Zoek.exe v5.0.0.0 Updated 06-February-2015
Tool run by Alexander on za 07/02/2015 at 21:58:56,82.
Microsoft Windows 8.1 Pro 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Alexander\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

7/02/2015 22:00:17 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
C:\Program Files (x86)\BlueStacks\HD-Service.exe
C:\Program Files (x86)\BlueStacks\HD-Network.exe
C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Users\Alexander\AppData\Roaming\uTorrent\uTorrent.exe
C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\Rayman_U_SLUS_00005.exe
C:\Program Files\Microsoft Office 15\Root\Office15\ONENOTEM.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\VideoLAN.VLCforWindows8_0.1.1.0_x86__paz6r1rewnh0a\VLC_WINRT_APP.Windows.exe
C:\Users\Alexander\Downloads\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe

==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command]
@="C:\\Program Files (x86)\\Google\\Chrome\\Application\\chrome.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\ProgramData\3fadef5c00007eb6 deleted
C:\ProgramData\IHProtectUpDate deleted
C:\ProgramData\{21fa3be5-2463-57f3-21fa-a3be5246ef94} deleted
C:\ProgramData\hdkibojcjpijjjhckdfjfbjaamlhhjnm deleted
C:\ProgramData\17434150612562412262 deleted
C:\ProgramData\jkknfaednekbjaikknfbokbjomonnhoh deleted
C:\ProgramData\{ef1b2a6d-8404-4e71-ef1b-b2a6d840a9b6} deleted
C:\ProgramData\APN deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Alexander\Downloads\FreeYouTubeToMP3Converter.exe deleted
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\58451629407c870a" not deleted
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\95b8b07c67a860de" not deleted
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe" deleted
"C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\af68905655e7a9d" deleted
"C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\c70b2f50428a9d49" deleted
"C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\Rayman_U_SLUS_00005.exe" deleted
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}" not deleted
"C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}" deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 8098 MB
CPU Info: Intel(R) Core(TM) i5-4300U CPU @ 1.90GHz
CPU Speed: 2522,4 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | Intel(R) HD Graphics Family
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1080 X 720 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter #2 | Bluetooth-apparaat (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Marvell AVASTAR Wireless-AC Network Controller
CD / DVD Drives: No optical drives found.
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  232,5GB
Hard Disks - Free: C:  175,3GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE |  | OEMC - 300
Time Zone: Romance (standaardtijd)
Motherboard *: Microsoft Corporation Surface Pro 3
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome	40.0.2214.111
Internet Explorer Version: 11.0.9600.17498 
Google Chrome version: 40.0.2214.111

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2015-02-06 14:07:25	ACDBE1ED38167C8B01B8F63161BB2CEA	2374784	----a-w-	C:\WINDOWS\explorer.exe
2015-02-05 10:05:39	F0E857AA9EFCC374C1931F7E9978C480	24768	----a-w-	C:\WINDOWS\diagwrn.xml
2015-02-05 10:05:39	F0E857AA9EFCC374C1931F7E9978C480	24768	----a-w-	C:\WINDOWS\diagerr.xml
====== C:\Users\ALEXAN~1\AppData\Local\Temp ====
2015-02-06 23:21:14	F3E30088AA49E6019C62C0A20287F025	34796368	----a-w-	C:\Users\Alexander\AppData\Local\Temp\FreeYouTubeToMP3Converter.exe
2015-02-06 22:15:30	33E8E02642C01520640E9313410FC365	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\4C52F3\temp\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe
2015-02-06 22:03:55	55BAE15D523E4FABAA551023703D3FD9	2463384	----a-w-	C:\Users\Alexander\AppData\Local\Temp\~dlBCC\~dljyb\tmp\XTab_v4.0.exe
2015-02-06 22:03:45	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\0dA80E18\temp\6313Bf805.exe
2015-02-06 22:01:06	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\7A2e3A199\temp\Rayman_U_SLUS_00005.exe
2015-02-06 14:08:25	B36BF235EC530152B55F663DF6231613	559000	----a-w-	C:\Users\Alexander\AppData\Local\Temp\utt63B6.tmp.exe
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-02-07 00:13:19	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-02-06 23:24:16	262AD0EF90F757FB715B3EDD6A8E469C	778936	----a-w-	C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-02-06 23:24:16	2083BD93AE43F9494318B422FF8943D1	102608	----a-w-	C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-02-06 16:07:32	02E324E880F6E54187A2B3C9F53DD70E	12730880	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-02-06 16:07:18	AA3E2CEECFCD89D49FF902ECAD197946	2071552	----a-w-	C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-02-06 16:07:18	495B4CA2AF924CE5C08BBC9D5E7E1103	2145472	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2015-02-06 16:07:13	69567319D077611FFF5A07BDCDF2A400	889344	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-02-06 16:07:12	B393F30C63DCD1A0D6977A8E27A42A57	707536	----a-w-	C:\WINDOWS\SysWOW64\mfplat.dll
2015-02-06 16:07:10	E011C6CA6921FAC88F8B163C68E554BF	2410976	----a-w-	C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-02-06 16:07:08	D39BD0DB9D91A4376F759282B2C276AE	1057792	----a-w-	C:\WINDOWS\SysWOW64\printui.dll
2015-02-06 16:07:08	D32E7F10D61EFF5A26FB806934FB1088	1029632	----a-w-	C:\WINDOWS\SysWOW64\mispace.dll
2015-02-06 16:07:08	0C666352A0F9C61AB07019D3928463ED	391000	----a-w-	C:\WINDOWS\SysWOW64\netcfgx.dll
2015-02-06 16:07:08	0120A5300040B9A1E459A03B364A74D5	1741824	----a-w-	C:\WINDOWS\SysWOW64\SRH.dll
2015-02-06 16:07:06	3EAE3411A4A492C253A88534209E3045	355800	----a-w-	C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-02-06 16:07:06	3362D78214C5B0A5CAE9E5C1692FA12B	474112	----a-w-	C:\WINDOWS\SysWOW64\AppxPackaging.dll
2015-02-06 16:07:06	190228E527C47A96D9B865F07BF2EC19	889856	----a-w-	C:\WINDOWS\SysWOW64\aclui.dll
2015-02-06 16:07:05	86A8EEFADBDDA52474456818D76DFAAA	302080	----a-w-	C:\WINDOWS\SysWOW64\wlanmsm.dll
2015-02-06 16:07:05	427A26A303BBF3736B054244EAFFAA4D	439296	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-02-06 16:07:04	F7A00AA3EA30F2F923C1F8A0DE76A113	180720	----a-w-	C:\WINDOWS\SysWOW64\mftranscode.dll
2015-02-06 16:07:04	9D75171689317D82FBF8B155FCF34AE8	371712	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2015-02-06 16:07:04	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\SysWOW64\locale.nls
2015-02-06 16:07:03	FB970EC73EAB710FE1F529C139E258A0	477200	----a-w-	C:\WINDOWS\SysWOW64\SHCore.dll
2015-02-06 16:07:01	6ADEF3CCE9788849FA7F8D28A85B2833	540672	----a-w-	C:\WINDOWS\SysWOW64\comdlg32.dll
2015-02-06 16:06:59	42A350B81E0E9A427D7366E1E8BFBADC	198656	----a-w-	C:\WINDOWS\SysWOW64\WebClnt.dll
2015-02-06 16:06:59	05B976CBCB4ADE4D3F4E75DAD196EECD	313856	----a-w-	C:\WINDOWS\SysWOW64\clusapi.dll
2015-02-06 16:06:57	95719EC346E3A9FDD87662BE886EB200	1817088	----a-w-	C:\WINDOWS\SysWOW64\Display.dll
2015-02-06 16:06:56	FEC1F6C1F496944BC40D995957D971CF	1404416	----a-w-	C:\WINDOWS\SysWOW64\storagewmi.dll
2015-02-06 16:06:56	7BB5166433C5319CED9E8D05A0C5F7E8	230400	----a-w-	C:\WINDOWS\SysWOW64\wlanapi.dll
2015-02-06 16:06:55	19C5844B56BCA187625D2CFA9A7C1144	127544	----a-w-	C:\WINDOWS\SysWOW64\winmmbase.dll
2015-02-06 16:06:54	F19F4DF5361132D5E19FBE1A0DCDC80B	335680	----a-w-	C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-02-06 16:06:54	8A5A7AB46513F9FA75E7223471084645	667136	----a-w-	C:\WINDOWS\SysWOW64\wuapi.dll
2015-02-06 16:06:54	0F3DF44347B0051D30B23EED12973D8C	210944	----a-w-	C:\WINDOWS\SysWOW64\wisp.dll
2015-02-06 16:06:52	8FC068ACF45786301D04CED5B58A13E3	1319936	----a-w-	C:\WINDOWS\SysWOW64\wsecedit.dll
2015-02-06 16:06:52	704AA3D6466B2070D321C63C99368448	95232	----a-w-	C:\WINDOWS\SysWOW64\AppxSip.dll
2015-02-06 16:06:51	E5FB6044A36E74484DA958AC17FA9504	1290752	----a-w-	C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-02-06 16:06:51	21A13082B44A898B8DCC54972B2B5C31	128568	----a-w-	C:\WINDOWS\SysWOW64\winmm.dll
2015-02-06 16:06:50	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\WINDOWS\SysWOW64\SndVol.exe
2015-02-06 16:06:49	E1F38BF986C7285AB13FB369243A41E0	448000	----a-w-	C:\WINDOWS\SysWOW64\VAN.dll
2015-02-06 16:06:49	2F6410A7641BE1196DC423025F208285	98048	----a-w-	C:\WINDOWS\SysWOW64\dwmapi.dll
2015-02-06 16:06:46	FC36740153F03C81ADA5B5EEF22C8064	1048064	----a-w-	C:\WINDOWS\SysWOW64\gpedit.dll
2015-02-06 16:06:46	EBA5466233255ADAF7D5501F0CC2B9CF	189016	----a-w-	C:\WINDOWS\SysWOW64\rsaenh.dll
2015-02-06 16:06:46	DA5AD8EA1331015BCC2FCFB1B7EE4EBC	168960	----a-w-	C:\WINDOWS\SysWOW64\iasnap.dll
2015-02-06 16:06:45	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\WINDOWS\SysWOW64\osk.exe
2015-02-06 16:06:44	CB587DCB837D0367B43584855BD22F25	432128	----a-w-	C:\WINDOWS\SysWOW64\Windows.Networking.dll
2015-02-06 16:06:44	0836AC3FEF8E7380D1973E6DB14E31A7	459264	----a-w-	C:\WINDOWS\SysWOW64\SettingSync.dll
2015-02-06 16:06:43	F7CA5639A235A1E2071500B4D1FCC6F8	51200	----a-w-	C:\WINDOWS\SysWOW64\wshbth.dll
2015-02-06 16:06:43	14D03A4F5F0AFCDB93CAFB68B77ACDB6	288768	----a-w-	C:\WINDOWS\SysWOW64\stobject.dll
2015-02-06 16:06:42	F1FCD3780D71FD21EAA2A42D3A924B1F	832512	----a-w-	C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-02-06 16:06:41	FE166ADB02C1E146005789C17E065143	8192	----a-w-	C:\WINDOWS\SysWOW64\KBDRUM.DLL
2015-02-06 16:06:41	DA84B73474C3D02B453E6FAC0F38DBFB	26112	----a-w-	C:\WINDOWS\SysWOW64\wups.dll
2015-02-06 16:06:41	8A073508726DE4A69ED702A7A6082808	1351168	----a-w-	C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-02-06 16:06:40	0A6ABB521CDCE96D3A50939CF7964E24	206336	----a-w-	C:\WINDOWS\SysWOW64\powercfg.cpl
2015-02-06 16:06:39	FB38126A24BDC4912C175C4C430E911C	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDRU1.DLL
2015-02-06 16:06:39	A40516F4443996DC92350D6890546E4A	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDYAK.DLL
2015-02-06 16:06:39	44AABDB92C816F112E054FC3523B51E8	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDBASH.DLL
2015-02-06 16:06:39	35D1AA379B4C2873F1DD62EDCA740C19	6656	----a-w-	C:\WINDOWS\SysWOW64\KBDRU.DLL
2015-02-06 16:06:36	594CEF2E9CD8A5BB8310B3844614C127	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTAT.DLL
2015-02-06 16:06:34	7D6731C5BA01769612A3EDC42A7C931B	79872	----a-w-	C:\WINDOWS\SysWOW64\BluetoothApis.dll
2015-02-06 16:06:32	CA16D3794D44C57CBFBE0CE5530FFED8	80896	----a-w-	C:\WINDOWS\SysWOW64\wudriver.dll
2015-02-06 16:06:31	DB46A1A84AEC3A7F0FBA4E20320F3159	7168	----a-w-	C:\WINDOWS\SysWOW64\KBDTT102.DLL
2015-02-06 15:04:22	EA1E7BAC547309F4221CEDB121782605	304128	----a-w-	C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-02-06 15:04:22	D87CE3406147F2599F07D52960A110C6	175024	----a-w-	C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-02-06 15:04:22	B310613B7468811E010A35DC8151270A	1399200	----a-w-	C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-02-06 15:04:22	7ED8B2D108CAFA8B6C2560426EAAAA4D	30720	----a-w-	C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-02-06 15:04:22	4CF446E735E05C6A3CAF39F6287687F5	184312	----a-w-	C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-02-06 15:04:22	4B76A850E7CC05AA3E88FD1C1B0228FF	1061376	----a-w-	C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-02-06 15:04:22	31688A5880BE88BB43CB055E39DE277A	279952	----a-w-	C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-02-06 15:04:22	093A2FFC6CFB5A9A1A0760E5391E9C3F	175104	----a-w-	C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-02-06 15:04:22	08FAECE0B4579CA0583FFC49EF4B9B8B	74240	----a-w-	C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-02-06 15:04:21	DA51FE017BCBA50F695AA28B9A5E48D9	7232512	----a-w-	C:\WINDOWS\SysWOW64\ig75icd32.dll
2015-02-06 15:04:21	BB587BA69547BF452BC347150C957239	16698848	----a-w-	C:\WINDOWS\SysWOW64\igd11dxva32.dll
2015-02-06 15:04:21	BAC03005F5637776245227B75FED686D	6956056	----a-w-	C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-02-06 15:04:21	8EDBBE5E0FD9C18D6C1F798EE1768D36	23401576	----a-w-	C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-02-06 15:04:21	7D8237B1ABEA8CCFA201399B2B6FA630	4679768	----a-w-	C:\WINDOWS\SysWOW64\igdusc32.dll
2015-02-06 15:04:21	41F89E0ED64800398AF06C1A67A79E7B	515960	----a-w-	C:\WINDOWS\SysWOW64\igdmd32.dll
2015-02-06 15:04:21	4108283A1155529EC297224A2DBFF13D	151552	----a-w-	C:\WINDOWS\SysWOW64\igdail32.dll
2015-02-06 15:04:21	2F9C6D971A19CDF483E1EC2155C741A7	11512320	----a-w-	C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-02-06 15:04:21	23E339C6185347D361B8FEE9CA5F29CF	187392	----a-w-	C:\WINDOWS\SysWOW64\igdde32.dll
2015-02-06 15:04:21	0D0DB7B9A3BF2874F575535762394113	20049408	----a-w-	C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-02-06 15:04:21	000C03230FD38B2FBB1D88E540C47EAF	350208	----a-w-	C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-02-06 14:08:22	C4FB74C1E96142E0A9E5DE78E3A0B494	28672	----a-w-	C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-02-06 14:08:06	5F333FDBF392850373C89BDA31EBEC1B	1346048	----a-w-	C:\WINDOWS\SysWOW64\user32.dll
2015-02-06 14:08:01	3B45EA6108E48406828D4E015FF41DD0	12800	----a-w-	C:\WINDOWS\SysWOW64\winshfhc.dll
2015-02-06 14:07:33	98C136EA9D0CA9C010FE49D863D29C6D	1612992	----a-w-	C:\WINDOWS\SysWOW64\crypt32.dll
2015-02-06 14:07:29	3BF6BEBD0A5666BDB426A734A4578D9B	1346048	----a-w-	C:\WINDOWS\SysWOW64\msxml3.dll
2015-02-06 14:07:26	195822ACCDAA2B4815DD01BAFC335595	2084520	----a-w-	C:\WINDOWS\SysWOW64\explorer.exe
2015-02-06 14:07:23	1E4CD5DB4F61DF2A9053C8B9A46B4013	50176	----a-w-	C:\WINDOWS\SysWOW64\UXInit.dll
2015-02-06 14:07:09	BC426A818B7F3DB5F509BC1B62FF1501	357376	----a-w-	C:\WINDOWS\SysWOW64\schannel.dll
2015-02-06 14:07:08	B2AC9E081A847ACBD5B62BE25AF39DA1	88800	----a-w-	C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-02-06 14:06:43	128EC9879D462F89829E663417FE5DBD	710144	----a-w-	C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-02-06 14:06:35	7BEE9E040222E7033A820780E1A61204	5777408	----a-w-	C:\WINDOWS\SysWOW64\mstscax.dll
2015-02-06 14:06:34	074BF061D97E49AAF04F2FAF46409A14	5902848	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-02-06 14:06:33	A4E624F7658D08C1717542FA10E0A973	1467384	----a-w-	C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-06 14:06:31	BFC6F7889A9CFF451A418862444B9F63	321024	----a-w-	C:\WINDOWS\SysWOW64\Wldap32.dll
2015-02-06 14:06:31	76831C139BD9E227712B283A6A5ABBA8	840192	----a-w-	C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-02-06 14:06:31	24B30DB8D1F8CF0F8C1AAAE319BC508E	838144	----a-w-	C:\WINDOWS\SysWOW64\KernelBase.dll
2015-02-06 14:06:30	E86549FED3008360730A6B722079D537	756224	----a-w-	C:\WINDOWS\SysWOW64\WSShared.dll
2015-02-06 14:06:30	DBA00F3FC75495058A25B24906C24599	1205976	----a-w-	C:\WINDOWS\SysWOW64\propsys.dll
2015-02-06 14:06:28	DA65F1320538BC417B8FAE0BCAC330A0	265216	----a-w-	C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2015-02-06 14:06:27	1FA2D34A17E366C269FBE94DE06B177F	855552	----a-w-	C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-02-06 14:05:53	D1A07DE4DC408E5AA5CFBAE261919BDC	72192	----a-w-	C:\WINDOWS\SysWOW64\packager.dll
2015-02-06 14:05:25	A22688490DCC2DA19441CA09EF7299BF	736768	----a-w-	C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-06 14:05:25	791BDC9FD3C95F92C7DB2162132C8645	324096	----a-w-	C:\WINDOWS\SysWOW64\certcli.dll
2015-02-06 14:05:23	DDAAC7C966436938526D4CF4C6042A5C	154112	----a-w-	C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-06 14:04:36	75D0FAD0165770819770628239BF57DB	602768	----a-w-	C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-06 14:04:35	2C01D8EA2B0FA834597FCD96AAAE4F52	406400	----a-w-	C:\WINDOWS\SysWOW64\dxgi.dll
2015-02-06 14:04:33	A9B598B04606F9869C42728FE95CBC7C	1489072	----a-w-	C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-06 14:04:00	DCE9FD22B136C127C85F285E083B928B	65536	----a-w-	C:\WINDOWS\SysWOW64\nlaapi.dll
2015-02-06 14:03:34	5D2C15BDAD48646C8CBC83903252D87C	514048	----a-w-	C:\WINDOWS\SysWOW64\rastls.dll
2015-02-06 14:03:32	DBC4D46A7DDC14D1D1ED4B613F9E41A4	1064448	----a-w-	C:\WINDOWS\SysWOW64\gdi32.dll
2015-02-06 14:03:24	CA7A00203E710E56C18D15B72148769F	790528	----a-w-	C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-02-06 14:03:03	B09332CC976AC43EFF595B6F01AA275C	2459136	----a-w-	C:\WINDOWS\SysWOW64\authui.dll
2015-02-06 14:03:01	46FBD043A1688EFD6AC1395EE886AD33	3607040	----a-w-	C:\WINDOWS\SysWOW64\msi.dll
2015-02-06 14:03:00	48C20EB77757F22840FF4CED98D8DEB1	325120	----a-w-	C:\WINDOWS\SysWOW64\msihnd.dll
2015-02-06 14:02:56	DB3ED0BA26D7C598481A23E7D06A370E	2344448	----a-w-	C:\WINDOWS\SysWOW64\Wpc.dll
2015-02-06 14:02:47	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\WINDOWS\SysWOW64\poqexec.exe
2015-02-06 14:02:07	66F97677CC13F7B9E2408CC75750A389	208896	----a-w-	C:\WINDOWS\SysWOW64\pku2u.dll
2015-02-06 14:02:07	4CD4C8D34213975444643A5F9594E363	806400	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
2015-02-06 14:01:10	CA23E168518460519DC8D49EC6AD9550	18723112	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2015-02-06 14:01:10	1FB4389CA807D59B105B0827FCC8F768	11820544	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2015-02-06 14:00:58	1793FC07D568C930C04F9FF40FFF9A69	799744	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-02-06 14:00:58	0EEE3F2278E447498B2CDBDF34C63C91	670384	----a-w-	C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-02-06 14:00:56	C1AD30D5E28B4291D4A16BC6944ABC0C	2030592	----a-w-	C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-02-06 14:00:54	A208DEE0CD61E24817C26D5A05503DA7	334336	----a-w-	C:\WINDOWS\SysWOW64\puiobj.dll
2015-02-06 14:00:53	710A55B8443155F1FF09E07C2E44D79D	200192	----a-w-	C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-02-06 14:00:52	A0E20B50D66FDF786BC2324499F7C482	195584	----a-w-	C:\WINDOWS\SysWOW64\prnntfy.dll
2015-02-06 14:00:52	558838A9A51259F3E76030E3E997A72A	162816	----a-w-	C:\WINDOWS\SysWOW64\puiapi.dll
2015-02-06 14:00:51	17FC09725FEE2546B96A938288509719	485376	----a-w-	C:\WINDOWS\SysWOW64\untfs.dll
2015-02-06 14:00:49	46C1902654FF54C835E4C4E8C14B7F2A	239104	----a-w-	C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-02-06 13:58:23	4C48253C6A21CCEBA071B58A5CDF17C1	875688	----a-w-	C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-02-06 13:58:16	F25284C763E728E4DAC248C211D1FC5B	76288	----a-w-	C:\WINDOWS\SysWOW64\mshtmled.dll
2015-02-06 13:58:15	F34F6DC38A21FCDBB50CDD1EE97B1EA3	1307136	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-06 13:58:15	D7A98A4CEA2E89F544065A00BF37FC10	688640	----a-w-	C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-06 13:58:15	713407DA59A9DBE5BD64A17D7A267DA1	326656	----a-w-	C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-06 13:58:15	69AC6FD5B0B4DC963723E1EBDEE10A2C	285696	----a-w-	C:\WINDOWS\SysWOW64\dxtrans.dll
2015-02-06 13:58:15	45CDC0E37774D30BEE8C5F62CE30D599	1042944	----a-w-	C:\WINDOWS\SysWOW64\actxprxy.dll
2015-02-06 13:58:15	220505B0B3E96C857DD01729AF0CD369	19749376	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-06 13:58:14	B59E370277EDB6643083B62297175628	12836864	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-06 13:58:14	8FC2FB51EB90E6AA582BDBA39C1935FD	620032	----a-w-	C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-02-06 13:58:14	7BCC24D058205664BD700D272B169AEC	418304	----a-w-	C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-06 13:58:14	543ADCEA31CF9C2B4EEB900D4AAFD0F9	2052096	----a-w-	C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-06 13:58:14	01777AB557997E98691E322225314E57	2277888	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-06 13:58:13	F728E7E9937117E0F32F39840EB6D737	4299264	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-06 13:58:13	41AFA61E061E98E97272AC02184C8C2C	710144	----a-w-	C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-06 13:58:12	5E4E0E43E0A5BF9F089696DFA7A3D677	1888256	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-02-06 13:58:09	98F2784FC4A4A80CE20016C6281834EE	880128	----a-w-	C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-06 13:58:08	FCAF49AE2E10EF3823262D10E7F2D0DE	60416	----a-w-	C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-06 13:58:08	C6941899E6B0A1893D2D5A89241A43B6	661504	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-02-06 13:58:08	37F078B5B435AFC6BF316F2AD14B469A	501248	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-06 13:58:07	EF7A48E5955736BEECF0B0ABB478E90E	478208	----a-w-	C:\WINDOWS\SysWOW64\ieui.dll
2015-02-06 13:58:07	BE5EDCACB9E83C3695F650094367740C	99328	----a-w-	C:\WINDOWS\SysWOW64\hlink.dll
2015-02-06 13:58:07	476900A8699F5C3D954ADD4A35D33F89	230400	----a-w-	C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-06 13:58:06	FC51834D5057B9D7847666AE88BC981C	130048	----a-w-	C:\WINDOWS\SysWOW64\occache.dll
2015-02-06 13:58:06	F1313045CDCBBC4C90C34AEF67CEE088	112128	----a-w-	C:\WINDOWS\SysWOW64\IEAdvpack.dll
2015-02-06 13:58:06	ED5A4451A1A2777C6C5DB4238FD09078	115712	----a-w-	C:\WINDOWS\SysWOW64\ieUnatt.exe
2015-02-06 13:58:06	DCFF6E5356CFF5B50BBA0FAAE01A0412	90624	----a-w-	C:\WINDOWS\SysWOW64\iesysprep.dll
2015-02-06 13:58:06	86181845803967FC51B64119E80FC18C	340992	----a-w-	C:\WINDOWS\SysWOW64\html.iec
2015-02-06 13:58:06	615D259116D1B331911CE28C8CD1CCF3	73216	----a-w-	C:\WINDOWS\SysWOW64\tdc.ocx
2015-02-06 13:58:06	236AD481F1632F4CE7E9835FFD4AF41D	168960	----a-w-	C:\WINDOWS\SysWOW64\msrating.dll
2015-02-06 13:58:06	1D391C687102569FD1EA154F0C1A4CE8	91136	----a-w-	C:\WINDOWS\SysWOW64\inseng.dll
2015-02-06 13:58:06	159199095C9959BE75E61C0FF947708F	152064	----a-w-	C:\WINDOWS\SysWOW64\iexpress.exe
2015-02-06 13:58:06	0FEEFF4B96CA5972121F59525142A14E	52736	----a-w-	C:\WINDOWS\SysWOW64\msfeedsbs.dll
2015-02-06 13:58:06	0E4D9A13C7C6C8FC3ACCF1C8C28DE200	128000	----a-w-	C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-06 13:58:06	02FF387F6228169EDDCB41F5E4B1A4E4	47104	----a-w-	C:\WINDOWS\SysWOW64\jsproxy.dll
2015-02-06 13:58:05	EF7B7299A1D6604AD3CA2CE1BEF8C8F3	30720	----a-w-	C:\WINDOWS\SysWOW64\iernonce.dll
2015-02-06 13:58:05	A66A88FFE53BBB9DDAACE0110A8232EC	137728	----a-w-	C:\WINDOWS\SysWOW64\wextract.exe
2015-02-06 13:58:05	8D1E12756ED6F1FDB026AD3CF264F90C	40448	----a-w-	C:\WINDOWS\SysWOW64\imgutil.dll
2015-02-06 13:58:05	59607FB7C6B84860CE2D1C5F7C57E052	47616	----a-w-	C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2015-02-06 13:58:05	3FA76B67F25D84B3C2A4E8A8C0919E6E	12800	----a-w-	C:\WINDOWS\SysWOW64\mshta.exe
2015-02-06 13:58:05	3C544C566EE7091AC52D4D9156C62687	235520	----a-w-	C:\WINDOWS\SysWOW64\url.dll
2015-02-06 13:58:05	316280CC22CBB15271A91D83CDFB73C3	27136	----a-w-	C:\WINDOWS\SysWOW64\licmgr10.dll
2015-02-06 13:58:05	29CED1A4777A43526A4ED8A7B6936883	64000	----a-w-	C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-06 13:58:05	26F4BDB6EA83011885E217A51A4A3E68	62464	----a-w-	C:\WINDOWS\SysWOW64\iesetup.dll
2015-02-06 13:58:05	1BD4CD20A25B4A3A5F7BAAC25E9D9202	11264	----a-w-	C:\WINDOWS\SysWOW64\msfeedssync.exe
2015-02-06 13:58:05	0812A503FF349D1DCEEB820B2E4FEE15	57344	----a-w-	C:\WINDOWS\SysWOW64\pngfilt.dll
2015-02-06 13:58:00	B5867FF96CD0F7712CB4985EAC9F9147	370424	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2015-02-06 13:58:00	7B2643AE85322EA168B0E760B73258FF	424544	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2015-02-06 13:58:00	4B07B24705A9225EB565650569BDA26B	344536	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-02-06 13:58:00	1F9C1925A85C6CC592C2FF612A610412	372408	----a-w-	C:\WINDOWS\SysWOW64\Faultrep.dll
2015-02-06 13:58:00	1EB1C1E43C1901865C5AE34A9771C069	448792	----a-w-	C:\WINDOWS\SysWOW64\wer.dll
2015-02-06 13:58:00	1275462A4337DBC5518859316BEF262C	413136	----a-w-	C:\WINDOWS\SysWOW64\WerFault.exe
2015-02-06 13:57:59	D9F17FC61102D89A67A2AA3DD21231F5	33584	----a-w-	C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-02-06 13:57:59	BFFD9961B29DAB8084278DB2314D6027	33280	----a-w-	C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2015-02-06 13:57:59	7C36A441C73F079781ABA8F3DAEDFB37	136296	----a-w-	C:\WINDOWS\SysWOW64\wermgr.exe
2015-02-06 13:53:23	86E39E9161C3D930D93822F1563C280D	1998168	----a-w-	C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-02-06 13:53:23	1C9B45E87528B8BB8CFA884EA0099A85	2106216	----a-w-	C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
====== C:\WINDOWS\SysWOW64\drivers =====
====== C:\WINDOWS\Sysnative =====
2015-02-07 00:19:35	FC273E6B811F678EA5518A27D57E0879	298120	------w-	C:\WINDOWS\Sysnative\MpSigStub.exe
2015-02-07 00:13:19	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\WINDOWS\Sysnative\TsWpfWrp.exe
2015-02-06 23:24:15	E35AD6DAECED1213658E0976A16D6266	1166520	----a-w-	C:\WINDOWS\Sysnative\PresentationNative_v0300.dll
2015-02-06 23:24:15	DF290FC4E1116D92F34D8B6410AE544E	124112	----a-w-	C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2015-02-06 16:07:36	49EEC8569BF200C95A38D00766AFB830	16874496	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2015-02-06 16:07:25	CC59B18DEC31120F9957ABA55EC49FAC	2389504	----a-w-	C:\WINDOWS\Sysnative\d3d10warp.dll
2015-02-06 16:07:20	AD3137A754F60D369C176EF4DD5084A0	2141920	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2015-02-06 16:07:18	69DB09F0263C637DA8568D404842466A	1261056	----a-w-	C:\WINDOWS\Sysnative\gpsvc.dll
2015-02-06 16:07:17	61BF52E9FFAB27A0B6D621BE26088373	1600000	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2015-02-06 16:07:17	3F5EF31C6AA204B099EE76497DF80A26	1532416	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2015-02-06 16:07:15	11FA35E24D76F62BD3E64D43B12656EF	1231872	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2015-02-06 16:07:12	C40DE04CE3A8905EB8048B5CE0951DF0	882136	----a-w-	C:\WINDOWS\Sysnative\mfplat.dll
2015-02-06 16:07:12	AEAD37FA03D6E90638D8A4DC30E50408	2050560	----a-w-	C:\WINDOWS\Sysnative\SRH.dll
2015-02-06 16:07:12	8200B4C323229AA1F47C87EB37207E36	2574208	----a-w-	C:\WINDOWS\Sysnative\WMVDECOD.DLL
2015-02-06 16:07:11	D24002EB2F4A8A04897703067E81CC5D	3465216	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2015-02-06 16:07:11	17E700D2F6671196D0512BF806BB6435	1182208	----a-w-	C:\WINDOWS\Sysnative\printui.dll
2015-02-06 16:07:10	4301A4D673F1ACB195C4F30B306B70B9	1992192	----a-w-	C:\WINDOWS\Sysnative\XpsPrint.dll
2015-02-06 16:07:10	0A3E1B697F6ACB7BC1C898DC14A96EC7	1287680	----a-w-	C:\WINDOWS\Sysnative\mispace.dll
2015-02-06 16:07:09	B2C26168E74EA51BF65518A309B08C19	770048	----a-w-	C:\WINDOWS\Sysnative\WorkfoldersControl.dll
2015-02-06 16:07:09	A9C015F01499761908DE61F172FAF65D	486744	----a-w-	C:\WINDOWS\Sysnative\netcfgx.dll
2015-02-06 16:07:08	A4CF0D2FF18BF8D128389AF26410FD8B	1018368	----a-w-	C:\WINDOWS\Sysnative\aclui.dll
2015-02-06 16:07:08	0A7F97DE49DB63E01CBCA067F4DA7AB8	544768	----a-w-	C:\WINDOWS\Sysnative\AppxPackaging.dll
2015-02-06 16:07:07	BF6897E960C08E9FDD41B80726C61C2F	371200	----a-w-	C:\WINDOWS\Sysnative\wlanmsm.dll
2015-02-06 16:07:07	8DC2979BC54C585BA5A4C9E6FABCD1B4	360480	----a-w-	C:\WINDOWS\Sysnative\mfreadwrite.dll
2015-02-06 16:07:07	793EACA6BAE9F481C2059BCB3743EB4A	324096	----a-w-	C:\WINDOWS\Sysnative\srvsvc.dll
2015-02-06 16:07:06	79EFAEE6FBD8ABC066B944E1A7A605BB	645592	----a-w-	C:\WINDOWS\Sysnative\SHCore.dll
2015-02-06 16:07:06	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\WINDOWS\Sysnative\spoolsv.exe
2015-02-06 16:07:04	FF1CB6C5D9288DAAA0DADAD6B1E35085	205512	----a-w-	C:\WINDOWS\Sysnative\mftranscode.dll
2015-02-06 16:07:04	7740658736BD07FC121EACB3CA7C9194	2397184	----a-w-	C:\WINDOWS\Sysnative\storagewmi.dll
2015-02-06 16:07:04	3C120DEE84D42246A17A917B2B934A36	513544	----a-w-	C:\WINDOWS\Sysnative\locale.nls
2015-02-06 16:07:03	D0AD65EE089F735BF546ABFE28D192C0	621056	----a-w-	C:\WINDOWS\Sysnative\comdlg32.dll
2015-02-06 16:07:03	D01BA613D268DAD03DD32A0DC5FD24DF	287232	----a-w-	C:\WINDOWS\Sysnative\usbmon.dll
2015-02-06 16:07:03	8EE8CA953542A8E70A841C453BC15196	427008	----a-w-	C:\WINDOWS\Sysnative\clusapi.dll
2015-02-06 16:07:03	40CC457FB140B509B50F96DAD9D8F80B	1660048	----a-w-	C:\WINDOWS\Sysnative\winload.efi
2015-02-06 16:07:03	0FA02FD5BEF2B8FBA63B40746360E9C6	828416	----a-w-	C:\WINDOWS\Sysnative\wuapi.dll
2015-02-06 16:07:02	D249C3A58A4FCF755EF4C94F7047E015	449536	----a-w-	C:\WINDOWS\Sysnative\defragsvc.dll
2015-02-06 16:07:02	91B18D7A1702ED589E67C6C81052B955	226816	----a-w-	C:\WINDOWS\Sysnative\WebClnt.dll
2015-02-06 16:07:02	835261C17478103B73F4FFB8454AF849	268288	----a-w-	C:\WINDOWS\Sysnative\wisp.dll
2015-02-06 16:07:02	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\WINDOWS\Sysnative\winload.exe
2015-02-06 16:07:02	5B6B32E83E371739B13AA67E260DC5C4	487936	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2015-02-06 16:07:01	C80D4D7AF450F7CAD615FF1D7B40D7AD	1488008	----a-w-	C:\WINDOWS\Sysnative\winresume.efi
2015-02-06 16:07:00	FE7E47BE6E0D9EF4F24D81381A829CEC	1463808	----a-w-	C:\WINDOWS\Sysnative\wsecedit.dll
2015-02-06 16:07:00	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\WINDOWS\Sysnative\winresume.exe
2015-02-06 16:06:58	9D50C0B29FB20DF0A8FD197B332894B7	160600	----a-w-	C:\WINDOWS\Sysnative\winmmbase.dll
2015-02-06 16:06:58	693CC2794DEFB8493ABFF68D509DACC4	127488	----a-w-	C:\WINDOWS\Sysnative\WiFiDisplay.dll
2015-02-06 16:06:58	618A19EB31ECA7B7F2AA0207BAF598A5	84480	----a-w-	C:\WINDOWS\Sysnative\wpdbusenum.dll
2015-02-06 16:06:57	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\WINDOWS\Sysnative\conhost.exe
2015-02-06 16:06:56	F8A869262251B011A21DEC79AC1F3F5D	1844224	----a-w-	C:\WINDOWS\Sysnative\Display.dll
2015-02-06 16:06:56	D62B6C0A254EADB94C138600E6DB6048	388608	----a-w-	C:\WINDOWS\Sysnative\WUSettingsProvider.dll
2015-02-06 16:06:56	CD8CA57C36E596875865F451393C7C66	576512	----a-w-	C:\WINDOWS\Sysnative\SettingSync.dll
2015-02-06 16:06:56	793DE7C6B82804D5973C43484F527849	117248	----a-w-	C:\WINDOWS\Sysnative\AppxSip.dll
2015-02-06 16:06:56	1C683FB45C6CE0BB8A74BB0B1392599D	505344	----a-w-	C:\WINDOWS\Sysnative\VAN.dll
2015-02-06 16:06:55	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\WINDOWS\Sysnative\osk.exe
2015-02-06 16:06:55	2C38FF9DE23A3BB335A95099622AB603	65536	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersGPExt.dll
2015-02-06 16:06:55	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\WINDOWS\Sysnative\SndVol.exe
2015-02-06 16:06:54	83E7C4DA3BF4A21C3F809A506245CAEF	233888	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2015-02-06 16:06:54	504DDEF8526CECAAD886D5AC5656DF1A	387896	----a-w-	C:\WINDOWS\Sysnative\bcryptprimitives.dll
2015-02-06 16:06:53	CCC106273D4265A9091AA7B619DCC5DA	595456	----a-w-	C:\WINDOWS\Sysnative\Windows.Networking.dll
2015-02-06 16:06:53	A6CB3CBF88DF671AC85FA9AABC33137F	125472	----a-w-	C:\WINDOWS\Sysnative\dwmapi.dll
2015-02-06 16:06:53	7DEAD28D8FB9BCAE4A153A57338315E7	123920	----a-w-	C:\WINDOWS\Sysnative\winmm.dll
2015-02-06 16:06:53	1922AAE64BCD761A0377F6981FC67736	721408	----a-w-	C:\WINDOWS\Sysnative\twinapi.dll
2015-02-06 16:06:52	20657ACF2AE5B2E25EEFC597A34AFDED	1705472	----a-w-	C:\WINDOWS\Sysnative\wucltux.dll
2015-02-06 16:06:52	1A5835F2E6B49A83F0AEAD17B4537AF7	1656832	----a-w-	C:\WINDOWS\Sysnative\GdiPlus.dll
2015-02-06 16:06:51	FD807B56AECFD89E4A46960C261D78BF	1089024	----a-w-	C:\WINDOWS\Sysnative\gpedit.dll
2015-02-06 16:06:51	97F24AEACAD9C9038BEC5B2BA1ADA94C	187392	----a-w-	C:\WINDOWS\Sysnative\WorkFoldersShell.dll
2015-02-06 16:06:50	572EBBCDBBA56736F4C0B5487AE7BFA5	220160	----a-w-	C:\WINDOWS\Sysnative\iasnap.dll
2015-02-06 16:06:49	CCD0DF268D9C9F5287B66565B4258FD6	59392	----a-w-	C:\WINDOWS\Sysnative\wups.dll
2015-02-06 16:06:48	28E8D340402C130427F2901004B7FA99	321536	----a-w-	C:\WINDOWS\Sysnative\stobject.dll
2015-02-06 16:06:48	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe
2015-02-06 16:06:47	FA86C3F979EF9CCCCED109B05DEBDD46	432640	----a-w-	C:\WINDOWS\Sysnative\wwanconn.dll
2015-02-06 16:06:47	6ECFFE49AA43A74DC15701EFE6355621	92160	----a-w-	C:\WINDOWS\Sysnative\dab.dll
2015-02-06 16:06:47	31C2E53FE0C039C1BF0F15154D8596E7	53248	----a-w-	C:\WINDOWS\Sysnative\AppxSysprep.dll
2015-02-06 16:06:47	2B1C2CB5C97962C521CD806F0C86D2FE	102912	----a-w-	C:\WINDOWS\Sysnative\wcmcsp.dll
2015-02-06 16:06:46	B540693968BCA57F595A7B08DB4B46C3	216368	----a-w-	C:\WINDOWS\Sysnative\rsaenh.dll
2015-02-06 16:06:46	AEDF08DDF4EA929FEDBC0A1CCF01F287	296960	----a-w-	C:\WINDOWS\Sysnative\wlanapi.dll
2015-02-06 16:06:46	53F4FC66B94804BBF2016922CD826891	878592	----a-w-	C:\WINDOWS\Sysnative\ActionCenter.dll
2015-02-06 16:06:46	3AB9868E0E78AD9CD501B83D7C293125	54752	----a-w-	C:\WINDOWS\Sysnative\wuauclt.exe
2015-02-06 16:06:45	69AF7212845FFCD0AA1F0FC5D51FB809	63488	----a-w-	C:\WINDOWS\Sysnative\wshbth.dll
2015-02-06 16:06:45	1E01725D557B5325E8C99F712E7D4A7E	50688	----a-w-	C:\WINDOWS\Sysnative\wups2.dll
2015-02-06 16:06:44	041A999E4FF9A7CDBE67357751881FB8	134144	----a-w-	C:\WINDOWS\Sysnative\browser.dll
2015-02-06 16:06:43	A7762A36F92E57E41B0356EF5C672473	659968	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll
2015-02-06 16:06:43	3A80675FF8524B09817000B6A2E35B7A	18432	----a-w-	C:\WINDOWS\Sysnative\wlansvcpal.dll
2015-02-06 16:06:42	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\WINDOWS\Sysnative\Defrag.exe
2015-02-06 16:06:42	CB9CEAB473897BE1E8C827D4F4EB1311	207360	----a-w-	C:\WINDOWS\Sysnative\powercfg.cpl
2015-02-06 16:06:41	2067AF0531ACD5D28BD49DB30DF109CE	8192	----a-w-	C:\WINDOWS\Sysnative\KBDRUM.DLL
2015-02-06 16:06:40	6A9650BDC13F1A770F20E7B99D29EE3D	6656	----a-w-	C:\WINDOWS\Sysnative\KBDRU.DLL
2015-02-06 16:06:40	454A0735E836FBC31C064FED6C120B46	7168	----a-w-	C:\WINDOWS\Sysnative\KBDRU1.DLL
2015-02-06 16:06:40	3429360674DA1E70F638924A6D5985CC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDYAK.DLL
2015-02-06 16:06:40	0AC5A816A01D0115588D4B997842780E	7168	----a-w-	C:\WINDOWS\Sysnative\KBDBASH.DLL
2015-02-06 16:06:39	A4DE7868879498A4E4CBB12788FAA3E8	105472	----a-w-	C:\WINDOWS\Sysnative\BluetoothApis.dll
2015-02-06 16:06:36	997E5E28492F02036E5C7BA6DB66ABDC	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTAT.DLL
2015-02-06 16:06:36	933C63C9003379F56BA4AF4149440FC8	226304	----a-w-	C:\WINDOWS\Sysnative\SndVolSSO.dll
2015-02-06 16:06:36	4F6203CBBEFB9FBFA859246682849A24	1144320	----a-w-	C:\WINDOWS\Sysnative\wwanmm.dll
2015-02-06 16:06:34	A5141DD172927F04732F5B6BFBE49C15	443904	----a-w-	C:\WINDOWS\Sysnative\wlansec.dll
2015-02-06 16:06:32	D8683834163E00E252CAC57BB6025036	93696	----a-w-	C:\WINDOWS\Sysnative\wudriver.dll
2015-02-06 16:06:32	B279922BCFD0E178068B159D85C5CDBE	2100736	----a-w-	C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll
2015-02-06 16:06:31	68270DE9415C8F8139242D38417B49BE	7168	----a-w-	C:\WINDOWS\Sysnative\KBDTT102.DLL
2015-02-06 15:23:58	93B0550500D1BD86CBAB9C4CC6B6A356	113365784	----a-w-	C:\WINDOWS\Sysnative\MRT.exe
2015-02-06 15:04:22	F7725A14C0FC1B06847CC6D676709D39	1365504	----a-w-	C:\WINDOWS\Sysnative\igfxcmjit64.dll
2015-02-06 15:04:22	E0C384BFFE8437D72864404A4A90452F	135000	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiMCUMD64.dll
2015-02-06 15:04:22	CB4AA53649508E1FD388EDFEDFB468E2	5943072	----a-w-	C:\WINDOWS\Sysnative\igdusc64.dll
2015-02-06 15:04:22	C4E54B5DF492722B0BBC7436FAE4CDA5	354136	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiSilenceFilter64.dll
2015-02-06 15:04:22	B9A24A878920AC7D4E49948865AADCF3	196728	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiDDEAgent64.dll
2015-02-06 15:04:22	B6EB689A990BB14A317DDE3AD2A1DEAE	978040	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiWinNextAgent64.dll
2015-02-06 15:04:22	B5E1030ADE762B6769DCB3502D4259C6	183296	----a-w-	C:\WINDOWS\Sysnative\igfxCoIn_v4029.dll
2015-02-06 15:04:22	AA1404CFB5435E532D01B12A2AFBDE27	615544	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiMux64.dll
2015-02-06 15:04:22	A7C83D81A17BAE650C952F9E79223836	207496	----a-w-	C:\WINDOWS\Sysnative\igfxcmrt64.dll
2015-02-06 15:04:22	9D2984698C8E44A0BC8BE48D2F72475B	220392	----a-w-	C:\WINDOWS\Sysnative\iglhcp64.dll
2015-02-06 15:04:22	8E5263CE46C4C72901351EDC5DB7D800	195984	----a-w-	C:\WINDOWS\Sysnative\igfxext.exe
2015-02-06 15:04:22	5BE46BC2AF6B9FCC6CC184141E44D81D	254976	----a-w-	C:\WINDOWS\Sysnative\igfxCPL.cpl
2015-02-06 15:04:22	57A57CC2B1483E906463378913E989C6	207872	----a-w-	C:\WINDOWS\Sysnative\igfx11cmrt64.dll
2015-02-06 15:04:22	5295B54064D2B853C6906ACCA90266B4	2945472	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiVAD64.exe
2015-02-06 15:04:22	4FBAE41C54A8EA09D71025E859D8E593	472976	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiUMS64.exe
2015-02-06 15:04:22	323BAD4CA3BA676007C9059F2A6F7032	82432	----a-w-	C:\WINDOWS\Sysnative\Intel_OpenCL_ICD64.dll
2015-02-06 15:04:22	2DD95FC6F3FF2FE6EC27C1CB40271F0C	372224	----a-w-	C:\WINDOWS\Sysnative\IntelOpenCL64.dll
2015-02-06 15:04:22	2B8E8F0EFC99A03932626DEA4C38301C	2776408	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiAAC64.dll
2015-02-06 15:04:22	266E8B3FBD29B058125B09E385397C32	31408	----a-w-	C:\WINDOWS\Sysnative\igfxexps.dll
2015-02-06 15:04:22	1C91AF4093E0879AA4BE095FCCA6EC8E	671352	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiAudioFilter64.dll
2015-02-06 15:04:22	1B91152B6D38059575C093FFEBEB7680	266072	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiUtils64.dll
2015-02-06 15:04:22	174A9530DC58E1269AA4B4FA0609E007	1512568	----a-w-	C:\WINDOWS\Sysnative\IntelWiDiSecureSourceFilter64.dll
2015-02-06 15:04:22	12BD92AEC196699C8D9E979FC0D16D74	457616	----a-w-	C:\WINDOWS\Sysnative\igfxTray.exe
2015-02-06 15:04:22	0E1761F31B37DD357B446FFCB1FE3596	1402296	----a-w-	C:\WINDOWS\Sysnative\iglhsip64.dll
2015-02-06 15:04:22	0958C7DBFE2367929087926571FE7B2B	4016	----a-w-	C:\WINDOWS\Sysnative\iglhxs64.vp
2015-02-06 15:04:21	E6EC77A5AAC1E0C059D15358B1892C0F	12003840	----a-w-	C:\WINDOWS\Sysnative\igdrcl64.dll
2015-02-06 15:04:21	C310A967211598F8F981A3895C395E5E	418704	----a-w-	C:\WINDOWS\Sysnative\GfxUIEx.exe
2015-02-06 15:04:21	B8772A296941A19CDF0C3BA2282F0631	25175552	----a-w-	C:\WINDOWS\Sysnative\igdfcl64.dll
2015-02-06 15:04:21	AE7EEE5FC802DE08C244F84104A1CFF6	397824	----a-w-	C:\WINDOWS\Sysnative\igdbcl64.dll
2015-02-06 15:04:21	9FEAC020F10FBC454E2FA3A7CC30E68C	637000	----a-w-	C:\WINDOWS\Sysnative\igdmd64.dll
2015-02-06 15:04:21	992CF4A9E5F2A2B08EDF0893D6E45BD2	17170624	----a-w-	C:\WINDOWS\Sysnative\igd11dxva64.dll
2015-02-06 15:04:21	8F86DCB16F80F12F8C9B2BD96646CF75	9155072	----a-w-	C:\WINDOWS\Sysnative\ig75icd64.dll
2015-02-06 15:04:21	675F2195CFA8464A9729693A4A1768C3	227328	----a-w-	C:\WINDOWS\Sysnative\igdde64.dll
2015-02-06 15:04:21	22A7C0AF9265D1BEE95C7D8CFB4A02DB	169984	----a-w-	C:\WINDOWS\Sysnative\igdail64.dll
2015-02-06 15:04:21	1EABF1EF254C67DEF60EFCF6927DA842	24201368	----a-w-	C:\WINDOWS\Sysnative\igdumdim64.dll
2015-02-06 15:04:21	0A98BD6B7F3E0E795742DE87E94E2AE1	7654408	----a-w-	C:\WINDOWS\Sysnative\igd10iumd64.dll
2015-02-06 15:04:21	05B6C6F77A903B971E64D21C01BE17C4	155536	----a-w-	C:\WINDOWS\Sysnative\difx64.exe
2015-02-06 14:21:36	E09BF40AA766B183F0F385C96B37D9E5	299520	----a-w-	C:\WINDOWS\Sysnative\WSDMon.dll
2015-02-06 14:21:36	DA947D89F64B72A40F678AAAE76F7564	205824	----a-w-	C:\WINDOWS\Sysnative\tcpmon.dll
2015-02-06 14:08:22	83AEDC4636606B145851723AE7385781	34304	----a-w-	C:\WINDOWS\Sysnative\DeviceSetupStatusProvider.dll
2015-02-06 14:08:06	F0A117D19873FCDF801F082F33BFBB6C	1519488	----a-w-	C:\WINDOWS\Sysnative\user32.dll
2015-02-06 14:08:01	668417ED63F9FBE7DD8D7A54B04279DA	14336	----a-w-	C:\WINDOWS\Sysnative\winshfhc.dll
2015-02-06 14:07:33	F5BA843DE3475B8D7FD5AFC21857A7C1	1970432	----a-w-	C:\WINDOWS\Sysnative\crypt32.dll
2015-02-06 14:07:29	93645AEBE163230A2ED5050C14AE6603	2149376	----a-w-	C:\WINDOWS\Sysnative\msxml3.dll
2015-02-06 14:07:23	04AE20974DF91DC7B9075FC5A126B77C	68096	----a-w-	C:\WINDOWS\Sysnative\UXInit.dll
2015-02-06 14:07:23	00CD1254837739E310505EBCB19F7971	796672	----a-w-	C:\WINDOWS\Sysnative\uDWM.dll
2015-02-06 14:07:09	F0CE4A653EEBA09509EAF93AE2226FA9	426496	----a-w-	C:\WINDOWS\Sysnative\schannel.dll
2015-02-06 14:07:09	6DE50D5592C6EE18C87B0C2EEEDC1621	185856	----a-w-	C:\WINDOWS\Sysnative\dpapisrv.dll
2015-02-06 14:07:08	622928F5A8045F8122F10561D6C35ED0	104336	----a-w-	C:\WINDOWS\Sysnative\ncryptsslp.dll
2015-02-06 14:06:45	B31C4917EC5EADE24A90DDAF37EA00E0	4182016	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2015-02-06 14:06:43	1BB9CC78C91536CBA7B04B61ED0F85C4	1273184	----a-w-	C:\WINDOWS\Sysnative\rpcrt4.dll
2015-02-06 14:06:36	1676B06421492B439A9E60C55692A921	8757760	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Search.dll
2015-02-06 14:06:35	8A522BBE4E06586C57E5D9DC50FB88B0	6649344	----a-w-	C:\WINDOWS\Sysnative\mstscax.dll
2015-02-06 14:06:35	57CA779C19C2F224BE0C5EFC40F54B60	4758528	----a-w-	C:\WINDOWS\Sysnative\SyncEngine.dll
2015-02-06 14:06:33	5053FE9043FB84D71B04EFC7D5DA13CF	1710184	----a-w-	C:\WINDOWS\Sysnative\ntdll.dll
2015-02-06 14:06:33	37C1CBCB3F420C754E86E3EC313D436D	1112512	----a-w-	C:\WINDOWS\Sysnative\KernelBase.dll
2015-02-06 14:06:32	ACFEE9487693C2BD573DFCA71D98E17C	914432	----a-w-	C:\WINDOWS\Sysnative\iphlpsvc.dll
2015-02-06 14:06:32	ABB028BAB78E7B4AFE374F8246F6CCB6	359424	----a-w-	C:\WINDOWS\Sysnative\Wldap32.dll
2015-02-06 14:06:32	2ECA23663D13100032E09062C743C70D	1507648	----a-w-	C:\WINDOWS\Sysnative\propsys.dll
2015-02-06 14:06:32	10CE7F7704E293F6CC6E0AF51DBFD95A	1106432	----a-w-	C:\WINDOWS\Sysnative\SearchFolder.dll
2015-02-06 14:06:31	FD4EA8E9232ADD51DC31C295DDEF2768	287744	----a-w-	C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll
2015-02-06 14:06:31	F58FBEA392B663B936E62939A877CA80	1120768	----a-w-	C:\WINDOWS\Sysnative\SkyDrive.exe
2015-02-06 14:06:29	E325BCD68EC0CF2E2EDD0AB7CC17C698	267776	----a-w-	C:\WINDOWS\Sysnative\bisrv.dll
2015-02-06 14:06:29	66CBCDDEF429E5BA83C3288EEB0771A6	717824	----a-w-	C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll
2015-02-06 14:06:29	30293301B14D0D11D086B09831F5FE0D	920064	----a-w-	C:\WINDOWS\Sysnative\WSShared.dll
2015-02-06 14:06:28	73F269436228D5625E83A1EAF3549F58	118272	----a-w-	C:\WINDOWS\Sysnative\httpprxm.dll
2015-02-06 14:06:28	36F977EDAE6CEE96CE6409B2B16765B4	290816	----a-w-	C:\WINDOWS\Sysnative\ProximityService.dll
2015-02-06 14:06:28	3014CE5846A486C624E3E2CEB8C3290C	286208	----a-w-	C:\WINDOWS\Sysnative\SkyDriveShell.dll
2015-02-06 14:06:28	0DD29E5328436D51517316CD6D3BACCA	286208	----a-w-	C:\WINDOWS\Sysnative\pcsvDevice.dll
2015-02-06 14:06:28	0B1A9F6F9D2891C0F8783C0444D27DD0	1057280	----a-w-	C:\WINDOWS\Sysnative\rdvidcrl.dll
2015-02-06 14:06:27	5D4A403DAE434FBA11779496EAFBDDE8	75776	----a-w-	C:\WINDOWS\Sysnative\adhsvc.dll
2015-02-06 14:05:53	84549E8C8BF76B293A7E625A98D4BCF9	81408	----a-w-	C:\WINDOWS\Sysnative\packager.dll
2015-02-06 14:05:26	949E590B76018E4523FC71CE510ED9ED	1441792	----a-w-	C:\WINDOWS\Sysnative\lsasrv.dll
2015-02-06 14:05:26	1D25CC0A9C480C5D56A5A6CF2B5DEB99	3547648	----a-w-	C:\WINDOWS\Sysnative\rdpcorets.dll
2015-02-06 14:05:25	91E59FCB3B32DD84E5DCDA2EA1583807	736768	----a-w-	C:\WINDOWS\Sysnative\adtschema.dll
2015-02-06 14:05:25	488CEA4F1B4D2446FFB7A94E3CB385FE	445440	----a-w-	C:\WINDOWS\Sysnative\certcli.dll
2015-02-06 14:05:25	3D2D2EA099D98FE6B94C7D8C7992C08C	40448	----a-w-	C:\WINDOWS\Sysnative\rfxvmt.dll
2015-02-06 14:05:23	D7B23B3154508256C9F434EF9B65B91D	131584	----a-w-	C:\WINDOWS\Sysnative\rdpudd.dll
2015-02-06 14:05:23	A8484FB640E044858BA19FB4F13DD4CE	154112	----a-w-	C:\WINDOWS\Sysnative\msaudite.dll
2015-02-06 14:04:37	9A108C0A3092110F4651B3AFB9CC7B3D	789184	----a-w-	C:\WINDOWS\Sysnative\oleaut32.dll
2015-02-06 14:04:35	59EAFAE3A34B4925990A2E679CA91C5B	517528	----a-w-	C:\WINDOWS\Sysnative\dxgi.dll
2015-02-06 14:04:35	454978FB3D24DE5C4199162D5F81FBEE	2133504	----a-w-	C:\WINDOWS\Sysnative\dwmcore.dll
2015-02-06 14:04:33	418B5117F187DFFD96C52325CA0DF153	1762840	----a-w-	C:\WINDOWS\Sysnative\WindowsCodecs.dll
2015-02-06 14:04:31	19424364D8C03B990C4281BE53963FD0	225280	----a-w-	C:\WINDOWS\Sysnative\profsvc.dll
2015-02-06 14:04:01	D3AE5DB16EAF913860EC28654CE00E6B	1212928	----a-w-	C:\WINDOWS\Sysnative\schedsvc.dll
2015-02-06 14:04:00	FE11972797DED38CA55E88BD3579F6A2	360448	----a-w-	C:\WINDOWS\Sysnative\ncsi.dll
2015-02-06 14:04:00	E94EB2A95D7D016E119C4D6868788831	391680	----a-w-	C:\WINDOWS\Sysnative\nlasvc.dll
2015-02-06 14:04:00	6319232C1CE39AC35316CF51910EEEB5	86016	----a-w-	C:\WINDOWS\Sysnative\nlaapi.dll
2015-02-06 14:03:39	2DD8EC6F8DE5F8556ABC5F223D49EA07	412672	----a-w-	C:\WINDOWS\Sysnative\generaltel.dll
2015-02-06 14:03:38	FB7F1B20A2C86D55F731E53EB04C9360	740864	----a-w-	C:\WINDOWS\Sysnative\invagent.dll
2015-02-06 14:03:38	EE5ED8E6998D7E686F614BA8D876829B	192000	----a-w-	C:\WINDOWS\Sysnative\aepic.dll
2015-02-06 14:03:38	C4A550C337ADB0EB4C4D4F388C27B815	227328	----a-w-	C:\WINDOWS\Sysnative\aepdu.dll
2015-02-06 14:03:38	C4859B1344645E6109DE77F5577CD37F	396288	----a-w-	C:\WINDOWS\Sysnative\devinv.dll
2015-02-06 14:03:38	8283D7B0DCB540AB58A864E4BF2451FD	830464	----a-w-	C:\WINDOWS\Sysnative\appraiser.dll
2015-02-06 14:03:38	222F243A138149E51FEA4769A475A144	1083392	----a-w-	C:\WINDOWS\Sysnative\aeinv.dll
2015-02-06 14:03:34	25EE65F2FA154EDED0E87354311FB1E2	590336	----a-w-	C:\WINDOWS\Sysnative\rastls.dll
2015-02-06 14:03:32	87CEF71F9D5951C9379D2F956C07C37D	1336624	----a-w-	C:\WINDOWS\Sysnative\gdi32.dll
2015-02-06 14:03:28	AF33B3D7B32FE39656147E0849D987A4	321536	----a-w-	C:\WINDOWS\Sysnative\lockscreencn.dll
2015-02-06 14:03:24	DB7815ACB2D8F7CB03807059969F13B6	1091072	----a-w-	C:\WINDOWS\Sysnative\MrmCoreR.dll
2015-02-06 14:03:02	EF745B98D81B8C462DB99FC8B5C4322A	3320320	----a-w-	C:\WINDOWS\Sysnative\msi.dll
2015-02-06 14:03:02	D5B41A0C38408814A3E9BAC8C82B2E5B	2773504	----a-w-	C:\WINDOWS\Sysnative\authui.dll
2015-02-06 14:03:00	D0C15BC83B3D0AF4F9B1D70216D91794	428032	----a-w-	C:\WINDOWS\Sysnative\msihnd.dll
2015-02-06 14:03:00	034ED41F13D9C1845C1E081F05B640DB	110080	----a-w-	C:\WINDOWS\Sysnative\appinfo.dll
2015-02-06 14:02:59	D1A2E993DB1867C79177CCC9DB6337D0	116032	----a-w-	C:\WINDOWS\Sysnative\consent.exe
2015-02-06 14:02:56	E7DE316FEEFC79327CFAD8F527979CC0	3118080	----a-w-	C:\WINDOWS\Sysnative\Wpc.dll
2015-02-06 14:02:56	E2F4125BFAC99244088324A1841C0B83	3048880	----a-w-	C:\WINDOWS\Sysnative\WpcMon.exe
2015-02-06 14:02:56	6BC31FB4E24A962C98801D3687A984C0	2861056	----a-w-	C:\WINDOWS\Sysnative\WpcWebSync.dll
2015-02-06 14:02:47	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\WINDOWS\Sysnative\poqexec.exe
2015-02-06 14:02:39	29A888F3136B2643E22113B5422B46F9	87040	----a-w-	C:\WINDOWS\Sysnative\TSWbPrxy.exe
2015-02-06 14:02:07	E87F8EC00FEEF700E61F6989D88A8BC2	991232	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2015-02-06 14:02:07	788C7D910267DDCD675DF4AB01961265	259584	----a-w-	C:\WINDOWS\Sysnative\pku2u.dll
2015-02-06 14:01:09	C4306ADC38939CAC60EA38AAD9F170C0	13424128	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2015-02-06 14:01:09	A92EF73B02686B7E6F070B486512DB88	389176	----a-w-	C:\WINDOWS\Sysnative\ApnDatabase.xml
2015-02-06 14:01:08	1D303CE5BCBD5B80BBA08321F28A3F86	21197152	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2015-02-06 14:01:07	BCE66E78D388875B87286CA091E7075F	7484224	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2015-02-06 14:01:05	1907823D5ACFD75D1D8C0D4318299726	2714112	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers.dll
2015-02-06 14:01:00	CA729FCE295895515A09BD6FF7903DC8	836176	----a-w-	C:\WINDOWS\Sysnative\mfmp4srcsnk.dll
2015-02-06 14:01:00	C88B63FE96DB4BCED65DD442BC8E77F5	1053184	----a-w-	C:\WINDOWS\Sysnative\localspl.dll
2015-02-06 14:01:00	A208498C5CD750A1743C1AC8162A810F	941568	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2015-02-06 14:00:57	9CE162EB9057CF079736F4DD00FC0D6C	2480128	----a-w-	C:\WINDOWS\Sysnative\WsmSvc.dll
2015-02-06 14:00:56	50E96089F9BE352621997143A56C8E76	822272	----a-w-	C:\WINDOWS\Sysnative\win32spl.dll
2015-02-06 14:00:55	5416C603B6C85CF0698E8A2A1D28BAA2	448512	----a-w-	C:\WINDOWS\Sysnative\puiobj.dll
2015-02-06 14:00:53	9CF6AD02948A506188BFF8653807DFCA	785408	----a-w-	C:\WINDOWS\Sysnative\pmcsnap.dll
2015-02-06 14:00:53	12C0733F955E15C3C37DD24C9C7D796A	263680	----a-w-	C:\WINDOWS\Sysnative\DafPrintProvider.dll
2015-02-06 14:00:52	A8732AFE4DB47114355ABB285ED776D2	187392	----a-w-	C:\WINDOWS\Sysnative\puiapi.dll
2015-02-06 14:00:52	3F5E698329A53C19A80D61C42DE4F596	249856	----a-w-	C:\WINDOWS\Sysnative\ppcsnap.dll
2015-02-06 14:00:52	118A11C89FAD244A2B85DA7EDC3E9683	215552	----a-w-	C:\WINDOWS\Sysnative\prnntfy.dll
2015-02-06 14:00:51	8758F5DEBD2B950B2D56ED11F9E0B38F	545792	----a-w-	C:\WINDOWS\Sysnative\untfs.dll
2015-02-06 14:00:50	9C55CE9707B3CA29A6505BCDCC546390	275968	----a-w-	C:\WINDOWS\Sysnative\FXSAPI.dll
2015-02-06 14:00:50	6C118AEDD15FDBEAECC0E85C64B5B86B	615424	----a-w-	C:\WINDOWS\Sysnative\FXSCOMEX.dll
2015-02-06 14:00:50	6317C9DB4282CEAA3BAB131BC3839B2A	308736	----a-w-	C:\WINDOWS\Sysnative\compstui.dll
2015-02-06 14:00:49	8CBF1E2761816CFD9D32F8B32531D0FB	118272	----a-w-	C:\WINDOWS\Sysnative\winbici.dll
2015-02-06 13:58:23	8BB7548307EE6147137993A410D64387	869544	----a-w-	C:\WINDOWS\Sysnative\msvcr120_clr0400.dll
2015-02-06 13:58:16	62D54F4673A6208C8CC147758122B3C3	2865152	----a-w-	C:\WINDOWS\Sysnative\actxprxy.dll
2015-02-06 13:58:15	C9AB2198141844D3DF96B4552CE9D5AB	77824	----a-w-	C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll
2015-02-06 13:58:15	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\WINDOWS\Sysnative\ie4uinit.exe
2015-02-06 13:58:14	E7A2061ADF0F4D430FECDA1E8D6B7BA6	1548288	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2015-02-06 13:58:14	DDE455CF1B9F43775A53A4E577DFDC54	373760	----a-w-	C:\WINDOWS\Sysnative\iedkcs32.dll
2015-02-06 13:58:14	14BA910E7731FC84EB85328BD0F1EE81	800768	----a-w-	C:\WINDOWS\Sysnative\msfeeds.dll
2015-02-06 13:58:14	0AF0AEF0BA9EF6169E61C78504DCAE55	316928	----a-w-	C:\WINDOWS\Sysnative\dxtrans.dll
2015-02-06 13:58:13	982B871A25B5078093FAD82D0AB0E3FC	2885120	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-02-06 13:58:13	3FE71E2A5BD3EC652E64FC8BCEFEDD2C	2125312	----a-w-	C:\WINDOWS\Sysnative\inetcpl.cpl
2015-02-06 13:58:12	556D271F4243B273EDA353512BF3608A	14412800	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-02-06 13:58:12	175C139D51F99099D1BDA17794B02191	490496	----a-w-	C:\WINDOWS\Sysnative\dxtmsft.dll
2015-02-06 13:58:11	EFBA893429814EA3244C87C2D1256618	800768	----a-w-	C:\WINDOWS\Sysnative\ieapfltr.dll
2015-02-06 13:58:11	DE58DE2C6C8439B7174D6D3568AA4A80	814080	----a-w-	C:\WINDOWS\Sysnative\jscript9diag.dll
2015-02-06 13:58:11	DB10D681314714E0D4623E4C0CF6654A	92160	----a-w-	C:\WINDOWS\Sysnative\mshtmled.dll
2015-02-06 13:58:11	8D64466AD12CA5677CD0099C43C58569	6039552	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-02-06 13:58:10	D478A4CF07FB8ADF72FB16B88E8030B8	25059840	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-02-06 13:58:10	4AF089160FE082E5EA5C4AA72782DCA2	2358272	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-02-06 13:58:09	A7F53772ECAE2F44B455D14F71179940	48640	----a-w-	C:\WINDOWS\Sysnative\ieetwproxystub.dll
2015-02-06 13:58:09	507DC5EE1363EEB7D986B1026DF4E39D	1032704	----a-w-	C:\WINDOWS\Sysnative\inetcomm.dll
2015-02-06 13:58:08	A41AC7E8D142FD0ECF6EF7F1BB63D478	812544	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-02-06 13:58:08	587DEBB59F5F14C9610966FB14A33607	633856	----a-w-	C:\WINDOWS\Sysnative\ieui.dll
2015-02-06 13:58:08	1D294810D3A8A8F722E86AA001F54DCC	580096	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2015-02-06 13:58:07	D248949FCF2B72C1FD4EC15DA92065C0	262144	----a-w-	C:\WINDOWS\Sysnative\webcheck.dll
2015-02-06 13:58:06	F79E5258AF040A8AD83C7C1273A071C3	54784	----a-w-	C:\WINDOWS\Sysnative\jsproxy.dll
2015-02-06 13:58:06	F0A53129AE95A895EC8C4DC36E1797A2	108544	----a-w-	C:\WINDOWS\Sysnative\hlink.dll
2015-02-06 13:58:06	E40D3696BE4852956669C285038B37A6	114688	----a-w-	C:\WINDOWS\Sysnative\ieetwcollector.exe
2015-02-06 13:58:06	A348DEFC16B6FBC88B7D61C3B861BCB1	107520	----a-w-	C:\WINDOWS\Sysnative\inseng.dll
2015-02-06 13:58:06	8AE1AC97407CD82D8389390C21430579	111616	----a-w-	C:\WINDOWS\Sysnative\iesysprep.dll
2015-02-06 13:58:06	85E97591864F3125C5B08FB44E0E8078	60416	----a-w-	C:\WINDOWS\Sysnative\msfeedsbs.dll
2015-02-06 13:58:06	62CFEE2A516C68540486EBF26F18ED4C	145408	----a-w-	C:\WINDOWS\Sysnative\iepeers.dll
2015-02-06 13:58:06	3721721151DB49457B0FD35E0C04594C	199680	----a-w-	C:\WINDOWS\Sysnative\msrating.dll
2015-02-06 13:58:06	284070B045F8B11B4A1FB32F72023038	417280	----a-w-	C:\WINDOWS\Sysnative\html.iec
2015-02-06 13:58:06	1C3C54FA2D620DF3093F356A56EC5957	144384	----a-w-	C:\WINDOWS\Sysnative\ieUnatt.exe
2015-02-06 13:58:06	17A157A4225CF562202AC71DB8103177	88064	----a-w-	C:\WINDOWS\Sysnative\MshtmlDac.dll
2015-02-06 13:58:06	00FB2FB8C27C834CF575BC415B80F995	87552	----a-w-	C:\WINDOWS\Sysnative\tdc.ocx
2015-02-06 13:58:05	F54E1190251EB245183BF16D6C315613	237568	----a-w-	C:\WINDOWS\Sysnative\url.dll
2015-02-06 13:58:05	E99E2E88BFE584184AE92B1F8995CE93	66560	----a-w-	C:\WINDOWS\Sysnative\iesetup.dll
2015-02-06 13:58:05	DD8FD33C108F14681A410067AB21DDF3	152064	----a-w-	C:\WINDOWS\Sysnative\occache.dll
2015-02-06 13:58:05	D66D11191B48007179B0A77DC0717267	33280	----a-w-	C:\WINDOWS\Sysnative\licmgr10.dll
2015-02-06 13:58:05	CDC8A85EB301A8CBE55A81A1D55AF5E5	132096	----a-w-	C:\WINDOWS\Sysnative\IEAdvpack.dll
2015-02-06 13:58:05	CA2F3153EF3BCB0BD3A8984C933DF604	167424	----a-w-	C:\WINDOWS\Sysnative\iexpress.exe
2015-02-06 13:58:05	A3871DED5ED88F59C0D1396761708F81	13824	----a-w-	C:\WINDOWS\Sysnative\mshta.exe
2015-02-06 13:58:05	6A7F8D139610E5F3F158182778EF9275	34304	----a-w-	C:\WINDOWS\Sysnative\iernonce.dll
2015-02-06 13:58:05	66585D645C4E23A0FD5124BD714AE020	12800	----a-w-	C:\WINDOWS\Sysnative\msfeedssync.exe
2015-02-06 13:58:05	6096209CB47D61499C3608B9C25B073C	64512	----a-w-	C:\WINDOWS\Sysnative\pngfilt.dll
2015-02-06 13:58:05	4B9C652BD0FD95A9E6123913C35519D6	143872	----a-w-	C:\WINDOWS\Sysnative\wextract.exe
2015-02-06 13:58:05	161BC2E883A8D8759A4DCF2A85AF9128	51200	----a-w-	C:\WINDOWS\Sysnative\imgutil.dll
2015-02-06 13:58:00	E24D3259769A0218FE19BB306821C2E5	394120	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2015-02-06 13:58:00	8EBC741DDE9409038262E2F317ED7CCE	535640	----a-w-	C:\WINDOWS\Sysnative\wer.dll
2015-02-06 13:58:00	8779FDAE68BC948B0FE152E758CC8DA7	229888	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2015-02-06 13:58:00	770BAA636F3B61DA7E414421444F84FD	272248	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2015-02-06 13:58:00	6F237EE5DDA34EAF3D9C79D4A283E250	482872	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2015-02-06 13:58:00	6DCD12586353DC6307AC781045CA13A4	465320	----a-w-	C:\WINDOWS\Sysnative\WerFault.exe
2015-02-06 13:58:00	61EA45A645854FE81D8A924E2D93DFFE	911360	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2015-02-06 13:58:00	428F083690D7AAA012338FD5A0663EE3	500016	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2015-02-06 13:58:00	2C354FA91EF605007FD11BB89EED2266	413248	----a-w-	C:\WINDOWS\Sysnative\Faultrep.dll
2015-02-06 13:57:59	D1E3B8D9130C70F6A3D4FDB52373FF34	37888	----a-w-	C:\WINDOWS\Sysnative\werdiagcontroller.dll
2015-02-06 13:57:59	A41B72F81B389786805CC4D5767B5FBC	531616	----a-w-	C:\WINDOWS\Sysnative\ci.dll
2015-02-06 13:57:59	9404704666256045F5BA9B290953B4D0	38264	----a-w-	C:\WINDOWS\Sysnative\WerFaultSecure.exe
2015-02-06 13:57:59	41C501FD9D42F3F04A8532C73E09F356	108944	----a-w-	C:\WINDOWS\Sysnative\EncDump.dll
2015-02-06 13:57:59	0BCDEB035B9346D3C3C6C8BB1AA7F38C	139984	----a-w-	C:\WINDOWS\Sysnative\wermgr.exe
2015-02-06 13:57:56	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\WINDOWS\Sysnative\MDMAgent.exe
====== C:\WINDOWS\Sysnative\drivers =====
2015-02-06 16:07:13	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2015-02-06 16:07:11	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2015-02-06 16:07:10	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2015-02-06 16:07:07	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2015-02-06 16:07:06	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2015-02-06 16:07:05	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2015-02-06 16:07:00	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2015-02-06 16:06:59	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2015-02-06 16:06:58	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2015-02-06 16:06:54	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2015-02-06 16:06:53	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2015-02-06 16:06:53	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2015-02-06 16:06:53	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys
2015-02-06 16:06:49	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2015-02-06 16:06:48	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2015-02-06 16:06:37	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\WINDOWS\Sysnative\drivers\bthpan.sys
2015-02-06 15:48:54	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SurfacePenDriver_01011.Wdf
2015-02-06 15:04:21	FF35266A3375E49B5AF67BC5F8062313	4763064	----a-w-	C:\WINDOWS\Sysnative\drivers\igdkmd64.sys
2015-02-06 14:21:34	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
2015-02-06 14:08:09	4080C24EE964BC8128E9A03CA5BA76BC	1113920	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2015-02-06 14:08:05	DE8D12B4C3F55FA2C5E9774314F6C58A	258368	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2015-02-06 14:08:05	4AD874CDC812EC156265E451B6B09DAB	114496	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2015-02-06 14:08:04	0359607177E5E9F6041136CC0A5CB0B6	35320	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2015-02-06 14:06:30	97B9076611291AE4C4C107BC915BD026	1200640	----a-w-	C:\WINDOWS\Sysnative\drivers\bthport.sys
2015-02-06 14:06:29	65392F3F3F65E4C6CC82A0F4F8A0B051	468288	----a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2015-02-06 14:06:27	E0927EFA25D473367C3341B9F5969779	115712	----a-w-	C:\WINDOWS\Sysnative\drivers\bridge.sys
2015-02-06 14:05:25	6D2EE96150E35B9EA49F2B481DE0369A	177472	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecpkg.sys
2015-02-06 14:05:25	4E1207CE16E615B0B7A70DC889F4500E	563976	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2015-02-06 14:05:24	9F08A6608F98B5407E7DDBCF306573EF	27456	----a-w-	C:\WINDOWS\Sysnative\drivers\rdpvideominiport.sys
2015-02-06 14:04:35	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2015-02-06 14:03:31	DB32958F0E704EFBF7F15161A569E39F	140800	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxdav.sys
2015-02-06 14:03:26	F0CB6DB513CAC393D04A0FCE0A59E1BF	75776	----a-w-	C:\WINDOWS\Sysnative\drivers\ahcache.sys
2015-02-06 14:02:58	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\WINDOWS\Sysnative\drivers\dumpsd.sys
2015-02-06 14:02:58	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\WINDOWS\Sysnative\drivers\intelpep.sys
2015-02-06 14:02:58	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2015-02-06 14:02:58	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\WINDOWS\Sysnative\drivers\pdc.sys
2015-02-06 14:01:07	CCB3A2BB60FE5073F2DEA63FE83CF8FE	2497344	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2015-02-06 14:00:57	E3FCE2A6B3533D99A3B498504DF9CC47	474432	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2015-02-06 14:00:53	7F23E38C5B6448F91439E4066645191E	428864	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2015-02-06 14:00:52	66732C13628BDB1AB0D6FD46027327C2	148800	----a-w-	C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS
2015-02-06 13:43:12	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_HidBthLE_01_11_00.Wdf
2015-02-05 11:13:30	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-02-05 11:13:06	FF17F78C4A246B8D4E86B5635E501A68	65536	----a-w-	C:\WINDOWS\Sysnative\drivers\mrvlitcm.bin
2015-02-05 11:13:06	BBF76E1AABAD050116EA0F3A6D7A8E77	360448	----a-w-	C:\WINDOWS\Sysnative\drivers\mrvliram.bin
2015-02-05 11:13:06	8414D1482437637CFB78B6199CBBF34B	655360	----a-w-	C:\WINDOWS\Sysnative\drivers\mrvlsqram.bin
2015-02-05 11:13:06	535BC73D5004FDB382C5EC9CABE3CD40	393220	----a-w-	C:\WINDOWS\Sysnative\drivers\MrvlDebugStore.bin
2015-02-05 11:13:06	243E06FF4776CFE0BC50DEDD393420A5	32768	----a-w-	C:\WINDOWS\Sysnative\drivers\mrvldtcm.bin
2015-02-05 11:10:13	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
====== C:\WINDOWS\Tasks ======
2015-02-05 17:29:53	C5841F06542E8D07A828C4DB7A943F6B	3102	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1510728668-786264413-1434497836-1001
2015-02-05 17:26:37	0BD5D77B01762E7828E24FE3E54614C5	5060	----a-w-	C:\WINDOWS\Sysnative\Tasks\Microsoft Office 15 Sync Maintenance for SURFACE-Alexander Surface
2015-02-05 17:00:21	E8209C89A92FD0DE81DD09062093009C	4050	----a-w-	C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2015-02-05 17:00:21	E1E653BB3C20485DD7637807E2CAD88A	1078	----a-w-	C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-05 17:00:21	B3BB2E2E52AFFADBEB1D61525A5E7202	1074	----a-w-	C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-05 17:00:21	64E6165A1E27C24A1CEA43C75525EC84	3814	----a-w-	C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2015-02-05 10:21:36	BAC27916526B2929BE84D361103AB829	3596	----a-w-	C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1510728668-786264413-1434497836-1001
2015-02-05 10:16:12	--------	d-----w-	C:\WINDOWS\Sysnative\Tasks\WPD
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-02-06 23:25:16	--------	d-----w-	C:\Program Files\Reference Assemblies
2015-02-06 23:25:16	--------	d-----w-	C:\Program Files\MSBuild
2015-02-06 23:10:38	--------	d-----w-	C:\Program Files\trend micro
2015-02-05 17:25:05	--------	d-----w-	C:\Program Files\Microsoft Office 15
======= C:\PROGRA~2 =====
2015-02-06 23:25:19	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2015-02-06 23:25:19	--------	d-----w-	C:\PROGRA~2\MSBuild
2015-02-06 23:21:31	--------	d-----w-	C:\PROGRA~2\Free Codec Pack
2015-02-06 23:21:24	--------	d-----w-	C:\PROGRA~2\DVDVideoSoft
2015-02-06 23:21:24	--------	d-----w-	C:\PROGRA~2\COMMON~1\DVDVideoSoft
2015-02-05 17:04:50	--------	d-----w-	C:\PROGRA~2\WinRAR
2015-02-05 17:03:31	--------	d-----w-	C:\PROGRA~2\BlueStacks
2015-02-05 17:00:19	--------	d-----w-	C:\PROGRA~2\Google
2015-02-05 16:58:12	--------	d-----w-	C:\PROGRA~2\Hobbyist Software
2015-02-05 16:56:02	--------	d-----w-	C:\PROGRA~2\VideoLAN
======= C: =====
2015-02-04 18:24:00	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\autoexec.bat
====== C:\Users\Alexander\AppData\Roaming ======
2015-02-07 09:37:16	--------	d-----w-	C:\Users\Alexander\AppData\Local\ElevatedDiagnostics
2015-02-06 23:26:15	--------	d-s---w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft
2015-02-06 23:19:21	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\DVDVideoSoft
2015-02-06 22:19:47	--------	d-sh--w-	C:\Users\Alexander\AppData\Local\EmieBrowserModeList
2015-02-06 21:36:08	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\WinRAR
2015-02-06 14:06:38	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\uTorrent
2015-02-06 13:54:42	--------	d-s---w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Locallow\Microsoft
2015-02-05 17:04:56	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-02-05 17:03:01	--------	d-----w-	C:\Users\Alexander\AppData\Local\Bluestacks
2015-02-05 17:00:16	--------	d-----w-	C:\Users\Alexander\AppData\Local\Google
2015-02-05 16:58:06	--------	d-----w-	C:\Users\Alexander\AppData\Local\Programs
2015-02-05 16:56:16	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\vlc
2015-02-05 12:55:57	--------	d-sh--w-	C:\Users\Alexander\AppData\Local\EmieUserList
2015-02-05 12:55:57	--------	d-sh--w-	C:\Users\Alexander\AppData\Local\EmieSiteList
2015-02-05 11:24:41	--------	d-----w-	C:\Users\Alexander\AppData\Local\Diagnostics
2015-02-05 11:10:14	--------	d-s---w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2015-02-05 10:59:38	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2015-02-05 10:19:41	--------	d-s---w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Locallow\Microsoft
2015-02-05 10:16:06	--------	d-----r-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2015-02-05 10:16:06	--------	d-----r-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2015-02-05 10:16:03	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\Adobe
2015-02-05 10:16:03	--------	d-----w-	C:\Users\Alexander\AppData\Local\VirtualStore
2015-02-05 10:05:53	7F8291D34C08DB05627081C518544458	1286	----a-w-	C:\Users\Administrator\AppData\Local\Application.xml
2015-02-05 10:05:42	--------	d-s---w-	C:\Users\Alexander\AppData\Roaming\Microsoft
2015-02-05 10:05:42	--------	d-----w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-05 10:05:42	--------	d-----w-	C:\Users\Alexander\AppData\Local\Temp
2015-02-05 10:05:42	--------	d-----w-	C:\Users\Alexander\AppData\Local\Microsoft
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-04 18:14:23	--------	d-sh--w-	C:\Users\Alexander\AppData\Locallow\EmieBrowserModeList
2015-02-02 08:23:15	--------	d-sh--w-	C:\Users\Alexander\AppData\Locallow\EmieUserList
2015-02-02 08:23:02	--------	d-sh--w-	C:\Users\Alexander\AppData\Locallow\EmieSiteList
2015-02-02 06:34:18	--------	d-----w-	C:\Users\Alexander\AppData\Local\Packages
2015-02-02 06:34:06	--------	d-s---w-	C:\Users\Alexander\AppData\Locallow\Microsoft
====== C:\Users\Alexander ======
2015-02-06 23:21:40	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-02-06 23:10:32	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Alexander\Downloads\RSITx64.exe
2015-02-06 22:15:29	--------	d-----w-	C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}
2015-02-05 17:29:47	--------	d-----w-	C:\ProgramData\Microsoft OneDrive
2015-02-05 17:25:44	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-02-05 17:18:28	--------	d-----w-	C:\ProgramData\Google
2015-02-05 17:04:56	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-02-05 17:03:31	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-02-05 17:03:31	--------	d-----w-	C:\ProgramData\BlueStacks
2015-02-05 17:03:01	--------	d-----w-	C:\ProgramData\BlueStacksSetup
2015-02-05 17:00:38	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-05 16:58:13	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VLC Setup Helper
2015-02-05 16:56:09	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-02-05 10:16:06	--------	d-----r-	C:\Users\Alexander\Searches
2015-02-05 10:15:59	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\Alexander\ntuser.ini
2015-02-05 10:05:42	--------	d--h--w-	C:\Users\Alexander\AppData
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\Favorites
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\Documents
2015-02-05 10:05:42	--------	d-----r-	C:\Users\Alexander\Desktop
2015-02-04 18:23:42	--------	d-----w-	C:\Users\Alexander\Start Menu
2015-02-02 06:37:29	--------	d---a-r-	C:\Users\Alexander\OneDrive
2015-02-02 06:34:20	--------	d-----r-	C:\Users\Alexander\Contacts
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Videos
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Saved Games
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Pictures
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Music
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Links
2015-02-02 06:34:05	--------	d-----r-	C:\Users\Alexander\Downloads
2015-02-02 06:30:24	--------	d--h--r-	C:\Users\Public\AccountPictures

====== C: exe-files ==
2015-02-07 00:19:35	FC273E6B811F678EA5518A27D57E0879	298120	------w-	C:\Windows\System32\MpSigStub.exe
2015-02-07 00:13:19	6DBE73C09215E281F4283641144110A5	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2015-02-07 00:13:19	38045850ACB96313A1983A8803302906	35480	----a-w-	C:\Windows\SysWOW64\TsWpfWrp.exe
2015-02-06 23:21:38	A2DF8FC008AC25F7BA95A82F26FC4EE7	2843816	----a-w-	C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe
2015-02-06 23:21:37	971949D7E97D7BA05CBCEAA9BB5B414B	189608	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\updhelper.exe
2015-02-06 23:21:35	8AF69D13045E4B584B334638EDAA5606	575656	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
2015-02-06 23:21:35	7F059790574E124E83D9323C3B017A23	373928	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe
2015-02-06 23:21:32	EFEBA7B08CC277A4011187DCE1E0B823	357376	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\gdsmux.exe
2015-02-06 23:21:32	E0F1E384D2A644BEC77DF32EF8760874	480768	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\gdsmux.x64.exe
2015-02-06 23:21:32	36A36D38B5A7A2F0B697057F26142699	160768	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\mkv2vfr.x64.exe
2015-02-06 23:21:32	1449B922DC29EDE8912F43521E5E6D62	137728	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\mkv2vfr.exe
2015-02-06 23:21:31	AEBBD973D81C98EAB112E126A61F1C34	136704	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\dsmux.x64.exe
2015-02-06 23:21:31	A8411EC5384293B9559F5BDD763CD397	113152	----a-w-	C:\Program Files (x86)\Free Codec Pack\Haali\dsmux.exe
2015-02-06 23:21:30	7700891147E283A75EBD5D0948329A94	319144	----a-w-	C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ffmpeg.exe
2015-02-06 23:21:28	F4B4136121BA7ECF16A8888335B0C0AF	1174552	----a-w-	C:\Program Files (x86)\DVDVideoSoft\unins000.exe
2015-02-06 23:21:14	F3E30088AA49E6019C62C0A20287F025	34796368	----a-w-	C:\Users\Alexander\AppData\Local\Temp\FreeYouTubeToMP3Converter.exe
2015-02-06 23:10:39	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Alexander.exe
2015-02-06 23:10:32	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Alexander\Downloads\RSITx64.exe
2015-02-06 23:03:14	9E38FB5ADBACC61D5E271CCCD45781F7	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$IRJJZGH.exe
2015-02-06 23:03:13	43E5FB54417002C6C892A78337059FC8	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$ID1ZC32.exe
2015-02-06 23:03:12	C8D45CA5B6479ECB142D5CB7153E116E	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$IYAL6O8.exe
2015-02-06 23:03:09	CC59D4D09886458C1DF0885EA4D8988B	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$IPSRCH8.exe
2015-02-06 22:17:28	0F901EE41FF20347C106D663F24931F9	679752	----a-w-	C:\Users\Alexander\AppData\Local\Google\Chrome\User Data\SwReporter\2.6.2\software_reporter_tool.exe
2015-02-06 22:15:30	33E8E02642C01520640E9313410FC365	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\4C52F3\temp\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe
2015-02-06 22:15:25	33E8E02642C01520640E9313410FC365	1058664	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$RYAL6O8.exe
2015-02-06 22:03:55	55BAE15D523E4FABAA551023703D3FD9	2463384	----a-w-	C:\Users\Alexander\AppData\Local\Temp\~dlBCC\~dljyb\tmp\XTab_v4.0.exe
2015-02-06 22:03:45	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\0dA80E18\temp\6313Bf805.exe
2015-02-06 22:03:41	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$RD1ZC32.exe
2015-02-06 22:01:06	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\Users\Alexander\AppData\Local\Temp\7A2e3A199\temp\Rayman_U_SLUS_00005.exe
2015-02-06 22:01:01	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$RRJJZGH.exe
2015-02-06 22:00:19	9DEFD077196C8CA7D2D4D21AAA2840FC	1058664	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-1510728668-786264413-1434497836-1001\$RPSRCH8.exe
2015-02-06 16:07:07	C273B81224D445026E743BCB0C1B3B5B	2096128	----a-w-	C:\Program Files\Windows Journal\Journal.exe
2015-02-06 16:07:06	42FEA9E0BA9761D9E65A4F167D91515B	795136	----a-w-	C:\Windows\System32\spoolsv.exe
2015-02-06 16:07:02	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\Windows\System32\winload.exe
2015-02-06 16:07:02	70696A95F26778CFCB106ECEAA40F4D9	1519560	----a-w-	C:\Windows\System32\Boot\winload.exe
2015-02-06 16:07:00	3663F0BB881A16A689F33A21C1A3C76B	1356840	----a-w-	C:\Windows\System32\winresume.exe
2015-02-06 16:06:57	EA10272605422080EE2FAB142A75120D	356864	----a-w-	C:\Windows\System32\conhost.exe
2015-02-06 16:06:55	9A3AF816758D144B097AE477D99F7D79	834560	----a-w-	C:\Windows\System32\osk.exe
2015-02-06 16:06:55	02FE7859AD2DEAD7E9E3C7BF5F484204	211216	----a-w-	C:\Windows\System32\SndVol.exe
2015-02-06 16:06:50	D9ABDEC0BDCD1FE7391EF756A2A9107B	180208	----a-w-	C:\Windows\SysWOW64\SndVol.exe
2015-02-06 16:06:48	0AB5085FE30F8F6942A2126BCFC1A606	263400	----a-w-	C:\Windows\System32\SystemSettingsAdminFlows.exe
2015-02-06 16:06:46	3AB9868E0E78AD9CD501B83D7C293125	54752	----a-w-	C:\Windows\System32\wuauclt.exe
2015-02-06 16:06:45	1CD80290AEB1DA851B6AA9B9822F25F2	779264	----a-w-	C:\Windows\SysWOW64\osk.exe
2015-02-06 16:06:42	EB2BB6EC7AEBBDD04FAB8E8D6FCEDAA6	183808	----a-w-	C:\Windows\System32\Defrag.exe
2015-02-06 15:23:58	93B0550500D1BD86CBAB9C4CC6B6A356	113365784	----a-w-	C:\Windows\System32\MRT.exe
2015-02-06 15:04:22	8E5263CE46C4C72901351EDC5DB7D800	195984	----a-w-	C:\Windows\System32\igfxext.exe
2015-02-06 15:04:22	5295B54064D2B853C6906ACCA90266B4	2945472	----a-w-	C:\Windows\System32\IntelWiDiVAD64.exe
2015-02-06 15:04:22	4FBAE41C54A8EA09D71025E859D8E593	472976	----a-w-	C:\Windows\System32\IntelWiDiUMS64.exe
2015-02-06 15:04:22	31688A5880BE88BB43CB055E39DE277A	279952	----a-w-	C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2015-02-06 15:04:22	12BD92AEC196699C8D9E979FC0D16D74	457616	----a-w-	C:\Windows\System32\igfxTray.exe
2015-02-06 15:04:21	C310A967211598F8F981A3895C395E5E	418704	----a-w-	C:\Windows\System32\GfxUIEx.exe
2015-02-06 15:04:21	05B6C6F77A903B971E64D21C01BE17C4	155536	----a-w-	C:\Windows\System32\difx64.exe
2015-02-06 14:08:42	6EB85A5D87946E3F677BE6DE1342D5EE	1740880	----a-w-	C:\Users\Alexander\AppData\Roaming\uTorrent\updates\3.4.2_38429.exe
2015-02-06 14:08:40	6EB85A5D87946E3F677BE6DE1342D5EE	1740880	----a-w-	C:\Users\Alexander\AppData\Roaming\uTorrent\uTorrent.exe
2015-02-06 14:08:25	B36BF235EC530152B55F663DF6231613	559000	----a-w-	C:\Users\Alexander\AppData\Local\Temp\utt63B6.tmp.exe
2015-02-06 14:07:26	195822ACCDAA2B4815DD01BAFC335595	2084520	----a-w-	C:\Windows\SysWOW64\explorer.exe
2015-02-06 14:07:25	ACDBE1ED38167C8B01B8F63161BB2CEA	2374784	----a-w-	C:\Windows\explorer.exe
2015-02-06 14:06:31	F58FBEA392B663B936E62939A877CA80	1120768	----a-w-	C:\Windows\System32\SkyDrive.exe
2015-02-06 14:03:39	65536EB5F53B76562BBE0DE332A8BA3C	66216	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2015-02-06 14:03:37	D43F34B4901C499FE13798149879DCD8	161960	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2015-02-06 14:03:37	679A800CFFBB8EA970506887045F2E41	46752	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2015-02-06 14:02:59	D1A2E993DB1867C79177CCC9DB6337D0	116032	----a-w-	C:\Windows\System32\consent.exe
2015-02-06 14:02:56	E2F4125BFAC99244088324A1841C0B83	3048880	----a-w-	C:\Windows\System32\WpcMon.exe
2015-02-06 14:02:47	E4A75F7BA48F4281405C782E3DB9F828	146432	----a-w-	C:\Windows\System32\poqexec.exe
2015-02-06 14:02:47	7EAC336CFB845753DE556D8EEDD8BD58	129536	----a-w-	C:\Windows\SysWOW64\poqexec.exe
2015-02-06 14:02:39	29A888F3136B2643E22113B5422B46F9	87040	----a-w-	C:\Windows\System32\TSWbPrxy.exe
2015-02-06 14:01:07	BCE66E78D388875B87286CA091E7075F	7484224	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-02-06 14:00:52	743DE31CDA4A16551F4F5F8A006E7295	1408472	----a-w-	C:\Windows\Camera\Camera.exe
2015-02-06 14:00:52	00027BEFE4F0106DEC51901872EEDB85	86784	----a-w-	C:\Windows\ImmersiveControlPanel\SystemSettings.exe
2015-02-06 13:58:15	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\System32\ie4uinit.exe
2015-02-06 13:58:14	5F1B1148C830C0F149A476A58CE0D09D	815248	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-02-06 13:58:13	5AC6DB399DE418E3955F0CA4567BDD37	813712	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2015-02-06 13:58:07	8CFC152DF5D4FCFD621EF3E231999D03	484352	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-02-06 13:58:06	ED5A4451A1A2777C6C5DB4238FD09078	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-02-06 13:58:06	E40D3696BE4852956669C285038B37A6	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2015-02-06 13:58:06	8D7C6EE90630126F79275BAC5FE16E51	468992	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-02-06 13:58:06	1C3C54FA2D620DF3093F356A56EC5957	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2015-02-06 13:58:06	159199095C9959BE75E61C0FF947708F	152064	----a-w-	C:\Windows\SysWOW64\iexpress.exe
2015-02-06 13:58:05	CFB15ED916904B30D32DFDE29B67CDCC	25600	----a-w-	C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2015-02-06 13:58:05	CC5C5634FA72689449B4BF7960AC1AD5	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-02-06 13:58:05	CA2F3153EF3BCB0BD3A8984C933DF604	167424	----a-w-	C:\Windows\System32\iexpress.exe
2015-02-06 13:58:05	A66A88FFE53BBB9DDAACE0110A8232EC	137728	----a-w-	C:\Windows\SysWOW64\wextract.exe
2015-02-06 13:58:05	A3871DED5ED88F59C0D1396761708F81	13824	----a-w-	C:\Windows\System32\mshta.exe
2015-02-06 13:58:05	6A16741182E4C1E83636053C81CE344E	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-02-06 13:58:05	66585D645C4E23A0FD5124BD714AE020	12800	----a-w-	C:\Windows\System32\msfeedssync.exe
2015-02-06 13:58:05	4B9C652BD0FD95A9E6123913C35519D6	143872	----a-w-	C:\Windows\System32\wextract.exe
2015-02-06 13:58:05	3FA76B67F25D84B3C2A4E8A8C0919E6E	12800	----a-w-	C:\Windows\SysWOW64\mshta.exe
2015-02-06 13:58:05	1BD4CD20A25B4A3A5F7BAAC25E9D9202	11264	----a-w-	C:\Windows\SysWOW64\msfeedssync.exe
2015-02-06 13:58:00	770BAA636F3B61DA7E414421444F84FD	272248	----a-w-	C:\Windows\System32\audiodg.exe
2015-02-06 13:58:00	6DCD12586353DC6307AC781045CA13A4	465320	----a-w-	C:\Windows\System32\WerFault.exe
2015-02-06 13:58:00	1275462A4337DBC5518859316BEF262C	413136	----a-w-	C:\Windows\SysWOW64\WerFault.exe
2015-02-06 13:57:59	D9F17FC61102D89A67A2AA3DD21231F5	33584	----a-w-	C:\Windows\SysWOW64\WerFaultSecure.exe
2015-02-06 13:57:59	9404704666256045F5BA9B290953B4D0	38264	----a-w-	C:\Windows\System32\WerFaultSecure.exe
2015-02-06 13:57:59	7C36A441C73F079781ABA8F3DAEDFB37	136296	----a-w-	C:\Windows\SysWOW64\wermgr.exe
2015-02-06 13:57:59	0BCDEB035B9346D3C3C6C8BB1AA7F38C	139984	----a-w-	C:\Windows\System32\wermgr.exe
2015-02-06 13:57:56	F381B380B7B2704EA4C0F8D8C49C1C50	623616	----a-w-	C:\Windows\System32\MDMAgent.exe
2015-02-06 13:18:39	98A2C1C05D59593050C67B739CA6C0B0	217760	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2015-02-06 13:18:35	DE8AD4A570261E1A933229B0379D19A0	842440	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DW20.EXE
2015-02-06 13:18:35	6B417A514D2538C4A6E7751848951203	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOSQM.EXE
2015-02-06 13:18:25	9A1983566048049ECCD032A912CD0A57	7765720	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe
2015-02-06 13:18:25	59360FFECC83F76DCF786DB0477F622B	81640	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
2015-02-06 13:18:23	A789DDA5192980D81DBB01D55811DEA9	49848	----a-w-	C:\Program Files\Microsoft Office 15\root\flattener\Flattener.exe
2015-02-06 13:18:23	145952D017DD84363F7D62AEAA83E825	39584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\AppSharingHookController64.exe
2015-02-06 13:18:19	1B7AF1B851A7A8763103FA63E8514CD6	207016	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOXMLED.EXE
2015-02-06 13:18:18	56F3447EBB71F6035E10D8BFDB3831C9	5681880	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe
2015-02-06 13:18:16	4BCE37BACBAB333187BB6E0F0B9F4C43	9597096	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\PDFREFLOW.EXE
2015-02-06 13:18:14	A76A48B94167494138DCDF4F54964D82	873640	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2015-02-06 13:18:14	412D869D86DFEBC54663B56F2CB61E8D	474336	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\DWTRIG20.EXE
2015-02-06 13:18:13	8D7A1204CC0086FDE7C3C3A08D1840C9	6014120	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\OneDriveSetup.exe
2015-02-06 13:18:13	1A46825F604C22732FC882D06A70D473	150704	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\FLTLDR.EXE
2015-02-06 13:18:04	F4C953B8D00CFC9964A01A13A30E07F5	1092816	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe
2015-02-06 13:18:04	D7E4EB3AA8CEEBB14DCA08D3B7AE41BD	87232	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\NAMECONTROLSERVER.EXE
2015-02-06 13:18:04	CFA27E4019358E2D6C811A72AAA003F1	480976	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SELFCERT.EXE
2015-02-06 13:18:04	CBFD156C393231D1A35D2F70657E9734	497856	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE
2015-02-06 13:18:04	4CE4D38EEA77F9A3C2E2F17742838F7A	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
2015-02-06 13:18:04	4C3B97A5E937EA214096F4DF33D34FE3	700064	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSQRY32.EXE
2015-02-06 13:18:04	4085A1C1A6B05EDCE72BE2837BEAFD7A	229048	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\CLVIEW.EXE
2015-02-06 13:18:03	E68E860F5161FC75512B92AB33195560	569592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE
2015-02-06 13:18:03	B87FE2FEED3856CBB664F6572DE9DD39	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\IEContentService.exe
2015-02-06 13:18:03	980F4A6CDF85D29E80D2792FCAEED338	4522680	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\GRAPH.EXE
2015-02-06 13:18:03	8B298F80490A813D849EEFC7495DA519	21937304	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2015-02-06 13:18:01	40489D0E1D38037BF53C3296CC338D46	528584	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\VPREVIEW.EXE
2015-02-06 13:17:52	F6742BC6B070A4060BED78F7F59FEE0E	590536	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\Integrator.exe
2015-02-06 13:17:52	8D03F2858035926F6B1E6EC34A0C0595	145056	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVDllSurrogate64.exe
2015-02-06 13:17:52	27DB723A68AE52CF0BCBA8708A44E0CA	311544	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVLP.exe
2015-02-06 13:17:52	098CA18BC23278B53C76C9F0D6BD7238	124064	----a-w-	C:\Program Files\Microsoft Office 15\root\client\AppVDllSurrogate32.exe
2015-02-06 13:17:18	80C830207A104F6C1BDE91D0D86D8685	195240	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
2015-02-06 13:17:18	5EDC8FCE400CA9CDA27EFFC4AF4D7275	1765024	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.EXE
2015-02-06 13:17:04	72A7D1D3B54044D56D0C3462FDE9B748	1923224	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
2015-02-06 13:17:03	6CCAF0A53351077CA8E5EE0499ADB576	1846952	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\POWERPNT.EXE
2015-02-06 13:17:02	60804F0D4D7D26500E20A5E70B9825CD	25704600	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\EXCEL.EXE
2015-02-06 13:16:52	1265BCCDCD1C4585948DCA39AD78CF1A	991904	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\FIRSTRUN.EXE
2015-02-06 13:16:49	D567C3DF56AC248EE82039DC0AF6D9E1	205472	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\AppVShNotify.exe
2015-02-06 13:16:49	288BD9FFEA8FB0D2176F22751E0D9F92	248992	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\mavinject32.exe
2015-02-06 13:16:42	FD73CE6356B85AD817E1F3F45DFA2F09	1461408	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\appvcleaner.exe
2015-02-06 11:35:27	8D7A1204CC0086FDE7C3C3A08D1840C9	6014120	----a-w-	C:\Users\Alexander\AppData\Local\Microsoft\SkyDrive\Update\OneDriveSetup.exe
2015-02-06 11:35:27	8D7A1204CC0086FDE7C3C3A08D1840C9	6014120	----a-w-	C:\Users\Alexander\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\OneDriveSetup.exe
2015-02-06 11:35:23	2DE22C0868B0FC1E10F06767665A9619	87200	----a-w-	C:\Users\Alexander\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveConfig.exe
2015-02-05 17:29:53	1EAEAFAF61F7DB321A005F8FF64FA8CC	251040	----a-w-	C:\Users\Alexander\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
2015-02-05 17:26:11	66EDCE45573F8673DF9379F119CFE343	90720	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\MSOHTMED.EXE
2015-02-05 17:26:10	FE9C0029E1AF26350D9985D00520E5C8	5132888	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
2015-02-05 17:26:10	BE9C758721B33A78BC656C46C319AEE6	15968	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Smart Tag\SmartTagInstall.exe
2015-02-05 17:26:10	2661516FC0165AFDA792B6148FA4DB79	95184	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Analysis Services\AS OLEDB\110\SQLDumper.exe
2015-02-05 17:25:53	F6742BC6B070A4060BED78F7F59FEE0E	590536	----a-w-	C:\ProgramData\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2015-02-05 17:25:13	D40360ABC2BB38EE202F145CAF204E99	614568	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSOICONS.EXE
2015-02-05 17:25:10	A8DC5CC29AD3B5608C4028A2FC64B8FD	3015336	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\WORDICON.EXE
2015-02-05 17:25:10	A26A02BE800686B88F69B76BE5EC7326	3509416	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\PPTICO.EXE
2015-02-05 17:25:10	89FCD7CB454386CEDEB5DFF98637830A	50392	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\SETLANG.EXE
2015-02-05 17:25:10	7EB78DC7EEAAFE9ECD788D1CCBC8EFAB	22592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\Wordconv.exe
2015-02-05 17:25:10	7BA52235E256DC309D5E808B6C358FDE	3685544	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\XLICONS.EXE
2015-02-05 17:25:10	3A2C7CE18457029CC91BDE20281FA9CD	1026728	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\misc.exe
2015-02-05 17:25:10	182315495531E8395EDA537739C87460	72384	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOHTMED.EXE
2015-02-05 17:25:07	F9362E1DBABA93E104B0ECDA6D5C7012	90280	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\perfboost.exe
2015-02-05 17:25:06	7E526C5B4DD233EBCF1EA3EC211E2913	2449592	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
2015-02-05 17:25:06	359225EBE79F2871B43AAB0A9FAFA1CF	857832	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
2015-02-05 17:25:06	319B28407DCD28D910029173DA027D90	869056	----a-w-	C:\Program Files\Microsoft Office 15\ClientX64\officec2rclient.exe
2015-02-05 17:04:51	9FF6FF93F71549755FED8C7CF7D55D85	1388120	----a-w-	C:\Program Files (x86)\WinRAR\WinRAR.exe
2015-02-05 17:04:50	DD965038187296E9278C0207CB9C6477	151640	----a-w-	C:\Program Files (x86)\WinRAR\Uninstall.exe
2015-02-05 17:04:50	1E9E954BC0C7E6FAA9F36727E940C2D3	496728	----a-w-	C:\Program Files (x86)\WinRAR\Rar.exe
2015-02-05 17:04:50	17191DF6B146369302C9386C6A153BE2	309848	----a-w-	C:\Program Files (x86)\WinRAR\UnRAR.exe
2015-02-05 17:00:30	10C915F39C291AF809CE76E9F2F2D659	41213008	----a-w-	C:\Program Files (x86)\Google\Update\Install\{2C68E829-F1E0-44DE-AAE4-84D9BE647350}\40.0.2214.111_chrome_installer.exe
2015-02-05 17:00:29	10C915F39C291AF809CE76E9F2F2D659	41213008	----a-w-	C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\40.0.2214.111\40.0.2214.111_chrome_installer.exe
2015-02-05 17:00:20	FD98434B6A06FE31A35E4BFBC827B290	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe
2015-02-05 17:00:20	E97D57680EFC79757CDB9F19803FA9F6	880208	----a-w-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateSetup.exe
2015-02-05 17:00:20	E1B44A75947137F4143308D566889837	107848	----atw-	C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2015-02-05 17:00:20	5F0A3AA68785C49454F56C9F2DDA0237	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe
2015-02-05 17:00:20	4C02536F4CA35911FB3EA5715F300C57	52040	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateBroker.exe
2015-02-05 17:00:19	F3B6470DA7CE34E559D3BA7365CC909C	115528	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe
2015-02-05 17:00:19	E1B44A75947137F4143308D566889837	107848	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdate.exe
2015-02-05 17:00:19	83BB030C71C9727DCFB2737005772C4E	232264	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
2015-02-05 17:00:19	323CFFFDAF253AC65CD194A101BE6231	287048	----atw-	C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
2015-02-05 16:58:13	B304AAD27B6C3FB2B5A1C44EE703B1F1	1296208	----a-w-	C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\VLC Setup Helper.exe
2015-02-05 16:58:13	62D717D15C4EF6925732F43878511C3A	406528	----a-w-	C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\mdnsresponder.exe
2015-02-05 16:58:12	BDFDCE0D0761AD50FE3A9CB10DA3E828	712240	----a-w-	C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\unins000.exe
2015-02-05 16:56:09	52437302E4A48A6915AFE987423A1587	275217	----a-w-	C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
2015-02-05 11:04:05	6E0BDFBEEED65B017F2E4C2C910B0520	52736	----a-w-	C:\$WINDOWS.~BT\Sources\rundll32.exe
2015-02-05 11:04:05	209519A403E096A87C0E8EC1ADB7566D	9216	----a-w-	C:\$WINDOWS.~BT\Sources\ResetEngInterfaces.exe
2015-02-05 10:57:43	ECF429E42C623E435DA179CA7BB361E1	280168	----a-w-	C:\$WINDOWS.~BT\Sources\mighost.exe
2015-02-05 01:51:28	4A88F1562EE587F3FBD219111C15F1B1	742912	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Packages\AD2F1837.HPPrinterControl_v10z8vjag6ke6\AC\Microsoft\CLR_v4.0_32\NativeImages\HP.AiORemote\fa89ab8f18238d8440000f26ae964fe4\HP.AiORemote.ni.exe
2015-02-04 18:43:16	BC481B564E2CE40DF472E54DA76FFF80	122124	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\HRQX10PI\SpyHunter-Installer[1].exe
2015-02-04 18:23:44	3D97AC796AF200D83F72B8435E15E6AB	3044736	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\Enigma Software Group\sh_installer.exe
2015-02-03 14:37:44	DF3A977C5DD04B260E3B865147C0B4FF	798424	----a-w-	C:\Program Files (x86)\BlueStacks\HD-GuestCommandRunner.exe
2015-02-03 14:37:40	51A2C358BE912D65D8FFB65104EBE664	794328	----a-w-	C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
2015-02-03 14:37:14	71FFA5DD87B84337C2BC53CD98F53E87	384728	----a-w-	C:\Program Files (x86)\BlueStacks\HD-CreateSymlink.exe
2015-02-03 14:37:12	029354ABD9B1365903EF2D7E52334355	663256	----a-w-	C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe
2015-02-03 14:37:10	6CE5299E0A255B4F2312B70F4D419867	663256	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Quit.exe
2015-02-03 14:37:08	98FF6B89950703F5047B6C45C9CE0F68	782040	----a-w-	C:\Program Files (x86)\BlueStacks\HD-TileCreator.exe
2015-02-03 14:37:08	20A3F5435637C1251147D7D861D6E48E	687832	----a-w-	C:\Program Files (x86)\BlueStacks\HD-RunApp.exe
2015-02-03 14:37:06	E12FF1798C95124775B81979D1B42C32	663256	----a-w-	C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe
2015-02-03 14:37:04	00217E180B6775071F9301997463631E	700120	----a-w-	C:\Program Files (x86)\BlueStacks\HD-ApkHandler.exe
2015-02-03 14:37:02	0A47B6BCC0A01261601E3B027C1C59D1	671448	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Restart.exe
2015-02-03 14:37:00	D0E3509E52CC8F6B3A98293FBE06EC45	847576	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Agent.exe
2015-02-03 14:36:56	E6185507445682DE886A3481BAAEB5EF	800472	----a-w-	C:\Program Files (x86)\BlueStacks\HD-GLCheck.exe
2015-02-03 14:36:32	97F695A8A1F19EBADD1A956D3558551D	970456	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Frontend.exe
2015-02-03 14:35:16	CDEECC7605A58D8356C4FC4628096EE3	409304	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Service.exe
2015-02-03 14:35:12	A2F000498129DA013BDCEDA6BF5D14A6	366808	----a-w-	C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
2015-02-03 14:35:02	92F2300E3DB52433ABD6400D541E4287	260824	----a-w-	C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
2015-02-03 14:35:00	CE067CCE5A03B6173B1255081AF790A8	378072	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Network.exe
2015-02-03 10:32:02	28CA7D1BB9FBFCA2B529D885E61491D8	933664	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\IObit\IObit Uninstaller\PPUninstallertemp.exe
2015-02-03 10:32:01	AB3FFDFC7C8F48EFAC0FBEE6FABB7345	776992	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe
2015-02-03 10:32:01	62075486038E6DD95CBDD3EB69B20735	2199840	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\IObit\IObit Uninstaller\UninstallPromotetemp.exe
2015-02-03 10:31:59	5D2AF40D165791C24C28DB24D1AE086E	588576	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\IObit\IObit Uninstaller\Install_PintoStartMenutemp.exe
2015-02-02 19:28:34	8D7A1204CC0086FDE7C3C3A08D1840C9	6014120	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\OneDriveSetup.exe
2015-02-02 19:28:30	2DE22C0868B0FC1E10F06767665A9619	87200	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveConfig.exe
2015-02-02 19:09:56	988CBE42CA1402E0D124798A4E007562	299632	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\RHEng\47967D0C8088420598D2F32892893FAD\setup0116.exe
2015-02-02 19:04:28	1EAEAFAF61F7DB321A005F8FF64FA8CC	251040	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
2015-02-02 18:48:24	1087BE1ED3E4CF8BAC3DFB8BCF76FACF	1891840	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\sweet-page\UninstallManager.exe
2015-02-02 18:47:15	81A4D82DC6F1F1C51C72C48E7AC36C13	1044248	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\RHEng\63222F78D9874CFC93A5F8D7690230E0\pcmechanicpmROE_p1v1.exe
2015-02-02 18:47:06	988CBE42CA1402E0D124798A4E007562	299632	----a-w-	C:\Windows.old\Users\Alexander\AppData\Roaming\RHEng\F32AF38242FD49AAB46F8174A4D4EC80\setup0116.exe
=== C: other files ==
2015-02-07 08:49:43	A52E02F1DF6A21C4BF3EA2FF3BC51C2C	5324899	----a-w-	C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\IE\YQGOXG9S\Pokemon - Leaf Green Version (USA).zip
2015-02-06 16:07:13	6416E79A58A8FCC33A447A4DDDD3BF04	412160	----a-w-	C:\Windows\System32\drivers\srv.sys
2015-02-06 16:07:11	038C77D577900EE39410662478BB0D50	2009920	----a-w-	C:\Windows\System32\drivers\ntfs.sys
2015-02-06 16:07:10	5BED3AB69797C8786EF70AEA8C33748B	674816	----a-w-	C:\Windows\System32\drivers\srv2.sys
2015-02-06 16:07:07	240C5C3793206725AA05665851E8C214	412992	----a-w-	C:\Windows\System32\drivers\spaceport.sys
2015-02-06 16:07:06	FF78D053A05E5A394F4E3C1816CC65A8	143680	----a-w-	C:\Windows\System32\drivers\usbccgp.sys
2015-02-06 16:07:05	64CA2B4A49A8EAF495E435623ECCE7DB	310080	----a-w-	C:\Windows\System32\drivers\volsnap.sys
2015-02-06 16:07:00	D047CD668E6277FD80F0C613946F034C	246272	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2015-02-06 16:06:59	26ACA481FAFEC59FE311D719E3027BBA	446976	----a-w-	C:\Windows\System32\drivers\nwifi.sys
2015-02-06 16:06:58	FEF0BC107812B36849741C3211BA6B60	419648	----a-w-	C:\Windows\System32\drivers\usbhub.sys
2015-02-06 16:06:54	9C096BF5E10CA8BFA56F32522A89FAF1	79872	----a-w-	C:\Windows\System32\drivers\IPMIDrv.sys
2015-02-06 16:06:53	D4B7ED39C7900384D9E5C1283F1E7926	76800	----a-w-	C:\Windows\System32\drivers\hdaudbus.sys
2015-02-06 16:06:53	C910E5D18958914A66F0E45689D0B40A	206848	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2015-02-06 16:06:53	B1AA3B19A2E596A59224F893E01A5A75	126464	----a-w-	C:\Windows\System32\drivers\NdisImPlatform.sys
2015-02-06 16:06:49	91ED124E261EA8FAA1C0FFDF2A71B0C4	280384	----a-w-	C:\Windows\System32\drivers\pci.sys
2015-02-06 16:06:48	1DD05F4857C2188744B9E864658949DD	295424	----a-w-	C:\Windows\System32\drivers\ks.sys
2015-02-06 16:06:37	25BB93167DEF270188072603F92A1EF5	118272	----a-w-	C:\Windows\System32\drivers\bthpan.sys
2015-02-06 15:04:21	FF35266A3375E49B5AF67BC5F8062313	4763064	----a-w-	C:\Windows\System32\drivers\igdkmd64.sys
2015-02-06 14:21:34	8DF1254093B5C354CE725EB6B9B0DE19	146752	----a-w-	C:\Windows\System32\drivers\msgpioclx.sys
2015-02-06 14:08:09	4080C24EE964BC8128E9A03CA5BA76BC	1113920	----a-w-	C:\Windows\System32\drivers\ndis.sys
2015-02-06 14:08:05	DE8D12B4C3F55FA2C5E9774314F6C58A	258368	----a-w-	C:\Windows\System32\drivers\WdFilter.sys
2015-02-06 14:08:05	4AD874CDC812EC156265E451B6B09DAB	114496	----a-w-	C:\Windows\System32\drivers\WdNisDrv.sys
2015-02-06 14:08:04	0359607177E5E9F6041136CC0A5CB0B6	35320	----a-w-	C:\Windows\System32\drivers\WdBoot.sys
2015-02-06 14:06:45	B31C4917EC5EADE24A90DDAF37EA00E0	4182016	----a-w-	C:\Windows\System32\win32k.sys
2015-02-06 14:06:41	F2F18BC5529FFD6B9B22B18972E10202	68	----a-w-	C:\Users\Alexander\AppData\Local\Temp\HYDCD30.tmp.1423231601\HTA\install.1423231601.zip
2015-02-06 14:06:34	F2F18BC5529FFD6B9B22B18972E10202	68	----a-w-	C:\Users\Alexander\AppData\Local\Temp\HYDB2D2.tmp.1423231594\HTA\install.1423231594.zip
2015-02-06 14:06:30	97B9076611291AE4C4C107BC915BD026	1200640	----a-w-	C:\Windows\System32\drivers\bthport.sys
2015-02-06 14:06:29	65392F3F3F65E4C6CC82A0F4F8A0B051	468288	----a-w-	C:\Windows\System32\drivers\USBHUB3.SYS
2015-02-06 14:06:27	E0927EFA25D473367C3341B9F5969779	115712	----a-w-	C:\Windows\System32\drivers\bridge.sys
2015-02-06 14:05:25	6D2EE96150E35B9EA49F2B481DE0369A	177472	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-02-06 14:05:25	4E1207CE16E615B0B7A70DC889F4500E	563976	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-02-06 14:05:24	9F08A6608F98B5407E7DDBCF306573EF	27456	----a-w-	C:\Windows\System32\drivers\rdpvideominiport.sys
2015-02-06 14:04:35	313DCE665B57000B18CB26C6B6A10DFE	1557848	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2015-02-06 14:03:31	DB32958F0E704EFBF7F15161A569E39F	140800	----a-w-	C:\Windows\System32\drivers\mrxdav.sys
2015-02-06 14:03:26	F0CB6DB513CAC393D04A0FCE0A59E1BF	75776	----a-w-	C:\Windows\System32\drivers\ahcache.sys
2015-02-06 14:02:58	B02118A776C368F7EE1A8CC81378D265	153920	----a-w-	C:\Windows\System32\drivers\dumpsd.sys
2015-02-06 14:02:58	A770340FC02B999EF0DE6C2A6BC8437C	39744	----a-w-	C:\Windows\System32\drivers\intelpep.sys
2015-02-06 14:02:58	7B7C482CF48E6EE33664340D1A78E6FE	238912	----a-w-	C:\Windows\System32\drivers\sdbus.sys
2015-02-06 14:02:58	24A8DFC07E4BAF29AEA26E383D4CC886	86336	----a-w-	C:\Windows\System32\drivers\pdc.sys
2015-02-06 14:01:07	CCB3A2BB60FE5073F2DEA63FE83CF8FE	2497344	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2015-02-06 14:00:57	E3FCE2A6B3533D99A3B498504DF9CC47	474432	----a-w-	C:\Windows\System32\drivers\netio.sys
2015-02-06 14:00:53	7F23E38C5B6448F91439E4066645191E	428864	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-02-06 14:00:52	66732C13628BDB1AB0D6FD46027327C2	148800	----a-w-	C:\Windows\System32\drivers\USBSTOR.SYS
2015-02-05 17:08:59	64BDA8CDA1BA96F4EEA2DFB66576F2A2	543	----a-w-	C:\ProgramData\BlueStacks\UserData\TileData\000003\Launcher.vbs
2015-02-05 17:07:04	F05DF2D41962318F02D4EA5796820B59	530	----a-w-	C:\ProgramData\BlueStacks\UserData\TileData\000001\Launcher.vbs
2015-02-05 17:07:04	8EF2220ACFD6B36B9209A60D9B1F86A3	523	----a-w-	C:\ProgramData\BlueStacks\UserData\TileData\000002\Launcher.vbs
2015-02-05 17:07:00	7519A3165E86179D8D7A483C33BE743B	531	----a-w-	C:\ProgramData\BlueStacks\UserData\TileData\000000\Launcher.vbs
2015-02-04 18:42:38	50C247DAC13B979E12EB7C8F3E900EAA	505	----a-w-	C:\Windows.old\Users\Alexander\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\HRQX10PI\DMCABadgeHelper.min[1].zip
2015-02-04 18:24:00	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\autoexec.bat
2015-02-03 14:37:36	0676438A39C7DF57AC657E815B3FE3BC	750724	----a-w-	C:\ProgramData\BlueStacks\UserData\InputMapper\Profiles.zip
2015-02-03 14:35:32	F71FFC736655F806207D005F3340F051	122072	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
2015-02-03 14:35:24	9BECC82EB91CA123996C3E8038872C87	112856	----a-w-	C:\Program Files (x86)\BlueStacks\HD-Hypervisor-x86.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1510728668-786264413-1434497836-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"uTorrent"="C:\Users\Alexander\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"uTorrent"="C:\Users\Alexander\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

==== Startup Folders ======================

2015-02-06 22:03:45	1950	----a-w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\6313Bf805.lnk
2015-02-06 22:15:30	2146	----a-w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crash_Bandicoot_3_Warped_U_SCUS_94244.lnk
2015-02-06 22:00:24	2020	----a-w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rayman_U_SLUS_00005.lnk
2015-02-06 13:09:18	1136	----a-w-	C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/02/2015 18:00]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05/02/2015 18:00]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

==== Chromium Look ======================

Google Slides - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Drive - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Pushbullet - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd
Google Search - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
1 out-of-date - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp
AdBlock - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Google Wallet - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Alexander\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.be/"
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541&q={searchTerms}"
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541"
"Start Page"="http://www.mystartsearch.com/?type=hp&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541"
"Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541&q={searchTerms}"
"Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541"
"Start Page"="http://www.mystartsearch.com/?type=hp&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541"
"Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541&q={searchTerms}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.be/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{33BB0A4E-99AF-4226-BDF6-49120163DE86} Unknown  Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\Alexander\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Alexander\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1510728668-786264413-1434497836-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-1510728668-786264413-1434497836-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_USERS\S-1-5-21-1510728668-786264413-1434497836-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

==== Deleting CLSID Registry Values ======================


==== shortcuts on Users Desktops ======================

C:\Users\Alexander\Desktop\Games\DVDVideoSoft Free Studio.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe 
C:\Users\Alexander\Desktop\Programma's\Apps.lnk - C:\Users\Public\Libraries\Apps.library-ms 
C:\Users\Alexander\Desktop\Programma's\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe 
C:\Users\Alexander\Desktop\Programma's\Free YouTube to MP3 Converter.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe 
C:\Users\Alexander\Desktop\Programma's\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Alexander\Desktop\Programma's\Start BlueStacks.lnk - C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe 
C:\Users\Alexander\Desktop\Programma's\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 
C:\Users\Alexander\Desktop\Programma's\µTorrent.lnk -  

==== shortcuts in Users Start Menu ======================

C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk -  
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\6313Bf805.lnk - C:\ProgramData\{21fa3be5-2463-57f3-21fa-a3be5246ef94}\6313Bf805.exe --startup=1
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crash_Bandicoot_3_Warped_U_SCUS_94244.lnk - C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe --startup=1
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rayman_U_SLUS_00005.lnk - C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\Rayman_U_SLUS_00005.exe --startup=1
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE /tsr
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR-handleiding.lnk - C:\Program Files (x86)\WinRAR\Rar.txt 
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Wat is nieuw in de meest recente versie.lnk - C:\Program Files (x86)\WinRAR\WhatsNew.txt 
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk - C:\Program Files (x86)\WinRAR\winrar.chm 
C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks\Start BlueStacks.lnk - C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube to MP3 Converter.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\EXCEL.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\ONENOTE.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\POWERPNT.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Verzenden naar OneNote 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\ONENOTEM.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\WINWORD.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Office 2013 Upload Center.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\MSOUC.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Taalvoorkeuren voor Office 2013.lnk - C:\Program Files (x86)\Microsoft Office 15\root\office15\SETLANG.EXE 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk - C:\Program Files (x86)\VideoLAN\VLC\Documentation.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk - C:\Program Files (x86)\VideoLAN\VLC\NEWS.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk - C:\Program Files (x86)\VideoLAN\VLC\VideoLAN Website.url 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe --reset-config --reset-plugins-cache vlc://quit
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe -Iskins
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VLC Setup Helper\Uninstall VLC Setup Helper.lnk - C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VLC Setup Helper\VLC Setup Helper.lnk - C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\VLC Setup Helper.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR-handleiding.lnk - C:\Program Files (x86)\WinRAR\Rar.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Wat is nieuw in de meest recente versie.lnk - C:\Program Files (x86)\WinRAR\WhatsNew.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk - C:\Program Files (x86)\WinRAR\winrar.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -  
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -  
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1423260219&from=wpc&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYBF912541
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== shortcuts After Repair ======================

C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Alexander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Alexander\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - Startup: 6313Bf805.lnk = C:\ProgramData\{21fa3be5-2463-57f3-21fa-a3be5246ef94}\6313Bf805.exe
O4 - Startup: Crash_Bandicoot_3_Warped_U_SCUS_94244.lnk = C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\Crash_Bandicoot_3_Warped_U_SCUS_94244.exe
O4 - Startup: Rayman_U_SLUS_00005.lnk = C:\ProgramData\{a8731c6d-4e7c-1d9e-a873-31c6d4e771b5}\Rayman_U_SLUS_00005.exe
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\IE\CKN5TUEI will be deleted at reboot
C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\IE\OS5ZZ6XM will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Alexander\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=167 folders=56 43301038 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Alexander\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ALEXAN~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\58451629407c870a"  not found
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}\95b8b07c67a860de"  not found
"C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found
"C:\ProgramData\{bb97ec81-7d2b-d807-bb97-7ec817d2b205}"  not found
"C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\IE\CKN5TUEI" not found
"C:\Users\Alexander\AppData\Local\Microsoft\Windows\INetCache\IE\OS5ZZ6XM" not found

==== EOF on za 07/02/2015 at 22:12:04,90 ======================