Zoek.exe v5.0.0.0 Updated 29-11-2014
Tool run by Rien on zo 30-11-2014 at 13:02:27,01.
Microsoft Windows 8.1 Pro 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Rien\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2014-11-29-132834.log	77603 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Users\Rien\Desktop\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\WINDOWS\SysWOW64\cmd.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files (x86)\WiseEnhance not found
C:\PROGRA~2\WiseEnhance not found
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 3953 MB
CPU Info: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
CPU Speed: 2447,8 MHz
Sound Card: Luidsprekers / Hoofdtelefoon (I | 
Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1600 X 900 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Dell Wireless 1704 802.11b/g/n (2,4 GHz) | Realtek PCIe FE Family-controller
CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW SN-208BB
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C:  451,5GB | X:  350,0MB | Y:  12,8GB
Hard Disks - Free: C:  356,6GB | X:  54,0MB | Y:  282,0MB
Manufacturer *: Dell Inc.         
BIOS Info: AT/AT COMPATIBLE |  | DELL   - 2
Time Zone: West-Europa (standaardtijd)
Motherboard *: Dell Inc.          023HTX
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Internet Explorer Version: 11.0.9600.17416 
Sun Java version: 1.8.0_25 (32-bit) 
Sun Java version: 1.8.0_25 (64-bit) 

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\Rien\AppData\Local\Temp ====
====== Java Cache =====
2014-11-30 12:01:01	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\Rien\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-74580b5a
2014-11-30 12:00:51	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Rien\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-2e71a593
2014-11-30 12:00:51	F3071EB9DECC751E84CC01121FD48434	99	----a-w-	C:\Users\Rien\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap
2014-11-30 12:00:50	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Rien\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-2d3c0a52
2014-11-30 12:00:51	34FA8033B50A3F99D3AB8209C72C0ABA	6860	----a-w-	C:\Users\Rien\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-70b6539e
====== C:\WINDOWS\SysWOW64 =====
2014-11-30 12:00:02	A042349B7208BF8BED858B1E9B48B06D	98216	----a-w-	C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-11-29 11:20:02	02E324E880F6E54187A2B3C9F53DD70E	12730880	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-11-29 11:19:53	495B4CA2AF924CE5C08BBC9D5E7E1103	2145472	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2014-11-29 11:19:52	AA3E2CEECFCD89D49FF902ECAD197946	2071552	----a-w-	C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-11-29 11:19:47	69567319D077611FFF5A07BDCDF2A400	889344	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-11-29 11:19:45	E011C6CA6921FAC88F8B163C68E554BF	2410976	----a-w-	C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-11-29 11:19:43	0C666352A0F9C61AB07019D3928463ED	391000	----a-w-	C:\WINDOWS\SysWOW64\netcfgx.dll
2014-11-29 11:19:42	D39BD0DB9D91A4376F759282B2C276AE	1057792	----a-w-	C:\WINDOWS\SysWOW64\printui.dll
2014-11-29 11:19:42	0120A5300040B9A1E459A03B364A74D5	1741824	----a-w-	C:\WINDOWS\SysWOW64\SRH.dll
2014-11-29 11:19:41	3EAE3411A4A492C253A88534209E3045	355800	----a-w-	C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-11-29 11:19:41	190228E527C47A96D9B865F07BF2EC19	889856	----a-w-	C:\WINDOWS\SysWOW64\aclui.dll
2014-11-29 11:19:40	F7A00AA3EA30F2F923C1F8A0DE76A113	180720	----a-w-	C:\WINDOWS\SysWOW64\mftranscode.dll
2014-11-29 11:19:40	B393F30C63DCD1A0D6977A8E27A42A57	707536	----a-w-	C:\WINDOWS\SysWOW64\mfplat.dll
2014-11-29 11:19:40	86A8EEFADBDDA52474456818D76DFAAA	302080	----a-w-	C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-11-29 11:19:40	427A26A303BBF3736B054244EAFFAA4D	439296	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-11-29 11:19:40	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\SysWOW64\locale.nls
2014-11-29 11:19:40	3362D78214C5B0A5CAE9E5C1692FA12B	474112	----a-w-	C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-11-29 11:19:39	FB970EC73EAB710FE1F529C139E258A0	477200	----a-w-	C:\WINDOWS\SysWOW64\SHCore.dll
2014-11-29 11:19:39	9D75171689317D82FBF8B155FCF34AE8	371712	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2014-11-29 11:19:38	6ADEF3CCE9788849FA7F8D28A85B2833	540672	----a-w-	C:\WINDOWS\SysWOW64\comdlg32.dll
2014-11-29 11:19:37	05B976CBCB4ADE4D3F4E75DAD196EECD	313856	----a-w-	C:\WINDOWS\SysWOW64\clusapi.dll
2014-11-29 11:19:35	FEC1F6C1F496944BC40D995957D971CF	1404416	----a-w-	C:\WINDOWS\SysWOW64\storagewmi.dll
2014-11-29 11:19:35	95719EC346E3A9FDD87662BE886EB200	1817088	----a-w-	C:\WINDOWS\SysWOW64\Display.dll
2014-11-29 11:19:35	7BB5166433C5319CED9E8D05A0C5F7E8	230400	----a-w-	C:\WINDOWS\SysWOW64\wlanapi.dll
2014-11-29 11:19:34	19C5844B56BCA187625D2CFA9A7C1144	127544	----a-w-	C:\WINDOWS\SysWOW64\winmmbase.dll
2014-11-29 11:19:34	0F3DF44347B0051D30B23EED12973D8C	210944	----a-w-	C:\WINDOWS\SysWOW64\wisp.dll
2014-11-29 11:19:33	F19F4DF5361132D5E19FBE1A0DCDC80B	335680	----a-w-	C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-11-29 11:19:32	8FC068ACF45786301D04CED5B58A13E3	1319936	----a-w-	C:\WINDOWS\SysWOW64\wsecedit.dll
2014-11-29 11:19:32	704AA3D6466B2070D321C63C99368448	95232	----a-w-	C:\WINDOWS\SysWOW64\AppxSip.dll
2014-11-29 11:19:31	E5FB6044A36E74484DA958AC17FA9504	1290752	----a-w-	C:\WINDOWS\SysWOW64\XpsPrint.dll
2014-11-29 11:19:31	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\WINDOWS\SysWOW64\SndVol.exe
2014-11-29 11:19:31	21A13082B44A898B8DCC54972B2B5C31	128568	----a-w-	C:\WINDOWS\SysWOW64\winmm.dll
2014-11-29 11:19:30	E1F38BF986C7285AB13FB369243A41E0	448000	----a-w-	C:\WINDOWS\SysWOW64\VAN.dll
2014-11-29 11:19:30	42A350B81E0E9A427D7366E1E8BFBADC	198656	----a-w-	C:\WINDOWS\SysWOW64\WebClnt.dll
2014-11-29 11:19:30	2F6410A7641BE1196DC423025F208285	98048	----a-w-	C:\WINDOWS\SysWOW64\dwmapi.dll
2014-11-29 11:19:27	FC36740153F03C81ADA5B5EEF22C8064	1048064	----a-w-	C:\WINDOWS\SysWOW64\gpedit.dll
2014-11-29 11:19:27	DA5AD8EA1331015BCC2FCFB1B7EE4EBC	168960	----a-w-	C:\WINDOWS\SysWOW64\iasnap.dll
2014-11-29 11:19:26	EBA5466233255ADAF7D5501F0CC2B9CF	189016	----a-w-	C:\WINDOWS\SysWOW64\rsaenh.dll
2014-11-29 11:19:26	D32E7F10D61EFF5A26FB806934FB1088	1029632	----a-w-	C:\WINDOWS\SysWOW64\mispace.dll
2014-11-29 11:19:26	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\WINDOWS\SysWOW64\osk.exe
2014-11-29 11:19:25	CB587DCB837D0367B43584855BD22F25	432128	----a-w-	C:\WINDOWS\SysWOW64\Windows.Networking.dll
2014-11-29 11:19:25	0836AC3FEF8E7380D1973E6DB14E31A7	459264	----a-w-	C:\WINDOWS\SysWOW64\SettingSync.dll
2014-11-29 11:19:24	FE166ADB02C1E146005789C17E065143	8192	----a-w-	C:\WINDOWS\SysWOW64\KBDRUM.DLL
2014-11-29 11:19:24	F7CA5639A235A1E2071500B4D1FCC6F8	51200	----a-w-	C:\WINDOWS\SysWOW64\wshbth.dll
2014-11-29 11:19:24	F1FCD3780D71FD21EAA2A42D3A924B1F	832512	----a-w-	C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-11-29 11:19:24	14D03A4F5F0AFCDB93CAFB68B77ACDB6	288768	----a-w-	C:\WINDOWS\SysWOW64\stobject.dll
2014-11-29 11:19:23	8A073508726DE4A69ED702A7A6082808	1351168	----a-w-	C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-11-29 11:19:23	0A6ABB521CDCE96D3A50939CF7964E24	206336	----a-w-	C:\WINDOWS\SysWOW64\powercfg.cpl
2014-11-29 11:19:22	FB38126A24BDC4912C175C4C430E911C	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDRU1.DLL
2014-11-29 11:19:22	A40516F4443996DC92350D6890546E4A	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDYAK.DLL
2014-11-29 11:19:22	44AABDB92C816F112E054FC3523B51E8	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDBASH.DLL
2014-11-29 11:19:22	35D1AA379B4C2873F1DD62EDCA740C19	6656	----a-w-	C:\WINDOWS\SysWOW64\KBDRU.DLL
2014-11-29 11:19:20	594CEF2E9CD8A5BB8310B3844614C127	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTAT.DLL
2014-11-29 11:19:19	7D6731C5BA01769612A3EDC42A7C931B	79872	----a-w-	C:\WINDOWS\SysWOW64\BluetoothApis.dll
2014-11-29 11:19:18	DB46A1A84AEC3A7F0FBA4E20320F3159	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTT102.DLL
2014-11-27 14:25:56	128EC9879D462F89829E663417FE5DBD	710144	----a-w-	C:\WINDOWS\SysWOW64\rpcrt4.dll
2014-11-27 14:24:25	2C01D8EA2B0FA834597FCD96AAAE4F52	406400	----a-w-	C:\WINDOWS\SysWOW64\dxgi.dll
2014-11-27 14:24:06	DBC4D46A7DDC14D1D1ED4B613F9E41A4	1064448	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2014-11-27 14:24:02	DB3ED0BA26D7C598481A23E7D06A370E	2344448	----a-w-	C:\WINDOWS\SysWOW64\Wpc.dll
2014-11-27 14:23:53	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-11-27 14:23:31	949E0E42DAAD0418513B44C31A697CA5	1797896	----a-w-	C:\WINDOWS\SysWOW64\d3d9.dll
2014-11-27 14:23:26	E28501E3A241DDC5DC65382E55661B1D	285696	----a-w-	C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-11-27 14:23:22	EA15CC7B75A2DE287E3B0C266A35490C	235008	----a-w-	C:\WINDOWS\SysWOW64\framedynos.dll
2014-11-27 14:23:22	E4783EB6A6B2D04F3B541B378E843617	229888	----a-w-	C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-11-27 14:23:19	0CCDFED2DFCD4FBA73EE989249379458	52736	----a-w-	C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-11-27 14:23:18	BEA7A26C2C22381B6DD88758352B9D9B	62976	----a-w-	C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-11-27 14:23:18	BA6E52B0D82682EDE4B49D9CCC7D529B	207360	----a-w-	C:\WINDOWS\SysWOW64\framedyn.dll
2014-11-27 14:23:18	57E0A896C38C41C8B5B7F3127F8FD0D9	56320	----a-w-	C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-11-27 14:23:18	4E07710A2C9EA43E7509BF7D0452430E	106496	----a-w-	C:\WINDOWS\SysWOW64\Robocopy.exe
2014-11-27 14:23:16	191B7F25BE13D9F9E56B2B4EA595AC62	11776	----a-w-	C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-11-27 14:22:49	4C48253C6A21CCEBA071B58A5CDF17C1	875688	----a-w-	C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-11-27 14:22:18	575A5C07901F734309AA5E833E55834A	590336	----a-w-	C:\WINDOWS\SysWOW64\gpprefcl.dll
2014-11-27 14:22:17	684CF6A72A8DF7D66D262AC4A6E07845	270848	----a-w-	C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-11-27 13:59:43	79C5F5F1B07576B8CBEF4D94893FCE3E	106976	----a-w-	C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-27 13:59:42	B18F87B3C283054035AD0ABEF6296355	714208	----a-w-	C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-11-25 16:01:21	5F333FDBF392850373C89BDA31EBEC1B	1346048	----a-w-	C:\WINDOWS\SysWOW64\user32.dll
2014-11-25 16:01:18	3B45EA6108E48406828D4E015FF41DD0	12800	----a-w-	C:\WINDOWS\SysWOW64\winshfhc.dll
2014-11-25 16:00:44	3BF6BEBD0A5666BDB426A734A4578D9B	1346048	----a-w-	C:\WINDOWS\SysWOW64\msxml3.dll
2014-11-25 16:00:28	FACBA112943A89FBB8AC25085521924F	344536	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-11-25 16:00:28	22B2920A0857BDD61B1331C30AD76F30	424544	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2014-11-25 16:00:28	0CBA301F325F922FAFB3B83AD3337BB2	370424	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2014-11-25 16:00:25	9F6204775EB03156B430FD095E3D0B5C	325632	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-11-25 16:00:25	971D57DFB6F3FBC98EB74D1AF8E3C13B	76288	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2014-11-25 16:00:25	45CDC0E37774D30BEE8C5F62CE30D599	1042944	----a-w-	C:\WINDOWS\SysWOW64\actxprxy.dll
2014-11-25 16:00:24	A6145F4F8C69C3B46653B1C5E75A7BD6	688640	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2014-11-25 16:00:24	7B0D22C64F9B6A8CD79EFADD29700693	285696	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2014-11-25 16:00:24	027A2CF002AD94399B51C07E855E3B2B	1310208	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2014-11-25 16:00:23	07330241FD9D9A03811DDBDC4F9FD18F	19781632	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2014-11-25 16:00:22	98D83B6B4FBA32C39585D1E07121BEA0	2277376	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2014-11-25 16:00:22	108D84EE2359C595CCEA32820A2D5405	2051072	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-11-25 16:00:21	8FC2FB51EB90E6AA582BDBA39C1935FD	620032	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-11-25 16:00:21	7BCC24D058205664BD700D272B169AEC	418304	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-11-25 16:00:20	154532E0EC2317E6924A9D27F894FF2F	12819456	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2014-11-25 16:00:19	3CA90FDAB95FB2B0D91249BEDE3DE0D9	4298240	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2014-11-25 16:00:18	03D7DF4711B851EF286562F97429211D	1892864	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2014-11-25 16:00:11	F169B03C4B9996708DB20FF0C875B4FF	880128	----a-w-	C:\WINDOWS\SysWOW64\inetcomm.dll
2014-11-25 16:00:11	E855B15E1BE0B58F84843D31F4CC4795	501248	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2014-11-25 16:00:11	1BE74145FDF58734CFE968063533FBEC	708096	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-11-25 16:00:10	FCAF49AE2E10EF3823262D10E7F2D0DE	60416	----a-w-	C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-25 16:00:10	8A88AD059EDC1014D5D6A472A6D1D66C	661504	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2014-11-25 16:00:08	EF7A48E5955736BEECF0B0ABB478E90E	478208	----a-w-	C:\WINDOWS\SysWOW64\ieui.dll
2014-11-25 16:00:07	151E64E5D34DFB95D57B5B97C50DE64D	230400	----a-w-	C:\WINDOWS\SysWOW64\webcheck.dll
2014-11-25 16:00:06	BE5EDCACB9E83C3695F650094367740C	99328	----a-w-	C:\WINDOWS\SysWOW64\hlink.dll
2014-11-25 16:00:06	8DFBD587DBEBBC8EB50AD169DE88C449	340992	----a-w-	C:\WINDOWS\SysWOW64\html.iec
2014-11-25 16:00:05	8A109878FA68DD1A4C91D8D499797E22	128000	----a-w-	C:\WINDOWS\SysWOW64\iepeers.dll
2014-11-25 16:00:05	236AD481F1632F4CE7E9835FFD4AF41D	168960	----a-w-	C:\WINDOWS\SysWOW64\msrating.dll
2014-11-25 16:00:05	1D391C687102569FD1EA154F0C1A4CE8	91136	----a-w-	C:\WINDOWS\SysWOW64\inseng.dll
2014-11-25 16:00:04	FC51834D5057B9D7847666AE88BC981C	130048	----a-w-	C:\WINDOWS\SysWOW64\occache.dll
2014-11-25 16:00:04	ED5A4451A1A2777C6C5DB4238FD09078	115712	----a-w-	C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-11-25 16:00:04	DCFF6E5356CFF5B50BBA0FAAE01A0412	90624	----a-w-	C:\WINDOWS\SysWOW64\iesysprep.dll
2014-11-25 16:00:04	615D259116D1B331911CE28C8CD1CCF3	73216	----a-w-	C:\WINDOWS\SysWOW64\tdc.ocx
2014-11-25 16:00:04	0FEEFF4B96CA5972121F59525142A14E	52736	----a-w-	C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-11-25 16:00:03	F1313045CDCBBC4C90C34AEF67CEE088	112128	----a-w-	C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-11-25 16:00:03	53E15B8DBD615567CA8895D65746C8D3	64000	----a-w-	C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-11-25 16:00:03	159199095C9959BE75E61C0FF947708F	152064	----a-w-	C:\WINDOWS\SysWOW64\iexpress.exe
2014-11-25 16:00:03	02FF387F6228169EDDCB41F5E4B1A4E4	47104	----a-w-	C:\WINDOWS\SysWOW64\jsproxy.dll
2014-11-25 16:00:02	EF7B7299A1D6604AD3CA2CE1BEF8C8F3	30720	----a-w-	C:\WINDOWS\SysWOW64\iernonce.dll
2014-11-25 16:00:02	A66A88FFE53BBB9DDAACE0110A8232EC	137728	----a-w-	C:\WINDOWS\SysWOW64\wextract.exe
2014-11-25 16:00:02	8D1E12756ED6F1FDB026AD3CF264F90C	40448	----a-w-	C:\WINDOWS\SysWOW64\imgutil.dll
2014-11-25 16:00:02	59607FB7C6B84860CE2D1C5F7C57E052	47616	----a-w-	C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-11-25 16:00:02	3C544C566EE7091AC52D4D9156C62687	235520	----a-w-	C:\WINDOWS\SysWOW64\url.dll
2014-11-25 16:00:02	316280CC22CBB15271A91D83CDFB73C3	27136	----a-w-	C:\WINDOWS\SysWOW64\licmgr10.dll
2014-11-25 16:00:02	26F4BDB6EA83011885E217A51A4A3E68	62464	----a-w-	C:\WINDOWS\SysWOW64\iesetup.dll
2014-11-25 16:00:02	0812A503FF349D1DCEEB820B2E4FEE15	57344	----a-w-	C:\WINDOWS\SysWOW64\pngfilt.dll
2014-11-25 16:00:00	3FA76B67F25D84B3C2A4E8A8C0919E6E	12800	----a-w-	C:\WINDOWS\SysWOW64\mshta.exe
2014-11-25 16:00:00	1BD4CD20A25B4A3A5F7BAAC25E9D9202	11264	----a-w-	C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-11-25 15:59:10	BC426A818B7F3DB5F509BC1B62FF1501	357376	----a-w-	C:\WINDOWS\SysWOW64\schannel.dll
2014-11-25 15:59:09	B2AC9E081A847ACBD5B62BE25AF39DA1	88800	----a-w-	C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-11-25 15:58:43	66F97677CC13F7B9E2408CC75750A389	208896	----a-w-	C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-25 15:58:43	4CD4C8D34213975444643A5F9594E363	806400	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-25 15:58:40	D1A07DE4DC408E5AA5CFBAE261919BDC	72192	----a-w-	C:\WINDOWS\SysWOW64\packager.dll
2014-11-25 15:58:37	A22688490DCC2DA19441CA09EF7299BF	736768	----a-w-	C:\WINDOWS\SysWOW64\adtschema.dll
2014-11-25 15:58:37	791BDC9FD3C95F92C7DB2162132C8645	324096	----a-w-	C:\WINDOWS\SysWOW64\certcli.dll
2014-11-25 15:58:36	DDAAC7C966436938526D4CF4C6042A5C	154112	----a-w-	C:\WINDOWS\SysWOW64\msaudite.dll
2014-11-25 15:57:43	75D0FAD0165770819770628239BF57DB	602768	----a-w-	C:\WINDOWS\SysWOW64\oleaut32.dll
2014-11-25 15:57:37	B09332CC976AC43EFF595B6F01AA275C	2459136	----a-w-	C:\WINDOWS\SysWOW64\authui.dll
2014-11-25 15:57:35	46FBD043A1688EFD6AC1395EE886AD33	3607040	----a-w-	C:\WINDOWS\SysWOW64\msi.dll
2014-11-25 15:57:33	48C20EB77757F22840FF4CED98D8DEB1	325120	----a-w-	C:\WINDOWS\SysWOW64\msihnd.dll
2014-11-25 15:57:29	F344D6066EA270AABABA83E2A6B6428F	723968	----a-w-	C:\WINDOWS\SysWOW64\wuapi.dll
2014-11-25 15:57:29	C17F3F1EE09758CF9D234B22B80A1006	25600	----a-w-	C:\WINDOWS\SysWOW64\wups.dll
2014-11-25 15:57:28	DC523277A7EC2336A654960E08EB5BDC	81920	----a-w-	C:\WINDOWS\SysWOW64\wudriver.dll
2014-11-25 15:57:28	529122F3ADC548F0CCBB6164D86FA116	124928	----a-w-	C:\WINDOWS\SysWOW64\wuwebv.dll
2014-11-25 15:57:28	514AEA6CF4B70FAA30A2BC4B4CC10A39	29696	----a-w-	C:\WINDOWS\SysWOW64\wuapp.exe
2014-11-25 15:56:29	CA23E168518460519DC8D49EC6AD9550	18723112	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2014-11-25 15:56:29	1FB4389CA807D59B105B0827FCC8F768	11820544	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2014-11-25 15:56:15	CDB3123A2ABB34B830224B986568F4D4	626688	----a-w-	C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-11-25 15:56:15	C1AD30D5E28B4291D4A16BC6944ABC0C	2030592	----a-w-	C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-11-25 15:56:15	1793FC07D568C930C04F9FF40FFF9A69	799744	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-11-25 15:56:15	0EEE3F2278E447498B2CDBDF34C63C91	670384	----a-w-	C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-11-25 15:56:14	A208DEE0CD61E24817C26D5A05503DA7	334336	----a-w-	C:\WINDOWS\SysWOW64\puiobj.dll
2014-11-25 15:56:14	710A55B8443155F1FF09E07C2E44D79D	200192	----a-w-	C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2014-11-25 15:56:13	A0E20B50D66FDF786BC2324499F7C482	195584	----a-w-	C:\WINDOWS\SysWOW64\prnntfy.dll
2014-11-25 15:56:13	558838A9A51259F3E76030E3E997A72A	162816	----a-w-	C:\WINDOWS\SysWOW64\puiapi.dll
2014-11-25 15:56:13	17FC09725FEE2546B96A938288509719	485376	----a-w-	C:\WINDOWS\SysWOW64\untfs.dll
2014-11-25 15:56:12	46C1902654FF54C835E4C4E8C14B7F2A	239104	----a-w-	C:\WINDOWS\SysWOW64\FXSAPI.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2014-11-29 11:20:32	E09BF40AA766B183F0F385C96B37D9E5	299520	----a-w-	C:\WINDOWS\Sysnative\WSDMon.dll
2014-11-29 11:20:32	DA947D89F64B72A40F678AAAE76F7564	205824	----a-w-	C:\WINDOWS\Sysnative\tcpmon.dll
2014-11-29 11:20:04	49EEC8569BF200C95A38D00766AFB830	16874496	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2014-11-29 11:19:57	CC59B18DEC31120F9957ABA55EC49FAC	2389504	----a-w-	C:\WINDOWS\Sysnative\d3d10warp.dll
2014-11-29 11:19:53	AD3137A754F60D369C176EF4DD5084A0	2141920	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2014-11-29 11:19:52	69DB09F0263C637DA8568D404842466A	1261056	----a-w-	C:\WINDOWS\Sysnative\gpsvc.dll
2014-11-29 11:19:52	3F5EF31C6AA204B099EE76497DF80A26	1532416	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2014-11-29 11:19:51	61BF52E9FFAB27A0B6D621BE26088373	1600000	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2014-11-29 11:19:50	11FA35E24D76F62BD3E64D43B12656EF	1231872	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2014-11-29 11:19:46	AEAD37FA03D6E90638D8A4DC30E50408	2050560	----a-w-	C:\WINDOWS\Sysnative\SRH.dll
2014-11-29 11:19:46	8200B4C323229AA1F47C87EB37207E36	2574208	----a-w-	C:\WINDOWS\Sysnative\WMVDECOD.DLL
2014-11-29 11:19:46	17E700D2F6671196D0512BF806BB6435	1182208	----a-w-	C:\WINDOWS\Sysnative\printui.dll
2014-11-29 11:19:44	A9C015F01499761908DE61F172FAF65D	486744	----a-w-	C:\WINDOWS\Sysnative\netcfgx.dll
2014-11-29 11:19:44	4301A4D673F1ACB195C4F30B306B70B9	1992192	----a-w-	C:\WINDOWS\Sysnative\XpsPrint.dll
2014-11-29 11:19:43	B2C26168E74EA51BF65518A309B08C19	770048	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2014-11-29 11:19:43	0A7F97DE49DB63E01CBCA067F4DA7AB8	544768	----a-w-	C:\WINDOWS\Sysnative\AppxPackaging.dll
2014-11-29 11:19:42	BF6897E960C08E9FDD41B80726C61C2F	371200	----a-w-	C:\WINDOWS\Sysnative\wlanmsm.dll
2014-11-29 11:19:42	A4CF0D2FF18BF8D128389AF26410FD8B	1018368	----a-w-	C:\WINDOWS\Sysnative\aclui.dll
2014-11-29 11:19:41	8DC2979BC54C585BA5A4C9E6FABCD1B4	360480	----a-w-	C:\WINDOWS\Sysnative\mfreadwrite.dll
2014-11-29 11:19:41	793EACA6BAE9F481C2059BCB3743EB4A	324096	----a-w-	C:\WINDOWS\Sysnative\srvsvc.dll
2014-11-29 11:19:41	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\WINDOWS\Sysnative\spoolsv.exe
2014-11-29 11:19:40	79EFAEE6FBD8ABC066B944E1A7A605BB	645592	----a-w-	C:\WINDOWS\Sysnative\SHCore.dll
2014-11-29 11:19:40	7740658736BD07FC121EACB3CA7C9194	2397184	----a-w-	C:\WINDOWS\Sysnative\storagewmi.dll
2014-11-29 11:19:40	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\Sysnative\locale.nls
2014-11-29 11:19:39	FF1CB6C5D9288DAAA0DADAD6B1E35085	205512	----a-w-	C:\WINDOWS\Sysnative\mftranscode.dll
2014-11-29 11:19:39	D0AD65EE089F735BF546ABFE28D192C0	621056	----a-w-	C:\WINDOWS\Sysnative\comdlg32.dll
2014-11-29 11:19:39	D01BA613D268DAD03DD32A0DC5FD24DF	287232	----a-w-	C:\WINDOWS\Sysnative\usbmon.dll
2014-11-29 11:19:39	C40DE04CE3A8905EB8048B5CE0951DF0	882136	----a-w-	C:\WINDOWS\Sysnative\mfplat.dll
2014-11-29 11:19:39	40CC457FB140B509B50F96DAD9D8F80B	1660048	----a-w-	C:\WINDOWS\Sysnative\winload.efi
2014-11-29 11:19:38	D249C3A58A4FCF755EF4C94F7047E015	449536	----a-w-	C:\WINDOWS\Sysnative\defragsvc.dll
2014-11-29 11:19:38	C80D4D7AF450F7CAD615FF1D7B40D7AD	1488008	----a-w-	C:\WINDOWS\Sysnative\winresume.efi
2014-11-29 11:19:38	835261C17478103B73F4FFB8454AF849	268288	----a-w-	C:\WINDOWS\Sysnative\wisp.dll
2014-11-29 11:19:38	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\WINDOWS\Sysnative\winload.exe
2014-11-29 11:19:38	5B6B32E83E371739B13AA67E260DC5C4	487936	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2014-11-29 11:19:38	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\WINDOWS\Sysnative\winresume.exe
2014-11-29 11:19:37	FE7E47BE6E0D9EF4F24D81381A829CEC	1463808	----a-w-	C:\WINDOWS\Sysnative\wsecedit.dll
2014-11-29 11:19:37	EF1F8B57323E5D3FC6A0A25F98F90DBC	220160	----a-w-	C:\WINDOWS\Sysnative\profsvc.dll
2014-11-29 11:19:36	9D50C0B29FB20DF0A8FD197B332894B7	160600	----a-w-	C:\WINDOWS\Sysnative\winmmbase.dll
2014-11-29 11:19:36	693CC2794DEFB8493ABFF68D509DACC4	127488	----a-w-	C:\WINDOWS\Sysnative\WiFiDisplay.dll
2014-11-29 11:19:36	618A19EB31ECA7B7F2AA0207BAF598A5	84480	----a-w-	C:\WINDOWS\Sysnative\wpdbusenum.dll
2014-11-29 11:19:35	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\WINDOWS\Sysnative\conhost.exe
2014-11-29 11:19:35	CD8CA57C36E596875865F451393C7C66	576512	----a-w-	C:\WINDOWS\Sysnative\SettingSync.dll
2014-11-29 11:19:35	1C683FB45C6CE0BB8A74BB0B1392599D	505344	----a-w-	C:\WINDOWS\Sysnative\VAN.dll
2014-11-29 11:19:34	F8A869262251B011A21DEC79AC1F3F5D	1844224	----a-w-	C:\WINDOWS\Sysnative\Display.dll
2014-11-29 11:19:34	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\WINDOWS\Sysnative\osk.exe
2014-11-29 11:19:34	8EE8CA953542A8E70A841C453BC15196	427008	----a-w-	C:\WINDOWS\Sysnative\clusapi.dll
2014-11-29 11:19:34	793DE7C6B82804D5973C43484F527849	117248	----a-w-	C:\WINDOWS\Sysnative\AppxSip.dll
2014-11-29 11:19:34	2C38FF9DE23A3BB335A95099622AB603	65536	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersGPExt.dll
2014-11-29 11:19:34	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\WINDOWS\Sysnative\SndVol.exe
2014-11-29 11:19:33	83E7C4DA3BF4A21C3F809A506245CAEF	233888	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2014-11-29 11:19:33	7DEAD28D8FB9BCAE4A153A57338315E7	123920	----a-w-	C:\WINDOWS\Sysnative\winmm.dll
2014-11-29 11:19:33	504DDEF8526CECAAD886D5AC5656DF1A	387896	----a-w-	C:\WINDOWS\Sysnative\bcryptprimitives.dll
2014-11-29 11:19:32	CCC106273D4265A9091AA7B619DCC5DA	595456	----a-w-	C:\WINDOWS\Sysnative\Windows.Networking.dll
2014-11-29 11:19:32	A6CB3CBF88DF671AC85FA9AABC33137F	125472	----a-w-	C:\WINDOWS\Sysnative\dwmapi.dll
2014-11-29 11:19:32	1A5835F2E6B49A83F0AEAD17B4537AF7	1656832	----a-w-	C:\WINDOWS\Sysnative\GdiPlus.dll
2014-11-29 11:19:32	1922AAE64BCD761A0377F6981FC67736	721408	----a-w-	C:\WINDOWS\Sysnative\twinapi.dll
2014-11-29 11:19:31	FD807B56AECFD89E4A46960C261D78BF	1089024	----a-w-	C:\WINDOWS\Sysnative\gpedit.dll
2014-11-29 11:19:31	97F24AEACAD9C9038BEC5B2BA1ADA94C	187392	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2014-11-29 11:19:31	91B18D7A1702ED589E67C6C81052B955	226816	----a-w-	C:\WINDOWS\Sysnative\WebClnt.dll
2014-11-29 11:19:31	572EBBCDBBA56736F4C0B5487AE7BFA5	220160	----a-w-	C:\WINDOWS\Sysnative\iasnap.dll
2014-11-29 11:19:30	0A3E1B697F6ACB7BC1C898DC14A96EC7	1287680	----a-w-	C:\WINDOWS\Sysnative\mispace.dll
2014-11-29 11:19:29	6ECFFE49AA43A74DC15701EFE6355621	92160	----a-w-	C:\WINDOWS\Sysnative\dab.dll
2014-11-29 11:19:29	31C2E53FE0C039C1BF0F15154D8596E7	53248	----a-w-	C:\WINDOWS\Sysnative\AppxSysprep.dll
2014-11-29 11:19:29	2B1C2CB5C97962C521CD806F0C86D2FE	102912	----a-w-	C:\WINDOWS\Sysnative\wcmcsp.dll
2014-11-29 11:19:29	28E8D340402C130427F2901004B7FA99	321536	----a-w-	C:\WINDOWS\Sysnative\stobject.dll
2014-11-29 11:19:29	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe
2014-11-29 11:19:28	FA86C3F979EF9CCCCED109B05DEBDD46	432640	----a-w-	C:\WINDOWS\Sysnative\wwanconn.dll
2014-11-29 11:19:27	53F4FC66B94804BBF2016922CD826891	878592	----a-w-	C:\WINDOWS\Sysnative\ActionCenter.dll
2014-11-29 11:19:26	B540693968BCA57F595A7B08DB4B46C3	216368	----a-w-	C:\WINDOWS\Sysnative\rsaenh.dll
2014-11-29 11:19:26	AEDF08DDF4EA929FEDBC0A1CCF01F287	296960	----a-w-	C:\WINDOWS\Sysnative\wlanapi.dll
2014-11-29 11:19:26	69AF7212845FFCD0AA1F0FC5D51FB809	63488	----a-w-	C:\WINDOWS\Sysnative\wshbth.dll
2014-11-29 11:19:24	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\WINDOWS\Sysnative\Defrag.exe
2014-11-29 11:19:24	CB9CEAB473897BE1E8C827D4F4EB1311	207360	----a-w-	C:\WINDOWS\Sysnative\powercfg.cpl
2014-11-29 11:19:24	A7762A36F92E57E41B0356EF5C672473	659968	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll
2014-11-29 11:19:24	3A80675FF8524B09817000B6A2E35B7A	18432	----a-w-	C:\WINDOWS\Sysnative\wlansvcpal.dll
2014-11-29 11:19:24	2067AF0531ACD5D28BD49DB30DF109CE	8192	----a-w-	C:\WINDOWS\Sysnative\KBDRUM.DLL
2014-11-29 11:19:24	041A999E4FF9A7CDBE67357751881FB8	134144	----a-w-	C:\WINDOWS\Sysnative\browser.dll
2014-11-29 11:19:23	6A9650BDC13F1A770F20E7B99D29EE3D	6656	----a-w-	C:\WINDOWS\Sysnative\KBDRU.DLL
2014-11-29 11:19:23	454A0735E836FBC31C064FED6C120B46	7168	----a-w-	C:\WINDOWS\Sysnative\KBDRU1.DLL
2014-11-29 11:19:23	3429360674DA1E70F638924A6D5985CC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDYAK.DLL
2014-11-29 11:19:23	0AC5A816A01D0115588D4B997842780E	7168	----a-w-	C:\WINDOWS\Sysnative\KBDBASH.DLL
2014-11-29 11:19:22	A4DE7868879498A4E4CBB12788FAA3E8	105472	----a-w-	C:\WINDOWS\Sysnative\BluetoothApis.dll
2014-11-29 11:19:20	997E5E28492F02036E5C7BA6DB66ABDC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTAT.DLL
2014-11-29 11:19:20	933C63C9003379F56BA4AF4149440FC8	226304	----a-w-	C:\WINDOWS\Sysnative\SndVolSSO.dll
2014-11-29 11:19:20	4F6203CBBEFB9FBFA859246682849A24	1144320	----a-w-	C:\WINDOWS\Sysnative\wwanmm.dll
2014-11-29 11:19:19	B279922BCFD0E178068B159D85C5CDBE	2100736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll
2014-11-29 11:19:19	A5141DD172927F04732F5B6BFBE49C15	443904	----a-w-	C:\WINDOWS\Sysnative\wlansec.dll
2014-11-29 11:19:18	68270DE9415C8F8139242D38417B49BE	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTT102.DLL
2014-11-27 14:26:51	A7B22A0542D02AB67A0A0D3107DD53F0	275080	------w-	C:\WINDOWS\Sysnative\MpSigStub.exe
2014-11-27 14:25:56	1BB9CC78C91536CBA7B04B61ED0F85C4	1273184	----a-w-	C:\WINDOWS\Sysnative\rpcrt4.dll
2014-11-27 14:24:25	59EAFAE3A34B4925990A2E679CA91C5B	517528	----a-w-	C:\WINDOWS\Sysnative\dxgi.dll
2014-11-27 14:24:25	454978FB3D24DE5C4199162D5F81FBEE	2133504	----a-w-	C:\WINDOWS\Sysnative\dwmcore.dll
2014-11-27 14:24:16	D3AE5DB16EAF913860EC28654CE00E6B	1212928	----a-w-	C:\WINDOWS\Sysnative\schedsvc.dll
2014-11-27 14:24:07	87CEF71F9D5951C9379D2F956C07C37D	1336624	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2014-11-27 14:24:02	E7DE316FEEFC79327CFAD8F527979CC0	3118080	----a-w-	C:\WINDOWS\Sysnative\Wpc.dll
2014-11-27 14:24:02	E2F4125BFAC99244088324A1841C0B83	3048880	----a-w-	C:\WINDOWS\Sysnative\WpcMon.exe
2014-11-27 14:24:02	6BC31FB4E24A962C98801D3687A984C0	2861056	----a-w-	C:\WINDOWS\Sysnative\WpcWebSync.dll
2014-11-27 14:23:53	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\WINDOWS\Sysnative\TsWpfWrp.exe
2014-11-27 14:23:32	C1E44A99F7CF8C3A08CD5ADDF451636C	2125344	----a-w-	C:\WINDOWS\Sysnative\d3d9.dll
2014-11-27 14:23:28	EA432A85ABF371E14FB364D5F4405897	403968	----a-w-	C:\WINDOWS\Sysnative\vpnike.dll
2014-11-27 14:23:27	98D0985521BF8F7086EA9C860898A1EE	721408	----a-w-	C:\WINDOWS\Sysnative\fveapi.dll
2014-11-27 14:23:27	05DE04005CE0D84D0E6AD21CAEB369C6	353280	----a-w-	C:\WINDOWS\Sysnative\dhcpcore.dll
2014-11-27 14:23:25	6B374D279DC423FE69DB8DD1401E84FC	301056	----a-w-	C:\WINDOWS\Sysnative\framedynos.dll
2014-11-27 14:23:25	10AC9494ECE22A2362E4E4D98C528D01	271872	----a-w-	C:\WINDOWS\Sysnative\dhcpcore6.dll
2014-11-27 14:23:23	E07C80468D0C599BFF01D9D4EC7AEDC3	339456	----a-w-	C:\WINDOWS\Sysnative\bdesvc.dll
2014-11-27 14:23:21	20FB137ADDE1255F15F265A7BD9579BE	827392	----a-w-	C:\WINDOWS\Sysnative\BFE.DLL
2014-11-27 14:23:20	1824052F17B12B5D7B21445B869EE9F2	71168	----a-w-	C:\WINDOWS\Sysnative\ncobjapi.dll
2014-11-27 14:23:19	FBB1841434072FFA76E4AD287448E34A	262656	----a-w-	C:\WINDOWS\Sysnative\framedyn.dll
2014-11-27 14:23:18	DEA76F90F9777E3427D70E380222B23B	1063424	----a-w-	C:\WINDOWS\Sysnative\IKEEXT.DLL
2014-11-27 14:23:18	D3883FBCA97D10C8A39632D6CDDC6E85	65024	----a-w-	C:\WINDOWS\Sysnative\dhcpcsvc6.dll
2014-11-27 14:23:18	A473DDDAEB21C18541F0FE70A90171E4	311296	----a-w-	C:\WINDOWS\Sysnative\fvecpl.dll
2014-11-27 14:23:18	7E1EBDB3424337ABB553F249A7811D94	87552	----a-w-	C:\WINDOWS\Sysnative\dhcpcsvc.dll
2014-11-27 14:23:18	2616E8E9C8B66A67CFB6197E9517A2F2	123392	----a-w-	C:\WINDOWS\Sysnative\Robocopy.exe
2014-11-27 14:23:16	F591C7D68328C2B253B8FF57FDA7AB07	794112	----a-w-	C:\WINDOWS\Sysnative\fvewiz.dll
2014-11-27 14:23:16	B7CC32E00C5C5152D221DF182827F58E	50745	----a-w-	C:\WINDOWS\Sysnative\srms.dat
2014-11-27 14:23:16	71BAEAFD05B3040173F5BBEA2CFE9607	997888	----a-w-	C:\WINDOWS\Sysnative\reseteng.dll
2014-11-27 14:23:16	176CA2BB84BC1FC564CCB582FDCBFD7B	130560	----a-w-	C:\WINDOWS\Sysnative\BdeHdCfg.exe
2014-11-27 14:23:16	066AFA7D3FDF65D6CE1A9FAF04E7D631	99328	----a-w-	C:\WINDOWS\Sysnative\BdeHdCfgLib.dll
2014-11-27 14:22:49	8BB7548307EE6147137993A410D64387	869544	----a-w-	C:\WINDOWS\Sysnative\msvcr120_clr0400.dll
2014-11-27 14:22:18	B4AAD75F055F13BFD3B0B16A6E6CF33D	668160	----a-w-	C:\WINDOWS\Sysnative\gpprefcl.dll
2014-11-27 14:22:17	B312E157D20E727F30EAB3A250441B6F	284672	----a-w-	C:\WINDOWS\Sysnative\WUDFHost.exe
2014-11-27 14:22:17	9CDC2059A23E3C9B57696178508777E7	99840	----a-w-	C:\WINDOWS\Sysnative\WUDFSvc.dll
2014-11-27 14:22:17	42D257559F97B30A94A027EB4555C62F	323584	----a-w-	C:\WINDOWS\Sysnative\DaOtpCredentialProvider.dll
2014-11-27 14:22:17	1A54E3DF2CBB8DBE8A17C87BB07E3A7E	209408	----a-w-	C:\WINDOWS\Sysnative\WUDFPlatform.dll
2014-11-27 14:22:17	0BFDE0D93144DBD81178B427D3961FEC	655872	----a-w-	C:\WINDOWS\Sysnative\cscui.dll
2014-11-27 14:22:17	08DCA300264238F9AE941302321F3D54	423768	----a-w-	C:\WINDOWS\Sysnative\hal.dll
2014-11-27 14:21:54	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\WINDOWS\Sysnative\MDMAgent.exe
2014-11-25 16:01:21	F0A117D19873FCDF801F082F33BFBB6C	1519488	----a-w-	C:\WINDOWS\Sysnative\user32.dll
2014-11-25 16:01:18	668417ED63F9FBE7DD8D7A54B04279DA	14336	----a-w-	C:\WINDOWS\Sysnative\winshfhc.dll
2014-11-25 16:00:44	93645AEBE163230A2ED5050C14AE6603	2149376	----a-w-	C:\WINDOWS\Sysnative\msxml3.dll
2014-11-25 16:00:28	DFDFDE2EA4B5CD0606BA6E56ECEE502D	272248	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2014-11-25 16:00:28	C0484CA5C7F87E38909746B63C7FC868	911360	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2014-11-25 16:00:28	9F87516BF76C40B41D831F7D729A6044	482872	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2014-11-25 16:00:28	9C88C9397B44B76E5C9A44B8E2CE53A1	500016	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2014-11-25 16:00:28	8085F95BB18A171E7221D2831BC08BC2	394120	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2014-11-25 16:00:28	7F70B1044272982AAEA7C16E83424770	226304	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2014-11-25 16:00:27	BB93DAAAE9006598935192B9CB65E475	108432	----a-w-	C:\WINDOWS\Sysnative\EncDump.dll
2014-11-25 16:00:25	62D54F4673A6208C8CC147758122B3C3	2865152	----a-w-	C:\WINDOWS\Sysnative\actxprxy.dll
2014-11-25 16:00:24	FD7C8FAC461BED1FEEB808E477D884D4	716800	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2014-11-25 16:00:24	C9AB2198141844D3DF96B4552CE9D5AB	77824	----a-w-	C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll
2014-11-25 16:00:22	9CD8D475F462F82E6FD8BFCA7186ACD4	372736	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2014-11-25 16:00:22	559E084EEBE44864493B2903433F19B3	1550336	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2014-11-25 16:00:22	200CEA827BDC503F00C0AED0EA227D49	800768	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2014-11-25 16:00:21	F7522B00C823794F86ABD5BE1F3D6B09	316928	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2014-11-25 16:00:20	62E2FCF45F349DE6CAFB3AA7E1D81DA4	2124288	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2014-11-25 16:00:19	22CBDB8810CBED0B4F5E4BE69D7E2AE8	2884096	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2014-11-25 16:00:18	175C139D51F99099D1BDA17794B02191	490496	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2014-11-25 16:00:17	BED4D30B7FF094E368333CE2D1CE3195	14390272	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2014-11-25 16:00:17	2CEACC509889A095828F27115257408D	92160	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2014-11-25 16:00:17	079FEE6FC11A74E4309B6A10931C1CB2	6040064	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2014-11-25 16:00:16	BF1FC65A307B31939ADF7F976FDE033C	2365440	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2014-11-25 16:00:15	6432F143CDC9D73BD2BF832CAB2EDC01	25110016	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2014-11-25 16:00:11	46B5DD7C4B1851F59E48302185E076DF	1032704	----a-w-	C:\WINDOWS\Sysnative\inetcomm.dll
2014-11-25 16:00:10	DE58DE2C6C8439B7174D6D3568AA4A80	814080	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2014-11-25 16:00:10	587DEBB59F5F14C9610966FB14A33607	633856	----a-w-	C:\WINDOWS\Sysnative\ieui.dll
2014-11-25 16:00:10	0D03DAD6BB183156C70F863D0F2FA55A	812544	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2014-11-25 16:00:09	BC3B7CCE855F9A8E7BC96F7062229A02	799232	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2014-11-25 16:00:08	258C3082AD82C1AAD335DA3FE2D3EB25	580096	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2014-11-25 16:00:07	853BB696932E4C48EE7034BFF1209A5A	262144	----a-w-	C:\WINDOWS\Sysnative\webcheck.dll
2014-11-25 16:00:05	F0A53129AE95A895EC8C4DC36E1797A2	108544	----a-w-	C:\WINDOWS\Sysnative\hlink.dll
2014-11-25 16:00:05	E40D3696BE4852956669C285038B37A6	114688	----a-w-	C:\WINDOWS\Sysnative\ieetwcollector.exe
2014-11-25 16:00:05	AF28C90094C4C50F083599C10D2DC072	145408	----a-w-	C:\WINDOWS\Sysnative\iepeers.dll
2014-11-25 16:00:05	A348DEFC16B6FBC88B7D61C3B861BCB1	107520	----a-w-	C:\WINDOWS\Sysnative\inseng.dll
2014-11-25 16:00:05	2E475D2FCE0125FA0C486DB9D59E739B	417280	----a-w-	C:\WINDOWS\Sysnative\html.iec
2014-11-25 16:00:05	00FB2FB8C27C834CF575BC415B80F995	87552	----a-w-	C:\WINDOWS\Sysnative\tdc.ocx
2014-11-25 16:00:04	F79E5258AF040A8AD83C7C1273A071C3	54784	----a-w-	C:\WINDOWS\Sysnative\jsproxy.dll
2014-11-25 16:00:04	8AE1AC97407CD82D8389390C21430579	111616	----a-w-	C:\WINDOWS\Sysnative\iesysprep.dll
2014-11-25 16:00:04	85E97591864F3125C5B08FB44E0E8078	60416	----a-w-	C:\WINDOWS\Sysnative\msfeedsbs.dll
2014-11-25 16:00:04	70576D76A11DD5AE54E719297A315F90	88064	----a-w-	C:\WINDOWS\Sysnative\MshtmlDac.dll
2014-11-25 16:00:04	1C3C54FA2D620DF3093F356A56EC5957	144384	----a-w-	C:\WINDOWS\Sysnative\ieUnatt.exe
2014-11-25 16:00:03	DD8FD33C108F14681A410067AB21DDF3	152064	----a-w-	C:\WINDOWS\Sysnative\occache.dll
2014-11-25 16:00:03	3721721151DB49457B0FD35E0C04594C	199680	----a-w-	C:\WINDOWS\Sysnative\msrating.dll
2014-11-25 16:00:02	D66D11191B48007179B0A77DC0717267	33280	----a-w-	C:\WINDOWS\Sysnative\licmgr10.dll
2014-11-25 16:00:02	6096209CB47D61499C3608B9C25B073C	64512	----a-w-	C:\WINDOWS\Sysnative\pngfilt.dll
2014-11-25 16:00:02	161BC2E883A8D8759A4DCF2A85AF9128	51200	----a-w-	C:\WINDOWS\Sysnative\imgutil.dll
2014-11-25 16:00:01	F54E1190251EB245183BF16D6C315613	237568	----a-w-	C:\WINDOWS\Sysnative\url.dll
2014-11-25 16:00:01	CDC8A85EB301A8CBE55A81A1D55AF5E5	132096	----a-w-	C:\WINDOWS\Sysnative\IEAdvpack.dll
2014-11-25 16:00:01	A7F53772ECAE2F44B455D14F71179940	48640	----a-w-	C:\WINDOWS\Sysnative\ieetwproxystub.dll
2014-11-25 16:00:01	6A7F8D139610E5F3F158182778EF9275	34304	----a-w-	C:\WINDOWS\Sysnative\iernonce.dll
2014-11-25 16:00:01	4B9C652BD0FD95A9E6123913C35519D6	143872	----a-w-	C:\WINDOWS\Sysnative\wextract.exe
2014-11-25 16:00:00	E99E2E88BFE584184AE92B1F8995CE93	66560	----a-w-	C:\WINDOWS\Sysnative\iesetup.dll
2014-11-25 16:00:00	CA2F3153EF3BCB0BD3A8984C933DF604	167424	----a-w-	C:\WINDOWS\Sysnative\iexpress.exe
2014-11-25 16:00:00	A3871DED5ED88F59C0D1396761708F81	13824	----a-w-	C:\WINDOWS\Sysnative\mshta.exe
2014-11-25 16:00:00	66585D645C4E23A0FD5124BD714AE020	12800	----a-w-	C:\WINDOWS\Sysnative\msfeedssync.exe
2014-11-25 15:59:10	F0CE4A653EEBA09509EAF93AE2226FA9	426496	----a-w-	C:\WINDOWS\Sysnative\schannel.dll
2014-11-25 15:59:10	6DE50D5592C6EE18C87B0C2EEEDC1621	185856	----a-w-	C:\WINDOWS\Sysnative\dpapisrv.dll
2014-11-25 15:59:09	622928F5A8045F8122F10561D6C35ED0	104336	----a-w-	C:\WINDOWS\Sysnative\ncryptsslp.dll
2014-11-25 15:58:43	E87F8EC00FEEF700E61F6989D88A8BC2	991232	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2014-11-25 15:58:43	788C7D910267DDCD675DF4AB01961265	259584	----a-w-	C:\WINDOWS\Sysnative\pku2u.dll
2014-11-25 15:58:41	B31C4917EC5EADE24A90DDAF37EA00E0	4182016	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2014-11-25 15:58:40	84549E8C8BF76B293A7E625A98D4BCF9	81408	----a-w-	C:\WINDOWS\Sysnative\packager.dll
2014-11-25 15:58:38	1D25CC0A9C480C5D56A5A6CF2B5DEB99	3547648	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2014-11-25 15:58:37	949E590B76018E4523FC71CE510ED9ED	1441792	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2014-11-25 15:58:37	91E59FCB3B32DD84E5DCDA2EA1583807	736768	----a-w-	C:\WINDOWS\Sysnative\adtschema.dll
2014-11-25 15:58:37	488CEA4F1B4D2446FFB7A94E3CB385FE	445440	----a-w-	C:\WINDOWS\Sysnative\certcli.dll
2014-11-25 15:58:37	3D2D2EA099D98FE6B94C7D8C7992C08C	40448	----a-w-	C:\WINDOWS\Sysnative\rfxvmt.dll
2014-11-25 15:58:36	D7B23B3154508256C9F434EF9B65B91D	131584	----a-w-	C:\WINDOWS\Sysnative\rdpudd.dll
2014-11-25 15:58:36	A8484FB640E044858BA19FB4F13DD4CE	154112	----a-w-	C:\WINDOWS\Sysnative\msaudite.dll
2014-11-25 15:57:43	9A108C0A3092110F4651B3AFB9CC7B3D	789184	----a-w-	C:\WINDOWS\Sysnative\oleaut32.dll
2014-11-25 15:57:41	F00E643D9244F31ECF5DE8A98C2C5FC6	98816	----a-w-	C:\WINDOWS\Sysnative\aepic.dll
2014-11-25 15:57:41	22ED46DE0E684749DA1BD703526FAA26	537088	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2014-11-25 15:57:40	D18149850795E7203610CEE9491515F1	304128	----a-w-	C:\WINDOWS\Sysnative\generaltel.dll
2014-11-25 15:57:40	9E20A052D83A81AEC35B2EA29F32637A	391168	----a-w-	C:\WINDOWS\Sysnative\devinv.dll
2014-11-25 15:57:40	91BB0DDA472733457072DA61178FA48E	228864	----a-w-	C:\WINDOWS\Sysnative\aepdu.dll
2014-11-25 15:57:37	EF745B98D81B8C462DB99FC8B5C4322A	3320320	----a-w-	C:\WINDOWS\Sysnative\msi.dll
2014-11-25 15:57:37	D5B41A0C38408814A3E9BAC8C82B2E5B	2773504	----a-w-	C:\WINDOWS\Sysnative\authui.dll
2014-11-25 15:57:33	D1A2E993DB1867C79177CCC9DB6337D0	116032	----a-w-	C:\WINDOWS\Sysnative\consent.exe
2014-11-25 15:57:33	D0C15BC83B3D0AF4F9B1D70216D91794	428032	----a-w-	C:\WINDOWS\Sysnative\msihnd.dll
2014-11-25 15:57:33	034ED41F13D9C1845C1E081F05B640DB	110080	----a-w-	C:\WINDOWS\Sysnative\appinfo.dll
2014-11-25 15:57:29	DCD090318EC800CF6275C6835900B0C6	3557376	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2014-11-25 15:57:29	BCC10D47920E83EAC8F2E7E2D414692E	894976	----a-w-	C:\WINDOWS\Sysnative\wuapi.dll
2014-11-25 15:57:29	2585412FC573F298FCBFD6759F8C4C0F	1714176	----a-w-	C:\WINDOWS\Sysnative\wucltux.dll
2014-11-25 15:57:28	EA2DF5520D3623F353F43809A2F88086	55776	----a-w-	C:\WINDOWS\Sysnative\wuauclt.exe
2014-11-25 15:57:28	E67B019D23320AA0C5F1E6DE5D30546A	407552	----a-w-	C:\WINDOWS\Sysnative\WUSettingsProvider.dll
2014-11-25 15:57:28	CCE7F88AD038494253B485EC1B144EB3	60416	----a-w-	C:\WINDOWS\Sysnative\wups.dll
2014-11-25 15:57:28	70AC0FA699C9420CB282CCF72993C2E1	51712	----a-w-	C:\WINDOWS\Sysnative\wups2.dll
2014-11-25 15:57:28	5D67074419BBFDCA587C2E2A93743E8A	140288	----a-w-	C:\WINDOWS\Sysnative\wuwebv.dll
2014-11-25 15:57:28	4D94560FD4982BB52C1FE64AE38E1A9F	35840	----a-w-	C:\WINDOWS\Sysnative\wuapp.exe
2014-11-25 15:57:28	4A112AD7D9C7289FE9945D05E97019D0	17408	----a-w-	C:\WINDOWS\Sysnative\wuaext.dll
2014-11-25 15:57:28	2E66E7D4F1E39F7048A231AA60FD2532	95744	----a-w-	C:\WINDOWS\Sysnative\wudriver.dll
2014-11-25 15:56:29	C4306ADC38939CAC60EA38AAD9F170C0	13424128	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2014-11-25 15:56:28	C88B63FE96DB4BCED65DD442BC8E77F5	1053184	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2014-11-25 15:56:28	A92EF73B02686B7E6F070B486512DB88	389176	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2014-11-25 15:56:28	34B5290B8770A2FC578E3FEAD3FD7462	921600	----a-w-	C:\WINDOWS\Sysnative\MrmCoreR.dll
2014-11-25 15:56:28	1D303CE5BCBD5B80BBA08321F28A3F86	21197152	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2014-11-25 15:56:27	BCE66E78D388875B87286CA091E7075F	7484224	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2014-11-25 15:56:20	1907823D5ACFD75D1D8C0D4318299726	2714112	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2014-11-25 15:56:16	CA729FCE295895515A09BD6FF7903DC8	836176	----a-w-	C:\WINDOWS\Sysnative\mfmp4srcsnk.dll
2014-11-25 15:56:16	A208498C5CD750A1743C1AC8162A810F	941568	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2014-11-25 15:56:15	9CE162EB9057CF079736F4DD00FC0D6C	2480128	----a-w-	C:\WINDOWS\Sysnative\WsmSvc.dll
2014-11-25 15:56:14	9CF6AD02948A506188BFF8653807DFCA	785408	----a-w-	C:\WINDOWS\Sysnative\pmcsnap.dll
2014-11-25 15:56:14	5416C603B6C85CF0698E8A2A1D28BAA2	448512	----a-w-	C:\WINDOWS\Sysnative\puiobj.dll
2014-11-25 15:56:14	50E96089F9BE352621997143A56C8E76	822272	----a-w-	C:\WINDOWS\Sysnative\win32spl.dll
2014-11-25 15:56:14	12C0733F955E15C3C37DD24C9C7D796A	263680	----a-w-	C:\WINDOWS\Sysnative\DafPrintProvider.dll
2014-11-25 15:56:13	CFD6DBED27511D7A5FBE33AFA7E6B669	76800	----a-w-	C:\WINDOWS\Sysnative\BulkOperationHost.exe
2014-11-25 15:56:13	A8732AFE4DB47114355ABB285ED776D2	187392	----a-w-	C:\WINDOWS\Sysnative\puiapi.dll
2014-11-25 15:56:13	8CBF1E2761816CFD9D32F8B32531D0FB	118272	----a-w-	C:\WINDOWS\Sysnative\winbici.dll
2014-11-25 15:56:13	8758F5DEBD2B950B2D56ED11F9E0B38F	545792	----a-w-	C:\WINDOWS\Sysnative\untfs.dll
2014-11-25 15:56:13	3F5E698329A53C19A80D61C42DE4F596	249856	----a-w-	C:\WINDOWS\Sysnative\ppcsnap.dll
2014-11-25 15:56:13	118A11C89FAD244A2B85DA7EDC3E9683	215552	----a-w-	C:\WINDOWS\Sysnative\prnntfy.dll
2014-11-25 15:56:12	9C55CE9707B3CA29A6505BCDCC546390	275968	----a-w-	C:\WINDOWS\Sysnative\FXSAPI.dll
2014-11-25 15:56:12	6C118AEDD15FDBEAECC0E85C64B5B86B	615424	----a-w-	C:\WINDOWS\Sysnative\FXSCOMEX.dll
2014-11-25 15:56:12	6317C9DB4282CEAA3BAB131BC3839B2A	308736	----a-w-	C:\WINDOWS\Sysnative\compstui.dll
====== C:\WINDOWS\Sysnative\drivers =====
2014-11-29 12:47:04	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys
2014-11-29 12:46:22	D3311B31C470E7681B14D9B014CBF9ED	93400	----a-w-	C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys
2014-11-29 12:46:22	D1F2D4DF0A5D3B700794E26356A55B44	64216	----a-w-	C:\WINDOWS\Sysnative\drivers\mwac.sys
2014-11-29 11:19:47	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2014-11-29 11:19:46	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2014-11-29 11:19:44	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2014-11-29 11:19:40	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2014-11-29 11:19:39	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2014-11-29 11:19:38	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2014-11-29 11:19:37	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2014-11-29 11:19:37	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2014-11-29 11:19:36	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2014-11-29 11:19:33	E4B4BE2D7750849C07589DA0B0AABA01	1118040	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2014-11-29 11:19:33	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2014-11-29 11:19:33	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2014-11-29 11:19:33	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys
2014-11-29 11:19:33	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2014-11-29 11:19:30	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2014-11-29 11:19:30	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2014-11-29 11:19:20	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\WINDOWS\Sysnative\drivers\bthpan.sys
2014-11-29 11:16:29	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
2014-11-29 10:46:18	5C3669B71657F22E67A1D4BD49D2CBE7	25816	----a-w-	C:\WINDOWS\Sysnative\drivers\mbam.sys
2014-11-27 14:24:25	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2014-11-27 14:23:25	7A1A3F213CDB3363D179D5014272025D	402432	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb.sys
2014-11-27 14:23:21	674A4702E4E144E8710ED1A2EC6DD049	96768	----a-w-	C:\WINDOWS\Sysnative\drivers\agilevpn.sys
2014-11-27 14:23:19	65ED7B9CFEA893DF7748D5FF692690DE	38912	----a-w-	C:\WINDOWS\Sysnative\drivers\vwifimp.sys
2014-11-27 14:23:18	35BF5C5F5E3C9902C98978C7640574DA	71680	----a-w-	C:\WINDOWS\Sysnative\drivers\vwififlt.sys
2014-11-27 14:22:18	FE0ADF5028EB8C1339B66B3AEDE3FEF9	440664	----a-w-	C:\WINDOWS\Sysnative\drivers\usbport.sys
2014-11-27 14:22:17	D79920BE4E6683D3AB50F71457A4F6C6	27480	----a-w-	C:\WINDOWS\Sysnative\drivers\usbd.sys
2014-11-27 14:22:17	D537815E450A149752C15868392AD1F3	110592	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFPf.sys
2014-11-27 14:22:17	7CCBBCEE408A5DBE3FE47297DB5A6CFC	227840	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFRd.sys
2014-11-27 14:22:17	48BA326A3DBA5B5BEB5F2777F4618696	89944	----a-w-	C:\WINDOWS\Sysnative\drivers\usbehci.sys
2014-11-27 14:22:17	064260B3A5868AC894A4943543BC7AB7	37376	----a-w-	C:\WINDOWS\Sysnative\drivers\usbuhci.sys
2014-11-25 16:01:21	DE8D12B4C3F55FA2C5E9774314F6C58A	258368	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2014-11-25 16:01:20	4AD874CDC812EC156265E451B6B09DAB	114496	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2014-11-25 16:01:20	0359607177E5E9F6041136CC0A5CB0B6	35320	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2014-11-25 15:58:37	9F08A6608F98B5407E7DDBCF306573EF	27456	----a-w-	C:\WINDOWS\Sysnative\drivers\rdpvideominiport.sys
2014-11-25 15:58:37	6D2EE96150E35B9EA49F2B481DE0369A	177472	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecpkg.sys
2014-11-25 15:58:37	4E1207CE16E615B0B7A70DC889F4500E	563976	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2014-11-25 15:56:26	CCB3A2BB60FE5073F2DEA63FE83CF8FE	2497344	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2014-11-25 15:56:15	E3FCE2A6B3533D99A3B498504DF9CC47	474432	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2014-11-25 15:56:13	7F23E38C5B6448F91439E4066645191E	428864	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2014-11-25 15:56:13	66732C13628BDB1AB0D6FD46027327C2	148800	----a-w-	C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-11-29 11:57:15	--------	d-----w-	C:\Program Files\trend micro
2014-11-27 13:35:28	--------	d-----w-	C:\Program Files\Classic Shell
======= C:\PROGRA~2 =====
2014-11-30 12:00:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2014-11-30 11:59:02	--------	d-----w-	C:\PROGRA~2\Java
======= C: =====
====== C:\Users\Rien\AppData\Roaming ======
2014-11-29 13:10:20	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp
2014-11-29 13:10:20	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp
2014-11-29 13:10:20	--------	d-----w-	C:\Users\Rien\AppData\Local\Temp
2014-11-29 13:10:20	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2014-11-29 13:10:20	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2014-11-29 13:10:20	--------	d-----w-	C:\Users\bakke_000\AppData\Local\Temp
2014-11-29 10:58:26	--------	d-sh--w-	C:\Users\Rien\AppData\Locallow\EmieBrowserModeList
2014-11-27 14:12:08	--------	d-sh--w-	C:\Users\Rien\AppData\Local\EmieBrowserModeList
2014-11-27 13:36:08	--------	d-----w-	C:\Users\Rien\AppData\Roaming\ClassicShell
====== C:\Users\Rien ======
2014-11-30 11:59:38	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-30 11:59:08	--------	d-----w-	C:\ProgramData\Oracle
2014-11-30 11:46:49	92F975B07E65EF3AE67D89A016FDAACC	638888	----a-w-	C:\Users\Rien\Downloads\JavaSetup8u25.com
2014-11-29 11:56:59	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rien\Desktop\RSITx64.exe
2014-11-27 14:00:35	ADCFD241465359CEFAC2D944377178B1	468	--sha-r-	C:\ProgramData\ntuser.pol
2014-11-27 13:36:09	--------	d-----w-	C:\ProgramData\ClassicShell
2014-11-27 13:35:28	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2014-11-27 13:33:36	1DD357157605C3462752FFB0B8B38EB8	6791360	----a-w-	C:\Users\Rien\Downloads\ClassicShellSetup_4_1_0.exe

====== C: exe-files ==
2014-11-30 11:59:40	AA3520FB0133A56BEE1DB34D74DBEF64	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2014-11-30 11:59:40	75D477E868CA51EC1B09D730570F322B	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2014-11-30 11:59:40	691D49FB44EDE9788288CABE4F7E0DAF	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2014-11-30 11:59:28	DC197DCE6325CBAC905DE0D0E3BA3E8E	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmid.exe
2014-11-30 11:59:28	67F763B09F4BC8689E6FA9761E068D74	159656	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\unpack200.exe
2014-11-30 11:59:28	57E1F756FAA787623DFCD2C1B2AACC68	51112	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssvagent.exe
2014-11-30 11:59:28	33D2AF53E209DA3E2BA939EB89801DC0	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmiregistry.exe
2014-11-30 11:59:28	29E65AC6AFD8A0A9CAA361FF6F7B4886	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\servertool.exe
2014-11-30 11:59:28	28FC00F89631B0F6E1E9CA386FADD566	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\tnameserv.exe
2014-11-30 11:59:26	E3E6B18458FFB07CB24D7A0BA77C9FDF	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\pack200.exe
2014-11-30 11:59:26	A458E2535E46151690E53E2A03FAA711	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe
2014-11-30 11:59:26	9BFAEF308D50779F6B255CB7BA7DCA5A	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\kinit.exe
2014-11-30 11:59:26	7AB1F1B3FB6C3DACA34EA2F988CDF5AC	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\orbd.exe
2014-11-30 11:59:26	75EE99C7F0038C746D82C76221ECA4EF	16296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\policytool.exe
2014-11-30 11:59:26	4109C4DB4BD48F5BF8115C7523A6B6F8	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\klist.exe
2014-11-30 11:59:26	26C7F32186B1F0364CD06EA69227A79D	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\ktab.exe
2014-11-30 11:59:25	4367C05B0CF5553E71B34F51003D0615	76200	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2launcher.exe
2014-11-30 11:59:24	B719E0F43166037DF46B5CFBE60A5118	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jjs.exe
2014-11-30 11:59:23	BB8C890E3E6372F2720709262BD42BF4	30632	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\jabswitch.exe
2014-11-30 11:59:23	AA3520FB0133A56BEE1DB34D74DBEF64	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\java.exe
2014-11-30 11:59:23	75D477E868CA51EC1B09D730570F322B	176552	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaw.exe
2014-11-30 11:59:23	74713E9C1B01B152DDD3A1A3519A3647	15784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\java-rmi.exe
2014-11-30 11:59:23	70E67429D2C011FD0419AF899A8D0D70	68520	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javacpl.exe
2014-11-30 11:59:23	691D49FB44EDE9788288CABE4F7E0DAF	272296	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaws.exe
2014-11-29 11:57:15	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Rien.exe
2014-11-29 11:56:59	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Rien\Desktop\RSITx64.exe
2014-11-29 11:19:41	C273B81224D445026E743BCB0C1B3B5B	2096128	----a-w-	C:\Program Files\Windows Journal\Journal.exe
2014-11-29 11:19:41	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\Windows\System32\spoolsv.exe
2014-11-29 11:19:38	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\Windows\System32\winload.exe
2014-11-29 11:19:38	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\Windows\System32\Boot\winload.exe
2014-11-29 11:19:38	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\Windows\System32\winresume.exe
2014-11-29 11:19:35	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\Windows\System32\conhost.exe
2014-11-29 11:19:34	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\Windows\System32\osk.exe
2014-11-29 11:19:34	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\Windows\System32\SndVol.exe
2014-11-29 11:19:31	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\Windows\SysWOW64\SndVol.exe
2014-11-29 11:19:29	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\Windows\System32\SystemSettingsAdminFlows.exe
2014-11-29 11:19:26	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\Windows\SysWOW64\osk.exe
2014-11-29 11:19:24	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\Windows\System32\Defrag.exe
2014-11-27 14:26:51	A7B22A0542D02AB67A0A0D3107DD53F0	275080	------w-	C:\Windows\System32\MpSigStub.exe
2014-11-27 14:24:02	E2F4125BFAC99244088324A1841C0B83	3048880	----a-w-	C:\Windows\System32\WpcMon.exe
2014-11-27 14:23:53	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2014-11-27 14:23:53	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2014-11-27 14:23:21	1064CF2438DC44A13EFD13551915586D	321024	----a-w-	C:\Windows\System32\IME\SHARED\ImeBroker.exe
2014-11-27 14:23:19	34215162FF8440E3342071D5A7FDCB3C	1192280	----a-w-	C:\Windows\Boot\PCAT\memtest.exe
2014-11-27 14:23:18	A83FCE24AE4103F9DA32E8707C4B4C43	124928	----a-w-	C:\Windows\SysWOW64\wbem\WMIADAP.exe
2014-11-27 14:23:18	4E07710A2C9EA43E7509BF7D0452430E	106496	----a-w-	C:\Windows\SysWOW64\Robocopy.exe
2014-11-27 14:23:18	2616E8E9C8B66A67CFB6197E9517A2F2	123392	----a-w-	C:\Windows\System32\Robocopy.exe
2014-11-27 14:23:17	A09657B30C532DCF848F2B33404EF190	166400	----a-w-	C:\Windows\System32\wbem\WMIADAP.exe
2014-11-27 14:23:16	176CA2BB84BC1FC564CCB582FDCBFD7B	130560	----a-w-	C:\Windows\System32\BdeHdCfg.exe
2014-11-27 14:22:17	B312E157D20E727F30EAB3A250441B6F	284672	----a-w-	C:\Windows\System32\WUDFHost.exe
2014-11-27 14:21:54	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\Windows\System32\MDMAgent.exe
2014-11-27 13:59:42	B18F87B3C283054035AD0ABEF6296355	714208	----a-w-	C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-27 13:33:36	1DD357157605C3462752FFB0B8B38EB8	6791360	----a-w-	C:\Users\Rien\Downloads\ClassicShellSetup_4_1_0.exe
2014-11-25 16:00:28	DFDFDE2EA4B5CD0606BA6E56ECEE502D	272248	----a-w-	C:\Windows\System32\audiodg.exe
2014-11-25 16:00:24	FD7C8FAC461BED1FEEB808E477D884D4	716800	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-11-25 16:00:22	5F1B1148C830C0F149A476A58CE0D09D	815248	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-11-25 16:00:19	5AC6DB399DE418E3955F0CA4567BDD37	813712	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-11-25 16:00:05	E40D3696BE4852956669C285038B37A6	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-11-25 16:00:05	8D7C6EE90630126F79275BAC5FE16E51	468992	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-11-25 16:00:04	ED5A4451A1A2777C6C5DB4238FD09078	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-11-25 16:00:04	1C3C54FA2D620DF3093F356A56EC5957	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-11-25 16:00:03	8CFC152DF5D4FCFD621EF3E231999D03	484352	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-11-25 16:00:03	159199095C9959BE75E61C0FF947708F	152064	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2014-11-25 16:00:02	A66A88FFE53BBB9DDAACE0110A8232EC	137728	----a-w-	C:\Windows\SysWOW64\wextract.exe
2014-11-25 16:00:01	CFB15ED916904B30D32DFDE29B67CDCC	25600	----a-w-	C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2014-11-25 16:00:01	CC5C5634FA72689449B4BF7960AC1AD5	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-11-25 16:00:01	6A16741182E4C1E83636053C81CE344E	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-11-25 16:00:01	4B9C652BD0FD95A9E6123913C35519D6	143872	----a-w-	C:\Windows\System32\wextract.exe
2014-11-25 16:00:00	CA2F3153EF3BCB0BD3A8984C933DF604	167424	----a-w-	C:\Windows\System32\iexpress.exe
2014-11-25 16:00:00	A3871DED5ED88F59C0D1396761708F81	13824	----a-w-	C:\Windows\System32\mshta.exe
2014-11-25 16:00:00	66585D645C4E23A0FD5124BD714AE020	12800	----a-w-	C:\Windows\System32\msfeedssync.exe
2014-11-25 16:00:00	3FA76B67F25D84B3C2A4E8A8C0919E6E	12800	----a-w-	C:\Windows\SysWOW64\mshta.exe
2014-11-25 16:00:00	1BD4CD20A25B4A3A5F7BAAC25E9D9202	11264	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2014-11-25 15:57:40	D43F34B4901C499FE13798149879DCD8	161960	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-11-25 15:57:33	D1A2E993DB1867C79177CCC9DB6337D0	116032	----a-w-	C:\Windows\System32\consent.exe
2014-11-25 15:57:28	EA2DF5520D3623F353F43809A2F88086	55776	----a-w-	C:\Windows\System32\wuauclt.exe
2014-11-25 15:57:28	514AEA6CF4B70FAA30A2BC4B4CC10A39	29696	----a-w-	C:\Windows\SysWOW64\wuapp.exe
2014-11-25 15:57:28	4D94560FD4982BB52C1FE64AE38E1A9F	35840	----a-w-	C:\Windows\System32\wuapp.exe
2014-11-25 15:56:27	BCE66E78D388875B87286CA091E7075F	7484224	----a-w-	C:\Windows\System32\ntoskrnl.exe
2014-11-25 15:56:15	743DE31CDA4A16551F4F5F8A006E7295	1408472	----a-w-	C:\Windows\Camera\Camera.exe
2014-11-25 15:56:13	FEF22922E4FA075C6C1FFF4385D74A95	99136	----a-w-	C:\Windows\FileManager\FileManager.exe
2014-11-25 15:56:13	CFD6DBED27511D7A5FBE33AFA7E6B669	76800	----a-w-	C:\Windows\System32\BulkOperationHost.exe
2014-11-25 15:56:13	0C8AF6461266A72BE61552BB42BC13D8	361496	----a-w-	C:\Windows\FileManager\PhotosApp.exe
2014-11-25 15:56:13	00027BEFE4F0106DEC51901872EEDB85	86784	----a-w-	C:\Windows\ImmersiveControlPanel\SystemSettings.exe
=== C: other files ==
2014-11-30 11:59:29	CE44A9D4918DCDC7CCCF5503BF4D7A3D	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_25\lib\deploy\ffjcext.zip
2014-11-30 11:58:12	0CF8E10FE85690F8445102C97947D236	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-276417084-705470824-1319734195-1001\$I0YTOIY.com
2014-11-30 11:49:10	92F975B07E65EF3AE67D89A016FDAACC	638888	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-276417084-705470824-1319734195-1001\$R0YTOIY.com
2014-11-30 11:46:49	92F975B07E65EF3AE67D89A016FDAACC	638888	----a-w-	C:\Users\Rien\Downloads\JavaSetup8u25.com
2014-11-29 12:47:04	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-11-29 12:46:22	D3311B31C470E7681B14D9B014CBF9ED	93400	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2014-11-29 12:46:22	D1F2D4DF0A5D3B700794E26356A55B44	64216	----a-w-	C:\Windows\System32\drivers\mwac.sys
2014-11-29 11:19:47	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\Windows\System32\drivers\srv.sys
2014-11-29 11:19:46	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\Windows\System32\drivers\ntfs.sys
2014-11-29 11:19:44	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\Windows\System32\drivers\srv2.sys
2014-11-29 11:19:40	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\Windows\System32\drivers\usbccgp.sys
2014-11-29 11:19:39	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\Windows\System32\drivers\spaceport.sys
2014-11-29 11:19:38	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\Windows\System32\drivers\volsnap.sys
2014-11-29 11:19:37	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2014-11-29 11:19:37	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\Windows\System32\drivers\nwifi.sys
2014-11-29 11:19:36	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\Windows\System32\drivers\usbhub.sys
2014-11-29 11:19:33	E4B4BE2D7750849C07589DA0B0AABA01	1118040	----a-w-	C:\Windows\System32\drivers\ndis.sys
2014-11-29 11:19:33	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\Windows\System32\drivers\hdaudbus.sys
2014-11-29 11:19:33	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2014-11-29 11:19:33	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\Windows\System32\drivers\NdisImPlatform.sys
2014-11-29 11:19:33	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\Windows\System32\drivers\IPMIDrv.sys
2014-11-29 11:19:30	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\Windows\System32\drivers\pci.sys
2014-11-29 11:19:30	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\Windows\System32\drivers\ks.sys
2014-11-29 11:19:20	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\Windows\System32\drivers\bthpan.sys
2014-11-29 11:16:29	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\Windows\System32\drivers\msgpioclx.sys
2014-11-29 10:46:18	5C3669B71657F22E67A1D4BD49D2CBE7	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2014-11-27 14:24:25	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2014-11-27 14:23:25	7A1A3F213CDB3363D179D5014272025D	402432	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2014-11-27 14:23:21	674A4702E4E144E8710ED1A2EC6DD049	96768	----a-w-	C:\Windows\System32\drivers\agilevpn.sys
2014-11-27 14:23:19	65ED7B9CFEA893DF7748D5FF692690DE	38912	----a-w-	C:\Windows\System32\drivers\vwifimp.sys
2014-11-27 14:23:18	35BF5C5F5E3C9902C98978C7640574DA	71680	----a-w-	C:\Windows\System32\drivers\vwififlt.sys
2014-11-27 14:22:18	FE0ADF5028EB8C1339B66B3AEDE3FEF9	440664	----a-w-	C:\Windows\System32\drivers\usbport.sys
2014-11-27 14:22:17	D79920BE4E6683D3AB50F71457A4F6C6	27480	----a-w-	C:\Windows\System32\drivers\usbd.sys
2014-11-27 14:22:17	D537815E450A149752C15868392AD1F3	110592	----a-w-	C:\Windows\System32\drivers\WUDFPf.sys
2014-11-27 14:22:17	7CCBBCEE408A5DBE3FE47297DB5A6CFC	227840	----a-w-	C:\Windows\System32\drivers\WUDFRd.sys
2014-11-27 14:22:17	48BA326A3DBA5B5BEB5F2777F4618696	89944	----a-w-	C:\Windows\System32\drivers\usbehci.sys
2014-11-27 14:22:17	064260B3A5868AC894A4943543BC7AB7	37376	----a-w-	C:\Windows\System32\drivers\usbuhci.sys
2014-11-25 16:01:21	DE8D12B4C3F55FA2C5E9774314F6C58A	258368	----a-w-	C:\Windows\System32\drivers\WdFilter.sys
2014-11-25 16:01:20	4AD874CDC812EC156265E451B6B09DAB	114496	----a-w-	C:\Windows\System32\drivers\WdNisDrv.sys
2014-11-25 16:01:20	0359607177E5E9F6041136CC0A5CB0B6	35320	----a-w-	C:\Windows\System32\drivers\WdBoot.sys
2014-11-25 15:58:41	B31C4917EC5EADE24A90DDAF37EA00E0	4182016	----a-w-	C:\Windows\System32\win32k.sys
2014-11-25 15:58:37	9F08A6608F98B5407E7DDBCF306573EF	27456	----a-w-	C:\Windows\System32\drivers\rdpvideominiport.sys
2014-11-25 15:58:37	6D2EE96150E35B9EA49F2B481DE0369A	177472	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2014-11-25 15:58:37	4E1207CE16E615B0B7A70DC889F4500E	563976	----a-w-	C:\Windows\System32\drivers\cng.sys
2014-11-25 15:56:26	CCB3A2BB60FE5073F2DEA63FE83CF8FE	2497344	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2014-11-25 15:56:15	E3FCE2A6B3533D99A3B498504DF9CC47	474432	----a-w-	C:\Windows\System32\drivers\netio.sys
2014-11-25 15:56:13	7F23E38C5B6448F91439E4066645191E	428864	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-11-25 15:56:13	66732C13628BDB1AB0D6FD46027327C2	148800	----a-w-	C:\Windows\System32\drivers\USBSTOR.SYS

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-21-276417084-705470824-1319734195-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\Rien\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Acrobat Speed Launcher"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
"Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
"DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"
"DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SkyDrive"="C:\Users\Rien\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"
"QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe"
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Folders ======================

2012-10-21 09:33:34	834	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\WINDOWS\SysNative\tasks\PCDEventLauncherTask" ["C:\Program Files\My Dell\sessionchecker.exe"]
"C:\WINDOWS\SysNative\tasks\PCDoctorBackgroundMonitorTask" ["C:\Program Files\My Dell\uaclauncher.exe"]
"C:\WINDOWS\SysNative\tasks\SystemToolsDailyTest" ["uaclauncher.exe"]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{3C777BB1-F88C-42E7-B35D-49079297DC09}" [C:\WINDOWS\system32\msfeedssync.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [26-09-2014 14:03]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo  Url="http://www.google.com/search?q={sear"
{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} Google  Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [SkyDrive] "C:\Users\Rien\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Converteren naar Adobe PDF - res://c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.1.0.0/GarminAxControl_32.CAB
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @oem110.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technologie (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\bakke_000\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Rien\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Rien\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\bakke_000\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Rien\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Rien\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=241 folders=56 354734854 bytes)

==== Empty Temp Folders ======================

C:\Users\bakke_000\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Rien\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Rien\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 30-11-2014 at 13:20:53,95 ======================