Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Hugo on ma 27/07/2015 at 20:16:31,93. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Hugo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GNVGLWRO\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 27/07/2015 20:18:39 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\predm deleted successfully C:\PROGRA~3\IQIYI Video deleted successfully C:\PROGRA~3\TXQMPC deleted successfully C:\Users\Hugo\AppData\Roaming\Opera Software deleted successfully C:\Users\Hugo\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Hugo\AppData\Local\EmieSiteList deleted successfully C:\Users\Hugo\AppData\Local\EmieUserList deleted successfully C:\Users\Hugo\AppData\Local\Opera Software deleted successfully C:\Users\Hugo\AppData\Local\Unity deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}] Objects\{1F91A9A1-01BA-4c81-863D-3BA0751E1419}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7a0ab196-76b2-4ee2-858e-7efdc93c3a47}] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Optimizer Pro"=- [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "mbot_be_014010041"=- " QQPCTray"=- "AppInit_DLLs"=- [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP] [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\QQPCRTP] ==== Deleting Files \ Folders ====================== C:\PROGRA~2\predm not found C:\ProgramData\TXQMPC not found C:\Users\Hugo\AppData\Roaming\agederar not found C:\ProgramData\IQIYI Video not found "C:\Windows\tasks\AmiUpdXp.job" not found "C:\Windows\tasks\Optscan.job" not found "C:\Windows\tasks\ParetoLogic Registration3.job" not found "C:\Windows\tasks\ParetoLogic Update Version3.job" not found "C:\windows\SysNative\drivers\TAOAccelerator64.sys" not found C:\PROGRA~2\baidu deleted C:\Users\Hugo\AppData\Roaming\oursurfing deleted C:\Program Files (x86)\MiuiTab deleted C:\Program Files (x86)\Wooden Seal deleted C:\Program Files (x86)\Optimizer Pro 3.99 deleted C:\ProgramData\WindowsMangerProtect deleted C:\Users\Hugo\AppData\Local\968 deleted c:\programdata\{50df87c4-5877-63c0-50df-f87c45871f11} deleted C:\Program Files (x86)\Common Files\ParetoLogic deleted C:\ProgramData\Rising deleted C:\Program Files (x86)\Tencent deleted C:\Users\Hugo\AppData\Roaming\Tencent deleted C:\ProgramData\Tencent deleted C:\Users\Hugo\AppData\Roaming\Optimizer Pro deleted C:\ProgramData\IHProtectUpDate deleted C:\IQIYI Video deleted C:\Users\Hugo\AppData\Roaming\IQIYI Video deleted C:\Users\Hugo\AppData\Roaming\ParetoLogic deleted C:\Users\Hugo\AppData\Roaming\DriverCure deleted C:\ProgramData\ParetoLogic deleted C:\Users\Hugo\Documents\Optimizer Pro deleted "C:\Program Files (x86)\Rising" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-07-26 10:42:58 332FEAB1435662FC6C672E25BEB37BE3 2871808 ----a-w- C:\Windows\explorer.exe 2015-07-26 10:37:26 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe 2015-07-08 16:33:55 A4C15BCAD35B4DB7A9DCF859B4E0BEF7 13 ----a-r- C:\Windows\csup.txt 2015-07-08 16:33:55 6DDEAC7F76CCAEF12BB645ECE83F3549 28 ---ha-r- C:\Windows\version ====== C:\Users\Hugo\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-07-26 11:34:57 2413D2216D08FAF7D7178D9E0B481AEB 2285056 ----a-w- C:\Windows\SysWOW64\msmpeg2vdec.dll 2015-07-26 10:43:49 DDE994E9159497D0D5AB2CDF66D1EAD6 76800 ----a-w- C:\Windows\SysWOW64\wdi.dll 2015-07-26 10:43:36 E42BB0E02C8F6C8D1CCBFE6AB8EB199F 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2015-07-26 10:43:36 E3883C13DB4D19E29095C9F4BC27B755 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2015-07-26 10:43:36 1A04239A054D810CF32C46F2B70C47B7 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-07-26 10:43:35 E8F3572F002B556D19AC3AE4A11CAC2E 342736 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-07-26 10:43:35 D503616B296B869486AA84D6DB8FB6A5 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2015-07-26 10:43:35 87E5B70C9F0DE7E3D620E1E3A60AA274 504320 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-07-26 10:43:35 019019007E6980EACAC80DE04B5D330A 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-07-26 10:43:34 95C40DFE3B3CFCEBA2DF9E493945A7B5 689152 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-07-26 10:43:34 18465944F711AD3FDE58675C3C42FA99 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-07-26 10:43:33 CC044CFF6018AD0368AF3A8149721407 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-07-26 10:43:33 442DB5B16073DE2E79E1912D0B77F343 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2015-07-26 10:43:33 2CC6836C44C84583386702468125654F 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2015-07-26 10:43:32 E475D4B65088F4F7FABF7D427CD3D30E 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-07-26 10:43:32 81ED1F775E5DDBE990D9C3AFF507DAC2 664064 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-07-26 10:43:32 43CF584D989A4A0EA6B5D3EBFAD260B7 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2015-07-26 10:43:32 0CB44ADB09C5BE7CE9D1D1F04E909067 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2015-07-26 10:43:30 0DE5FE06603CF80238EFD9D67AB45A56 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2015-07-26 10:43:29 72D524ED31A2FBA7432801361CE41FC3 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2015-07-26 10:43:29 63B01F72FD727D5736DBEF54174D8F93 1951232 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-07-26 10:43:29 17DFCBA042195666632C889E04913E19 341504 ----a-w- C:\Windows\SysWOW64\html.iec 2015-07-26 10:43:01 6E91F67335D57DDFFE798C815444B0E3 210432 ----a-w- C:\Windows\SysWOW64\cewmdm.dll 2015-07-26 10:43:00 BBA0C61CB01BA4351C41DC36BBEB55B4 299008 ----a-w- C:\Windows\SysWOW64\atmfd.dll 2015-07-26 10:43:00 900DB967084C22C6D83D637529B77E8F 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll 2015-07-26 10:42:59 D80ECB18D64AE3C2A9D8220ABEBCE40A 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll 2015-07-26 10:42:59 2DD3D6B44442EF17675554D0482E7BC2 70656 ----a-w- C:\Windows\SysWOW64\fontsub.dll 2015-07-26 10:42:59 0A6495A400140B89242268A13C807841 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll 2015-07-26 10:42:58 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\SysWOW64\explorer.exe 2015-07-26 10:42:56 C22AB1781BC6F0BB1C9B352CF66DBFFC 1250816 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2015-07-26 10:42:54 E2A2B221A47271DD4176FB9B93F670E6 93184 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2015-07-26 10:42:54 CBC91E2E6158358E82D153D811B73C38 30208 ----a-w- C:\Windows\SysWOW64\wups.dll 2015-07-26 10:42:54 7F13188A9656355F664313334971DA22 173056 ----a-w- C:\Windows\SysWOW64\wuwebv.dll 2015-07-26 10:42:54 1728A7831E95BCEEEA3F0D07AE6F74EE 566784 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2015-07-26 10:42:54 13810657EE732C2F5453C0C877FD5DB2 34816 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2015-07-26 10:42:42 79896A78039C9A63C56197843CFBAD0B 1987584 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll 2015-07-26 10:42:36 C7673B3F8BB35221B42D67BF7ADAFDFD 7168 ----a-w- C:\Windows\SysWOW64\KBDYAK.DLL 2015-07-26 10:42:36 730B7C639957EA0BF37C1459831A1E19 6656 ----a-w- C:\Windows\SysWOW64\KBDRU1.DLL 2015-07-26 10:42:36 72222991598E173BBE1429426926C020 7168 ----a-w- C:\Windows\SysWOW64\KBDTAT.DLL 2015-07-26 10:42:36 45B308F20FEF040BD7321E85F69DF5E2 6656 ----a-w- C:\Windows\SysWOW64\KBDRU.DLL 2015-07-26 10:42:36 2BD0519015E899A2FF52210CC5875F88 6656 ----a-w- C:\Windows\SysWOW64\KBDBASH.DLL 2015-07-26 10:42:32 143046AC227C193B5B2E0E20BC0CF1DD 312320 ----a-w- C:\Windows\SysWOW64\gdi32.dll 2015-07-26 10:42:30 3D73FC0D0997DA1EF6F705EF9936AB20 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2015-07-26 10:42:30 31165F9D71D3C249AB97FBAE55DE4B49 4520448 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-07-26 10:42:28 116F506573B59B85CD0DC18527E9951A 19877376 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-07-26 10:42:27 AFAEB9E4269846C64DC9721B1BFA5CEC 12855296 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-07-26 10:42:27 37BC6BC6CFC38A6202B28459F7CCE4CD 479232 ----a-w- C:\Windows\SysWOW64\ieui.dll 2015-07-26 10:42:27 05CA106A1B68770BDABB9AA7AEAE516A 1310720 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-07-26 10:42:26 4E4B3CAC5C62415AF5C6B0167A376EB8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2015-07-26 10:42:23 8EDF7B6D3A563DAA06DD87053C734168 2279424 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-07-26 10:42:21 4548507ED3C17DB4739DBBEAF6378004 1414656 ----a-w- C:\Windows\SysWOW64\ole32.dll 2015-07-26 10:42:14 33F67BBCC3C0499D3F3382473114CFA8 143872 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll 2015-07-26 10:42:13 F4AFDB5ABEA0C9079E8193E24D1DB21D 1174528 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2015-07-26 10:42:13 D864C283FFD7C080FDC25FD4C798FF8D 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll 2015-07-26 10:42:13 588D52C2D0E60EE71FD5A64407865B10 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll 2015-07-26 10:41:49 4466D67AC240FE1CCCB32BE743BCB488 552960 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2015-07-26 10:41:48 E344031017D52F5F1A4C759A815625CC 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2015-07-26 10:41:38 02CD86D59807467D065F521BE81BB858 665088 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll 2015-07-26 10:41:37 E97B4515FC3846CB5C6853C40E71EF28 36864 ----a-w- C:\Windows\SysWOW64\cryptbase.dll 2015-07-26 10:41:37 E6F375BAA4F839592627DA3E95BF3977 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2015-07-26 10:41:37 CA017983095846BFCFBE9C02B40958B3 221184 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2015-07-26 10:41:37 A719B9156A6DCDBACC201D9163AFF8D1 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll 2015-07-26 10:41:37 A41BF25E4F145E1BC00445B6421B9E11 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2015-07-26 10:41:37 98226182583DF1715F1BE6CCEA6E8D95 248832 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-07-26 10:41:37 96741CBB4CC3638A2BCB11F93B92B738 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2015-07-26 10:41:37 81E207D09B2A7723A549EFB34B47C7EA 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2015-07-26 10:41:37 6AE6E08938D5BA9D8BA305506620B48D 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2015-07-26 10:41:37 393FDE87F56A8E98AC1B37ADB2181332 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2015-07-26 10:41:37 2E8C9C3223E05F4B42FB89C03DD09C1D 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2015-07-26 10:41:37 2B4A31319D74B3D3407AB64942B7FF32 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-07-26 10:41:29 F61A069A5517F85662ED9A6C5AD5445A 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe 2015-07-26 10:41:29 D7C4ABB0F1FFA371928EED0C7A6E24DC 2364416 ----a-w- C:\Windows\SysWOW64\msi.dll 2015-07-26 10:41:29 C08582E7F8EA706A2D4A3C7BD5AC35C1 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll 2015-07-26 10:41:29 A344B1EFA7DB86AE1407039CD596FB1E 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll 2015-07-26 10:41:29 7B4277F9E9F48D5D8E6AEA341F8048E8 1805824 ----a-w- C:\Windows\SysWOW64\authui.dll 2015-07-26 10:41:25 14800BD31701A5047AC3145BB1E698AE 3419136 ----a-w- C:\Windows\SysWOW64\d2d1.dll 2015-07-26 10:41:17 5F3628DCF926C4499BE1DC74431DFBC8 1230848 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2015-07-26 10:41:05 B4834F08230A2EB7F498DE4E5B6AB814 74240 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2015-07-26 10:41:05 5C3F9DBA818CD93379D1A0F215270374 1699328 ----a-w- C:\Windows\SysWOW64\esent.dll 2015-07-26 10:40:58 9566C8BBD2271A7962D4432A624762AD 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-07-26 11:34:57 3469B9FAE899139FEE7356E91693376A 2777088 ----a-w- C:\Windows\Sysnative\msmpeg2vdec.dll 2015-07-26 10:43:49 D713D6446DDBB474D801F361B4B186EA 950272 ----a-w- C:\Windows\Sysnative\perftrack.dll 2015-07-26 10:43:49 C6F7473B55510F0B93961DA03D8E3B38 91136 ----a-w- C:\Windows\Sysnative\wdi.dll 2015-07-26 10:43:49 AA7079AD52B8BFBAE94167D54C32F84F 29696 ----a-w- C:\Windows\Sysnative\powertracker.dll 2015-07-26 10:43:36 A51BF63E9EA6DDED50A69797EAD23576 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2015-07-26 10:43:36 50AAC6B4AFD93060456134A29C35FB1E 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2015-07-26 10:43:35 44D98BF1ED7B520602A55446E28D8840 720384 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-07-26 10:43:35 3A46FC42EDE2021399FCD9E4A7A406F8 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2015-07-26 10:43:34 4887D79B5CE61A00FCC5C53AA2216007 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2015-07-26 10:43:33 7EEC52D1B800230A4E8EC81B92D61118 389832 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-07-26 10:43:32 DAECFA33350D863D49157506587D5EF8 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2015-07-26 10:43:32 BCE51D1B0F7BC8977CDAECD24A0D4C88 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-07-26 10:43:32 80E899C111219316B94BBA72FAFF7D11 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2015-07-26 10:43:32 434CBA59035C4F3A02E5AB92FD6C816B 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-07-26 10:43:31 BB33A140CA61A22B5882486881E2191A 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2015-07-26 10:43:31 AF3D4DA49A9C9C9778953CE9D7470C11 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2015-07-26 10:43:30 58243D92748201D38AACDAEA22527412 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-07-26 10:43:29 B5164F4515C4BC4F45FBF5B3A99685C0 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-07-26 10:43:29 9B9D2B99A865CB3B9BAA9BE77A300680 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2015-07-26 10:43:29 142D20CA55870589B009D53C37C0B75C 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2015-07-26 10:43:28 4024752E6B341B07F3823B7DA72C45D2 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2015-07-26 10:43:27 F30702F2607AEE462A6AB8715E72FC03 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2015-07-26 10:43:27 796A89701B2560FF453FF08FF941A169 816640 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-07-26 10:43:27 74F367C596EEF3106EBC65625F04C807 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-07-26 10:43:26 E066FDC3A2074D926903B8C31EF3B347 2427392 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-07-26 10:43:26 C95EE658B7816B3588418E948EF55F83 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2015-07-26 10:43:26 88E26FC9F8BDE0635F379BB8FE6BFFF1 417792 ----a-w- C:\Windows\Sysnative\html.iec 2015-07-26 10:43:25 8DA3623D372E5147914973383D998980 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2015-07-26 10:43:01 60696836CAD56F1B47059E1BA739787D 254976 ----a-w- C:\Windows\Sysnative\cewmdm.dll 2015-07-26 10:43:00 D57C03D365BC71C7A30504644515F3F8 41984 ----a-w- C:\Windows\Sysnative\lpk.dll 2015-07-26 10:43:00 2D0E2C197BA9CD67105DE5BBFBEF72A7 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll 2015-07-26 10:43:00 08D58C21888BC2DC754F591C23709C33 372224 ----a-w- C:\Windows\Sysnative\atmfd.dll 2015-07-26 10:42:59 37C6F4906A4B3F837780AF078A1718BA 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll 2015-07-26 10:42:59 1C4FF36152EBDF5C10A612FC9B2E1F8A 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll 2015-07-26 10:42:56 E612E86FA15EA1EF9A52433A2743C447 1179136 ----a-w- C:\Windows\Sysnative\FntCache.dll 2015-07-26 10:42:56 490505F6E53EF046EC70A353BC9CD615 1647104 ----a-w- C:\Windows\Sysnative\DWrite.dll 2015-07-26 10:42:54 84CEF9B2D8ED8006B3975DC1D8109B3D 696320 ----a-w- C:\Windows\Sysnative\wuapi.dll 2015-07-26 10:42:54 80381DD7C4797A601E59F8E001B46793 3154944 ----a-w- C:\Windows\Sysnative\wucltux.dll 2015-07-26 10:42:54 3F9239D5F65F1318A53EBAEC01C092F1 139776 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2015-07-26 10:42:54 3EDB01024BA86C5B4D2CB307DC5D3AC0 37376 ----a-w- C:\Windows\Sysnative\wuapp.exe 2015-07-26 10:42:54 2896A06239E19379CE44FAFCDB1675B1 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll 2015-07-26 10:42:53 F56E83C1EFEDEF919033CBFF071602B6 36864 ----a-w- C:\Windows\Sysnative\wups.dll 2015-07-26 10:42:53 D79E3C2D45315ADCAA267A05355DFBF5 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll 2015-07-26 10:42:53 BC80574FF264848F8613A3F6F7AF7642 192000 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2015-07-26 10:42:53 AA3E844A2595B1AA5825C70CA50D963E 2603008 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2015-07-26 10:42:53 00DCC688DF459A9FEE42C7397668C62B 98304 ----a-w- C:\Windows\Sysnative\wudriver.dll 2015-07-26 10:42:53 00383E521D3D039968B92A0998BA76FD 37888 ----a-w- C:\Windows\Sysnative\wups2.dll 2015-07-26 10:42:48 C4EA3D63E8BF077ECD1E93BF6556AE99 3207168 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-07-26 10:42:42 224C2EEBAAF39CD93DE5332DBE5E5A95 2565120 ----a-w- C:\Windows\Sysnative\d3d10warp.dll 2015-07-26 10:42:36 EA21295A386C6DB2A2A90E657B37C5F4 7168 ----a-w- C:\Windows\Sysnative\KBDYAK.DLL 2015-07-26 10:42:36 BE67D99EDA34A68B827868371B5529AD 7168 ----a-w- C:\Windows\Sysnative\KBDTAT.DLL 2015-07-26 10:42:36 920B5C1CC0BAB6E574297BC3D945DA31 7168 ----a-w- C:\Windows\Sysnative\KBDBASH.DLL 2015-07-26 10:42:36 80EDA24B00478FA795F90DFA09C12E86 7168 ----a-w- C:\Windows\Sysnative\KBDRU1.DLL 2015-07-26 10:42:36 353C4A38042819CA83AEFC6F2E7051CD 6656 ----a-w- C:\Windows\Sysnative\KBDRU.DLL 2015-07-26 10:42:32 EFFFE1C77ACCE66C82CCFD18A9687F48 404992 ----a-w- C:\Windows\Sysnative\gdi32.dll 2015-07-26 10:42:30 837BD6BB879405B416A4326C8B723D83 5923840 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-07-26 10:42:30 2A795629E0746D82A229A01EEE75FCE5 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2015-07-26 10:42:27 FC165889E97E37BCB55C5B79BEB3D331 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2015-07-26 10:42:26 78E4D3781E5632BA88E5153510BEB625 1545728 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-07-26 10:42:26 6A70888EEC05B45C8990E8977C480019 14453248 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-07-26 10:42:26 120E3CE08505A9637CAB72D35A2D2E8C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-07-26 10:42:25 D74E2BE157B8A2A9CF29BEBB052B8A42 25193984 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-07-26 10:42:23 41D59904967A4033FB4497DCED7320AD 2885632 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-07-26 10:42:21 E3EB94B45A2735D4559558B5899732E8 2087424 ----a-w- C:\Windows\Sysnative\ole32.dll 2015-07-26 10:42:14 7BC3E861F7E8EB543A630090FAE779E0 188416 ----a-w- C:\Windows\Sysnative\cryptsvc.dll 2015-07-26 10:42:13 C5752F5CE47B6B00F914AE91087C0CB4 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll 2015-07-26 10:42:13 7EE0A3B9E904AF4744E4D8F00CB5CA32 140288 ----a-w- C:\Windows\Sysnative\cryptnet.dll 2015-07-26 10:42:13 71187FA11F58012C188453877E16EB8B 1480192 ----a-w- C:\Windows\Sysnative\crypt32.dll 2015-07-26 10:41:49 F66102F990EE913261ED7907403718ED 729088 ----a-w- C:\Windows\Sysnative\kerberos.dll 2015-07-26 10:41:49 A66FF313F2F8A6CBF9BB2B0CC92D5ACD 1216512 ----a-w- C:\Windows\Sysnative\rpcrt4.dll 2015-07-26 10:41:49 750C44D6F7A708F0C6618F075A0A68A7 315392 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2015-07-26 10:41:38 D5844B744F7BAF826965DD634FF8DB00 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2015-07-26 10:41:37 F01A58E45BB8E28CCE6BCF272FF0F9A8 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe 2015-07-26 10:41:37 EEB192537935BB12A998CAB8F5A07E78 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll 2015-07-26 10:41:37 E8560BC8E1B85A5A081AEF43626187B1 44032 ----a-w- C:\Windows\Sysnative\cryptbase.dll 2015-07-26 10:41:37 C3F6A9A41CC8591EF0370708E54DE474 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2015-07-26 10:41:37 C3F0594AF92FE71B13A44177FDB80784 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2015-07-26 10:41:37 B1D191D0EDEB86197A5FD5030B65420F 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2015-07-26 10:41:37 9F2CCDE3F30C224C082984B6F95D3D95 309760 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2015-07-26 10:41:37 9EA6DA45B95599C27B1661C1D99307D7 342016 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-07-26 10:41:37 97D879A884E7CDFED51AD63348A35254 31232 ----a-w- C:\Windows\Sysnative\lsass.exe 2015-07-26 10:41:37 7C26CACB82ECA09874B984B155B06AD4 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll 2015-07-26 10:41:37 55750A7588D91B102EB17E69BFF2AAF1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2015-07-26 10:41:37 48A88348F1539CC7C8CB4E032DD79DAA 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2015-07-26 10:41:37 3B96392CBE54FF44BEAEB0B4BCC65487 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2015-07-26 10:41:37 09730D830B2B69B626817F4A95945308 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2015-07-26 10:41:29 D9A91A779B5059E72D7FAD2B38275EA4 3242496 ----a-w- C:\Windows\Sysnative\msi.dll 2015-07-26 10:41:29 CDAD406033C31DB34185DDAECDD35FE2 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll 2015-07-26 10:41:29 978DC0A1FBE9CC91B21B40AF66CB396A 70656 ----a-w- C:\Windows\Sysnative\appinfo.dll 2015-07-26 10:41:29 91593D4FB7D89249014564A5F3EC389B 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll 2015-07-26 10:41:29 81CB8D34112178CE1826C86BA5F268C3 128000 ----a-w- C:\Windows\Sysnative\msiexec.exe 2015-07-26 10:41:29 5489E74E56C0255159C8AE2C70744458 1941504 ----a-w- C:\Windows\Sysnative\authui.dll 2015-07-26 10:41:29 0D9514850CC3A99A6600643F2888858B 112064 ----a-w- C:\Windows\Sysnative\consent.exe 2015-07-26 10:41:25 C676E5EA388AF7C4C031F56F9B42E362 3928064 ----a-w- C:\Windows\Sysnative\d2d1.dll 2015-07-26 10:41:21 782C216AFEE0561680706698F70B2A93 1085440 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-07-26 10:41:20 D236055773550118989C0C81CBE79A29 765440 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-07-26 10:41:20 BBA5CB528CB7482E118D0FEAF808987A 17856 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe 2015-07-26 10:41:20 658B5EC540CD94D76889D0E8390B1C04 433664 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-07-26 10:41:20 5D507961F680D0A0392CC5EB6515E70A 726528 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-07-26 10:41:20 474EA5201E3883F747D540D3EF57C1F2 1145856 ----a-w- C:\Windows\Sysnative\aeinv.dll 2015-07-26 10:41:20 0919F433ED64E6CD1912C016F1E80BE7 67584 ----a-w- C:\Windows\Sysnative\acmigration.dll 2015-07-26 10:41:19 5663847B3DCC8382B1D1F1EEB4A92994 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll 2015-07-26 10:41:17 0A4D03A4C0F908B15B8A4C48FB18F197 1424896 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2015-07-26 10:41:05 6804A0B4AAF1F65277FB8A58DE40EABC 96768 ----a-w- C:\Windows\Sysnative\fsutil.exe 2015-07-26 10:41:05 522B0466ED967A0762E9AF5B37D8F40A 2565632 ----a-w- C:\Windows\Sysnative\esent.dll 2015-07-26 10:40:58 CBA2694BFC61F371181F2BE2BCD66C40 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2015-07-26 10:37:26 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\Sysnative\spoolsv.exe ====== C:\Windows\Sysnative\drivers ===== 2015-07-26 10:41:49 21AF322605D8C7F2A627C22634D1C9C9 290816 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys 2015-07-26 10:41:48 45A03A0B6461EFBEE77E0A6AC2816EDA 129024 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2015-07-26 10:41:48 1877EB1495CFBDAB27D6A32F6DDF3818 159232 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2015-07-26 10:41:38 7A7328E427694CC7244235C3BC299F80 155584 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-07-26 10:41:37 C0A6C3D6E02B61B5D100FE17306C276F 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-07-26 10:41:05 FED648B01349A3C8395A5169DB5FB7D6 91648 ----a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS 2015-07-26 10:41:05 DAB0E87525C10052BF65F06152F37E4A 166272 ----a-w- C:\Windows\Sysnative\drivers\nvstor.sys 2015-07-26 10:41:05 D4121AE6D0C0E7E13AA221AA57EF2D49 107904 ----a-w- C:\Windows\Sysnative\drivers\amdsata.sys 2015-07-26 10:41:05 AAAF44DB3BD0B9D1FB6969B23ECC8366 410496 ----a-w- C:\Windows\Sysnative\drivers\iaStorV.sys 2015-07-26 10:41:05 540DAF1CEA6094886D72126FD7C33048 27008 ----a-w- C:\Windows\Sysnative\drivers\amdxata.sys 2015-07-26 10:41:05 0A92CB65770442ED0DC44834632F66AD 148352 ----a-w- C:\Windows\Sysnative\drivers\nvraid.sys 2015-07-08 12:36:25 BF22B3F663E6D1662E6159AB8EA7D113 10224 ----a-w- C:\Windows\Sysnative\drivers\cdralw2k.sys 2015-07-08 12:36:25 7DC54D1D7B66EBFC09F1DEFCF32DFA3F 10224 ----a-w- C:\Windows\Sysnative\drivers\cdr4_xp.sys 2015-07-08 12:36:25 4712CC14E720ECCCC0AA16949D18AAF1 55280 ----a-w- C:\Windows\Sysnative\drivers\PxHlpa64.sys 2015-07-08 12:33:51 18B6869E23937175144E6F1D3CB85FC2 41280 ----a-w- C:\Windows\Sysnative\drivers\PCASp50a64.sys 2015-07-08 08:55:58 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys 2015-07-08 08:55:58 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys 2015-07-08 08:55:57 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2015-07-08 08:48:57 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\Sysnative\drivers\fs_rec.sys 2015-07-08 08:40:54 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys 2015-07-08 08:40:54 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\Sysnative\drivers\usbvideo.sys 2015-07-08 08:40:41 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\Sysnative\drivers\tcpipreg.sys 2015-07-08 08:39:42 FE571E088C2D83619D2D48D4E961BF41 212480 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys 2015-07-08 08:39:41 E232A3B43A894BB327FC161529BD9ED1 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys 2015-07-08 08:36:46 ED6E75158D28D33A2E2A020AC5B2B59D 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys 2015-07-08 08:36:43 90C53BD47979FB8814F465A08B885102 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2015-07-08 08:36:43 87BCD1034CBF33537D4D4C251D39BA26 94656 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys 2015-07-08 08:36:24 27667A788130A7F7A5858DE27572E6D7 459336 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2015-07-08 08:34:18 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys 2015-07-08 08:34:08 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys 2015-07-08 08:34:08 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2015-07-08 08:34:08 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2015-07-08 08:34:04 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys 2015-07-08 08:34:04 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\Sysnative\drivers\WdfLdr.sys 2015-07-08 08:34:03 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2015-07-08 08:33:56 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2015-07-08 08:33:56 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys 2015-07-08 08:33:54 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-07-08 08:33:54 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\Sysnative\drivers\RNDISMP.sys 2015-07-08 08:33:50 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys 2015-07-08 08:33:50 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys 2015-07-08 08:33:50 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2015-07-08 08:33:50 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys 2015-07-08 08:33:50 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys 2015-07-08 08:33:46 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys 2015-07-08 08:33:46 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys 2015-07-08 08:33:44 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys 2015-07-08 08:33:42 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys 2015-07-08 08:33:42 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2015-07-08 08:33:42 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys 2015-07-08 08:33:40 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys 2015-07-08 08:33:37 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2015-07-08 08:33:35 70988118145F5F10EF24720B97F35F65 119296 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys 2015-07-08 08:33:22 B4ADEBBF5E3677CCE9651E0F01F7CC28 410112 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys 2015-07-08 08:33:22 441FBA48BFF01FDB9D5969EBC1838F0B 467456 ----a-w- C:\Windows\Sysnative\drivers\srv.sys 2015-07-08 08:33:22 27E461F0BE5BFF5FC737328F749538C3 168448 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys 2015-07-08 08:33:01 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2015-07-08 08:32:59 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys 2015-07-08 08:32:57 F61634BEC53F73702A10DE69F6DCAF57 754688 ----a-w- C:\Windows\Sysnative\drivers\http.sys 2015-07-08 08:32:50 87CE5C8965E101CCCED1F4675557E868 985536 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2015-07-08 08:32:50 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2015-07-08 08:32:49 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys 2015-07-08 08:32:46 6C02A83164F5CC0A262F4199F0871CF5 90624 ----a-w- C:\Windows\Sysnative\drivers\bowser.sys 2015-07-08 08:32:40 36E0DDD19038C92B7C7709BFA03F813F 69888 ----a-w- C:\Windows\Sysnative\drivers\stream.sys 2015-07-08 07:04:16 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\Sysnative\drivers\tdtcp.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-07-26 09:27:07 -------- d-----w- C:\Program Files\trend micro 2015-07-25 17:16:18 -------- d-----w- C:\Program Files\Common Files\Tencent 2015-07-08 12:27:56 -------- d-----w- C:\Program Files\Dell 2015-07-08 12:22:02 -------- d-----w- C:\Program Files\Common Files\Logishrd 2015-07-08 12:21:55 -------- d-----w- C:\Program Files\SetPoint ======= C:\PROGRA~2 ===== 2015-07-25 16:46:07 -------- d-----w- C:\PROGRA~2\Opera 2015-07-25 15:16:47 -------- d-----w- C:\PROGRA~2\Dell 2015-07-23 06:30:55 -------- d-----w- C:\PROGRA~2\Microsoft.NET 2015-07-08 12:36:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Sonic Shared 2015-07-08 12:36:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Roxio Shared 2015-07-08 12:36:24 -------- d-----w- C:\PROGRA~2\COMMON~1\PX Storage Engine 2015-07-08 12:36:22 -------- d-----w- C:\PROGRA~2\Roxio 2015-07-08 12:33:43 -------- d-----w- C:\PROGRA~2\Telespree 2015-07-08 12:33:43 -------- d-----w- C:\PROGRA~2\COMMON~1\Telespree 2015-07-08 12:33:36 -------- d-----w- C:\PROGRA~2\Verizon Wireless 2015-07-08 12:33:36 -------- d-----w- C:\PROGRA~2\Novatel Wireless 2015-07-08 12:33:36 -------- d-----w- C:\PROGRA~2\AT&T 2015-07-08 12:22:13 -------- d-----w- C:\PROGRA~2\COMMON~1\LogiShrd 2015-07-08 12:22:04 -------- d--h--w- C:\PROGRA~2\InstallShield Installation Information ======= C: ===== ====== C:\Users\Hugo\AppData\Roaming ====== 2015-07-25 22:24:03 3E8D20F5442B09E5B5F9C6BAC15BB8EE 139624 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2015-07-25 22:24:01 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2015-07-25 17:16:03 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Tencent 2015-07-25 16:44:29 -------- d-----w- C:\Users\Hugo\AppData\Local\SysassistByHotWheel 2015-07-25 16:44:11 -------- d-----w- C:\Users\Hugo\AppData\Locallow\Unity 2015-07-25 16:43:36 -------- d-----w- C:\Users\Hugo\AppData\Local\Programs 2015-07-23 06:25:21 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Roxio 2015-07-08 12:36:07 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Roxio Log Files 2015-07-08 12:33:04 -------- d-----w- C:\Users\Hugo\AppData\Local\Downloaded Installations 2015-07-08 12:24:55 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Logitech 2015-07-08 12:10:18 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell 2015-07-08 12:10:09 858FC79AEF924493137740ED1339DB89 58016 ----a-w- C:\Users\Hugo\AppData\Local\GDIPFONTCACHEV1.DAT 2015-07-08 12:10:09 -------- d-----w- C:\Users\Hugo\AppData\Local\Deployment 2015-07-08 12:10:09 -------- d-----w- C:\Users\Hugo\AppData\Local\Apps 2015-07-08 12:06:52 -------- d-sh--w- C:\Users\Hugo\AppData\Locallow\EmieUserList 2015-07-08 12:06:52 -------- d-sh--w- C:\Users\Hugo\AppData\Locallow\EmieBrowserModeList 2015-07-08 12:06:41 -------- d-sh--w- C:\Users\Hugo\AppData\Locallow\EmieSiteList 2015-07-08 12:05:34 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Adobe 2015-07-08 07:20:08 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2015-07-08 07:01:56 -------- d-s---w- C:\Users\Hugo\AppData\Locallow\Microsoft 2015-07-08 06:50:00 -------- d-----r- C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2015-07-08 06:50:00 -------- d-----r- C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2015-07-08 06:49:46 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Identities 2015-07-08 06:49:42 -------- d-----w- C:\Users\Hugo\AppData\Local\VirtualStore 2015-07-08 06:49:37 -------- d-s---w- C:\Users\Hugo\AppData\Roaming\Microsoft 2015-07-08 06:49:37 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Media Center Programs 2015-07-08 06:49:37 -------- d-----w- C:\Users\Hugo\AppData\Local\Temp 2015-07-08 06:49:37 -------- d-----w- C:\Users\Hugo\AppData\Local\Microsoft 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories ====== C:\Users\Hugo ====== 2015-07-25 21:55:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2015-07-25 16:43:58 -------- d-----w- C:\Users\Public\QiYi 2015-07-08 12:36:35 -------- d-----w- C:\ProgramData\Uninstall 2015-07-08 12:36:30 -------- d-----w- C:\ProgramData\Sonic 2015-07-08 12:36:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio 2015-07-08 12:36:24 -------- d-----w- C:\ProgramData\Macrovision 2015-07-08 12:33:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless 2015-07-08 12:33:36 -------- d-----w- C:\ProgramData\Novatel Wireless 2015-07-08 12:33:36 -------- d-----w- C:\ProgramData\AT&T 2015-07-08 12:27:58 -------- d-----w- C:\ProgramData\Dell 2015-07-08 12:22:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SetPoint 2015-07-08 12:22:05 -------- d-----w- C:\ProgramData\Logitech 2015-07-08 06:50:00 -------- d-----r- C:\Users\Hugo\Searches 2015-07-08 06:49:44 -------- d-----r- C:\Users\Hugo\Contacts 2015-07-08 06:49:37 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Hugo\ntuser.ini 2015-07-08 06:49:37 -------- d--h--w- C:\Users\Hugo\AppData 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Videos 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Saved Games 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Pictures 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Music 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Links 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Favorites 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Downloads 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Documents 2015-07-08 06:49:37 -------- d-----r- C:\Users\Hugo\Desktop 2015-07-08 06:49:25 -------- d-----r- C:\Windows\SysNative\config\systemprofile\Contacts ====== C: exe-files == 2015-07-26 10:43:36 50AAC6B4AFD93060456134A29C35FB1E 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-07-26 10:43:35 8EA2ED812E996D95DE37CD2CE3158C2C 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-07-26 10:43:35 44D98BF1ED7B520602A55446E28D8840 720384 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-07-26 10:43:33 C899B9E60D663BE24B35EFBC29192A7C 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-07-26 10:43:32 E475D4B65088F4F7FABF7D427CD3D30E 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-07-26 10:43:32 A7B6589F92C9CB498CDBA42EBEB23EE4 815312 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-07-26 10:43:32 80E899C111219316B94BBA72FAFF7D11 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-07-26 10:43:30 D295049B06D31020A88B170445123D33 814280 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-07-26 10:43:29 142D20CA55870589B009D53C37C0B75C 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-07-26 10:42:58 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\SysWOW64\explorer.exe 2015-07-26 10:42:58 332FEAB1435662FC6C672E25BEB37BE3 2871808 ----a-w- C:\Windows\explorer.exe 2015-07-26 10:42:54 3F9239D5F65F1318A53EBAEC01C092F1 139776 ----a-w- C:\Windows\System32\wuauclt.exe 2015-07-26 10:42:54 3EDB01024BA86C5B4D2CB307DC5D3AC0 37376 ----a-w- C:\Windows\System32\wuapp.exe 2015-07-26 10:42:54 13810657EE732C2F5453C0C877FD5DB2 34816 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2015-07-26 10:42:27 26492D0AE6279B60A3801EDBE3CB794C 473600 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-07-26 10:42:26 3698C298719803F6502612D651A852B2 491008 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-07-26 10:41:37 F01A58E45BB8E28CCE6BCF272FF0F9A8 64000 ----a-w- C:\Windows\System32\auditpol.exe 2015-07-26 10:41:37 97D879A884E7CDFED51AD63348A35254 31232 ----a-w- C:\Windows\System32\lsass.exe 2015-07-26 10:41:37 2B4A31319D74B3D3407AB64942B7FF32 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-07-26 10:41:29 F61A069A5517F85662ED9A6C5AD5445A 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe 2015-07-26 10:41:29 81CB8D34112178CE1826C86BA5F268C3 128000 ----a-w- C:\Windows\System32\msiexec.exe 2015-07-26 10:41:29 0D9514850CC3A99A6600643F2888858B 112064 ----a-w- C:\Windows\System32\consent.exe 2015-07-26 10:41:20 BBA5CB528CB7482E118D0FEAF808987A 17856 ----a-w- C:\Windows\System32\CompatTelRunner.exe 2015-07-26 10:41:05 B4834F08230A2EB7F498DE4E5B6AB814 74240 ----a-w- C:\Windows\SysWOW64\fsutil.exe 2015-07-26 10:41:05 6804A0B4AAF1F65277FB8A58DE40EABC 96768 ----a-w- C:\Windows\System32\fsutil.exe 2015-07-26 10:37:26 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\System32\spoolsv.exe 2015-07-26 10:37:26 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe 2015-07-23 18:40:17 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Windows\Temp\AC3DF6DB-7785-48DF-8A52-F20300825C1F\DismHost.exe === C: other files == 2015-07-26 10:42:48 C4EA3D63E8BF077ECD1E93BF6556AE99 3207168 ----a-w- C:\Windows\System32\win32k.sys 2015-07-26 10:41:49 21AF322605D8C7F2A627C22634D1C9C9 290816 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2015-07-26 10:41:48 45A03A0B6461EFBEE77E0A6AC2816EDA 129024 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2015-07-26 10:41:48 1877EB1495CFBDAB27D6A32F6DDF3818 159232 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2015-07-26 10:41:38 7A7328E427694CC7244235C3BC299F80 155584 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-07-26 10:41:37 C0A6C3D6E02B61B5D100FE17306C276F 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-07-26 10:41:05 FED648B01349A3C8395A5169DB5FB7D6 91648 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2015-07-26 10:41:05 DAB0E87525C10052BF65F06152F37E4A 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys 2015-07-26 10:41:05 D4121AE6D0C0E7E13AA221AA57EF2D49 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys 2015-07-26 10:41:05 AAAF44DB3BD0B9D1FB6969B23ECC8366 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys 2015-07-26 10:41:05 540DAF1CEA6094886D72126FD7C33048 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys 2015-07-26 10:41:05 0A92CB65770442ED0DC44834632F66AD 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys 2015-07-25 16:43:14 AEA91F7486B2E3C3F89998FFDB442424 1022260 ----a-w- C:\Users\Hugo\Downloads\msvcp120x64.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Desktop Disc Tool"="C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickSet"="C:\Program Files\Dell\QuickSet\QuickSet.exe" ==== Startup Folders ====================== 2015-07-08 12:22:09 1696 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetPoint.lnk ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.dell.com" "Default_Page_URL"="http://www.dell.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.dell.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hugo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GNVGLWRO will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=4263 folders=573 265318785 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Hugo\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Hugo\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found "C:\Users\Hugo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GNVGLWRO" not found ==== EOF on ma 27/07/2015 at 20:42:32,85 ======================