Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Gebruiker on ma 08/08/2016 at 13:54:30,55. Microsoft Windows 10 Education 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 8/08/2016 13:59:14 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Program Files\Enigma Software Group deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\Default\AppData\Local\ActiveSync deleted successfully C:\Users\Gebruiker\AppData\Local\ActiveSync deleted successfully C:\Users\Gebruiker\AppData\Local\PeerDistRepub deleted successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe Acrobat Reader DC - Nederlands Adobe Creative Cloud Adobe Photoshop CC 2015 Adobe Refresh Manager Any Video Converter 5.9.6 Avast Free Antivirus BS.Player FREE Google Chrome Google Update Helper Intel(R) Processor Graphics Malwarebytes Anti-Malware version 2.0.4.1028 Microsoft Access MUI (Dutch) 2016 Microsoft DCF MUI (Dutch) 2016 Microsoft Excel MUI (Dutch) 2016 Microsoft Groove MUI (Dutch) 2016 Microsoft InfoPath MUI (Dutch) 2016 Microsoft Office 64-bit Components 2016 Microsoft Office Korrekturhilfen 2016 - Deutsch Microsoft Office OSM MUI (Dutch) 2016 Microsoft Office OSM UX MUI (Dutch) 2016 Microsoft Office Professional Plus 2016 Microsoft Office Proofing (Dutch) 2016 Microsoft Office Proofing Tools 2016 - English Microsoft Office Shared 64-bit MUI (Dutch) 2016 Microsoft Office Shared MUI (Dutch) 2016 Microsoft OneNote MUI (Dutch) 2016 Microsoft Outlook MUI (Dutch) 2016 Microsoft PowerPoint MUI (Dutch) 2016 Microsoft Publisher MUI (Dutch) 2016 Microsoft Skype for Business MUI (Dutch) 2016 Microsoft Word MUI (Dutch) 2016 Mozilla Firefox 48.0 (x86 nl) Mozilla Maintenance Service Outils de v‚rification linguistique 2016 de Microsoft Office˙- Fran‡ais Photoshop CC 2016 RegHunter SafeZone Stable 1.51.2220.47 SpyHunter 4 Synaptics ClickPad Driver Taalprogramma's voor Microsoft Office 2016 - Nederlands VLC media player Vuze ==== Running Processes ====================== C:\Windows\SysWow64\IntelCpHeciSvc.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Users\Gebruiker\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8095 MB CPU Info: Intel(R) Core(TM) i5-3317U CPU @ 1.70GHz CPU Speed: 1726,7 MHz Sound Card: Luidsprekers (2- High Definitio | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Bluetooth Device (Personal Area Network) | Realtek PCIe GBE Family Controller | Intel(R) Centrino(R) Wireless-N 2230 | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: No optical drives found. Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 465,8GB Hard Disks - Free: C: 70,6GB Manufacturer *: Insyde BIOS Info: AT/AT COMPATIBLE | 03/13/13 | HPQOEM - 1 Time Zone: Romance (standaardtijd) Motherboard *: Hewlett-Packard 1894 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Default Browser: Firefox 48.0 Internet Explorer Version: 11.494.10586.0 Mozilla Firefox version: 48.0 (x86 nl) Google Chrome version: 51.0.2704.103 Adobe Reader version: 15.17.20050.192152 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2016-08-01 07:33:25 0C1AF67FA744891C8388228909B37E42 53208 ----a-w- C:\Windows\avastSS.scr 2016-07-30 19:27:18 E396258CFD8F84E8F2C24930E6D88C67 4515256 ----a-w- C:\Windows\explorer.exe 2016-07-30 19:26:14 430DE1635CE173440D34ABA1676113D7 994816 ----a-w- C:\Windows\HelpPane.exe ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2016-07-30 19:28:22 E4873BE74A0BE6F30A6948F882E6E7FC 50176 ----a-w- C:\Windows\SysWOW64\MosHostClient.dll 2016-07-30 19:28:22 B7299EF9D5D4C7D480AC5A8ACEA402E1 87040 ----a-w- C:\Windows\SysWOW64\MapsBtSvc.dll 2016-07-30 19:28:22 631450FBA9C8677C00F5A577905ECE36 784896 ----a-w- C:\Windows\SysWOW64\NMAA.dll 2016-07-30 19:28:22 3F695F3A23A019E6DF7BAC57276B1E77 349696 ----a-w- C:\Windows\SysWOW64\MapConfiguration.dll 2016-07-30 19:28:22 0BBEA534AB25CEBFE72BD191FF84F593 59904 ----a-w- C:\Windows\SysWOW64\MosStorage.dll 2016-07-30 19:28:22 0B6A790F69FC2D67EEFF6F015EF24C5B 800768 ----a-w- C:\Windows\SysWOW64\JpMapControl.dll 2016-07-30 19:28:21 CB84B6382E21D875D0EC9665CD6908B8 711680 ----a-w- C:\Windows\SysWOW64\MapControlCore.dll 2016-07-30 19:28:21 3BFBC5158CC4CA508FEC8284DB6727FD 5205504 ----a-w- C:\Windows\SysWOW64\BingMaps.dll 2016-07-30 19:28:20 D5ACEA2845E642A7ABF383C316CABDA6 6295552 ----a-w- C:\Windows\SysWOW64\mos.dll 2016-07-30 19:28:19 D8F75D59301833722BFB4893A47F57F2 13018112 ----a-w- C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-07-30 19:28:18 21CB86D69B268182994F981471FCBB82 18674176 ----a-w- C:\Windows\SysWOW64\edgehtml.dll 2016-07-30 19:28:14 01ECA12A5BF2D571FCE11C05419C3E50 19347968 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2016-07-30 19:28:13 79C50C86572AF5891D1196569C9D2EB1 3663360 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2016-07-30 19:28:12 350ED2186E2C0E80ABCE270C9A52647E 12128256 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2016-07-30 19:28:10 31AC81040FBFB538619282F47C3ED884 5660672 ----a-w- C:\Windows\SysWOW64\Chakra.dll 2016-07-30 19:27:55 87755FF83726D908224C08C180D42C72 12586496 ----a-w- C:\Windows\SysWOW64\wmp.dll 2016-07-30 19:27:53 394B995CB6ADFEED1A37DD15FADE5068 5240960 ----a-w- C:\Windows\SysWOW64\windows.storage.dll 2016-07-30 19:27:49 BEF902286DC49188F8435B1C2474AE96 687616 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2016-07-30 19:27:48 EF539679E1F6FA5DFDCE4D013A3D37CF 6740992 ----a-w- C:\Windows\SysWOW64\mstscax.dll 2016-07-30 19:27:43 53903FCDBE698C8804D0B479F4F5E29B 517632 ----a-w- C:\Windows\SysWOW64\PlayToManager.dll 2016-07-30 19:27:42 447D69BB274546D00C8DBF23C2DBDBCE 2050048 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2016-07-30 19:27:42 236B3202BBB1FCD6C3319A994056E108 1522160 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2016-07-30 19:27:38 F459F8A639AE35E8ECA718832BEDDB53 2102272 ----a-w- C:\Windows\SysWOW64\xpsservices.dll 2016-07-30 19:27:37 DE4C532C704002ED07B523208327629C 1987072 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2016-07-30 19:27:35 4C5CD8F1A3B88B8B7B9F57F2E256FAFC 639488 ----a-w- C:\Windows\SysWOW64\TokenBroker.dll 2016-07-30 19:27:33 6AA3C6E88196938932ADE02296C33458 268800 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2016-07-30 19:27:32 D6D84F133DC05DB51FE689BB2066D43E 405504 ----a-w- C:\Windows\SysWOW64\webio.dll 2016-07-30 19:27:32 CB82FEFF538C7889DD58EF66B8FDB9FD 2632192 ----a-w- C:\Windows\SysWOW64\rdpcore.dll 2016-07-30 19:27:32 973057A6623492B1620B0167D320BD4D 1526272 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2016-07-30 19:27:32 19157418D05756492D3F54751EC5B041 546816 ----a-w- C:\Windows\SysWOW64\ActionCenterCPL.dll 2016-07-30 19:27:31 32E42A131A187BCAD87EA3A2A09498B9 1249280 ----a-w- C:\Windows\SysWOW64\usercpl.dll 2016-07-30 19:27:30 B34DE2B803625C572C664C495FC3F720 846336 ----a-w- C:\Windows\SysWOW64\rasgcw.dll 2016-07-30 19:27:30 9208E440059270395C320190BFA9EE0E 368128 ----a-w- C:\Windows\SysWOW64\wlanui.dll 2016-07-30 19:27:29 E3E6CA2D3FAADDEE4FC8A934FA42FA3D 1171456 ----a-w- C:\Windows\SysWOW64\netcenter.dll 2016-07-30 19:27:29 968DD3AA844E40932950709FD9CB9556 1976832 ----a-w- C:\Windows\SysWOW64\wpdshext.dll 2016-07-30 19:27:28 F99386465A196CA0129AE92307FF472D 197120 ----a-w- C:\Windows\SysWOW64\netplwiz.dll 2016-07-30 19:27:28 86FBB78A2D77D9BDD58F0D72A2E4D934 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2016-07-30 19:27:28 5A9CDDA8859CDA201006EE7BB84BC673 254976 ----a-w- C:\Windows\SysWOW64\Windows.Devices.Picker.dll 2016-07-30 19:27:28 257C46467A3C9FA96EA59B8B7DFCCA75 559616 ----a-w- C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll 2016-07-30 19:27:27 ED3335C188873DD766C73C98F06A3BEA 216576 ----a-w- C:\Windows\SysWOW64\PlayToReceiver.dll 2016-07-30 19:27:27 75869FD635879D9B0DCED6B6E4FEFDCD 57344 ----a-w- C:\Windows\SysWOW64\WPDShServiceObj.dll 2016-07-30 19:27:27 29C26A25041DC901A01A021D31B0FDD8 292864 ----a-w- C:\Windows\SysWOW64\dot3ui.dll 2016-07-30 19:27:21 D0A2BA04B1E3F6C1F0E52F65D97EF39D 703840 ----a-w- C:\Windows\SysWOW64\WWAHost.exe 2016-07-30 19:27:21 608F7830161D98DBDD6324F74E9165C4 2921880 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2016-07-30 19:27:15 23D61B1CFA38F287D8C31A4816315454 4413440 ----a-w- C:\Windows\SysWOW64\ExplorerFrame.dll 2016-07-30 19:27:13 76B34D04F94D7A8D47763C4E8285F88B 1117184 ----a-w- C:\Windows\SysWOW64\Windows.Media.Speech.dll 2016-07-30 19:27:11 FC42E59329315A30F397490033055D28 2217984 ----a-w- C:\Windows\SysWOW64\Wpc.dll 2016-07-30 19:27:11 A233DD6D55CDBC80890E6D0702F727B5 2771968 ----a-w- C:\Windows\SysWOW64\tquery.dll 2016-07-30 19:27:07 6500AB640E37FBFBE0D57B24F8BC6F30 1984000 ----a-w- C:\Windows\SysWOW64\mssrch.dll 2016-07-30 19:27:06 EACDCB7EA7696B10EF5CC65040A44923 1349640 ----a-w- C:\Windows\SysWOW64\winmde.dll 2016-07-30 19:27:05 F370A686221023EC003D96BB1FBA57A0 760320 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe 2016-07-30 19:27:05 AF1D02B5F78B3D0522458E8240672582 673280 ----a-w- C:\Windows\SysWOW64\MbaeApiPublic.dll 2016-07-30 19:27:03 4F79496B51E1A67B496FF6A407D22D30 1467392 ----a-w- C:\Windows\SysWOW64\GdiPlus.dll 2016-07-30 19:27:00 B99334A08D3E9CE2D4A4BFB8BBC4CB76 1448960 ----a-w- C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll 2016-07-30 19:26:59 CF97D32C0BD24525307676C04F4A32DF 298496 ----a-w- C:\Windows\SysWOW64\Windows.Graphics.dll 2016-07-30 19:26:57 4BC42306D03B539D0EDDD81CC0AE0CD3 244736 ----a-w- C:\Windows\SysWOW64\mssphtb.dll 2016-07-30 19:26:56 9FFEF91F0BEE39FAE2305ACE3C11B4A8 3695104 ----a-w- C:\Windows\SysWOW64\D3DCompiler_47.dll 2016-07-30 19:26:56 2FE56BAE736FE2AD20950ECED0FFD6D1 1588224 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2016-07-30 19:26:55 C41C3339364B262957110B2C6C32FF3D 573440 ----a-w- C:\Windows\SysWOW64\UserLanguagesCpl.dll 2016-07-30 19:26:55 A7CD30176029F60B56F5590E37310103 339968 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2016-07-30 19:26:54 F3C7017623E0F1F04016E5041A106FC8 119296 ----a-w- C:\Windows\SysWOW64\mssph.dll 2016-07-30 19:26:54 836FF4B7A3AC93E7D659F4FCCF7E0309 779264 ----a-w- C:\Windows\SysWOW64\sbe.dll 2016-07-30 19:26:53 ABFB6150CA07482BCF3D3FDE3B62152A 309760 ----a-w- C:\Windows\SysWOW64\ntprint.dll 2016-07-30 19:26:53 1CDEF66CFD26AF241D8546896F77B8A5 489984 ----a-w- C:\Windows\SysWOW64\mbsmsapi.dll 2016-07-30 19:26:52 4907E0A9216A6DCEAB351F534A97FAFC 339456 ----a-w- C:\Windows\SysWOW64\certcli.dll 2016-07-30 19:26:51 8DBFE13F50BE7578913003EE5256AEBE 282624 ----a-w- C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2016-07-30 19:26:51 03BF64E3FD79A5C4FD0B51659B164EDC 965120 ----a-w- C:\Windows\SysWOW64\comdlg32.dll 2016-07-30 19:26:50 4C629B1F6E54578C7875057FD5C53E5F 282624 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe 2016-07-30 19:26:49 C2230C9A5F4DA4FE5EF9462047429082 32768 ----a-w- C:\Windows\SysWOW64\msscntrs.dll 2016-07-30 19:26:49 B33928C3DED11908104A38E0C3090F7F 572928 ----a-w- C:\Windows\SysWOW64\WpcWebFilter.dll 2016-07-30 19:26:49 64B619A6CE464E494651950794CE8264 541184 ----a-w- C:\Windows\SysWOW64\GamePanel.exe 2016-07-30 19:26:48 BBB9376A3D8764A6763183340625FCEA 70656 ----a-w- C:\Windows\SysWOW64\AppCapture.dll 2016-07-30 19:26:48 9E2490246907BC5DFF0D06E975A98FE9 12288 ----a-w- C:\Windows\SysWOW64\IconCodecService.dll 2016-07-30 19:26:48 312472050BECE16F51493C95CCE91B57 334336 ----a-w- C:\Windows\SysWOW64\bcastdvr.exe 2016-07-30 19:26:46 56BBCFD02C4C5248CAF8EAF8236A4674 667648 ----a-w- C:\Windows\SysWOW64\AzureSettingSyncProvider.dll 2016-07-30 19:26:44 B6113983ED77D6FE99BDEE461E7BE004 4074160 ----a-w- C:\Windows\SysWOW64\explorer.exe 2016-07-30 19:26:44 236FB0CAF33B0EB94893BF7299F3D00D 254656 ----a-w- C:\Windows\SysWOW64\LockAppHost.exe 2016-07-30 19:26:43 A582CC5D97DA29AFE99024BBE96673F3 9919488 ----a-w- C:\Windows\SysWOW64\twinui.dll 2016-07-30 19:26:43 8F81BC95794B0C17812988D44D000170 1582080 ----a-w- C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2016-07-30 19:26:41 40C2D19E230CDCBA7707DB5C5A9C6419 5323776 ----a-w- C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-07-30 19:26:31 E5DD7B8A4023B9277C434405849BB43A 2680320 ----a-w- C:\Windows\SysWOW64\msftedit.dll 2016-07-30 19:26:31 C34CC619C1F747F81D2C2C47D5C1B095 2604032 ----a-w- C:\Windows\SysWOW64\CertEnroll.dll 2016-07-30 19:26:30 ADCC41AF6513D5192E0C1A250D2ED4A1 348672 ----a-w- C:\Windows\SysWOW64\CredProvDataModel.dll 2016-07-30 19:26:29 96E0F50ABD43C92B4B66154113C701DE 2155008 ----a-w- C:\Windows\SysWOW64\authui.dll 2016-07-30 19:26:29 766F809BC576BC57FF3B7C343D1E8881 1862008 ----a-w- C:\Windows\SysWOW64\CoreUIComponents.dll 2016-07-30 19:26:28 0162996989471778328E929D58B1041E 754176 ----a-w- C:\Windows\SysWOW64\SettingSyncCore.dll 2016-07-30 19:26:26 D69DDC0073FA31032D7F9379D054679F 503296 ----a-w- C:\Windows\SysWOW64\SettingSync.dll 2016-07-30 19:26:26 4102898869C3F72FBD50E7A7D003F530 1866104 ----a-w- C:\Windows\SysWOW64\d3d9.dll 2016-07-30 19:26:25 AF3369020E352540743E7664F7CAA189 1355336 ----a-w- C:\Windows\SysWOW64\propsys.dll 2016-07-30 19:26:25 7CF445915FC12FA890EFE5D43AD8B2F9 4078080 ----a-w- C:\Windows\SysWOW64\dbgeng.dll 2016-07-30 19:26:23 643BBA6FB3DA30DC0294F14D72EEFAAB 581632 ----a-w- C:\Windows\SysWOW64\twinapi.dll 2016-07-30 19:26:22 D7BDD6C833746E64F1652D6CDE47701F 372224 ----a-w- C:\Windows\SysWOW64\LockAppBroker.dll 2016-07-30 19:26:22 245BCE64F9396340F4E84FB140DD6CA6 489984 ----a-w- C:\Windows\SysWOW64\ShareHost.dll 2016-07-30 19:26:22 1CB309C3183A1249C0F3241BB3BA66DD 736768 ----a-w- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2016-07-30 19:26:21 D00ACFADE7EE80F0C45CC0B94EB5D21A 465760 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2016-07-30 19:26:21 67BA16BD6265C9E401A3814137ECF8F4 2578432 ----a-w- C:\Windows\SysWOW64\gameux.dll 2016-07-30 19:26:21 541C337FA4551C852FA4371AD3BF9C5B 764928 ----a-w- C:\Windows\SysWOW64\Windows.UI.Cred.dll 2016-07-30 19:26:19 50B851ADFFAC3B2EFD1B5DE4D8A94277 468992 ----a-w- C:\Windows\SysWOW64\Windows.Graphics.Printing.dll 2016-07-30 19:26:18 BEC15702CE3242133B95F0E2C69FFC88 980480 ----a-w- C:\Windows\SysWOW64\winipcsecproc.dll 2016-07-30 19:26:17 2F7684C2601F30ED0A5AFCB3AD295152 3301376 ----a-w- C:\Windows\SysWOW64\SyncCenter.dll 2016-07-30 19:26:16 DFB970BC93678AFA2F95A51BF1506049 64584 ----a-w- C:\Windows\SysWOW64\Clipc.dll 2016-07-30 19:26:15 C0D3B98EB0C657DDEB0C033D01C6D9E7 574976 ----a-w- C:\Windows\SysWOW64\hgcpl.dll 2016-07-30 19:26:15 A3E1888B827AD9132A35657C48C9762B 578048 ----a-w- C:\Windows\SysWOW64\wiaaut.dll 2016-07-30 19:26:14 AE3444858CB88D033427C1E9D6FE749E 738816 ----a-w- C:\Windows\SysWOW64\appwiz.cpl 2016-07-30 19:26:14 2311952A48D5D22080073E5AD4621509 629760 ----a-w- C:\Windows\SysWOW64\sud.dll 2016-07-30 19:26:14 212B595D06DB8A90B540E970E493CD6F 2519552 ----a-w- C:\Windows\SysWOW64\themecpl.dll 2016-07-30 19:26:13 EEB99F0E02F9243F18691C75CD16AEE4 207872 ----a-w- C:\Windows\SysWOW64\licensingdiag.exe 2016-07-30 19:26:13 E2C0139812E0030B26F2E7B156C726A4 184832 ----a-w- C:\Windows\SysWOW64\SettingMonitor.dll 2016-07-30 19:26:13 CEEA8FA78E1652BB7219FC118E9F67EE 330752 ----a-w- C:\Windows\SysWOW64\winipcfile.dll 2016-07-30 19:26:13 61D86AEAE520B20FD3AE5C68327239EB 400896 ----a-w- C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2016-07-30 19:26:12 F843B18F29E440CB4599F3674E03B0A5 2849792 ----a-w- C:\Windows\SysWOW64\themeui.dll 2016-07-30 19:26:12 9459503897809956B533141003277298 92160 ----a-w- C:\Windows\SysWOW64\IdCtrls.dll 2016-07-30 19:26:11 B18B0885CEFFA800A8C39EBDF41CE5A8 347648 ----a-w- C:\Windows\SysWOW64\zipfldr.dll 2016-07-30 19:26:11 A65CFA79A13690155545A5FEEEC4FC42 283136 ----a-w- C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll 2016-07-30 19:26:11 70BE5D31CD548715F88398D7B56E99B5 315904 ----a-w- C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll 2016-07-30 19:26:11 1E506E10685E8774F12BF5E2F10197F1 736768 ----a-w- C:\Windows\SysWOW64\Display.dll 2016-07-30 19:26:10 ED87A6D9B014FC9D5CF57B9D7F54EA15 386560 ----a-w- C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll 2016-07-30 19:26:10 77D3FB612C75A70CDA55889616DF3969 205312 ----a-w- C:\Windows\SysWOW64\oemlicense.dll 2016-07-30 19:26:10 1EEC0939B2B99EF1F53B14D9205041AD 282624 ----a-w- C:\Windows\SysWOW64\msieftp.dll 2016-07-30 19:26:09 D4DE4F98D350823BACCA6D7F753D74D4 6471168 ----a-w- C:\Windows\SysWOW64\mspaint.exe 2016-07-30 19:26:09 6B50CF0D71F727CEDF49216FD4AC0FB9 290304 ----a-w- C:\Windows\SysWOW64\WmpDui.dll 2016-07-30 19:26:09 1E00F1B16E727B3D23F6516988F2E7EA 502272 ----a-w- C:\Windows\SysWOW64\DevicePairing.dll 2016-07-30 19:26:08 2086CC9E5A8C75F246A75EE606988B77 1508352 ----a-w- C:\Windows\SysWOW64\winmsipc.dll 2016-07-30 19:26:05 00C8B201BE1C9705906A484DBE5D6332 4759040 ----a-w- C:\Windows\SysWOW64\d2d1.dll 2016-07-30 19:26:03 21BE44272CAC55D1B6C88C1E0BA78F8E 2501632 ----a-w- C:\Windows\SysWOW64\wininet.dll 2016-07-30 19:26:00 FC03376F464F07369BC07A6D9BE8CA8D 88576 ----a-w- C:\Windows\SysWOW64\olepro32.dll 2016-07-30 19:26:00 7CDA291CF22B91DDBB88B5089EBE25CE 521152 ----a-w- C:\Windows\SysWOW64\dxgi.dll 2016-07-30 19:26:00 4963662B1CBB0035FD5D6832824DC7B6 2186864 ----a-w- C:\Windows\SysWOW64\d3d11.dll 2016-07-30 19:25:59 7D5E17FC31FA563A94A8251AF8ADDEE4 1498624 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2016-07-30 19:25:57 3EEAC377D273ABB2B6FB02DBFE8E307E 21123320 ----a-w- C:\Windows\SysWOW64\shell32.dll 2016-07-30 19:25:55 59976482DB1C9F2F41DF62AA9A1B01C5 2062336 ----a-w- C:\Windows\SysWOW64\MFMediaEngine.dll 2016-07-30 19:25:55 0B1427CECB2D744C61E841DF0B905592 1445888 ----a-w- C:\Windows\SysWOW64\SRHInproc.dll 2016-07-30 19:25:54 BD869430C7B7CCD5FE0C3D9D6D344953 2798080 ----a-w- C:\Windows\SysWOW64\Windows.Media.dll 2016-07-30 19:25:54 A489CECF560EA0421C04277904210395 925576 ----a-w- C:\Windows\SysWOW64\mfplat.dll 2016-07-30 19:25:54 8B70A4CDB39E270F7F892C82BDB641A5 799744 ----a-w- C:\Windows\SysWOW64\SRH.dll 2016-07-30 19:25:53 57D00F9D60519705D37BAFB852771443 1118208 ----a-w- C:\Windows\SysWOW64\mfnetsrc.dll 2016-07-30 19:25:53 0313658DF0E7A0F28F9580AF15B37531 1626112 ----a-w- C:\Windows\SysWOW64\dwmcore.dll 2016-07-30 19:25:52 E247EAA09FE6397200205FA90BF87C1D 1536600 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2016-07-30 19:25:52 5A69A6CB031970F5E0BBD4E967D32924 1497088 ----a-w- C:\Windows\SysWOW64\WMPDMC.exe 2016-07-30 19:25:52 3B5A60CFD5EA636133A0A9F8CD4EDC45 709176 ----a-w- C:\Windows\SysWOW64\mfsvr.dll 2016-07-30 19:25:51 B27FEB21C56278185E7B7A77722C6819 777728 ----a-w- C:\Windows\SysWOW64\MsSpellCheckingFacility.dll 2016-07-30 19:25:51 83CF09D8FE73DC8FA7374C98B32243DF 675064 ----a-w- C:\Windows\SysWOW64\dcomp.dll 2016-07-30 19:25:50 D613DBA2E2D43264B6D5C1933F3A71FC 3459584 ----a-w- C:\Windows\SysWOW64\UIRibbon.dll 2016-07-30 19:25:49 CF034E3697C5CA79777F94116D57C6A6 2179584 ----a-w- C:\Windows\SysWOW64\Windows.StateRepository.dll 2016-07-30 19:25:48 38F874DC40AED7FE90ABED3006FF20B9 1083656 ----a-w- C:\Windows\SysWOW64\Taskmgr.exe 2016-07-30 19:25:47 FC26697351E186D415E53BF83D37DAAD 3555840 ----a-w- C:\Windows\SysWOW64\xpsrchvw.exe 2016-07-30 19:25:43 FFA3300F8C8542A92015C7FF48A16AF9 28083144 ----a-w- C:\Windows\SysWOW64\WindowsCodecsRaw.dll 2016-07-30 19:25:41 42D425CA43C93CC578D1AEA96D1E39F0 157696 ----a-w- C:\Windows\SysWOW64\SimCfg.dll 2016-07-30 19:25:40 4BBFE28B6732D30D01C8880CEB254BB5 256192 ----a-w- C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll 2016-07-30 19:25:39 F964FA5FA4FAB1B2D9E6638A0CF0D7E7 2679808 ----a-w- C:\Windows\SysWOW64\netshell.dll 2016-07-30 19:25:38 FBA0E803ED70D649630DCA8EEC625414 240640 ----a-w- C:\Windows\SysWOW64\taskeng.exe 2016-07-30 19:25:37 BF370250794A9405AD153A4C1A4F5BBD 32552 ----a-w- C:\Windows\SysWOW64\wldp.dll 2016-07-30 19:25:37 B726B6583C0E880B59BE3C4463C27BAB 569752 ----a-w- C:\Windows\SysWOW64\SHCore.dll 2016-07-30 19:25:37 B61C9BA4E125BC5FFF338D7B11BAC6EC 805888 ----a-w- C:\Windows\SysWOW64\WSShared.dll 2016-07-30 19:25:37 19D8F7D29B8B94071DAC6453690BB5CA 284160 ----a-w- C:\Windows\SysWOW64\eappcfg.dll 2016-07-30 19:25:36 F45E83301A6C99D342C600B5B29BCD71 1557776 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2016-07-30 19:25:36 A4879DCB9CBE6F67661F0EF4D5A59092 835072 ----a-w- C:\Windows\SysWOW64\Windows.Media.Streaming.dll 2016-07-30 19:25:35 E7AF52CE93D93984F11E5021024CA085 356352 ----a-w- C:\Windows\SysWOW64\taskcomp.dll 2016-07-30 19:25:35 B572C03916EC3A8BE05CB2199D4A3263 451936 ----a-w- C:\Windows\SysWOW64\MFCaptureEngine.dll 2016-07-30 19:25:35 4A8E1182ECF552141C2C165B0A137E50 186880 ----a-w- C:\Windows\SysWOW64\schtasks.exe 2016-07-30 19:25:35 34B1DD62B3F090A0466241F84F1E9AE0 802816 ----a-w- C:\Windows\SysWOW64\ntshrui.dll 2016-07-30 19:25:34 E71CB29D5B7F76DD58677381CBFE6847 129024 ----a-w- C:\Windows\SysWOW64\SimAuth.dll 2016-07-30 19:25:34 734026191E38F421D62D0067D89B0E35 1063936 ----a-w- C:\Windows\SysWOW64\Windows.Media.Editing.dll 2016-07-30 19:25:33 E48A7C15B395A8F1537CE249183D508F 190464 ----a-w- C:\Windows\SysWOW64\apprepapi.dll 2016-07-30 19:25:33 B39E043BCB704FF6F0D0DEADBCBA754D 683008 ----a-w- C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2016-07-30 19:25:33 702A77C8EB30026CF6C16F9B1439F166 238592 ----a-w- C:\Windows\SysWOW64\WindowsCodecsExt.dll 2016-07-30 19:25:32 65585F1DB21193BA2DEB7C034984E2E8 519168 ----a-w- C:\Windows\SysWOW64\PrintDialogs.dll 2016-07-30 19:25:32 3E97CC7E938C4D15FCC27EC33C898606 153088 ----a-w- C:\Windows\SysWOW64\WSSync.dll 2016-07-30 19:25:31 A3F164387FAF9C571959C73361317F04 442368 ----a-w- C:\Windows\SysWOW64\dlnashext.dll 2016-07-30 19:25:31 94B32AFBC8D832B3CC39C87DACCF4CEE 879616 ----a-w- C:\Windows\SysWOW64\WebcamUi.dll 2016-07-30 19:25:31 937208F90E70A7A415F05932ABD72DFB 34304 ----a-w- C:\Windows\SysWOW64\Windows.Speech.Pal.dll 2016-07-30 19:25:31 9160F82BF248F5CD2A5CA4C109369D41 55808 ----a-w- C:\Windows\SysWOW64\eappprxy.dll 2016-07-30 19:25:31 10882529EF2A92C7E5ACCC0E6EDF8390 48640 ----a-w- C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll 2016-07-30 19:25:30 E78E204A005D6DDEBBFA453380D6E847 585216 ----a-w- C:\Windows\SysWOW64\Windows.AccountsControl.dll 2016-07-30 19:25:29 EA11A61E656D6CC6F5001F8366B2BA08 279040 ----a-w- C:\Windows\SysWOW64\edputil.dll 2016-07-30 19:25:29 9A6B1DB1667CDD276A208F5AE5646948 151552 ----a-w- C:\Windows\SysWOW64\WSClient.dll 2016-07-30 19:25:29 733B5C5DCFEB74A288F69272A79FCBF7 248320 ----a-w- C:\Windows\SysWOW64\eapp3hst.dll 2016-07-30 19:25:29 4FAB17214FC37489C59B19CED55D4B7F 238592 ----a-w- C:\Windows\SysWOW64\eapphost.dll 2016-07-30 19:25:28 8A62CEED5A0DD6C76C921F8B47187CA3 477184 ----a-w- C:\Windows\SysWOW64\ieui.dll 2016-07-30 19:25:28 8686191CF27D6707FC890A6CD4CB552A 260096 ----a-w- C:\Windows\SysWOW64\apprepsync.dll 2016-07-30 19:25:28 5642D8C9041FF6F1EE88E42C90639CA8 96256 ----a-w- C:\Windows\SysWOW64\eappgnui.dll 2016-07-30 19:25:28 492C152E65A4F59D0FDDE2F2E0C34DE8 48128 ----a-w- C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll 2016-07-30 19:25:27 FC4E7D3027D748E2D131C9DED39D4976 584704 ----a-w- C:\Windows\SysWOW64\UIRibbonRes.dll 2016-07-30 19:25:10 F0781A46DFE3A6C48FCA23FCDDA69B4B 957608 ----a-w- C:\Windows\SysWOW64\ole32.dll 2016-07-30 19:25:10 88A5A640F1C46936CEA62B7B42969E8E 502784 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2016-07-30 19:25:09 409D5D7EB68EDC5E5751A1F437F8C58E 2000896 ----a-w- C:\Windows\SysWOW64\twinui.appcore.dll 2016-07-30 19:25:08 23F74037E71A1D1D827A3F0DDCB8A697 4404736 ----a-w- C:\Windows\SysWOW64\Windows.UI.Search.dll 2016-07-30 19:25:03 F3B12C931650835388F43DB2DF606657 511320 ----a-w- C:\Windows\SysWOW64\mf.dll 2016-07-30 19:25:03 A5B6DDDF137C8118B93D00404510741D 836760 ----a-w- C:\Windows\SysWOW64\twinapi.appcore.dll 2016-07-30 19:25:02 644CE64AB3ED902711CB0B86CF4ECA22 434688 ----a-w- C:\Windows\SysWOW64\LogonController.dll 2016-07-30 19:25:02 5AF1EAB54122BA45CA59C10FAF3CC558 1228800 ----a-w- C:\Windows\SysWOW64\Windows.Globalization.dll 2016-07-30 19:25:00 332384C9BF8D46044F3A5189A2E7C6FE 1448960 ----a-w- C:\Windows\SysWOW64\dui70.dll 2016-07-30 19:24:59 D0B4D167CB9BA37A62BA8E7B7934F517 460800 ----a-w- C:\Windows\SysWOW64\SearchFolder.dll 2016-07-30 19:24:58 734C17FFE65F9E0436BDAD566A613D8C 32040 ----a-w- C:\Windows\SysWOW64\mfpmp.exe 2016-07-30 19:24:58 415F514AA00B37A1772639F7B22BC305 217600 ----a-w- C:\Windows\SysWOW64\dmdskmgr.dll 2016-07-30 19:24:57 9484654938AE332E2BD2EFEA8F596376 569856 ----a-w- C:\Windows\SysWOW64\qdvd.dll 2016-07-30 19:24:56 BC98A3374DAB7CE9E600A667FDCD9F96 193536 ----a-w- C:\Windows\SysWOW64\ExecModelClient.dll 2016-07-30 19:24:56 404EA5D1E9451EAB6D37403B7CFAD736 123392 ----a-w- C:\Windows\SysWOW64\ProximityCommon.dll 2016-07-30 19:24:55 737FC213AB9B3494E8677D12F08B8703 482816 ----a-w- C:\Windows\SysWOW64\duser.dll 2016-07-30 19:24:55 414967EA08650001DD671FEFE37633E7 645632 ----a-w- C:\Windows\SysWOW64\Windows.Storage.Search.dll 2016-07-30 19:24:54 B6A9C98BFE60CB8DC992033108F3C4F0 1226752 ----a-w- C:\Windows\SysWOW64\wcnwiz.dll 2016-07-30 19:24:54 2E7375FB616E7F729B077628F9BF2537 220672 ----a-w- C:\Windows\SysWOW64\credprovs.dll 2016-07-30 19:24:53 051FDE1463E8468FACFC38C63B4D8FE3 442880 ----a-w- C:\Windows\SysWOW64\efswrt.dll 2016-07-30 19:24:52 5A0B501B638941EAF2BEABCE3C645769 413696 ----a-w- C:\Windows\SysWOW64\WLanConn.dll 2016-07-30 19:24:51 80BD175A8820F5D1C0913DE1BA2A0400 40960 ----a-w- C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-07-30 19:24:51 7BB466A82CD38CCBEE666D475BB2F3D2 199680 ----a-w- C:\Windows\SysWOW64\GlobCollationHost.dll 2016-07-30 07:44:40 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\SysWOW64\last.dump ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2016-08-01 07:33:40 6A4648D2E894B7919DD80F76B82375E6 391496 ----a-w- C:\Windows\Sysnative\aswBoot.exe 2016-07-30 19:28:12 64168D292D236456C6F5E6D48DE90528 2582016 ----a-w- C:\Windows\Sysnative\MFMediaEngine.dll 2016-07-30 19:28:11 FD8FBE19342CF2032F32C303B7D93A05 5503488 ----a-w- C:\Windows\Sysnative\d2d1.dll 2016-07-30 19:28:11 3CC983011177A815A94218EB38E13241 4895232 ----a-w- C:\Windows\Sysnative\jscript9.dll 2016-07-30 19:28:10 BD7E2F50A8C984500358E1AE1D1B89FC 648256 ----a-w- C:\Windows\Sysnative\dxgi.dll 2016-07-30 19:28:09 B4EF28C61CE2755D7F1842BFA122B60E 13385728 ----a-w- C:\Windows\Sysnative\ieframe.dll 2016-07-30 19:28:08 F823DAB5F96CC6A966DF0F1B487C51A0 22379520 ----a-w- C:\Windows\Sysnative\edgehtml.dll 2016-07-30 19:28:07 C7ACF177D1EB5C3F00D4FC728BBF9DFD 764928 ----a-w- C:\Windows\Sysnative\Chakradiag.dll 2016-07-30 19:28:07 1F4AB277DB73A3C731B669D33C560405 7832576 ----a-w- C:\Windows\Sysnative\Chakra.dll 2016-07-30 19:28:06 95E5BA5E26BE4A4097458E1F316A8616 7469408 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2016-07-30 19:28:06 642D4E1DE69A3D180D4962D6977AAAB3 1322248 ----a-w- C:\Windows\Sysnative\ole32.dll 2016-07-30 19:28:06 5D339458DA9FEA6E314817B7DDD4D351 605184 ----a-w- C:\Windows\Sysnative\vbscript.dll 2016-07-30 19:28:05 ED82578312E8B2D2D1D2F87CD77695AC 1387520 ----a-w- C:\Windows\Sysnative\win32kbase.sys 2016-07-30 19:28:05 4EC98235B7BFCA3705279A9E9242C648 3589632 ----a-w- C:\Windows\Sysnative\win32kfull.sys 2016-07-30 19:28:04 04F404D7F9CAC583ED45DCA0C496E893 218624 ----a-w- C:\Windows\Sysnative\cdd.dll 2016-07-30 19:28:03 584B28F7DA74E26FF45B83CFABABB599 2773096 ----a-w- C:\Windows\Sysnative\d3d11.dll 2016-07-30 19:28:02 D5BDFD4F497EE8A2859E72809046CE89 24610304 ----a-w- C:\Windows\Sysnative\mshtml.dll 2016-07-30 19:27:56 6E415D9BFD8D1BC0354C3B0E4A0E1C56 14252544 ----a-w- C:\Windows\Sysnative\wmp.dll 2016-07-30 19:27:54 F099E147846A9CFF5D26E9292D77F8A9 1797120 ----a-w- C:\Windows\Sysnative\Windows.UI.Immersive.dll 2016-07-30 19:27:52 939D80772D59831E50B03CDBD99049DF 1540224 ----a-w- C:\Windows\Sysnative\sppobjs.dll 2016-07-30 19:27:51 E3BF6CDE2DDE478E88667F1C9F33DBBC 1092464 ----a-w- C:\Windows\Sysnative\mfplat.dll 2016-07-30 19:27:51 0E52D076B5FDCD59AEC112BD7665E2E7 3428864 ----a-w- C:\Windows\Sysnative\Windows.Media.dll 2016-07-30 19:27:50 02122FD1A32C205DAA2EEC6462E60226 784384 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2016-07-30 19:27:49 4EB384E80857EC28F54766042D3BAB1E 3355136 ----a-w- C:\Windows\Sysnative\msftedit.dll 2016-07-30 19:27:47 B2FD8E42044B7A2C18AE54A60ACDDE6B 2352128 ----a-w- C:\Windows\Sysnative\authui.dll 2016-07-30 19:27:46 C9B1B0285A5AA53774BF3D91891072E2 296960 ----a-w- C:\Windows\Sysnative\provengine.dll 2016-07-30 19:27:46 C9AC70AC6FEBDCFE585436FD9E3901B1 287232 ----a-w- C:\Windows\Sysnative\provhandlers.dll 2016-07-30 19:27:46 C64FA0D0AAF5EEE0E65EFB34DDDD2918 1299504 ----a-w- C:\Windows\Sysnative\mfnetsrc.dll 2016-07-30 19:27:46 28B5AB1D9C97737A3801658F12BDBCB6 1121792 ----a-w- C:\Windows\Sysnative\localspl.dll 2016-07-30 19:27:45 283269F7F32FDF5835B1FB2233013735 284352 ----a-w- C:\Windows\Sysnative\DeviceCensus.exe 2016-07-30 19:27:44 FC0F06DFE5FD20CCFCE17F3180746D24 576000 ----a-w- C:\Windows\Sysnative\Windows.Networking.UX.EapRequestHandler.dll 2016-07-30 19:27:44 D08B38F8E8A995FC673E8D5ADABBFD13 192000 ----a-w- C:\Windows\Sysnative\provisioningcsp.dll 2016-07-30 19:27:44 409A46FE4B2A6133400572D2B26C6152 847656 ----a-w- C:\Windows\Sysnative\mfsvr.dll 2016-07-30 19:27:44 17D3651E968F5E7712110FC70BFC973D 853504 ----a-w- C:\Windows\Sysnative\aadtb.dll 2016-07-30 19:27:43 556E7C9734B9D2581022C56A23C96B78 2145032 ----a-w- C:\Windows\Sysnative\d3d9.dll 2016-07-30 19:27:43 510702AC9FD86E3A5CDB68AC3DC14928 498960 ----a-w- C:\Windows\Sysnative\MFCaptureEngine.dll 2016-07-30 19:27:43 00110FDAF3380A23D360AEA5551B8D03 821760 ----a-w- C:\Windows\Sysnative\TokenBroker.dll 2016-07-30 19:27:42 FA913C83823C2BA250E80AAE2E3905D1 381952 ----a-w- C:\Windows\Sysnative\wuuhext.dll 2016-07-30 19:27:42 B5D83BCE06D70B120D8AC889EEE4A14A 692136 ----a-w- C:\Windows\Sysnative\sppwinob.dll 2016-07-30 19:27:42 96D121188D91FB4C9C878F30A3F7086F 1552104 ----a-w- C:\Windows\Sysnative\winmde.dll 2016-07-30 19:27:41 66989014C94A5AE3600DAFEA225C4DB8 89600 ----a-w- C:\Windows\Sysnative\NFCProvisioningPlugin.dll 2016-07-30 19:27:41 4C21A65A6ACDF10B181D45E08DC15D24 2127360 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2016-07-30 19:27:41 3F4BDBBA1F3BBECBA656503BD0C16BEA 168960 ----a-w- C:\Windows\Sysnative\provops.dll 2016-07-30 19:27:40 F6A078D3FC7853D5A220413A239660CC 1603224 ----a-w- C:\Windows\Sysnative\propsys.dll 2016-07-30 19:27:40 02B2863417FF2E5E34BD42EBF8B49528 841728 ----a-w- C:\Windows\Sysnative\win32spl.dll 2016-07-30 19:27:39 E54FA914CF17AE4AFB18291F31BA3063 1717248 ----a-w- C:\Windows\Sysnative\GdiPlus.dll 2016-07-30 19:27:39 CE12FF056FBB4D78970A5D695D8C00BB 1755648 ----a-w- C:\Windows\Sysnative\dui70.dll 2016-07-30 19:27:39 7FD5DC5E567910FD3B8F6FEA9A80DD4E 4456448 ----a-w- C:\Windows\Sysnative\D3DCompiler_47.dll 2016-07-30 19:27:38 CBCA5650B97DFE6D86E4F4DC0D3DD86B 828928 ----a-w- C:\Windows\Sysnative\Windows.AccountsControl.dll 2016-07-30 19:27:38 0C66FD155A553C3C1775F9EEE4C52F91 701952 ----a-w- C:\Windows\Sysnative\twinapi.dll 2016-07-30 19:27:37 80625D0A23E439BCAA2C3021042A5EBF 2088960 ----a-w- C:\Windows\Sysnative\wpdshext.dll 2016-07-30 19:27:37 12FEFF0CACF65E3FB5531E2D19728FB0 337336 ----a-w- C:\Windows\Sysnative\Windows.Storage.ApplicationData.dll 2016-07-30 19:27:36 FC3D54BD8FBD8A053223D1EC6E9103A4 388896 ----a-w- C:\Windows\Sysnative\wmpps.dll 2016-07-30 19:27:36 950575747FCDCAF5CD7692664DBFE903 1434112 ----a-w- C:\Windows\Sysnative\Windows.Media.Editing.dll 2016-07-30 19:27:36 82AC452307257A4B3F08856EE84EE2EC 892416 ----a-w- C:\Windows\Sysnative\Windows.Devices.SmartCards.dll 2016-07-30 19:27:36 603A69A513DCDDBF0DA209395071BA0C 1063936 ----a-w- C:\Windows\Sysnative\comdlg32.dll 2016-07-30 19:27:34 FD0F8299FDBEC22C8DBFA66CB4BD5B1B 725776 ----a-w- C:\Windows\Sysnative\SHCore.dll 2016-07-30 19:27:34 D41EC066D915E4825121AE2687596BC2 496640 ----a-w- C:\Windows\Sysnative\webio.dll 2016-07-30 19:27:34 55A6448A7AC0ACB238D56DFF7C280ABE 290816 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2016-07-30 19:27:34 40B3D3F1F3DFF9C839F2FDAAB070D877 465920 ----a-w- C:\Windows\Sysnative\StikyNot.exe 2016-07-30 19:27:33 E249D7A2B7998EF00990E56190D738B1 276480 ----a-w- C:\Windows\Sysnative\WindowsCodecsExt.dll 2016-07-30 19:27:33 5B646920CE059478EED19BC7EFF72C7E 167936 ----a-w- C:\Windows\Sysnative\inetpp.dll 2016-07-30 19:27:32 EFFFC67D0F0D2608BC294E01700FB4A3 599040 ----a-w- C:\Windows\Sysnative\duser.dll 2016-07-30 19:27:32 1D5D1656DF134068A04480DB4B1E1753 349184 ----a-w- C:\Windows\Sysnative\ntprint.dll 2016-07-30 19:27:31 957FA4FB89B1BE9D699C9927B0F3C384 1240064 ----a-w- C:\Windows\Sysnative\d3d10.dll 2016-07-30 19:27:31 69FB22CE0A11E8D55B0BA43D515B854B 1752576 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2016-07-30 19:27:30 F3EB6A22AFB3893ACD4E7C1B02382A3F 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2016-07-30 19:27:30 C2F73C1C869B72BF897379A6B02CB5C2 69120 ----a-w- C:\Windows\Sysnative\WPDShServiceObj.dll 2016-07-30 19:27:30 6C647A171ACA3838441206BBE715B0D7 198144 ----a-w- C:\Windows\Sysnative\winsrv.dll 2016-07-30 19:27:29 F1BA85CF2AEE08860C8D5BF82C342F44 1671168 ----a-w- C:\Windows\Sysnative\FntCache.dll 2016-07-30 19:27:29 9F0D0E63D6B10C2222B4FCC784AA3A4E 315392 ----a-w- C:\Windows\Sysnative\aadcloudap.dll 2016-07-30 19:27:27 780B8E002BC11116E3C28DBEC6A3847D 185856 ----a-w- C:\Windows\Sysnative\d3d10_1.dll 2016-07-30 19:27:27 63E75187FFFA108A78C67E14122C45B0 865792 ----a-w- C:\Windows\Sysnative\AzureSettingSyncProvider.dll 2016-07-30 19:27:27 34D17C28C8B8DC7F98365A60300B40B4 341504 ----a-w- C:\Windows\Sysnative\RADCUI.dll 2016-07-30 19:27:23 C439E5B6E3EB38C9C7611C393348503B 1073152 ----a-w- C:\Windows\Sysnative\RDXService.dll 2016-07-30 19:27:23 B204C799C5903272284D802DBFCF8F37 315392 ----a-w- C:\Windows\Sysnative\RDXTaskFactory.dll 2016-07-30 19:27:23 70B0FB34458FCA020297A595205FC82F 990208 ----a-w- C:\Windows\Sysnative\SharedStartModel.dll 2016-07-30 19:27:22 E269E5AE6F0B70FC5093DF5D438C5FD2 1390080 ----a-w- C:\Windows\Sysnative\Windows.UI.Shell.dll 2016-07-30 19:27:22 D907D75D41B373D2F8DBD9E0E8B041C1 730352 ----a-w- C:\Windows\Sysnative\Windows.Internal.Shell.Broker.dll 2016-07-30 19:27:21 231099370F84D4AA4B373B0BD0B71D8F 1729024 ----a-w- C:\Windows\Sysnative\urlmon.dll 2016-07-30 19:27:21 1CFFDC8E62372CBD2C4C1AB9ADAA0C35 3994624 ----a-w- C:\Windows\Sysnative\SettingsHandlers_nt.dll 2016-07-30 19:27:20 FD93D230DAF156F0EAF41C7C039C8D71 3675512 ----a-w- C:\Windows\Sysnative\iertutil.dll 2016-07-30 19:27:20 1EEBC6859473037A1A671738AD083C7D 3026944 ----a-w- C:\Windows\Sysnative\wininet.dll 2016-07-30 19:27:20 0C41EA00D56409637B157DAA3C7ECDE0 808288 ----a-w- C:\Windows\Sysnative\WWAHost.exe 2016-07-30 19:27:19 73B90D7C3DEF1941F783BE0391C0F057 11545088 ----a-w- C:\Windows\Sysnative\twinui.dll 2016-07-30 19:27:18 3AE63804B34BC99FFD101DFD54012EB8 303216 ----a-w- C:\Windows\Sysnative\LockAppHost.exe 2016-07-30 19:27:17 FEC2E3FF1F1D79E569DE372A020D1909 3585536 ----a-w- C:\Windows\Sysnative\SystemSettingsThresholdAdminFlowUI.dll 2016-07-30 19:27:17 240F6A0AAEEAB059BC0B7D8B72637F72 2609664 ----a-w- C:\Windows\Sysnative\NetworkMobileSettings.dll 2016-07-30 19:27:16 453207816AB95A0376887BE01FAE30E1 587776 ----a-w- C:\Windows\Sysnative\bisrv.dll 2016-07-30 19:27:15 ED922E0D9B4F1E4821B680EDEEE147EC 1946112 ----a-w- C:\Windows\Sysnative\dwmcore.dll 2016-07-30 19:27:14 DFCC151C6AC8E5D50D27ACB34286835C 642048 ----a-w- C:\Windows\Sysnative\enterprisecsps.dll 2016-07-30 19:27:13 6D6E9C9C70E196F6833A96C267327368 2876928 ----a-w- C:\Windows\Sysnative\Wpc.dll 2016-07-30 19:27:13 5C6F3312EACE1409DC2C4C2AD5D2719D 1054208 ----a-w- C:\Windows\Sysnative\audiosrv.dll 2016-07-30 19:27:12 B66654D85A6C6F915E7D4827317739FA 2125312 ----a-w- C:\Windows\Sysnative\SettingsHandlers_Bluetooth.dll 2016-07-30 19:27:12 1CA267651F0295A6B809EFCED2846F70 697856 ----a-w- C:\Windows\Sysnative\PlayToManager.dll 2016-07-30 19:27:11 244116AB9BC360772163F995CAF7FB8D 1848584 ----a-w- C:\Windows\Sysnative\crypt32.dll 2016-07-30 19:27:10 8559C1E30B9404590783497563A7A8AA 1902592 ----a-w- C:\Windows\Sysnative\msxml3.dll 2016-07-30 19:27:10 63EA8167E8F4FC8388E6F95D4D724917 911648 ----a-w- C:\Windows\Sysnative\dcomp.dll 2016-07-30 19:27:10 5E3427306DC41D80467C9B4ACDE7A9B5 849920 ----a-w- C:\Windows\Sysnative\samsrv.dll 2016-07-30 19:27:10 08C501FB351842DC6B5A34DFA705C28C 1750440 ----a-w- C:\Windows\Sysnative\WpcMon.exe 2016-07-30 19:27:08 1EF7B8D9AF97BA18A61E6256300A2E78 1211904 ----a-w- C:\Windows\Sysnative\Windows.UI.Cred.dll 2016-07-30 19:27:07 5712B5F645838BFC583AB4A5E9684572 1575936 ----a-w- C:\Windows\Sysnative\Windows.Media.Speech.dll 2016-07-30 19:27:07 1AC7CA0E0DA703106B6DFACD2C84E520 2285568 ----a-w- C:\Windows\Sysnative\WpcWebSync.dll 2016-07-30 19:27:07 17139E61D556444B6FCE67920E71D369 2745856 ----a-w- C:\Windows\Sysnative\Windows.StateRepository.dll 2016-07-30 19:27:06 79F5E0E53F4D42D1DB0D83D719C551C9 1554152 ----a-w- C:\Windows\Sysnative\wmpmde.dll 2016-07-30 19:27:06 6630413C9F5E87F0C097D77AD96CBBC3 465920 ----a-w- C:\Windows\Sysnative\wwanconn.dll 2016-07-30 19:27:06 16455536238D9F0920E0AF07037D9434 128000 ----a-w- C:\Windows\Sysnative\dmcsps.dll 2016-07-30 19:27:05 B26725818ECD6486A3FEB0509ED66CB3 519680 ----a-w- C:\Windows\Sysnative\WLanConn.dll 2016-07-30 19:27:05 7E6CF2485E67AE7AA84B0556612F22CA 714240 ----a-w- C:\Windows\Sysnative\SystemSettings.Handlers.dll 2016-07-30 19:27:05 6FDD8828032595D90AEB946A809089D8 480768 ----a-w- C:\Windows\Sysnative\LockAppBroker.dll 2016-07-30 19:27:05 318C685A15E02A8573DC3A2772804B21 253440 ----a-w- C:\Windows\Sysnative\SettingsHandlers_Maps.dll 2016-07-30 19:27:04 D9B2EDDCC1EE10A31389EE62B4CDDEC2 503600 ----a-w- C:\Windows\Sysnative\DMRServer.dll 2016-07-30 19:27:04 509589754EDDE7F1EE879366F5692990 182784 ----a-w- C:\Windows\Sysnative\shutdownux.dll 2016-07-30 19:27:03 E7A27A6CD6CC6EA66342482FAAA8A2A7 814080 ----a-w- C:\Windows\Sysnative\appwiz.cpl 2016-07-30 19:27:03 C1257DCFD6031469F154CF44E0769613 1141248 ----a-w- C:\Windows\Sysnative\winipcsecproc.dll 2016-07-30 19:27:03 79E567E98D8F2BA20E52EBFAD92C20ED 2731008 ----a-w- C:\Windows\Sysnative\gameux.dll 2016-07-30 19:27:03 177306E7F752A627A82D1F362A01FADE 1159168 ----a-w- C:\Windows\Sysnative\ApplicationFrame.dll 2016-07-30 19:27:02 BB46F924BAF7128D44B25783ED785A18 448000 ----a-w- C:\Windows\Sysnative\winipcfile.dll 2016-07-30 19:27:02 88E3BA684A7B1247762E1D401076D4C2 287744 ----a-w- C:\Windows\Sysnative\cdpsvc.dll 2016-07-30 19:27:01 980258BAC6A086976DADB45D2A2233BC 941568 ----a-w- C:\Windows\Sysnative\MiracastReceiver.dll 2016-07-30 19:27:01 681C50548D26B77E32C5A0ED3054A0C5 3415040 ----a-w- C:\Windows\Sysnative\SyncCenter.dll 2016-07-30 19:27:01 354D204E888E96FC12E0D1F94A98D300 364032 ----a-w- C:\Windows\Sysnative\OneBackupHandler.dll 2016-07-30 19:27:00 F2503C00653F06AD926553E2C4F69376 1294336 ----a-w- C:\Windows\Sysnative\wcnwiz.dll 2016-07-30 19:27:00 511198CBBA38AE0D733553B0F31C770C 636928 ----a-w- C:\Windows\Sysnative\hgcpl.dll 2016-07-30 19:26:59 FB468F3E01B83C0878F024B8B15F8A78 6572032 ----a-w- C:\Windows\Sysnative\wwanmm.dll 2016-07-30 19:26:59 C4DF2DEF5283FB1C44C6920F2FDD83BC 44032 ----a-w- C:\Windows\Sysnative\musdialoghandlers.dll 2016-07-30 19:26:59 9E5D0971925AF8E8EBAB3A98991500BD 510464 ----a-w- C:\Windows\Sysnative\WlanMediaManager.dll 2016-07-30 19:26:59 7DE46FA7E3A14535E5D971C977F874D9 374008 ----a-w- C:\Windows\Sysnative\SystemSettingsAdminFlows.exe 2016-07-30 19:26:59 5CD61D0822FCAC328DE501357445577D 484352 ----a-w- C:\Windows\Sysnative\DataSenseHandlers.dll 2016-07-30 19:26:58 FAAC4810F40849AB551C0B5557DF9D4B 237056 ----a-w- C:\Windows\Sysnative\NetworkDesktopSettings.dll 2016-07-30 19:26:58 CAEF382AD301DB79D004254E400719B2 492544 ----a-w- C:\Windows\Sysnative\SystemSettings.UserAccountsHandlers.dll 2016-07-30 19:26:58 A3024762D19A31B0CDC361097E73294D 564224 ----a-w- C:\Windows\Sysnative\DevicePairing.dll 2016-07-30 19:26:58 5A1580ADA5F4F38DC1CD0E9C1B98C6BF 2563584 ----a-w- C:\Windows\Sysnative\themecpl.dll 2016-07-30 19:26:57 F8E7D71D4E1E57EF304805D2D770ED0A 619520 ----a-w- C:\Windows\Sysnative\efswrt.dll 2016-07-30 19:26:57 F78D7C2D5139D658817A2823FCD6037A 775168 ----a-w- C:\Windows\Sysnative\Display.dll 2016-07-30 19:26:57 F35D067F84D5F8EE3ACEEC3188FF3B40 414720 ----a-w- C:\Windows\Sysnative\Windows.UI.BioFeedback.dll 2016-07-30 19:26:57 72BE361C64D50557765CB9C8E56BB9B6 529920 ----a-w- C:\Windows\Sysnative\LogonController.dll 2016-07-30 19:26:57 29BB9364FD70012F169516312CAB0FB7 317440 ----a-w- C:\Windows\Sysnative\Windows.Cortana.OneCore.dll 2016-07-30 19:26:56 B2F6749368EEE07AF0B09755B1636F4F 458752 ----a-w- C:\Windows\Sysnative\PlayToDevice.dll 2016-07-30 19:26:55 E57B9A2BBBBB39F369A1141472A3DDFD 392192 ----a-w- C:\Windows\Sysnative\zipfldr.dll 2016-07-30 19:26:55 324F99E7B2B6739370D398D3C79A6DFD 475648 ----a-w- C:\Windows\Sysnative\Windows.UI.BlockedShutdown.dll 2016-07-30 19:26:54 D3C6155DF570181F97488A3186E4E8E2 412672 ----a-w- C:\Windows\Sysnative\wlanui.dll 2016-07-30 19:26:54 BF224299C98EA48FC9E4D3607C3148FB 258560 ----a-w- C:\Windows\Sysnative\credprovs.dll 2016-07-30 19:26:53 EDE31817FC0A574E7CC3AF7E544C8951 279040 ----a-w- C:\Windows\Sysnative\ListSvc.dll 2016-07-30 19:26:53 C9BB741EB879D6B5A6CDBE88315B030B 373248 ----a-w- C:\Windows\Sysnative\WmpDui.dll 2016-07-30 19:26:53 96576465D2259ADDE056451DBCBEAF3D 656896 ----a-w- C:\Windows\Sysnative\sud.dll 2016-07-30 19:26:53 8B46C06B69A8AB4636539783FEACE54F 316928 ----a-w- C:\Windows\Sysnative\msieftp.dll 2016-07-30 19:26:53 86236B9417AA659DF48C45162C148167 64000 ----a-w- C:\Windows\Sysnative\Windows.StateRepositoryClient.dll 2016-07-30 19:26:53 771BC991BEB5DFD93B9347B18F62F216 110080 ----a-w- C:\Windows\Sysnative\IdCtrls.dll 2016-07-30 19:26:52 AA39F6642940FD8D4781701AD73776AD 188416 ----a-w- C:\Windows\Sysnative\Windows.UI.PicturePassword.dll 2016-07-30 19:26:52 5DB913462AD1D5EB8766E5A51922D661 2012672 ----a-w- C:\Windows\Sysnative\winmsipc.dll 2016-07-30 19:26:51 F9941B95928AB5717C6AE871941A8F44 387072 ----a-w- C:\Windows\Sysnative\qdvd.dll 2016-07-30 19:26:51 D2DAA7F5299D1612ACEF0C282BE4F47C 492544 ----a-w- C:\Windows\Sysnative\SettingsHandlers_StorageSense.dll 2016-07-30 19:26:51 2A64B3002165F3842EDCFA048624284F 283648 ----a-w- C:\Windows\Sysnative\PlayToReceiver.dll 2016-07-30 19:26:51 0B1DA49D8F816ED7CF44B112B2F348DD 59904 ----a-w- C:\Windows\Sysnative\Windows.StateRepositoryBroker.dll 2016-07-30 19:26:50 EA4B8BDD3CFFA0B5C7A605189D79184A 6675968 ----a-w- C:\Windows\Sysnative\mspaint.exe 2016-07-30 19:26:50 E3D83E92FB3FAFD2E89A89850A0D9355 90624 ----a-w- C:\Windows\Sysnative\FingerprintEnrollment.dll 2016-07-30 19:26:49 9E625D3F5AAC433191CF4F16174DDE05 824320 ----a-w- C:\Windows\Sysnative\WpcWebFilter.dll 2016-07-30 19:26:48 B86D30AE36165FC84E56AAD4EFBCF527 451584 ----a-w- C:\Windows\Sysnative\werui.dll 2016-07-30 19:26:48 09291D797572201BF39B685E57B7C73B 556032 ----a-w- C:\Windows\Sysnative\PsmServiceExtHost.dll 2016-07-30 19:26:47 E8720AD5391738C5EBCCCF696B46C000 59392 ----a-w- C:\Windows\Sysnative\cdpreference.exe 2016-07-30 19:26:46 5E5BEC886CC2503C4F18AF2153B169AF 957952 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL 2016-07-30 19:26:41 F648E0821CACC7E547562321332E12B1 988160 ----a-w- C:\Windows\Sysnative\NMAA.dll 2016-07-30 19:26:41 3AFCB780F17144A42F99128AD7E55A02 1056256 ----a-w- C:\Windows\Sysnative\JpMapControl.dll 2016-07-30 19:26:41 1D077E04EA82EF6D2E389182FF8C9A31 853504 ----a-w- C:\Windows\Sysnative\MapsStore.dll 2016-07-30 19:26:41 05A027F27937EB29B89743A51B1313EA 460800 ----a-w- C:\Windows\Sysnative\MapConfiguration.dll 2016-07-30 19:26:40 76BA7FDD3EA3764C0CADB522FF3F4715 939520 ----a-w- C:\Windows\Sysnative\MapControlCore.dll 2016-07-30 19:26:40 20CD3B9C674909CCB1966F58A778DC68 7200256 ----a-w- C:\Windows\Sysnative\BingMaps.dll 2016-07-30 19:26:39 1FD91D9B6FA03C97DC8C1DD29775BBA5 7977472 ----a-w- C:\Windows\Sysnative\mos.dll 2016-07-30 19:26:39 1849F8CCD27258F69EAABC334A87846C 6973952 ----a-w- C:\Windows\Sysnative\Windows.Data.Pdf.dll 2016-07-30 19:26:37 AA27A3DF5CDA714F0DD47A48FE7CA8C3 2168320 ----a-w- C:\Windows\Sysnative\AppXDeploymentServer.dll 2016-07-30 19:26:36 7B8C0E8D6B84BB841D50779D643C2A22 2066432 ----a-w- C:\Windows\Sysnative\AppXDeploymentExtensions.dll 2016-07-30 19:26:36 04ABF2BA35F85E88076A44B6FF19D3EE 1716736 ----a-w- C:\Windows\Sysnative\SRHInproc.dll 2016-07-30 19:26:35 552E1A170B36D372CA67A5990E95BF13 6312448 ----a-w- C:\Windows\Sysnative\Windows.UI.Search.dll 2016-07-30 19:26:34 995974222B873687A88C25FFCDB644F7 965632 ----a-w- C:\Windows\Sysnative\SRH.dll 2016-07-30 19:26:33 E7AF5609667C0BF1BC80A9D2E2303C35 3577344 ----a-w- C:\Windows\Sysnative\tquery.dll 2016-07-30 19:26:31 7B2FEC36A1166CBAB50135FCE044D9CE 86528 ----a-w- C:\Windows\Sysnative\AppCapture.dll 2016-07-30 19:26:31 7A809AC3187F404168EAD29FB96A7854 414720 ----a-w- C:\Windows\Sysnative\bcastdvr.exe 2016-07-30 19:26:30 DA3572238188A1145DC11800F581A30E 28672 ----a-w- C:\Windows\Sysnative\mapsupdatetask.dll 2016-07-30 19:26:30 8EC8ECAB9AF9A5F23872031391AE6BB3 66560 ----a-w- C:\Windows\Sysnative\MosHostClient.dll 2016-07-30 19:26:30 08EF12456EDFB557DC424AFD9CF4AAE1 587456 ----a-w- C:\Windows\Sysnative\generaltel.dll 2016-07-30 19:26:29 C0ADEBE6980D501C0D5B2FD321F78D19 270848 ----a-w- C:\Windows\Sysnative\moshostcore.dll 2016-07-30 19:26:29 B3880D0DB160EDC7903B9F32C833812F 74752 ----a-w- C:\Windows\Sysnative\MosStorage.dll 2016-07-30 19:26:29 98E3D2BB421424B0457F8B7C46113110 72704 ----a-w- C:\Windows\Sysnative\moshost.dll 2016-07-30 19:26:29 923EC7EA1E8BE1C7706A2AC5DD28FF5B 120320 ----a-w- C:\Windows\Sysnative\MapsBtSvc.dll 2016-07-30 19:26:29 5BDBA05692A03279E2EB9F26DB53E148 89088 ----a-w- C:\Windows\Sysnative\MapsCSP.dll 2016-07-30 19:26:29 028CE336DC0BD5D258716403C277674E 2597888 ----a-w- C:\Windows\Sysnative\mssrch.dll 2016-07-30 19:26:28 9E2BC2A7D1E3862327B5626CEE56C46E 1487872 ----a-w- C:\Windows\Sysnative\SpeechPal.dll 2016-07-30 19:26:28 13F1408690E108A987CA77141C4358E5 1097216 ----a-w- C:\Windows\Sysnative\dosvc.dll 2016-07-30 19:26:27 9F1B8A631FD76E9702A58904D4F249BE 566104 ----a-w- C:\Windows\Sysnative\SettingSyncHost.exe 2016-07-30 19:26:27 634E0909C598C5BA50E0890D7CAFD795 870400 ----a-w- C:\Windows\Sysnative\wpncore.dll 2016-07-30 19:26:26 6D63B50C49E869AF2F5B189FDD6CE784 1443840 ----a-w- C:\Windows\Sysnative\diagperf.dll 2016-07-30 19:26:26 5E126FBE705D91361A3A26DAF9A55838 2103296 ----a-w- C:\Windows\Sysnative\Windows.Graphics.Printing.3D.dll 2016-07-30 19:26:25 EBF31825A4C505188DC598F28C4E25F5 586208 ----a-w- C:\Windows\Sysnative\mf.dll 2016-07-30 19:26:25 6E8F12E9EF754A715D62B5EEA045BE62 984576 ----a-w- C:\Windows\Sysnative\SettingSyncCore.dll 2016-07-30 19:26:25 38F120F3E9F4C87A4825F12B33849BA5 938496 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe 2016-07-30 19:26:24 C821BB49409012C6CD024F21959CC051 638976 ----a-w- C:\Windows\Sysnative\ShareHost.dll 2016-07-30 19:26:24 65A7997831D78845FDA12E2C87491670 896512 ----a-w- C:\Windows\Sysnative\MbaeApiPublic.dll 2016-07-30 19:26:23 F86A7E3BA31FB9AEF5E6EF29B65E202E 1238584 ----a-w- C:\Windows\Sysnative\Taskmgr.exe 2016-07-30 19:26:23 DA7B203B42D2F32FB03AE8DFEB56F326 529408 ----a-w- C:\Windows\Sysnative\NotificationController.dll 2016-07-30 19:26:23 4DDF78E93CF079FD19D80CB45DA9611D 1036288 ----a-w- C:\Windows\Sysnative\Windows.Media.Streaming.dll 2016-07-30 19:26:22 B9A5A35B9EB23AD507A3BABB35C5B67D 1051648 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.dll 2016-07-30 19:26:22 7DF705D181132AAB5AE5B25A8FF32215 613376 ----a-w- C:\Windows\Sysnative\SettingSync.dll 2016-07-30 19:26:21 518ABEC8D3C1EEB1C64FDC3B77CD428C 961536 ----a-w- C:\Windows\Sysnative\WSShared.dll 2016-07-30 19:26:20 FDDC75FDB8F9B581E3D6513FB85256E8 342016 ----a-w- C:\Windows\Sysnative\APHostService.dll 2016-07-30 19:26:20 D78D829952282676116A92E1C5C3A89F 37232 ----a-w- C:\Windows\Sysnative\wldp.dll 2016-07-30 19:26:20 757F9AA7EA001014DC9352C6144301BF 3053568 ----a-w- C:\Windows\Sysnative\rdpcore.dll 2016-07-30 19:26:20 5EE16195544A95C09FB12B5594D229FE 247296 ----a-w- C:\Windows\Sysnative\mssphtb.dll 2016-07-30 19:26:20 56A8197D9FAE5D63ED0CED92BD03F4F8 450048 ----a-w- C:\Windows\Sysnative\Windows.Internal.Bluetooth.dll 2016-07-30 19:26:19 A5AE758495A6F7BAB269CCDC960CAAD6 549888 ----a-w- C:\Windows\Sysnative\SearchFolder.dll 2016-07-30 19:26:19 7EA42087AEE36B39F2758475B91AD5F3 515072 ----a-w- C:\Windows\Sysnative\OneDriveSettingSyncProvider.dll 2016-07-30 19:26:19 20688A78EC7B410B2C099C80C5F758D8 1128104 ----a-w- C:\Windows\Sysnative\ClipUp.exe 2016-07-30 19:26:18 F6222E15A014A6026CD7F860006407C4 47616 ----a-w- C:\Windows\Sysnative\TpmTasks.dll 2016-07-30 19:26:18 F432A642F2C6266788080704C63C7427 2912256 ----a-w- C:\Windows\Sysnative\CertEnroll.dll 2016-07-30 19:26:18 877EAB65117EF1A49C28F815F10E3A87 334848 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe 2016-07-30 19:26:18 4176712BADB6903C8419B66E678CE816 440320 ----a-w- C:\Windows\Sysnative\fhcfg.dll 2016-07-30 19:26:17 1E099AE79C6D58063E0B4F538732B87F 3449168 ----a-w- C:\Windows\Sysnative\WSService.dll 2016-07-30 19:26:17 1435F76294D5E1D1017D5C6D47CA3F80 106928 ----a-w- C:\Windows\Sysnative\phoneactivate.exe 2016-07-30 19:26:17 024199E28832EEF1418AC3E93894FB75 376536 ----a-w- C:\Windows\Sysnative\Windows.Media.MediaControl.dll 2016-07-30 19:26:16 ACF6FB6941AAF8EEBFF3C2B9C79C3F14 287744 ----a-w- C:\Windows\Sysnative\apprepapi.dll 2016-07-30 19:26:16 97AF27209BA7058F21C8879E773CED86 305152 ----a-w- C:\Windows\Sysnative\edputil.dll 2016-07-30 19:26:16 4F56CB4CE94272928D1F884A5798456C 538112 ----a-w- C:\Windows\Sysnative\Windows.Cortana.Desktop.dll 2016-07-30 19:26:16 3801440364B05BDFA96CF6071D45CD7C 35656 ----a-w- C:\Windows\Sysnative\mfpmp.exe 2016-07-30 19:26:16 20B48DC4AF4492B31A756528444BDA8C 304752 ----a-w- C:\Windows\Sysnative\systemreset.exe 2016-07-30 19:26:15 EB9699F8F050E41A2661E56090FB9988 992256 ----a-w- C:\Windows\Sysnative\sbe.dll 2016-07-30 19:26:15 4EAE9C70DAB294850557E0A2B13DC3C2 674304 ----a-w- C:\Windows\Sysnative\mbsmsapi.dll 2016-07-30 19:26:15 21E74A7A50345F64A2E494C6B6AE0DF2 243712 ----a-w- C:\Windows\Sysnative\SettingMonitor.dll 2016-07-30 19:26:14 8FB500C462988EE33368E6E099638384 394240 ----a-w- C:\Windows\Sysnative\Search.ProtocolHandler.MAPI2.dll 2016-07-30 19:26:14 45521E32AB1D383F9E85674D0F035543 469504 ----a-w- C:\Windows\Sysnative\fhsettingsprovider.dll 2016-07-30 19:26:13 BA46DFBCD3D906776F0F803B6C0B5690 185344 ----a-w- C:\Windows\Sysnative\WSClient.dll 2016-07-30 19:26:13 9D86BE6C15D60535AE36AA0D8DECFC51 394752 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2016-07-30 19:26:13 8E908E944599C9134A209D5876884C07 183808 ----a-w- C:\Windows\Sysnative\WSSync.dll 2016-07-30 19:26:12 E274C4B6C496B72CCE171CB56C51C41A 51200 ----a-w- C:\Windows\Sysnative\Windows.Shell.Search.UriHandler.dll 2016-07-30 19:26:12 8F533910E5D0A63500B17F486331259F 356864 ----a-w- C:\Windows\Sysnative\ActivationManager.dll 2016-07-30 19:26:12 89C78489A7F929362858F4DFD86746E7 252928 ----a-w- C:\Windows\Sysnative\fhengine.dll 2016-07-30 19:26:12 81F9278A83AD6F42C5DE6FEAAFBEA8AB 715776 ----a-w- C:\Windows\Sysnative\GamePanel.exe 2016-07-30 19:26:11 82171E800E06B93ECCDF445A4E8A7AF4 361984 ----a-w- C:\Windows\Sysnative\bdechangepin.exe 2016-07-30 19:26:11 40A9F59FD6B24C045F1D6076E6489CE6 174592 ----a-w- C:\Windows\Sysnative\easwrt.dll 2016-07-30 19:26:10 D627ED29A07745EB1A5A7405FBFA2381 147456 ----a-w- C:\Windows\Sysnative\mssph.dll 2016-07-30 19:26:10 862FCF0385E0D94A2CD2FB4604096CDB 200192 ----a-w- C:\Windows\Sysnative\WUDFPlatform.dll 2016-07-30 19:26:09 7FA43A7587D5D6AA8FFE42A271CF2585 45056 ----a-w- C:\Windows\Sysnative\Windows.Speech.Pal.dll 2016-07-30 19:26:09 7B5D06BDED5DFDF28597A9C5F72E85CE 40960 ----a-w- C:\Windows\Sysnative\msscntrs.dll 2016-07-30 19:26:09 4E762D96FA52AB55A796E373C0557361 203776 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe 2016-07-30 19:26:08 B40875B8854291BD6919527ABB8DD8AE 368640 ----a-w- C:\Windows\Sysnative\diagtrack_win.dll 2016-07-30 19:26:08 2786EAC53204EC98E5DD85C1A9DBA965 1087488 ----a-w- C:\Windows\Sysnative\reseteng.dll 2016-07-30 19:26:08 1F1C41F53373FCD4DA82C5A16E748E05 381952 ----a-w- C:\Windows\Sysnative\apprepsync.dll 2016-07-30 19:26:07 6FFA21CD6166BB456262BDEFC2C5E3DE 318976 ----a-w- C:\Windows\Sysnative\domgmt.dll 2016-07-30 19:26:02 F2A9089A715EC55EA8A5C660F724A7B3 2280448 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2016-07-30 19:26:01 749BEA2C23422B51F5340F42784F817D 7533568 ----a-w- C:\Windows\Sysnative\mstscax.dll 2016-07-30 19:25:54 06A6BED5044BFA97C1988568DD628777 2444800 ----a-w- C:\Windows\Sysnative\twinui.appcore.dll 2016-07-30 19:25:53 0AC905009A2ED68715675E086B805316 407552 ----a-w- C:\Windows\Sysnative\MusUpdateHandlers.dll 2016-07-30 19:25:51 FA01865117A7529561E1F19FD0354D2E 4170240 ----a-w- C:\Windows\Sysnative\UIRibbon.dll 2016-07-30 19:25:50 E6AA08DC29AA637E861DAF0AB3E21888 1567744 ----a-w- C:\Windows\Sysnative\Windows.Globalization.dll 2016-07-30 19:25:50 928C7B3D285CD3485267E6B819748DA4 4646912 ----a-w- C:\Windows\Sysnative\xpsrchvw.exe 2016-07-30 19:25:49 9F77B66EC74300D30720B1001E2CD044 1037824 ----a-w- C:\Windows\Sysnative\SmartcardCredentialProvider.dll 2016-07-30 19:25:48 AE4655837703FFA4AB079B22B66BB3C2 352256 ----a-w- C:\Windows\Sysnative\eappcfg.dll 2016-07-30 19:25:48 5F1CAF0E823BADD5576555CC876F1067 1613664 ----a-w- C:\Windows\Sysnative\diagtrack.dll 2016-07-30 19:25:48 3B6CCFF7AD385842A9638DCF654ABCD4 1872896 ----a-w- C:\Windows\Sysnative\workfolderssvc.dll 2016-07-30 19:25:48 00B6D59BBA3D3061EE5210970ACC758C 4171264 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2016-07-30 19:25:47 7324FB4B99D7485728862DE165946846 1814528 ----a-w- C:\Windows\Sysnative\pnidui.dll 2016-07-30 19:25:46 4FBF7735D43C338B9F6A1F86116451E5 28851224 ----a-w- C:\Windows\Sysnative\WindowsCodecsRaw.dll 2016-07-30 19:25:44 CC270562CC41D32D118D9EA75E966FE5 26408 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2016-07-30 19:25:41 6CA35CF766C04B30BBE9F99CB70D1DE1 193024 ----a-w- C:\Windows\Sysnative\SimCfg.dll 2016-07-30 19:25:40 DEB8CA5DE728ECB09706765DFAC90DBA 596480 ----a-w- C:\Windows\Sysnative\Windows.Graphics.Printing.dll 2016-07-30 19:25:40 C5D55EF423F535D5A6766DB727BEB7E5 160768 ----a-w- C:\Windows\Sysnative\SimAuth.dll 2016-07-30 19:25:40 9B2BFADCB00CF39F0EBD3D690FC56220 1997328 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2016-07-30 19:25:40 4148FE81CAA1383F97FA4F8A21A4700C 733184 ----a-w- C:\Windows\Sysnative\rasapi32.dll 2016-07-30 19:25:39 F34470B288B2EF590B3ECA8BA4C90D95 233984 ----a-w- C:\Windows\Sysnative\schtasks.exe 2016-07-30 19:25:39 9A19D1884E4B4F272443863503215059 787456 ----a-w- C:\Windows\Sysnative\cscui.dll 2016-07-30 19:25:39 150EB8C1C9AE50F354A4CB5778E5951E 459776 ----a-w- C:\Windows\Sysnative\certcli.dll 2016-07-30 19:25:39 02DF62B54CEDC85DAC946FF3F01171F5 1385472 ----a-w- C:\Windows\Sysnative\usercpl.dll 2016-07-30 19:25:38 ECDD8B72980581EF23F5BA0AFF04767F 584704 ----a-w- C:\Windows\Sysnative\UIRibbonRes.dll 2016-07-30 19:25:38 329E7ACF649A721B8A5B3F0A9976F91F 2800128 ----a-w- C:\Windows\Sysnative\netshell.dll 2016-07-30 19:25:37 D9D652506DD07CD49F3D20A3BBDD613B 333312 ----a-w- C:\Windows\Sysnative\eapp3hst.dll 2016-07-30 19:25:36 E72BB94A4010EBA7074DFEB25D67BDC3 625000 ----a-w- C:\Windows\Sysnative\ClipSVC.dll 2016-07-30 19:25:36 DF85A7B895A73421A50E955B94719F2F 78040 ----a-w- C:\Windows\Sysnative\Clipc.dll 2016-07-30 19:25:36 3E9CD04F3FB54D4C3CEF3393ABF743BC 254464 ----a-w- C:\Windows\Sysnative\ExecModelClient.dll 2016-07-30 19:25:36 127925766866C52F147A2FFC0C0358A5 87040 ----a-w- C:\Windows\Sysnative\tzautoupdate.dll 2016-07-30 19:25:35 B7BA7030B50FC782F44D28B63C28B535 2902528 ----a-w- C:\Windows\Sysnative\themeui.dll 2016-07-30 19:25:34 CFD91D429BA902F1E3EF09434BFEAF53 1048576 ----a-w- C:\Windows\Sysnative\WebcamUi.dll 2016-07-30 19:25:34 9516AE004E3A945BA090B2CD7754B8AE 870400 ----a-w- C:\Windows\Sysnative\modernexecserver.dll 2016-07-30 19:25:34 6A9D3DD35E13B1009E7A712E6D164B8A 274432 ----a-w- C:\Windows\Sysnative\dmdskmgr.dll 2016-07-30 19:25:33 FE87844A9D75F2D6D0752DF25EBF776B 113152 ----a-w- C:\Windows\Sysnative\eappgnui.dll 2016-07-30 19:25:33 D62B0829530BBBA204ECA98B57FC4C58 817152 ----a-w- C:\Windows\Sysnative\Windows.Storage.Search.dll 2016-07-30 19:25:33 827B2A2F64465D19DF9F655FE7F10384 565760 ----a-w- C:\Windows\Sysnative\ActionCenterCPL.dll 2016-07-30 19:25:33 7A576DA811BCF5843C909D9BC9AEC351 522240 ----a-w- C:\Windows\Sysnative\Windows.Devices.WiFiDirect.dll 2016-07-30 19:25:33 196E3B5FB1D1A76D41A0C9A9A0B2F698 236032 ----a-w- C:\Windows\Sysnative\licensingdiag.exe 2016-07-30 19:25:32 B9F994EA5B90838A7B10DEDCC4E41C2B 270336 ----a-w- C:\Windows\Sysnative\netplwiz.dll 2016-07-30 19:25:32 0E28CDF7EAFD6109BD48FD8765F212CC 833536 ----a-w- C:\Windows\Sysnative\pmcsnap.dll 2016-07-30 19:25:31 F8D77A486B78DB6FA44F2F7DF5D7F65C 285184 ----a-w- C:\Windows\Sysnative\oemlicense.dll 2016-07-30 19:25:31 9430C60EBCAE82C0D27050C3FA231D1D 84480 ----a-w- C:\Windows\Sysnative\rdpudd.dll 2016-07-30 19:25:31 7E6FCD52B7EE309145A51A286ED18224 344064 ----a-w- C:\Windows\Sysnative\Windows.Devices.Picker.dll 2016-07-30 19:25:30 FC749BCC3387CBBEE57539F414B24EB9 583680 ----a-w- C:\Windows\Sysnative\PhotoScreensaver.scr 2016-07-30 19:25:30 EB7C132D02CC40FB6538D53447447B2A 308736 ----a-w- C:\Windows\Sysnative\eapphost.dll 2016-07-30 19:25:30 ACEDA3F655270B39586A7E8D37F1ADC2 72192 ----a-w- C:\Windows\Sysnative\eappprxy.dll 2016-07-30 19:25:30 A143C34D5DFADCDDBB88CC396DC1F802 859136 ----a-w- C:\Windows\Sysnative\Windows.ApplicationModel.Store.dll 2016-07-30 19:25:30 632C3792D2BFC67E2F8B2A2CFC09CEEF 14848 ----a-w- C:\Windows\Sysnative\IconCodecService.dll 2016-07-30 19:25:30 416CB546F36D3E5A5B5286E0066ED285 585728 ----a-w- C:\Windows\Sysnative\ieui.dll 2016-07-30 19:25:28 531662DC0764C1A1E333BD05D4485333 321536 ----a-w- C:\Windows\Sysnative\GlobCollationHost.dll 2016-07-30 19:25:24 F785587BCA673FB606BD3618EB767EEE 92352 ----a-w- C:\Windows\Sysnative\acmigration.dll 2016-07-30 19:25:24 EF6BD61D1F7B3E4C20EEC44F9B07E06D 1223872 ----a-w- C:\Windows\Sysnative\aeinv.dll 2016-07-30 19:25:24 A2BE69243B678C4FD05DFD4AEC83A725 559808 ----a-w- C:\Windows\Sysnative\devinv.dll 2016-07-30 19:25:24 65952E564FABBE1348E8DDBC9E85A5BC 50368 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe 2016-07-30 19:25:24 5CB0052CBF1DBF36071AD520245F32D6 310464 ----a-w- C:\Windows\Sysnative\invagent.dll 2016-07-30 19:25:22 C063C35A67FBECF53E4F31D44D253170 91136 ----a-w- C:\Windows\Sysnative\browserbroker.dll 2016-07-30 19:25:22 B6C299CDD0D76D3A8073D934E00C8400 1505984 ----a-w- C:\Windows\Sysnative\appraiser.dll 2016-07-30 19:25:22 B0296912EC10003945B68D19E9F4BC53 440320 ----a-w- C:\Windows\Sysnative\CredProvDataModel.dll 2016-07-30 19:25:20 6ADFA862EDA342F416C05C9E88A69899 22561256 ----a-w- C:\Windows\Sysnative\shell32.dll 2016-07-30 19:25:14 2DEED9D59520DD7DF44C4D4F58C3B046 16985088 ----a-w- C:\Windows\Sysnative\Windows.UI.Xaml.dll 2016-07-30 19:25:13 49B666BCCF59226549F64656584318EA 6536256 ----a-w- C:\Windows\Sysnative\sppsvc.exe 2016-07-30 19:25:12 4B80239138EB21B50A1FBA54FDB15860 6605544 ----a-w- C:\Windows\Sysnative\windows.storage.dll 2016-07-30 19:25:09 D29BE449B728CD126D5ACA3E823C8907 4827136 ----a-w- C:\Windows\Sysnative\ExplorerFrame.dll 2016-07-30 19:25:09 A71D446195E2B8090621C884D5DC3532 2656408 ----a-w- C:\Windows\Sysnative\CoreUIComponents.dll 2016-07-30 19:25:08 8CA9FBB305EFB04585BAC36B7B29C14B 172032 ----a-w- C:\Windows\Sysnative\MusNotification.exe 2016-07-30 19:25:08 50F7B408700BF28CF9986821E0486A16 379392 ----a-w- C:\Windows\Sysnative\usocore.dll 2016-07-30 19:25:08 4D82582733D9F437F544D3F8F98CE159 1001472 ----a-w- C:\Windows\Sysnative\schedsvc.dll 2016-07-30 19:25:06 83A5F89896E625650148CEFCABD8418D 219136 ----a-w- C:\Windows\Sysnative\aepic.dll 2016-07-30 19:25:06 63660131B3B6F976F28E75F37DFB2F5F 1776768 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2016-07-30 19:25:06 2AE0CAA966E0FA3ED4DC193A3DD71D3A 5123072 ----a-w- C:\Windows\Sysnative\dbgeng.dll 2016-07-30 19:25:05 402CA5304470A5034EAA1FEDBB7564A7 2445312 ----a-w- C:\Windows\Sysnative\DWrite.dll 2016-07-30 19:25:04 DC61C9AF4B96DB3CAB08168B8E9D3455 2050560 ----a-w- C:\Windows\Sysnative\PrintDialogs3D.dll 2016-07-30 19:25:04 5FCE18E28E0439C147A16323961CD1FA 3046400 ----a-w- C:\Windows\Sysnative\xpsservices.dll 2016-07-30 19:25:04 35548DDC03345511E3B3F6C1237FFD6F 1040800 ----a-w- C:\Windows\Sysnative\twinapi.appcore.dll 2016-07-30 19:25:03 871DB0260278B46C50D17C5CF4AEB12F 1291776 ----a-w- C:\Windows\Sysnative\werconcpl.dll 2016-07-30 19:25:03 682F73D86501D75B131A1D59539A475D 504320 ----a-w- C:\Windows\Sysnative\AppReadiness.dll 2016-07-30 19:25:02 E750AFEDBCC48016787CB4F6644923E4 1847808 ----a-w- C:\Windows\Sysnative\WMPDMC.exe 2016-07-30 19:25:02 A09C212408747F8074D957375B9C486C 268288 ----a-w- C:\Windows\Sysnative\updatehandlers.dll 2016-07-30 19:25:02 6DF9F08ED418A400857E5570E842A559 838144 ----a-w- C:\Windows\Sysnative\uDWM.dll 2016-07-30 19:25:01 E995CBD7C59AB97414489C7CC3B7E09C 504832 ----a-w- C:\Windows\Sysnative\dlnashext.dll 2016-07-30 19:25:01 E5830830FB987CB46C18AB55ECC7763A 341504 ----a-w- C:\Windows\Sysnative\wmicmiplugin.dll 2016-07-30 19:25:01 3182FCAF6AAF478791DE5B430C912D4D 314368 ----a-w- C:\Windows\Sysnative\EnterpriseAppMgmtSvc.dll 2016-07-30 19:25:01 2D27946C8EC1AA93A26FEC2C7909CD05 299520 ----a-w- C:\Windows\Sysnative\taskeng.exe 2016-07-30 19:25:00 F747C037C6CC055E664235BF0EA9A30C 882688 ----a-w- C:\Windows\Sysnative\ntshrui.dll 2016-07-30 19:25:00 E7DA2262B7A9C793FEBD14088AE4C72F 900608 ----a-w- C:\Windows\Sysnative\Windows.Networking.BackgroundTransfer.dll 2016-07-30 19:25:00 E17447519BC01492E3234C90890800D4 368128 ----a-w- C:\Windows\Sysnative\Windows.Graphics.dll 2016-07-30 19:25:00 9DC794AC6F27E96F976990C6C7FC4862 57344 ----a-w- C:\Windows\Sysnative\MusNotificationUx.exe 2016-07-30 19:25:00 210F58F5F18D1DBF0B6F75BE33D8B06C 651776 ----a-w- C:\Windows\Sysnative\UserLanguagesCpl.dll 2016-07-30 19:24:59 C93639FAB08F564D92AB5CFF29C2BFCD 1216512 ----a-w- C:\Windows\Sysnative\netcenter.dll 2016-07-30 19:24:59 8C01DAF52F9923A4B9DF31F1D9331567 1141504 ----a-w- C:\Windows\Sysnative\winload.exe 2016-07-30 19:24:58 C55144832FF73830BBBC0B5B6EED6383 1030416 ----a-w- C:\Windows\Sysnative\winresume.efi 2016-07-30 19:24:58 BB861E878479CCBCF55D4242AC400E36 1317640 ----a-w- C:\Windows\Sysnative\winload.efi 2016-07-30 19:24:58 11FB4531482E461A71E5303F53FFDC92 874968 ----a-w- C:\Windows\Sysnative\winresume.exe 2016-07-30 19:24:57 C8E72A76B943CEF7A6C830BDB51E7B50 319488 ----a-w- C:\Windows\Sysnative\dot3ui.dll 2016-07-30 19:24:57 309B981F0EB10916BD0BF2972BB33841 1213440 ----a-w- C:\Windows\Sysnative\sdengin2.dll 2016-07-30 19:24:57 19348CC554A839CDFE5F79A42EBBBFAB 589824 ----a-w- C:\Windows\Sysnative\PrintDialogs.dll 2016-07-30 19:24:57 064EDB04AB15F985E5E9DE0D9B236958 429056 ----a-w- C:\Windows\Sysnative\taskcomp.dll 2016-07-30 19:24:56 FCC66CE466375869F873C9DA3A3C9453 947200 ----a-w- C:\Windows\Sysnative\rasgcw.dll 2016-07-30 19:24:56 2F022C0682885EFF4CFB0B62143482B5 71168 ----a-w- C:\Windows\Sysnative\LegacyNetUX.dll 2016-07-30 19:24:55 1AD6967BB8F7D4495271715DC3E38CEB 206848 ----a-w- C:\Windows\Sysnative\LegacyNetUXHost.exe 2016-07-30 19:24:54 E772B8EEE1D142622192ADFF4DA1618B 673280 ----a-w- C:\Windows\Sysnative\Windows.UI.dll 2016-07-30 19:24:52 B5FF07AFF96EFB80B930985B5B1A7CAB 286720 ----a-w- C:\Windows\Sysnative\deviceaccess.dll 2016-07-30 19:24:52 8C837B999EE2D443E8C19677C4BB7F60 677376 ----a-w- C:\Windows\Sysnative\wiaaut.dll 2016-07-30 19:24:52 723C6C3DE056D3EB76F7520BEF5947B4 150528 ----a-w- C:\Windows\Sysnative\sdrsvc.dll 2016-07-30 19:24:51 C56BFF5D26E3CD34EEB79213B6220C14 129536 ----a-w- C:\Windows\Sysnative\sdshext.dll 2016-07-30 19:24:51 A4BC389CAEA0203FD33849FA8431AA88 224256 ----a-w- C:\Windows\Sysnative\PackageStateRoaming.dll 2016-07-30 19:24:51 A499B4A9A1F4989BD37F812BC6DC0298 4775424 ----a-w- C:\Windows\Sysnative\actxprxy.dll ====== C:\Windows\Sysnative\drivers ===== 2016-08-08 11:49:47 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2016-08-08 11:49:30 CA43F8904E24BBE49982E4C0B29E6579 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2016-08-08 11:49:30 9D7BFFDB5FA62B600DF1FCB4919D9D79 64216 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2016-08-08 11:49:30 478CC94C937D235CB0A96AB8F2359D81 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2016-08-02 08:29:08 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\Sysnative\drivers\EsgScanner.sys 2016-07-30 19:28:04 97BFC3BD9F910B24EB956FF3387C71CF 1987936 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2016-07-30 19:27:50 91A2D07C017068FD2F11414E8D676EC5 577376 ----a-w- C:\Windows\Sysnative\drivers\dxgmms2.sys 2016-07-30 19:27:34 66FDDD2004332EED0A8262E9762EB457 393568 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2016-07-30 19:27:16 EF94E21C3220AE3F8539542EC0B3FF06 331616 ----a-w- C:\Windows\Sysnative\drivers\pci.sys 2016-07-30 19:27:16 5DFF4CF4DF7FD11AE5A1DAD8C67619D2 161632 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2016-07-30 19:27:16 309E3CFC5309CECD9317A69990716A87 604928 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2016-07-30 19:27:09 B32316BCF974882E715A3459C953AD56 84992 ----a-w- C:\Windows\Sysnative\drivers\BTHUSB.SYS 2016-07-30 19:27:09 33110D78697A1B771E1B30675B39CE46 112640 ----a-w- C:\Windows\Sysnative\drivers\bthenum.sys 2016-07-30 19:27:08 549DFD8240CF20BFBD88AD9D89325DBF 530432 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys 2016-07-30 19:26:02 2D54FE808BAF96666D0CE9B05B8C768F 954368 ----a-w- C:\Windows\Sysnative\drivers\bthport.sys 2016-07-30 19:25:10 CF63BF6AAEDF721E37F9E216FD321B8E 2403168 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2016-07-30 19:24:59 1CDA6D0A2345AA589949AE9C83853913 277856 ----a-w- C:\Windows\Sysnative\drivers\sdbus.sys 2016-07-22 03:51:40 D08FFE34AF5B7AC5F69EEA1E0E8C6ECE 164992 ----a-w- C:\Windows\Sysnative\drivers\ssudmdm.sys 2016-07-22 03:51:36 0F4A5D01156B948B54550375498B08A2 130688 ----a-w- C:\Windows\Sysnative\drivers\ssudbus.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-08-08 08:40:09 -------- d-----w- C:\Program Files\trend micro 2016-07-30 21:06:15 -------- d-----w- C:\Program Files\CMAK ======= C:\PROGRA~2 ===== 2016-08-06 10:12:42 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2016-07-30 21:06:15 -------- d-----w- C:\PROGRA~2\CMAK ======= C: ===== 2016-08-02 10:50:45 F7CD8B7005E2BED0CE706A9AC85744E9 544 ----a-w- C:\EsgInstallerResumeAction_1f7c3496d57205882af57e4000770add 2016-08-02 09:32:36 6DEA96728F93DCA3CFAF4FEFEE68D861 1504 ----a-w- C:\EsgInstallerResumeAction_ff00e6f2fa487fc76629666127044dea 2016-08-02 08:32:16 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\Gebruiker\AppData\Roaming ====== 2016-08-08 11:49:01 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Programs 2016-08-06 10:12:56 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Mozilla ====== C:\Users\Gebruiker ====== 2016-08-08 08:39:25 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Downloads\RSITx64.exe 2016-08-06 10:10:00 85314BD9E56C05372CB2CFA5BF7CAF1C 242216 ----a-w- C:\Users\Gebruiker\Downloads\Firefox Setup Stub 48.0.exe 2016-08-02 08:36:38 1F7C3496D57205882AF57E4000770ADD 14856368 ----a-w- C:\Users\Gebruiker\Downloads\RegHunter-Installer.exe 2016-08-02 08:31:51 -------- d-----w- C:\Users\Gebruiker\Start Menu 2016-08-02 08:27:13 FF00E6F2FA487FC76629666127044DEA 3516080 ----a-w- C:\Users\Gebruiker\Downloads\SpyHunter-Installer.exe ====== C: exe-files == 2016-08-08 08:40:09 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Gebruiker.exe 2016-08-06 10:12:45 A1F659CA9FDA35A61101BED2BE8CD170 88670 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe 2016-08-06 10:12:43 C01441BA6F99890B7FF6CD0260B7750A 146888 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe === C: other files == 2016-08-08 11:49:47 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2016-08-08 11:49:30 CA43F8904E24BBE49982E4C0B29E6579 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2016-08-08 11:49:30 9D7BFFDB5FA62B600DF1FCB4919D9D79 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys 2016-08-08 11:49:30 478CC94C937D235CB0A96AB8F2359D81 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2016-08-02 09:18:46 B8F25BBFA9525DFA544CB165C10615AF 7175552 ----a-w- C:\Users\Gebruiker\Documents\Vuze Downloads\SpyHunter 4.21.10.4585 Portable by wood\SpyHunter4.com 2016-08-02 09:18:46 881419B3D7BF48E53249FF16B00F976F 15920 ----a-w- C:\Users\Gebruiker\Documents\Vuze Downloads\SpyHunter 4.21.10.4585 Portable by wood\esgiguard.sys 2016-08-02 09:18:46 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\Users\Gebruiker\Documents\Vuze Downloads\SpyHunter 4.21.10.4585 Portable by wood\EsgScanner.sys 2016-08-02 08:32:16 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2016-08-02 08:29:08 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\System32\drivers\EsgScanner.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-1665475309-1886842586-2260786340-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Creative Cloud"="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/04/2016 13:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/04/2016 13:07] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SafeZone scheduled Autoupdate 1464383457" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [01/08/2016 09:33] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [01/08/2016 09:33] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions daanglpcpkjjlkhcbladppjphglbigam - No path found[] eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[] Google Slides - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Sheets - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Default\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Slides - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Sheets - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Default User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia selector is not a valid CSS selector - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Avast Online Security (BETA) - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam Avast SafePrice - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck Avast Online Security - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Chrome Web Store Payments - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Chrome Media Router - Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Chromium Fix ====================== C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.mangapanda.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.mangapanda.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ads.gogoanime.io_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ads.gogoanime.io_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.himediads.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.himediads.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.bringhub.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.bringhub.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsocialhomesearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsocialhomesearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsocialtabsearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsocialtabsearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtabmediasearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtabmediasearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtabsocialsearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtabsocialsearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtvtabplussearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funtvtabplussearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.medianewpagesearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.medianewpagesearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.topsocialhubsearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.topsocialhubsearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.toptvtabsearch.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.toptvtabsearch.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office16\GROOVEEX.DLL O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [OneDrive] "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office16\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office16\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll O9 - Extra button: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll O9 - Extra 'Tools' menuitem: @%CommonProgramFiles%\Microsoft Shared\Office16\oregres.dll,-430 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Gebruiker\AppData\Local\Mozilla\Firefox\Profiles\txcuhgfu.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Default\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Default User\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=264 folders=118 4400663 bytes) ==== Empty Temp Folders ====================== C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 08/08/2016 at 14:39:05,31 ======================