Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Christ on za 30/01/2016 at 11:17:00,14. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Christ\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2016-01-25-164324.log 61434 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1370270954-3853536632-1707261573-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EA8B678A-94A0-4501-95EF-4922B853612C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Acrobat.com Adobe AIR Adobe Flash Player 10 Plugin Adobe Flash Player 20 ActiveX Adobe Reader 9.5.2 MUI Adobe Shockwave Player 11.6 Alcor Micro USB Card Reader Alice Greenfingers ANT Drivers Installer x64 ASUS AI Recovery ASUS AP Bank ASUS FancyStart ASUS LifeFrame3 ASUS Live Update ASUS MultiFrame ASUS Power4Gear Hybrid ASUS SmartLogon ASUS Splendid Video Enhancement Technology ASUS USB2.0 UVC VGA WebCam ASUS Virtual Camera ASUS WebStorage ATI Catalyst Install Manager ATK Package Auslogics Driver Updater Basissoftware voor HP Photosmart 6510 series Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Chicken Invaders 2 ControlDeck CyberLink LabelPrint CyberLink Power2Go CyberLink PowerDVD 9 D3DX10 Definition Update for Microsoft Office 2010 (KB3114563) 32-Bit Edition Defraggler Dream Day Wedding Married in Manhattan Elevated Installer Fast Boot Game Park Console Garmin Express Garmin Express Tray Google Chrome Google Update Helper HD Tune 2.55 HP Photo Creations HP Photosmart 6510 series Haelp HP Update IDT Audio Intel(R) Management Engine Components Intel(R) Turbo Boost Technology Driver Intel(R) Turbo Boost Technology Monitor Java 8 Update 71 Java Auto Updater Junk Mail filter update K_Series_ScreenSaver_EN Lenovo pointing device Microsoft .NET Framework 4.5.2 Microsoft Application Error Reporting Microsoft Office 2010 Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Click-to-Run 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Starter 2010 - English Microsoft Office Word MUI (Dutch) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD MSVCRT MSVCRT_amd64 MSXML 4.0 SP3 Parser (KB2721691) MSXML 4.0 SP3 Parser (KB2758694) MSXML 4.0 SP3 Parser (KB973685) Productverbeteringonderzoek HP Photosmart 6510 series SABnzbd (remove only) Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3114564) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3114553) 32-Bit Edition Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3114396) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3114402) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3114557) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition SkypeT 7.0 Smileyville FREE Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) swMSM syncables desktop SE Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TreeSize Free V3.4.4 Trend Micro Maximum Security Trend Micro Titanium Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114570) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) Windows Driver Package - ACPI (ACPIService) System (06/19/2009 7100.0.0.2) Windows Driver Package - Advanced Micro Devices (AtiHDAudioService) MEDIA (08/11/2015 7.12.0.7723) Windows Driver Package - AMD (amdkmpfd) System (07/24/2013 13.15.1.0001) Windows Driver Package - ATI Technologies Inc. (amdkmdap) Display (10/05/2010 8.783.0.0000) Windows Driver Package - ELAN (ETD) Mouse (03/09/2015 11.4.61.2) Windows Driver Package - ELAN SMBus (ETDSMBus) System (08/06/2015 15.1.2.5) Windows Driver Package - Hewlett-Packard Image (07/19/2011 26.00.00.00) Windows Driver Package - HP Printer (09/06/2012 09.84.00.1189) Windows Driver Package - IDT MEDIA (03/17/2011 6.10.0.6330) Windows Driver Package - Intel (ETMService) System (10/12/2012 04.00.01.1025) Windows Driver Package - Intel System (07/09/2013 9.1.9.1004) Windows Driver Package - Intel System (07/25/2013 9.1.9.1005) Windows Driver Package - Intel USB (07/09/2013 9.1.9.1004) Windows Driver Package - JMicron (usbccgp) USB (07/28/2009 1.0.4.2) Windows Driver Package - Qualcomm Atheros (L1C) Net (07/16/2013 2.1.0.21) Windows Driver Package - Qualcomm Atheros Communications Inc. (athr) Net (11/17/2015 10.0.0.329) Windows Driver Package - Sonix (SNP2UVC) Image (10/06/2010 5.8.55133.207) Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Sync Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Mobile Apparaatcentrum WinFlash Wireless Console 3 Wise Disk Cleaner 8.91 ==== Running Processes ====================== C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe C:\Windows\AsScrPro.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe C:\Windows\vsnp2uvc.exe C:\Program Files (x86)\syncables\syncables desktop\syncables.exe C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe C:\Program Files (x86)\CyberLink\Shared files\brs.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe C:\Users\Christ\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Windows\SysNative\config\systemprofile\AppData\Roaming\ETDCoInstaller.log deleted C:\PROGRA~3\BSD deleted ==== System Specs ====================== Operating System: Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 64-bits Manufacturer: ASUSTeK Computer Inc. - Model: K72Jr Install Date: 22/12/2010 16:38:56 Last Boot: 30/01/2016 10:40:08 Processor: Intel(R) Core(TM) i5 CPU M 450 @ 2.40GHz Number of Processors: 4 Work Station Bootmode: Normal boot Total RAM: 3948 MB (free 2072 MB - 52) Computername: CHRIST-PC Domain: WORKGROUP User: Christ (Administrator account) Local Disk: C:\ - NTFS - 74 GB (free 5 GB) Local Disk: D:\ - NTFS - 194 GB (free 190 GB) CD \ DVD Drive: E:\ Local Disk: F:\ - NTFS - 149 GB (free 148 GB) Local Disk: Q:\ - - GB (free GB) Bootdevice: \Device\HarddiskVolume1 Windows update: Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== AV: Trend Micro Maximum Security *Disabled/Updated* {8242D66F-41BD-4049-C2E6-E578E73B62A0} SP: Trend Micro Maximum Security *Disabled/Updated* {3923378B-6787-4FC7-F856-DE0A9CBC281D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Internet Explorer Version: 11.0.9600.18163 Google Chrome version: 48.0.2564.97 Adobe Reader version: 9.5.2.295 Sun Java version: 1.8.0_71 (32-bit) Sun Java version: 1.8.0_71 (64-bit) Shockwave Player version: 11.6.1r629 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2016-01-28 18:23:41 53E8269C811E750861B1C6E4E67B86C9 22190 ----a-w- C:\Windows\atiogl.xml 2016-01-28 18:03:01 D5C19842C2271327CA20511C30FFEED3 909824 ----a-w- C:\Windows\vsnp2uvc.exe 2016-01-28 18:03:00 7424D55F53F6BB055F1AA0936BE0CDE7 2401307 ----a-w- C:\Windows\snuninst.exe 2016-01-28 18:03:00 67FAEAC1D6FD7B0FD0D5B5421AD82630 13021 ----a-w- C:\Windows\snp2uvc.src 2016-01-27 21:28:42 E5AB8DE4F8FC81672927DB0BAEA9C9F2 399360 ----a-w- C:\Windows\RegBootClean64.exe 2016-01-27 19:32:57 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2016-01-27 19:32:57 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2016-01-27 19:32:57 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2016-01-27 19:32:57 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2016-01-27 19:32:57 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe ====== C:\Users\Christ\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2016-01-28 18:23:46 CD818B339D78533D145F95FDB2E95E80 30720 ----a-w- C:\Windows\SysWOW64\atiuxpag.dll 2016-01-28 18:23:46 5B78BBFD3A650A7F51C581D82CD2FE53 278528 ----a-w- C:\Windows\SysWOW64\Oemdspif.dll 2016-01-28 18:23:45 DB9AC8D10E1EBF7D1D6EEE26B4765029 614400 ----a-w- C:\Windows\SysWOW64\atiumdva.cap 2016-01-28 18:23:45 BA9650F6D1EA38A271D3D172AAC02443 3460096 ----a-w- C:\Windows\SysWOW64\atiumdva.dll 2016-01-28 18:23:45 520237C4CAD1B3AD456C47F735F633BD 4077568 ----a-w- C:\Windows\SysWOW64\atiumdag.dll 2016-01-28 18:23:43 EB3B78CD570DA9CE62AD528383E957D7 356352 ----a-w- C:\Windows\SysWOW64\atipdlxx.dll 2016-01-28 18:23:43 95E82BC523D7594B114F5CE0B1726BC9 28672 ----a-w- C:\Windows\SysWOW64\atiu9pag.dll 2016-01-28 18:23:42 9E11B96A2051A336ACD6DBCCD918B5F4 2857 ----a-w- C:\Windows\SysWOW64\atipblag.dat 2016-01-28 18:23:42 68AE8563AA2A6C0CC1D5B76F8BA8F45A 16201728 ----a-w- C:\Windows\SysWOW64\atioglxx.dll 2016-01-28 18:23:37 3F0321C798E1D9672809F3F0091581D5 52736 ----a-w- C:\Windows\SysWOW64\atimpc32.dll 2016-01-28 18:23:37 3F0321C798E1D9672809F3F0091581D5 52736 ----a-w- C:\Windows\SysWOW64\amdpcom32.dll 2016-01-28 18:23:36 BEEB0F4767616A9E7D57E0A8D4F7D97B 12800 ----a-w- C:\Windows\SysWOW64\atiglpxx.dll 2016-01-28 18:23:36 6E3EF66C2B57EAE818981AFC46BD8B8F 19968 ----a-w- C:\Windows\SysWOW64\atigktxx.dll 2016-01-28 18:23:34 3F7ABDFD36F103E7F0EB3A3D11A3D18D 3953152 ----a-w- C:\Windows\SysWOW64\atidxx32.dll 2016-01-28 18:23:33 B0CFC1C60E167CFF88C40340BFBC334F 46080 ----a-w- C:\Windows\SysWOW64\aticalrt.dll 2016-01-28 18:23:33 6A2742AC8E6B11C0A9F225622BAF6E44 536576 ----a-w- C:\Windows\SysWOW64\aticfx32.dll 2016-01-28 18:23:32 CFB664F76295CCFC8821FD9653CB3F1B 44032 ----a-w- C:\Windows\SysWOW64\aticalcl.dll 2016-01-28 18:23:32 960000BD90BC30B50CBA20E1D20E76C5 4407808 ----a-w- C:\Windows\SysWOW64\aticaldd.dll 2016-01-28 18:23:31 F8213548C37C96AD64B4A476CD240F5E 241664 ----a-w- C:\Windows\SysWOW64\atiadlxy.dll 2016-01-28 18:23:31 42E5498D19344C1B69DDCBB2BE5DE5C5 43520 ----a-w- C:\Windows\SysWOW64\ati2edxx.dll 2016-01-28 18:03:01 24744AB6647B336FD2738F71DA6AD7D6 307712 ----a-w- C:\Windows\SysWOW64\vsnp2uvc.dll 2016-01-28 18:02:52 B15DE658E8BB193D27377D2D741B0448 74064 ----a-w- C:\Windows\SysWOW64\sfcom.dll 2016-01-25 16:02:44 9BE834EEA24E39F5ED5069A560F41A40 97888 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-01-17 17:01:20 4489D5077C5D2396E3A94D652ADAE1CA 14336 ----a-w- C:\Windows\SysWOW64\fixmapi.exe 2016-01-17 17:01:20 2BB34CC2D6DF7194F46C6508589EF8FD 76800 ----a-w- C:\Windows\SysWOW64\mapistub.dll 2016-01-17 17:01:20 2BB34CC2D6DF7194F46C6508589EF8FD 76800 ----a-w- C:\Windows\SysWOW64\mapi32.dll 2016-01-17 17:00:58 D1450810490EB170A182C4AC915CB87C 1620992 ----a-w- C:\Windows\SysWOW64\WMVDECOD.DLL 2016-01-17 17:00:58 3CC0EF43C256D0A28C908F36AD06963D 970240 ----a-w- C:\Windows\SysWOW64\msmpeg2adec.dll 2016-01-17 17:00:57 EDCAA72A69E36517F1493F09B8A834F7 829952 ----a-w- C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2016-01-17 17:00:57 EDB8F80672DBF24C6C522A29F5854F14 153600 ----a-w- C:\Windows\SysWOW64\COLORCNV.DLL 2016-01-17 17:00:57 B049A75BD074FC465D2BCE2BF5B15D75 3209728 ----a-w- C:\Windows\SysWOW64\mf.dll 2016-01-17 17:00:57 A0448DC7978E550FE64B9A984522B963 815616 ----a-w- C:\Windows\SysWOW64\WMADMOE.DLL 2016-01-17 17:00:57 96FF617934E6A87AA810719D1D911DA9 541184 ----a-w- C:\Windows\SysWOW64\WMVSDECD.DLL 2016-01-17 17:00:57 7368176B23E9BE5D23ED9BFE1D58AC0C 902144 ----a-w- C:\Windows\SysWOW64\WMADMOD.DLL 2016-01-17 17:00:57 62851F0D13AD06F0042C8109E680421F 739328 ----a-w- C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-01-17 17:00:56 FEAEA5182DB9072EBD493466F8608EB8 1568768 ----a-w- C:\Windows\SysWOW64\WMVENCOD.DLL 2016-01-17 17:00:56 B25C60E9ED641AFF18198CBF6C288DB8 740352 ----a-w- C:\Windows\SysWOW64\wmpmde.dll 2016-01-17 17:00:56 89FBB1C25E02767572AB1F136EE8CD04 1329664 ----a-w- C:\Windows\SysWOW64\quartz.dll 2016-01-17 17:00:56 71C9DDA9ED939361C1CA2CE21EA84DBF 665088 ----a-w- C:\Windows\SysWOW64\WMVXENCD.DLL 2016-01-17 17:00:56 65EED8B27B02573948434B583DACFB39 489984 ----a-w- C:\Windows\SysWOW64\evr.dll 2016-01-17 17:00:55 92BBFF13DE00F30DABC03CFF59D8678E 609280 ----a-w- C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-01-17 17:00:55 78E7D511C9FB80ADC9A1DD22CCF66C0E 519680 ----a-w- C:\Windows\SysWOW64\qdvd.dll 2016-01-17 17:00:55 5342DCCA8EA8ED193ACAAD14A5046982 354816 ----a-w- C:\Windows\SysWOW64\mfplat.dll 2016-01-17 17:00:55 2C838797F2F6138EF36C8964487775B9 358400 ----a-w- C:\Windows\SysWOW64\WMVSENCD.DLL 2016-01-17 17:00:54 A7FAA81D1622D6AF4467A81B42D30DBE 241152 ----a-w- C:\Windows\SysWOW64\MPG4DECD.DLL 2016-01-17 17:00:54 0697FF546D6D70AE7F77EF6398004153 241152 ----a-w- C:\Windows\SysWOW64\MP43DECD.DLL 2016-01-17 17:00:53 D6A767B747F4D58EBDAAD1925DC863FA 206848 ----a-w- C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-17 17:00:53 BE2D4165A6845FEE05CBD36D8B41E518 193536 ----a-w- C:\Windows\SysWOW64\ksproxy.ax 2016-01-17 17:00:53 8A2A7AA90CBA77DD44FBAE713B4B3877 415744 ----a-w- C:\Windows\SysWOW64\MP4SDECD.DLL 2016-01-17 17:00:53 7C135C38EC6586F7562CFBC184A514E2 2285056 ----a-w- C:\Windows\SysWOW64\msmpeg2vdec.dll 2016-01-17 17:00:53 6B1BB70E72B573EBDF1235B77DF5706D 1325056 ----a-w- C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-01-17 17:00:53 5CF623B21998B8F1D081D55910A0BDA7 206848 ----a-w- C:\Windows\SysWOW64\qasf.dll 2016-01-17 17:00:53 24D74CF313DC62C65EEA4726AE2EB3F8 154112 ----a-w- C:\Windows\SysWOW64\VIDRESZR.DLL 2016-01-17 17:00:52 BBE4D9B89B3FBC97C0F381C2F9C4ADEF 23040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe 2016-01-17 17:00:52 A4C85F362EBB7815676F1CD9CFC5BA59 4608 ----a-w- C:\Windows\SysWOW64\ksuser.dll 2016-01-17 17:00:52 936E6F6F76136BC73B13D25A254BC84B 50176 ----a-w- C:\Windows\SysWOW64\rrinstaller.exe 2016-01-17 17:00:52 5DCE986C8D7E91B455FB3D57BF955A2A 79872 ----a-w- C:\Windows\SysWOW64\MP3DMOD.DLL 2016-01-17 17:00:52 4FBCDC326769C31CB283981A51C867F3 53248 ----a-w- C:\Windows\SysWOW64\mfvdsp.dll 2016-01-17 17:00:52 41BAC1A440EAA15AD4CC15B0C7870AB0 103424 ----a-w- C:\Windows\SysWOW64\mfps.dll 2016-01-17 17:00:51 FEB2B13697D1C482D84FB626A0F1F73A 2048 ----a-w- C:\Windows\SysWOW64\mferror.dll 2016-01-17 17:00:41 49FBB053E3AC19EEE92AE8492CDA7E91 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2016-01-17 17:00:41 18B231ACA137116CF16DBE3EBD7FDB5D 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2016-01-17 17:00:40 D47060A0923B50FB9E4DD5D9DE0C7402 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2016-01-17 17:00:40 CA0F8D2342A719DEA69C7840B0BB5F4B 2280448 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2016-01-17 17:00:40 C5B72E7048DEEE1B264D7155C77241C5 341192 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2016-01-17 17:00:40 B26FB4205FDB1542166C1D8D7D1968C0 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2016-01-17 17:00:40 AB90455CBD34BDE95F463C02C4D3FF50 1311744 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2016-01-17 17:00:40 A786A11EE4C05BC3AE924344F10275DE 496640 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2016-01-17 17:00:40 67527FD222AD6842F98A733DF52C8416 130048 ----a-w- C:\Windows\SysWOW64\occache.dll 2016-01-17 17:00:40 3C9399B72F7FFB9EE63BB173B481340E 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2016-01-17 17:00:40 06CEABA53DA48B45C2B23F52C8C9EA72 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-01-17 17:00:39 D120251F43699D6C08E13950C3C72978 20367360 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2016-01-17 17:00:39 8E5DD507EC43B5C738EB0289A9663670 687104 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2016-01-17 17:00:38 DAEFD0F03CA94242ACB5C3C1359176D3 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2016-01-17 17:00:38 D1348E7209031F20BC8864DA8CA2F955 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2016-01-17 17:00:38 CFA5159B0C90A82D28314571E8B64775 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2016-01-17 17:00:38 C5BF6D661A8EFB996AD5E4B88FFBD7FD 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll 2016-01-17 17:00:38 9DA0FD6D5B8E2FAD8967A617FD142C6D 2050560 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2016-01-17 17:00:38 862FF89AEF127D001ADBF75095D5ECB1 12856320 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2016-01-17 17:00:38 83F409B2EC14007F6D7E2EA485E6B7D9 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2016-01-17 17:00:38 73C47A23B212481ABF01924B5C74C140 663552 ----a-w- C:\Windows\SysWOW64\jscript.dll 2016-01-17 17:00:37 C2806F9A73E738CDC0718E5D7375BDCB 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2016-01-17 17:00:36 FFA261B9252C71A6910B4F19FDC1EA57 2011136 ----a-w- C:\Windows\SysWOW64\wininet.dll 2016-01-17 17:00:36 D5E9072573EEE8DFEF63CD38640F6D35 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2016-01-17 17:00:36 6D7983A5DFD58E54159D2A03558D4BCE 4610560 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2016-01-17 17:00:36 424300DDB7A1B24199C9B481438F55E9 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2016-01-17 17:00:36 2C10833C0180FEE2AEB6DAEB76FD16E7 341504 ----a-w- C:\Windows\SysWOW64\html.iec 2016-01-17 17:00:36 21784CDE61E83DBCB42DA6C2A374D69A 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2016-01-17 17:00:36 0DABE887449758C9E70FFB253A787D44 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2016-01-17 17:00:36 063A81A53400EA55D27AFC77C49A5B4B 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2016-01-17 16:59:27 7FD1DCF4F11C61621AE9279E26FADCF3 312320 ----a-w- C:\Windows\SysWOW64\gdi32.dll 2016-01-17 16:51:49 E8D68D619AAF4E78850DF96B5E53EA03 641536 ----a-w- C:\Windows\SysWOW64\advapi32.dll 2016-01-17 16:51:33 68EC4300B8EF8D7E2B857FABB91F3EFB 552960 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2016-01-17 16:51:32 AFCF45621028D4B6D252B1429A07A530 251392 ----a-w- C:\Windows\SysWOW64\schannel.dll 2016-01-17 16:51:32 A8D4C2B034947F2445F5099E6B3173C8 3938240 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2016-01-17 16:51:31 1615874D0262DA99E565D4FE6F74F7DD 3993536 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2016-01-17 16:51:30 D92212049589535FBB25B806FF8A20C5 665088 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll 2016-01-17 16:51:29 E149FE1FD23748986551F4E1F5752090 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2016-01-17 16:51:29 DC9222A325ACFC29E019013505AE33DB 171520 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2016-01-17 16:51:29 CE283E9E462E8FC95F7DC5DAF39D09FA 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2016-01-17 16:51:29 678A679C5E416A93A71DA3D4241692B0 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2016-01-17 16:51:28 9E02351A74A6F1FA0F46405583525959 1311768 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2016-01-17 16:51:24 69048141035DEDA0D3AFB28367622130 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2016-01-17 16:51:23 ED43479669D84DC8A4385E6AC2CF5A7F 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2016-01-17 16:51:23 ECA0236432A1C2E695FD50C3AC4CAFCE 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll 2016-01-17 16:51:23 4743B91B77F4B8CEF891ABF00C1E0055 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2016-01-17 16:51:23 16A3C3CCDB7ECFD2A72DAFED734B22BB 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2016-01-17 16:51:21 BC5142F61047916EA677908F98F3A7C2 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2016-01-17 16:51:21 41560C9C4CCA31FC3B0CA192B113F68F 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2016-01-17 16:51:20 BFDCF4944CC86AB5A59B605637C82090 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll 2016-01-17 16:51:18 AE6E759632A0F931CFB626EED55C3E99 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2016-01-17 16:51:18 5A3BF056627B6A7C348FD7AF420741E1 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2016-01-17 16:51:18 119F46197BABD04BE1E2DDD50E782DAC 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2016-01-17 16:51:17 8E3915AF90315E4ED96D4CAE316E8F21 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2016-01-17 16:51:17 1418C1A502A9540A4726B4935229E7B9 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2016-01-17 16:51:16 B9E8D6170C3325895EF3E1E5699A6F8B 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2016-01-17 16:51:16 59541469E828B311B1E5EEA77E6F6BE7 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2016-01-17 16:51:09 80497842956847806BC7DAD11A18D9D4 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2016-01-17 16:51:07 EA5A0A356F6DB3D4177568FF084AD367 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2016-01-28 18:23:46 E8FCDE2FE9DA11039DCF83117806153D 39936 ----a-w- C:\Windows\Sysnative\atiuxp64.dll 2016-01-28 18:23:46 5D8C6A3FEF299BA1D316D83D57EEB679 58880 ----a-w- C:\Windows\Sysnative\coinst.dll 2016-01-28 18:23:44 C05C61B4BA677244995E007E429A6E89 614400 ----a-w- C:\Windows\Sysnative\atiumd6a.cap 2016-01-28 18:23:43 F074DEA7AF05DD64B264357EC4CA71AD 37888 ----a-w- C:\Windows\Sysnative\atiu9p64.dll 2016-01-28 18:23:43 E809997365D241320300B94479E1CF29 120320 ----a-w- C:\Windows\Sysnative\atitmm64.dll 2016-01-28 18:23:42 9E11B96A2051A336ACD6DBCCD918B5F4 2857 ----a-w- C:\Windows\Sysnative\atipblag.dat 2016-01-28 18:23:40 A6BAAA6608A9B00220E9D5C023FC53D1 51200 ----a-w- C:\Windows\Sysnative\ATIODCLI.exe 2016-01-28 18:23:40 463FFBD3350E3EB57F7D5746EBD233CA 332800 ----a-w- C:\Windows\Sysnative\ATIODE.exe 2016-01-28 18:23:40 1AC8A1681D4057C6AE1C75F4143B5E8D 21344256 ----a-w- C:\Windows\Sysnative\atio6axx.dll 2016-01-28 18:23:37 C0DA57E051BC81B9D3B474AFA859464D 12288 ----a-w- C:\Windows\Sysnative\atimuixx.dll 2016-01-28 18:23:37 9BABF60914BA56CC3454F0A8FCB3E810 53760 ----a-w- C:\Windows\Sysnative\atimpc64.dll 2016-01-28 18:23:37 9BABF60914BA56CC3454F0A8FCB3E810 53760 ----a-w- C:\Windows\Sysnative\amdpcom64.dll 2016-01-28 18:23:36 DD9F83857C8135FD63C352DDF0C47748 21504 ----a-w- C:\Windows\Sysnative\atig6txx.dll 2016-01-28 18:23:36 BEEB0F4767616A9E7D57E0A8D4F7D97B 12800 ----a-w- C:\Windows\Sysnative\atiglpxx.dll 2016-01-28 18:23:36 A8F1A0427E1A7E867EF84A12F6628E75 224342 ----a-w- C:\Windows\Sysnative\atiicdxx.dat 2016-01-28 18:23:35 869D5CB7A9DE68B3F9F3562BA459D4CC 14848 ----a-w- C:\Windows\Sysnative\atig6pxx.dll 2016-01-28 18:23:35 5C6DA443FBB66E517F34A46A7961FE2C 59392 ----a-w- C:\Windows\Sysnative\atiedu64.dll 2016-01-28 18:23:33 EAC3CE3FCD141257859066C68A165ED1 51200 ----a-w- C:\Windows\Sysnative\aticalrt64.dll 2016-01-28 18:23:33 5CA08E1783ABD8FA7F65A015157D7CCC 5470720 ----a-w- C:\Windows\Sysnative\aticaldd64.dll 2016-01-28 18:23:33 4BFB62DB0538F886D625AC2075D659FF 628224 ----a-w- C:\Windows\Sysnative\aticfx64.dll 2016-01-28 18:23:32 C0930B70875B29D7D61094CA6942E554 78848 ----a-w- C:\Windows\Sysnative\atiapfxx.blb 2016-01-28 18:23:32 802F8F88956FDFF5CC7136EA230E4F69 44544 ----a-w- C:\Windows\Sysnative\aticalcl64.dll 2016-01-28 18:23:32 00A31A9E5593A48BE90B4271D523205D 143360 ----a-w- C:\Windows\Sysnative\atiapfxx.exe 2016-01-28 18:03:01 F4D9AC50C56D2864EEFE1D43053541E3 376832 ----a-w- C:\Windows\Sysnative\vsnp2uvc.dll 2016-01-28 18:03:01 C2F1C130865BFA1B4B2CCE56335045BF 238592 ----a-w- C:\Windows\Sysnative\csnp2uvc.dll 2016-01-28 18:02:56 D53977F08872B0DECDAE063727288B79 614000 ----a-w- C:\Windows\Sysnative\jmccgpInst.dll 2016-01-28 18:02:52 E63B2CA126FE5ADF9873F4074AD8C973 652288 ----a-w- C:\Windows\Sysnative\stapi64.dll 2016-01-28 18:02:52 B9DECC7E5D4E63E593755584FDFF0C0C 220496 ----a-w- C:\Windows\Sysnative\SFNHK64.DLL 2016-01-28 18:02:52 B75426AC3162B7373219992C2D71BAC3 220160 ----a-w- C:\Windows\Sysnative\staco64.dll 2016-01-28 18:02:52 8E2DB87171BD391A8C248A0944958354 78160 ----a-w- C:\Windows\Sysnative\SFAPO64.DLL 2016-01-28 18:02:52 7CB0B82031D28371E26672053D40AFDB 81232 ----a-w- C:\Windows\Sysnative\SFCOM64.DLL 2016-01-28 18:02:52 7C8C03AAE445A5FF1C35E1483BC8ABD4 1500672 ----a-w- C:\Windows\Sysnative\stapo64.dll 2016-01-28 18:02:52 2DEEA3A7DFD780B3006810BFFBF98F6E 431616 ----a-w- C:\Windows\Sysnative\stcplx64.dll 2016-01-28 18:02:43 5BB06C6266803E3FCA8589281597FAA9 113400 ----a-w- C:\Windows\Sysnative\DelayAPO.dll 2016-01-28 18:02:40 7AB33266D10E7586DD806412CD7E78CB 41144 ----a-w- C:\Windows\Sysnative\ETDCoInstaller.dll 2016-01-28 18:02:34 CE1CF05A6C743DD1ECC6ABFA4D58FE45 622992 ----a-w- C:\Windows\Sysnative\HPWia2_PS6510.dll 2016-01-28 18:02:33 94A13BB15B305F12D6991830E072EE15 2729872 ----a-w- C:\Windows\Sysnative\HPScanTRDrv_PS6510.dll 2016-01-28 18:02:25 6D0F06C8E818C2566FE975DAAC58DC65 1731816 ----a-w- C:\Windows\Sysnative\WdfCoInstaller01009.dll 2016-01-28 18:02:22 561CB3293B381D4E223457202F11E795 331664 ----a-w- C:\Windows\Sysnative\hpinkstsA511LM.dll 2016-01-28 18:02:20 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Windows\Sysnative\hpinkinsA511.exe 2016-01-28 18:02:20 AD585A28F3751990456F6FDAD74FEBA5 269712 ----a-w- C:\Windows\Sysnative\hpinkcoiA511.dll 2016-01-18 19:46:10 C007347E699A465BF65FD6047D7199D8 59 ----a-w- C:\Windows\Sysnative\SupportTool.exe.bat 2016-01-17 17:01:21 73DC9840FE246158ECCBC8270847CCBC 91648 ----a-w- C:\Windows\Sysnative\mapistub.dll 2016-01-17 17:01:21 73DC9840FE246158ECCBC8270847CCBC 91648 ----a-w- C:\Windows\Sysnative\mapi32.dll 2016-01-17 17:01:20 EC1E743D4DB6C6EBEDCEB4B4C8E1905A 1164800 ----a-w- C:\Windows\Sysnative\aeinv.dll 2016-01-17 17:01:20 2FFBA1EAE28B45A92E2EA70C61C66F14 17920 ----a-w- C:\Windows\Sysnative\fixmapi.exe 2016-01-17 17:00:59 FF5D49FAA86DBD9033DABC1ABCEA3429 1232896 ----a-w- C:\Windows\Sysnative\WMADMOD.DLL 2016-01-17 17:00:59 5BAEB6D045DA253787F3F1984B712835 1888768 ----a-w- C:\Windows\Sysnative\WMVDECOD.DLL 2016-01-17 17:00:59 27221616A71A25E0B7065926FCC417A7 1307136 ----a-w- C:\Windows\Sysnative\msmpeg2adec.dll 2016-01-17 17:00:58 91E1D7BE8513032B5CCA26AFD0BF0ADC 666112 ----a-w- C:\Windows\Sysnative\WMVSDECD.DLL 2016-01-17 17:00:58 5EA57A6AD59D0785C9A390DF14736899 978944 ----a-w- C:\Windows\Sysnative\WMSPDMOD.DLL 2016-01-17 17:00:58 55C3F89354C086EFFF1C5AAD1E808134 1160192 ----a-w- C:\Windows\Sysnative\MSMPEG2ENC.DLL 2016-01-17 17:00:57 E6A0093D872D860BEA437DF6C666DF89 632320 ----a-w- C:\Windows\Sysnative\evr.dll 2016-01-17 17:00:57 BF9CFEE3D22CE61E5B57C9B8A14F172D 1026048 ----a-w- C:\Windows\Sysnative\wmpmde.dll 2016-01-17 17:00:57 B7CBAC1F4175C1D59B197020268A290B 1153024 ----a-w- C:\Windows\Sysnative\WMADMOE.DLL 2016-01-17 17:00:57 82AB148A0E747855F83F332FC83B254F 1573888 ----a-w- C:\Windows\Sysnative\quartz.dll 2016-01-17 17:00:57 759DF4479855EED0D78249798325D373 1955328 ----a-w- C:\Windows\Sysnative\WMVENCOD.DLL 2016-01-17 17:00:57 60957C2BD1C03CF395006FDBC29D2569 189952 ----a-w- C:\Windows\Sysnative\COLORCNV.DLL 2016-01-17 17:00:57 530B3A72692DB253DE8BB8E8C11468DD 1010688 ----a-w- C:\Windows\Sysnative\mcmde.dll 2016-01-17 17:00:57 3B6466686CDC57453592E6188C3FA4DC 4121600 ----a-w- C:\Windows\Sysnative\mf.dll 2016-01-17 17:00:56 EF7F85527404DF16DEE0ADC611155F0B 1393152 ----a-w- C:\Windows\Sysnative\WMALFXGFXDSP.dll 2016-01-17 17:00:56 DB018B9F38BC34E9AE21C01448E810D2 1575424 ----a-w- C:\Windows\Sysnative\WMSPDMOE.DLL 2016-01-17 17:00:56 B62CEF4A731EE983D440804A2B9DA0B1 642048 ----a-w- C:\Windows\Sysnative\WMVXENCD.DLL 2016-01-17 17:00:56 9A2DCBE0A803AF0DF58D8B3EB041065E 447488 ----a-w- C:\Windows\Sysnative\WMVSENCD.DLL 2016-01-17 17:00:56 3AECE087DB6F663C2B7F538C81C60F64 432128 ----a-w- C:\Windows\Sysnative\mfplat.dll 2016-01-17 17:00:55 D66AE152C1EE7DA2548EC2AF4203025D 653824 ----a-w- C:\Windows\Sysnative\MP4SDECD.DLL 2016-01-17 17:00:55 A64D697EA82530530693AA2102FCA420 292352 ----a-w- C:\Windows\Sysnative\VIDRESZR.DLL 2016-01-17 17:00:55 65BA8738CC3C21C62E746A1DDF04EC74 223744 ----a-w- C:\Windows\Sysnative\MP43DECD.DLL 2016-01-17 17:00:55 2A8760952F296D6208FE5FC358ECD59A 484864 ----a-w- C:\Windows\Sysnative\MFWMAAEC.DLL 2016-01-17 17:00:55 294B7F30B70E0D7867F5EB69E630884A 225792 ----a-w- C:\Windows\Sysnative\RESAMPLEDMO.DLL 2016-01-17 17:00:55 18A11A96B3C1C9E2FD1E6137C8BD4018 224768 ----a-w- C:\Windows\Sysnative\MPG4DECD.DLL 2016-01-17 17:00:54 BEFEDC65A88D44153983455C699F81C8 100864 ----a-w- C:\Windows\Sysnative\MP3DMOD.DLL 2016-01-17 17:00:53 D624DE0DED716916F69D495807C9D787 254464 ----a-w- C:\Windows\Sysnative\qasf.dll 2016-01-17 17:00:53 C62B3D8C69437192AA58AD6E380E4BC3 371712 ----a-w- C:\Windows\Sysnative\qdvd.dll 2016-01-17 17:00:53 ACA7F078CAD7D225D4F2D973C9812225 250880 ----a-w- C:\Windows\Sysnative\ksproxy.ax 2016-01-17 17:00:53 A54381C84F3CEBF4D339778339D141F0 2777088 ----a-w- C:\Windows\Sysnative\msmpeg2vdec.dll 2016-01-17 17:00:53 9524717B1B183A066E0516BFF2888D51 70144 ----a-w- C:\Windows\Sysnative\mfvdsp.dll 2016-01-17 17:00:53 2F0BA9348CB8D62FF8C28B4B83D57FA3 378880 ----a-w- C:\Windows\Sysnative\SysFxUI.dll 2016-01-17 17:00:52 8B995A315448ABFC6E41A200079E7DBA 55808 ----a-w- C:\Windows\Sysnative\rrinstaller.exe 2016-01-17 17:00:52 777654DB4C306B22A5A54690A258650D 24576 ----a-w- C:\Windows\Sysnative\mfpmp.exe 2016-01-17 17:00:52 6D21051C8EA17C1DD0A6FD07CCAB8232 5120 ----a-w- C:\Windows\Sysnative\ksuser.dll 2016-01-17 17:00:52 6727B79444C3C8362DB4045E86152707 206848 ----a-w- C:\Windows\Sysnative\mfps.dll 2016-01-17 17:00:51 A2877C3165FCD229D1BFC9CC4FFC2B2E 2048 ----a-w- C:\Windows\Sysnative\mferror.dll 2016-01-17 17:00:41 FEB22838B5A1EA29FAEBBEEA14107049 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2016-01-17 17:00:41 E8CA48B9CB7F0ACEA28DDDE9EFF22C80 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2016-01-17 17:00:41 16D24DE8CB771F481152CA186814CA16 2887168 ----a-w- C:\Windows\Sysnative\iertutil.dll 2016-01-17 17:00:40 E341F64F351629296178A872C7666620 718336 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2016-01-17 17:00:40 DA52C6C0BA729466416B3F086C97B570 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2016-01-17 17:00:40 5794608757509D090F5B48B0A1F7A192 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2016-01-17 17:00:38 D9A22C7E960A41500D5B76C31D3222D0 1546752 ----a-w- C:\Windows\Sysnative\urlmon.dll 2016-01-17 17:00:38 A32269075B35C5C9C2A3641A0E7AA0A5 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2016-01-17 17:00:38 7A566BAD311137B88DDF444D13C1C594 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2016-01-17 17:00:38 5794E3E7388205B0D7E87D665054A12A 152064 ----a-w- C:\Windows\Sysnative\occache.dll 2016-01-17 17:00:38 4718E9DE3101969567EC0F148BF66006 387784 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2016-01-17 17:00:38 359B81512F7A45213180DD3D821F11BB 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2016-01-17 17:00:38 26509D490CC4DFE3291DC5E3847EBB14 798208 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2016-01-17 17:00:38 20773DBF4A2DC49785831FDA12530A0A 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2016-01-17 17:00:37 CF6B70A265ADA05CC55D57D9DE8B06E0 2123264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2016-01-17 17:00:37 65CCD789E06B82989596D584D1AE6D46 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2016-01-17 17:00:36 B67D37636216B98F70064C3A2B295EF7 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2016-01-17 17:00:36 7300C7AB7EF1CDE5C19EEB6970C71473 571904 ----a-w- C:\Windows\Sysnative\vbscript.dll 2016-01-17 17:00:35 F66091A35F4810BD501CD7B65778D4B1 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2016-01-17 17:00:35 9C9E498EA2527F96EC7ADDF3634BF624 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2016-01-17 17:00:35 80322AAB422075922A0EA3CFEA35061C 14457856 ----a-w- C:\Windows\Sysnative\ieframe.dll 2016-01-17 17:00:35 65E6158EF33AE88A412D3CEB33A20F47 615936 ----a-w- C:\Windows\Sysnative\ieui.dll 2016-01-17 17:00:34 AC8410A5877FFBC98D1ECFF949A2E0A4 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2016-01-17 17:00:34 9E30C99BBB024E1CFC4B9A387132B0BE 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2016-01-17 17:00:34 207D3D17F61029FD0FB7B6DF1244E5E2 817664 ----a-w- C:\Windows\Sysnative\jscript.dll 2016-01-17 17:00:34 0236A801C4907B13E5BADEE62EB3284B 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2016-01-17 17:00:32 F604E67A3B37B21485DEE9CC14AA2AAB 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2016-01-17 17:00:32 8100C63E02EC310C0E8712D6603E3DBA 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2016-01-17 17:00:32 789E93204829D6519F55D5A61586B7B5 6051328 ----a-w- C:\Windows\Sysnative\jscript9.dll 2016-01-17 17:00:32 5F08FC1143F907E990F0E1EB4C8E77F2 417792 ----a-w- C:\Windows\Sysnative\html.iec 2016-01-17 17:00:32 1258BDEE548BCD771DD35485CDD176EA 2487808 ----a-w- C:\Windows\Sysnative\wininet.dll 2016-01-17 17:00:31 FB3047038F1800A0891B4D35F40E4F59 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2016-01-17 17:00:31 DD2AC5827D111001E805C19786D2DE41 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2016-01-17 17:00:31 6AEBA30A9AF45D0C83385F48EC943426 25837568 ----a-w- C:\Windows\Sysnative\mshtml.dll 2016-01-17 16:59:29 F094FCE25E33140B5F7AEE2E5BDF6931 3211264 ----a-w- C:\Windows\Sysnative\win32k.sys 2016-01-17 16:59:27 AD46BED774CF502E9C0100CFC29C1F82 405504 ----a-w- C:\Windows\Sysnative\gdi32.dll 2016-01-17 16:51:49 35A6E891DF89085216F18F5B998D6CB4 879104 ----a-w- C:\Windows\Sysnative\advapi32.dll 2016-01-17 16:51:35 2E4FF62CC7B88ABBF59C242DED7F919F 5572544 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2016-01-17 16:51:35 1E22F3C99BB02A51179F9CCFEE242925 1214464 ----a-w- C:\Windows\Sysnative\rpcrt4.dll 2016-01-17 16:51:33 CD2249AEDD225CAB5CC88B40126C987F 344064 ----a-w- C:\Windows\Sysnative\schannel.dll 2016-01-17 16:51:33 6872BBF984E6FA0AA910926D2F127372 1461248 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2016-01-17 16:51:33 35D570D5191EE48A6D5091033C71B7CE 729600 ----a-w- C:\Windows\Sysnative\kerberos.dll 2016-01-17 16:51:31 FE0C67D8D5D54F37B3A92E129A15C03A 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll 2016-01-17 16:51:31 10DDB11D4451AAB9A32FFCEE8045BA6F 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2016-01-17 16:51:30 28E55B4DA450C29326A25BE29C72FB1B 315392 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2016-01-17 16:51:29 F557804C926BE42B0DCF0CB2AC138156 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll 2016-01-17 16:51:29 D55C59AD1C93B728AB508F4F6529ED8F 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2016-01-17 16:51:28 FAF7892DD731F0649046B3AA3A5166AA 1730496 ----a-w- C:\Windows\Sysnative\ntdll.dll 2016-01-17 16:51:24 CE14A4BBF890A7D4C898CF886D145EC9 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2016-01-17 16:51:24 CB2A49FFC4390EC0C757B1FC07A07E17 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll 2016-01-17 16:51:24 B29C53B81C690394A2327AB2609B55FE 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2016-01-17 16:51:24 928F79CDCE323CFEB221C7D2D539F86A 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2016-01-17 16:51:24 8645BD647D1ECEB0E6F90E01A4C412EA 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll 2016-01-17 16:51:23 FA792622268EE423FC5E6AE23FB43599 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2016-01-17 16:51:23 CB0E57424A776C51EF42469064ADBF08 30720 ----a-w- C:\Windows\Sysnative\lsass.exe 2016-01-17 16:51:23 B25B3DE2FA73735074CA62AFEFE4AE47 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2016-01-17 16:51:23 5124EA325CF0806FFA9514DC11593DA9 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2016-01-17 16:51:22 FACF1586F756E0B154EE6887FA017446 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2016-01-17 16:51:22 FA3E172432AFA1A7D43847C7AC58812B 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2016-01-17 16:51:22 5CB16703E4E4203C5B1D0717D16D48D6 503808 ----a-w- C:\Windows\Sysnative\srcore.dll 2016-01-17 16:51:21 7AC830607D940A3DABB8E5EB6EB22DF2 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2016-01-17 16:51:21 56157CA130B661080B9DC97FE63F6D50 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2016-01-17 16:51:21 2E479BB995A0C130D6FF9F55E7DDA61F 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2016-01-17 16:51:20 D23C252F866CE3599336D547722B4A9D 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2016-01-17 16:51:20 499545FF756FA6AFFB4F6679EA88BCB1 50176 ----a-w- C:\Windows\Sysnative\srclient.dll 2016-01-17 16:51:19 5EBDD597DDCD94AE47CEFE6AFE41874A 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe 2016-01-17 16:51:19 50AC63ADB9F92D5141703986C66AB61C 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe 2016-01-17 16:51:18 A582574464654555D17338C6657EF69B 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2016-01-17 16:51:16 BBF3E0FAFE3179FFED231D2266247476 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll 2016-01-17 16:51:09 F6BD25ED678D2A5866FFC3355EC1E2C2 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2016-01-17 16:51:07 377FEC833CC924E83029A83F99230663 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll ====== C:\Windows\Sysnative\drivers ===== 2016-01-28 18:23:37 CC5B75D4A24E7493408510D061DF51AA 285696 ----a-w- C:\Windows\Sysnative\drivers\atikmpag.sys 2016-01-28 18:23:37 91890B3670C129E2B3466D2AFAE05EAC 7884288 ----a-w- C:\Windows\Sysnative\drivers\atikmdag.sys 2016-01-28 18:23:31 EA5C066D22C3B1775722CA1E4B9F2B09 53248 ----a-w- C:\Windows\Sysnative\drivers\ati2erec.dll 2016-01-28 18:03:11 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_ETDSMBus_01009.Wdf 2016-01-28 18:03:01 C98375D19F9E9966F6201BAE65FB3728 1800832 ----a-w- C:\Windows\Sysnative\drivers\snp2uvc.sys 2016-01-28 18:03:01 3D35D7F8A91FA5127EE052BE41BD87D3 35328 ----a-w- C:\Windows\Sysnative\drivers\sncduvc.sys 2016-01-28 18:02:58 7867CACBF7B23AD04F5D18657BF15FA2 129224 ----a-w- C:\Windows\Sysnative\drivers\L1C62x64.sys 2016-01-28 18:02:56 6E76CFA02D7EBE9DBB5E8C60CC23CAA1 17136 ----a-w- C:\Windows\Sysnative\drivers\jmccgp.sys 2016-01-28 18:02:54 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\Windows\Sysnative\drivers\amdkmpfd.sys 2016-01-28 18:02:53 3AD0ED8B19CD76D2254DE5FB298E3C26 521728 ----a-w- C:\Windows\Sysnative\drivers\stwrt64.sys 2016-01-28 18:02:45 6A8BE7EF08F3AE3B81555788D978A43A 4162560 ----a-w- C:\Windows\Sysnative\drivers\athrx.sys 2016-01-28 18:02:43 36779BF5739484CBE11F474A740E9B78 104984 ----a-w- C:\Windows\Sysnative\drivers\AtihdW76.sys 2016-01-28 18:02:40 0E69BB6B6535300BE5D1E2CD47CF4BE0 444088 ----a-w- C:\Windows\Sysnative\drivers\ETD.sys 2016-01-28 18:02:38 B6494E42EAF0DD8AE0A21D8E9823BFCA 17992 ----a-w- C:\Windows\Sysnative\drivers\ATKACPI.SYS 2016-01-28 18:02:37 79406629C94FBB2E86EF403BD0560D4F 165952 ----a-w- C:\Windows\Sysnative\drivers\Impcd.sys 2016-01-28 18:02:37 30421707439B3F60B2CC248196162DCA 67392 ----a-w- C:\Windows\Sysnative\drivers\EtmDevPch.sys 2016-01-28 18:02:25 F70B2887AA4D32DDBA781443A0A7D953 31464 ----a-w- C:\Windows\Sysnative\drivers\ETDSMBus.sys 2016-01-18 19:56:34 F21BD7A3E2002A88AB471BE42141C783 116576 ----a-w- C:\Windows\Sysnative\drivers\tmeevw.sys 2016-01-18 19:56:34 D8037AD74BD8E5C85514C78841DF72CA 416608 ----a-w- C:\Windows\Sysnative\drivers\tmnciesc.sys 2016-01-18 19:56:24 FBB30611F63A97C14C16CC087579DB25 99632 ----a-w- C:\Windows\Sysnative\drivers\tmevtmgr.sys 2016-01-18 19:56:24 CE526F14D13627B7A4A0035AB4238841 324912 ----a-w- C:\Windows\Sysnative\drivers\tmcomm.sys 2016-01-18 19:56:24 462CE5BC5B8C22C459B98A9400F386FA 133424 ----a-w- C:\Windows\Sysnative\drivers\tmactmon.sys 2016-01-18 19:56:22 C0DE7021878A12EA937E1E81BBA61CE2 91536 ----a-w- C:\Windows\Sysnative\drivers\TMUMH.sys 2016-01-18 19:56:21 E5E5DB2B3B162F074556F992A904827F 59712 ----a-w- C:\Windows\Sysnative\drivers\TMEBC64.sys 2016-01-18 19:56:18 FE351337CE2C7A50AECFB3871C8E7428 116528 ----a-w- C:\Windows\Sysnative\drivers\tmusa.sys 2016-01-17 17:00:52 C51B07394A087DA666A410DBFD26663A 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2016-01-17 17:00:52 647599CAE8CA0EF2FB09C4B150BC97FF 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys 2016-01-17 17:00:52 26FE888505E5A945B0536AF9A2A27A6F 5632 ----a-w- C:\Windows\Sysnative\drivers\drmkaud.sys 2016-01-17 16:51:30 28E75F316CCCD79337E4957C53017D4B 154560 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2016-01-17 16:51:27 0F776895884B8DC430A307D57FD867BB 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2016-01-17 16:51:23 A572BEF41F3C55D7DAF24D2340C91FEC 290816 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys 2016-01-17 16:51:23 32B85C4923D895B2FB35821A799BA38D 159232 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2016-01-17 16:51:21 C49F1C4CA74FC52AFB2E892D8E50EA39 129024 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys ====== C:\Windows\Tasks ====== 2016-01-28 18:21:23 -------- d-----w- C:\Windows\Sysnative\Tasks\Auslogics ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-01-28 17:44:46 -------- d-----w- C:\Program Files\Defraggler 2016-01-18 19:41:46 -------- d-----w- C:\Program Files\Trend Micro ======= C:\PROGRA~2 ===== 2016-01-28 17:42:12 -------- d-----w- C:\PROGRA~2\Auslogics 2016-01-28 16:37:04 -------- d-----w- C:\PROGRA~2\Wise 2016-01-27 15:44:34 -------- d-----w- C:\PROGRA~2\HD Tune 2016-01-25 16:04:15 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-01-24 15:32:57 -------- d-----w- C:\PROGRA~2\JAM Software 2016-01-18 19:51:31 -------- d-----w- C:\PROGRA~2\ESET ======= C: ===== 2016-01-30 09:39:55 36152CD693D9547028B8C12AEB26921D 3544 ------w- C:\bootsqm.dat ====== C:\Users\Christ\AppData\Roaming ====== 2016-01-28 16:37:16 -------- d-----w- C:\Users\Christ\AppData\Roaming\Wise Disk Cleaner 2016-01-27 19:49:28 -------- d-----w- C:\Users\Public\AppData\Local\temp 2016-01-27 19:49:28 -------- d-----w- C:\Users\Default\AppData\Local\temp 2016-01-27 19:49:28 -------- d-----w- C:\Users\Default User\AppData\Local\temp 2016-01-27 19:08:51 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming\Garmin 2016-01-26 21:29:33 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2016-01-25 16:38:07 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp 2016-01-25 16:38:07 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2016-01-25 16:38:07 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2016-01-25 16:38:07 -------- d-----w- C:\Users\Christ\AppData\Local\Temp 2016-01-24 15:32:58 -------- d-----w- C:\Users\Christ\AppData\Roaming\JAM Software 2016-01-18 19:04:16 -------- d-----w- C:\Users\Christ\AppData\Roaming\Sun 2016-01-18 19:02:15 -------- d-----w- C:\Users\Christ\AppData\Locallow\Oracle 2016-01-18 11:03:01 -------- d-----w- C:\Users\Christ\AppData\Local\ElevatedDiagnostics ====== C:\Users\Christ ====== 2016-01-28 20:19:22 A677F1A50AD97F33A1668E0559238FE1 1609032 ----a-w- C:\Users\Christ\Downloads\JRT.exe 2016-01-28 18:06:24 -------- d-----w- C:\ProgramData\SonicFocus 2016-01-28 17:44:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2016-01-28 17:44:15 A114EE7EFA1A3DAFE2E98A9B2E589B3F 4527736 ----a-w- C:\Users\Christ\Downloads\dfsetup220.exe 2016-01-28 17:42:25 -------- d-----w- C:\ProgramData\Auslogics 2016-01-28 17:42:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2016-01-28 16:37:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Disk Cleaner 2016-01-27 19:49:28 -------- d-----w- C:\Users\Public\AppData 2016-01-27 15:44:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune 2016-01-27 15:42:54 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Christ\Pictures\hdtune_255.exe 2016-01-27 04:26:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Christ\Desktop\RSITx64.exe 2016-01-27 04:26:14 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Christ\Pictures\RSITx64.exe 2016-01-25 16:02:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-01-24 15:32:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free 2016-01-18 19:11:52 A29CB0E9475A256BE736072BC526E294 174733552 ----a-w- C:\Users\Christ\Pictures\TTi_10.0_HE_64bit.exe 2016-01-18 19:04:14 -------- d-----w- C:\Users\Christ\.oracle_jre_usage 2016-01-18 19:03:04 -------- d-----w- C:\ProgramData\Oracle ====== C: exe-files == 2016-01-30 09:46:01 DB8D4B390D7B6F725A41BAA41E8D66AB 6070352 ----a-w- C:\Program Files (x86)\Google\Update\Install\{46FA47B4-C28B-4426-A6E2-641B3C282704}\48.0.2564.97_47.0.2526.111_chrome_updater_3stage.exe 2016-01-30 09:46:01 DB8D4B390D7B6F725A41BAA41E8D66AB 6070352 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.97\48.0.2564.97_47.0.2526.111_chrome_updater_3stage.exe 2016-01-28 20:19:22 A677F1A50AD97F33A1668E0559238FE1 1609032 ----a-w- C:\Users\Christ\Downloads\JRT.exe 2016-01-28 18:23:40 A6BAAA6608A9B00220E9D5C023FC53D1 51200 ----a-w- C:\Windows\System32\ATIODCLI.exe 2016-01-28 18:23:40 463FFBD3350E3EB57F7D5746EBD233CA 332800 ----a-w- C:\Windows\System32\ATIODE.exe 2016-01-28 18:23:32 00A31A9E5593A48BE90B4271D523205D 143360 ----a-w- C:\Windows\System32\atiapfxx.exe 2016-01-28 18:03:01 D5C19842C2271327CA20511C30FFEED3 909824 ----a-w- C:\Windows\vsnp2uvc.exe 2016-01-28 18:03:00 7424D55F53F6BB055F1AA0936BE0CDE7 2401307 ----a-w- C:\Windows\snuninst.exe 2016-01-28 18:02:20 FB0D5236CB97604C26E4ED0EE3561461 2873232 ----a-w- C:\Windows\System32\hpinkinsA511.exe 2016-01-28 17:58:28 9F53EF4631EE0EFE6C83C0B7413369FA 677832 ----a-w- C:\Program Files\DIFX\7E6D4DB3DAC3C1A9\dpinst64.exe 2016-01-28 17:44:15 A114EE7EFA1A3DAFE2E98A9B2E589B3F 4527736 ----a-w- C:\Users\Christ\Downloads\dfsetup220.exe 2016-01-28 17:42:13 CC899076058AA33919D8783962266174 3694536 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe 2016-01-28 17:42:13 C548132643BEBE942FD85B173FF95CAC 567240 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\SendDebugLog.exe 2016-01-28 17:42:12 9F53EF4631EE0EFE6C83C0B7413369FA 677832 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\DPInst64.exe 2016-01-28 17:42:12 9D9E63BA730DB426346389AD6D8749D1 1204168 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\unins000.exe 2016-01-28 17:42:12 40654106F68FD8E99E9B28FB96B2D8FF 512456 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\GASender.exe 2016-01-28 17:42:12 02FFD326569A44FF0692CC7D306B18C5 23496 ----a-w- C:\Program Files (x86)\Auslogics\Driver Updater\Downloader.exe 2016-01-28 17:40:52 A48F2B057378524F751A18EA6AA7E680 9140144 ----a-w- C:\Users\Christ\Desktop\Auslogics.Driver.Updater.1.5.0.DC.07.05.2015\driver-updater-setup.exe 2016-01-28 16:37:04 BE358936B9B5E16764E5B05942D3FBB6 3746352 ----a-w- C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe 2016-01-28 16:37:04 B9B2398A66EE8E7C545FA61820A3FAF0 1242944 ----a-w- C:\Program Files (x86)\Wise\Wise Disk Cleaner\unins000.exe 2016-01-28 16:37:04 8CBFE0391EA03C8C1A9D16DCF01F7CB2 1622040 ----a-w- C:\Program Files (x86)\Wise\Wise Disk Cleaner\Assisant.exe 2016-01-27 21:28:42 E5AB8DE4F8FC81672927DB0BAEA9C9F2 399360 ----a-w- C:\Windows\RegBootClean64.exe 2016-01-27 20:18:52 B4656E85333FED69FD85761FDCE8B5D8 1484104 ----a-w- C:\Users\Christ\AppData\Local\Google\Chrome\User Data\SwReporter\5.39.1\software_reporter_tool.exe 2016-01-27 19:32:57 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2016-01-27 19:32:57 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2016-01-27 19:32:57 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2016-01-27 19:32:57 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2016-01-27 19:32:57 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2016-01-27 15:44:35 F8FC2D14DF813CC920A39B3CB7E59CBC 401408 ----a-w- C:\Program Files (x86)\HD Tune\HDTune.exe 2016-01-27 15:44:35 CEFC20D14D9940D53505E9B9769139E7 682266 ----a-w- C:\Program Files (x86)\HD Tune\unins000.exe 2016-01-27 15:42:54 088812A121E0A9CEB40CE9C808C8A90C 642632 ----a-w- C:\Users\Christ\Pictures\hdtune_255.exe 2016-01-27 04:27:13 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\Christ.exe 2016-01-27 04:26:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Christ\Desktop\RSITx64.exe 2016-01-27 04:26:14 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Christ\Pictures\RSITx64.exe 2016-01-25 16:02:45 C1A4EED6CE27B89E3CF63839DDE14D98 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2016-01-25 16:02:45 3C30DF6FF0EEA713F1F4D251696B93A7 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2016-01-25 16:02:45 099E74EDE92C0B07E85AF3EE6A0C1248 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2016-01-25 16:02:20 F64E8F84D184DB9E1DAA06C468A96564 50784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssvagent.exe 2016-01-25 16:02:20 D2702A2D5C98EB6E2524251099856954 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\servertool.exe 2016-01-25 16:02:20 B562AA86D55096C033BD0CE39BAEE6E7 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\tnameserv.exe 2016-01-25 16:02:20 7E18299A2B425FB60E47E11DF13CD43E 159328 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\unpack200.exe 2016-01-25 16:02:19 DFF3A99FE7DF7896A952B758A534364D 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmiregistry.exe 2016-01-25 16:02:19 8F6A3DF8AEC9E79BF83472783C3EE86F 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmid.exe 2016-01-25 16:02:18 A12B125D9D3CF87944E7E7A1BA0ED2A3 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\policytool.exe 2016-01-25 16:02:18 72A41AFF0F7041FEA03914E157C2E22E 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\pack200.exe 2016-01-25 16:02:18 4A94B0D6D2322581E0D8C6749AA5EA35 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\orbd.exe 2016-01-25 16:02:17 E1CCCE3EF4323A08240442EE6D8F9F23 76896 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2launcher.exe 2016-01-25 16:02:17 5684DB15C4FDDD66CB41A238586C229E 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\klist.exe 2016-01-25 16:02:17 51FDBC4B82654F534D8AF5F39AE249DD 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\keytool.exe 2016-01-25 16:02:17 3B25D8E78E7DC350FF489E814C8302FE 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\kinit.exe 2016-01-25 16:02:17 041F2531B37C13CE5211B860DF5EFC64 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\ktab.exe 2016-01-25 16:02:14 C1A4EED6CE27B89E3CF63839DDE14D98 278624 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaws.exe 2016-01-25 16:02:14 6F93569D77CB789727C4E0F33F934741 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\jjs.exe 2016-01-25 16:02:14 3C30DF6FF0EEA713F1F4D251696B93A7 191584 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaw.exe 2016-01-25 16:02:13 F9B4CC285D23A3CC144C5E2EB89413A9 68192 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\javacpl.exe 2016-01-25 16:02:13 D317A632CFEE0ED03AAAF884B503421A 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\java-rmi.exe 2016-01-25 16:02:13 7F39A458F3F444973AF0EEE1035D533A 30816 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\jabswitch.exe 2016-01-25 16:02:13 099E74EDE92C0B07E85AF3EE6A0C1248 191072 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\bin\java.exe 2016-01-25 15:52:44 C8DC6BB043E7E3B05BF0A95949E9B810 43871968 ----a-w- C:\ProgramData\Garmin\Core Update Service\APP-express-windows-4.1.13.0\GarminExpressInstaller.exe 2016-01-24 15:32:57 DECDE1095EE525594EDEEC63491321DD 4023632 ----a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe 2016-01-24 15:32:57 CE2B98E361B709EA1CBA78DB7B2EE784 1258320 ----a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\unins000.exe === C: other files == 2016-01-28 18:23:37 CC5B75D4A24E7493408510D061DF51AA 285696 ----a-w- C:\Windows\System32\drivers\atikmpag.sys 2016-01-28 18:23:37 91890B3670C129E2B3466D2AFAE05EAC 7884288 ----a-w- C:\Windows\System32\drivers\atikmdag.sys 2016-01-28 18:22:52 C9ED5573621D847D77FB0BB1F39ECD69 2855337 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.22 00\ati2mtag_Manhattan_oem9.inf_{4D36E968-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:03:01 C98375D19F9E9966F6201BAE65FB3728 1800832 ----a-w- C:\Windows\System32\drivers\snp2uvc.sys 2016-01-28 18:03:01 3D35D7F8A91FA5127EE052BE41BD87D3 35328 ----a-w- C:\Windows\System32\drivers\sncduvc.sys 2016-01-28 18:02:58 7867CACBF7B23AD04F5D18657BF15FA2 129224 ----a-w- C:\Windows\System32\drivers\L1C62x64.sys 2016-01-28 18:02:56 6E76CFA02D7EBE9DBB5E8C60CC23CAA1 17136 ----a-w- C:\Windows\System32\drivers\jmccgp.sys 2016-01-28 18:02:54 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\Windows\System32\drivers\amdkmpfd.sys 2016-01-28 18:02:53 3AD0ED8B19CD76D2254DE5FB298E3C26 521728 ----a-w- C:\Windows\System32\drivers\stwrt64.sys 2016-01-28 18:02:45 6A8BE7EF08F3AE3B81555788D978A43A 4162560 ----a-w- C:\Windows\System32\drivers\athrx.sys 2016-01-28 18:02:43 36779BF5739484CBE11F474A740E9B78 104984 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys 2016-01-28 18:02:40 0E69BB6B6535300BE5D1E2CD47CF4BE0 444088 ----a-w- C:\Windows\System32\drivers\ETD.sys 2016-01-28 18:02:38 B6494E42EAF0DD8AE0A21D8E9823BFCA 17992 ----a-w- C:\Windows\System32\drivers\ATKACPI.SYS 2016-01-28 18:02:37 79406629C94FBB2E86EF403BD0560D4F 165952 ----a-w- C:\Windows\System32\drivers\Impcd.sys 2016-01-28 18:02:37 30421707439B3F60B2CC248196162DCA 67392 ----a-w- C:\Windows\System32\drivers\EtmDevPch.sys 2016-01-28 18:02:25 F70B2887AA4D32DDBA781443A0A7D953 31464 ----a-w- C:\Windows\System32\drivers\ETDSMBus.sys 2016-01-28 18:01:57 2E77A08168163296DBD06D53CF42099F 39603 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\MSISADRV_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:56 F2F6D12F840B600063BD3961798DFF48 129698 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\PCI_DRV_ROOT_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:56 BF2F1DBF8D75AC77C5491A62D8C0CD15 54338 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\Composite.Dev.NT_usb.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip 2016-01-28 18:01:56 25C2EF54558E0257A1580E5225A40D8A 2590571 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\SN.USBVideo.w7x64_oem16.inf_{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}.zip 2016-01-28 18:01:56 0FC58BA3EDAAB3FE56D626A41F3A87B2 60208 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\L1C.DisS5.ndi_oem14.inf_{4D36E972-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:54 F6B992F43B5647C9B5D079621A94B2ED 82598 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\HdAudModel_oem10.inf_{4D36E96C-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:54 4FB44F407B3F038BB18F080E76C5DC30 65227 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\Impcd_oem12.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:54 46AFF7F1763D227995BF04A8A08016E3 58649 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\PS2_Inst_msmouse.inf_{4D36E96F-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:54 23D90EA5DA9BD4DE680FE31BFF6FC07A 13244 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\INTEL_USB2_CTTB.NT_oem6.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip 2016-01-28 18:01:54 195A203ACEBA3612FD7F1088ED4E4F5F 14377 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\DriverInstall_oem13.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 18:01:53 7AF801A85EF7682E787B2A03BEFBC261 313211 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\INSTALL_6510_VISTA_oem21.inf_{4D36E979-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:47 C1199827017C8BC6FE279EF114E4E2F0 39629 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PCI_DRV_oem7.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:47 2E77A08168163296DBD06D53CF42099F 39603 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\MSISADRV_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:46 F2F6D12F840B600063BD3961798DFF48 129698 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PCI_DRV_ROOT_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:46 BF2F1DBF8D75AC77C5491A62D8C0CD15 54338 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\Composite.Dev.NT_usb.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip 2016-01-28 17:45:46 25C2EF54558E0257A1580E5225A40D8A 2590571 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\SN.USBVideo.w7x64_oem16.inf_{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}.zip 2016-01-28 17:45:46 0FC58BA3EDAAB3FE56D626A41F3A87B2 60208 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\L1C.DisS5.ndi_oem14.inf_{4D36E972-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:44 F6B992F43B5647C9B5D079621A94B2ED 82598 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\HdAudModel_oem10.inf_{4D36E96C-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:44 46AFF7F1763D227995BF04A8A08016E3 58649 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PS2_Inst_msmouse.inf_{4D36E96F-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:44 23D90EA5DA9BD4DE680FE31BFF6FC07A 13244 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\INTEL_USB2_CTTB.NT_oem6.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip 2016-01-28 17:45:44 195A203ACEBA3612FD7F1088ED4E4F5F 14377 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\DriverInstall_oem13.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:43 C9ED5573621D847D77FB0BB1F39ECD69 2855337 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\ati2mtag_Manhattan_oem9.inf_{4D36E968-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:43 4FB44F407B3F038BB18F080E76C5DC30 65227 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\Impcd_oem12.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:42 C1199827017C8BC6FE279EF114E4E2F0 39629 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\NO_DRV_oem7.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip 2016-01-28 17:45:42 7AF801A85EF7682E787B2A03BEFBC261 313211 ----a-w- C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\INSTALL_6510_VISTA_oem21.inf_{4D36E979-E325-11CE-BFC1-08002BE10318}.zip 2016-01-25 16:02:22 61351FF4B83204E6477FBBCB7107B919 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_71\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-1370270954-3853536632-1707261573-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe" "HP Photosmart 6510 series (NET)"="C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN192413BJ05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RemoteControl9"="C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" "BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" "ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" "HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" "SSDMonitor"="C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe" "HP Photosmart 6510 series (NET)"="C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN192413BJ05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1" "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" "Trend Micro Client Framework"="C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" "Platinum"="C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe 1" "snp2uvc"="C:\Windows\vsnp2uvc.exe" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" "hkey"="HKLM" "item"="Adobe Reader Speed Launcher" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector] "command"="C:\\Windows\\AsScrPro.exe" "hkey"="HKLM" "item"="ASUS Screen Saver Protector" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS WebStorage] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ASUS WebStorage" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\ASUS\\ASUS WebStorage\\SERVICE\\AsusWSService.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BCSSync" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer] "command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\"" "hkey"="HKLM" "item"="CLMLServer" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Software Update" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OfficeSyncProcess] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="OfficeSyncProcess" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\MSOSYNC.EXE\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateLBPShortCut] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UpdateLBPShortCut" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\CyberLink\\LabelPrint\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\LabelPrint\" UpdateWithCreateOnce \"Software\\CyberLink\\LabelPrint\\2.5\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateP2GoShortCut] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UpdateP2GoShortCut" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\Power2Go\" UpdateWithCreateOnce \"SOFTWARE\\CyberLink\\Power2Go\\6.0\"" ==== Startup Folders ====================== 2010-07-30 12:40:48 2617 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [20/01/2016 09:49] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 22:24] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 22:24] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe] "C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe] "C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe] "C:\Windows\SysNative\tasks\ASUSControlDeck" [C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 6510 series" ["C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{ACBF2006-E18D-4ED9-AD03-FB89797C06B2}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\WC3" [C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe] "C:\Windows\SysNative\tasks\Auslogics\Driver Updater\Start Driver Updater ?n logon" [C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "tmbepff@trendmicro.com"="C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\firefoxextension" [18/01/2016 20:59] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}"="C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension" [18/01/2016 21:00] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dflinnddekagfkncpgojoppgnppfkbkj - No path found[] ohhcpmplhhiiaoiddkfboafbhiknefdf - No path found[] Google Docs - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Docs Offline - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox HKLM\Wow6432Node\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC HKCU\SearchScopes\{0AD84B7F-0EDD-4AD3-9CA7-CA44C39EAF48} - https://www.google.com/search?q={searchTerms} ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1 deleted successfully ==== HijackThis Entries ====================== O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Trend Micro Netwerkfilter-invoegtoepassing - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Trend Micro Bescherming voor IE - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\TmBpIe32.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll O3 - Toolbar: Trend Micro Security Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe O4 - HKCU\..\Run: [HP Photosmart 6510 series (NET)] "C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN192413BJ05QB:NW" -scfn "HP Photosmart 6510 series (NET)" -AutoStart 1 O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" O4 - Global Startup: FancyStart daemon.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://help.eset.com (HKLM) O15 - ESC Trusted Zone: http://help.eset.com (HKLM) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\TmBpIe32.dll O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d306373afa94d1ce\STacSV64.exe O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Christ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Christ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Christ\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=737 folders=87 66898534 bytes) ==== Empty Temp Folders ====================== C:\Users\Christ\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Christ\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 30/01/2016 at 11:46:00,90 ======================