Zoek.exe v5.0.0.0 Updated 01-March-2015 Tool run by 2830023 on ma 02/03/2015 at 15:23:18,75. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: D:\users\2830023\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== D:\zoek-results2015-03-01-143336.log 107845 bytes ==== Empty Folders Check ====================== D:\users\2830023\AppData\Local\Google deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\Hpservice.exe C:\Windows\System32\spoolsv.exe c:\program files\bullguard ltd\bullguard\BullGuardBhvScanner.exe c:\program files\bullguard ltd\bullguard\BullGuardScanner.exe c:\program files\bullguard ltd\bullguard\BullGuardUpdate.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe D:\users\2830023\AppData\Local\FluxSoftware\Flux\flux.exe C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe C:\Program Files\Equitrac\Express\Client\EQMsgClient.exe C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe D:\users\2830023\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\msiexec.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\SvcHost.exe -k BullGuard_Main C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\System32\SvcHost.exe -k BullGuard_Backup C:\Windows\System32\SvcHost.exe -k BullGuard_Cache C:\Windows\System32\SvcHost.exe -k BullGuard C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy C:\Windows\system32\svchost.exe -k hpdevmgmt C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\System32\svchost.exe -k swprv ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "D:\users\2830023\AppData\Local\Temp\\setup3740843516.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup4083005632.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2066914768.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup4147168944.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup61501120.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2486305936.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2744759104.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3829661696.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2382080544.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2570615936.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2056977760.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup422430420.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup600726904.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup513944724.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup743864124.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup950249824.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup800018144.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3050965504.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2547457544.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2030781052.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup1878205696.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup1788517452.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup1494718144.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2815377072.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3036318328.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2933463076.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2605602772.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup2658175904.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3279256800.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup1257599968.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3448674400.exe" not found "D:\users\2830023\AppData\Local\Temp\\setup3514660308.exe" not found "C:\Windows\system32\tasks\11e60b1c" deleted "C:\Windows\system32\tasks\1355b980" deleted "C:\Windows\system32\tasks\1b0af020" deleted "C:\Windows\system32\tasks\1b27d4a0" deleted "C:\Windows\system32\tasks\23a289b0" deleted "C:\Windows\system32\tasks\24f5a158" deleted "C:\Windows\system32\tasks\28cb1084" deleted "C:\Windows\system32\tasks\2ac78a38" deleted "C:\Windows\system32\tasks\2fc4900" deleted "C:\Windows\system32\tasks\3093c650" deleted "C:\Windows\system32\tasks\36489410" deleted "C:\Windows\system32\tasks\3c6f8bf0" deleted "C:\Windows\system32\tasks\432553d4" deleted "C:\Windows\system32\tasks\45ceda1c" deleted "C:\Windows\system32\tasks\53830b18" deleted "C:\Windows\system32\tasks\549cb720" deleted "C:\Windows\system32\tasks\5f63d8f0" deleted "C:\Windows\system32\tasks\6c6eef60" deleted "C:\Windows\system32\tasks\7242bab4" deleted "C:\Windows\system32\tasks\80b29994" deleted "C:\Windows\system32\tasks\88eafe00" deleted "C:\Windows\system32\tasks\b09a76c" deleted "C:\Windows\system32\tasks\bcfec060" deleted "C:\Windows\system32\tasks\c7c759a0" deleted "C:\Windows\system32\tasks\d45180d4" deleted "C:\Windows\system32\tasks\d605c5ac" deleted "C:\Windows\system32\tasks\e1d1e20c" deleted "C:\Windows\system32\tasks\e1e0ac30" deleted "C:\Windows\system32\tasks\e2cc5990" deleted "C:\Windows\system32\tasks\e4d2b1f0" deleted "C:\Windows\system32\tasks\f4bb45e8" deleted "C:\Windows\system32\tasks\fc950bc8" deleted ==== System Specs ====================== Windows: Windows 7 Ultimate Edition Service Pack 1 (Build 7601) Memory (RAM): 3072 MB CPU Info: Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz CPU Speed: 651,4 MHz Sound Card: Luidsprekers (SoundMAX Integrat | Digitale audio (S/PDIF) (SoundM | Display Adapters: ATI Mobility Radeon HD 2600 | ATI Mobility Radeon HD 2600 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Intel(R) Wireless WiFi Link 4965AG | Intel(R) 82566MM Gigabit-netwerkverbinding CD / DVD Drives: 1x (E: | ) E: MATSHITADVD-RAM UJ-860H Ports: COM3 LPT1 Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 97,7GB | D: 51,4GB Hard Disks - Free: C: 56,4GB | D: 32,8GB Manufacturer *: Hewlett-Packard BIOS Info: AT/AT COMPATIBLE | 04/15/10 | HPQOEM - 1 Time Zone: Romance (standaardtijd) Motherboard *: Hewlett-Packard 30C5 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: BullGuard Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: BullGuard Antispyware disabled (Outdated) Firewall: BullGuard Firewall disabled Internet Explorer Version: 11.0.9600.17633 Mozilla Firefox version: 32.0.3 (x86 nl) Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_31 (32-bit) Flash Player version: 10.3.183.10 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-02-23 19:02:26 CA2A8AF1DBAD0F31F9B33A2827DFBC16 207 ----a-w- C:\Windows\tweaking.com-regbackup-WINPHL-60FP2K36-Windows-7-Ultimate-(32-bit).dat ====== D:\users\2830023\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2015-03-02 14:21:25 22E51F8351F9B4D4CB79D7A57F6E701C 576 ----a-w- C:\Windows\System32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD 2015-02-24 19:10:57 A86F5616EACB7155998011CEFFFB52F6 12800 ----a-w- C:\Windows\System32\RdpGroupPolicyExtension.dll 2015-02-24 19:10:55 8999F18D38D55E34D356796507FFD639 192000 ----a-w- C:\Windows\System32\rdpendp_winip.dll 2015-02-24 19:10:55 3228AB5F8652EAABFF3C5FC7FD0F603A 221184 ----a-w- C:\Windows\System32\rdpudd.dll 2015-02-24 19:10:54 AC3598BD1101BBC4365994BAB093BB62 2739712 ----a-w- C:\Windows\System32\rdpcorets.dll 2015-02-24 19:09:46 F37167FCDB661FD4B54CAD4755ABDD61 32256 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll 2015-02-24 19:09:45 D60E27D4BD5A91FCD17D2CB27F86738E 12800 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2015-02-24 19:09:44 AB5EFB103DB01C1912C9D2F545EA5621 17920 ----a-w- C:\Windows\System32\wksprtPS.dll 2015-02-24 19:09:44 A90F47CDCC0898733596B5070039FC15 14336 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2015-02-24 19:09:44 2EFB1279E7BEA7D12D9F4D6508D27880 50176 ----a-w- C:\Windows\System32\MsRdpWebAccess.dll 2015-02-24 19:09:43 8DEEE20D8D30E9B0FBDCA31E58A027BD 53248 ----a-w- C:\Windows\System32\tsgqec.dll 2015-02-24 19:09:43 5E676B296B762E211D83B87635F2C330 855552 ----a-w- C:\Windows\System32\rdvidcrl.dll 2015-02-24 19:09:42 AF40D823F3B03C7899AEF2293F84D0D7 76288 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2015-02-24 19:09:42 A5FE03D57097A45B8E7A4A09C9B78695 5698048 ----a-w- C:\Windows\System32\mstscax.dll 2015-02-24 19:09:42 4676AAA9DDF52A50C829FEDB4EA81E54 1068544 ----a-w- C:\Windows\System32\mstsc.exe 2015-02-24 19:09:42 0FC6922517964E9D90DE84DC86F63E40 350208 ----a-w- C:\Windows\System32\wksprt.exe 2015-02-24 19:09:28 3B9E2AB1F3ABC53D4A423E699EB625C8 419936 ----a-w- C:\Windows\System32\locale.nls 2015-02-24 19:05:29 F1886C30C3E4A7C5513525CBA665AA31 6144 ----a-w- C:\Windows\System32\KBDTAT.DLL 2015-02-24 19:05:29 EB3D06A9EDFDFD12228AD7A9F24D15D6 5632 ----a-w- C:\Windows\System32\KBDRU.DLL 2015-02-24 19:05:29 40FFC65117C4AC69D33DEC6D567392FD 6144 ----a-w- C:\Windows\System32\KBDYAK.DLL 2015-02-24 19:05:29 33DB506498E0419CD50B144DE7CCFC75 6144 ----a-w- C:\Windows\System32\KBDBASH.DLL 2015-02-24 19:05:29 1235259E135F87BF4AE5864A818E1513 6144 ----a-w- C:\Windows\System32\KBDRU1.DLL 2015-02-24 19:05:12 DDE994E9159497D0D5AB2CDF66D1EAD6 76800 ----a-w- C:\Windows\System32\wdi.dll 2015-02-24 19:05:12 A580CFFC56EE72550B803AED2EFD5442 27136 ----a-w- C:\Windows\System32\powertracker.dll 2015-02-24 19:05:12 1115D5A98043254A0E787F888FC273C0 635904 ----a-w- C:\Windows\System32\perftrack.dll 2015-02-24 19:04:39 4FD3763F3917201856B0CBCE310003EA 4300800 ----a-w- C:\Windows\System32\jscript9.dll 2015-02-24 19:04:39 01BD2653F2185218837CF4A175617F8A 620032 ----a-w- C:\Windows\System32\jscript9diag.dll 2015-02-24 18:20:19 FF0A6E76FAE624AC74780AB008752F98 3209728 ----a-w- C:\Windows\System32\mf.dll 2015-02-24 18:20:19 D17954CA6343F43B62637F51996B4E95 23040 ----a-w- C:\Windows\System32\mfpmp.exe 2015-02-24 18:20:19 60FBCF033FF42A40C916C01A962A8802 50176 ----a-w- C:\Windows\System32\rrinstaller.exe 2015-02-24 18:20:19 52096F5F476733F2E2725CF346FF373B 2048 ----a-w- C:\Windows\System32\mferror.dll 2015-02-24 18:20:19 20257A0BFB824B49055A6EEC29C72C03 103424 ----a-w- C:\Windows\System32\mfps.dll 2015-02-24 18:09:11 2413D2216D08FAF7D7178D9E0B481AEB 2285056 ----a-w- C:\Windows\System32\msmpeg2vdec.dll 2015-02-24 17:58:26 AF6655214DEBB2C8446DE843A02AAEBA 99480 ----a-w- C:\Windows\System32\infocardapi.dll 2015-02-24 17:58:21 370FC4421ADE62FC89AC93B345570388 8856 ----a-w- C:\Windows\System32\icardres.dll 2015-02-24 17:58:15 8D466B36076BCD7997838C0DDB69764C 619672 ----a-w- C:\Windows\System32\icardagt.exe 2015-02-24 17:58:11 28A8B99DE70F376B18709E6B07D6A352 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2015-02-24 17:57:25 907281ED4AD35D41B29FFDC211EBAD80 5120 ----a-w- C:\Windows\System32\wmi.dll 2015-02-24 17:52:44 62C93E47A424A8EC79F3CF1719A2DCC6 3972544 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2015-02-24 17:52:43 6D227897A458DA8A9518DACDC88F1947 3917760 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-02-24 17:45:45 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\System32\wmp.dll 2015-02-24 17:45:44 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\System32\wmploc.DLL 2015-02-24 17:29:54 E1A4D24281526DDFEA418F729CDA9DC6 30720 ----a-w- C:\Windows\System32\iernonce.dll 2015-02-24 17:29:54 C4F2424A0671907FD3AC44EBE43C3C66 667648 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-02-24 17:29:54 B0F7BD3492C2D60A70F15AEADCE1E2A6 47616 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2015-02-24 17:29:54 94B1F7CE1AAA5542923E0AD63C4D0050 60416 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2015-02-24 17:29:54 73AFBF165241EB4502CD15107AA12CBA 684544 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-02-24 17:29:54 71189E2787179666BDCD1374AE92BF62 102912 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-02-24 17:29:53 FD6AF61AF029B9BC2CF4EFF57CDD5821 710144 ----a-w- C:\Windows\System32\ieapfltr.dll 2015-02-24 17:29:53 EF05E63ACC834470A07A2E73D519B5FA 418304 ----a-w- C:\Windows\System32\dxtmsft.dll 2015-02-24 17:29:53 8FBC9680719ACDA9351B67D906C682F4 688640 ----a-w- C:\Windows\System32\msfeeds.dll 2015-02-24 17:29:53 8E8137569741D3693F88DDF94CC38C20 1307136 ----a-w- C:\Windows\System32\urlmon.dll 2015-02-24 17:29:53 74EA6C792F57E453261DA210C1BCEB53 342712 ----a-w- C:\Windows\System32\iedkcs32.dll 2015-02-24 17:29:53 55A84600EAAF8F1D3F0E6206E2EF6D48 47104 ----a-w- C:\Windows\System32\jsproxy.dll 2015-02-24 17:29:53 28B2D3CB1B4306D476200D80AF7D87AD 115712 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-02-24 17:29:52 AD3F5926EC2C1F21FB45D1CDED6E2A47 2052608 ----a-w- C:\Windows\System32\inetcpl.cpl 2015-02-24 17:29:52 47B26D89EF9973E2DD586D0C827F61A9 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2015-02-24 17:29:51 F285D499EC42969D963CA49EADA63218 1888256 ----a-w- C:\Windows\System32\wininet.dll 2015-02-24 17:29:51 6F10743069DFFC56DEE079204960844E 168960 ----a-w- C:\Windows\System32\msrating.dll 2015-02-24 17:29:51 5FB7E9786F70F4072663746072C9E6CE 62464 ----a-w- C:\Windows\System32\iesetup.dll 2015-02-24 17:29:51 44791AA90DF93DD79E63ED3A38657964 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2015-02-24 17:29:50 6FA05244FD2E40A3DC08337146B3C425 285696 ----a-w- C:\Windows\System32\dxtrans.dll 2015-02-24 17:29:49 994E7459260D315573DD72783D1B78A7 478208 ----a-w- C:\Windows\System32\ieui.dll 2015-02-24 17:29:49 78A1A938D51D4F83A772123B93EE1612 12829184 ----a-w- C:\Windows\System32\ieframe.dll 2015-02-24 17:29:48 D87759889FE7BCAE4461439139E62BAA 76288 ----a-w- C:\Windows\System32\mshtmled.dll 2015-02-24 17:29:47 3B9EF1B8E154D202D32A7765E2F33554 64000 ----a-w- C:\Windows\System32\MshtmlDac.dll 2015-02-24 17:29:47 180168942E4A133C55E7BBF17DA3C142 1155072 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2015-02-24 17:29:46 9A91F9B5035F54C2D0BA92CF9B16EE34 2277888 ----a-w- C:\Windows\System32\iertutil.dll 2015-02-24 17:29:45 61C74D794C14E9FC94D93F5F0F72A3F9 19740160 ----a-w- C:\Windows\System32\mshtml.dll 2015-02-24 17:29:44 9DEE691C8FDBC2DE6957F1AE873C78FC 503296 ----a-w- C:\Windows\System32\vbscript.dll 2015-02-24 17:29:37 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\System32\WMPhoto.dll 2015-02-24 17:29:37 79896A78039C9A63C56197843CFBAD0B 1987584 ----a-w- C:\Windows\System32\d3d10warp.dll 2015-02-24 17:29:16 F2A743912D404A8866362836CFE7A648 686080 ----a-w- C:\Windows\System32\adtschema.dll 2015-02-24 17:29:16 BF08DE8E4FA1F143D41B3241F7FCE5F6 22528 ----a-w- C:\Windows\System32\lsass.exe 2015-02-24 17:29:16 4775E1A0E15BF148098C35A19135F881 1061376 ----a-w- C:\Windows\System32\lsasrv.dll 2015-02-24 17:29:15 F29BC66CE4A5507A49FB20744A056E61 22016 ----a-w- C:\Windows\System32\secur32.dll 2015-02-24 17:29:15 CEFE50761B7681715C66AE3488363985 100352 ----a-w- C:\Windows\System32\sspicli.dll 2015-02-24 17:29:15 ACF312F6CCFC9249F739BF439DD4B80C 15872 ----a-w- C:\Windows\System32\sspisrv.dll 2015-02-24 17:29:15 4E6934926B4C923CC0FF61C6D77814EF 50176 ----a-w- C:\Windows\System32\auditpol.exe 2015-02-24 17:29:15 43791D2F736C4E9BE9FE0B33A1E92A5D 60416 ----a-w- C:\Windows\System32\msobjs.dll 2015-02-24 17:29:15 36F152AE2F64B12771A44EA77124332B 146432 ----a-w- C:\Windows\System32\msaudite.dll 2015-02-24 17:29:11 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\System32\DWrite.dll 2015-02-24 17:29:08 14800BD31701A5047AC3145BB1E698AE 3419136 ----a-w- C:\Windows\System32\d2d1.dll 2015-02-24 17:29:07 9AEA093B8F9C37CF45538382CABA2475 317440 ----a-w- C:\Windows\System32\spoolsv.exe 2015-02-24 17:29:05 B63A6FF4339C9B701A93D3973C7FB6D2 550912 ----a-w- C:\Windows\System32\kerberos.dll 2015-02-24 17:29:05 7D94A9161E8432B8521E60E064B1D737 259584 ----a-w- C:\Windows\System32\msv1_0.dll 2015-02-24 17:29:05 7C893DBA0A58855A99DA68B751FD223B 248832 ----a-w- C:\Windows\System32\schannel.dll 2015-02-24 17:29:04 F3F6BE20A03215209B61CA85B4A83E1F 65536 ----a-w- C:\Windows\System32\TSpkg.dll 2015-02-24 17:29:04 C256EFD3655EC782F8094E96094E8F9E 17408 ----a-w- C:\Windows\System32\credssp.dll 2015-02-24 17:29:04 A12D64A94EC57079C2D96A741CB4FF53 172032 ----a-w- C:\Windows\System32\wdigest.dll 2015-02-24 17:29:04 3BB446DE24501FEA5FDB9A9DB23A22AE 221184 ----a-w- C:\Windows\System32\ncrypt.dll 2015-02-24 17:26:30 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\System32\osk.exe 2015-02-24 17:25:43 72910F1DEB838E6E08A9017BFB7D4F0B 41984 ----a-w- C:\Windows\System32\browcli.dll 2015-02-24 17:25:43 3DAA727B5B0A45039B0E1C9A211B8400 102912 ----a-w- C:\Windows\System32\browser.dll 2015-02-24 17:25:43 2FCA0D2C59A855C54BAFA22AA329DF0F 57344 ----a-w- C:\Windows\System32\netapi32.dll 2015-02-24 17:25:37 8229618C90801E957BADC332CE32A6C5 2048 ----a-w- C:\Windows\System32\iologmsg.dll 2015-02-24 17:25:29 BBA80D3CAB22620A6AC9BB603386EE33 519680 ----a-w- C:\Windows\System32\qdvd.dll 2015-02-24 17:25:04 8D338464B851DDD76E2B876A3E09EB70 442880 ----a-w- C:\Windows\System32\AUDIOKSE.dll 2015-02-24 17:25:03 FD79B005E849DF3D7E9B5EB7A637C528 374784 ----a-w- C:\Windows\System32\AudioEng.dll 2015-02-24 17:25:03 F4157B3CECF19B1C266C83AFF051C97A 475136 ----a-w- C:\Windows\System32\audiosrv.dll 2015-02-24 17:25:03 AA7325057A1E1CC401798C0B1238E182 195584 ----a-w- C:\Windows\System32\AudioSes.dll 2015-02-24 17:25:03 639B0199F4D995CD63D7328799A92B57 275968 ----a-w- C:\Windows\System32\EncDump.dll 2015-02-24 17:24:54 DBF9369D554A229DB0D554BB95A4B0AA 305152 ----a-w- C:\Windows\System32\gdi32.dll 2015-02-24 17:24:53 DA8AAF7E56F698608A89542131F74818 40960 ----a-w- C:\Windows\System32\wwanprotdim.dll 2015-02-24 17:24:53 7CC38741B8F68F1E0D5D79DA6123666A 185344 ----a-w- C:\Windows\System32\wwansvc.dll 2015-02-24 17:24:45 CB55B9AAB060C803BE4AD229AA0FEC28 2363904 ----a-w- C:\Windows\System32\msi.dll 2015-02-24 17:24:35 5FDBDEECA34E73325D87C5ACD16A3EEC 701440 ----a-w- C:\Windows\System32\IMJP10K.DLL 2015-02-24 17:24:30 B3BC38B886CA53C92D52EF724A9F0D45 308224 ----a-w- C:\Windows\System32\scesrv.dll 2015-02-24 17:14:12 793F6658ED65839FDB2957A4884CB63C 1230336 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2015-02-24 15:16:14 2F0BC1FC6142DCB31C7D9804962A7011 9728 ----a-w- C:\Windows\System32\Wdfres.dll 2015-02-24 15:15:03 FE47B7BC8EA320C2D9B5E5BF6E303765 73216 ----a-w- C:\Windows\System32\WUDFSvc.dll 2015-02-24 15:15:03 D5CF1536137026ACDED95BF6CBF849F6 172032 ----a-w- C:\Windows\System32\WUDFPlatform.dll 2015-02-24 15:15:02 D689B2C2E69156D954C24810F4081C1E 38912 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll 2015-02-24 15:15:01 A36F7A256E65D858A7039DB00ADEEBDD 613888 ----a-w- C:\Windows\System32\WUDFx.dll 2015-02-24 15:15:01 980B6A5F92B8DB235C4A26728C2BE732 196608 ----a-w- C:\Windows\System32\WUDFHost.exe 2015-02-23 21:33:29 15E13FB1C22A47A128965287194D1906 2380288 ----a-w- C:\Windows\System32\win32k.sys 2015-02-23 21:31:52 C9059EF0C94C55C0DA9CACEE160A5F66 654336 ----a-w- C:\Windows\System32\rpcrt4.dll 2015-02-23 21:31:49 98B3C919C6B9C5F810FF2CAFA339822B 186880 ----a-w- C:\Windows\System32\pku2u.dll 2015-02-23 21:31:36 5860EE5C807CB3866551B845123493C6 107520 ----a-w- C:\Windows\System32\cdd.dll 2015-02-23 21:31:29 FD25B74DC1A18C56BF1A879BF086555A 293376 ----a-w- C:\Windows\System32\KernelBase.dll 2015-02-23 21:31:29 995B39A08421C7725D1DF8DACEBBFC89 538112 ----a-w- C:\Windows\System32\objsel.dll 2015-02-23 21:31:28 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 ----a-w- C:\Windows\System32\adprovider.dll 2015-02-23 21:31:28 834A859BB331B0B2CCAE25BB1986F80D 47616 ----a-w- C:\Windows\System32\dpapiprovider.dll 2015-02-23 21:31:28 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 ----a-w- C:\Windows\System32\dimsroam.dll 2015-02-23 21:31:28 5E11C55CC4D9330E55CCB22B1F20BB33 35328 ----a-w- C:\Windows\System32\wincredprovider.dll 2015-02-23 21:31:28 38A30B8E4216BE24D30F766EF3BAC2C7 48128 ----a-w- C:\Windows\System32\capiprovider.dll 2015-02-23 21:31:28 335FA669FC952BC4888CEDBDB42607E2 51200 ----a-w- C:\Windows\System32\cngprovider.dll 2015-02-23 21:30:30 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\System32\msxml6.dll 2015-02-23 21:30:29 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\System32\msxml6r.dll 2015-02-23 21:30:27 37C395C075E6FA66623C82DE50A8FAED 372736 ----a-w- C:\Windows\System32\rastls.dll 2015-02-23 21:30:20 FCFD4F50419B4BC72E80066DA10D2E54 523776 ----a-w- C:\Windows\System32\termsrv.dll 2015-02-23 21:29:43 537184E7306E06BB22C5B93D2AFA4DF8 1237504 ----a-w- C:\Windows\System32\msxml3.dll 2015-02-23 21:29:43 09FA271EE1F9AD68B2D1C1C210F4B71F 2048 ----a-w- C:\Windows\System32\msxml3r.dll 2015-02-23 21:28:56 2A01B40C8334A8124001CFAC256FCA83 102608 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll 2015-02-23 21:12:07 50C73E54062BA252350F3F29580E28DA 2048 ----a-w- C:\Windows\System32\tzres.dll 2015-02-23 21:11:14 CADC4CFE957C24984FFA718AB7E4EF3C 101824 ----a-w- C:\Windows\System32\consent.exe 2015-02-23 21:11:14 9DA1CCDBBF8136AC2383C2624CA8CD14 337408 ----a-w- C:\Windows\System32\msihnd.dll 2015-02-23 21:11:14 43CD23B65CBF04D6F8ACA984B0EF93FE 1805824 ----a-w- C:\Windows\System32\authui.dll 2015-02-23 21:10:58 492FF9C530EC0352B3C904CE9898269D 509440 ----a-w- C:\Windows\System32\qedit.dll 2015-02-23 21:08:35 D5D5BBF6AA45D820BAA0BD1303B8AAF6 81560 ----a-w- C:\Windows\System32\mscories.dll 2015-02-23 21:08:35 A139A5E6B34F136405B030EA04595A20 156824 ----a-w- C:\Windows\System32\mscorier.dll 2015-02-23 21:08:35 8580484193CE0A0788830FBAB97CF13B 1131664 ----a-w- C:\Windows\System32\dfshim.dll 2015-02-23 21:08:06 0F39AC3274312EFFD03928291E8BA7CA 67584 ----a-w- C:\Windows\System32\packager.dll 2015-02-23 21:08:04 FD9692A3D31E021207D3C2A9DDDC2BE3 164864 ----a-w- C:\Windows\System32\profsvc.dll 2015-02-23 21:08:03 A208DAC2932649CFF82A6A684D8BB1F6 571904 ----a-w- C:\Windows\System32\oleaut32.dll 2015-02-23 21:07:55 116D4D5EC6AC379D7016EA266D57757D 597504 ----a-w- C:\Windows\System32\gpsvc.dll 2015-02-23 21:07:26 F57E1D225AE5C2C8F475A99BFDF018F4 1167520 ----a-w- C:\Windows\System32\aitstatic.exe 2015-02-23 21:07:26 EEA1C649DBE9628150207BC563DA77F2 482304 ----a-w- C:\Windows\System32\generaltel.dll 2015-02-23 21:07:25 76293EF1A6BFCCBD901107E514E48624 886784 ----a-w- C:\Windows\System32\aeinv.dll 2015-02-23 21:07:25 48D5B4FC2235E069A444C105B65D40BD 767488 ----a-w- C:\Windows\System32\appraiser.dll 2015-02-23 21:07:25 1C562DF669A412EF40A9871C8856AEE4 621056 ----a-w- C:\Windows\System32\invagent.dll 2015-02-23 21:07:25 048FD5432E4C2B42EE39FD9F54ED162F 325632 ----a-w- C:\Windows\System32\devinv.dll 2015-02-23 21:07:25 0389CAF21A50D13A90D2699750D499B5 159744 ----a-w- C:\Windows\System32\aepic.dll 2015-02-23 21:07:24 EE0759179FC7EB0012AF1A69C8AAE185 202752 ----a-w- C:\Windows\System32\aepdu.dll 2015-02-23 21:07:22 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\System32\shdocvw.dll 2015-02-23 21:07:14 9EA3783672D21817B9DF1061B54C3B3C 155136 ----a-w- C:\Windows\System32\charmap.exe 2015-02-23 21:06:55 52449FD429D6053B78AE564DEF303870 304128 ----a-w- C:\Windows\System32\winlogon.exe 2015-02-23 21:06:54 FD67683FBA9B2C4BB551780BD8846F64 157696 ----a-w- C:\Windows\System32\winsta.dll 2015-02-23 21:06:54 B4203FC65D4C0D7A0B7A02AFD13472BB 130048 ----a-w- C:\Windows\System32\rdpcorekmts.dll 2015-02-23 21:06:54 A5661C9330E5FCFCDD53EB03D5F04822 8192 ----a-w- C:\Windows\System32\rdrmemptylst.exe 2015-02-23 21:06:53 954AAF2028CD907B7F7ED40FFFD9D27F 58880 ----a-w- C:\Windows\System32\rdpwsx.dll 2015-02-23 21:06:13 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\System32\usp10.dll 2015-02-23 21:06:11 F115C5CD29E512F18BD7138A094B77E5 242688 ----a-w- C:\Windows\System32\nlasvc.dll 2015-02-23 21:05:48 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\System32\credui.dll 2015-02-23 21:05:48 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll 2015-02-23 21:05:43 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\System32\imagehlp.dll 2015-02-23 21:05:43 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\System32\msieftp.dll 2015-02-23 21:05:39 E365C7B3EBB96451D3C9DF6B6B6900C2 179200 ----a-w- C:\Windows\System32\wintrust.dll 2015-02-23 21:05:39 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\System32\cryptnet.dll 2015-02-23 21:05:39 623E143F2DF17C0106A9988F5D7DC878 143872 ----a-w- C:\Windows\System32\cryptsvc.dll 2015-02-23 21:05:39 0C96A745A76C7DD75C5503E86D968E49 1174528 ----a-w- C:\Windows\System32\crypt32.dll 2015-02-23 21:05:27 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\System32\dpnet.dll 2015-02-23 21:05:23 75F5E1FE8D55CF8E577E0EC5F2290D3F 530432 ----a-w- C:\Windows\System32\comctl32.dll 2015-02-23 21:05:22 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\System32\scrrun.dll 2015-02-23 21:05:22 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\System32\cscript.exe 2015-02-23 21:05:22 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\System32\wscript.exe 2015-02-23 21:05:22 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\System32\wshom.ocx 2015-02-23 21:04:55 3B7C1A53047FF6ACEFD9BA6E281DEBB7 805376 ----a-w- C:\Windows\System32\cdosys.dll 2015-02-23 21:04:51 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\System32\WMVDECOD.DLL 2015-02-23 21:04:49 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe 2015-02-23 21:04:48 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\System32\certenc.dll 2015-02-23 21:04:33 E2ED66FAF894F545EB083AC5F5763854 434688 ----a-w- C:\Windows\System32\scavengeui.dll 2015-02-23 21:03:24 7D27E63B54DB093BB0D9E95F81094D75 34304 ----a-w- C:\Windows\System32\atmlib.dll 2015-02-23 21:03:24 5C6B44F9CAAC475B7B9EBBC29CB7F065 295424 ----a-w- C:\Windows\System32\atmfd.dll 2015-02-23 21:03:24 2342EC9254F4C60CA98441BD65C89E12 10240 ----a-w- C:\Windows\System32\dciman32.dll 2015-02-23 21:03:23 F632602316001D517F4EF3B53B9A6C33 26112 ----a-w- C:\Windows\System32\lpk.dll 2015-02-23 21:03:23 8CC4638FA7B5B921B9080CF962582C0B 70656 ----a-w- C:\Windows\System32\fontsub.dll 2015-02-23 21:02:36 F74FFA7654702F81884BDB41EB80DAC2 868352 ----a-w- C:\Windows\System32\kernel32.dll 2015-02-23 21:02:36 51BB04243DF6196C06E125898127E397 169984 ----a-w- C:\Windows\System32\winsrv.dll 2015-02-23 21:02:36 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe 2015-02-23 21:02:33 9DC80A8AAAAAC397BDAB3C67165A824E 690688 ----a-w- C:\Windows\System32\msvcrt.dll 2015-02-23 21:02:30 74AF6AA2E8B3180AADAE5FE8813CB1CD 769024 ----a-w- C:\Windows\System32\localspl.dll 2015-02-23 21:02:28 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\System32\FWPUCLNT.DLL 2015-02-23 21:02:28 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\System32\nshwfp.dll 2015-02-23 21:02:28 B9C54120F46392100478F58F374E5709 679424 ----a-w- C:\Windows\System32\IKEEXT.DLL 2015-02-23 21:02:26 4F8CCD3E7D9F17A7C60FA0AE2466CACF 381440 ----a-w- C:\Windows\System32\wer.dll 2015-02-23 20:25:02 1DE9BD23AFA36150586C732D876D9B74 1177088 ----a-w- C:\Windows\System32\WsmSvc.dll 2015-02-23 20:25:01 B975C202F590BBC5AA63225FBD148791 198656 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe 2015-02-23 20:25:01 B6AC69FFBAA159DD5CEED814245A286D 214016 ----a-w- C:\Windows\System32\WsmWmiPl.dll 2015-02-23 20:25:01 5D9A1A3E5824CECE65871C60E5A08A1A 145920 ----a-w- C:\Windows\System32\WsmAuto.dll 2015-02-23 20:25:01 2C28FEC61C4AC68480A99CB7AA197FA9 248832 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll 2015-02-23 20:17:37 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\System32\elshyph.dll 2015-02-23 20:17:36 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\System32\ieuinit.inf 2015-02-23 20:17:36 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\System32\html.iec 2015-02-23 20:17:36 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2015-02-23 20:17:36 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\System32\ieapfltr.dat 2015-02-23 20:17:36 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\System32\tdc.ocx 2015-02-23 20:17:36 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\System32\jsIntl.dll 2015-02-23 20:17:36 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\System32\icardie.dll 2015-02-23 20:17:36 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\System32\msls31.dll 2015-02-23 20:17:35 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\System32\IEAdvpack.dll 2015-02-23 20:17:35 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\System32\inseng.dll 2015-02-23 20:17:35 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\System32\url.dll 2015-02-23 20:17:35 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\System32\mshtmler.dll 2015-02-23 20:17:35 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\System32\mshta.exe 2015-02-23 20:17:35 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\System32\licmgr10.dll 2015-02-23 20:17:35 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\System32\iexpress.exe 2015-02-23 20:17:35 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe 2015-02-23 20:17:35 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\System32\iesysprep.dll 2015-02-23 20:17:35 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\System32\jscript.dll 2015-02-23 20:17:35 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\System32\imgutil.dll 2015-02-23 20:17:35 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\System32\wextract.exe 2015-02-23 20:17:35 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\System32\msfeedsbs.dll 2015-02-23 20:17:35 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\System32\msfeedssync.exe 2015-02-23 20:17:35 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\System32\pngfilt.dll 2015-02-23 20:17:35 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\System32\iepeers.dll 2015-02-23 20:17:35 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\System32\occache.dll 2015-02-23 20:17:35 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\System32\webcheck.dll 2015-02-23 20:16:36 E0B8C6B1EA1EF94747E966E9093FB968 1289096 ----a-w- C:\Windows\System32\ntdll.dll 2015-02-23 20:16:36 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe 2015-02-23 20:16:36 D67472125471784DE7147946EDA25FEB 640512 ----a-w- C:\Windows\System32\advapi32.dll 2015-02-23 20:16:36 401D25136E26B237D77DA1BF1198B3BD 619520 ----a-w- C:\Windows\System32\tdh.dll 2015-02-23 20:16:36 23AB7E36551C6BA5370EF7F05142F0EB 38912 ----a-w- C:\Windows\System32\csrsrv.dll 2015-02-23 20:15:58 E94C583CDE2348950155F2AF2876F34D 231424 ----a-w- C:\Windows\System32\mswsock.dll 2015-02-23 20:15:29 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe 2015-02-23 20:13:14 E12C4928B32ACE04610259647F072635 906240 ----a-w- C:\Windows\System32\FntCache.dll 2015-02-23 20:13:14 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\System32\XpsGdiConverter.dll 2015-02-23 20:13:14 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\System32\XpsPrint.dll 2015-02-23 20:13:14 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-02-23 20:13:14 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-02-23 20:13:14 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-02-23 20:13:14 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll 2015-02-23 20:13:14 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-02-23 20:13:14 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll 2015-02-23 20:13:14 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-02-23 20:13:14 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-02-23 20:13:14 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-02-23 20:13:13 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\System32\d3d10core.dll 2015-02-23 20:13:13 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\System32\dxgi.dll 2015-02-23 20:13:13 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\System32\d3d10_1core.dll 2015-02-23 20:13:13 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\System32\UIAnimation.dll 2015-02-23 20:13:13 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\System32\d3d10.dll 2015-02-23 20:13:13 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll 2015-02-23 20:13:13 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\System32\d3d10level9.dll 2015-02-23 20:13:13 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\System32\d3d10_1.dll 2015-02-23 20:11:44 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\System32\d3d11.dll 2015-02-23 20:07:50 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\System32\RMActivate_isv.exe 2015-02-23 20:07:50 BBCE3E9E74C7CEA47FA4115B360AC2C6 423936 ----a-w- C:\Windows\System32\secproc_isv.dll 2015-02-23 20:07:50 9158DBE2F8483434FC72F320690C9DB8 87040 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll 2015-02-23 20:07:50 7FA485555BF802FE3DB5598004DBDFAC 390144 ----a-w- C:\Windows\System32\msdrm.dll 2015-02-23 20:07:50 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\System32\RMActivate.exe 2015-02-23 20:07:50 58712A48D31B40EBCB35B47205F87771 87040 ----a-w- C:\Windows\System32\secproc_ssp.dll 2015-02-23 20:07:50 12A9F24DC9F465DA79AC2272D829A81E 428032 ----a-w- C:\Windows\System32\secproc.dll 2015-02-23 20:07:50 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe 2015-02-23 20:07:50 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\System32\RMActivate_ssp.exe 2015-02-23 20:07:26 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\System32\oflc-nz.rs 2015-02-23 20:07:26 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\System32\fpb.rs 2015-02-23 20:07:26 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\System32\grb.rs 2015-02-23 20:07:26 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\System32\usk.rs 2015-02-23 20:07:26 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\System32\pegibbfc.rs 2015-02-23 20:07:26 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\System32\csrr.rs 2015-02-23 20:07:26 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\System32\gameux.dll 2015-02-23 20:07:26 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\System32\pegi.rs 2015-02-23 20:07:26 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\System32\pegi-pt.rs 2015-02-23 20:07:26 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\System32\Wpc.dll 2015-02-23 20:07:26 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\System32\cob-au.rs 2015-02-23 20:07:26 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\System32\djctq.rs 2015-02-23 20:07:25 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\System32\esrb.rs 2015-02-23 20:07:25 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\System32\oflc.rs 2015-02-23 20:07:25 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\System32\cero.rs 2015-02-23 20:07:25 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\System32\pegi-fi.rs 2015-02-23 20:07:16 786B9C958A4F217322C24C736263C51F 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe 2015-02-23 20:06:41 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\System32\cryptdlg.dll 2015-02-23 20:06:34 86F34E7288DA428E38E2D8C7E806A871 826880 ----a-w- C:\Windows\System32\rdpcore.dll 2015-02-23 20:06:30 58F67245D041FBE7AF88F4EAF79DF0FA 499712 ----a-w- C:\Windows\System32\iphlpsvc.dll 2015-02-23 20:06:30 5078492B9CAC9CB721698DB51F039035 175104 ----a-w- C:\Windows\System32\netcorehc.dll 2015-02-23 20:06:30 140D9F911182357626165EA0BEB98C4F 156672 ----a-w- C:\Windows\System32\ncsi.dll 2015-02-23 20:06:29 50E0DD0A5B8D8BC353578F2F73926697 52224 ----a-w- C:\Windows\System32\nlaapi.dll 2015-02-23 20:06:29 23FC8068953C9BE2D63AE4EF1129112A 18944 ----a-w- C:\Windows\System32\netevent.dll 2015-02-23 20:06:23 0AE0C4955E1DE29CCDC9DA1B816FE5EE 1328128 ----a-w- C:\Windows\System32\quartz.dll 2015-02-23 20:05:57 A8DDB7ACB122FC36FF0D7C9B3099A380 793600 ----a-w- C:\Windows\System32\TSWorkspace.dll 2015-02-23 20:05:53 FB19FC5951A88F3C523E35C2C98D23C0 314880 ----a-w- C:\Windows\System32\webio.dll 2015-02-23 20:05:51 EAF4712B706936C0B10D3B5319B37E81 81920 ----a-w- C:\Windows\System32\davclnt.dll 2015-02-23 20:05:51 75E8EBD7040CE238684333F97014762A 205824 ----a-w- C:\Windows\System32\WebClnt.dll 2015-02-23 20:05:47 03F3B770DFBED6131653CEDA8CA780F0 442880 ----a-w- C:\Windows\System32\ntshrui.dll 2015-02-23 20:05:44 386BF6FD9FC562B1A5558C49E1C3A6FB 12874240 ----a-w- C:\Windows\System32\shell32.dll 2015-02-23 20:05:41 EF71BA5DF59034962B0C62314A71351A 193536 ----a-w- C:\Windows\System32\dhcpcore6.dll 2015-02-23 20:05:41 81F6C1AE23B1C493D9E996C3103915D7 44032 ----a-w- C:\Windows\System32\dhcpcsvc6.dll 2015-02-23 20:05:38 866004E949EB3D02C3CAE0A553231A3A 400896 ----a-w- C:\Windows\System32\srcore.dll 2015-02-23 20:05:36 7E9917D5309A90E7576653BFE39F80D8 478720 ----a-w- C:\Windows\System32\timedate.cpl 2015-02-23 20:05:35 D23E615E0969AECC1134E372B0B295D1 78336 ----a-w- C:\Windows\System32\synceng.dll 2015-02-23 20:05:33 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\System32\win32spl.dll 2015-02-23 20:05:23 EACFDF31921F51C097629F1F3C9129B4 47104 ----a-w- C:\Windows\System32\appinfo.dll 2015-02-23 19:28:00 459E257F8915D44B23ACB46211FD45D0 45536 ----a-w- C:\Windows\System32\wups2.dll 2015-02-23 19:28:00 072678E0D68E9C3A7960328671134C7B 54240 ----a-w- C:\Windows\System32\wuauclt.exe 2015-02-23 19:27:59 EC6E2DB67695966DF22CF5EBEFC1D305 2425856 ----a-w- C:\Windows\System32\wucltux.dll 2015-02-23 19:27:59 D9B0134913E5EF007AF82A418C503322 1973728 ----a-w- C:\Windows\System32\wuaueng.dll 2015-02-23 19:27:44 372218B80DEF827063049EBEE76B7501 92672 ----a-w- C:\Windows\System32\wudriver.dll 2015-02-23 19:27:44 255F0417EC31C71585824269522EC8E9 36320 ----a-w- C:\Windows\System32\wups.dll 2015-02-23 19:27:43 867148EBF47E7E7E7B21C07B4A981929 581600 ----a-w- C:\Windows\System32\wuapi.dll 2015-02-23 19:27:31 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\System32\wuapp.exe 2015-02-23 19:27:31 5AA2CAD923E9E647276A61387E83DDD0 179656 ----a-w- C:\Windows\System32\wuwebv.dll 2015-02-23 18:56:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\System32\sursfouten.txt 2015-02-23 14:39:23 0AD9E9098F1F6535EEE56FB53876B625 140280 ----a-w- C:\Windows\System32\BgGamingMonitor.dll 2015-02-23 14:39:14 3541ACE396B5B80DF5D883FE882BBB15 64336 ----a-w- C:\Windows\System32\BGLsp.dll ====== C:\Windows\system32\drivers ===== 2015-02-25 22:12:45 A5F73D55CACA2A4FEDCDDF079939A2BA 21888 ----a-w- C:\Windows\System32\drivers\NSNetmon.sys 2015-02-25 22:12:45 4F5DDEB675D21836E688E574F911FA5C 263432 ----a-w- C:\Windows\System32\drivers\NSKernel.sys 2015-02-24 19:10:58 65375DF758CA1872AB7EBBBA457FD5E6 14848 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys 2015-02-24 19:10:43 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01009.Wdf 2015-02-24 19:09:44 C6A5FBD4977305E1FA23E02C042DB463 49152 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys 2015-02-24 17:57:25 7DAE5EBCC80E45D3253F4923DC424D05 19824 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2015-02-24 17:29:16 F516F1167EFBBC5ABC90687C94497869 369968 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-02-24 17:29:16 EF88BAC2B489D9C46F4E41ACF0219CD0 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-02-24 17:29:16 49D70660EE8266988C1F99A0297A1430 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-02-24 17:25:37 F1A449D762657230629D8BFC107ABC14 149440 ----a-w- C:\Windows\System32\drivers\storport.sys 2015-02-24 17:25:37 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2015-02-24 17:25:37 5FB4F271032B6435F3B2252F577A4815 27072 ----a-w- C:\Windows\System32\drivers\Diskdump.sys 2015-02-24 17:25:15 C8DFF8D07755A66C7A4A738930F0FEAC 1212352 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2015-02-24 15:16:18 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2015-02-24 15:16:14 48704647CD2E9DAA2EB81BDE6D029EDB 47720 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys 2015-02-24 15:15:04 867C301E8B790040AE9CF6486E8041DF 155136 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2015-02-24 15:15:04 06E6F32C8D0A3F66D956F57B43A2E070 66560 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2015-02-24 15:15:00 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2015-02-23 21:31:53 7FE680A3DFA421C4A8E4879AE4C5AAB0 74752 ----a-w- C:\Windows\System32\drivers\tdx.sys 2015-02-23 21:31:37 3583A5A8CC2E682BFFBD4630D0FEC08B 730048 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2015-02-23 21:31:37 0EC652D17AB4607745FB4E6958E8FAB6 219072 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2015-02-23 21:10:55 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys 2015-02-23 21:10:55 5579DD18546999F5D0EC39D018726C6B 1294272 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2015-02-23 21:10:54 DEE7EDA5AAA96C4C68A1F098F5145799 187840 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2015-02-23 21:10:51 D0B388DA1D111A34366E04EB4A5DD156 338944 ----a-w- C:\Windows\System32\drivers\afd.sys 2015-02-23 21:07:55 E7EB93F16956C1BE56CB9B865802F696 89528 ----a-w- C:\Windows\System32\drivers\mup.sys 2015-02-23 21:07:55 68E0C10F0917DB2DBA059D253116E7FA 98304 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2015-02-23 21:07:55 348C882F66AE4E4C53025FDF1FFB1618 225792 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2015-02-23 21:07:54 FFD09089BBBD94546821FD7F093F7427 124416 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2015-02-23 21:07:54 B15D1178AD7AA2D4F32E88B68C7E2DA2 243200 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2015-02-23 21:07:54 0C1B2CC3733A4A5B8D6258E7B26EAD1A 81408 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2015-02-23 21:06:54 CD9214A6AE17D188D17C3CF8CB9CC693 184320 ----a-w- C:\Windows\System32\drivers\rdpwd.sys 2015-02-23 21:06:53 6C5139E4283249518F7743D7043775B3 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2015-02-23 21:06:08 03F899F521D2AAED1C55008F734DF252 116224 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2015-02-23 21:05:42 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2015-02-23 21:05:25 FC6B21DB4B5B398AB93DBE59CBF11036 36352 ----a-w- C:\Windows\System32\drivers\usbscan.sys 2015-02-23 21:05:24 F1B27299F547D452EDAEF01FC187CB91 25728 ----a-w- C:\Windows\System32\drivers\hidparse.sys 2015-02-23 21:05:24 50ABE682EBE752EAF62B18790D6D491C 55808 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2015-02-23 21:03:50 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys 2015-02-23 21:03:49 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys 2015-02-23 21:03:46 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys 2015-02-23 21:03:46 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2015-02-23 21:03:46 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2015-02-23 21:03:45 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2015-02-23 21:03:45 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys 2015-02-23 21:03:45 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2015-02-23 21:03:45 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys 2015-02-23 21:02:38 25944D2CC49E0A6C581D02A74B7D6645 527064 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2015-02-23 21:02:34 3F34A1B4C5F6475F320C275E63AFCE9B 56176 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2015-02-23 21:02:27 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys 2015-02-23 21:02:24 DE014425522610BEDCA3821BB8C0F1D5 146816 ----a-w- C:\Windows\System32\drivers\usbvideo.sys 2015-02-23 21:02:24 2352AB5F9F8F097BF9D41D5A4718A041 86016 ----a-w- C:\Windows\System32\drivers\usbcir.sys 2015-02-23 20:06:36 ED80D303102A746D30C1684B387BCBF1 33280 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys 2015-02-23 20:06:36 8C9C922D71F1CD4DEF73F186416B7896 712048 ----a-w- C:\Windows\System32\drivers\ndis.sys 2015-02-23 20:06:34 2C2C5AFE7EE4F620D69C23C0617651A8 24576 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2015-02-23 20:06:30 3EEBD3BD93DA46A26E89893C7AB2FF3B 35328 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2015-02-23 20:05:30 1153DE2E4F5941E10C399CB5592F78A1 393728 ----a-w- C:\Windows\System32\drivers\bthport.sys 2015-02-23 20:05:28 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-02-24 15:22:06 -------- d-----w- C:\Program Files\Common Files\Skype 2015-02-23 21:18:08 -------- d-----w- C:\Program Files\Common Files\DESIGNER 2015-02-23 19:01:31 -------- d-----w- C:\Program Files\Tweaking.com 2015-02-14 22:10:53 -------- d-----w- C:\Program Files\Adblock Plus for IE ======= D: ===== ====== D:\users\2830023\AppData\Roaming ====== 2015-03-01 14:31:16 -------- d-----w- D:\users\Public\AppData\Local\temp 2015-03-01 14:31:16 -------- d-----w- D:\users\pcvo9117\AppData\Local\temp 2015-03-01 14:31:16 -------- d-----w- D:\users\latitude\AppData\Local\temp 2015-03-01 14:31:16 -------- d-----w- D:\users\Default\AppData\Local\temp 2015-03-01 14:31:16 -------- d-----w- D:\users\Default User\AppData\Local\temp 2015-03-01 14:31:16 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2015-03-01 14:31:16 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-02-24 21:22:07 -------- d-sh--w- D:\users\2830023\AppData\Locallow\EmieUserList 2015-02-24 21:22:07 -------- d-sh--w- D:\users\2830023\AppData\Locallow\EmieSiteList 2015-02-24 21:22:07 -------- d-sh--w- D:\users\2830023\AppData\Locallow\EmieBrowserModeList 2015-02-24 20:54:54 -------- d-sh--w- D:\users\2830023\AppData\Local\EmieUserList 2015-02-24 20:54:54 -------- d-sh--w- D:\users\2830023\AppData\Local\EmieSiteList 2015-02-24 20:54:54 -------- d-sh--w- D:\users\2830023\AppData\Local\EmieBrowserModeList 2015-02-14 22:10:54 -------- d-----w- D:\users\2830023\AppData\Locallow\Adblock Plus for IE ====== D:\users\2830023 ====== 2015-02-27 18:33:07 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- D:\users\2830023\Desktop\RSIT.exe 2015-02-24 15:22:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype ====== C: exe-files == 2015-02-27 14:10:45 FE9AFB27FD156EB582AFF15A7AA88F1F 520016 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe 2015-02-27 14:10:45 7B1B092DE6E7DF4C68318188FBCB1FA7 238928 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe 2015-02-25 16:30:52 DC8E7F7AF5F2E58873F9F3CEE6912596 4709640 ----a-w- C:\Program Files\Adblock Plus for IE\AdblockPlusEngine.exe 2015-02-24 19:09:45 D60E27D4BD5A91FCD17D2CB27F86738E 12800 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2015-02-24 19:09:42 AF40D823F3B03C7899AEF2293F84D0D7 76288 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2015-02-24 19:09:42 4676AAA9DDF52A50C829FEDB4EA81E54 1068544 ----a-w- C:\Windows\System32\mstsc.exe 2015-02-24 19:09:42 0FC6922517964E9D90DE84DC86F63E40 350208 ----a-w- C:\Windows\System32\wksprt.exe 2015-02-24 19:07:39 001B2CD2D45BC59575BA0F1A4A997682 76856 ----a-w- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe 2015-02-24 18:20:19 D17954CA6343F43B62637F51996B4E95 23040 ----a-w- C:\Windows\System32\mfpmp.exe 2015-02-24 18:20:19 60FBCF033FF42A40C916C01A962A8802 50176 ----a-w- C:\Windows\System32\rrinstaller.exe 2015-02-24 17:58:15 8D466B36076BCD7997838C0DDB69764C 619672 ----a-w- C:\Windows\System32\icardagt.exe 2015-02-24 17:58:11 28A8B99DE70F376B18709E6B07D6A352 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2015-02-24 17:52:44 62C93E47A424A8EC79F3CF1719A2DCC6 3972544 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2015-02-24 17:52:43 6D227897A458DA8A9518DACDC88F1947 3917760 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-02-24 17:45:44 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe 2015-02-24 17:29:54 C4F2424A0671907FD3AC44EBE43C3C66 667648 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-02-24 17:29:54 73AFBF165241EB4502CD15107AA12CBA 684544 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-02-24 17:29:54 71189E2787179666BDCD1374AE92BF62 102912 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-02-24 17:29:53 D674809F9EC7D6A409F553C0DF91E825 221184 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-02-24 17:29:53 28B2D3CB1B4306D476200D80AF7D87AD 115712 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-02-24 17:29:52 8111C559DAD3A40200AE916874E7E62A 468992 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-02-24 17:29:51 363BC25BACB34E9D40441968B1B3D5BE 815288 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-02-24 17:29:16 BF08DE8E4FA1F143D41B3241F7FCE5F6 22528 ----a-w- C:\Windows\System32\lsass.exe 2015-02-24 17:29:15 4E6934926B4C923CC0FF61C6D77814EF 50176 ----a-w- C:\Windows\System32\auditpol.exe 2015-02-24 17:29:07 9AEA093B8F9C37CF45538382CABA2475 317440 ----a-w- C:\Windows\System32\spoolsv.exe 2015-02-24 17:26:30 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\System32\osk.exe 2015-02-24 17:24:35 7EEB4D2A17421D337F970FB5C3B24410 106496 ----a-w- C:\Windows\System32\IME\IMEJP10\imjpuexc.exe 2015-02-24 15:15:01 980B6A5F92B8DB235C4A26728C2BE732 196608 ----a-w- C:\Windows\System32\WUDFHost.exe 2015-02-23 21:12:07 DEF30B58859FBA3458DCA4057AAABA7A 40448 ----a-w- C:\Windows\servicing\GC32\tzupd.exe 2015-02-23 21:11:14 CADC4CFE957C24984FFA718AB7E4EF3C 101824 ----a-w- C:\Windows\System32\consent.exe 2015-02-23 21:07:27 C126ADC95027DB78B2AA17A04513D475 138912 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe 2015-02-23 21:07:27 4A1647BB581BABFACD0F7946BB284810 42656 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe 2015-02-23 21:07:26 F57E1D225AE5C2C8F475A99BFDF018F4 1167520 ----a-w- C:\Windows\System32\aitstatic.exe 2015-02-23 21:07:26 5D239986173BC624A50270BD9892A300 63656 ----a-w- C:\Windows\System32\CompatTel\diagtrackrunner.exe 2015-02-23 21:07:14 9EA3783672D21817B9DF1061B54C3B3C 155136 ----a-w- C:\Windows\System32\charmap.exe 2015-02-23 21:06:55 52449FD429D6053B78AE564DEF303870 304128 ----a-w- C:\Windows\System32\winlogon.exe 2015-02-23 21:06:54 A5661C9330E5FCFCDD53EB03D5F04822 8192 ----a-w- C:\Windows\System32\rdrmemptylst.exe 2015-02-23 21:05:22 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\System32\cscript.exe 2015-02-23 21:05:22 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\System32\wscript.exe 2015-02-23 21:04:49 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe 2015-02-23 21:02:36 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe 2015-02-23 20:25:01 B975C202F590BBC5AA63225FBD148791 198656 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe 2015-02-23 20:17:36 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2015-02-23 20:17:36 2AFAE62B727EE7190450D4A14C287422 359632 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe 2015-02-23 20:17:35 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\System32\mshta.exe 2015-02-23 20:17:35 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\System32\iexpress.exe 2015-02-23 20:17:35 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe 2015-02-23 20:17:35 7F7F391491C315A4A72EFCAC0D34FA93 25600 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe 2015-02-23 20:17:35 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\System32\wextract.exe 2015-02-23 20:17:35 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\System32\msfeedssync.exe 2015-02-23 20:16:36 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe 2015-02-23 20:15:29 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe 2015-02-23 20:07:50 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\System32\RMActivate_isv.exe 2015-02-23 20:07:50 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\System32\RMActivate.exe 2015-02-23 20:07:50 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe 2015-02-23 20:07:50 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\System32\RMActivate_ssp.exe 2015-02-23 20:07:16 786B9C958A4F217322C24C736263C51F 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe 2015-02-23 20:07:11 A1CF92651A2274E887189DABD2929DEF 82944 ----a-w- C:\Windows\System32\Dism\DismHost.exe 2015-02-23 19:28:00 072678E0D68E9C3A7960328671134C7B 54240 ----a-w- C:\Windows\System32\wuauclt.exe 2015-02-23 19:27:31 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\System32\wuapp.exe === C: other files == 2015-02-27 14:10:48 E419185B79C1A342838B7F76D703521D 815008 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\xp\x86\NSKernel.sys 2015-02-27 14:10:48 CD92C150847B37A7C1F861652EF32148 20088 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\xp\x86\NSNetmon.sys 2015-02-27 14:10:47 E2E0BB1DDFE65978E9695D783202E6DB 260824 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win8\x64\NSKernel.sys 2015-02-27 14:10:47 A5F73D55CACA2A4FEDCDDF079939A2BA 21888 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win7\x86\NSNetmon.sys 2015-02-27 14:10:47 7C15D42C6ED89A6A3D564F02C9F28D3F 212920 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win8\x86\NSKernel.sys 2015-02-27 14:10:47 4F5DDEB675D21836E688E574F911FA5C 263432 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win7\x86\NSKernel.sys 2015-02-27 14:10:46 B03212A649137E68B9AAD86CCE27BA17 263432 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\vista\x86\NSKernel.sys 2015-02-27 14:10:46 955D6A55484CF176E1F664F0796FD685 21888 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\vista\x86\NSNetmon.sys 2015-02-27 14:10:46 8EC1738D48A55314C4E2E5A3AF900549 321624 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\vista\x64\NSKernel.sys 2015-02-27 14:10:46 7B17CF29F2EB07C197045387573F3665 321624 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win7\x64\NSKernel.sys 2015-02-27 14:10:46 34BFCC9E534E84623D9457037B44EC6B 27544 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\win7\x64\NSNetmon.sys 2015-02-27 14:10:46 1DF5B2D3F25203096841BC45F44A7695 27544 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\NovaShield\driver\vista\x64\NSNetmon.sys 2015-02-25 22:12:45 A5F73D55CACA2A4FEDCDDF079939A2BA 21888 ----a-w- C:\Windows\System32\drivers\NSNetmon.sys 2015-02-25 22:12:45 4F5DDEB675D21836E688E574F911FA5C 263432 ----a-w- C:\Windows\System32\drivers\NSKernel.sys 2015-02-24 19:10:58 E951866BAC5A23403F62A349EDBB6EEB 24064 ----a-w- C:\Windows\System32\DriverStore\FileRepository\termmou.inf_x86_neutral_0e28c761f9ae155a\terminpt.sys 2015-02-24 19:10:58 E951866BAC5A23403F62A349EDBB6EEB 24064 ----a-w- C:\Windows\System32\DriverStore\FileRepository\termkbd.inf_x86_neutral_339f71420b21f4a1\terminpt.sys 2015-02-24 19:10:58 65375DF758CA1872AB7EBBBA457FD5E6 14848 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys 2015-02-24 19:10:57 57C527AF84748B5C2F5178C499C0B81F 27136 ----a-w- C:\Windows\System32\DriverStore\FileRepository\tsgenericusbdriver.inf_x86_neutral_93ae7b205b7d38be\TsUsbGD.sys 2015-02-24 19:09:45 7E6E0797EB91F1D63641058416044313 26880 ----a-w- C:\Windows\System32\DriverStore\FileRepository\tsgenericusbdriver.inf_x86_neutral_9002d2f3f0cfc5e0\TsUsbGD.sys 2015-02-24 19:09:44 C6A5FBD4977305E1FA23E02C042DB463 49152 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys 2015-02-24 17:57:25 7DAE5EBCC80E45D3253F4923DC424D05 19824 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2015-02-24 17:29:16 F516F1167EFBBC5ABC90687C94497869 369968 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-02-24 17:29:16 EF88BAC2B489D9C46F4E41ACF0219CD0 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-02-24 17:29:16 49D70660EE8266988C1F99A0297A1430 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-02-24 17:25:37 F1A449D762657230629D8BFC107ABC14 149440 ----a-w- C:\Windows\System32\drivers\storport.sys 2015-02-24 17:25:37 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\DriverStore\FileRepository\iscsi.inf_x86_neutral_128be931e3e98b62\msiscsi.sys 2015-02-24 17:25:37 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2015-02-24 17:25:37 5FB4F271032B6435F3B2252F577A4815 27072 ----a-w- C:\Windows\System32\drivers\Diskdump.sys 2015-02-24 17:25:15 C8DFF8D07755A66C7A4A738930F0FEAC 1212352 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2015-02-24 15:16:14 48704647CD2E9DAA2EB81BDE6D029EDB 47720 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys 2015-02-24 15:15:04 867C301E8B790040AE9CF6486E8041DF 155136 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2015-02-24 15:15:04 06E6F32C8D0A3F66D956F57B43A2E070 66560 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2015-02-23 21:33:29 15E13FB1C22A47A128965287194D1906 2380288 ----a-w- C:\Windows\System32\win32k.sys 2015-02-23 21:31:53 7FE680A3DFA421C4A8E4879AE4C5AAB0 74752 ----a-w- C:\Windows\System32\drivers\tdx.sys 2015-02-23 21:31:37 3583A5A8CC2E682BFFBD4630D0FEC08B 730048 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2015-02-23 21:31:37 0EC652D17AB4607745FB4E6958E8FAB6 219072 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2015-02-23 21:10:55 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys 2015-02-23 21:10:55 5579DD18546999F5D0EC39D018726C6B 1294272 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2015-02-23 21:10:54 DEE7EDA5AAA96C4C68A1F098F5145799 187840 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2015-02-23 21:10:51 D0B388DA1D111A34366E04EB4A5DD156 338944 ----a-w- C:\Windows\System32\drivers\afd.sys 2015-02-23 21:07:55 E7EB93F16956C1BE56CB9B865802F696 89528 ----a-w- C:\Windows\System32\drivers\mup.sys 2015-02-23 21:07:55 68E0C10F0917DB2DBA059D253116E7FA 98304 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2015-02-23 21:07:55 348C882F66AE4E4C53025FDF1FFB1618 225792 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2015-02-23 21:07:54 FFD09089BBBD94546821FD7F093F7427 124416 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2015-02-23 21:07:54 B15D1178AD7AA2D4F32E88B68C7E2DA2 243200 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2015-02-23 21:07:54 0C1B2CC3733A4A5B8D6258E7B26EAD1A 81408 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2015-02-23 21:06:54 CD9214A6AE17D188D17C3CF8CB9CC693 184320 ----a-w- C:\Windows\System32\drivers\rdpwd.sys 2015-02-23 21:06:53 6C5139E4283249518F7743D7043775B3 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2015-02-23 21:06:08 03F899F521D2AAED1C55008F734DF252 116224 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2015-02-23 21:05:42 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2015-02-23 21:05:42 BE444D443F424E3146534BA98978D68A 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb80236.sys 2015-02-23 21:05:42 AF77716205C97E902E6C5B78DECE2CCA 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb8023x.sys 2015-02-23 21:05:26 007C0C8D5B01D82ACEB70431D15083F6 28160 ----a-w- C:\Windows\System32\DriverStore\FileRepository\mdmcpq.inf_x86_neutral_1965855805a8e768\usbser.sys 2015-02-23 21:05:25 FC6B21DB4B5B398AB93DBE59CBF11036 36352 ----a-w- C:\Windows\System32\DriverStore\FileRepository\sti.inf_x86_neutral_24eb5587941b03fb\usbscan.sys 2015-02-23 21:05:25 FC6B21DB4B5B398AB93DBE59CBF11036 36352 ----a-w- C:\Windows\System32\drivers\usbscan.sys 2015-02-23 21:05:24 F1B27299F547D452EDAEF01FC187CB91 25728 ----a-w- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_neutral_1436b88c77b8881d\hidparse.sys 2015-02-23 21:05:24 F1B27299F547D452EDAEF01FC187CB91 25728 ----a-w- C:\Windows\System32\drivers\hidparse.sys 2015-02-23 21:05:24 50ABE682EBE752EAF62B18790D6D491C 55808 ----a-w- C:\Windows\System32\DriverStore\FileRepository\input.inf_x86_neutral_1436b88c77b8881d\hidclass.sys 2015-02-23 21:05:24 50ABE682EBE752EAF62B18790D6D491C 55808 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2015-02-23 21:03:50 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\portcls.sys 2015-02-23 21:03:50 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys 2015-02-23 21:03:49 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\drmk.sys 2015-02-23 21:03:49 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys 2015-02-23 21:03:46 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbport.sys 2015-02-23 21:03:46 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys 2015-02-23 21:03:46 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbehci.sys 2015-02-23 21:03:46 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2015-02-23 21:03:46 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbccgp.sys 2015-02-23 21:03:46 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2015-02-23 21:03:45 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbhub.sys 2015-02-23 21:03:45 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbhub.sys 2015-02-23 21:03:45 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2015-02-23 21:03:45 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbohci.sys 2015-02-23 21:03:45 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys 2015-02-23 21:03:45 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbuhci.sys 2015-02-23 21:03:45 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys 2015-02-23 21:03:45 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbd.sys 2015-02-23 21:03:45 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys 2015-02-23 21:02:38 25944D2CC49E0A6C581D02A74B7D6645 527064 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2015-02-23 21:02:34 3F34A1B4C5F6475F320C275E63AFCE9B 56176 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2015-02-23 21:02:27 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\ataport.sys 2015-02-23 21:02:27 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys 2015-02-23 21:02:24 DE014425522610BEDCA3821BB8C0F1D5 146816 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbvideo.inf_x86_neutral_b63436395ec126b7\usbvideo.sys 2015-02-23 21:02:24 DE014425522610BEDCA3821BB8C0F1D5 146816 ----a-w- C:\Windows\System32\drivers\usbvideo.sys 2015-02-23 21:02:24 A1977C315BF5691DA99235AA4A6907AF 80896 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdma_usb.inf_x86_neutral_8583111d879ac65d\USBAUDIO.sys 2015-02-23 21:02:24 2352AB5F9F8F097BF9D41D5A4718A041 86016 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbcir.inf_x86_neutral_1a7503cad201feda\usbcir.sys 2015-02-23 21:02:24 2352AB5F9F8F097BF9D41D5A4718A041 86016 ----a-w- C:\Windows\System32\drivers\usbcir.sys 2015-02-23 20:06:36 ED80D303102A746D30C1684B387BCBF1 33280 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys 2015-02-23 20:06:36 C44206971082446BA8E9A19A35D41424 30208 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\rndismp6.sys 2015-02-23 20:06:36 C44206971082446BA8E9A19A35D41424 30208 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_0b46e86f0f566f5a\rndismp6.sys 2015-02-23 20:06:36 94617EC3A62336151C039E15A2945042 33280 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\rndismpx.sys 2015-02-23 20:06:36 94617EC3A62336151C039E15A2945042 33280 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_0b46e86f0f566f5a\rndismpx.sys 2015-02-23 20:06:36 8C9C922D71F1CD4DEF73F186416B7896 712048 ----a-w- C:\Windows\System32\drivers\ndis.sys 2015-02-23 20:06:34 2C2C5AFE7EE4F620D69C23C0617651A8 24576 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2015-02-23 20:06:30 3EEBD3BD93DA46A26E89893C7AB2FF3B 35328 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2015-02-23 20:05:30 1153DE2E4F5941E10C399CB5592F78A1 393728 ----a-w- C:\Windows\System32\DriverStore\FileRepository\bth.inf_x86_neutral_a6bf6d613b46f6a5\bthport.sys 2015-02-23 20:05:30 1153DE2E4F5941E10C399CB5592F78A1 393728 ----a-w- C:\Windows\System32\drivers\bthport.sys 2015-02-23 20:05:28 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-1123561945-484061587-1801674531-65625\Software\Microsoft\Windows\CurrentVersion\Run] "F.lux"="D:\users\2830023\AppData\Local\FluxSoftware\Flux\flux.exe /noshow" "Steam"="C:\Program Files\Steam\Steam.exe -silent" "HP Officejet Pro 8620 (NET)"="C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe -deviceID CN4ADD40YK:NW -scfn HP Officejet Pro 8620 (NET) -AutoStart 1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" "QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start" "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" "SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" "hpqSRMon"="C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe" "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe -boot" "BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "F.lux"="D:\users\2830023\AppData\Local\FluxSoftware\Flux\flux.exe /noshow" "Steam"="C:\Program Files\Steam\Steam.exe -silent" "HP Officejet Pro 8620 (NET)"="C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe -deviceID CN4ADD40YK:NW -scfn HP Officejet Pro 8620 (NET) -AutoStart 1" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\PROGRA~1\\BULLGU~1\\BULLGU~1\\BgAgent.dll" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\beid] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="beid" "hkey"="HKLM" "command"="\"C:\\Program Files\\Belgium Identity Card\\beid35gui.exe\" /startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CarboniteSetupLite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CarboniteSetupLite" "hkey"="HKLM" "command"="\"C:\\Program Files\\Carbonite\\CarbonitePreinstaller.exe\" /preinstalled /showonfirst /reshowat=900" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Software Update" "hkey"="HKLM" "command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MaxMenuMgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MaxMenuMgr" "hkey"="HKLM" "command"="\"C:\\Program Files\\Seagate\\SeagateManager\\FreeAgent Status\\StxMenuMgr.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WatchDog] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WatchDog" "hkey"="HKLM" "command"="C:\\Program Files\\InterVideo\\DVD Check\\DVDCheck.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk] "item"="DVD Check" "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\DVD Check.lnk" "backup"="C:\\Windows\\pss\\DVD Check.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\INTERV~1\\DVDCHE~1\\DVDCheck.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] "item"="HP Digital Imaging Monitor" "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk" "backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AEADIFilters] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD External Events Utility] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ATService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BsBhvScan] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BsScanner] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BsUpdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\btwdins] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Com4QLBEx] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\EQSharedEngine] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\FreeAgentGoNext Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\hpqwmiex] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\hpsrv] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\IviRegMgr] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LightScribeService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\lxcz_device] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RoxMediaDB10] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RunSwUSB] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Steam Client Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\stllssvr] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\VMCService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\XAudioService] ==== Startup Folders ====================== 2011-02-09 12:36:48 1124 ----a-w- D:\users\2830023\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk 2009-11-26 08:27:59 2089 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EQMsgClient.lnk 2014-12-01 20:27:12 2249 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\SmartDefrag_Startup" [C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe] "C:\Windows\system32\tasks\{8DDBE052-C1DE-494D-8D0A-6258577F186E}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.59.124/nl/abandoninstall?source=lightinstaller&page=tsDownload&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled] "C:\Windows\system32\tasks\{9036E901-425D-42DB-A7F6-44C93DC2B8E8}" [C:\Program Files\Steam\Steam.exe] "C:\Windows\system32\tasks\{BF7BCC09-8A10-45BE-AE71-A9ADF91DFBF5}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.1.0.112/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard\Antiphishing\FF\antiphishing@bullguard" [01/08/2014 09:00] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04/04/2010 21:46] ==== Firefox Extensions ====================== ProfilePath: D:\users\2830023\AppData\Roaming\Mozilla\Firefox\Profiles\rn9auo7e.default - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: D:\users\2830023\AppData\Roaming\Mozilla\Firefox\Profiles\rn9auo7e.default 225D76851EFC6144B4BAD941B3E8989D - C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U31 B66B4D28D7D0C6322FF235C782CD6B76 - C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.310.13 0806948270D853B709CCBBF38AF167E4 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat 9DF0C4F0CEF60158614EDD1B3AB441EE - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In 1F8FFDE82C52353906244AFDC6BAF2AB - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 5AD4E19D583FA285F4B5CCB7784A28C2 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash 0A1FF0B674E2F268799442A434A63BB3 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery AE9C7C99459764D840E276DAFB65678E - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll - Pando Web Plugin 8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{36377DD7-B3EB-42f5-986F-680BAF59BA9D}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {36377DD7-B3EB-42f5-986F-680BAF59BA9D} bing Url="http://start.msn.iplay.com/searchresultsredirect.aspx?o=chrome&q={searchTerms}" ==== HijackThis Entries ====================== O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [BullGuard] "C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe" -boot O4 - HKLM\..\Run: [BullGuardUpdate2] c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKCU\..\Run: [F.lux] "D:\users\2830023\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent O4 - HKCU\..\Run: [HP Officejet Pro 8620 (NET)] "C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4ADD40YK:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1 O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: EQMsgClient.lnk = C:\Program Files\Equitrac\Express\Client\EQMsgClient.exe O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Antiphishing\IE\BGAntiphishingIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = student.phlimburg.be O17 - HKLM\Software\..\Telephony: DomainName = student.phlimburg.be O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = student.phlimburg.be O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = student.phlimburg.be O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: c:\PROGRA~1\BULLGU~1\BULLGU~1\BgAgent.dll O23 - Service: BullGuard Behavioural Detection (BsBhvScan) - BullGuard Ltd. - c:\program files\bullguard ltd\bullguard\BullGuardBhvScanner.exe O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - c:\program files\bullguard ltd\bullguard\BullGuardScanner.exe O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - c:\program files\bullguard ltd\bullguard\BullGuardUpdate.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Skype\Updater\Updater.exe ==== Empty IE Cache ====================== D:\users\2830023\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully D:\users\2830023\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully D:\users\pcvo9117\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully D:\users\pcvo9117\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== D:\users\2830023\AppData\Local\Mozilla\Firefox\Profiles\rn9auo7e.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=44 folders=12 387133903 bytes) ==== Empty Temp Folders ====================== D:\users\2830023\AppData\Local\temp will be emptied at reboot D:\users\Default\AppData\Local\temp emptied successfully D:\users\Default User\AppData\Local\temp emptied successfully D:\users\latitude\AppData\Local\temp emptied successfully D:\users\pcvo9117\AppData\Local\temp emptied successfully D:\users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 02/03/2015 at 15:55:25,99 ======================