Zoek.exe v5.0.0.1 Updated 06-October-2015 Tool run by Rossi930 on do 08-10-2015 at 8:56:18,36. Microsoft Windows 10 Home 10.0.10240 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Rossi930\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-06-09-081439.log 28468 bytes C:\zoek-results2015-06-11-182740.log 60748 bytes ==== Empty Folders Check ====================== C:\Program Files\Common Files\AV deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\UpdatusUser\AppData\LocalLow deleted successfully C:\Users\Rossi930\AppData\Local\NetworkTiles deleted successfully C:\Users\Rossi930\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== "Windows Live Essentials" "Windows Live Mail" ????? Windows Live ?????? ??????? ?????? Windows Live ???????? ?????????? Windows Live ?????????? ?????????? (????????????? ??????) ??????????? ???????????? AllShare Framework DMS ANT Drivers Installer x64 AVG 2015 AVG Web TuneUp Battery Calibration BlueStacks App Player BurnRecovery CyberLink PowerDVD 10 CycloAgent D3DX10 Definition Update for Microsoft Office 2010 (KB3085525) 64-Bit Edition EA SPORTST FIFA 15 Elevated Installer Foto-galerija Fotoattelu galerija Fotogal‚ria Fotogalerie Fotogalerii Fotogalerija Fotogalleri Fotogalleriet Fotograf Galerisi Fot¢t r Galeria de Fotografias Galeria de Fotos Galer¡a de fotos Galeria fotografii Galerie de photos Galerie foto Galerija fotografija Garmin City Navigator Europe NT 2015.40 Garmin Communicator Plugin Garmin Communicator Plugin x64 Garmin Express Garmin Express Tray Google Chrome Google Toolbar for Internet Explorer Google Update Helper GrabIt 1.7.3 Beta (build 1010) Hitman: Sniper Challenge Hybrid Power Intel(R) Manageability Engine Firmware Recovery Agent Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel© Trusted Connect Service Client Java 8 Update 51 (64-bit) Java 8 Update 60 Java Auto Updater Junk Mail filter update K-Lite Codec Pack 9.3.0 (Basic) KB9X Radio Switch Driver KLM Metro: Last Light (c) Deep Silver version 1 Microsoft Application Error Reporting Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 32-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 32-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Movie Maker MSI Remind Manager MSI Social Media Collection MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 NVIDIA-configuratiescherm 353.62 NVIDIA Graphics Driver 311.48 NVIDIA HD Audio Driver 1.3.23.1 NVIDIA Install Application NVIDIA Optimus 1.11.3 NVIDIA PhysX NVIDIA PhysX System Software 9.12.1031 NVIDIA Update 1.11.3 NVIDIA Update Components Origin Photo Common Photo Gallery Poczta uslugi Windows Live Podstawowe programy Windows Live Polar Daemon Polar WebSync Posta Windows Live Qualcomm Atheros Bluetooth Suite (64) Qualcomm Atheros Killer Network Manager Raccolta foto Realtek High Definition Audio Driver Realtek PCIE Card Reader S?????? f?t???af??? Samsung Link 2.0.0.1503181422 SCM Security Update for Microsoft Excel 2010 (KB3085526) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2598244) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2956073) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2965310) 64-Bit Edition Security Update for Microsoft Office 2010 (KB3054848) 64-Bit Edition Security Update for Microsoft Office 2010 (KB3054965) 64-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition Security Update for Microsoft Visio 2010 (KB3054876) 64-Bit Edition Security Update for Microsoft Word 2010 (KB2553428) 64-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition Skype Click to Call SkypeT 7.8 Sound Blaster Cinema Spotify Spotnet SpyHunter Steam Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Super-Charger Synaptics Pointing Device Driver Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD UltraISO Premium V9.52 Update for Microsoft Access 2010 (KB2965300) 64-Bit Edition Update for Microsoft Excel 2010 (KB2956084) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2881026) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition Update for Microsoft Office 2010 (KB2553347) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589318) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition Update for Microsoft Office 2010 (KB2965301) 64-Bit Edition Update for Microsoft Office 2010 (KB3054873) 64-Bit Edition Update for Microsoft Office 2010 (KB3054962) 64-Bit Edition Update for Microsoft Office 2010 (KB3054964) 64-Bit Edition Update for Microsoft Office 2010 (KB3054977) 64-Bit Edition Update for Microsoft Office 2010 (KB3055042) 64-Bit Edition Update for Microsoft Office 2010 (KB3055047) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2965297) 64-Bit Edition Update for Microsoft Outlook 2010 (KB3085522) 64-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB3085513) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 64-Bit Edition Update for Microsoft Word 2010 (KB3085518) 64-Bit Edition Uplay Valokuvavalikoima VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) Virtual COM Port Driver Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live Posta Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Liven peruspaketti Windows Liven s„hk”posti WinRAR 5.01 (64-bit) ==== Running Processes ====================== C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe C:\Program Files (x86)\AVG\AVG2015\avgfws.exe c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\SCM\MSIService.exe C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe C:\Program Files (x86)\Polar\Daemon\polard.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\ToolbarUpdater.exe C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\loggingserver.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Rossi930\AppData\Roaming\Spotify\SpotifyWebHelper.exe C:\Program Files (x86)\Steam\Steam.exe C:\Program Files (x86)\Steam\bin\steamwebhelper.exe C:\Program Files (x86)\Common Files\Steam\SteamService.exe C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe C:\Users\Rossi930\AppData\Roaming\Spotify\SpotifyCrashService.exe C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe C:\Program Files (x86)\MSI\KLM\KLM.exe C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Shared files\brs.exe C:\Program Files (x86)\BlueStacks\HD-Agent.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\AVG Web TuneUp\vprot.exe C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Rossi930\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.1.8 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "vProt"=- ==== Deleting Files \ Folders ====================== C:\Users\Rossi930\AppData\Local\AVG Web TuneUp deleted C:\Program Files\AVG Web TuneUp deleted C:\PROGRA~3\AVG Web TuneUp deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\AVG Secure Search deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted "C:\WINDOWS\Syswow64\Windows.Devices.Midi.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Devices.WiFi.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Gaming.Input.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.FaceAnalysis.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Import.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.MediaControl.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Speech.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Speech.UXRes.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Streaming.ps.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Networking.Connectivity.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Immersive.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Input.Inking.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Xaml.Maps.dll" not deleted "C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe" deleted "C:\Program Files (x86)\AVG Web TuneUp\icudt.dll" deleted "C:\Program Files (x86)\AVG Web TuneUp\libcef.dll" deleted "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" deleted "C:\PROGRA~2\AVG Web TuneUp\avgcefrend.exe" deleted "C:\PROGRA~2\AVG Web TuneUp\icudt.dll" deleted "C:\PROGRA~2\AVG Web TuneUp\libcef.dll" deleted "C:\PROGRA~2\AVG Web TuneUp\vprot.exe" deleted "C:\Program Files (x86)\AVG Web TuneUp\locales\en-US.pak" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\40.1.8\avgdttbx.dll" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll" deleted "C:\PROGRA~2\AVG Web TuneUp\locales\en-US.pak" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.1.8\avgdttbx.dll" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll" deleted "C:\Program Files (x86)\AVG Web TuneUp" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search" deleted "C:\PROGRA~2\AVG Web TuneUp" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted "C:\Program Files (x86)\AVG Web TuneUp\locales" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\40.1.8" deleted "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8" deleted "C:\PROGRA~2\AVG Web TuneUp\locales" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.1.8" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.1.8" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 16272 MB CPU Info: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz CPU Speed: 2396,5 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | NVIDIA GeForce GTX 780M | NVIDIA GeForce GTX 780M | NVIDIA GeForce GTX 780M | NVIDIA GeForce GTX 780M Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Killer e2200 Gigabit Ethernet Controller (NDIS 6.30) | Killer Wireless-N 1202 (2.4GHz and 5GHz) | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 2x (E: | F: | ) E: TSSTcorpBDDVDW SN-506BB | F: EZBSYS ISO CDVD DRIVE Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 236,7GB | D: 679,8GB Hard Disks - Free: C: 108,6GB | D: 560,6GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | MSI_NB - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: Micro-Star International Co., Ltd. MS-1763 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Google Chrome 45.0.2454.101 Internet Explorer Version: 11.0.10240.16431 Google Chrome version: 45.0.2454.101 Sun Java version: 1.8.0_60 (32-bit) Sun Java version: 1.8.0_60 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Rossi930\AppData\Local\Temp ==== ====== Java Cache ===== 2015-09-23 11:35:42 5A6851D75E54BA3BB2BFE823B5E810C8 3863 ----a-w- C:\Users\Rossi930\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\3a3d3f06-202005bc ====== C:\WINDOWS\SysWOW64 ===== 2015-10-08 06:24:34 1F3B2936EC9E7865DB9B1AA52D895F97 422072 ----a-w- C:\WINDOWS\SysWOW64\SynCom.dll 2015-10-06 11:11:43 D5B3690D367EC7EF2AC7FC48B854D1CC 178152 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-06 11:11:43 5BACD68B116CAA67B71F4F9DB500A47B 812008 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-10-01 11:11:50 96CC96E8D16E315148047DFEB31EEEE9 13027840 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-10-01 11:11:50 5780FAC582AF72AF39D461336E23D39C 18806272 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2015-10-01 11:11:49 00A63F21DCEF7D6D58BB73C594C6C75F 19325440 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2015-10-01 11:11:48 3277E503E6EA72D19CDC16501FD151BA 5120056 ----a-w- C:\WINDOWS\SysWOW64\windows.storage.dll 2015-10-01 11:11:47 2DA15A53E965A27A3D5CF99E3CCC430A 6101504 ----a-w- C:\WINDOWS\SysWOW64\mos.dll 2015-10-01 11:11:46 08D6065A1D6D007C77A688271D915B00 5079552 ----a-w- C:\WINDOWS\SysWOW64\BingMaps.dll 2015-10-01 11:11:44 8E2D23AB73A5276FC7CDE134B06F0C03 5454848 ----a-w- C:\WINDOWS\SysWOW64\Chakra.dll 2015-10-01 11:11:44 19DFBB25AB67A2F4D23F08A7D765E802 2154808 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2015-10-01 11:11:43 EB7E8B15015C784D8852292206EF1461 1918464 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-10-01 11:11:43 A66B5D22B883373A44764C003078A828 2646528 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-10-01 11:11:41 F28E047EF8A68C586F177A3DD625831C 3579904 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2015-10-01 11:11:41 BCCB55B18CE7054BA288FFEB27BA6F54 1766952 ----a-w- C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-10-01 11:11:41 73FC0143E518D8DB7AFE9675F4AF8063 2207232 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2015-10-01 11:11:40 2570B5FA73B119C16E0E721265126C3A 2446648 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2015-10-01 11:11:39 47F3B89782076037F328AEC18245D4B1 962400 ----a-w- C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-10-01 11:11:38 EE8FDC90138DD93AA6B1ECA831D9D3CE 1162240 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-10-01 11:11:38 DFAE92F5EF58FF29E81D951B2BDF45B8 1104384 ----a-w- C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-10-01 11:11:38 C637D94084069A10759E53F79D5DC4C5 899584 ----a-w- C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-10-01 11:11:38 776339B81E632F579AB1EC6EE503A9C0 58368 ----a-w- C:\WINDOWS\SysWOW64\usoapi.dll 2015-10-01 11:11:38 6FA73C45D51E7909C68FE5A113D5585F 928256 ----a-w- C:\WINDOWS\SysWOW64\Unistore.dll 2015-10-01 11:11:37 DAFFF5B7F43F88907A21996E71812D0C 764416 ----a-w- C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-10-01 11:11:37 BE36E4024EABE75FEF529553E023AEF8 646672 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2015-10-01 11:11:36 F69835A120E9627327ECE984D2AC87EA 828928 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-10-01 11:11:36 001D3D691DD268165A3EE49C69078054 658528 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll 2015-10-01 11:11:35 E03EC1BA7B6061620367F19249705D1F 625152 ----a-w- C:\WINDOWS\SysWOW64\ContactApis.dll 2015-10-01 11:11:35 807178C85CF6375FAB2FE42395FE94D7 677888 ----a-w- C:\WINDOWS\SysWOW64\MapControlCore.dll 2015-10-01 11:11:35 4B5286A021D8CA64BABB07D7B9739AF4 512000 ----a-w- C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-10-01 11:11:34 F65307E09D4807EDE95D1016CAF42DAD 587264 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-10-01 11:11:34 F38B52333E0C93A1C55323719103783B 1357888 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2015-10-01 11:11:34 E0F11A1D1C7482BBD76448E6FD3AA327 454512 ----a-w- C:\WINDOWS\SysWOW64\directmanipulation.dll 2015-10-01 11:11:34 A5F48E7E55B076996B67F8F32C9D6D33 2639872 ----a-w- C:\WINDOWS\SysWOW64\esent.dll 2015-10-01 11:11:33 78FBC37D02A39402B685B7E95A83EFE8 428128 ----a-w- C:\WINDOWS\SysWOW64\WWanAPI.dll 2015-10-01 11:11:33 6740B4C8B8B3474F086B8AEBDE4861D8 217088 ----a-w- C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-10-01 11:11:33 60242DBD3FCFA6D4163B6C29D76295B7 336384 ----a-w- C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-10-01 11:11:33 00682184457B97EDA4C0C157331A7495 454656 ----a-w- C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-10-01 11:11:32 F4E25F21AC509AEE3617E9DBA086318E 434376 ----a-w- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2015-10-01 11:11:32 D124F89BBDCFC24A04F159D913852DDC 701952 ----a-w- C:\WINDOWS\SysWOW64\JpMapControl.dll 2015-10-01 11:11:32 53FC0EFBE44591CA16BE1A4309F689DC 253440 ----a-w- C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-10-01 11:11:32 258A4F9A2C91C6C6E36775CDCCB4AFE1 441168 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2015-10-01 11:11:32 1BFDE0B4AC3E0EB180FBC32A22B8A8B4 464896 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-10-01 11:11:32 1B102F53BD7209D712BBE96E9FAA32CA 313856 ----a-w- C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-10-01 11:11:31 FFCE532A61DD7518BE997267940D7AE4 466432 ----a-w- C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-10-01 11:11:30 DC7C56F01B96CA5FDB99D241D4E067FC 311808 ----a-w- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2015-10-01 11:11:30 99CEBD54809E76C9CD1839B0492CCF5E 1895568 ----a-w- C:\WINDOWS\SysWOW64\hevcdecoder.dll 2015-10-01 11:11:30 63900F897A025DDFE83737A260C250A5 371712 ----a-w- C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2015-10-01 11:11:30 037908D9C8C689490978BFF72532A361 195072 ----a-w- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-10-01 11:11:29 1253135EC3029F79601EDCFF55ADC9FC 508248 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2015-10-01 11:11:28 535DCD92E0C7D52A0F1237AF3DCFAAA9 613376 ----a-w- C:\WINDOWS\SysWOW64\TokenBroker.dll 2015-10-01 11:11:27 3C9FDBB0963B18C9D60B54F8AF81DF11 268800 ----a-w- C:\WINDOWS\SysWOW64\ncryptprov.dll 2015-10-01 11:11:26 E856065895D1133F5457BCDB4452A8D3 74880 ----a-w- C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2015-10-01 11:11:26 DBAAA86B138D2F8B7EDF7A3ED7ADF8B3 557568 ----a-w- C:\WINDOWS\SysWOW64\ChatApis.dll 2015-10-01 11:11:26 399BED6CD8A3AA7C7CF48A8E55FB4463 579584 ----a-w- C:\WINDOWS\SysWOW64\AppointmentApis.dll 2015-10-01 11:11:26 1A917EA73F9B46F31F8E0BA3B44FDD8F 525312 ----a-w- C:\WINDOWS\SysWOW64\EmailApis.dll 2015-10-01 11:11:25 F2BCE0CF75943E18852148B2875F632B 41472 ----a-w- C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll 2015-10-01 11:11:22 C5FBD8DDCD35F7F1242F3587681A2654 193024 ----a-w- C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2015-10-01 11:11:22 8B4E59B0B71ECE3CF6234DFAAE0A05DF 172032 ----a-w- C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll 2015-10-01 11:11:22 80D2AE15F53154CEE71C9E3C131FBB9B 407608 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2015-10-01 11:11:22 6C8012BEB3FF973020E9429CBB6C1696 195584 ----a-w- C:\WINDOWS\SysWOW64\UserDataAccountApis.dll 2015-10-01 11:11:21 D0A5D8270FF8606D2B445C4359A8FCEB 328704 ----a-w- C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-10-01 11:11:21 C45DE57A004A5BD637923BB2EF410E19 131072 ----a-w- C:\WINDOWS\SysWOW64\CallHistoryClient.dll 2015-10-01 11:11:21 9E8E29389AD2E2C31E65400C5BBC06EC 574464 ----a-w- C:\WINDOWS\SysWOW64\Chakradiag.dll 2015-10-01 11:11:21 54DB5459A808BB03FDEA98325530B946 145920 ----a-w- C:\WINDOWS\SysWOW64\mdmregistration.dll 2015-10-01 11:11:20 FB3B46B0FFCEDEED7BB5E74D82895118 1171456 ----a-w- C:\WINDOWS\SysWOW64\netcenter.dll 2015-10-01 11:11:20 638747E5050BEB4F5DF9DDE8AC418296 473088 ----a-w- C:\WINDOWS\SysWOW64\wpnapps.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-10-08 06:50:01 F50D5F0610EA66E0167E2322993006C2 16148 ----a-w- C:\WINDOWS\Sysnative\ROSSI925_Rossi930_HistoryPrediction.bin 2015-10-08 06:24:34 CAA8B781E5DC05733451BFC1DEB7D220 269000 ----a-w- C:\WINDOWS\Sysnative\SynTPAPI.dll 2015-10-08 06:24:34 9CF27EB30746F12010054E25C001C013 769736 ----a-w- C:\WINDOWS\Sysnative\SynCOM.dll 2015-10-01 11:11:52 CD8169F2DE6AFF7CC56A596BCC2326E8 24595456 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2015-10-01 11:11:52 35DAE99CA54E05DE5EE404EC20DD073F 16708608 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2015-10-01 11:11:51 B91D329CB2EF570B6A7CEB409625DD32 21875712 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2015-10-01 11:11:47 DE82BD1C35547D04241DB1DB3D4808E0 6487248 ----a-w- C:\WINDOWS\Sysnative\windows.storage.dll 2015-10-01 11:11:47 7ED8EF17B3A6C69DA6A0EC90CFBB4ABB 7055872 ----a-w- C:\WINDOWS\Sysnative\BingMaps.dll 2015-10-01 11:11:47 537826436B921256BA9055F65A97ED91 7569408 ----a-w- C:\WINDOWS\Sysnative\mos.dll 2015-10-01 11:11:46 E130DF660C8E4C6ED1255F2276CC2802 7523328 ----a-w- C:\WINDOWS\Sysnative\Chakra.dll 2015-10-01 11:11:46 9D4A09AB97C2F0EC6BFA6B54AA2BA239 3781120 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll 2015-10-01 11:11:45 78ECC7FEDA1790706A8ED7D864F754FC 2464216 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2015-10-01 11:11:44 C9C6D1C3171A866F10C7D58777E9638A 2417664 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2015-10-01 11:11:44 6FA4BB1AA0C18F5CFB96F228376BD249 2494712 ----a-w- C:\WINDOWS\Sysnative\CoreUIComponents.dll 2015-10-01 11:11:44 6D6E7210CBD7C0AA2130F3F3F14D32A5 2824248 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2015-10-01 11:11:43 E5D86250453B33900666D92ED1A92ABE 2740224 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2015-10-01 11:11:43 33F308FD702D507A7BB28BF2E80C2717 3248640 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2015-10-01 11:11:40 87E5D206DCDD7E8DB7A597DA59FB9A07 1423872 ----a-w- C:\WINDOWS\Sysnative\UserDataService.dll 2015-10-01 11:11:40 68DE1997977CD3A86D5F8D0FD23056EA 1563392 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2015-10-01 11:11:40 5252CE15DB06AB5A796EBC361EAC1528 8020816 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2015-10-01 11:11:40 3C096082A9232B7CEE4653B9C9031769 2228736 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2015-10-01 11:11:40 390EAAB81E5C1DB0FD4920796C74AB48 1290240 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Shell.dll 2015-10-01 11:11:40 223A5048FE554992D8E7D0195D57AA19 1397088 ----a-w- C:\WINDOWS\Sysnative\LicenseManager.dll 2015-10-01 11:11:40 11AE1E4065376FCD89C0A37C5953164E 4791296 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2015-10-01 11:11:39 E41C778D6208A51F57557523E2B479B5 1205248 ----a-w- C:\WINDOWS\Sysnative\Unistore.dll 2015-10-01 11:11:39 85AC4CA67BECC08CBC655A8D8919B23B 1331200 ----a-w- C:\WINDOWS\Sysnative\UIAutomationCore.dll 2015-10-01 11:11:39 52C3440B5098BFB99D91E869A26ECB30 1213440 ----a-w- C:\WINDOWS\Sysnative\RemoteNaturalLanguage.dll 2015-10-01 11:11:39 10FC981B716CCC25CDD5D306EBBC022D 1276416 ----a-w- C:\WINDOWS\Sysnative\wifinetworkmanager.dll 2015-10-01 11:11:39 0968D575D9108497A6DC37749D4A6C4F 2093056 ----a-w- C:\WINDOWS\Sysnative\wlidsvc.dll 2015-10-01 11:11:39 031080A610C302B0279A267411EDB7E3 2226688 ----a-w- C:\WINDOWS\Sysnative\NetworkMobileSettings.dll 2015-10-01 11:11:38 D23F211E1AA0787EFEC373D172D4A1C2 1181696 ----a-w- C:\WINDOWS\Sysnative\wwansvc.dll 2015-10-01 11:11:38 C5E2FBB19641860794CEE2B580192732 966416 ----a-w- C:\WINDOWS\Sysnative\twinapi.appcore.dll 2015-10-01 11:11:38 AF34122A1B595218036B4049D802B470 1203712 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll 2015-10-01 11:11:38 8AFDD74F2DC5BAD9B2215FB19DB65240 809352 ----a-w- C:\WINDOWS\Sysnative\CoreMessaging.dll 2015-10-01 11:11:38 444016D88142B82366EC516C3CF714E0 2178560 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2015-10-01 11:11:38 36E46F26B5291A7D324466602A88947B 784136 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2015-10-01 11:11:37 DE8B9EE2E86532686497FE5A1E44E90D 467968 ----a-w- C:\WINDOWS\Sysnative\MBMediaManager.dll 2015-10-01 11:11:37 DDCBE4B09287CF224B63015F9C6BD31F 1295712 ----a-w- C:\WINDOWS\Sysnative\wpx.dll 2015-10-01 11:11:37 B70FF53144AC4B3C7D98BFB7D7C239BD 2236416 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2015-10-01 11:11:37 A51AC21B1F31FD7F4EC2811E33572AFC 859136 ----a-w- C:\WINDOWS\Sysnative\modernexecserver.dll 2015-10-01 11:11:37 974C92640A3DAA475E15E3C79299B690 1795072 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll 2015-10-01 11:11:37 891C83BE8BA62B7547B9A6576A360C71 1010176 ----a-w- C:\WINDOWS\Sysnative\RDXService.dll 2015-10-01 11:11:37 7BCC113B00736AA930DAA49CA7858808 856576 ----a-w- C:\WINDOWS\Sysnative\ContactApis.dll 2015-10-01 11:11:37 7505ACFD9362DA74FEB623F21FE3B391 1601536 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Speech.dll 2015-10-01 11:11:37 405BD80834094E297664CE0A7EE70EF9 2987520 ----a-w- C:\WINDOWS\Sysnative\esent.dll 2015-10-01 11:11:36 B82363129E8554D58B95A6935B83891D 781976 ----a-w- C:\WINDOWS\Sysnative\mfds.dll 2015-10-01 11:11:36 B7927A1D40BD17BC963E9353DBB36CD7 869376 ----a-w- C:\WINDOWS\Sysnative\MapControlCore.dll 2015-10-01 11:11:36 3478670E8646CC536E1EF21F077F4DD6 2156400 ----a-w- C:\WINDOWS\Sysnative\hevcdecoder.dll 2015-10-01 11:11:36 2C82D9E55432915A68A609008BDEF41A 1563472 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2015-10-01 11:11:35 F9BD360A4799BB54A01692940C46CA2B 537080 ----a-w- C:\WINDOWS\Sysnative\WWanAPI.dll 2015-10-01 11:11:35 D4E92C0C0F9C5054B03D67A3C0B41961 555768 ----a-w- C:\WINDOWS\Sysnative\directmanipulation.dll 2015-10-01 11:11:35 C8C5DFF028EA28D7846E95D8E5461794 570880 ----a-w- C:\WINDOWS\Sysnative\MbaeApi.dll 2015-10-01 11:11:35 754BC3E56FF301B9EE8A764932D02124 513536 ----a-w- C:\WINDOWS\Sysnative\ngcsvc.dll 2015-10-01 11:11:35 3A4A543F135DE9A06ABA9DF982D79DD7 526336 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2015-10-01 11:11:35 33FF0B7585F54C0F33C38F5DCAB1DA01 3586560 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2015-10-01 11:11:35 311F4D131C28DA12595132A35124E955 910848 ----a-w- C:\WINDOWS\Sysnative\SharedStartModel.dll 2015-10-01 11:11:34 D5AAA188C70146977CFEE8D128599F3F 378368 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll 2015-10-01 11:11:34 B3CD8B2CBC6E48B194116B28F72CDA67 408064 ----a-w- C:\WINDOWS\Sysnative\CredProvDataModel.dll 2015-10-01 11:11:34 9C2B0E3A21CECD14E20A848F0DE94B24 517632 ----a-w- C:\WINDOWS\Sysnative\NotificationController.dll 2015-10-01 11:11:34 684F1E1B5D07451B600EA3C3D728A534 281600 ----a-w- C:\WINDOWS\Sysnative\VEEventDispatcher.dll 2015-10-01 11:11:34 5E010B486F7FB28D9B79AAC471FE484F 476760 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2015-10-01 11:11:33 A40484AC27EE08DBE7F8DA5E1F6651ED 591360 ----a-w- C:\WINDOWS\Sysnative\wcmsvc.dll 2015-10-01 11:11:33 913E47FCD3B43EC27215F90884915CAF 780288 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll 2015-10-01 11:11:33 8D23F0819A00C547814409B734DD3747 503808 ----a-w- C:\WINDOWS\Sysnative\tileobjserver.dll 2015-10-01 11:11:33 7614E6E6B53E8FE6E6B8A6D6D3CC2018 1067520 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2015-10-01 11:11:33 5424E49F79EB68E5F10439405101A09B 627712 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.dll 2015-10-01 11:11:32 D907DFF972354542D5B0B4414B308B75 312832 ----a-w- C:\WINDOWS\Sysnative\SensorsApi.dll 2015-10-01 11:11:32 AE8B34FB5B54025E9C6895A45947A515 796160 ----a-w- C:\WINDOWS\Sysnative\TokenBroker.dll 2015-10-01 11:11:32 509FF13E5C4FD63846FCA01A5ED912DB 521728 ----a-w- C:\WINDOWS\Sysnative\PsmServiceExtHost.dll 2015-10-01 11:11:32 37B5ECB8C390D9FD5A5BB2FFB7294B9E 553808 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2015-10-01 11:11:32 363F3F99863C2BB8612C9133E45BF3E6 387584 ----a-w- C:\WINDOWS\Sysnative\LockAppBroker.dll 2015-10-01 11:11:32 1CD8BB41436524A2748A77005E5DEB8A 579072 ----a-w- C:\WINDOWS\Sysnative\winlogon.exe 2015-10-01 11:11:31 EA8B28FFF774F7C7862C8746E1FDECF6 273920 ----a-w- C:\WINDOWS\Sysnative\Windows.ApplicationModel.LockScreen.dll 2015-10-01 11:11:31 D1AA97B30A9ED6F89DC3848C8BF53513 224256 ----a-w- C:\WINDOWS\Sysnative\KnobsCore.dll 2015-10-01 11:11:31 B9FC9E9B55C74557FEC004BF8B1184F4 359936 ----a-w- C:\WINDOWS\Sysnative\ncsi.dll 2015-10-01 11:11:31 506F9F526D42BB4C0A579CB78F923A48 483328 ----a-w- C:\WINDOWS\Sysnative\OneDriveSettingSyncProvider.dll 2015-10-01 11:11:31 157B1CABAF5201237EECA4FB0F34D822 403456 ----a-w- C:\WINDOWS\Sysnative\dmenrollengine.dll 2015-10-01 11:11:31 09247D43F19CAFEEFEBF6A32F3A1225F 118272 ----a-w- C:\WINDOWS\Sysnative\KnobsCsp.dll 2015-10-01 11:11:30 DAFEABE69E915A2374E13C6B24EF331F 690688 ----a-w- C:\WINDOWS\Sysnative\CellularAPI.dll 2015-10-01 11:11:30 C7503A49364DB2AF7A7DE177B233081F 1844736 ----a-w- C:\WINDOWS\Sysnative\workfolderssvc.dll 2015-10-01 11:11:30 86C0DEE6940878A1496CBBA856FF4E5B 584656 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2015-10-01 11:11:30 7910232E31799A576F2509DA92CB8813 928256 ----a-w- C:\WINDOWS\Sysnative\JpMapControl.dll 2015-10-01 11:11:30 49B00A59043431804A5BCB5E48F735B3 414208 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentClient.dll 2015-10-01 11:11:30 2C144777278ECD6DFF4B5A90F742C1AA 346112 ----a-w- C:\WINDOWS\Sysnative\ngccredprov.dll 2015-10-01 11:11:30 194239DA484C7DB62E6773ABB5DD4463 269312 ----a-w- C:\WINDOWS\Sysnative\provengine.dll 2015-10-01 11:11:29 D7B28BF9E08128C5A8B89FFD5BEB6B88 465920 ----a-w- C:\WINDOWS\Sysnative\wwanconn.dll 2015-10-01 11:11:29 B31569B0E7A467D4050FA49CFCBFCEFA 204800 ----a-w- C:\WINDOWS\Sysnative\wcmcsp.dll 2015-10-01 11:11:29 887065722784FD70B880B0D900E4884D 185344 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll 2015-10-01 11:11:29 65A0B3477231CE37B09A719DBBB9FCF1 671232 ----a-w- C:\WINDOWS\Sysnative\WUDFx02000.dll 2015-10-01 11:11:29 41C0EC5B11375F9CA045AFEF1EB75D5F 366592 ----a-w- C:\WINDOWS\Sysnative\wuuhext.dll 2015-10-01 11:11:28 D37063C5B492B7B4F26D24C62167C8BE 137728 ----a-w- C:\WINDOWS\Sysnative\VEStoreEventHandlers.dll 2015-10-01 11:11:28 CF2B0ADDBA61B3B9FA339118FC742032 1812480 ----a-w- C:\WINDOWS\Sysnative\pnidui.dll 2015-10-01 11:11:28 99E14B1011FC214DA89D9559AD816B3A 243760 ----a-w- C:\WINDOWS\Sysnative\mfps.dll 2015-10-01 11:11:28 95EC1A9A6926F5091957F6CA52A34F21 162304 ----a-w- C:\WINDOWS\Sysnative\SubscriptionMgr.dll 2015-10-01 11:11:28 88E6A429944544346EC3AE1FD7D24BCC 149504 ----a-w- C:\WINDOWS\Sysnative\tetheringservice.dll 2015-10-01 11:11:28 85146ABCB1EF298D1FF6EE4D5541788C 832512 ----a-w- C:\WINDOWS\Sysnative\MapsStore.dll 2015-10-01 11:11:28 7D2165B4B27E11B3E557DB26CAA2BAFF 1382400 ----a-w- C:\WINDOWS\Sysnative\win32kbase.sys 2015-10-01 11:11:28 65F1F4DBB4A6FA971BF9F00129F452A0 494592 ----a-w- C:\WINDOWS\Sysnative\StoreAgent.dll 2015-10-01 11:11:28 38F08B82ADEEA1003B4A5177BB5366B3 347136 ----a-w- C:\WINDOWS\Sysnative\ncryptprov.dll 2015-10-01 11:11:28 327DA4A4DE4E9BECF2C16967366C74E2 186880 ----a-w- C:\WINDOWS\Sysnative\cloudAP.dll 2015-10-01 11:11:28 1547E4F51567E522CA96BC367CC9D295 590336 ----a-w- C:\WINDOWS\Sysnative\MessagingDataModel2.dll 2015-10-01 11:11:27 D61C3ED7C5F0D1B5BD9B351FEC381D57 120832 ----a-w- C:\WINDOWS\Sysnative\omadmclient.exe 2015-10-01 11:11:27 B8401703E619E7BD7B5A659306A9BFE6 84480 ----a-w- C:\WINDOWS\Sysnative\MDMAppInstaller.exe 2015-10-01 11:11:27 9BD143B8F803AC81F701BA0B8486212D 752640 ----a-w- C:\WINDOWS\Sysnative\ChatApis.dll 2015-10-01 11:11:27 888513B8C53C7574A9CC14195F5BFCA3 81488 ----a-w- C:\WINDOWS\Sysnative\acmigration.dll 2015-10-01 11:11:27 7DDB731AD3E9F9F91D62E991BD52814F 79872 ----a-w- C:\WINDOWS\Sysnative\HttpsDataSource.dll 2015-10-01 11:11:27 2481E9E8858AD0A223FA3110916EF0C1 6572032 ----a-w- C:\WINDOWS\Sysnative\wwanmm.dll 2015-10-01 11:11:27 02077F66F8CF2F1FD58403D371482B01 106496 ----a-w- C:\WINDOWS\Sysnative\KeywordDetectorMsftSidAdapter.dll 2015-10-01 11:11:26 C1E6FBEBD285CABA0985533A56144F5F 288256 ----a-w- C:\WINDOWS\Sysnative\PimIndexMaintenance.dll 2015-10-01 11:11:26 B171608F20705895726DE86B34D1FBAC 95744 ----a-w- C:\WINDOWS\Sysnative\LocationWiFiAdapter.dll 2015-10-01 11:11:26 71107775BE0E612150F032CE21DD9C7C 88384 ----a-w- C:\WINDOWS\Sysnative\remoteaudioendpoint.dll 2015-10-01 11:11:26 4A54273338073939384A14BF0D7AFC14 88064 ----a-w- C:\WINDOWS\Sysnative\ngckeyenum.dll 2015-10-01 11:11:26 334206DD8DA94B0AEBC46A3196888031 83968 ----a-w- C:\WINDOWS\Sysnative\DeviceEnroller.exe 2015-10-01 11:11:26 02707CF32272B726BB410E6717BBB7E8 446976 ----a-w- C:\WINDOWS\Sysnative\MapConfiguration.dll 2015-10-01 11:11:25 F1A6A22A63F380DFF28C55B11D688B0C 102304 ----a-w- C:\WINDOWS\Sysnative\omadmapi.dll 2015-10-01 11:11:25 EF3BBA8739757B470D0E49C8619A31C0 53760 ----a-w- C:\WINDOWS\Sysnative\Windows.Speech.Pal.dll 2015-10-01 11:11:25 AA38E0578EBAD030D4CB098A9F5E650B 720896 ----a-w- C:\WINDOWS\Sysnative\EmailApis.dll 2015-10-01 11:11:24 EBD5F0FDD3EBB6EE6F6EE524206AD0AE 26624 ----a-w- C:\WINDOWS\Sysnative\LicenseManagerShellext.exe 2015-10-01 11:11:24 D88952BD78157D66A0921B63F5DD0EC5 439296 ----a-w- C:\WINDOWS\Sysnative\LocationWebproxy.dll 2015-10-01 11:11:24 C92EBECB1E30E7E6006C0D8B4040C3F6 274944 ----a-w- C:\WINDOWS\Sysnative\syncutil.dll 2015-10-01 11:11:24 A5B7CAFA0327BCBC2FC6F1C9F95191CA 342016 ----a-w- C:\WINDOWS\Sysnative\LocationGeofences.dll 2015-10-01 11:11:23 DBA8FE1EAA344106C334E193D3D57B66 73728 ----a-w- C:\WINDOWS\Sysnative\wwancfg.dll 2015-10-01 11:11:23 77C8CD0AACC1D059EDF6E91920D11550 421888 ----a-w- C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll 2015-10-01 11:11:23 14503C58C1528D83FB2328840784EC78 621056 ----a-w- C:\WINDOWS\Sysnative\enterprisecsps.dll 2015-10-01 11:11:23 109F35CCD84FE9AD1E3B6A2953CF2C9D 685568 ----a-w- C:\WINDOWS\Sysnative\AppointmentApis.dll 2015-10-01 11:11:22 F57FE0BD8BD7E1F8088FE18D0FD7BEE9 501008 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2015-10-01 11:11:22 E6337423BD19DD12EB6777934B57E0F4 176640 ----a-w- C:\WINDOWS\Sysnative\LocationPeIP.dll 2015-10-01 11:11:22 AC180D981BD23443793F7AA71BBE344A 599552 ----a-w- C:\WINDOWS\Sysnative\wpnapps.dll 2015-10-01 11:11:22 959695FD137FF0DEFC6152AAB03AA3D6 1216512 ----a-w- C:\WINDOWS\Sysnative\netcenter.dll 2015-10-01 11:11:22 6C9DDD0611379864596D2A8DE7B1870C 504320 ----a-w- C:\WINDOWS\Sysnative\DataSenseHandlers.dll 2015-10-01 11:11:22 43A1B8B43CA4E213E0FD920F2FD6BCBA 267776 ----a-w- C:\WINDOWS\Sysnative\Windows.Internal.Management.dll 2015-10-01 11:11:22 07B5710393558DD734647D5F2F020647 215552 ----a-w- C:\WINDOWS\Sysnative\LocationCrowdsource.dll 2015-10-01 11:11:22 02954F6B3389EF56088EF1C99B6105BA 202240 ----a-w- C:\WINDOWS\Sysnative\accountaccessor.dll 2015-10-01 11:11:21 A0DBB9386BEA8DA1A159C2A2E07081A3 856576 ----a-w- C:\WINDOWS\Sysnative\MPSSVC.dll 2015-10-01 11:11:21 9170F95C48D44BABB9546CBDC2D4CEBA 257024 ----a-w- C:\WINDOWS\Sysnative\UserDataAccountApis.dll 2015-10-01 11:11:21 5BA872CD68B18193FC82DFE125A15FC4 163840 ----a-w- C:\WINDOWS\Sysnative\CallHistoryClient.dll 2015-10-01 11:11:21 52E7F6343A99747CE5772B04FFCE00A3 771072 ----a-w- C:\WINDOWS\Sysnative\Chakradiag.dll 2015-10-01 11:11:21 3B397ED55AE652520503CCE0996B0D25 160256 ----a-w- C:\WINDOWS\Sysnative\enrollmentapi.dll 2015-10-01 11:11:21 3AED81953A08DA52C64F3D92D4A21CD8 223232 ----a-w- C:\WINDOWS\Sysnative\PhoneCallHistoryApis.dll 2015-10-01 11:11:20 EA1C2DAB8A63712B94897A58557B086C 371712 ----a-w- C:\WINDOWS\Sysnative\nlasvc.dll 2015-10-01 11:11:20 63D8A023148D8436D6CBA65E2B9ED56A 143360 ----a-w- C:\WINDOWS\Sysnative\provops.dll 2015-10-01 11:11:20 49213BF8E7EEE157F128C58D75043B09 68096 ----a-w- C:\WINDOWS\Sysnative\EnterpriseDesktopAppMgmtCSP.dll 2015-10-01 11:11:19 F0B43C550BD519423FB79A58A860CE0B 204288 ----a-w- C:\WINDOWS\Sysnative\LocationPeCell.dll 2015-10-01 11:11:19 ECA28C8F0FF34A2BD8311CBA2D35B143 121856 ----a-w- C:\WINDOWS\Sysnative\dmcsps.dll 2015-10-01 11:11:19 BBA571F40F08F967531573109F7FA95E 169984 ----a-w- C:\WINDOWS\Sysnative\mdmregistration.dll 2015-10-01 11:11:19 98986780B8D494326D28DCAB6D601450 154624 ----a-w- C:\WINDOWS\Sysnative\dmcertinst.exe 2015-10-01 11:11:19 5793FBBB1F120D1815A8348434ED236C 221184 ----a-w- C:\WINDOWS\Sysnative\LocationPeWiFi.dll 2015-10-01 11:11:19 562078FF6ED0C2B1C09078343437D03E 168960 ----a-w- C:\WINDOWS\Sysnative\mdmmigrator.dll 2015-10-01 11:11:18 F01743062DA74A24A0E7836289E33731 187904 ----a-w- C:\WINDOWS\Sysnative\provisioningcsp.dll 2015-10-01 11:11:18 E2AE190B76C27430E4E8258D0C44C79B 317440 ----a-w- C:\WINDOWS\Sysnative\configmanager2.dll 2015-10-01 11:11:18 C66E058599A44E0EEA95B3E0547345D2 30208 ----a-w- C:\WINDOWS\Sysnative\syncmlhook.dll 2015-09-30 09:21:33 98329675A2D21E744A0CE110A324BE7A 269000 ----a-w- C:\WINDOWS\Sysnative\SynTPCo36.dll 2015-09-25 07:16:36 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\Sysnative\RENCB4D.tmp 2015-09-25 07:16:16 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\Sysnative\REN7E08.tmp 2015-09-25 07:15:45 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\Sysnative\REN657.tmp ====== C:\WINDOWS\Sysnative\drivers ===== 2015-10-08 06:24:34 E3870E0BB400FEC0472A076E429177A1 42184 ----a-w- C:\WINDOWS\Sysnative\drivers\Smb_driver_AMDASF_Aux.sys 2015-10-08 06:24:34 DDEEEF52C76E2B553968C15431AA0E81 631992 ----a-w- C:\WINDOWS\Sysnative\drivers\SynTP.sys 2015-10-08 06:24:34 32041B411E510523B860C21CA56BFCFF 44216 ----a-w- C:\WINDOWS\Sysnative\drivers\Smb_driver_Intel_Aux.sys 2015-10-01 11:11:41 89C9C3745F270EF93988DA57BC6AA62B 1983824 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2015-10-01 11:11:41 7EBD20284AC9BF9F0A020B86769BB074 2432336 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2015-10-01 11:11:35 927AD29D7F91B9A0C5294932374DA15E 894256 ----a-w- C:\WINDOWS\Sysnative\drivers\Wdf01000.sys 2015-10-01 11:11:31 FDB239DBE2A14B572D21ABCEDC7BB5D0 505696 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2015-10-01 11:11:31 FCC211B0F46D831506D0D76539203899 929280 ----a-w- C:\WINDOWS\Sysnative\drivers\bthport.sys 2015-10-01 11:11:31 C08449092043601887A1743350888635 516448 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2015-10-01 11:11:31 5A1C6AFFF6946C5C21A27AE05084C0D1 332624 ----a-w- C:\WINDOWS\Sysnative\drivers\fastfat.sys 2015-10-01 11:11:29 B6A33DCEBE437F909615E89BA5FB1385 395088 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2015-10-01 11:11:27 854AF190F55E6D70EC65A85798F896E2 36352 ----a-w- C:\WINDOWS\Sysnative\drivers\buttonconverter.sys 2015-10-01 11:11:27 70469C8AC4AD367295E70CFDD81B754C 99664 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2015-10-01 11:11:26 FA5C94FB36625787063D04CF2F24E890 320000 ----a-w- C:\WINDOWS\Sysnative\drivers\portcls.sys 2015-10-01 11:11:25 616F40B897DA651221F86A1741E9609B 1168736 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2015-10-01 11:11:23 1434CA8A224655AD096D57DB24D3AA85 406864 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2015-10-01 11:11:23 004C66464D8FE76D5DA78BE6777D61AF 278352 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-09-25 07:16:19 -------- d-----w- C:\Program Files\Java ======= C:\PROGRA~2 ===== 2015-09-17 15:29:16 -------- d-----w- C:\PROGRA~2\Polar ======= C: ===== ====== C:\Users\Rossi930\AppData\Roaming ====== 2015-10-03 11:24:42 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\dcpsvc 2015-09-25 11:50:24 -------- d-----w- C:\Users\Rossi930\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotnet 2015-09-25 11:50:19 -------- d-----w- C:\Users\Rossi930\AppData\Local\SquirrelTemp 2015-09-13 10:28:25 -------- d-----w- C:\Users\Rossi930\AppData\Local\CycloAgent ====== C:\Users\Rossi930 ====== 2015-09-25 07:21:41 5318EBF4A4E3241B98E6685A993251E9 32928 ----a-w- C:\Users\Rossi930\Downloads\FlyordieJavaInstaller64 (3).exe 2015-09-25 07:15:54 5318EBF4A4E3241B98E6685A993251E9 32928 ----a-w- C:\Users\Rossi930\Downloads\FlyordieJavaInstaller64 (2).exe 2015-09-25 07:15:00 5318EBF4A4E3241B98E6685A993251E9 32928 ----a-w- C:\Users\Rossi930\Downloads\FlyordieJavaInstaller64 (1).exe 2015-09-25 07:14:58 5318EBF4A4E3241B98E6685A993251E9 32928 ----a-w- C:\Users\Rossi930\Downloads\FlyordieJavaInstaller64.exe 2015-09-17 15:29:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polar ====== C: exe-files == 2015-10-08 06:24:35 FFD1811A54CE16B3F25B84BCE4D88848 211640 ----a-w- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 2015-10-08 06:24:35 DEC2ECCAD1D3525086795ADC5A0CC5F5 247992 ----a-w- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe 2015-10-08 06:24:35 CAB89D27693A760A4AA964C534160572 1889464 ----a-w- C:\Program Files\Synaptics\SynTP\SynZMetr.exe 2015-10-08 06:24:35 ADC3DA6F3542CFAE421C4000EDD0AAD6 1899208 ----a-w- C:\Program Files\Synaptics\SynTP\Tutorial.exe 2015-10-08 06:24:35 3D28185F0CEA378914659DBA16217F58 3953336 ----a-w- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2015-10-08 06:24:34 D2FDBBD083C45D264CB00F37BCD338B8 1056968 ----a-w- C:\Program Files\Synaptics\SynTP\dpinst.exe 2015-10-08 06:24:34 AD1BF2E61EDF654CFAD5CED75F058549 319160 ----a-w- C:\Program Files\Synaptics\SynTP\InstNT.exe 2015-10-08 06:24:34 79570F721DD7B9372E6453D83A417272 1910984 ----a-w- C:\Program Files\Synaptics\SynTP\SynMood.exe 2015-10-08 05:55:21 9F1AE66D7954FE2E0909A5EBC6B94798 67072 ----a-w- C:\Program Files (x86)\Steam\bin\wow_helper.exe 2015-10-07 15:24:03 3288E4B22F70D5A24B0A24B6DD494692 587456 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00007fac\CoProc update.20034431.exe 2015-10-06 11:11:43 5BACD68B116CAA67B71F4F9DB500A47B 812008 ----a-w- C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-10-06 11:09:30 74CB3821F0E8636A15C4141BDDA7CA00 587000 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00007f86\CoProc update.20029353.exe 2015-10-04 17:41:35 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Rossi930\AppData\Local\Temp\25A5A28F-94DA-45E9-B903-00B32962CDB1\DismHost.exe 2015-10-04 11:16:45 D2ABBFF3371337947A2E42EAF22A08C0 22180240 ----a-w- C:\Windows\Temp\{7CF3121B-C4C1-41E4-9722-43BE72F59DC2}.exe 2015-10-01 13:52:09 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Rossi930\AppData\Local\Temp\9D96E3B3-B7BB-4D12-9CE8-BF20570E598A\DismHost.exe 2015-10-01 11:11:49 695DFBE0357DB32E4475F74053D021BC 7455056 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 2015-10-01 11:11:48 4A6E77B420F384AA8CB429904F7BF088 6263152 ----a-w- C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 2015-10-01 11:11:43 E19833B3E69A5B829AB97D5CBD3BF356 1876832 ----a-w- C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe 2015-10-01 11:11:40 5252CE15DB06AB5A796EBC361EAC1528 8020816 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-10-01 11:11:38 5275394FE00E85B13DC535C67961DFEB 1907536 ----a-w- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 2015-10-01 11:11:36 F55E9DF5284E75728CBED4EC3228A536 624480 ----a-w- C:\Windows\SystemApps\Microsoft.AccountsControl_cw5n1h2txyewy\AccountsControlHost.exe 2015-10-01 11:11:32 37B5ECB8C390D9FD5A5BB2FFB7294B9E 553808 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2015-10-01 11:11:32 258A4F9A2C91C6C6E36775CDCCB4AFE1 441168 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2015-10-01 11:11:32 1CD8BB41436524A2748A77005E5DEB8A 579072 ----a-w- C:\Windows\System32\winlogon.exe 2015-10-01 11:11:30 E1DB432B3147F70BF684846439ADE38B 136192 ----a-w- C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe 2015-10-01 11:11:29 948BD4AC1C7C572312048A284D6C9A7F 562688 ----a-w- C:\Windows\System32\Speech\SpeechUX\SpeechUXWiz.exe 2015-10-01 11:11:27 D61C3ED7C5F0D1B5BD9B351FEC381D57 120832 ----a-w- C:\Windows\System32\omadmclient.exe 2015-10-01 11:11:27 B8401703E619E7BD7B5A659306A9BFE6 84480 ----a-w- C:\Windows\System32\MDMAppInstaller.exe 2015-10-01 11:11:26 334206DD8DA94B0AEBC46A3196888031 83968 ----a-w- C:\Windows\System32\DeviceEnroller.exe 2015-10-01 11:11:24 EBD5F0FDD3EBB6EE6F6EE524206AD0AE 26624 ----a-w- C:\Windows\System32\LicenseManagerShellext.exe 2015-10-01 11:11:24 ACF279AB64D406EDB223543E5A113939 220160 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe 2015-10-01 11:11:19 98986780B8D494326D28DCAB6D601450 154624 ----a-w- C:\Windows\System32\dmcertinst.exe 2015-10-01 11:11:18 9853C2A9EF7FBC341C65EF89908CA052 482816 ----a-w- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe 2015-10-01 09:03:49 2C32056CB8E5C4F7A2CE7FF4588098B6 528632 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00007f6a\CoProc update.20014793.exe 2015-10-01 07:56:37 07D733DAB53FD7E2E7C8442216073379 873800 ----a-w- C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\SwReporter\4.30.2\software_reporter_tool.exe === C: other files == 2015-10-08 06:24:34 E3870E0BB400FEC0472A076E429177A1 42184 ----a-w- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys 2015-10-08 06:24:34 DDEEEF52C76E2B553968C15431AA0E81 631992 ----a-w- C:\Windows\System32\drivers\SynTP.sys 2015-10-08 06:24:34 32041B411E510523B860C21CA56BFCFF 44216 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys 2015-10-08 06:24:24 32041B411E510523B860C21CA56BFCFF 44216 ----a-w- C:\Windows\LastGood\system32\DRIVERS\Smb_driver_Intel.sys 2015-10-08 06:24:22 E3870E0BB400FEC0472A076E429177A1 42184 ----a-w- C:\Windows\LastGood\system32\DRIVERS\Smb_driver_AMDASF_Aux.sys 2015-10-08 06:24:22 DDEEEF52C76E2B553968C15431AA0E81 631992 ----a-w- C:\Windows\LastGood\system32\DRIVERS\SynTP.sys 2015-10-08 06:24:22 32041B411E510523B860C21CA56BFCFF 44216 ----a-w- C:\Windows\LastGood\system32\DRIVERS\Smb_driver_Intel_Aux.sys 2015-10-01 11:11:41 89C9C3745F270EF93988DA57BC6AA62B 1983824 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2015-10-01 11:11:41 7EBD20284AC9BF9F0A020B86769BB074 2432336 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2015-10-01 11:11:35 927AD29D7F91B9A0C5294932374DA15E 894256 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2015-10-01 11:11:35 33FF0B7585F54C0F33C38F5DCAB1DA01 3586560 ----a-w- C:\Windows\System32\win32kfull.sys 2015-10-01 11:11:31 FDB239DBE2A14B572D21ABCEDC7BB5D0 505696 ----a-w- C:\Windows\System32\drivers\dxgmms2.sys 2015-10-01 11:11:31 FCC211B0F46D831506D0D76539203899 929280 ----a-w- C:\Windows\System32\drivers\bthport.sys 2015-10-01 11:11:31 C08449092043601887A1743350888635 516448 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2015-10-01 11:11:31 5A1C6AFFF6946C5C21A27AE05084C0D1 332624 ----a-w- C:\Windows\System32\drivers\fastfat.sys 2015-10-01 11:11:29 B6A33DCEBE437F909615E89BA5FB1385 395088 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2015-10-01 11:11:28 7D2165B4B27E11B3E557DB26CAA2BAFF 1382400 ----a-w- C:\Windows\System32\win32kbase.sys 2015-10-01 11:11:27 854AF190F55E6D70EC65A85798F896E2 36352 ----a-w- C:\Windows\System32\drivers\buttonconverter.sys 2015-10-01 11:11:27 70469C8AC4AD367295E70CFDD81B754C 99664 ----a-w- C:\Windows\System32\drivers\pdc.sys 2015-10-01 11:11:26 FA5C94FB36625787063D04CF2F24E890 320000 ----a-w- C:\Windows\System32\drivers\portcls.sys 2015-10-01 11:11:25 616F40B897DA651221F86A1741E9609B 1168736 ----a-w- C:\Windows\System32\drivers\ndis.sys 2015-10-01 11:11:23 1434CA8A224655AD096D57DB24D3AA85 406864 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2015-10-01 11:11:23 004C66464D8FE76D5DA78BE6777D61AF 278352 ----a-w- C:\Windows\System32\drivers\sdbus.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_F216E1CF03F967D676EDA4B0F93EE6C8"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "Spotify Web Helper"="C:\Users\Rossi930\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent" "OneDrive"="C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "Spotify"="C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade" [HKEY_USERS\S-1-5-21-2692958852-1695414720-1072984534-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64" "Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KLM"="C:\Program Files (x86)\MSI\KLM\KLM.exe" "Sound Blaster Cinema"="C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe /r" "Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe" "BlueStacks Agent"="c:\Program Files (x86)\BlueStacks\HD-Agent.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_F216E1CF03F967D676EDA4B0F93EE6C8"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "Spotify Web Helper"="C:\Users\Rossi930\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent" "OneDrive"="C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "Spotify"="C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64" "Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "MBCfg64"="C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64" "Samsung Link"="C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Radio Manager"="C:\Program Files (x86)\SCM\Radio Manager.exe" "SCM"="C:\Program Files (x86)\SCM\SCM.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [09-04-2015 23:07] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"] "C:\WINDOWS\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{B6F71DFA-3BA8-4029-B2F5-4003B34BE392}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{9C8C3671-6534-4E05-91C1-2337A7734A70}" ["c:\windows\system32\launchwinapp.exe"] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chromium Look ====================== Google Chrome Version: 45.0.2454.101 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01-05-2015 11:17] Bubble Shooter Level Pack - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\cclpcbfoiabkkbhlcdlkkjhledodjakp Pool - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb selector is not a valid CSS selector - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb AVG Web TuneUp - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn Add to Wunderlist - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmnddeddcgdllibmaodanoonljfdmooc AdBlock - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Skype Click to Call - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl 3D Galaxy Bowling - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\llojoebfpfheijcipgokjllohccfnkoo Google Maps - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh Chrome Web Store Payments - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Cube Slam - Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkcoeeddamedegogbcmdbadnoifmfipn ==== Chromium Fix ====================== C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shoppingcart.aliexpress.com_0.localstorage deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_shoppingcart.aliexpress.com_0.localstorage-journal deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_services.mmstore.be_0.localstorage deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_services.mmstore.be_0.localstorage-journal deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage deleted successfully C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.hln.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{95B7759C-8C7F-4BF1-B163-73684A933233}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.hln.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [KLM] C:\Program Files (x86)\MSI\KLM\KLM.exe O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe O4 - HKLM\..\Run: [BlueStacks Agent] c:\Program Files (x86)\BlueStacks\HD-Agent.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_F216E1CF03F967D676EDA4B0F93EE6C8] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Rossi930\AppData\Roaming\Spotify\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent O4 - HKCU\..\Run: [OneDrive] "C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" O4 - HKCU\..\Run: [Spotify] "C:\Users\Rossi930\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Rossi930\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2692958852-1695414720-1072984534-1001\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser') O4 - HKUS\S-1-5-21-2692958852-1695414720-1072984534-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser') O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O4 - Global Startup: Polar WebSync.lnk = C:\Program Files (x86)\Polar\WebSync\WebSync.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - c:\Program Files (x86)\BlueStacks\HD-Service.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe O23 - Service: CyberLink Product - 2013/04/23 18:09:04 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe O23 - Service: Microsoft SharePoint Workspace Audit Service - Unknown owner - C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe O23 - Service: Polar Daemon - Unknown owner - C:\Program Files (x86)\Polar\Daemon\polard.exe O23 - Service: Qualcomm Atheros Killer Service - Unknown owner - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Rossi930\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Rossi930\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Rossi930\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Rossi930\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Rossi930\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1524 folders=336 849823827 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Rossi930\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\WINDOWS\Syswow64\Windows.Devices.Midi.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Devices.WiFi.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Gaming.Input.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.FaceAnalysis.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Import.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.MediaControl.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Speech.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Speech.UXRes.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Media.Streaming.ps.dll" not deleted "C:\WINDOWS\Syswow64\Windows.Networking.Connectivity.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Immersive.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Input.Inking.dll" not deleted "C:\WINDOWS\Syswow64\Windows.UI.Xaml.Maps.dll" not deleted ==== EOF on do 08-10-2015 at 9:22:47,29 ======================