
Zoek.exe Version 4.0.0.5 Updated 14-November-2013
Tool run by Danny on vr 22-11-2013 at 16:31:12,18.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Danny\Desktop\zoek.scr [Script inserted] 

==== System Restore Info ======================

22-11-2013 16:32:54 Zoek.exe System Restore Point Created Succesfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 


==== Empty Folders Check ======================

C:\PROGRA~2\Mirillis deleted successfully
C:\PROGRA~2\Pando Networks deleted successfully
C:\ProgramData\Oracle deleted successfully
C:\Users\Danny\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Danny\AppData\Local\Adobe deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\SopCast deleted
C:\Users\Danny\AppData\Roaming\Camdata.ini deleted
C:\Users\Danny\AppData\Roaming\CamLayout.ini deleted
C:\Users\Danny\AppData\Roaming\CamShapes.ini deleted
C:\ProgramData\Package Cache deleted
C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker deleted
C:\windows\SysNative\Tasks\SomotoUpdateCheckerAutoStart deleted
C:\Users\Danny\Downloads\rcpsetupst_RC1_NL_L_1.exe deleted
C:\Users\Danny\Downloads\sopcast.nl.zip deleted
C:\Users\Danny\Downloads\SopCast.zip deleted
C:\Users\Danny\Downloads\FreeYouTubeToMP3Converter (1).exe deleted
C:\Users\Danny\Downloads\FreeYouTubeToMP3Converter.exe deleted
C:\Users\Danny\Downloads\SoftonicDownloader_voor_media-player-codec-pack.exe deleted
"C:\Users\Danny\AppData\Local\FilesFrog Update Checker\update_checker.exe" deleted
"C:\Users\Danny\AppData\Local\FilesFrog Update Checker\update_checker.exe" deleted
"C:\Users\Danny\AppData\Local\FilesFrog Update Checker" deleted
"C:\Users\Danny\AppData\Local\FilesFrog Update Checker" deleted

==== Registry Exports ======================

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers]

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem]
@="{217FC9C0-3AEA-1069-A2DB-08002B30309D}"

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing]
@="{40dd6e20-7c17-11ce-a804-00aa003ca9f6}"


==== Registry Exports x64 ======================

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers]

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem]
@="{217FC9C0-3AEA-1069-A2DB-08002B30309D}"

[HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing]
@="{40dd6e20-7c17-11ce-a804-00aa003ca9f6}"


==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2013-11-17 12:16:25	63DC38C3E4564B2405D562855643ABA2	2328872	----a-w-	C:\WINDOWS\explorer.exe
====== C:\Users\Danny\AppData\Local\Temp ====
2013-11-21 17:32:14	B9C125314A025127FE562C116D614AA3	178824	----a-r-	C:\Users\Danny\AppData\Local\Temp\ose00001.exe
2013-11-19 16:48:24	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Danny\AppData\Local\Temp\SDIAG_d44d8177-17f4-474e-babf-c0820a10ba9b\NetworkDiagnosticSnapIn.dll
2013-11-19 16:48:24	4880D520A552D60E4D5754F6FBA7DA04	489472	----a-w-	C:\Users\Danny\AppData\Local\Temp\SDIAG_d44d8177-17f4-474e-babf-c0820a10ba9b\DiagPackage.dll
2013-11-19 13:21:50	74529599302A2E09C30B1E119A0709F2	495616	----a-w-	C:\Users\Danny\AppData\Local\Temp\gm_ttt_28074\D3DX8.dll
2013-11-19 13:20:05	74529599302A2E09C30B1E119A0709F2	495616	----a-w-	C:\Users\Danny\AppData\Local\Temp\gm_ttt_11054\D3DX8.dll
2013-11-16 12:47:10	EDA1A511E37D5E19E4B12C080CA32299	56	----a-w-	C:\Users\Danny\AppData\Local\Temp\aef5f3784ac4565ade85cc96c98ef640.dll
====== Java Cache =====
2013-11-07 17:36:50	FCE549C95F3578DF675773341880E2EF	104	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\2c0614c1-2ad67254
2013-11-09 23:35:05	7764F02FB823BF9DD334F9F4D935D00A	107	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\70c1126c-6.0.lap
2013-11-09 23:35:12	D41F3BBA3B6E699FD31957B5209C278F	354733	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\e729e45-59388003
2013-11-07 17:36:43	C94F6A86D98292770538D10147FA7902	360111	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4a185bb9-1552c3f6
2013-11-07 17:36:39	6FF38CF93B16BB0FA30691D5DD9A39BD	107	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\7ef0c306-6.0.lap
2013-11-08 15:55:14	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Danny\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-206031e2
====== C:\WINDOWS\SysWOW64 =====
2013-11-17 12:17:40	8844286BBEEDD763B5B2DB17FCC5191A	869888	----a-w-	C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-17 12:17:39	2E04D4A9D9D9033FC7F86FC48F329396	1019392	----a-w-	C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-17 12:17:15	221AF82CFF7C564CDF8395076542FCC3	13925888	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-17 12:17:11	B2A9C7DE96E7325950197C55A25752BA	18642504	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2013-11-17 12:17:09	2BA5F78D9FA6648419DC37C57B97E63B	11674112	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2013-11-17 12:16:37	62DFD59477F536F0E3D52D189828A46B	5769728	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-17 12:16:26	0D3A56CBF44582C016AB158B6DD37B2E	2295808	----a-w-	C:\WINDOWS\SysWOW64\authui.dll
2013-11-17 12:16:24	1A0BC9598E4A58FC84570FFF5A108E58	2065448	----a-w-	C:\WINDOWS\SysWOW64\explorer.exe
2013-11-17 12:16:22	BBFD73042D7CB18120EEE089A9F761EE	920064	----a-w-	C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-17 12:16:21	6D564E0DB29F7B0F1FD8C32047CB8EE0	888832	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-17 12:16:21	0F90ECCA9236B6C975CDC9CC5A2AD6B2	1765376	----a-w-	C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-17 12:16:20	FD3E09530516FAE45770CE19160C238E	883184	----a-w-	C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-17 12:16:19	114112D58BCC7D7BAFF68F94B9FD8D1D	700928	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-17 12:16:17	38D43612113011DCC587358497D92565	380656	----a-w-	C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-17 12:16:14	B909E02E709783E93109F5545C472A57	578952	----a-w-	C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-17 12:16:14	9145137B066F1C64B50C2536D73684FB	411648	----a-w-	C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-17 12:16:13	D736E64AE79B7650CCFD03F9B7EB1311	1036288	----a-w-	C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-17 12:16:13	37D9911C0FFC4E234AF3E5F169FF96A2	762368	----a-w-	C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-17 12:16:12	D85F310B0871AF13961D1C9A9695D756	1799944	----a-w-	C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-17 12:16:10	C72456BFFE941714CF05B0AA0BEE5B45	1362944	----a-w-	C:\WINDOWS\SysWOW64\user32.dll
2013-11-17 12:16:09	A973AAC70312A0ABA7801BA4E38B96D7	531968	----a-w-	C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-17 12:16:09	6EE7AF5DFD9132C9E70799AEF33BCDC9	1204968	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2013-11-17 12:16:07	B9562F200149C64CC53D47F969CEA6C3	518656	----a-w-	C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-17 12:16:04	2B9EED6835D269F35B310DC03D0F5768	492544	----a-w-	C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-17 12:16:03	E22EBD8C920B50166BB5F63694FCD247	3934208	----a-w-	C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-17 12:16:02	1202D1D41A6759EC8FD51DC9606BEED3	795648	----a-w-	C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-17 12:16:01	4DDA7D0CB7A973D0E096291D26A6E327	345552	----a-w-	C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-17 12:16:00	88028A645052327CE652A4CFCA16DBC9	618496	----a-w-	C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-17 12:15:59	F093C6F81029B71569D635CF68DF9C12	88272	----a-w-	C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-17 12:15:58	E947B141DAAC7CBCD7C59FE2E63AFBBE	235960	----a-w-	C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-17 12:15:58	E0A9E2538A01364FBA8D180FD476FCC0	326024	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-17 12:15:58	2BBDCCE6D6A7E1C9EBD5F8F829EF8B56	262144	----a-w-	C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-17 12:15:52	8595ACB5733FBA300923CCEFA2DC3199	1816576	----a-w-	C:\WINDOWS\SysWOW64\Display.dll
2013-11-17 12:15:51	C3066BB3A02BC393816DA1242C7B5286	94208	----a-w-	C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-17 12:15:50	36386EFA02920DDDC8F15EB7308C6389	245248	----a-w-	C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-17 12:15:50	28EDCDEBD23649FBE9627A5CA13B57C2	272896	----a-w-	C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-17 12:15:50	0105603930454CADA61455FCF947802B	93184	----a-w-	C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-17 12:15:48	1192C2CE6103199AE09A03910CB5BE65	49152	----a-w-	C:\WINDOWS\SysWOW64\ftp.exe
2013-11-17 12:15:45	548BA6942842C6A1E8B6A8BCFF04104F	621056	----a-w-	C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-17 12:15:45	1FAAE696643867D549BAB66569040CEF	180224	----a-w-	C:\WINDOWS\SysWOW64\miutils.dll
2013-11-17 12:15:44	7AFFA3BF4D9EA756A697092A5C8A43D3	139776	----a-w-	C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-13 15:12:52	E46E5AC5AFF7DB8E39E2405AD6083138	1067008	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-13 15:12:48	1BF4D63F64A93C92D93626861B40A893	11220992	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-13 15:12:45	18D13DC350A489EC064BFCB7B39F1133	2166272	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-13 15:12:44	549C0229BF2DFB5F894F7CFF2D11D39E	17142784	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-13 15:12:42	C4B881E55ECB7D488BE31BFFD9E09163	1156608	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-13 15:12:42	BA81B0D173CB9427E2F85E6BEAC60019	1926656	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-13 15:12:41	7B00072712B0BEB6D186EDD18D2352F1	4240384	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-13 15:12:38	6967E1230FD9C6B959D54A542E12F2D4	1818112	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2013-11-13 15:12:29	9FAC7693213C54B25D0DC48BC20686CF	1581968	----a-w-	C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-13 15:12:16	BF576E866F0C70F0A6C7CA5BF28EC89A	2724864	----a-w-	C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-12 13:24:42	AB412429F1E5FB9708A8CDEA07479099	152848	----a-w-	C:\WINDOWS\SysWOW64\comdlg32.ocx
2013-11-12 10:57:11	7286412B479FE399BC94AFFB9A85BA55	1332224	----a-w-	C:\WINDOWS\SysWOW64\SYNSOEMU.DLL
2013-11-12 10:35:58	72FB00BE9AE93D7F445ACBBAAE43EFB1	1431552	----a-w-	C:\WINDOWS\SysWOW64\rewire.dll
2013-11-12 10:35:13	9033DAF3277F0498BC86C8D4566C25CE	1554944	----a-w-	C:\WINDOWS\SysWOW64\vorbis.acm
2013-11-09 15:51:13	24E455DD1CCE07253AAE04D9EAC5F725	217176	----a-w-	C:\WINDOWS\SysWOW64\unrar.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2013-11-17 12:17:41	202016CEE2780960BD0146626FB5E9F6	2801664	----a-w-	C:\WINDOWS\Sysnative\actxprxy.dll
2013-11-17 12:17:40	D8E54AB89C84C0AD065EE0BDEBD50A99	1085952	----a-w-	C:\WINDOWS\Sysnative\twinui.appcore.dll
2013-11-17 12:17:23	5AEAEBC2008E70130A02AEB5B5D975DE	18577408	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2013-11-17 12:17:19	4115E21B08D3E9E824742C70D28AF578	21196664	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2013-11-17 12:17:12	65726768EC568B79B3F6C7BD0470C674	13176320	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2013-11-17 12:16:49	3671C668670626DAB0D47B44F65F0489	3395920	----a-w-	C:\WINDOWS\Sysnative\WSService.dll
2013-11-17 12:16:41	FA99668250FC258E869C307CB000E783	6639616	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2013-11-17 12:16:38	031FDCB504035477EB4371B93A3CB8B5	7399256	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2013-11-17 12:16:36	86D0BF4F792053A50D6EE43DFA5837A5	3532288	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2013-11-17 12:16:34	DD907AAF2D836FBD2EA385BFE09E649C	4190720	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2013-11-17 12:16:34	7C2ECA68A85619FD2F67053B5E50F841	2570240	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2013-11-17 12:16:32	35FED7D1BF31FEE2CA86FA1E8AFDCD07	4104704	----a-w-	C:\WINDOWS\Sysnative\SyncEngine.dll
2013-11-17 12:16:31	A0735B7FC9C83A2980CB4030D2DE518C	2143744	----a-w-	C:\WINDOWS\Sysnative\dwmcore.dll
2013-11-17 12:16:30	B85C39177C9C30302D8A964C1AD87332	2617344	----a-w-	C:\WINDOWS\Sysnative\authui.dll
2013-11-17 12:16:30	27334B4E29DC8E26FF86E0F075A6CED5	1302528	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentServer.dll
2013-11-17 12:16:26	50327A0EC7B57B998A7EC6D03096EA14	1231360	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2013-11-17 12:16:25	03CC7C6D00212DF6D6CB5C93432410ED	1147904	----a-w-	C:\WINDOWS\Sysnative\UIAutomationCore.dll
2013-11-17 12:16:24	E178371E493BF17EB90FE71ABA8BE643	1584128	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2013-11-17 12:16:23	222D5E0C79E9C87EF0C4D02651EE765A	1067080	----a-w-	C:\WINDOWS\Sysnative\mfasfsrcsnk.dll
2013-11-17 12:16:19	CF1522282320F35642EBF37129881690	481392	----a-w-	C:\WINDOWS\Sysnative\mfsvr.dll
2013-11-17 12:16:19	B953A10B98ED83C2EF7C7D9153F18924	578560	----a-w-	C:\WINDOWS\Sysnative\Windows.Networking.BackgroundTransfer.dll
2013-11-17 12:16:19	98154A58163C4E3E81CE1FA7899F84FD	839680	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2013-11-17 12:16:18	14D3EDC750DAA89D322743781755314C	2134120	----a-w-	C:\WINDOWS\Sysnative\d3d9.dll
2013-11-17 12:16:18	142F612FE5988CBDAEF4DA16E38BD080	1287064	----a-w-	C:\WINDOWS\Sysnative\kernel32.dll
2013-11-17 12:16:17	0FC25089426F313B1B271FEDCB0814DB	699840	----a-w-	C:\WINDOWS\Sysnative\d3d10level9.dll
2013-11-17 12:16:16	A8AA0F50CE95FCD1CB9588DB0A961D98	1160704	----a-w-	C:\WINDOWS\Sysnative\Windows.Web.Http.dll
2013-11-17 12:16:16	6524AFF3C0B7C7122761CC2B3A4BFCE1	4599808	----a-w-	C:\WINDOWS\Sysnative\d2d1.dll
2013-11-17 12:16:15	357CA2292B2FA07F24A43C7CE35BE133	1399176	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2013-11-17 12:16:13	3EF08DE79AD172BFFF302E4B925D38D6	1373872	----a-w-	C:\WINDOWS\Sysnative\wmpmde.dll
2013-11-17 12:16:12	66A4E31B7F095ED862711B7152665EAC	708616	----a-w-	C:\WINDOWS\Sysnative\iuilp.dll
2013-11-17 12:16:12	1503510900836FA6A0E4FE9662FE0768	1011712	----a-w-	C:\WINDOWS\Sysnative\TSWorkspace.dll
2013-11-17 12:16:11	5A2020DDCCBB0ED08BAC2355A075F303	656384	----a-w-	C:\WINDOWS\Sysnative\dnsapi.dll
2013-11-17 12:16:11	4B964AE0DF433A3BFA7BD24713BC2E9B	533504	----a-w-	C:\WINDOWS\Sysnative\AppReadiness.dll
2013-11-17 12:16:10	0E8B08C379A79A78678D5045E4A68753	761856	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2013-11-17 12:16:09	7B5D275FBCFEBFC9960638F391CD4278	631296	----a-w-	C:\WINDOWS\Sysnative\WWAHost.exe
2013-11-17 12:16:08	7F9AEC82D7480068C6D444D4FD8FB36F	331776	----a-w-	C:\WINDOWS\Sysnative\eapphost.dll
2013-11-17 12:16:06	B227B28707B399E6B0A60219D30E9C4A	31064	----a-w-	C:\WINDOWS\Sysnative\ploptin.dll
2013-11-17 12:16:05	2BEF4B9C1CD2E090C97C0937B859C0E7	171864	----a-w-	C:\WINDOWS\Sysnative\kd_02_8086.dll
2013-11-17 12:16:04	DB5F0DFF669AB88296134F82258AEFB8	465960	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2013-11-17 12:16:04	D920A92D7F103F7C424A16FBEF0AA790	391512	----a-w-	C:\WINDOWS\Sysnative\tsmf.dll
2013-11-17 12:16:03	8ACE1F60D8C4E8209F25BF945A828D96	607744	----a-w-	C:\WINDOWS\Sysnative\comdlg32.dll
2013-11-17 12:16:03	12BF0E1F71E2EA1A52B5D1723F87BD16	325120	----a-w-	C:\WINDOWS\Sysnative\eapp3hst.dll
2013-11-17 12:16:02	ABDD2AAA3C3842492FF11D68421D7648	558080	----a-w-	C:\WINDOWS\Sysnative\apphelp.dll
2013-11-17 12:16:01	79B12F62E3CE142AF98BD0535097055F	134656	----a-w-	C:\WINDOWS\Sysnative\psmsrv.dll
2013-11-17 12:16:01	05579A2C16277280E0FAD02245B80C2D	317616	----a-w-	C:\WINDOWS\Sysnative\wintrust.dll
2013-11-17 12:15:59	C5817E2699AA8048FD4D3869EE9A3CC0	104320	----a-w-	C:\WINDOWS\Sysnative\ncryptsslp.dll
2013-11-17 12:15:59	8513A1E7AE4B9DC82C4B4F432C648A58	221184	----a-w-	C:\WINDOWS\Sysnative\profsvc.dll
2013-11-17 12:15:59	4EFC6306A619F49A95FB83538C812461	286208	----a-w-	C:\WINDOWS\Sysnative\pcsvDevice.dll
2013-11-17 12:15:58	CA56145B0F1FA54FA21C2E0A7AC9C119	132608	----a-w-	C:\WINDOWS\Sysnative\msched.dll
2013-11-17 12:15:57	C0F957C92D21EE003BF57DB6B8E77FE5	830464	----a-w-	C:\WINDOWS\Sysnative\samsrv.dll
2013-11-17 12:15:56	DFC4050D58565ADBEE793A8D4AEBDAE6	903168	----a-w-	C:\WINDOWS\Sysnative\iphlpsvc.dll
2013-11-17 12:15:55	F4414F57DF2CECB8FC969AA43A6B0D50	433664	----a-w-	C:\WINDOWS\Sysnative\ipnathlp.dll
2013-11-17 12:15:55	63CB763FE4CEADFFF5F047332814E8F9	44936	----a-w-	C:\WINDOWS\Sysnative\wldp.dll
2013-11-17 12:15:54	79754331FCCAA3AA9A23EA7A266034B6	92672	----a-w-	C:\WINDOWS\Sysnative\dafBth.dll
2013-11-17 12:15:54	2F5076AA4F8195B0ED7D448EDC763D86	83968	----a-w-	C:\WINDOWS\Sysnative\TSWbPrxy.exe
2013-11-17 12:15:54	1D30B15A3296AD6C2DB4EB7F3DD5DD4D	54776	----a-w-	C:\WINDOWS\Sysnative\wuauclt.exe
2013-11-17 12:15:53	D29F7CECF329E71D0ADCA5A92CB919CB	1843712	----a-w-	C:\WINDOWS\Sysnative\Display.dll
2013-11-17 12:15:53	D2096B322A5F8D9354B61B4BFDFA7132	385528	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2013-11-17 12:15:53	BA37610D1CF1FBDEC0D0A7BC848A6C1C	184832	----a-w-	C:\WINDOWS\Sysnative\dafWfdProvider.dll
2013-11-17 12:15:53	3685882880A2F60671F727433CE4DA99	113152	----a-w-	C:\WINDOWS\Sysnative\shsetup.dll
2013-11-17 12:15:53	0208D2B1B21C4F7BCC8A91537045B82D	381952	----a-w-	C:\WINDOWS\Sysnative\WUSettingsProvider.dll
2013-11-17 12:15:52	5BAF7714E68F93515A937A3FA8587EF9	255488	----a-w-	C:\WINDOWS\Sysnative\dnsrslvr.dll
2013-11-17 12:15:52	0F825842DC6EC2B6D4F65107B96585D8	922624	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll
2013-11-17 12:15:51	9F309FB487DBA2D53EEC8418029D1784	103424	----a-w-	C:\WINDOWS\Sysnative\WiFiDisplay.dll
2013-11-17 12:15:51	5C8EE485EF4AEA9BCECD36A46599E5C9	335360	----a-w-	C:\WINDOWS\Sysnative\eappcfg.dll
2013-11-17 12:15:50	053445AED2A855477496965B8EA16A6B	101888	----a-w-	C:\WINDOWS\Sysnative\eappgnui.dll
2013-11-17 12:15:48	5DCC1BAB9A9DB133274082488F7A0F53	186880	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2013-11-17 12:15:47	FA196834A5350CDA7A5C3D02D3758E31	1704448	----a-w-	C:\WINDOWS\Sysnative\wucltux.dll
2013-11-17 12:15:46	504092E4BA97FCEB53912BB6CD156547	53248	----a-w-	C:\WINDOWS\Sysnative\ftp.exe
2013-11-17 12:15:46	4082B1F66087FC1D8B4759569A194391	338944	----a-w-	C:\WINDOWS\Sysnative\rdpclip.exe
2013-11-17 12:15:46	285F776B002DA6E3FEE357022A54413A	909312	----a-w-	C:\WINDOWS\Sysnative\MrmCoreR.dll
2013-11-17 12:15:45	E8E50E7703204AE06C6B5FEFE2F701E7	226304	----a-w-	C:\WINDOWS\Sysnative\miutils.dll
2013-11-17 12:15:44	8744BDDA941E77B6402C91D220EFD4F9	160768	----a-w-	C:\WINDOWS\Sysnative\AppxAllUserStore.dll
2013-11-14 15:52:15	971BCACC7310DB7B8373F6D6DD5B956F	82896128	----a-w-	C:\WINDOWS\Sysnative\MRT.exe
2013-11-13 15:12:51	C49981A2AD6B2793891075FD514F5728	1341288	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2013-11-13 15:12:50	B82255670D270B75D2D2F0F8747D1443	1104384	----a-w-	C:\WINDOWS\Sysnative\IKEEXT.DLL
2013-11-13 15:12:50	6468B696C65775D51A06615830E0E79D	828416	----a-w-	C:\WINDOWS\Sysnative\BFE.DLL
2013-11-13 15:12:47	A8C72BE420E16ADB3DAA9F34EF07E1B9	12995584	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2013-11-13 15:12:46	F87169781690F9E1E9AD463DAA4473B6	23212544	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2013-11-13 15:12:45	EA843F9DB5AF77B3A7451867626F98C4	2764288	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2013-11-13 15:12:42	FD6CD22DD3D9E645B4EC05AA153DE74B	1394176	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2013-11-13 15:12:42	F48C144251B36850B67AB8E6D9E20E92	111616	----a-w-	C:\WINDOWS\Sysnative\ieetwcollector.exe
2013-11-13 15:12:41	D183F580BE2A25ABDF873220A981EAA9	218624	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2013-11-13 15:12:41	36C82F163B734E35D23B66903299AC4F	1993728	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2013-11-13 15:12:40	EECBA2BB0E95F2DFD44F3D2B441A3FF4	5765120	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2013-11-13 15:12:40	92E05214CC073A85CEDFF9BD4966F96B	2332160	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2013-11-13 15:12:30	6EFAF0D87291F9FBD7C0ED3BD56511AA	1943536	----a-w-	C:\WINDOWS\Sysnative\crypt32.dll
2013-11-13 15:12:14	C56EF94A5E1C20BF4B8AA6698642886F	2724864	----a-w-	C:\WINDOWS\Sysnative\mshtml.tlb
2013-11-09 15:51:13	DE91B46904C6AD1FEC7B34C98B4E852B	256088	----a-w-	C:\WINDOWS\Sysnative\unrar64.dll
2013-11-08 15:44:17	DFE3AD07E87194DD7F10C8C10E64B5AA	535552	----a-w-	C:\WINDOWS\Sysnative\ensppui.dll
2013-11-08 15:44:17	DFE3AD07E87194DD7F10C8C10E64B5AA	535552	----a-w-	C:\WINDOWS\Sysnative\enppui.dll
2013-11-08 15:44:17	74984FC408BF5BB10A0660B321E4BC5D	219648	----a-w-	C:\WINDOWS\Sysnative\enspres.dll
2013-11-08 15:44:17	74984FC408BF5BB10A0660B321E4BC5D	219648	----a-w-	C:\WINDOWS\Sysnative\enpres.dll
2013-11-08 15:44:17	01E0D3508E6E6F4497A242BE8DDBCC14	558592	----a-w-	C:\WINDOWS\Sysnative\ensppmon.dll
2013-11-08 15:44:17	01E0D3508E6E6F4497A242BE8DDBCC14	558592	----a-w-	C:\WINDOWS\Sysnative\enppmon.dll
====== C:\WINDOWS\Sysnative\drivers =====
2013-11-17 12:16:33	6617F44D2432C529B2249A0498B6B40A	2551640	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2013-11-17 12:16:32	DA8E85F1BE0C9B7D2EE2949248A389D8	1530200	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2013-11-17 12:16:07	3D30878A269D934100FA5F972E53AF39	523096	----a-w-	C:\WINDOWS\Sysnative\drivers\acpi.sys
2013-11-17 12:16:00	2B78788A1485F9B99A578A299DF42C02	454656	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2013-11-17 12:15:58	8A2F723010B77C79898836784032BFF7	371032	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2013-11-17 12:15:57	433ECDE01A52691FA7ACA51C10C09B70	155480	----a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2013-11-17 12:15:56	847C6A08912C3515807049C93E526D65	258904	----a-w-	C:\WINDOWS\Sysnative\drivers\rdyboost.sys
2013-11-17 12:15:55	6B06E2D11E604BE2B1A406C4CB3B90DE	57176	----a-w-	C:\WINDOWS\Sysnative\drivers\stornvme.sys
2013-11-17 12:15:54	C1A9592EE57C6FF0A0904B9DFD55942D	39768	----a-w-	C:\WINDOWS\Sysnative\drivers\intelpep.sys
2013-11-17 12:15:54	53AA1CD1740BDE110EB22CD8C05F615F	325464	----a-w-	C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS
2013-11-13 15:12:50	2E3E82D7B1076B90F4E228A8EF17B261	136536	----a-w-	C:\WINDOWS\Sysnative\drivers\wfplwfs.sys
2013-11-07 16:13:03	CB32F01890953A2FEE8FE01F289DF726	223232	----a-w-	C:\WINDOWS\Sysnative\drivers\hw_quusbmdm.sys
2013-11-07 16:13:03	7920776AB1C59BD6EC70424952CC5FD4	116864	----a-w-	C:\WINDOWS\Sysnative\drivers\hw_usbdev.sys
2013-11-07 00:52:44	8C44E6B688790E2AD3846C97661C54F1	5363200	----a-w-	C:\WINDOWS\Sysnative\drivers\igdkmd64.sys
2013-10-27 23:57:26	6132F1E4315B435ECE3C79394123A155	1533512	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFUpdate_01007.dll
2013-10-27 23:57:26	4D96BEFF088BA6AB48FD3775F87C3438	708168	----a-w-	C:\WINDOWS\Sysnative\drivers\WinUSBCoInstaller.dll
2013-10-27 23:57:26	0E9AD2D3784A0996A5131512939C09C0	1490656	----a-w-	C:\WINDOWS\Sysnative\drivers\WdfCoInstaller01007.dll
====== C:\WINDOWS\Tasks ======
2013-11-22 15:07:00	B5C487BA85097E0065221C9878F70C92	4954	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft Office 15 Sync Maintenance for PCDANNY-Danny PCDanny
2013-11-21 18:46:55	A1BFD1D9F7AFBD11284B6603A623EE6E	3758	----a-w-	C:\WINDOWS\Sysnative\Tasks\AutoKMS
2013-11-13 15:08:37	5A97FC4C7F3B6D82586EFDD5364753FA	3924	----a-w-	C:\WINDOWS\Sysnative\Tasks\avast! Emergency Update
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2013-11-22 11:48:39	--------	d-----w-	C:\Program Files\Microsoft.NET
2013-11-21 17:42:47	--------	d-----w-	C:\Program Files\Common Files\DESIGNER
2013-11-21 17:37:03	--------	d-----w-	C:\Program Files\Microsoft SQL Server
2013-11-21 17:33:14	--------	d-----w-	C:\Program Files\Microsoft Analysis Services
2013-11-12 10:35:22	--------	d-----w-	C:\Program Files\Image-Line
2013-11-08 15:44:16	--------	d-----w-	C:\Program Files\EpsonNet
2013-11-02 14:49:13	--------	d-----w-	C:\Program Files\Microsoft Silverlight
2013-11-01 15:00:19	--------	d-----w-	C:\Program Files\CamStudio 2.7
2013-10-31 18:46:20	--------	d-----w-	C:\Program Files\astragon
======= C:\PROGRA~2 =====
2013-11-22 15:09:50	--------	d-----w-	C:\PROGRA~2\Trend Micro
2013-11-21 17:40:48	--------	d-----w-	C:\PROGRA~2\Microsoft SQL Server
2013-11-21 17:33:14	--------	d-----w-	C:\PROGRA~2\Microsoft Analysis Services
2013-11-21 17:32:56	--------	d-----w-	C:\PROGRA~2\Microsoft Office
2013-11-13 18:06:36	--------	d-----w-	C:\PROGRA~2\Mozilla Maintenance Service
2013-11-12 13:24:42	--------	d-----w-	C:\PROGRA~2\CoverPro
2013-11-12 13:17:37	--------	d-----w-	C:\PROGRA~2\Easy Cover Print
2013-11-12 13:16:07	--------	d-----w-	C:\PROGRA~2\Ashampoo
2013-11-12 10:57:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\Digidesign
2013-11-12 10:36:06	--------	d-----w-	C:\PROGRA~2\ASIO4ALL v2
2013-11-12 10:35:58	--------	d-----w-	C:\PROGRA~2\Vstplugins
2013-11-12 10:35:04	--------	d-----w-	C:\PROGRA~2\DSPRobotics
2013-11-12 10:30:56	--------	d-----w-	C:\PROGRA~2\Image-Line
2013-11-09 15:51:00	--------	d-----w-	C:\PROGRA~2\K-Lite Codec Pack
2013-11-08 15:44:15	--------	d--h--w-	C:\PROGRA~2\InstallShield Installation Information
2013-11-08 15:43:20	--------	d-----w-	C:\PROGRA~2\COMMON~1\EPSON
2013-11-08 15:42:57	--------	d-----w-	C:\PROGRA~2\epson
2013-11-08 15:41:30	--------	d-----w-	C:\PROGRA~2\setup
2013-11-07 17:36:49	--------	d-----w-	C:\PROGRA~2\SystemRequirementsLab
2013-11-07 17:36:25	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2013-11-07 17:36:06	--------	d-----w-	C:\PROGRA~2\Java
2013-11-07 14:15:54	--------	d-----w-	C:\PROGRA~2\Intel
2013-11-06 13:05:12	--------	d-----w-	C:\PROGRA~2\YouTube to MP3 Converter
2013-11-02 14:49:12	--------	d-----w-	C:\PROGRA~2\Microsoft Silverlight
2013-11-01 15:32:39	--------	d-----w-	C:\PROGRA~2\Sony
2013-10-28 00:07:34	--------	d-----w-	C:\PROGRA~2\Unlockroot Pro
2013-10-27 23:57:19	--------	d-----w-	C:\PROGRA~2\Handset WinDriver
2013-10-27 23:53:40	--------	d-----w-	C:\PROGRA~2\Unlockroot
======= C: =====
====== C:\Users\Danny\AppData\Roaming ======
2013-11-21 17:32:16	--------	d-----w-	C:\Users\Danny\AppData\Roaming\BitTorrent
2013-11-19 16:49:59	--------	d-----w-	C:\Users\Danny\AppData\Local\Diagnostics
2013-11-13 18:06:46	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Mozilla
2013-11-13 18:06:46	--------	d-----w-	C:\Users\Danny\AppData\Local\Mozilla
2013-11-12 13:17:37	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Easy Cover Print
2013-11-12 13:16:20	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Ashampoo
2013-11-12 13:16:13	--------	d-----w-	C:\Users\Danny\AppData\Local\ashampoo
2013-11-12 10:36:06	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2013-11-12 10:35:26	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Image-Line
2013-11-12 10:35:25	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2013-11-12 10:35:05	--------	d-----w-	C:\Users\Danny\AppData\Roaming\FlowStone
2013-11-07 17:34:58	--------	d-----w-	C:\Users\Danny\AppData\Locallow\Sun
2013-11-06 13:05:16	--------	d-----w-	C:\Users\Danny\AppData\Local\YouTube to MP3 Converter
2013-11-06 11:25:06	--------	d-----w-	C:\Users\Danny\AppData\Local\Chromium
2013-11-06 11:22:41	--------	d-----w-	C:\Users\Danny\AppData\Local\Sports Interactive
2013-11-01 15:32:40	--------	d-----w-	C:\Users\Danny\AppData\Local\Sony
2013-11-01 15:31:41	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Sony
2013-11-01 15:12:24	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Mirillis
2013-11-01 15:12:19	--------	d-----w-	C:\Users\Danny\AppData\Local\Mirillis
2013-11-01 15:08:01	4B471843E34506362745E8D5D5749C2B	4546	----a-w-	C:\Users\Danny\AppData\Roaming\CamStudio.cfg
2013-11-01 15:00:35	9E3D46FEA2CB93CF7CBA1E216DC5E68A	96	----a-w-	C:\Users\Danny\AppData\Roaming\version2.xml
2013-10-31 19:32:12	--------	d-----w-	C:\Users\Danny\AppData\Local\European Bus Simulator 2012
2013-10-28 00:15:29	--------	d-----w-	C:\Users\Danny\AppData\Roaming\mgyun
2013-10-28 00:07:38	--------	d-----w-	C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UnlockRoot Pro
2013-10-26 20:02:35	--------	d-----w-	C:\Users\Danny\AppData\Roaming\.ACEStream
2013-10-26 20:01:56	--------	d-----w-	C:\Users\Danny\AppData\Roaming\ACEStream
====== C:\Users\Danny ======
2013-11-22 15:25:05	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\winhttp
2013-11-21 17:44:22	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2013-11-13 18:06:38	--------	d-----w-	C:\ProgramData\Mozilla
2013-11-13 18:05:53	903B1F210485F680B7B4AFDCFD06F3B1	283112	----a-w-	C:\Users\Danny\Downloads\Firefox Setup Stub 25.0.exe
2013-11-13 15:03:27	--------	d---a-r-	C:\Users\Danny\SkyDrive
2013-11-12 19:16:30	01C73A1FE2F55C2B341333EC8EE45D8B	6013024	----a-w-	C:\Users\Danny\Downloads\GyazoSetup (3).exe
2013-11-12 13:24:42	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoverPro
2013-11-12 13:24:10	76A6E4FBEB7301E1111CF7BF1F05756F	1355181	----a-w-	C:\Users\Danny\Downloads\CoverPro_setup.exe
2013-11-12 13:17:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Cover Print
2013-11-12 13:17:01	BF8E6210A4D161DDFD119B88028225FC	542330	----a-w-	C:\Users\Danny\Downloads\easycoverprint.exe
2013-11-12 13:16:12	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2013-11-12 13:16:12	--------	d-----w-	C:\ProgramData\Ashampoo
2013-11-12 10:57:15	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reFX
2013-11-12 10:35:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2013-11-10 18:59:13	5CDA356DA441D13DBB069A408A0BB7B3	3467776	----a-w-	C:\Users\Danny\Downloads\RenameMe.exe
2013-11-09 22:16:48	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2013-11-09 22:14:56	A3E249E9A48809B595687845C430E160	19368272	----a-w-	C:\Users\Danny\Downloads\SKILL_GameforgeLiveSetup.exe
2013-11-09 15:51:26	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2013-11-09 15:46:05	D194BFEB07072C617406A996D6477317	27220726	----a-w-	C:\Users\Danny\Downloads\K-Lite_Codec_Pack_1010_Full.exe
2013-11-08 15:40:09	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2013-11-07 17:36:49	--------	d-----w-	C:\ProgramData\SystemRequirementsLab
2013-11-07 17:36:27	--------	d-----w-	C:\ProgramData\Sun
2013-11-07 17:36:16	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2013-11-07 14:16:27	--------	d-----w-	C:\ProgramData\Intel
2013-11-07 14:16:27	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2013-11-06 13:05:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube to MP3 Converter
2013-11-02 14:49:30	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2013-11-02 12:12:13	--------	d-----w-	C:\ProgramData\Nexon
2013-11-02 12:08:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2013-11-02 11:59:44	--------	d-----w-	C:\ProgramData\NexonUS
2013-11-01 15:33:32	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2013-11-01 15:32:40	--------	d-----w-	C:\ProgramData\Sony
2013-11-01 15:12:24	--------	d-----w-	C:\ProgramData\Mirillis
2013-11-01 15:10:51	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2013-11-01 15:00:23	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2013-10-31 18:55:41	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\European Bus Simulator 2012
2013-10-28 00:15:40	--------	d-----w-	C:\Users\Danny\.android

====== C: exe-files ==
2013-11-22 15:28:20	E092DB6661ECB89108BC61FF298FDAB8	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-3751033221-735151488-1739522443-1001\$I0NC0Z4.exe
2013-11-22 11:38:57	D3305B965C2485080AEA2BBB166B6B9E	254960	----a-w-	C:\Windows\LastGood.Tmp\system32\igfxext.exe
2013-11-22 11:38:55	B60922AFEA5C739300C36162630C4E01	5905904	----a-w-	C:\Windows\LastGood.Tmp\system32\GfxUI.exe
2013-11-22 11:38:55	6B83F535020022E12855904D7EA3F9AC	442352	----a-w-	C:\Windows\LastGood.Tmp\system32\igfxpers.exe
2013-11-22 11:38:54	C79D7F6C0CC1D73CF981E24EE4198B35	172016	----a-w-	C:\Windows\LastGood.Tmp\system32\igfxtray.exe
2013-11-22 11:38:54	8D5F55C120E38DE0F37B0D3641536126	399856	----a-w-	C:\Windows\LastGood.Tmp\system32\hkcmd.exe
2013-11-22 11:38:53	89A637A8C3164F3823E0C4929F11EE9A	279024	----a-w-	C:\Windows\LastGood.Tmp\SysWow64\IntelCpHeciSvc.exe
2013-11-22 11:38:53	42DB259F5389308B599D82984D2F4F87	185840	----a-w-	C:\Windows\LastGood.Tmp\system32\difx64.exe
2013-11-22 11:38:53	2D854F6DC53AC327AB10717169E68677	515568	----a-w-	C:\Windows\LastGood.Tmp\system32\igfxsrvc.exe
2013-11-21 18:46:55	4E8C983215115036C46841FFB51562A1	2820608	----a-w-	C:\Windows\AutoKMS\AutoKMS.exe
2013-11-21 17:33:45	93C754BB404E8B488B50920D65CE9B80	35811328	----a-r-	C:\$Recycle.Bin\S-1-5-21-3751033221-735151488-1739522443-1001\$R0NC0Z4.exe
2013-11-21 17:32:14	B9C125314A025127FE562C116D614AA3	178824	----a-r-	C:\Users\Danny\AppData\Local\Temp\ose00001.exe
2013-11-19 12:52:34	CB0C4B7103F456ADA09531459B555B49	1392480	----a-w-	C:\Program Files (x86)\Opera\18.0.1284.49\opera_crashreporter.exe
2013-11-19 12:52:34	CA921007A4C6B8D63F4CADFE2293BB4B	2457952	----a-w-	C:\Program Files (x86)\Opera\18.0.1284.49\opera_autoupdate.exe
2013-11-19 12:52:30	C0D7BB9DC7556640058393FEAF307C98	73568	----a-w-	C:\Program Files (x86)\Opera\18.0.1284.49\wow_helper.exe
2013-11-19 12:52:30	1100EC3BBAE893351C7D5E01C25F1D21	43702624	----a-w-	C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
2013-11-17 12:16:38	031FDCB504035477EB4371B93A3CB8B5	7399256	----a-w-	C:\Windows\System32\ntoskrnl.exe
2013-11-17 12:16:25	63DC38C3E4564B2405D562855643ABA2	2328872	----a-w-	C:\Windows\explorer.exe
2013-11-17 12:16:09	7B5D275FBCFEBFC9960638F391CD4278	631296	----a-w-	C:\Windows\System32\WWAHost.exe
2013-11-17 12:15:54	2F5076AA4F8195B0ED7D448EDC763D86	83968	----a-w-	C:\Windows\System32\TSWbPrxy.exe
2013-11-17 12:15:54	1D30B15A3296AD6C2DB4EB7F3DD5DD4D	54776	----a-w-	C:\Windows\System32\wuauclt.exe
2013-11-17 12:15:46	504092E4BA97FCEB53912BB6CD156547	53248	----a-w-	C:\Windows\System32\ftp.exe
2013-11-17 12:15:46	4082B1F66087FC1D8B4759569A194391	338944	----a-w-	C:\Windows\System32\rdpclip.exe
2013-11-15 20:47:47	E714A26715478EAC94DEB4514BF68EA2	35300192	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_chrome_installer.exe
2013-11-15 15:47:04	F06EE764FF00B7A049862C8D50D4215D	730976	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_31.0.1650.48_chrome_updater.exe
=== C: other files ==
2013-11-22 11:38:45	690E1FCE66B5F0DB3A00B30E9CC2D617	5361920	----a-w-	C:\Windows\LastGood.Tmp\system32\DRIVERS\igdkmd64.sys
2013-11-17 12:16:34	DD907AAF2D836FBD2EA385BFE09E649C	4190720	----a-w-	C:\Windows\System32\win32k.sys
2013-11-17 12:16:33	6617F44D2432C529B2249A0498B6B40A	2551640	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2013-11-17 12:16:32	DA8E85F1BE0C9B7D2EE2949248A389D8	1530200	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2013-11-17 12:16:07	3D30878A269D934100FA5F972E53AF39	523096	----a-w-	C:\Windows\System32\drivers\acpi.sys
2013-11-17 12:16:00	2B78788A1485F9B99A578A299DF42C02	454656	----a-w-	C:\Windows\System32\drivers\srv.sys
2013-11-17 12:15:58	8A2F723010B77C79898836784032BFF7	371032	----a-w-	C:\Windows\System32\drivers\spaceport.sys
2013-11-17 12:15:57	433ECDE01A52691FA7ACA51C10C09B70	155480	----a-w-	C:\Windows\System32\drivers\usbccgp.sys
2013-11-17 12:15:56	847C6A08912C3515807049C93E526D65	258904	----a-w-	C:\Windows\System32\drivers\rdyboost.sys
2013-11-17 12:15:55	6B06E2D11E604BE2B1A406C4CB3B90DE	57176	----a-w-	C:\Windows\System32\drivers\stornvme.sys
2013-11-17 12:15:54	C1A9592EE57C6FF0A0904B9DFD55942D	39768	----a-w-	C:\Windows\System32\drivers\intelpep.sys
2013-11-17 12:15:54	53AA1CD1740BDE110EB22CD8C05F615F	325464	----a-w-	C:\Windows\System32\drivers\USBXHCI.SYS

==== Folders in C:\ProgramData 0-6 Months Old ======================

2013-08-22 13:36:15	--------	d-s---w-	C:\ProgramData\Microsoft
2013-08-22 14:45:52	--------	d-sh--we	C:\ProgramData\Application Data
2013-08-22 14:45:52	--------	d-sh--we	C:\ProgramData\Desktop
2013-08-22 14:45:52	--------	d-sh--we	C:\ProgramData\Documents
2013-08-22 14:45:52	--------	d-sh--we	C:\ProgramData\Start Menu
2013-08-22 14:45:52	--------	d-sh--we	C:\ProgramData\Templates
2013-08-22 15:36:30	--------	d-----w-	C:\ProgramData\regid.1991-06.com.microsoft
2013-10-17 19:32:54	--------	d-----w-	C:\ProgramData\Skype
2013-10-17 20:24:55	--------	d-----w-	C:\ProgramData\AVAST Software
2013-10-18 14:30:35	--------	d-----w-	C:\ProgramData\DAEMON Tools Lite
2013-10-18 14:34:09	--------	d-----w-	C:\ProgramData\Microsoft Help
2013-10-18 14:36:45	--------	d-----w-	C:\ProgramData\Microsoft Toolkit
2013-10-21 14:22:19	--------	d-----w-	C:\ProgramData\EPSON
2013-11-01 15:12:24	--------	d-----w-	C:\ProgramData\Mirillis
2013-11-01 15:32:40	--------	d-----w-	C:\ProgramData\Sony
2013-11-02 11:59:44	--------	d-----w-	C:\ProgramData\NexonUS
2013-11-02 12:12:13	--------	d-----w-	C:\ProgramData\Nexon
2013-11-07 14:16:27	--------	d-----w-	C:\ProgramData\Intel
2013-11-07 17:36:27	--------	d-----w-	C:\ProgramData\Sun
2013-11-07 17:36:49	--------	d-----w-	C:\ProgramData\SystemRequirementsLab
2013-11-12 13:16:12	--------	d-----w-	C:\ProgramData\Ashampoo
2013-11-13 18:06:38	--------	d-----w-	C:\ProgramData\Mozilla

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [17-10-2013 21:26]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"magicplayer@torrentstream.org"="C:\Users\Danny\AppData\Roaming\ACEStream\extensions\firefox\magicplayer@torrentstream.org" [12-11-2013 10:51]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\uxmk3h6m.default
6D657ABADF217DBB17CF0A0AF44A7E29	- C:\ProgramData\NexonUS\NGM\npNxGameUS.dll -	Nexon Game Controller
C694F47FB5870679B9C0D8D4BE97556B	- C:\Users\Danny\AppData\Roaming\ACEStream\player\npace_plugin.dll -	Ace Stream P2P Multimedia Plug-in
4BF70B35B943BD73BD6E13EB7C1BA4B3	- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll -	Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[17-10-2013 21:26]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
kpckgflgdapkpabemgkielbefdildaio - C:\Users\Danny\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx[10-10-2013 10:53]

Google Docs - Danny - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Danny - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Danny - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Danny - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast Online Security - Danny - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Windows Media Player Extension for HTML5 - Danny - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak
Magic Player - Danny - Default\Extensions\kpckgflgdapkpabemgkielbefdildaio
Google Wallet - Danny - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Danny - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Danny\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Danny\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Danny\AppData\Local\Mozilla\Firefox\Profiles\uxmk3h6m.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Danny\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 22-11-2013 at 16:50:05,29 ======================