Zoek.exe v5.0.0.0 Updated 15-March-2015
Tool run by Samantha 2 on di 17-03-2015 at 12:10:28,80.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Samantha 2\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

17-3-2015 12:12:51 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Language Reader deleted successfully
C:\PROGRA~2\R.G. Mechanics deleted successfully
C:\PROGRA~3\DAEMON Tools Pro deleted successfully
C:\PROGRA~3\Evernote deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\Users\Samantha 2\AppData\Roaming\DAEMON Tools Lite deleted successfully
C:\Users\Samantha 2\AppData\Local\CrashDumps deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\Harry Potter en de Halfbloed PrinsT not found
C:\PROGRA~2\Language Reader not found
C:\PROGRA~2\R.G. Mechanics not found
C:\install.exe deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Clip Converter deleted
C:\Users\Public\Documents\iwin deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\SAMANT~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-03-11 04:25:42	ABB358777FDF4AF51B2FE26137D2B8D4	70656	----a-w-	C:\Windows\SysWOW64\fontsub.dll
2015-03-11 04:25:42	965D6A2B30A95A9F7EF13653988D3D9F	299008	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2015-03-11 04:25:42	55273844B66D77A2F1A2213C17A9EA4A	34304	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2015-03-11 04:25:42	274F0540FD4C88FC845C94CA1569688A	10240	----a-w-	C:\Windows\SysWOW64\dciman32.dll
2015-03-11 04:25:42	01D9C9A70323BC7E5835B92442DD7EC2	25600	----a-w-	C:\Windows\SysWOW64\lpk.dll
2015-03-11 04:25:27	003C51B9FE38287BA4E0E58D3AE080BD	744960	----a-w-	C:\Windows\SysWOW64\blackbox.dll
2015-03-11 04:25:26	DCC148408770F2D55B201F8FC26438A1	988160	----a-w-	C:\Windows\SysWOW64\drmv2clt.dll
2015-03-11 04:25:22	833FCABCB5D95B1911BA6E62FC82AC04	617984	----a-w-	C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-11 04:25:22	5B0C6247027FCF5A2E2F150E298D2FFA	3209728	----a-w-	C:\Windows\SysWOW64\mf.dll
2015-03-11 04:25:20	B378B6A865C28CE5C1E23C35760A1199	11411968	----a-w-	C:\Windows\SysWOW64\wmp.dll
2015-03-11 04:25:18	BB73C907D1BD437B6C30F2C23BB089FC	406016	----a-w-	C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-11 04:25:16	74264B7F57A16D25CB581C07964D324A	1174528	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2015-03-11 04:25:16	6C2D4DC5D2E271F4AE4016FD4587B0B2	3973048	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-11 04:25:15	2CFE69A0A8AFDA8DB9A773D728000BB7	3917760	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-11 04:25:14	96DB6A923DEDB58FC7CBBF5CFF73314D	1329664	----a-w-	C:\Windows\SysWOW64\quartz.dll
2015-03-11 04:25:14	2D4814D567E5A85C473228BA772A7AFB	489984	----a-w-	C:\Windows\SysWOW64\evr.dll
2015-03-11 04:25:13	C5667EE72D7364BE81516C0707FEF724	354816	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2015-03-11 04:25:13	B7D2BB84C590F0AE9DA51DBB065A780E	1005056	----a-w-	C:\Windows\SysWOW64\cryptui.dll
2015-03-11 04:25:13	B54FD1991E659FD61EF1D34EC27AAECD	81408	----a-w-	C:\Windows\SysWOW64\cryptsp.dll
2015-03-11 04:25:11	98C1191C862B44567FCF3C18BAEE859E	519680	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2015-03-11 04:25:11	320A8699369C43CF53B2DB4538D17C52	504320	----a-w-	C:\Windows\SysWOW64\msscp.dll
2015-03-11 04:25:10	D5EC42139D6A6158CF188975C50B6A60	179200	----a-w-	C:\Windows\SysWOW64\wintrust.dll
2015-03-11 04:25:10	3BAA4BAE71460C5CEB40D5E9339A61BC	103936	----a-w-	C:\Windows\SysWOW64\cryptnet.dll
2015-03-11 04:25:09	70E96EBE87A38857619671FCB9C8EC7B	265216	----a-w-	C:\Windows\SysWOW64\msnetobj.dll
2015-03-11 04:25:09	49474B3E37969AF4B5C076F42B623AFF	143872	----a-w-	C:\Windows\SysWOW64\cryptsvc.dll
2015-03-11 04:25:08	2D21189858856316D55EAD55DF4964C2	374784	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2015-03-11 04:25:07	A56F4029FDCF4F817E78953CDA953E28	442880	----a-w-	C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-11 04:25:07	08FF727297A97907AADED4BA86CF44E9	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2015-03-11 04:25:06	E0AB9CA912398BE1AAD14FF7AD75C397	50688	----a-w-	C:\Windows\SysWOW64\appidapi.dll
2015-03-11 04:25:06	AF47EAA4ADDA9AA221FB7647EE22BF53	103424	----a-w-	C:\Windows\SysWOW64\mfps.dll
2015-03-11 04:25:05	50B8937A81360D16A5C772302BD32CFE	195584	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2015-03-11 04:25:05	49F4EE8DF752CFA159B99046CD1FDD2B	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2015-03-11 04:25:03	A4A2EFB40015B76467F09E6DC388BC26	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2015-03-11 04:24:59	FCD5137A10C8943B34C9BE891C50159F	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2015-03-11 04:24:59	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\SysWOW64\msdxm.ocx
2015-03-11 04:24:59	D3916F83AC8F2314262387A2E16C6578	4096	----a-w-	C:\Windows\SysWOW64\dxmasf.dll
2015-03-11 04:24:59	8B07DBA0D77346545C6359AC67DCB980	8192	----a-w-	C:\Windows\SysWOW64\spwmp.dll
2015-03-11 04:24:58	7C1CADCA0E674212412559B0EAD0919A	12625408	----a-w-	C:\Windows\SysWOW64\wmploc.DLL
2015-03-11 04:24:57	2F3CE58D8C276570EEB69C99CFBAFD58	2048	----a-w-	C:\Windows\SysWOW64\mferror.dll
2015-03-11 04:24:11	B804EAA9E037580F96C22537C2ECB62A	171520	----a-w-	C:\Windows\SysWOW64\ubpm.dll
2015-03-11 04:24:08	340EECB781E6C06A6171B3068DA208AD	12875264	----a-w-	C:\Windows\SysWOW64\shell32.dll
2015-03-11 04:24:00	D5063B86DC3F85B93D02AF68099F4C9A	248832	----a-w-	C:\Windows\SysWOW64\schannel.dll
2015-03-11 04:24:00	C7D334A01C66BF07B92D04CD7A981B7F	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2015-03-11 04:24:00	69925A266D265DAD96C6FCBB861FA5CD	550912	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2015-03-11 04:23:59	B06A4105DD22E91A1D922D7310803140	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2015-03-11 04:23:59	84974782ED5D108DA2EFAF3C6534A760	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2015-03-11 04:23:59	7A71DA6D6F75AB73475128F787DD8EAD	221184	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2015-03-11 04:23:59	5E76C26CAE2810EA71C161ED9A2CF0D1	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2015-03-11 04:23:59	4E15E2D20AE755FDEACD96F359F732DB	172032	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2015-03-11 04:23:59	30F5B3E28636009A0B194057AAE4392A	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2015-03-11 04:23:59	04934912B1317F2F8816208067A32B96	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2015-03-11 04:23:58	ACD0CA819E279E1C17BE5C8A077EF448	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2015-03-11 04:23:58	7407DDA27838C393DE67A0BDCDD044D0	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
2015-03-11 04:23:58	0485899A035E02C53014C0545D912405	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2015-03-11 04:23:49	84B460BB65567ED42DD605FA044DB370	828928	----a-w-	C:\Windows\SysWOW64\msctf.dll
2015-03-11 04:23:47	5F3628DCF926C4499BE1DC74431DFBC8	1230848	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-11 04:23:43	FDF0B4DC83627A859D18EE439B8E5A26	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-11 04:23:43	B8445B89D0EA5C2575C98EA7BD180C5C	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2015-03-11 04:23:43	00F39165D6D14302618C20CDD7BB213A	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2015-03-11 04:23:42	6108ED659B5962DE73DACB3B04D86ED3	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-11 04:23:42	29EDBC5C381F1406A5262351E69BC87A	342696	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2015-03-11 04:23:41	B35C35C55FED3DD7F995C77F63CBC29B	1311232	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2015-03-11 04:23:41	AD1BA932AC31D2BC8C9105DA59BEA6BE	689152	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2015-03-11 04:23:41	AD13E719AE506AA0E0BB5D49E0D5B44A	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2015-03-11 04:23:41	8FDE1162C9DCF7B180AA702DD9EB6071	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-11 04:23:40	95CB6079B3E62D4301958023C2070A48	19720192	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2015-03-11 04:23:39	BD838E2129623E8311720AA86C5DFBBF	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2015-03-11 04:23:39	A41C85FDB2275FA9AAA821A118807FDB	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2015-03-11 04:23:39	A34897A1A39316BDECCA3E61986F98F2	2052608	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2015-03-11 04:23:39	52B4DECDC70B8758380D37EA2CDD4254	2278400	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2015-03-11 04:23:39	08B30EB9751858C1C369E8775492D732	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2015-03-11 04:23:38	F5F730ED126DCFBEBDB9BB629BD482C4	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2015-03-11 04:23:38	BA10D970EB39913357B224F4473D535B	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2015-03-11 04:23:38	AC35DA94A14679E8E515A44A8CF90804	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2015-03-11 04:23:38	988AB676FBF4484508BA134CAAB711EB	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2015-03-11 04:23:38	756B4F77945C61ADBE68150D7D2EC7A6	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2015-03-11 04:23:37	E868396BC5F8957A9E39BD9A28EA814D	12827648	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2015-03-11 04:23:35	FC5FE9F2D140435FC95CB3EF6724EF0A	4300288	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2015-03-11 04:23:35	BC9CE46C3F05CCC40F8F1EFC7E4B41C7	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2015-03-11 04:23:35	02C0770DA3BE9231EFAF7185EE51020C	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-11 04:23:34	EA6EA6912F27F05C61D8D747517EB47E	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2015-03-11 04:23:34	B0B83B31853E15C619FDB91B64F8349A	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2015-03-11 04:23:14	9566C8BBD2271A7962D4432A624762AD	417792	----a-w-	C:\Windows\SysWOW64\WMPhoto.dll
====== C:\Windows\SysWOW64\drivers =====
2015-03-14 22:32:42	FE71C99A5830F94D77A8792741D6E6C7	13824	----a-w-	C:\Windows\SysWOW64\drivers\DrvAgent64.SYS
====== C:\Windows\Sysnative =====
2015-03-17 10:19:05	F948078510EA97F9CC62E7FBCF9FA1C8	5217616	----a-w-	C:\Windows\Sysnative\FNTCACHE.DAT
2015-03-15 12:02:32	DFB4F5F16CAB77EF8AC2ECE036099A47	71760	----a-w-	C:\Windows\Sysnative\wbload.dll
2015-03-11 04:25:42	F351B0E520502552734BE70AA5940784	41984	----a-w-	C:\Windows\Sysnative\lpk.dll
2015-03-11 04:25:42	DB0BD8B8D68D8211CA23FBE52DACE549	14336	----a-w-	C:\Windows\Sysnative\dciman32.dll
2015-03-11 04:25:42	85D3E918658C2766780F7DEE5F8FBE57	46080	----a-w-	C:\Windows\Sysnative\atmlib.dll
2015-03-11 04:25:42	39A108604F51821F6F4E2001E9A1CB60	100864	----a-w-	C:\Windows\Sysnative\fontsub.dll
2015-03-11 04:25:42	1307814243F21EB129852D59B5AB37FB	372224	----a-w-	C:\Windows\Sysnative\atmfd.dll
2015-03-11 04:25:28	A53A63831185FF5339E76221BE45E6B9	842240	----a-w-	C:\Windows\Sysnative\blackbox.dll
2015-03-11 04:25:27	DF6104DCED89E13A78BA5539CEF5100A	1202176	----a-w-	C:\Windows\Sysnative\drmv2clt.dll
2015-03-11 04:25:25	BD311BB00DD0D656C091AC8888C2369D	14632960	----a-w-	C:\Windows\Sysnative\wmp.dll
2015-03-11 04:25:22	FDA5F186596288F0B9ECE9DC7A5AA868	5554104	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2015-03-11 04:25:22	7F4D59E70DD6E757E96B40570B498D5C	782848	----a-w-	C:\Windows\Sysnative\wmdrmsdk.dll
2015-03-11 04:25:19	B2F02AB28864B6D5B5B9BEDA565D41BB	497664	----a-w-	C:\Windows\Sysnative\drmmgrtn.dll
2015-03-11 04:25:18	3FECBED0EACABD22E024EF4E50CF987B	1480192	----a-w-	C:\Windows\Sysnative\crypt32.dll
2015-03-11 04:25:16	8DFDB70E3E56C2F1AE09CB3C03E266E5	1574400	----a-w-	C:\Windows\Sysnative\quartz.dll
2015-03-11 04:25:16	5FFEE6CA63E27CBA1F32002743E58F3C	631808	----a-w-	C:\Windows\Sysnative\evr.dll
2015-03-11 04:25:15	410F6B1BE785F3630B4782F8E3D85A24	1069056	----a-w-	C:\Windows\Sysnative\cryptui.dll
2015-03-11 04:25:14	73D81B5B4B2655CB1B5662E770F755D5	532176	----a-w-	C:\Windows\Sysnative\winresume.exe
2015-03-11 04:25:14	6AEEC5677AD522786CED371A7BEE620C	616360	----a-w-	C:\Windows\Sysnative\winresume.efi
2015-03-11 04:25:14	0BC72EA80234382701EAFC1BE0ECD7E4	432128	----a-w-	C:\Windows\Sysnative\mfplat.dll
2015-03-11 04:25:13	DB2D62AA2DF6B1F3D690A9EC9701AA2C	188416	----a-w-	C:\Windows\Sysnative\pcasvc.dll
2015-03-11 04:25:13	94BC902494AFC9F5EBC5FBB61445D73F	82432	----a-w-	C:\Windows\Sysnative\cryptsp.dll
2015-03-11 04:25:12	F88B4A9EA1A956F09D5001D08B546228	641024	----a-w-	C:\Windows\Sysnative\msscp.dll
2015-03-11 04:25:12	29143C7827F9F2AC543E792A8C63FBB0	4121600	----a-w-	C:\Windows\Sysnative\mf.dll
2015-03-11 04:25:11	B7E752FFD95DC61FCB7A6E70E37175E5	693176	----a-w-	C:\Windows\Sysnative\winload.efi
2015-03-11 04:25:11	AE66D26930CA536706078537CB5AC840	325632	----a-w-	C:\Windows\Sysnative\msnetobj.dll
2015-03-11 04:25:11	7A4064169FBA91F39DB1FDC094A18DA8	619056	----a-w-	C:\Windows\Sysnative\winload.exe
2015-03-11 04:25:11	72D4757510FDA69D729169C00AFC211E	32256	----a-w-	C:\Windows\Sysnative\appidsvc.dll
2015-03-11 04:25:10	999A7FD4D9F8B1656F1167D94743E50A	457400	----a-w-	C:\Windows\Sysnative\ci.dll
2015-03-11 04:25:10	93C7D1C3941086162B433107D9E8BCE3	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2015-03-11 04:25:10	7BC64DEEFD0E6812E21DE89F0CF50A49	500224	----a-w-	C:\Windows\Sysnative\AUDIOKSE.dll
2015-03-11 04:25:10	6E974F1C384615DEB0710E44F4847351	126464	----a-w-	C:\Windows\Sysnative\audiodg.exe
2015-03-11 04:25:10	6968D02DC38757C3FBE7ED7C2F9670AA	680960	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2015-03-11 04:25:10	577D0B947B49DB83E2054FA169B2ECBF	229376	----a-w-	C:\Windows\Sysnative\wintrust.dll
2015-03-11 04:25:10	483221CC1AAC288368292899E32B6B9B	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2015-03-11 04:25:10	1BE9877B199184D7657BC4CFCB7B4A99	140288	----a-w-	C:\Windows\Sysnative\cryptnet.dll
2015-03-11 04:25:09	C0AE7ABD87254B2789C8CB34AF274A65	296448	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2015-03-11 04:25:09	3029D8E78E4BF18A0551E22CD4CB892C	371712	----a-w-	C:\Windows\Sysnative\qdvd.dll
2015-03-11 04:25:09	1CD76A83B9E8E9A5A3519B39E28354D9	187904	----a-w-	C:\Windows\Sysnative\cryptsvc.dll
2015-03-11 04:25:08	CBE684883A45E5B047DA6B4AC46C2112	55808	----a-w-	C:\Windows\Sysnative\rrinstaller.exe
2015-03-11 04:25:08	3A7BC2DC99D3C5B172465E890B3C3B14	440832	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2015-03-11 04:25:08	27793FE3FF2D0123896D1A01A2D222C7	37376	----a-w-	C:\Windows\Sysnative\pcadm.dll
2015-03-11 04:25:07	589852B65C91F574E980ABDB8205080A	146944	----a-w-	C:\Windows\Sysnative\appidpolicyconverter.exe
2015-03-11 04:25:06	947938F265D7CB99653CDFF2B3C0468D	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2015-03-11 04:25:06	63D3C30B497347495B8EA78A38188969	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2015-03-11 04:25:06	0F79883E27BB1AFE2D9BB4656A1CEFCD	11264	----a-w-	C:\Windows\Sysnative\msmmsp.dll
2015-03-11 04:25:05	ED6BF1E1C4F40F600DFEC0CB101A1789	9728	----a-w-	C:\Windows\Sysnative\pcalua.exe
2015-03-11 04:25:05	A84C94CF795E08BBB99E4E145F9E81A3	11264	----a-w-	C:\Windows\Sysnative\pcawrk.exe
2015-03-11 04:25:05	84DB8EB3C184BB549ED90A842020F278	58880	----a-w-	C:\Windows\Sysnative\appidapi.dll
2015-03-11 04:25:05	29088A5723C81BF75AD909AAB6A91610	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2015-03-11 04:25:05	00EE5D3E16D42F25F7813ACFA10EC803	24576	----a-w-	C:\Windows\Sysnative\mfpmp.exe
2015-03-11 04:25:04	C4937B9D6EF4D309A60054D4D00EE9DB	63488	----a-w-	C:\Windows\Sysnative\setbcdlocale.dll
2015-03-11 04:25:04	BE7DA70C9F4A97CCA9ED78B70BCFC9AC	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2015-03-11 04:25:04	56FD1BC602EE0E7949F92EE2EE327B72	284672	----a-w-	C:\Windows\Sysnative\EncDump.dll
2015-03-11 04:25:03	EA285B947EE48103697CDA53D76C9EEC	17920	----a-w-	C:\Windows\Sysnative\appidcertstorecheck.exe
2015-03-11 04:25:00	F43B09E257121ADC501ABE9367FAA850	9728	----a-w-	C:\Windows\Sysnative\spwmp.dll
2015-03-11 04:24:59	FE03B35A22C3D2714B494FC2AB32AC5B	8704	----a-w-	C:\Windows\Sysnative\pcaevts.dll
2015-03-11 04:24:59	DBCD54B841F2B216B2F0F86E18205C22	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2015-03-11 04:24:59	D3F1F9C784BCCDF2C880669D69FC1970	5120	----a-w-	C:\Windows\Sysnative\msdxm.ocx
2015-03-11 04:24:59	D3F1F9C784BCCDF2C880669D69FC1970	5120	----a-w-	C:\Windows\Sysnative\dxmasf.dll
2015-03-11 04:24:58	77D49942BD5DC97723ABC8A6D2757B6E	12625920	----a-w-	C:\Windows\Sysnative\wmploc.DLL
2015-03-11 04:24:57	8364A0F7633414DC5C50A37295B1FAFF	2048	----a-w-	C:\Windows\Sysnative\mferror.dll
2015-03-11 04:24:41	B5CBA15C9DEDBE914D24AA1494A82DF5	3179520	----a-w-	C:\Windows\Sysnative\rdpcorets.dll
2015-03-11 04:24:41	35308B0F821CE1E8EDC2FAB96F3073F3	16384	----a-w-	C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2015-03-11 04:24:41	15C3986C015EA186BCB4E6096528D656	243200	----a-w-	C:\Windows\Sysnative\rdpudd.dll
2015-03-11 04:24:11	1FB81632476857E8451DDA8A456EF3CE	215552	----a-w-	C:\Windows\Sysnative\ubpm.dll
2015-03-11 04:24:09	01F9FEB7F0C84EA1AC6A9B4D7C6B0435	14177280	----a-w-	C:\Windows\Sysnative\shell32.dll
2015-03-11 04:24:01	3807605BDA83C0DA729A5219CEBB9041	341504	----a-w-	C:\Windows\Sysnative\schannel.dll
2015-03-11 04:24:00	DB2904A4CEBC39DF8892A613BEC71512	1461760	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2015-03-11 04:24:00	6536829F6EA1149527728A210F493B79	314880	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2015-03-11 04:24:00	1DB278E5834B08F9A184F953F2D31FF7	728064	----a-w-	C:\Windows\Sysnative\kerberos.dll
2015-03-11 04:23:59	FB95F6E11AAD62F24C2DB01E6E9D7BE7	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2015-03-11 04:23:59	E1404987DCD392AF9D67F6A26CE21175	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2015-03-11 04:23:59	B6C7729936AAF8E0697F0A7DCA82CED8	31232	----a-w-	C:\Windows\Sysnative\lsass.exe
2015-03-11 04:23:59	9B644AC070576AAE701910874C241DBD	210944	----a-w-	C:\Windows\Sysnative\wdigest.dll
2015-03-11 04:23:59	92F920EE9EAF7306B4AB8124D474AB52	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2015-03-11 04:23:59	7BC39275661EA7DEE54135AA26DF733E	136192	----a-w-	C:\Windows\Sysnative\sspicli.dll
2015-03-11 04:23:59	65CF54B1D8CB1B085B6D8BC210E2C45F	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2015-03-11 04:23:59	54CD467B3A6DA02E9449DB7FB1830612	29184	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2015-03-11 04:23:59	473BCBFFC55C9FE33D502035322E759D	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2015-03-11 04:23:59	28CC69865D5DC458EDDCEA35F01D71DA	309760	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2015-03-11 04:23:58	543553AD3E30CB261C8B436DF644F23E	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
2015-03-11 04:23:58	378B175D0F0A1C38026F280BF6C8D0C6	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2015-03-11 04:23:49	E88A78273D429554B6B2D2BDA945ED9B	1067520	----a-w-	C:\Windows\Sysnative\msctf.dll
2015-03-11 04:23:47	0A4D03A4C0F908B15B8A4C48FB18F197	1424896	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2015-03-11 04:23:46	A0DEE06D68F210CA090FD4D9A33CDC12	3204096	----a-w-	C:\Windows\Sysnative\win32k.sys
2015-03-11 04:23:43	2CA6A98547E799812489E5ADF2774D97	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2015-03-11 04:23:43	289581F0FDA6B93A0FAFE979486AD6FA	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2015-03-11 04:23:42	D2BF72C0A9E26BE91C1DEEACF7C430E0	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2015-03-11 04:23:42	7FA2B43D940DF41E46B8049B59AB6639	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2015-03-11 04:23:42	08892A4ED848386E6B901723C1EF611B	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2015-03-11 04:23:41	D3EA5B5E606EF17804B5BF565BEAD937	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-03-11 04:23:39	F5E5E96E188934BAB22C0916C91F46B3	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2015-03-11 04:23:39	585B29EFB4954902FD53C4F8F9A0D39F	389800	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2015-03-11 04:23:39	501A38B72FA264605123B4FACF53F057	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2015-03-11 04:23:38	80B3AD73027A2CCD42C47EBF5C89124F	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2015-03-11 04:23:38	5443F21A33DB376734DBE47F7635542C	801280	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2015-03-11 04:23:38	132862B0FC4A1B7CB45C274DE169DBB2	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-03-11 04:23:37	D0767EA3A59FA70C7ACF59EE0C8CD42A	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2015-03-11 04:23:36	9E9B757A677927110393A505822D9174	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2015-03-11 04:23:36	62269DEFF17AB006217330A24EA8577B	2886144	----a-w-	C:\Windows\Sysnative\iertutil.dll
2015-03-11 04:23:36	22C4867C690C38B18B2C1A0B072CD0C4	2125824	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2015-03-11 04:23:34	A1264D16AF506125C974775C833A063C	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2015-03-11 04:23:34	1EC0BF321D3B14D02B9A8BAC134570F4	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2015-03-11 04:23:33	FB8C4EE9889790466A0174923410649E	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2015-03-11 04:23:33	76B53D2150284E138B46410EA54967FA	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2015-03-11 04:23:33	2335F6BF8A127E31EB0E2D9A82F188A0	14398976	----a-w-	C:\Windows\Sysnative\ieframe.dll
2015-03-11 04:23:32	D373113A84C12BA7F07CE1E9CAF4747F	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2015-03-11 04:23:32	A9190899A35431CF8ABBEF5E1BB0C8F9	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2015-03-11 04:23:32	4870B24EA7D4EEF5E1C4675AC47796B8	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2015-03-11 04:23:31	687E11F36832BFF65EF0CD2FA3DB1966	584192	----a-w-	C:\Windows\Sysnative\vbscript.dll
2015-03-11 04:23:31	40DF85D8B2B0171EF5F23AA1B5CD9A62	6035456	----a-w-	C:\Windows\Sysnative\jscript9.dll
2015-03-11 04:23:31	36F99BD8A0F09BDBB7850A138845A014	2358784	----a-w-	C:\Windows\Sysnative\wininet.dll
2015-03-11 04:23:31	1C393E42928BF55B3796E732B678CD5B	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2015-03-11 04:23:30	667229C8F194D619D12F05943D7F61F0	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2015-03-11 04:23:29	1193400D8E29A5A010135FB09A4EB1E8	25021440	----a-w-	C:\Windows\Sysnative\mshtml.dll
2015-03-11 04:23:15	CBA2694BFC61F371181F2BE2BCD66C40	465920	----a-w-	C:\Windows\Sysnative\WMPhoto.dll
====== C:\Windows\Sysnative\drivers =====
2015-03-14 22:40:50	CE2D5CABC80ABC8A605A55C3954FB313	16056	----a-w-	C:\Windows\Sysnative\drivers\SWDUMon.sys
2015-03-11 04:25:18	ED6E75158D28D33A2E2A020AC5B2B59D	663552	----a-w-	C:\Windows\Sysnative\drivers\PEAuth.sys
2015-03-11 04:25:13	87BCD1034CBF33537D4D4C251D39BA26	94656	----a-w-	C:\Windows\Sysnative\drivers\mountmgr.sys
2015-03-11 04:25:10	90C53BD47979FB8814F465A08B885102	61440	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2015-03-11 04:24:01	8BA90F480705D7153AD0060CCA62222A	155576	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-03-11 04:24:01	27667A788130A7F7A5858DE27572E6D7	459336	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2015-03-11 04:24:00	56ED3EE5FED6BF2FC1305CF872042868	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
====== C:\Windows\Tasks ======
2015-03-14 23:17:55	9B4643AB9E06D980E032396CD7F338CA	376	----a-w-	C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Samantha 2).job
2015-03-14 23:17:55	39512BC9F3C9237CF7AA47686323C6CA	3048	----a-w-	C:\Windows\Sysnative\Tasks\SlimCleaner Plus (Scheduled Scan - Samantha 2)
2015-03-14 22:28:24	92FC0C6AC951C60769F7531DB3BD8158	5080	----a-w-	C:\Windows\Sysnative\Tasks\Microsoft Office 15 Sync Maintenance for Samantha-PC-Samantha 2 Samantha-PC
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-03-15 11:04:11	--------	d-----w-	C:\Program Files\trend micro
2015-03-14 22:41:14	--------	d-----w-	C:\Program Files\SlimCleaner Plus
2015-03-14 21:24:14	--------	d-----w-	C:\Program Files\Speccy
2015-03-14 20:08:14	--------	d-----w-	C:\Program Files\CPUID
2015-02-23 19:02:49	--------	d-----w-	C:\Program Files\iPod
2015-02-23 19:02:48	--------	d-----w-	C:\Program Files\iTunes
======= C:\PROGRA~2 =====
2015-03-15 13:03:13	--------	d--h--w-	C:\PROGRA~2\InstallJammer Registry
2015-03-15 12:47:50	--------	d-----w-	C:\PROGRA~2\Safari
2015-03-15 11:59:26	--------	d-----w-	C:\PROGRA~2\Stardock
2015-03-15 11:43:36	--------	d-----w-	C:\PROGRA~2\RocketDock
2015-03-02 11:50:30	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2015-02-26 21:56:53	--------	d-----w-	C:\PROGRA~2\Microsoft Visual Studio 8
2015-02-23 19:02:49	--------	d-----w-	C:\PROGRA~2\iTunes
2015-02-22 14:57:37	--------	d-----w-	C:\PROGRA~2\Twitter
======= C: =====
====== C:\Users\Samantha 2\AppData\Roaming ======
2015-03-15 11:22:59	--------	d-----w-	C:\Users\Samantha 2\AppData\Local\MetaGeek,_LLC
2015-03-14 22:40:56	--------	d-----w-	C:\Users\Samantha 2\AppData\Local\Downloaded Installers
2015-03-14 22:40:47	--------	d-----w-	C:\Users\Samantha 2\AppData\Local\SlimWare Utilities Inc
2015-03-14 22:14:00	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2015-03-14 21:24:29	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2015-03-14 20:21:42	--------	d-----w-	C:\Users\Samantha 2\AppData\Roaming\InstallShield
2015-02-26 19:29:50	--------	d-----w-	C:\Users\Samantha 2\AppData\Roaming\DivX
2015-02-22 14:57:59	--------	d-----w-	C:\Users\Samantha 2\AppData\Local\twitter
2015-02-22 14:57:45	--------	d-----w-	C:\Users\Samantha 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TweetDeck
====== C:\Users\Samantha 2 ======
2015-03-17 10:23:54	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Samantha 2\Downloads\RSITx64.exe
2015-03-16 15:07:29	32A7154F9934CF3AA5D945D02D069D1F	17523384	----a-w-	C:\Users\Samantha 2\Downloads\mbam-setup-2.0.0.1000.exe
2015-03-16 14:38:07	2EDE6612B7042D8582819CAB084E6883	13087456	----a-w-	C:\Users\Samantha 2\Downloads\Silverlight_x64.exe
2015-03-16 14:20:31	95300BA672A14E3AE6740CB3CB41DB7B	2171392	----a-w-	C:\Users\Samantha 2\Downloads\adwcleaner_4.112 (1).exe
2015-03-15 16:41:01	95300BA672A14E3AE6740CB3CB41DB7B	2171392	----a-w-	C:\Users\Samantha 2\Downloads\adwcleaner_4.112.exe
2015-03-15 13:02:04	D9E0AD693C6753520FEEC8E4783B89D5	1619374	----a-w-	C:\Users\Samantha 2\Downloads\Mac OS X Cursors-1.1-Setup.exe
2015-03-15 12:46:39	0A5B39A859EB84484D5559A8BA22F736	38494576	----a-w-	C:\Users\Samantha 2\Downloads\SafariSetup.exe
2015-03-15 12:02:22	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2015-03-15 11:59:30	--------	d-----w-	C:\Users\Public\Documents\Stardock
2015-03-15 11:58:19	315598F4C25232E0A02E3BB13AA72814	52407432	----a-w-	C:\Users\Samantha 2\Downloads\WindowBlinds8-cnet-setup.exe
2015-03-15 11:43:48	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2015-03-15 11:43:12	A79FB1A90FB3D92CF815F2C08D3ADE6D	6463660	----a-w-	C:\Users\Samantha 2\Downloads\RocketDock-v1.3.5 (1).exe
2015-03-15 11:43:01	A79FB1A90FB3D92CF815F2C08D3ADE6D	6463660	----a-w-	C:\Users\Samantha 2\Downloads\RocketDock-v1.3.5.exe
2015-03-14 23:00:24	--------	d-----w-	C:\ProgramData\Qualcomm Atheros
2015-03-14 22:45:19	--------	d-----w-	C:\ProgramData\SlimWare Utilities, Inc
2015-03-14 22:41:18	--------	d-----w-	C:\ProgramData\SlimWare Utilities Inc
2015-03-14 22:40:45	--------	d-----w-	C:\Users\Public\Documents\Downloaded Installers
2015-03-14 21:24:17	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-02-26 22:00:06	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2015-02-26 22:00:05	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-02-23 19:03:54	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-02-23 19:02:48	--------	d-----w-	C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7

====== C: exe-files ==
2015-03-17 10:23:54	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Samantha 2\Downloads\RSITx64.exe
2015-03-16 15:07:29	32A7154F9934CF3AA5D945D02D069D1F	17523384	----a-w-	C:\Users\Samantha 2\Downloads\mbam-setup-2.0.0.1000.exe
2015-03-16 14:38:07	2EDE6612B7042D8582819CAB084E6883	13087456	----a-w-	C:\Users\Samantha 2\Downloads\Silverlight_x64.exe
2015-03-16 14:20:31	95300BA672A14E3AE6740CB3CB41DB7B	2171392	----a-w-	C:\Users\Samantha 2\Downloads\adwcleaner_4.112 (1).exe
2015-03-15 16:41:01	95300BA672A14E3AE6740CB3CB41DB7B	2171392	----a-w-	C:\Users\Samantha 2\Downloads\adwcleaner_4.112.exe
2015-03-15 13:03:04	9F2EB7474BEC7A05B956D23607216557	1486085	----a-w-	C:\Windows\Cursors\uninstall.exe
2015-03-15 13:02:04	D9E0AD693C6753520FEEC8E4783B89D5	1619374	----a-w-	C:\Users\Samantha 2\Downloads\Mac OS X Cursors-1.1-Setup.exe
2015-03-15 12:46:39	0A5B39A859EB84484D5559A8BA22F736	38494576	----a-w-	C:\Users\Samantha 2\Downloads\SafariSetup.exe
2015-03-15 12:03:20	CC31234B608734C641ED12BAED2EBFF4	451584	----a-r-	C:\Program Files (x86)\Stardock\WindowBlinds\WindowBlinds8_Patch.exe
2015-03-15 11:59:26	79B7946AAF112CE2334C78D9744788E2	1352296	----a-w-	C:\Program Files (x86)\Stardock\WindowBlinds\uninstall.exe
2015-03-15 11:59:07	CC31234B608734C641ED12BAED2EBFF4	451584	----a-r-	C:\Users\Samantha 2\Documents\Downloads\WindowBlinds 8 - Full Version (with Patch) - {K!llERoY512}\Patch\WindowBlinds8_Patch.exe
2015-03-15 11:59:00	85A785FDF33E4988F63D16E73BED065E	49992560	----a-r-	C:\Users\Samantha 2\Documents\Downloads\WindowBlinds 8 - Full Version (with Patch) - {K!llERoY512}\WindowBlinds8_setup.exe
2015-03-15 11:58:19	315598F4C25232E0A02E3BB13AA72814	52407432	----a-w-	C:\Users\Samantha 2\Downloads\WindowBlinds8-cnet-setup.exe
2015-03-15 11:43:48	E8DAA0B7989B7D4DC11541A0C8919D20	98304	----a-w-	C:\Program Files (x86)\RocketDock\Tools\Debug.exe
2015-03-15 11:43:48	B82AAA726515572389B145BCF725D214	6144	----a-w-	C:\Program Files (x86)\RocketDock\Tools\LanguageID Finder.exe
2015-03-15 11:43:37	7DFCCC67990B6DE7F30F553A4E4612A4	495616	----a-w-	C:\Program Files (x86)\RocketDock\RocketDock.exe
2015-03-15 11:43:36	5D32CC8DC0944247608D807D98814E38	687080	----a-w-	C:\Program Files (x86)\RocketDock\unins000.exe
2015-03-15 11:43:12	A79FB1A90FB3D92CF815F2C08D3ADE6D	6463660	----a-w-	C:\Users\Samantha 2\Downloads\RocketDock-v1.3.5 (1).exe
2015-03-15 11:43:01	A79FB1A90FB3D92CF815F2C08D3ADE6D	6463660	----a-w-	C:\Users\Samantha 2\Downloads\RocketDock-v1.3.5.exe
2015-03-15 11:04:12	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Samantha 2.exe
2015-03-14 23:04:33	F1FE35E77AD517E7DD022C7479509F0D	61955881	----a-w-	C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\00F1FE35E77AD517E7DD022C7479509F0D0000000003B15F29.exe
2015-03-14 22:58:51	0CF0863613DE065924191951F595DEC0	249798929	----a-w-	C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\000CF0863613DE065924191951F595DEC0000000000EE3A111.exe
2015-03-14 22:58:03	57A74ACDFBC16699BD5D10717D90F314	250136	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\igfxext.exe
2015-03-14 22:58:02	1060AD314F92E65B6BCAE617FE9FB110	5886232	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\GfxUI.exe
2015-03-14 22:58:01	406C9A72B1CE00E731310CCADB4C3150	170264	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\igfxtray.exe
2015-03-14 22:58:01	2A5459EB1D04D25EC44B6FB1E1F262F2	398616	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\hkcmd.exe
2015-03-14 22:58:01	1C56476A663EAB7561F78DD87544AFAA	440600	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\igfxpers.exe
2015-03-14 22:58:00	EECBE813109D2D9A9D17FA766E41F002	511768	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\igfxsrvc.exe
2015-03-14 22:58:00	6E587B700B7E45AD93C90ECA59EBFE86	184600	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\difx64.exe
2015-03-14 22:57:59	CEEF9EF16A91596F849421295ABBE86F	276248	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\IntelCpHeciSvc.exe
2015-03-14 22:50:35	54D13FE314342951D9677FE2FA173332	1250946	----a-w-	C:\ProgramData\SlimWare Utilities, Inc\DriverApp\Downloads\0054D13FE314342951D9677FE2FA1733320000000000131682.exe
2015-03-14 22:45:07	57A74ACDFBC16699BD5D10717D90F314	250136	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\igfxext.exe
2015-03-14 22:45:07	1060AD314F92E65B6BCAE617FE9FB110	5886232	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\GfxUI.exe
2015-03-14 22:45:06	1C56476A663EAB7561F78DD87544AFAA	440600	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\igfxpers.exe
2015-03-14 22:45:04	EECBE813109D2D9A9D17FA766E41F002	511768	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\igfxsrvc.exe
2015-03-14 22:45:04	6E587B700B7E45AD93C90ECA59EBFE86	184600	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\difx64.exe
2015-03-14 22:45:04	406C9A72B1CE00E731310CCADB4C3150	170264	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\igfxtray.exe
2015-03-14 22:45:04	2A5459EB1D04D25EC44B6FB1E1F262F2	398616	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\hkcmd.exe
2015-03-14 22:45:02	CEEF9EF16A91596F849421295ABBE86F	276248	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\IntelCpHeciSvc.exe
2015-03-14 11:35:34	7DF547F2E361A6ADC8DFAF9544C6A283	10033232	----a-w-	C:\Program Files (x86)\Google\Update\Install\{B49A54E8-E609-46FD-AE68-0EFB71F95AB6}\41.0.2272.89_40.0.2214.115_chrome_updater.exe
2015-03-14 11:35:33	7DF547F2E361A6ADC8DFAF9544C6A283	10033232	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.89\41.0.2272.89_40.0.2214.115_chrome_updater.exe
2015-03-11 11:20:26	FD59F4408C01BB66040664D6A91556FA	132336	----a-w-	C:\Program Files\Speccy\uninst.exe
2015-03-11 11:18:12	E6C88560A1C00BD746C9D7D1D2113881	7088408	----a-w-	C:\Program Files\Speccy\Speccy64.exe
2015-03-11 11:18:08	769EAD14263EF7CC96B7A22B0AF32469	5519128	----a-w-	C:\Program Files\Speccy\Speccy.exe
2015-03-11 04:25:15	6B4BE7F9923F727C0298E9CB0FB2A406	497080	----a-w-	C:\Windows\Boot\PCAT\memtest.exe
2015-03-11 04:25:03	D1D03ED0A40B9EA7D45CD09E585415ED	167424	----a-w-	C:\Program Files\Windows Media Player\wmplayer.exe
2015-03-11 04:25:03	3CB513A4E2D3666282725B09FF66D2B1	164864	----a-w-	C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2015-03-11 04:25:02	733F15A545DCB45295EEB1E409F2D63A	102912	----a-w-	C:\Program Files\Windows Media Player\wmpshare.exe
2015-03-11 04:25:01	FEB8566E798B2F6BA40AC39C90E354B3	102400	----a-w-	C:\Program Files\Windows Media Player\wmpconfig.exe
2015-03-11 04:25:01	E357783E1561251E25513247B534D423	102400	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpshare.exe
2015-03-11 04:25:01	201283E93160A0EBBA8CC9F3F2388FDA	101888	----a-w-	C:\Program Files (x86)\Windows Media Player\wmpconfig.exe
2015-03-11 04:23:42	B5F3C8A860C39AEC1356A708C2A701A1	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-03-11 04:23:39	E931C01E7DD7CEC0BD26CD1B9DA967A3	815272	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-03-11 04:23:39	9C7990C221DC5C283BFF5A05CF52D69B	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2015-03-11 04:23:39	5CC34CBBBD90696FD82DB670C38B13FD	469504	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-03-11 04:23:36	EF3BE302619A2C85A1E33FBFAB4C60F8	484864	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2015-03-11 04:23:36	D3D00B950A174882DAC32F45AB589864	813736	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
=== C: other files ==
2015-03-15 13:28:26	1A9690A912C19D756A3111B64F2B8944	11569	----a-w-	C:\Users\Samantha 2\Downloads\Mac-OSX-Mountain-Lion-1.zip
2015-03-15 13:05:11	80928608D6019FE281960A81C33B3217	60437	----a-w-	C:\Users\Public\Documents\Stardock\WindowBlinds\Mac OS X Ultimate\buttons.zip
2015-03-15 12:05:54	E147025C161033181D0697A322347F59	1173578	----a-w-	C:\Users\Samantha 2\Downloads\MacOSXTiger.zip
2015-03-15 11:58:33	58C67AC9BC0D4CDDFDFBBABD51F53AE9	50708601	----a-w-	C:\Users\Samantha 2\Downloads\WindowBlinds 7.2 build 297 + Trial Reset.zip
2015-03-15 11:45:37	CACB3F7303CFDA867DF92A3C0E4A4E68	533120	----a-w-	C:\Users\Samantha 2\Downloads\Mac-OS-X-Leopard-1.zip
2015-03-14 22:58:50	97BFED39B6B79EB12CDDBFEED51F56BB	122368	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\cc_0403\hdaudbus.sys
2015-03-14 22:58:49	F163BB6827F41D61594EFD5E6C00AD4A	432680	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_14e4&dev_1692\k57nd60a.sys
2015-03-14 22:58:48	0EED230E37515A0EAEE3C2E1BC97B288	32320	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\mssmbios\mssmbios.sys
2015-03-14 22:58:45	1EA2EDA2D6CD253CE3EC3387FEAA40AC	340584	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_10ec&dev_5209&cc_ff00\RtsPStor.sys
2015-03-14 22:58:44	BC02336F1CBA7DCC7D1213BB588A68A5	50768	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\hid_device_system_keyboard\kbdclass.sys
2015-03-14 22:58:44	1D88A23853387D34D52CC8F9DDBFC56C	356120	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\iusb3\root_hub30\iusb3hub.sys
2015-03-14 22:58:44	0705EFF5B42A9DB58548EEC3B26BB484	33280	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\hid_device_system_keyboard\kbdhid.sys
2015-03-14 22:58:42	D2AAFD421940F640B407AEFAAEBD91B0	71552	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\volmgr\volmgr.sys
2015-03-14 22:58:41	C5C876CCFC083FF3B128F933823E87BD	36432	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\vdrvroot\vdrvroot.sys
2015-03-14 22:58:41	772A1DEEDFDBC244183B5C805D1B7D85	62784	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_1e3a\HECIx64.sys
2015-03-14 22:58:40	1F775DA4CF1A3A1834207E975A72E9D7	185344	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\usb\class_0e\usbvideo.sys
2015-03-14 22:58:39	DC54A574663A895C8763AF0FA1FF7561	48640	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\umbus\umbus.sys
2015-03-14 22:58:37	33F90B202E9DD9B7D489EB59310FDC34	283064	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\dtsoftbus01\dtsoftbus01.sys
2015-03-14 22:58:35	FC5EFD7C797DF19DFB999F0605A7924E	788760	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_1e31&rev_04\iusb3xhc.sys
2015-03-14 22:58:35	D438A33D568C76C24E8D7394981F42DC	30848	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\btath_bus\btath_bus.sys
2015-03-14 22:58:34	C224331A54571C8C9162F7714400BBBD	568600	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_1e03&cc_0106\iaStor.sys
2015-03-14 22:58:34	9819EEE8B5EA3784EC4AF3B137A5244C	73280	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\gendisk\disk.sys
2015-03-14 22:58:33	6C9FFFECA9FED31347D211C5D1FFBD2D	331264	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\hdaudio\func_01&ven_8086&dev_2806&subsys_80860101\IntcDAud.sys
2015-03-14 22:58:33	561E7E1F06895D78DE991E01DD0FB6E5	63360	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\rdp_mou\termdd.sys
2015-03-14 22:57:44	276EE9CDAB16C50E1DF0E4CEFA882F5F	14692224	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_8086&dev_0166&subsys_067d1025\igdkmd64.sys
2015-03-14 22:57:43	FFA06EF43987ED0DD42AD59B260C0C78	7808	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\usb\root_hub20\usbd.sys
2015-03-14 22:57:43	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\usb\root_hub20\usbhub.sys
2015-03-14 22:57:42	6DC22BDAA595BE00F19696E72F2F3312	26504	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\int3392\irstrtdv.sys
2015-03-14 22:57:41	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\composite_battery\battc.sys
2015-03-14 22:57:41	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\acpi0003\battc.sys
2015-03-14 22:57:41	DF8126BD41180351A093A3AD2FC8903B	296320	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\storage\volume\volsnap.sys
2015-03-14 22:57:41	9592090A7E2B61CD582B612B6DF70536	30208	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\generic_hid_device\hidusb.sys
2015-03-14 22:57:41	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\usb\class_09\usbhub.sys
2015-03-14 22:57:41	856E76B3641746ABBC2946BED1372098	32896	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\generic_hid_device\hidparse.sys
2015-03-14 22:57:41	597C3699384E53CC59587ED50CCE5CA2	76800	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\generic_hid_device\hidclass.sys
2015-03-14 22:57:41	102DE219C3F61415F964C88E9085AD14	21584	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\composite_battery\compbatt.sys
2015-03-14 22:57:41	0840155D0BDDF1190F84A663C284BD33	17664	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\acpi0003\CmBatt.sys
2015-03-14 22:57:40	F036CE71586E93D94DAB220D7BDF4416	147456	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\gencdrom\cdrom.sys
2015-03-14 22:57:40	DC54A574663A895C8763AF0FA1FF7561	48640	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\umb\umbus\umbus.sys
2015-03-14 22:57:40	61583EE3C3A17003C4ACD0475646B4D3	45056	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\blbdrive\blbdrive.sys
2015-03-14 22:57:40	03EDB043586CCEBA243D689BDDA370A8	38912	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\root\compositebus\CompositeBus.sys
2015-03-14 22:57:39	43E7A4298644526B0190C43AF6489DB1	3538432	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\pci\ven_168c&dev_0034&subsys_662111ad\athrx.sys
2015-03-14 22:57:38	D3BF052C40B0C4166D9FD86A4288C1E6	31232	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\hid_device_system_mouse\mouhid.sys
2015-03-14 22:57:38	7D27EA49F3C1F687D357E77A470AEA99	49216	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\hid_device_system_mouse\mouclass.sys
2015-03-14 22:57:37	DCA68B0943D6FA415F0C56C92158A83A	99840	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\usb\composite\usbccgp.sys
2015-03-14 22:57:37	ADA036632C664CAA754079041CF1F8C1	62464	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\genuineintel_-_intel64\intelppm.sys
2015-03-14 22:57:36	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\pnp0c0a\battc.sys
2015-03-14 22:57:36	0840155D0BDDF1190F84A663C284BD33	17664	----a-w-	C:\Users\Samantha 2\Documents\20150314T225736330784\acpi\pnp0c0a\CmBatt.sys
2015-03-14 22:45:19	F163BB6827F41D61594EFD5E6C00AD4A	432680	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_14e4&dev_1692\k57nd60a.sys
2015-03-14 22:45:19	97BFED39B6B79EB12CDDBFEED51F56BB	122368	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\cc_0403\hdaudbus.sys
2015-03-14 22:45:19	1EA2EDA2D6CD253CE3EC3387FEAA40AC	340584	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_10ec&dev_5209&cc_ff00\RtsPStor.sys
2015-03-14 22:45:19	0EED230E37515A0EAEE3C2E1BC97B288	32320	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\mssmbios\mssmbios.sys
2015-03-14 22:45:18	FC5EFD7C797DF19DFB999F0605A7924E	788760	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_1e31&rev_04\iusb3xhc.sys
2015-03-14 22:45:18	DC54A574663A895C8763AF0FA1FF7561	48640	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\umbus\umbus.sys
2015-03-14 22:45:18	D438A33D568C76C24E8D7394981F42DC	30848	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\btath_bus\btath_bus.sys
2015-03-14 22:45:18	D2AAFD421940F640B407AEFAAEBD91B0	71552	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\volmgr\volmgr.sys
2015-03-14 22:45:18	C5C876CCFC083FF3B128F933823E87BD	36432	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\vdrvroot\vdrvroot.sys
2015-03-14 22:45:18	C224331A54571C8C9162F7714400BBBD	568600	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_1e03&cc_0106\iaStor.sys
2015-03-14 22:45:18	BC02336F1CBA7DCC7D1213BB588A68A5	50768	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\hid_device_system_keyboard\kbdclass.sys
2015-03-14 22:45:18	9819EEE8B5EA3784EC4AF3B137A5244C	73280	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\gendisk\disk.sys
2015-03-14 22:45:18	772A1DEEDFDBC244183B5C805D1B7D85	62784	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_1e3a\HECIx64.sys
2015-03-14 22:45:18	33F90B202E9DD9B7D489EB59310FDC34	283064	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\dtsoftbus01\dtsoftbus01.sys
2015-03-14 22:45:18	1F775DA4CF1A3A1834207E975A72E9D7	185344	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\usb\class_0e\usbvideo.sys
2015-03-14 22:45:18	1D88A23853387D34D52CC8F9DDBFC56C	356120	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\iusb3\root_hub30\iusb3hub.sys
2015-03-14 22:45:18	0705EFF5B42A9DB58548EEC3B26BB484	33280	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\hid_device_system_keyboard\kbdhid.sys
2015-03-14 22:45:17	6C9FFFECA9FED31347D211C5D1FFBD2D	331264	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\hdaudio\func_01&ven_8086&dev_2806&subsys_80860101\IntcDAud.sys
2015-03-14 22:45:17	561E7E1F06895D78DE991E01DD0FB6E5	63360	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\rdp_mou\termdd.sys
2015-03-14 22:44:54	FFA06EF43987ED0DD42AD59B260C0C78	7808	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\usb\root_hub20\usbd.sys
2015-03-14 22:44:54	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\usb\root_hub20\usbhub.sys
2015-03-14 22:44:54	276EE9CDAB16C50E1DF0E4CEFA882F5F	14692224	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_8086&dev_0166&subsys_067d1025\igdkmd64.sys
2015-03-14 22:44:53	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\composite_battery\battc.sys
2015-03-14 22:44:53	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\acpi0003\battc.sys
2015-03-14 22:44:53	F036CE71586E93D94DAB220D7BDF4416	147456	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\gencdrom\cdrom.sys
2015-03-14 22:44:53	DF8126BD41180351A093A3AD2FC8903B	296320	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\storage\volume\volsnap.sys
2015-03-14 22:44:53	DC54A574663A895C8763AF0FA1FF7561	48640	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\umb\umbus\umbus.sys
2015-03-14 22:44:53	9592090A7E2B61CD582B612B6DF70536	30208	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\generic_hid_device\hidusb.sys
2015-03-14 22:44:53	8D1196CFBB223621F2C67D45710F25BA	343040	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\usb\class_09\usbhub.sys
2015-03-14 22:44:53	856E76B3641746ABBC2946BED1372098	32896	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\generic_hid_device\hidparse.sys
2015-03-14 22:44:53	6DC22BDAA595BE00F19696E72F2F3312	26504	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\int3392\irstrtdv.sys
2015-03-14 22:44:53	61583EE3C3A17003C4ACD0475646B4D3	45056	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\blbdrive\blbdrive.sys
2015-03-14 22:44:53	597C3699384E53CC59587ED50CCE5CA2	76800	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\generic_hid_device\hidclass.sys
2015-03-14 22:44:53	43E7A4298644526B0190C43AF6489DB1	3538432	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\pci\ven_168c&dev_0034&subsys_662111ad\athrx.sys
2015-03-14 22:44:53	102DE219C3F61415F964C88E9085AD14	21584	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\composite_battery\compbatt.sys
2015-03-14 22:44:53	0840155D0BDDF1190F84A663C284BD33	17664	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\acpi0003\CmBatt.sys
2015-03-14 22:44:53	03EDB043586CCEBA243D689BDDA370A8	38912	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\root\compositebus\CompositeBus.sys
2015-03-14 22:44:52	F4DE2AE7A9E1BADAC70BC71EA2C17612	28240	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\pnp0c0a\battc.sys
2015-03-14 22:44:52	DCA68B0943D6FA415F0C56C92158A83A	99840	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\usb\composite\usbccgp.sys
2015-03-14 22:44:52	D3BF052C40B0C4166D9FD86A4288C1E6	31232	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\hid_device_system_mouse\mouhid.sys
2015-03-14 22:44:52	ADA036632C664CAA754079041CF1F8C1	62464	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\genuineintel_-_intel64\intelppm.sys
2015-03-14 22:44:52	7D27EA49F3C1F687D357E77A470AEA99	49216	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\hid_device_system_mouse\mouclass.sys
2015-03-14 22:44:52	0840155D0BDDF1190F84A663C284BD33	17664	----a-w-	C:\Users\Samantha 2\Documents\20150314T224452776111\acpi\pnp0c0a\CmBatt.sys
2015-03-14 22:40:50	CE2D5CABC80ABC8A605A55C3954FB313	16056	----a-w-	C:\Windows\System32\drivers\SWDUMon.sys
2015-03-14 22:40:50	CE2D5CABC80ABC8A605A55C3954FB313	16056	----a-w-	C:\Users\Samantha 2\AppData\Local\SlimWare Utilities Inc\SlimDrivers\SWDUMon.sys
2015-03-14 22:32:42	FE71C99A5830F94D77A8792741D6E6C7	13824	----a-w-	C:\Windows\SysWOW64\drivers\DrvAgent64.SYS
2015-03-11 04:25:18	ED6E75158D28D33A2E2A020AC5B2B59D	663552	----a-w-	C:\Windows\System32\drivers\PEAuth.sys
2015-03-11 04:25:13	87BCD1034CBF33537D4D4C251D39BA26	94656	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2015-03-11 04:25:10	90C53BD47979FB8814F465A08B885102	61440	----a-w-	C:\Windows\System32\drivers\appid.sys
2015-03-11 04:24:01	8BA90F480705D7153AD0060CCA62222A	155576	----a-w-	C:\Windows\System32\drivers\ksecpkg.sys
2015-03-11 04:24:01	27667A788130A7F7A5858DE27572E6D7	459336	----a-w-	C:\Windows\System32\drivers\cng.sys
2015-03-11 04:24:00	56ED3EE5FED6BF2FC1305CF872042868	95680	----a-w-	C:\Windows\System32\drivers\ksecdd.sys
2015-03-11 04:23:46	A0DEE06D68F210CA090FD4D9A33CDC12	3204096	----a-w-	C:\Windows\System32\win32k.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-291118313-888380054-2828711343-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="C:\Program Files (x86)\RocketDock\RocketDock.exe"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
"IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
"IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}"

[HKEY_USERS\S-1-5-21-291118313-888380054-2828711343-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"BackupManagerTray"="C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe -h -k"
"Dolby Home Theater v4"="C:\Dolby PCEE4\pcee4.exe -autostart"
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"
"DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"
"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="C:\Program Files (x86)\RocketDock\RocketDock.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Secure Applicayion"="C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe"
"InstantUpdate"="C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuDaemon.exe"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"AtherosBtStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"AthBtTray"="C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
"Power Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice"
"FAHConsole"="C:\Program Files\File Association Helper\FAHConsole.exe"
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DAEMON Tools Lite"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EADM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EADM"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Origin\\Origin.exe\" -AutoStart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify Web Helper"
"hkey"="HKCU"
"command"="\"C:\\Users\\Samantha 2\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""


==== Startup Folders ======================

2012-04-10 06:42:21	1782	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
2014-11-04 12:23:15	2103	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16-03-2015 15:33]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-12-2014 14:13]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-12-2014 14:13]
C:\Windows\tasks\SlimCleaner Plus (Scheduled Scan - Samantha 2).job --a------ C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AutoPico Daily Restart" [C:\Users\SAMANT~1\AppData\Local\Temp\RarSFX0\AutoPico.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\EgisUpdate" ["C:\Program Files\EgisTec IPS\EgisUpdate.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\PMMUpdate" ["C:\Program Files\EgisTec IPS\PMMUpdate.exe"]
"C:\Windows\SysNative\tasks\RealUpgradeLogonTaskS-1-5-21-291118313-888380054-2828711343-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeScheduledTaskS-1-5-21-291118313-888380054-2828711343-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\SlimCleaner Plus (Scheduled Scan - Samantha 2)" [C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe]
"C:\Windows\SysNative\tasks\Smart Timer Task Scheduler" [Smart_Timer.exe]
"C:\Windows\SysNative\tasks\UALU notificatin" ["C:\Program Files\Acer\Acer Updater\UALU.exe"]
"C:\Windows\SysNative\tasks\{0B12A15F-E5C6-417A-ADEA-93A78F1A2787}" ["c:\users\samantha\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{11964BA2-A162-4BE0-9155-3DF6A8667BB3}" ["c:\users\samantha\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{488CD34E-DD37-4F54-9117-5D5AE4134D57}" ["c:\users\samantha\appdata\local\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
"C:\Windows\SysNative\tasks\Theft Shield\AcerTheftShieldTask" [C:\Program Files\Acer\Acer Theft Shield\USecuAppLauncher.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04-11-2014 13:24]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04-11-2014 13:24]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 41.0.2272.89 (Up to date, latest Stable version: 41.0.2272.89)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]

AdBlock - Samantha 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Mac OS theme - Samantha 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkpadlfbbnobnjaeodjfnkogiigdmgff
Hover Zoom - Samantha 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4AED086A-197A-4ECC-B086-41FF0581CBB2}_is1 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Samantha 2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Samantha 2\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=24 folders=27 21368889 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Samantha 2\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\SAMANT~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 17-03-2015 at 12:36:08,72 ======================