\Lenovo\iMController\AutoUpdate.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Experience Improvement" [C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.bing.com/?scope=web&mkt=nl-NL" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.bing.com/?scope=web&mkt=nl-NL" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {A750AB68-646F-4BA3-BE63-A1F79807FA58} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-108903256-2374480697-3855323451-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A750AB68-646F-4BA3-BE63-A1F79807FA58} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [Lenovo App Shop] "C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKCU\..\Run: [Wipe Maintance] "C:\Program Files\Wipe\net1.exe" windowsStartup O4 - Startup: Wipe Tray Agent.lnk = C:\Program Files\Wipe\Wipe.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Microsoft Office\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe O23 - Service: LenovoCOMService (LenovoCOMSvc) - Lenovo - C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe O23 - Service: LitModeCtrl - Lenovo - C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Henry\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Henry\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=519 folders=69 118372939 bytes) ==== Empty Temp Folders ====================== C:\Users\Administrator\AppData\Local\Temp emptied successfully C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Henry\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Users\Henry\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on wo 10-09-2014 at 14:38:48,27 ======================
  4. Zoek-results.log Zoek.exe v5.0.0.0 Updated 10-September-2014 Tool run by Henry on wo 10-09-2014 at 14:22:50,96. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Henry\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]===== Runcheck 14:26:15,10 ===== --- Create Environment Variables 14:26:15,96 --- Create System Restore Point 14:26:19,93 --- Checking Input 14:26:20,52 --- AU AppData Check 14:26:22,90 --- Remove From Windows Installer 14:26:25,72 --- Empty Folders Check 14:27:03,07 --- IE Startpage Check 14:27:09,13 --- Program Files DB Check 14:27:19,33 --- C:\Users\Administrator\AppData\Roaming DB Check 14:27:53,82 --- C:\Users\Default\AppData\Roaming DB Check 14:27:53,82 --- C:\Users\Henry\AppData\Roaming DB Check 14:27:53,82 --- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming DB Check 14:27:53,82 --- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming DB Check 14:27:53,82 --- C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming DB Check 14:27:53,82 --- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming DB Check 14:27:53,82 --- C:\Users\Henry DB Check 14:29:14,74 --- C:\PROGRA~3 DB Check 14:29:25,87 --- C:\Users\Administrator\AppData\Local DB Check 14:29:26,87 --- C:\Users\Default\AppData\Local DB Check 14:29:26,87 --- C:\Users\Henry\AppData\Local DB Check 14:29:26,87 --- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local DB Check 14:29:26,87 --- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local DB Check 14:29:26,87 --- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local DB Check 14:29:26,87 --- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local DB Check 14:29:26,87 --- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 14:30:21,68 --- C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 14:30:27,60 --- Tasks DB Check 14:30:31,02 --- Downloads DB Check 14:30:33,34 --- C:\Users\Administrator\AppData\LocalLow DB Check 14:30:36,41 --- C:\Users\Henry\AppData\LocalLow DB Check 14:30:36,41 --- C:\WINDOWS\SysNative\config\systemprofile\AppData\LocalLow DB Check 14:30:36,41 --- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow DB Check 14:30:36,41 --- C:\WINDOWS\serviceprofiles\networkservice\AppData\LocalLow DB Check 14:30:36,41 --- C:\WINDOWS\serviceprofiles\Localservice\AppData\LocalLow DB Check 14:30:36,41 --- Tasks2 DB Check 14:31:19,74 --- Documents DB Check 14:31:35,94 --- C:\Users\Henry\AppData\Roaming\Mozilla\Firefox\Profiles\hcc75mpq.default DB Check 14:31:39,91 --- C:\Users\Henry\AppData\Roaming\Thunderbird\Profiles\o41po0xt.default DB Check 14:31:39,91 --- C:\Users\Public\Desktop DB Check 14:31:43,36 --- C:\Users\Henry\Desktop DB Check 14:31:45,63 --- Services DB Check 14:31:50,22 --- FF prefs.js DB Check 14:32:00,15 --- Del by CLSID 14:32:40,32 --- Processes 14:32:53,61 --- Delete Services 14:32:53,79 --- Delete files\folders 14:32:55,73 --- Create Backups 14:32:55,84 --- System Specs 14:33:02,78 --- Recently Created 14:33:07,90
  5. Logfile of random's system information tool 1.10 (written by random/random) Run by Henry at 2014-09-10 10:00:12 Microsoft Windows 8.1 System drive C: has 785 GB (85%) free of 927 GB Total RAM: 8124 MB (76% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:00:13, on 10-9-2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17278) Boot mode: Normal Running processes: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\windows\SysWOW64\UMonit64.exe C:\Windows\jmesoft\hotkey.exe C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\Henry.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files (x86)\Finale 2010\Help Files\Skin\Blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files (x86)\Finale 2010\Help Files\Skin\Blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [Lenovo App Shop] "C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKCU\..\Run: [Wipe Maintance] "C:\Program Files\Wipe\net1.exe" windowsStartup O4 - Startup: Wipe Tray Agent.lnk = C:\Program Files\Wipe\Wipe.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Microsoft Office\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe O23 - Service: LenovoCOMService (LenovoCOMSvc) - Lenovo - C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe O23 - Service: LitModeCtrl - Lenovo - C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9572 bytes ======Listing Processes====== wininit.exe C:\WINDOWS\system32\lsass.exe winlogon.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted "dwm.exe" C:\WINDOWS\system32\svchost.exe -k netsvcs atieclxx C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\WLANExt.exe 690218599248 \??\C:\WINDOWS\system32\conhost.exe 0x4 C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork dashost.exe {2e92d70c-6f4c-4a19-a381c78a7ed15521} "C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE" C:\WINDOWS\Explorer.EXE ClassicStartMenu.exe -startup taskhostex.exe "C:\Program Files\Intel\iCLS Client\HeciServer.exe" C:\Windows\jmesoft\Service.exe "C:\Program Files\Lenovo\iMController\SystemAgentService.exe" "C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray "C:\Program Files\CyberLink\Shared files\RichVideo64.exe" C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\system32\SearchIndexer.exe /Embedding C:\windows\SysWOW64\UMonit64.exe "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-72bb194f-3814-4d4d-8dbc-0900927d97de -SystemEventPortName:HostProcess-685ff512-dfae-4cbf-ac95-b840a19cf6d4 -IoCancelEventPortName:HostProcess-8dfe20d9-cbde-4810-b9ad-6cb477b00a19 -NonStateChangingEventPortName:HostProcess-a6c96f88-84a4-4ddf-be90-8f96c117f9d5 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:99f13a98-e7a7-4368-a51d-280e7678afdb -DeviceGroupId:WudfDefaultDevicePool "C:\Program Files\Wipe\Wipe.exe" tray "C:\Windows\jmesoft\hotkey.exe" "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" "C:\Windows\jmesoft\JME_LOAD.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store C:\Windows\System32\RuntimeBroker.exe -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" https://www.facebook.com/profile.php?id=100005749457490&fref=photo "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4932 CREDAT:267521 /prefetch:2 C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4508 CREDAT:267521 /prefetch:2 "C:\WINDOWS\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4508 CREDAT:4134186 /prefetch:2 "C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\info.txt C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} "C:\Users\Henry\Desktop\RSITx64.exe" C:\WINDOWS\system32\wbem\wmiprvse.exe =========Mozilla firefox========= ProfilePath - C:\Users\Henry\AppData\Roaming\Mozilla\Firefox\Profiles\hcc75mpq.default prefs.js - "browser.startup.homepage" - "Bing" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX] "Description"=Canon My Image Garden "Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}] ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}] ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}] ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}] ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848] {553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128] {553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-08 36352] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904] "Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Wipe Maintance"=C:\Program Files\Wipe\net1.exe [2014-09-09 546968] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "jmekey"=C:\windows\jmesoft\hotkey.exe [2013-07-24 118784] "jmesoft"=C:\Windows\jmesoft\ServiceLoader.exe [2011-08-17 28672] "CLMLServer"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [2009-12-05 103720] "Lenovo App Shop"=C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe [2013-07-19 156000] C:\Users\Henry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Wipe Tray Agent.lnk - C:\Program Files\Wipe\Wipe.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0x00000003 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoResolveTrack"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-09-10 07:47:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe 2014-09-10 07:30:48 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll 2014-09-10 07:30:48 ----A---- C:\WINDOWS\system32\MshtmlDac.dll 2014-09-10 07:30:47 ----A---- C:\WINDOWS\system32\mshtmled.dll 2014-09-10 07:30:46 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll 2014-09-10 07:30:46 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll 2014-09-10 07:30:46 ----A---- C:\WINDOWS\system32\vbscript.dll 2014-09-10 07:30:46 ----A---- C:\WINDOWS\system32\jscript9diag.dll 2014-09-10 07:30:46 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\msfeeds.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\jsproxy.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\iedkcs32.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\ie4uinit.exe 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\dxtrans.dll 2014-09-10 07:30:44 ----A---- C:\WINDOWS\system32\dxtmsft.dll 2014-09-10 07:30:43 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll 2014-09-10 07:30:43 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll 2014-09-10 07:30:43 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll 2014-09-10 07:30:43 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll 2014-09-10 07:30:43 ----A---- C:\WINDOWS\system32\ieapfltr.dll 2014-09-10 07:30:42 ----A---- C:\WINDOWS\system32\mshtml.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\system32\wininet.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\system32\urlmon.dll 2014-09-10 07:30:40 ----A---- C:\WINDOWS\system32\iertutil.dll 2014-09-10 07:30:39 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll 2014-09-10 07:30:39 ----A---- C:\WINDOWS\system32\ieframe.dll 2014-09-10 07:30:38 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll 2014-09-10 07:30:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll 2014-09-10 07:30:38 ----A---- C:\WINDOWS\system32\jscript9.dll 2014-09-10 07:28:23 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll 2014-09-10 07:28:23 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll 2014-09-10 07:28:18 ----A---- C:\WINDOWS\system32\schedsvc.dll 2014-09-10 07:28:15 ----A---- C:\WINDOWS\system32\twinui.dll 2014-09-10 07:28:15 ----A---- C:\WINDOWS\system32\aepic.dll 2014-09-10 07:28:15 ----A---- C:\WINDOWS\system32\aepdu.dll 2014-09-10 07:28:15 ----A---- C:\WINDOWS\system32\aeinv.dll 2014-09-10 07:28:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll 2014-09-10 07:28:14 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe 2014-09-10 07:28:14 ----A---- C:\WINDOWS\system32\uDWM.dll 2014-09-10 07:28:14 ----A---- C:\WINDOWS\system32\actxprxy.dll 2014-09-10 07:28:14 ----A---- C:\WINDOWS\explorer.exe 2014-09-10 07:28:13 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll 2014-09-10 07:28:13 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll 2014-09-10 07:28:13 ----A---- C:\WINDOWS\system32\UXInit.dll 2014-09-08 14:08:02 ----D---- C:\Program Files (x86)\Microsoft Works 2014-09-08 14:07:52 ----D---- C:\WINDOWS\PCHEALTH 2014-09-08 14:05:55 ----D---- C:\Program Files\Microsoft Office 2014-09-08 14:05:10 ----RHD---- C:\MSOCache 2014-09-07 10:50:30 ----D---- C:\rsit 2014-09-07 10:50:30 ----D---- C:\Program Files\trend micro 2014-09-07 08:54:29 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys 2014-09-07 08:54:20 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-09-07 08:54:20 ----A---- C:\WINDOWS\system32\drivers\mwac.sys 2014-09-07 08:54:20 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys 2014-09-07 08:54:20 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2014-09-07 08:43:47 ----A---- C:\WINDOWS\SYSWOW64\taskSchedularLog.txt 2014-09-07 08:35:03 ----A---- C:\WINDOWS\system32\drivers\48230029.sys 2014-09-07 04:17:39 ----D---- C:\ProgramData\Malwarebytes 2014-09-06 18:17:39 ----A---- C:\WINDOWS\system32\WSDMon.dll 2014-09-06 18:17:39 ----A---- C:\WINDOWS\system32\tcpmon.dll 2014-09-06 18:17:39 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys 2014-09-06 17:50:36 ----A---- C:\WINDOWS\system32\termsrv.dll 2014-09-06 17:50:27 ----SD---- C:\WINDOWS\system32\CompatTel 2014-09-06 17:47:29 ----D---- C:\Program Files (x86)\Microsoft Office 2014-09-06 17:47:24 ----D---- C:\WINDOWS\TEMP 2014-09-06 17:33:52 ----A---- C:\WINDOWS\system32\drivers\afd.sys 2014-09-06 17:33:48 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll 2014-09-06 17:33:48 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2014-09-06 17:33:47 ----A---- C:\WINDOWS\system32\win32k.sys 2014-09-06 17:33:46 ----A---- C:\WINDOWS\system32\osk.exe 2014-09-06 17:33:45 ----A---- C:\WINDOWS\SYSWOW64\osk.exe 2014-09-06 17:33:43 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll 2014-09-06 17:33:43 ----A---- C:\WINDOWS\system32\msxml3.dll 2014-09-06 17:33:42 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll 2014-09-06 17:33:42 ----A---- C:\WINDOWS\system32\dxgi.dll 2014-09-06 17:33:42 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys 2014-09-06 17:33:41 ----A---- C:\WINDOWS\system32\dwmcore.dll 2014-09-06 17:33:38 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe 2014-09-06 17:33:38 ----A---- C:\WINDOWS\system32\wusa.exe 2014-09-06 17:33:36 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys 2014-09-06 17:33:35 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys 2014-09-06 17:33:34 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys 2014-09-06 17:31:24 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe 2014-09-06 17:31:24 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe 2014-09-06 17:31:19 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll 2014-09-06 17:31:19 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll 2014-09-06 17:31:19 ----A---- C:\WINDOWS\system32\rdpcorets.dll 2014-09-06 17:31:19 ----A---- C:\WINDOWS\system32\lsasrv.dll 2014-09-06 17:31:19 ----A---- C:\WINDOWS\system32\drivers\cng.sys 2014-09-06 17:31:19 ----A---- C:\WINDOWS\system32\certcli.dll 2014-09-06 17:31:19 ----A---- C:\WINDOWS\system32\adtschema.dll 2014-09-06 17:31:18 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll 2014-09-06 17:31:18 ----A---- C:\WINDOWS\system32\WpcWebSync.dll 2014-09-06 17:31:18 ----A---- C:\WINDOWS\system32\WpcMon.exe 2014-09-06 17:31:18 ----A---- C:\WINDOWS\system32\Wpc.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe 2014-09-06 17:31:16 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\wuwebv.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\wups.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\wucltux.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\wuapp.exe 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\WSReset.exe 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\ubpm.dll 2014-09-06 17:31:16 ----A---- C:\WINDOWS\system32\storewuauth.dll 2014-09-06 17:31:14 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe 2014-09-06 17:31:14 ----A---- C:\WINDOWS\system32\drvinst.exe 2014-09-06 17:31:14 ----A---- C:\WINDOWS\system32\drvcfg.exe 2014-09-06 17:31:10 ----A---- C:\WINDOWS\system32\SyncEngine.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\SkyDrive.exe 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\ntdll.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\mfcore.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\localspl.dll 2014-09-06 17:31:09 ----A---- C:\WINDOWS\system32\d3d9.dll 2014-09-06 17:31:08 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll 2014-09-06 17:31:08 ----A---- C:\WINDOWS\system32\vpnike.dll 2014-09-06 17:31:08 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll 2014-09-06 17:31:08 ----A---- C:\WINDOWS\system32\framedynos.dll 2014-09-06 17:31:08 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys 2014-09-06 17:31:08 ----A---- C:\WINDOWS\system32\dhcpcore.dll 2014-09-06 17:31:07 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll 2014-09-06 17:31:07 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll 2014-09-06 17:31:07 ----A---- C:\WINDOWS\system32\fveapi.dll 2014-09-06 17:31:07 ----A---- C:\WINDOWS\system32\dhcpcore6.dll 2014-09-06 17:31:07 ----A---- C:\WINDOWS\system32\bdesvc.dll 2014-09-06 17:31:06 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll 2014-09-06 17:31:06 ----A---- C:\WINDOWS\system32\winbici.dll 2014-09-06 17:31:06 ----A---- C:\WINDOWS\system32\ncobjapi.dll 2014-09-06 17:31:06 ----A---- C:\WINDOWS\system32\framedyn.dll 2014-09-06 17:31:06 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys 2014-09-06 17:31:06 ----A---- C:\WINDOWS\system32\BFE.DLL 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\WebClnt.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\Robocopy.exe 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\IKEEXT.DLL 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll 2014-09-06 17:31:05 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe 2014-09-06 17:31:04 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll 2014-09-06 17:31:04 ----A---- C:\WINDOWS\system32\srms.dat 2014-09-06 17:31:04 ----A---- C:\WINDOWS\system32\reseteng.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\system32\mrt100.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\system32\mrt_map.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\system32\FntCache.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\system32\DWrite.dll 2014-09-06 17:31:03 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys 2014-09-06 17:31:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll 2014-09-06 17:31:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll 2014-09-06 17:30:58 ----A---- C:\WINDOWS\system32\drivers\usbport.sys 2014-09-06 17:30:58 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys 2014-09-06 17:30:58 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\WUDFSvc.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\WUDFHost.exe 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\rsaenh.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\hal.dll 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\usbd.sys 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS 2014-09-06 17:30:57 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll 2014-09-06 17:30:54 ----A---- C:\WINDOWS\system32\shell32.dll 2014-09-06 17:30:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll 2014-09-06 17:30:53 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll 2014-09-06 17:30:52 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll 2014-09-06 17:30:51 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll 2014-09-06 17:30:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll 2014-09-06 17:30:49 ----A---- C:\WINDOWS\system32\gpsvc.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\wmpmde.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\winmde.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\mstscax.dll 2014-09-06 17:30:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\srvsvc.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\services.exe 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\SearchFolder.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys 2014-09-06 17:30:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\Windows.Media.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\win32spl.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\mfsvr.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\dwmapi.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\defragsvc.dll 2014-09-06 17:30:46 ----A---- C:\WINDOWS\system32\audiosrv.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\resutils.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\ploptin.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\MDEServer.exe 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys 2014-09-06 17:30:45 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\mf.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\wscsvc.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\wintrust.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\VSSVC.exe 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\swprv.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\rpchttp.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\rdpencom.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\propsys.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\mfplat.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\mf.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\gpapi.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\energyprov.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\drivers\storport.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\clusapi.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\AudioSes.dll 2014-09-06 17:30:44 ----A---- C:\WINDOWS\system32\AudioEng.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\wlansvc.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\wlansec.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\wlanmsm.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\wlanapi.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\tlscsp.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\srcore.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\rdvidcrl.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\mispace.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\mfpmp.exe 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\BootMenuUX.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll 2014-09-06 17:30:43 ----A---- C:\WINDOWS\system32\audiodg.exe 2014-09-06 17:30:42 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\system32\wlanhlp.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\system32\tsgqec.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\system32\srclient.dll 2014-09-06 17:30:42 ----A---- C:\WINDOWS\system32\rstrui.exe 2014-09-06 17:30:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll 2014-09-06 17:30:40 ----A---- C:\WINDOWS\system32\msi.dll 2014-09-06 17:30:39 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll 2014-09-06 17:30:39 ----A---- C:\WINDOWS\SYSWOW64\authui.dll 2014-09-06 17:30:39 ----A---- C:\WINDOWS\system32\msihnd.dll 2014-09-06 17:30:39 ----A---- C:\WINDOWS\system32\consent.exe 2014-09-06 17:30:39 ----A---- C:\WINDOWS\system32\authui.dll 2014-09-06 17:30:37 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll 2014-09-06 17:30:37 ----A---- C:\WINDOWS\system32\qedit.dll 2014-09-06 17:30:36 ----A---- C:\WINDOWS\system32\devinv.dll 2014-09-06 17:30:33 ----A---- C:\WINDOWS\system32\wpccpl.dll 2014-09-06 17:30:32 ----A---- C:\WINDOWS\system32\MrmCoreR.dll 2014-09-06 17:30:32 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys 2014-09-06 17:30:31 ----A---- C:\WINDOWS\system32\MDMAgent.exe 2014-09-06 17:28:40 ----A---- C:\WINDOWS\system32\wuaueng.dll 2014-09-06 17:28:39 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll 2014-09-06 17:28:39 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll 2014-09-06 17:28:39 ----A---- C:\WINDOWS\system32\wuapi.dll 2014-09-06 17:28:39 ----A---- C:\WINDOWS\system32\WSShared.dll 2014-09-06 17:28:39 ----A---- C:\WINDOWS\system32\twinui.appcore.dll 2014-09-06 17:28:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-09-06 17:28:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll 2014-09-06 17:28:38 ----A---- C:\WINDOWS\system32\wudriver.dll 2014-09-06 17:28:38 ----A---- C:\WINDOWS\system32\wuauclt.exe 2014-09-06 17:28:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-09-06 17:28:38 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll 2014-09-06 17:28:37 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll 2014-09-06 17:27:51 ----D---- C:\Program Files\Wipe 2014-09-06 16:34:42 ----D---- C:\Users\Henry\AppData\Roaming\Wipe 2014-09-06 10:23:39 ----D---- C:\Program Files (x86)\ImgBurn 2014-09-06 09:29:52 ----D---- C:\Users\Henry\AppData\Roaming\Leadertech 2014-09-06 09:26:54 ----D---- C:\ProgramData\Pinnacle 2014-09-06 09:15:33 ----D---- C:\Program Files\Common Files\Propellerhead Software 2014-09-06 09:14:28 ----D---- C:\Users\Henry\AppData\Roaming\Avid 2014-09-06 09:14:28 ----D---- C:\ProgramData\Avid 2014-09-06 09:14:28 ----D---- C:\Program Files\Avid 2014-09-06 07:16:36 ----D---- C:\Program Files (x86)\Microsoft Games 2014-09-06 06:28:26 ----D---- C:\ProgramData\WRData 2014-09-06 06:21:01 ----D---- C:\Program Files\Speccy 2014-09-06 05:20:48 ----D---- C:\Users\Henry\AppData\Roaming\Cybertron 2014-09-06 05:19:11 ----D---- C:\Program Files\Cybertron 2014-09-06 05:09:40 ----D---- C:\Program Files (x86)\AVID 2014-09-06 04:51:09 ----A---- C:\WINDOWS\system32\WSService.dll 2014-09-06 04:51:05 ----A---- C:\WINDOWS\system32\glcndFilter.dll 2014-09-06 04:51:02 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll 2014-09-06 04:51:02 ----A---- C:\WINDOWS\system32\OobeFldr.dll 2014-09-06 04:51:01 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll 2014-09-06 04:51:00 ----A---- C:\WINDOWS\system32\wmp.dll 2014-09-06 04:50:59 ----A---- C:\WINDOWS\system32\sppobjs.dll 2014-09-06 04:50:58 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll 2014-09-06 04:50:58 ----A---- C:\WINDOWS\system32\tquery.dll 2014-09-06 04:50:57 ----A---- C:\WINDOWS\system32\sysmain.dll 2014-09-06 04:50:57 ----A---- C:\WINDOWS\system32\mssrch.dll 2014-09-06 04:50:56 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll 2014-09-06 04:50:55 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll 2014-09-06 04:50:54 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL 2014-09-06 04:50:54 ----A---- C:\WINDOWS\system32\webservices.dll 2014-09-06 04:50:54 ----A---- C:\WINDOWS\system32\combase.dll 2014-09-06 04:50:53 ----A---- C:\WINDOWS\system32\wlidsvc.dll 2014-09-06 04:50:53 ----A---- C:\WINDOWS\system32\dui70.dll 2014-09-06 04:50:52 ----A---- C:\WINDOWS\system32\msTextPrediction.dll 2014-09-06 04:50:51 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll 2014-09-06 04:50:51 ----A---- C:\WINDOWS\SYSWOW64\combase.dll 2014-09-06 04:50:51 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll 2014-09-06 04:50:51 ----A---- C:\WINDOWS\system32\mfnetsrc.dll 2014-09-06 04:50:50 ----A---- C:\WINDOWS\system32\mfnetcore.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\WofTasks.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\StructuredQuery.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\setupapi.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\rpcss.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll 2014-09-06 04:50:48 ----A---- C:\WINDOWS\system32\DfpCommon.dll 2014-09-06 04:50:47 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll 2014-09-06 04:50:47 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll 2014-09-06 04:50:47 ----A---- C:\WINDOWS\system32\RacEngn.dll 2014-09-06 04:50:46 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll 2014-09-06 04:50:46 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll 2014-09-06 04:50:46 ----A---- C:\WINDOWS\system32\SHCore.dll 2014-09-06 04:50:46 ----A---- C:\WINDOWS\system32\msctf.dll 2014-09-06 04:50:46 ----A---- C:\WINDOWS\system32\drivers\acpi.sys 2014-09-06 04:50:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll 2014-09-06 04:50:45 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll 2014-09-06 04:50:45 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll 2014-09-06 04:50:45 ----A---- C:\WINDOWS\system32\wer.dll 2014-09-06 04:50:45 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll 2014-09-06 04:50:45 ----A---- C:\WINDOWS\system32\drivers\ndis.sys 2014-09-06 04:50:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll 2014-09-06 04:50:44 ----A---- C:\WINDOWS\SYSWOW64\wer.dll 2014-09-06 04:50:44 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll 2014-09-06 04:50:44 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll 2014-09-06 04:50:44 ----A---- C:\WINDOWS\system32\uxtheme.dll 2014-09-06 04:50:44 ----A---- C:\WINDOWS\system32\samsrv.dll 2014-09-06 04:50:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll 2014-09-06 04:50:43 ----A---- C:\WINDOWS\system32\user32.dll 2014-09-06 04:50:43 ----A---- C:\WINDOWS\system32\storagewmi.dll 2014-09-06 04:50:43 ----A---- C:\WINDOWS\system32\SearchIndexer.exe 2014-09-06 04:50:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll 2014-09-06 04:50:42 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll 2014-09-06 04:50:42 ----A---- C:\WINDOWS\system32\twinapi.dll 2014-09-06 04:50:42 ----A---- C:\WINDOWS\system32\Taskmgr.exe 2014-09-06 04:50:42 ----A---- C:\WINDOWS\system32\MMDevAPI.dll 2014-09-06 04:50:41 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe 2014-09-06 04:50:41 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll 2014-09-06 04:50:41 ----A---- C:\WINDOWS\system32\WinTypes.dll 2014-09-06 04:50:41 ----A---- C:\WINDOWS\system32\schannel.dll 2014-09-06 04:50:41 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys 2014-09-06 04:50:40 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\WWAHost.exe 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\wpncore.dll 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\perftrack.dll 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\lsm.dll 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\dfpinc.dat 2014-09-06 04:50:40 ----A---- C:\WINDOWS\system32\advapi32.dll 2014-09-06 04:50:39 ----A---- C:\WINDOWS\system32\wcmsvc.dll 2014-09-06 04:50:39 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe 2014-09-06 04:50:39 ----A---- C:\WINDOWS\system32\mssvp.dll 2014-09-06 04:50:39 ----A---- C:\WINDOWS\system32\energy.dll 2014-09-06 04:50:39 ----A---- C:\WINDOWS\system32\apphelp.dll 2014-09-06 04:50:38 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe 2014-09-06 04:50:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe 2014-09-06 04:50:38 ----A---- C:\WINDOWS\system32\tdh.dll 2014-09-06 04:50:38 ----A---- C:\WINDOWS\system32\drivers\pci.sys 2014-09-06 04:50:37 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll 2014-09-06 04:50:37 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll 2014-09-06 04:50:37 ----A---- C:\WINDOWS\system32\winlogon.exe 2014-09-06 04:50:37 ----A---- C:\WINDOWS\system32\winload.exe 2014-09-06 04:50:37 ----A---- C:\WINDOWS\system32\DismApi.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\winresume.exe 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\werconcpl.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\mssph.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\drivers\ks.sys 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll 2014-09-06 04:50:36 ----A---- C:\WINDOWS\system32\ActionCenter.dll 2014-09-06 04:50:35 ----A---- C:\WINDOWS\SYSWOW64\user32.dll 2014-09-06 04:50:35 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll 2014-09-06 04:50:35 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe 2014-09-06 04:50:35 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll 2014-09-06 04:50:35 ----A---- C:\WINDOWS\system32\stobject.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\WofUtil.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\wimgapi.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\sppwinob.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\SettingSync.dll 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe 2014-09-06 04:50:34 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS 2014-09-06 04:50:33 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\SYSWOW64\slc.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\wlidcli.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\thumbcache.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\slc.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\recimg.exe 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\ntshrui.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\MrmIndexer.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\iuilp.dll 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\dfp.exe 2014-09-06 04:50:33 ----A---- C:\WINDOWS\system32\aelupsvc.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\pnidui.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\nettrace.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\Dism.exe 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\comdlg32.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\bisrv.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\AppxPackaging.dll 2014-09-06 04:50:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll 2014-09-06 04:50:31 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll 2014-09-06 04:50:31 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll 2014-09-06 04:50:31 ----A---- C:\WINDOWS\system32\WMPDMC.exe 2014-09-06 04:50:31 ----A---- C:\WINDOWS\system32\psmsrv.dll 2014-09-06 04:50:31 ----A---- C:\WINDOWS\system32\dwmredir.dll 2014-09-06 04:50:30 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll 2014-09-06 04:50:30 ----A---- C:\WINDOWS\system32\WlanMM.dll 2014-09-06 04:50:30 ----A---- C:\WINDOWS\system32\InputSwitch.dll 2014-09-06 04:50:29 ----A---- C:\WINDOWS\system32\VAN.dll 2014-09-06 04:50:29 ----A---- C:\WINDOWS\system32\ninput.dll 2014-09-06 04:50:29 ----A---- C:\WINDOWS\system32\msvproc.dll 2014-09-06 04:50:29 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2014-09-06 04:50:29 ----A---- C:\WINDOWS\system32\authz.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\wlidcredprov.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\wersvc.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\themeui.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\taskeng.exe 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\SyncCenter.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\rdbui.dll 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys 2014-09-06 04:50:28 ----A---- C:\WINDOWS\system32\conhost.exe 2014-09-06 04:50:27 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe 2014-09-06 04:50:27 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\system32\wbengine.exe 2014-09-06 04:50:27 ----A---- C:\WINDOWS\system32\sqmapi.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\system32\rdpcore.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\system32\ncryptsslp.dll 2014-09-06 04:50:27 ----A---- C:\WINDOWS\system32\mdmregistration.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe 2014-09-06 04:50:26 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\WerFault.exe 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\sppc.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\SndVol.exe 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\oleaut32.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\msctfuimanager.dll 2014-09-06 04:50:26 ----A---- C:\WINDOWS\system32\bcrypt.dll 2014-09-06 04:50:25 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll 2014-09-06 04:50:25 ----A---- C:\WINDOWS\system32\PkgMgr.exe 2014-09-06 04:50:23 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\wwanmm.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\WSClient.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\wscinterop.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\WLanConn.dll 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\wimserv.exe 2014-09-06 04:50:23 ----A---- C:\WINDOWS\system32\ci.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\gameux.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\fhcfg.dll 2014-09-06 04:50:22 ----A---- C:\WINDOWS\system32\dwm.exe 2014-09-06 04:50:21 ----A---- C:\WINDOWS\SYSWOW64\authz.dll 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\winsrv.dll 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\taskhost.exe 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\rasgcw.dll 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\drivers\luafv.sys 2014-09-06 04:50:21 ----A---- C:\WINDOWS\system32\dmdskmgr.dll 2014-09-06 04:50:20 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll 2014-09-06 04:50:20 ----A---- C:\WINDOWS\system32\wscapi.dll 2014-09-06 04:50:20 ----A---- C:\WINDOWS\system32\wermgr.exe 2014-09-06 04:50:20 ----A---- C:\WINDOWS\system32\srchadmin.dll 2014-09-06 04:50:20 ----A---- C:\WINDOWS\system32\Faultrep.dll 2014-09-06 04:50:19 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll 2014-09-06 04:50:19 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll 2014-09-06 04:50:19 ----A---- C:\WINDOWS\system32\usercpl.dll 2014-09-06 04:50:19 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys 2014-09-06 04:50:18 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\wwanconn.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\wsqmcons.exe 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\vmrdvcore.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\systemreset.exe 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\SndVolSSO.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\smss.exe 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\RASMM.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\imm32.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\BioCredProv.dll 2014-09-06 04:50:18 ----A---- C:\WINDOWS\system32\AltTab.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\vdsbas.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\taskhostex.exe 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\sharemediacpl.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\printui.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\PlayToManager.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\netid.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\fsutil.exe 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\fhcpl.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\das.dll 2014-09-06 04:50:17 ----A---- C:\WINDOWS\system32\CloudNotifications.exe 2014-09-06 04:50:16 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe 2014-09-06 04:50:16 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\WSDApi.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\sdclt.exe 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\powrprof.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\mssprxy.dll 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\drivers\refs.sys 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys 2014-09-06 04:50:16 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys 2014-09-06 04:50:15 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe 2014-09-06 04:50:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\zipfldr.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\spwizeng.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\rascustom.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\newdev.dll 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys 2014-09-06 04:50:15 ----A---- C:\WINDOWS\system32\dmvdsitf.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe 2014-09-06 04:50:14 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\wow64win.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\vds.exe 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\LockScreenContent.dll 2014-09-06 04:50:14 ----A---- C:\WINDOWS\system32\appinfo.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe 2014-09-06 04:50:13 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\dot3mm.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\clrhost.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\bcd.dll 2014-09-06 04:50:13 ----A---- C:\WINDOWS\system32\AppxSysprep.dll 2014-09-06 04:50:12 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll 2014-09-06 04:50:12 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe 2014-09-06 04:50:12 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll 2014-09-06 04:50:12 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll 2014-09-06 04:50:12 ----A---- C:\WINDOWS\system32\easinvoker.exe 2014-09-06 04:50:12 ----A---- C:\WINDOWS\system32\DAMM.dll 2014-09-06 04:50:12 ----A---- C:\WINDOWS\system32\bootux.dll 2014-09-06 04:50:11 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe 2014-09-06 04:50:11 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll 2014-09-06 04:50:11 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll 2014-09-06 04:50:11 ----A---- C:\WINDOWS\system32\samlib.dll 2014-09-06 04:50:11 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS 2014-09-06 04:50:11 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys 2014-09-06 04:50:11 ----A---- C:\WINDOWS\system32\cleanmgr.exe 2014-09-06 04:50:10 ----A---- C:\WINDOWS\system32\rasmans.dll 2014-09-06 04:50:10 ----A---- C:\WINDOWS\system32\provsvc.dll 2014-09-06 04:50:10 ----A---- C:\WINDOWS\system32\AuthHost.exe 2014-09-06 04:50:09 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe 2014-09-06 04:50:09 ----A---- C:\WINDOWS\system32\netiohlp.dll 2014-09-06 04:50:09 ----A---- C:\WINDOWS\system32\drivers\UCX01000.SYS 2014-09-06 04:50:06 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe 2014-09-06 04:50:06 ----A---- C:\WINDOWS\SYSWOW64\netid.dll 2014-09-06 04:50:06 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll 2014-09-06 04:50:06 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll 2014-09-06 04:50:06 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe 2014-09-06 04:50:06 ----A---- C:\WINDOWS\system32\scrrun.dll 2014-09-06 04:50:06 ----A---- C:\WINDOWS\system32\korwbrkr.dll 2014-09-06 04:50:06 ----A---- C:\WINDOWS\system32\deviceaccess.dll 2014-09-06 04:50:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll 2014-09-06 04:50:05 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe 2014-09-06 04:50:05 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll 2014-09-06 04:50:05 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll 2014-09-06 04:50:05 ----A---- C:\WINDOWS\system32\easwrt.dll 2014-09-06 04:50:05 ----A---- C:\WINDOWS\system32\drivers\http.sys 2014-09-06 04:50:04 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\wcmcsp.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\scrobj.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\netplwiz.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\AuthBroker.dll 2014-09-06 04:50:04 ----A---- C:\WINDOWS\system32\acppage.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\wpnprv.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\winbrand.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\wbadmin.exe 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\sud.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\slpts.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\PrintDialogs.dll 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\DWWIN.EXE 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\bcdedit.exe 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\autofmt.exe 2014-09-06 04:50:03 ----A---- C:\WINDOWS\system32\autoconv.exe 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\printui.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe 2014-09-06 04:50:02 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\wbiosrvc.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\untfs.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\SysResetErr.exe 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\sppnp.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\spbcd.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\setbcdlocale.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\migisol.dll 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\bcdboot.exe 2014-09-06 04:50:02 ----A---- C:\WINDOWS\system32\autochk.exe 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe 2014-09-06 04:50:01 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe 2014-09-06 04:50:01 ----A---- C:\WINDOWS\system32\IdCtrls.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\system32\fhevents.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\system32\dafBth.dll 2014-09-06 04:50:01 ----A---- C:\WINDOWS\system32\DAConn.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\vdsutil.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\spcompat.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\energytask.dll 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys 2014-09-06 04:50:00 ----A---- C:\WINDOWS\system32\cscript.exe 2014-09-06 04:49:59 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini 2014-09-06 04:49:59 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll 2014-09-06 04:49:59 ----A---- C:\WINDOWS\system32\WimBootCompress.ini 2014-09-06 04:49:59 ----A---- C:\WINDOWS\system32\werui.dll 2014-09-06 04:49:59 ----A---- C:\WINDOWS\system32\powercfg.exe 2014-09-06 04:49:59 ----A---- C:\WINDOWS\system32\diskpart.exe 2014-09-06 04:49:58 ----A---- C:\WINDOWS\SYSWOW64\sud.dll 2014-09-06 04:49:58 ----A---- C:\WINDOWS\system32\SettingMonitor.dll 2014-09-06 04:49:58 ----A---- C:\WINDOWS\system32\RelPost.exe 2014-09-06 04:49:58 ----A---- C:\WINDOWS\system32\pnpclean.dll 2014-09-06 04:49:58 ----A---- C:\WINDOWS\system32\deviceassociation.dll 2014-09-06 04:49:55 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll 2014-09-06 04:49:55 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll 2014-09-06 04:49:55 ----A---- C:\WINDOWS\system32\PlayToDevice.dll 2014-09-06 04:49:55 ----A---- C:\WINDOWS\system32\dasHost.exe 2014-09-06 04:49:54 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll 2014-09-06 04:49:54 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll 2014-09-06 04:49:54 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2014-09-06 04:49:54 ----A---- C:\WINDOWS\system32\srrstr.dll 2014-09-06 04:49:54 ----A---- C:\WINDOWS\system32\ReAgentc.exe 2014-09-06 04:49:54 ----A---- C:\WINDOWS\system32\offreg.dll 2014-09-06 04:49:54 ----A---- C:\WINDOWS\system32\ActionQueue.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\werui.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe 2014-09-06 04:49:53 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\system32\msshooks.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\system32\mf3216.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\system32\f3ahvoas.dll 2014-09-06 04:49:53 ----A---- C:\WINDOWS\system32\dfrgui.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\winsku.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\wercplsupport.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\vdsdyn.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\themecpl.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\SrTasks.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\DevicePairing.dll 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\Defrag.exe 2014-09-06 04:49:52 ----A---- C:\WINDOWS\system32\AepRoam.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe 2014-09-06 04:49:51 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\system32\scavengeui.dll 2014-09-06 04:49:51 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll 2014-09-06 04:49:49 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 04:49:49 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll 2014-09-06 04:49:49 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe 2014-09-06 04:49:49 ----A---- C:\WINDOWS\system32\wincorlib.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\SYSWOW64\finger.exe 2014-09-06 04:49:48 ----A---- C:\WINDOWS\system32\wmpdxm.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\system32\syncui.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll 2014-09-06 04:49:48 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll 2014-09-06 04:49:47 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 04:49:47 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll 2014-09-06 04:49:47 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\system32\shsetup.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\system32\ocsetapi.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\system32\dataclen.dll 2014-09-06 04:49:47 ----A---- C:\WINDOWS\system32\aitagent.exe 2014-09-06 04:49:46 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 04:49:46 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll 2014-09-06 04:49:46 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 04:49:46 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll 2014-09-06 04:49:46 ----A---- C:\WINDOWS\system32\shimeng.dll 2014-09-06 04:49:46 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll 2014-09-06 04:49:46 ----A---- C:\WINDOWS\system32\fhsvcctl.dll 2014-09-06 04:49:46 ----A---- C:\WINDOWS\system32\dxmasf.dll 2014-09-06 04:49:45 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll 2014-09-06 04:49:45 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll 2014-09-06 04:49:45 ----A---- C:\WINDOWS\SYSWOW64\occache.dll 2014-09-06 04:49:45 ----A---- C:\WINDOWS\system32\occache.dll 2014-09-06 04:49:45 ----A---- C:\WINDOWS\system32\fveskybackup.dll 2014-09-06 04:49:45 ----A---- C:\WINDOWS\system32\finger.exe 2014-09-06 04:49:44 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll 2014-09-06 04:48:14 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2014-09-06 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll 2014-09-06 04:48:09 ----A---- C:\WINDOWS\system32\msxml6.dll 2014-09-06 04:48:09 ----A---- C:\WINDOWS\system32\msftedit.dll 2014-09-06 04:48:08 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll 2014-09-06 04:48:08 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll 2014-09-06 04:48:08 ----A---- C:\WINDOWS\system32\KernelBase.dll 2014-09-06 04:48:08 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys 2014-09-06 04:48:08 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll 2014-09-06 04:48:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll 2014-09-06 04:48:07 ----A---- C:\WINDOWS\system32\ole32.dll 2014-09-06 04:48:07 ----A---- C:\WINDOWS\system32\d3d11.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\system32\wlidprov.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\system32\kernel32.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\system32\gdi32.dll 2014-09-06 04:48:06 ----A---- C:\WINDOWS\system32\dnsapi.dll 2014-09-06 04:48:05 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll 2014-09-06 04:48:05 ----A---- C:\WINDOWS\system32\kerberos.dll 2014-09-06 04:48:05 ----A---- C:\WINDOWS\system32\dcomp.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\system32\rasapi32.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\system32\netlogon.dll 2014-09-06 04:48:04 ----A---- C:\WINDOWS\system32\drivers\wof.sys 2014-09-06 04:48:03 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\system32\ReAgent.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\system32\GdiPlus.dll 2014-09-06 04:48:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys 2014-09-06 04:48:03 ----A---- C:\WINDOWS\system32\drivers\clfs.sys 2014-09-06 04:48:02 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll 2014-09-06 04:48:02 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll 2014-09-06 04:48:02 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll 2014-09-06 04:48:02 ----A---- C:\WINDOWS\system32\SensorsApi.dll 2014-09-06 04:48:02 ----A---- C:\WINDOWS\system32\netcfgx.dll 2014-09-06 04:48:02 ----A---- C:\WINDOWS\system32\dnsrslvr.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\WsmSvc.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\userenv.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\umpnpmgr.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\SessEnv.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\profsvc.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\pdh.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\mfreadwrite.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\davclnt.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2014-09-06 04:48:01 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\spp.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\wlangpui.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\spp.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\cdd.dll 2014-09-06 04:48:00 ----A---- C:\WINDOWS\system32\aclui.dll 2014-09-06 04:47:59 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll 2014-09-06 04:47:59 ----A---- C:\WINDOWS\system32\w32tm.exe 2014-09-06 04:47:59 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys 2014-09-06 04:47:59 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys 2014-09-06 04:47:59 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\Display.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\sxproxy.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\RMapi.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\ReInfo.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\nshwfp.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\LocationApi.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\fvewiz.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\fveapibase.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\Display.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\DevPropMgr.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll 2014-09-06 04:47:58 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe 2014-09-06 04:47:57 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\l2gpstore.dll 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys 2014-09-06 04:47:57 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll 2014-09-05 22:01:45 ----HD---- C:\$SysReset 2014-09-05 20:18:48 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-09-05 19:56:37 ----D---- C:\Users\Henry\AppData\Roaming\ATI 2014-09-05 19:56:37 ----D---- C:\ProgramData\ATI 2014-09-05 19:28:47 ----D---- C:\Users\Henry\AppData\Roaming\OpenOffice 2014-09-05 19:27:51 ----D---- C:\Program Files (x86)\OpenOffice 4 2014-09-05 18:40:42 ----D---- C:\Users\Henry\AppData\Roaming\Thunderbird 2014-09-05 18:40:42 ----D---- C:\Users\Henry\AppData\Roaming\Mozilla 2014-09-05 18:40:39 ----D---- C:\ProgramData\Mozilla 2014-09-05 18:40:38 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-05 18:40:34 ----D---- C:\Program Files (x86)\Mozilla Thunderbird 2014-09-05 18:19:51 ----D---- C:\Program Files (x86)\Autorun Organizer 2014-09-05 18:02:04 ----D---- C:\Users\Henry\AppData\Roaming\Nitro 2014-09-05 18:02:04 ----D---- C:\Users\Henry\AppData\Roaming\FileOpen 2014-09-05 18:02:04 ----D---- C:\ProgramData\FileOpen 2014-09-05 17:54:03 ----D---- C:\Program Files\Microsoft Silverlight 2014-09-05 17:54:03 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2014-09-05 17:47:19 ----D---- C:\Program Files (x86)\Pixarra 2014-09-05 17:38:39 ----D---- C:\Program Files (x86)\AML Products 2014-09-05 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\msvcr70.dll 2014-09-05 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\msvcp70.dll 2014-09-05 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\mfc70.dll 2014-09-05 15:16:59 ----D---- C:\ProgramData\RFA_Backups 2014-09-05 15:16:46 ----D---- C:\ProgramData\Registry First Aid 2014-09-05 15:16:46 ----D---- C:\Program Files\RFA 9 2014-09-05 15:13:46 ----D---- C:\Program Files\CCleaner 2014-09-05 15:08:11 ----D---- C:\Users\Henry\AppData\Roaming\ClassicShell 2014-09-05 15:08:02 ----D---- C:\ProgramData\ClassicShell 2014-09-05 15:07:36 ----D---- C:\Program Files\Classic Shell 2014-09-05 15:05:27 ----D---- C:\Users\Henry\AppData\Roaming\Canon 2014-09-05 15:05:24 ----HD---- C:\ProgramData\CanonIJQuickMenu 2014-09-05 15:05:21 ----HD---- C:\ProgramData\CanonIJEGV 2014-09-05 15:02:42 ----A---- C:\WINDOWS\SYSWOW64\CNHMCA.dll 2014-09-05 15:02:42 ----A---- C:\WINDOWS\SYSWOW64\CNC_B8U.dll 2014-09-05 15:02:42 ----A---- C:\WINDOWS\SYSWOW64\CNC_B8L.dll 2014-09-05 14:59:55 ----D---- C:\Program Files\Common Files\CANON 2014-09-05 14:59:41 ----D---- C:\ProgramData\CanonIJWSpt 2014-09-05 14:53:24 ----D---- C:\Program Files\Canon 2014-09-05 14:52:22 ----HD---- C:\ProgramData\CanonBJ 2014-09-05 14:52:14 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information 2014-09-05 14:52:12 ----A---- C:\WINDOWS\system32\CNHMCA6.dll 2014-09-05 14:52:12 ----A---- C:\WINDOWS\system32\CNC_B8L.dll 2014-09-05 14:52:12 ----A---- C:\WINDOWS\system32\CNC_B8I.dll 2014-09-05 14:52:12 ----A---- C:\WINDOWS\system32\CNC_B8C.dll 2014-09-05 14:52:05 ----A---- C:\WINDOWS\system32\CNMLMB8.DLL 2014-09-05 14:51:48 ----HD---- C:\Program Files\CanonBJ 2014-09-05 14:51:30 ----D---- C:\WINDOWS\system32\STRING 2014-09-05 14:51:30 ----A---- C:\WINDOWS\system32\CNMN6UI.DLL 2014-09-05 14:51:29 ----A---- C:\WINDOWS\SYSWOW64\CNMNPPM.DLL 2014-09-05 14:51:29 ----A---- C:\WINDOWS\system32\CNMN6PPM.DLL 2014-09-05 14:50:54 ----D---- C:\ProgramData\CanonIJPLM 2014-09-05 14:50:49 ----HD---- C:\ProgramData\CanonIJETV 2014-09-05 14:50:21 ----D---- C:\Program Files (x86)\Canon 2014-09-05 14:37:15 ----D---- C:\ProgramData\Microsoft Help 2014-09-05 14:29:38 ----D---- C:\ProgramData\regid.1986-12.com.adobe 2014-09-05 14:21:07 ----D---- C:\Program Files\Common Files\Adobe 2014-09-05 14:18:37 ----N---- C:\WINDOWS\system32\drivers\PxHlpa64.sys 2014-09-05 14:18:37 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys 2014-09-05 14:18:37 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2014-09-05 14:08:41 ----A---- C:\WINDOWS\demdata.txt 2014-09-05 13:54:42 ----D---- C:\Users\Henry\AppData\Roaming\Garritan 2014-09-05 13:53:53 ----D---- C:\Program Files\Plogue 2014-09-05 13:53:53 ----D---- C:\Program Files\Garritan 2014-09-05 13:50:50 ----D---- C:\Program Files (x86)\Finale 2010 2014-09-05 13:42:47 ----A---- C:\WINDOWS\SYSWOW64\DfSdkBt32.exe 2014-09-05 13:42:47 ----A---- C:\WINDOWS\SYSWOW64\DfSdkBt.exe 2014-09-05 13:42:43 ----D---- C:\ProgramData\page 2014-09-05 13:42:43 ----D---- C:\Program Files (x86)\Ashampoo 2014-09-05 13:15:10 ----RD---- C:\WINDOWS\BrowserChoice 2014-09-05 13:08:36 ----D---- C:\WINDOWS\system32\MRT 2014-09-05 13:08:35 ----A---- C:\WINDOWS\system32\MRT.exe 2014-09-05 13:00:05 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll 2014-09-05 13:00:05 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll 2014-09-05 13:00:00 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2014-09-05 12:59:58 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll 2014-09-05 12:59:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll 2014-09-05 12:59:57 ----A---- C:\WINDOWS\system32\mfds.dll 2014-09-05 12:59:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll 2014-09-05 12:59:56 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll 2014-09-05 12:59:56 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll 2014-09-05 12:59:56 ----A---- C:\WINDOWS\system32\rastls.dll 2014-09-05 12:59:55 ----A---- C:\WINDOWS\system32\msieftp.dll 2014-09-05 12:59:55 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys 2014-09-05 12:59:54 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll 2014-09-05 12:59:54 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll 2014-09-05 12:59:54 ----A---- C:\WINDOWS\system32\drivers\BtaMPM.sys 2014-09-05 12:59:54 ----A---- C:\WINDOWS\system32\bi.dll 2014-09-05 12:59:53 ----A---- C:\WINDOWS\system32\deviceregistration.dll 2014-09-05 12:56:53 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys 2014-09-05 12:56:53 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys 2014-09-05 12:56:52 ----A---- C:\WINDOWS\system32\drivers\pdc.sys 2014-09-05 12:56:31 ----A---- C:\WINDOWS\system32\pnrpsvc.dll 2014-09-05 12:56:31 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2014-09-05 12:56:29 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll 2014-09-05 12:56:28 ----A---- C:\WINDOWS\system32\sti.dll 2014-09-05 12:56:28 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys 2014-09-05 12:56:26 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll 2014-09-05 12:56:26 ----A---- C:\WINDOWS\system32\OEMLicense.dll 2014-09-05 12:56:25 ----A---- C:\WINDOWS\SYSWOW64\sti.dll 2014-09-05 12:56:23 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2014-09-05 12:48:39 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll 2014-09-05 12:48:39 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll 2014-09-05 12:48:39 ----A---- C:\WINDOWS\system32\msdrm.dll 2014-09-05 12:48:39 ----A---- C:\WINDOWS\system32\imagehlp.dll 2014-09-05 12:48:38 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll 2014-09-05 12:48:38 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll 2014-09-05 12:48:37 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll 2014-09-05 12:48:37 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll 2014-09-05 12:48:36 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll 2014-09-05 12:48:36 ----A---- C:\WINDOWS\system32\iesetup.dll 2014-09-05 12:48:36 ----A---- C:\WINDOWS\system32\iernonce.dll 2014-09-05 12:48:36 ----A---- C:\WINDOWS\system32\ieetwcollector.exe 2014-09-05 12:48:35 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll 2014-09-05 12:48:35 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe 2014-09-05 12:48:34 ----A---- C:\WINDOWS\system32\ieUnatt.exe 2014-09-05 12:48:33 ----A---- C:\WINDOWS\system32\msrating.dll 2014-09-05 12:48:18 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll 2014-09-05 12:48:18 ----A---- C:\WINDOWS\system32\WMPhoto.dll 2014-09-05 12:48:12 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll 2014-09-05 12:48:12 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll 2014-09-05 12:48:12 ----A---- C:\WINDOWS\system32\d3d10warp.dll 2014-09-05 12:48:12 ----A---- C:\WINDOWS\system32\d2d1.dll 2014-09-05 12:48:11 ----A---- C:\WINDOWS\system32\WSCollect.exe 2014-09-05 12:48:10 ----A---- C:\WINDOWS\system32\sppsvc.exe 2014-09-05 12:48:08 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll 2014-09-05 12:48:08 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll 2014-09-05 12:48:08 ----A---- C:\WINDOWS\system32\dbghelp.dll 2014-09-05 12:48:08 ----A---- C:\WINDOWS\system32\dbgeng.dll 2014-09-05 12:48:07 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll 2014-09-05 12:48:07 ----A---- C:\WINDOWS\system32\sppcomapi.dll 2014-09-05 12:47:59 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe 2014-09-05 12:47:59 ----A---- C:\WINDOWS\system32\pcaui.exe 2014-09-05 12:47:56 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe 2014-09-05 12:47:56 ----A---- C:\WINDOWS\system32\poqexec.exe 2014-09-05 12:41:57 ----N---- C:\WINDOWS\system32\MpSigStub.exe 2014-09-05 12:36:09 ----ASH---- C:\hiberfil.sys 2014-09-05 12:31:24 ----D---- C:\Users\Henry\AppData\Roaming\Nitro PDF 2014-09-05 12:26:12 ----D---- C:\Users\Henry\AppData\Roaming\LSC 2014-09-05 12:25:40 ----D---- C:\Users\Henry\AppData\Roaming\Maxthon3 2014-09-05 12:18:58 ----A---- C:\WINDOWS\system32\WudfUpdate_01011.dll 2014-09-05 12:18:52 ----D---- C:\Users\Henry\AppData\Roaming\Intel Corporation 2014-09-05 12:17:52 ----D---- C:\Users\Henry\AppData\Roaming\Lenovo 2014-09-05 12:15:15 ----D---- C:\Users\Henry\AppData\Roaming\Adobe 2014-09-05 12:14:25 ----SHD---- C:\ProgramData\Sjablonen 2014-09-05 12:14:25 ----SHD---- C:\ProgramData\Menu Start 2014-09-05 12:14:25 ----SHD---- C:\ProgramData\Documenten 2014-09-05 12:14:25 ----SHD---- C:\ProgramData\Bureaublad 2014-09-05 12:13:17 ----SD---- C:\Users\Henry\AppData\Roaming\Microsoft 2014-09-05 12:13:17 ----D---- C:\Users\Henry\AppData\Roaming\Macromedia 2014-08-28 17:18:46 ----A---- C:\Recovery.txt ======List of files/folders modified in the last 1 month====== 2014-09-10 10:00:00 ----D---- C:\WINDOWS\system32\sru 2014-09-10 09:53:21 ----D---- C:\WINDOWS\Prefetch 2014-09-10 09:45:58 ----D---- C:\WINDOWS\system32\config 2014-09-10 09:43:59 ----SHD---- C:\WINDOWS\Installer 2014-09-10 09:43:58 ----SHD---- C:\Config.Msi 2014-09-10 09:43:58 ----RSD---- C:\WINDOWS\assembly 2014-09-10 09:43:22 ----RSD---- C:\WINDOWS\Fonts 2014-09-10 09:43:22 ----D---- C:\WINDOWS\SysWOW64 2014-09-10 09:43:22 ----D---- C:\WINDOWS\Inf 2014-09-10 09:43:03 ----D---- C:\WINDOWS\Microsoft.NET 2014-09-10 09:07:51 ----RAD---- C:\WINDOWS\System32 2014-09-10 09:07:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2014-09-10 08:14:21 ----AD---- C:\Windows 2014-09-10 08:11:51 ----D---- C:\WINDOWS\SoftwareDistribution 2014-09-10 08:11:41 ----D---- C:\WINDOWS\rescache 2014-09-10 08:10:13 ----SHD---- C:\System Volume Information 2014-09-10 08:04:44 ----D---- C:\WINDOWS\debug 2014-09-10 07:47:29 ----D---- C:\WINDOWS\WinSxS 2014-09-10 07:45:57 ----D---- C:\WINDOWS\CbsTemp 2014-09-10 07:45:10 ----RD---- C:\WINDOWS\ToastData 2014-09-10 07:45:03 ----D---- C:\Program Files (x86)\Windows Media Player 2014-09-10 07:45:03 ----D---- C:\Program Files (x86)\Windows Mail 2014-09-10 07:45:03 ----D---- C:\Program Files (x86)\Internet Explorer 2014-09-10 07:45:02 ----D---- C:\Program Files\Windows Photo Viewer 2014-09-10 07:45:02 ----D---- C:\Program Files\Windows Media Player 2014-09-10 07:45:02 ----D---- C:\Program Files\Windows Mail 2014-09-10 07:45:02 ----D---- C:\Program Files\Windows Journal 2014-09-10 07:45:02 ----D---- C:\Program Files\Internet Explorer 2014-09-10 07:45:02 ----D---- C:\Program Files\Common Files\System 2014-09-10 07:45:02 ----D---- C:\Program Files (x86)\Windows Photo Viewer 2014-09-10 07:45:02 ----D---- C:\Program Files (x86)\Windows Defender 2014-09-10 07:45:01 ----D---- C:\WINDOWS\WinStore 2014-09-10 07:45:01 ----D---- C:\Program Files\Windows Defender 2014-09-10 07:44:53 ----D---- C:\WINDOWS\SYSWOW64\winrm 2014-09-10 07:44:53 ----D---- C:\WINDOWS\SYSWOW64\oobe 2014-09-10 07:44:53 ----D---- C:\WINDOWS\SYSWOW64\fr-FR 2014-09-10 07:44:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\WCN 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\wbem 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\slmgr 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\MUI 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\migration 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\drivers 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\Dism 2014-09-10 07:44:52 ----D---- C:\WINDOWS\SYSWOW64\Com 2014-09-10 07:44:52 ----D---- C:\WINDOWS\IME 2014-09-10 07:44:51 ----D---- C:\WINDOWS\system32\winrm 2014-09-10 07:44:51 ----D---- C:\WINDOWS\system32\migwiz 2014-09-10 07:44:51 ----D---- C:\WINDOWS\system32\fr-FR 2014-09-10 07:44:51 ----D---- C:\WINDOWS\PolicyDefinitions 2014-09-10 07:44:30 ----D---- C:\WINDOWS\system32\Sysprep 2014-09-10 07:44:30 ----D---- C:\WINDOWS\system32\slmgr 2014-09-10 07:44:30 ----D---- C:\WINDOWS\system32\migration 2014-09-10 07:44:30 ----D---- C:\WINDOWS\system32\drivers 2014-09-10 07:44:30 ----D---- C:\WINDOWS\system32\Boot 2014-09-10 07:44:30 ----AD---- C:\WINDOWS\system32\oobe 2014-09-10 07:44:29 ----D---- C:\WINDOWS\system32\WCN 2014-09-10 07:44:29 ----D---- C:\WINDOWS\system32\MUI 2014-09-10 07:44:29 ----D---- C:\WINDOWS\system32\DriverStore 2014-09-10 07:44:29 ----D---- C:\WINDOWS\system32\drivers\UMDF 2014-09-10 07:44:29 ----D---- C:\WINDOWS\system32\Dism 2014-09-10 07:44:26 ----D---- C:\WINDOWS\system32\wbem 2014-09-10 07:44:26 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts 2014-09-10 07:44:24 ----SD---- C:\WINDOWS\system32\dsc 2014-09-10 07:44:24 ----D---- C:\WINDOWS\system32\SystemResetPlatform 2014-09-10 07:44:24 ----D---- C:\WINDOWS\system32\Com 2014-09-10 07:44:23 ----D---- C:\WINDOWS\apppatch 2014-09-10 07:44:23 ----AD---- C:\WINDOWS\Help 2014-09-10 07:43:58 ----D---- C:\WINDOWS\SYSWOW64\nl-NL 2014-09-10 07:43:58 ----D---- C:\WINDOWS\SYSWOW64\de-DE 2014-09-10 07:43:57 ----D---- C:\WINDOWS\SYSWOW64\en-US 2014-09-10 07:43:50 ----D---- C:\WINDOWS\system32\nl-NL 2014-09-10 07:43:48 ----D---- C:\WINDOWS\system32\de-DE 2014-09-10 07:43:28 ----D---- C:\WINDOWS\system32\en-US 2014-09-10 07:36:23 ----D---- C:\Program Files (x86)\Common Files 2014-09-10 07:27:08 ----D---- C:\WINDOWS\system32\catroot2 2014-09-10 07:17:19 ----D---- C:\WINDOWS\AppReadiness 2014-09-10 07:17:17 ----HD---- C:\Program Files\WindowsApps 2014-09-09 17:19:17 ----D---- C:\WINDOWS\system32\catroot 2014-09-08 14:08:02 ----RD---- C:\Program Files (x86) 2014-09-08 14:07:52 ----D---- C:\Program Files (x86)\Microsoft.NET 2014-09-08 14:07:28 ----D---- C:\Program Files\Common Files\microsoft shared 2014-09-08 14:05:55 ----RD---- C:\Program Files 2014-09-08 14:05:49 ----D---- C:\WINDOWS\ShellNew 2014-09-08 06:17:26 ----D---- C:\WINDOWS\system32\Tasks 2014-09-07 19:04:19 ----D---- C:\ProgramData\CyberLink 2014-09-07 05:50:56 ----D---- C:\WINDOWS\Logs 2014-09-07 05:25:33 ----D---- C:\WINDOWS\system32\wdi 2014-09-07 05:22:35 ----D---- C:\WINDOWS\Tasks 2014-09-07 05:22:35 ----D---- C:\WINDOWS\system32\drivers\etc 2014-09-07 05:20:01 ----D---- C:\WINDOWS\registration 2014-09-07 04:25:00 ----D---- C:\Program Files (x86)\Amazon 2014-09-07 04:17:39 ----HD---- C:\ProgramData 2014-09-06 17:58:42 ----D---- C:\WINDOWS\system32\drivers\nl-NL 2014-09-06 17:58:42 ----D---- C:\WINDOWS\system32\drivers\en-US 2014-09-06 17:58:40 ----D---- C:\WINDOWS\MediaViewer 2014-09-06 17:58:39 ----D---- C:\WINDOWS\FileManager 2014-09-06 17:58:39 ----D---- C:\WINDOWS\Camera 2014-09-06 16:53:05 ----D---- C:\WINDOWS\system32\NDF 2014-09-06 16:24:15 ----D---- C:\Program Files\Common Files 2014-09-06 07:35:09 ----SD---- C:\ProgramData\Microsoft 2014-09-06 05:02:40 ----D---- C:\WINDOWS\system32\setup 2014-09-06 05:02:28 ----D---- C:\Program Files\Windows Portable Devices 2014-09-06 05:02:28 ----D---- C:\Program Files\Windows Multimedia Platform 2014-09-06 05:02:28 ----D---- C:\Program Files (x86)\Windows Portable Devices 2014-09-06 05:02:28 ----D---- C:\Program Files (x86)\Windows Multimedia Platform 2014-09-06 05:02:24 ----D---- C:\WINDOWS\servicing 2014-09-06 05:02:24 ----D---- C:\WINDOWS\nl-NL 2014-09-06 05:02:20 ----D---- C:\WINDOWS\en-US 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\sr-Latn-RS 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\sk-SK 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\lv-LV 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\ko-KR 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\hr-HR 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\et-EE 2014-09-06 05:02:18 ----D---- C:\WINDOWS\system32\da-DK 2014-09-06 05:02:16 ----D---- C:\WINDOWS\system32\ru-RU 2014-09-06 05:02:16 ----D---- C:\WINDOWS\system32\it-IT 2014-09-06 05:02:16 ----D---- C:\WINDOWS\system32\en-GB 2014-09-06 05:02:16 ----D---- C:\WINDOWS\system32\el-GR 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\zh-CN 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\sv-SE 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\sr-Latn-CS 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\pt-PT 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\hu-HU 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\he-IL 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\fi-FI 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\es-ES 2014-09-06 05:02:13 ----D---- C:\WINDOWS\system32\cs-CZ 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\zh-TW 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\uk-UA 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\th-TH 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\sl-SI 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\ro-RO 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\pl-PL 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\ja-JP 2014-09-06 05:02:12 ----D---- C:\WINDOWS\system32\bg-BG 2014-09-06 05:02:11 ----D---- C:\WINDOWS\system32\zh-HK 2014-09-06 05:02:11 ----D---- C:\WINDOWS\system32\tr-TR 2014-09-06 05:02:11 ----D---- C:\WINDOWS\system32\nb-NO 2014-09-06 05:02:10 ----D---- C:\WINDOWS\system32\pt-BR 2014-09-06 05:02:10 ----D---- C:\WINDOWS\system32\lt-LT 2014-09-06 05:02:10 ----D---- C:\WINDOWS\system32\ar-SA 2014-09-06 04:57:20 ----SH---- C:\WINDOWS\system32\desktop.ini 2014-09-06 03:44:48 ----D---- C:\ProgramData\Adobe 2014-09-05 19:59:17 ----D---- C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver 2014-09-05 19:58:48 ----HD---- C:\Program Files (x86)\Temp 2014-09-05 19:58:44 ----D---- C:\WINDOWS\SYSWOW64\RTCOM 2014-09-05 19:57:11 ----D---- C:\Program Files (x86)\Realtek 2014-09-05 19:09:28 ----D---- C:\Program Files\lenovo 2014-09-05 15:14:06 ----DC---- C:\WINDOWS\Panther 2014-09-05 15:02:42 ----RSD---- C:\WINDOWS\Media 2014-09-05 15:02:41 ----D---- C:\WINDOWS\twain_32 2014-09-05 14:34:06 ----D---- C:\ProgramData\regid.1991-06.com.microsoft 2014-09-05 14:25:56 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe 2014-09-05 14:25:56 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\system32\dpnsvr.exe 2014-09-05 14:25:56 ----A---- C:\WINDOWS\system32\dpnhupnp.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\system32\dpnhpast.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\system32\dpnet.dll 2014-09-05 14:25:56 ----A---- C:\WINDOWS\system32\dpnathlp.dll 2014-09-05 14:25:55 ----A---- C:\WINDOWS\SYSWOW64\dpwsockx.dll 2014-09-05 14:25:55 ----A---- C:\WINDOWS\SYSWOW64\dpmodemx.dll 2014-09-05 14:25:55 ----A---- C:\WINDOWS\SYSWOW64\dplayx.dll 2014-09-05 14:25:55 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe 2014-09-05 14:21:00 ----D---- C:\Program Files (x86)\Adobe 2014-09-05 13:06:40 ----D---- C:\WINDOWS\system32\SecureBootUpdates 2014-09-05 12:40:40 ----D---- C:\WINDOWS\system32\LogFiles 2014-09-05 12:40:22 ----D---- C:\ProgramData\Lenovo 2014-09-05 12:37:01 ----D---- C:\ProgramData\McAfee 2014-09-05 12:34:29 ----HD---- C:\WINDOWS\ELAMBKUP 2014-09-05 12:28:05 ----D---- C:\WINDOWS\system32\restore 2014-09-05 12:27:49 ----D---- C:\WINDOWS\Downloaded Installations 2014-09-05 12:19:50 ----D---- C:\Program Files (x86)\Lenovo 2014-09-05 12:17:25 ----SHD---- C:\$Recycle.Bin 2014-09-05 12:14:25 ----D---- C:\Program Files\Windows NT 2014-09-05 12:13:16 ----AD---- C:\Users ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-08-08 644968] R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [2010-03-19 55856] R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-03-13 157016] R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680] R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2013-10-01 12533760] R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2013-10-01 619520] R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWB6.sys [2013-06-22 138240] R3 GeneStor;@oem11.inf,%GENESTOR.SvcDesc%;Genesys Logic Storage Driver; C:\WINDOWS\System32\drivers\GeneStor.sys [2013-10-21 103656] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-27 3613528] R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-05-12 25816] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-09-10 122584] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-05-12 64216] R3 MEIx64;@oem10.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-12 99288] R3 RTL8168;@oem4.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-21 816344] R3 RTWlanE;@oem9.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-08-21 2944216] R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912] S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel® PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288] S3 NETwNe64;@netwew00.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-07-08 3344352] S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Stuurprogramma voor USB-audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088] S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544] S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-14 169624] R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2013-10-01 239616] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-08 15720] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696] R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-09-12 169432] R2 JME Keyboard;JME Keyboard Driver; C:\Windows\jmesoft\Service.exe [2011-08-17 32768] R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-08-18 584960] R2 LenovoCOMSvc;LenovoCOMService; C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe [2012-09-24 37376] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-09-12 390616] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472] R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2013-05-14 390632] S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-01-09 548704] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-23 43696] S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232] S3 LitModeCtrl;LitModeCtrl; C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe [2012-09-24 141824] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-26 114288] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] -----------------EOF-----------------
  6. Wil iemand a.u.b. mijn logje eens nakijken? het ziet er niet zo gezond uit. Windows desktop 8.1 Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 09:01:59, on 7-9-2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.9600.17239) Boot mode: Normal Running processes: C:\Windows\jmesoft\hotkey.exe C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe C:\windows\SysWOW64\UMonit64.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.46.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Users\Henry\Desktop\HijackThis 4.0.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://bing/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files (x86)\Finale 2010\Help Files\Skin\Blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files (x86)\Finale 2010\Help Files\Skin\Blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [Lenovo App Shop] "C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKCU\..\Run: [Wipe Maintance] "C:\Program Files\Wipe\net1.exe" windowsStartup O4 - Startup: Wipe Tray Agent.lnk = C:\Program Files\Wipe\Wipe.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe O23 - Service: LenovoCOMService (LenovoCOMSvc) - Lenovo - C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe O23 - Service: LitModeCtrl - Lenovo - C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9213 bytes
  7. Nou had ik graag dat ik een of meer kanalen kon kiezen van het keyboard maar dat lukt niet. Dit is mijn 3e Keyboard en wil ik toch wel graag aan het werken hebben. In Apparaatbeheer staat “niet ondersteunde spelpoort voor Yamaha”. Model P55-CD53 (MS-7586) (CPU1) (Moederbord) AMD High Definition Audio Device Realtek High Definition Audio (Video/Grafische kaart) We hebben al een technicus gebeld en verteld dat ik de computer als schuldige zag, hij gaf als antwoord die heeft er helemaal niks mee te maken,Windows zorgt daarvoor u moet wel het Keyboard als standaard instellen bij audio, kan zijn hij moet het weten, vind het wel vreemd dat bij het vorige keyboard een Man in de zaak waar de pc gekocht is zei: het gaat niet op deze pc misschien op de spelpoort. Hier een stukje uit de help van Finale We gaan ervan uit dat uw computer is uitgerust met een geluidskaart , die is ontworpen om ook te fungeren als een MIDI interface en beschikt over de juiste stuurprogramma geïnstalleerd is . Windows 7 Premium 32 bit. Op de Amiga in de jaren 89-90 ging dat uitstekend met 2 kabels in en out. In mijn uiterste nood wend ik mij tot U mijne Heren, lijkt wel een citaat uit de Bijbel. Wie kan mij goede raad geven?
  8. Dank U wel Heer Kape, ik zal Uw raad opvolgen. Dat andere Forum ben ik al heel lang lid van en Marieke heeft me in die tijd even goed geholpen als het PC Forum, het zou ondankbaar zijn als ik hen nu plotseling in de steek liet, en ondankbaarheid is niet mijn sterkste punt, ook al heb ik meer zwakke dan sterke punten, ben ook maar een mens. Ik dank U en de andere Helpers hartelijk voor hun goede hulp. Henry1960
  9. Ja dat is juist, ik wou al vragen of U het goed vindt dat ik er nog eens gebruik van kan maken. Dat bespaart onnodig werk uit.
  10. Hoop dat het hier goed staat. Ik heb weer veel fouten en waarschuwingen in het logboek staan. Wil mij daar iemand mee helpen? STAAN BIJ FOUT: SCHANNEL De volgende melding van een onherstelbare fout is gegenereerd: 70. De interne foutstatus is 105. STAAN BIJ FOUT: De NVIDIA Update Service Daemon-service kan vanwege de volgende fout niet worden gestart: De service is niet gestart vanwege een aanmeldingsfout. WININIT STAAN WAARSCHUWING Aangepaste DLL-bestanden worden voor elke toepassing geladen. De systeembeheerder moet de lijst met DLL-bestanden controleren en zorgen dat de bestanden gerelateerd zijn aan vertrouwde toepassingen.
  11. QuickStores-Toolbar -- is verwijderd Snap.Do -- had ik al verwijderd Delta Toolbar -- is verwijderd (Deze stond ook nog in Software kan die ook weg? "Delta Crome Toolbar" ) BrowserProtect niet tevinden. &&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& Zoek.exe Version 4.0.0.2 Updated 23-03-2013 Tool run by Pieters on wo 27-03-2013 at 13:52:17,17. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Microsoft Security Client\NisSrv.exe C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Users\Pieters\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Microsoft Security Client\MpCmdRun.exe ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} deleted successfully ==== Installed Programs ====================== Adobe AIR Adobe Community Help Adobe Flash Player 11 ActiveX Adobe Photoshop Elements 10 Adobe Premiere Elements 10 Adobe Reader XI (11.0.02) - Nederlands ARIA Engine v1.0.7.3 Ashampoo WinOptimizer 6.24 BurnAware Professional 2.4.4 Canon Easy-WebPrint EX Canon IJ Scan Utility Canon Inkjet Printer/Scanner/Fax Extended Survey Program Canon MG3200 series MP Drivers Canon MG3200 series On-screen Manual Canon My Image Garden Canon My Image Garden Design Files Canon My Printer Canon Quick Menu CCleaner CrystalDiskInfo 5.0.5 Delta Chrome Toolbar Elements 10 Organizer Finale 2010 Foxit Reader FrostWire 5.5.5 Garritan Instruments for Finale Gebruikersregistratie voor Canon MG3200 series Google Chrome Google Toolbar for Internet Explorer Google Update Helper HiJackThis Java 7 Update 17 Java Auto Updater jv16 PowerTools 2012 Malwarebytes Anti-Malware versie 1.70.0.1100 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile NLD Language Pack Microsoft Flight Simulator X Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Home and Student 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Security Client Microsoft Security Essentials Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Mozilla Maintenance Service Mozilla Thunderbird 16.0.2 (x86 nl) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP2 Parser and SDK NewTabs Uninstall NVIDIA-configuratiescherm 311.06 NVIDIA 3D Vision stuurprogramma 311.06 NVIDIA Grafisch stuurprogramma 311.06 NVIDIA Install Application NVIDIA Stereoscopic 3D Driver NVIDIA Update 1.11.3 NVIDIA Update Components OpenOffice.org 3.4.1 PRE10STIInstaller PSE10 STI Installer Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition SmartSound Common Data SmartSound Premiere Elements 10 Plugin SmartSound Sonicfire Pro 5 Speccy Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD TuneUp Utilities 2013 TuneUp Utilities Language Pack (nl-NL) TweakNow PowerPack 2011 TwistedBrush Pro Studio Unlocker 1.9.1 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) WinZip WOT for Internet Explorer ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-03-01 17:03:19 163A95975E1D8819E653AA3E961371CA 51200 ----a-w- C:\Windows\twain_32.dll 2013-03-01 17:03:15 DBD14D0DB0382DFE96D7B5007DDD5ABE 65024 ----a-w- C:\Windows\bfsvc.exe 2013-03-01 13:14:09 3CF0A31084D0EC25DA53B3BF8A9317E0 511 ----a-w- C:\Windows\demdata.txt 2013-03-01 08:31:25 E185BDA84E5F03F4E1D8DCA30E209277 1912 ----a-w- C:\Windows\epplauncher.mif 2013-03-01 07:25:31 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\explorer.exe ====== C:\Users\Pieters\AppData\Local\Temp ==== ====== C:\Windows\system32 ===== 2013-03-17 17:00:34 F1726346E583442541FE73429F8E9C10 62672 ----a-w- C:\Windows\System32\xinput1_1.dll 2013-03-17 17:00:34 7C9952111F4C743B9F0D8B68B6ED93C9 229584 ----a-w- C:\Windows\System32\xactengine2_1.dll 2013-03-17 17:00:31 E415862612E65F10D7D888443ECD7594 2388176 ----a-w- C:\Windows\System32\d3dx9_30.dll 2013-03-17 17:00:31 99F4FC172A5ACE36CF00AA7038D23F2C 2332368 ----a-w- C:\Windows\System32\d3dx9_29.dll 2013-03-17 17:00:31 4E961525CC7FF0E5D7DA19E170B7C14C 14032 ----a-w- C:\Windows\System32\x3daudio1_0.dll 2013-03-17 17:00:31 2112FE0C46662D429347A7D7B49E3ECE 230096 ----a-w- C:\Windows\System32\xactengine2_0.dll 2013-03-17 17:00:30 BE19B603DFBAA829EE5B7749B3BA97DB 2323664 ----a-w- C:\Windows\System32\d3dx9_28.dll 2013-03-17 17:00:30 BC831661963763AC4D504C5CABB1FDD9 2222800 ----a-w- C:\Windows\System32\d3dx9_24.dll 2013-03-17 17:00:30 852EDC778A7A50077694F84D8E601234 2319568 ----a-w- C:\Windows\System32\d3dx9_27.dll 2013-03-17 17:00:30 5B48FE9D6686F0D54B26A005ACE24D1D 2337488 ----a-w- C:\Windows\System32\d3dx9_25.dll 2013-03-17 17:00:30 523AB607EEF81CC4D909E7FEBD8A788E 2297552 ----a-w- C:\Windows\System32\d3dx9_26.dll 2013-03-15 16:28:14 871C903A90C45CA08A9D42803916C3F7 1645320 ----a-w- C:\Windows\System32\gdiplus.dll 2013-03-13 17:22:20 EC68C565EFEE1AAE6174C17F826C9384 493056 ----a-w- C:\Windows\System32\msfeeds.dll 2013-03-13 17:22:20 E3FA8AEAA2F40EC1BB00FEFB2C4F3AD9 14317568 ----a-w- C:\Windows\System32\mshtml.dll 2013-03-13 17:22:20 C225E5307D8D4982A1687F2702C37C78 158720 ----a-w- C:\Windows\System32\msls31.dll 2013-03-13 17:22:20 BA15504FA59A8DC304F1CBAEBA6252A1 1766912 ----a-w- C:\Windows\System32\wininet.dll 2013-03-13 17:22:20 B96C13B5C85AC4240FE95DE115945D59 38400 ----a-w- C:\Windows\System32\imgutil.dll 2013-03-13 17:22:20 B3D105459BBA576A763E8C061E49F5C5 1129984 ----a-w- C:\Windows\System32\urlmon.dll 2013-03-13 17:22:20 AF0332E09DDBE0172237D1958A7DADB8 79872 ----a-w- C:\Windows\System32\mshtmled.dll 2013-03-13 17:22:20 A3DA36A9E63FD0F9B45781E326AC6501 39936 ----a-w- C:\Windows\System32\jsproxy.dll 2013-03-13 17:22:20 96E0F0BED5D9EBABB899D8CA83C36A7E 523264 ----a-w- C:\Windows\System32\vbscript.dll 2013-03-13 17:22:20 87E71F2A83681F41B796CA685818EF2D 163840 ----a-w- C:\Windows\System32\msrating.dll 2013-03-13 17:22:20 87513A002B7B0F9C259F2431DFD008DC 137216 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-03-13 17:22:20 84AC80FCD61D389948B8C0E47623B79B 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-03-13 17:22:20 828B4A41BE891A7AEC07E693422B4A3A 117248 ----a-w- C:\Windows\System32\iepeers.dll 2013-03-13 17:22:20 81C4D657D37C3A5418B54BFECE821B84 57344 ----a-w- C:\Windows\System32\pngfilt.dll 2013-03-13 17:22:20 80B47F0F45C3EBF41C30E0BA367D25D3 125440 ----a-w- C:\Windows\System32\occache.dll 2013-03-13 17:22:20 66D8CDC28A0AADDA34133AE733934658 2046464 ----a-w- C:\Windows\System32\iertutil.dll 2013-03-13 17:22:20 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\System32\wextract.exe 2013-03-13 17:22:20 4BF21D1946E8119D9C23F6F925D43F01 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-03-13 17:22:20 49C9634AD2516448A0250812B7F5325C 690688 ----a-w- C:\Windows\System32\jscript.dll 2013-03-13 17:22:20 4417377CEDABD9BD161FA7EDEDA175D4 745472 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2013-03-13 17:22:20 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\System32\mshta.exe 2013-03-13 17:22:20 338520304B99471BD0ED121954FE7863 82432 ----a-w- C:\Windows\System32\inseng.dll 2013-03-13 17:22:20 2D7A29C35D0894481A69FA3AC45F18F0 41984 ----a-w- C:\Windows\System32\msfeedsbs.dll 2013-03-13 17:22:20 0402BFC25AB49E02256BC24E32829773 185344 ----a-w- C:\Windows\System32\elshyph.dll 2013-03-13 17:22:20 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\System32\iexpress.exe 2013-03-13 17:22:19 F0D4AE074D9BC0741DC6E91C741F2F8C 23040 ----a-w- C:\Windows\System32\licmgr10.dll 2013-03-13 17:22:19 E14A07B768EC49D382CABCE2F078D576 232960 ----a-w- C:\Windows\System32\url.dll 2013-03-13 17:22:19 DEFB55D4FF094673DF31FA89A8A8A2F0 226816 ----a-w- C:\Windows\System32\dxtrans.dll 2013-03-13 17:22:19 C68FBBF01E86CB6CF0B797748FBD6C1A 357888 ----a-w- C:\Windows\System32\dxtmsft.dll 2013-03-13 17:22:19 C28A634CF127DA67D566B5E14D0A0170 719360 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2013-03-13 17:22:19 AFE08AAD4D0D54FE2EF44739255AAA0F 2877440 ----a-w- C:\Windows\System32\jscript9.dll 2013-03-13 17:22:19 A7E8E3A9F92D9B0D495F636A1D282883 48640 ----a-w- C:\Windows\System32\mshtmler.dll 2013-03-13 17:22:19 9DF7A7C74D8632CB5EBD37E3A374825E 204800 ----a-w- C:\Windows\System32\webcheck.dll 2013-03-13 17:22:19 9D9AC6CE9A9D951AC40DE91CD6F0A620 1441280 ----a-w- C:\Windows\System32\inetcpl.cpl 2013-03-13 17:22:19 932571EFF79B93F94E84ADF4989A277F 69120 ----a-w- C:\Windows\System32\icardie.dll 2013-03-13 17:22:19 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\System32\ieapfltr.dat 2013-03-13 17:22:19 8A45166CD9874463AB76B552C9C2D3AD 110592 ----a-w- C:\Windows\System32\IEAdvpack.dll 2013-03-13 17:22:19 826D75A36336858B004774792DC4CF4F 33280 ----a-w- C:\Windows\System32\iernonce.dll 2013-03-13 17:22:19 7BC5FB5039537911DF13D8C10D6ADD6D 42496 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-03-13 17:22:19 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe 2013-03-13 17:22:19 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\System32\msfeedssync.exe 2013-03-13 17:22:19 50EE6790FBBCE920FFABAD5D747F2788 391680 ----a-w- C:\Windows\System32\ieui.dll 2013-03-13 17:22:19 4A47CAEA8D3B82DE439A79771ECED4B1 361984 ----a-w- C:\Windows\System32\html.iec 2013-03-13 17:22:19 414A3D9AAE072CDEFE0B64C2EBEE18D2 61952 ----a-w- C:\Windows\System32\tdc.ocx 2013-03-13 17:22:19 404FAD93ABFBD86D1AAAB47D5DFA6505 242200 ----a-w- C:\Windows\System32\iedkcs32.dll 2013-03-13 17:22:19 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\System32\ieuinit.inf 2013-03-13 17:22:19 1DACF9167B6544536B6E9813EC026703 13761024 ----a-w- C:\Windows\System32\ieframe.dll 2013-03-13 17:22:19 0F44172A5B34E8F208CD0F209EDD4A73 629248 ----a-w- C:\Windows\System32\ieapfltr.dll 2013-03-13 17:22:19 06A2617B25C920887D80E8A79B7E48EA 61440 ----a-w- C:\Windows\System32\iesetup.dll 2013-03-13 17:22:19 059F9C59DAEDE8AF2C8C55BE278A99B0 109056 ----a-w- C:\Windows\System32\iesysprep.dll ====== C:\Windows\system32\drivers ===== 2013-03-13 17:21:15 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-03-08 10:48:15 5FE1ABF1AF591A3458C9CF24ED9A4D35 136560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2013-03-08 10:48:15 42F158036BD4C2FF3122BF142E60E6FD 369856 ----a-w- C:\Windows\System32\drivers\cng.sys 2013-03-04 07:39:22 ED80D303102A746D30C1684B387BCBF1 33280 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys 2013-03-04 07:39:22 8C9C922D71F1CD4DEF73F186416B7896 712048 ----a-w- C:\Windows\System32\drivers\ndis.sys 2013-03-04 07:39:00 3EEBD3BD93DA46A26E89893C7AB2FF3B 35328 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2013-03-01 17:04:19 FD1D6C73E6333BE727CBCC6054247654 52224 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys 2013-03-01 17:04:08 CB7A9ABB12B8415BCE5D74994C7BA3AE 233344 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2013-03-01 17:04:08 0C4E035C7F105F1299258C90886C64C5 14208 ----a-w- C:\Windows\System32\drivers\hwpolicy.sys 2013-03-01 17:03:52 F497F67932C6FA693D7DE2780631CFE7 245632 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2013-03-01 17:03:50 871917B07A141BFF43D76D8844D48106 513536 ----a-w- C:\Windows\System32\drivers\http.sys 2013-03-01 17:03:49 CEB46AB7C01C9F825F8CC6BABC18166A 115712 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2013-03-01 17:03:49 1B133875B8AA8AC48969BD3458AFE9F5 164864 ----a-w- C:\Windows\System32\drivers\1394ohci.sys 2013-03-01 17:03:47 8A73E79089B282100B9393B644CB853B 194800 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2013-03-01 17:03:46 D528BC58A489409BA40334EBF96A311B 242688 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2013-03-01 17:03:46 55055F8AD8BE27A64C831322A780A228 116096 ----a-w- C:\Windows\System32\drivers\msdsm.sys 2013-03-01 17:03:44 673E55C3498EB970088E812EA820AA8F 153984 ----a-w- C:\Windows\System32\drivers\pci.sys 2013-03-01 17:03:43 04DBF4B01EA4BF25A9A3E84AFFAC9B20 53120 ----a-w- C:\Windows\System32\drivers\termdd.sys 2013-03-01 17:03:42 05D860DA1040F111503AC416CCEF2BCA 85376 ----a-w- C:\Windows\System32\drivers\sbp2port.sys 2013-03-01 17:03:41 5461686CCA2FDA57B024547733AB42E3 160128 ----a-w- C:\Windows\System32\drivers\vhdmp.sys 2013-03-01 17:03:41 012C5F4E9349E711E11E0F19A8589F0A 28032 ----a-w- C:\Windows\System32\drivers\msahci.sys 2013-03-01 17:03:39 EE43346C7E4B5E63E54F927BABBB32FF 246784 ----a-w- C:\Windows\System32\drivers\udfs.sys 2013-03-01 17:03:39 CEA80C80BED809AA0DA6FEBC04733349 274304 ----a-w- C:\Windows\System32\drivers\acpi.sys 2013-03-01 17:03:36 4C63E00F2F4B5F86AB48A58CD990F212 53120 ----a-w- C:\Windows\System32\drivers\volmgr.sys 2013-03-01 17:03:36 280122DDCF04B378EDD1AD54D71C1E54 187904 ----a-w- C:\Windows\System32\drivers\netbt.sys 2013-03-01 17:03:35 4B55C9F9A93B3BFD01ED7366EB0B9D2E 132992 ----a-w- C:\Windows\System32\drivers\ataport.sys 2013-03-01 17:03:33 FC8771F45ECCCFD89684E38842539B9B 78208 ----a-w- C:\Windows\System32\drivers\mountmgr.sys 2013-03-01 17:03:33 2D699FB6E89CE0D8DA14ECC03B3EDFE0 130432 ----a-w- C:\Windows\System32\drivers\mpio.sys 2013-03-01 17:03:32 099972E1FAF4950D3994FBAB9DD21253 140160 ----a-w- C:\Windows\System32\drivers\scsiport.sys 2013-03-01 17:03:30 518395321DC96FE2C9F0E96AC743B656 173440 ----a-w- C:\Windows\System32\drivers\rdyboost.sys 2013-03-01 17:03:26 5DCEF0C32BE0F33277326586FA503689 190976 ----a-w- C:\Windows\System32\drivers\ks.sys 2013-03-01 17:03:24 931A1DF1520ABC6E84BA4A75E6957025 55808 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2013-03-01 17:03:21 B459575348C20E8121D6039DA063C704 74752 ----a-w- C:\Windows\System32\drivers\tdx.sys 2013-03-01 17:03:21 254BB140EEE3C59D6114C1A86B636877 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2013-03-01 17:03:19 A4BDC541E69674FBFF1A8FF00BE913F2 48640 ----a-w- C:\Windows\System32\drivers\ndproxy.sys 2013-03-01 17:03:14 906DCFC5EBF4EC0433F8D4FFFB0BA334 117760 ----a-w- C:\Windows\System32\drivers\rmcast.sys 2013-03-01 17:03:09 D8A65DAFB3EB41CBB622745676FCD072 46080 ----a-w- C:\Windows\System32\drivers\ndisuio.sys 2013-03-01 17:03:06 CBE8C58A8579CFE5FCCF809E6F114E89 31232 ----a-w- C:\Windows\System32\drivers\CompositeBus.sys 2013-03-01 17:03:06 2F885864D5BC8A16C86BEE595969A48A 21504 ----a-w- C:\Windows\System32\drivers\tdi.sys 2013-03-01 17:03:06 1A078C3FE1C1F9C8561CD600C69AD300 26112 ----a-w- C:\Windows\System32\drivers\usbrpm.sys 2013-03-01 17:03:05 F024449C97EC1E464AAFFDA18593DB88 78336 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2013-03-01 17:03:05 BE167ED0FDB9C1FA1133953C18D5A6C9 108544 ----a-w- C:\Windows\System32\drivers\cdrom.sys 2013-03-01 17:03:04 B2FA25D9B17A68BB93D58B0556E8C90D 108544 ----a-w- C:\Windows\System32\drivers\tunnel.sys 2013-03-01 17:03:03 38FBE267E7E6983311179230FACB1017 118784 ----a-w- C:\Windows\System32\drivers\ndiswan.sys 2013-03-01 17:03:03 1EFBC664ABFF416D1D07DB115DCB264F 10240 ----a-w- C:\Windows\System32\drivers\acpipmi.sys 2013-03-01 17:03:03 10C19F8290891AF023EAEC0832E1EB4D 24064 ----a-w- C:\Windows\System32\drivers\hidusb.sys 2013-03-01 17:03:02 AEA177F783E20150ACE5383EE368DA19 50176 ----a-w- C:\Windows\System32\drivers\appid.sys 2013-03-01 17:03:02 4BD7134618C1D2A27466A099062547BF 65536 ----a-w- C:\Windows\System32\drivers\IPMIDrv.sys 2013-03-01 17:03:01 FD82D2B38C465A55C527E339BA1201B1 25856 ----a-w- C:\Windows\System32\drivers\USBCAMD.sys 2013-03-01 17:03:01 E071E5BE621FEC4590117C488A78AE32 25856 ----a-w- C:\Windows\System32\drivers\USBCAMD2.sys 2013-03-01 17:03:01 D295BED4B898F0FD999FCFA9B32B071B 39936 ----a-w- C:\Windows\System32\drivers\umbus.sys 2013-03-01 17:03:01 A5EF29D5315111C80A5C1ABAD14C8972 304128 ----a-w- C:\Windows\System32\drivers\HdAudio.sys 2013-03-01 17:03:01 9E3CED91863E6EE98C24794D05E27A71 28160 ----a-w- C:\Windows\System32\drivers\kbdhid.sys 2013-03-01 17:03:01 9036377B8A6C15DC2EEC53E489D159B5 108544 ----a-w- C:\Windows\System32\drivers\hdaudbus.sys 2013-03-01 17:03:01 3C3C78515F5AB448B022BDF5B8FFDD2E 63488 ----a-w- C:\Windows\System32\drivers\wanarp.sys 2013-03-01 17:03:00 6D4CCAEDC018F1CF52866BBBAA235982 12800 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys 2013-03-01 17:03:00 23DAE03F29D253AE74C44F99E515F9A1 6656 ----a-w- C:\Windows\System32\drivers\RDPCDD.sys 2013-03-01 17:03:00 0693B5EC673E34DC147E195779A4DCF6 26624 ----a-w- C:\Windows\System32\drivers\scfilter.sys 2013-03-01 16:43:50 3AA940AA9AC3055FE32FF2D3D20CCD28 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys 2013-03-01 16:43:49 F92DE757E4B7CE9C07C5E65423F3AE3B 43008 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2013-03-01 16:43:49 E185D44FAC515A18D9DEDDC23C2CDF44 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys 2013-03-01 16:43:49 BD9C55D7023C5DE374507ACC7A14E2AC 75776 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2013-03-01 16:43:49 8DC94AEC6A7E644A06135AE7506DC2E9 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2013-03-01 16:43:49 68DF884CF41CDADA664BEB01DAF67E3D 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2013-03-01 16:43:49 5787196F32D043572EC6565C0EF1B8E0 5888 ----a-w- C:\Windows\System32\drivers\usbd.sys 2013-03-01 16:43:48 4380E59A170D88C4F1022EFF6719A8A4 143744 ----a-w- C:\Windows\System32\drivers\nvstor.sys 2013-03-01 16:43:47 F991AB9CC6B908DB552166768176896A 76288 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2013-03-01 16:43:47 EF3D32464EBBB10449465C8CAB57CA19 148864 ----a-w- C:\Windows\System32\drivers\storport.sys 2013-03-01 16:43:47 D320BF87125326F996D4904FE24300FC 80256 ----a-w- C:\Windows\System32\drivers\amdsata.sys 2013-03-01 16:43:47 B3E25EE28883877076E0E1FF877D02E0 117120 ----a-w- C:\Windows\System32\drivers\nvraid.sys 2013-03-01 16:43:47 5CD5F9A5444E6CDCB0AC89BD62D8B76E 332160 ----a-w- C:\Windows\System32\drivers\iaStorV.sys 2013-03-01 16:43:47 46387FB17B086D16DEA267D5BE23A2F2 22400 ----a-w- C:\Windows\System32\drivers\amdxata.sys 2013-03-01 09:44:23 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-03-01 07:39:59 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2013-03-01 07:39:57 A840213F1ACDCC175B4D1D5AAEAC0D7A 526952 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2013-03-01 07:39:57 48704647CD2E9DAA2EB81BDE6D029EDB 47720 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys 2013-03-01 07:39:25 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2013-03-01 07:39:25 867C301E8B790040AE9CF6486E8041DF 155136 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2013-03-01 07:39:25 06E6F32C8D0A3F66D956F57B43A2E070 66560 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2013-03-01 07:38:30 7DAE5EBCC80E45D3253F4923DC424D05 19824 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2013-03-01 07:30:13 9EBBBA55060F786F0FCAA3893BFA2806 338944 ----a-w- C:\Windows\System32\drivers\afd.sys 2013-03-01 07:30:10 E4C2764065D66EA1D2D3EBC28FE99C46 311808 ----a-w- C:\Windows\System32\drivers\srv.sys 2013-03-01 07:30:10 BE6BD660CAA6F291AE06A718A4FA8ABC 114688 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2013-03-01 07:30:10 03F0545BD8D4C77FA0AE1CEEDFCC71AB 310272 ----a-w- C:\Windows\System32\drivers\srv2.sys 2013-03-01 07:29:47 F031683E6D1FEA157ABB2FF260B51E61 183808 ----a-w- C:\Windows\System32\drivers\rdpwd.sys 2013-03-01 07:29:38 B7895B4182C0D16F6EFADEB8081E8D36 67440 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2013-03-01 07:29:25 7C0507D2391AF5933600CBCED799F277 1293672 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-03-01 07:29:24 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2013-03-01 07:29:24 776FCEFE2CD27C442DF66D3F3535078D 240496 ----a-w- C:\Windows\System32\drivers\netio.sys 2013-03-01 07:29:21 0D87503986BB3DFED58E343FE39DDE13 1211760 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-03-01 07:29:17 B81F204D146000BE76651A50670A5E9E 96768 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2013-03-01 07:29:17 6D17A4791ACA19328C685D256349FEFC 223744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2013-03-01 07:29:17 5D16C921E3671636C0EBA3BBAAC5FD25 123904 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2013-03-01 07:25:34 3F34A1B4C5F6475F320C275E63AFCE9B 56176 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2013-03-01 07:18:08 8F2DA3028D5FCBD1A060A3DE64CD6506 69632 ----a-w- C:\Windows\System32\drivers\bowser.sys 2013-03-01 07:18:06 D0F0D7A97C90FE72A79732812E65F822 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys 2013-03-01 07:17:55 D458D1C7F1D49869000668E3C3BB0D4D 219008 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2013-03-01 07:17:55 23F5D28378A160352BA8F817BD8C71CB 728448 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2013-03-01 07:17:08 2C2C5AFE7EE4F620D69C23C0617651A8 24576 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2013-03-01 07:17:08 1CB91B2BD8F6DD367DFC2EF26FD751B2 18432 ----a-w- C:\Windows\System32\drivers\tdpipe.sys 2013-03-01 06:58:36 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-02-25 23:22:06 B69E6F70CE1151C8D62ABC9DEF64DFBE 8939296 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-03-26 16:48:01 -------- d-----w- C:\Program Files\Trend Micro 2013-03-20 06:01:47 -------- d-----w- C:\Program Files\Unlocker 2013-03-17 17:00:38 -------- d-----w- C:\Program Files\MSXML 4.0 2013-03-17 17:00:36 -------- d-----w- C:\Program Files\Common Files\Microsoft Games 2013-03-17 16:38:39 -------- d-----w- C:\Program Files\Common Files\InstallShield 2013-03-16 08:34:07 -------- d-----w- C:\Program Files\WinZip 2013-03-15 16:27:50 -------- d-----w- C:\Program Files\BurnAware Professional 2013-03-14 11:23:17 -------- d-----w- C:\Program Files\TweakNow PowerPack 2011 2013-03-12 16:38:29 -------- d-----w- C:\Program Files\CrystalDiskInfo 2013-03-08 10:54:44 -------- d-----w- C:\Program Files\Microsoft Silverlight 2013-03-06 16:21:34 -------- d-----w- C:\Program Files\WOT 2013-03-04 05:25:08 -------- d-----w- C:\Program Files\FreeFixer 2013-03-04 05:24:41 -------- d-----w- C:\Program Files\FrostWire 5 2013-03-02 17:13:55 -------- d-----w- C:\Program Files\Google 2013-03-01 17:22:47 -------- d-----w- C:\Program Files\Pixarra 2013-03-01 16:39:06 -------- d-----w- C:\Program Files\OpenOffice.org 3 2013-03-01 16:32:08 -------- d-----w- C:\Program Files\Ashampoo 2013-03-01 13:07:42 -------- d-----w- C:\Program Files\Garritan 2013-03-01 13:05:29 -------- d-----w- C:\Program Files\Finale 2010 2013-03-01 12:38:09 -------- d-----w- C:\Program Files\SmartSound Software 2013-03-01 12:38:09 -------- d-----w- C:\Program Files\InstallShield Installation Information 2013-03-01 12:33:19 -------- d-----w- C:\Program Files\Common Files\Adobe AIR 2013-03-01 12:29:19 -------- d-----w- C:\Program Files\Common Files\PX Storage Engine 2013-03-01 12:27:26 -------- d-----w- C:\Program Files\Adobe 2013-03-01 12:27:01 -------- d-----w- C:\Program Files\Common Files\Adobe 2013-03-01 12:23:47 -------- d-----w- C:\Program Files\Foxit Software 2013-03-01 12:15:44 -------- d-----w- C:\Program Files\jv16 PowerTools 2012 2013-03-01 09:54:06 -------- d-----w- C:\Program Files\TuneUp Utilities 2013 2013-03-01 09:42:39 -------- d-----w- C:\Program Files\Speccy 2013-03-01 09:19:38 -------- d-----w- C:\Program Files\Mozilla Maintenance Service 2013-03-01 09:19:28 -------- d-----w- C:\Program Files\Mozilla Thunderbird 2013-03-01 09:13:36 -------- d-----w- C:\Program Files\Microsoft Works 2013-03-01 09:13:27 -------- d-----w- C:\Program Files\Common Files\DESIGNER 2013-03-01 09:11:47 -------- d-----w- C:\Program Files\Microsoft Office 2013-03-01 08:54:43 -------- d-----w- C:\Program Files\Common Files\CANON 2013-03-01 08:47:48 -------- d--h--w- C:\Program Files\CanonBJ 2013-03-01 08:46:42 -------- d-----w- C:\Program Files\Canon 2013-03-01 08:17:53 -------- d-----w- C:\Program Files\Microsoft.NET 2013-03-01 07:32:41 -------- d-----w- C:\Program Files\NVIDIA Corporation ======= C: ===== ====== C:\Users\Pieters\AppData\Roaming ====== 2013-03-27 12:40:58 -------- d-----w- C:\users\Pieters\AppData\Local\Temp 2013-03-27 08:34:56 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\users\Pieters\AppData\Local\jv16PT_temp.tmp 2013-03-26 17:14:19 407AAB8C27CF7081EECE071C90A65B83 17 ----a-w- C:\users\Pieters\AppData\Local\resmon.resmoncfg 2013-03-26 16:00:12 -------- d-----w- C:\users\Pieters\AppData\Local\ElevatedDiagnostics 2013-03-23 06:17:15 -------- d-----w- C:\users\Pieters\AppData\Local\Diagnostics 2013-03-15 17:24:18 -------- d-----w- C:\users\Pieters\AppData\Local\SmallBasic 2013-03-15 17:22:57 -------- d-----w- C:\users\Pieters\AppData\Locallow\Adobe 2013-03-14 11:23:17 -------- d-----w- C:\users\Pieters\AppData\Roaming\TweakNow PowerPack 2011 2013-03-13 15:48:08 -------- d-----w- C:\users\Pieters\AppData\Roaming\OpenOffice.org 2013-03-12 16:36:54 8E69A10DA58787A10C72A2E5678EB418 54 ----a-w- C:\users\Pieters\AppData\Roaming\burnaware.ini 2013-03-12 16:32:06 -------- d-----w- C:\users\Pieters\AppData\Roaming\ImgBurn 2013-03-04 05:24:00 -------- d-----w- C:\users\Pieters\AppData\Roaming\FreeFixer 2013-03-04 05:24:00 -------- d-----w- C:\users\Pieters\AppData\Local\FreeFixer 2013-03-02 17:13:51 -------- d-----w- C:\users\Pieters\AppData\Local\Google 2013-03-02 17:09:07 -------- d-----w- C:\users\Pieters\AppData\Local\Deployment 2013-03-02 17:09:07 -------- d-----w- C:\users\Pieters\AppData\Local\Apps 2013-03-02 13:53:31 -------- d-----w- C:\users\Pieters\AppData\Roaming\NVIDIA 2013-03-01 18:09:31 -------- d-----w- C:\users\Default\AppData\Local\Microsoft Help 2013-03-01 18:09:31 -------- d-----w- C:\users\Default User\AppData\Local\Microsoft Help 2013-03-01 17:37:04 -------- d-----w- C:\users\Pieters\AppData\Locallow\Sun 2013-03-01 13:08:01 -------- d-----w- C:\users\Pieters\AppData\Roaming\Garritan 2013-03-01 12:33:12 -------- d-----w- C:\users\Pieters\AppData\Local\Adobe 2013-03-01 12:31:37 -------- d-----w- C:\users\Pieters\AppData\Roaming\Adobe 2013-03-01 09:54:14 -------- d-----w- C:\users\Pieters\AppData\Roaming\TuneUp Software 2013-03-01 09:45:00 -------- d-----w- C:\users\Pieters\AppData\Local\Programs 2013-03-01 09:19:43 -------- d-----w- C:\users\Pieters\AppData\Roaming\Thunderbird 2013-03-01 09:19:43 -------- d-----w- C:\users\Pieters\AppData\Roaming\Mozilla 2013-03-01 09:19:43 -------- d-----w- C:\users\Pieters\AppData\Local\Thunderbird 2013-03-01 09:11:49 -------- d-----w- C:\users\Pieters\AppData\Local\Microsoft Help 2013-03-01 09:00:26 -------- d-----w- C:\users\Pieters\AppData\Roaming\Canon 2013-03-01 08:55:00 -------- d-----w- C:\users\Pieters\AppData\Locallow\Canon Easy-WebPrint EX 2013-03-01 08:22:48 3E99284856C783969359A04171D4E5C0 86320 ----a-w- C:\users\Pieters\AppData\Local\GDIPFONTCACHEV1.DAT 2013-03-01 08:08:48 -------- d-s---w- C:\users\Pieters\AppData\Locallow\Microsoft 2013-03-01 07:34:53 -------- d-s---w- C:\users\UpdatusUser\AppData\Locallow\Microsoft 2013-03-01 07:33:26 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Temporary Internet Files 2013-03-01 07:33:26 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Geschiedenis 2013-03-01 07:33:26 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Application Data 2013-03-01 07:33:26 -------- d-s---w- C:\users\UpdatusUser\AppData\Roaming\Microsoft 2013-03-01 07:33:26 -------- d-----w- C:\users\UpdatusUser\AppData\Roaming\Media Center Programs 2013-03-01 07:33:26 -------- d-----w- C:\users\UpdatusUser\AppData\Local\Temp 2013-03-01 07:33:26 -------- d-----w- C:\users\UpdatusUser\AppData\Local\Microsoft 2013-03-01 07:12:19 -------- d-----w- C:\users\Pieters\AppData\Roaming\Identities 2013-03-01 07:12:11 -------- d-----w- C:\users\Pieters\AppData\Local\VirtualStore 2013-03-01 07:12:10 -------- d-sh--we C:\users\Pieters\AppData\Local\Temporary Internet Files 2013-03-01 07:12:10 -------- d-sh--we C:\users\Pieters\AppData\Local\Geschiedenis 2013-03-01 07:12:10 -------- d-sh--we C:\users\Pieters\AppData\Local\Application Data 2013-03-01 07:12:10 -------- d-s---w- C:\users\Pieters\AppData\Roaming\Microsoft 2013-03-01 07:12:10 -------- d-----w- C:\users\Pieters\AppData\Roaming\Media Center Programs 2013-03-01 07:12:10 -------- d-----w- C:\users\Pieters\AppData\Local\Microsoft 2013-03-01 07:11:58 -------- d-sh--we C:\users\Default\AppData\Local\Geschiedenis 2013-03-01 07:11:58 -------- d-sh--we C:\users\Default User\AppData\Local\Geschiedenis ====== C:\Users\Pieters ====== 2013-03-25 17:09:06 -------- d-----w- C:\ProgramData\MumboJumbo 2013-03-14 17:24:23 -------- d-----w- C:\ProgramData\Google 2013-03-08 17:23:53 -------- d--h--w- C:\ProgramData\CanonIJMyPrinter 2013-03-04 05:26:15 -------- d-----w- C:\Users\Pieters\FrostWire 2013-03-04 05:26:12 -------- d-----w- C:\Users\Pieters\.frostwire5 2013-03-01 17:38:20 -------- d-----w- C:\ProgramData\Sun 2013-03-01 17:23:48 -------- d-----w- C:\ProgramData\TEMP 2013-03-01 12:38:06 -------- d-----w- C:\ProgramData\SmartSound Software Inc 2013-03-01 12:27:26 -------- d-----w- C:\ProgramData\Adobe 2013-03-01 09:53:53 -------- d-----w- C:\ProgramData\TuneUp Software 2013-03-01 09:53:40 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2013-03-01 09:53:40 -------- d--h--w- C:\ProgramData\Common Files 2013-03-01 09:19:39 -------- d-----w- C:\ProgramData\Mozilla 2013-03-01 09:11:47 -------- d-----w- C:\ProgramData\Microsoft Help 2013-03-01 09:00:46 -------- d--h--w- C:\ProgramData\CanonIJMIG 2013-03-01 09:00:23 -------- d--h--w- C:\ProgramData\CanonIJQuickMenu 2013-03-01 09:00:17 -------- d--h--w- C:\ProgramData\CanonIJEGV 2013-03-01 08:54:32 -------- d-----w- C:\ProgramData\CanonIJWSpt 2013-03-01 08:48:21 -------- d--h--w- C:\ProgramData\CanonBJ 2013-03-01 08:47:09 -------- d-----w- C:\ProgramData\CanonIJPLM 2013-03-01 08:47:03 -------- d--h--w- C:\ProgramData\CanonIJETV 2013-03-01 07:33:28 -------- d-----w- C:\Users\UpdatusUser\Searches 2013-03-01 07:33:28 -------- d-----w- C:\Users\UpdatusUser\Contacts 2013-03-01 07:33:26 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\UpdatusUser\ntuser.ini 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Sjablonen 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\SendTo 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Recent 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Netwerkprinteromgeving 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\NetHood 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Mijn documenten 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Menu Start 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Local Settings 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Cookies 2013-03-01 07:33:26 -------- d-sh--we C:\Users\UpdatusUser\Application Data 2013-03-01 07:33:26 -------- d--h--w- C:\Users\UpdatusUser\AppData 2013-03-01 07:33:26 -------- d-----w- C:\Users\UpdatusUser\Saved Games 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Videos 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Pictures 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Music 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Links 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Favorites 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Downloads 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Documents 2013-03-01 07:33:26 -------- d-----r- C:\Users\UpdatusUser\Desktop 2013-03-01 07:33:21 -------- d-----w- C:\ProgramData\NVIDIA 2013-03-01 07:32:43 -------- d-----w- C:\ProgramData\NVIDIA Corporation 2013-03-01 07:12:33 -------- d-----r- C:\Users\Pieters\Searches 2013-03-01 07:12:18 -------- d-----r- C:\Users\Pieters\Contacts 2013-03-01 07:12:10 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Pieters\ntuser.ini 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Sjablonen 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\SendTo 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Recent 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Netwerkprinteromgeving 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\NetHood 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Mijn documenten 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Menu Start 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Local Settings 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Cookies 2013-03-01 07:12:10 -------- d-sh--we C:\Users\Pieters\Application Data 2013-03-01 07:12:10 -------- d--h--w- C:\Users\Pieters\AppData 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Videos 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Saved Games 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Pictures 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Music 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Links 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Favorites 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Downloads 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Documents 2013-03-01 07:12:10 -------- d-----r- C:\Users\Pieters\Desktop 2013-03-01 07:11:58 -------- d-sh--we C:\Users\Default\Sjablonen 2013-03-01 07:11:58 -------- d-sh--we C:\Users\Default\Netwerkprinteromgeving 2013-03-01 07:11:58 -------- d-sh--we C:\Users\Default\Mijn documenten 2013-03-01 07:11:58 -------- d-sh--we C:\Users\Default\Menu Start 2013-03-01 07:11:58 -------- d-sh--we C:\ProgramData\Sjablonen 2013-03-01 07:11:58 -------- d-sh--we C:\ProgramData\Menu Start 2013-03-01 07:11:58 -------- d-sh--we C:\ProgramData\Favorieten 2013-03-01 07:11:58 -------- d-sh--we C:\ProgramData\Documenten 2013-03-01 07:11:58 -------- d-sh--we C:\ProgramData\Bureaublad ====== C: exe-files == 2013-03-26 10:13:34 31D0DE866C71CD80C7DB1A87F5A1DF93 659456 ----a-w- C:\Users\Pieters\Desktop\TCPOptimizer.exe === C: other files == 2013-03-27 08:39:23 956159DFA6C60236ED9BD46E73DB2F25 657 ----a-w- C:\Users\Pieters\AppData\Roaming\TweakNow PowerPack 2011\Backup\DiskCleaner_27-3-2013_9%b39%b2.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1111183522-1094022660-2006007549-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"="C:\Users\Pieters\AppData\Local\Smartbar\Application\SnapDo.exe startup" [HKEY_USERS\S-1-5-21-1111183522-1094022660-2006007549-1003\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-1111183522-1094022660-2006007549-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "CanonQuickMenu"="C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon" "AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"="C:\Users\Pieters\AppData\Local\Smartbar\Application\SnapDo.exe startup" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14-03-2013 09:16] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [02-03-2013 18:13] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [02-03-2013 18:13] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions ijblflkdjdopkpdgllkmlbgcffjbnfda - \User Data\Default\Extensions\v9.crx[01-08-2012 22:47] WOT - Pieters - Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp Kabam Presents: Shadowland Online - Pieters - Default\Extensions\jjgjbahjopojkeehngfdlooiidfjjbbn ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== shortcuts on Users Desktops ====================== C:\Users\Pieters\Desktop\Run.lnk - ==== shortcuts in Users Start Menu ====================== C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 6\Ashampoo WinOptimizer 6 Gadget.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 6\Ashampoo WinOptimizer 6.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 6\Help.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 6\Readme.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 6\Uninstall Ashampoo WinOptimizer 6.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\Finale 2010 Read Me.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\Finale 2010.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\QuickStart Video Tips.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\Uninstall Finale 2010.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\User Manual.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Finale 2010\What's New.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\FrostWire 5.5.5.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\Uninstall.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools 2012\jv16 PowerTools 2012.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools 2012\Uninstall jv16 PowerTools 2012.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Base.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Calc.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Draw.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Impress.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Math.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org Writer.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1\OpenOffice.org.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled\OpenOffice.org 3.4.1.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwistedBrush\TwistedBrush Pro Studio.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwistedBrush\Uninstall TwistedBrush Pro Studio.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker\README.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker\Start Unlocker Assistant.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker\Start Unlocker.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker\Uninstall.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker\Website.lnk - ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 10.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Elements 10.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Professional\BurnAware Professional.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Professional\Help.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Professional\Verwijder BurnAware Professional.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series\Leesmij.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3200 series Manual\Canon MG3200 series Online handleiding.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Scan Utility\IJ Scan Utility.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Image Garden\My Image Garden.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Quick Menu\Quick Menu.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo\CrystalDiskInfo.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader\Foxit Reader.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader\Uninstall Foxit Reader.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Microsoft Flight Simulator X.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan Instruments for Finale\Instruments for Finale.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan Instruments for Finale\Report Technical Issue.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan Instruments for Finale\Uninstall.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG3200 series\Gebruikersregistratie.LNK - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office OneNote 2007.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-hulpprogramma's\Digitaal certificaat voor VBA-projecten.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-hulpprogramma's\Microsoft Mediagalerie.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-hulpprogramma's\Microsoft Office 2007 - Taalinstellingen.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-hulpprogramma's\Microsoft Office Diagnostische gegevens.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-hulpprogramma's\Microsoft Office Picture Manager.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Disable 3D Vision.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Enable 3D Vision.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartSound\Sonicfire Pro 5.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Help TuneUp Utilities.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\TuneUp Utilities 2013.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp 1-klik Onderhoud.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Browser Cleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Disk Cleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Disk Doctor.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Disk Space Explorer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Drive Defrag.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Economy-modus.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Live-optimalisatie.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Process Manager.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Program Deactivator.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Registry Cleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Registry Defrag.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Registry Editor.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Repair Wizard.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Rescue Center.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Setting Center.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Shortcut Cleaner.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Shredder.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp StartUp Manager.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp StartUp Optimizer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Styler.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp System Control.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp System Information.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Undelete.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Uninstall Manager.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp Update Wizard.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013\Alle functies\TuneUp-optimalisatierapport.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow PowerPack 2011\Help.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow PowerPack 2011\TweakNow PowerPack 2011.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\Help Manual.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\ReadMe.txt.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\Uninstall WinZip.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\What's New.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\WinZip 8.1 .lnk - ==== shortcuts in Quick Launch ====================== C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2010.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FrostWire 5.5.5.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Adobe Photoshop Elements 10.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Ashampoo WinOptimizer 6.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\BurnAware Professional.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Canon Quick Menu.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\CCleaner.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\CrystalDiskInfo.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Finale 2010.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\freefixer - Snelkoppeling.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\FrostWire 5.5.5.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\jv16 PowerTools 2012.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Malwarebytes Anti-Malware.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Security Essentials.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Thunderbird.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\My Printer.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\OpenOffice.org 3.4.1.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Speccy.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Unlocker.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Sticky Notes.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TuneUp Utilities - Start Center.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TweakNow PowerPack 2011.lnk - C:\Users\Pieters\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TwistedBrush Pro Studio.lnk - ==== Empty IE Cache ====================== C:\Users\Pieters\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Pieters\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\Pieters\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Pieters\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied
  12. Wilt U a.u.b. mijn log eens nakijken, ik geloof dat ik er weer een troep van gemaakt heb. Ik hoop dat ik U niet te veel overlast bezorg. &&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:05:12, on 27-3-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16521) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = V9 Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=NL&userid=a659332b-8522-47ae-9f2c-b11f79aa3a41&searchtype=ds&q={searchTerms}&installDate=12/03/2013 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=NL&userid=a659332b-8522-47ae-9f2c-b11f79aa3a41&searchtype=ds&q={searchTerms}&installDate=12/03/2013 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=NL&userid=a659332b-8522-47ae-9f2c-b11f79aa3a41&searchtype=ds&q={searchTerms}&installDate=12/03/2013 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=NL&userid=a659332b-8522-47ae-9f2c-b11f79aa3a41&searchtype=ds&q={searchTerms}&installDate=12/03/2013 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - mscoree.dll (file missing) O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll O3 - Toolbar: Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing) O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1111183522-1094022660-2006007549-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1111183522-1094022660-2006007549-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: AutorunsDisabled O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll O20 - AppInit_DLLs: c:\progra~2\browserprotect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserprotect.dll O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: BrowserProtect - Unknown owner - C:\ProgramData\BrowserProtect\2.6.1125.80\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- End of file - 8360 bytes
  13. het logje "sfcdetails" was leeg. Maar Defender doet het weer, als er iets in het logje moet staan probeer ik het nog eens. Namens mijn Vrouw en mij Hartelijk bedankt voor de hulp.
  14. Wilt U a.u.b. het log van mijn Eega eens nakijken? Zij doet er alleen maar haar spelletjes op, maar ook spelletjes kunnen voor problemen zorgen. Asus: Laptop van serie: R700 Series R704VD-TY103H Windowsa V8 Het gaat om Defender ,die krijgt geen service meer, Als ik de RM erop zet zie ik in de taakbalk niet Defender maar MSASCui staan en kan geen van beide vinden in de servies. Dit staat in het logboek: Service controle De Windows Defender Service-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 60000 milliseconden worden uitgevoerd: Service opnieuw starten. ---------- Application. Naam van toepassing met fout: MsMpEng.exe, versie: 4.0.9200.16384, tijdstempel: 0x5010a938 Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x000000f9efeecee5 Id van proces met fout: 0x614 Starttijd van toepassing met fout: 0x01ce1d6e5f7952f9 Pad naar toepassing met fout: C:\Program Files\Windows Defender\MsMpEng.exe Pad naar module met fout: unknown Rapport-id: 314eaf49-8962-11e2-be9c-3085a9f2a72d Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: ************************************************* Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:31:05, on 10-3-2013 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.16482) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe C:\Users\Pieters\AppData\Local\Pokki\v0.260.11.291\pokki.exe C:\Users\Pieters\AppData\Local\Pokki\v0.260.11.291\pokki.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Program Files (x86)\WinZip\WZQKPICK.EXE C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Windows\SysWOW64\ACEngSvr.exe C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Pokki] "C:\Users\Pieters\AppData\Local\Pokki\v0.260.11.291\pokki.exe" O4 - HKUS\S-1-5-21-462232691-140359546-2823409897-1001\..\Run: [Power2GoExpress] "C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe" (User 'UpdatusUser') O4 - HKUS\S-1-5-21-462232691-140359546-2823409897-1001\..\Run: [Pokki] "C:\Users\Pieters\AppData\Local\Pokki\v0.260.8.396\pokki.exe" (User 'UpdatusUser') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files (x86)\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10384 bytes
  15. Goeden Morgen Internet Explorer geeft de onderstaande script fout Bij Firefox en Crome zie ik de melding niet, alleen bij Internet Explorer en ook veel van de links wat daarin geopend worden. Kan me a.u.b. hier iemand bij helpen? ************************************** Regel 15 Teken 2 Fout De eigenschap of methode RedirectToLocalizedBand wordt niet ondersteund door dit project Code 0 URL: file://C:/Program%20Files/Microsoft% 20office/Office12/INTLBAND.HTM Wilt u doorgaan met het uitvoeren van scripts op deze pagina? Ja Nee. *********************************
  16. Dag Heer Kape, ja ik had uitkomst hier neer gezet, het staat iets hoger, er zat geen virus in. alwarebytes Anti-Malware (PRO) 1.70.0.1100 www.malwarebytes.org Databaseversie: v2013.01.25.05 Windows 8 x64 NTFS Internet Explorer 10.0.9200.16466 Pieters :: HUISKAMER-PC [administrator] Bescherming: Ingeschakeld A.U.B heb even moeten zoeken naar de verborgen mappen, het is me toch wat! ik had ruzie met Pokki op het kleurenboekje. We hebben nu ook draadloos .
  17. alwarebytes Anti-Malware (PRO) 1.70.0.1100 www.malwarebytes.org Databaseversie: v2013.01.25.05 Windows 8 x64 NTFS Internet Explorer 10.0.9200.16466 Pieters :: HUISKAMER-PC [administrator] Bescherming: Ingeschakeld A.U.B heb even moeten zoeken naar de verborgen mappen, het is me toch wat! ik had ruzie met Pokki op het kleurenboekje. We hebben nu ook draadloos .
  18. Goeden avond Heer Kape, Dank U wel voor het nakijken van het Hijack-Log. Wilt U mij vertellen hoe ik Pokki kan scannen, normaal gaat dit met de RM. Op Internet zag ik VirusTotal staan maar ook daar krijg ik Pokki niet in beeld.
  19. Wilt U a.u.b. het log van mijn Eega ook eens nakijken? Ze heeft een nieuwe Asus laptop van de R700v series we hebben nog geen draadloos Internet, bij voorbaat mijn dank. ****************************************************************************************** Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 04:40:19, on 1-2-2013 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.16453) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Users\Pieters\AppData\Local\Pokki\v0.260.10.204\pokki.exe C:\Users\Pieters\AppData\Local\Pokki\v0.260.10.204\pokki.exe C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Windows\SysWOW64\ACEngSvr.exe C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKCU\..\Run: [Pokki] "C:\Users\Pieters\AppData\Local\Pokki\v0.260.10.204\pokki.exe" O4 - HKUS\S-1-5-21-462232691-140359546-2823409897-1001\..\Run: [Power2GoExpress] "C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe" (User 'UpdatusUser') O4 - HKUS\S-1-5-21-462232691-140359546-2823409897-1001\..\Run: [Pokki] "C:\Users\Pieters\AppData\Local\Pokki\v0.260.8.396\pokki.exe" (User 'UpdatusUser') O4 - Startup: AutorunsDisabled O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: AutorunsDisabled O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10471 bytes
  20. Beste Heer Cape, Hier ben ik even mee aan het twijfelen, word er onderstaande regel mee bedoeld? R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = V9 Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! **** Hier ben ik even mee aan het twijfelen, word er onderstaande regel mee bedoeld? R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = V9 Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!
  21. Wilt U a.u.b. mijn log weer eens nakijken? Ik heb 2 printers verwijderd, de Pixma Canon 210 en de Hp B109a-m alle2 All-in-one. Wellicht is er iets van achtergebleven. ******************************************************* Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 4:47:40, on 30-1-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft Office\Office12\WINWORD.EXE C:\Windows\system32\SearchFilterHost.exe C:\Users\Pieters\Desktop\HijackThis 4.0.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = V9 Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKUS\S-1-5-21-3490999991-3385707320-1038653658-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-3490999991-3385707320-1038653658-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: AutorunsDisabled O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file) O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- End of file - 5849 bytes
  22. Heb alles uitgevoerd, wist nog niet eens hoe ik op Windows 7 de herstelpunten kon uitschakelen, is allemaal zo verandert sinds Millennium, heb het hele bericht opgeslagen anders wordt het teveel om te onthouden. Dankbaarheid komt uit het hart, niet uit de mond. Henry1960.
  23. Ja Wininit is verdwenen, die map stond verborgen. Hartelijk dank voor Uw hulp, had ik dit Forum maar eerder gezien. Henry1960
  24. Goeden morgen Heer Kape. Weet niet zeker of ik het goed gedaan heb, nadat het log naar ComboFix was gesleept kwam die met een update heb op ja geklikt, heb ook een foutmelding gezien kon ze helaas niet noteren, een herstart ook niet gezien, Combo begon gelijk te werken zoals de eerste maal, is dat correct? &&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& ComboFix 13-01-11.01 - Pieters 11-01-2013 7:37.2.4 - x86 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3063.2086 [GMT 1:00] Gestart vanuit: d:\programma's\ComboFix.exe gebruikte Opdracht switches :: c:\users\Pieters\Desktop\CFScript.txt.txt SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\Tarma Installer c:\programdata\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll c:\programdata\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat c:\programdata\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe c:\programdata\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico . . (((((((((((((((((((( Bestanden Gemaakt van 2012-12-11 to 2013-01-11 )))))))))))))))))))))))))))))) . . 2013-01-11 06:42 . 2013-01-11 06:42 -------- d-----w- c:\users\Pieters\AppData\Local\temp 2013-01-11 06:42 . 2013-01-11 06:42 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2013-01-11 06:42 . 2013-01-11 06:42 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-01-11 01:43 . 2013-01-11 02:31 -------- d-----w- c:\program files\Mozilla Thunderbird 2013-01-10 17:05 . 2012-11-28 09:35 93640 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-01-09 03:51 . 2013-01-09 03:51 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2013-01-04 16:26 . 2013-01-04 16:26 -------- d-----w- c:\users\Pieters\AppData\Roaming\Foxit Software 2013-01-04 04:03 . 2013-01-04 16:59 -------- d-----w- c:\program files\WOT 2013-01-03 18:02 . 2013-01-03 18:02 -------- d-----w- c:\users\Pieters\AppData\Local\Simplare 2013-01-03 17:25 . 2013-01-03 17:25 -------- d-----w- c:\users\Pieters\AppData\Roaming\Radiocom 2013-01-03 17:14 . 2013-01-06 11:08 -------- d-----w- c:\users\Pieters\AppData\Roaming\vlc 2013-01-03 17:07 . 2013-01-03 17:07 -------- d-----w- c:\program files\VideoLAN 2013-01-03 17:07 . 2013-01-03 17:07 -------- d-----w- c:\users\Pieters\AppData\Local\Rich Media Suite 2013-01-03 12:57 . 2013-01-03 13:11 -------- d-----w- c:\users\Pieters\AppData\Roaming\Raptr 2013-01-03 12:57 . 2013-01-03 13:11 -------- d-----w- c:\program files\Raptr 2013-01-03 12:56 . 2013-01-03 12:56 -------- d-----w- c:\users\Pieters\.swt 2013-01-03 12:55 . 2013-01-04 04:11 -------- d-----w- c:\users\Pieters\AppData\Roaming\Azureus 2013-01-03 08:11 . 2013-01-03 11:52 -------- d-----w- c:\users\Pieters\AppData\Roaming\Cabos 2013-01-03 07:48 . 2013-01-03 07:48 -------- d-----w- c:\programdata\14156 2013-01-03 04:32 . 2013-01-03 04:32 -------- d-----w- c:\users\Pieters\AppData\Local\CRE 2013-01-03 04:31 . 2013-01-03 05:59 -------- d-----w- c:\users\Pieters\AppData\Roaming\uTorrent 2013-01-03 04:26 . 2013-01-03 04:26 -------- d-----w- c:\programdata\Wincert 2013-01-03 04:26 . 2013-01-03 04:26 -------- d-----w- c:\programdata\boost_interprocess 2013-01-03 04:26 . 2013-01-03 04:26 -------- d-----w- c:\users\Pieters\AppData\Roaming\MusicNet 2013-01-03 04:26 . 2013-01-03 11:39 -------- d-----w- c:\users\Pieters\AppData\Roaming\BearShare 2013-01-03 04:26 . 2013-01-03 11:39 -------- d-----w- c:\users\Pieters\AppData\Local\BearShare 2013-01-03 04:25 . 2013-01-03 04:25 -------- d-----w- c:\users\Pieters\AppData\Local\PackageAware 2013-01-01 09:54 . 2013-01-03 16:52 -------- d-----w- c:\program files\FileConverter_1.4 2012-12-31 13:23 . 2013-01-03 04:11 -------- d-----w- c:\users\Pieters\AppData\Roaming\BitComet 2012-12-31 08:50 . 2012-12-31 09:00 -------- d-----w- c:\users\Pieters\AppData\Roaming\FreeFixer 2012-12-31 08:50 . 2012-12-31 08:50 -------- d-----w- c:\users\Pieters\AppData\Local\FreeFixer 2012-12-31 08:50 . 2012-12-31 08:50 -------- d-----w- c:\program files\FreeFixer 2012-12-31 08:48 . 2012-12-31 08:48 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll 2012-12-31 08:09 . 2012-12-31 08:10 -------- d-----w- c:\users\Pieters\AppData\Local\WiFi Guard 2012-12-31 08:09 . 2012-12-31 08:09 -------- d-----w- c:\program files\SoftPerfect WiFi Guard 2012-12-28 07:13 . 2012-12-28 07:13 -------- d-----w- c:\users\Pieters\AppData\Local\Programs 2012-12-26 08:33 . 2012-12-26 08:33 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2012-12-26 08:33 . 2012-12-26 08:33 856712 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2012-12-23 09:21 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll 2012-12-23 09:21 . 2012-08-24 17:05 136560 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2012-12-23 09:21 . 2012-08-24 17:02 369856 ----a-w- c:\windows\system32\drivers\cng.sys 2012-12-23 09:21 . 2012-08-24 16:57 247808 ----a-w- c:\windows\system32\schannel.dll 2012-12-23 09:21 . 2012-08-24 16:56 1039360 ----a-w- c:\windows\system32\lsasrv.dll 2012-12-23 05:46 . 2012-11-30 07:57 29536 ----a-w- c:\windows\system32\uxtuneup.dll 2012-12-23 04:00 . 2012-12-23 04:00 -------- d-----w- c:\users\Pieters\AppData\Roaming\ImgBurn 2012-12-23 03:58 . 2012-12-23 03:58 -------- d-----w- c:\program files\ImgBurn 2012-12-23 03:10 . 2012-12-23 03:10 -------- d-----w- c:\users\Pieters\AppData\Local\HP 2012-12-21 09:10 . 2013-01-10 15:36 -------- d-----w- C:\Downloads 2012-12-21 08:48 . 2013-01-05 15:50 -------- d-----w- c:\users\Pieters\FrostWire 2012-12-21 08:48 . 2013-01-07 08:49 -------- d-----w- c:\users\Pieters\.frostwire5 2012-12-21 08:43 . 2012-12-21 09:01 -------- d-----w- c:\program files\FrostWire 5 2012-12-21 08:43 . 2012-12-21 08:43 -------- d-----w- c:\users\Pieters\AppData\Local\APN 2012-12-21 06:12 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll 2012-12-21 06:12 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll 2012-12-17 03:05 . 2012-12-17 03:05 -------- d-----w- c:\users\Pieters\AppData\Local\Macromedia 2012-12-15 11:09 . 2012-12-15 11:11 -------- d-----w- C:\Microsoft Flight SimulatorAddon Scenery 2012-12-15 10:35 . 2012-12-15 10:35 0 ----a-w- c:\users\Pieters\AppData\Local\jv16PT_temp.tmp 2012-12-14 12:37 . 2012-12-27 12:21 -------- d-----w- c:\users\Pieters\AppData\Local\Windows Live Writer 2012-12-14 12:37 . 2012-12-14 17:44 -------- d-----w- c:\users\Pieters\AppData\Roaming\Windows Live Writer 2012-12-14 12:06 . 2012-12-14 12:07 -------- d-----w- c:\program files\Windows Live 2012-12-14 12:05 . 2013-01-10 15:22 -------- d-----w- c:\users\Pieters\AppData\Local\Windows Live 2012-12-14 12:04 . 2012-12-14 12:04 -------- d-----w- c:\program files\Common Files\Windows Live 2012-12-12 07:47 . 2012-11-02 05:11 376832 ----a-w- c:\windows\system32\dpnet.dll 2012-12-12 07:47 . 2012-11-09 04:42 2048 ----a-w- c:\windows\system32\tzres.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-01-10 03:18 . 2012-11-23 14:58 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-01-10 03:18 . 2012-11-23 14:58 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-12-14 15:49 . 2012-12-02 07:25 21104 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-11-30 07:57 . 2012-11-23 13:18 31584 ----a-w- c:\windows\system32\TURegOpt.exe 2012-11-30 07:57 . 2012-11-23 13:18 21344 ----a-w- c:\windows\system32\authuitu.dll 2012-11-23 16:21 . 2012-11-23 16:21 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-11-23 16:21 . 2012-11-23 16:21 821736 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-11-23 15:12 . 2012-11-23 15:12 388096 ----a-r- c:\users\Pieters\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-11-23 14:32 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll 2012-11-23 10:48 . 2012-11-23 10:48 86528 ----a-w- c:\windows\system32\iesysprep.dll 2012-11-23 10:48 . 2012-11-23 10:48 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-11-23 10:48 . 2012-11-23 10:48 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-11-23 10:48 . 2012-11-23 10:48 74752 ----a-w- c:\windows\system32\iesetup.dll 2012-11-23 10:48 . 2012-11-23 10:48 63488 ----a-w- c:\windows\system32\tdc.ocx 2012-11-23 10:48 . 2012-11-23 10:48 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-11-23 10:48 . 2012-11-23 10:48 367104 ----a-w- c:\windows\system32\html.iec 2012-11-23 10:48 . 2012-11-23 10:48 35840 ----a-w- c:\windows\system32\imgutil.dll 2012-11-23 10:48 . 2012-11-23 10:48 23552 ----a-w- c:\windows\system32\licmgr10.dll 2012-11-23 10:48 . 2012-11-23 10:48 161792 ----a-w- c:\windows\system32\msls31.dll 2012-11-23 10:48 . 2012-11-23 10:48 152064 ----a-w- c:\windows\system32\wextract.exe 2012-11-23 10:48 . 2012-11-23 10:48 150528 ----a-w- c:\windows\system32\iexpress.exe 2012-11-23 10:48 . 2012-11-23 10:48 11776 ----a-w- c:\windows\system32\mshta.exe 2012-11-23 10:48 . 2012-11-23 10:48 110592 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-11-23 10:48 . 2012-11-23 10:48 101888 ----a-w- c:\windows\system32\admparse.dll 2012-11-19 00:04 . 2012-11-23 10:44 6812136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9D73FA79-3C31-464F-875C-1ADF5644231C}\mpengine.dll 2012-10-16 07:39 . 2012-11-28 04:29 561664 ----a-w- c:\windows\apppatch\AcLayers.dll 2012-12-17 03:10 . 2012-12-17 03:10 262112 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . (((((((((((((((((((((((((((((((((((((((((((( Look ))))))))))))))))))))))))))))))))))))))))))))))))))))))))) . ---- Directory of c:\programdata\14156 ---- . 2013-01-03 07:48 . 2013-01-03 04:27 4265 ----a-w- c:\programdata\14156\{FE641213-506B-4A35-ADDF-0B17178758DA}.swf . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016] . c:\users\Pieters\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled OpenOffice.org 3.4.1.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup backupExtension=.CommonStartup . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NkvMon.exe.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\NkvMon.exe.lnk backup=c:\windows\pss\NkvMon.exe.lnk.CommonStartup backupExtension=.CommonStartup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CAHeadless] 2011-09-14 21:09 539800 ----a-w- c:\program files\Adobe\Elements 10 Organizer\CAHeadless\ElementsAutoAnalyzer.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ElementsAutoAnalyzer.exe] 2011-09-14 21:09 539800 ----a-w- c:\program files\Adobe\Elements 10 Organizer\CAHeadless\ElementsAutoAnalyzer.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Google Update"="c:\users\Pieters\AppData\Local\Google\Update\GoogleUpdate.exe" /c . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" . R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x] R3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [x] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;c:\program files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x] S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [x] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - NisDrv . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc GPSvcGroup REG_MULTI_SZ GPSvc . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Inhoud van de 'Gedeelde Taken' map . 2013-01-11 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-23 03:18] . 2013-01-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 09:17] . 2013-01-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 09:17] . 2013-01-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3490999991-3385707320-1038653658-1001Core.job - c:\users\Pieters\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-20 09:23] . 2013-01-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3490999991-3385707320-1038653658-1001UA.job - c:\users\Pieters\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-20 09:23] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.bing.com/?scope=web&mkt=nl-NL mStart Page = hxxp://www.v9.com/newtab IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.254 192.168.123.254 FF - ProfilePath - c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\ FF - ExtSQL: 2012-11-29 17:58; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF - ExtSQL: 2012-12-04 18:27; {EEE6C361-6118-11DC-9C72-001320C79847}; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi FF - ExtSQL: 2012-12-11 19:45; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF - ExtSQL: 2013-01-03 05:26; {15a0413e-9f45-4d45-9a75-2c20b15b5b51}; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\{15a0413e-9f45-4d45-9a75-2c20b15b5b51} FF - ExtSQL: 2013-01-03 05:32; plugin@yontoo.com; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\plugin@yontoo.com FF - ExtSQL: 2013-01-03 05:32; {87775fdb-6972-41f9-ae51-8326e38cb206}; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206} FF - ExtSQL: 2013-01-04 05:01; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\Pieters\AppData\Roaming\Mozilla\Firefox\Profiles\onrlxtzm.default-1354183221330\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF - ExtSQL: !HIDDEN! 2012-12-11 19:45; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 FF - user.js: extensions.autoDisableScopes - 14 . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-01-11 07:43:21 ComboFix-quarantined-files.txt 2013-01-11 06:43 ComboFix2.txt 2013-01-11 02:22 . Pre-Run: 469.470.773.248 bytes beschikbaar Post-Run: 469.430.575.104 bytes beschikbaar . - - End Of File - - 0AE3C3392DD18C4E2E09BE107E2C3C9B
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.