Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Christ on za 30/01/2016 at 13:29:06,72.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Christ\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== Older Logs ======================

C:\zoek-results2016-01-25-164324.log	61434 bytes
C:\zoek-results2016-01-30-104600.log	91767 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Windows\vsnp2uvc.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe
C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe
C:\Users\Christ\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\BSD deleted

==== System Specs ======================

Operating System: Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 64-bits
Manufacturer: ASUSTeK Computer Inc.         - Model: K72Jr
Install Date: 22/12/2010 16:38:56
Last Boot: 30/01/2016 11:44:33
Processor: Intel(R) Core(TM) i5 CPU       M 450  @ 2.40GHz
Number of Processors: 4
Work Station
Bootmode: Normal boot
Total RAM: 3948 MB (free 937 MB - 23)
Computername: CHRIST-PC
Domain: WORKGROUP
User: Christ (Administrator account)
Local Disk:        C:\ - NTFS - 74 GB (free 1 GB)
Local Disk:        D:\ - NTFS - 194 GB (free 190 GB)
CD \ DVD Drive:    E:\ 
Local Disk:        F:\ - NTFS - 149 GB (free 148 GB)
Local Disk:        Q:\ -  -  GB (free  GB)
Bootdevice: \Device\HarddiskVolume1
Windows update: 
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

AV: Trend Micro Maximum Security *Disabled/Updated* {8242D66F-41BD-4049-C2E6-E578E73B62A0}
SP: Trend Micro Maximum Security *Disabled/Updated* {3923378B-6787-4FC7-F856-DE0A9CBC281D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Internet Explorer Version: 11.0.9600.18163 
Google Chrome version: 48.0.2564.97
Adobe Reader version: 9.5.2.295
Sun Java version: 1.8.0_71 (32-bit) 
Sun Java version: 1.8.0_71 (64-bit) 
Shockwave Player version: 11.6.1r629

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-01-28 18:23:41	53E8269C811E750861B1C6E4E67B86C9	22190	----a-w-	C:\Windows\atiogl.xml
2016-01-28 18:03:01	D5C19842C2271327CA20511C30FFEED3	909824	----a-w-	C:\Windows\vsnp2uvc.exe
2016-01-28 18:03:00	7424D55F53F6BB055F1AA0936BE0CDE7	2401307	----a-w-	C:\Windows\snuninst.exe
2016-01-28 18:03:00	67FAEAC1D6FD7B0FD0D5B5421AD82630	13021	----a-w-	C:\Windows\snp2uvc.src
2016-01-27 21:28:42	E5AB8DE4F8FC81672927DB0BAEA9C9F2	399360	----a-w-	C:\Windows\RegBootClean64.exe
2016-01-27 19:32:57	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2016-01-27 19:32:57	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2016-01-27 19:32:57	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2016-01-27 19:32:57	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2016-01-27 19:32:57	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
====== C:\Users\Christ\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2016-01-28 18:23:46	CD818B339D78533D145F95FDB2E95E80	30720	----a-w-	C:\Windows\SysWOW64\atiuxpag.dll
2016-01-28 18:23:46	5B78BBFD3A650A7F51C581D82CD2FE53	278528	----a-w-	C:\Windows\SysWOW64\Oemdspif.dll
2016-01-28 18:23:45	DB9AC8D10E1EBF7D1D6EEE26B4765029	614400	----a-w-	C:\Windows\SysWOW64\atiumdva.cap
2016-01-28 18:23:45	BA9650F6D1EA38A271D3D172AAC02443	3460096	----a-w-	C:\Windows\SysWOW64\atiumdva.dll
2016-01-28 18:23:45	520237C4CAD1B3AD456C47F735F633BD	4077568	----a-w-	C:\Windows\SysWOW64\atiumdag.dll
2016-01-28 18:23:43	EB3B78CD570DA9CE62AD528383E957D7	356352	----a-w-	C:\Windows\SysWOW64\atipdlxx.dll
2016-01-28 18:23:43	95E82BC523D7594B114F5CE0B1726BC9	28672	----a-w-	C:\Windows\SysWOW64\atiu9pag.dll
2016-01-28 18:23:42	9E11B96A2051A336ACD6DBCCD918B5F4	2857	----a-w-	C:\Windows\SysWOW64\atipblag.dat
2016-01-28 18:23:42	68AE8563AA2A6C0CC1D5B76F8BA8F45A	16201728	----a-w-	C:\Windows\SysWOW64\atioglxx.dll
2016-01-28 18:23:37	3F0321C798E1D9672809F3F0091581D5	52736	----a-w-	C:\Windows\SysWOW64\atimpc32.dll
2016-01-28 18:23:37	3F0321C798E1D9672809F3F0091581D5	52736	----a-w-	C:\Windows\SysWOW64\amdpcom32.dll
2016-01-28 18:23:36	BEEB0F4767616A9E7D57E0A8D4F7D97B	12800	----a-w-	C:\Windows\SysWOW64\atiglpxx.dll
2016-01-28 18:23:36	6E3EF66C2B57EAE818981AFC46BD8B8F	19968	----a-w-	C:\Windows\SysWOW64\atigktxx.dll
2016-01-28 18:23:34	3F7ABDFD36F103E7F0EB3A3D11A3D18D	3953152	----a-w-	C:\Windows\SysWOW64\atidxx32.dll
2016-01-28 18:23:33	B0CFC1C60E167CFF88C40340BFBC334F	46080	----a-w-	C:\Windows\SysWOW64\aticalrt.dll
2016-01-28 18:23:33	6A2742AC8E6B11C0A9F225622BAF6E44	536576	----a-w-	C:\Windows\SysWOW64\aticfx32.dll
2016-01-28 18:23:32	CFB664F76295CCFC8821FD9653CB3F1B	44032	----a-w-	C:\Windows\SysWOW64\aticalcl.dll
2016-01-28 18:23:32	960000BD90BC30B50CBA20E1D20E76C5	4407808	----a-w-	C:\Windows\SysWOW64\aticaldd.dll
2016-01-28 18:23:31	F8213548C37C96AD64B4A476CD240F5E	241664	----a-w-	C:\Windows\SysWOW64\atiadlxy.dll
2016-01-28 18:23:31	42E5498D19344C1B69DDCBB2BE5DE5C5	43520	----a-w-	C:\Windows\SysWOW64\ati2edxx.dll
2016-01-28 18:03:01	24744AB6647B336FD2738F71DA6AD7D6	307712	----a-w-	C:\Windows\SysWOW64\vsnp2uvc.dll
2016-01-28 18:02:52	B15DE658E8BB193D27377D2D741B0448	74064	----a-w-	C:\Windows\SysWOW64\sfcom.dll
2016-01-25 16:02:44	9BE834EEA24E39F5ED5069A560F41A40	97888	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-17 17:01:20	4489D5077C5D2396E3A94D652ADAE1CA	14336	----a-w-	C:\Windows\SysWOW64\fixmapi.exe
2016-01-17 17:01:20	2BB34CC2D6DF7194F46C6508589EF8FD	76800	----a-w-	C:\Windows\SysWOW64\mapistub.dll
2016-01-17 17:01:20	2BB34CC2D6DF7194F46C6508589EF8FD	76800	----a-w-	C:\Windows\SysWOW64\mapi32.dll
2016-01-17 17:00:58	D1450810490EB170A182C4AC915CB87C	1620992	----a-w-	C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-17 17:00:58	3CC0EF43C256D0A28C908F36AD06963D	970240	----a-w-	C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-17 17:00:57	EDCAA72A69E36517F1493F09B8A834F7	829952	----a-w-	C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-17 17:00:57	EDB8F80672DBF24C6C522A29F5854F14	153600	----a-w-	C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-17 17:00:57	B049A75BD074FC465D2BCE2BF5B15D75	3209728	----a-w-	C:\Windows\SysWOW64\mf.dll
2016-01-17 17:00:57	A0448DC7978E550FE64B9A984522B963	815616	----a-w-	C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-17 17:00:57	96FF617934E6A87AA810719D1D911DA9	541184	----a-w-	C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-17 17:00:57	7368176B23E9BE5D23ED9BFE1D58AC0C	902144	----a-w-	C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-17 17:00:57	62851F0D13AD06F0042C8109E680421F	739328	----a-w-	C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-17 17:00:56	FEAEA5182DB9072EBD493466F8608EB8	1568768	----a-w-	C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-17 17:00:56	B25C60E9ED641AFF18198CBF6C288DB8	740352	----a-w-	C:\Windows\SysWOW64\wmpmde.dll
2016-01-17 17:00:56	89FBB1C25E02767572AB1F136EE8CD04	1329664	----a-w-	C:\Windows\SysWOW64\quartz.dll
2016-01-17 17:00:56	71C9DDA9ED939361C1CA2CE21EA84DBF	665088	----a-w-	C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-17 17:00:56	65EED8B27B02573948434B583DACFB39	489984	----a-w-	C:\Windows\SysWOW64\evr.dll
2016-01-17 17:00:55	92BBFF13DE00F30DABC03CFF59D8678E	609280	----a-w-	C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-17 17:00:55	78E7D511C9FB80ADC9A1DD22CCF66C0E	519680	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2016-01-17 17:00:55	5342DCCA8EA8ED193ACAAD14A5046982	354816	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2016-01-17 17:00:55	2C838797F2F6138EF36C8964487775B9	358400	----a-w-	C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-17 17:00:54	A7FAA81D1622D6AF4467A81B42D30DBE	241152	----a-w-	C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-17 17:00:54	0697FF546D6D70AE7F77EF6398004153	241152	----a-w-	C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-17 17:00:53	D6A767B747F4D58EBDAAD1925DC863FA	206848	----a-w-	C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-17 17:00:53	BE2D4165A6845FEE05CBD36D8B41E518	193536	----a-w-	C:\Windows\SysWOW64\ksproxy.ax
2016-01-17 17:00:53	8A2A7AA90CBA77DD44FBAE713B4B3877	415744	----a-w-	C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-17 17:00:53	7C135C38EC6586F7562CFBC184A514E2	2285056	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-17 17:00:53	6B1BB70E72B573EBDF1235B77DF5706D	1325056	----a-w-	C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-17 17:00:53	5CF623B21998B8F1D081D55910A0BDA7	206848	----a-w-	C:\Windows\SysWOW64\qasf.dll
2016-01-17 17:00:53	24D74CF313DC62C65EEA4726AE2EB3F8	154112	----a-w-	C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-17 17:00:52	BBE4D9B89B3FBC97C0F381C2F9C4ADEF	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2016-01-17 17:00:52	A4C85F362EBB7815676F1CD9CFC5BA59	4608	----a-w-	C:\Windows\SysWOW64\ksuser.dll
2016-01-17 17:00:52	936E6F6F76136BC73B13D25A254BC84B	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2016-01-17 17:00:52	5DCE986C8D7E91B455FB3D57BF955A2A	79872	----a-w-	C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-17 17:00:52	4FBCDC326769C31CB283981A51C867F3	53248	----a-w-	C:\Windows\SysWOW64\mfvdsp.dll
2016-01-17 17:00:52	41BAC1A440EAA15AD4CC15B0C7870AB0	103424	----a-w-	C:\Windows\SysWOW64\mfps.dll
2016-01-17 17:00:51	FEB2B13697D1C482D84FB626A0F1F73A	2048	----a-w-	C:\Windows\SysWOW64\mferror.dll
2016-01-17 17:00:41	49FBB053E3AC19EEE92AE8492CDA7E91	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2016-01-17 17:00:41	18B231ACA137116CF16DBE3EBD7FDB5D	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-17 17:00:40	D47060A0923B50FB9E4DD5D9DE0C7402	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2016-01-17 17:00:40	CA0F8D2342A719DEA69C7840B0BB5F4B	2280448	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2016-01-17 17:00:40	C5B72E7048DEEE1B264D7155C77241C5	341192	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2016-01-17 17:00:40	B26FB4205FDB1542166C1D8D7D1968C0	279040	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2016-01-17 17:00:40	AB90455CBD34BDE95F463C02C4D3FF50	1311744	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2016-01-17 17:00:40	A786A11EE4C05BC3AE924344F10275DE	496640	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2016-01-17 17:00:40	67527FD222AD6842F98A733DF52C8416	130048	----a-w-	C:\Windows\SysWOW64\occache.dll
2016-01-17 17:00:40	3C9399B72F7FFB9EE63BB173B481340E	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-17 17:00:40	06CEABA53DA48B45C2B23F52C8C9EA72	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-17 17:00:39	D120251F43699D6C08E13950C3C72978	20367360	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2016-01-17 17:00:39	8E5DD507EC43B5C738EB0289A9663670	687104	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2016-01-17 17:00:38	DAEFD0F03CA94242ACB5C3C1359176D3	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2016-01-17 17:00:38	D1348E7209031F20BC8864DA8CA2F955	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2016-01-17 17:00:38	CFA5159B0C90A82D28314571E8B64775	416256	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2016-01-17 17:00:38	C5BF6D661A8EFB996AD5E4B88FFBD7FD	476160	----a-w-	C:\Windows\SysWOW64\ieui.dll
2016-01-17 17:00:38	9DA0FD6D5B8E2FAD8967A617FD142C6D	2050560	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2016-01-17 17:00:38	862FF89AEF127D001ADBF75095D5ECB1	12856320	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2016-01-17 17:00:38	83F409B2EC14007F6D7E2EA485E6B7D9	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2016-01-17 17:00:38	73C47A23B212481ABF01924B5C74C140	663552	----a-w-	C:\Windows\SysWOW64\jscript.dll
2016-01-17 17:00:37	C2806F9A73E738CDC0718E5D7375BDCB	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2016-01-17 17:00:36	FFA261B9252C71A6910B4F19FDC1EA57	2011136	----a-w-	C:\Windows\SysWOW64\wininet.dll
2016-01-17 17:00:36	D5E9072573EEE8DFEF63CD38640F6D35	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2016-01-17 17:00:36	6D7983A5DFD58E54159D2A03558D4BCE	4610560	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2016-01-17 17:00:36	424300DDB7A1B24199C9B481438F55E9	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2016-01-17 17:00:36	2C10833C0180FEE2AEB6DAEB76FD16E7	341504	----a-w-	C:\Windows\SysWOW64\html.iec
2016-01-17 17:00:36	21784CDE61E83DBCB42DA6C2A374D69A	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-17 17:00:36	0DABE887449758C9E70FFB253A787D44	230400	----a-w-	C:\Windows\SysWOW64\webcheck.dll
2016-01-17 17:00:36	063A81A53400EA55D27AFC77C49A5B4B	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2016-01-17 16:59:27	7FD1DCF4F11C61621AE9279E26FADCF3	312320	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2016-01-17 16:51:49	E8D68D619AAF4E78850DF96B5E53EA03	641536	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2016-01-17 16:51:33	68EC4300B8EF8D7E2B857FABB91F3EFB	552960	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2016-01-17 16:51:32	AFCF45621028D4B6D252B1429A07A530	251392	----a-w-	C:\Windows\SysWOW64\schannel.dll
2016-01-17 16:51:32	A8D4C2B034947F2445F5099E6B3173C8	3938240	----a-w-	C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-17 16:51:31	1615874D0262DA99E565D4FE6F74F7DD	3993536	----a-w-	C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-17 16:51:30	D92212049589535FBB25B806FF8A20C5	665088	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2016-01-17 16:51:29	E149FE1FD23748986551F4E1F5752090	1114112	----a-w-	C:\Windows\SysWOW64\kernel32.dll
2016-01-17 16:51:29	DC9222A325ACFC29E019013505AE33DB	171520	----a-w-	C:\Windows\SysWOW64\wdigest.dll
2016-01-17 16:51:29	CE283E9E462E8FC95F7DC5DAF39D09FA	223232	----a-w-	C:\Windows\SysWOW64\ncrypt.dll
2016-01-17 16:51:29	678A679C5E416A93A71DA3D4241692B0	259584	----a-w-	C:\Windows\SysWOW64\msv1_0.dll
2016-01-17 16:51:28	9E02351A74A6F1FA0F46405583525959	1311768	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2016-01-17 16:51:24	69048141035DEDA0D3AFB28367622130	17408	----a-w-	C:\Windows\SysWOW64\credssp.dll
2016-01-17 16:51:23	ED43479669D84DC8A4385E6AC2CF5A7F	22016	----a-w-	C:\Windows\SysWOW64\secur32.dll
2016-01-17 16:51:23	ECA0236432A1C2E695FD50C3AC4CAFCE	36352	----a-w-	C:\Windows\SysWOW64\cryptbase.dll
2016-01-17 16:51:23	4743B91B77F4B8CEF891ABF00C1E0055	14336	----a-w-	C:\Windows\SysWOW64\ntvdm64.dll
2016-01-17 16:51:23	16A3C3CCDB7ECFD2A72DAFED734B22BB	65536	----a-w-	C:\Windows\SysWOW64\TSpkg.dll
2016-01-17 16:51:21	BC5142F61047916EA677908F98F3A7C2	274944	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2016-01-17 16:51:21	41560C9C4CCA31FC3B0CA192B113F68F	96768	----a-w-	C:\Windows\SysWOW64\sspicli.dll
2016-01-17 16:51:20	BFDCF4944CC86AB5A59B605637C82090	43008	----a-w-	C:\Windows\SysWOW64\srclient.dll
2016-01-17 16:51:18	AE6E759632A0F931CFB626EED55C3E99	50176	----a-w-	C:\Windows\SysWOW64\auditpol.exe
2016-01-17 16:51:18	5A3BF056627B6A7C348FD7AF420741E1	6656	----a-w-	C:\Windows\SysWOW64\apisetschema.dll
2016-01-17 16:51:18	119F46197BABD04BE1E2DDD50E782DAC	5120	----a-w-	C:\Windows\SysWOW64\wow32.dll
2016-01-17 16:51:17	8E3915AF90315E4ED96D4CAE316E8F21	7680	----a-w-	C:\Windows\SysWOW64\instnm.exe
2016-01-17 16:51:17	1418C1A502A9540A4726B4935229E7B9	25600	----a-w-	C:\Windows\SysWOW64\setup16.exe
2016-01-17 16:51:16	B9E8D6170C3325895EF3E1E5699A6F8B	686080	----a-w-	C:\Windows\SysWOW64\adtschema.dll
2016-01-17 16:51:16	59541469E828B311B1E5EEA77E6F6BE7	2048	----a-w-	C:\Windows\SysWOW64\user.exe
2016-01-17 16:51:09	80497842956847806BC7DAD11A18D9D4	146432	----a-w-	C:\Windows\SysWOW64\msaudite.dll
2016-01-17 16:51:07	EA5A0A356F6DB3D4177568FF084AD367	60416	----a-w-	C:\Windows\SysWOW64\msobjs.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-01-30 10:45:00	817578EFC600261D32EDF2752E19104D	408776	----a-w-	C:\Windows\Sysnative\FNTCACHE.DAT
2016-01-28 18:23:46	E8FCDE2FE9DA11039DCF83117806153D	39936	----a-w-	C:\Windows\Sysnative\atiuxp64.dll
2016-01-28 18:23:46	5D8C6A3FEF299BA1D316D83D57EEB679	58880	----a-w-	C:\Windows\Sysnative\coinst.dll
2016-01-28 18:23:44	C05C61B4BA677244995E007E429A6E89	614400	----a-w-	C:\Windows\Sysnative\atiumd6a.cap
2016-01-28 18:23:43	F074DEA7AF05DD64B264357EC4CA71AD	37888	----a-w-	C:\Windows\Sysnative\atiu9p64.dll
2016-01-28 18:23:43	E809997365D241320300B94479E1CF29	120320	----a-w-	C:\Windows\Sysnative\atitmm64.dll
2016-01-28 18:23:42	9E11B96A2051A336ACD6DBCCD918B5F4	2857	----a-w-	C:\Windows\Sysnative\atipblag.dat
2016-01-28 18:23:40	A6BAAA6608A9B00220E9D5C023FC53D1	51200	----a-w-	C:\Windows\Sysnative\ATIODCLI.exe
2016-01-28 18:23:40	463FFBD3350E3EB57F7D5746EBD233CA	332800	----a-w-	C:\Windows\Sysnative\ATIODE.exe
2016-01-28 18:23:40	1AC8A1681D4057C6AE1C75F4143B5E8D	21344256	----a-w-	C:\Windows\Sysnative\atio6axx.dll
2016-01-28 18:23:37	C0DA57E051BC81B9D3B474AFA859464D	12288	----a-w-	C:\Windows\Sysnative\atimuixx.dll
2016-01-28 18:23:37	9BABF60914BA56CC3454F0A8FCB3E810	53760	----a-w-	C:\Windows\Sysnative\atimpc64.dll
2016-01-28 18:23:37	9BABF60914BA56CC3454F0A8FCB3E810	53760	----a-w-	C:\Windows\Sysnative\amdpcom64.dll
2016-01-28 18:23:36	DD9F83857C8135FD63C352DDF0C47748	21504	----a-w-	C:\Windows\Sysnative\atig6txx.dll
2016-01-28 18:23:36	BEEB0F4767616A9E7D57E0A8D4F7D97B	12800	----a-w-	C:\Windows\Sysnative\atiglpxx.dll
2016-01-28 18:23:36	A8F1A0427E1A7E867EF84A12F6628E75	224342	----a-w-	C:\Windows\Sysnative\atiicdxx.dat
2016-01-28 18:23:35	869D5CB7A9DE68B3F9F3562BA459D4CC	14848	----a-w-	C:\Windows\Sysnative\atig6pxx.dll
2016-01-28 18:23:35	5C6DA443FBB66E517F34A46A7961FE2C	59392	----a-w-	C:\Windows\Sysnative\atiedu64.dll
2016-01-28 18:23:33	EAC3CE3FCD141257859066C68A165ED1	51200	----a-w-	C:\Windows\Sysnative\aticalrt64.dll
2016-01-28 18:23:33	5CA08E1783ABD8FA7F65A015157D7CCC	5470720	----a-w-	C:\Windows\Sysnative\aticaldd64.dll
2016-01-28 18:23:33	4BFB62DB0538F886D625AC2075D659FF	628224	----a-w-	C:\Windows\Sysnative\aticfx64.dll
2016-01-28 18:23:32	C0930B70875B29D7D61094CA6942E554	78848	----a-w-	C:\Windows\Sysnative\atiapfxx.blb
2016-01-28 18:23:32	802F8F88956FDFF5CC7136EA230E4F69	44544	----a-w-	C:\Windows\Sysnative\aticalcl64.dll
2016-01-28 18:23:32	00A31A9E5593A48BE90B4271D523205D	143360	----a-w-	C:\Windows\Sysnative\atiapfxx.exe
2016-01-28 18:03:01	F4D9AC50C56D2864EEFE1D43053541E3	376832	----a-w-	C:\Windows\Sysnative\vsnp2uvc.dll
2016-01-28 18:03:01	C2F1C130865BFA1B4B2CCE56335045BF	238592	----a-w-	C:\Windows\Sysnative\csnp2uvc.dll
2016-01-28 18:02:56	D53977F08872B0DECDAE063727288B79	614000	----a-w-	C:\Windows\Sysnative\jmccgpInst.dll
2016-01-28 18:02:52	E63B2CA126FE5ADF9873F4074AD8C973	652288	----a-w-	C:\Windows\Sysnative\stapi64.dll
2016-01-28 18:02:52	B9DECC7E5D4E63E593755584FDFF0C0C	220496	----a-w-	C:\Windows\Sysnative\SFNHK64.DLL
2016-01-28 18:02:52	B75426AC3162B7373219992C2D71BAC3	220160	----a-w-	C:\Windows\Sysnative\staco64.dll
2016-01-28 18:02:52	8E2DB87171BD391A8C248A0944958354	78160	----a-w-	C:\Windows\Sysnative\SFAPO64.DLL
2016-01-28 18:02:52	7CB0B82031D28371E26672053D40AFDB	81232	----a-w-	C:\Windows\Sysnative\SFCOM64.DLL
2016-01-28 18:02:52	7C8C03AAE445A5FF1C35E1483BC8ABD4	1500672	----a-w-	C:\Windows\Sysnative\stapo64.dll
2016-01-28 18:02:52	2DEEA3A7DFD780B3006810BFFBF98F6E	431616	----a-w-	C:\Windows\Sysnative\stcplx64.dll
2016-01-28 18:02:43	5BB06C6266803E3FCA8589281597FAA9	113400	----a-w-	C:\Windows\Sysnative\DelayAPO.dll
2016-01-28 18:02:40	7AB33266D10E7586DD806412CD7E78CB	41144	----a-w-	C:\Windows\Sysnative\ETDCoInstaller.dll
2016-01-28 18:02:34	CE1CF05A6C743DD1ECC6ABFA4D58FE45	622992	----a-w-	C:\Windows\Sysnative\HPWia2_PS6510.dll
2016-01-28 18:02:33	94A13BB15B305F12D6991830E072EE15	2729872	----a-w-	C:\Windows\Sysnative\HPScanTRDrv_PS6510.dll
2016-01-28 18:02:25	6D0F06C8E818C2566FE975DAAC58DC65	1731816	----a-w-	C:\Windows\Sysnative\WdfCoInstaller01009.dll
2016-01-28 18:02:22	561CB3293B381D4E223457202F11E795	331664	----a-w-	C:\Windows\Sysnative\hpinkstsA511LM.dll
2016-01-28 18:02:20	FB0D5236CB97604C26E4ED0EE3561461	2873232	----a-w-	C:\Windows\Sysnative\hpinkinsA511.exe
2016-01-28 18:02:20	AD585A28F3751990456F6FDAD74FEBA5	269712	----a-w-	C:\Windows\Sysnative\hpinkcoiA511.dll
2016-01-18 19:46:10	C007347E699A465BF65FD6047D7199D8	59	----a-w-	C:\Windows\Sysnative\SupportTool.exe.bat
2016-01-17 17:01:21	73DC9840FE246158ECCBC8270847CCBC	91648	----a-w-	C:\Windows\Sysnative\mapistub.dll
2016-01-17 17:01:21	73DC9840FE246158ECCBC8270847CCBC	91648	----a-w-	C:\Windows\Sysnative\mapi32.dll
2016-01-17 17:01:20	EC1E743D4DB6C6EBEDCEB4B4C8E1905A	1164800	----a-w-	C:\Windows\Sysnative\aeinv.dll
2016-01-17 17:01:20	2FFBA1EAE28B45A92E2EA70C61C66F14	17920	----a-w-	C:\Windows\Sysnative\fixmapi.exe
2016-01-17 17:00:59	FF5D49FAA86DBD9033DABC1ABCEA3429	1232896	----a-w-	C:\Windows\Sysnative\WMADMOD.DLL
2016-01-17 17:00:59	5BAEB6D045DA253787F3F1984B712835	1888768	----a-w-	C:\Windows\Sysnative\WMVDECOD.DLL
2016-01-17 17:00:59	27221616A71A25E0B7065926FCC417A7	1307136	----a-w-	C:\Windows\Sysnative\msmpeg2adec.dll
2016-01-17 17:00:58	91E1D7BE8513032B5CCA26AFD0BF0ADC	666112	----a-w-	C:\Windows\Sysnative\WMVSDECD.DLL
2016-01-17 17:00:58	5EA57A6AD59D0785C9A390DF14736899	978944	----a-w-	C:\Windows\Sysnative\WMSPDMOD.DLL
2016-01-17 17:00:58	55C3F89354C086EFFF1C5AAD1E808134	1160192	----a-w-	C:\Windows\Sysnative\MSMPEG2ENC.DLL
2016-01-17 17:00:57	E6A0093D872D860BEA437DF6C666DF89	632320	----a-w-	C:\Windows\Sysnative\evr.dll
2016-01-17 17:00:57	BF9CFEE3D22CE61E5B57C9B8A14F172D	1026048	----a-w-	C:\Windows\Sysnative\wmpmde.dll
2016-01-17 17:00:57	B7CBAC1F4175C1D59B197020268A290B	1153024	----a-w-	C:\Windows\Sysnative\WMADMOE.DLL
2016-01-17 17:00:57	82AB148A0E747855F83F332FC83B254F	1573888	----a-w-	C:\Windows\Sysnative\quartz.dll
2016-01-17 17:00:57	759DF4479855EED0D78249798325D373	1955328	----a-w-	C:\Windows\Sysnative\WMVENCOD.DLL
2016-01-17 17:00:57	60957C2BD1C03CF395006FDBC29D2569	189952	----a-w-	C:\Windows\Sysnative\COLORCNV.DLL
2016-01-17 17:00:57	530B3A72692DB253DE8BB8E8C11468DD	1010688	----a-w-	C:\Windows\Sysnative\mcmde.dll
2016-01-17 17:00:57	3B6466686CDC57453592E6188C3FA4DC	4121600	----a-w-	C:\Windows\Sysnative\mf.dll
2016-01-17 17:00:56	EF7F85527404DF16DEE0ADC611155F0B	1393152	----a-w-	C:\Windows\Sysnative\WMALFXGFXDSP.dll
2016-01-17 17:00:56	DB018B9F38BC34E9AE21C01448E810D2	1575424	----a-w-	C:\Windows\Sysnative\WMSPDMOE.DLL
2016-01-17 17:00:56	B62CEF4A731EE983D440804A2B9DA0B1	642048	----a-w-	C:\Windows\Sysnative\WMVXENCD.DLL
2016-01-17 17:00:56	9A2DCBE0A803AF0DF58D8B3EB041065E	447488	----a-w-	C:\Windows\Sysnative\WMVSENCD.DLL
2016-01-17 17:00:56	3AECE087DB6F663C2B7F538C81C60F64	432128	----a-w-	C:\Windows\Sysnative\mfplat.dll
2016-01-17 17:00:55	D66AE152C1EE7DA2548EC2AF4203025D	653824	----a-w-	C:\Windows\Sysnative\MP4SDECD.DLL
2016-01-17 17:00:55	A64D697EA82530530693AA2102FCA420	292352	----a-w-	C:\Windows\Sysnative\VIDRESZR.DLL
2016-01-17 17:00:55	65BA8738CC3C21C62E746A1DDF04EC74	223744	----a-w-	C:\Windows\Sysnative\MP43DECD.DLL
2016-01-17 17:00:55	2A8760952F296D6208FE5FC358ECD59A	484864	----a-w-	C:\Windows\Sysnative\MFWMAAEC.DLL
2016-01-17 17:00:55	294B7F30B70E0D7867F5EB69E630884A	225792	----a-w-	C:\Windows\Sysnative\RESAMPLEDMO.DLL
2016-01-17 17:00:55	18A11A96B3C1C9E2FD1E6137C8BD4018	224768	----a-w-	C:\Windows\Sysnative\MPG4DECD.DLL
2016-01-17 17:00:54	BEFEDC65A88D44153983455C699F81C8	100864	----a-w-	C:\Windows\Sysnative\MP3DMOD.DLL
2016-01-17 17:00:53	D624DE0DED716916F69D495807C9D787	254464	----a-w-	C:\Windows\Sysnative\qasf.dll
2016-01-17 17:00:53	C62B3D8C69437192AA58AD6E380E4BC3	371712	----a-w-	C:\Windows\Sysnative\qdvd.dll
2016-01-17 17:00:53	ACA7F078CAD7D225D4F2D973C9812225	250880	----a-w-	C:\Windows\Sysnative\ksproxy.ax
2016-01-17 17:00:53	A54381C84F3CEBF4D339778339D141F0	2777088	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2016-01-17 17:00:53	9524717B1B183A066E0516BFF2888D51	70144	----a-w-	C:\Windows\Sysnative\mfvdsp.dll
2016-01-17 17:00:53	2F0BA9348CB8D62FF8C28B4B83D57FA3	378880	----a-w-	C:\Windows\Sysnative\SysFxUI.dll
2016-01-17 17:00:52	8B995A315448ABFC6E41A200079E7DBA	55808	----a-w-	C:\Windows\Sysnative\rrinstaller.exe
2016-01-17 17:00:52	777654DB4C306B22A5A54690A258650D	24576	----a-w-	C:\Windows\Sysnative\mfpmp.exe
2016-01-17 17:00:52	6D21051C8EA17C1DD0A6FD07CCAB8232	5120	----a-w-	C:\Windows\Sysnative\ksuser.dll
2016-01-17 17:00:52	6727B79444C3C8362DB4045E86152707	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2016-01-17 17:00:51	A2877C3165FCD229D1BFC9CC4FFC2B2E	2048	----a-w-	C:\Windows\Sysnative\mferror.dll
2016-01-17 17:00:41	FEB22838B5A1EA29FAEBBEEA14107049	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2016-01-17 17:00:41	E8CA48B9CB7F0ACEA28DDDE9EFF22C80	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2016-01-17 17:00:41	16D24DE8CB771F481152CA186814CA16	2887168	----a-w-	C:\Windows\Sysnative\iertutil.dll
2016-01-17 17:00:40	E341F64F351629296178A872C7666620	718336	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2016-01-17 17:00:40	DA52C6C0BA729466416B3F086C97B570	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2016-01-17 17:00:40	5794608757509D090F5B48B0A1F7A192	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2016-01-17 17:00:38	D9A22C7E960A41500D5B76C31D3222D0	1546752	----a-w-	C:\Windows\Sysnative\urlmon.dll
2016-01-17 17:00:38	A32269075B35C5C9C2A3641A0E7AA0A5	315392	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2016-01-17 17:00:38	7A566BAD311137B88DDF444D13C1C594	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2016-01-17 17:00:38	5794E3E7388205B0D7E87D665054A12A	152064	----a-w-	C:\Windows\Sysnative\occache.dll
2016-01-17 17:00:38	4718E9DE3101969567EC0F148BF66006	387784	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2016-01-17 17:00:38	359B81512F7A45213180DD3D821F11BB	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2016-01-17 17:00:38	26509D490CC4DFE3291DC5E3847EBB14	798208	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2016-01-17 17:00:38	20773DBF4A2DC49785831FDA12530A0A	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2016-01-17 17:00:37	CF6B70A265ADA05CC55D57D9DE8B06E0	2123264	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2016-01-17 17:00:37	65CCD789E06B82989596D584D1AE6D46	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2016-01-17 17:00:36	B67D37636216B98F70064C3A2B295EF7	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2016-01-17 17:00:36	7300C7AB7EF1CDE5C19EEB6970C71473	571904	----a-w-	C:\Windows\Sysnative\vbscript.dll
2016-01-17 17:00:35	F66091A35F4810BD501CD7B65778D4B1	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2016-01-17 17:00:35	9C9E498EA2527F96EC7ADDF3634BF624	489984	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2016-01-17 17:00:35	80322AAB422075922A0EA3CFEA35061C	14457856	----a-w-	C:\Windows\Sysnative\ieframe.dll
2016-01-17 17:00:35	65E6158EF33AE88A412D3CEB33A20F47	615936	----a-w-	C:\Windows\Sysnative\ieui.dll
2016-01-17 17:00:34	AC8410A5877FFBC98D1ECFF949A2E0A4	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2016-01-17 17:00:34	9E30C99BBB024E1CFC4B9A387132B0BE	262144	----a-w-	C:\Windows\Sysnative\webcheck.dll
2016-01-17 17:00:34	207D3D17F61029FD0FB7B6DF1244E5E2	817664	----a-w-	C:\Windows\Sysnative\jscript.dll
2016-01-17 17:00:34	0236A801C4907B13E5BADEE62EB3284B	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2016-01-17 17:00:32	F604E67A3B37B21485DEE9CC14AA2AAB	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2016-01-17 17:00:32	8100C63E02EC310C0E8712D6603E3DBA	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2016-01-17 17:00:32	789E93204829D6519F55D5A61586B7B5	6051328	----a-w-	C:\Windows\Sysnative\jscript9.dll
2016-01-17 17:00:32	5F08FC1143F907E990F0E1EB4C8E77F2	417792	----a-w-	C:\Windows\Sysnative\html.iec
2016-01-17 17:00:32	1258BDEE548BCD771DD35485CDD176EA	2487808	----a-w-	C:\Windows\Sysnative\wininet.dll
2016-01-17 17:00:31	FB3047038F1800A0891B4D35F40E4F59	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2016-01-17 17:00:31	DD2AC5827D111001E805C19786D2DE41	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2016-01-17 17:00:31	6AEBA30A9AF45D0C83385F48EC943426	25837568	----a-w-	C:\Windows\Sysnative\mshtml.dll
2016-01-17 16:59:29	F094FCE25E33140B5F7AEE2E5BDF6931	3211264	----a-w-	C:\Windows\Sysnative\win32k.sys
2016-01-17 16:59:27	AD46BED774CF502E9C0100CFC29C1F82	405504	----a-w-	C:\Windows\Sysnative\gdi32.dll
2016-01-17 16:51:49	35A6E891DF89085216F18F5B998D6CB4	879104	----a-w-	C:\Windows\Sysnative\advapi32.dll
2016-01-17 16:51:35	2E4FF62CC7B88ABBF59C242DED7F919F	5572544	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2016-01-17 16:51:35	1E22F3C99BB02A51179F9CCFEE242925	1214464	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2016-01-17 16:51:33	CD2249AEDD225CAB5CC88B40126C987F	344064	----a-w-	C:\Windows\Sysnative\schannel.dll
2016-01-17 16:51:33	6872BBF984E6FA0AA910926D2F127372	1461248	----a-w-	C:\Windows\Sysnative\lsasrv.dll
2016-01-17 16:51:33	35D570D5191EE48A6D5091033C71B7CE	729600	----a-w-	C:\Windows\Sysnative\kerberos.dll
2016-01-17 16:51:31	FE0C67D8D5D54F37B3A92E129A15C03A	1163264	----a-w-	C:\Windows\Sysnative\kernel32.dll
2016-01-17 16:51:31	10DDB11D4451AAB9A32FFCEE8045BA6F	312320	----a-w-	C:\Windows\Sysnative\ncrypt.dll
2016-01-17 16:51:30	28E55B4DA450C29326A25BE29C72FB1B	315392	----a-w-	C:\Windows\Sysnative\msv1_0.dll
2016-01-17 16:51:29	F557804C926BE42B0DCF0CB2AC138156	210432	----a-w-	C:\Windows\Sysnative\wdigest.dll
2016-01-17 16:51:29	D55C59AD1C93B728AB508F4F6529ED8F	86528	----a-w-	C:\Windows\Sysnative\TSpkg.dll
2016-01-17 16:51:28	FAF7892DD731F0649046B3AA3A5166AA	1730496	----a-w-	C:\Windows\Sysnative\ntdll.dll
2016-01-17 16:51:24	CE14A4BBF890A7D4C898CF886D145EC9	215040	----a-w-	C:\Windows\Sysnative\winsrv.dll
2016-01-17 16:51:24	CB2A49FFC4390EC0C757B1FC07A07E17	135680	----a-w-	C:\Windows\Sysnative\sspicli.dll
2016-01-17 16:51:24	B29C53B81C690394A2327AB2609B55FE	28160	----a-w-	C:\Windows\Sysnative\secur32.dll
2016-01-17 16:51:24	928F79CDCE323CFEB221C7D2D539F86A	22016	----a-w-	C:\Windows\Sysnative\credssp.dll
2016-01-17 16:51:24	8645BD647D1ECEB0E6F90E01A4C412EA	43520	----a-w-	C:\Windows\Sysnative\cryptbase.dll
2016-01-17 16:51:23	FA792622268EE423FC5E6AE23FB43599	112640	----a-w-	C:\Windows\Sysnative\smss.exe
2016-01-17 16:51:23	CB0E57424A776C51EF42469064ADBF08	30720	----a-w-	C:\Windows\Sysnative\lsass.exe
2016-01-17 16:51:23	B25B3DE2FA73735074CA62AFEFE4AE47	16384	----a-w-	C:\Windows\Sysnative\ntvdm64.dll
2016-01-17 16:51:23	5124EA325CF0806FFA9514DC11593DA9	28672	----a-w-	C:\Windows\Sysnative\sspisrv.dll
2016-01-17 16:51:22	FACF1586F756E0B154EE6887FA017446	362496	----a-w-	C:\Windows\Sysnative\wow64win.dll
2016-01-17 16:51:22	FA3E172432AFA1A7D43847C7AC58812B	424448	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2016-01-17 16:51:22	5CB16703E4E4203C5B1D0717D16D48D6	503808	----a-w-	C:\Windows\Sysnative\srcore.dll
2016-01-17 16:51:21	7AC830607D940A3DABB8E5EB6EB22DF2	338432	----a-w-	C:\Windows\Sysnative\conhost.exe
2016-01-17 16:51:21	56157CA130B661080B9DC97FE63F6D50	43520	----a-w-	C:\Windows\Sysnative\csrsrv.dll
2016-01-17 16:51:21	2E479BB995A0C130D6FF9F55E7DDA61F	243712	----a-w-	C:\Windows\Sysnative\wow64.dll
2016-01-17 16:51:20	D23C252F866CE3599336D547722B4A9D	13312	----a-w-	C:\Windows\Sysnative\wow64cpu.dll
2016-01-17 16:51:20	499545FF756FA6AFFB4F6679EA88BCB1	50176	----a-w-	C:\Windows\Sysnative\srclient.dll
2016-01-17 16:51:19	5EBDD597DDCD94AE47CEFE6AFE41874A	64000	----a-w-	C:\Windows\Sysnative\auditpol.exe
2016-01-17 16:51:19	50AC63ADB9F92D5141703986C66AB61C	296960	----a-w-	C:\Windows\Sysnative\rstrui.exe
2016-01-17 16:51:18	A582574464654555D17338C6657EF69B	6656	----a-w-	C:\Windows\Sysnative\apisetschema.dll
2016-01-17 16:51:16	BBF3E0FAFE3179FFED231D2266247476	686080	----a-w-	C:\Windows\Sysnative\adtschema.dll
2016-01-17 16:51:09	F6BD25ED678D2A5866FFC3355EC1E2C2	146432	----a-w-	C:\Windows\Sysnative\msaudite.dll
2016-01-17 16:51:07	377FEC833CC924E83029A83F99230663	60416	----a-w-	C:\Windows\Sysnative\msobjs.dll
====== C:\Windows\Sysnative\drivers =====
2016-01-28 18:23:37	CC5B75D4A24E7493408510D061DF51AA	285696	----a-w-	C:\Windows\Sysnative\drivers\atikmpag.sys
2016-01-28 18:23:37	91890B3670C129E2B3466D2AFAE05EAC	7884288	----a-w-	C:\Windows\Sysnative\drivers\atikmdag.sys
2016-01-28 18:23:31	EA5C066D22C3B1775722CA1E4B9F2B09	53248	----a-w-	C:\Windows\Sysnative\drivers\ati2erec.dll
2016-01-28 18:03:11	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_ETDSMBus_01009.Wdf
2016-01-28 18:03:01	C98375D19F9E9966F6201BAE65FB3728	1800832	----a-w-	C:\Windows\Sysnative\drivers\snp2uvc.sys
2016-01-28 18:03:01	3D35D7F8A91FA5127EE052BE41BD87D3	35328	----a-w-	C:\Windows\Sysnative\drivers\sncduvc.sys
2016-01-28 18:02:58	7867CACBF7B23AD04F5D18657BF15FA2	129224	----a-w-	C:\Windows\Sysnative\drivers\L1C62x64.sys
2016-01-28 18:02:56	6E76CFA02D7EBE9DBB5E8C60CC23CAA1	17136	----a-w-	C:\Windows\Sysnative\drivers\jmccgp.sys
2016-01-28 18:02:54	8A375CB3B6D1A56A2AEEE72A5F1D0926	36096	----a-w-	C:\Windows\Sysnative\drivers\amdkmpfd.sys
2016-01-28 18:02:53	3AD0ED8B19CD76D2254DE5FB298E3C26	521728	----a-w-	C:\Windows\Sysnative\drivers\stwrt64.sys
2016-01-28 18:02:45	6A8BE7EF08F3AE3B81555788D978A43A	4162560	----a-w-	C:\Windows\Sysnative\drivers\athrx.sys
2016-01-28 18:02:43	36779BF5739484CBE11F474A740E9B78	104984	----a-w-	C:\Windows\Sysnative\drivers\AtihdW76.sys
2016-01-28 18:02:40	0E69BB6B6535300BE5D1E2CD47CF4BE0	444088	----a-w-	C:\Windows\Sysnative\drivers\ETD.sys
2016-01-28 18:02:38	B6494E42EAF0DD8AE0A21D8E9823BFCA	17992	----a-w-	C:\Windows\Sysnative\drivers\ATKACPI.SYS
2016-01-28 18:02:37	79406629C94FBB2E86EF403BD0560D4F	165952	----a-w-	C:\Windows\Sysnative\drivers\Impcd.sys
2016-01-28 18:02:37	30421707439B3F60B2CC248196162DCA	67392	----a-w-	C:\Windows\Sysnative\drivers\EtmDevPch.sys
2016-01-28 18:02:25	F70B2887AA4D32DDBA781443A0A7D953	31464	----a-w-	C:\Windows\Sysnative\drivers\ETDSMBus.sys
2016-01-18 19:56:34	F21BD7A3E2002A88AB471BE42141C783	116576	----a-w-	C:\Windows\Sysnative\drivers\tmeevw.sys
2016-01-18 19:56:34	D8037AD74BD8E5C85514C78841DF72CA	416608	----a-w-	C:\Windows\Sysnative\drivers\tmnciesc.sys
2016-01-18 19:56:24	FBB30611F63A97C14C16CC087579DB25	99632	----a-w-	C:\Windows\Sysnative\drivers\tmevtmgr.sys
2016-01-18 19:56:24	CE526F14D13627B7A4A0035AB4238841	324912	----a-w-	C:\Windows\Sysnative\drivers\tmcomm.sys
2016-01-18 19:56:24	462CE5BC5B8C22C459B98A9400F386FA	133424	----a-w-	C:\Windows\Sysnative\drivers\tmactmon.sys
2016-01-18 19:56:22	C0DE7021878A12EA937E1E81BBA61CE2	91536	----a-w-	C:\Windows\Sysnative\drivers\TMUMH.sys
2016-01-18 19:56:21	E5E5DB2B3B162F074556F992A904827F	59712	----a-w-	C:\Windows\Sysnative\drivers\TMEBC64.sys
2016-01-18 19:56:18	FE351337CE2C7A50AECFB3871C8E7428	116528	----a-w-	C:\Windows\Sysnative\drivers\tmusa.sys
2016-01-17 17:00:52	C51B07394A087DA666A410DBFD26663A	116736	----a-w-	C:\Windows\Sysnative\drivers\drmk.sys
2016-01-17 17:00:52	647599CAE8CA0EF2FB09C4B150BC97FF	230400	----a-w-	C:\Windows\Sysnative\drivers\portcls.sys
2016-01-17 17:00:52	26FE888505E5A945B0536AF9A2A27A6F	5632	----a-w-	C:\Windows\Sysnative\drivers\drmkaud.sys
2016-01-17 16:51:30	28E75F316CCCD79337E4957C53017D4B	154560	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2016-01-17 16:51:27	0F776895884B8DC430A307D57FD867BB	95680	----a-w-	C:\Windows\Sysnative\drivers\ksecdd.sys
2016-01-17 16:51:23	A572BEF41F3C55D7DAF24D2340C91FEC	290816	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2016-01-17 16:51:23	32B85C4923D895B2FB35821A799BA38D	159232	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2016-01-17 16:51:21	C49F1C4CA74FC52AFB2E892D8E50EA39	129024	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
====== C:\Windows\Tasks ======
2016-01-28 18:21:23	--------	d-----w-	C:\Windows\Sysnative\Tasks\Auslogics
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-01-28 17:44:46	--------	d-----w-	C:\Program Files\Defraggler
2016-01-18 19:41:46	--------	d-----w-	C:\Program Files\Trend Micro
======= C:\PROGRA~2 =====
2016-01-28 17:42:12	--------	d-----w-	C:\PROGRA~2\Auslogics
2016-01-28 16:37:04	--------	d-----w-	C:\PROGRA~2\Wise
2016-01-27 15:44:34	--------	d-----w-	C:\PROGRA~2\HD Tune
2016-01-25 16:04:15	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
2016-01-24 15:32:57	--------	d-----w-	C:\PROGRA~2\JAM Software
2016-01-18 19:51:31	--------	d-----w-	C:\PROGRA~2\ESET
======= C: =====
====== C:\Users\Christ\AppData\Roaming ======
2016-01-30 10:47:03	6D0D6FF2E608121A13716FEF8344FC97	109296	----a-w-	C:\Users\Christ\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-30 10:40:39	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp
2016-01-30 10:40:39	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2016-01-30 10:40:39	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2016-01-30 10:40:39	--------	d-----w-	C:\Users\Public\AppData\Local\temp
2016-01-30 10:40:39	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2016-01-30 10:40:39	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2016-01-30 10:40:39	--------	d-----w-	C:\Users\Christ\AppData\Local\Temp
2016-01-28 16:37:16	--------	d-----w-	C:\Users\Christ\AppData\Roaming\Wise Disk Cleaner
2016-01-27 19:08:51	--------	d-----w-	C:\Windows\serviceprofiles\networkservice\AppData\Roaming\Garmin
2016-01-26 21:29:33	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2016-01-24 15:32:58	--------	d-----w-	C:\Users\Christ\AppData\Roaming\JAM Software
2016-01-18 19:04:16	--------	d-----w-	C:\Users\Christ\AppData\Roaming\Sun
2016-01-18 19:02:15	--------	d-----w-	C:\Users\Christ\AppData\Locallow\Oracle
2016-01-18 11:03:01	--------	d-----w-	C:\Users\Christ\AppData\Local\ElevatedDiagnostics
====== C:\Users\Christ ======
2016-01-28 20:19:22	A677F1A50AD97F33A1668E0559238FE1	1609032	----a-w-	C:\Users\Christ\Downloads\JRT.exe
2016-01-28 18:06:24	--------	d-----w-	C:\ProgramData\SonicFocus
2016-01-28 17:44:47	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2016-01-28 17:44:15	A114EE7EFA1A3DAFE2E98A9B2E589B3F	4527736	----a-w-	C:\Users\Christ\Downloads\dfsetup220.exe
2016-01-28 17:42:25	--------	d-----w-	C:\ProgramData\Auslogics
2016-01-28 17:42:13	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2016-01-28 16:37:05	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Disk Cleaner
2016-01-27 19:49:28	--------	d-----w-	C:\Users\Public\AppData
2016-01-27 15:44:35	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2016-01-27 15:42:54	088812A121E0A9CEB40CE9C808C8A90C	642632	----a-w-	C:\Users\Christ\Pictures\hdtune_255.exe
2016-01-27 04:26:56	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Christ\Desktop\RSITx64.exe
2016-01-27 04:26:14	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Christ\Pictures\RSITx64.exe
2016-01-25 16:02:36	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-24 15:32:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2016-01-18 19:11:52	A29CB0E9475A256BE736072BC526E294	174733552	----a-w-	C:\Users\Christ\Pictures\TTi_10.0_HE_64bit.exe
2016-01-18 19:04:14	--------	d-----w-	C:\Users\Christ\.oracle_jre_usage
2016-01-18 19:03:04	--------	d-----w-	C:\ProgramData\Oracle

====== C: exe-files ==
2016-01-30 09:46:01	DB8D4B390D7B6F725A41BAA41E8D66AB	6070352	----a-w-	C:\Program Files (x86)\Google\Update\Install\{46FA47B4-C28B-4426-A6E2-641B3C282704}\48.0.2564.97_47.0.2526.111_chrome_updater_3stage.exe
2016-01-30 09:46:01	DB8D4B390D7B6F725A41BAA41E8D66AB	6070352	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.97\48.0.2564.97_47.0.2526.111_chrome_updater_3stage.exe
2016-01-28 20:19:22	A677F1A50AD97F33A1668E0559238FE1	1609032	----a-w-	C:\Users\Christ\Downloads\JRT.exe
2016-01-28 18:03:01	D5C19842C2271327CA20511C30FFEED3	909824	----a-w-	C:\Windows\vsnp2uvc.exe
2016-01-28 18:03:00	7424D55F53F6BB055F1AA0936BE0CDE7	2401307	----a-w-	C:\Windows\snuninst.exe
2016-01-28 17:58:28	9F53EF4631EE0EFE6C83C0B7413369FA	677832	----a-w-	C:\Program Files\DIFX\7E6D4DB3DAC3C1A9\dpinst64.exe
2016-01-28 17:44:15	A114EE7EFA1A3DAFE2E98A9B2E589B3F	4527736	----a-w-	C:\Users\Christ\Downloads\dfsetup220.exe
2016-01-28 17:42:13	CC899076058AA33919D8783962266174	3694536	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe
2016-01-28 17:42:13	C548132643BEBE942FD85B173FF95CAC	567240	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\SendDebugLog.exe
2016-01-28 17:42:12	9F53EF4631EE0EFE6C83C0B7413369FA	677832	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\DPInst64.exe
2016-01-28 17:42:12	9D9E63BA730DB426346389AD6D8749D1	1204168	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\unins000.exe
2016-01-28 17:42:12	40654106F68FD8E99E9B28FB96B2D8FF	512456	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\GASender.exe
2016-01-28 17:42:12	02FFD326569A44FF0692CC7D306B18C5	23496	----a-w-	C:\Program Files (x86)\Auslogics\Driver Updater\Downloader.exe
2016-01-28 17:40:52	A48F2B057378524F751A18EA6AA7E680	9140144	----a-w-	C:\Users\Christ\Desktop\Auslogics.Driver.Updater.1.5.0.DC.07.05.2015\driver-updater-setup.exe
2016-01-28 16:37:04	BE358936B9B5E16764E5B05942D3FBB6	3746352	----a-w-	C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe
2016-01-28 16:37:04	B9B2398A66EE8E7C545FA61820A3FAF0	1242944	----a-w-	C:\Program Files (x86)\Wise\Wise Disk Cleaner\unins000.exe
2016-01-28 16:37:04	8CBFE0391EA03C8C1A9D16DCF01F7CB2	1622040	----a-w-	C:\Program Files (x86)\Wise\Wise Disk Cleaner\Assisant.exe
2016-01-27 21:28:42	E5AB8DE4F8FC81672927DB0BAEA9C9F2	399360	----a-w-	C:\Windows\RegBootClean64.exe
2016-01-27 20:18:52	B4656E85333FED69FD85761FDCE8B5D8	1484104	----a-w-	C:\Users\Christ\AppData\Local\Google\Chrome\User Data\SwReporter\5.39.1\software_reporter_tool.exe
2016-01-27 19:32:57	F042EE4C8D66248D9B86DCF52ABAE416	256000	----a-w-	C:\Windows\PEV.exe
2016-01-27 19:32:57	9E05A9C264C8A908A8E79450FCBFF047	80412	----a-w-	C:\Windows\grep.exe
2016-01-27 19:32:57	5E832F4FAF5F481F2EAF3B3A48F603B8	68096	----a-w-	C:\Windows\zip.exe
2016-01-27 19:32:57	0297C72529807322B152F517FDB0A9FC	406528	----a-w-	C:\Windows\SWSC.exe
2016-01-27 19:32:57	0277C027A26428DB64EF4F64F52BB4FD	208896	----a-w-	C:\Windows\MBR.exe
2016-01-27 15:44:35	F8FC2D14DF813CC920A39B3CB7E59CBC	401408	----a-w-	C:\Program Files (x86)\HD Tune\HDTune.exe
2016-01-27 15:44:35	CEFC20D14D9940D53505E9B9769139E7	682266	----a-w-	C:\Program Files (x86)\HD Tune\unins000.exe
2016-01-27 15:42:54	088812A121E0A9CEB40CE9C808C8A90C	642632	----a-w-	C:\Users\Christ\Pictures\hdtune_255.exe
2016-01-27 04:27:13	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\Trend Micro\Christ.exe
2016-01-27 04:26:56	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Christ\Desktop\RSITx64.exe
2016-01-27 04:26:14	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Christ\Pictures\RSITx64.exe
2016-01-25 16:02:45	C1A4EED6CE27B89E3CF63839DDE14D98	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2016-01-25 16:02:45	3C30DF6FF0EEA713F1F4D251696B93A7	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2016-01-25 16:02:45	099E74EDE92C0B07E85AF3EE6A0C1248	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2016-01-25 16:02:20	F64E8F84D184DB9E1DAA06C468A96564	50784	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssvagent.exe
2016-01-25 16:02:20	D2702A2D5C98EB6E2524251099856954	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\servertool.exe
2016-01-25 16:02:20	B562AA86D55096C033BD0CE39BAEE6E7	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\tnameserv.exe
2016-01-25 16:02:20	7E18299A2B425FB60E47E11DF13CD43E	159328	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\unpack200.exe
2016-01-25 16:02:19	DFF3A99FE7DF7896A952B758A534364D	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmiregistry.exe
2016-01-25 16:02:19	8F6A3DF8AEC9E79BF83472783C3EE86F	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\rmid.exe
2016-01-25 16:02:18	A12B125D9D3CF87944E7E7A1BA0ED2A3	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\policytool.exe
2016-01-25 16:02:18	72A41AFF0F7041FEA03914E157C2E22E	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\pack200.exe
2016-01-25 16:02:18	4A94B0D6D2322581E0D8C6749AA5EA35	16480	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\orbd.exe
2016-01-25 16:02:17	E1CCCE3EF4323A08240442EE6D8F9F23	76896	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2launcher.exe
2016-01-25 16:02:17	5684DB15C4FDDD66CB41A238586C229E	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\klist.exe
2016-01-25 16:02:17	51FDBC4B82654F534D8AF5F39AE249DD	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\keytool.exe
2016-01-25 16:02:17	3B25D8E78E7DC350FF489E814C8302FE	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\kinit.exe
2016-01-25 16:02:17	041F2531B37C13CE5211B860DF5EFC64	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\ktab.exe
2016-01-25 16:02:14	C1A4EED6CE27B89E3CF63839DDE14D98	278624	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaws.exe
2016-01-25 16:02:14	6F93569D77CB789727C4E0F33F934741	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jjs.exe
2016-01-25 16:02:14	3C30DF6FF0EEA713F1F4D251696B93A7	191584	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javaw.exe
2016-01-25 16:02:13	F9B4CC285D23A3CC144C5E2EB89413A9	68192	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\javacpl.exe
2016-01-25 16:02:13	D317A632CFEE0ED03AAAF884B503421A	15968	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\java-rmi.exe
2016-01-25 16:02:13	7F39A458F3F444973AF0EEE1035D533A	30816	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\jabswitch.exe
2016-01-25 16:02:13	099E74EDE92C0B07E85AF3EE6A0C1248	191072	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\bin\java.exe
2016-01-25 15:52:44	C8DC6BB043E7E3B05BF0A95949E9B810	43871968	----a-w-	C:\ProgramData\Garmin\Core Update Service\APP-express-windows-4.1.13.0\GarminExpressInstaller.exe
2016-01-24 15:32:57	DECDE1095EE525594EDEEC63491321DD	4023632	----a-w-	C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe
2016-01-24 15:32:57	CE2B98E361B709EA1CBA78DB7B2EE784	1258320	----a-w-	C:\Program Files (x86)\JAM Software\TreeSize Free\unins000.exe
=== C: other files ==
2016-01-28 18:23:37	CC5B75D4A24E7493408510D061DF51AA	285696	----a-w-	C:\Windows\System32\drivers\atikmpag.sys
2016-01-28 18:23:37	91890B3670C129E2B3466D2AFAE05EAC	7884288	----a-w-	C:\Windows\System32\drivers\atikmdag.sys
2016-01-28 18:22:52	C9ED5573621D847D77FB0BB1F39ECD69	2855337	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.22 00\ati2mtag_Manhattan_oem9.inf_{4D36E968-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:03:01	C98375D19F9E9966F6201BAE65FB3728	1800832	----a-w-	C:\Windows\System32\drivers\snp2uvc.sys
2016-01-28 18:03:01	3D35D7F8A91FA5127EE052BE41BD87D3	35328	----a-w-	C:\Windows\System32\drivers\sncduvc.sys
2016-01-28 18:02:58	7867CACBF7B23AD04F5D18657BF15FA2	129224	----a-w-	C:\Windows\System32\drivers\L1C62x64.sys
2016-01-28 18:02:56	6E76CFA02D7EBE9DBB5E8C60CC23CAA1	17136	----a-w-	C:\Windows\System32\drivers\jmccgp.sys
2016-01-28 18:02:54	8A375CB3B6D1A56A2AEEE72A5F1D0926	36096	----a-w-	C:\Windows\System32\drivers\amdkmpfd.sys
2016-01-28 18:02:53	3AD0ED8B19CD76D2254DE5FB298E3C26	521728	----a-w-	C:\Windows\System32\drivers\stwrt64.sys
2016-01-28 18:02:45	6A8BE7EF08F3AE3B81555788D978A43A	4162560	----a-w-	C:\Windows\System32\drivers\athrx.sys
2016-01-28 18:02:43	36779BF5739484CBE11F474A740E9B78	104984	----a-w-	C:\Windows\System32\drivers\AtihdW76.sys
2016-01-28 18:02:40	0E69BB6B6535300BE5D1E2CD47CF4BE0	444088	----a-w-	C:\Windows\System32\drivers\ETD.sys
2016-01-28 18:02:38	B6494E42EAF0DD8AE0A21D8E9823BFCA	17992	----a-w-	C:\Windows\System32\drivers\ATKACPI.SYS
2016-01-28 18:02:37	79406629C94FBB2E86EF403BD0560D4F	165952	----a-w-	C:\Windows\System32\drivers\Impcd.sys
2016-01-28 18:02:37	30421707439B3F60B2CC248196162DCA	67392	----a-w-	C:\Windows\System32\drivers\EtmDevPch.sys
2016-01-28 18:02:25	F70B2887AA4D32DDBA781443A0A7D953	31464	----a-w-	C:\Windows\System32\drivers\ETDSMBus.sys
2016-01-28 18:01:57	2E77A08168163296DBD06D53CF42099F	39603	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\MSISADRV_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:56	F2F6D12F840B600063BD3961798DFF48	129698	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\PCI_DRV_ROOT_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:56	BF2F1DBF8D75AC77C5491A62D8C0CD15	54338	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\Composite.Dev.NT_usb.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip
2016-01-28 18:01:56	25C2EF54558E0257A1580E5225A40D8A	2590571	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\SN.USBVideo.w7x64_oem16.inf_{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}.zip
2016-01-28 18:01:56	0FC58BA3EDAAB3FE56D626A41F3A87B2	60208	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\L1C.DisS5.ndi_oem14.inf_{4D36E972-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:54	F6B992F43B5647C9B5D079621A94B2ED	82598	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\HdAudModel_oem10.inf_{4D36E96C-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:54	4FB44F407B3F038BB18F080E76C5DC30	65227	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\Impcd_oem12.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:54	46AFF7F1763D227995BF04A8A08016E3	58649	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\PS2_Inst_msmouse.inf_{4D36E96F-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:54	23D90EA5DA9BD4DE680FE31BFF6FC07A	13244	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\INTEL_USB2_CTTB.NT_oem6.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip
2016-01-28 18:01:54	195A203ACEBA3612FD7F1088ED4E4F5F	14377	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\DriverInstall_oem13.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 18:01:53	7AF801A85EF7682E787B2A03BEFBC261	313211	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 19.01 00\INSTALL_6510_VISTA_oem21.inf_{4D36E979-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:47	C1199827017C8BC6FE279EF114E4E2F0	39629	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PCI_DRV_oem7.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:47	2E77A08168163296DBD06D53CF42099F	39603	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\MSISADRV_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:46	F2F6D12F840B600063BD3961798DFF48	129698	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PCI_DRV_ROOT_machine.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:46	BF2F1DBF8D75AC77C5491A62D8C0CD15	54338	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\Composite.Dev.NT_usb.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip
2016-01-28 17:45:46	25C2EF54558E0257A1580E5225A40D8A	2590571	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\SN.USBVideo.w7x64_oem16.inf_{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}.zip
2016-01-28 17:45:46	0FC58BA3EDAAB3FE56D626A41F3A87B2	60208	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\L1C.DisS5.ndi_oem14.inf_{4D36E972-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:44	F6B992F43B5647C9B5D079621A94B2ED	82598	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\HdAudModel_oem10.inf_{4D36E96C-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:44	46AFF7F1763D227995BF04A8A08016E3	58649	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\PS2_Inst_msmouse.inf_{4D36E96F-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:44	23D90EA5DA9BD4DE680FE31BFF6FC07A	13244	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\INTEL_USB2_CTTB.NT_oem6.inf_{36FC9E60-C465-11CF-8056-444553540000}.zip
2016-01-28 17:45:44	195A203ACEBA3612FD7F1088ED4E4F5F	14377	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\DriverInstall_oem13.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:43	C9ED5573621D847D77FB0BB1F39ECD69	2855337	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\ati2mtag_Manhattan_oem9.inf_{4D36E968-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:43	4FB44F407B3F038BB18F080E76C5DC30	65227	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\Impcd_oem12.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:42	C1199827017C8BC6FE279EF114E4E2F0	39629	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\NO_DRV_oem7.inf_{4D36E97D-E325-11CE-BFC1-08002BE10318}.zip
2016-01-28 17:45:42	7AF801A85EF7682E787B2A03BEFBC261	313211	----a-w-	C:\ProgramData\Auslogics\Driver Updater\1.x\Backup drivers\28.01.2016 18.45 00\INSTALL_6510_VISTA_oem21.inf_{4D36E979-E325-11CE-BFC1-08002BE10318}.zip
2016-01-25 16:02:22	61351FF4B83204E6477FBBCB7107B919	14130	----a-w-	C:\Program Files (x86)\Java\jre1.8.0_71\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1370270954-3853536632-1707261573-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe"
"HP Photosmart 6510 series (NET)"="C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN192413BJ05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl9"="C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
"BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"SSDMonitor"="C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe"
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Syncables"="C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe"
"HP Photosmart 6510 series (NET)"="C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN192413BJ05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"Trend Micro Client Framework"="C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
"Platinum"="C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe 1"
"snp2uvc"="C:\Windows\vsnp2uvc.exe"
"Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe "
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""
"hkey"="HKLM"
"item"="Adobe Reader Speed Launcher"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS WebStorage]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ASUS WebStorage"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\ASUS\\ASUS WebStorage\\SERVICE\\AsusWSService.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OfficeSyncProcess]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="OfficeSyncProcess"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\MSOSYNC.EXE\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateLBPShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateLBPShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\LabelPrint\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\LabelPrint\" UpdateWithCreateOnce \"Software\\CyberLink\\LabelPrint\\2.5\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateP2GoShortCut]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdateP2GoShortCut"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\MUITransfer\\MUIStartMenu.exe\" \"C:\\Program Files (x86)\\CyberLink\\Power2Go\" UpdateWithCreateOnce \"SOFTWARE\\CyberLink\\Power2Go\\6.0\""


==== Startup Folders ======================

2010-07-30 12:40:48	2617	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [20/01/2016 09:49]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 22:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29/08/2015 22:24]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ASUSControlDeck" [C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 6510 series" ["C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{ACBF2006-E18D-4ED9-AD03-FB89797C06B2}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\WC3" [C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe]
"C:\Windows\SysNative\tasks\Auslogics\Driver Updater\Start Driver Updater ?n logon" [C:\Program Files (x86)\Auslogics\Driver Updater\DriverUpdater.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"tmbepff@trendmicro.com"="C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\firefoxextension" [18/01/2016 20:59]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}"="C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension" [18/01/2016 21:00]

==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dflinnddekagfkncpgojoppgnppfkbkj - No path found[]
ohhcpmplhhiiaoiddkfboafbhiknefdf - No path found[]

Google Docs - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Docs Offline - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
Chrome Web Store Payments - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Christ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
HKLM\Wow6432Node\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{0AD84B7F-0EDD-4AD3-9CA7-CA44C39EAF48} - https://www.google.com/search?q={searchTerms}

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dflinnddekagfkncpgojoppgnppfkbkj deleted successfully

==== HijackThis Entries ======================

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Trend Micro Netwerkfilter-invoegtoepassing - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Trend Micro Bescherming voor IE - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\TmBpIe32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O3 - Toolbar: Trend Micro Security Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [HP Photosmart 6510 series (NET)] "C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN192413BJ05QB:NW" -scfn "HP Photosmart 6510 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1035\9.1.1035\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d306373afa94d1ce\STacSV64.exe
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Christ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Christ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Christ\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=737 folders=87 66900163 bytes)

==== Empty Temp Folders ======================

C:\Users\Christ\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Christ\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 30/01/2016 at 14:26:58,97 ======================