Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by anjav on do 04-02-2016 at 16:11:21,12.
Microsoft Windows 10 Home 10.0.10240  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\anjav\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

4-2-2016 16:12:57 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\anjav\AppData\Local\calibre-cache deleted successfully
C:\Users\anjav\AppData\Local\CrashDumps deleted successfully
C:\Users\anjav\AppData\Local\NetworkTiles deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3612907582-3073615944-3246669413-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3612907582-3073615944-3246669413-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3612907582-3073615944-3246669413-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-3612907582-3073615944-3246669413-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.2.5 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
"vProt"=- 

==== Deleting Files \ Folders ======================

C:\Users\anjav\AppData\Roaming\calibre deleted
C:\ProgramData\AVG Web TuneUp deleted
C:\Program Files\AVG Web TuneUp deleted
C:\Users\anjav\AppData\Roaming\TuneUp Software deleted
C:\windows\SysNative\Tasks\Software Update Application deleted
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml deleted
C:\Users\Public\Pokki deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\Tasks\Avast SecureLine deleted
C:\windows\SysNative\Tasks\avast! SL Update deleted
C:\Users\anjav\AppData\Roaming\Mozilla\Firefox\Profiles\ave67v2u.default\searchplugins\avg-secure-search.xml deleted
C:\Users\anjav\AppData\Roaming\Mozilla\Firefox\Profiles\ave67v2u.default\jetpack deleted
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" deleted
"C:\PROGRA~2\AVG Web TuneUp\vprot.exe" deleted
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.5\log4cplusU.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.2.5\avgdttbx.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.2.5\log4cplusU.dll" deleted
"C:\PROGRA~3\Kingsoft\office6\mtfont\mtextra.ttf" deleted
"C:\Program Files (x86)\AVG Web TuneUp" deleted
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater" deleted
"C:\Users\anjav\AppData\Local\AVG Web TuneUp" deleted
"C:\PROGRA~2\AVG Web TuneUp" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\PROGRA~3\Kingsoft" not deleted
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.5" deleted
"C:\Users\anjav\AppData\Local\AVG Web TuneUp\IE" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\40.2.5" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\40.2.5" deleted
"C:\PROGRA~3\Kingsoft\office6" not deleted
"C:\PROGRA~3\Kingsoft\office6\mtfont" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-01-30 14:54:01	986BC1A9E29A9E35C1D10D874616ACBB	215040	----a-w-	C:\Windows\notepad.exe
2016-01-30 14:52:40	D2EAEC106F183572317AF7D68E381063	4532304	----a-w-	C:\Windows\explorer.exe
2016-01-30 12:47:51	2945E52CDE2CCD7E320C317FA3B17AA9	392	----a-w-	C:\Windows\ODBC.INI
====== C:\Users\anjav\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2016-01-30 14:57:56	F2A08BAE593A8270767ABA6BAADC634E	100712	----a-w-	C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-30 14:57:56	DAF8197B2944323EFDF15ED32A055D72	2445128	----a-w-	C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-30 14:57:56	BE152AA70B19D10253946DBC3A75547C	882208	----a-w-	C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-30 14:57:52	78D8E6439B27C9F41AAD913BA03E5058	285632	----a-w-	C:\Windows\SysWOW64\MFPlay.dll
2016-01-30 14:57:48	7E2330319E458B0406F16BF47D0F5FCA	373760	----a-w-	C:\Windows\SysWOW64\schannel.dll
2016-01-30 14:57:47	EE04BA6667EC970382AEB544F1D89283	1918976	----a-w-	C:\Windows\SysWOW64\MFMediaEngine.dll
2016-01-30 14:57:45	BBF8ACF14694C6E2DA08CA22E7C544A4	961376	----a-w-	C:\Windows\SysWOW64\LicenseManager.dll
2016-01-30 14:57:45	9C9A14B66C06930A4FA8B654D5A1B2AE	1233920	----a-w-	C:\Windows\SysWOW64\Windows.Globalization.dll
2016-01-30 14:57:37	8752DB54FF4458CE9A247A30E1816DAC	705520	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2016-01-30 14:57:37	5C3D6ECECE28FA7883E44C8D89ED1933	37376	----a-w-	C:\Windows\SysWOW64\atmlib.dll
2016-01-30 14:57:12	C1B5BE074E1D85D4C1267B9678F9669D	139776	----a-w-	C:\Windows\SysWOW64\shacct.dll
2016-01-30 14:56:43	D6BF254925FD35955C99F402F8DF4773	20858360	----a-w-	C:\Windows\SysWOW64\shell32.dll
2016-01-30 14:56:41	C9471462610302402FF9BB0B09DB9177	650240	----a-w-	C:\Windows\SysWOW64\jscript.dll
2016-01-30 14:56:41	4832BCF076EC1B88B0F3D47DEDB5C20F	3580416	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2016-01-30 14:56:41	0B3FBB0539891F7177C3B98D6A141214	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2016-01-30 14:56:40	84F33EA9B82044505ACFCAE15C762628	5454848	----a-w-	C:\Windows\SysWOW64\Chakra.dll
2016-01-30 14:56:32	77BFF88DF139AEB20BE0F5AB7737A981	13027840	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-01-30 14:56:31	091F53D3D8FEDA2AB02018A18795B337	19324928	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2016-01-30 14:56:28	86F1A25E25A85F1809DAD3FC7880ACDF	18802176	----a-w-	C:\Windows\SysWOW64\edgehtml.dll
2016-01-30 14:56:26	35E89DA499A3A12E5ACB4A195BF289EC	6878256	----a-w-	C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-01-30 14:56:25	55863B7FF7119A11BD802DE7A82485A2	11263488	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2016-01-30 14:56:21	DC7C56F01B96CA5FDB99D241D4E067FC	311808	----a-w-	C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-01-30 14:56:21	C15E2900919126DCE4C2A927D3D45158	464896	----a-w-	C:\Windows\SysWOW64\Windows.UI.dll
2016-01-30 14:56:21	776339B81E632F579AB1EC6EE503A9C0	58368	----a-w-	C:\Windows\SysWOW64\usoapi.dll
2016-01-30 14:56:21	037908D9C8C689490978BFF72532A361	195072	----a-w-	C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-01-30 14:56:20	F2BCE0CF75943E18852148B2875F632B	41472	----a-w-	C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2016-01-30 14:56:20	63900F897A025DDFE83737A260C250A5	371712	----a-w-	C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-01-30 14:56:20	14B2B40AF5DAE0AD8057341F54FEF9EC	81920	----a-w-	C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2016-01-30 14:56:19	69469FE0E943D6DE0C16AC0A41781DDF	497152	----a-w-	C:\Windows\SysWOW64\PlayToManager.dll
2016-01-30 14:56:19	223F4A196FEDDC45F431D79B833521E6	484352	----a-w-	C:\Windows\SysWOW64\SettingSync.dll
2016-01-30 14:56:18	BE91839AB726C995AFF389AA298F9332	494592	----a-w-	C:\Windows\SysWOW64\LogonController.dll
2016-01-30 14:56:18	60242DBD3FCFA6D4163B6C29D76295B7	336384	----a-w-	C:\Windows\SysWOW64\CredProvDataModel.dll
2016-01-30 14:56:18	2986B2B617DD50857FC614B64E9BE1F9	2647040	----a-w-	C:\Windows\SysWOW64\Windows.Media.dll
2016-01-30 14:56:17	471921FC25E6EC0AA5755C78DD9F7C4E	613376	----a-w-	C:\Windows\SysWOW64\TokenBroker.dll
2016-01-30 14:56:16	99F56FA8CC016E026C38D4CC338B0A15	762888	----a-w-	C:\Windows\SysWOW64\twinapi.appcore.dll
2016-01-30 14:56:16	6740B4C8B8B3474F086B8AEBDE4861D8	217088	----a-w-	C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-01-30 14:56:16	404A006C387E4F19B4DAB664144B8520	671232	----a-w-	C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-01-30 14:56:13	FABFF0AA6B503B960BBCBCC7CF00350B	195584	----a-w-	C:\Windows\SysWOW64\PackageStateRoaming.dll
2016-01-30 14:56:13	EE8FDC90138DD93AA6B1ECA831D9D3CE	1162240	----a-w-	C:\Windows\SysWOW64\Windows.Media.Speech.dll
2016-01-30 14:56:13	258A4F9A2C91C6C6E36775CDCCB4AFE1	441168	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2016-01-30 14:56:10	02F4AE16C88F0C0E6D5603233B547B3C	9889792	----a-w-	C:\Windows\SysWOW64\twinui.dll
2016-01-30 14:55:41	16271541E6C89AC46316DC276DF33C76	2639872	----a-w-	C:\Windows\SysWOW64\esent.dll
2016-01-30 14:55:40	FE3D1AFBAC68746BB7BB2B2ADE9551CC	445240	----a-w-	C:\Windows\SysWOW64\AudioEng.dll
2016-01-30 14:55:40	248521A186986B67107808EB4F3E01E7	232896	----a-w-	C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-30 14:55:34	F4E25F21AC509AEE3617E9DBA086318E	434376	----a-w-	C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-01-30 14:55:34	E856065895D1133F5457BCDB4452A8D3	74880	----a-w-	C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-01-30 14:55:34	A99EE78ACD9BE40C2A4D3097E382643C	82096	----a-w-	C:\Windows\SysWOW64\devenum.dll
2016-01-30 14:55:32	B0409CEF7BBF488D3F07FBC36DAE34FF	2459096	----a-w-	C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-30 14:55:32	75D499303F9334780DDC00EEB15AFA99	368776	----a-w-	C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-30 14:55:32	6A59054B30BBBEF05521921E895D16A4	188032	----a-w-	C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-30 14:55:32	66014F80D37AFEF646DA614D68407AB2	305776	----a-w-	C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-30 14:55:32	5BDB3DD749FD6EE9B51FA452AD896545	695752	----a-w-	C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-30 14:55:28	C637D94084069A10759E53F79D5DC4C5	899584	----a-w-	C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2016-01-30 14:55:26	E731E28520E527E9EAC2049B3147D536	1867160	----a-w-	C:\Windows\SysWOW64\d3d9.dll
2016-01-30 14:55:26	A1B94C8C5C9DD2780B83C7435EE18BED	1997336	----a-w-	C:\Windows\SysWOW64\msxml6.dll
2016-01-30 14:55:26	6A8F5939B9C3170BEB4FF010F5054ED0	2879024	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2016-01-30 14:55:24	4B7EC905DF02BBBFDDD725EE98D6535C	658528	----a-w-	C:\Windows\SysWOW64\mfds.dll
2016-01-30 14:55:23	EB010C82D907969FC3A396EE16DB1A44	2152744	----a-w-	C:\Windows\SysWOW64\mfcore.dll
2016-01-30 14:55:23	CC3CDF714B78257E6CF2ED45A1EA1CD9	208688	----a-w-	C:\Windows\SysWOW64\mftranscode.dll
2016-01-30 14:55:22	FB3B46B0FFCEDEED7BB5E74D82895118	1171456	----a-w-	C:\Windows\SysWOW64\netcenter.dll
2016-01-30 14:55:22	3277E503E6EA72D19CDC16501FD151BA	5120056	----a-w-	C:\Windows\SysWOW64\windows.storage.dll
2016-01-30 14:55:21	6C74B225F2EC7A49DD6F78B7072A5C42	1532984	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2016-01-30 14:55:19	C662282B95220AD700D9B93A39702A25	409088	----a-w-	C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-30 14:55:19	98CC3506DFADE0A3C9353E953F0891BD	747008	----a-w-	C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-30 14:55:19	7A471C2688C5D864A049C4F2074413E7	107952	----a-w-	C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-30 14:55:19	2813D33FD11FF4E6666A394011D83B3B	2162064	----a-w-	C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-30 14:55:19	1B9D79C58A2087A7C855559AAAF4BAEF	72808	----a-w-	C:\Windows\SysWOW64\mfvdsp.dll
2016-01-30 14:55:13	E2EFED5C9E4BF8EC6F35CF63CA5B589F	1594368	----a-w-	C:\Windows\SysWOW64\msxml3.dll
2016-01-30 14:55:12	BCCB55B18CE7054BA288FFEB27BA6F54	1766952	----a-w-	C:\Windows\SysWOW64\CoreUIComponents.dll
2016-01-30 14:55:12	356C54031E21C4790E6C81CDA26F9E0A	1467392	----a-w-	C:\Windows\SysWOW64\GdiPlus.dll
2016-01-30 14:55:11	8D59581B205692ABC762603D7770E7E4	1541632	----a-w-	C:\Windows\SysWOW64\quartz.dll
2016-01-30 14:55:11	2AB0D2CB00F9F088705F492F7683907D	563200	----a-w-	C:\Windows\SysWOW64\qdvd.dll
2016-01-30 14:55:08	820C0126D90810B78F5417767DA4F487	1593344	----a-w-	C:\Windows\SysWOW64\dwmcore.dll
2016-01-30 14:55:07	5C74B92851352C5DCDD66C59BBE392F6	1442816	----a-w-	C:\Windows\SysWOW64\SRHInproc.dll
2016-01-30 14:55:04	2DA15A53E965A27A3D5CF99E3CCC430A	6101504	----a-w-	C:\Windows\SysWOW64\mos.dll
2016-01-30 14:55:03	84E5EADD5EB8D2A96C55F3B8F9CA2904	1714176	----a-w-	C:\Windows\SysWOW64\twinui.appcore.dll
2016-01-30 14:55:02	8AFE3CEAF287F9204FC1363A8F2A9B95	1328128	----a-w-	C:\Windows\SysWOW64\comsvcs.dll
2016-01-30 14:55:01	08D6065A1D6D007C77A688271D915B00	5079552	----a-w-	C:\Windows\SysWOW64\BingMaps.dll
2016-01-30 14:54:59	99CEBD54809E76C9CD1839B0492CCF5E	1895568	----a-w-	C:\Windows\SysWOW64\hevcdecoder.dll
2016-01-30 14:54:58	F38B52333E0C93A1C55323719103783B	1357888	----a-w-	C:\Windows\SysWOW64\winmde.dll
2016-01-30 14:54:58	3504A001D694E685EB2579164C514FB4	2153984	----a-w-	C:\Windows\SysWOW64\authui.dll
2016-01-30 14:54:58	1B102F53BD7209D712BBE96E9FAA32CA	313856	----a-w-	C:\Windows\SysWOW64\LockAppBroker.dll
2016-01-30 14:54:57	8E853D8DDA2BBD4F3A8B7096085E765B	1070080	----a-w-	C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-30 14:54:57	74C8E141400F3B4CE12EE0E657FD91C9	1310880	----a-w-	C:\Windows\SysWOW64\user32.dll
2016-01-30 14:54:57	13FA2626268E7F522B9750CDCB7039D2	696192	----a-w-	C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-30 14:54:56	DFAE92F5EF58FF29E81D951B2BDF45B8	1104384	----a-w-	C:\Windows\SysWOW64\UIAutomationCore.dll
2016-01-30 14:54:52	71C33FA1180F55803CC312BE73835AEE	1106872	----a-w-	C:\Windows\SysWOW64\mfnetsrc.dll
2016-01-30 14:54:52	4595DE3C22C4B313A21AFB2C0E21688E	714808	----a-w-	C:\Windows\SysWOW64\mfnetcore.dll
2016-01-30 14:54:49	10BD43B952C7A59D31EA976566B624E6	767488	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2016-01-30 14:54:47	FD47D5526827398C371D100284664078	2049536	----a-w-	C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-01-30 14:54:45	4BAFAEEFDF9577A1B37EB6F14898F702	890880	----a-w-	C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-30 14:54:43	ABF1199F0E571D5BA8C7F1ECCCE9AFFA	373248	----a-w-	C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2016-01-30 14:54:43	5EBDB30586730375949854259AA7EEA0	713312	----a-w-	C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2016-01-30 14:54:43	594ED0EDD85408ED0CDEFC4244FC66CC	877016	----a-w-	C:\Windows\SysWOW64\mfmp4srcsnk.dll
2016-01-30 14:54:43	07F42CB9A66933950CE16A0DC8F42935	896144	----a-w-	C:\Windows\SysWOW64\mfsrcsnk.dll
2016-01-30 14:54:41	20311DEFD7B8A7D2AB5D5DDAFF505754	774656	----a-w-	C:\Windows\SysWOW64\SRH.dll
2016-01-30 14:54:40	9738D0610EAAD6CE104DFB81AFEDAFDE	786432	----a-w-	C:\Windows\SysWOW64\Magnify.exe
2016-01-30 14:54:38	A818674D5F9B67BA4BA9B67434AAAF3B	635312	----a-w-	C:\Windows\SysWOW64\evr.dll
2016-01-30 14:54:38	3CABA2E1C6B0F3906F03C97A42359896	645144	----a-w-	C:\Windows\SysWOW64\mfsvr.dll
2016-01-30 14:54:37	ACA6C8CC89A43F3BABF276662716023D	2748416	----a-w-	C:\Windows\SysWOW64\tquery.dll
2016-01-30 14:54:36	CD08AC88BF5133AB5376A519C1F14643	871936	----a-w-	C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-30 14:54:33	72262CB79DA833B4DCBFBCDD7C752B1A	1964544	----a-w-	C:\Windows\SysWOW64\mssrch.dll
2016-01-30 14:54:29	4F5230393F48421846F1EEC44F98148B	539728	----a-w-	C:\Windows\SysWOW64\fontdrvhost.exe
2016-01-30 14:54:29	2FA6AE2352567748CD332B2529756EC6	303104	----a-w-	C:\Windows\SysWOW64\atmfd.dll
2016-01-30 14:54:28	DB5CA5EDC2BE901451DD7C240F69721B	404992	----a-w-	C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-30 14:54:28	6EF1F91D387CF337E347722738AA6894	497896	----a-w-	C:\Windows\SysWOW64\advapi32.dll
2016-01-30 14:54:27	683BACDA104CABCCB8852CA24A03A964	573440	----a-w-	C:\Windows\SysWOW64\qedit.dll
2016-01-30 14:54:24	61E15F462802A480B5481D93489657F3	507696	----a-w-	C:\Windows\SysWOW64\dxgi.dll
2016-01-30 14:54:23	E0F11A1D1C7482BBD76448E6FD3AA327	454512	----a-w-	C:\Windows\SysWOW64\directmanipulation.dll
2016-01-30 14:54:22	73FC0143E518D8DB7AFE9675F4AF8063	2207232	----a-w-	C:\Windows\SysWOW64\wininet.dll
2016-01-30 14:54:19	7EFF73E0CF886F43B0ABF9921189857E	95744	----a-w-	C:\Windows\SysWOW64\fdWCN.dll
2016-01-30 14:54:19	2A28095B1C625D3DE3C25E6696AC4504	100352	----a-w-	C:\Windows\SysWOW64\WcnApi.dll
2016-01-30 14:54:18	F65307E09D4807EDE95D1016CAF42DAD	587264	----a-w-	C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2016-01-30 14:54:18	A5E98AB07AE94407058A4224F2A9504A	1226752	----a-w-	C:\Windows\SysWOW64\wcnwiz.dll
2016-01-30 14:54:13	B4308481535382A5B61340A2214E91AD	474624	----a-w-	C:\Windows\SysWOW64\ieui.dll
2016-01-30 14:54:13	7E4A5580F1A7EEB3F235429D857100DD	296960	----a-w-	C:\Windows\SysWOW64\ninput.dll
2016-01-30 14:54:13	5DAAAF8A272B9C8975C444298B5D41EF	480768	----a-w-	C:\Windows\SysWOW64\duser.dll
2016-01-30 14:54:12	EBD8D48F8EF7E7BDCEEB176CAB1033E3	37376	----a-w-	C:\Windows\SysWOW64\wfdprov.dll
2016-01-30 14:54:12	B9573AE51518377CC31D9F3C92839298	441344	----a-w-	C:\Windows\SysWOW64\dlnashext.dll
2016-01-30 14:54:12	9E604C522EC89CA6D7DD22BE94985359	415744	----a-w-	C:\Windows\SysWOW64\catsrvut.dll
2016-01-30 14:54:09	5DEB6066C1F5D2F07002BF59BA57E2A0	556032	----a-w-	C:\Windows\SysWOW64\mfh264enc.dll
2016-01-30 14:54:08	50A3C0D8655F5ACFE4320FB207A098F1	1985024	----a-w-	C:\Windows\SysWOW64\DWrite.dll
2016-01-30 14:54:04	62C4E525EE16D6224D746A8488CD657E	752640	----a-w-	C:\Windows\SysWOW64\msctfuimanager.dll
2016-01-30 14:54:04	3C9FDBB0963B18C9D60B54F8AF81DF11	268800	----a-w-	C:\Windows\SysWOW64\ncryptprov.dll
2016-01-30 14:54:03	E8192A23618BCEDE02446F491CB70BDB	42496	----a-w-	C:\Windows\SysWOW64\tetheringclient.dll
2016-01-30 14:54:03	8228A523B9FF392936554EE5F223F05B	1823232	----a-w-	C:\Windows\SysWOW64\InputService.dll
2016-01-30 14:54:03	80D2AE15F53154CEE71C9E3C131FBB9B	407608	----a-w-	C:\Windows\SysWOW64\AudioSes.dll
2016-01-30 14:54:02	00682184457B97EDA4C0C157331A7495	454656	----a-w-	C:\Windows\SysWOW64\MbaeApi.dll
2016-01-30 14:54:01	9E590FA5A1BF50F2E7B7005244F8D31D	574464	----a-w-	C:\Windows\SysWOW64\Chakradiag.dll
2016-01-30 14:54:01	9AA440F8F580C573D0F2732DA6ECB87A	207872	----a-w-	C:\Windows\SysWOW64\notepad.exe
2016-01-30 14:53:59	78FBC37D02A39402B685B7E95A83EFE8	428128	----a-w-	C:\Windows\SysWOW64\WWanAPI.dll
2016-01-30 14:53:57	638747E5050BEB4F5DF9DDE8AC418296	473088	----a-w-	C:\Windows\SysWOW64\wpnapps.dll
2016-01-30 14:53:51	9157489ABA83D6FEAAAEC8E3F79714E8	928256	----a-w-	C:\Windows\SysWOW64\Unistore.dll
2016-01-30 14:53:50	7CDC13C04C1038D6143B64CD2321B1F0	274432	----a-w-	C:\Windows\SysWOW64\NetSetupShim.dll
2016-01-30 14:53:47	5036F8014556AAAA662A672F3D58F04C	261632	----a-w-	C:\Windows\SysWOW64\ActionCenter.dll
2016-01-30 14:53:45	7763184B73CB778EE9601555A7C42901	235008	----a-w-	C:\Windows\SysWOW64\ksproxy.ax
2016-01-30 14:53:44	40258BC35D16DFCDC0D7B7E04C75EDFD	278424	----a-w-	C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-30 14:53:42	0C5FE5EB83BD4C4F3ACF7A08821FC0D5	277400	----a-w-	C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-30 14:53:41	A429ED80A03D29F43E99A08CA76E3CFD	1612288	----a-w-	C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2016-01-30 14:53:38	DF3F02FA4AEB7064FAC76D2E31BE4DC4	311296	----a-w-	C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2016-01-30 14:53:38	C5FBD8DDCD35F7F1242F3587681A2654	193024	----a-w-	C:\Windows\SysWOW64\Windows.Internal.Management.dll
2016-01-30 14:53:37	F69835A120E9627327ECE984D2AC87EA	828928	----a-w-	C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2016-01-30 14:53:36	99E92B7E14452B94CCBF0BA42876A7D7	163328	----a-w-	C:\Windows\SysWOW64\fwpolicyiomgr.dll
2016-01-30 14:53:35	7AF34E43DE496A316DD096AEBDE2492A	268800	----a-w-	C:\Windows\SysWOW64\NotificationObjFactory.dll
2016-01-30 14:53:33	0607E8B28F78AD418D6C0D74203FFA79	749568	----a-w-	C:\Windows\SysWOW64\comdlg32.dll
2016-01-30 14:53:32	685105400BCA64E0D19534A516F36454	625152	----a-w-	C:\Windows\SysWOW64\ContactApis.dll
2016-01-30 14:53:30	807178C85CF6375FAB2FE42395FE94D7	677888	----a-w-	C:\Windows\SysWOW64\MapControlCore.dll
2016-01-30 14:53:28	B81FC272B92CE1A7542EECF1416D17B9	579584	----a-w-	C:\Windows\SysWOW64\AppointmentApis.dll
2016-01-30 14:53:28	4B5286A021D8CA64BABB07D7B9739AF4	512000	----a-w-	C:\Windows\SysWOW64\CoreMessaging.dll
2016-01-30 14:53:27	EFCBA793DF8E9E96528CC8586F7A885C	33280	----a-w-	C:\Windows\SysWOW64\usermgrcli.dll
2016-01-30 14:53:27	54DB5459A808BB03FDEA98325530B946	145920	----a-w-	C:\Windows\SysWOW64\mdmregistration.dll
2016-01-30 14:53:27	2612D8C0CC6919E29D9239C7D1E96B30	159744	----a-w-	C:\Windows\SysWOW64\UserMgrProxy.dll
2016-01-30 14:53:25	29975419D8EE4827301777ECE10AF30F	1380864	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2016-01-30 14:53:24	5F7ADEE18B15B9D629F9875C9604A696	557568	----a-w-	C:\Windows\SysWOW64\ChatApis.dll
2016-01-30 14:53:19	D124F89BBDCFC24A04F159D913852DDC	701952	----a-w-	C:\Windows\SysWOW64\JpMapControl.dll
2016-01-30 14:53:19	B5009272F86C94D193C67F89686A3708	34816	----a-w-	C:\Windows\SysWOW64\VoiceActivationManager.dll
2016-01-30 14:53:19	0C6AA21007BE1389A4D5C3772D7E262D	525312	----a-w-	C:\Windows\SysWOW64\EmailApis.dll
2016-01-30 14:53:17	917C7C09612AD81BCF0C49007740DB4E	775312	----a-w-	C:\Windows\SysWOW64\locale.nls
2016-01-30 14:53:15	9944FF1EDD2D36AEC0DACCC85930A152	1365576	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2016-01-30 14:53:14	39518661140BE931D676EF657E877048	131072	----a-w-	C:\Windows\SysWOW64\CallHistoryClient.dll
2016-01-30 14:53:14	0AF54E5F45A83197AC20EA3F090B5452	78336	----a-w-	C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2016-01-30 14:53:13	53FC0EFBE44591CA16BE1A4309F689DC	253440	----a-w-	C:\Windows\SysWOW64\SensorsApi.dll
2016-01-30 14:53:12	51DDB23BEB935F57C49166DCFEE10206	243800	----a-w-	C:\Windows\SysWOW64\LockAppHost.exe
2016-01-30 14:53:10	E4A4BC49568745BDA44F293E3D29A910	466432	----a-w-	C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-01-30 14:53:07	F8EC9D17DB30C1D8B3B7CBFF31161452	918320	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2016-01-30 14:53:04	981229E718319A9A01F7E740A8D855FD	700256	----a-w-	C:\Windows\SysWOW64\WWAHost.exe
2016-01-30 14:53:03	1253135EC3029F79601EDCFF55ADC9FC	508248	----a-w-	C:\Windows\SysWOW64\mf.dll
2016-01-30 14:52:55	CA4303787A36890CE6EE34DC1C993F3E	195584	----a-w-	C:\Windows\SysWOW64\UserDataAccountApis.dll
2016-01-30 14:52:51	C09CA709007AB00D97A764422E9DB981	92992	----a-w-	C:\Windows\SysWOW64\userenv.dll
2016-01-30 14:52:50	D055C7AC2514A999D8C636B39457B98B	172032	----a-w-	C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2016-01-30 14:52:46	951D71B5D602745997A6DCBA33FC5358	280576	----a-w-	C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-01-30 14:52:46	202A005B44B0E420D02E280F1AADFE71	116728	----a-w-	C:\Windows\SysWOW64\mfps.dll
2016-01-30 14:52:43	45C650F31088C2820304CFA4A3D4F5FA	845664	----a-w-	C:\Windows\SysWOW64\ReAgent.dll
2016-01-30 14:52:41	E77F8B3D5750F4527A07E45AB6D44588	7168	----a-w-	C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-30 14:52:41	6BC30FC482A74A92CDDD59E882F18E63	7168	----a-w-	C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-30 14:52:41	45D3CA83474A46D74632700FACF17C90	7168	----a-w-	C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-30 14:52:41	06A41A2D550BBF58552D3C02D0D20825	7168	----a-w-	C:\Windows\SysWOW64\KBDAZST.DLL
2016-01-30 14:52:40	4EEB94F7E1ABAB5503EEFEA7F2394370	4047288	----a-w-	C:\Windows\SysWOW64\explorer.exe
2016-01-30 14:52:36	D0A5D8270FF8606D2B445C4359A8FCEB	328704	----a-w-	C:\Windows\SysWOW64\MapConfiguration.dll
2016-01-30 14:52:36	4F74D237260EF8F19DB5AAAB2C3D19D2	53248	----a-w-	C:\Windows\SysWOW64\profext.dll
2016-01-30 14:52:29	95A776B86DC5268EB06679351B5D2F7D	131584	----a-w-	C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-30 14:52:29	011A8CA5E2B3399EB0D893587B830C6B	420352	----a-w-	C:\Windows\SysWOW64\GamePanel.exe
2016-01-30 14:52:27	435EE3E7A2EB0274E5C976A0B3773CA7	162304	----a-w-	C:\Windows\SysWOW64\ReInfo.dll
2016-01-30 10:15:00	8A4CEBF34370D689E198E6673C1F2C40	74072	----a-w-	C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-01-30 10:15:00	81DFDDFB401D663BA7E6AD1C80364216	527192	----a-w-	C:\Windows\SysWOW64\XAudio2_7.dll
2016-01-30 10:15:00	1C9B45E87528B8BB8CFA884EA0099A85	2106216	----a-w-	C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-01-30 10:14:59	8E0BB968FF41D80E5F2C747C04DB79AE	248672	----a-w-	C:\Windows\SysWOW64\d3dx11_43.dll
2016-01-30 10:14:54	501AC862517C5445742BEE8A2B88414E	453456	----a-w-	C:\Windows\SysWOW64\d3dx10_42.dll
2016-01-30 10:14:46	26AF232140C88B42D92A88F2198EDF6A	3426072	----a-w-	C:\Windows\SysWOW64\d3dx9_32.dll
2016-01-30 09:43:55	AD897721279996658B80E5B4408060F7	105472	----a-w-	C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2016-01-30 09:43:54	64A5BD834CB7AFE2057A38908D01D846	318976	----a-w-	C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-01-30 09:43:53	ABFE6196C0CCE6BBC901616B21D42611	1815592	----a-w-	C:\Windows\SysWOW64\iglhsip32.dll
2016-01-30 09:43:53	700A193A1555B083E3A08F5D3A844925	301976	----a-w-	C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-01-30 09:43:53	08E35F230F07B7255099C8CB552A8B6F	206888	----a-w-	C:\Windows\SysWOW64\iglhcp32.dll
2016-01-30 09:43:52	BC5449674FD573BE39C31B5934D7687F	162824	----a-w-	C:\Windows\SysWOW64\igfxcmrt32.dll
2016-01-30 09:43:52	8A52019E26308B3269BEB587D265E024	1174024	----a-w-	C:\Windows\SysWOW64\igfxcmjit32.dll
2016-01-30 09:43:52	89CE7DBCA7AFFD3CAA4052A51062E2B5	161800	----a-w-	C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-01-30 09:43:52	6BD37D92DE8B612E77CCB738AEBCB1B4	54264	----a-w-	C:\Windows\SysWOW64\igfxexps32.dll
2016-01-30 09:43:51	EB859E7C17D69B4DE62D0167514D98C7	4903056	----a-w-	C:\Windows\SysWOW64\igdusc32.dll
2016-01-30 09:43:51	9ADF126B57DC3245371E51F6DC052E82	36408544	----a-w-	C:\Windows\SysWOW64\igdumdim32.dll
2016-01-30 09:43:50	6A610C807252F0388F6EBFCFD4AC7B27	3891192	----a-w-	C:\Windows\SysWOW64\igdrcl32.dll
2016-01-30 09:43:50	628C1CD3E50F4397A8ACC90A2E60AABE	1501184	----a-w-	C:\Windows\SysWOW64\igdmd32.dll
2016-01-30 09:43:50	082CCA911869D06123435742887C18DE	3820024	----a-w-	C:\Windows\SysWOW64\igdmcl32.dll
2016-01-30 09:43:49	8768ADA7601E21B453C2E34F3D0EEA28	180728	----a-w-	C:\Windows\SysWOW64\igdde32.dll
2016-01-30 09:43:49	65768AB9DF7B342F46080C85A5468399	989696	----a-w-	C:\Windows\SysWOW64\igdfcl32.dll
2016-01-30 09:43:49	50F0ABC3C94A7762DB641C98A63356E4	5207432	----a-w-	C:\Windows\SysWOW64\igd12umd32.dll
2016-01-30 09:43:49	200334A985F4A8E4287C1593FF366178	390672	----a-w-	C:\Windows\SysWOW64\igdbcl32.dll
2016-01-30 09:43:49	0166C8EEC7B0753064B88D577C3BFEE8	171016	----a-w-	C:\Windows\SysWOW64\igdail32.dll
2016-01-30 09:43:48	F69E2664C4AE62013A54393CB2F0E47F	293472	----a-w-	C:\Windows\SysWOW64\igd10idpp32.dll
2016-01-30 09:43:48	BE269D51667467FEA53E0A199A24AE2B	10729960	----a-w-	C:\Windows\SysWOW64\igc32.dll
2016-01-30 09:43:48	B7246B68B1C10929EC5FE820E684A4F8	9934504	----a-w-	C:\Windows\SysWOW64\igd10iumd32.dll
2016-01-30 09:43:48	55621E58B6BC9886867551865F11ACDC	30141488	----a-w-	C:\Windows\SysWOW64\igd11dxva32.dll
2016-01-30 09:43:47	60EC01CC62079760D3B6B86E2EF9F9F1	10038272	----a-w-	C:\Windows\SysWOW64\ig8icd32.dll
2016-01-30 09:43:46	906265022E9746A027A847499071F33D	15264768	----a-w-	C:\Windows\SysWOW64\common_clang32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-02-04 14:31:15	49F986EEA18654D849291EE8EC8C5164	16148	----a-w-	C:\Windows\Sysnative\LAPTOP-TERHHKCA_anjav_HistoryPrediction.bin
2016-01-31 10:59:01	4DE599F49C7862C9691EE7843E216F4C	143671360	----a-w-	C:\Windows\Sysnative\MRT.exe
2016-01-30 14:57:56	9F2AB116293D0799BA44E27A810C26F0	1063504	----a-w-	C:\Windows\Sysnative\msmpeg2adec.dll
2016-01-30 14:57:55	CF2D0CD826F0BBC8F1150122720D2A9C	119800	----a-w-	C:\Windows\Sysnative\MP3DMOD.DLL
2016-01-30 14:57:55	7128D19C04882CEEABB5F48ACD05B159	2824248	----a-w-	C:\Windows\Sysnative\msmpeg2vdec.dll
2016-01-30 14:57:50	7DDB731AD3E9F9F91D62E991BD52814F	79872	----a-w-	C:\Windows\Sysnative\HttpsDataSource.dll
2016-01-30 14:57:50	513A8EF909DFCDD872E60A0EA03FEAAB	52224	----a-w-	C:\Windows\Sysnative\tetheringclient.dll
2016-01-30 14:57:50	4A54273338073939384A14BF0D7AFC14	88064	----a-w-	C:\Windows\Sysnative\ngckeyenum.dll
2016-01-30 14:57:49	BF77FC08A7D4DC37A659561B29FA23EC	163840	----a-w-	C:\Windows\Sysnative\CallHistoryClient.dll
2016-01-30 14:57:49	901350B41D1262A95B5D907BD95A4145	642560	----a-w-	C:\Windows\Sysnative\rdbui.dll
2016-01-30 14:57:49	839BD56425530973FF3F6F7C0057CD22	288256	----a-w-	C:\Windows\Sysnative\PimIndexMaintenance.dll
2016-01-30 14:57:48	321A2022926841273CD8D6B9BFE68D05	1383424	----a-w-	C:\Windows\Sysnative\win32kbase.sys
2016-01-30 14:57:47	BEC717CC9B6E286B26B1C576FD006709	333168	----a-w-	C:\Windows\Sysnative\MFPlay.dll
2016-01-30 14:57:46	78FEDDED673167515E77B9BD35B13B3D	137216	----a-w-	C:\Windows\Sysnative\LocationPermissions.dll
2016-01-30 14:57:46	7143FF944C20AB5C6D4485A0469F2797	115712	----a-w-	C:\Windows\Sysnative\MbaeParserTask.exe
2016-01-30 14:57:46	240FF83DD79546B26F187FAB20F83864	280064	----a-w-	C:\Windows\Sysnative\AudioEndpointBuilder.dll
2016-01-30 14:57:45	C66E058599A44E0EEA95B3E0547345D2	30208	----a-w-	C:\Windows\Sysnative\syncmlhook.dll
2016-01-30 14:57:45	98986780B8D494326D28DCAB6D601450	154624	----a-w-	C:\Windows\Sysnative\dmcertinst.exe
2016-01-30 14:57:45	88E6A429944544346EC3AE1FD7D24BCC	149504	----a-w-	C:\Windows\Sysnative\tetheringservice.dll
2016-01-30 14:57:45	562078FF6ED0C2B1C09078343437D03E	168960	----a-w-	C:\Windows\Sysnative\mdmmigrator.dll
2016-01-30 14:57:44	C7503A49364DB2AF7A7DE177B233081F	1844736	----a-w-	C:\Windows\Sysnative\workfolderssvc.dll
2016-01-30 14:57:44	59BD4C7EC035B59B77A7D9CE71F1B9AE	1276416	----a-w-	C:\Windows\Sysnative\wifinetworkmanager.dll
2016-01-30 14:57:43	754BC3E56FF301B9EE8A764932D02124	513536	----a-w-	C:\Windows\Sysnative\ngcsvc.dll
2016-01-30 14:57:43	0968D575D9108497A6DC37749D4A6C4F	2093056	----a-w-	C:\Windows\Sysnative\wlidsvc.dll
2016-01-30 14:57:40	9E5E7D977A316EE3BBD4F44903EC954B	4792320	----a-w-	C:\Windows\Sysnative\jscript9.dll
2016-01-30 14:57:39	D5B31B2F14848015C211F1D674A82F3A	1106432	----a-w-	C:\Windows\Sysnative\sysmain.dll
2016-01-30 14:57:39	509FF13E5C4FD63846FCA01A5ED912DB	521728	----a-w-	C:\Windows\Sysnative\PsmServiceExtHost.dll
2016-01-30 14:57:38	3A4A543F135DE9A06ABA9DF982D79DD7	526336	----a-w-	C:\Windows\Sysnative\bisrv.dll
2016-01-30 14:57:37	32212C0FE0556915E763C29DEB6D267E	1423872	----a-w-	C:\Windows\Sysnative\UserDataService.dll
2016-01-30 14:57:37	19C0D0D0960E242E1FE052C3F2CA7EC1	455168	----a-w-	C:\Windows\Sysnative\schannel.dll
2016-01-30 14:57:36	4D3F2E7C2F83DFAF19F8060E1FD6C5A8	3588096	----a-w-	C:\Windows\Sysnative\win32kfull.sys
2016-01-30 14:57:34	8C7CCD8D67C1E4A3E5A5EEED3320AC08	32768	----a-w-	C:\Windows\Sysnative\wuautoappupdate.dll
2016-01-30 14:57:34	19C4F8570B675E940CFFA9DB25CBDA05	2418688	----a-w-	C:\Windows\Sysnative\MFMediaEngine.dll
2016-01-30 14:57:33	A5B7CAFA0327BCBC2FC6F1C9F95191CA	342016	----a-w-	C:\Windows\Sysnative\LocationGeofences.dll
2016-01-30 14:57:33	6300722E8527EC54D426FD00EE5196B2	1068032	----a-w-	C:\Windows\Sysnative\audiosrv.dll
2016-01-30 14:57:32	DAFEABE69E915A2374E13C6B24EF331F	690688	----a-w-	C:\Windows\Sysnative\CellularAPI.dll
2016-01-30 14:57:32	D23F211E1AA0787EFEC373D172D4A1C2	1181696	----a-w-	C:\Windows\Sysnative\wwansvc.dll
2016-01-30 14:57:31	ECA28C8F0FF34A2BD8311CBA2D35B143	121856	----a-w-	C:\Windows\Sysnative\dmcsps.dll
2016-01-30 14:57:31	14503C58C1528D83FB2328840784EC78	621056	----a-w-	C:\Windows\Sysnative\enterprisecsps.dll
2016-01-30 14:57:30	E2AE190B76C27430E4E8258D0C44C79B	317440	----a-w-	C:\Windows\Sysnative\configmanager2.dll
2016-01-30 14:57:30	63CCD4D03566A23A26E00A85452B7816	1392480	----a-w-	C:\Windows\Sysnative\LicenseManager.dll
2016-01-30 14:57:29	F04659446D46718E38B3586371720218	1569280	----a-w-	C:\Windows\Sysnative\Windows.Globalization.dll
2016-01-30 14:57:25	F2F08F34BC90048420D51D6574F29492	7523840	----a-w-	C:\Windows\Sysnative\Chakra.dll
2016-01-30 14:57:24	6187FA436627F9F694AFE1B805B21F5C	21873152	----a-w-	C:\Windows\Sysnative\edgehtml.dll
2016-01-30 14:57:23	517B55BC30206D1644D85EFB594B9172	1200400	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2016-01-30 14:57:22	C9B6A1DF4767507904C65654725372ED	45568	----a-w-	C:\Windows\Sysnative\atmlib.dll
2016-01-30 14:57:20	551C41C9508BF7117A56FC429D5B6534	8022368	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2016-01-30 14:57:18	0A2D0D9A0329B9C46F5D793DB51A15C7	1234944	----a-w-	C:\Windows\Sysnative\aitstatic.exe
2016-01-30 14:57:17	B70FF53144AC4B3C7D98BFB7D7C239BD	2236416	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2016-01-30 14:57:17	212E5C2C279835CBFEBF935EB0E7EC5D	16708608	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2016-01-30 14:57:15	BD962F6BBE51AD778F77260B8036C804	24592896	----a-w-	C:\Windows\Sysnative\mshtml.dll
2016-01-30 14:57:12	CF2B0ADDBA61B3B9FA339118FC742032	1812480	----a-w-	C:\Windows\Sysnative\pnidui.dll
2016-01-30 14:57:12	B1622CB61E1C2166C0DEADBCDA611378	541024	----a-w-	C:\Windows\Sysnative\mcupdate_GenuineIntel.dll
2016-01-30 14:57:11	1E4B6E4DB127F1964166B458060C4223	184320	----a-w-	C:\Windows\Sysnative\shacct.dll
2016-01-30 14:57:10	DA32F9BFA7851AD4247353EA03755DE6	578560	----a-w-	C:\Windows\Sysnative\winlogon.exe
2016-01-30 14:57:10	2481E9E8858AD0A223FA3110916EF0C1	6572032	----a-w-	C:\Windows\Sysnative\wwanmm.dll
2016-01-30 14:57:09	EBD5F0FDD3EBB6EE6F6EE524206AD0AE	26624	----a-w-	C:\Windows\Sysnative\LicenseManagerShellext.exe
2016-01-30 14:56:44	547D2BC05916E97FC8F48CB22DD1CFA1	22322624	----a-w-	C:\Windows\Sysnative\shell32.dll
2016-01-30 14:56:42	C397F52BD6B482E6E33B065267680A87	8613200	----a-w-	C:\Windows\Sysnative\Windows.Media.Protection.PlayReady.dll
2016-01-30 14:56:23	EBBD7066B59D8D0C22E6F59DD22AB486	76800	----a-w-	C:\Windows\Sysnative\browserbroker.dll
2016-01-30 14:56:23	90F26A12A7F188B48021A4CA8A615026	12504576	----a-w-	C:\Windows\Sysnative\ieframe.dll
2016-01-30 14:56:22	ED4208A2A5BE50383153463F7ED08ED4	146944	----a-w-	C:\Windows\Sysnative\EthernetMediaManager.dll
2016-01-30 14:56:22	E68D380E86FBBF7F4466A0DD6CEA0B5B	467456	----a-w-	C:\Windows\Sysnative\MBMediaManager.dll
2016-01-30 14:56:22	68AA410BBF3DA69B9F3834EED1BF52EA	270336	----a-w-	C:\Windows\Sysnative\RasMediaManager.dll
2016-01-30 14:56:22	6210B227A7834FFFCA08FBB42F6FF476	126464	----a-w-	C:\Windows\Sysnative\DAMediaManager.dll
2016-01-30 14:56:22	1A8D80F2EA3133AD8DAF64DA25B4B17B	168288	----a-w-	C:\Windows\Sysnative\NetworkUXBroker.exe
2016-01-30 14:56:22	0ACF831DD03989CA9787621C04D73CFD	45568	----a-w-	C:\Windows\Sysnative\wfdprov.dll
2016-01-30 14:56:21	E866643717FF953DAC104E9E806F3E27	498688	----a-w-	C:\Windows\Sysnative\WlanMediaManager.dll
2016-01-30 14:56:20	CA7800F03BF0281D4D38E1006618E82E	627712	----a-w-	C:\Windows\Sysnative\Windows.UI.dll
2016-01-30 14:56:20	49B00A59043431804A5BCB5E48F735B3	414208	----a-w-	C:\Windows\Sysnative\AppXDeploymentClient.dll
2016-01-30 14:56:15	D7B28BF9E08128C5A8B89FFD5BEB6B88	465920	----a-w-	C:\Windows\Sysnative\wwanconn.dll
2016-01-30 14:56:15	6C9DDD0611379864596D2A8DE7B1870C	504320	----a-w-	C:\Windows\Sysnative\DataSenseHandlers.dll
2016-01-30 14:56:15	684F1E1B5D07451B600EA3C3D728A534	281600	----a-w-	C:\Windows\Sysnative\VEEventDispatcher.dll
2016-01-30 14:56:15	031080A610C302B0279A267411EDB7E3	2226688	----a-w-	C:\Windows\Sysnative\NetworkMobileSettings.dll
2016-01-30 14:56:15	0291A553B39D1CE0D108CF2388006B33	42496	----a-w-	C:\Windows\Sysnative\usermgrcli.dll
2016-01-30 14:56:14	EA8B28FFF774F7C7862C8746E1FDECF6	273920	----a-w-	C:\Windows\Sysnative\Windows.ApplicationModel.LockScreen.dll
2016-01-30 14:56:13	D920A8B070A9BA5C9DEFC3BA7C3883B5	145408	----a-w-	C:\Windows\Sysnative\dssvc.dll
2016-01-30 14:56:13	736BB47B4D0F66039E0AB9A7B885D0F0	3248128	----a-w-	C:\Windows\Sysnative\Windows.Media.dll
2016-01-30 14:56:13	506F9F526D42BB4C0A579CB78F923A48	483328	----a-w-	C:\Windows\Sysnative\OneDriveSettingSyncProvider.dll
2016-01-30 14:56:12	D2F7EF42F82CEA2545A7A8D103B57DF5	596480	----a-w-	C:\Windows\Sysnative\SettingSync.dll
2016-01-30 14:56:09	9D4A09AB97C2F0EC6BFA6B54AA2BA239	3781120	----a-w-	C:\Windows\Sysnative\SettingsHandlers_nt.dll
2016-01-30 14:56:09	3DB6BAA19408895C9E0BB55084DD94F3	595456	----a-w-	C:\Windows\Sysnative\LogonController.dll
2016-01-30 14:56:09	363F3F99863C2BB8612C9133E45BF3E6	387584	----a-w-	C:\Windows\Sysnative\LockAppBroker.dll
2016-01-30 14:56:08	B3CD8B2CBC6E48B194116B28F72CDA67	408064	----a-w-	C:\Windows\Sysnative\CredProvDataModel.dll
2016-01-30 14:56:08	A2FD4588F579F8671E4AB1064633CB46	712704	----a-w-	C:\Windows\Sysnative\usermgr.dll
2016-01-30 14:56:08	8D23F0819A00C547814409B734DD3747	503808	----a-w-	C:\Windows\Sysnative\tileobjserver.dll
2016-01-30 14:56:07	9C2B0E3A21CECD14E20A848F0DE94B24	517632	----a-w-	C:\Windows\Sysnative\NotificationController.dll
2016-01-30 14:56:07	7505ACFD9362DA74FEB623F21FE3B391	1601536	----a-w-	C:\Windows\Sysnative\Windows.Media.Speech.dll
2016-01-30 14:56:07	728EF45130A9923760AE3CF8DC61436B	654848	----a-w-	C:\Windows\Sysnative\PlayToManager.dll
2016-01-30 14:56:07	0BC61871B9B1446C0B28CB5526DC171C	893440	----a-w-	C:\Windows\Sysnative\MbaeApiPublic.dll
2016-01-30 14:56:06	3CCF1EDBF6EC23174F4700E6DB3FFBDF	966416	----a-w-	C:\Windows\Sysnative\twinapi.appcore.dll
2016-01-30 14:56:06	37B5ECB8C390D9FD5A5BB2FFB7294B9E	553808	----a-w-	C:\Windows\Sysnative\SettingSyncHost.exe
2016-01-30 14:56:05	17159DF4093B2F33B95AB9F703EA8391	796160	----a-w-	C:\Windows\Sysnative\TokenBroker.dll
2016-01-30 14:56:04	6FBC6166E73518A8FEF03DCEB5BC4F34	246272	----a-w-	C:\Windows\Sysnative\PackageStateRoaming.dll
2016-01-30 14:56:03	A51AC21B1F31FD7F4EC2811E33572AFC	859136	----a-w-	C:\Windows\Sysnative\modernexecserver.dll
2016-01-30 14:56:03	3BEA5930E4C8FC6AC991E8AC6CA79142	11557888	----a-w-	C:\Windows\Sysnative\twinui.dll
2016-01-30 14:55:40	F57FE0BD8BD7E1F8088FE18D0FD7BEE9	501008	----a-w-	C:\Windows\Sysnative\AudioEng.dll
2016-01-30 14:55:40	BA77A5B7C3602D0A8DC96CC5ED4AD665	249464	----a-w-	C:\Windows\Sysnative\RESAMPLEDMO.DLL
2016-01-30 14:55:40	5D1F633C10EC9E00211E6C3D429AC1FB	2987520	----a-w-	C:\Windows\Sysnative\esent.dll
2016-01-30 14:55:40	02077F66F8CF2F1FD58403D371482B01	106496	----a-w-	C:\Windows\Sysnative\KeywordDetectorMsftSidAdapter.dll
2016-01-30 14:55:34	628100F7F1F717D6C115051A389CE37E	90912	----a-w-	C:\Windows\Sysnative\devenum.dll
2016-01-30 14:55:33	CCC25D8DC3177759B541752D3C163460	233992	----a-w-	C:\Windows\Sysnative\mftranscode.dll
2016-01-30 14:55:33	86C0DEE6940878A1496CBBA856FF4E5B	584656	----a-w-	C:\Windows\Sysnative\mf.dll
2016-01-30 14:55:33	65656FF781BDC10127AB223CDC0AC69F	2463704	----a-w-	C:\Windows\Sysnative\mfcore.dll
2016-01-30 14:55:33	5E010B486F7FB28D9B79AAC471FE484F	476760	----a-w-	C:\Windows\Sysnative\MFCaptureEngine.dll
2016-01-30 14:55:32	50410D6D47B1C0A9BC4A4B1EE4E0027F	83704	----a-w-	C:\Windows\Sysnative\mfvdsp.dll
2016-01-30 14:55:32	0DE4840EB6125C69E46EB9CA908B6D29	345080	----a-w-	C:\Windows\Sysnative\WMVSDECD.DLL
2016-01-30 14:55:31	FF12AE856ADD9B0AC9F1A5DF323E9130	787720	----a-w-	C:\Windows\Sysnative\WMADMOD.DLL
2016-01-30 14:55:31	F7FC6CB37CBF7C3547B2F8D8D3A1ACCD	377592	----a-w-	C:\Windows\Sysnative\MP4SDECD.DLL
2016-01-30 14:55:31	846FF503D852A7B15FC02A46098EB31D	205072	----a-w-	C:\Windows\Sysnative\COLORCNV.DLL
2016-01-30 14:55:31	32EFE0A14B4323786ACE4E8950210367	2641928	----a-w-	C:\Windows\Sysnative\WMVDECOD.DLL
2016-01-30 14:55:27	52C3440B5098BFB99D91E869A26ECB30	1213440	----a-w-	C:\Windows\Sysnative\RemoteNaturalLanguage.dll
2016-01-30 14:55:27	162AD130D6F3C5C877F0AD121C1F485E	3622272	----a-w-	C:\Windows\Sysnative\iertutil.dll
2016-01-30 14:55:26	73AF2D8038FCEF4C4EB4B3106B41967A	2573768	----a-w-	C:\Windows\Sysnative\msxml6.dll
2016-01-30 14:55:25	B31569B0E7A467D4050FA49CFCBFCEFA	204800	----a-w-	C:\Windows\Sysnative\wcmcsp.dll
2016-01-30 14:55:25	A40484AC27EE08DBE7F8DA5E1F6651ED	591360	----a-w-	C:\Windows\Sysnative\wcmsvc.dll
2016-01-30 14:55:25	95EC1A9A6926F5091957F6CA52A34F21	162304	----a-w-	C:\Windows\Sysnative\SubscriptionMgr.dll
2016-01-30 14:55:25	91E005E44100E257761A8FD49BC62E51	2147080	----a-w-	C:\Windows\Sysnative\d3d9.dll
2016-01-30 14:55:24	D4D17FB8E003050BA38B85F335B71222	322048	----a-w-	C:\Windows\Sysnative\vaultsvc.dll
2016-01-30 14:55:24	3C096082A9232B7CEE4653B9C9031769	2228736	----a-w-	C:\Windows\Sysnative\wlansvc.dll
2016-01-30 14:55:24	20E8B4BD322195D30C781BED86FA81C8	185344	----a-w-	C:\Windows\Sysnative\psmsrv.dll
2016-01-30 14:55:22	959695FD137FF0DEFC6152AAB03AA3D6	1216512	----a-w-	C:\Windows\Sysnative\netcenter.dll
2016-01-30 14:55:22	544F4E3C4EEBAC2541C6D1D865FA2963	1717248	----a-w-	C:\Windows\Sysnative\GdiPlus.dll
2016-01-30 14:55:21	B3E7A635C248EBF3A9C630917BDD5FA0	1822280	----a-w-	C:\Windows\Sysnative\ntdll.dll
2016-01-30 14:55:20	F70197C9E902336B223A8F43AB627BD7	115704	----a-w-	C:\Windows\Sysnative\VIDRESZR.DLL
2016-01-30 14:55:20	9FE8EF9A4FAE92B1296D4D1AD8A2C6E6	447488	----a-w-	C:\Windows\Sysnative\WMVSENCD.DLL
2016-01-30 14:55:19	DD5339D7A02E27CC108897AF56F1BA95	1991120	----a-w-	C:\Windows\Sysnative\WMVENCOD.DLL
2016-01-30 14:55:19	903FC05DFE2EA0432113E251DE3A3E51	634368	----a-w-	C:\Windows\Sysnative\WMVXENCD.DLL
2016-01-30 14:55:18	55F29D7092ABA1D845847DA7D5E1F400	287744	----a-w-	C:\Windows\Sysnative\provhandlers.dll
2016-01-30 14:55:18	01C2EEA7870FE26A4A6CCBA5421CC7E5	229376	----a-w-	C:\Windows\Sysnative\SensorService.dll
2016-01-30 14:55:17	C158F23E5D8581CB50B33D83AC721E93	1795584	----a-w-	C:\Windows\Sysnative\AppXDeploymentExtensions.dll
2016-01-30 14:55:17	7ED8EF17B3A6C69DA6A0EC90CFBB4ABB	7055872	----a-w-	C:\Windows\Sysnative\BingMaps.dll
2016-01-30 14:55:16	D6D96E20079D902243690DCBB007F997	2180608	----a-w-	C:\Windows\Sysnative\AppXDeploymentServer.dll
2016-01-30 14:55:16	CD64EAD95F7B20FD4AF7D66C12C6B4E6	80384	----a-w-	C:\Windows\Sysnative\AppxSysprep.dll
2016-01-30 14:55:15	DE82BD1C35547D04241DB1DB3D4808E0	6487248	----a-w-	C:\Windows\Sysnative\windows.storage.dll
2016-01-30 14:55:14	B7B20B07E6BDB3DCD78668E4F7BFABA9	1888768	----a-w-	C:\Windows\Sysnative\dwmcore.dll
2016-01-30 14:55:13	F9042F366B9695FD564E9485112453E2	1871360	----a-w-	C:\Windows\Sysnative\msxml3.dll
2016-01-30 14:55:12	6FA4BB1AA0C18F5CFB96F228376BD249	2494712	----a-w-	C:\Windows\Sysnative\CoreUIComponents.dll
2016-01-30 14:55:11	C974AFD04F02EADDE7C1928B3B42AA91	1672192	----a-w-	C:\Windows\Sysnative\quartz.dll
2016-01-30 14:55:10	AA8AD8C57E73057E1C886E9472303CD1	2125312	----a-w-	C:\Windows\Sysnative\twinui.appcore.dll
2016-01-30 14:55:07	8675E8DC436CFD340C2BEACD29315226	1710592	----a-w-	C:\Windows\Sysnative\SRHInproc.dll
2016-01-30 14:55:07	58395E37ED838B93A56F1D089C2F53CF	1643872	----a-w-	C:\Windows\Sysnative\diagtrack.dll
2016-01-30 14:55:06	FA78CF03CB18E8EAB07D1B9470508AA7	1270104	----a-w-	C:\Windows\Sysnative\mfnetsrc.dll
2016-01-30 14:55:06	71107775BE0E612150F032CE21DD9C7C	88384	----a-w-	C:\Windows\Sysnative\remoteaudioendpoint.dll
2016-01-30 14:55:06	68DE1997977CD3A86D5F8D0FD23056EA	1563392	----a-w-	C:\Windows\Sysnative\winmde.dll
2016-01-30 14:55:06	3A04CB24453E831CF75C209933DED057	862056	----a-w-	C:\Windows\Sysnative\mfnetcore.dll
2016-01-30 14:55:05	537826436B921256BA9055F65A97ED91	7569408	----a-w-	C:\Windows\Sysnative\mos.dll
2016-01-30 14:55:05	2C82D9E55432915A68A609008BDEF41A	1563472	----a-w-	C:\Windows\Sysnative\wmpmde.dll
2016-01-30 14:55:03	3478670E8646CC536E1EF21F077F4DD6	2156400	----a-w-	C:\Windows\Sysnative\hevcdecoder.dll
2016-01-30 14:55:02	6C291578AD85D4527E83B5E9465BDB6C	1649152	----a-w-	C:\Windows\Sysnative\comsvcs.dll
2016-01-30 14:55:00	429E7B01BBEB38EA55464918811D3373	515072	----a-w-	C:\Windows\Sysnative\internetmail.dll
2016-01-30 14:54:59	E280D20B0AD017F78290C39CB27006AB	187904	----a-w-	C:\Windows\Sysnative\Windows.UI.PicturePassword.dll
2016-01-30 14:54:58	711877C9F5CD75070D57431F272DCE78	75264	----a-w-	C:\Windows\Sysnative\ACPBackgroundManagerPolicy.dll
2016-01-30 14:54:58	35D3A05A1FE037E866E17E84CEE9CF48	2350592	----a-w-	C:\Windows\Sysnative\authui.dll
2016-01-30 14:54:57	E42DE587D8453E20796A149303DE4691	1255936	----a-w-	C:\Windows\Sysnative\WMSPDMOE.DLL
2016-01-30 14:54:57	C62218BAE56459EE10145625762CEF1C	751992	----a-w-	C:\Windows\Sysnative\WMADMOE.DLL
2016-01-30 14:54:56	85AC4CA67BECC08CBC655A8D8919B23B	1331200	----a-w-	C:\Windows\Sysnative\UIAutomationCore.dll
2016-01-30 14:54:56	7F380DC90B8A045A3F4835D196C35EEB	1366680	----a-w-	C:\Windows\Sysnative\user32.dll
2016-01-30 14:54:55	92C15AC3119BD5A270D4721D94962E87	205312	----a-w-	C:\Windows\Sysnative\aepic.dll
2016-01-30 14:54:55	085303A3E653D0F1CB7F54A45FB25FAE	1150816	----a-w-	C:\Windows\Sysnative\aeinv.dll
2016-01-30 14:54:53	D5AAA188C70146977CFEE8D128599F3F	378368	----a-w-	C:\Windows\Sysnative\SystemEventsBrokerServer.dll
2016-01-30 14:54:53	9ED18AA0A7F4DEC9779CE9059FE6D057	3527168	----a-w-	C:\Windows\Sysnative\tquery.dll
2016-01-30 14:54:49	C56E82DA13F1433C7E8AC8E31529E41E	949760	----a-w-	C:\Windows\Sysnative\kerberos.dll
2016-01-30 14:54:49	AAC020C718E66C47F05E985AB4C571C1	1043872	----a-w-	C:\Windows\Sysnative\mfmp4srcsnk.dll
2016-01-30 14:54:48	D61F850547AAD0F46995EAA1363B25F9	1025840	----a-w-	C:\Windows\Sysnative\mfsrcsnk.dll
2016-01-30 14:54:48	6BE6A7C120E80E36563E35B226700FF3	487424	----a-w-	C:\Windows\Sysnative\mfmkvsrcsnk.dll
2016-01-30 14:54:48	3932BD2F309F76534BA478892C337094	816576	----a-w-	C:\Windows\Sysnative\mfmpeg2srcsnk.dll
2016-01-30 14:54:48	390EAAB81E5C1DB0FD4920796C74AB48	1290240	----a-w-	C:\Windows\Sysnative\Windows.UI.Shell.dll
2016-01-30 14:54:46	78760751FBCB900F6F68CA1700DAE2DC	2675200	----a-w-	C:\Windows\Sysnative\Windows.StateRepository.dll
2016-01-30 14:54:44	AEE285AC6117625361E6D5F06A58A830	723648	----a-w-	C:\Windows\Sysnative\generaltel.dll
2016-01-30 14:54:44	4717521A872CAE4B6DBC40BA5FE2238A	1083072	----a-w-	C:\Windows\Sysnative\appraiser.dll
2016-01-30 14:54:43	1BFAC03B6422E878EFCDA934BF4C4823	1008640	----a-w-	C:\Windows\Sysnative\schedsvc.dll
2016-01-30 14:54:41	65BCE1DC85A1023021D363E0CE4AB14C	845824	----a-w-	C:\Windows\Sysnative\Magnify.exe
2016-01-30 14:54:41	5E6F27976D0A53CE834D94F55378B9EE	929792	----a-w-	C:\Windows\Sysnative\SRH.dll
2016-01-30 14:54:40	DDCBE4B09287CF224B63015F9C6BD31F	1295712	----a-w-	C:\Windows\Sysnative\wpx.dll
2016-01-30 14:54:40	705DC0E4337CFDC6CCC035B2C5F9AF94	1009664	----a-w-	C:\Windows\Sysnative\WMSPDMOD.DLL
2016-01-30 14:54:39	A25B124EF04FE23BE96561C1107B9272	781976	----a-w-	C:\Windows\Sysnative\mfds.dll
2016-01-30 14:54:39	5AB935E396A83A303DEA1FD480A19159	572928	----a-w-	C:\Windows\Sysnative\vbscript.dll
2016-01-30 14:54:39	0AAA44C103BB9D3BE03398BEF93C52A4	826880	----a-w-	C:\Windows\Sysnative\jscript.dll
2016-01-30 14:54:38	B6E5858C57014B0FA4A94F154BBDCC52	784136	----a-w-	C:\Windows\Sysnative\mfsvr.dll
2016-01-30 14:54:37	870F1D282F0F8E7D9A56533A87D0551E	779928	----a-w-	C:\Windows\Sysnative\evr.dll
2016-01-30 14:54:36	BABB3A14002CE205616C9A10373AE040	253952	----a-w-	C:\Windows\Sysnative\SettingsHandlers_UserAccount.dll
2016-01-30 14:54:36	52ABEA8D9AF917CDFF22931595BDC64F	122880	----a-w-	C:\Windows\Sysnative\VEDataLayerHelpers.dll
2016-01-30 14:54:36	09247D43F19CAFEEFEBF6A32F3A1225F	118272	----a-w-	C:\Windows\Sysnative\KnobsCsp.dll
2016-01-30 14:54:36	02786761624CE45D67A480D992C459AC	931328	----a-w-	C:\Windows\Sysnative\MSMPEG2ENC.DLL
2016-01-30 14:54:33	DF84555A734BA2BDA55BCCCC47095ADD	1015808	----a-w-	C:\Windows\Sysnative\RDXService.dll
2016-01-30 14:54:33	311F4D131C28DA12595132A35124E955	910848	----a-w-	C:\Windows\Sysnative\SharedStartModel.dll
2016-01-30 14:54:32	D1650F6BDDF820399421C2952675731A	2558976	----a-w-	C:\Windows\Sysnative\mssrch.dll
2016-01-30 14:54:32	ACA9EAA9CC52E8DA0784FE3B06E06265	609592	----a-w-	C:\Windows\Sysnative\ci.dll
2016-01-30 14:54:31	5A863500AB522EFA6270019D613F15F9	757760	----a-w-	C:\Windows\Sysnative\fveapi.dll
2016-01-30 14:54:29	E5D86250453B33900666D92ED1A92ABE	2740224	----a-w-	C:\Windows\Sysnative\wininet.dll
2016-01-30 14:54:28	F90129379A9D912CCF4EADC50F546C8B	463872	----a-w-	C:\Windows\Sysnative\MFWMAAEC.DLL
2016-01-30 14:54:28	EE329CCF9C1E1CF6096E3935943CB3A5	667856	----a-w-	C:\Windows\Sysnative\advapi32.dll
2016-01-30 14:54:27	B539D98D907A8F94DC3B7BB37B014008	678912	----a-w-	C:\Windows\Sysnative\qedit.dll
2016-01-30 14:54:26	8F52D8477ED3EF446EC72D087FF6B1F5	355328	----a-w-	C:\Windows\Sysnative\ninput.dll
2016-01-30 14:54:26	4D9B59BCD7FA373D52E5CD9A285C332C	587776	----a-w-	C:\Windows\Sysnative\ieui.dll
2016-01-30 14:54:26	0367B8FA0C41969DD92F489DA5FE664F	603648	----a-w-	C:\Windows\Sysnative\duser.dll
2016-01-30 14:54:25	69B076C9D3B75647EE1807E168F20F78	2415104	----a-w-	C:\Windows\Sysnative\DWrite.dll
2016-01-30 14:54:24	C4DC4CAB9B55E288F0C38872009727E9	632168	----a-w-	C:\Windows\Sysnative\dxgi.dll
2016-01-30 14:54:23	D4E92C0C0F9C5054B03D67A3C0B41961	555768	----a-w-	C:\Windows\Sysnative\directmanipulation.dll
2016-01-30 14:54:22	65A0B3477231CE37B09A719DBBB9FCF1	671232	----a-w-	C:\Windows\Sysnative\WUDFx02000.dll
2016-01-30 14:54:19	5CE3C624FABA3154504DF9A2BD029A5E	50176	----a-w-	C:\Windows\Sysnative\WcnNetsh.dll
2016-01-30 14:54:18	A108F6D878F2B95EAA00A088EDE0E598	1294336	----a-w-	C:\Windows\Sysnative\wcnwiz.dll
2016-01-30 14:54:18	62CFDB1741D700E2292242B50F1EC1A9	168960	----a-w-	C:\Windows\Sysnative\InstallAgent.exe
2016-01-30 14:54:18	4AC4CB97674AB132ACB8309C0615452B	772448	----a-w-	C:\Windows\Sysnative\invagent.dll
2016-01-30 14:54:17	913E47FCD3B43EC27215F90884915CAF	780288	----a-w-	C:\Windows\Sysnative\Windows.ApplicationModel.Store.dll
2016-01-30 14:54:17	65F1F4DBB4A6FA971BF9F00129F452A0	494592	----a-w-	C:\Windows\Sysnative\StoreAgent.dll
2016-01-30 14:54:16	BF746516D6DCDF242976A6893D65A778	771072	----a-w-	C:\Windows\Sysnative\Chakradiag.dll
2016-01-30 14:54:16	74C965E6A46F070196BDBC1CBD7DB8F8	607408	----a-w-	C:\Windows\Sysnative\fontdrvhost.exe
2016-01-30 14:54:12	8F643B386A381879A90946ACB6E7F30D	502272	----a-w-	C:\Windows\Sysnative\dlnashext.dll
2016-01-30 14:54:12	72C37168B3A428F33D566130382D3D85	523776	----a-w-	C:\Windows\Sysnative\catsrvut.dll
2016-01-30 14:54:11	A70A997B88EAEE0E898DA5773045AFF1	2446336	----a-w-	C:\Windows\Sysnative\InputService.dll
2016-01-30 14:54:11	3BFEF1D65DFF1CEA182BCF23CBC2BFDD	252768	----a-w-	C:\Windows\Sysnative\ContentDeliveryManager.Utilities.dll
2016-01-30 14:54:11	2E4FA4D0461BB78EC23E12404BED604E	179712	----a-w-	C:\Windows\Sysnative\coredpus.dll
2016-01-30 14:54:09	AF32A0D3E5A07AA50F4012C419E63757	539136	----a-w-	C:\Windows\Sysnative\mfh264enc.dll
2016-01-30 14:54:09	4CF70EA2E9B2DF1F942B357DCC0E33E8	365568	----a-w-	C:\Windows\Sysnative\atmfd.dll
2016-01-30 14:54:07	9C0547B502CFB4F750B883EC4425B30C	441696	----a-w-	C:\Windows\Sysnative\devinv.dll
2016-01-30 14:54:07	69AC1B59A11F3FDBDBEB5B9B09D7E05B	379392	----a-w-	C:\Windows\Sysnative\qdvd.dll
2016-01-30 14:54:06	DBA8FE1EAA344106C334E193D3D57B66	73728	----a-w-	C:\Windows\Sysnative\wwancfg.dll
2016-01-30 14:54:06	C8C5DFF028EA28D7846E95D8E5461794	570880	----a-w-	C:\Windows\Sysnative\MbaeApi.dll
2016-01-30 14:54:05	5002E16AC0B058089CC3BC241AFF8BF2	527952	----a-w-	C:\Windows\Sysnative\AudioSes.dll
2016-01-30 14:54:04	E22030052530D1A6825C47B997EC0DD3	814080	----a-w-	C:\Windows\Sysnative\msctfuimanager.dll
2016-01-30 14:54:04	38F08B82ADEEA1003B4A5177BB5366B3	347136	----a-w-	C:\Windows\Sysnative\ncryptprov.dll
2016-01-30 14:54:01	C197284A9D565A38497733AF2BDFA111	1679360	----a-w-	C:\Windows\Sysnative\FntCache.dll
2016-01-30 14:54:01	986BC1A9E29A9E35C1D10D874616ACBB	215040	----a-w-	C:\Windows\Sysnative\notepad.exe
2016-01-30 14:54:00	F9BD360A4799BB54A01692940C46CA2B	537080	----a-w-	C:\Windows\Sysnative\WWanAPI.dll
2016-01-30 14:54:00	AC180D981BD23443793F7AA71BBE344A	599552	----a-w-	C:\Windows\Sysnative\wpnapps.dll
2016-01-30 14:54:00	0D5C9E27E93AAEA3E30A1E59A7AC3DFF	1205248	----a-w-	C:\Windows\Sysnative\Unistore.dll
2016-01-30 14:53:59	B89FE628B72CEA4674787D13A87CEE9A	387584	----a-w-	C:\Windows\Sysnative\NetSetupShim.dll
2016-01-30 14:53:59	8AFDD74F2DC5BAD9B2215FB19DB65240	809352	----a-w-	C:\Windows\Sysnative\CoreMessaging.dll
2016-01-30 14:53:58	103CBAC0689FA88081E421E8203BA2F0	305664	----a-w-	C:\Windows\Sysnative\ksproxy.ax
2016-01-30 14:53:57	8A216BBE091DA0585F6A5E8B65980961	324096	----a-w-	C:\Windows\Sysnative\profsvc.dll
2016-01-30 14:53:56	EF3BBA8739757B470D0E49C8619A31C0	53760	----a-w-	C:\Windows\Sysnative\Windows.Speech.Pal.dll
2016-01-30 14:53:56	AF34122A1B595218036B4049D802B470	1203712	----a-w-	C:\Windows\Sysnative\Windows.Devices.Bluetooth.dll
2016-01-30 14:53:56	43A1B8B43CA4E213E0FD920F2FD6BCBA	267776	----a-w-	C:\Windows\Sysnative\Windows.Internal.Management.dll
2016-01-30 14:53:56	334206DD8DA94B0AEBC46A3196888031	83968	----a-w-	C:\Windows\Sysnative\DeviceEnroller.exe
2016-01-30 14:53:56	157B1CABAF5201237EECA4FB0F34D822	403456	----a-w-	C:\Windows\Sysnative\dmenrollengine.dll
2016-01-30 14:53:55	90211F7475F525E7F9858C0CE3BBBBE7	1774592	----a-w-	C:\Windows\Sysnative\Windows.UI.Immersive.dll
2016-01-30 14:53:54	F01743062DA74A24A0E7836289E33731	187904	----a-w-	C:\Windows\Sysnative\provisioningcsp.dll
2016-01-30 14:53:54	C92EBECB1E30E7E6006C0D8B4040C3F6	274944	----a-w-	C:\Windows\Sysnative\syncutil.dll
2016-01-30 14:53:54	194239DA484C7DB62E6773ABB5DD4463	269312	----a-w-	C:\Windows\Sysnative\provengine.dll
2016-01-30 14:53:53	D33C8E7B495A668F4F9740CC93AF6496	453120	----a-w-	C:\Windows\Sysnative\Windows.Devices.Usb.dll
2016-01-30 14:53:53	41E4B5F664AAF085F5B8147D0321DE4C	846336	----a-w-	C:\Windows\Sysnative\wpncore.dll
2016-01-30 14:53:49	E4FEBAC5221A92C25734A9769B66A97D	310784	----a-w-	C:\Windows\Sysnative\ActionCenter.dll
2016-01-30 14:53:40	E19B29DCA6AF0D29E180769FEDD408DD	250520	----a-w-	C:\Windows\Sysnative\MPG4DECD.DLL
2016-01-30 14:53:40	76432D2E5504D33B4D2B1F837A057ED4	251544	----a-w-	C:\Windows\Sysnative\MP43DECD.DLL
2016-01-30 14:53:39	2C144777278ECD6DFF4B5A90F742C1AA	346112	----a-w-	C:\Windows\Sysnative\ngccredprov.dll
2016-01-30 14:53:38	A92AFC8FB13ADC1CB59719B3E519C843	1294352	----a-w-	C:\Windows\Sysnative\winload.efi
2016-01-30 14:53:38	7E8811597D2752736B776F15A1C8FAA6	856576	----a-w-	C:\Windows\Sysnative\ContactApis.dll
2016-01-30 14:53:37	C6BA8ADCD2F2A626E01B20D740C5A9AF	1602560	----a-w-	C:\Windows\Sysnative\urlmon.dll
2016-01-30 14:53:37	35EC6A4E7384E233CBB5EEFD3BC2204D	247296	----a-w-	C:\Windows\Sysnative\facecredentialprovider.dll
2016-01-30 14:53:36	5077A7430A034A3A53811C3F4E4BD76A	195584	----a-w-	C:\Windows\Sysnative\fwpolicyiomgr.dll
2016-01-30 14:53:36	327DA4A4DE4E9BECF2C16967366C74E2	186880	----a-w-	C:\Windows\Sysnative\cloudAP.dll
2016-01-30 14:53:35	20436EF4CDBBC0B87464EE42D9D31C99	306688	----a-w-	C:\Windows\Sysnative\NotificationObjFactory.dll
2016-01-30 14:53:34	B7927A1D40BD17BC963E9353DBB36CD7	869376	----a-w-	C:\Windows\Sysnative\MapControlCore.dll
2016-01-30 14:53:34	02954F6B3389EF56088EF1C99B6105BA	202240	----a-w-	C:\Windows\Sysnative\accountaccessor.dll
2016-01-30 14:53:33	2B4D03A121996467E53AF02F028FD017	235008	----a-w-	C:\Windows\Sysnative\UserMgrProxy.dll
2016-01-30 14:53:33	11648E08564ECFC6CB435990261F1A34	1123400	----a-w-	C:\Windows\Sysnative\winload.exe
2016-01-30 14:53:32	5D046D71B18BEFB2E4D164C3DEEDD672	187392	----a-w-	C:\Windows\Sysnative\NetSetupSvc.dll
2016-01-30 14:53:29	B32BD244B13DEC1DD050146B5F5466D7	1061888	----a-w-	C:\Windows\Sysnative\reseteng.dll
2016-01-30 14:53:27	BBA571F40F08F967531573109F7FA95E	169984	----a-w-	C:\Windows\Sysnative\mdmregistration.dll
2016-01-30 14:53:27	3B397ED55AE652520503CCE0996B0D25	160256	----a-w-	C:\Windows\Sysnative\enrollmentapi.dll
2016-01-30 14:53:25	E407B70B9D21CA3967485D464A01BAE5	140288	----a-w-	C:\Windows\Sysnative\WcnApi.dll
2016-01-30 14:53:24	3DB512EC071AB5656EECA3611E24C797	752640	----a-w-	C:\Windows\Sysnative\ChatApis.dll
2016-01-30 14:53:24	3C6F2EF4541A9CD98EFED7B8CE9D061F	112640	----a-w-	C:\Windows\Sysnative\fdWCN.dll
2016-01-30 14:53:24	01F1D71F291A64266E3B0DF60E6B6CE7	117760	----a-w-	C:\Windows\Sysnative\dafWCN.dll
2016-01-30 14:53:23	D348983828D21D3D05711812A2811DCF	243248	----a-w-	C:\Windows\Sysnative\mfps.dll
2016-01-30 14:53:23	863E39BB1F8779B8A6CEEC4BA93401C2	1018568	----a-w-	C:\Windows\Sysnative\winresume.efi
2016-01-30 14:53:22	F1A6A22A63F380DFF28C55B11D688B0C	102304	----a-w-	C:\Windows\Sysnative\omadmapi.dll
2016-01-30 14:53:22	C18ED3B56B91A835F019634180349E8A	849408	----a-w-	C:\Windows\Sysnative\comdlg32.dll
2016-01-30 14:53:21	B02EA3A2E6BEDAB9C954AAC6BD887874	292856	----a-w-	C:\Windows\Sysnative\LockAppHost.exe
2016-01-30 14:53:21	97EB90D57B84797D01D59E862B1FF9E8	1591848	----a-w-	C:\Windows\Sysnative\gdi32.dll
2016-01-30 14:53:20	C5890CAD6482B12ECA19E680B779560F	858408	----a-w-	C:\Windows\Sysnative\winresume.exe
2016-01-30 14:53:20	64D7B91B7D667A70782D9C76D6292C3C	980832	----a-w-	C:\Windows\Sysnative\SecConfig.efi
2016-01-30 14:53:18	F3994884BE4F1019B4EC34F85A3397E7	171520	----a-w-	C:\Windows\Sysnative\WinBioDataModel.dll
2016-01-30 14:53:18	E283DE7B5BB438BE4CCD393DA582A5D2	404480	----a-w-	C:\Windows\Sysnative\diagtrack_wininternal.dll
2016-01-30 14:53:17	917C7C09612AD81BCF0C49007740DB4E	775312	----a-w-	C:\Windows\Sysnative\locale.nls
2016-01-30 14:53:17	2C7B2FD825A8AF0A1338D86B5AFA4343	413184	----a-w-	C:\Windows\Sysnative\diagtrack_win.dll
2016-01-30 14:53:16	D4D08AB39F842C640B7F8B1296BDC38C	121344	----a-w-	C:\Windows\Sysnative\DAMM.dll
2016-01-30 14:53:16	919663D05E791FBC7A5766E150435279	120832	----a-w-	C:\Windows\Sysnative\NetworkStatus.dll
2016-01-30 14:53:16	0F7067F069D502954F4E9E3D3378585B	79872	----a-w-	C:\Windows\Sysnative\BthRadioMedia.dll
2016-01-30 14:53:15	E650DD63BF9C8F4369C547B72DC81888	333312	----a-w-	C:\Windows\Sysnative\MusUpdateHandlers.dll
2016-01-30 14:53:15	B8401703E619E7BD7B5A659306A9BFE6	84480	----a-w-	C:\Windows\Sysnative\MDMAppInstaller.exe
2016-01-30 14:53:15	7E90F66669509E7BD2B250BC271D94E2	171008	----a-w-	C:\Windows\Sysnative\dot3mm.dll
2016-01-30 14:53:15	49213BF8E7EEE157F128C58D75043B09	68096	----a-w-	C:\Windows\Sysnative\EnterpriseDesktopAppMgmtCSP.dll
2016-01-30 14:53:14	D907DFF972354542D5B0B4414B308B75	312832	----a-w-	C:\Windows\Sysnative\SensorsApi.dll
2016-01-30 14:53:14	696A3CCDD99BD4694C7A925CF8B7DDAE	91648	----a-w-	C:\Windows\Sysnative\SensorsNativeApi.V2.dll
2016-01-30 14:53:13	62821B34C9D94E7E58FD2D71F426F5C0	78848	----a-w-	C:\Windows\Sysnative\VPNv2CSP.dll
2016-01-30 14:53:13	184EA31BE714F3B33A5E96CBE103561C	78528	----a-w-	C:\Windows\Sysnative\acmigration.dll
2016-01-30 14:53:11	B9FC9E9B55C74557FEC004BF8B1184F4	359936	----a-w-	C:\Windows\Sysnative\ncsi.dll
2016-01-30 14:53:09	A1EFFF8EA50BE57AC38264541F1B88FD	801632	----a-w-	C:\Windows\Sysnative\WWAHost.exe
2016-01-30 14:53:09	38A519B37BAD270D0C65AE3AF7A083F2	1817064	----a-w-	C:\Windows\Sysnative\WMALFXGFXDSP.dll
2016-01-30 14:53:07	D1AA97B30A9ED6F89DC3848C8BF53513	224256	----a-w-	C:\Windows\Sysnative\KnobsCore.dll
2016-01-30 14:53:06	9045120B390CDA9C0C7DB93745B92554	720896	----a-w-	C:\Windows\Sysnative\EmailApis.dll
2016-01-30 14:53:06	5CF2C1A920FAC677573B529436773A84	55296	----a-w-	C:\Windows\Sysnative\MusNotificationUx.exe
2016-01-30 14:53:05	0E585006B82E0566AE521641D827F852	235520	----a-w-	C:\Windows\Sysnative\SettingsHandlers_Notifications.dll
2016-01-30 14:53:04	7C00C6F9DD1F5B606FD0FAEFA639558D	41984	----a-w-	C:\Windows\Sysnative\VoiceActivationManager.dll
2016-01-30 14:53:04	7910232E31799A576F2509DA92CB8813	928256	----a-w-	C:\Windows\Sysnative\JpMapControl.dll
2016-01-30 14:53:04	41C0EC5B11375F9CA045AFEF1EB75D5F	366592	----a-w-	C:\Windows\Sysnative\wuuhext.dll
2016-01-30 14:53:03	F777FE6BA9C62A4D90BC7017C8FED35F	336384	----a-w-	C:\Windows\Sysnative\SearchProtocolHost.exe
2016-01-30 14:53:00	0D75CBD29B38A8D9361033A6884848AF	25280	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2016-01-30 14:52:57	D37063C5B492B7B4F26D24C62167C8BE	137728	----a-w-	C:\Windows\Sysnative\VEStoreEventHandlers.dll
2016-01-30 14:52:57	85146ABCB1EF298D1FF6EE4D5541788C	832512	----a-w-	C:\Windows\Sysnative\MapsStore.dll
2016-01-30 14:52:56	F548C34A6FF655F0A716316133B4DD5D	590336	----a-w-	C:\Windows\Sysnative\MessagingDataModel2.dll
2016-01-30 14:52:56	01074D7E7370E7A7CAFF0DC442C89794	113184	----a-w-	C:\Windows\Sysnative\userenv.dll
2016-01-30 14:52:55	9C71FA3F776218AD2394833B8DE79031	685568	----a-w-	C:\Windows\Sysnative\AppointmentApis.dll
2016-01-30 14:52:52	FBFC4EAC38BEC9515BBAC57D1F2288E6	573440	----a-w-	C:\Windows\Sysnative\Windows.Cortana.Desktop.dll
2016-01-30 14:52:52	E4257DF7C5517E3996047F7ADDB208F5	8847	----a-w-	C:\Windows\Sysnative\ResPriHMImageList
2016-01-30 14:52:52	D61C3ED7C5F0D1B5BD9B351FEC381D57	120832	----a-w-	C:\Windows\Sysnative\omadmclient.exe
2016-01-30 14:52:52	70AAE16C405934CAD2024E8E5BDDDC7A	28672	----a-w-	C:\Windows\Sysnative\NotificationControllerPS.dll
2016-01-30 14:52:51	B171608F20705895726DE86B34D1FBAC	95744	----a-w-	C:\Windows\Sysnative\LocationWiFiAdapter.dll
2016-01-30 14:52:51	98EAC529E0F9A1566E9E19D4667854EC	181760	----a-w-	C:\Windows\Sysnative\shutdownux.dll
2016-01-30 14:52:51	5E8D09216315B063FD4AEAB9508F0776	1087296	----a-w-	C:\Windows\Sysnative\mfplat.dll
2016-01-30 14:52:50	CFFE537A11AE6C825F36240B96689886	993104	----a-w-	C:\Windows\Sysnative\ReAgent.dll
2016-01-30 14:52:50	02707CF32272B726BB410E6717BBB7E8	446976	----a-w-	C:\Windows\Sysnative\MapConfiguration.dll
2016-01-30 14:52:46	D88952BD78157D66A0921B63F5DD0EC5	439296	----a-w-	C:\Windows\Sysnative\LocationWebproxy.dll
2016-01-30 14:52:45	F5839DD5FD73019B046ED7FD87AE6C71	123392	----a-w-	C:\Windows\Sysnative\mssprxy.dll
2016-01-30 14:52:44	77C8CD0AACC1D059EDF6E91920D11550	421888	----a-w-	C:\Windows\Sysnative\Windows.Internal.Bluetooth.dll
2016-01-30 14:52:42	E6B7193FF6E1FBFD644E0D5545A6E779	7168	----a-w-	C:\Windows\Sysnative\KBDAZST.DLL
2016-01-30 14:52:42	AE15D9860C287112D57062E24FCD6EB9	7168	----a-w-	C:\Windows\Sysnative\KBDAZE.DLL
2016-01-30 14:52:42	69B49DECE9996743DB231D06F49701B2	7168	----a-w-	C:\Windows\Sysnative\KBDAZEL.DLL
2016-01-30 14:52:42	50B2D1C6E83407093678C0B0791F4B74	7168	----a-w-	C:\Windows\Sysnative\kbdgeoqw.dll
2016-01-30 14:52:40	17A344D0A065883ABE6A9239093E7CA9	594472	----a-w-	C:\Windows\Sysnative\Windows.Internal.Shell.Broker.dll
2016-01-30 14:52:39	E6337423BD19DD12EB6777934B57E0F4	176640	----a-w-	C:\Windows\Sysnative\LocationPeIP.dll
2016-01-30 14:52:39	07B5710393558DD734647D5F2F020647	215552	----a-w-	C:\Windows\Sysnative\LocationCrowdsource.dll
2016-01-30 14:52:37	75051FAAA293FA5414105A2BDA6BAC05	223232	----a-w-	C:\Windows\Sysnative\PhoneCallHistoryApis.dll
2016-01-30 14:52:37	230C8AEE3C7F4723ABEA09C93DF47AF3	257024	----a-w-	C:\Windows\Sysnative\UserDataAccountApis.dll
2016-01-30 14:52:35	A0DBB9386BEA8DA1A159C2A2E07081A3	856576	----a-w-	C:\Windows\Sysnative\MPSSVC.dll
2016-01-30 14:52:35	141ABE24124CB1E25954E9D52FF1B999	67072	----a-w-	C:\Windows\Sysnative\profext.dll
2016-01-30 14:52:33	63D8A023148D8436D6CBA65E2B9ED56A	143360	----a-w-	C:\Windows\Sysnative\provops.dll
2016-01-30 14:52:32	26E5D4CA29A7B33EAD6E4C07D7DD3FBF	193024	----a-w-	C:\Windows\Sysnative\EnterpriseModernAppMgmtCSP.dll
2016-01-30 14:52:30	EA1C2DAB8A63712B94897A58557B086C	371712	----a-w-	C:\Windows\Sysnative\nlasvc.dll
2016-01-30 14:52:29	124DC4FC14EEA95B8E05F139A57D5B91	553472	----a-w-	C:\Windows\Sysnative\GamePanel.exe
2016-01-30 14:52:28	F0B43C550BD519423FB79A58A860CE0B	204288	----a-w-	C:\Windows\Sysnative\LocationPeCell.dll
2016-01-30 14:52:28	5793FBBB1F120D1815A8348434ED236C	221184	----a-w-	C:\Windows\Sysnative\LocationPeWiFi.dll
2016-01-30 14:52:28	54D78B8A26900F3E08191ABF0AD499A2	193536	----a-w-	C:\Windows\Sysnative\SharedStartModelShim.dll
2016-01-30 10:15:00	E9739AE8B2FA28DCD6F2EF5525DA8827	77656	----a-w-	C:\Windows\Sysnative\XAPOFX1_5.dll
2016-01-30 10:15:00	ADA0C39D4EACDC81FD84163A95D62079	2526056	----a-w-	C:\Windows\Sysnative\D3DCompiler_43.dll
2016-01-30 10:15:00	4F7513FF4DE6303088DB28DCBCEF372C	518488	----a-w-	C:\Windows\Sysnative\XAudio2_7.dll
2016-01-30 10:14:59	9D6429F410597750B2DC2579B2347303	276832	----a-w-	C:\Windows\Sysnative\d3dx11_43.dll
2016-01-30 10:14:54	B739C423276AE62D7AC91773226EC13B	523088	----a-w-	C:\Windows\Sysnative\d3dx10_42.dll
2016-01-30 10:14:46	A4DDFE5DC4E73D1FED9B1B3A3D885612	4398360	----a-w-	C:\Windows\Sysnative\d3dx9_32.dll
2016-01-30 09:51:38	AF8A360A3544F337DAD398D47A620307	16148	----a-w-	C:\Windows\Sysnative\LAPTOP-TERHHKCA_defaultuser0_HistoryPrediction.bin
2016-01-30 09:45:17	1373F6562D5E4C715D5D3583E350093E	200	----a-w-	C:\Windows\Sysnative\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-01-30 09:43:55	6C240583248C7C87EFCA78BE36459266	99856	----a-w-	C:\Windows\Sysnative\Intel_OpenCL_ICD64.dll
2016-01-30 09:43:55	58A29EF4CCF01D89FCA39C1BA2067D2F	332808	----a-w-	C:\Windows\Sysnative\IntelWiDiUtils64.dll
2016-01-30 09:43:55	56C714E1D49CF627F6960E6A5CA0C7B3	538520	----a-w-	C:\Windows\Sysnative\IntelWiDiUMS64.exe
2016-01-30 09:43:54	BE83B45B1573785F9407A08ECF0E9B46	162816	----a-w-	C:\Windows\Sysnative\IntelWiDiLogServer64.dll
2016-01-30 09:43:54	AEDF0CF4216E4163517B8172A85EFBB1	350720	----a-w-	C:\Windows\Sysnative\IntelWiDiMCComp64.dll
2016-01-30 09:43:54	7E92B5C712B250C7274F217DB662AD05	416768	----a-w-	C:\Windows\Sysnative\IntelOpenCL64.dll
2016-01-30 09:43:53	D84471613C7BE2EAE62EBD322117C56A	1026968	----a-w-	C:\Windows\Sysnative\igfxSDK.exe
2016-01-30 09:43:53	A30A8CBFA137FE1691C4DB90472B446B	4598	----a-w-	C:\Windows\Sysnative\iglhxs64.vp
2016-01-30 09:43:53	6CBFDBD26D779C449A919FEACC90B096	101880	----a-w-	C:\Windows\Sysnative\igfxSDKLib.dll
2016-01-30 09:43:53	2C0AF1E10A3252009EE40F5783A01916	109056	----a-w-	C:\Windows\Sysnative\igfxSDKLibv2_0.dll
2016-01-30 09:43:53	1FC3ED5758887DA1442B6382DCD32D9E	1818248	----a-w-	C:\Windows\Sysnative\iglhsip64.dll
2016-01-30 09:43:53	16F42FE1E1E57C67B28A84D31D0004F6	243680	----a-w-	C:\Windows\Sysnative\iglhcp64.dll
2016-01-30 09:43:53	093B953173454BC2EBEC9DDE66C35D94	607144	----a-w-	C:\Windows\Sysnative\IntelCpHDCPSvc.exe
2016-01-30 09:43:52	FB53068058CC9B618887E1683F87D90A	1584632	----a-w-	C:\Windows\Sysnative\igfxcmjit64.dll
2016-01-30 09:43:52	F762738973D61355F322D248405546B4	104960	----a-w-	C:\Windows\Sysnative\igfxCUIServicePS.dll
2016-01-30 09:43:52	D50E0B4F8A30F991D9CBDCF24697DBFF	24056	----a-w-	C:\Windows\Sysnative\igfxLHMLib.dll
2016-01-30 09:43:52	D2B2BD7365F9DC75B1549FFFC0DF5558	186024	----a-w-	C:\Windows\Sysnative\igfxcmrt64.dll
2016-01-30 09:43:52	CDF6A45E6FFBEFFE7B214199D1C45612	30208	----a-w-	C:\Windows\Sysnative\igfxDILibv2_0.dll
2016-01-30 09:43:52	BFFC6383C1BA483265CAA3C2025427FC	92664	----a-w-	C:\Windows\Sysnative\igfxDHLibv2_0.dll
2016-01-30 09:43:52	BA484A8489E21EE608F92DD9A85CB4CC	29192	----a-w-	C:\Windows\Sysnative\igfxDILib.dll
2016-01-30 09:43:52	9FCD6B1611CEF44746A693860F841D0A	185000	----a-w-	C:\Windows\Sysnative\igfx11cmrt64.dll
2016-01-30 09:43:52	5E9314621903E751A5674F39660C1C11	27656	----a-w-	C:\Windows\Sysnative\igfxEMLibv2_0.dll
2016-01-30 09:43:52	58566D7D6EE039BD229BEF286ACF5884	29176	----a-w-	C:\Windows\Sysnative\igfxEMLib.dll
2016-01-30 09:43:52	441F0CBBCCD913C96DB87465D025FD13	22544	----a-w-	C:\Windows\Sysnative\igfxLHMLibv2_0.dll
2016-01-30 09:43:52	2DED4EC23AEF0E3ABB1EA7A040184B29	83456	----a-w-	C:\Windows\Sysnative\igfxDHLib.dll
2016-01-30 09:43:52	29ED6DEAA049D5F072204806742F0C61	403464	----a-w-	C:\Windows\Sysnative\igfxOSP.dll
2016-01-30 09:43:52	1BC54CD36D61B3F99DB14DAFD58FC7A7	274944	----a-w-	C:\Windows\Sysnative\igfxCPL.cpl
2016-01-30 09:43:52	0D0878F6C0D3327FA5CE86BB1366A289	260104	----a-w-	C:\Windows\Sysnative\igfxDTCM.dll
2016-01-30 09:43:51	748746EDB78C142C733E9AA4D39898C3	4463096	----a-w-	C:\Windows\Sysnative\igdrcl64.dll
2016-01-30 09:43:50	C9D1E2562FEA571D70FCFEDF8643D88A	1910472	----a-w-	C:\Windows\Sysnative\igdmd64.dll
2016-01-30 09:43:50	60AD695ADC962634355EED0599457BBE	1233424	----a-w-	C:\Windows\Sysnative\igdfcl64.dll
2016-01-30 09:43:50	564C390A5D129356A5C6648CDE705708	5486592	----a-w-	C:\Windows\Sysnative\igdmcl64.dll
2016-01-30 09:43:49	D0467897C43F21B0F9D4F64DAA6B3A11	189448	----a-w-	C:\Windows\Sysnative\igdail64.dll
2016-01-30 09:43:49	CFCF6659B06D007704302DE0FC344246	5228400	----a-w-	C:\Windows\Sysnative\igd12umd64.dll
2016-01-30 09:43:49	C1692CAC46D0F6D7086204B8A622C602	223232	----a-w-	C:\Windows\Sysnative\igdde64.dll
2016-01-30 09:43:49	A7F94E104DB7682E49C6010B38FF3812	442896	----a-w-	C:\Windows\Sysnative\igdbcl64.dll
2016-01-30 09:43:49	4B06815E3E68303E817BC49B45096264	30945744	----a-w-	C:\Windows\Sysnative\igd11dxva64.dll
2016-01-30 09:43:49	0433C33D839B47503151CD5EB38C00CD	6741482	----a-w-	C:\Windows\Sysnative\igdclbif.bin
2016-01-30 09:43:48	CA7FE70CC9DA8950C645E957136B6F06	13124632	----a-w-	C:\Windows\Sysnative\igc64.dll
2016-01-30 09:43:48	81A3810850378A7B8522EDC0C9EFD9AA	308096	----a-w-	C:\Windows\Sysnative\igd10idpp64.dll
2016-01-30 09:43:47	EFD89B6ADAFFFFC4EF9D1F7A1AE86DD3	466344	----a-w-	C:\Windows\Sysnative\GfxUIEx.exe
2016-01-30 09:43:47	B22C191075220560427C7DD0B73FF1D2	232856	----a-w-	C:\Windows\Sysnative\DPTopologyAppv2_0.exe
2016-01-30 09:43:47	946CBFB15A0EEBC239AEC6B24D130A05	940456	----a-w-	C:\Windows\Sysnative\Gfxv2_0.exe
2016-01-30 09:43:47	6EE682FDFED9E157D92F3E28CA67CCC6	5262864	----a-w-	C:\Windows\Sysnative\GfxResources.dll
2016-01-30 09:43:47	5BCC10E01EA5C0FEE20B5B5E0369F369	13021688	----a-w-	C:\Windows\Sysnative\ig8icd64.dll
2016-01-30 09:43:47	51F01F119EB07E29F98C3878950E2803	945048	----a-w-	C:\Windows\Sysnative\Gfxv4_0.exe
2016-01-30 09:43:47	4457C1484BA78DFAB3F5388BB1D474E4	233368	----a-w-	C:\Windows\Sysnative\DPTopologyApp.exe
2016-01-30 09:43:47	3F29C4C940042109DE4E5A7AA598C988	174496	----a-w-	C:\Windows\Sysnative\difx64.exe
2016-01-30 09:43:46	828185757595C9F3976AFACAD18E1E15	20488712	----a-w-	C:\Windows\Sysnative\common_clang64.dll
2016-01-30 09:43:20	FDB03E10C048F68C50D2949A4907FF18	2458936	----a-w-	C:\Windows\Sysnative\LdaCx2.dll
2016-01-30 09:43:20	1C1C3C5D7DF9D6B19410168E7724F48E	3933496	----a-w-	C:\Windows\Sysnative\LogiLDA.DLL
2016-01-30 09:40:49	5C5A797761421CF9B72087F3BC8A5259	180	----a-w-	C:\Windows\Sysnative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
====== C:\Windows\Sysnative\drivers =====
2016-02-03 11:49:44	78488AF2AB2111D67B3C4044707A519B	192216	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2016-02-03 11:49:24	CFBC6C6D8A492697CABD1D353EE64933	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2016-02-03 11:49:24	42B3F5C9FBC9B3F0E0BA6B5D7FC8E849	109272	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2016-02-03 11:49:24	08DECFCB9BA97786165A69AB1015BC30	64216	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2016-01-30 14:57:55	9B2039C5673EEBF1D4E34ABC0AFB88C7	685568	----a-w-	C:\Windows\Sysnative\drivers\WdiWiFi.sys
2016-01-30 14:57:53	7BF844D362EB746BC7A6DC3F57FA3E32	8192	----a-w-	C:\Windows\Sysnative\drivers\gpuenergydrv.sys
2016-01-30 14:57:49	70469C8AC4AD367295E70CFDD81B754C	99664	----a-w-	C:\Windows\Sysnative\drivers\pdc.sys
2016-01-30 14:57:47	C67A03F54A1EA683F4880A481EE5FF6C	373072	----a-w-	C:\Windows\Sysnative\drivers\USBXHCI.SYS
2016-01-30 14:57:42	D42AC03ACF9CA67693D1D9BB4D2A0BC8	116064	----a-w-	C:\Windows\Sysnative\drivers\tdx.sys
2016-01-30 14:57:42	A3D96563BF46FC8A0E5756B796127D14	577888	----a-w-	C:\Windows\Sysnative\drivers\afd.sys
2016-01-30 14:57:42	91756EE69E63D66F77E3B791D33F7078	459104	----a-w-	C:\Windows\Sysnative\drivers\netio.sys
2016-01-30 14:57:42	1434CA8A224655AD096D57DB24D3AA85	406864	----a-w-	C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2016-01-30 14:57:41	89C9C3745F270EF93988DA57BC6AA62B	1983824	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2016-01-30 14:57:41	7C3DDCB6F927AFC5569A8CC584F5B5F3	147968	----a-w-	C:\Windows\Sysnative\drivers\rmcast.sys
2016-01-30 14:57:41	7680537006A420D7488E5057A8149F86	442208	----a-w-	C:\Windows\Sysnative\drivers\storport.sys
2016-01-30 14:57:41	14B46248612DF1B1A695040FFFBCFAFC	155136	----a-w-	C:\Windows\Sysnative\drivers\tunnel.sys
2016-01-30 14:57:40	AE7B7E1E95BFB9340B1956C98CA52C81	80720	----a-w-	C:\Windows\Sysnative\drivers\stornvme.sys
2016-01-30 14:57:36	FA5C94FB36625787063D04CF2F24E890	320000	----a-w-	C:\Windows\Sysnative\drivers\portcls.sys
2016-01-30 14:57:36	DAF957B25A35757E9D814611FAE8FE3B	237392	----a-w-	C:\Windows\Sysnative\drivers\rdyboost.sys
2016-01-30 14:57:35	647E2A425AD43637EAA01096A58B7089	65536	----a-w-	C:\Windows\Sysnative\drivers\bthhfenum.sys
2016-01-30 14:57:35	27E248CD861AFED4DF0C48F4C853E7F0	80896	----a-w-	C:\Windows\Sysnative\drivers\hdaudbus.sys
2016-01-30 14:57:35	1BDA1FD02783566F0B20EB0E2517F85C	516448	----a-w-	C:\Windows\Sysnative\drivers\USBHUB3.SYS
2016-01-30 14:57:26	854AF190F55E6D70EC65A85798F896E2	36352	----a-w-	C:\Windows\Sysnative\drivers\buttonconverter.sys
2016-01-30 14:57:26	7EBD20284AC9BF9F0A020B86769BB074	2432336	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2016-01-30 14:57:15	FCC211B0F46D831506D0D76539203899	929280	----a-w-	C:\Windows\Sysnative\drivers\bthport.sys
2016-01-30 14:54:40	927AD29D7F91B9A0C5294932374DA15E	894256	----a-w-	C:\Windows\Sysnative\drivers\Wdf01000.sys
2016-01-30 14:54:25	FDB239DBE2A14B572D21ABCEDC7BB5D0	505696	----a-w-	C:\Windows\Sysnative\drivers\dxgmms2.sys
2016-01-30 14:54:25	B6A33DCEBE437F909615E89BA5FB1385	395088	----a-w-	C:\Windows\Sysnative\drivers\dxgmms1.sys
2016-01-30 14:54:05	5A1C6AFFF6946C5C21A27AE05084C0D1	332624	----a-w-	C:\Windows\Sysnative\drivers\fastfat.sys
2016-01-30 14:53:57	004C66464D8FE76D5DA78BE6777D61AF	278352	----a-w-	C:\Windows\Sysnative\drivers\sdbus.sys
2016-01-30 14:53:51	78CA1FF6FE37EEFAFF99DD1C956AF60A	200528	----a-w-	C:\Windows\Sysnative\drivers\wof.sys
2016-01-30 14:53:21	0A368247A900656CC0678117DFC3A87C	498016	----a-w-	C:\Windows\Sysnative\drivers\usbhub.sys
2016-01-30 14:53:19	D5EC9413527B286CFEEB0294C53ABB95	102752	----a-w-	C:\Windows\Sysnative\drivers\mountmgr.sys
2016-01-30 14:53:10	388F2A3C771B8BEE76FD1AAF9614D08E	52264	----a-w-	C:\Windows\Sysnative\drivers\wpcfltr.sys
2016-01-30 14:53:07	988588C16A53C2581488C15FF18934BF	46432	----a-w-	C:\Windows\Sysnative\drivers\msgpiowin32.sys
2016-01-30 14:52:54	CFCCF9F67EECBA6BFE4E880D9BE70CBB	22528	----a-w-	C:\Windows\Sysnative\drivers\usb8023.sys
2016-01-30 14:52:47	616F40B897DA651221F86A1741E9609B	1168736	----a-w-	C:\Windows\Sysnative\drivers\ndis.sys
2016-01-30 10:13:50	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-01-30 09:36:04	BA8DC96D1DD7785EB0589CB1777208B7	2115936	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2016-01-22 14:15:46	19397C0AE6483195D4CF939C7F82A6AF	260528	----a-w-	C:\Windows\Sysnative\drivers\avgmfx64.sys
2016-01-08 09:46:46	9208FEECE7B265529FDF4DAC7F7A1C7C	272304	----a-w-	C:\Windows\Sysnative\drivers\avgidsha.sys
2016-01-08 09:46:34	EADED7133726FEEC05C3A7CF0F661590	23472	----a-w-	C:\Windows\Sysnative\drivers\avguniva.sys
2016-01-07 14:03:54	344B89E8D91B1F25239310DCC7337ED0	21632	----a-w-	C:\Windows\Sysnative\drivers\avgboota.sys
====== C:\Windows\Tasks ======
2016-02-04 14:36:21	27C8417AECDD51943228402CCD15EA89	3388	----a-w-	C:\Windows\Sysnative\Tasks\AcerCloud
2016-02-03 14:29:33	44202936F26E588440407630C3504515	4200	----a-w-	C:\Windows\Sysnative\Tasks\User_Feed_Synchronization-{9040A449-B978-440D-B365-999C3FBD5497}
2016-02-03 11:43:51	--------	d-----w-	C:\Windows\Sysnative\Tasks\Games
2016-01-30 10:00:00	743BFD9E1C783DDA4AE4D18BBF33A0E4	3404	----a-w-	C:\Windows\Sysnative\Tasks\abDocsDllLoader
2016-01-30 09:58:46	A8E061A003250DDF122729EE6A3E85D3	3418	----a-w-	C:\Windows\Sysnative\Tasks\BacKGroundAgent
2016-01-30 09:55:52	54C9AA639C43A79BC47F4DE737811526	3360	----a-w-	C:\Windows\Sysnative\Tasks\App Explorer
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-02-04 09:29:27	--------	d-----w-	C:\Program Files\trend micro
2016-02-03 13:09:12	--------	d-----w-	C:\Program Files\Common Files\AVG Secure Search
2016-02-03 11:40:07	--------	d-----w-	C:\Program Files\Classic Shell
2016-01-30 09:52:05	--------	d-----w-	C:\Program Files\Accessory Store
2016-01-29 20:22:10	--------	d-----w-	C:\Program Files\Windows Live
======= C:\PROGRA~2 =====
2016-02-03 12:40:35	--------	d-----w-	C:\PROGRA~2\AVG
2016-02-01 16:45:29	--------	d-----w-	C:\PROGRA~2\Calibre2
2016-01-30 12:47:10	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2016-01-30 10:14:23	--------	d-----w-	C:\PROGRA~2\COMMON~1\Windows Live
2016-01-30 09:54:17	--------	d-----w-	C:\PROGRA~2\OEM
2016-01-29 20:22:04	--------	d-----w-	C:\PROGRA~2\Windows Live
======= C: =====
====== C:\Users\anjav\AppData\Roaming ======
2016-02-04 09:32:52	--------	d-s---w-	C:\Windows\serviceprofiles\networkservice\AppData\LocalLow
2016-02-03 12:41:14	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog
2016-02-03 12:41:14	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg
2016-02-03 12:41:09	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg
2016-02-03 12:39:53	--------	d-----w-	C:\Users\anjav\AppData\Local\AvgSetupLog
2016-02-03 12:39:53	--------	d-----w-	C:\Users\anjav\AppData\Local\Avg
2016-02-03 11:49:06	--------	d-----w-	C:\Users\anjav\AppData\Local\Programs
2016-02-03 11:42:07	--------	d-----w-	C:\Users\anjav\AppData\Local\ClassicShell
2016-02-03 11:13:37	--------	d-----w-	C:\Users\anjav\AppData\Local\CyberLink
2016-01-30 11:21:06	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\clear.fi
2016-01-30 10:14:31	--------	d-----w-	C:\Users\anjav\AppData\Local\Windows Live
2016-01-30 10:07:08	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\DataSharing
2016-01-30 09:58:45	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Acer
2016-01-30 09:58:30	--------	d-----w-	C:\Users\anjav\AppData\Local\Mozilla
2016-01-30 09:57:21	--------	d-----w-	C:\Users\anjav\AppData\Local\MicrosoftEdge
2016-01-30 09:55:22	--------	d-----w-	C:\Users\anjav\AppData\Local\clear.fi
2016-01-30 09:54:58	--------	d-----w-	C:\Users\anjav\AppData\Local\CareCenter
2016-01-30 09:54:05	--------	d-----w-	C:\Users\anjav\AppData\Local\Comms
2016-01-30 09:53:48	--------	d-----w-	C:\Users\anjav\AppData\Local\AOP SDK
2016-01-30 09:53:09	--------	d-----w-	C:\Users\anjav\AppData\Local\Publishers
2016-01-30 09:52:12	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-01-30 09:52:11	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-01-30 09:51:52	--------	d-----w-	C:\Users\anjav\AppData\Local\VirtualStore
2016-01-30 09:51:51	--------	d-----w-	C:\Users\anjav\AppData\Local\Packages
2016-01-30 09:51:48	--------	d-----w-	C:\Users\anjav\AppData\Local\TileDataLayer
2016-01-30 09:49:53	--------	d-----w-	C:\Users\anjav\AppData\LocalLow
2016-01-30 09:49:44	--------	d-s---r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Roaming
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Local\Temp
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Local\Microsoft
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Local\Host App Service
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\AppData\Local
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-01-30 09:33:44	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\LocalLow
2016-01-29 20:32:23	--------	d-----w-	C:\Users\anjav\AppData\Local\Windows Live Writer
====== C:\Users\anjav ======
2016-02-04 09:28:18	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\anjav\Downloads\RSITx64.exe
2016-02-03 12:43:06	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-02-03 12:41:34	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-02-03 12:40:35	--------	d--h--w-	C:\ProgramData\Common Files
2016-02-03 12:40:35	--------	d-----w-	C:\ProgramData\Avg
2016-02-03 11:41:13	--------	d-----w-	C:\ProgramData\ClassicShell
2016-02-03 11:40:07	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2016-02-03 11:38:54	4E2E654403AF6C62FC229ED459D864F2	6968048	----a-w-	C:\Users\anjav\Downloads\ClassicShellSetup_4_2_5.exe
2016-02-03 11:32:21	C83944D3394F892C26717DE725880D5E	6801752	----a-w-	C:\Users\anjav\Downloads\ccsetup512.exe
2016-02-03 11:32:03	D3B6FA14CB7E12B7FBC0B3AA26235898	24345872	----a-w-	C:\Users\anjav\Downloads\mbam-setup-2.1.8.1057.exe
2016-02-01 16:45:29	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2016-01-30 12:47:17	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-30 10:18:11	--------	d-----w-	C:\Users\anjav\Tracing
2016-01-30 09:56:53	--------	d-----w-	C:\Users\Public\App Explorer
2016-01-30 09:56:15	--------	d-----r-	C:\Users\anjav\OneDrive
2016-01-30 09:55:29	--------	d-----w-	C:\Users\anjav\PicStream
2016-01-30 09:54:07	--------	d-----w-	C:\ProgramData\OEM_YAHOO
2016-01-30 09:52:11	--------	d-----r-	C:\Users\anjav\Searches
2016-01-30 09:52:11	--------	d-----r-	C:\Users\anjav\Contacts
2016-01-30 09:51:47	--------	d-sh--w-	C:\Users\anjav\IntelGraphicsProfiles
2016-01-30 09:49:53	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\anjav\ntuser.ini
2016-01-30 09:49:44	--------	d--h--w-	C:\Users\anjav\AppData
2016-01-30 09:49:44	--------	d-----w-	C:\Users\anjav\Roaming
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Videos
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Saved Games
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Pictures
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Music
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Links
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Favorites
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Downloads
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Documents
2016-01-30 09:49:44	--------	d-----r-	C:\Users\anjav\Desktop

====== C: exe-files ==
2016-02-04 14:35:26	D65056BBFC8FEB61847A89565B7EB80E	310016	----a-w-	C:\Windows\Temp\AOP\AcerCloudTaskScheduler.exe
2016-02-04 14:35:26	CCF8C0F7A886BC43091C3B7EE45881B2	2860760	----a-w-	C:\Windows\Temp\AOP\CCDMonitorService.exe
2016-02-04 14:35:26	B88228D5FEF4B6DC019D69D4471F23EC	5073240	----a-w-	C:\Windows\Temp\AOP\vcredist_x86.exe
2016-02-04 14:35:26	9458BA34330518360C07AE0DB584A906	9685208	----a-w-	C:\Windows\Temp\AOP\acer\ccd.exe
2016-02-04 14:35:26	91FE4D26944A439385C33FBAE146D7FB	65240	----a-w-	C:\Windows\Temp\AOP\acer\actool_win.exe
2016-02-04 14:35:26	1CD32059F6BA40FE944D5E1CC7E50372	1409536	----a-w-	C:\Windows\Temp\AOP\ClientOperation.exe
2016-02-04 14:33:46	93BEA88165A59714A09EF6862B42F7E9	1674968	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Portal\PortalInstaller\AcerPortalSetup.exe
2016-02-04 14:33:43	E54B02A610BB1F3D312442429CE46FAC	31009305	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Portal\PortalInstaller\AcerPortal.exe
2016-02-04 09:29:27	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\anjav.exe
2016-02-04 09:29:06	66C3B24BC20E45E94ACBA83AB1E8AA3F	110	----a-w-	C:\$Recycle.Bin\S-1-5-21-3612907582-3073615944-3246669413-1001\$IO9894K.exe
2016-02-04 09:28:38	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\$Recycle.Bin\S-1-5-21-3612907582-3073615944-3246669413-1001\$RO9894K.exe
2016-02-04 09:28:18	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\anjav\Downloads\RSITx64.exe
2016-02-04 09:28:10	F9B69F952FCFECF777BADC23C66504A5	14145	----a-w-	C:\Users\anjav\AppData\Local\Packages\GoogleInc.GoogleSearch_yfg5n0ztvskxp\AC\INetCache\AIP1NJLW\RSITx64[1].exe
2016-02-03 14:13:56	21D18E65BBA9CA0E968F0C3C9D091F44	131344	----a-w-	C:\Users\anjav\AppData\Local\Temp\mccspuninstall.exe
2016-02-03 12:44:26	9C94D1E541C43179ABA692AEAB07BA19	1147200	----a-w-	C:\Program Files (x86)\AVG\Av\Notification\Launcher.exe
2016-02-03 12:43:49	899BE423D314FBB3A014B74B51D8D4D7	5987248	----a-w-	C:\ProgramData\Avg\Setup\av\avgmfapx.exe
2016-02-03 12:43:49	06AE628A705CADCA8FEABFC1CAF32AA2	71592	----a-w-	C:\ProgramData\Avg\Setup\av\avguirux.exe
2016-02-03 12:40:39	77D98C591509DE2292E46B113FD2465F	2246056	----a-w-	C:\Program Files (x86)\AVG\Setup\avgsetupwrkx.exe
2016-02-03 12:40:36	A8A3F7F79E7AA13B956D5B837E77C0FB	695208	----a-w-	C:\Program Files (x86)\AVG\Setup\avgntdumpx.exe
2016-02-03 12:40:35	C04B3349EC0413AC56974B7E4DCBA7B4	3162536	----a-w-	C:\Program Files (x86)\AVG\Setup\avgsetupx.exe
2016-02-03 11:38:54	4E2E654403AF6C62FC229ED459D864F2	6968048	----a-w-	C:\Users\anjav\Downloads\ClassicShellSetup_4_2_5.exe
2016-02-03 11:32:21	C83944D3394F892C26717DE725880D5E	6801752	----a-w-	C:\Users\anjav\Downloads\ccsetup512.exe
2016-02-03 11:32:03	D3B6FA14CB7E12B7FBC0B3AA26235898	24345872	----a-w-	C:\Users\anjav\Downloads\mbam-setup-2.1.8.1057.exe
2016-02-01 17:08:54	9FA5F238220E48F0E26A1E03C737066D	173760	----a-w-	C:\$WINDOWS.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\setupplatform.exe
2016-02-01 17:08:53	76CC107DDFB84B1F1337E148C771721D	279232	----a-w-	C:\$WINDOWS.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\mighost.exe
2016-02-01 17:03:59	DA33CC01380EA479BE010959E5A85B55	346520	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxEM.exe
2016-02-01 17:03:59	D84471613C7BE2EAE62EBD322117C56A	1026968	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxSDK.exe
2016-02-01 17:03:59	BA1BA1C9E40BCEB88678747C1E7C256F	370064	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxCUIService.exe
2016-02-01 17:03:59	B99D68C404A4E69FBB95E3A282091CFA	415128	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxTray.exe
2016-02-01 17:03:59	99306C0231039E80E297F444AF04DD1B	236456	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxext.exe
2016-02-01 17:03:59	700A193A1555B083E3A08F5D3A844925	301976	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\IntelCpHeciSvc.exe
2016-02-01 17:03:59	600794BFBB06B7B3F52CF58BF12C7B9E	268176	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igfxHK.exe
2016-02-01 17:03:59	56C714E1D49CF627F6960E6A5CA0C7B3	538520	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\IntelWiDiUMS64.exe
2016-02-01 17:03:59	42ABBE97D0516FC76AC5E490076FA1B3	1015720	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igxpun.exe
2016-02-01 17:03:59	1BE33E77464F3F214BCAEC6354F2934E	3527288	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\IntelWiDiVAD64.exe
2016-02-01 17:03:59	093B953173454BC2EBEC9DDE66C35D94	607144	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\IntelCpHDCPSvc.exe
2016-02-01 17:03:50	EFD89B6ADAFFFFC4EF9D1F7A1AE86DD3	466344	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\GfxUIEx.exe
2016-02-01 17:03:50	B22C191075220560427C7DD0B73FF1D2	232856	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\DPTopologyAppv2_0.exe
2016-02-01 17:03:50	946CBFB15A0EEBC239AEC6B24D130A05	940456	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\Gfxv2_0.exe
2016-02-01 17:03:50	51F01F119EB07E29F98C3878950E2803	945048	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\Gfxv4_0.exe
2016-02-01 17:03:50	4457C1484BA78DFAB3F5388BB1D474E4	233368	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\DPTopologyApp.exe
2016-02-01 17:03:50	3F29C4C940042109DE4E5A7AA598C988	174496	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\difx64.exe
2016-01-31 10:59:01	4DE599F49C7862C9691EE7843E216F4C	143671360	----a-w-	C:\Windows\System32\MRT.exe
2016-01-30 14:57:46	7143FF944C20AB5C6D4485A0469F2797	115712	----a-w-	C:\Windows\System32\MbaeParserTask.exe
2016-01-30 14:57:45	98986780B8D494326D28DCAB6D601450	154624	----a-w-	C:\Windows\System32\dmcertinst.exe
2016-01-30 14:57:20	551C41C9508BF7117A56FC429D5B6534	8022368	----a-w-	C:\Windows\System32\ntoskrnl.exe
2016-01-30 14:57:18	0A2D0D9A0329B9C46F5D793DB51A15C7	1234944	----a-w-	C:\Windows\System32\aitstatic.exe
2016-01-30 14:57:10	DA32F9BFA7851AD4247353EA03755DE6	578560	----a-w-	C:\Windows\System32\winlogon.exe
2016-01-30 14:57:09	EBD5F0FDD3EBB6EE6F6EE524206AD0AE	26624	----a-w-	C:\Windows\System32\LicenseManagerShellext.exe
2016-01-30 14:56:22	1A8D80F2EA3133AD8DAF64DA25B4B17B	168288	----a-w-	C:\Windows\System32\NetworkUXBroker.exe
2016-01-30 14:56:13	258A4F9A2C91C6C6E36775CDCCB4AFE1	441168	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2016-01-30 14:56:11	B1FBE5BF56C400AEDE037A2FCE3186B5	220160	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
2016-01-30 14:56:11	9853C2A9EF7FBC341C65EF89908CA052	482816	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe
2016-01-30 14:56:08	E1DB432B3147F70BF684846439ADE38B	136192	----a-w-	C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
2016-01-30 14:56:06	37B5ECB8C390D9FD5A5BB2FFB7294B9E	553808	----a-w-	C:\Windows\System32\SettingSyncHost.exe
2016-01-30 14:55:48	FB3D6487595EE3AD8438039964660F61	131072	----a-w-	C:\Windows\SystemApps\ContactSupport_cw5n1h2txyewy\ContactSupport.exe
2016-01-30 14:55:46	E19833B3E69A5B829AB97D5CBD3BF356	1876832	----a-w-	C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
2016-01-30 14:55:45	068EF19C06EB3050FA121DED6655B745	7454048	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
2016-01-30 14:55:42	83BE96BDA80FE46452E8DAC8A7BEDBA0	6264688	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2016-01-30 14:55:16	948BD4AC1C7C572312048A284D6C9A7F	562688	----a-w-	C:\Windows\System32\Speech\SpeechUX\SpeechUXWiz.exe
2016-01-30 14:54:55	5275394FE00E85B13DC535C67961DFEB	1907536	----a-w-	C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
2016-01-30 14:54:41	65BCE1DC85A1023021D363E0CE4AB14C	845824	----a-w-	C:\Windows\System32\Magnify.exe
2016-01-30 14:54:40	9738D0610EAAD6CE104DFB81AFEDAFDE	786432	----a-w-	C:\Windows\SysWOW64\Magnify.exe
2016-01-30 14:54:29	4F5230393F48421846F1EEC44F98148B	539728	----a-w-	C:\Windows\SysWOW64\fontdrvhost.exe
2016-01-30 14:54:22	B048B365333B4DA075512D67A88AE393	815808	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2016-01-30 14:54:22	96520EEF483B102EFD98B6B246B0EE1D	818880	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2016-01-30 14:54:18	62CFDB1741D700E2292242B50F1EC1A9	168960	----a-w-	C:\Windows\System32\InstallAgent.exe
2016-01-30 14:54:16	74C965E6A46F070196BDBC1CBD7DB8F8	607408	----a-w-	C:\Windows\System32\fontdrvhost.exe
2016-01-30 14:54:01	9AA440F8F580C573D0F2732DA6ECB87A	207872	----a-w-	C:\Windows\SysWOW64\notepad.exe
2016-01-30 14:54:01	986BC1A9E29A9E35C1D10D874616ACBB	215040	----a-w-	C:\Windows\System32\notepad.exe
2016-01-30 14:54:01	986BC1A9E29A9E35C1D10D874616ACBB	215040	----a-w-	C:\Windows\notepad.exe
2016-01-30 14:53:56	334206DD8DA94B0AEBC46A3196888031	83968	----a-w-	C:\Windows\System32\DeviceEnroller.exe
2016-01-30 14:53:35	55C29E89E33C6B7B5F0A22D46130C10C	624480	----a-w-	C:\Windows\SystemApps\Microsoft.AccountsControl_cw5n1h2txyewy\AccountsControlHost.exe
2016-01-30 14:53:33	11648E08564ECFC6CB435990261F1A34	1123400	----a-w-	C:\Windows\System32\winload.exe
2016-01-30 14:53:33	11648E08564ECFC6CB435990261F1A34	1123400	----a-w-	C:\Windows\System32\Boot\winload.exe
2016-01-30 14:53:28	90B9FDEB80471212F08D996A1C4FFBD6	143360	----a-w-	C:\Windows\System32\oobe\windeploy.exe
2016-01-30 14:53:21	B02EA3A2E6BEDAB9C954AAC6BD887874	292856	----a-w-	C:\Windows\System32\LockAppHost.exe
2016-01-30 14:53:20	C5890CAD6482B12ECA19E680B779560F	858408	----a-w-	C:\Windows\System32\winresume.exe
2016-01-30 14:53:19	C5890CAD6482B12ECA19E680B779560F	858408	----a-w-	C:\Windows\System32\Boot\winresume.exe
2016-01-30 14:53:15	B8401703E619E7BD7B5A659306A9BFE6	84480	----a-w-	C:\Windows\System32\MDMAppInstaller.exe
2016-01-30 14:53:12	AC9DBC3DCA6F57839B8056D6B6835CB3	780640	----a-w-	C:\Windows\Boot\PCAT\memtest.exe
2016-01-30 14:53:12	51DDB23BEB935F57C49166DCFEE10206	243800	----a-w-	C:\Windows\SysWOW64\LockAppHost.exe
2016-01-30 14:53:10	227EDE423D40B3BC2B1A0FC99225DF76	67072	----a-w-	C:\Windows\System32\oobe\oobeldr.exe
2016-01-30 14:53:09	A1EFFF8EA50BE57AC38264541F1B88FD	801632	----a-w-	C:\Windows\System32\WWAHost.exe
2016-01-30 14:53:06	5CF2C1A920FAC677573B529436773A84	55296	----a-w-	C:\Windows\System32\MusNotificationUx.exe
2016-01-30 14:53:04	981229E718319A9A01F7E740A8D855FD	700256	----a-w-	C:\Windows\SysWOW64\WWAHost.exe
2016-01-30 14:53:03	F777FE6BA9C62A4D90BC7017C8FED35F	336384	----a-w-	C:\Windows\System32\SearchProtocolHost.exe
2016-01-30 14:53:00	0D75CBD29B38A8D9361033A6884848AF	25280	----a-w-	C:\Windows\System32\CompatTelRunner.exe
2016-01-30 14:52:52	D61C3ED7C5F0D1B5BD9B351FEC381D57	120832	----a-w-	C:\Windows\System32\omadmclient.exe
2016-01-30 14:52:51	7A271F804E4A779646E972BEF9A16CFE	384280	----a-w-	C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
2016-01-30 14:52:47	15ADC9E2333D852C4AADC9388E3E5A40	298864	----a-w-	C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2016-01-30 14:52:46	951D71B5D602745997A6DCBA33FC5358	280576	----a-w-	C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-01-30 14:52:42	116A528112CDE77F28D4C8C9CE210C52	21216	----a-w-	C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
2016-01-30 14:52:40	D2EAEC106F183572317AF7D68E381063	4532304	----a-w-	C:\Windows\explorer.exe
2016-01-30 14:52:40	4EEB94F7E1ABAB5503EEFEA7F2394370	4047288	----a-w-	C:\Windows\SysWOW64\explorer.exe
2016-01-30 14:52:36	235F302C638D2460B005FD103BCA26E8	101376	----a-w-	C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
2016-01-30 14:52:29	124DC4FC14EEA95B8E05F139A57D5B91	553472	----a-w-	C:\Windows\System32\GamePanel.exe
2016-01-30 14:52:29	011A8CA5E2B3399EB0D893587B830C6B	420352	----a-w-	C:\Windows\SysWOW64\GamePanel.exe
2016-01-30 14:52:27	3C10245633B2D8AF20A25AF517E8CD06	170496	----a-w-	C:\Windows\System32\oobe\msoobe.exe
2016-01-30 11:19:37	79D51830919944E6F26FE2E6F0684336	2544344	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Photo\abPhoto\abPhotoSetup.exe
2016-01-30 11:19:31	37AE60E5A3AA4F2EEBD5F295221D8976	51954499	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Photo\abPhoto\abPhoto.exe
2016-01-30 11:19:19	8641B33CEA41535B4A3C08292E2A9589	53551264	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Photo\abPhotoSetup.exe
2016-01-30 10:08:09	EBB3516D41102FC99DBEDC4F4CB5E727	13152	----a-w-	C:\ProgramData\Acer\UpdateFW\UNERYCHK.exe
2016-01-30 10:08:08	ACD41D26D46F5FFD8AA7E697E0B300F4	18272	----a-w-	C:\ProgramData\Acer\UpdateFW\NeedToRunUpdateReBuildSSD.exe
2016-01-30 10:08:06	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\UpdateFW\HTTP2GA.exe
2016-01-30 10:08:06	64A1FF67674790B04DF55F63CB621575	173096	----a-w-	C:\ProgramData\Acer\updater2\Download\46822752\B\RunCmdX.exe
2016-01-30 10:08:06	64A1FF67674790B04DF55F63CB621575	173096	----a-w-	C:\ProgramData\Acer\UpdateFW\RunCmdX.exe
2016-01-30 10:08:03	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\48182894\B\HTTP2GA.exe
2016-01-30 10:08:03	3130EFCFDBAD695A1C635DC2566DE162	14752	----a-w-	C:\ProgramData\Acer\updater2\Download\48182894\B\FirefoxHelper.exe
2016-01-30 10:08:00	EBB3516D41102FC99DBEDC4F4CB5E727	13152	----a-w-	C:\ProgramData\Acer\updater2\Download\46680778\D\UNERYCHK.exe
2016-01-30 10:08:00	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\46680778\D\HTTP2GA.exe
2016-01-30 10:07:59	ACD41D26D46F5FFD8AA7E697E0B300F4	18272	----a-w-	C:\ProgramData\Acer\updater2\Download\46833113\D\NeedToRunUpdateReBuildSSD.exe
2016-01-30 10:07:59	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\46833113\D\HTTP2GA.exe
2016-01-30 10:07:47	BB7741CDACB1D7C98509F1BDF12E2D80	173408	----a-w-	C:\ProgramData\Acer\updater2\Download\47196338\D\RunCmdX.exe
2016-01-30 10:07:47	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\47196338\D\HTTP2GA.exe
2016-01-30 10:07:44	BB7741CDACB1D7C98509F1BDF12E2D80	173408	----a-w-	C:\ProgramData\Acer\updater2\Download\47309891\D\RunCmdX.exe
2016-01-30 10:07:43	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\47309891\D\HTTP2GA.exe
2016-01-30 10:07:42	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\46822752\D\HTTP2GA.exe
2016-01-30 10:07:40	F87EED54157324E16AFEDBE0CCC6A306	5632	----a-w-	C:\ProgramData\Acer\updater2\Download\47427170\D\AcerDriveUpgradeDetect.exe
2016-01-30 10:07:40	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\47427170\D\HTTP2GA.exe
2016-01-30 10:07:39	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\47079745\D\HTTP2GA.exe
2016-01-30 10:07:39	64A1FF67674790B04DF55F63CB621575	173096	----a-w-	C:\ProgramData\Acer\updater2\Download\47079745\D\RunCmdX.exe
2016-01-30 10:07:38	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\48182894\D\HTTP2GA.exe
2016-01-30 10:07:23	BB7741CDACB1D7C98509F1BDF12E2D80	173408	----a-w-	C:\ProgramData\Acer\updater2\Download\47082631\D\RunCmdX.exe
2016-01-30 10:07:23	66FEFD6A97CCA4AFE2A70CC50B612A92	19528	----a-w-	C:\ProgramData\Acer\updater2\Download\47082631\D\HTTP2GA.exe
2016-01-30 09:58:27	1CD32059F6BA40FE944D5E1CC7E50372	1409536	----a-w-	C:\OEM\ClientOperation.exe
2016-01-30 09:56:31	AD60A39A820804E89BC2EAD599ED94E1	8067784	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
2016-01-30 09:56:31	AD60A39A820804E89BC2EAD599ED94E1	8067784	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\OneDriveSetup.exe
2016-01-30 09:56:22	EB0965F7AE1394C0A3165A5E9A32C44D	164040	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncConfig.exe
2016-01-30 09:56:21	2DB7D5B28812523AAF17F71A8EB4832E	171712	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe
2016-01-30 09:56:15	2010CA459E5EC8F9D5FC8B000D130294	551112	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\OneDrive.exe
2016-01-30 09:52:06	08F75D8EA8691F25BC6082F4199481BD	30560	----a-w-	C:\Program Files\Accessory Store\StartURL.exe
2016-01-30 09:43:55	56C714E1D49CF627F6960E6A5CA0C7B3	538520	----a-w-	C:\Windows\System32\IntelWiDiUMS64.exe
2016-01-30 09:43:53	D84471613C7BE2EAE62EBD322117C56A	1026968	----a-w-	C:\Windows\System32\igfxSDK.exe
2016-01-30 09:43:53	700A193A1555B083E3A08F5D3A844925	301976	----a-w-	C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-01-30 09:43:53	093B953173454BC2EBEC9DDE66C35D94	607144	----a-w-	C:\Windows\System32\IntelCpHDCPSvc.exe
2016-01-30 09:43:47	EFD89B6ADAFFFFC4EF9D1F7A1AE86DD3	466344	----a-w-	C:\Windows\System32\GfxUIEx.exe
2016-01-30 09:43:47	B22C191075220560427C7DD0B73FF1D2	232856	----a-w-	C:\Windows\System32\DPTopologyAppv2_0.exe
2016-01-30 09:43:47	946CBFB15A0EEBC239AEC6B24D130A05	940456	----a-w-	C:\Windows\System32\Gfxv2_0.exe
2016-01-30 09:43:47	51F01F119EB07E29F98C3878950E2803	945048	----a-w-	C:\Windows\System32\Gfxv4_0.exe
2016-01-30 09:43:47	4457C1484BA78DFAB3F5388BB1D474E4	233368	----a-w-	C:\Windows\System32\DPTopologyApp.exe
2016-01-30 09:43:47	3F29C4C940042109DE4E5A7AA598C988	174496	----a-w-	C:\Windows\System32\difx64.exe
=== C: other files ==
2016-02-04 14:32:19	53E1E2DFC131A2F27109596598D809C3	297	----a-w-	C:\ProgramData\OEM\Fub Tracking Program\Upload\_1454599939.zip
2016-02-03 13:16:23	33DEAE42CA0465BE997877445923D03F	264686	----a-w-	C:\ProgramData\Avg\AV\IDS\outbox\tmp_86a1bb57-fc8b-47cc-b86f-e12caa675b0b.zip
2016-02-03 13:11:29	175864FFE671935D5BAED8382B252338	180640	----a-w-	C:\Users\anjav\AppData\Roaming\Mozilla\Firefox\Profiles\ave67v2u.default\extensions\avg@toolbar.xpi
2016-02-03 11:49:44	78488AF2AB2111D67B3C4044707A519B	192216	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2016-02-03 11:49:24	CFBC6C6D8A492697CABD1D353EE64933	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2016-02-03 11:49:24	42B3F5C9FBC9B3F0E0BA6B5D7FC8E849	109272	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2016-02-03 11:49:24	08DECFCB9BA97786165A69AB1015BC30	64216	----a-w-	C:\Windows\System32\drivers\mwac.sys
2016-02-01 17:03:57	548712979B0BA12ECE2D8549797593D4	6278392	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igdkmd64.sys
2016-02-01 17:03:57	32D201227493C3D951107FA7186171C7	5760760	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\1dfa62e7-3a63-4b65-9bf6-57940b5f2e82\igdkmd64lp.sys
2016-02-01 17:03:48	C7DEAA8A9A1A3F5E20F14E092CD57A75	100856	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\67e44f80-909e-467d-9fd0-4223ad1e7218\iaLPSS_SPI.sys
2016-02-01 17:03:48	A87B255A2313811CD8DC983A1F851DA3	111904	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\57746f1e-b1f0-40c1-bfe6-1203f2fb5a2a\x86\TEEDriver.sys
2016-02-01 17:03:48	6F477FB2256293B976A71ADCC38A8FDA	266512	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\0ab83b56-4e17-4082-9944-0339ad2c5396\ibtusb.sys
2016-02-01 17:03:48	5CF1951E406FB5795CBAF97DFB816445	120312	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\67e44f80-909e-467d-9fd0-4223ad1e7218\iaLPSS_I2C.sys
2016-02-01 17:03:48	5CC64394DECD35104418773F0C103C8A	35832	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\67e44f80-909e-467d-9fd0-4223ad1e7218\iaLPSS_GPIO.sys
2016-02-01 17:03:48	5A216E543B4AB0E3EA9E09F49023DAD4	58656	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\57746f1e-b1f0-40c1-bfe6-1203f2fb5a2a\x86\HECI.sys
2016-02-01 17:03:48	4282D0B2F308E4605306EC5B02DD368E	66848	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\57746f1e-b1f0-40c1-bfe6-1203f2fb5a2a\x64\HECIx64.sys
2016-02-01 17:03:48	3123CABE4D4D666FFA730D10169B374B	143864	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\67e44f80-909e-467d-9fd0-4223ad1e7218\iaLPSS_UART2.sys
2016-02-01 17:03:48	1BC9159CF58BABD89419072EA180A8F6	129312	----a-w-	C:\$WINDOWS.~BT\Drivers\DU\57746f1e-b1f0-40c1-bfe6-1203f2fb5a2a\x64\TEEDriverx64.sys
2016-02-01 16:27:16	2755616FF1057342FCA260E15B8DE42C	2031	----a-w-	C:\Users\anjav\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\INetCache\9FRNVO2U\manifest[1].zip
2016-01-30 14:57:55	9B2039C5673EEBF1D4E34ABC0AFB88C7	685568	----a-w-	C:\Windows\System32\drivers\WdiWiFi.sys
2016-01-30 14:57:53	7BF844D362EB746BC7A6DC3F57FA3E32	8192	----a-w-	C:\Windows\System32\drivers\gpuenergydrv.sys
2016-01-30 14:57:49	70469C8AC4AD367295E70CFDD81B754C	99664	----a-w-	C:\Windows\System32\drivers\pdc.sys
2016-01-30 14:57:48	321A2022926841273CD8D6B9BFE68D05	1383424	----a-w-	C:\Windows\System32\win32kbase.sys
2016-01-30 14:57:47	C67A03F54A1EA683F4880A481EE5FF6C	373072	----a-w-	C:\Windows\System32\drivers\USBXHCI.SYS
2016-01-30 14:57:42	D42AC03ACF9CA67693D1D9BB4D2A0BC8	116064	----a-w-	C:\Windows\System32\drivers\tdx.sys
2016-01-30 14:57:42	A3D96563BF46FC8A0E5756B796127D14	577888	----a-w-	C:\Windows\System32\drivers\afd.sys
2016-01-30 14:57:42	91756EE69E63D66F77E3B791D33F7078	459104	----a-w-	C:\Windows\System32\drivers\netio.sys
2016-01-30 14:57:42	1434CA8A224655AD096D57DB24D3AA85	406864	----a-w-	C:\Windows\System32\drivers\FWPKCLNT.SYS
2016-01-30 14:57:41	89C9C3745F270EF93988DA57BC6AA62B	1983824	----a-w-	C:\Windows\System32\drivers\dxgkrnl.sys
2016-01-30 14:57:41	7C3DDCB6F927AFC5569A8CC584F5B5F3	147968	----a-w-	C:\Windows\System32\drivers\rmcast.sys
2016-01-30 14:57:41	7680537006A420D7488E5057A8149F86	442208	----a-w-	C:\Windows\System32\drivers\storport.sys
2016-01-30 14:57:41	14B46248612DF1B1A695040FFFBCFAFC	155136	----a-w-	C:\Windows\System32\drivers\tunnel.sys
2016-01-30 14:57:40	AE7B7E1E95BFB9340B1956C98CA52C81	80720	----a-w-	C:\Windows\System32\drivers\stornvme.sys
2016-01-30 14:57:36	FA5C94FB36625787063D04CF2F24E890	320000	----a-w-	C:\Windows\System32\drivers\portcls.sys
2016-01-30 14:57:36	DAF957B25A35757E9D814611FAE8FE3B	237392	----a-w-	C:\Windows\System32\drivers\rdyboost.sys
2016-01-30 14:57:36	4D3F2E7C2F83DFAF19F8060E1FD6C5A8	3588096	----a-w-	C:\Windows\System32\win32kfull.sys
2016-01-30 14:57:35	647E2A425AD43637EAA01096A58B7089	65536	----a-w-	C:\Windows\System32\drivers\bthhfenum.sys
2016-01-30 14:57:35	27E248CD861AFED4DF0C48F4C853E7F0	80896	----a-w-	C:\Windows\System32\drivers\hdaudbus.sys
2016-01-30 14:57:35	1BDA1FD02783566F0B20EB0E2517F85C	516448	----a-w-	C:\Windows\System32\drivers\USBHUB3.SYS
2016-01-30 14:57:26	854AF190F55E6D70EC65A85798F896E2	36352	----a-w-	C:\Windows\System32\drivers\buttonconverter.sys
2016-01-30 14:57:26	7EBD20284AC9BF9F0A020B86769BB074	2432336	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2016-01-30 14:57:15	FCC211B0F46D831506D0D76539203899	929280	----a-w-	C:\Windows\System32\drivers\bthport.sys
2016-01-30 14:54:40	927AD29D7F91B9A0C5294932374DA15E	894256	----a-w-	C:\Windows\System32\drivers\Wdf01000.sys
2016-01-30 14:54:25	FDB239DBE2A14B572D21ABCEDC7BB5D0	505696	----a-w-	C:\Windows\System32\drivers\dxgmms2.sys
2016-01-30 14:54:25	B6A33DCEBE437F909615E89BA5FB1385	395088	----a-w-	C:\Windows\System32\drivers\dxgmms1.sys
2016-01-30 14:54:05	5A1C6AFFF6946C5C21A27AE05084C0D1	332624	----a-w-	C:\Windows\System32\drivers\fastfat.sys
2016-01-30 14:53:57	004C66464D8FE76D5DA78BE6777D61AF	278352	----a-w-	C:\Windows\System32\drivers\sdbus.sys
2016-01-30 14:53:51	78CA1FF6FE37EEFAFF99DD1C956AF60A	200528	----a-w-	C:\Windows\System32\drivers\wof.sys
2016-01-30 14:53:21	0A368247A900656CC0678117DFC3A87C	498016	----a-w-	C:\Windows\System32\drivers\usbhub.sys
2016-01-30 14:53:19	D5EC9413527B286CFEEB0294C53ABB95	102752	----a-w-	C:\Windows\System32\drivers\mountmgr.sys
2016-01-30 14:53:10	388F2A3C771B8BEE76FD1AAF9614D08E	52264	----a-w-	C:\Windows\System32\drivers\wpcfltr.sys
2016-01-30 14:53:07	988588C16A53C2581488C15FF18934BF	46432	----a-w-	C:\Windows\System32\drivers\msgpiowin32.sys
2016-01-30 14:52:54	CFCCF9F67EECBA6BFE4E880D9BE70CBB	22528	----a-w-	C:\Windows\System32\drivers\usb8023.sys
2016-01-30 14:52:47	616F40B897DA651221F86A1741E9609B	1168736	----a-w-	C:\Windows\System32\drivers\ndis.sys
2016-01-30 14:43:45	4CF32A283A1093426CAB01A608296D78	1955850	----a-w-	C:\Users\anjav\Pictures\fotoalbum moeder\fotoalbum moeder\Fam goorhuis\betreft vraag foto's voor album oma (1).zip
2016-01-30 14:43:44	C28D3939F91C3699DDE8FDC5D67F74EE	46361652	----a-w-	C:\Users\anjav\Pictures\fotoalbum moeder\fotoalbum moeder\noorwegen.zip
2016-01-30 14:43:40	4CF32A283A1093426CAB01A608296D78	1955850	----a-w-	C:\Users\anjav\Pictures\fotoalbum moeder\Fam goorhuis\Fam goorhuis\betreft vraag foto's voor album oma (1).zip
2016-01-30 14:20:06	4CF32A283A1093426CAB01A608296D78	1955850	----a-w-	C:\Users\anjav\Pictures\2012\fotoalbum moeder\fotoalbum moeder\Fam goorhuis\betreft vraag foto's voor album oma (1).zip
2016-01-30 14:20:03	4CF32A283A1093426CAB01A608296D78	1955850	----a-w-	C:\Users\anjav\Pictures\2012\fotoalbum moeder\Fam goorhuis\betreft vraag foto's voor album oma (1).zip
2016-01-30 10:08:48	84120856AD43BA81AC977027C588FAE6	2184	----a-w-	C:\ProgramData\Acer\UpdateFW\_CreateSmallStorageTag.vbs
2016-01-30 10:08:48	06840B019551B7E82DC042C1F99F2809	568	----a-w-	C:\ProgramData\Acer\UpdateFW\FpInstall.bat
2016-01-30 10:08:06	84120856AD43BA81AC977027C588FAE6	2184	----a-w-	C:\ProgramData\Acer\updater2\Download\46822752\B\_CreateSmallStorageTag.vbs
2016-01-30 10:08:06	7C3BA461EA450A645EC05A324A4F1240	550	----a-w-	C:\ProgramData\Acer\UpdateFW\FpCheck.bat
2016-01-30 10:08:06	06840B019551B7E82DC042C1F99F2809	568	----a-w-	C:\ProgramData\Acer\updater2\Download\46822752\B\FpInstall.bat
2016-01-30 10:08:03	C3A964C5525266E0970D6AA0E65AAE86	635	----a-w-	C:\ProgramData\Acer\updater2\Download\48182894\B\FpInstall.bat
2016-01-30 10:08:00	7C3BA461EA450A645EC05A324A4F1240	550	----a-w-	C:\ProgramData\Acer\updater2\Download\46680778\D\FpCheck.bat
2016-01-30 10:07:59	86D46DBD3520297792A7589DE0E51B13	720	----a-w-	C:\ProgramData\Acer\updater2\Download\46833113\D\FpCheck.bat
2016-01-30 10:07:47	BC4FE929BD4133B0E423B17810D13C59	732	----a-w-	C:\ProgramData\Acer\updater2\Download\47196338\D\FpCheck.bat
2016-01-30 10:07:43	0EA992A99AB032ED10F36CF84094CE26	732	----a-w-	C:\ProgramData\Acer\updater2\Download\47309891\D\FpCheck.bat
2016-01-30 10:07:42	E5CE96623FE4BA3CB88CD85F9BE3DD21	620	----a-w-	C:\ProgramData\Acer\updater2\Download\46822752\D\FpCheck.bat
2016-01-30 10:07:40	7019E5D560941818BBE4703149383D27	623	----a-w-	C:\ProgramData\Acer\updater2\Download\47427170\D\FpCheck.bat
2016-01-30 10:07:39	C95DB161DACC4202644D3F7998FAC99A	659	----a-w-	C:\ProgramData\Acer\updater2\Download\47079745\D\FpCheck.bat
2016-01-30 10:07:38	9766F7E8EB25D0FC02502A661E2DAAAE	274	----a-w-	C:\ProgramData\Acer\updater2\Download\48182894\D\FpCheck.bat
2016-01-30 10:07:23	FAD3E6111DF8E23B0D1192D14F89F618	695	----a-w-	C:\ProgramData\Acer\updater2\Download\47082631\D\FpCheck.bat
2016-01-30 10:00:09	B5502F657E578732ED5FE745E4A21821	31558240	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Portal.zip
2016-01-30 09:59:10	2E9294BB096DED64EE03A9290394CAB6	53174599	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Photo.zip
2016-01-30 09:56:41	BD876967CBB15CD407794427E5CFF41B	37875021	----a-w-	C:\Users\anjav\AppData\Local\clear.fi\Docs.zip
2016-01-30 09:56:20	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\anjav\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\CollectOneDriveLogs.bat
2016-01-30 09:55:06	7FC831D5CAE5A4F61144BCD1C6884855	197404	----a-w-	C:\ProgramData\Microsoft\DataMart\PaidWiFi\OffersCacheTemp.zip
2016-01-30 09:45:17	1373F6562D5E4C715D5D3583E350093E	200	----a-w-	C:\Windows\System32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-01-30 09:40:49	5C5A797761421CF9B72087F3BC8A5259	180	----a-w-	C:\Windows\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-01-30 09:36:04	BA8DC96D1DD7785EB0589CB1777208B7	2115936	----a-w-	C:\Windows\System32\drivers\ntfs.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-3612907582-3073615944-3246669413-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\anjav\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"abDocsDllLoader"="C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe /lps=fmw"
"AVG_UI"="C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"="C:\Users\anjav\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\WpsNotifyTask_Administrator.job --a-------- C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe [23-08-2015 05:28]
C:\Windows\tasks\WpsUpdateTask_Administrator.job --a-------- C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe [23-08-2015 05:28]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\abDocsDllLoader" [C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe]
"C:\Windows\SysNative\tasks\ACC" [C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe]
"C:\Windows\SysNative\tasks\ACCAgent" [C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe]
"C:\Windows\SysNative\tasks\ACCBackgroundApplication" [C:\Program Files (x86)\Acer\Care Center\ACCStd.exe]
"C:\Windows\SysNative\tasks\AcerCloud" [C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe]
"C:\Windows\SysNative\tasks\App Explorer" [%LOCALAPPDATA%\Host App Service\Engine\HostAppServiceUpdater.exe]
"C:\Windows\SysNative\tasks\BacKGroundAgent" [C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\FUBTrackingByPLD" ["C:\OEM\Preload\FubTracking\FubTracking.exe"]
"C:\Windows\SysNative\tasks\Power Button" ["C:\Program Files\Acer\Acer Power Management\ePowerButton_NB.exe"]
"C:\Windows\SysNative\tasks\Power Management" ["C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"]
"C:\Windows\SysNative\tasks\Quick Access" ["C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"]
"C:\Windows\SysNative\tasks\UbtFrameworkService" ["C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{9040A449-B978-440D-B365-999C3FBD5497}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\WpsNotifyTask_Administrator" [C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe]
"C:\Windows\SysNative\tasks\WpsUpdateTask_Administrator" [C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe]

==== Firefox Extensions ======================

ProfilePath: C:\Users\anjav\AppData\Roaming\Mozilla\Firefox\Profiles\ave67v2u.default
- Nederlands NL Language Pack - %ProfilePath%\extensions\langpack-nl@firefox.mozilla.org
- Traditional Chinese zh-TW Language Pack - %ProfilePath%\extensions\langpack-zh-TW@firefox.mozilla.org
- AVG Web TuneUp - %ProfilePath%\extensions\avg@toolbar.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Deleted Firefox Extensions ======================

C:\Users\anjav\AppData\Roaming\Mozilla\Firefox\Profiles\ave67v2u.default\extensions\avg@toolbar.xpi deleted

==== Chromium Look ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://mysearch.avg.com/?cid={A9DF7ECA-806C-408B-B748-5EBADD4F3608}&mid=86a4e3ebfc8e47ccb86fe12caa675b0b-c72413f0e162c3297b4f0d49100c57056cbfc896&lang=en&ds=AVG&coid=avgtbavg&cmpid=0116piz&pr=fr&d=2016-02-03 14:09:13&v=4.2.5.441&pid=wtu&sg=&sap=hp"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95}"
HKLM\SearchScopes\{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95} - http://www.bing.com/search?q={searchTerms}&form=PRACE1&src=IE11TR&pc=ACTE
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95}"
HKLM\Wow6432Node\SearchScopes\{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95} - http://www.bing.com/search?q={searchTerms}&form=PRACE1&src=IE11TR&pc=ACTE
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{F0C73FE1-31BF-4F51-BCBE-E2A7CC13ED95} - No_Url_Value

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\anjav\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\anjav\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\anjav\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\anjav\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Default User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=415 folders=134 255893845 bytes)

==== Empty Temp Folders ======================

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\anjav\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~3\Kingsoft"  not found

==== EOF on do 04-02-2016 at 16:36:57,20 ======================