Zoek.exe v5.0.0.1 Updated 09-November-2015
Tool run by jan on di 10-11-2015 at 20:17:38,31.
Microsoft Windows 10 Pro 10.0.10240  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\jan\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

10-11-2015 20:22:14 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\BUyNsavue deleted successfully
C:\PROGRA~2\BuyNssavei deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\UpdatusUser.ATHLON\AppData\LocalLow deleted successfully
C:\Users\jan\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\jan\AppData\Local\EmieSiteList deleted successfully
C:\Users\jan\AppData\Local\EmieUserList deleted successfully
C:\Users\jan\AppData\Local\eSupport.com deleted successfully
C:\Users\jan\AppData\Local\PackageStaging deleted successfully
C:\Users\jan\AppData\Local\PeerDistRepub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SpyHunter 4 Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.1.8 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"vProt"=- 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\BUyNsavue not found
C:\PROGRA~2\BuyNssavei not found
C:\PROGRA~2\PPrIceeMinus deleted
C:\PROGRA~2\PriceMiNuos deleted
C:\Program Files (x86)\Enigma Software Group deleted
C:\ProgramData\Avg_Update_1015av deleted
C:\windows\SysNative\Tasks\0814avUpdateInfo deleted
C:\windows\SysNative\Tasks\1015avUpdateInfo deleted
C:\PROGRA~3\{32dedcae-d0ac-adfc-32de-edcaed0a72bb} deleted
C:\Users\jan\AppData\Local\AVG Web TuneUp deleted
C:\Program Files\AVG Web TuneUp deleted
C:\Program Files\Reimage deleted
C:\AirPrint Activator iOS5.exe deleted
C:\install.exe deleted
C:\Microsoft Toolkit.exe deleted
C:\torrent.exe deleted
C:\PROGRA~3\AVG Web TuneUp deleted
C:\PROGRA~3\Avg_Update_0814av deleted
C:\PROGRA~3\Avg_Update_1214tb deleted
C:\PROGRA~3\AVG Security Toolbar deleted
C:\PROGRA~3\ParetoLogic deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair deleted
C:\Users\jan\AppData\LocalLow\AVG Web TuneUp deleted
C:\WINDOWS\Reimage.ini deleted
C:\END deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted
C:\WINDOWS\Syswow64\SET4F1F.tmp deleted
"C:\Users\jan\AppData\Roaming\rmi\ubcd528.iso" deleted
"C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe" deleted
"C:\Program Files (x86)\AVG Web TuneUp\icudt.dll" deleted
"C:\Program Files (x86)\AVG Web TuneUp\libcef.dll" deleted
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" deleted
"C:\PROGRA~2\AVG Web TuneUp\avgcefrend.exe" deleted
"C:\PROGRA~2\AVG Web TuneUp\icudt.dll" deleted
"C:\PROGRA~2\AVG Web TuneUp\libcef.dll" deleted
"C:\PROGRA~2\AVG Web TuneUp\vprot.exe" deleted
"C:\Program Files (x86)\AVG Web TuneUp\locales\en-US.pak" deleted
"C:\PROGRA~2\AVG Web TuneUp\locales\en-US.pak" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.1.8\avgdttbx.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll" deleted
"C:\Users\jan\AppData\Roaming\rmi" deleted
"C:\Program Files (x86)\AVG Web TuneUp" deleted
"C:\PROGRA~2\AVG Web TuneUp" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\Program Files (x86)\AVG Web TuneUp\locales" deleted
"C:\PROGRA~2\AVG Web TuneUp\locales" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.1.8" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.1.8" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\Users\jan\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-11-01 13:54:38	F1726346E583442541FE73429F8E9C10	62672	----a-w-	C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-11-01 13:54:37	7C9952111F4C743B9F0D8B68B6ED93C9	229584	----a-w-	C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-11-01 13:54:31	E415862612E65F10D7D888443ECD7594	2388176	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-11-01 13:54:31	4E961525CC7FF0E5D7DA19E170B7C14C	14032	----a-w-	C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-11-01 13:54:31	2112FE0C46662D429347A7D7B49E3ECE	230096	----a-w-	C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-11-01 13:54:30	BE19B603DFBAA829EE5B7749B3BA97DB	2323664	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-11-01 13:54:30	99F4FC172A5ACE36CF00AA7038D23F2C	2332368	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-11-01 13:54:29	852EDC778A7A50077694F84D8E601234	2319568	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-11-01 13:54:28	523AB607EEF81CC4D909E7FEBD8A788E	2297552	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-11-01 13:54:27	5B48FE9D6686F0D54B26A005ACE24D1D	2337488	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-11-01 13:54:26	BC831661963763AC4D504C5CABB1FDD9	2222800	----a-w-	C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-10-30 10:26:57	3831B52EDBF77509F54CCD0F8BF0F9E1	18801664	----a-w-	C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 10:26:55	45D9695B6EB93F1C3476042BCDBB7393	19326464	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 10:26:48	64A8573F80949FFA9E4EBCA8FB5A57EC	2878512	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 10:26:48	1D5D2A9485944E464B353506701E8CDC	2647040	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 10:26:47	2C8071B34E18E20101380634260FC8E0	1918976	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 10:26:43	BE8311935A9510E81DCBEC28AE3C5F5B	961376	----a-w-	C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 10:26:37	15044A5910E532DBA4D24A46FC6960A8	1380864	----a-w-	C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 10:26:35	7CE15ED2080881C4D303BC1A3C7E48BB	2049536	----a-w-	C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 10:26:33	8F7E1B91CEA633D059EE9968D8F19808	2639872	----a-w-	C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 10:26:30	7C2C2F9BA364DFC31B68C288C07B9D5D	464896	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 10:26:18	5BD7D14A4D8CCC765C9C52167553FA10	311296	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 10:26:18	552B5B720AF0C2DB4489CE711216F885	441344	----a-w-	C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-28 18:58:57	776339B81E632F579AB1EC6EE503A9C0	58368	----a-w-	C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-28 18:58:55	F38B52333E0C93A1C55323719103783B	1357888	----a-w-	C:\WINDOWS\SysWOW64\winmde.dll
2015-10-28 18:58:55	BE36E4024EABE75FEF529553E023AEF8	646672	----a-w-	C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-28 18:58:55	99CEBD54809E76C9CD1839B0492CCF5E	1895568	----a-w-	C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-28 18:58:55	2570B5FA73B119C16E0E721265126C3A	2446648	----a-w-	C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-28 18:58:55	19DFBB25AB67A2F4D23F08A7D765E802	2154808	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-28 18:58:55	001D3D691DD268165A3EE49C69078054	658528	----a-w-	C:\WINDOWS\SysWOW64\mfds.dll
2015-10-28 18:58:54	F4E25F21AC509AEE3617E9DBA086318E	434376	----a-w-	C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-28 18:58:54	E856065895D1133F5457BCDB4452A8D3	74880	----a-w-	C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-28 18:58:54	80D2AE15F53154CEE71C9E3C131FBB9B	407608	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-28 18:58:53	638747E5050BEB4F5DF9DDE8AC418296	473088	----a-w-	C:\WINDOWS\SysWOW64\wpnapps.dll
2015-10-28 18:58:52	F053D53DA5B1E51AFCCF129D8F27585C	11262976	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-28 18:58:52	9E590FA5A1BF50F2E7B7005244F8D31D	574464	----a-w-	C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-28 18:58:52	53FC0EFBE44591CA16BE1A4309F689DC	253440	----a-w-	C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-28 18:58:52	48CCDE23CA8D3380D1491EAD0E7A3ECE	3580416	----a-w-	C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-28 18:58:52	441947103FF76ED33BC46E50AFC55D57	5454848	----a-w-	C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-28 18:58:46	FB3B46B0FFCEDEED7BB5E74D82895118	1171456	----a-w-	C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-28 18:58:46	D6BF254925FD35955C99F402F8DF4773	20858360	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2015-10-28 18:58:46	C5FBD8DDCD35F7F1242F3587681A2654	193024	----a-w-	C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-28 18:58:46	78FBC37D02A39402B685B7E95A83EFE8	428128	----a-w-	C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-28 18:58:46	60242DBD3FCFA6D4163B6C29D76295B7	336384	----a-w-	C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-28 18:58:46	54DB5459A808BB03FDEA98325530B946	145920	----a-w-	C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-28 18:58:46	471921FC25E6EC0AA5755C78DD9F7C4E	613376	----a-w-	C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-28 18:58:46	1B102F53BD7209D712BBE96E9FAA32CA	313856	----a-w-	C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-28 18:58:46	037908D9C8C689490978BFF72532A361	195072	----a-w-	C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-28 18:58:45	F69835A120E9627327ECE984D2AC87EA	828928	----a-w-	C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-28 18:58:45	F65307E09D4807EDE95D1016CAF42DAD	587264	----a-w-	C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-28 18:58:45	F2BCE0CF75943E18852148B2875F632B	41472	----a-w-	C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-28 18:58:45	EE8FDC90138DD93AA6B1ECA831D9D3CE	1162240	----a-w-	C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-28 18:58:45	E4A4BC49568745BDA44F293E3D29A910	466432	----a-w-	C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-28 18:58:45	E2EFED5C9E4BF8EC6F35CF63CA5B589F	1594368	----a-w-	C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-28 18:58:45	E0F11A1D1C7482BBD76448E6FD3AA327	454512	----a-w-	C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-28 18:58:45	DFAE92F5EF58FF29E81D951B2BDF45B8	1104384	----a-w-	C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-28 18:58:45	DC7C56F01B96CA5FDB99D241D4E067FC	311808	----a-w-	C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-28 18:58:45	DAFFF5B7F43F88907A21996E71812D0C	764416	----a-w-	C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-28 18:58:45	D124F89BBDCFC24A04F159D913852DDC	701952	----a-w-	C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-28 18:58:45	D0A5D8270FF8606D2B445C4359A8FCEB	328704	----a-w-	C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-28 18:58:45	D055C7AC2514A999D8C636B39457B98B	172032	----a-w-	C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-28 18:58:45	CA4303787A36890CE6EE34DC1C993F3E	195584	----a-w-	C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-28 18:58:45	C637D94084069A10759E53F79D5DC4C5	899584	----a-w-	C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-28 18:58:45	BCCB55B18CE7054BA288FFEB27BA6F54	1766952	----a-w-	C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-28 18:58:45	B81FC272B92CE1A7542EECF1416D17B9	579584	----a-w-	C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-28 18:58:45	A1B94C8C5C9DD2780B83C7435EE18BED	1997336	----a-w-	C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-28 18:58:45	966EDAEB4B78FA7547D484B21491156E	766976	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-28 18:58:45	9157489ABA83D6FEAAAEC8E3F79714E8	928256	----a-w-	C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-28 18:58:45	860E5BC4CA5AB3FD20051D09270D1A26	504320	----a-w-	C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-28 18:58:45	807178C85CF6375FAB2FE42395FE94D7	677888	----a-w-	C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-28 18:58:45	77BFF88DF139AEB20BE0F5AB7737A981	13027840	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-28 18:58:45	73FC0143E518D8DB7AFE9675F4AF8063	2207232	----a-w-	C:\WINDOWS\SysWOW64\wininet.dll
2015-10-28 18:58:45	73BE590D1D4B42A202FB0CDDB2784E78	650240	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-10-28 18:58:45	685105400BCA64E0D19534A516F36454	625152	----a-w-	C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-28 18:58:45	6740B4C8B8B3474F086B8AEBDE4861D8	217088	----a-w-	C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-28 18:58:45	63900F897A025DDFE83737A260C250A5	371712	----a-w-	C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-28 18:58:45	5F7ADEE18B15B9D629F9875C9604A696	557568	----a-w-	C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-28 18:58:45	4B5286A021D8CA64BABB07D7B9739AF4	512000	----a-w-	C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-28 18:58:45	3C9FDBB0963B18C9D60B54F8AF81DF11	268800	----a-w-	C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-28 18:58:45	39518661140BE931D676EF657E877048	131072	----a-w-	C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-28 18:58:45	3277E503E6EA72D19CDC16501FD151BA	5120056	----a-w-	C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-28 18:58:45	2DA15A53E965A27A3D5CF99E3CCC430A	6101504	----a-w-	C:\WINDOWS\SysWOW64\mos.dll
2015-10-28 18:58:45	258A4F9A2C91C6C6E36775CDCCB4AFE1	441168	----a-w-	C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-28 18:58:45	1253135EC3029F79601EDCFF55ADC9FC	508248	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2015-10-28 18:58:45	0C6AA21007BE1389A4D5C3772D7E262D	525312	----a-w-	C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-28 18:58:45	08D6065A1D6D007C77A688271D915B00	5079552	----a-w-	C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-28 18:58:45	00682184457B97EDA4C0C157331A7495	454656	----a-w-	C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-28 18:45:54	BBAFB371A898A008FE059C963877FE05	35480	----a-w-	C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-10-28 18:45:54	248647FBD0CE51A64F41A1A78401D35D	102608	----a-w-	C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-10-28 18:45:54	04BEE8994F090D2ED2A761065A30174F	778936	----a-w-	C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-10-28 11:35:11	EAA750F31BF6D5DF99D40CECF69ED13E	2268160	----a-w-	C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-10-28 11:35:11	8EC7DB2881DAC8A2640BE5F2E37C34BC	6238720	----a-w-	C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2015-10-28 10:58:12	2F17C679F69098046B7563834880188F	19800424	----a-w-	C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-10-28 10:58:09	E0D4CF1A667E5EE9AA6EBE596E47EB36	15391080	----a-w-	C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-10-28 10:58:09	C4DA294F1CD6A0317A970C07152EE7F8	1863016	----a-w-	C:\WINDOWS\SysWOW64\nvcuvenc.dll
2015-10-28 10:58:09	3F1FC508BFF9F917FD941913F41F4C15	2564968	----a-w-	C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-10-28 10:58:08	B6298F5EACE2731D38719D6096EB9523	6300520	----a-w-	C:\WINDOWS\SysWOW64\nvcuda.dll
2015-10-28 10:58:08	B4C9BF849FF133F38B406309F7D48B79	17559912	----a-w-	C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-10-28 10:58:07	BF785100126870619C86EB8A597ABBEC	2368360	----a-w-	C:\WINDOWS\SysWOW64\nvapi.dll
====== C:\WINDOWS\SysWOW64\drivers =====
2015-11-02 09:23:40	BA0D892D2F786BCEBDF03B0A252B47F3	12400	----a-w-	C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS
2015-10-27 10:10:42	EF558A02D734A1403583E95CCEEC2487	27552	----a-w-	C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS
2015-10-21 17:34:13	8407DDFAB85AE664E507C30314090385	22200	----a-w-	C:\WINDOWS\SysWOW64\drivers\DrvAgent64.SYS
====== C:\WINDOWS\Sysnative =====
2015-11-10 19:14:04	9291137EB5D3D717C3EE2D79DAFCFEFC	16148	----a-w-	C:\WINDOWS\Sysnative\ATHLON_jan_HistoryPrediction.bin
2015-11-03 09:14:21	0225FC6F0D91F84B44CE252487D8D725	607256	----a-w-	C:\WINDOWS\Sysnative\prodad-codec.dll
2015-11-03 09:14:17	E5FCE41A5114E40EE573AB8631925BF3	376344	----a-w-	C:\WINDOWS\Sysnative\proDAD-PA-Support.dll
2015-11-01 19:34:13	921D87ABD6A8D260687175469236342C	420872	----a-w-	C:\WINDOWS\Sysnative\hpbrprtmon.dll
2015-11-01 19:34:13	8E3C8CF4E8393DE8446A240F3B226DC7	239624	----a-w-	C:\WINDOWS\Sysnative\hpbprtmonui.dll
2015-11-01 19:34:13	46E37851E6600B9D3096381116D5F603	432648	----a-w-	C:\WINDOWS\Sysnative\hpbprtmon.dll
2015-11-01 13:54:38	6F9D3289D8B166E478AFFF9EFA92C42C	83664	----a-w-	C:\WINDOWS\Sysnative\xinput1_1.dll
2015-11-01 13:54:37	0CC809422AB40974DFF8078392E4D507	352464	----a-w-	C:\WINDOWS\Sysnative\xactengine2_1.dll
2015-11-01 13:54:31	F77D5AB654881E683CFF6650916C424E	16592	----a-w-	C:\WINDOWS\Sysnative\x3daudio1_0.dll
2015-11-01 13:54:31	E09A9CF383ACF4A28038561E62277377	3927248	----a-w-	C:\WINDOWS\Sysnative\d3dx9_30.dll
2015-11-01 13:54:31	CE5753F9A27837259EB52F3F47F39593	355536	----a-w-	C:\WINDOWS\Sysnative\xactengine2_0.dll
2015-11-01 13:54:30	88BAC8306D4EC79A82B1FFA17DC8CF4A	3815120	----a-w-	C:\WINDOWS\Sysnative\d3dx9_28.dll
2015-11-01 13:54:30	68B35CBDB4A8CC424718BBCC894FEEEA	3830992	----a-w-	C:\WINDOWS\Sysnative\d3dx9_29.dll
2015-11-01 13:54:29	914C3237E4D145A18DCD1D0D4C8659E1	3807440	----a-w-	C:\WINDOWS\Sysnative\d3dx9_27.dll
2015-11-01 13:54:28	44F5C5E27D6825E4E62420BC29B8B533	3767504	----a-w-	C:\WINDOWS\Sysnative\d3dx9_26.dll
2015-11-01 13:54:27	4C56E7C5B2A61353E534C7D15D05856D	3823312	----a-w-	C:\WINDOWS\Sysnative\d3dx9_25.dll
2015-11-01 13:54:26	B165DF72E13E6AF74D47013504319921	3544272	----a-w-	C:\WINDOWS\Sysnative\d3dx9_24.dll
2015-10-30 10:27:06	7FAE452A3926AD368F7535F4F01825EA	21871616	----a-w-	C:\WINDOWS\Sysnative\edgehtml.dll
2015-10-30 10:27:03	FAEF347B0536E0AC61E43DAA40A6673B	24595968	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-10-30 10:26:50	E4203AC09D4242C5849A36E4250C1504	3248128	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.dll
2015-10-30 10:26:49	AF1EF2853B3343CF3EF6E16EE892853B	2418688	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2015-10-30 10:26:49	4DA298E26DC2D3DACBD9E3E54E62885E	1392480	----a-w-	C:\WINDOWS\Sysnative\LicenseManager.dll
2015-10-30 10:26:45	2B9702F8834ADF2EF4AC369876B40424	3621248	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-10-30 10:26:42	4C86961C71396D2BA39DAD9783437546	1068032	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2015-10-30 10:26:41	2E71E6B389976FD78609A1AB44F7EEB1	2179584	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentServer.dll
2015-10-30 10:26:40	48E6788535E2DCE95C46A6E048C68740	541024	----a-w-	C:\WINDOWS\Sysnative\mcupdate_GenuineIntel.dll
2015-10-30 10:26:39	E7F64B9E2DBDBA1CCC0CFE242D7BBF5D	1795072	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentExtensions.dll
2015-10-30 10:26:39	41529E49F3A2218E9F689F6814114BF6	1602560	----a-w-	C:\WINDOWS\Sysnative\urlmon.dll
2015-10-30 10:26:38	C527C9231D39BF69611F5F8C80C36140	579072	----a-w-	C:\WINDOWS\Sysnative\winlogon.exe
2015-10-30 10:26:37	D76A6C338A81C3B14AD37B22AA422B4B	713216	----a-w-	C:\WINDOWS\Sysnative\usermgr.dll
2015-10-30 10:26:37	714E84B757FADBAF75BF5CAF2617FA03	333312	----a-w-	C:\WINDOWS\Sysnative\MusUpdateHandlers.dll
2015-10-30 10:26:36	9893111B27B906ADB596EED84A505177	2987520	----a-w-	C:\WINDOWS\Sysnative\esent.dll
2015-10-30 10:26:36	0FC4FA53C3F666CD7AFB138A978D3CB8	2675200	----a-w-	C:\WINDOWS\Sysnative\Windows.StateRepository.dll
2015-10-30 10:26:34	504EC8E161E57742C3EA93E6DBCD5097	627712	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.dll
2015-10-30 10:26:30	4FAA3F23CB419B76B337CC77839FAD73	502272	----a-w-	C:\WINDOWS\Sysnative\dlnashext.dll
2015-10-30 10:26:29	EA354224BAD970CF0F438E6567F26A49	145408	----a-w-	C:\WINDOWS\Sysnative\dssvc.dll
2015-10-30 10:26:18	87BC4E77F2BDCF8D2AF8971095CF60C6	453120	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Usb.dll
2015-10-30 10:26:18	64F32C5DDA316F1091CD7B24826443FA	76800	----a-w-	C:\WINDOWS\Sysnative\browserbroker.dll
2015-10-28 18:58:55	6D6E7210CBD7C0AA2130F3F3F14D32A5	2824248	----a-w-	C:\WINDOWS\Sysnative\msmpeg2vdec.dll
2015-10-28 18:58:55	68DE1997977CD3A86D5F8D0FD23056EA	1563392	----a-w-	C:\WINDOWS\Sysnative\winmde.dll
2015-10-28 18:58:55	3478670E8646CC536E1EF21F077F4DD6	2156400	----a-w-	C:\WINDOWS\Sysnative\hevcdecoder.dll
2015-10-28 18:58:54	B82363129E8554D58B95A6935B83891D	781976	----a-w-	C:\WINDOWS\Sysnative\mfds.dll
2015-10-28 18:58:54	99E14B1011FC214DA89D9559AD816B3A	243760	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2015-10-28 18:58:54	78ECC7FEDA1790706A8ED7D864F754FC	2464216	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2015-10-28 18:58:54	5E010B486F7FB28D9B79AAC471FE484F	476760	----a-w-	C:\WINDOWS\Sysnative\MFCaptureEngine.dll
2015-10-28 18:58:54	36E46F26B5291A7D324466602A88947B	784136	----a-w-	C:\WINDOWS\Sysnative\mfsvr.dll
2015-10-28 18:58:53	F57FE0BD8BD7E1F8088FE18D0FD7BEE9	501008	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2015-10-28 18:58:53	AC180D981BD23443793F7AA71BBE344A	599552	----a-w-	C:\WINDOWS\Sysnative\wpnapps.dll
2015-10-28 18:58:53	A0DBB9386BEA8DA1A159C2A2E07081A3	856576	----a-w-	C:\WINDOWS\Sysnative\MPSSVC.dll
2015-10-28 18:58:53	71107775BE0E612150F032CE21DD9C7C	88384	----a-w-	C:\WINDOWS\Sysnative\remoteaudioendpoint.dll
2015-10-28 18:58:53	64D7B91B7D667A70782D9C76D6292C3C	980832	----a-w-	C:\WINDOWS\Sysnative\SecConfig.efi
2015-10-28 18:58:53	509FF13E5C4FD63846FCA01A5ED912DB	521728	----a-w-	C:\WINDOWS\Sysnative\PsmServiceExtHost.dll
2015-10-28 18:58:53	2C82D9E55432915A68A609008BDEF41A	1563472	----a-w-	C:\WINDOWS\Sysnative\wmpmde.dll
2015-10-28 18:58:52	F0B43C550BD519423FB79A58A860CE0B	204288	----a-w-	C:\WINDOWS\Sysnative\LocationPeCell.dll
2015-10-28 18:58:52	E6337423BD19DD12EB6777934B57E0F4	176640	----a-w-	C:\WINDOWS\Sysnative\LocationPeIP.dll
2015-10-28 18:58:52	D907DFF972354542D5B0B4414B308B75	312832	----a-w-	C:\WINDOWS\Sysnative\SensorsApi.dll
2015-10-28 18:58:52	D88952BD78157D66A0921B63F5DD0EC5	439296	----a-w-	C:\WINDOWS\Sysnative\LocationWebproxy.dll
2015-10-28 18:58:52	D107C46DBC705FC63761968965AC4463	826880	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-10-28 18:58:52	C7503A49364DB2AF7A7DE177B233081F	1844736	----a-w-	C:\WINDOWS\Sysnative\workfolderssvc.dll
2015-10-28 18:58:52	BEE5FBF5ECAEE9281023092F07F8E552	4792320	----a-w-	C:\WINDOWS\Sysnative\jscript9.dll
2015-10-28 18:58:52	B171608F20705895726DE86B34D1FBAC	95744	----a-w-	C:\WINDOWS\Sysnative\LocationWiFiAdapter.dll
2015-10-28 18:58:52	A5B7CAFA0327BCBC2FC6F1C9F95191CA	342016	----a-w-	C:\WINDOWS\Sysnative\LocationGeofences.dll
2015-10-28 18:58:52	872A77BDA3B9967118659E2B195EF23F	7523840	----a-w-	C:\WINDOWS\Sysnative\Chakra.dll
2015-10-28 18:58:52	73AF2D8038FCEF4C4EB4B3106B41967A	2573768	----a-w-	C:\WINDOWS\Sysnative\msxml6.dll
2015-10-28 18:58:52	72DBFBA1F53B9BF41E71EAA8414BBB86	12504064	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-10-28 18:58:52	5793FBBB1F120D1815A8348434ED236C	221184	----a-w-	C:\WINDOWS\Sysnative\LocationPeWiFi.dll
2015-10-28 18:58:52	4A805F2C7EF79017D6F67441439A6B18	771072	----a-w-	C:\WINDOWS\Sysnative\Chakradiag.dll
2015-10-28 18:58:52	07B5710393558DD734647D5F2F020647	215552	----a-w-	C:\WINDOWS\Sysnative\LocationCrowdsource.dll
2015-10-28 18:58:46	EA8B28FFF774F7C7862C8746E1FDECF6	273920	----a-w-	C:\WINDOWS\Sysnative\Windows.ApplicationModel.LockScreen.dll
2015-10-28 18:58:46	547D2BC05916E97FC8F48CB22DD1CFA1	22322624	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2015-10-28 18:58:46	390EAAB81E5C1DB0FD4920796C74AB48	1290240	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Shell.dll
2015-10-28 18:58:46	363F3F99863C2BB8612C9133E45BF3E6	387584	----a-w-	C:\WINDOWS\Sysnative\LockAppBroker.dll
2015-10-28 18:58:46	311F4D131C28DA12595132A35124E955	910848	----a-w-	C:\WINDOWS\Sysnative\SharedStartModel.dll
2015-10-28 18:58:46	184EA31BE714F3B33A5E96CBE103561C	78528	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-10-28 18:58:45	F9BD360A4799BB54A01692940C46CA2B	537080	----a-w-	C:\WINDOWS\Sysnative\WWanAPI.dll
2015-10-28 18:58:45	F9042F366B9695FD564E9485112453E2	1871360	----a-w-	C:\WINDOWS\Sysnative\msxml3.dll
2015-10-28 18:58:45	F548C34A6FF655F0A716316133B4DD5D	590336	----a-w-	C:\WINDOWS\Sysnative\MessagingDataModel2.dll
2015-10-28 18:58:45	F1A6A22A63F380DFF28C55B11D688B0C	102304	----a-w-	C:\WINDOWS\Sysnative\omadmapi.dll
2015-10-28 18:58:45	F01743062DA74A24A0E7836289E33731	187904	----a-w-	C:\WINDOWS\Sysnative\provisioningcsp.dll
2015-10-28 18:58:45	EF3BBA8739757B470D0E49C8619A31C0	53760	----a-w-	C:\WINDOWS\Sysnative\Windows.Speech.Pal.dll
2015-10-28 18:58:45	ED8EAAD25E68C88EE68869805EDD4F29	1382400	----a-w-	C:\WINDOWS\Sysnative\win32kbase.sys
2015-10-28 18:58:45	ECA28C8F0FF34A2BD8311CBA2D35B143	121856	----a-w-	C:\WINDOWS\Sysnative\dmcsps.dll
2015-10-28 18:58:45	EBD5F0FDD3EBB6EE6F6EE524206AD0AE	26624	----a-w-	C:\WINDOWS\Sysnative\LicenseManagerShellext.exe
2015-10-28 18:58:45	EA1C2DAB8A63712B94897A58557B086C	371712	----a-w-	C:\WINDOWS\Sysnative\nlasvc.dll
2015-10-28 18:58:45	E5D86250453B33900666D92ED1A92ABE	2740224	----a-w-	C:\WINDOWS\Sysnative\wininet.dll
2015-10-28 18:58:45	E2AE190B76C27430E4E8258D0C44C79B	317440	----a-w-	C:\WINDOWS\Sysnative\configmanager2.dll
2015-10-28 18:58:45	DE8B9EE2E86532686497FE5A1E44E90D	467968	----a-w-	C:\WINDOWS\Sysnative\MBMediaManager.dll
2015-10-28 18:58:45	DE82BD1C35547D04241DB1DB3D4808E0	6487248	----a-w-	C:\WINDOWS\Sysnative\windows.storage.dll
2015-10-28 18:58:45	DDCBE4B09287CF224B63015F9C6BD31F	1295712	----a-w-	C:\WINDOWS\Sysnative\wpx.dll
2015-10-28 18:58:45	DBA8FE1EAA344106C334E193D3D57B66	73728	----a-w-	C:\WINDOWS\Sysnative\wwancfg.dll
2015-10-28 18:58:45	DAFEABE69E915A2374E13C6B24EF331F	690688	----a-w-	C:\WINDOWS\Sysnative\CellularAPI.dll
2015-10-28 18:58:45	D7B28BF9E08128C5A8B89FFD5BEB6B88	465920	----a-w-	C:\WINDOWS\Sysnative\wwanconn.dll
2015-10-28 18:58:45	D61C3ED7C5F0D1B5BD9B351FEC381D57	120832	----a-w-	C:\WINDOWS\Sysnative\omadmclient.exe
2015-10-28 18:58:45	D5AAA188C70146977CFEE8D128599F3F	378368	----a-w-	C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll
2015-10-28 18:58:45	D4E92C0C0F9C5054B03D67A3C0B41961	555768	----a-w-	C:\WINDOWS\Sysnative\directmanipulation.dll
2015-10-28 18:58:45	D37063C5B492B7B4F26D24C62167C8BE	137728	----a-w-	C:\WINDOWS\Sysnative\VEStoreEventHandlers.dll
2015-10-28 18:58:45	D23F211E1AA0787EFEC373D172D4A1C2	1181696	----a-w-	C:\WINDOWS\Sysnative\wwansvc.dll
2015-10-28 18:58:45	D1AA97B30A9ED6F89DC3848C8BF53513	224256	----a-w-	C:\WINDOWS\Sysnative\KnobsCore.dll
2015-10-28 18:58:45	CF2B0ADDBA61B3B9FA339118FC742032	1812480	----a-w-	C:\WINDOWS\Sysnative\pnidui.dll
2015-10-28 18:58:45	C92EBECB1E30E7E6006C0D8B4040C3F6	274944	----a-w-	C:\WINDOWS\Sysnative\syncutil.dll
2015-10-28 18:58:45	C8C5DFF028EA28D7846E95D8E5461794	570880	----a-w-	C:\WINDOWS\Sysnative\MbaeApi.dll
2015-10-28 18:58:45	C66E058599A44E0EEA95B3E0547345D2	30208	----a-w-	C:\WINDOWS\Sysnative\syncmlhook.dll
2015-10-28 18:58:45	C5E2FBB19641860794CEE2B580192732	966416	----a-w-	C:\WINDOWS\Sysnative\twinapi.appcore.dll
2015-10-28 18:58:45	C5890CAD6482B12ECA19E680B779560F	858408	----a-w-	C:\WINDOWS\Sysnative\winresume.exe
2015-10-28 18:58:45	BF77FC08A7D4DC37A659561B29FA23EC	163840	----a-w-	C:\WINDOWS\Sysnative\CallHistoryClient.dll
2015-10-28 18:58:45	BBA571F40F08F967531573109F7FA95E	169984	----a-w-	C:\WINDOWS\Sysnative\mdmregistration.dll
2015-10-28 18:58:45	B9FC9E9B55C74557FEC004BF8B1184F4	359936	----a-w-	C:\WINDOWS\Sysnative\ncsi.dll
2015-10-28 18:58:45	B8401703E619E7BD7B5A659306A9BFE6	84480	----a-w-	C:\WINDOWS\Sysnative\MDMAppInstaller.exe
2015-10-28 18:58:45	B7927A1D40BD17BC963E9353DBB36CD7	869376	----a-w-	C:\WINDOWS\Sysnative\MapControlCore.dll
2015-10-28 18:58:45	B70FF53144AC4B3C7D98BFB7D7C239BD	2236416	----a-w-	C:\WINDOWS\Sysnative\wuaueng.dll
2015-10-28 18:58:45	B3CD8B2CBC6E48B194116B28F72CDA67	408064	----a-w-	C:\WINDOWS\Sysnative\CredProvDataModel.dll
2015-10-28 18:58:45	B31569B0E7A467D4050FA49CFCBFCEFA	204800	----a-w-	C:\WINDOWS\Sysnative\wcmcsp.dll
2015-10-28 18:58:45	AF34122A1B595218036B4049D802B470	1203712	----a-w-	C:\WINDOWS\Sysnative\Windows.Devices.Bluetooth.dll
2015-10-28 18:58:45	AB3B184665305AD0149150DD72DB0238	576000	----a-w-	C:\WINDOWS\Sysnative\vbscript.dll
2015-10-28 18:58:45	A92AFC8FB13ADC1CB59719B3E519C843	1294352	----a-w-	C:\WINDOWS\Sysnative\winload.efi
2015-10-28 18:58:45	A51AC21B1F31FD7F4EC2811E33572AFC	859136	----a-w-	C:\WINDOWS\Sysnative\modernexecserver.dll
2015-10-28 18:58:45	A40484AC27EE08DBE7F8DA5E1F6651ED	591360	----a-w-	C:\WINDOWS\Sysnative\wcmsvc.dll
2015-10-28 18:58:45	A1243182E21EAC015267DBE2728D4BBE	8020320	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2015-10-28 18:58:45	9D4A09AB97C2F0EC6BFA6B54AA2BA239	3781120	----a-w-	C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll
2015-10-28 18:58:45	9C71FA3F776218AD2394833B8DE79031	685568	----a-w-	C:\WINDOWS\Sysnative\AppointmentApis.dll
2015-10-28 18:58:45	9C2B0E3A21CECD14E20A848F0DE94B24	517632	----a-w-	C:\WINDOWS\Sysnative\NotificationController.dll
2015-10-28 18:58:45	98986780B8D494326D28DCAB6D601450	154624	----a-w-	C:\WINDOWS\Sysnative\dmcertinst.exe
2015-10-28 18:58:45	95EC1A9A6926F5091957F6CA52A34F21	162304	----a-w-	C:\WINDOWS\Sysnative\SubscriptionMgr.dll
2015-10-28 18:58:45	959695FD137FF0DEFC6152AAB03AA3D6	1216512	----a-w-	C:\WINDOWS\Sysnative\netcenter.dll
2015-10-28 18:58:45	913E47FCD3B43EC27215F90884915CAF	780288	----a-w-	C:\WINDOWS\Sysnative\Windows.ApplicationModel.Store.dll
2015-10-28 18:58:45	9045120B390CDA9C0C7DB93745B92554	720896	----a-w-	C:\WINDOWS\Sysnative\EmailApis.dll
2015-10-28 18:58:45	8D23F0819A00C547814409B734DD3747	503808	----a-w-	C:\WINDOWS\Sysnative\tileobjserver.dll
2015-10-28 18:58:45	8AFDD74F2DC5BAD9B2215FB19DB65240	809352	----a-w-	C:\WINDOWS\Sysnative\CoreMessaging.dll
2015-10-28 18:58:45	891C83BE8BA62B7547B9A6576A360C71	1010176	----a-w-	C:\WINDOWS\Sysnative\RDXService.dll
2015-10-28 18:58:45	88E6A429944544346EC3AE1FD7D24BCC	149504	----a-w-	C:\WINDOWS\Sysnative\tetheringservice.dll
2015-10-28 18:58:45	887065722784FD70B880B0D900E4884D	185344	----a-w-	C:\WINDOWS\Sysnative\psmsrv.dll
2015-10-28 18:58:45	879E8BFAEA2393B9E057B909A558174F	3586560	----a-w-	C:\WINDOWS\Sysnative\win32kfull.sys
2015-10-28 18:58:45	86C0DEE6940878A1496CBBA856FF4E5B	584656	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2015-10-28 18:58:45	863E39BB1F8779B8A6CEEC4BA93401C2	1018568	----a-w-	C:\WINDOWS\Sysnative\winresume.efi
2015-10-28 18:58:45	85AC4CA67BECC08CBC655A8D8919B23B	1331200	----a-w-	C:\WINDOWS\Sysnative\UIAutomationCore.dll
2015-10-28 18:58:45	85146ABCB1EF298D1FF6EE4D5541788C	832512	----a-w-	C:\WINDOWS\Sysnative\MapsStore.dll
2015-10-28 18:58:45	839BD56425530973FF3F6F7C0057CD22	288256	----a-w-	C:\WINDOWS\Sysnative\PimIndexMaintenance.dll
2015-10-28 18:58:45	7ED8EF17B3A6C69DA6A0EC90CFBB4ABB	7055872	----a-w-	C:\WINDOWS\Sysnative\BingMaps.dll
2015-10-28 18:58:45	7E8811597D2752736B776F15A1C8FAA6	856576	----a-w-	C:\WINDOWS\Sysnative\ContactApis.dll
2015-10-28 18:58:45	7DDB731AD3E9F9F91D62E991BD52814F	79872	----a-w-	C:\WINDOWS\Sysnative\HttpsDataSource.dll
2015-10-28 18:58:45	7910232E31799A576F2509DA92CB8813	928256	----a-w-	C:\WINDOWS\Sysnative\JpMapControl.dll
2015-10-28 18:58:45	77C8CD0AACC1D059EDF6E91920D11550	421888	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll
2015-10-28 18:58:45	754BC3E56FF301B9EE8A764932D02124	513536	----a-w-	C:\WINDOWS\Sysnative\ngcsvc.dll
2015-10-28 18:58:45	7505ACFD9362DA74FEB623F21FE3B391	1601536	----a-w-	C:\WINDOWS\Sysnative\Windows.Media.Speech.dll
2015-10-28 18:58:45	75051FAAA293FA5414105A2BDA6BAC05	223232	----a-w-	C:\WINDOWS\Sysnative\PhoneCallHistoryApis.dll
2015-10-28 18:58:45	6FA4BB1AA0C18F5CFB96F228376BD249	2494712	----a-w-	C:\WINDOWS\Sysnative\CoreUIComponents.dll
2015-10-28 18:58:45	6C9DDD0611379864596D2A8DE7B1870C	504320	----a-w-	C:\WINDOWS\Sysnative\DataSenseHandlers.dll
2015-10-28 18:58:45	684F1E1B5D07451B600EA3C3D728A534	281600	----a-w-	C:\WINDOWS\Sysnative\VEEventDispatcher.dll
2015-10-28 18:58:45	65F1F4DBB4A6FA971BF9F00129F452A0	494592	----a-w-	C:\WINDOWS\Sysnative\StoreAgent.dll
2015-10-28 18:58:45	65A0B3477231CE37B09A719DBBB9FCF1	671232	----a-w-	C:\WINDOWS\Sysnative\WUDFx02000.dll
2015-10-28 18:58:45	63D8A023148D8436D6CBA65E2B9ED56A	143360	----a-w-	C:\WINDOWS\Sysnative\provops.dll
2015-10-28 18:58:45	5A863500AB522EFA6270019D613F15F9	757760	----a-w-	C:\WINDOWS\Sysnative\fveapi.dll
2015-10-28 18:58:45	59BD4C7EC035B59B77A7D9CE71F1B9AE	1276416	----a-w-	C:\WINDOWS\Sysnative\wifinetworkmanager.dll
2015-10-28 18:58:45	562078FF6ED0C2B1C09078343437D03E	168960	----a-w-	C:\WINDOWS\Sysnative\mdmmigrator.dll
2015-10-28 18:58:45	537826436B921256BA9055F65A97ED91	7569408	----a-w-	C:\WINDOWS\Sysnative\mos.dll
2015-10-28 18:58:45	52C3440B5098BFB99D91E869A26ECB30	1213440	----a-w-	C:\WINDOWS\Sysnative\RemoteNaturalLanguage.dll
2015-10-28 18:58:45	506F9F526D42BB4C0A579CB78F923A48	483328	----a-w-	C:\WINDOWS\Sysnative\OneDriveSettingSyncProvider.dll
2015-10-28 18:58:45	4A54273338073939384A14BF0D7AFC14	88064	----a-w-	C:\WINDOWS\Sysnative\ngckeyenum.dll
2015-10-28 18:58:45	49B00A59043431804A5BCB5E48F735B3	414208	----a-w-	C:\WINDOWS\Sysnative\AppXDeploymentClient.dll
2015-10-28 18:58:45	49213BF8E7EEE157F128C58D75043B09	68096	----a-w-	C:\WINDOWS\Sysnative\EnterpriseDesktopAppMgmtCSP.dll
2015-10-28 18:58:45	43A1B8B43CA4E213E0FD920F2FD6BCBA	267776	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Management.dll
2015-10-28 18:58:45	41C0EC5B11375F9CA045AFEF1EB75D5F	366592	----a-w-	C:\WINDOWS\Sysnative\wuuhext.dll
2015-10-28 18:58:45	3DB512EC071AB5656EECA3611E24C797	752640	----a-w-	C:\WINDOWS\Sysnative\ChatApis.dll
2015-10-28 18:58:45	3C096082A9232B7CEE4653B9C9031769	2228736	----a-w-	C:\WINDOWS\Sysnative\wlansvc.dll
2015-10-28 18:58:45	3B397ED55AE652520503CCE0996B0D25	160256	----a-w-	C:\WINDOWS\Sysnative\enrollmentapi.dll
2015-10-28 18:58:45	3A582ABD42FC7C40B944667EDCF5235F	949248	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2015-10-28 18:58:45	3A4A543F135DE9A06ABA9DF982D79DD7	526336	----a-w-	C:\WINDOWS\Sysnative\bisrv.dll
2015-10-28 18:58:45	38F08B82ADEEA1003B4A5177BB5366B3	347136	----a-w-	C:\WINDOWS\Sysnative\ncryptprov.dll
2015-10-28 18:58:45	37B5ECB8C390D9FD5A5BB2FFB7294B9E	553808	----a-w-	C:\WINDOWS\Sysnative\SettingSyncHost.exe
2015-10-28 18:58:45	334206DD8DA94B0AEBC46A3196888031	83968	----a-w-	C:\WINDOWS\Sysnative\DeviceEnroller.exe
2015-10-28 18:58:45	327DA4A4DE4E9BECF2C16967366C74E2	186880	----a-w-	C:\WINDOWS\Sysnative\cloudAP.dll
2015-10-28 18:58:45	32212C0FE0556915E763C29DEB6D267E	1423872	----a-w-	C:\WINDOWS\Sysnative\UserDataService.dll
2015-10-28 18:58:45	2C144777278ECD6DFF4B5A90F742C1AA	346112	----a-w-	C:\WINDOWS\Sysnative\ngccredprov.dll
2015-10-28 18:58:45	2481E9E8858AD0A223FA3110916EF0C1	6572032	----a-w-	C:\WINDOWS\Sysnative\wwanmm.dll
2015-10-28 18:58:45	230C8AEE3C7F4723ABEA09C93DF47AF3	257024	----a-w-	C:\WINDOWS\Sysnative\UserDataAccountApis.dll
2015-10-28 18:58:45	212E5C2C279835CBFEBF935EB0E7EC5D	16708608	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2015-10-28 18:58:45	194239DA484C7DB62E6773ABB5DD4463	269312	----a-w-	C:\WINDOWS\Sysnative\provengine.dll
2015-10-28 18:58:45	17159DF4093B2F33B95AB9F703EA8391	796160	----a-w-	C:\WINDOWS\Sysnative\TokenBroker.dll
2015-10-28 18:58:45	157B1CABAF5201237EECA4FB0F34D822	403456	----a-w-	C:\WINDOWS\Sysnative\dmenrollengine.dll
2015-10-28 18:58:45	14503C58C1528D83FB2328840784EC78	621056	----a-w-	C:\WINDOWS\Sysnative\enterprisecsps.dll
2015-10-28 18:58:45	11648E08564ECFC6CB435990261F1A34	1123400	----a-w-	C:\WINDOWS\Sysnative\winload.exe
2015-10-28 18:58:45	0D5C9E27E93AAEA3E30A1E59A7AC3DFF	1205248	----a-w-	C:\WINDOWS\Sysnative\Unistore.dll
2015-10-28 18:58:45	0968D575D9108497A6DC37749D4A6C4F	2093056	----a-w-	C:\WINDOWS\Sysnative\wlidsvc.dll
2015-10-28 18:58:45	09247D43F19CAFEEFEBF6A32F3A1225F	118272	----a-w-	C:\WINDOWS\Sysnative\KnobsCsp.dll
2015-10-28 18:58:45	031080A610C302B0279A267411EDB7E3	2226688	----a-w-	C:\WINDOWS\Sysnative\NetworkMobileSettings.dll
2015-10-28 18:58:45	02954F6B3389EF56088EF1C99B6105BA	202240	----a-w-	C:\WINDOWS\Sysnative\accountaccessor.dll
2015-10-28 18:58:45	02707CF32272B726BB410E6717BBB7E8	446976	----a-w-	C:\WINDOWS\Sysnative\MapConfiguration.dll
2015-10-28 18:58:45	02077F66F8CF2F1FD58403D371482B01	106496	----a-w-	C:\WINDOWS\Sysnative\KeywordDetectorMsftSidAdapter.dll
2015-10-28 18:54:25	E120E2F1237C890DBAC94A99917E5D07	157814	----a-w-	C:\WINDOWS\Sysnative\perfc013.dat
2015-10-28 18:54:25	88361FF7E914089E7D55A16669A0050D	45378	----a-w-	C:\WINDOWS\Sysnative\perfd013.dat
2015-10-28 18:54:25	069E69DEE7EE5C0E235AB2C35B272D3D	347470	----a-w-	C:\WINDOWS\Sysnative\perfi013.dat
2015-10-28 18:54:25	0148706623C3D8A4ECC167B10F3800DD	804938	----a-w-	C:\WINDOWS\Sysnative\perfh013.dat
2015-10-28 18:45:52	A2C74EF675150C94DA6D2A15B5F92612	1166520	----a-w-	C:\WINDOWS\Sysnative\PresentationNative_v0300.dll
2015-10-28 18:45:52	85BF4619A138A6A8AD31C6E83E795A98	124112	----a-w-	C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2015-10-28 18:45:52	26A67F58D21ECE5650005F43393C19FC	35480	----a-w-	C:\WINDOWS\Sysnative\TsWpfWrp.exe
2015-10-28 11:35:12	3E8A974FE22E7B71FD879E51DC9A2BD6	9482240	----a-w-	C:\WINDOWS\Sysnative\prm0013.dll
2015-10-28 11:35:11	0D9DEC1CEBB8E0E6D619D3ED2C677959	2353152	----a-w-	C:\WINDOWS\Sysnative\NlsData000c.dll
2015-10-28 11:35:11	02D8AB352A3DCF0952209B127A7ED78E	6238720	----a-w-	C:\WINDOWS\Sysnative\NlsLexicons000c.dll
2015-10-28 10:58:13	354AD3545C2B2DEB04E96AB10AA75CAB	26548584	----a-w-	C:\WINDOWS\Sysnative\nvoglv64.dll
2015-10-28 10:58:12	A25E0A5731306819C28B80447668C291	15522	----a-w-	C:\WINDOWS\Sysnative\nvinfo.pb
2015-10-28 10:58:11	77938D56F1009136975E7E200AC1FB3E	1468264	----a-w-	C:\WINDOWS\Sysnative\nvdispgenco64.dll
2015-10-28 10:58:11	6C2ED788A2FC8E68B1B458F91D16460B	1753448	----a-w-	C:\WINDOWS\Sysnative\nvdispco64.dll
2015-10-28 10:58:10	43D2CD1E76C5B3AC7DCB5CF880456759	18092904	----a-w-	C:\WINDOWS\Sysnative\nvd3dumx.dll
2015-10-28 10:58:09	2C81F737EE12B21456B97B496EA516AF	2213736	----a-w-	C:\WINDOWS\Sysnative\nvcuvenc.dll
2015-10-28 10:58:09	26EDFA7EE033639543E0481F66876F56	2733416	----a-w-	C:\WINDOWS\Sysnative\nvcuvid.dll
2015-10-28 10:58:08	0D1ECE476F1E24CE9EC1F1B08D4AB0EA	7701352	----a-w-	C:\WINDOWS\Sysnative\nvcuda.dll
2015-10-28 10:58:07	BE7A34CE742E21DCCE57D8935FA7AC37	2658664	----a-w-	C:\WINDOWS\Sysnative\nvapi64.dll
2015-10-28 10:58:07	5C9041BF86F0FA339C1DBBD260D81D66	25260392	----a-w-	C:\WINDOWS\Sysnative\nvcompiler.dll
2015-10-28 10:31:34	7CF6B890BE2A07B3D3F7351B1169322C	22744	----a-w-	C:\WINDOWS\Sysnative\emptyregdb.dat
2015-10-28 10:29:04	1F429616B426CA6BAF8DA1EC487269E0	1838560	----a-w-	C:\WINDOWS\Sysnative\PerfStringBackup.INI
====== C:\WINDOWS\Sysnative\drivers =====
2015-11-03 08:24:49	9C3AC71A9934B884FAC567A8807E9C4D	31800	----a-w-	C:\WINDOWS\Sysnative\drivers\revoflt.sys
2015-10-30 10:26:29	C8CC2A8C528F01869A5EEF211B6A7F9A	459104	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2015-10-28 18:58:53	7EBD20284AC9BF9F0A020B86769BB074	2432336	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2015-10-28 18:58:53	1434CA8A224655AD096D57DB24D3AA85	406864	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2015-10-28 18:58:52	927AD29D7F91B9A0C5294932374DA15E	894256	----a-w-	C:\WINDOWS\Sysnative\drivers\Wdf01000.sys
2015-10-28 18:58:52	616F40B897DA651221F86A1741E9609B	1168736	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2015-10-28 18:58:45	FDB239DBE2A14B572D21ABCEDC7BB5D0	505696	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms2.sys
2015-10-28 18:58:45	FA5C94FB36625787063D04CF2F24E890	320000	----a-w-	C:\WINDOWS\Sysnative\drivers\portcls.sys
2015-10-28 18:58:45	C08449092043601887A1743350888635	516448	----a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2015-10-28 18:58:45	B6A33DCEBE437F909615E89BA5FB1385	395088	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
2015-10-28 18:58:45	89C9C3745F270EF93988DA57BC6AA62B	1983824	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2015-10-28 18:58:45	854AF190F55E6D70EC65A85798F896E2	36352	----a-w-	C:\WINDOWS\Sysnative\drivers\buttonconverter.sys
2015-10-28 18:58:45	70469C8AC4AD367295E70CFDD81B754C	99664	----a-w-	C:\WINDOWS\Sysnative\drivers\pdc.sys
2015-10-28 18:58:45	5A1C6AFFF6946C5C21A27AE05084C0D1	332624	----a-w-	C:\WINDOWS\Sysnative\drivers\fastfat.sys
2015-10-28 18:58:45	0A368247A900656CC0678117DFC3A87C	498016	----a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2015-10-28 18:58:45	004C66464D8FE76D5DA78BE6777D61AF	278352	----a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2015-10-28 10:58:12	FB3FE5604EA8BA8D9F77A98026C7681E	13551976	----a-w-	C:\WINDOWS\Sysnative\drivers\nvlddmkm.sys
2015-10-28 10:07:46	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\WINDOWS\Sysnative\drivers\lvuvc.hs
2015-10-28 10:05:28	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-10-21 15:16:48	D2E83AA008426FC9408272035E50D40B	284080	----a-w-	C:\WINDOWS\Sysnative\drivers\avgldx64.sys
2015-10-21 15:15:02	0D853D9B288298D3C61D7FC94A659DB2	255408	----a-w-	C:\WINDOWS\Sysnative\drivers\avgmfx64.sys
====== C:\WINDOWS\Tasks ======
2015-11-02 09:26:26	2B35F7280921E869A1D2770D8B2E59EE	3404	----a-w-	C:\WINDOWS\Sysnative\Tasks\{76AEFA8B-13F9-4100-8811-C28EA09D43B8}
2015-11-02 09:24:38	738007C640CE39F5D9CE613CD8F08A8E	3398	----a-w-	C:\WINDOWS\Sysnative\Tasks\{59B88608-0221-4085-A612-8F918B87B70F}
2015-11-01 19:28:37	--------	d-----w-	C:\WINDOWS\Sysnative\Tasks\Apple
2015-11-01 19:14:58	7EA6F9EE52C0594430B317421D9AF8F5	4178	----a-w-	C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{4551179A-D7E0-460C-B152-03A88D014F1A}
2015-10-29 15:54:32	8C8AA257A43ACA0191BB63C2E3FA664F	3232	----a-w-	C:\WINDOWS\Sysnative\Tasks\{1E622DD4-EC26-4E21-95E6-C7F60FAC0625}
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-11-10 18:01:55	--------	d-----w-	C:\Program Files\Speccy
2015-11-09 19:52:31	--------	d-----w-	C:\Program Files\trend micro
2015-11-06 07:37:28	--------	d-----w-	C:\Program Files\CyberLink
2015-11-03 09:14:17	--------	d-----w-	C:\Program Files\proDAD
2015-11-03 08:24:46	--------	d-----w-	C:\Program Files\VS Revo Group
2015-11-01 19:31:00	--------	d-----w-	C:\Program Files\iTunes
2015-11-01 19:31:00	--------	d-----w-	C:\Program Files\iPod
2015-11-01 19:27:31	--------	d-----w-	C:\Program Files\Bonjour
2015-10-28 18:46:25	--------	d-----w-	C:\Program Files\Reference Assemblies
2015-10-28 18:46:25	--------	d-----w-	C:\Program Files\MSBuild
2015-10-28 10:07:40	--------	d-----w-	C:\Program Files\Common Files\logishrd
======= C:\PROGRA~2 =====
2015-11-09 15:04:35	--------	d-----w-	C:\PROGRA~2\TomTom HOME 2
2015-11-09 08:59:27	--------	d-----w-	C:\PROGRA~2\TomTom International B.V
2015-11-03 09:15:19	--------	d-----w-	C:\PROGRA~2\SmartSound Software
2015-11-01 19:31:00	--------	d-----w-	C:\PROGRA~2\iTunes
2015-11-01 19:28:36	--------	d-----w-	C:\PROGRA~2\Apple Software Update
2015-11-01 19:27:31	--------	d-----w-	C:\PROGRA~2\Bonjour
2015-10-29 16:13:09	--------	d-----w-	C:\PROGRA~2\Microsoft Games
2015-10-29 08:06:54	--------	d-----w-	C:\PROGRA~2\SlySoft
2015-10-29 07:49:47	--------	d-----w-	C:\PROGRA~2\Elaborate Bytes
2015-10-28 18:46:25	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2015-10-28 18:46:25	--------	d-----w-	C:\PROGRA~2\MSBuild
2015-10-28 10:07:42	--------	d-----w-	C:\PROGRA~2\COMMON~1\logishrd
2015-10-27 10:10:33	--------	d-----w-	C:\PROGRA~2\HWiNFO32
======= C: =====
====== C:\Users\jan\AppData\Roaming ======
2015-11-03 09:20:26	--------	d-----w-	C:\Users\jan\AppData\Local\CyberLink
2015-11-03 08:25:17	--------	d-----w-	C:\Users\jan\AppData\Local\VS Revo Group
2015-11-01 12:29:45	--------	d-----w-	C:\Users\jan\AppData\Local\qbAD0DC3F.31
2015-11-01 10:33:35	--------	d-----w-	C:\Users\jan\AppData\Local\speech
2015-10-29 12:49:31	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Programs
2015-10-29 12:49:31	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\DevelopmentFiles
2015-10-29 08:10:24	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog
2015-10-28 12:45:24	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing
2015-10-28 11:28:31	--------	d-----w-	C:\Users\jan\AppData\Local\MicrosoftEdge
2015-10-28 10:43:54	--------	d-----w-	C:\Users\jan\AppData\Local\Publishers
2015-10-28 10:40:47	--------	d-----w-	C:\Users\jan\AppData\Local\Comms
2015-10-28 10:39:34	--------	d-----w-	C:\Users\jan\AppData\Local\TileDataLayer
2015-10-28 10:29:12	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages
2015-10-28 10:25:03	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2015-10-28 10:22:25	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg
2015-10-28 10:21:12	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg
2015-10-28 10:10:07	--------	d-s---r-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-28 10:10:07	--------	d-----w-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-28 10:10:07	--------	d-----w-	C:\Users\jan\AppData\Roaming
2015-10-28 10:10:07	--------	d-----w-	C:\Users\jan\AppData\Local\Temp
2015-10-28 10:10:07	--------	d-----w-	C:\Users\jan\AppData\Local\Microsoft
2015-10-28 10:10:07	--------	d-----w-	C:\Users\jan\AppData\Local
2015-10-28 10:10:07	--------	d-----r-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-28 10:10:07	--------	d-----r-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-28 10:10:07	--------	d-----r-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-28 10:10:07	--------	d-----r-	C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-10-28 10:10:06	--------	d-s---r-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-28 10:10:06	--------	d-s---r-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Local\Temp
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Local\Microsoft
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UpdatusUser.ATHLON\AppData\Local
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Roaming
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Local\Temp
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Local\Microsoft
2015-10-28 10:10:06	--------	d-----w-	C:\Users\UPDATU~1.ATH\AppData\Local
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UpdatusUser.ATHLON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-28 10:10:06	--------	d-----r-	C:\Users\UPDATU~1.ATH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-28 10:10:04	--------	d-----w-	C:\Users\Administrator\AppData\Roaming
2015-10-28 10:10:04	--------	d-----w-	C:\Users\Administrator\AppData\Local\Temp
2015-10-28 10:10:04	--------	d-----w-	C:\Users\Administrator\AppData\Local\Microsoft
2015-10-28 10:10:04	--------	d-----w-	C:\Users\Administrator\AppData\Local
2015-10-26 11:32:39	--------	d-----w-	C:\Users\jan\AppData\Local\AvgSetupLog
====== C:\Users\jan ======
2015-11-10 18:24:51	1433D3463141ADF194163B3B9791631A	1131752	----a-w-	C:\Users\jan\Downloads\mappreporter (1).exe
2015-11-10 18:24:43	1433D3463141ADF194163B3B9791631A	1131752	----a-w-	C:\Users\jan\Downloads\mappreporter.exe
2015-11-10 18:01:57	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-11-10 18:01:30	678AB0E8665345E72D11149A36F965BE	5127432	----a-w-	C:\Users\jan\Downloads\spsetup128.exe
2015-11-09 19:51:54	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\jan\Desktop\RSITx64.exe
2015-11-09 15:03:39	5D4C0E1A15D3EFB767069F1BDA4D05F3	31109864	----a-w-	C:\Users\jan\Downloads\TomTomHOME2winlatest (1).exe
2015-11-09 09:29:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2015-11-09 09:19:07	B7B4656E0DB41DB4C677A324CC0F5DE5	6762072	----a-w-	C:\Users\jan\Downloads\ccsetup511 (3).exe
2015-11-09 09:18:53	B7B4656E0DB41DB4C677A324CC0F5DE5	6762072	----a-w-	C:\Users\jan\Downloads\ccsetup511 (2).exe
2015-11-09 09:18:47	B7B4656E0DB41DB4C677A324CC0F5DE5	6762072	----a-w-	C:\Users\jan\Downloads\ccsetup511 (1).exe
2015-11-09 09:18:44	B7B4656E0DB41DB4C677A324CC0F5DE5	6762072	----a-w-	C:\Users\jan\Downloads\ccsetup511.exe
2015-11-09 08:30:56	5D4C0E1A15D3EFB767069F1BDA4D05F3	31109864	----a-w-	C:\Users\jan\Downloads\TomTomHOME2winlatest.exe
2015-11-03 10:06:11	--------	d-----w-	C:\ProgramData\Temp
2015-11-03 09:15:19	--------	d-----w-	C:\ProgramData\SmartSound Software Inc
2015-11-03 09:15:19	--------	d-----w-	C:\ProgramData\eSellerate
2015-11-03 09:14:17	--------	d-----w-	C:\ProgramData\proDAD
2015-11-03 09:12:57	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2015-11-03 08:24:49	--------	d-----w-	C:\ProgramData\VS Revo Group
2015-11-03 08:24:49	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-11-03 08:23:12	F0D0DD8E42BEBA742C65FF479FE99C8D	11069616	----a-w-	C:\Users\jan\Downloads\RevoUninProSetup.exe
2015-11-02 11:56:22	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\winhttp
2015-11-02 09:24:02	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-02 09:21:22	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2015-11-02 08:51:16	697E634F717AAE8C0A2794756EF5826A	218123672	----a-w-	C:\Users\jan\Downloads\fsx_sp1_ENU (1).exe
2015-11-01 19:32:53	14E22D065DED86067F89ACED763410BC	18568608	----a-w-	C:\Users\jan\Downloads\HPEPrintSetupx64.exe
2015-11-01 19:31:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-11-01 19:24:51	CC2DF7564B49843D9E726F88DCE1093F	167839512	----a-w-	C:\Users\jan\Downloads\iTunes6464Setup.exe
2015-11-01 14:24:42	697E634F717AAE8C0A2794756EF5826A	218123672	----a-w-	C:\Users\jan\Downloads\fsx_sp1_ENU.exe
2015-10-29 16:01:12	F146300FCFEB5E1729799FF31E1BCCA9	8095640	----a-w-	C:\Users\jan\Downloads\gizmo-279-setup.exe
2015-10-29 15:56:46	D3AB99ACD4D9CDC3663D1B36F4064808	13146016	----a-w-	C:\Users\jan\Downloads\DTLite501-0406.exe
2015-10-29 15:51:53	E87CBD264A2CA9B80CC9883B3E6F3AA9	1709792	----a-w-	C:\Users\jan\Downloads\DTLiteInstaller.exe
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Videos
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Saved Games
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Recorded Calls
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Pictures
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\OneDrive
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Links
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Favorites
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Downloads
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Documents
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Desktop
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Contacts
2015-10-29 12:49:31	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\3D Objects
2015-10-29 12:49:30	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Searches
2015-10-29 12:49:30	--------	d-----r-	C:\WINDOWS\sysWoW64\config\systemprofile\Music
2015-10-29 08:17:39	935646152B4A65D0FC803C8F5F5BDE78	2836520	----a-w-	C:\Users\jan\Downloads\SetupCloneCD5320 (1).exe
2015-10-29 08:06:56	--------	d-----w-	C:\ProgramData\SlySoft
2015-10-29 08:06:36	935646152B4A65D0FC803C8F5F5BDE78	2836520	----a-w-	C:\Users\jan\Downloads\SetupCloneCD5320.exe
2015-10-29 07:50:52	34EEFDFCE94CF76E124842739B397A2F	126	--sh--w-	C:\ProgramData\.zreglib
2015-10-29 07:49:48	--------	d-----w-	C:\ProgramData\Elaborate Bytes
2015-10-29 07:49:08	1C300942102675F93D8B54F24F71C7FB	5262920	----a-w-	C:\Users\jan\Downloads\SetupCloneDVD2933Slysoft.exe
2015-10-28 10:49:44	1364E2881968F93E27E924114210DEDD	400	--sha-r-	C:\ProgramData\ntuser.pol
2015-10-28 10:40:01	--------	d-----r-	C:\Users\jan\Music
2015-10-28 10:39:04	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\jan\ntuser.ini
2015-10-28 10:25:05	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\UpdatusUser.ATHLON\ntuser.ini
2015-10-28 10:25:05	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\UPDATU~1.ATH\ntuser.ini
2015-10-28 10:10:07	--------	d--h--w-	C:\Users\jan\AppData
2015-10-28 10:10:06	--------	d--h--w-	C:\Users\UpdatusUser.ATHLON\AppData
2015-10-28 10:10:06	--------	d--h--w-	C:\Users\UPDATU~1.ATH\AppData
2015-10-28 10:10:04	--------	d--h--w-	C:\Users\Administrator\AppData
2015-10-27 19:32:19	--------	d-----w-	C:\ProgramData\VIPRE
2015-10-27 10:10:33	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2015-10-16 09:30:41	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag

====== C: exe-files ==
2015-11-10 19:19:15	1664BEEC9F45089BE6B3288E0F352A54	100	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IEB8ZVJ.exe
2015-11-10 19:18:07	7EA0260488F304D68067A50B33A23AC2	1309184	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$REB8ZVJ.exe
2015-11-09 19:52:31	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\jan.exe
2015-11-09 08:52:01	E2E10C459F1A96365CAD0FF36519D629	148	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IE7H6L2.exe
2015-11-09 08:52:01	A31BD9F33A909C85CFCC79F0574F981F	150	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IU0VV6I.exe
2015-11-09 08:52:01	39BCCCAB4421335CC6BB5480EDFF6D35	148	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IUWW5T6.exe
2015-11-09 08:52:00	253CD7F4F54F877A469B8C005DA0190F	166	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$I43OEKN.exe
2015-11-09 08:51:59	6456F80DBA97835EA4D16A622CAEBD06	176	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IXBW6JR.exe
2015-11-09 08:51:55	221283021F5441A81ECBF41322D90A8E	146	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IG2E6QU.exe
2015-11-09 08:51:54	AFB399C6FE9625E686EAACE2036F10F8	144	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IW5SUWD.exe
2015-11-09 08:51:53	9C748A54CB3E89DAD4064F6B69123039	132	----a-w-	C:\$Recycle.Bin\S-1-5-21-2417596937-1419322718-4049629523-1000\$IQELWJ0.exe
2015-11-06 07:44:50	C70F30AD0A519A53544129BD723CC5FB	390672	----a-w-	C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-11-06 07:44:50	C67C035A9FDB701AFEB9340F59B5165C	66312	----a-w-	C:\Program Files\CyberLink\Shared files\richvideoinstall.exe
2015-11-06 07:44:50	C21FC87EFCFB26F7372104EEB8821557	50952	----a-w-	C:\Program Files\CyberLink\Shared files\richvideouninstall.exe
2015-11-06 07:44:45	7EDA8482567192CAC1DE9D20B5D17EEF	74123	----a-w-	C:\Program Files\CyberLink\Shared files\PlugIn\NewBlue\UninstallVideoEssentialsBundleForPDR12.exe
2015-11-06 07:42:41	FF399657C48839F30362DFE2A47171CB	225032	----a-w-	C:\Program Files\CyberLink\PowerDirector12\MUITransfer\MUIStartMenu.exe
2015-11-06 07:42:41	C9BF39B52F11AFD05B12C1108DEE7B0D	438536	----a-w-	C:\Program Files\CyberLink\PowerDirector12\MUITransfer\MUIStartMenuX64.exe
2015-11-06 07:42:41	912F0F9DAE4B4A47D71263B129DD5E11	179976	----a-w-	C:\Program Files\CyberLink\PowerDirector12\OLRSubmission\OLRSubmission.exe
2015-11-06 07:42:41	1237974E398CB8B12619B1D76417D248	106248	----a-w-	C:\Program Files\CyberLink\PowerDirector12\OLRSubmission\OLRStateCheck.exe
2015-11-05 07:08:47	881DE7AA23DDE0A2B8E37FAE38979A31	1143872	----a-w-	C:\Program Files (x86)\AVG\Av\Notification\Launcher.exe
=== C: other files ==
2015-11-10 18:24:59	FE820A5F99B092C3660762C6FC6C64E0	23856	----a-w-	C:\Users\jan\AppData\Local\Temp\cpuz136\cpuz136_x64.sys
2015-11-10 18:20:38	072FA494D6FF4CFB26344747528C888D	9048424	----a-w-	C:\Users\jan\Downloads\M7641v3.0.zip
2015-11-10 18:02:02	E323413DE3CAEC7F7730B43C551F26A0	28392	----a-w-	C:\Users\jan\AppData\Local\Temp\cpuz138\cpuz138_x64.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Acrobat Synchronizer"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe"
"DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun"
"OneDrive"="C:\Users\jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"GizmoDriveDelegate"="C:\Program Files (x86)\Gizmo\gizmo.exe /RemountStartupImages"

[HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-2417596937-1419322718-4049629523-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files (x86)\AVG\Av\avgui.exe /TRAYONLY"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /fmw.trayonly"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Acrobat Synchronizer"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe"
"DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun"
"OneDrive"="C:\Users\jan\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"GizmoDriveDelegate"="C:\Program Files (x86)\Gizmo\gizmo.exe /RemountStartupImages"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12-08-2015 11:48]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12-08-2015 11:48]
C:\WINDOWS\tasks\WebReg HP Photosmart Wireless B109n-z.job --a-------- [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\WINDOWS\SysNative\tasks\AutoKMS" [C:\WINDOWS\AutoKMS\AutoKMS.exe]
"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{4551179A-D7E0-460C-B152-03A88D014F1A}" [C:\WINDOWS\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\{EB5A17F7-59B1-4914-80F9-8981CBF7FF0B}" [C:\Program Files (x86)\Gizmo\gizmo.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [31-12-2014 16:46]

==== Firefox Extensions ======================

ProfilePath: C:\Users\jan\AppData\Roaming\TomTom\HOME\Profiles\281z8062.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.8.562.438269@tomtom.com

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Slides - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Docs Offline - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
"Default_Page_URL"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} - No_Url_Value
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Reset Google Chrome ======================

C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\jan\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\jan\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=748 folders=202 1142074189 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\jan\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 10-11-2015 at 20:50:25,16 ======================