
Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by van la Parra on wo 25-05-2016 at 15:32:37,86.
Microsoft Windows 10 Pro 10.0.10586  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\van la Parra\Downloads\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

25-5-2016 15:36:19 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\McAfee deleted successfully
C:\PROGRA~3\boost_interprocess deleted successfully
C:\Users\van la Parra\AppData\Local\ActiveSync deleted successfully
C:\Users\van la Parra\AppData\Local\PeerDistRepub deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\McAfee not found
C:\PROGRA~3\Yahoo! deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted

==== Files Found In %userprofile%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ======================

2016-05-13 06:59:12	174	--sh--w-	7F1698BAB066B764A314A589D338DAAE	C:\Users\VANLAP~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\desktop.ini	---	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2016-05-14 14:24:25	FC7DB58A1C5C3C376F29A42E4C4422E1	196342	------w-	C:\Windows\hpoins18.dat.temp
2016-05-14 14:24:24	E1C482350AEB7EE8853906DF700EEE20	6071	------w-	C:\Windows\hpomdl18.dat.temp
2016-05-14 09:46:12	54E72F05E8A1B0E46EEBC0C5540630E3	196352	----a-w-	C:\Windows\hpoins18.dat
2016-05-14 09:46:11	E1C482350AEB7EE8853906DF700EEE20	6071	------w-	C:\Windows\hpomdl18.dat
2016-05-11 16:52:36	2617877C5761B8A696FD0368861EE6E4	4515256	----a-w-	C:\Windows\explorer.exe
2016-05-10 13:05:29	D78DDD04BF0030E49C717866A1AAF178	327168	----a-w-	C:\Windows\IsUninst.exe
====== C:\Users\VANLAP~1\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2016-05-22 17:44:14	7753FC56F9CAC4B5AFDA3196DB654F21	144664	----a-w-	C:\Windows\SysWOW64\secman.dll
2016-05-11 17:01:18	CD36155EE56E94B4E8830FA90822511F	503296	----a-w-	C:\Windows\SysWOW64\SettingSync.dll
2016-05-11 17:01:18	9E6DBA611E99BE75589D6A358F54364F	137728	----a-w-	C:\Windows\SysWOW64\shacct.dll
2016-05-11 17:01:18	122F8F0FAF690B88FBDE2DB097740AB6	569744	----a-w-	C:\Windows\SysWOW64\SHCore.dll
2016-05-11 17:01:17	FAD56D0A789345614220D9B770DF400A	465760	----a-w-	C:\Windows\SysWOW64\SettingSyncHost.exe
2016-05-11 17:01:17	5AEDC6D333BC8D8B1DE5928FCE2150DB	400896	----a-w-	C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-05-11 17:01:17	1D04327817511268754ED6F177DAD3E8	754176	----a-w-	C:\Windows\SysWOW64\SettingSyncCore.dll
2016-05-11 17:01:17	1587235261E629DFFAA0C39A72CAD1A6	667648	----a-w-	C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2016-05-11 17:01:10	9F6F693FD7738B8DA4B420E46E973F35	2919832	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2016-05-11 17:01:10	9CAC58EBAFB3E32711920568810CDCD7	307200	----a-w-	C:\Windows\SysWOW64\ieproxy.dll
2016-05-11 17:01:10	35E635469515D564CE418DDCC7B7BC96	1500160	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2016-05-11 17:01:09	FB01CB67364FF3AA677F0CFD8C958E50	5324288	----a-w-	C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-05-11 17:01:08	359765C7C700F7CED909A69C5DBBD943	140800	----a-w-	C:\Windows\SysWOW64\BrowserSettingSync.dll
2016-05-11 17:01:07	9B034D049D1C6EC9BED55D2F27D86ED9	2186	----a-w-	C:\Windows\SysWOW64\AppxProvisioning.xml
2016-05-11 17:01:07	1B26C71109A2EA27DD6684719BF493EC	188256	----a-w-	C:\Windows\SysWOW64\AppxAllUserStore.dll
2016-05-11 17:01:06	CD94405BB0A90B179E94BE23F4D2B79D	39424	----a-w-	C:\Windows\SysWOW64\wfdprov.dll
2016-05-11 17:01:06	51DF6FC12B5EF8CA87414D79C98CBC7A	395264	----a-w-	C:\Windows\SysWOW64\wlansec.dll
2016-05-11 17:01:06	3D3BBD2DA5660B0B6C9F6A8B9401648C	337920	----a-w-	C:\Windows\SysWOW64\wlanmsm.dll
2016-05-11 17:01:06	30F680D95B0CCABE46C775672C912C0A	306832	----a-w-	C:\Windows\SysWOW64\wlanapi.dll
2016-05-11 17:01:05	F5814ED9E8B83F872FBDCB139B001C8A	23552	----a-w-	C:\Windows\SysWOW64\wups.dll
2016-05-11 17:01:05	E48F0A089D9BAE356BF14FE3A16B1147	489984	----a-w-	C:\Windows\SysWOW64\Windows.UI.dll
2016-05-11 17:01:05	B91176A909798C7EAC28AB4FE786CA53	705536	----a-w-	C:\Windows\SysWOW64\wuapi.dll
2016-05-11 17:01:05	10564E7A7EE807FF580E34A94ACF5590	1522152	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-11 17:01:04	E9E7FA1FC796ADC16A1169736EFC7AF3	84480	----a-w-	C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2016-05-11 17:01:04	E7BD4D15CDC5A1E162256CFADCA92344	1337240	----a-w-	C:\Windows\SysWOW64\user32.dll
2016-05-11 17:01:04	486919689633D1C0DADA718DF1A3E7FB	219648	----a-w-	C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-05-11 17:01:04	3166A46AA132AACD035C7163108F2DA1	103936	----a-w-	C:\Windows\SysWOW64\updatepolicy.dll
2016-05-11 17:01:00	9CD20753821A4F28AA797B5C9A24050F	9918976	----a-w-	C:\Windows\SysWOW64\twinui.dll
2016-05-11 17:01:00	717DDEC1ABA5678EDC9F2AF1044BAA69	2000896	----a-w-	C:\Windows\SysWOW64\twinui.appcore.dll
2016-05-11 17:00:57	5D9BB3289D25FDEA1B2DD491C9771778	21123320	----a-w-	C:\Windows\SysWOW64\shell32.dll
2016-05-11 17:00:56	AB48B90C4DB88D2F31D1A6F460F76D29	241664	----a-w-	C:\Windows\SysWOW64\cryptngc.dll
2016-05-11 17:00:56	80785EA474D952CC0CB2CF936E36DDE0	3666432	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2016-05-11 17:00:56	4ECC2FAF9F29066636E06253C0D7FA06	503296	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2016-05-11 17:00:56	4B71644224F39A390B6DCC482B3D582A	639488	----a-w-	C:\Windows\SysWOW64\TokenBroker.dll
2016-05-11 17:00:56	318E2A6EC26C9703A5B273B015672660	388608	----a-w-	C:\Windows\SysWOW64\schannel.dll
2016-05-11 17:00:56	30E3DC9ED2C6641709AC961CB7CE72BB	647680	----a-w-	C:\Windows\SysWOW64\jscript.dll
2016-05-11 17:00:56	15F732C297CE4B169D85214A96A16559	792064	----a-w-	C:\Windows\SysWOW64\kerberos.dll
2016-05-11 17:00:56	0D19695F93813C63B4656E42536892FA	47104	----a-w-	C:\Windows\SysWOW64\hmkd.dll
2016-05-11 17:00:55	A404EA688829EF2657431CB34D0C72DF	5660160	----a-w-	C:\Windows\SysWOW64\Chakra.dll
2016-05-11 17:00:55	525FC35182F9660E2A7DCC75607535DC	707608	----a-w-	C:\Windows\SysWOW64\rpcrt4.dll
2016-05-11 17:00:55	25B0BAA64D6D62873FAA7719DB64015C	183904	----a-w-	C:\Windows\SysWOW64\rsaenh.dll
2016-05-11 17:00:54	AA7CBB3B7A7BFC41E9EC4EF645797DFA	502104	----a-w-	C:\Windows\SysWOW64\NetSetupEngine.dll
2016-05-11 17:00:54	96101F3B90BDE894A862CDF1B808A03F	84832	----a-w-	C:\Windows\SysWOW64\NetSetupApi.dll
2016-05-11 17:00:54	85ED26DB17B3270944C344E0E5B7C34A	1542816	----a-w-	C:\Windows\SysWOW64\ntdll.dll
2016-05-11 17:00:53	4AE45F3077E79A3E3B22996F80DA9E7A	354304	----a-w-	C:\Windows\SysWOW64\NetSetupShim.dll
2016-05-11 17:00:53	2CE163D00A7DA251D77F7B39E267382B	925064	----a-w-	C:\Windows\SysWOW64\mfplat.dll
2016-05-11 17:00:51	9F8A026A9643F89B4E451539A7AAC0C9	50176	----a-w-	C:\Windows\SysWOW64\MosHostClient.dll
2016-05-11 17:00:51	98DA2DE9A1AC739DF3750F7DABECC9CF	6295552	----a-w-	C:\Windows\SysWOW64\mos.dll
2016-05-11 17:00:51	6BC0E961EA78AFD90348C8E05896A7DC	784896	----a-w-	C:\Windows\SysWOW64\NMAA.dll
2016-05-11 17:00:51	40591C3BEBAEA638423B10863315D93F	87040	----a-w-	C:\Windows\SysWOW64\MapsBtSvc.dll
2016-05-11 17:00:51	3A1BD59AF5A0D20438D1E44FCF5EA4E8	349696	----a-w-	C:\Windows\SysWOW64\MapConfiguration.dll
2016-05-11 17:00:51	1159023FAA938BF54C7C033D2BC643BE	59904	----a-w-	C:\Windows\SysWOW64\MosStorage.dll
2016-05-11 17:00:51	0188F4F7264EE585DE518FD02DDD9F79	711680	----a-w-	C:\Windows\SysWOW64\MapControlCore.dll
2016-05-11 17:00:50	DFB54165665C7E369A59B273C91B90B0	800768	----a-w-	C:\Windows\SysWOW64\JpMapControl.dll
2016-05-11 17:00:50	3AEDE16F62921F443DDE37440C84B6F1	5205504	----a-w-	C:\Windows\SysWOW64\BingMaps.dll
2016-05-11 17:00:50	03B7C4D05DB7FF060E49FA900FCE627E	451928	----a-w-	C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-05-11 17:00:49	D408D20295BA135DC1B9B181FADF78DD	255168	----a-w-	C:\Windows\SysWOW64\LockAppHost.exe
2016-05-11 17:00:49	52FEDEA32F2BBFCD3AAA83FD39852C1A	2061824	----a-w-	C:\Windows\SysWOW64\MFMediaEngine.dll
2016-05-11 17:00:49	468AA89AF32BEE9D6B0ABBDF7C88CF20	5240960	----a-w-	C:\Windows\SysWOW64\windows.storage.dll
2016-05-11 17:00:49	32A696B0A48CCCCE5FC8E8E572FD4E90	434688	----a-w-	C:\Windows\SysWOW64\LogonController.dll
2016-05-11 17:00:49	2942FB92C23B77D3BD9D38117AF3663B	1557768	----a-w-	C:\Windows\SysWOW64\KernelBase.dll
2016-05-11 17:00:48	5A77C7C30E117F60ACCEF43E2EA6841D	12125696	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2016-05-11 17:00:47	3A5C07D5517087143701DBEB749F0EF1	18676224	----a-w-	C:\Windows\SysWOW64\edgehtml.dll
2016-05-11 17:00:46	22120EE8EC8AC405618FEA768071E267	19344384	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2016-05-11 17:00:43	692E62EA6039478321AE5D24A68E1FE2	4074160	----a-w-	C:\Windows\SysWOW64\explorer.exe
2016-05-11 17:00:43	362C9AA8696C74CD38F1416FF866C25C	522176	----a-w-	C:\Windows\SysWOW64\dxgi.dll
2016-05-11 17:00:43	25E42F5C3FDE0E96BF3C16814DC7A688	1372304	----a-w-	C:\Windows\SysWOW64\gdi32.dll
2016-05-11 17:00:42	A825405D442EB9A2526468E16296DD58	513368	----a-w-	C:\Windows\SysWOW64\d3d10level9.dll
2016-05-11 17:00:42	A1A9DDD5C6A335C0B97423A2F75C9299	453472	----a-w-	C:\Windows\SysWOW64\directmanipulation.dll
2016-05-11 17:00:42	0561104CC8619EC5A53848F642434235	13018112	----a-w-	C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-05-11 17:00:41	FA6CCFE5305E3D276F06A104EAA83029	4759040	----a-w-	C:\Windows\SysWOW64\d2d1.dll
2016-05-11 17:00:41	89C74675E6DE7888153B1F6644772774	1536088	----a-w-	C:\Windows\SysWOW64\crypt32.dll
2016-05-11 17:00:41	1F90253211F8E102D814F4DE4D550B85	1626624	----a-w-	C:\Windows\SysWOW64\dwmcore.dll
2016-05-11 17:00:40	DA97C8A8C517210E4ACA90E45C836E80	80896	----a-w-	C:\Windows\SysWOW64\BluetoothApis.dll
2016-05-11 17:00:40	B6506139C8A4CE3BDD3B4EFDF63A87B5	348672	----a-w-	C:\Windows\SysWOW64\CredProvDataModel.dll
2016-05-11 17:00:40	98DA8D97E83C73E7AD7A142A801E1898	2193408	----a-w-	C:\Windows\SysWOW64\actxprxy.dll
2016-05-11 17:00:40	8E8FBA400CD678AB46D46BB24921A051	342528	----a-w-	C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-05-11 17:00:40	89C06DA6E3B3C06F69E2CAFB3431CAF5	31232	----a-w-	C:\Windows\SysWOW64\ByteCodeGenerator.exe
2016-05-11 17:00:40	8450005F7BA8662A64E3FB7B0C3EE836	51712	----a-w-	C:\Windows\SysWOW64\wshbth.dll
2016-05-11 17:00:39	460CDD92C5283DCB9E35AF2B8DB7F200	461824	----a-w-	C:\Windows\SysWOW64\CoreMessaging.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2016-05-11 16:54:33	0B28F2ACE5103586D322AD98FAA01309	870912	----a-w-	C:\Windows\Sysnative\MPSSVC.dll
2016-05-11 16:54:03	5DA95027DF2317174E8C39B4A8D1FCD8	1213440	----a-w-	C:\Windows\Sysnative\wwansvc.dll
2016-05-11 16:54:03	45FA01F8B7971ACB65202038E34D04A3	86528	----a-w-	C:\Windows\Sysnative\wpdbusenum.dll
2016-05-11 16:54:02	C991F0E48492D1550279F901AB2332B0	390496	----a-w-	C:\Windows\Sysnative\wlanapi.dll
2016-05-11 16:54:02	C1C81AAF533552B3C4D9F11A5FF97700	291360	----a-w-	C:\Windows\Sysnative\wininit.exe
2016-05-11 16:54:02	5C156EC4E44E30331BCC865A3B61D839	585728	----a-w-	C:\Windows\Sysnative\winlogon.exe
2016-05-11 16:54:02	54D6AEA7933377556BBBEC5F45539922	673280	----a-w-	C:\Windows\Sysnative\Windows.UI.dll
2016-05-11 16:54:01	F172E5709824756634091047826E7A9F	1319424	----a-w-	C:\Windows\Sysnative\wifinetworkmanager.dll
2016-05-11 16:54:01	BD3F339FE542C30BB4A88F34A597728C	134656	----a-w-	C:\Windows\Sysnative\wificonnapi.dll
2016-05-11 16:54:01	ABF13620065E258771320165E0759761	1776768	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2016-05-11 16:54:01	6EA247B3631FE0181583566B9D828B22	413536	----a-w-	C:\Windows\Sysnative\wifitask.exe
2016-05-11 16:54:01	1A944DC7982279E73C4181DD5D50E021	3591168	----a-w-	C:\Windows\Sysnative\win32kfull.sys
2016-05-11 16:54:01	0676A6C9A6EECA48E14B9AE13B0E3508	1387520	----a-w-	C:\Windows\Sysnative\win32kbase.sys
2016-05-11 16:54:00	F1DF87BCF5429D48484E78FB1933326B	848896	----a-w-	C:\Windows\Sysnative\wuapi.dll
2016-05-11 16:54:00	F00A2E895B61858DBB3FE870495E37FA	210432	----a-w-	C:\Windows\Sysnative\wcmcsp.dll
2016-05-11 16:54:00	90A52EBAC043CFCA92E5F3DEAD4BBB4C	48128	----a-w-	C:\Windows\Sysnative\wups.dll
2016-05-11 16:54:00	8A88DBA247BFF23BD284C2189F41FDA5	2280960	----a-w-	C:\Windows\Sysnative\wuaueng.dll
2016-05-11 16:54:00	4766A523BD8265F3082662A49C382680	26408	----a-w-	C:\Windows\Sysnative\wuauclt.exe
2016-05-11 16:54:00	0BF8D8C7EC9FB15D6480A12101E88B71	606720	----a-w-	C:\Windows\Sysnative\wcmsvc.dll
2016-05-11 16:53:59	E706406D61508D207F6B41CA4AD30891	127488	----a-w-	C:\Windows\Sysnative\VEDataLayerHelpers.dll
2016-05-11 16:53:59	AB1738C51C1C1F41A885467E7BB0D37B	285696	----a-w-	C:\Windows\Sysnative\VEEventDispatcher.dll
2016-05-11 16:53:59	82BC3D304654F8EBEFABDDC2AD70AFE3	497152	----a-w-	C:\Windows\Sysnative\tileobjserver.dll
2016-05-11 16:53:59	315CFB6974B5111E3E62E9A512C92B25	151040	----a-w-	C:\Windows\Sysnative\VEStoreEventHandlers.dll
2016-05-11 16:53:58	F5F7CE3E32536F1A37FB3972F27A814F	1399224	----a-w-	C:\Windows\Sysnative\user32.dll
2016-05-11 16:53:58	D5D0D1345DEAC9D08A6A5B146A29ADBE	1390080	----a-w-	C:\Windows\Sysnative\Windows.UI.Shell.dll
2016-05-11 16:53:58	0BFEB4862FC2422DAC67EE95C278ECE0	111616	----a-w-	C:\Windows\Sysnative\updatepolicy.dll
2016-05-11 16:53:54	75A22EF6AC813D4FE63E30C3C292F871	11545088	----a-w-	C:\Windows\Sysnative\twinui.dll
2016-05-11 16:53:54	2A643E48326E427C6A43005EC29F314D	2444288	----a-w-	C:\Windows\Sysnative\twinui.appcore.dll
2016-05-11 16:53:52	A1BFD44C6343BDF582828EAB6B4CBDE5	630784	----a-w-	C:\Windows\Sysnative\PhoneProviders.dll
2016-05-11 16:53:49	0CFE0F27EC828D9659FD8BF3A529F7B1	166400	----a-w-	C:\Windows\Sysnative\SubscriptionMgr.dll
2016-05-11 16:53:47	FE42F8A07885E518ED1E846C93E4B78C	617984	----a-w-	C:\Windows\Sysnative\StorSvc.dll
2016-05-11 16:53:43	0BECECA1B6DA7B022FC9502D22B9E9B3	22561256	----a-w-	C:\Windows\Sysnative\shell32.dll
2016-05-11 16:53:40	C49BB15138D9A7AE2901692CA30E11D1	181248	----a-w-	C:\Windows\Sysnative\shacct.dll
2016-05-11 16:53:40	52C95CFC459242ECBD8A557A197F6FF6	725776	----a-w-	C:\Windows\Sysnative\SHCore.dll
2016-05-11 16:53:40	50E41D3203DA334DBBD2B3B6C7EA64CD	988672	----a-w-	C:\Windows\Sysnative\SharedStartModel.dll
2016-05-11 16:53:39	EBE067467C144B097CEF5F609F6ABF43	865792	----a-w-	C:\Windows\Sysnative\AzureSettingSyncProvider.dll
2016-05-11 16:53:39	B9B902C12D6872DE9135B0A7C1ACA5A8	565600	----a-w-	C:\Windows\Sysnative\SettingSyncHost.exe
2016-05-11 16:53:39	A8ECAFE7C58ABABA7CB1C377B7A7E309	984576	----a-w-	C:\Windows\Sysnative\SettingSyncCore.dll
2016-05-11 16:53:39	A55AB67676D0E90C279E36AF78EECCFA	515072	----a-w-	C:\Windows\Sysnative\OneDriveSettingSyncProvider.dll
2016-05-11 16:53:39	8B4111E094EDDBED23EFA1FF8B5F314A	613376	----a-w-	C:\Windows\Sysnative\SettingSync.dll
2016-05-11 16:53:38	D0F9C288251907FD44B96837DBDF0A50	320000	----a-w-	C:\Windows\Sysnative\cryptngc.dll
2016-05-11 16:53:38	82C4028BABC9BADCD89600F5084E4543	479232	----a-w-	C:\Windows\Sysnative\schannel.dll
2016-05-11 16:53:38	7AAA9916AA10F4B0E9743798A5BA6549	649216	----a-w-	C:\Windows\Sysnative\ngcsvc.dll
2016-05-11 16:53:38	679DD4763AA8028B2F26651D3D02A2E1	582656	----a-w-	C:\Windows\Sysnative\ngccredprov.dll
2016-05-11 16:53:38	5DBA65D48CB7B17E241BB7430745C2E0	59392	----a-w-	C:\Windows\Sysnative\hmkd.dll
2016-05-11 16:53:38	5907323899BCEFA32BF6B002F2493C09	76288	----a-w-	C:\Windows\Sysnative\ngcpopkeysrv.dll
2016-05-11 16:53:38	33C215D1F36A184FB0C0F83ECBE12B5B	351232	----a-w-	C:\Windows\Sysnative\NgcCtnr.dll
2016-05-11 16:53:38	191A50C760243B5B8E08E0A1CA0B1F7C	821760	----a-w-	C:\Windows\Sysnative\TokenBroker.dll
2016-05-11 16:53:38	0FB83658FBB2C5A18AB98C5C94DB9FAF	289792	----a-w-	C:\Windows\Sysnative\NgcCtnrSvc.dll
2016-05-11 16:53:37	ECF260CA5837CE3174AAAE450C1888C6	605184	----a-w-	C:\Windows\Sysnative\vbscript.dll
2016-05-11 16:53:37	A1144CA95D4C30449331D3DF39F295F9	970752	----a-w-	C:\Windows\Sysnative\kerberos.dll
2016-05-11 16:53:36	85A676350B7A349B1DFB47654FBF8C71	804352	----a-w-	C:\Windows\Sysnative\jscript.dll
2016-05-11 16:53:36	7E500CCA3EC66C419F2E4BBDE8617647	4894208	----a-w-	C:\Windows\Sysnative\jscript9.dll
2016-05-11 16:53:36	62D33462C8781DA354519488A571A9AD	7832576	----a-w-	C:\Windows\Sysnative\Chakra.dll
2016-05-11 16:53:36	09098FB07B47765865492C53B66E29E5	764928	----a-w-	C:\Windows\Sysnative\Chakradiag.dll
2016-05-11 16:53:35	7F0318ECC1E6E566D02F218DD59CEA84	484352	----a-w-	C:\Windows\Sysnative\DataSenseHandlers.dll
2016-05-11 16:53:35	0C8655AAC4EA262F62B00DCDA4639819	2598912	----a-w-	C:\Windows\Sysnative\NetworkMobileSettings.dll
2016-05-11 16:53:18	A2953084546B1F46B5CCC7FC57A72C1B	314880	----a-w-	C:\Windows\Sysnative\RDXTaskFactory.dll
2016-05-11 16:53:18	72229D3836EA9697F5E13AAEA85F8688	204048	----a-w-	C:\Windows\Sysnative\rsaenh.dll
2016-05-11 16:53:18	1997A751EF0FB9889E6642428DC4CAB2	1161120	----a-w-	C:\Windows\Sysnative\rpcrt4.dll
2016-05-11 16:53:17	CFF943806EBAD5CFAC26FD3DF304E79F	1073152	----a-w-	C:\Windows\Sysnative\RDXService.dll
2016-05-11 16:53:16	A29004CC4FE3A06B5C71969F6411FD41	287232	----a-w-	C:\Windows\Sysnative\provhandlers.dll
2016-05-11 16:53:16	810B7BA7636930BD6A21A93296FBCA51	292864	----a-w-	C:\Windows\Sysnative\provengine.dll
2016-05-11 16:53:16	5E903356FCDC2C7011E5341A1C2D48E9	192000	----a-w-	C:\Windows\Sysnative\provisioningcsp.dll
2016-05-11 16:53:16	1AF7E0BA5D1AEA3DEF1CF05B070803FA	89600	----a-w-	C:\Windows\Sysnative\NFCProvisioningPlugin.dll
2016-05-11 16:53:06	89FE1A65D15DE2AA9CBF86AA6A731557	7474528	----a-w-	C:\Windows\Sysnative\ntoskrnl.exe
2016-05-11 16:53:05	9C6EE1DE9CF7B77FF550A737816EB6DB	207360	----a-w-	C:\Windows\Sysnative\NetSetupSvc.dll
2016-05-11 16:53:05	03DE6DE0019FFC0DE60759A893BD8B3F	1819208	----a-w-	C:\Windows\Sysnative\ntdll.dll
2016-05-11 16:53:04	DCC42EF91745E4AB13602B9A4D86DDC4	115040	----a-w-	C:\Windows\Sysnative\NetSetupApi.dll
2016-05-11 16:53:04	D906EFF6ADB6704071C903E62867AC23	696672	----a-w-	C:\Windows\Sysnative\NetSetupEngine.dll
2016-05-11 16:53:04	ACC6B16066D073AA0E20B044BFEF9CD1	471552	----a-w-	C:\Windows\Sysnative\NetSetupShim.dll
2016-05-11 16:53:02	79BF53E386256057C30EF606DC3CFDFB	870400	----a-w-	C:\Windows\Sysnative\modernexecserver.dll
2016-05-11 16:53:01	090AAD83736B45769D2688E3BC1AB80A	1092464	----a-w-	C:\Windows\Sysnative\mfplat.dll
2016-05-11 16:53:00	3655A59A1E16307F2F6475AC037C1EE4	87040	----a-w-	C:\Windows\Sysnative\MDMAppInstaller.exe
2016-05-11 16:52:59	B28EA19205448B34303D006D50E9E65A	74752	----a-w-	C:\Windows\Sysnative\MosStorage.dll
2016-05-11 16:52:59	99DDB4A100F6013E6B6B269880F0C936	988160	----a-w-	C:\Windows\Sysnative\NMAA.dll
2016-05-11 16:52:59	7DDC2D8133CC1CA646134CC450C02C15	28672	----a-w-	C:\Windows\Sysnative\mapsupdatetask.dll
2016-05-11 16:52:59	614EF7EFFE6896791CC8E4D045F37579	7977472	----a-w-	C:\Windows\Sysnative\mos.dll
2016-05-11 16:52:59	56B24B359838BE86B013C2CFD38BDFC4	72704	----a-w-	C:\Windows\Sysnative\moshost.dll
2016-05-11 16:52:59	489EDA0C433F5B0AA54033F523F2C80E	269824	----a-w-	C:\Windows\Sysnative\moshostcore.dll
2016-05-11 16:52:59	3C52661045548D78EC0EB76495CB978F	66560	----a-w-	C:\Windows\Sysnative\MosHostClient.dll
2016-05-11 16:52:58	FD60606E2E7F74D7104A5DA1210D38E6	460800	----a-w-	C:\Windows\Sysnative\MapConfiguration.dll
2016-05-11 16:52:58	F1CC271FBAD94FBD3D69BC6BE443C33B	1056256	----a-w-	C:\Windows\Sysnative\JpMapControl.dll
2016-05-11 16:52:58	DE1C434F0F89C37687D34FB8A8E77B46	120320	----a-w-	C:\Windows\Sysnative\MapsBtSvc.dll
2016-05-11 16:52:58	78A9EBBAC348ACD9AF5B72ECF90944A7	853504	----a-w-	C:\Windows\Sysnative\MapsStore.dll
2016-05-11 16:52:58	77DE2FC672F423C2DFCF2A12DB74197C	89088	----a-w-	C:\Windows\Sysnative\MapsCSP.dll
2016-05-11 16:52:58	5FD7FDCE260C2ADE6CFFBC141657E8C0	939520	----a-w-	C:\Windows\Sysnative\MapControlCore.dll
2016-05-11 16:52:58	1B8A57EC632457E909A06957CB216806	7200256	----a-w-	C:\Windows\Sysnative\BingMaps.dll
2016-05-11 16:52:54	E4B5C9FEF4C8978CF75B584188868AF8	2582016	----a-w-	C:\Windows\Sysnative\MFMediaEngine.dll
2016-05-11 16:52:54	24F2141493C1A2F6FDEC8C3FA5A95CDE	6605504	----a-w-	C:\Windows\Sysnative\windows.storage.dll
2016-05-11 16:52:54	00A8CD22CCF7FA34501038C3C35186BD	498960	----a-w-	C:\Windows\Sysnative\MFCaptureEngine.dll
2016-05-11 16:52:53	F75A1710366B5C6B02D3C061DAA4C578	529920	----a-w-	C:\Windows\Sysnative\LogonController.dll
2016-05-11 16:52:53	70C5D325E1BBD9C771542375F9DE5711	303216	----a-w-	C:\Windows\Sysnative\LockAppHost.exe
2016-05-11 16:52:52	DA5108028A00B865BBECB1980EB05EB8	1997328	----a-w-	C:\Windows\Sysnative\KernelBase.dll
2016-05-11 16:52:51	5EED294E19B8293E4F0845CED31489BA	13383168	----a-w-	C:\Windows\Sysnative\ieframe.dll
2016-05-11 16:52:48	5BDA53E18911DEAB35F03AA1C3213A78	3673424	----a-w-	C:\Windows\Sysnative\iertutil.dll
2016-05-11 16:52:48	1D7F891D7ADCE1A6824FCB57D6768E14	689152	----a-w-	C:\Windows\Sysnative\ieproxy.dll
2016-05-11 16:52:47	3602BE2186C15362DF2B5C489AC1B1D1	22379008	----a-w-	C:\Windows\Sysnative\edgehtml.dll
2016-05-11 16:52:46	FA05A804701A1BF900577A0F7C14B59E	24604672	----a-w-	C:\Windows\Sysnative\mshtml.dll
2016-05-11 16:52:39	C1D51970E74AB5FFE46FE624BFE900C6	1731072	----a-w-	C:\Windows\Sysnative\urlmon.dll
2016-05-11 16:52:38	93C28A95FC5CA7F420343AC9693E05E6	1594920	----a-w-	C:\Windows\Sysnative\gdi32.dll
2016-05-11 16:52:38	7CEC266216126BC9A0E1072E1A7E5702	279040	----a-w-	C:\Windows\Sysnative\ListSvc.dll
2016-05-11 16:52:35	A5C14F8FE076B41778C56F2414F5D246	650304	----a-w-	C:\Windows\Sysnative\dxgi.dll
2016-05-11 16:52:35	981F6C7FB2338CC7889BA4D37C1A9DCE	69632	----a-w-	C:\Windows\Sysnative\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 16:52:35	5470B002C5E5D4DC8C4C330EAE8A685D	619296	----a-w-	C:\Windows\Sysnative\d3d10level9.dll
2016-05-11 16:52:33	D2EF3FDF915BBA7C9832FA890DD4D85A	16984576	----a-w-	C:\Windows\Sysnative\Windows.UI.Xaml.dll
2016-05-11 16:52:32	EED30CDEAB6E4B45CBF1BD5298952049	550656	----a-w-	C:\Windows\Sysnative\directmanipulation.dll
2016-05-11 16:52:32	E650C69B5CA9B786AD91E3E7F962A0EE	848896	----a-w-	C:\Windows\Sysnative\samsrv.dll
2016-05-11 16:52:32	7539A3BF1DC12C53D6DDE078BE888951	190144	----a-w-	C:\Windows\Sysnative\DeviceCensus.exe
2016-05-11 16:52:31	F6718A9F2B5BFA1A42618F63BC890713	5502976	----a-w-	C:\Windows\Sysnative\d2d1.dll
2016-05-11 16:52:31	8F225A78F60DB08D4691C1C27CF644F2	6974464	----a-w-	C:\Windows\Sysnative\Windows.Data.Pdf.dll
2016-05-11 16:52:31	19D88BF131158F4286294C372B4410B3	1946112	----a-w-	C:\Windows\Sysnative\dwmcore.dll
2016-05-11 16:52:30	EDF39F56DDF4116DCC8779A65EF8D6C5	58208	----a-w-	C:\Windows\Sysnative\dwminit.dll
2016-05-11 16:52:28	3CFA0EA6ABC10436D998F7958912387C	1848072	----a-w-	C:\Windows\Sysnative\crypt32.dll
2016-05-11 16:52:27	F83E3BAEF5931399978A31753B22D0BE	713920	----a-w-	C:\Windows\Sysnative\generaltel.dll
2016-05-11 16:52:27	C57CBD3D0A4B832F3DC18250FC02C3DE	46784	----a-w-	C:\Windows\Sysnative\CompatTelRunner.exe
2016-05-11 16:52:26	3F943A9A21814C6A394FBB8F1D4E622D	1401024	----a-w-	C:\Windows\Sysnative\appraiser.dll
2016-05-11 16:52:26	242DA5F2A6D9C5DFE2F99127BD2077A4	92352	----a-w-	C:\Windows\Sysnative\acmigration.dll
2016-05-11 16:52:19	DBD087566420D945303C278A4FD90E60	440320	----a-w-	C:\Windows\Sysnative\CredProvDataModel.dll
2016-05-11 16:52:18	B985F4CC9D63594D8D3DCADAC07F257E	130560	----a-w-	C:\Windows\Sysnative\CloudDomainJoinDataModelServer.dll
2016-05-11 16:52:13	C417C35D0B714320708A1C18673ACE6C	104448	----a-w-	C:\Windows\Sysnative\BluetoothApis.dll
2016-05-11 16:52:13	C3534256AF526A16AADBA335AA99D58F	63488	----a-w-	C:\Windows\Sysnative\wshbth.dll
2016-05-11 16:52:12	C1FCA0AED814F1E814700833EF8E0616	179712	----a-w-	C:\Windows\Sysnative\BrowserSettingSync.dll
2016-05-11 16:51:36	9B034D049D1C6EC9BED55D2F27D86ED9	2186	----a-w-	C:\Windows\Sysnative\AppxProvisioning.xml
2016-05-11 16:51:36	37E893F5A0BB0DCF89D8464F4D5E0C3D	217440	----a-w-	C:\Windows\Sysnative\AppxAllUserStore.dll
2016-05-11 16:51:36	33931A5F8E8B4446C547B020409D66C4	436736	----a-w-	C:\Windows\Sysnative\AppXDeploymentClient.dll
2016-05-11 16:51:36	087FBBC026DCC0F693E91079B9901B7E	2166784	----a-w-	C:\Windows\Sysnative\AppXDeploymentServer.dll
2016-05-11 16:51:36	082DC7D3704A17FF022D70C577785254	2066432	----a-w-	C:\Windows\Sysnative\AppXDeploymentExtensions.dll
2016-05-11 16:51:35	F7DD01F464ED3ADB8477CD5FD1DE6CF4	356864	----a-w-	C:\Windows\Sysnative\ActivationManager.dll
2016-05-11 16:51:35	734B3E9E4DA94DD093C6759CA0C2AA1E	4775424	----a-w-	C:\Windows\Sysnative\actxprxy.dll
2016-05-11 16:51:34	ED309332DA910BE791F40F09F6FC50B5	38400	----a-w-	C:\Windows\Sysnative\ByteCodeGenerator.exe
2016-05-11 16:51:34	AB17E08B47FECDAF0E1349797A6C41A4	1184960	----a-w-	C:\Windows\Sysnative\aeinv.dll
2016-05-11 16:51:34	6D8365722FBB3E58FC2B10FEA00BE840	514752	----a-w-	C:\Windows\Sysnative\devinv.dll
2016-05-11 16:51:34	453EEF8F903DE266D9CB16313B5FA796	215040	----a-w-	C:\Windows\Sysnative\aepic.dll
2016-05-11 16:51:34	2453622FF2CCB1BA1DFA588207E9C7A4	294592	----a-w-	C:\Windows\Sysnative\invagent.dll
2016-05-11 16:51:26	FE3A72E9BC5515509517D9BF41144252	414720	----a-w-	C:\Windows\Sysnative\bcastdvr.exe
2016-05-11 16:51:26	F70CB98E5669D44CBFA6F3EBF534977F	86528	----a-w-	C:\Windows\Sysnative\AppCapture.dll
2016-05-11 16:51:26	86BE19C6A177AEB93302EA5C4FBE2D11	754664	----a-w-	C:\Windows\Sysnative\CoreMessaging.dll
====== C:\Windows\Sysnative\drivers =====
2016-05-21 12:46:19	912CAA7E08A94A7C25CB315104AF42CD	18160	----a-w-	C:\Windows\Sysnative\drivers\GdPhyMem.sys
2016-05-21 12:46:16	65BF29515C25819C18CA426EAEDF0B14	106272	----a-w-	C:\Windows\Sysnative\drivers\GRD.sys
2016-05-21 11:56:34	DD7D5196EB9C4321EA57B668AF873840	37400	----a-w-	C:\Windows\Sysnative\drivers\GDKBB64.sys
2016-05-21 11:56:32	AC43FC300024DBB0CC02C61785ECB5A9	29720	----a-w-	C:\Windows\Sysnative\drivers\GDKBFlt64.sys
2016-05-21 11:56:30	CA3B8AD1A520FD002200F3E5F97ADD79	100352	----a-w-	C:\Windows\Sysnative\drivers\TS4nt.sys
2016-05-21 11:55:49	8BA7DF1F47C14CBD45182157318A8A39	77848	----a-w-	C:\Windows\Sysnative\drivers\gdwfpcd64.sys
2016-05-21 11:55:08	B4355AF2D50AFF399B8121CE83CE4356	92160	----a-w-	C:\Windows\Sysnative\drivers\PktIcpt.sys
2016-05-21 11:55:00	DD5B2516CC42B3F80EF987AF6D466461	160768	----a-w-	C:\Windows\Sysnative\drivers\GDBehave.sys
2016-05-21 11:55:00	62F354B96AB176B8AC98DE8568FA236A	246272	----a-w-	C:\Windows\Sysnative\drivers\MiniIcpt.sys
2016-05-21 11:55:00	47A65424A8C2B60F32B202EA74FB8978	134656	----a-w-	C:\Windows\Sysnative\drivers\HookCentre.sys
2016-05-11 16:54:38	E7463CE8579A0418A98BE9BE42C647D7	534872	----a-w-	C:\Windows\Sysnative\drivers\USBHUB3.SYS
2016-05-11 16:54:38	4AAD6547953D373A1EB5B2DF583D868B	67072	----a-w-	C:\Windows\Sysnative\drivers\usbser.sys
2016-05-11 16:54:38	2A87EA182EA333D79AA0B03833EA67F2	131424	----a-w-	C:\Windows\Sysnative\drivers\ufxsynopsys.sys
2016-05-11 16:54:34	CFFE69B6C276A3418687109EA8AC9E7D	330072	----a-w-	C:\Windows\Sysnative\drivers\pci.sys
2016-05-11 16:53:58	82D3B1F4D80057826AA649D78147DE36	63488	----a-w-	C:\Windows\Sysnative\drivers\UcmCx.sys
2016-05-11 16:53:37	B880BE37452AB1D4AA93845F58EF7960	95072	----a-w-	C:\Windows\Sysnative\drivers\sdport.sys
2016-05-11 16:53:35	50DFE05C698E9B0A63D95E3D669A105C	638816	----a-w-	C:\Windows\Sysnative\drivers\fvevol.sys
2016-05-11 16:53:15	67B9684B8272D5EBD1CCBB1DBD425EC8	99680	----a-w-	C:\Windows\Sysnative\drivers\pdc.sys
2016-05-11 16:52:53	48D8729FACC784900B831212AE56F824	1996640	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
2016-05-11 16:52:53	357910142E9285B978689B1DB4EFA00A	393568	----a-w-	C:\Windows\Sysnative\drivers\dxgmms1.sys
2016-05-11 16:52:53	01C01ED15ED56B98088CE1D5A0965E6A	577368	----a-w-	C:\Windows\Sysnative\drivers\dxgmms2.sys
2016-05-11 16:52:38	C330883C06E2D4CE4F6982F048265D37	335712	----a-w-	C:\Windows\Sysnative\drivers\fastfat.sys
2016-05-11 16:52:38	8F2523C9D8F1448FF2156452AF60FA00	87552	----a-w-	C:\Windows\Sysnative\drivers\filecrypt.sys
2016-05-11 16:51:25	C0752D58193603B6ED762B4027C65E1B	155136	----a-w-	C:\Windows\Sysnative\drivers\hidclass.sys
2016-05-07 20:32:03	E55FDEDB0AC89B41970AAE0F44FC2DCA	686592	----a-w-	C:\Windows\Sysnative\drivers\PFC027.SYS
2016-05-04 21:43:28	8D0B11290E5DE4BAE57CC0D42BEE9644	215560	----a-w-	C:\Windows\Sysnative\drivers\RapportHades64.sys
2016-05-04 21:43:27	14A6A2AC34FF620E006A2D83A26D3651	470056	----a-w-	C:\Windows\Sysnative\drivers\RapportKE64.sys
2016-05-04 19:27:20	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_GDKBB64_01007.Wdf
2016-05-04 19:27:19	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2016-05-04 14:16:34	3B866F8CB10719A5AF9E410B1B149714	605440	----a-w-	C:\Windows\Sysnative\drivers\cng.sys
2016-05-04 14:16:28	19BD8A88AAC580592668B070AC0727D9	2152280	----a-w-	C:\Windows\Sysnative\drivers\ntfs.sys
2016-05-04 14:16:06	63C3F74DC398A1C1A77E39DFB9C312CA	1089888	----a-w-	C:\Windows\Sysnative\drivers\http.sys
2016-05-04 14:15:55	F279536122B83FD0D8E158AA753E1B7C	238592	----a-w-	C:\Windows\Sysnative\drivers\xboxgip.sys
2016-05-04 14:15:55	469441BAE3FF8A16826FC62C51EF5E18	563552	----a-w-	C:\Windows\Sysnative\drivers\acpi.sys
2016-05-04 14:15:54	083A727D784009F9CCFB120C7841B7AF	2403680	----a-w-	C:\Windows\Sysnative\drivers\tcpip.sys
2016-05-04 14:15:49	0B3B0C1D86050355676640488FA897D3	430944	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2016-05-04 14:15:48	28B8E1C6CBCF9FFE2FABFF3160C26ADF	258912	----a-w-	C:\Windows\Sysnative\drivers\ufx01000.sys
2016-05-04 14:15:46	A4411C522D41707D5BCA817A5BB9E30B	114688	----a-w-	C:\Windows\Sysnative\drivers\bridge.sys
2016-05-04 14:15:45	9E9D58F5E1702955B2F4D62996F80E8E	378208	----a-w-	C:\Windows\Sysnative\drivers\USBXHCI.SYS
2016-05-04 14:15:44	E582DA849A58524E645545FB68B6625D	1152864	----a-w-	C:\Windows\Sysnative\drivers\ndis.sys
2016-05-04 14:15:41	1A490555FD330CA2764D89191177C867	285696	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2016-05-04 14:15:40	935823F79CBEDB91637B63D37E3A5A36	148480	----a-w-	C:\Windows\Sysnative\drivers\dfsc.sys
2016-05-04 14:15:36	EDDB0D726DBECDFC1DBCC6DB464E5A13	146272	----a-w-	C:\Windows\Sysnative\drivers\appid.sys
2016-05-04 14:15:35	B24408471C1BCB17FC44F5B47EA8DEA3	277856	----a-w-	C:\Windows\Sysnative\drivers\sdbus.sys
2016-05-04 14:15:35	8359F776CA899E761852F2293B724EAE	185184	----a-w-	C:\Windows\Sysnative\drivers\dumpsd.sys
2016-05-04 14:15:34	AA4CD20708B7E0412A5316D7E2875103	530432	----a-w-	C:\Windows\Sysnative\drivers\nwifi.sys
2016-05-04 14:15:33	2BC2E99623119521EEF7910A11D0FDE0	694784	----a-w-	C:\Windows\Sysnative\drivers\WdiWiFi.sys
2016-05-04 14:15:32	8949F77132A4F8F3BA17C6727099F002	127840	----a-w-	C:\Windows\Sysnative\drivers\USBSTOR.SYS
2016-05-04 14:15:24	249A563C48DFD9E42A37587653E003BB	83968	----a-w-	C:\Windows\Sysnative\drivers\serial.sys
2016-05-04 14:15:23	E3C82823B22463BC38AA4F8ADA852624	104960	----a-w-	C:\Windows\Sysnative\drivers\rasl2tp.sys
2016-05-04 14:15:22	0731E8F4D8D3B8D3FD98A46A8ABFE0A0	333824	----a-w-	C:\Windows\Sysnative\drivers\portcls.sys
2016-05-04 14:15:19	DA0807D87A62D076C29C4E30F1E84F46	26112	----a-w-	C:\Windows\Sysnative\drivers\xinputhid.sys
2016-05-04 13:40:00	D41D8CD98F00B204E9800998ECF8427E	0	---ha-w-	C:\Windows\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf
====== C:\Windows\Tasks ======
2016-05-22 17:50:02	C401AE3338B1F92430ACE295584D5B8A	4260	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001UA
2016-05-22 17:50:01	8DAD00F781B6AE2FB0B69C375EAC3BF7	1126	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001UA.job
2016-05-22 17:50:01	844C53C185ACEE5D45D1E3BC56C97539	3884	----a-w-	C:\Windows\Sysnative\Tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001Core
2016-05-22 17:49:59	01C40C787AF940F7B974B472DF47778A	1074	----a-w-	C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001Core.job
2016-05-22 17:25:13	545CDEC6F57D3F189452AD75613EC80C	3632	----a-w-	C:\Windows\Sysnative\Tasks\van la Parra DBAgent 2 0
2016-05-22 17:24:50	5B68CD78F7BA552CCDB52F7D287B092F	3640	----a-w-	C:\Windows\Sysnative\Tasks\Seagate_Install_Launch
2016-05-22 17:18:00	--------	d-----w-	C:\Windows\Sysnative\Tasks\Leader Technologies
2016-05-17 14:11:11	3A62AAAF382D0974E7B94BFD58E6C7FE	3972	----a-w-	C:\Windows\Sysnative\Tasks\Adobe Acrobat Update Task
2016-05-16 20:10:41	65C6CC2BBF3CA170478973F24F2D9CC3	3670	----a-w-	C:\Windows\Sysnative\Tasks\CreateExplorerShellUnelevatedTask
2016-05-15 12:42:35	DFE65C8798B1169883A5BF689EFB0B3F	3312	----a-w-	C:\Windows\Sysnative\Tasks\HPCeeScheduleForvan la Parra
2016-05-15 12:42:34	80D7B9AF3032543640577270095A6192	392	----a-w-	C:\Windows\Tasks\HPCeeScheduleForvan la Parra.job
2016-05-14 09:15:47	--------	d-----w-	C:\Windows\Sysnative\Tasks\Hewlett-Packard
2016-05-14 09:08:19	EE818672D931DF2378B949EC31B0A397	3916	----a-w-	C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater
2016-05-14 09:08:19	E708E1D721935BD18F5398F2B7C9696C	940	----a-w-	C:\Windows\Tasks\Adobe Flash Player Updater.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-05-17 21:58:20	--------	d-----w-	C:\Program Files\Common Files\Intel
2016-05-17 21:58:06	--------	d-----w-	C:\Program Files\Intel
2016-05-17 21:54:13	--------	d-----w-	C:\Program Files\Common Files\AV
2016-05-17 14:11:16	--------	d-----w-	C:\Program Files\TrueKey
2016-05-07 14:40:09	--------	d---a-w-	C:\Program Files\Recuva
2016-05-06 21:13:11	--------	d---a-w-	C:\Program Files\Speccy
2016-05-04 21:20:22	--------	d-----w-	C:\Program Files\Reference Assemblies
2016-05-04 21:20:22	--------	d-----w-	C:\Program Files\MSBuild
======= C:\PROGRA~2 =====
2016-05-22 17:51:22	--------	d-----w-	C:\PROGRA~2\NAVIGON
2016-05-22 17:45:29	--------	d-----w-	C:\PROGRA~2\Google
2016-05-22 17:43:50	--------	d-----w-	C:\PROGRA~2\Samsung
2016-05-22 17:23:28	--------	d---a-w-	C:\PROGRA~2\Seagate
2016-05-21 22:30:14	--------	d-----w-	C:\PROGRA~2\Yahoo!
2016-05-18 18:00:06	--------	d-----w-	C:\PROGRA~2\Mozilla Maintenance Service
2016-05-17 14:09:55	--------	d---a-w-	C:\PROGRA~2\COMMON~1\Adobe
2016-05-17 14:09:55	--------	d-----w-	C:\PROGRA~2\Adobe
2016-05-14 10:01:45	--------	d-----w-	C:\PROGRA~2\COMMON~1\HP
2016-05-14 10:01:40	--------	d-----w-	C:\PROGRA~2\COMMON~1\Hewlett-Packard
2016-05-14 09:53:34	--------	d---a-w-	C:\PROGRA~2\HP
2016-05-14 09:14:02	--------	d---a-w-	C:\PROGRA~2\Hewlett-Packard
2016-05-10 14:49:45	--------	d-----w-	C:\PROGRA~2\COMMON~1\G Data
2016-05-07 20:31:59	--------	d-----w-	C:\PROGRA~2\Trust
2016-05-07 20:31:56	--------	d-----w-	C:\PROGRA~2\COMMON~1\PAC207
2016-05-07 20:31:53	--------	d--h--w-	C:\PROGRA~2\InstallShield Installation Information
2016-05-07 17:10:30	--------	d-----w-	C:\PROGRA~2\VideoLAN
2016-05-07 09:14:13	--------	d--h--w-	C:\PROGRA~2\Uninstall Information
2016-05-04 21:42:26	--------	d-----w-	C:\PROGRA~2\Trusteer
2016-05-04 21:20:23	--------	d-----w-	C:\PROGRA~2\Reference Assemblies
2016-05-04 21:20:23	--------	d-----w-	C:\PROGRA~2\MSBuild
2016-05-04 21:15:22	--------	d---a-w-	C:\PROGRA~2\Unchecky
2016-05-04 21:00:27	--------	d---a-w-	C:\PROGRA~2\COMMON~1\Skype
2016-05-04 21:00:26	--------	d-----r-	C:\PROGRA~2\Skype
2016-05-04 19:22:10	--------	d-----w-	C:\PROGRA~2\G DATA
======= C: =====
2016-05-07 10:44:22	169555B278E749BDEC902A9FEDD75F07	1548	----a-w-	C:\DelFix.txt
2016-05-04 21:38:25	FE99DCD030B518C2CE58522FF7E54FF0	1276	----a-w-	C:\DESKTOP-MBM4LER.rtf
====== C:\Users\van la Parra\AppData\Roaming ======
2016-05-22 18:07:32	--------	d-----w-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2016-05-22 17:46:35	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Google
2016-05-17 21:59:41	--------	d-----w-	C:\Users\van la Parra\AppData\Local\tkdata
2016-05-17 21:59:41	--------	d-----w-	C:\Users\van la Parra\AppData\Local\CEF
2016-05-17 21:58:33	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\tkdata
2016-05-17 21:58:29	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\TrueKey
2016-05-17 13:27:13	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Adobe
2016-05-17 13:03:32	--------	d-----w-	C:\Users\van la Parra\AppData\Local\HP
2016-05-16 19:31:27	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Temp
2016-05-14 09:27:05	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Hewlett-Packard
2016-05-11 19:34:23	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\LocalLow
2016-05-10 15:03:02	--------	d-----w-	C:\Users\Default\AppData\Local\Trusteer
2016-05-10 15:03:02	--------	d-----w-	C:\Users\Default User\AppData\Local\Trusteer
2016-05-07 17:22:29	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Programs
2016-05-07 09:15:14	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm
2016-05-06 13:14:07	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Diagnostics
2016-05-04 21:43:36	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Trusteer
2016-05-04 21:42:32	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Trusteer
2016-05-04 20:56:55	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Mozilla
2016-05-04 18:44:41	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\DataSharing
2016-05-04 17:51:27	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft
2016-05-04 16:38:01	--------	d-s---w-	C:\Windows\serviceprofiles\networkservice\AppData\LocalLow
2016-05-04 14:26:15	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Comms
2016-05-04 14:06:06	--------	d-----w-	C:\Users\van la Parra\AppData\Local\MicrosoftEdge
2016-05-04 13:59:34	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages
2016-05-04 13:59:26	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Publishers
2016-05-04 13:57:51	--------	d-----w-	C:\Users\van la Parra\AppData\Local\VirtualStore
2016-05-04 13:57:46	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-05-04 13:57:46	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-05-04 13:57:44	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Packages
2016-05-04 13:57:42	--------	d-----w-	C:\Users\van la Parra\AppData\Local\TileDataLayer
2016-05-04 13:57:03	--------	d-s---r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-05-04 13:57:03	--------	d-----w-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-05-04 13:57:03	--------	d-----w-	C:\Users\van la Parra\AppData\Roaming
2016-05-04 13:57:03	--------	d-----w-	C:\Users\van la Parra\AppData\LocalLow
2016-05-04 13:57:03	--------	d-----w-	C:\Users\van la Parra\AppData\Local\Microsoft
2016-05-04 13:57:03	--------	d-----w-	C:\Users\van la Parra\AppData\Local
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
====== C:\Users\van la Parra ======
2016-05-24 09:22:33	6D3F6FC5F84B85DBDA2796D76A72D373	30503216	----a-w-	C:\Users\van la Parra\Downloads\vlc-2.2.3-win32(1).exe
2016-05-22 18:06:46	--------	d-----w-	C:\Users\Public\Documents\NativeFus_Log
2016-05-22 18:00:47	--------	d-----w-	C:\ProgramData\Samsung
2016-05-22 17:55:58	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NAVIGON
2016-05-22 17:46:52	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2016-05-22 17:46:50	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-05-22 17:23:42	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate Dashboard 2.0
2016-05-22 17:23:31	--------	d-----w-	C:\ProgramData\Nero
2016-05-22 17:22:23	--------	d-----w-	C:\ProgramData\Seagate
2016-05-22 11:27:10	FF70EB133BE86B9F9EB18E274DAA6B6C	5111240	----a-w-	C:\Users\van la Parra\Downloads\spsetup129 (2).exe
2016-05-21 22:36:18	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2016-05-21 11:57:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA TOTAL PROTECTION
2016-05-21 11:52:56	--------	d-----w-	C:\ProgramData\G DATA Software
2016-05-21 11:46:25	7A515671ECE9CA674CA094A1777A6E85	273974176	----a-w-	C:\Users\van la Parra\Downloads\INT_R_BASE_TP (2).exe
2016-05-21 11:44:31	47206A06E67041DA3FA227F96F1CC78B	872352	----a-w-	C:\Users\van la Parra\Downloads\AVCleaner (1).exe
2016-05-21 09:01:57	1F14A3768CB568E4AA89C568903F5CC4	242200	----a-w-	C:\Users\van la Parra\Downloads\Firefox Setup Stub 46.0.1 (2).exe
2016-05-18 17:56:53	1F14A3768CB568E4AA89C568903F5CC4	242200	----a-w-	C:\Users\van la Parra\Downloads\Firefox Setup Stub 46.0.1 (1).exe
2016-05-17 21:58:30	--------	d-----w-	C:\ProgramData\TrueKey
2016-05-17 14:09:22	--------	d-----w-	C:\ProgramData\Adobe
2016-05-17 14:08:07	29910665DBD4207C02A366709E623C06	1196768	----a-w-	C:\Users\van la Parra\Downloads\readerdc_nl_wa_install.exe
2016-05-14 10:11:42	--------	d---a-w-	C:\ProgramData\HP Product Assistant
2016-05-14 10:09:21	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-05-14 09:45:11	--------	d---a-w-	C:\ProgramData\HP
2016-05-14 09:19:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-05-14 09:19:07	--------	d-----w-	C:\ProgramData\Hewlett-Packard
2016-05-11 19:43:19	B63656F10FE289C9420905ACFB364E8C	599720	----a-w-	C:\Users\van la Parra\Downloads\PatchMyPC(1).exe
2016-05-10 13:24:12	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BIOS Tools
2016-05-07 20:31:59	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trust
2016-05-07 17:12:02	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-05-07 14:40:13	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-05-06 21:13:14	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2016-05-04 21:42:27	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Eindpuntbeveiliging
2016-05-04 21:41:37	--------	d-----w-	C:\ProgramData\Trusteer
2016-05-04 21:15:23	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2016-05-04 21:15:22	--------	d-----w-	C:\ProgramData\Unchecky
2016-05-04 21:01:55	--------	d-----w-	C:\Users\van la Parra\Tracing
2016-05-04 21:00:27	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-05-04 21:00:08	--------	d-----w-	C:\ProgramData\Skype
2016-05-04 19:20:51	--------	d-----w-	C:\ProgramData\G Data
2016-05-04 14:01:20	--------	d-----r-	C:\Users\van la Parra\OneDrive
2016-05-04 13:57:46	--------	d-----r-	C:\Users\van la Parra\Searches
2016-05-04 13:57:46	--------	d-----r-	C:\Users\van la Parra\Contacts
2016-05-04 13:57:03	6FC234AD3752E1267B34FB12BCD6718B	20	--sh--w-	C:\Users\van la Parra\ntuser.ini
2016-05-04 13:57:03	--------	d--h--w-	C:\Users\van la Parra\AppData
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Videos
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Saved Games
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Music
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Links
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Favorites
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Downloads
2016-05-04 13:57:03	--------	d-----r-	C:\Users\van la Parra\Desktop

====== C: exe-files ==
2016-05-24 16:12:55	89CAC0480C8105BB1F585C3B5E125434	9040072	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
2016-05-24 16:12:55	89CAC0480C8105BB1F585C3B5E125434	9040072	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\OneDriveSetup.exe
2016-05-24 16:12:32	EBEC2BE509FBB6D922D2F04E4CE40946	493256	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\OneDriveStandaloneUpdater.exe
2016-05-24 16:12:24	9D8F8170A6432030DAA3CF1864E16DC4	178888	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncConfig.exe
2016-05-24 16:12:16	B18567F84F296ADB03E3C3F023C7422D	176840	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe
2016-05-24 09:22:33	6D3F6FC5F84B85DBDA2796D76A72D373	30503216	----a-w-	C:\Users\van la Parra\Downloads\vlc-2.2.3-win32(1).exe
2016-05-23 15:56:40	E76697AE5ECF815B4B7B58F9A4038FCA	292864	----a-w-	C:\Program Files\TrueKey\McTkOOBEService.exe
2016-05-22 18:07:10	72C4C2AFEDB71D5CB29E490EBCDC256E	2662800	----a-w-	C:\Users\van la Parra\AppData\Local\Google\Update\Download\{191B666E-DE99-4C18-993A-35F394473116}\1.1.2.13\gpbackup_1.1.2.13_yvl7awwt6qaqrrrmlg-bz-h2oyw.exe
2016-05-22 18:05:04	42EB923E851C1F3502978E077576E73E	1534048	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\Uninstall.exe
2016-05-22 18:04:56	7DB9E612A2742ACEAB080B882E83141C	754784	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
2016-05-22 18:01:17	E8B364111F317A60DF073826E628FF6F	92824	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateOnDemand.exe
2016-05-22 18:01:17	54D932590CEAB260ADC4FF79797B21D9	92824	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateWebPlugin.exe
2016-05-22 18:01:17	108CB30A5B4C5247E414A3086458FCFC	92824	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateBroker.exe
2016-05-22 18:01:16	5AB2C2DBC3108A2F7275A2F232FA8036	987040	----a-w-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateSetup.exe
2016-05-22 18:01:13	A425CDCEB9D26E9A5ABAFA259799D447	312472	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
2016-05-22 18:01:13	56FE3C885B0901601549E23E7A435984	250008	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler.exe
2016-05-22 18:01:13	50FCC5C822A6B4FC6F377EE9F9F37C7B	152216	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdate.exe
2016-05-22 18:01:13	13FF5C375BD0C702EA1252E79592692F	135832	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\GoogleUpdateComRegisterShell64.exe
2016-05-22 18:00:53	5AB2C2DBC3108A2F7275A2F232FA8036	987040	----a-w-	C:\Users\van la Parra\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.30.3\GoogleUpdateSetup.exe
2016-05-22 17:55:59	0D7422781101E2E028A715006DEE8179	117620	----a-w-	C:\Program Files (x86)\NAVIGON\NAVIGON Fresh\uninst.exe
2016-05-22 17:55:56	9C5DB7D913E02DE558CC4F3C50701B37	66048	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\Execute2App.exe
2016-05-22 17:49:58	50FCC5C822A6B4FC6F377EE9F9F37C7B	152216	----atw-	C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe
2016-05-22 17:47:19	5A416D83F6BF8BA68B409A9A69FB96C5	17385800	---ha-r-	C:\Program Files (x86)\Google\Picasa3\setup.exe
2016-05-22 17:46:34	C1B577B2169900F4CF7190C39F085794	136120	----a-w-	C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
2016-05-22 17:44:01	BF926A2B2EECE8DC8FE78018FB467F2A	1193984	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}\setup.exe
2016-05-22 17:34:03	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\0A825DAB-4A2A-4E85-A23A-CDC70762AA36\DismHost.exe
2016-05-22 17:22:23	76A188CA59AF7E0D003B3AF269E5789B	88194192	----a-w-	C:\ProgramData\Seagate\Seagate Dashboard 2.0\Setup Update\APP\4.4.11.0\Setup_4.4.11.0.exe
2016-05-22 17:20:41	EA9B18A04CEAEC52F877949B353C5845	126224	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\{532E4054-584F-408B-B87D-9FD77F6186C5}\VCRedist2010SP1x86\PRQStarter-1.exe
2016-05-22 17:20:17	EA9B18A04CEAEC52F877949B353C5845	126224	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\{532E4054-584F-408B-B87D-9FD77F6186C5}\VCRedist2010SP1x64\PRQStarter-1.exe
2016-05-22 17:18:03	BA72566382811465A737D76A22B227B8	164624	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\{532E4054-584F-408B-B87D-9FD77F6186C5}\microsoftVcRedist2005Kb973544X86\PRQStarter-1.exe
2016-05-22 17:18:02	3EA01578E8F15E89331327FC0A7E267B	2749864	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\{532E4054-584F-408B-B87D-9FD77F6186C5}\microsoftVcRedist2005Kb973544X86\vcredist_x86.exe
2016-05-22 17:17:59	B873FB22A2EC8158D1FC1B644AA14CBF	3211344	----a-w-	C:\Users\van la Parra\AppData\Roaming\Leadertech\PowerRegister\Seagate NA750BAZ Product Registration.exe
2016-05-22 11:27:10	FF70EB133BE86B9F9EB18E274DAA6B6C	5111240	----a-w-	C:\Users\van la Parra\Downloads\spsetup129 (2).exe
2016-05-21 22:47:35	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\6834ADB3-4421-4CE9-B15F-5574179ABD81\DismHost.exe
2016-05-21 22:35:45	127CD00925C1A2B759765C5B9600DE30	6595928	----a-w-	C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
2016-05-21 11:46:25	7A515671ECE9CA674CA094A1777A6E85	273974176	----a-w-	C:\Users\van la Parra\Downloads\INT_R_BASE_TP (2).exe
2016-05-21 11:44:31	47206A06E67041DA3FA227F96F1CC78B	872352	----a-w-	C:\Users\van la Parra\Downloads\AVCleaner (1).exe
2016-05-21 09:01:57	1F14A3768CB568E4AA89C568903F5CC4	242200	----a-w-	C:\Users\van la Parra\Downloads\Firefox Setup Stub 46.0.1 (2).exe
2016-05-18 18:00:08	63939A68F0E77D525ECCB87A20752DD1	88670	----a-w-	C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe
2016-05-18 18:00:07	FC9A9C09B35A93F76A03D5E355FA862C	146888	----a-w-	C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
2016-05-18 17:56:53	1F14A3768CB568E4AA89C568903F5CC4	242200	----a-w-	C:\Users\van la Parra\Downloads\Firefox Setup Stub 46.0.1 (1).exe
2016-05-18 15:45:57	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\440FD324-2155-4CF3-ADD1-7411B37BE2F2\DismHost.exe
2016-05-18 15:33:01	4E95AB8BEB2C8FD53B348EF4AD5121C5	149184	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\D88451C0-B0B8-4E8B-93D5-906189648AFA\DismHost.exe
=== C: other files ==
2016-05-24 16:12:15	8CF4163521FDB8E53482003C7EFA7121	5850	----a-w-	C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\CollectOneDriveLogs.bat
2016-05-22 18:04:20	C77ACD9BC420CBE2D8336803C25B8948	30304	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ss_conn_usb_driver.sys
2016-05-22 18:04:19	CE79B12B03E62DADBE46148A9057D76E	46688	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudqcfilter.sys
2016-05-22 18:04:18	ECAD7536931CDEC9988E64DDD9AC08DE	191200	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudmdm.sys
2016-05-22 18:04:17	CFD472DDF02D675D74144A8BD63B4B10	99296	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudbus.sys
2016-05-22 18:04:14	BC0E0F5E7CC6B5A4C1EB406AE2B6C85B	55904	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudqcfilter.sys
2016-05-22 18:04:14	B33FC6066982B1F34DB917F5163DAEAF	33376	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ss_conn_usb_driver.sys
2016-05-22 18:04:12	37680AECA1BF2D430719A297F68ECD49	213088	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudmdm.sys
2016-05-22 18:04:11	BC319C065335B10A5AA5938A677A60D5	120416	----a-w-	C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudbus.sys
2016-05-21 12:46:19	912CAA7E08A94A7C25CB315104AF42CD	18160	----a-w-	C:\Windows\System32\drivers\GdPhyMem.sys
2016-05-21 12:46:16	65BF29515C25819C18CA426EAEDF0B14	106272	----a-w-	C:\Windows\System32\drivers\GRD.sys
2016-05-21 11:56:34	DD7D5196EB9C4321EA57B668AF873840	37400	----a-w-	C:\Windows\System32\drivers\GDKBB64.sys
2016-05-21 11:56:32	AC43FC300024DBB0CC02C61785ECB5A9	29720	----a-w-	C:\Windows\System32\drivers\GDKBFlt64.sys
2016-05-21 11:56:30	CA3B8AD1A520FD002200F3E5F97ADD79	100352	----a-w-	C:\Windows\System32\drivers\TS4nt.sys
2016-05-21 11:55:49	8BA7DF1F47C14CBD45182157318A8A39	77848	----a-w-	C:\Windows\System32\drivers\gdwfpcd64.sys
2016-05-21 11:55:49	4C5DE61D172FFF48E5E67016BCAB37A1	65560	----a-w-	C:\Users\van la Parra\AppData\Local\Temp\gdwfpcd32.sys
2016-05-21 11:55:08	B4355AF2D50AFF399B8121CE83CE4356	92160	----a-w-	C:\Windows\System32\drivers\PktIcpt.sys
2016-05-21 11:55:00	DD5B2516CC42B3F80EF987AF6D466461	160768	----a-w-	C:\Windows\System32\drivers\GDBehave.sys
2016-05-21 11:55:00	62F354B96AB176B8AC98DE8568FA236A	246272	----a-w-	C:\Windows\System32\drivers\MiniIcpt.sys
2016-05-21 11:55:00	47A65424A8C2B60F32B202EA74FB8978	134656	----a-w-	C:\Windows\System32\drivers\HookCentre.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup"

[HKEY_USERS\S-1-5-21-234901561-1536892485-3164044181-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Uploader"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe"
"Google Update"="C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-21-234901561-1536892485-3164044181-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"G Data ASM"="C:\Program Files (x86)\G DATA\TotalProtection\DelayLoader\AutorunDelayLoader.exe /autostart"
"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
"DBAgent"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe /WinStart"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Uploader"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe"
"Google Update"="C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\van la Parra\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PAC207_Monitor"="C:\Windows\PixArt\PAC207\Monitor.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14-05-2016 11:08]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001Core.job --a-------- C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe [22-05-2016 20:00]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001UA.job --a-------- C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe [22-05-2016 20:00]
C:\Windows\tasks\HPCeeScheduleForvan la Parra.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [22-01-2016 21:52]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateExplorerShellUnelevatedTask" [C:\Windows\explorer.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001Core" [C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-234901561-1536892485-3164044181-1001UA" [C:\Users\van la Parra\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForvan la Parra" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\Seagate_Install_Launch" [C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe]
"C:\Windows\SysNative\tasks\van la Parra DBAgent 2 0" ["C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe"]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Leader Technologies\PowerRegister\Seagate NA750BAZ Product Registration (van la Parra)" [C:\Users\van la Parra\AppData\Roaming\Leadertech\PowerRegister\Seagate NA750BAZ Product Registration.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\VANLAP~1\AppData\Roaming\Mozilla\Firefox\Profiles\8skzgxbe.default
user_pref("browser.startup.homepage", "http://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=nl-nl");

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\van la Parra\AppData\Roaming\Mozilla\Firefox\Profiles\8skzgxbe.default
258693279212838A6A879A69A17BE215	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll -	Shockwave Flash
C426F7E678D6E539041847556059D5E8	- C:\Users\van la Parra\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll -	Google Update


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=nl-nl"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=nl-nl"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\A6UJ6439 will be deleted at reboot
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\CTF22X88 will be deleted at reboot
C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\TIO70MUJ will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\van la Parra\AppData\Local\Mozilla\Firefox\Profiles\8skzgxbe.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=7 folders=8 7371792 bytes)

==== Empty Temp Folders ======================

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\VANLAP~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\A6UJ6439" not found
"C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\CTF22X88" not found
"C:\Users\van la Parra\AppData\Local\Microsoft\Windows\INetCache\IE\TIO70MUJ" not found

==== EOF on wo 25-05-2016 at 16:56:00,57 ======================