Zoek.exe v5.0.0.1 Updated 15-November-2015 Tool run by gebruiker on ma 16-11-2015 at 19:19:55,56. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\gebruiker\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 16-11-2015 19:22:39 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\69dc8177-a574-4dff-8461-b3267b078dcf deleted successfully C:\PROGRA~2\e4ae9ca4-1804-4ab4-b7ba-32b5808e8113 deleted successfully C:\PROGRA~3\APN deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\PicPick deleted successfully C:\PROGRA~3\Service1291 deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\gebruiker\AppData\Local\ActiveSync deleted successfully C:\Users\gebruiker\AppData\Local\NetworkTiles deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Acala DVD Ripper Professional 6.3.7.326 Alcor Micro USB Card Reader Aloha TriPeaks Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Atheros Driver Installation Program Autodesk Design Review 2013 Bejeweled 3 BJ Network Tool Bluetooth Stack for Windows by Toshiba Bonjour Bullzip PDF Printer 10.1.0.1871 calibre Canon My Printer CCleaner CD-LabelPrint Chuzzle Deluxe CPU Miner Definition Update for Microsoft Office 2010 (KB3101540) 32-Bit Edition Download & Installeer Packages DTS Sound Easy-WebPrint Empress of the Deep - The Darkest Secret Google Chrome Google Earth Google Update Helper Google+ Auto Backup Guardbox iCloud IDT Audio Driver Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel© Trusted Connect Service Client Island Tribe iTunes Java 8 Update 65 Java Auto Updater Jewel Quest Solitaire 2 Magic Academy Malwarebytes Anti-Malware versie 2.2.0.1024 McAfee LiveSafe - Internet Security Microsoft Office Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office Language Pack 2010 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (English) 2010 Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office SharePoint Designer MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Office X MUI (Dutch) 2010 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.20617 Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.20617 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.20617 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.20617 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD More Games - WildTangent PDF-Viewer PDF-XChange Editor pdfsam Peggle Nights Picasa 3 Plants vs. Zombies - Game of the Year Polar Bowler Popcorn Time Qualcomm Atheros Bluetooth Suite (64) Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver QuickTime 7 Rapport Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3101543) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598244) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101521) 32-Bit Edition Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3085594) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3101526) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition SketchUp 2015 Skype Click to Call SkypeT 7.14 Synaptics Pointing Device Driver System Checkup 3.5 Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TOSHIBA Addendum TOSHIBA Desktop Assist TOSHIBA Display Utility TOSHIBA eco Utility TOSHIBA Function Key TOSHIBA Manuals TOSHIBA Password Utility TOSHIBA PC Health Monitor TOSHIBA Recovery Media Creator TOSHIBA Service Station TOSHIBA System Driver TOSHIBA System Settings Toshiba TEMPRO TOSHIBA VIDEO PLAYER Trusteer Eindpuntbeveiliging Unlocker 1.9.2 Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2597089) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2837592) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB2910896) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3085604) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3101535) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2880517) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition Update Installer for WildTangent Games App Verzoek of wijziging voorlopige aanslag 2014 Virtual Villagers 4 - The Tree of Life VLC media player WildTangent Games WildTangent Games App (Toshiba Games) Wondershare Video Converter Ultimate(Build 8.2.0.0) ==== Running Processes ====================== C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe C:\Program Files (x86)\Popcorn Time\Updater.exe C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\node.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Users\gebruiker\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.3005.0_x86__8wekyb3d8bbwe\SkypeHost.exe ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\69dc8177-a574-4dff-8461-b3267b078dcf not found C:\PROGRA~2\e4ae9ca4-1804-4ab4-b7ba-32b5808e8113 not found C:\ProgramData\Service1291 not found C:\ProgramData\FlashBeat not found C:\Users\gebruiker\AppData\Roaming\0S1P1R2Y1C1P1Q0D1F2W1G1I1F1T1Q deleted C:\Users\gebruiker\AppData\Roaming\calibre deleted C:\windows\SysNative\Tasks\iolo System Checkup deleted C:\windows\SysNative\Tasks\KUMXRPWDTYHHCWVH deleted C:\windows\SysNative\Tasks\OXSZVRDQV1 deleted C:\WINDOWS\tasks\KUMXRPWDTYHHCWVH.job deleted C:\WINDOWS\tasks\OXSZVRDQV1.job deleted C:\PROGRA~3\28341ff220e0446c9fff27c4493d622e deleted C:\PROGRA~2\PC Speed Up deleted C:\PROGRA~2\Wondershare deleted C:\install.exe deleted C:\PROGRA~3\Wondershare Video Converter Ultimate deleted C:\PROGRA~3\ParetoLogic deleted C:\PROGRA~3\Package Cache deleted C:\Users\gebruiker\AppData\Local\BitLord deleted C:\Users\gebruiker\AppData\Local\Wondershare deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitlord deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\SysNative\roboot64.exe deleted C:\Users\gebruiker\Documents\BitLord deleted "C:\Windows\Installer\165978b0.msi" deleted "C:\Windows\Installer\1fa7c.msi" deleted "C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll" deleted "C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll" deleted "C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\DAQExp.dll" deleted "C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\WSHelper.exe" deleted "C:\Users\gebruiker\AppData\Roaming\PicPick" deleted "C:\PROGRA~2\COMMON~1\Wondershare" deleted "C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 6020 MB CPU Info: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz CPU Speed: 2425,5 MHz Sound Card: Speakers (IDT High Definition A | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Qualcomm Atheros AR956x Wireless Network Adapter | Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30) | Bluetooth Device (Personal Area Network) CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SU-208DB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 687,0GB Hard Disks - Free: C: 509,7GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | | TOSASU - 100 Time Zone: West-Europa (standaardtijd) Motherboard *: Intel PT10F Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Google Chrome 46.0.2490.86 Internet Explorer Version: 11.0.10586.0 Google Chrome version: 46.0.2490.86 Sun Java version: 1.8.0_65 (32-bit) Sun Java version: 1.8.0_65 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2015-11-14 13:52:35 9F40216C18FCB0F0CF65F1D9399F60C8 67584 --s-a-w- C:\WINDOWS\bootstat.dat 2015-11-14 12:59:17 692CA5EBC9E0CEF0A8D0BE4DF7400CEE 9528 ----a-w- C:\WINDOWS\diagwrn.xml 2015-11-14 12:59:17 692CA5EBC9E0CEF0A8D0BE4DF7400CEE 9528 ----a-w- C:\WINDOWS\diagerr.xml 2015-10-30 18:09:06 F59060E298148DE24DEBB3E8321C4407 31816 ----a-w- C:\WINDOWS\Core.xml 2015-10-30 07:19:30 669A44C0BCA67D8CDE111F7FBA91EE86 60416 ----a-w- C:\WINDOWS\twain_32.dll 2015-10-30 07:19:28 60336413E419C2EA5E215F1A32061E40 244736 ----a-w- C:\WINDOWS\notepad.exe 2015-10-30 07:18:41 E7E4D8D7340DA6934B9EA81CBB21374C 316640 ----a-w- C:\WINDOWS\WMSysPr9.prx 2015-10-30 07:18:29 8C459D003560EA9817F7CDB29AA55382 10240 ----a-w- C:\WINDOWS\winhlp32.exe 2015-10-30 07:18:16 C844CA459F3B209329984772269B6E56 670 ---ha-r- C:\WINDOWS\WindowsShell.Manifest 2015-10-30 07:18:14 E9C22DCE95A6E5B6C37FED42B3749E32 11264 ----a-w- C:\WINDOWS\write.exe 2015-10-30 07:18:10 4572EB3DDBD2DFA10DE7A037A6CC6D53 4502864 ----a-w- C:\WINDOWS\explorer.exe 2015-10-30 07:18:09 3BB80AF91D069F97006DCCC031164903 128000 ----a-w- C:\WINDOWS\splwow64.exe 2015-10-30 07:17:55 80F394B72E22F1186996459AE86709BA 994816 ----a-w- C:\WINDOWS\HelpPane.exe 2015-10-30 07:17:54 C7228F24B9130C64DCF4C390A04A775C 18432 ----a-w- C:\WINDOWS\hh.exe 2015-10-30 07:17:48 D9D56AFAA121BD6B4206F7FF3DA84BBA 320512 ----a-w- C:\WINDOWS\regedit.exe 2015-10-30 07:17:47 DE3C720C11A91557E1DFDFF0DB2AA3C2 61952 ----a-w- C:\WINDOWS\bfsvc.exe 2015-10-30 07:17:40 23AF90D2355D8C83AA4567EF1763B467 43131 ----a-w- C:\WINDOWS\mib.bin ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== 2015-11-16 18:16:13 4F85459CEC4F78A3987FFFD5B6A816C5 605 ----a-w- C:\Users\gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\52c00ce5-43e1e978 2015-11-16 18:16:13 CC61138299A67BBFD6584D55674D3F11 428 ----a-w- C:\Users\gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\52c00ce5-78e96a5ccf5c5b6a29dcdffe1d16c989d010904d54059e7b28aad8dacf6a56c9-6.0.lap 2015-11-16 18:16:13 C9588417B10E1D770E3E5DA1F3510AE5 8425 ----a-w- C:\Users\gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\298d42d-5f10b451 2015-11-16 18:16:21 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\gebruiker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\c8dc66e-1679fdbf ====== C:\WINDOWS\SysWOW64 ===== 2015-11-14 13:57:53 967596AE692AD8548BB12F7C3ABA4D07 69120 ----a-w- C:\WINDOWS\SysWOW64\OpenCL.DLL 2015-11-14 13:54:44 42DE22BB4E675AE8DADD9038B26F8EFE 2718208 ----a-w- C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-11-14 13:49:59 79422D76818752C6D935A97C8FFC4EEA 44147 ----a-w- C:\WINDOWS\SysWOW64\license.rtf 2015-11-14 13:43:46 6378BF30C350873C5BBF0BB05DFBA57D 12120064 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2015-11-14 13:43:46 0E453A64853E13797453C8140C446D40 2918808 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2015-11-14 13:43:45 F0ED21F9D39229B305C363B6ED023170 11776 ----a-w- C:\WINDOWS\SysWOW64\dciman32.dll 2015-11-14 13:43:45 A95DDF60D6EC95625C4987750619C5DB 93696 ----a-w- C:\WINDOWS\SysWOW64\fontsub.dll 2015-11-14 13:43:45 93050CE746C09F2F6F49A4893FB060ED 647168 ----a-w- C:\WINDOWS\SysWOW64\jscript.dll 2015-11-14 13:43:45 8E93F5481D1A608D90104F24DD610B76 540752 ----a-w- C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-11-14 13:43:45 8E2CB7E297C2631CB063319377ED7AD0 303104 ----a-w- C:\WINDOWS\SysWOW64\atmfd.dll 2015-11-14 13:43:45 5CC30558D7DE79B24749C25720C6B546 18677760 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2015-11-14 13:43:45 54F47C0CD2DE99A7B8C7583CF6C22D92 3072 ----a-w- C:\WINDOWS\SysWOW64\lpk.dll 2015-11-14 13:43:45 4800F10A0B8375D0DC41B69D89A04F10 2756096 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2015-11-14 13:43:45 3B7DA8EC6FC4F16F85934D944A2149CD 791552 ----a-w- C:\WINDOWS\SysWOW64\kerberos.dll 2015-11-14 13:43:45 3152BBDE03BFCEFCC1EB9167D3D14D8E 19339776 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2015-11-14 13:43:45 2C5A8D334EFB14914B1618247CD0DAAF 37376 ----a-w- C:\WINDOWS\SysWOW64\atmlib.dll 2015-11-14 13:42:01 6F2CA3BDD1C78C465BC0C1E5DDA15B28 2629632 ----a-w- C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2015-11-14 13:42:01 14129011499850E46153AB0E6C325F87 4847616 ----a-w- C:\WINDOWS\SysWOW64\NlsData0009.dll 2015-11-14 13:25:01 F432E0E5B0958F4982D40EB622FBD7FC 35480 ----a-w- C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-11-14 13:25:01 BF9CAA33ADD4C21C118148B5CFC5494B 778936 ----a-w- C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-11-14 13:25:01 6F391E9286733CC6B34FC0FAB23B8DF3 103120 ----a-w- C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll ====== C:\WINDOWS\SysWOW64\drivers ===== 2015-10-30 07:18:29 7F29903CB8F5590D52DB0C9F97049A25 3440660 ----a-w- C:\WINDOWS\SysWOW64\drivers\gm.dls 2015-10-30 07:18:29 7111BFA692A22E4B3C07F1E6C6FF6F72 646 ----a-w- C:\WINDOWS\SysWOW64\drivers\gmreadme.txt ====== C:\WINDOWS\Sysnative ===== 2015-11-16 18:07:37 CB136B267569A62EF63D798BC90ABD5A 144 ----a-w- C:\WINDOWS\Sysnative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-11-14 15:05:24 9F45771914360A925252A1B7226EC7EC 451 ----a-w- C:\WINDOWS\Sysnative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2015-11-14 14:32:40 FE808074474ED672995DE816A21CC330 22980 ----a-w- C:\WINDOWS\Sysnative\emptyregdb.dat 2015-11-14 14:25:31 69318E04AB971342A5ACC45A28BD1384 1847504 ----a-w- C:\WINDOWS\Sysnative\PerfStringBackup.INI 2015-11-14 13:57:53 E2A042032FAECB04477D8235FD1181FF 72704 ----a-w- C:\WINDOWS\Sysnative\OpenCL.DLL 2015-11-14 13:51:02 1FE9001DEB0B119A39DE6443A56464CC 348408 ----a-w- C:\WINDOWS\Sysnative\FNTCACHE.DAT 2015-11-14 13:49:59 79422D76818752C6D935A97C8FFC4EEA 44147 ----a-w- C:\WINDOWS\Sysnative\license.rtf 2015-11-14 13:43:46 DC7C53677CB131B3F31CD872BD81FCC4 7680 ----a-w- C:\WINDOWS\Sysnative\readingviewresources.dll 2015-11-14 13:43:46 BB2DD53E90A958FDB1254839F30329D5 803840 ----a-w- C:\WINDOWS\Sysnative\jscript.dll 2015-11-14 13:43:46 9D62E2A71D46051A4E79CE6D7ED48745 13376512 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2015-11-14 13:43:45 FCB7D0215CA010400777A2144432FBDC 630632 ----a-w- C:\WINDOWS\Sysnative\fontdrvhost.exe 2015-11-14 13:43:45 D84C456794F208043E52D1096F37E2B3 1393664 ----a-w- C:\WINDOWS\Sysnative\win32kbase.sys 2015-11-14 13:43:45 C92E9E1923B6681DB1336D356A4A82AC 7477088 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2015-11-14 13:43:45 B8F17AB618578B9024D949DE8308B95A 14336 ----a-w- C:\WINDOWS\Sysnative\dciman32.dll 2015-11-14 13:43:45 9BF34692BC6933BAB7627EC173EB1E8A 45568 ----a-w- C:\WINDOWS\Sysnative\atmlib.dll 2015-11-14 13:43:45 877512145CB9B3F6EBD5424DE15C14F8 365568 ----a-w- C:\WINDOWS\Sysnative\atmfd.dll 2015-11-14 13:43:45 856545B4E7B8B459C75A239EA62E8791 24603136 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2015-11-14 13:43:45 8456D2DBEAC8F06712FE8AC2AB5A1AE2 969728 ----a-w- C:\WINDOWS\Sysnative\kerberos.dll 2015-11-14 13:43:45 836CB99DCDE7F690514F0558737A1EA1 22394880 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2015-11-14 13:43:45 6D64E74EF63AD36912C89EA80449A299 118272 ----a-w- C:\WINDOWS\Sysnative\fontsub.dll 2015-11-14 13:43:45 6ABAC83AD594B0390C470F9C1C017382 3072 ----a-w- C:\WINDOWS\Sysnative\lpk.dll 2015-11-14 13:43:45 43F5135D228CFC6B5F7963E0490F7B6B 115200 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2015-11-14 13:43:45 182C2ECD3C2EF931F470765785AC83A1 2756096 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2015-11-14 13:43:45 171EB9142E9603A199A624C75EB22DC3 3670832 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2015-11-14 13:43:45 0BB0769EEE5E170CE0B33AC7BF869E48 3592704 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2015-11-14 13:42:01 F44AA79DF45B1CAE6E6C64372D846AA5 6359040 ----a-w- C:\WINDOWS\Sysnative\NlsData0009.dll 2015-11-14 13:42:01 E52612EA0C1C1ACD3ABFD09534F6AAE6 5739520 ----a-w- C:\WINDOWS\Sysnative\prm0009.dll 2015-11-14 13:42:01 8F1CD3FABC7F24FE329FE39A3EB58C58 2629632 ----a-w- C:\WINDOWS\Sysnative\NlsLexicons0009.dll 2015-11-14 13:24:48 E91942A0D00C6AA014B2EA33EE0ED0A3 35480 ----a-w- C:\WINDOWS\Sysnative\TsWpfWrp.exe 2015-11-14 13:24:48 E2296A6174894682DF8F0FF29FDDCC82 1166520 ----a-w- C:\WINDOWS\Sysnative\PresentationNative_v0300.dll 2015-11-14 13:24:48 C5FEF4B4A7FB961ECDB0AB07DBCF379E 124624 ----a-w- C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2015-11-14 13:58:30 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SynTP_01011.Wdf 2015-11-14 13:58:00 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2015-11-14 13:57:21 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-11-14 13:43:46 91D3F2A6253EF83EFBD7903028F58C4D 118624 ----a-w- C:\WINDOWS\Sysnative\drivers\tdx.sys 2015-11-14 13:43:45 70148EFA9A562E7185B75BBE7D376BF7 578912 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2015-10-30 07:19:42 1DC2CC74B51E4DC4CD5A20C1021E4010 173056 ----a-w- C:\WINDOWS\Sysnative\drivers\rdpdr.sys 2015-10-30 07:19:39 1C08E424CBDD5065BB7266F8C048C1B1 30560 ----a-w- C:\WINDOWS\Sysnative\drivers\WpdUpFltr.sys 2015-10-30 07:19:26 13D72CB58503C91ECD4D98C25B3E7D56 19296 ----a-w- C:\WINDOWS\Sysnative\drivers\ntosext.sys 2015-10-30 07:18:47 177DF954D0DEC0465A380C75F6E7F65F 29536 ----a-w- C:\WINDOWS\Sysnative\drivers\rdpvideominiport.sys 2015-10-30 07:18:43 CCAD845F4D21D0E0E0468205EE865473 285696 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys 2015-10-30 07:18:43 ACC1709EC7FE6EB8999DBC91C50C2B34 407552 ----a-w- C:\WINDOWS\Sysnative\drivers\srv.sys 2015-10-30 07:18:43 96972FF2A837EBAD408B3ACE099FC99D 88496 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpfve.sys 2015-10-30 07:18:43 87870D9FA15A649DAF7D36C6E956AC8A 32768 ----a-w- C:\WINDOWS\Sysnative\drivers\usbrpm.sys 2015-10-30 07:18:43 421497634C86EF4B8F86D0EBC076728F 638304 ----a-w- C:\WINDOWS\Sysnative\drivers\fvevol.sys 2015-10-30 07:18:42 22C52D7EE7C7D0E02C8EFD8CAE8E3A71 52768 ----a-w- C:\WINDOWS\Sysnative\drivers\wpcfltr.sys 2015-10-30 07:18:18 5B23A79E2C76215BC5A0CBA834290F37 39776 ----a-w- C:\WINDOWS\Sysnative\drivers\werkernel.sys 2015-10-30 07:18:09 CBA5E88A0F0475B7F49653BB72150BEF 29024 ----a-w- C:\WINDOWS\Sysnative\drivers\hwpolicy.sys 2015-10-30 07:18:09 A932391623D5CEC4EF4A2A17D3CEBFCD 216064 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFRd.sys 2015-10-30 07:18:09 A928F25CB62232F413EE655352856E10 98816 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFPf.sys 2015-10-30 07:18:09 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\WINDOWS\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf 2015-10-30 07:18:09 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\WINDOWS\Sysnative\drivers\MsftWdf_Kernel_01017_Inbox_Critical.Wdf 2015-10-30 07:18:09 8B4B39C507ABA09AAFE8E3932D1B392C 385376 ----a-w- C:\WINDOWS\Sysnative\drivers\clfs.sys 2015-10-30 07:18:09 7F9C7226D743B232907ED2537B8A574F 92672 ----a-w- C:\WINDOWS\Sysnative\drivers\cdfs.sys 2015-10-30 07:18:09 341E6830DA70F65730300DAB4CB0B490 930656 ----a-w- C:\WINDOWS\Sysnative\drivers\refsv1.sys 2015-10-30 07:18:08 F51C02D992A8D6BC5EC4D990F227D4C7 279552 ----a-w- C:\WINDOWS\Sysnative\drivers\netbt.sys 2015-10-30 07:18:08 BEE9C8B72AB752B794F69C2B9B3678AA 367968 ----a-w- C:\WINDOWS\Sysnative\drivers\volmgrx.sys 2015-10-30 07:18:08 ABBB149E1962C4E7DF06382F4B1FE55A 129368 ----a-w- C:\WINDOWS\Sysnative\drivers\tm.sys 2015-10-30 07:18:08 A403DAE4B083EB96BC6CEDB47639B4F8 1089888 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2015-10-30 07:18:08 555208AC157FD2B01BCEC0CD1B2E38C1 35680 ----a-w- C:\WINDOWS\Sysnative\drivers\Dumpata.sys 2015-10-30 07:18:08 3DF7751D5DC6525E7DC6617FBB45054F 218624 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2015-10-30 07:18:03 F6A2D0EC594A1039B0F9D42BB8EC0BD3 2152800 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2015-10-30 07:18:03 E42C0F2850735FF9D908B9DB581E6314 200536 ----a-w- C:\WINDOWS\Sysnative\drivers\VerifierExt.sys 2015-10-30 07:18:03 D8966A76408107224C6013993135DD78 106520 ----a-w- C:\WINDOWS\Sysnative\drivers\WindowsTrustedRT.sys 2015-10-30 07:18:03 D5B7668A8F6C67C51FA5C6C513396D6C 102752 ----a-w- C:\WINDOWS\Sysnative\drivers\mountmgr.sys 2015-10-30 07:18:03 D356F0A996E1F061025B975C1A7ACF29 465248 ----a-w- C:\WINDOWS\Sysnative\drivers\netio.sys 2015-10-30 07:18:03 D123343DDB02E372B02BF2C4293F835F 31232 ----a-w- C:\WINDOWS\Sysnative\drivers\msfs.sys 2015-10-30 07:18:03 CC71372CEB811A72F1DC99089C5CBF53 31584 ----a-w- C:\WINDOWS\Sysnative\drivers\fs_rec.sys 2015-10-30 07:18:03 CA0D42029AFFC4514D295E1EF823D02D 26624 ----a-w- C:\WINDOWS\Sysnative\drivers\ioqos.sys 2015-10-30 07:18:03 C1CEA624366F4A398B21566D16F3EFF4 375648 ----a-w- C:\WINDOWS\Sysnative\drivers\Classpnp.sys 2015-10-30 07:18:03 B5E45BF47AE0C1D724FBD51CE8D6CDEE 61248 ----a-w- C:\WINDOWS\Sysnative\drivers\WdfLdr.sys 2015-10-30 07:18:03 AFAECF904F1C343EBD50F91BC8D0DBE8 1152864 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2015-10-30 07:18:03 982C795DE20CED7AEDD2E7899B5D9BC1 129888 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecdd.sys 2015-10-30 07:18:03 892F30506DCCF230C5A57019C1D8D31B 2403680 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2015-10-30 07:18:03 7284BD8705CF83CAE1775A0B98A1E7E4 20320 ----a-w- C:\WINDOWS\Sysnative\drivers\wmilib.sys 2015-10-30 07:18:03 6DBD703320484C37CEA9E4E2D266A8CE 7168 ----a-w- C:\WINDOWS\Sysnative\drivers\null.sys 2015-10-30 07:18:03 6CC727E94CD84E9720FDCDA8089CABCC 794432 ----a-w- C:\WINDOWS\Sysnative\drivers\Wdf01000.sys 2015-10-30 07:18:03 6AE525646D5A7D3C6F180F08846978F6 405856 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2015-10-30 07:18:03 465DC580170CD844206D7E3EF1DBF2A1 68608 ----a-w- C:\WINDOWS\Sysnative\drivers\npfs.sys 2015-10-30 07:18:03 3995CC3DEDED258768B8EBC2F4C0DC73 61952 ----a-w- C:\WINDOWS\Sysnative\drivers\UcmCx.sys 2015-10-30 07:18:03 390B8A75768E2689586539C224520895 78848 ----a-w- C:\WINDOWS\Sysnative\drivers\storqosflt.sys 2015-10-30 07:18:03 2871225495F832A8C8A7DD1A17EDB3DC 40960 ----a-w- C:\WINDOWS\Sysnative\drivers\nsiproxy.sys 2015-10-30 07:18:03 2773E58897A3486354275019214BA6B9 39776 ----a-w- C:\WINDOWS\Sysnative\drivers\tdi.sys 2015-10-30 07:18:03 25D7A58625E1453E40D36825DE74E4F1 377696 ----a-w- C:\WINDOWS\Sysnative\drivers\fltMgr.sys 2015-10-30 07:18:03 24AC0FD10325FBC2303B29A5F237AEB0 118624 ----a-w- C:\WINDOWS\Sysnative\drivers\partmgr.sys 2015-10-30 07:18:03 22A53744CEEADFFFD33BA010FAD95229 51544 ----a-w- C:\WINDOWS\Sysnative\drivers\pcw.sys 2015-10-30 07:18:03 182711E9DDF70121A20EBB61B2DFB9E8 354144 ----a-w- C:\WINDOWS\Sysnative\drivers\msrpc.sys 2015-10-30 07:18:03 0AA9752E990BA2B0ACF440B7FAEE650E 25440 ----a-w- C:\WINDOWS\Sysnative\drivers\WppRecorder.sys 2015-10-30 07:18:03 02B8E49148DE5E0A2F6FDF28CE94A6AC 50016 ----a-w- C:\WINDOWS\Sysnative\drivers\condrv.sys 2015-10-30 07:18:01 C11272713719922DE5711094333BD166 154464 ----a-w- C:\WINDOWS\Sysnative\drivers\wfplwfs.sys 2015-10-30 07:17:59 5FBCB85D127BE21E3A9DAF11A13C00EA 76288 ----a-w- C:\WINDOWS\Sysnative\drivers\mpsdrv.sys 2015-10-30 07:17:58 DA2C6F7ACE392193C424FEA975C5BFFB 105984 ----a-w- C:\WINDOWS\Sysnative\drivers\bowser.sys 2015-10-30 07:17:58 D2ED12C0B38F0B09DA8723CF0DBB4654 576864 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2015-10-30 07:17:58 C9478D7DB7BE5D7ACE65CB1167F07320 148480 ----a-w- C:\WINDOWS\Sysnative\drivers\dfsc.sys 2015-10-30 07:17:58 AFBCFC946FAE7483E27BD316D03F94A5 690688 ----a-w- C:\WINDOWS\Sysnative\drivers\srv2.sys 2015-10-30 07:17:58 A2512BC5F2ABD84D8B3CB0D76ADB749A 1997664 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2015-10-30 07:17:58 97F5A1D8AD1CB0A73C86F53C60DA06B6 50176 ----a-w- C:\WINDOWS\Sysnative\drivers\videoprt.sys 2015-10-30 07:17:58 8AD4E5544825EBC298B4C138C070185F 58880 ----a-w- C:\WINDOWS\Sysnative\drivers\watchdog.sys 2015-10-30 07:17:58 61F9F27A8C3D7BCD287FE98A440421CE 430944 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2015-10-30 07:17:58 60F88248608315E13391C2F1C3B4473F 124248 ----a-w- C:\WINDOWS\Sysnative\drivers\mup.sys 2015-10-30 07:17:58 4149BF1B499DA6852B1ADC74E3EB9145 393560 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2015-10-30 07:17:58 2B648363E4C5E34B469C58596F377DD9 422752 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2015-10-30 07:17:58 107C1EBE79710E4A759449BD6604245A 235520 ----a-w- C:\WINDOWS\Sysnative\drivers\srvnet.sys 2015-10-30 07:17:58 0F47A6C09F0A7FB5513D322A2B9BE4EC 216408 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2015-10-30 07:17:57 7F29903CB8F5590D52DB0C9F97049A25 3440660 ----a-w- C:\WINDOWS\Sysnative\drivers\gm.dls 2015-10-30 07:17:57 7111BFA692A22E4B3C07F1E6C6FF6F72 646 ----a-w- C:\WINDOWS\Sysnative\drivers\gmreadme.txt 2015-10-30 07:17:57 64BD0C87064EA20C2D3DC4199F9C239C 47616 ----a-w- C:\WINDOWS\Sysnative\drivers\mmcss.sys 2015-10-30 07:17:53 2BBD3A492B93C7E669D01EE88977D7DE 146272 ----a-w- C:\WINDOWS\Sysnative\drivers\appid.sys 2015-10-30 07:17:52 F802FBABF0C4DF1BAA733187B2E476F5 163680 ----a-w- C:\WINDOWS\Sysnative\drivers\msgpioclx.sys 2015-10-30 07:17:52 E2F8376F9731D12A009C522036C6073A 721408 ----a-w- C:\WINDOWS\Sysnative\drivers\PEAuth.sys 2015-10-30 07:17:52 9F2AE73C6D42BA8573F8BF5E6860D5B8 605440 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2015-10-30 07:17:52 9B6B1D4DB35A3D9BEAF023BC95E1F49D 43008 ----a-w- C:\WINDOWS\Sysnative\drivers\scfilter.sys 2015-10-30 07:17:52 903E6E28309F1566E58BCBD43F46C010 161632 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2015-10-30 07:17:52 6E59CE43B6BA5AA1ADCF36A4DBBB92BB 57696 ----a-w- C:\WINDOWS\Sysnative\drivers\urscx01000.sys 2015-10-30 07:17:52 5F0D997E6FC5A418D7673148CEF72887 254816 ----a-w- C:\WINDOWS\Sysnative\drivers\ufx01000.sys 2015-10-30 07:17:52 58D640BC2294C71BDE0953F12D4B432F 39264 ----a-w- C:\WINDOWS\Sysnative\drivers\cnghwassist.sys 2015-10-30 07:17:52 06F5243040EAECCDB75062AE25C6631D 638816 ----a-w- C:\WINDOWS\Sysnative\drivers\ClipSp.sys 2015-10-30 07:17:51 FC7A8A729B3AB453B2540798640D85E8 22016 ----a-w- C:\WINDOWS\Sysnative\drivers\smclib.sys 2015-10-30 07:17:51 F7583C824464CA3FC54742781B58D156 77152 ----a-w- C:\WINDOWS\Sysnative\drivers\crashdmp.sys 2015-10-30 07:17:51 F6A0BAFBF599CDE8426BC5B249F3F0D8 38240 ----a-w- C:\WINDOWS\Sysnative\drivers\Diskdump.sys 2015-10-30 07:17:51 EF75184B64356850D0F04D049C253526 10752 ----a-w- C:\WINDOWS\Sysnative\drivers\mspclock.sys 2015-10-30 07:17:51 E9BB0023D730701BB5D9839B44F5E6B5 26112 ----a-w- C:\WINDOWS\Sysnative\drivers\ksthunk.sys 2015-10-30 07:17:51 E9457EDFEBC774199F907395C6D09CA2 13824 ----a-w- C:\WINDOWS\Sysnative\drivers\mskssrv.sys 2015-10-30 07:17:51 E1C158F6C00359278727A2CEE5D2ED71 77664 ----a-w- C:\WINDOWS\Sysnative\drivers\SpbCx.sys 2015-10-30 07:17:51 E04288E0D41DDCC9C3D41C808785D586 390656 ----a-w- C:\WINDOWS\Sysnative\drivers\ks.sys 2015-10-30 07:17:51 D10640D88BBEAC0C5B8E9771A86F2176 465248 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2015-10-30 07:17:51 CEF108FCE06892CFA5F1B49527D4BF49 88416 ----a-w- C:\WINDOWS\Sysnative\drivers\EhStorClass.sys 2015-10-30 07:17:51 C93438D72136124C4908C93040022684 36864 ----a-w- C:\WINDOWS\Sysnative\drivers\USBCAMD2.sys 2015-10-30 07:17:51 B8C4852CBCAAC1374C08EC7445443824 155488 ----a-w- C:\WINDOWS\Sysnative\drivers\SerCx2.sys 2015-10-30 07:17:51 B2044D5D125F249680508EC0B2AAEFAC 8704 ----a-w- C:\WINDOWS\Sysnative\drivers\mshidkmdf.sys 2015-10-30 07:17:51 83A2AB75951000D681FABDB80C07AEFC 12800 ----a-w- C:\WINDOWS\Sysnative\drivers\mstee.sys 2015-10-30 07:17:51 67DA0E88D4855E2E6145182B87D6EC86 31232 ----a-w- C:\WINDOWS\Sysnative\drivers\tape.sys 2015-10-30 07:17:51 67585C295FF2D221679E376B68893B35 74584 ----a-w- C:\WINDOWS\Sysnative\drivers\SerCx.sys 2015-10-30 07:17:51 5A88834AEE15D97695FAE0837B73B3E4 9728 ----a-w- C:\WINDOWS\Sysnative\drivers\beep.sys 2015-10-30 07:17:51 580EF74A18E5357AC88FB04E2864ED74 23552 ----a-w- C:\WINDOWS\Sysnative\drivers\mcd.sys 2015-10-30 07:17:51 543933D166C618E7588EA77707EC1683 10752 ----a-w- C:\WINDOWS\Sysnative\drivers\mspqm.sys 2015-10-30 07:17:51 3DE7C9F63DB19B0C6101C39761F8AD1D 74240 ----a-w- C:\WINDOWS\Sysnative\drivers\stream.sys 2015-10-30 07:17:51 36ABE7FC80BED4FE44754AE5CFB51432 11776 ----a-w- C:\WINDOWS\Sysnative\drivers\mshidumdf.sys 2015-10-30 07:17:51 31F193EEC1A499D4BB93C70ED238C31C 14336 ----a-w- C:\WINDOWS\Sysnative\drivers\Dmpusbstor.sys 2015-10-30 07:17:51 26680088FE0841859B07128D00BB38FC 173408 ----a-w- C:\WINDOWS\Sysnative\drivers\scsiport.sys 2015-10-30 07:17:50 92ECCFA58C8195B8EA33ED942469D4E6 85344 ----a-w- C:\WINDOWS\Sysnative\drivers\fileinfo.sys 2015-10-30 07:17:50 718A956AE00CE086F381044AB66CC29C 321024 ----a-w- C:\WINDOWS\Sysnative\drivers\udfs.sys 2015-10-30 07:17:50 2A9650FCC696DB28E45EA8B33B99B8E6 199008 ----a-w- C:\WINDOWS\Sysnative\drivers\wof.sys 2015-10-30 07:17:49 DFE8A33FBCF6F38182631A4D6097B92D 320000 ----a-w- C:\WINDOWS\Sysnative\drivers\exfat.sys 2015-10-30 07:17:49 413093D680826762AC809D0B65E17BE5 35680 ----a-w- C:\WINDOWS\Sysnative\drivers\wimmount.sys 2015-10-30 07:17:48 5D1680871054D2B0B8A971BC8AB3B837 236384 ----a-w- C:\WINDOWS\Sysnative\drivers\rdyboost.sys 2015-10-30 07:17:47 37C9EC0398BFC22C616711E41AE157D5 144384 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2015-10-30 07:17:47 2FCF837196082864F66CFD9CAB256275 126464 ----a-w- C:\WINDOWS\Sysnative\drivers\luafv.sys 2015-10-30 07:17:46 D011B0ADB15F4815310CE1BF4780B33E 8192 ----a-w- C:\WINDOWS\Sysnative\drivers\gpuenergydrv.sys 2015-10-30 07:17:46 BEF8B869EDB75B97EDB4E8A334F02842 25440 ----a-w- C:\WINDOWS\Sysnative\drivers\tbs.sys 2015-10-30 07:17:46 B4175E8BE60B099686FF55CA7D692316 62816 ----a-w- C:\WINDOWS\Sysnative\drivers\fsdepends.sys 2015-10-30 07:17:46 87C51FDD50C17882BA93E28BBABB9847 35840 ----a-w- C:\WINDOWS\Sysnative\drivers\filetrace.sys 2015-10-30 07:17:46 2619DC483579DB9FE804044C1ADFFD1A 61280 ----a-w- C:\WINDOWS\Sysnative\drivers\dam.sys 2015-10-30 07:17:46 03DE0EC072C5EBD5B018CAD83F1E522A 335712 ----a-w- C:\WINDOWS\Sysnative\drivers\fastfat.sys 2015-10-30 07:17:43 CAD4D520592B30F569C320A0EC050C21 23040 ----a-w- C:\WINDOWS\Sysnative\drivers\usb8023.sys 2015-10-30 07:17:43 A74EE2D2C0BFF5EC3A6185791868C4CA 63488 ----a-w- C:\WINDOWS\Sysnative\drivers\ndisuio.sys 2015-10-30 07:17:43 9E5E8F2A1996F23B7E9687846AA81B01 143360 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys 2015-10-30 07:17:42 C317EB660138BC9CBFE37CCDE56351AE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\irenum.sys 2015-10-30 07:17:42 A1D473D0CF10561F29B58EA7C5412A92 126976 ----a-w- C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys 2015-10-30 07:17:42 5E00748A1AD246CAECBBB7553BED36CC 28160 ----a-w- C:\WINDOWS\Sysnative\drivers\asyncmac.sys 2015-10-30 07:17:42 32A9BD1342640D48AD85C8B3E812B984 20480 ----a-w- C:\WINDOWS\Sysnative\drivers\NdisVirtualBus.sys 2015-10-30 07:17:41 A934DF064C503A31683DD7EECDBD327A 114688 ----a-w- C:\WINDOWS\Sysnative\drivers\bridge.sys 2015-10-30 07:17:41 8D4B46FA84A3A3702EDADD37FAC6EDBA 41984 ----a-w- C:\WINDOWS\Sysnative\drivers\modem.sys 2015-10-30 07:17:41 5BA6B9AD03B81546BA64E488C4EF9D17 95744 ----a-w- C:\WINDOWS\Sysnative\drivers\raspptp.sys 2015-10-30 07:17:41 381B8F2311A0375676B635EA5E7C8AB0 104960 ----a-w- C:\WINDOWS\Sysnative\drivers\rasl2tp.sys 2015-10-30 07:17:41 312E61F310F440379EAB18B5EAEAC22A 12800 ----a-w- C:\WINDOWS\Sysnative\drivers\rootmdm.sys 2015-10-30 07:17:41 202260E7CDD731A32AF62ABD1ABEE008 50176 ----a-w- C:\WINDOWS\Sysnative\drivers\ndiscap.sys 2015-10-30 07:17:41 1E32A8CD65C4AD0A827CFEB13034DA29 78336 ----a-w- C:\WINDOWS\Sysnative\drivers\rassstp.sys 2015-10-30 07:17:41 17F37EC9042D84561C550620643D9A85 52224 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpipreg.sys 2015-10-30 07:17:40 EC34EED89C34B27C292166B725AC7A7B 64000 ----a-w- C:\WINDOWS\Sysnative\drivers\lltdio.sys 2015-10-30 07:17:40 E70DDD8E2245CC67547B0861983912D8 694784 ----a-w- C:\WINDOWS\Sysnative\drivers\WdiWiFi.sys 2015-10-30 07:17:40 E15A9CE1E2E7D1C8DF97A4FC1FFE6289 105472 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2015-10-30 07:17:40 AFF59ECB510B9F1C89883FF82D4996E6 34304 ----a-w- C:\WINDOWS\Sysnative\drivers\RNDISMP.sys 2015-10-30 07:17:40 938E4EF58E42D252B742B0E243011B90 74240 ----a-w- C:\WINDOWS\Sysnative\drivers\vwififlt.sys 2015-10-30 07:17:40 8CE72F094B822AD5EE9C3A3AFC0C16B6 153600 ----a-w- C:\WINDOWS\Sysnative\drivers\tunnel.sys 2015-10-30 07:17:40 8CB53620B2C2F0641DD7563EA0FDF491 79872 ----a-w- C:\WINDOWS\Sysnative\drivers\wanarp.sys 2015-10-30 07:17:40 6E3F9D95235DFC9417384080A216F310 85504 ----a-w- C:\WINDOWS\Sysnative\drivers\ipfltdrv.sys 2015-10-30 07:17:40 638B43D39A3D0B47024555CF1095E6F1 22528 ----a-w- C:\WINDOWS\Sysnative\drivers\ws2ifsl.sys 2015-10-30 07:17:40 536A0806CE2061A2157E65D4D8ABF30C 530432 ----a-w- C:\WINDOWS\Sysnative\drivers\nwifi.sys 2015-10-30 07:17:40 50AEF8EF0064A91ABB08D858D039C9DE 60928 ----a-w- C:\WINDOWS\Sysnative\drivers\ndproxy.sys 2015-10-30 07:17:40 45413D9ADD6E76ABE99A452956E434CE 120320 ----a-w- C:\WINDOWS\Sysnative\drivers\irda.sys 2015-10-30 07:17:40 3BE5AAC930447FD18D4A8255A2FEC95C 39936 ----a-w- C:\WINDOWS\Sysnative\drivers\vwifimp.sys 2015-10-30 07:17:40 3369023EB5790A75BA7DABA14B75D922 81408 ----a-w- C:\WINDOWS\Sysnative\drivers\raspppoe.sys 2015-10-30 07:17:40 1EE11F0508C58EF081F4176E66D6970B 26624 ----a-w- C:\WINDOWS\Sysnative\drivers\vwifibus.sys 2015-10-30 07:17:40 1A0AE283B8DE6BB76412A0F8213D45AC 25600 ----a-w- C:\WINDOWS\Sysnative\drivers\ndistapi.sys 2015-10-30 07:17:40 0AC5FCDC29ED97ECDEF1276425EE2059 80896 ----a-w- C:\WINDOWS\Sysnative\drivers\rspndr.sys 2015-10-30 07:17:40 09A5D2977450C0364F85FBC869511571 147456 ----a-w- C:\WINDOWS\Sysnative\drivers\rmcast.sys 2015-10-30 07:17:39 C85D79735641D27C5821C35ECDDC2334 81920 ----a-w- C:\WINDOWS\Sysnative\drivers\mslldp.sys 2015-10-30 07:17:39 7B2AD8C55217B514C14281AB97B4E21D 17408 ----a-w- C:\WINDOWS\Sysnative\drivers\rasacd.sys 2015-10-30 07:17:37 E3E97151A1D1E87BB2D5371F66C5F169 293216 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2015-10-30 07:17:37 DCA34A111C29E4578DF2B8CEA3C7CDBD 45056 ----a-w- C:\WINDOWS\Sysnative\drivers\Udecx.sys 2015-10-30 07:17:37 DA8B982AF02A59031BBD0C04AF05EB5E 21856 ----a-w- C:\WINDOWS\Sysnative\drivers\cmimcext.sys 2015-10-30 07:17:37 D358DF634F52247CB43F0781218F4D6E 124928 ----a-w- C:\WINDOWS\Sysnative\drivers\Ndu.sys 2015-10-30 07:17:37 D0C9632C350F46786643A069251BC249 31744 ----a-w- C:\WINDOWS\Sysnative\drivers\vhf.sys 2015-10-30 07:17:37 CFBA9C976CBF6796E5DC39EF59984021 48640 ----a-w- C:\WINDOWS\Sysnative\drivers\qwavedrv.sys 2015-10-30 07:17:37 B6695A72A6E91E08439534AA74520D0C 87904 ----a-w- C:\WINDOWS\Sysnative\drivers\sdport.sys 2015-10-30 07:17:37 B603F6A7E087DFCD9937F4E18286B2CF 76640 ----a-w- C:\WINDOWS\Sysnative\drivers\CEA.sys 2015-10-30 07:17:37 AED081772091C98173905E2DF28C223B 209248 ----a-w- C:\WINDOWS\Sysnative\drivers\Ucx01000.sys 2015-10-30 07:17:37 8F12AB59336143B680F71B217B495AD2 87040 ----a-w- C:\WINDOWS\Sysnative\drivers\filecrypt.sys 2015-10-30 07:17:37 7EADED8087C392876521F7EBCE846EF4 127840 ----a-w- C:\WINDOWS\Sysnative\drivers\acpiex.sys 2015-10-30 07:17:37 6A6A8CF5EE61801375A38EBB871D4057 188928 ----a-w- C:\WINDOWS\Sysnative\drivers\ndiswan.sys 2015-10-30 07:17:37 596FB6C5A72F34B7566930985E543806 160608 ----a-w- C:\WINDOWS\Sysnative\drivers\pacer.sys 2015-10-30 07:17:37 48F3A3222CF340FE31535CB6D49C6D6F 99680 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2015-10-30 07:17:37 48E828C66AB016E48F2CB4DD585315FD 61952 ----a-w- C:\WINDOWS\Sysnative\drivers\TsUsbFlt.sys 2015-10-30 07:17:37 07B043160399AF4009054E2EA3464BF4 118112 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2015-10-30 07:17:37 069D3D6E20AD753B34FCE856F0436869 44568 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys 2015-10-30 07:17:37 026618ECF6C4BEBDCB7885D42EC0DBE4 57184 ----a-w- C:\WINDOWS\Sysnative\drivers\netbios.sys 2015-10-30 07:17:35 CCBC5D1B7A2544642FFB5B890B2C180F 79712 ----a-w- C:\WINDOWS\Sysnative\drivers\vmbkmcl.sys 2015-10-30 07:17:35 41A7938CAA6CC8D5F44721057C21D79C 88928 ----a-w- C:\WINDOWS\Sysnative\drivers\hvsocket.sys 2015-10-30 07:17:35 297A5126D1854199F294330B681A779D 30048 ----a-w- C:\WINDOWS\Sysnative\drivers\winhv.sys 2015-10-30 07:17:31 E730D0EB1B84EBC98423FC8D285EDBC0 38752 ----a-w- C:\WINDOWS\Sysnative\drivers\terminpt.sys 2015-10-30 07:17:31 D0221C13960E274CC539D72D5A842ED0 26112 ----a-w- C:\WINDOWS\Sysnative\drivers\rdpbus.sys 2015-10-30 07:17:26 8B102A7B6CE326FD4208CC7C2D183343 17944 ----a-w- C:\WINDOWS\Sysnative\drivers\WindowsTrustedRTProxy.sys 2015-10-30 07:17:25 E8A59FA109A22FC07E44BDFCC9727DBD 27488 ----a-w- C:\WINDOWS\Sysnative\drivers\urssynopsys.sys 2015-10-30 07:17:25 B3358F380BA3F29F56BE0F7734C24D5F 46944 ----a-w- C:\WINDOWS\Sysnative\drivers\msgpiowin32.sys 2015-10-30 07:17:25 29395C214D2CD4C81F73166AB988A797 26624 ----a-w- C:\WINDOWS\Sysnative\drivers\npsvctrig.sys 2015-10-30 07:17:25 267C76EE60736EA5A1811A53FA02AABE 33280 ----a-w- C:\WINDOWS\Sysnative\drivers\TsUsbGD.sys 2015-10-30 07:17:25 2410A0C20D21A25E6C01979FA886BE90 28512 ----a-w- C:\WINDOWS\Sysnative\drivers\urschipidea.sys 2015-10-30 07:17:23 FFADF691F7BF727AF5C863454A372723 424800 ----a-w- C:\WINDOWS\Sysnative\drivers\ibbus.sys 2015-10-30 07:17:23 F99BF02BE9219986817BF094981EEB18 82784 ----a-w- C:\WINDOWS\Sysnative\drivers\lsi_sss.sys 2015-10-30 07:17:23 ECDB27420D3A98424666904525A8562A 19808 ----a-w- C:\WINDOWS\Sysnative\drivers\intelide.sys 2015-10-30 07:17:23 EC15FD6A28757793E2DA394CD94ABD52 707424 ----a-w- C:\WINDOWS\Sysnative\drivers\vhdmp.sys 2015-10-30 07:17:23 E1BE37312785A71862516F66B3FD24CE 52576 ----a-w- C:\WINDOWS\Sysnative\drivers\vdrvroot.sys 2015-10-30 07:17:23 DB630FC660443D63EBAB2C830C298EFE 131424 ----a-w- C:\WINDOWS\Sysnative\drivers\ufxsynopsys.sys 2015-10-30 07:17:23 DAB35CCA86F5FBE77D870A40089BC4A1 29696 ----a-w- C:\WINDOWS\Sysnative\drivers\usbohci.sys 2015-10-30 07:17:23 D8A44550ECE102B6443F5D54DCE7DAB3 159072 ----a-w- C:\WINDOWS\Sysnative\drivers\usbccgp.sys 2015-10-30 07:17:23 D48ED0A08BD2FD25A833E6AC99623091 166752 ----a-w- C:\WINDOWS\Sysnative\drivers\vsmraid.sys 2015-10-30 07:17:23 D41920FBFFF2BBCBBC69A5B383AD022E 705376 ----a-w- C:\WINDOWS\Sysnative\drivers\mlx4_bus.sys 2015-10-30 07:17:23 D3A103944A8FCD78FD48B2B19092790C 25088 ----a-w- C:\WINDOWS\Sysnative\drivers\serenum.sys 2015-10-30 07:17:23 D1CC0833CFBC4222A95CAA5D0C8C78FF 59232 ----a-w- C:\WINDOWS\Sysnative\drivers\mouclass.sys 2015-10-30 07:17:23 D0426C4E42AAE2108EBB9E28E5F00448 52064 ----a-w- C:\WINDOWS\Sysnative\drivers\pciidex.sys 2015-10-30 07:17:23 CCDA497C880AD16D87EDFAEFCFB2EDF5 31072 ----a-w- C:\WINDOWS\Sysnative\drivers\stexstor.sys 2015-10-30 07:17:23 CC21DB3EF619B9480FE31A4EFE92CBEB 79200 ----a-w- C:\WINDOWS\Sysnative\drivers\stornvme.sys 2015-10-30 07:17:23 CA6369870F91F3D367D26278E0AD0DDF 67072 ----a-w- C:\WINDOWS\Sysnative\drivers\usbser.sys 2015-10-30 07:17:23 C2E05EC6B80BCF5AE362DA873E1BCE64 32256 ----a-w- C:\WINDOWS\Sysnative\drivers\mouhid.sys 2015-10-30 07:17:23 BF8EA6FC3358C2F69678E3E94F764F84 133984 ----a-w- C:\WINDOWS\Sysnative\drivers\storahci.sys 2015-10-30 07:17:23 BE0E47988D78F731DEC2C0CB03E765CB 99168 ----a-w- C:\WINDOWS\Sysnative\drivers\lsi_sas3i.sys 2015-10-30 07:17:23 BD98B0225BCD49E8A62F4F8EE1D1F613 17760 ----a-w- C:\WINDOWS\Sysnative\drivers\swenum.sys 2015-10-30 07:17:23 B6664965BF346322BBDF286174851476 192864 ----a-w- C:\WINDOWS\Sysnative\drivers\ataport.sys 2015-10-30 07:17:23 B57CE307DA101C739885B7CC0678077F 76128 ----a-w- C:\WINDOWS\Sysnative\drivers\ndfltr.sys 2015-10-30 07:17:23 B4AC08B1D04D0CE085435E5CD0E663C5 55808 ----a-w- C:\WINDOWS\Sysnative\drivers\BasicDisplay.sys 2015-10-30 07:17:23 ABBE803FE0BDAE0E5BE74DDEFBE62F23 44896 ----a-w- C:\WINDOWS\Sysnative\drivers\sisraid2.sys 2015-10-30 07:17:23 961F28D879D345BFA50AF51285C90F2E 108888 ----a-w- C:\WINDOWS\Sysnative\drivers\lsi_sas.sys 2015-10-30 07:17:23 8B50D897657AB4A15FD9E251BBF7D107 166240 ----a-w- C:\WINDOWS\Sysnative\drivers\nvstor.sys 2015-10-30 07:17:23 8B3E458A8851F9A3B2109B1680EE1159 35328 ----a-w- C:\WINDOWS\Sysnative\drivers\usbuhci.sys 2015-10-30 07:17:23 88D58E1DAA6C5062DD3A26273106961F 83968 ----a-w- C:\WINDOWS\Sysnative\drivers\serial.sys 2015-10-30 07:17:23 884EBBDDBF5968003B40185BD96FF0E6 36864 ----a-w- C:\WINDOWS\Sysnative\drivers\kbdhid.sys 2015-10-30 07:17:23 870F1A2C936F92B5D053DF7EC75B352F 63328 ----a-w- C:\WINDOWS\Sysnative\drivers\AGP440.sys 2015-10-30 07:17:23 7D0FC96264C0F8F2C1321E33E8EB646C 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\parport.sys 2015-10-30 07:17:23 770A92D9D3A0BF61C97C3AFCB36847D9 34144 ----a-w- C:\WINDOWS\Sysnative\drivers\storufs.sys 2015-10-30 07:17:23 701D7DB13B0815E7076EF4CB4CE981F8 62304 ----a-w- C:\WINDOWS\Sysnative\drivers\kbdclass.sys 2015-10-30 07:17:23 6DE78C04BF32ECA7AF3064F53687C9A5 66912 ----a-w- C:\WINDOWS\Sysnative\drivers\ULIAGPKX.SYS 2015-10-30 07:17:23 6BFB8D1B3407518BE06B6F81F92FA0F5 104800 ----a-w- C:\WINDOWS\Sysnative\drivers\lsi_sas2i.sys 2015-10-30 07:17:23 6990D4AFDF545669D4E6C232F26DE1FB 305504 ----a-w- C:\WINDOWS\Sysnative\drivers\VSTXRAID.SYS 2015-10-30 07:17:23 68D5354A4A9692EEC24664C60F47D4A2 277344 ----a-w- C:\WINDOWS\Sysnative\drivers\msiscsi.sys 2015-10-30 07:17:23 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4 56832 ----a-w- C:\WINDOWS\Sysnative\drivers\umbus.sys 2015-10-30 07:17:23 604D27CC38CC23493F218D0BB834B3FF 150368 ----a-w- C:\WINDOWS\Sysnative\drivers\nvraid.sys 2015-10-30 07:17:23 6043DF55CFE3C7ACF477645FA64DEA98 81760 ----a-w- C:\WINDOWS\Sysnative\drivers\sisraid4.sys 2015-10-30 07:17:23 5EB167907085B708D8A60D412532B7D3 30048 ----a-w- C:\WINDOWS\Sysnative\drivers\usbd.sys 2015-10-30 07:17:23 59307FEAFC9E72EEEC56B7FD7D294F4C 18784 ----a-w- C:\WINDOWS\Sysnative\drivers\msisadrv.sys 2015-10-30 07:17:23 53FDD9E69189E546DE4740F8C4D8AB2F 114688 ----a-w- C:\WINDOWS\Sysnative\drivers\i8042prt.sys 2015-10-30 07:17:23 531994A6D9399D9B74BE12B5BB58A81E 22880 ----a-w- C:\WINDOWS\Sysnative\drivers\isapnp.sys 2015-10-30 07:17:23 4FA0483896FC16583851EFB733FCB083 15872 ----a-w- C:\WINDOWS\Sysnative\drivers\MTConfig.sys 2015-10-30 07:17:23 4A53441C1C4D2878BEF27E381138BB2D 26976 ----a-w- C:\WINDOWS\Sysnative\drivers\winmad.sys 2015-10-30 07:17:23 492B99D2E3D5D7BFD5F0AE1BE7BD37DD 28512 ----a-w- C:\WINDOWS\Sysnative\drivers\atapi.sys 2015-10-30 07:17:23 41F7F00D76904416EF1F9EFA1A4C37A2 500064 ----a-w- C:\WINDOWS\Sysnative\drivers\usbhub.sys 2015-10-30 07:17:23 40B6FF0EA1A703BF48B60B0A8D40CCA0 154624 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys 2015-10-30 07:17:23 40A3E8D729F458B2C9A8BD9380FF83D5 59232 ----a-w- C:\WINDOWS\Sysnative\drivers\winverbs.sys 2015-10-30 07:17:23 3E4F20DB902D2E2914F3FF3DB9772200 95584 ----a-w- C:\WINDOWS\Sysnative\drivers\usbehci.sys 2015-10-30 07:17:23 37C2CD8587BF7F785381EB7B26916B52 127840 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2015-10-30 07:17:23 35F7C7AD709D909D618D9EDF987FC3ED 58720 ----a-w- C:\WINDOWS\Sysnative\drivers\percsas3i.sys 2015-10-30 07:17:23 325727F01F03C504CF788618A13DC266 378208 ----a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2015-10-30 07:17:23 31F990B2B6B91E9D7A667405CE12FCB1 126304 ----a-w- C:\WINDOWS\Sysnative\drivers\NV_AGP.SYS 2015-10-30 07:17:23 2ED29B635F35E31A1C0D3DDB7DD2AD03 59744 ----a-w- C:\WINDOWS\Sysnative\drivers\megasas.sys 2015-10-30 07:17:23 2B4D98DF0CA57FB9536DBC80D2449D1F 16224 ----a-w- C:\WINDOWS\Sysnative\drivers\pciide.sys 2015-10-30 07:17:23 2B1DABA97DDF5365FC66EE7DEDD86A13 94048 ----a-w- C:\WINDOWS\Sysnative\drivers\UfxChipidea.sys 2015-10-30 07:17:23 25B5BB369DEE2BAE4BF459C978FF9035 41472 ----a-w- C:\WINDOWS\Sysnative\drivers\BasicRender.sys 2015-10-30 07:17:23 22E3CB85870879CBAE13C5095A8B12E3 575840 ----a-w- C:\WINDOWS\Sysnative\drivers\megasr.sys 2015-10-30 07:17:23 218705233D02776AE4D19CC37D985C1B 63840 ----a-w- C:\WINDOWS\Sysnative\drivers\mvumis.sys 2015-10-30 07:17:23 1FC3C563E2B1EAA6AE03904B2BBBF655 454496 ----a-w- C:\WINDOWS\Sysnative\drivers\usbport.sys 2015-10-30 07:17:23 1D4E995955BDAE781C46CB97AE1CFB58 330080 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2015-10-30 07:17:23 1C95F7CE37D9EFB90EBE987A9712356C 46592 ----a-w- C:\WINDOWS\Sysnative\drivers\UcmUcsi.sys 2015-10-30 07:17:23 1A6CB30F0EFC1632E6F1B852CA892583 532832 ----a-w- C:\WINDOWS\Sysnative\drivers\spaceport.sys 2015-10-30 07:17:23 1686DBC81748B096232B15F16C302985 77664 ----a-w- C:\WINDOWS\Sysnative\drivers\uaspstor.sys 2015-10-30 07:17:23 1398A85E59698067CBBE1D66A9C13ADF 58208 ----a-w- C:\WINDOWS\Sysnative\drivers\percsas2i.sys 2015-10-30 07:17:23 12A0B486EA13DF46C27B90CC2CE92FE5 534368 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2015-10-30 07:17:23 128DEDDD61915DBA4D451D91D21F0513 38400 ----a-w- C:\WINDOWS\Sysnative\drivers\hidusb.sys 2015-10-30 07:17:23 11680607944A719EF20E0E740785712A 13824 ----a-w- C:\WINDOWS\Sysnative\drivers\umpass.sys 2015-10-30 07:17:23 0F5B43074AE731D2C6F061241C9D84A6 27648 ----a-w- C:\WINDOWS\Sysnative\drivers\sermouse.sys 2015-10-30 07:17:23 08A63F9EFA5DF50FEE1632C136D857CA 40448 ----a-w- C:\WINDOWS\Sysnative\drivers\hidparse.sys 2015-10-30 07:17:22 FF442DCDCE1F6E9FAA9C8AD0CD1D199B 64352 ----a-w- C:\WINDOWS\Sysnative\drivers\HpSAMD.sys 2015-10-30 07:17:22 F7D0CD345D2DA42E7042ABCD73662403 1135456 ----a-w- C:\WINDOWS\Sysnative\drivers\adp80xx.sys 2015-10-30 07:17:22 F510F7B7BF61DEAAC04E65C3B65E8D59 50016 ----a-w- C:\WINDOWS\Sysnative\drivers\hidinterrupt.sys 2015-10-30 07:17:22 F3AC9652D88BF87BA6596CBEA28CE10F 20992 ----a-w- C:\WINDOWS\Sysnative\drivers\genericusbfn.sys 2015-10-30 07:17:22 F20B30F35A5C7888441B4DCA001ECF8E 259424 ----a-w- C:\WINDOWS\Sysnative\drivers\amdsbs.sys 2015-10-30 07:17:22 E99261DD76D1C9E05AF575939CAE5AC5 26112 ----a-w- C:\WINDOWS\Sysnative\drivers\flpydisk.sys 2015-10-30 07:17:22 E887FFDD6734C496407E9219225CB6FF 43872 ----a-w- C:\WINDOWS\Sysnative\drivers\mssmbios.sys 2015-10-30 07:17:22 E3FE8F610B1CC12BC3B2E6BC43DC97E2 131936 ----a-w- C:\WINDOWS\Sysnative\drivers\arcsas.sys 2015-10-30 07:17:22 E1F91A727A04C9F8199D04FF3BBBF63C 414560 ----a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys 2015-10-30 07:17:22 DF1C3D7E6C7929AD83BE22852B5B08CB 235520 ----a-w- C:\WINDOWS\Sysnative\drivers\1394ohci.sys 2015-10-30 07:17:22 D9FE59276BD56A9643C32D5FACE2F251 18432 ----a-w- C:\WINDOWS\Sysnative\drivers\sfloppy.sys 2015-10-30 07:17:22 D78528CA20ADED850E730AB369AAD667 36704 ----a-w- C:\WINDOWS\Sysnative\drivers\battc.sys 2015-10-30 07:17:22 C498887123327CDFD73A05E7A2780920 12288 ----a-w- C:\WINDOWS\Sysnative\drivers\acpipagr.sys 2015-10-30 07:17:22 BF89BDBA5D3A0B4256D3F6FC8D31880D 37376 ----a-w- C:\WINDOWS\Sysnative\drivers\buttonconverter.sys 2015-10-30 07:17:22 BA760F8E66428BA9FF1E8BFBC6248136 28512 ----a-w- C:\WINDOWS\Sysnative\drivers\uefi.sys 2015-10-30 07:17:22 B9981A4CB9F728B3312A3885BFAA7204 66912 ----a-w- C:\WINDOWS\Sysnative\drivers\GAGP30KX.sys 2015-10-30 07:17:22 B9265F47E7A354BAAA0AF5CBA3F8F7CE 81248 ----a-w- C:\WINDOWS\Sysnative\drivers\volmgr.sys 2015-10-30 07:17:22 B70F0F2F54B4A4DB6E9C830454752F5A 121856 ----a-w- C:\WINDOWS\Sysnative\drivers\amdk8.sys 2015-10-30 07:17:22 B61B60F36E1C8022FA8166ABF0F66B07 133632 ----a-w- C:\WINDOWS\Sysnative\drivers\intelppm.sys 2015-10-30 07:17:22 AFE838D7576C581D6483529621AB10CC 26976 ----a-w- C:\WINDOWS\Sysnative\drivers\amdxata.sys 2015-10-30 07:17:22 9D299AE86D671488926126A84DF77BFD 32256 ----a-w- C:\WINDOWS\Sysnative\drivers\fdc.sys 2015-10-30 07:17:22 9652E1E35A92D8C75710C17A63B15796 412000 ----a-w- C:\WINDOWS\Sysnative\drivers\iaStorV.sys 2015-10-30 07:17:22 95832B049E2833B9F5189823CDF946C7 29696 ----a-w- C:\WINDOWS\Sysnative\drivers\CmBatt.sys 2015-10-30 07:17:22 8F010BF65238F3F822D22BA12831796E 18432 ----a-w- C:\WINDOWS\Sysnative\drivers\wmiacpi.sys 2015-10-30 07:17:22 82D97776BF982AA143BDC7DFB5054EA8 173568 ----a-w- C:\WINDOWS\Sysnative\drivers\cdrom.sys 2015-10-30 07:17:22 80BC02A73A3949A7AEF34791206C7D7F 238592 ----a-w- C:\WINDOWS\Sysnative\drivers\xboxgip.sys 2015-10-30 07:17:22 7A2705148A4BB3CA255F81624338B461 12288 ----a-w- C:\WINDOWS\Sysnative\drivers\errdev.sys 2015-10-30 07:17:22 783D2F105F48B62D05B67E098B9F9A69 44032 ----a-w- C:\WINDOWS\Sysnative\drivers\devauthe.sys 2015-10-30 07:17:22 72F5000354C73B0603F4B7D32371DA61 117248 ----a-w- C:\WINDOWS\Sysnative\drivers\capimg.sys 2015-10-30 07:17:22 6B8CB114B8E64C0636EB49F7B914D1FC 28160 ----a-w- C:\WINDOWS\Sysnative\drivers\hidbatt.sys 2015-10-30 07:17:22 6B6C39AB2CD7BEB6CFF624522E5449DE 563544 ----a-w- C:\WINDOWS\Sysnative\drivers\acpi.sys 2015-10-30 07:17:22 6B3A0C7902811E6372643447E41F7048 23040 ----a-w- C:\WINDOWS\Sysnative\drivers\kdnic.sys 2015-10-30 07:17:22 6B0029A0253098CCE28EACCFDB9E7208 673120 ----a-w- C:\WINDOWS\Sysnative\drivers\iaStorAV.sys 2015-10-30 07:17:22 6447BA6FA709514B6C803D159B4C7D1E 531296 ----a-w- C:\WINDOWS\Sysnative\drivers\bxvbda.sys 2015-10-30 07:17:22 5B30BCFE6E02E45D3EE268FF001BC5E0 83296 ----a-w- C:\WINDOWS\Sysnative\drivers\amdsata.sys 2015-10-30 07:17:22 530F797129776AA7E81994783A97E2AD 110432 ----a-w- C:\WINDOWS\Sysnative\drivers\sbp2port.sys 2015-10-30 07:17:22 4F527ECB5EAB47D8EAF34A469666C469 81408 ----a-w- C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys 2015-10-30 07:17:22 491275B864B704B54EC08168344E0F38 3436896 ----a-w- C:\WINDOWS\Sysnative\drivers\evbda.sys 2015-10-30 07:17:22 4904B152E4942BF700F2D73228B4D477 103264 ----a-w- C:\WINDOWS\Sysnative\drivers\disk.sys 2015-10-30 07:17:22 42C546414F80BD6C0137FC3A106F8A69 66400 ----a-w- C:\WINDOWS\Sysnative\drivers\UAGP35.sys 2015-10-30 07:17:22 3F5523DCEFE42B385659C5CB46A6B810 9728 ----a-w- C:\WINDOWS\Sysnative\drivers\bcmfn.sys 2015-10-30 07:17:22 35E890482C9728DD5C552B85DA8A5AB2 119296 ----a-w- C:\WINDOWS\Sysnative\drivers\amdppm.sys 2015-10-30 07:17:22 2C5B3035B86770ADD2FE9BFBAF5B35A4 107360 ----a-w- C:\WINDOWS\Sysnative\drivers\3ware.sys 2015-10-30 07:17:22 21AECFF3EB5748CBE12538A2500EFDE5 118272 ----a-w- C:\WINDOWS\Sysnative\drivers\processr.sys 2015-10-30 07:17:22 1F1EF8E701859581251B52035C1C1CEF 26112 ----a-w- C:\WINDOWS\Sysnative\drivers\xinputhid.sys 2015-10-30 07:17:22 17039DBEB3B7B9ADCDB4B4533AA9771F 12800 ----a-w- C:\WINDOWS\Sysnative\drivers\acpitime.sys 2015-10-30 07:17:22 169B0A246067457FEF8A18EED7EED9D5 209760 ----a-w- C:\WINDOWS\Sysnative\drivers\tpm.sys 2015-10-30 07:17:22 0B750A6A6D847E73CA48ADD7A0F5A393 9728 ----a-w- C:\WINDOWS\Sysnative\drivers\bcmfn2.sys 2015-10-30 07:17:22 00C27B64C758C111E5D78A70DE6CA2B6 30208 ----a-w- C:\WINDOWS\Sysnative\drivers\wacompen.sys 2015-10-30 07:17:21 21162F65C7756AAECAEBED9E67D0A5FE 27648 ----a-w- C:\WINDOWS\Sysnative\drivers\usbprint.sys 2015-10-30 07:17:21 09C3DB1B137B269A822F941D867A6BB6 128512 ----a-w- C:\WINDOWS\Sysnative\drivers\bthpan.sys 2015-10-30 07:17:19 A3AB2DFB27ADD3AD5C1500734A4A57DA 97280 ----a-w- C:\WINDOWS\Sysnative\drivers\drmk.sys 2015-10-30 07:17:19 9D78A9327B1B00F43FDF22AD1441A806 333824 ----a-w- C:\WINDOWS\Sysnative\drivers\portcls.sys 2015-10-30 07:17:19 6A7F720BB322F8471FB40F42DD201290 95072 ----a-w- C:\WINDOWS\Sysnative\drivers\sdstor.sys 2015-10-30 07:17:19 66B3D22DAB5312FF238ABF5C6D9F8FAB 102400 ----a-w- C:\WINDOWS\Sysnative\drivers\usbcir.sys 2015-10-30 07:17:19 60BFD9EE962C87747A0EB648634281ED 175104 ----a-w- C:\WINDOWS\Sysnative\drivers\rfcomm.sys 2015-10-30 07:17:19 4B13B61CBB9CC3CB373C60B930D648F5 221184 ----a-w- C:\WINDOWS\Sysnative\drivers\usbvideo.sys 2015-10-30 07:17:19 260907CE034FE327AC99BDA4153AB22F 89088 ----a-w- C:\WINDOWS\Sysnative\drivers\winusb.sys 2015-10-30 07:17:19 25FA06D3B49D6ADF8E874FFCDCD76B50 16168 ----a-w- C:\WINDOWS\Sysnative\drivers\drmkaud.sys 2015-10-30 07:17:18 F7B1B1101271E31F43CC76E890704F51 74080 ----a-w- C:\WINDOWS\Sysnative\drivers\vpci.sys 2015-10-30 07:17:18 F4D5793BF2E58AF15C6CF2FEEF9E73EB 118112 ----a-w- C:\WINDOWS\Sysnative\drivers\pcmcia.sys 2015-10-30 07:17:18 F001B81D47CEBF96E60CE971FFCC45C4 84992 ----a-w- C:\WINDOWS\Sysnative\drivers\BTHUSB.SYS 2015-10-30 07:17:18 EB82A11613326691508D9ED9A4FE29E7 113152 ----a-w- C:\WINDOWS\Sysnative\drivers\iaLPSSi_I2C.sys 2015-10-30 07:17:18 E886CB75DA2B6EB35469EF10135624C7 99672 ----a-w- C:\WINDOWS\Sysnative\drivers\vmbus.sys 2015-10-30 07:17:18 E72358D5EB07287E5514343BAA820F4C 185184 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2015-10-30 07:17:18 E1137E39C3BB3EF9AF2243745D901D60 277856 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2015-10-30 07:17:18 D668FAB4B0397B426EE3D41683B9A1C0 16896 ----a-w- C:\WINDOWS\Sysnative\drivers\hyperkbd.sys 2015-10-30 07:17:18 D1AD197CCDAAC0CB4819DA1D6EB17BAE 107520 ----a-w- C:\WINDOWS\Sysnative\drivers\hidbth.sys 2015-10-30 07:17:18 CAEC7BC11AF69A181AF7932E636E09E4 43008 ----a-w- C:\WINDOWS\Sysnative\drivers\BthAvrcpTg.sys 2015-10-30 07:17:18 CAE4B27B469C583131EA5AAE622F5D76 64000 ----a-w- C:\WINDOWS\Sysnative\drivers\Synth3dVsc.sys 2015-10-30 07:17:18 C99E80F3C1D4918C8661CAB5A0512EC9 22016 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys 2015-10-30 07:17:18 C8DBE6EFFCF014CAA010B9BDDAC833EC 14336 ----a-w- C:\WINDOWS\Sysnative\drivers\acpipmi.sys 2015-10-30 07:17:18 C4D7018C3F40BA9448E470EE10EF0CA4 245248 ----a-w- C:\WINDOWS\Sysnative\drivers\BthLEEnum.sys 2015-10-30 07:17:18 A76F20CCCA31895A1DA78A875E50F946 65536 ----a-w- C:\WINDOWS\Sysnative\drivers\bthmodem.sys 2015-10-30 07:17:18 9A2A2F3C69B9A30B6E78536F6D258BAD 81408 ----a-w- C:\WINDOWS\Sysnative\drivers\iai2c.sys 2015-10-30 07:17:18 90F3ED42D423C942BA5EA54E2FFE7AC7 46592 ----a-w- C:\WINDOWS\Sysnative\drivers\hidir.sys 2015-10-30 07:17:18 8FF1978643EFD219C5BA49690191D701 46432 ----a-w- C:\WINDOWS\Sysnative\drivers\intelpep.sys 2015-10-30 07:17:18 84BC034B6BB763733C1949B7B9BAF976 79872 ----a-w- C:\WINDOWS\Sysnative\drivers\hdaudbus.sys 2015-10-30 07:17:18 7F2165B51C19A5F59BCA94E0A1B1E0D3 112640 ----a-w- C:\WINDOWS\Sysnative\drivers\bthenum.sys 2015-10-30 07:17:18 78FEC1BDB168370F131BFBFEA0A04E9D 38400 ----a-w- C:\WINDOWS\Sysnative\drivers\monitor.sys 2015-10-30 07:17:18 77555B11B264991DDC26872FFCF1AB97 13312 ----a-w- C:\WINDOWS\Sysnative\drivers\vmgencounter.sys 2015-10-30 07:17:18 736A2418E3E7F3DB3CF6EB0A55D1D581 36192 ----a-w- C:\WINDOWS\Sysnative\drivers\storvsc.sys 2015-10-30 07:17:18 6D75ECFB3891B61B81225F36A0C408B8 953344 ----a-w- C:\WINDOWS\Sysnative\drivers\bthport.sys 2015-10-30 07:17:18 64909DECCFCC6FB5D9A5BAFDCCB31FEE 51200 ----a-w- C:\WINDOWS\Sysnative\drivers\hidi2c.sys 2015-10-30 07:17:18 5F2B4B32E986C058525D3BA2A475A16C 65536 ----a-w- C:\WINDOWS\Sysnative\drivers\bthhfenum.sys 2015-10-30 07:17:18 5B1EAAE3001A7A320C106FC3859F4111 117088 ----a-w- C:\WINDOWS\Sysnative\drivers\EhStorTcgDrv.sys 2015-10-30 07:17:18 59A20F5AD9F4AE54098154359519408E 165888 ----a-w- C:\WINDOWS\Sysnative\drivers\iaLPSS2i_I2C.sys 2015-10-30 07:17:18 5406289E8AE2CB52FC408154E0A64BA7 30720 ----a-w- C:\WINDOWS\Sysnative\drivers\BthhfHid.sys 2015-10-30 07:17:18 46D2EC27820EC0F798F85821E53C2942 25088 ----a-w- C:\WINDOWS\Sysnative\drivers\VMBusHID.sys 2015-10-30 07:17:18 32FF460DA8C1F370F5C08B7654899B73 46944 ----a-w- C:\WINDOWS\Sysnative\drivers\vmstorfl.sys 2015-10-30 07:17:18 16A10CCEDCF5AC4CAAE43DC9FC40392F 38128 ----a-w- C:\WINDOWS\Sysnative\drivers\iaLPSSi_GPIO.sys 2015-10-30 07:17:18 0505C1D991D0F9D47F3353BB98597C7E 48640 ----a-w- C:\WINDOWS\Sysnative\drivers\circlass.sys 2015-10-30 07:17:18 044890BB0D6CF1E23C1087234D320509 8704 ----a-w- C:\WINDOWS\Sysnative\drivers\vms3cap.sys 2015-10-30 07:17:18 0197AE4B9790A4E73751CACFAA480126 33792 ----a-w- C:\WINDOWS\Sysnative\drivers\dmvsc.sys ====== C:\WINDOWS\Tasks ====== 2015-10-31 08:52:30 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Apple 2015-10-30 07:24:25 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Microsoft ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-11-14 13:58:45 -------- d-----w- C:\Program Files\Common Files\Atheros 2015-11-14 13:58:34 -------- d-----w- C:\Program Files\IDT 2015-11-14 13:57:59 -------- d-----w- C:\Program Files\Synaptics 2015-11-14 13:57:44 -------- d-----w- C:\Program Files\Intel 2015-11-14 13:25:41 -------- d-----w- C:\Program Files\Reference Assemblies 2015-11-14 13:25:41 -------- d-----w- C:\Program Files\MSBuild 2015-11-14 11:51:57 -------- d-----w- C:\Program Files\trend micro 2015-10-31 08:59:31 -------- d-----w- C:\Program Files\iPod 2015-10-31 08:59:30 -------- d-----w- C:\Program Files\iTunes 2015-10-31 08:53:47 -------- d-----w- C:\Program Files\Bonjour 2015-10-30 18:08:38 -------- d-----w- C:\Program Files\Windows Journal 2015-10-30 07:24:28 174 --sha-w- C:\Program Files\desktop.ini 2015-10-30 07:24:24 -------- d-sh--w- C:\Program Files\Windows Sidebar 2015-10-30 07:24:24 -------- d-s---w- C:\Program Files\WindowsPowerShell 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows Portable Devices 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows Photo Viewer 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows NT 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows Multimedia Platform 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows Media Player 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Windows Mail 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Internet Explorer 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Common Files\System 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Common Files\Services 2015-10-30 07:24:24 -------- d-----w- C:\Program Files\Common Files\microsoft shared 2015-10-30 06:28:30 -------- d-----w- C:\Program Files\Common Files ======= C:\PROGRA~2 ===== 2015-11-16 18:15:13 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-11-14 14:22:48 -------- d--h--w- C:\PROGRA~2\Uninstall Information 2015-11-14 13:57:34 -------- d-----w- C:\PROGRA~2\COMMON~1\Intel 2015-11-14 13:25:41 -------- d-----w- C:\PROGRA~2\Reference Assemblies 2015-11-14 13:25:41 -------- d-----w- C:\PROGRA~2\MSBuild 2015-10-31 08:59:31 -------- d-----w- C:\PROGRA~2\iTunes 2015-10-31 08:53:47 -------- d-----w- C:\PROGRA~2\Bonjour 2015-10-31 08:52:29 -------- d-----w- C:\PROGRA~2\Apple Software Update 2015-10-30 07:24:28 174 --sha-w- C:\PROGRA~2\desktop.ini 2015-10-30 07:24:24 -------- d-sh--w- C:\PROGRA~2\Windows Sidebar 2015-10-30 07:24:24 -------- d-s---w- C:\PROGRA~2\WindowsPowerShell 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows Portable Devices 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows Photo Viewer 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows NT 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows Multimedia Platform 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows Media Player 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Windows Mail 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Microsoft.NET 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\Internet Explorer 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\COMMON~1\System 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Services 2015-10-30 07:24:24 -------- d-----w- C:\PROGRA~2\COMMON~1\Microsoft Shared 2015-10-30 06:28:30 -------- d-----w- C:\PROGRA~2\Common Files ======= C: ===== 2015-10-30 08:13:44 93B885ADFE0DA089CDF634904FD59F71 1 --sha-w- C:\BOOTNXT ====== C:\Users\gebruiker\AppData\Roaming ====== 2015-11-16 07:42:39 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Trusteer 2015-11-14 15:07:23 -------- d-----w- C:\Users\gebruiker\AppData\Local\Publishers 2015-11-14 15:05:36 -------- d-----w- C:\Users\gebruiker\AppData\Local\Comms 2015-11-14 15:05:06 -------- d-----w- C:\Users\gebruiker\AppData\Local\TileDataLayer 2015-11-14 14:26:06 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages 2015-11-14 14:22:07 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft 2015-11-14 14:14:59 -------- d-----w- C:\Users\Default\AppData\Local\Trusteer 2015-11-14 14:14:59 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help 2015-11-14 14:14:59 -------- d-----w- C:\Users\Default User\AppData\Local\Trusteer 2015-11-14 14:14:59 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help 2015-11-14 14:02:53 -------- d-s---r- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-11-14 14:02:53 -------- d-----w- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-11-14 14:02:53 -------- d-----w- C:\Users\gebruiker\AppData\Roaming 2015-11-14 14:02:53 -------- d-----w- C:\Users\gebruiker\AppData\Local\Temp 2015-11-14 14:02:53 -------- d-----w- C:\Users\gebruiker\AppData\Local\Microsoft 2015-11-14 14:02:53 -------- d-----w- C:\Users\gebruiker\AppData\Local 2015-11-14 14:02:53 -------- d-----r- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-11-14 14:02:53 -------- d-----r- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-11-14 14:02:53 -------- d-----r- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-11-14 14:02:53 -------- d-----r- C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2015-11-14 13:51:52 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache 2015-11-14 13:51:22 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming 2015-11-14 13:51:22 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp 2015-11-14 13:51:16 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming 2015-11-14 13:51:16 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp 2015-11-14 13:51:16 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Microsoft 2015-11-14 13:51:16 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local 2015-11-14 13:51:14 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft 2015-10-30 18:13:02 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Microsoft 2015-10-30 18:13:02 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local 2015-10-30 07:24:25 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming 2015-10-30 07:24:25 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow 2015-10-30 07:24:25 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local 2015-10-30 07:24:24 -------- d-s---r- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-10-30 07:24:24 -------- d-s---r- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-10-30 07:24:24 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming 2015-10-30 07:24:24 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\LocalLow 2015-10-30 07:24:24 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Roaming 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\AppData\Local 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Roaming 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default User\AppData\Local 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility ====== C:\Users\gebruiker ====== 2015-11-16 18:12:16 2A50FBC2CC9C29A85A900CB8E806CCBD 584288 ----a-w- C:\Users\gebruiker\Downloads\JavaSetup8u65.exe 2015-11-14 17:06:30 -------- d-----w- C:\ProgramData\USOShared 2015-11-14 15:13:07 -------- d-----r- C:\Users\gebruiker\OneDrive 2015-11-14 15:10:50 -------- d-----w- C:\ProgramData\Microsoft OneDrive 2015-11-14 15:05:33 -------- d-sh--w- C:\Users\gebruiker\IntelGraphicsProfiles 2015-11-14 15:04:57 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\gebruiker\ntuser.ini 2015-11-14 14:02:53 -------- d--h--w- C:\Users\gebruiker\AppData 2015-11-14 13:51:59 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2015-11-14 13:51:22 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\Saved Games 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Videos 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Pictures 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Music 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Links 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Favorites 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Downloads 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Documents 2015-11-14 13:51:22 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Desktop 2015-11-14 13:51:17 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\Saved Games 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Videos 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Pictures 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Music 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Links 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Favorites 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Downloads 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Documents 2015-11-14 13:51:17 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Desktop 2015-11-14 13:51:16 -------- d--h--w- C:\WINDOWS\serviceprofiles\networkservice\AppData 2015-11-14 11:51:30 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\gebruiker\Downloads\RSITx64.exe 2015-11-09 19:19:52 B7B4656E0DB41DB4C677A324CC0F5DE5 6762072 ----a-w- C:\Users\gebruiker\Downloads\ccsetup511.exe 2015-11-04 08:25:01 -------- d-----w- C:\ProgramData\HP 2015-10-31 09:02:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2015-10-31 09:00:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-10-30 18:13:02 -------- d--h--w- C:\WINDOWS\serviceprofiles\Localservice\AppData 2015-10-30 18:08:38 -------- d--h--r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC 2015-10-30 07:24:29 7220FAD57A4B3D9D9755C51198CC0386 174 --sha-w- C:\Users\Public\desktop.ini 2015-10-30 07:24:25 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData 2015-10-30 07:24:24 -------- d-s---w- C:\ProgramData\Microsoft 2015-10-30 07:24:24 -------- d--h--w- C:\Users\Default\AppData 2015-10-30 07:24:24 -------- d--h--r- C:\Users\Public\Libraries 2015-10-30 07:24:24 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData 2015-10-30 07:24:24 -------- d-----w- C:\Users\Default\Saved Games 2015-10-30 07:24:24 -------- d-----w- C:\ProgramData\USOPrivate 2015-10-30 07:24:24 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft 2015-10-30 07:24:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Videos 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Pictures 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Music 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Links 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Favorites 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Downloads 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Documents 2015-10-30 07:24:24 -------- d-----r- C:\Users\Default\Desktop 2015-10-30 07:24:24 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools 2015-10-30 07:24:24 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp 2015-10-30 07:24:24 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2015-10-30 07:24:24 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-30 07:24:24 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-22 17:26:39 -------- d-----w- C:\ProgramData\BlueStacks ====== C: exe-files == 2015-11-16 18:14:41 FAE99E011922F5BE4CB2160E316D057B 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmiregistry.exe 2015-11-16 18:14:41 FA5E33B54BD044F489BA4281B3D6ED95 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\servertool.exe 2015-11-16 18:14:41 CC0CF93D2BF12A423DA4134FFB9C324D 50784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssvagent.exe 2015-11-16 18:14:41 BBC68E5519B11A74B8208AA7B85F3B80 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmid.exe 2015-11-16 18:14:41 B61623580A304714A4E2FE6A5E73327F 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\pack200.exe 2015-11-16 18:14:41 940EE00C074A46D638A756723964D65D 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\orbd.exe 2015-11-16 18:14:41 857117663B1F28ABBA4E1C6110A09282 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\policytool.exe 2015-11-16 18:14:41 6211595DD15306DFD8E07B95E6F2984D 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\tnameserv.exe 2015-11-16 18:14:41 56DCBCE6CF84B5F12185AF6DB7B85EB2 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\keytool.exe 2015-11-16 18:14:41 4D2DDC988E4F67E7E07E78954FBEED2D 159328 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\unpack200.exe 2015-11-16 18:14:41 2AA43B8A44341F90DCCFAE38107BA484 76896 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2launcher.exe 2015-11-16 18:14:41 1A859E08A65ECBA7B687ACAED5EA5080 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\ktab.exe 2015-11-16 18:14:41 1933BBD87F9759CC2D7DC2909C4CA0CD 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\klist.exe 2015-11-16 18:14:41 0AD21325149141252F05B32F7809F441 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\kinit.exe 2015-11-16 18:14:40 B6DBE62611DA178B2CA578BC2B7BBA30 68192 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\javacpl.exe 2015-11-16 18:14:40 AA79E5830F4B6C29A5A976891ED0E86B 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\jjs.exe 2015-11-16 18:14:40 A53E431775DF91EA016AF5817DF26B41 191584 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaw.exe 2015-11-16 18:14:40 8ED50DA4BAE0046E05BEC0110CF20B17 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\java-rmi.exe 2015-11-16 18:14:40 66B01DCB41FBE8C3CAB13D3F8ED4FA58 30816 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\jabswitch.exe 2015-11-16 18:14:40 50CC4A65F784A51813A169EA33CF319A 278624 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaws.exe 2015-11-16 18:14:40 4547FB479010206D8BEA10B2694C5C6D 191072 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\bin\java.exe 2015-11-16 18:12:16 2A50FBC2CC9C29A85A900CB8E806CCBD 584288 ----a-w- C:\Users\gebruiker\Downloads\JavaSetup8u65.exe 2015-11-14 15:13:32 8930D704DC34BB6A8122D1330525FD5E 7904968 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe 2015-11-14 15:13:32 8930D704DC34BB6A8122D1330525FD5E 7904968 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\OneDriveSetup.exe 2015-11-14 15:13:23 984BDA28B013EC426501CA40D365FDF0 160960 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncConfig.exe 2015-11-14 15:13:22 96F76F943DF1974E4F08B5B3DE0C028F 175296 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe 2015-11-14 15:13:06 9F2ECA252720B25E8FEC1CAB2984B98D 548552 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe 2015-11-14 11:54:08 B3F1932457535101EA7E564F90B78C50 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-295600321-3362585809-1147355583-1001\$IGUPAYL.exe 2015-11-14 11:53:33 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-295600321-3362585809-1147355583-1001\$RGUPAYL.exe 2015-11-14 11:51:58 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\gebruiker.exe 2015-11-14 11:51:30 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\gebruiker\Downloads\RSITx64.exe 2015-11-12 19:10:50 F4146736CFD035154A089BC0DD81E1D0 970832 ----a-w- C:\Program Files (x86)\Google\Update\Install\{8EE60AA9-B9F8-4034-94A0-A8E7D8E59008}\46.0.2490.86_46.0.2490.80_chrome_updater.exe 2015-11-12 19:10:50 F4146736CFD035154A089BC0DD81E1D0 970832 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\46.0.2490.86\46.0.2490.86_46.0.2490.80_chrome_updater.exe 2015-11-09 19:19:52 B7B4656E0DB41DB4C677A324CC0F5DE5 6762072 ----a-w- C:\Users\gebruiker\Downloads\ccsetup511.exe === C: other files == 2015-11-16 18:14:42 577B724A8DB4380F8B8F0098D1C9A722 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_65\lib\deploy\ffjcext.zip 2015-11-16 18:07:37 CB136B267569A62EF63D798BC90ABD5A 144 ----a-w- C:\Windows\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2015-11-14 15:13:22 8CF4163521FDB8E53482003C7EFA7121 5850 ----a-w- C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\CollectOneDriveLogs.bat 2015-11-14 15:05:24 9F45771914360A925252A1B7226EC7EC 451 ----a-w- C:\Windows\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2015-11-14 13:58:30 51DE8F82A399ABD8305EA56CCFB923C0 51392 ----a-w- C:\Program Files\Synaptics\SynTP\Smb_driver_Intel.sys 2015-11-14 13:58:30 09AE3DADAC251EDC2CBAD882B7522048 50880 ----a-w- C:\Program Files\Synaptics\SynTP\Smb_driver_AMDASF.sys 2015-11-14 13:43:46 91D3F2A6253EF83EFBD7903028F58C4D 118624 ----a-w- C:\Windows\System32\drivers\tdx.sys 2015-11-14 13:43:45 D84C456794F208043E52D1096F37E2B3 1393664 ----a-w- C:\Windows\System32\win32kbase.sys 2015-11-14 13:43:45 70148EFA9A562E7185B75BBE7D376BF7 578912 ----a-w- C:\Windows\System32\drivers\afd.sys 2015-11-14 13:43:45 43F5135D228CFC6B5F7963E0490F7B6B 115200 ----a-w- C:\Windows\System32\win32k.sys 2015-11-14 13:43:45 0BB0769EEE5E170CE0B33AC7BF869E48 3592704 ----a-w- C:\Windows\System32\win32kfull.sys 2015-11-14 13:40:10 F7D4D187D8F3490C11F6E4D7AED2B72D 56756 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnport.vbs 2015-11-14 13:40:10 C36D1285B62C6739B465A285148E4000 51462 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnqctl.vbs 2015-11-14 13:40:10 AB328741766A47CACE8978A24260C51A 7418 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\pubprn.vbs 2015-11-14 13:40:10 96289191763ACF8E4AB69F622262B15F 51312 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prndrvr.vbs 2015-11-14 13:40:10 816213C95FC12D011BF789213E1CC973 81048 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnmngr.vbs 2015-11-14 13:40:10 31D7079AF27F244E6AA5B7A7C8FE75F3 105940 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prncnfg.vbs 2015-11-14 13:40:10 03E9BADC32A52E3CB44E4277803CFFF9 69882 ----a-w- C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnjobs.vbs 2015-11-14 13:39:57 F7D4D187D8F3490C11F6E4D7AED2B72D 56756 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prnport.vbs 2015-11-14 13:39:57 C36D1285B62C6739B465A285148E4000 51462 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prnqctl.vbs 2015-11-14 13:39:57 AB328741766A47CACE8978A24260C51A 7418 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\pubprn.vbs 2015-11-14 13:39:57 96289191763ACF8E4AB69F622262B15F 51312 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prndrvr.vbs 2015-11-14 13:39:57 816213C95FC12D011BF789213E1CC973 81048 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prnmngr.vbs 2015-11-14 13:39:57 31D7079AF27F244E6AA5B7A7C8FE75F3 105940 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prncnfg.vbs 2015-11-14 13:39:57 03E9BADC32A52E3CB44E4277803CFFF9 69882 ----a-w- C:\Windows\System32\Printing_Admin_Scripts\en-US\prnjobs.vbs ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-295600321-3362585809-1147355583-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Google+ Auto Backup"="C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Guardbox"="C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "OneDrive"="C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" "1.TPUReg"="C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe" "TSVU"="c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" "DelaypluginInstall"="C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google+ Auto Backup"="C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Guardbox"="C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "OneDrive"="C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "TSSSrv"="C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe" "TecoResident"="C:\Program Files\TOSHIBA\Teco\TecoResident.exe" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe " "TCrdMain"="C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d00267318c74ae.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1d00267318c74ae" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Resolution+ Setting Task" [C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{2CAE3809-B543-4E0E-A27C-E99CB1AE574C}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\WINDOWS\SysNative\tasks\TOSHIBA\CommonNotifier" [C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe] "C:\WINDOWS\SysNative\tasks\TOSHIBA\Service Station" ["C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe"] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "WSVCU@Wondershare.com"="C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com" [19-07-2015 19:02] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[12-10-2015 08:31] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions bbjllphbppobebmjpjcijfbakobcheof - No path found[] Theme Creator - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc Rapport - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof Guardbox - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcbeincdhpkjgcbfcolfjagcjfnfbdai TV - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh selector is not a valid CSS selector - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb AddThis - Share & Bookmark (new) - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbogdmdefihhljhfeiklfiedefalcde Smartsheet Project Management - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cindmhdfkimaeggbebfjkmkdfiohldbm Symbaloo Bookmarker 0.5.0 - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnjfgbikbkcmickdalamlmpmkhmbollm Symbaloo - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfnbdccaiknlpdgabdgjijniolkgmoeh Search All - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eekjldapjblgadclklmgolijbagmdnfk Gmail Offline - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk Google Calendar - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn AFAS Personal Bijwerk Assistent - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhdjnejhhklnclpkbnfmfimijnlmghfk Skype Click to Call - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Floor plans and interior design - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna Google Mail Checker - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff Quick Note - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok Chrome Web Store Payments - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ClickClean App - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp Gmail - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://www.google.com/ie" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{D4F1ACFF-AFF0-470D-875C-667F5B0EFA5A} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes\{D4F1ACFF-AFF0-470D-875C-667F5B0EFA5A} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC0D100 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Download & Installeer Packages deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FF07604E-C860-40E9-A230-E37FA41F103A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC0D100 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Wondershare Video Converter Ultimate 7.1.0 - {451C804F-C205-4F03-B48E-537EC94937BF} - C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe" O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe" O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [Guardbox] "C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe" O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [OneDrive] "C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: WSWSVCUchrome - {1CA93FF0-A218-44F1 - (no file) O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing) O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Update service - Company - C:\Program Files (x86)\Popcorn Time\Updater.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1568 folders=169 347934316 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 16-11-2015 at 20:28:27,85 ======================