Zoek.exe v5.0.0.1 Updated 19-November-2015
Tool run by gebruiker on vr 20-11-2015 at 17:17:22,45.
Microsoft Windows 10 Home 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\gebruiker\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2015-11-16-192827.log	112648 bytes

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll 
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll 


==== Empty Folders Check ======================

C:\Users\gebruiker\AppData\Local\ActiveSync deleted successfully
C:\Users\gebruiker\AppData\Local\EmieSiteList deleted successfully
C:\Users\gebruiker\AppData\Local\EmieUserList deleted successfully
C:\Users\gebruiker\AppData\Local\NetworkTiles deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\Program Files (x86)\Popcorn Time\Updater.exe
C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe
C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\node.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.13005.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Users\gebruiker\Desktop\zoek.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\WINDOWS\SysWOW64\cmd.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\windows\SysNative\Tasks\iolo System Checkup deleted
C:\windows\SysNative\Tasks\KUMXRPWDTYHHCWVH deleted
C:\windows\SysNative\Tasks\OXSZVRDQV1 deleted
C:\WINDOWS\tasks\KUMXRPWDTYHHCWVH.job deleted
C:\WINDOWS\tasks\OXSZVRDQV1.job deleted
C:\PROGRA~2\PC Speed Up deleted
C:\PROGRA~2\Wondershare deleted
C:\install.exe deleted
C:\PROGRA~3\Wondershare Video Converter Ultimate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\gebruiker\AppData\Local\Wondershare deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\WINDOWS\SysNative\roboot64.exe deleted
"C:\Windows\Installer\165978b0.msi" deleted
"C:\Windows\Installer\1fa7c.msi" deleted
"C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll" deleted
"C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll" deleted
"C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\DAQExp.dll" deleted
"C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact\WSHelper.exe" deleted
"C:\PROGRA~2\COMMON~1\Wondershare" deleted
"C:\PROGRA~2\COMMON~1\Wondershare\Wondershare Helper Compact" deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 6020 MB
CPU Info: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
CPU Speed: 2456,1 MHz
Sound Card: Speakers (IDT High Definition A | 
Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000
Monitors: 1x; Generic PnP Monitor | 
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Qualcomm Atheros AR956x Wireless Network Adapter | Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30) | Bluetooth Device (Personal Area Network)
CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SU-208DB
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  687,0GB
Hard Disks - Free: C:  507,4GB
Manufacturer *: Insyde Corp.
BIOS Info: AT/AT COMPATIBLE |  | TOSASU - 100
Time Zone: West-Europa (standaardtijd)
Motherboard *: Intel PT10F
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Default Browser: Google Chrome	46.0.2490.86
Internet Explorer Version: 11.11.10586.0 
Google Chrome version: 46.0.2490.86
Sun Java version: 1.8.0_65 (32-bit) 
Sun Java version: 1.8.0_65 (64-bit) 

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2015-11-14 13:52:35	6DDF4746FDFEC16543651E7CAF69018F	67584	--s-a-w-	C:\WINDOWS\bootstat.dat
2015-11-14 12:59:17	692CA5EBC9E0CEF0A8D0BE4DF7400CEE	9528	----a-w-	C:\WINDOWS\diagwrn.xml
2015-11-14 12:59:17	692CA5EBC9E0CEF0A8D0BE4DF7400CEE	9528	----a-w-	C:\WINDOWS\diagerr.xml
2015-10-30 18:09:06	F59060E298148DE24DEBB3E8321C4407	31816	----a-w-	C:\WINDOWS\Core.xml
2015-10-30 07:19:30	669A44C0BCA67D8CDE111F7FBA91EE86	60416	----a-w-	C:\WINDOWS\twain_32.dll
2015-10-30 07:19:28	60336413E419C2EA5E215F1A32061E40	244736	----a-w-	C:\WINDOWS\notepad.exe
2015-10-30 07:18:41	E7E4D8D7340DA6934B9EA81CBB21374C	316640	----a-w-	C:\WINDOWS\WMSysPr9.prx
2015-10-30 07:18:29	8C459D003560EA9817F7CDB29AA55382	10240	----a-w-	C:\WINDOWS\winhlp32.exe
2015-10-30 07:18:16	C844CA459F3B209329984772269B6E56	670	---ha-r-	C:\WINDOWS\WindowsShell.Manifest
2015-10-30 07:18:14	E9C22DCE95A6E5B6C37FED42B3749E32	11264	----a-w-	C:\WINDOWS\write.exe
2015-10-30 07:18:10	4572EB3DDBD2DFA10DE7A037A6CC6D53	4502864	----a-w-	C:\WINDOWS\explorer.exe
2015-10-30 07:18:09	3BB80AF91D069F97006DCCC031164903	128000	----a-w-	C:\WINDOWS\splwow64.exe
2015-10-30 07:17:55	80F394B72E22F1186996459AE86709BA	994816	----a-w-	C:\WINDOWS\HelpPane.exe
2015-10-30 07:17:54	C7228F24B9130C64DCF4C390A04A775C	18432	----a-w-	C:\WINDOWS\hh.exe
2015-10-30 07:17:48	D9D56AFAA121BD6B4206F7FF3DA84BBA	320512	----a-w-	C:\WINDOWS\regedit.exe
2015-10-30 07:17:47	DE3C720C11A91557E1DFDFF0DB2AA3C2	61952	----a-w-	C:\WINDOWS\bfsvc.exe
2015-10-30 07:17:40	23AF90D2355D8C83AA4567EF1763B467	43131	----a-w-	C:\WINDOWS\mib.bin
====== C:\Users\GEBRUI~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\WINDOWS\SysWOW64 =====
2015-11-19 08:00:18	9E57FF10D37B672B8781BAF92DB00A8B	9918976	----a-w-	C:\WINDOWS\SysWOW64\twinui.dll
2015-11-19 08:00:11	F2D9AB28744983980E6BCE08DA077528	21125408	----a-w-	C:\WINDOWS\SysWOW64\shell32.dll
2015-11-19 08:00:04	0A23F786A551A70B66688C70AFD491E1	13017088	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-11-19 08:00:01	C9E25AB152E9E111F2820AFC6C89B641	2179584	----a-w-	C:\WINDOWS\SysWOW64\mfcore.dll
2015-11-19 08:00:00	8BAD6657817E0960C7CB6026323828A1	511320	----a-w-	C:\WINDOWS\SysWOW64\mf.dll
2015-11-19 07:59:59	9D30ED8C7F49B776AE0581FA5464CD44	1707008	----a-w-	C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-11-19 07:59:57	F2D2E8091D0929884E6A86AFD9981E2F	2001408	----a-w-	C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-11-19 07:59:56	3695C67045D09215EF0AF4C401D23D25	2064384	----a-w-	C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-19 07:59:55	D0693220928997E1DD513B261AF86308	454056	----a-w-	C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-19 07:59:55	4117B68662DD4476D32B28CED9CE0FE0	2918808	----a-w-	C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-19 07:59:54	CFF6561FE6740E23FBFE0FF99C8A48B7	409088	----a-w-	C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-11-19 07:59:54	89F3F69C9996D5BCC879C664BF74A4E2	675064	----a-w-	C:\WINDOWS\SysWOW64\dcomp.dll
2015-11-19 07:59:54	31DE6A034E8BBA043CB2F4612033C12A	296488	----a-w-	C:\WINDOWS\SysWOW64\policymanager.dll
2015-11-19 07:59:53	EF22B84131DB17D40D523F649CAD31D2	366224	----a-w-	C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-11-19 07:59:53	EBB01B0223DBB9660E4FFB35854D69BF	400896	----a-w-	C:\WINDOWS\SysWOW64\winspool.drv
2015-11-19 07:59:53	AD2E3CC2771EADB0605CC0FAE73EAA45	405048	----a-w-	C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-19 07:59:53	A4CC1E8330E839AA619978E61AEEEAC4	73360	----a-w-	C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-19 07:59:53	9C58CC40F82DF28B3C0B04EA2AC8F99F	116728	----a-w-	C:\WINDOWS\SysWOW64\mfps.dll
2015-11-19 07:59:53	4928A84450E64625366CA7EABACAE779	382464	----a-w-	C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-11-19 07:59:53	1E7B13CDBA9D57D2BF54A7501FB17376	586080	----a-w-	C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-19 07:59:52	123BD3D4504BB548A823152EAC57DE00	32040	----a-w-	C:\WINDOWS\SysWOW64\mfpmp.exe
2015-11-19 07:59:50	BC6B60847CDEFFB3DE3AA394366881DF	490496	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-19 07:59:50	B13BE7A31C732B5773FDF51FB140B614	334336	----a-w-	C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-19 07:59:50	AC742BB0B79CD4C535E6A317FD4A18A8	315904	----a-w-	C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-19 07:59:48	2AF0E5217FE677C29669E0243F28D64F	70656	----a-w-	C:\WINDOWS\SysWOW64\AppCapture.dll
2015-11-19 07:59:47	D52DBC4E0729FF2E8A623F33687468BF	160768	----a-w-	C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-11-19 07:59:46	75F7D82383D8CF10D5999874993A2EF5	27136	----a-w-	C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-11-19 07:59:45	F7F009E10E52C760EF48D2AD7E4D892E	29696	----a-w-	C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-11-19 07:59:43	B1F01FDE71DF53B2BBBB6DA9629788B0	1268736	----a-w-	C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-11-14 13:57:53	967596AE692AD8548BB12F7C3ABA4D07	69120	----a-w-	C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-11-14 13:54:44	42DE22BB4E675AE8DADD9038B26F8EFE	2718208	----a-w-	C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-11-14 13:49:59	79422D76818752C6D935A97C8FFC4EEA	44147	----a-w-	C:\WINDOWS\SysWOW64\license.rtf
2015-11-14 13:43:46	6378BF30C350873C5BBF0BB05DFBA57D	12120064	----a-w-	C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-14 13:43:45	F0ED21F9D39229B305C363B6ED023170	11776	----a-w-	C:\WINDOWS\SysWOW64\dciman32.dll
2015-11-14 13:43:45	A95DDF60D6EC95625C4987750619C5DB	93696	----a-w-	C:\WINDOWS\SysWOW64\fontsub.dll
2015-11-14 13:43:45	93050CE746C09F2F6F49A4893FB060ED	647168	----a-w-	C:\WINDOWS\SysWOW64\jscript.dll
2015-11-14 13:43:45	8E93F5481D1A608D90104F24DD610B76	540752	----a-w-	C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-14 13:43:45	8E2CB7E297C2631CB063319377ED7AD0	303104	----a-w-	C:\WINDOWS\SysWOW64\atmfd.dll
2015-11-14 13:43:45	5CC30558D7DE79B24749C25720C6B546	18677760	----a-w-	C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-14 13:43:45	54F47C0CD2DE99A7B8C7583CF6C22D92	3072	----a-w-	C:\WINDOWS\SysWOW64\lpk.dll
2015-11-14 13:43:45	4800F10A0B8375D0DC41B69D89A04F10	2756096	----a-w-	C:\WINDOWS\SysWOW64\mshtml.tlb
2015-11-14 13:43:45	3B7DA8EC6FC4F16F85934D944A2149CD	791552	----a-w-	C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-14 13:43:45	3152BBDE03BFCEFCC1EB9167D3D14D8E	19339776	----a-w-	C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-14 13:43:45	2C5A8D334EFB14914B1618247CD0DAAF	37376	----a-w-	C:\WINDOWS\SysWOW64\atmlib.dll
2015-11-14 13:42:01	6F2CA3BDD1C78C465BC0C1E5DDA15B28	2629632	----a-w-	C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-11-14 13:42:01	14129011499850E46153AB0E6C325F87	4847616	----a-w-	C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-11-14 13:25:01	F432E0E5B0958F4982D40EB622FBD7FC	35480	----a-w-	C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-11-14 13:25:01	BF9CAA33ADD4C21C118148B5CFC5494B	778936	----a-w-	C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-11-14 13:25:01	6F391E9286733CC6B34FC0FAB23B8DF3	103120	----a-w-	C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
====== C:\WINDOWS\SysWOW64\drivers =====
2015-10-30 07:18:29	7F29903CB8F5590D52DB0C9F97049A25	3440660	----a-w-	C:\WINDOWS\SysWOW64\drivers\gm.dls
2015-10-30 07:18:29	7111BFA692A22E4B3C07F1E6C6FF6F72	646	----a-w-	C:\WINDOWS\SysWOW64\drivers\gmreadme.txt
====== C:\WINDOWS\Sysnative =====
2015-11-19 08:00:31	44699ED0B4D39D109D1BAEEF0DB66A9E	22572632	----a-w-	C:\WINDOWS\Sysnative\shell32.dll
2015-11-19 08:00:28	0C4284C73435BBB2671A79CF7560AD41	16984064	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll
2015-11-19 08:00:16	445E792DB399A2DA611B1F3C9DC6070D	11545088	----a-w-	C:\WINDOWS\Sysnative\twinui.dll
2015-11-19 08:00:07	720089B5145468B8EC05707D3262D4E3	2544264	----a-w-	C:\WINDOWS\Sysnative\mfcore.dll
2015-11-19 08:00:05	85031015C1F1B9A7DAA002DAAEE341AA	2444288	----a-w-	C:\WINDOWS\Sysnative\twinui.appcore.dll
2015-11-19 08:00:01	8109C3D1CFDC7AE78605D8F3EA4EAA20	586208	----a-w-	C:\WINDOWS\Sysnative\mf.dll
2015-11-19 08:00:00	E1014F12F58188114A95EDC5E2C70D5F	2587136	----a-w-	C:\WINDOWS\Sysnative\MFMediaEngine.dll
2015-11-19 07:59:58	CB5E7C32FDF2D4B5E4D7FEE10E75F641	7476576	----a-w-	C:\WINDOWS\Sysnative\ntoskrnl.exe
2015-11-19 07:59:57	AD37B56D53795944240011FF4EEBBD30	911648	----a-w-	C:\WINDOWS\Sysnative\dcomp.dll
2015-11-19 07:59:57	224B2012CE99AB8E7EF7DC0A799344E1	914944	----a-w-	C:\WINDOWS\Sysnative\usermgr.dll
2015-11-19 07:59:56	779B8174F8C0362A12C242D487AAD392	3670832	----a-w-	C:\WINDOWS\Sysnative\iertutil.dll
2015-11-19 07:59:56	161665818548A04A036C08FE75FCCD6B	1998848	----a-w-	C:\WINDOWS\Sysnative\ActiveSyncProvider.dll
2015-11-19 07:59:55	EF94C4BB5DDCEB9F0A092122582CF4E5	516544	----a-w-	C:\WINDOWS\Sysnative\AudioEng.dll
2015-11-19 07:59:55	C66D5ABBFAE385615407A90158AADB2B	292352	----a-w-	C:\WINDOWS\Sysnative\provengine.dll
2015-11-19 07:59:55	C59382D6044DF9104CA7375DFABBACCC	1212416	----a-w-	C:\WINDOWS\Sysnative\wwansvc.dll
2015-11-19 07:59:55	BDB36F389EBE038A65BB6D111A45C180	497664	----a-w-	C:\WINDOWS\Sysnative\mfmkvsrcsnk.dll
2015-11-19 07:59:54	FAC1E762CB49992381691B00D2069B3E	1063424	----a-w-	C:\WINDOWS\Sysnative\audiosrv.dll
2015-11-19 07:59:54	DD723E3E44BBD7A1B94D8914B7E72549	623616	----a-w-	C:\WINDOWS\Sysnative\PhoneProviders.dll
2015-11-19 07:59:54	9F465D3AD1DE2AB4EBCA0B514B8AD608	286208	----a-w-	C:\WINDOWS\Sysnative\provhandlers.dll
2015-11-19 07:59:54	226BFF5829028C6809EF4D369221103F	245848	----a-w-	C:\WINDOWS\Sysnative\mfps.dll
2015-11-19 07:59:54	1083375C70D529AA1C8224E13D9E6F40	334736	----a-w-	C:\WINDOWS\Sysnative\policymanager.dll
2015-11-19 07:59:54	02718A3260FCF64A66DC172AB66116CB	543232	----a-w-	C:\WINDOWS\Sysnative\StoreAgent.dll
2015-11-19 07:59:53	DA81241A3493CD3B7EEF3AFD6BBE38B6	92352	----a-w-	C:\WINDOWS\Sysnative\acmigration.dll
2015-11-19 07:59:53	B9A74283BD46350F2A32962C1B16225A	369912	----a-w-	C:\WINDOWS\Sysnative\audiodg.exe
2015-11-19 07:59:53	82EDCF9C603F3FA09AAAACA82D34E74E	450560	----a-w-	C:\WINDOWS\Sysnative\Windows.Internal.Bluetooth.dll
2015-11-19 07:59:53	81785D31BEB7C741BB23BE0CB98E691F	536768	----a-w-	C:\WINDOWS\Sysnative\AudioSes.dll
2015-11-19 07:59:53	80BF2990E01E774D64F6E13F30661942	162304	----a-w-	C:\WINDOWS\Sysnative\tetheringservice.dll
2015-11-19 07:59:53	7B106C453D6EF1A32F8669AD503E21BB	517632	----a-w-	C:\WINDOWS\Sysnative\winspool.drv
2015-11-19 07:59:53	36208F250EE9B93B87AD6384237373A9	110032	----a-w-	C:\WINDOWS\Sysnative\EncDump.dll
2015-11-19 07:59:52	F5DC166DC9D533651B83B83CD70FD14C	88392	----a-w-	C:\WINDOWS\Sysnative\remoteaudioendpoint.dll
2015-11-19 07:59:52	C46FC25D2742C6426F6581A4C59331D9	35656	----a-w-	C:\WINDOWS\Sysnative\mfpmp.exe
2015-11-19 07:59:52	BA45A9F29AB13A0E66BAABF9D7C30B70	523616	----a-w-	C:\WINDOWS\Sysnative\wimserv.exe
2015-11-19 07:59:52	66312F4AFEFB1AE0B80051F8A5E5B26B	698208	----a-w-	C:\WINDOWS\Sysnative\wimgapi.dll
2015-11-19 07:59:51	95AF774B7D20C3006DC0AC9AEDF48655	674816	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.dll
2015-11-19 07:59:51	89E74EC4422905377D45D58FD2832D02	408128	----a-w-	C:\WINDOWS\Sysnative\AUDIOKSE.dll
2015-11-19 07:59:50	FE808DE33D79F2ACB8757EE544615626	414720	----a-w-	C:\WINDOWS\Sysnative\bcastdvr.exe
2015-11-19 07:59:50	71B94A84934AA3DA61378C4121523FEA	86528	----a-w-	C:\WINDOWS\Sysnative\AppCapture.dll
2015-11-19 07:59:50	4D9E69B803DFA70981BC1853AB930EF6	192000	----a-w-	C:\WINDOWS\Sysnative\provisioningcsp.dll
2015-11-19 07:59:49	E15B5C1DFD00E795996B7F44BD5FBC2A	231936	----a-w-	C:\WINDOWS\Sysnative\KnobsCore.dll
2015-11-19 07:59:49	890BF20BDF500E4E84720EA84448EDDF	275456	----a-w-	C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll
2015-11-19 07:59:49	0FF72DE09330460C64D791FDAA4E6753	75264	----a-w-	C:\WINDOWS\Sysnative\wwanprotdim.dll
2015-11-19 07:59:48	8B362AFF26AFF41CC5ED6A890E9255F8	165376	----a-w-	C:\WINDOWS\Sysnative\provdatastore.dll
2015-11-19 07:59:48	87A8DD15B7DEAC51916358250E5BC7C5	122368	----a-w-	C:\WINDOWS\Sysnative\KnobsCsp.dll
2015-11-19 07:59:48	6D04648D2E3F42A295B6D080A948E9BA	163328	----a-w-	C:\WINDOWS\Sysnative\provops.dll
2015-11-19 07:59:48	1A9A77ACDAC29C39F50D2A492FD0DB16	87040	----a-w-	C:\WINDOWS\Sysnative\tzautoupdate.dll
2015-11-19 07:59:48	072E1B2CBBC2CF85D02E5CE4761F7B43	77312	----a-w-	C:\WINDOWS\Sysnative\ProvPluginEng.dll
2015-11-19 07:59:47	FBEFDA259F6254B6590956753421D387	89600	----a-w-	C:\WINDOWS\Sysnative\NFCProvisioningPlugin.dll
2015-11-19 07:59:47	9FCC3D4817CCA5BCEF1FB4B14E523EBC	78336	----a-w-	C:\WINDOWS\Sysnative\BarcodeProvisioningPlugin.dll
2015-11-19 07:59:46	E104F46B2E0C4F760382CF95E248E0AD	43520	----a-w-	C:\WINDOWS\Sysnative\bcastdvr.proxy.dll
2015-11-19 07:59:46	A1F43B152956EB72F687373A76DE40EE	161792	----a-w-	C:\WINDOWS\Sysnative\DeviceCensus.exe
2015-11-19 07:59:46	722ACEC7B2A71664C94130D1FA924F73	198656	----a-w-	C:\WINDOWS\Sysnative\InstallAgent.exe
2015-11-19 07:59:46	559E4E19F481FBB9AF622E23772533CC	52736	----a-w-	C:\WINDOWS\Sysnative\RemovableMediaProvisioningPlugin.dll
2015-11-19 07:59:46	3DF7BD7E0E0CFCF8D8856B639FD46C3C	30720	----a-w-	C:\WINDOWS\Sysnative\tetheringconfigsp.dll
2015-11-19 07:59:46	01605124DA346314F07656A31CF805EE	56320	----a-w-	C:\WINDOWS\Sysnative\provtool.exe
2015-11-19 07:59:45	3690FAA19C6D3C68C033D0E5CB3BDB03	28160	----a-w-	C:\WINDOWS\Sysnative\Windows.Management.Provisioning.ProxyStub.dll
2015-11-19 07:59:45	25C9F417FA6FE9073392BD34630A89B4	17408	----a-w-	C:\WINDOWS\Sysnative\IcsEntitlementHost.exe
2015-11-19 07:59:45	233BA5B1A277D0A42E432E9A9F43EF7A	37376	----a-w-	C:\WINDOWS\Sysnative\LaunchWinApp.exe
2015-11-19 07:59:45	0161DABC5CDB2BE6D0B91BEB5386B47D	52736	----a-w-	C:\WINDOWS\Sysnative\tetheringclient.dll
2015-11-19 07:59:43	F03B1F1E52289E7772A9069BF0F548F2	1268736	----a-w-	C:\WINDOWS\Sysnative\Windows.UI.Xaml.Resources.dll
2015-11-16 18:07:37	CB136B267569A62EF63D798BC90ABD5A	144	----a-w-	C:\WINDOWS\Sysnative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-14 15:05:24	9F45771914360A925252A1B7226EC7EC	451	----a-w-	C:\WINDOWS\Sysnative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-11-14 14:32:40	FE808074474ED672995DE816A21CC330	22980	----a-w-	C:\WINDOWS\Sysnative\emptyregdb.dat
2015-11-14 14:25:31	69318E04AB971342A5ACC45A28BD1384	1847504	----a-w-	C:\WINDOWS\Sysnative\PerfStringBackup.INI
2015-11-14 13:57:53	E2A042032FAECB04477D8235FD1181FF	72704	----a-w-	C:\WINDOWS\Sysnative\OpenCL.DLL
2015-11-14 13:51:02	1FE9001DEB0B119A39DE6443A56464CC	348408	----a-w-	C:\WINDOWS\Sysnative\FNTCACHE.DAT
2015-11-14 13:49:59	79422D76818752C6D935A97C8FFC4EEA	44147	----a-w-	C:\WINDOWS\Sysnative\license.rtf
2015-11-14 13:43:46	DC7C53677CB131B3F31CD872BD81FCC4	7680	----a-w-	C:\WINDOWS\Sysnative\readingviewresources.dll
2015-11-14 13:43:46	BB2DD53E90A958FDB1254839F30329D5	803840	----a-w-	C:\WINDOWS\Sysnative\jscript.dll
2015-11-14 13:43:46	9D62E2A71D46051A4E79CE6D7ED48745	13376512	----a-w-	C:\WINDOWS\Sysnative\ieframe.dll
2015-11-14 13:43:45	FCB7D0215CA010400777A2144432FBDC	630632	----a-w-	C:\WINDOWS\Sysnative\fontdrvhost.exe
2015-11-14 13:43:45	D84C456794F208043E52D1096F37E2B3	1393664	----a-w-	C:\WINDOWS\Sysnative\win32kbase.sys
2015-11-14 13:43:45	B8F17AB618578B9024D949DE8308B95A	14336	----a-w-	C:\WINDOWS\Sysnative\dciman32.dll
2015-11-14 13:43:45	9BF34692BC6933BAB7627EC173EB1E8A	45568	----a-w-	C:\WINDOWS\Sysnative\atmlib.dll
2015-11-14 13:43:45	877512145CB9B3F6EBD5424DE15C14F8	365568	----a-w-	C:\WINDOWS\Sysnative\atmfd.dll
2015-11-14 13:43:45	856545B4E7B8B459C75A239EA62E8791	24603136	----a-w-	C:\WINDOWS\Sysnative\mshtml.dll
2015-11-14 13:43:45	8456D2DBEAC8F06712FE8AC2AB5A1AE2	969728	----a-w-	C:\WINDOWS\Sysnative\kerberos.dll
2015-11-14 13:43:45	836CB99DCDE7F690514F0558737A1EA1	22394880	----a-w-	C:\WINDOWS\Sysnative\edgehtml.dll
2015-11-14 13:43:45	6D64E74EF63AD36912C89EA80449A299	118272	----a-w-	C:\WINDOWS\Sysnative\fontsub.dll
2015-11-14 13:43:45	6ABAC83AD594B0390C470F9C1C017382	3072	----a-w-	C:\WINDOWS\Sysnative\lpk.dll
2015-11-14 13:43:45	43F5135D228CFC6B5F7963E0490F7B6B	115200	----a-w-	C:\WINDOWS\Sysnative\win32k.sys
2015-11-14 13:43:45	182C2ECD3C2EF931F470765785AC83A1	2756096	----a-w-	C:\WINDOWS\Sysnative\mshtml.tlb
2015-11-14 13:43:45	0BB0769EEE5E170CE0B33AC7BF869E48	3592704	----a-w-	C:\WINDOWS\Sysnative\win32kfull.sys
2015-11-14 13:42:01	F44AA79DF45B1CAE6E6C64372D846AA5	6359040	----a-w-	C:\WINDOWS\Sysnative\NlsData0009.dll
2015-11-14 13:42:01	E52612EA0C1C1ACD3ABFD09534F6AAE6	5739520	----a-w-	C:\WINDOWS\Sysnative\prm0009.dll
2015-11-14 13:42:01	8F1CD3FABC7F24FE329FE39A3EB58C58	2629632	----a-w-	C:\WINDOWS\Sysnative\NlsLexicons0009.dll
2015-11-14 13:24:48	E91942A0D00C6AA014B2EA33EE0ED0A3	35480	----a-w-	C:\WINDOWS\Sysnative\TsWpfWrp.exe
2015-11-14 13:24:48	E2296A6174894682DF8F0FF29FDDCC82	1166520	----a-w-	C:\WINDOWS\Sysnative\PresentationNative_v0300.dll
2015-11-14 13:24:48	C5FEF4B4A7FB961ECDB0AB07DBCF379E	124624	----a-w-	C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll
====== C:\WINDOWS\Sysnative\drivers =====
2015-11-19 07:59:51	EF536C54AB9281FDC4E83B07279FCFC4	35680	----a-w-	C:\WINDOWS\Sysnative\drivers\wimmount.sys
2015-11-14 13:58:30	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SynTP_01011.Wdf
2015-11-14 13:58:00	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-11-14 13:57:21	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\WINDOWS\Sysnative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-11-14 13:43:46	91D3F2A6253EF83EFBD7903028F58C4D	118624	----a-w-	C:\WINDOWS\Sysnative\drivers\tdx.sys
2015-11-14 13:43:45	70148EFA9A562E7185B75BBE7D376BF7	578912	----a-w-	C:\WINDOWS\Sysnative\drivers\afd.sys
2015-10-30 07:19:42	1DC2CC74B51E4DC4CD5A20C1021E4010	173056	----a-w-	C:\WINDOWS\Sysnative\drivers\rdpdr.sys
2015-10-30 07:19:39	1C08E424CBDD5065BB7266F8C048C1B1	30560	----a-w-	C:\WINDOWS\Sysnative\drivers\WpdUpFltr.sys
2015-10-30 07:19:26	13D72CB58503C91ECD4D98C25B3E7D56	19296	----a-w-	C:\WINDOWS\Sysnative\drivers\ntosext.sys
2015-10-30 07:18:47	177DF954D0DEC0465A380C75F6E7F65F	29536	----a-w-	C:\WINDOWS\Sysnative\drivers\rdpvideominiport.sys
2015-10-30 07:18:43	CCAD845F4D21D0E0E0468205EE865473	285696	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys
2015-10-30 07:18:43	ACC1709EC7FE6EB8999DBC91C50C2B34	407552	----a-w-	C:\WINDOWS\Sysnative\drivers\srv.sys
2015-10-30 07:18:43	96972FF2A837EBAD408B3ACE099FC99D	88496	----a-w-	C:\WINDOWS\Sysnative\drivers\dumpfve.sys
2015-10-30 07:18:43	87870D9FA15A649DAF7D36C6E956AC8A	32768	----a-w-	C:\WINDOWS\Sysnative\drivers\usbrpm.sys
2015-10-30 07:18:43	421497634C86EF4B8F86D0EBC076728F	638304	----a-w-	C:\WINDOWS\Sysnative\drivers\fvevol.sys
2015-10-30 07:18:42	22C52D7EE7C7D0E02C8EFD8CAE8E3A71	52768	----a-w-	C:\WINDOWS\Sysnative\drivers\wpcfltr.sys
2015-10-30 07:18:18	5B23A79E2C76215BC5A0CBA834290F37	39776	----a-w-	C:\WINDOWS\Sysnative\drivers\werkernel.sys
2015-10-30 07:18:09	CBA5E88A0F0475B7F49653BB72150BEF	29024	----a-w-	C:\WINDOWS\Sysnative\drivers\hwpolicy.sys
2015-10-30 07:18:09	A932391623D5CEC4EF4A2A17D3CEBFCD	216064	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFRd.sys
2015-10-30 07:18:09	A928F25CB62232F413EE655352856E10	98816	----a-w-	C:\WINDOWS\Sysnative\drivers\WUDFPf.sys
2015-10-30 07:18:09	933222B19FF3E7EA5F65517EA1F7D57E	3	----a-w-	C:\WINDOWS\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-10-30 07:18:09	933222B19FF3E7EA5F65517EA1F7D57E	3	----a-w-	C:\WINDOWS\Sysnative\drivers\MsftWdf_Kernel_01017_Inbox_Critical.Wdf
2015-10-30 07:18:09	8B4B39C507ABA09AAFE8E3932D1B392C	385376	----a-w-	C:\WINDOWS\Sysnative\drivers\clfs.sys
2015-10-30 07:18:09	7F9C7226D743B232907ED2537B8A574F	92672	----a-w-	C:\WINDOWS\Sysnative\drivers\cdfs.sys
2015-10-30 07:18:09	341E6830DA70F65730300DAB4CB0B490	930656	----a-w-	C:\WINDOWS\Sysnative\drivers\refsv1.sys
2015-10-30 07:18:08	F51C02D992A8D6BC5EC4D990F227D4C7	279552	----a-w-	C:\WINDOWS\Sysnative\drivers\netbt.sys
2015-10-30 07:18:08	BEE9C8B72AB752B794F69C2B9B3678AA	367968	----a-w-	C:\WINDOWS\Sysnative\drivers\volmgrx.sys
2015-10-30 07:18:08	ABBB149E1962C4E7DF06382F4B1FE55A	129368	----a-w-	C:\WINDOWS\Sysnative\drivers\tm.sys
2015-10-30 07:18:08	A403DAE4B083EB96BC6CEDB47639B4F8	1089888	----a-w-	C:\WINDOWS\Sysnative\drivers\http.sys
2015-10-30 07:18:08	555208AC157FD2B01BCEC0CD1B2E38C1	35680	----a-w-	C:\WINDOWS\Sysnative\drivers\Dumpata.sys
2015-10-30 07:18:08	3DF7751D5DC6525E7DC6617FBB45054F	218624	----a-w-	C:\WINDOWS\Sysnative\drivers\ahcache.sys
2015-10-30 07:18:03	F6A2D0EC594A1039B0F9D42BB8EC0BD3	2152800	----a-w-	C:\WINDOWS\Sysnative\drivers\ntfs.sys
2015-10-30 07:18:03	E42C0F2850735FF9D908B9DB581E6314	200536	----a-w-	C:\WINDOWS\Sysnative\drivers\VerifierExt.sys
2015-10-30 07:18:03	D8966A76408107224C6013993135DD78	106520	----a-w-	C:\WINDOWS\Sysnative\drivers\WindowsTrustedRT.sys
2015-10-30 07:18:03	D5B7668A8F6C67C51FA5C6C513396D6C	102752	----a-w-	C:\WINDOWS\Sysnative\drivers\mountmgr.sys
2015-10-30 07:18:03	D356F0A996E1F061025B975C1A7ACF29	465248	----a-w-	C:\WINDOWS\Sysnative\drivers\netio.sys
2015-10-30 07:18:03	D123343DDB02E372B02BF2C4293F835F	31232	----a-w-	C:\WINDOWS\Sysnative\drivers\msfs.sys
2015-10-30 07:18:03	CC71372CEB811A72F1DC99089C5CBF53	31584	----a-w-	C:\WINDOWS\Sysnative\drivers\fs_rec.sys
2015-10-30 07:18:03	CA0D42029AFFC4514D295E1EF823D02D	26624	----a-w-	C:\WINDOWS\Sysnative\drivers\ioqos.sys
2015-10-30 07:18:03	C1CEA624366F4A398B21566D16F3EFF4	375648	----a-w-	C:\WINDOWS\Sysnative\drivers\Classpnp.sys
2015-10-30 07:18:03	B5E45BF47AE0C1D724FBD51CE8D6CDEE	61248	----a-w-	C:\WINDOWS\Sysnative\drivers\WdfLdr.sys
2015-10-30 07:18:03	AFAECF904F1C343EBD50F91BC8D0DBE8	1152864	----a-w-	C:\WINDOWS\Sysnative\drivers\ndis.sys
2015-10-30 07:18:03	982C795DE20CED7AEDD2E7899B5D9BC1	129888	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecdd.sys
2015-10-30 07:18:03	892F30506DCCF230C5A57019C1D8D31B	2403680	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpip.sys
2015-10-30 07:18:03	7284BD8705CF83CAE1775A0B98A1E7E4	20320	----a-w-	C:\WINDOWS\Sysnative\drivers\wmilib.sys
2015-10-30 07:18:03	6DBD703320484C37CEA9E4E2D266A8CE	7168	----a-w-	C:\WINDOWS\Sysnative\drivers\null.sys
2015-10-30 07:18:03	6CC727E94CD84E9720FDCDA8089CABCC	794432	----a-w-	C:\WINDOWS\Sysnative\drivers\Wdf01000.sys
2015-10-30 07:18:03	6AE525646D5A7D3C6F180F08846978F6	405856	----a-w-	C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS
2015-10-30 07:18:03	465DC580170CD844206D7E3EF1DBF2A1	68608	----a-w-	C:\WINDOWS\Sysnative\drivers\npfs.sys
2015-10-30 07:18:03	3995CC3DEDED258768B8EBC2F4C0DC73	61952	----a-w-	C:\WINDOWS\Sysnative\drivers\UcmCx.sys
2015-10-30 07:18:03	390B8A75768E2689586539C224520895	78848	----a-w-	C:\WINDOWS\Sysnative\drivers\storqosflt.sys
2015-10-30 07:18:03	2871225495F832A8C8A7DD1A17EDB3DC	40960	----a-w-	C:\WINDOWS\Sysnative\drivers\nsiproxy.sys
2015-10-30 07:18:03	2773E58897A3486354275019214BA6B9	39776	----a-w-	C:\WINDOWS\Sysnative\drivers\tdi.sys
2015-10-30 07:18:03	25D7A58625E1453E40D36825DE74E4F1	377696	----a-w-	C:\WINDOWS\Sysnative\drivers\fltMgr.sys
2015-10-30 07:18:03	24AC0FD10325FBC2303B29A5F237AEB0	118624	----a-w-	C:\WINDOWS\Sysnative\drivers\partmgr.sys
2015-10-30 07:18:03	22A53744CEEADFFFD33BA010FAD95229	51544	----a-w-	C:\WINDOWS\Sysnative\drivers\pcw.sys
2015-10-30 07:18:03	182711E9DDF70121A20EBB61B2DFB9E8	354144	----a-w-	C:\WINDOWS\Sysnative\drivers\msrpc.sys
2015-10-30 07:18:03	0AA9752E990BA2B0ACF440B7FAEE650E	25440	----a-w-	C:\WINDOWS\Sysnative\drivers\WppRecorder.sys
2015-10-30 07:18:03	02B8E49148DE5E0A2F6FDF28CE94A6AC	50016	----a-w-	C:\WINDOWS\Sysnative\drivers\condrv.sys
2015-10-30 07:18:01	C11272713719922DE5711094333BD166	154464	----a-w-	C:\WINDOWS\Sysnative\drivers\wfplwfs.sys
2015-10-30 07:17:59	5FBCB85D127BE21E3A9DAF11A13C00EA	76288	----a-w-	C:\WINDOWS\Sysnative\drivers\mpsdrv.sys
2015-10-30 07:17:58	DA2C6F7ACE392193C424FEA975C5BFFB	105984	----a-w-	C:\WINDOWS\Sysnative\drivers\bowser.sys
2015-10-30 07:17:58	D2ED12C0B38F0B09DA8723CF0DBB4654	576864	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms2.sys
2015-10-30 07:17:58	C9478D7DB7BE5D7ACE65CB1167F07320	148480	----a-w-	C:\WINDOWS\Sysnative\drivers\dfsc.sys
2015-10-30 07:17:58	AFBCFC946FAE7483E27BD316D03F94A5	690688	----a-w-	C:\WINDOWS\Sysnative\drivers\srv2.sys
2015-10-30 07:17:58	A2512BC5F2ABD84D8B3CB0D76ADB749A	1997664	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys
2015-10-30 07:17:58	97F5A1D8AD1CB0A73C86F53C60DA06B6	50176	----a-w-	C:\WINDOWS\Sysnative\drivers\videoprt.sys
2015-10-30 07:17:58	8AD4E5544825EBC298B4C138C070185F	58880	----a-w-	C:\WINDOWS\Sysnative\drivers\watchdog.sys
2015-10-30 07:17:58	61F9F27A8C3D7BCD287FE98A440421CE	430944	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb.sys
2015-10-30 07:17:58	60F88248608315E13391C2F1C3B4473F	124248	----a-w-	C:\WINDOWS\Sysnative\drivers\mup.sys
2015-10-30 07:17:58	4149BF1B499DA6852B1ADC74E3EB9145	393560	----a-w-	C:\WINDOWS\Sysnative\drivers\dxgmms1.sys
2015-10-30 07:17:58	2B648363E4C5E34B469C58596F377DD9	422752	----a-w-	C:\WINDOWS\Sysnative\drivers\rdbss.sys
2015-10-30 07:17:58	107C1EBE79710E4A759449BD6604245A	235520	----a-w-	C:\WINDOWS\Sysnative\drivers\srvnet.sys
2015-10-30 07:17:58	0F47A6C09F0A7FB5513D322A2B9BE4EC	216408	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys
2015-10-30 07:17:57	7F29903CB8F5590D52DB0C9F97049A25	3440660	----a-w-	C:\WINDOWS\Sysnative\drivers\gm.dls
2015-10-30 07:17:57	7111BFA692A22E4B3C07F1E6C6FF6F72	646	----a-w-	C:\WINDOWS\Sysnative\drivers\gmreadme.txt
2015-10-30 07:17:57	64BD0C87064EA20C2D3DC4199F9C239C	47616	----a-w-	C:\WINDOWS\Sysnative\drivers\mmcss.sys
2015-10-30 07:17:53	2BBD3A492B93C7E669D01EE88977D7DE	146272	----a-w-	C:\WINDOWS\Sysnative\drivers\appid.sys
2015-10-30 07:17:52	F802FBABF0C4DF1BAA733187B2E476F5	163680	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpioclx.sys
2015-10-30 07:17:52	E2F8376F9731D12A009C522036C6073A	721408	----a-w-	C:\WINDOWS\Sysnative\drivers\PEAuth.sys
2015-10-30 07:17:52	9F2AE73C6D42BA8573F8BF5E6860D5B8	605440	----a-w-	C:\WINDOWS\Sysnative\drivers\cng.sys
2015-10-30 07:17:52	9B6B1D4DB35A3D9BEAF023BC95E1F49D	43008	----a-w-	C:\WINDOWS\Sysnative\drivers\scfilter.sys
2015-10-30 07:17:52	903E6E28309F1566E58BCBD43F46C010	161632	----a-w-	C:\WINDOWS\Sysnative\drivers\ksecpkg.sys
2015-10-30 07:17:52	6E59CE43B6BA5AA1ADCF36A4DBBB92BB	57696	----a-w-	C:\WINDOWS\Sysnative\drivers\urscx01000.sys
2015-10-30 07:17:52	5F0D997E6FC5A418D7673148CEF72887	254816	----a-w-	C:\WINDOWS\Sysnative\drivers\ufx01000.sys
2015-10-30 07:17:52	58D640BC2294C71BDE0953F12D4B432F	39264	----a-w-	C:\WINDOWS\Sysnative\drivers\cnghwassist.sys
2015-10-30 07:17:52	06F5243040EAECCDB75062AE25C6631D	638816	----a-w-	C:\WINDOWS\Sysnative\drivers\ClipSp.sys
2015-10-30 07:17:51	FC7A8A729B3AB453B2540798640D85E8	22016	----a-w-	C:\WINDOWS\Sysnative\drivers\smclib.sys
2015-10-30 07:17:51	F7583C824464CA3FC54742781B58D156	77152	----a-w-	C:\WINDOWS\Sysnative\drivers\crashdmp.sys
2015-10-30 07:17:51	F6A0BAFBF599CDE8426BC5B249F3F0D8	38240	----a-w-	C:\WINDOWS\Sysnative\drivers\Diskdump.sys
2015-10-30 07:17:51	EF75184B64356850D0F04D049C253526	10752	----a-w-	C:\WINDOWS\Sysnative\drivers\mspclock.sys
2015-10-30 07:17:51	E9BB0023D730701BB5D9839B44F5E6B5	26112	----a-w-	C:\WINDOWS\Sysnative\drivers\ksthunk.sys
2015-10-30 07:17:51	E9457EDFEBC774199F907395C6D09CA2	13824	----a-w-	C:\WINDOWS\Sysnative\drivers\mskssrv.sys
2015-10-30 07:17:51	E1C158F6C00359278727A2CEE5D2ED71	77664	----a-w-	C:\WINDOWS\Sysnative\drivers\SpbCx.sys
2015-10-30 07:17:51	E04288E0D41DDCC9C3D41C808785D586	390656	----a-w-	C:\WINDOWS\Sysnative\drivers\ks.sys
2015-10-30 07:17:51	D10640D88BBEAC0C5B8E9771A86F2176	465248	----a-w-	C:\WINDOWS\Sysnative\drivers\storport.sys
2015-10-30 07:17:51	CEF108FCE06892CFA5F1B49527D4BF49	88416	----a-w-	C:\WINDOWS\Sysnative\drivers\EhStorClass.sys
2015-10-30 07:17:51	C93438D72136124C4908C93040022684	36864	----a-w-	C:\WINDOWS\Sysnative\drivers\USBCAMD2.sys
2015-10-30 07:17:51	B8C4852CBCAAC1374C08EC7445443824	155488	----a-w-	C:\WINDOWS\Sysnative\drivers\SerCx2.sys
2015-10-30 07:17:51	B2044D5D125F249680508EC0B2AAEFAC	8704	----a-w-	C:\WINDOWS\Sysnative\drivers\mshidkmdf.sys
2015-10-30 07:17:51	83A2AB75951000D681FABDB80C07AEFC	12800	----a-w-	C:\WINDOWS\Sysnative\drivers\mstee.sys
2015-10-30 07:17:51	67DA0E88D4855E2E6145182B87D6EC86	31232	----a-w-	C:\WINDOWS\Sysnative\drivers\tape.sys
2015-10-30 07:17:51	67585C295FF2D221679E376B68893B35	74584	----a-w-	C:\WINDOWS\Sysnative\drivers\SerCx.sys
2015-10-30 07:17:51	5A88834AEE15D97695FAE0837B73B3E4	9728	----a-w-	C:\WINDOWS\Sysnative\drivers\beep.sys
2015-10-30 07:17:51	580EF74A18E5357AC88FB04E2864ED74	23552	----a-w-	C:\WINDOWS\Sysnative\drivers\mcd.sys
2015-10-30 07:17:51	543933D166C618E7588EA77707EC1683	10752	----a-w-	C:\WINDOWS\Sysnative\drivers\mspqm.sys
2015-10-30 07:17:51	3DE7C9F63DB19B0C6101C39761F8AD1D	74240	----a-w-	C:\WINDOWS\Sysnative\drivers\stream.sys
2015-10-30 07:17:51	36ABE7FC80BED4FE44754AE5CFB51432	11776	----a-w-	C:\WINDOWS\Sysnative\drivers\mshidumdf.sys
2015-10-30 07:17:51	31F193EEC1A499D4BB93C70ED238C31C	14336	----a-w-	C:\WINDOWS\Sysnative\drivers\Dmpusbstor.sys
2015-10-30 07:17:51	26680088FE0841859B07128D00BB38FC	173408	----a-w-	C:\WINDOWS\Sysnative\drivers\scsiport.sys
2015-10-30 07:17:50	92ECCFA58C8195B8EA33ED942469D4E6	85344	----a-w-	C:\WINDOWS\Sysnative\drivers\fileinfo.sys
2015-10-30 07:17:50	718A956AE00CE086F381044AB66CC29C	321024	----a-w-	C:\WINDOWS\Sysnative\drivers\udfs.sys
2015-10-30 07:17:50	2A9650FCC696DB28E45EA8B33B99B8E6	199008	----a-w-	C:\WINDOWS\Sysnative\drivers\wof.sys
2015-10-30 07:17:49	DFE8A33FBCF6F38182631A4D6097B92D	320000	----a-w-	C:\WINDOWS\Sysnative\drivers\exfat.sys
2015-10-30 07:17:48	5D1680871054D2B0B8A971BC8AB3B837	236384	----a-w-	C:\WINDOWS\Sysnative\drivers\rdyboost.sys
2015-10-30 07:17:47	37C9EC0398BFC22C616711E41AE157D5	144384	----a-w-	C:\WINDOWS\Sysnative\drivers\mrxdav.sys
2015-10-30 07:17:47	2FCF837196082864F66CFD9CAB256275	126464	----a-w-	C:\WINDOWS\Sysnative\drivers\luafv.sys
2015-10-30 07:17:46	D011B0ADB15F4815310CE1BF4780B33E	8192	----a-w-	C:\WINDOWS\Sysnative\drivers\gpuenergydrv.sys
2015-10-30 07:17:46	BEF8B869EDB75B97EDB4E8A334F02842	25440	----a-w-	C:\WINDOWS\Sysnative\drivers\tbs.sys
2015-10-30 07:17:46	B4175E8BE60B099686FF55CA7D692316	62816	----a-w-	C:\WINDOWS\Sysnative\drivers\fsdepends.sys
2015-10-30 07:17:46	87C51FDD50C17882BA93E28BBABB9847	35840	----a-w-	C:\WINDOWS\Sysnative\drivers\filetrace.sys
2015-10-30 07:17:46	2619DC483579DB9FE804044C1ADFFD1A	61280	----a-w-	C:\WINDOWS\Sysnative\drivers\dam.sys
2015-10-30 07:17:46	03DE0EC072C5EBD5B018CAD83F1E522A	335712	----a-w-	C:\WINDOWS\Sysnative\drivers\fastfat.sys
2015-10-30 07:17:43	CAD4D520592B30F569C320A0EC050C21	23040	----a-w-	C:\WINDOWS\Sysnative\drivers\usb8023.sys
2015-10-30 07:17:43	A74EE2D2C0BFF5EC3A6185791868C4CA	63488	----a-w-	C:\WINDOWS\Sysnative\drivers\ndisuio.sys
2015-10-30 07:17:43	9E5E8F2A1996F23B7E9687846AA81B01	143360	----a-w-	C:\WINDOWS\Sysnative\drivers\ipnat.sys
2015-10-30 07:17:42	C317EB660138BC9CBFE37CCDE56351AE	19456	----a-w-	C:\WINDOWS\Sysnative\drivers\irenum.sys
2015-10-30 07:17:42	A1D473D0CF10561F29B58EA7C5412A92	126976	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisImPlatform.sys
2015-10-30 07:17:42	5E00748A1AD246CAECBBB7553BED36CC	28160	----a-w-	C:\WINDOWS\Sysnative\drivers\asyncmac.sys
2015-10-30 07:17:42	32A9BD1342640D48AD85C8B3E812B984	20480	----a-w-	C:\WINDOWS\Sysnative\drivers\NdisVirtualBus.sys
2015-10-30 07:17:41	A934DF064C503A31683DD7EECDBD327A	114688	----a-w-	C:\WINDOWS\Sysnative\drivers\bridge.sys
2015-10-30 07:17:41	8D4B46FA84A3A3702EDADD37FAC6EDBA	41984	----a-w-	C:\WINDOWS\Sysnative\drivers\modem.sys
2015-10-30 07:17:41	5BA6B9AD03B81546BA64E488C4EF9D17	95744	----a-w-	C:\WINDOWS\Sysnative\drivers\raspptp.sys
2015-10-30 07:17:41	381B8F2311A0375676B635EA5E7C8AB0	104960	----a-w-	C:\WINDOWS\Sysnative\drivers\rasl2tp.sys
2015-10-30 07:17:41	312E61F310F440379EAB18B5EAEAC22A	12800	----a-w-	C:\WINDOWS\Sysnative\drivers\rootmdm.sys
2015-10-30 07:17:41	202260E7CDD731A32AF62ABD1ABEE008	50176	----a-w-	C:\WINDOWS\Sysnative\drivers\ndiscap.sys
2015-10-30 07:17:41	1E32A8CD65C4AD0A827CFEB13034DA29	78336	----a-w-	C:\WINDOWS\Sysnative\drivers\rassstp.sys
2015-10-30 07:17:41	17F37EC9042D84561C550620643D9A85	52224	----a-w-	C:\WINDOWS\Sysnative\drivers\tcpipreg.sys
2015-10-30 07:17:40	EC34EED89C34B27C292166B725AC7A7B	64000	----a-w-	C:\WINDOWS\Sysnative\drivers\lltdio.sys
2015-10-30 07:17:40	E70DDD8E2245CC67547B0861983912D8	694784	----a-w-	C:\WINDOWS\Sysnative\drivers\WdiWiFi.sys
2015-10-30 07:17:40	E15A9CE1E2E7D1C8DF97A4FC1FFE6289	105472	----a-w-	C:\WINDOWS\Sysnative\drivers\agilevpn.sys
2015-10-30 07:17:40	AFF59ECB510B9F1C89883FF82D4996E6	34304	----a-w-	C:\WINDOWS\Sysnative\drivers\RNDISMP.sys
2015-10-30 07:17:40	938E4EF58E42D252B742B0E243011B90	74240	----a-w-	C:\WINDOWS\Sysnative\drivers\vwififlt.sys
2015-10-30 07:17:40	8CE72F094B822AD5EE9C3A3AFC0C16B6	153600	----a-w-	C:\WINDOWS\Sysnative\drivers\tunnel.sys
2015-10-30 07:17:40	8CB53620B2C2F0641DD7563EA0FDF491	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\wanarp.sys
2015-10-30 07:17:40	6E3F9D95235DFC9417384080A216F310	85504	----a-w-	C:\WINDOWS\Sysnative\drivers\ipfltdrv.sys
2015-10-30 07:17:40	638B43D39A3D0B47024555CF1095E6F1	22528	----a-w-	C:\WINDOWS\Sysnative\drivers\ws2ifsl.sys
2015-10-30 07:17:40	536A0806CE2061A2157E65D4D8ABF30C	530432	----a-w-	C:\WINDOWS\Sysnative\drivers\nwifi.sys
2015-10-30 07:17:40	50AEF8EF0064A91ABB08D858D039C9DE	60928	----a-w-	C:\WINDOWS\Sysnative\drivers\ndproxy.sys
2015-10-30 07:17:40	45413D9ADD6E76ABE99A452956E434CE	120320	----a-w-	C:\WINDOWS\Sysnative\drivers\irda.sys
2015-10-30 07:17:40	3BE5AAC930447FD18D4A8255A2FEC95C	39936	----a-w-	C:\WINDOWS\Sysnative\drivers\vwifimp.sys
2015-10-30 07:17:40	3369023EB5790A75BA7DABA14B75D922	81408	----a-w-	C:\WINDOWS\Sysnative\drivers\raspppoe.sys
2015-10-30 07:17:40	1EE11F0508C58EF081F4176E66D6970B	26624	----a-w-	C:\WINDOWS\Sysnative\drivers\vwifibus.sys
2015-10-30 07:17:40	1A0AE283B8DE6BB76412A0F8213D45AC	25600	----a-w-	C:\WINDOWS\Sysnative\drivers\ndistapi.sys
2015-10-30 07:17:40	0AC5FCDC29ED97ECDEF1276425EE2059	80896	----a-w-	C:\WINDOWS\Sysnative\drivers\rspndr.sys
2015-10-30 07:17:40	09A5D2977450C0364F85FBC869511571	147456	----a-w-	C:\WINDOWS\Sysnative\drivers\rmcast.sys
2015-10-30 07:17:39	C85D79735641D27C5821C35ECDDC2334	81920	----a-w-	C:\WINDOWS\Sysnative\drivers\mslldp.sys
2015-10-30 07:17:39	7B2AD8C55217B514C14281AB97B4E21D	17408	----a-w-	C:\WINDOWS\Sysnative\drivers\rasacd.sys
2015-10-30 07:17:37	E3E97151A1D1E87BB2D5371F66C5F169	293216	----a-w-	C:\WINDOWS\Sysnative\drivers\WdFilter.sys
2015-10-30 07:17:37	DCA34A111C29E4578DF2B8CEA3C7CDBD	45056	----a-w-	C:\WINDOWS\Sysnative\drivers\Udecx.sys
2015-10-30 07:17:37	DA8B982AF02A59031BBD0C04AF05EB5E	21856	----a-w-	C:\WINDOWS\Sysnative\drivers\cmimcext.sys
2015-10-30 07:17:37	D358DF634F52247CB43F0781218F4D6E	124928	----a-w-	C:\WINDOWS\Sysnative\drivers\Ndu.sys
2015-10-30 07:17:37	D0C9632C350F46786643A069251BC249	31744	----a-w-	C:\WINDOWS\Sysnative\drivers\vhf.sys
2015-10-30 07:17:37	CFBA9C976CBF6796E5DC39EF59984021	48640	----a-w-	C:\WINDOWS\Sysnative\drivers\qwavedrv.sys
2015-10-30 07:17:37	B6695A72A6E91E08439534AA74520D0C	87904	----a-w-	C:\WINDOWS\Sysnative\drivers\sdport.sys
2015-10-30 07:17:37	B603F6A7E087DFCD9937F4E18286B2CF	76640	----a-w-	C:\WINDOWS\Sysnative\drivers\CEA.sys
2015-10-30 07:17:37	AED081772091C98173905E2DF28C223B	209248	----a-w-	C:\WINDOWS\Sysnative\drivers\Ucx01000.sys
2015-10-30 07:17:37	8F12AB59336143B680F71B217B495AD2	87040	----a-w-	C:\WINDOWS\Sysnative\drivers\filecrypt.sys
2015-10-30 07:17:37	7EADED8087C392876521F7EBCE846EF4	127840	----a-w-	C:\WINDOWS\Sysnative\drivers\acpiex.sys
2015-10-30 07:17:37	6A6A8CF5EE61801375A38EBB871D4057	188928	----a-w-	C:\WINDOWS\Sysnative\drivers\ndiswan.sys
2015-10-30 07:17:37	596FB6C5A72F34B7566930985E543806	160608	----a-w-	C:\WINDOWS\Sysnative\drivers\pacer.sys
2015-10-30 07:17:37	48F3A3222CF340FE31535CB6D49C6D6F	99680	----a-w-	C:\WINDOWS\Sysnative\drivers\pdc.sys
2015-10-30 07:17:37	48E828C66AB016E48F2CB4DD585315FD	61952	----a-w-	C:\WINDOWS\Sysnative\drivers\TsUsbFlt.sys
2015-10-30 07:17:37	07B043160399AF4009054E2EA3464BF4	118112	----a-w-	C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys
2015-10-30 07:17:37	069D3D6E20AD753B34FCE856F0436869	44568	----a-w-	C:\WINDOWS\Sysnative\drivers\WdBoot.sys
2015-10-30 07:17:37	026618ECF6C4BEBDCB7885D42EC0DBE4	57184	----a-w-	C:\WINDOWS\Sysnative\drivers\netbios.sys
2015-10-30 07:17:35	CCBC5D1B7A2544642FFB5B890B2C180F	79712	----a-w-	C:\WINDOWS\Sysnative\drivers\vmbkmcl.sys
2015-10-30 07:17:35	41A7938CAA6CC8D5F44721057C21D79C	88928	----a-w-	C:\WINDOWS\Sysnative\drivers\hvsocket.sys
2015-10-30 07:17:35	297A5126D1854199F294330B681A779D	30048	----a-w-	C:\WINDOWS\Sysnative\drivers\winhv.sys
2015-10-30 07:17:31	E730D0EB1B84EBC98423FC8D285EDBC0	38752	----a-w-	C:\WINDOWS\Sysnative\drivers\terminpt.sys
2015-10-30 07:17:31	D0221C13960E274CC539D72D5A842ED0	26112	----a-w-	C:\WINDOWS\Sysnative\drivers\rdpbus.sys
2015-10-30 07:17:26	8B102A7B6CE326FD4208CC7C2D183343	17944	----a-w-	C:\WINDOWS\Sysnative\drivers\WindowsTrustedRTProxy.sys
2015-10-30 07:17:25	E8A59FA109A22FC07E44BDFCC9727DBD	27488	----a-w-	C:\WINDOWS\Sysnative\drivers\urssynopsys.sys
2015-10-30 07:17:25	B3358F380BA3F29F56BE0F7734C24D5F	46944	----a-w-	C:\WINDOWS\Sysnative\drivers\msgpiowin32.sys
2015-10-30 07:17:25	29395C214D2CD4C81F73166AB988A797	26624	----a-w-	C:\WINDOWS\Sysnative\drivers\npsvctrig.sys
2015-10-30 07:17:25	267C76EE60736EA5A1811A53FA02AABE	33280	----a-w-	C:\WINDOWS\Sysnative\drivers\TsUsbGD.sys
2015-10-30 07:17:25	2410A0C20D21A25E6C01979FA886BE90	28512	----a-w-	C:\WINDOWS\Sysnative\drivers\urschipidea.sys
2015-10-30 07:17:23	FFADF691F7BF727AF5C863454A372723	424800	----a-w-	C:\WINDOWS\Sysnative\drivers\ibbus.sys
2015-10-30 07:17:23	F99BF02BE9219986817BF094981EEB18	82784	----a-w-	C:\WINDOWS\Sysnative\drivers\lsi_sss.sys
2015-10-30 07:17:23	ECDB27420D3A98424666904525A8562A	19808	----a-w-	C:\WINDOWS\Sysnative\drivers\intelide.sys
2015-10-30 07:17:23	EC15FD6A28757793E2DA394CD94ABD52	707424	----a-w-	C:\WINDOWS\Sysnative\drivers\vhdmp.sys
2015-10-30 07:17:23	E1BE37312785A71862516F66B3FD24CE	52576	----a-w-	C:\WINDOWS\Sysnative\drivers\vdrvroot.sys
2015-10-30 07:17:23	DB630FC660443D63EBAB2C830C298EFE	131424	----a-w-	C:\WINDOWS\Sysnative\drivers\ufxsynopsys.sys
2015-10-30 07:17:23	DAB35CCA86F5FBE77D870A40089BC4A1	29696	----a-w-	C:\WINDOWS\Sysnative\drivers\usbohci.sys
2015-10-30 07:17:23	D8A44550ECE102B6443F5D54DCE7DAB3	159072	----a-w-	C:\WINDOWS\Sysnative\drivers\usbccgp.sys
2015-10-30 07:17:23	D48ED0A08BD2FD25A833E6AC99623091	166752	----a-w-	C:\WINDOWS\Sysnative\drivers\vsmraid.sys
2015-10-30 07:17:23	D41920FBFFF2BBCBBC69A5B383AD022E	705376	----a-w-	C:\WINDOWS\Sysnative\drivers\mlx4_bus.sys
2015-10-30 07:17:23	D3A103944A8FCD78FD48B2B19092790C	25088	----a-w-	C:\WINDOWS\Sysnative\drivers\serenum.sys
2015-10-30 07:17:23	D1CC0833CFBC4222A95CAA5D0C8C78FF	59232	----a-w-	C:\WINDOWS\Sysnative\drivers\mouclass.sys
2015-10-30 07:17:23	D0426C4E42AAE2108EBB9E28E5F00448	52064	----a-w-	C:\WINDOWS\Sysnative\drivers\pciidex.sys
2015-10-30 07:17:23	CCDA497C880AD16D87EDFAEFCFB2EDF5	31072	----a-w-	C:\WINDOWS\Sysnative\drivers\stexstor.sys
2015-10-30 07:17:23	CC21DB3EF619B9480FE31A4EFE92CBEB	79200	----a-w-	C:\WINDOWS\Sysnative\drivers\stornvme.sys
2015-10-30 07:17:23	CA6369870F91F3D367D26278E0AD0DDF	67072	----a-w-	C:\WINDOWS\Sysnative\drivers\usbser.sys
2015-10-30 07:17:23	C2E05EC6B80BCF5AE362DA873E1BCE64	32256	----a-w-	C:\WINDOWS\Sysnative\drivers\mouhid.sys
2015-10-30 07:17:23	BF8EA6FC3358C2F69678E3E94F764F84	133984	----a-w-	C:\WINDOWS\Sysnative\drivers\storahci.sys
2015-10-30 07:17:23	BE0E47988D78F731DEC2C0CB03E765CB	99168	----a-w-	C:\WINDOWS\Sysnative\drivers\lsi_sas3i.sys
2015-10-30 07:17:23	BD98B0225BCD49E8A62F4F8EE1D1F613	17760	----a-w-	C:\WINDOWS\Sysnative\drivers\swenum.sys
2015-10-30 07:17:23	B6664965BF346322BBDF286174851476	192864	----a-w-	C:\WINDOWS\Sysnative\drivers\ataport.sys
2015-10-30 07:17:23	B57CE307DA101C739885B7CC0678077F	76128	----a-w-	C:\WINDOWS\Sysnative\drivers\ndfltr.sys
2015-10-30 07:17:23	B4AC08B1D04D0CE085435E5CD0E663C5	55808	----a-w-	C:\WINDOWS\Sysnative\drivers\BasicDisplay.sys
2015-10-30 07:17:23	ABBE803FE0BDAE0E5BE74DDEFBE62F23	44896	----a-w-	C:\WINDOWS\Sysnative\drivers\sisraid2.sys
2015-10-30 07:17:23	961F28D879D345BFA50AF51285C90F2E	108888	----a-w-	C:\WINDOWS\Sysnative\drivers\lsi_sas.sys
2015-10-30 07:17:23	8B50D897657AB4A15FD9E251BBF7D107	166240	----a-w-	C:\WINDOWS\Sysnative\drivers\nvstor.sys
2015-10-30 07:17:23	8B3E458A8851F9A3B2109B1680EE1159	35328	----a-w-	C:\WINDOWS\Sysnative\drivers\usbuhci.sys
2015-10-30 07:17:23	88D58E1DAA6C5062DD3A26273106961F	83968	----a-w-	C:\WINDOWS\Sysnative\drivers\serial.sys
2015-10-30 07:17:23	884EBBDDBF5968003B40185BD96FF0E6	36864	----a-w-	C:\WINDOWS\Sysnative\drivers\kbdhid.sys
2015-10-30 07:17:23	870F1A2C936F92B5D053DF7EC75B352F	63328	----a-w-	C:\WINDOWS\Sysnative\drivers\AGP440.sys
2015-10-30 07:17:23	7D0FC96264C0F8F2C1321E33E8EB646C	96768	----a-w-	C:\WINDOWS\Sysnative\drivers\parport.sys
2015-10-30 07:17:23	770A92D9D3A0BF61C97C3AFCB36847D9	34144	----a-w-	C:\WINDOWS\Sysnative\drivers\storufs.sys
2015-10-30 07:17:23	701D7DB13B0815E7076EF4CB4CE981F8	62304	----a-w-	C:\WINDOWS\Sysnative\drivers\kbdclass.sys
2015-10-30 07:17:23	6DE78C04BF32ECA7AF3064F53687C9A5	66912	----a-w-	C:\WINDOWS\Sysnative\drivers\ULIAGPKX.SYS
2015-10-30 07:17:23	6BFB8D1B3407518BE06B6F81F92FA0F5	104800	----a-w-	C:\WINDOWS\Sysnative\drivers\lsi_sas2i.sys
2015-10-30 07:17:23	6990D4AFDF545669D4E6C232F26DE1FB	305504	----a-w-	C:\WINDOWS\Sysnative\drivers\VSTXRAID.SYS
2015-10-30 07:17:23	68D5354A4A9692EEC24664C60F47D4A2	277344	----a-w-	C:\WINDOWS\Sysnative\drivers\msiscsi.sys
2015-10-30 07:17:23	67D1E0E6E4D5D33AF0AEF0E33B4DA0F4	56832	----a-w-	C:\WINDOWS\Sysnative\drivers\umbus.sys
2015-10-30 07:17:23	604D27CC38CC23493F218D0BB834B3FF	150368	----a-w-	C:\WINDOWS\Sysnative\drivers\nvraid.sys
2015-10-30 07:17:23	6043DF55CFE3C7ACF477645FA64DEA98	81760	----a-w-	C:\WINDOWS\Sysnative\drivers\sisraid4.sys
2015-10-30 07:17:23	5EB167907085B708D8A60D412532B7D3	30048	----a-w-	C:\WINDOWS\Sysnative\drivers\usbd.sys
2015-10-30 07:17:23	59307FEAFC9E72EEEC56B7FD7D294F4C	18784	----a-w-	C:\WINDOWS\Sysnative\drivers\msisadrv.sys
2015-10-30 07:17:23	53FDD9E69189E546DE4740F8C4D8AB2F	114688	----a-w-	C:\WINDOWS\Sysnative\drivers\i8042prt.sys
2015-10-30 07:17:23	531994A6D9399D9B74BE12B5BB58A81E	22880	----a-w-	C:\WINDOWS\Sysnative\drivers\isapnp.sys
2015-10-30 07:17:23	4FA0483896FC16583851EFB733FCB083	15872	----a-w-	C:\WINDOWS\Sysnative\drivers\MTConfig.sys
2015-10-30 07:17:23	4A53441C1C4D2878BEF27E381138BB2D	26976	----a-w-	C:\WINDOWS\Sysnative\drivers\winmad.sys
2015-10-30 07:17:23	492B99D2E3D5D7BFD5F0AE1BE7BD37DD	28512	----a-w-	C:\WINDOWS\Sysnative\drivers\atapi.sys
2015-10-30 07:17:23	41F7F00D76904416EF1F9EFA1A4C37A2	500064	----a-w-	C:\WINDOWS\Sysnative\drivers\usbhub.sys
2015-10-30 07:17:23	40B6FF0EA1A703BF48B60B0A8D40CCA0	154624	----a-w-	C:\WINDOWS\Sysnative\drivers\hidclass.sys
2015-10-30 07:17:23	40A3E8D729F458B2C9A8BD9380FF83D5	59232	----a-w-	C:\WINDOWS\Sysnative\drivers\winverbs.sys
2015-10-30 07:17:23	3E4F20DB902D2E2914F3FF3DB9772200	95584	----a-w-	C:\WINDOWS\Sysnative\drivers\usbehci.sys
2015-10-30 07:17:23	37C2CD8587BF7F785381EB7B26916B52	127840	----a-w-	C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS
2015-10-30 07:17:23	35F7C7AD709D909D618D9EDF987FC3ED	58720	----a-w-	C:\WINDOWS\Sysnative\drivers\percsas3i.sys
2015-10-30 07:17:23	325727F01F03C504CF788618A13DC266	378208	----a-w-	C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS
2015-10-30 07:17:23	31F990B2B6B91E9D7A667405CE12FCB1	126304	----a-w-	C:\WINDOWS\Sysnative\drivers\NV_AGP.SYS
2015-10-30 07:17:23	2ED29B635F35E31A1C0D3DDB7DD2AD03	59744	----a-w-	C:\WINDOWS\Sysnative\drivers\megasas.sys
2015-10-30 07:17:23	2B4D98DF0CA57FB9536DBC80D2449D1F	16224	----a-w-	C:\WINDOWS\Sysnative\drivers\pciide.sys
2015-10-30 07:17:23	2B1DABA97DDF5365FC66EE7DEDD86A13	94048	----a-w-	C:\WINDOWS\Sysnative\drivers\UfxChipidea.sys
2015-10-30 07:17:23	25B5BB369DEE2BAE4BF459C978FF9035	41472	----a-w-	C:\WINDOWS\Sysnative\drivers\BasicRender.sys
2015-10-30 07:17:23	22E3CB85870879CBAE13C5095A8B12E3	575840	----a-w-	C:\WINDOWS\Sysnative\drivers\megasr.sys
2015-10-30 07:17:23	218705233D02776AE4D19CC37D985C1B	63840	----a-w-	C:\WINDOWS\Sysnative\drivers\mvumis.sys
2015-10-30 07:17:23	1FC3C563E2B1EAA6AE03904B2BBBF655	454496	----a-w-	C:\WINDOWS\Sysnative\drivers\usbport.sys
2015-10-30 07:17:23	1D4E995955BDAE781C46CB97AE1CFB58	330080	----a-w-	C:\WINDOWS\Sysnative\drivers\pci.sys
2015-10-30 07:17:23	1C95F7CE37D9EFB90EBE987A9712356C	46592	----a-w-	C:\WINDOWS\Sysnative\drivers\UcmUcsi.sys
2015-10-30 07:17:23	1A6CB30F0EFC1632E6F1B852CA892583	532832	----a-w-	C:\WINDOWS\Sysnative\drivers\spaceport.sys
2015-10-30 07:17:23	1686DBC81748B096232B15F16C302985	77664	----a-w-	C:\WINDOWS\Sysnative\drivers\uaspstor.sys
2015-10-30 07:17:23	1398A85E59698067CBBE1D66A9C13ADF	58208	----a-w-	C:\WINDOWS\Sysnative\drivers\percsas2i.sys
2015-10-30 07:17:23	12A0B486EA13DF46C27B90CC2CE92FE5	534368	----a-w-	C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS
2015-10-30 07:17:23	128DEDDD61915DBA4D451D91D21F0513	38400	----a-w-	C:\WINDOWS\Sysnative\drivers\hidusb.sys
2015-10-30 07:17:23	11680607944A719EF20E0E740785712A	13824	----a-w-	C:\WINDOWS\Sysnative\drivers\umpass.sys
2015-10-30 07:17:23	0F5B43074AE731D2C6F061241C9D84A6	27648	----a-w-	C:\WINDOWS\Sysnative\drivers\sermouse.sys
2015-10-30 07:17:23	08A63F9EFA5DF50FEE1632C136D857CA	40448	----a-w-	C:\WINDOWS\Sysnative\drivers\hidparse.sys
2015-10-30 07:17:22	FF442DCDCE1F6E9FAA9C8AD0CD1D199B	64352	----a-w-	C:\WINDOWS\Sysnative\drivers\HpSAMD.sys
2015-10-30 07:17:22	F7D0CD345D2DA42E7042ABCD73662403	1135456	----a-w-	C:\WINDOWS\Sysnative\drivers\adp80xx.sys
2015-10-30 07:17:22	F510F7B7BF61DEAAC04E65C3B65E8D59	50016	----a-w-	C:\WINDOWS\Sysnative\drivers\hidinterrupt.sys
2015-10-30 07:17:22	F3AC9652D88BF87BA6596CBEA28CE10F	20992	----a-w-	C:\WINDOWS\Sysnative\drivers\genericusbfn.sys
2015-10-30 07:17:22	F20B30F35A5C7888441B4DCA001ECF8E	259424	----a-w-	C:\WINDOWS\Sysnative\drivers\amdsbs.sys
2015-10-30 07:17:22	E99261DD76D1C9E05AF575939CAE5AC5	26112	----a-w-	C:\WINDOWS\Sysnative\drivers\flpydisk.sys
2015-10-30 07:17:22	E887FFDD6734C496407E9219225CB6FF	43872	----a-w-	C:\WINDOWS\Sysnative\drivers\mssmbios.sys
2015-10-30 07:17:22	E3FE8F610B1CC12BC3B2E6BC43DC97E2	131936	----a-w-	C:\WINDOWS\Sysnative\drivers\arcsas.sys
2015-10-30 07:17:22	E1F91A727A04C9F8199D04FF3BBBF63C	414560	----a-w-	C:\WINDOWS\Sysnative\drivers\volsnap.sys
2015-10-30 07:17:22	DF1C3D7E6C7929AD83BE22852B5B08CB	235520	----a-w-	C:\WINDOWS\Sysnative\drivers\1394ohci.sys
2015-10-30 07:17:22	D9FE59276BD56A9643C32D5FACE2F251	18432	----a-w-	C:\WINDOWS\Sysnative\drivers\sfloppy.sys
2015-10-30 07:17:22	D78528CA20ADED850E730AB369AAD667	36704	----a-w-	C:\WINDOWS\Sysnative\drivers\battc.sys
2015-10-30 07:17:22	C498887123327CDFD73A05E7A2780920	12288	----a-w-	C:\WINDOWS\Sysnative\drivers\acpipagr.sys
2015-10-30 07:17:22	BF89BDBA5D3A0B4256D3F6FC8D31880D	37376	----a-w-	C:\WINDOWS\Sysnative\drivers\buttonconverter.sys
2015-10-30 07:17:22	BA760F8E66428BA9FF1E8BFBC6248136	28512	----a-w-	C:\WINDOWS\Sysnative\drivers\uefi.sys
2015-10-30 07:17:22	B9981A4CB9F728B3312A3885BFAA7204	66912	----a-w-	C:\WINDOWS\Sysnative\drivers\GAGP30KX.sys
2015-10-30 07:17:22	B9265F47E7A354BAAA0AF5CBA3F8F7CE	81248	----a-w-	C:\WINDOWS\Sysnative\drivers\volmgr.sys
2015-10-30 07:17:22	B70F0F2F54B4A4DB6E9C830454752F5A	121856	----a-w-	C:\WINDOWS\Sysnative\drivers\amdk8.sys
2015-10-30 07:17:22	B61B60F36E1C8022FA8166ABF0F66B07	133632	----a-w-	C:\WINDOWS\Sysnative\drivers\intelppm.sys
2015-10-30 07:17:22	AFE838D7576C581D6483529621AB10CC	26976	----a-w-	C:\WINDOWS\Sysnative\drivers\amdxata.sys
2015-10-30 07:17:22	9D299AE86D671488926126A84DF77BFD	32256	----a-w-	C:\WINDOWS\Sysnative\drivers\fdc.sys
2015-10-30 07:17:22	9652E1E35A92D8C75710C17A63B15796	412000	----a-w-	C:\WINDOWS\Sysnative\drivers\iaStorV.sys
2015-10-30 07:17:22	95832B049E2833B9F5189823CDF946C7	29696	----a-w-	C:\WINDOWS\Sysnative\drivers\CmBatt.sys
2015-10-30 07:17:22	8F010BF65238F3F822D22BA12831796E	18432	----a-w-	C:\WINDOWS\Sysnative\drivers\wmiacpi.sys
2015-10-30 07:17:22	82D97776BF982AA143BDC7DFB5054EA8	173568	----a-w-	C:\WINDOWS\Sysnative\drivers\cdrom.sys
2015-10-30 07:17:22	80BC02A73A3949A7AEF34791206C7D7F	238592	----a-w-	C:\WINDOWS\Sysnative\drivers\xboxgip.sys
2015-10-30 07:17:22	7A2705148A4BB3CA255F81624338B461	12288	----a-w-	C:\WINDOWS\Sysnative\drivers\errdev.sys
2015-10-30 07:17:22	783D2F105F48B62D05B67E098B9F9A69	44032	----a-w-	C:\WINDOWS\Sysnative\drivers\devauthe.sys
2015-10-30 07:17:22	72F5000354C73B0603F4B7D32371DA61	117248	----a-w-	C:\WINDOWS\Sysnative\drivers\capimg.sys
2015-10-30 07:17:22	6B8CB114B8E64C0636EB49F7B914D1FC	28160	----a-w-	C:\WINDOWS\Sysnative\drivers\hidbatt.sys
2015-10-30 07:17:22	6B6C39AB2CD7BEB6CFF624522E5449DE	563544	----a-w-	C:\WINDOWS\Sysnative\drivers\acpi.sys
2015-10-30 07:17:22	6B3A0C7902811E6372643447E41F7048	23040	----a-w-	C:\WINDOWS\Sysnative\drivers\kdnic.sys
2015-10-30 07:17:22	6B0029A0253098CCE28EACCFDB9E7208	673120	----a-w-	C:\WINDOWS\Sysnative\drivers\iaStorAV.sys
2015-10-30 07:17:22	6447BA6FA709514B6C803D159B4C7D1E	531296	----a-w-	C:\WINDOWS\Sysnative\drivers\bxvbda.sys
2015-10-30 07:17:22	5B30BCFE6E02E45D3EE268FF001BC5E0	83296	----a-w-	C:\WINDOWS\Sysnative\drivers\amdsata.sys
2015-10-30 07:17:22	530F797129776AA7E81994783A97E2AD	110432	----a-w-	C:\WINDOWS\Sysnative\drivers\sbp2port.sys
2015-10-30 07:17:22	4F527ECB5EAB47D8EAF34A469666C469	81408	----a-w-	C:\WINDOWS\Sysnative\drivers\IPMIDrv.sys
2015-10-30 07:17:22	491275B864B704B54EC08168344E0F38	3436896	----a-w-	C:\WINDOWS\Sysnative\drivers\evbda.sys
2015-10-30 07:17:22	4904B152E4942BF700F2D73228B4D477	103264	----a-w-	C:\WINDOWS\Sysnative\drivers\disk.sys
2015-10-30 07:17:22	42C546414F80BD6C0137FC3A106F8A69	66400	----a-w-	C:\WINDOWS\Sysnative\drivers\UAGP35.sys
2015-10-30 07:17:22	3F5523DCEFE42B385659C5CB46A6B810	9728	----a-w-	C:\WINDOWS\Sysnative\drivers\bcmfn.sys
2015-10-30 07:17:22	35E890482C9728DD5C552B85DA8A5AB2	119296	----a-w-	C:\WINDOWS\Sysnative\drivers\amdppm.sys
2015-10-30 07:17:22	2C5B3035B86770ADD2FE9BFBAF5B35A4	107360	----a-w-	C:\WINDOWS\Sysnative\drivers\3ware.sys
2015-10-30 07:17:22	21AECFF3EB5748CBE12538A2500EFDE5	118272	----a-w-	C:\WINDOWS\Sysnative\drivers\processr.sys
2015-10-30 07:17:22	1F1EF8E701859581251B52035C1C1CEF	26112	----a-w-	C:\WINDOWS\Sysnative\drivers\xinputhid.sys
2015-10-30 07:17:22	17039DBEB3B7B9ADCDB4B4533AA9771F	12800	----a-w-	C:\WINDOWS\Sysnative\drivers\acpitime.sys
2015-10-30 07:17:22	169B0A246067457FEF8A18EED7EED9D5	209760	----a-w-	C:\WINDOWS\Sysnative\drivers\tpm.sys
2015-10-30 07:17:22	0B750A6A6D847E73CA48ADD7A0F5A393	9728	----a-w-	C:\WINDOWS\Sysnative\drivers\bcmfn2.sys
2015-10-30 07:17:22	00C27B64C758C111E5D78A70DE6CA2B6	30208	----a-w-	C:\WINDOWS\Sysnative\drivers\wacompen.sys
2015-10-30 07:17:21	21162F65C7756AAECAEBED9E67D0A5FE	27648	----a-w-	C:\WINDOWS\Sysnative\drivers\usbprint.sys
2015-10-30 07:17:21	09C3DB1B137B269A822F941D867A6BB6	128512	----a-w-	C:\WINDOWS\Sysnative\drivers\bthpan.sys
2015-10-30 07:17:19	A3AB2DFB27ADD3AD5C1500734A4A57DA	97280	----a-w-	C:\WINDOWS\Sysnative\drivers\drmk.sys
2015-10-30 07:17:19	9D78A9327B1B00F43FDF22AD1441A806	333824	----a-w-	C:\WINDOWS\Sysnative\drivers\portcls.sys
2015-10-30 07:17:19	6A7F720BB322F8471FB40F42DD201290	95072	----a-w-	C:\WINDOWS\Sysnative\drivers\sdstor.sys
2015-10-30 07:17:19	66B3D22DAB5312FF238ABF5C6D9F8FAB	102400	----a-w-	C:\WINDOWS\Sysnative\drivers\usbcir.sys
2015-10-30 07:17:19	60BFD9EE962C87747A0EB648634281ED	175104	----a-w-	C:\WINDOWS\Sysnative\drivers\rfcomm.sys
2015-10-30 07:17:19	4B13B61CBB9CC3CB373C60B930D648F5	221184	----a-w-	C:\WINDOWS\Sysnative\drivers\usbvideo.sys
2015-10-30 07:17:19	260907CE034FE327AC99BDA4153AB22F	89088	----a-w-	C:\WINDOWS\Sysnative\drivers\winusb.sys
2015-10-30 07:17:19	25FA06D3B49D6ADF8E874FFCDCD76B50	16168	----a-w-	C:\WINDOWS\Sysnative\drivers\drmkaud.sys
2015-10-30 07:17:18	F7B1B1101271E31F43CC76E890704F51	74080	----a-w-	C:\WINDOWS\Sysnative\drivers\vpci.sys
2015-10-30 07:17:18	F4D5793BF2E58AF15C6CF2FEEF9E73EB	118112	----a-w-	C:\WINDOWS\Sysnative\drivers\pcmcia.sys
2015-10-30 07:17:18	F001B81D47CEBF96E60CE971FFCC45C4	84992	----a-w-	C:\WINDOWS\Sysnative\drivers\BTHUSB.SYS
2015-10-30 07:17:18	EB82A11613326691508D9ED9A4FE29E7	113152	----a-w-	C:\WINDOWS\Sysnative\drivers\iaLPSSi_I2C.sys
2015-10-30 07:17:18	E886CB75DA2B6EB35469EF10135624C7	99672	----a-w-	C:\WINDOWS\Sysnative\drivers\vmbus.sys
2015-10-30 07:17:18	E72358D5EB07287E5514343BAA820F4C	185184	----a-w-	C:\WINDOWS\Sysnative\drivers\dumpsd.sys
2015-10-30 07:17:18	E1137E39C3BB3EF9AF2243745D901D60	277856	----a-w-	C:\WINDOWS\Sysnative\drivers\sdbus.sys
2015-10-30 07:17:18	D668FAB4B0397B426EE3D41683B9A1C0	16896	----a-w-	C:\WINDOWS\Sysnative\drivers\hyperkbd.sys
2015-10-30 07:17:18	D1AD197CCDAAC0CB4819DA1D6EB17BAE	107520	----a-w-	C:\WINDOWS\Sysnative\drivers\hidbth.sys
2015-10-30 07:17:18	CAEC7BC11AF69A181AF7932E636E09E4	43008	----a-w-	C:\WINDOWS\Sysnative\drivers\BthAvrcpTg.sys
2015-10-30 07:17:18	CAE4B27B469C583131EA5AAE622F5D76	64000	----a-w-	C:\WINDOWS\Sysnative\drivers\Synth3dVsc.sys
2015-10-30 07:17:18	C99E80F3C1D4918C8661CAB5A0512EC9	22016	----a-w-	C:\WINDOWS\Sysnative\drivers\BtaMPM.sys
2015-10-30 07:17:18	C8DBE6EFFCF014CAA010B9BDDAC833EC	14336	----a-w-	C:\WINDOWS\Sysnative\drivers\acpipmi.sys
2015-10-30 07:17:18	C4D7018C3F40BA9448E470EE10EF0CA4	245248	----a-w-	C:\WINDOWS\Sysnative\drivers\BthLEEnum.sys
2015-10-30 07:17:18	A76F20CCCA31895A1DA78A875E50F946	65536	----a-w-	C:\WINDOWS\Sysnative\drivers\bthmodem.sys
2015-10-30 07:17:18	9A2A2F3C69B9A30B6E78536F6D258BAD	81408	----a-w-	C:\WINDOWS\Sysnative\drivers\iai2c.sys
2015-10-30 07:17:18	90F3ED42D423C942BA5EA54E2FFE7AC7	46592	----a-w-	C:\WINDOWS\Sysnative\drivers\hidir.sys
2015-10-30 07:17:18	8FF1978643EFD219C5BA49690191D701	46432	----a-w-	C:\WINDOWS\Sysnative\drivers\intelpep.sys
2015-10-30 07:17:18	84BC034B6BB763733C1949B7B9BAF976	79872	----a-w-	C:\WINDOWS\Sysnative\drivers\hdaudbus.sys
2015-10-30 07:17:18	7F2165B51C19A5F59BCA94E0A1B1E0D3	112640	----a-w-	C:\WINDOWS\Sysnative\drivers\bthenum.sys
2015-10-30 07:17:18	78FEC1BDB168370F131BFBFEA0A04E9D	38400	----a-w-	C:\WINDOWS\Sysnative\drivers\monitor.sys
2015-10-30 07:17:18	77555B11B264991DDC26872FFCF1AB97	13312	----a-w-	C:\WINDOWS\Sysnative\drivers\vmgencounter.sys
2015-10-30 07:17:18	736A2418E3E7F3DB3CF6EB0A55D1D581	36192	----a-w-	C:\WINDOWS\Sysnative\drivers\storvsc.sys
2015-10-30 07:17:18	6D75ECFB3891B61B81225F36A0C408B8	953344	----a-w-	C:\WINDOWS\Sysnative\drivers\bthport.sys
2015-10-30 07:17:18	64909DECCFCC6FB5D9A5BAFDCCB31FEE	51200	----a-w-	C:\WINDOWS\Sysnative\drivers\hidi2c.sys
2015-10-30 07:17:18	5F2B4B32E986C058525D3BA2A475A16C	65536	----a-w-	C:\WINDOWS\Sysnative\drivers\bthhfenum.sys
2015-10-30 07:17:18	5B1EAAE3001A7A320C106FC3859F4111	117088	----a-w-	C:\WINDOWS\Sysnative\drivers\EhStorTcgDrv.sys
2015-10-30 07:17:18	59A20F5AD9F4AE54098154359519408E	165888	----a-w-	C:\WINDOWS\Sysnative\drivers\iaLPSS2i_I2C.sys
2015-10-30 07:17:18	5406289E8AE2CB52FC408154E0A64BA7	30720	----a-w-	C:\WINDOWS\Sysnative\drivers\BthhfHid.sys
2015-10-30 07:17:18	46D2EC27820EC0F798F85821E53C2942	25088	----a-w-	C:\WINDOWS\Sysnative\drivers\VMBusHID.sys
2015-10-30 07:17:18	32FF460DA8C1F370F5C08B7654899B73	46944	----a-w-	C:\WINDOWS\Sysnative\drivers\vmstorfl.sys
2015-10-30 07:17:18	16A10CCEDCF5AC4CAAE43DC9FC40392F	38128	----a-w-	C:\WINDOWS\Sysnative\drivers\iaLPSSi_GPIO.sys
2015-10-30 07:17:18	0505C1D991D0F9D47F3353BB98597C7E	48640	----a-w-	C:\WINDOWS\Sysnative\drivers\circlass.sys
2015-10-30 07:17:18	044890BB0D6CF1E23C1087234D320509	8704	----a-w-	C:\WINDOWS\Sysnative\drivers\vms3cap.sys
2015-10-30 07:17:18	0197AE4B9790A4E73751CACFAA480126	33792	----a-w-	C:\WINDOWS\Sysnative\drivers\dmvsc.sys
====== C:\WINDOWS\Tasks ======
2015-10-31 08:52:30	--------	d-----w-	C:\WINDOWS\Sysnative\Tasks\Apple
2015-10-30 07:24:25	--------	d-----w-	C:\WINDOWS\Sysnative\Tasks\Microsoft
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2015-11-14 13:58:45	--------	d-----w-	C:\Program Files\Common Files\Atheros
2015-11-14 13:58:34	--------	d-----w-	C:\Program Files\IDT
2015-11-14 13:57:59	--------	d-----w-	C:\Program Files\Synaptics
2015-11-14 13:57:44	--------	d-----w-	C:\Program Files\Intel
2015-11-14 13:25:41	--------	d-----w-	C:\Program Files\Reference Assemblies
2015-11-14 13:25:41	--------	d-----w-	C:\Program Files\MSBuild
2015-11-14 11:51:57	--------	d-----w-	C:\Program Files\trend micro
2015-10-31 08:59:31	--------	d-----w-	C:\Program Files\iPod
2015-10-31 08:59:30	--------	d-----w-	C:\Program Files\iTunes
2015-10-31 08:53:47	--------	d-----w-	C:\Program Files\Bonjour
2015-10-30 18:08:38	--------	d-----w-	C:\Program Files\Windows Journal
2015-10-30 07:24:28	174	--sha-w-	C:\Program Files\desktop.ini
2015-10-30 07:24:24	--------	d-sh--w-	C:\Program Files\Windows Sidebar
2015-10-30 07:24:24	--------	d-s---w-	C:\Program Files\WindowsPowerShell
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows Portable Devices
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows Photo Viewer
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows NT
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows Multimedia Platform
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows Media Player
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Windows Mail
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Internet Explorer
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Common Files\System
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Common Files\Services
2015-10-30 07:24:24	--------	d-----w-	C:\Program Files\Common Files\microsoft shared
2015-10-30 06:28:30	--------	d-----w-	C:\Program Files\Common Files
======= C:\PROGRA~2 =====
2015-11-16 18:15:13	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2015-11-14 14:22:48	--------	d--h--w-	C:\PROGRA~2\Uninstall Information
2015-11-14 13:57:34	--------	d-----w-	C:\PROGRA~2\COMMON~1\Intel
2015-11-14 13:25:41	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2015-11-14 13:25:41	--------	d-----w-	C:\PROGRA~2\MSBuild
2015-10-31 08:59:31	--------	d-----w-	C:\PROGRA~2\iTunes
2015-10-31 08:53:47	--------	d-----w-	C:\PROGRA~2\Bonjour
2015-10-31 08:52:29	--------	d-----w-	C:\PROGRA~2\Apple Software Update
2015-10-30 07:24:28	174	--sha-w-	C:\PROGRA~2\desktop.ini
2015-10-30 07:24:24	--------	d-sh--w-	C:\PROGRA~2\Windows Sidebar
2015-10-30 07:24:24	--------	d-s---w-	C:\PROGRA~2\WindowsPowerShell
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows Portable Devices
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows Photo Viewer
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows NT
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows Multimedia Platform
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows Media Player
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Windows Mail
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Microsoft.NET
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\Internet Explorer
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\COMMON~1\System
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\COMMON~1\Services
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~2\COMMON~1\Microsoft Shared
2015-10-30 06:28:30	--------	d-----w-	C:\PROGRA~2\Common Files
======= C: =====
2015-10-30 08:13:44	93B885ADFE0DA089CDF634904FD59F71	1	--sha-w-	C:\BOOTNXT
====== C:\Users\gebruiker\AppData\Roaming ======
2015-11-20 16:28:12	--------	d-sh--w-	C:\Users\gebruiker\AppData\Local\EmieUserList
2015-11-20 16:28:12	--------	d-sh--w-	C:\Users\gebruiker\AppData\Local\EmieSiteList
2015-11-16 19:37:18	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing
2015-11-16 19:24:48	6CA4A44E1B787D6E8CB184BA3A3A2B69	194096	----a-w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2015-11-16 07:42:39	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Trusteer
2015-11-14 15:07:23	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Publishers
2015-11-14 15:05:36	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Comms
2015-11-14 15:05:06	--------	d-----w-	C:\Users\gebruiker\AppData\Local\TileDataLayer
2015-11-14 14:26:06	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages
2015-11-14 14:22:07	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2015-11-14 14:14:59	--------	d-----w-	C:\Users\Default\AppData\Local\Trusteer
2015-11-14 14:14:59	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft Help
2015-11-14 14:14:59	--------	d-----w-	C:\Users\Default User\AppData\Local\Trusteer
2015-11-14 14:14:59	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft Help
2015-11-14 14:02:53	--------	d-s---r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-11-14 14:02:53	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-11-14 14:02:53	--------	d-----w-	C:\Users\gebruiker\AppData\Roaming
2015-11-14 14:02:53	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Temp
2015-11-14 14:02:53	--------	d-----w-	C:\Users\gebruiker\AppData\Local\Microsoft
2015-11-14 14:02:53	--------	d-----w-	C:\Users\gebruiker\AppData\Local
2015-11-14 14:02:53	--------	d-----r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-11-14 14:02:53	--------	d-----r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-11-14 14:02:53	--------	d-----r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-11-14 14:02:53	--------	d-----r-	C:\Users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-11-14 13:51:52	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache
2015-11-14 13:51:22	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming
2015-11-14 13:51:22	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp
2015-11-14 13:51:16	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming
2015-11-14 13:51:16	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp
2015-11-14 13:51:16	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Microsoft
2015-11-14 13:51:16	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\AppData\Local
2015-11-14 13:51:14	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft
2015-10-30 18:13:02	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Microsoft
2015-10-30 18:13:02	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\AppData\Local
2015-10-30 07:24:25	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming
2015-10-30 07:24:25	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow
2015-10-30 07:24:25	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local
2015-10-30 07:24:24	--------	d-s---r-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-30 07:24:24	--------	d-s---r-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-30 07:24:24	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming
2015-10-30 07:24:24	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\LocalLow
2015-10-30 07:24:24	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData\Local
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Roaming
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Local\Temp
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Local\Microsoft
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\AppData\Local
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Roaming
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Local\Temp
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Local\Microsoft
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default User\AppData\Local
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
====== C:\Users\gebruiker ======
2015-11-16 18:12:16	2A50FBC2CC9C29A85A900CB8E806CCBD	584288	----a-w-	C:\Users\gebruiker\Downloads\JavaSetup8u65.exe
2015-11-14 17:06:30	--------	d-----w-	C:\ProgramData\USOShared
2015-11-14 15:13:07	--------	d-----r-	C:\Users\gebruiker\OneDrive
2015-11-14 15:10:50	--------	d-----w-	C:\ProgramData\Microsoft OneDrive
2015-11-14 15:05:33	--------	d-sh--w-	C:\Users\gebruiker\IntelGraphicsProfiles
2015-11-14 15:04:57	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\gebruiker\ntuser.ini
2015-11-14 14:02:53	--------	d--h--w-	C:\Users\gebruiker\AppData
2015-11-14 13:51:59	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\winhttp
2015-11-14 13:51:22	--------	d-----w-	C:\WINDOWS\serviceprofiles\Localservice\Saved Games
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Videos
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Pictures
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Music
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Links
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Favorites
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Downloads
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Documents
2015-11-14 13:51:22	--------	d-----r-	C:\WINDOWS\serviceprofiles\Localservice\Desktop
2015-11-14 13:51:17	--------	d-----w-	C:\WINDOWS\serviceprofiles\networkservice\Saved Games
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Videos
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Pictures
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Music
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Links
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Favorites
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Downloads
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Documents
2015-11-14 13:51:17	--------	d-----r-	C:\WINDOWS\serviceprofiles\networkservice\Desktop
2015-11-14 13:51:16	--------	d--h--w-	C:\WINDOWS\serviceprofiles\networkservice\AppData
2015-11-14 11:51:30	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\gebruiker\Downloads\RSITx64.exe
2015-11-09 19:19:52	B7B4656E0DB41DB4C677A324CC0F5DE5	6762072	----a-w-	C:\Users\gebruiker\Downloads\ccsetup511.exe
2015-11-04 08:25:01	--------	d-----w-	C:\ProgramData\HP
2015-10-31 09:02:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-10-31 09:00:40	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-30 18:13:02	--------	d--h--w-	C:\WINDOWS\serviceprofiles\Localservice\AppData
2015-10-30 18:08:38	--------	d--h--r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-10-30 07:24:29	7220FAD57A4B3D9D9755C51198CC0386	174	--sha-w-	C:\Users\Public\desktop.ini
2015-10-30 07:24:25	--------	d-----w-	C:\WINDOWS\sysWoW64\config\systemprofile\AppData
2015-10-30 07:24:24	--------	d-s---w-	C:\ProgramData\Microsoft
2015-10-30 07:24:24	--------	d--h--w-	C:\Users\Default\AppData
2015-10-30 07:24:24	--------	d--h--r-	C:\Users\Public\Libraries
2015-10-30 07:24:24	--------	d-----w-	C:\WINDOWS\SysNative\config\systemprofile\AppData
2015-10-30 07:24:24	--------	d-----w-	C:\Users\Default\Saved Games
2015-10-30 07:24:24	--------	d-----w-	C:\ProgramData\USOPrivate
2015-10-30 07:24:24	--------	d-----w-	C:\ProgramData\regid.1991-06.com.microsoft
2015-10-30 07:24:24	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Videos
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Pictures
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Music
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Links
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Favorites
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Downloads
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Documents
2015-10-30 07:24:24	--------	d-----r-	C:\Users\Default\Desktop
2015-10-30 07:24:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-30 07:24:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2015-10-30 07:24:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2015-10-30 07:24:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-30 07:24:24	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-22 17:26:39	--------	d-----w-	C:\ProgramData\BlueStacks

====== C: exe-files ==
2015-11-19 08:00:28	EE28772E812D785C48DD97C49DE0D8F2	7320432	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2015-11-19 07:59:58	CB5E7C32FDF2D4B5E4D7FEE10E75F641	7476576	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-11-19 07:59:53	B9A74283BD46350F2A32962C1B16225A	369912	----a-w-	C:\Windows\System32\audiodg.exe
2015-11-19 07:59:52	DD6B9CA8F8233DB967CB4D8DBE2E3657	313712	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2015-11-19 07:59:52	C46FC25D2742C6426F6581A4C59331D9	35656	----a-w-	C:\Windows\System32\mfpmp.exe
2015-11-19 07:59:52	BA45A9F29AB13A0E66BAABF9D7C30B70	523616	----a-w-	C:\Windows\System32\wimserv.exe
2015-11-19 07:59:50	FE808DE33D79F2ACB8757EE544615626	414720	----a-w-	C:\Windows\System32\bcastdvr.exe
2015-11-19 07:59:50	C63D546FAF13702676A542EB11F0DD91	167936	----a-w-	C:\Windows\System32\oobe\msoobe.exe
2015-11-19 07:59:50	8F26CB57B225F046E49A4D8003DAE920	83704	----a-w-	C:\Windows\ImmersiveControlPanel\SystemSettings.exe
2015-11-19 07:59:46	A1F43B152956EB72F687373A76DE40EE	161792	----a-w-	C:\Windows\System32\DeviceCensus.exe
2015-11-19 07:59:46	722ACEC7B2A71664C94130D1FA924F73	198656	----a-w-	C:\Windows\System32\InstallAgent.exe
2015-11-19 07:59:46	01605124DA346314F07656A31CF805EE	56320	----a-w-	C:\Windows\System32\provtool.exe
2015-11-19 07:59:45	C79AC2800B53AE4848A4B1390623D0E7	12288	----a-w-	C:\Windows\System32\SystemResetPlatform\SystemResetPlatform.exe
2015-11-19 07:59:45	6CE6E37999F7595697A764C52417F4E1	56320	----a-w-	C:\Windows\System32\SystemResetPlatform\SystemResetOSUpdates.exe
2015-11-19 07:59:45	25C9F417FA6FE9073392BD34630A89B4	17408	----a-w-	C:\Windows\System32\IcsEntitlementHost.exe
2015-11-19 07:59:45	233BA5B1A277D0A42E432E9A9F43EF7A	37376	----a-w-	C:\Windows\System32\LaunchWinApp.exe
2015-11-16 18:14:41	FAE99E011922F5BE4CB2160E316D057B	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmiregistry.exe
2015-11-16 18:14:41	FA5E33B54BD044F489BA4281B3D6ED95	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\servertool.exe
2015-11-16 18:14:41	CC0CF93D2BF12A423DA4134FFB9C324D	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssvagent.exe
2015-11-16 18:14:41	BBC68E5519B11A74B8208AA7B85F3B80	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\rmid.exe
2015-11-16 18:14:41	B61623580A304714A4E2FE6A5E73327F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\pack200.exe
2015-11-16 18:14:41	940EE00C074A46D638A756723964D65D	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\orbd.exe
2015-11-16 18:14:41	857117663B1F28ABBA4E1C6110A09282	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\policytool.exe
2015-11-16 18:14:41	6211595DD15306DFD8E07B95E6F2984D	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\tnameserv.exe
2015-11-16 18:14:41	56DCBCE6CF84B5F12185AF6DB7B85EB2	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\keytool.exe
2015-11-16 18:14:41	4D2DDC988E4F67E7E07E78954FBEED2D	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\unpack200.exe
2015-11-16 18:14:41	2AA43B8A44341F90DCCFAE38107BA484	76896	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2launcher.exe
2015-11-16 18:14:41	1A859E08A65ECBA7B687ACAED5EA5080	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\ktab.exe
2015-11-16 18:14:41	1933BBD87F9759CC2D7DC2909C4CA0CD	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\klist.exe
2015-11-16 18:14:41	0AD21325149141252F05B32F7809F441	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\kinit.exe
2015-11-16 18:14:40	B6DBE62611DA178B2CA578BC2B7BBA30	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javacpl.exe
2015-11-16 18:14:40	AA79E5830F4B6C29A5A976891ED0E86B	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jjs.exe
2015-11-16 18:14:40	A53E431775DF91EA016AF5817DF26B41	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaw.exe
2015-11-16 18:14:40	8ED50DA4BAE0046E05BEC0110CF20B17	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\java-rmi.exe
2015-11-16 18:14:40	66B01DCB41FBE8C3CAB13D3F8ED4FA58	30816	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\jabswitch.exe
2015-11-16 18:14:40	50CC4A65F784A51813A169EA33CF319A	278624	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\javaws.exe
2015-11-16 18:14:40	4547FB479010206D8BEA10B2694C5C6D	191072	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\bin\java.exe
2015-11-16 18:12:16	2A50FBC2CC9C29A85A900CB8E806CCBD	584288	----a-w-	C:\Users\gebruiker\Downloads\JavaSetup8u65.exe
2015-11-14 15:13:32	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
2015-11-14 15:13:32	8930D704DC34BB6A8122D1330525FD5E	7904968	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\OneDriveSetup.exe
2015-11-14 15:13:23	984BDA28B013EC426501CA40D365FDF0	160960	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncConfig.exe
2015-11-14 15:13:22	96F76F943DF1974E4F08B5B3DE0C028F	175296	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe
2015-11-14 15:13:06	9F2ECA252720B25E8FEC1CAB2984B98D	548552	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe
2015-11-14 13:43:45	FCB7D0215CA010400777A2144432FBDC	630632	----a-w-	C:\Windows\System32\fontdrvhost.exe
2015-11-14 13:24:48	E91942A0D00C6AA014B2EA33EE0ED0A3	35480	----a-w-	C:\Windows\System32\TsWpfWrp.exe
2015-11-14 11:54:08	B3F1932457535101EA7E564F90B78C50	544	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-295600321-3362585809-1147355583-1001\$IGUPAYL.exe
2015-11-14 11:53:33	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\$RECYCLE.BIN\S-1-5-21-295600321-3362585809-1147355583-1001\$RGUPAYL.exe
2015-11-14 11:51:58	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\gebruiker.exe
2015-11-14 11:51:30	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\gebruiker\Downloads\RSITx64.exe
=== C: other files ==
2015-11-19 07:59:51	EF536C54AB9281FDC4E83B07279FCFC4	35680	----a-w-	C:\Windows\System32\drivers\wimmount.sys
2015-11-16 18:14:42	577B724A8DB4380F8B8F0098D1C9A722	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_65\lib\deploy\ffjcext.zip
2015-11-16 18:07:37	CB136B267569A62EF63D798BC90ABD5A	144	----a-w-	C:\Windows\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-14 15:13:22	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\CollectOneDriveLogs.bat
2015-11-14 15:05:24	9F45771914360A925252A1B7226EC7EC	451	----a-w-	C:\Windows\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-11-14 13:58:30	51DE8F82A399ABD8305EA56CCFB923C0	51392	----a-w-	C:\Program Files\Synaptics\SynTP\Smb_driver_Intel.sys
2015-11-14 13:58:30	09AE3DADAC251EDC2CBAD882B7522048	50880	----a-w-	C:\Program Files\Synaptics\SynTP\Smb_driver_AMDASF.sys
2015-11-14 13:43:46	91D3F2A6253EF83EFBD7903028F58C4D	118624	----a-w-	C:\Windows\System32\drivers\tdx.sys
2015-11-14 13:43:45	D84C456794F208043E52D1096F37E2B3	1393664	----a-w-	C:\Windows\System32\win32kbase.sys
2015-11-14 13:43:45	70148EFA9A562E7185B75BBE7D376BF7	578912	----a-w-	C:\Windows\System32\drivers\afd.sys
2015-11-14 13:43:45	43F5135D228CFC6B5F7963E0490F7B6B	115200	----a-w-	C:\Windows\System32\win32k.sys
2015-11-14 13:43:45	0BB0769EEE5E170CE0B33AC7BF869E48	3592704	----a-w-	C:\Windows\System32\win32kfull.sys
2015-11-14 13:40:10	F7D4D187D8F3490C11F6E4D7AED2B72D	56756	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnport.vbs
2015-11-14 13:40:10	C36D1285B62C6739B465A285148E4000	51462	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnqctl.vbs
2015-11-14 13:40:10	AB328741766A47CACE8978A24260C51A	7418	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\pubprn.vbs
2015-11-14 13:40:10	96289191763ACF8E4AB69F622262B15F	51312	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prndrvr.vbs
2015-11-14 13:40:10	816213C95FC12D011BF789213E1CC973	81048	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnmngr.vbs
2015-11-14 13:40:10	31D7079AF27F244E6AA5B7A7C8FE75F3	105940	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prncnfg.vbs
2015-11-14 13:40:10	03E9BADC32A52E3CB44E4277803CFFF9	69882	----a-w-	C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\prnjobs.vbs
2015-11-14 13:39:57	F7D4D187D8F3490C11F6E4D7AED2B72D	56756	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prnport.vbs
2015-11-14 13:39:57	C36D1285B62C6739B465A285148E4000	51462	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prnqctl.vbs
2015-11-14 13:39:57	AB328741766A47CACE8978A24260C51A	7418	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\pubprn.vbs
2015-11-14 13:39:57	96289191763ACF8E4AB69F622262B15F	51312	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prndrvr.vbs
2015-11-14 13:39:57	816213C95FC12D011BF789213E1CC973	81048	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prnmngr.vbs
2015-11-14 13:39:57	31D7079AF27F244E6AA5B7A7C8FE75F3	105940	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prncnfg.vbs
2015-11-14 13:39:57	03E9BADC32A52E3CB44E4277803CFFF9	69882	----a-w-	C:\Windows\System32\Printing_Admin_Scripts\en-US\prnjobs.vbs

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-295600321-3362585809-1147355583-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google+ Auto Backup"="C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Guardbox"="C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"OneDrive"="C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"1.TPUReg"="C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
"TSVU"="c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"DelaypluginInstall"="C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google+ Auto Backup"="C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe /autostart"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"Guardbox"="C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"OneDrive"="C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TSSSrv"="C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe"
"TecoResident"="C:\Program Files\TOSHIBA\Teco\TecoResident.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe "
"TCrdMain"="C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d00267318c74ae.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-08-2015 21:10]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1d00267318c74ae" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\WINDOWS\SysNative\tasks\Resolution+ Setting Task" [C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe]
"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{2CAE3809-B543-4E0E-A27C-E99CB1AE574C}" [C:\Windows\system32\msfeedssync.exe]
"C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
"C:\WINDOWS\SysNative\tasks\TOSHIBA\CommonNotifier" [C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe]
"C:\WINDOWS\SysNative\tasks\TOSHIBA\Service Station" ["C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe"]

==== Folders in C:\PROGRA~3 0-6 Months Old ======================

2015-07-06 17:43:53	--------	d-----w-	C:\PROGRA~3\iolo
2015-07-19 18:01:39	--------	d-----w-	C:\PROGRA~3\Wondershare
2015-09-20 08:17:47	--------	d-----w-	C:\PROGRA~3\SketchUp
2015-09-20 08:18:56	--------	d---a-w-	C:\PROGRA~3\Reprise
2015-09-27 07:16:00	--------	d-----w-	C:\PROGRA~3\Trusteer
2015-10-10 08:54:27	--------	d-----w-	C:\PROGRA~3\Autodesk
2015-10-22 17:26:39	--------	d-----w-	C:\PROGRA~3\BlueStacks
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~3\regid.1991-06.com.microsoft
2015-10-30 07:24:24	--------	d-----w-	C:\PROGRA~3\USOPrivate
2015-10-30 07:24:24	--------	d-s---w-	C:\PROGRA~3\Microsoft
2015-11-04 08:25:01	--------	d-----w-	C:\PROGRA~3\HP
2015-11-14 14:36:18	--------	d-sh--we	C:\PROGRA~3\Application Data
2015-11-14 14:36:18	--------	d-sh--we	C:\PROGRA~3\Bureaublad
2015-11-14 14:36:18	--------	d-sh--we	C:\PROGRA~3\Documenten
2015-11-14 14:36:18	--------	d-sh--we	C:\PROGRA~3\Menu Start
2015-11-14 14:36:18	--------	d-sh--we	C:\PROGRA~3\Sjablonen
2015-11-14 15:10:50	--------	d-----w-	C:\PROGRA~3\Microsoft OneDrive
2015-11-14 17:06:30	--------	d-----w-	C:\PROGRA~3\USOShared

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"WSVCU@Wondershare.com"="C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com" [19-07-2015 19:02]

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[12-10-2015 08:31]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bbjllphbppobebmjpjcijfbakobcheof - No path found[]

Theme Creator - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc
Rapport - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof
Guardbox - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcbeincdhpkjgcbfcolfjagcjfnfbdai
TV - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh
selector is not a valid CSS selector - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
AddThis - Share & Bookmark (new) - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbogdmdefihhljhfeiklfiedefalcde
Smartsheet Project Management - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cindmhdfkimaeggbebfjkmkdfiohldbm
Symbaloo Bookmarker 0.5.0 - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnjfgbikbkcmickdalamlmpmkhmbollm
Symbaloo - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfnbdccaiknlpdgabdgjijniolkgmoeh
Search All - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eekjldapjblgadclklmgolijbagmdnfk
Gmail Offline - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk
Google Calendar - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn
AFAS Personal Bijwerk Assistent - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhdjnejhhklnclpkbnfmfimijnlmghfk
Skype Click to Call - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Floor plans and interior design - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna
Google Mail Checker - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff
Quick Note - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok
Chrome Web Store Payments - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
ClickClean App - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
Gmail - gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{D4F1ACFF-AFF0-470D-875C-667F5B0EFA5A} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{D4F1ACFF-AFF0-470D-875C-667F5B0EFA5A} - http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=TEJB
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC0D100 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FF07604E-C860-40E9-A230-E37FA41F103A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC0D100 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully

==== HijackThis Entries ======================

O2 - BHO: Wondershare Video Converter Ultimate 7.1.0 - {451C804F-C205-4F03-B48E-537EC94937BF} - C:\PROGRA~3\WONDER~1\VIDEOC~1\WSBROW~1.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google+ Auto Backup] "C:\Users\gebruiker\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Guardbox] "C:\Users\gebruiker\AppData\Local\Guardbox\1.12.0.41\GuardboxApp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\gebruiker\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files (x86)\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: WSWSVCUchrome - {1CA93FF0-A218-44F1 - (no file)
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.6.1180.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Update service - Company - C:\Program Files (x86)\Popcorn Time\Updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1568 folders=169 347935795 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 20-11-2015 at 17:52:06,40 ======================