Zoek.exe v5.0.0.1 Updated 19-September-2016 Tool run by Eigenaar on ma 14-11-2016 at 19:54:48,52. Microsoft Windows 10 Home 10.0.14393 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Eigenaar\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 14-11-2016 19:58:05 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\qualitink deleted successfully C:\PROGRA~2\TornTV.com deleted successfully C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully C:\Program Files\log deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\PROGRA~3\WinZipEC deleted successfully C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\Eigenaar\AppData\Local\ActiveSync deleted successfully C:\Users\Eigenaar\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Eigenaar\AppData\Local\EmieSiteList deleted successfully C:\Users\Eigenaar\AppData\Local\EmieUserList deleted successfully C:\Users\Eigenaar\AppData\Local\NetworkTiles deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15A21F93-DC05-4233-AC5-B845B63CC35B} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{414BA32F-F1E5-459E-88FA-3BD9236B9759} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{41F3E433-652-4D4F-905A-60D75F758169} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DABD936-7ED4-4BAC-9372-CDA0ACFDB9BA} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DC5ED19-5838-4432-84FD-29413B7EE9FC} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{572FA468-40D1-49C1-BDB8-AC34BF66D8F7} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6AB0C030-5207-4954-BA72-496DCDAF50F2} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C31D01F-BC1B-4A57-A883-7FD5813516C} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7EB93112-D9B3-4BF3-A288-AA301C68C682} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8321A609-443E-4B9A-9BDE-7CC14357138F} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98EEACEF-5E4E-46F7-8E6F-9682CA372AA6} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A160D63A-2055-4730-82DA-E2D82E14ADCA} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B31783-4002-4193-8EA1-16B621BA4F1} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2CE6C06-586F-468A-9737-7E99D9E4E0} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B5FE5FC5-73AA-46A6-91E3-1942F7D04EA5} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D6FFDFDF-8863-4C64-A1BB-5641D6529555} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E58250E0-5A48-49D6-85E0-7825675C32A4} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E8E1829F-FAC7-4370-8ED0-972FE3EDBC17} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB578107-4C42-472B-B674-69D178D95572} deleted successfully HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC9BE8C9-D7A2-4F9D-A423-2A6817BE4EDA} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{A13C2648-91D4-4BF3-BC6D-0079707C4389} deleted successfully ==== Installed Programs ====================== ęTorrent Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe Camera Raw 4.0 Adobe CMaps Adobe Color Common Settings Adobe Default Language CS3 Adobe Device Central CS3 Adobe ExtendScript Toolkit 2 Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe PDF Library Files Adobe Photoshop CS Adobe Premiere Pro CS3 Adobe Premiere Pro CS3 Functional Content Adobe Premiere Pro CS3 Third Party Content Adobe Reader XI - Nederlands Adobe Setup Adobe Type Support Adobe Update Manager CS3 Adobe Version Cue CS3 Client Adobe XMP DVA Panels CS3 Adobe XMP Panels CS3 AllShare Framework DMS Apple Application Support Apple Mobile Device Support Apple Software Update Belfius Smart Card Reader Chrome-App Belgium e-ID middleware 4.0.7 (build 7466) Bonjour BurnAware Free 6.2 Citrix online plug-in - web Citrix online plug-in (DV) Citrix online plug-in (HDX) Citrix online plug-in (USB) Citrix online plug-in (Web) Google Chrome Google Update Helper ImgBurn Intel(R) Management Engine Components iTunes Java 7 Update 55 Java Auto Updater Jet CAD PRO 2 K-Lite Codec Pack 9.3.0 (Basic) LOGOSoft Comfort V5.0 LOGOSoft Comfort V6.0 LOGOSoft Comfort V7.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.5.2 (NLD) Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) Microsoft Games for Windows - LIVE Redistributable Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Security Client Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) NVIDIA-configuratiescherm 369.09 NVIDIA Grafisch stuurprogramma 314.07 NVIDIA Install Application NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.12.1031 Pixum Fotowereld PKR PS4 Remote Play Realtek Ethernet Controller Driver Realtek WLAN Driver Samsung Link 1.8.1.1405191947 Seagate Dashboard Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2956110) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2984938) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2984943) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2986253) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3114442) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3118301) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB3118396) 32-Bit Edition Security Update for Microsoft Office Access 2007 (KB2596614) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3127889) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3127948) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB3118395) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB3114426) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB3114456) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB3118303) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB3114744) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2880506) 32-Bit Edition Security Update for Microsoft Office Visio Viewer 2007 (KB2596915) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB3127949) 32-Bit Edition Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) Silicon Laboratories CP210x VCP Drivers for Windows 2000/XP/2003 Server/Vista Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 SketchUp 8 SkypeT 7.0 Studio Webdesign 4 Pro Stuurprogrammapakket voor Windows - Fedict SmartCard (04/30/2014 4.0.7.5) Synaptics Pointing Device Driver TOSHIBA Battery Check Utility TOSHIBA HDD/SSD-waarschuwing TOSHIBA Service Station TOSHIBA Wireless LAN Indicator Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115461) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) VLC media player 2.0.5 WinZip 16.5 Wsys Control 10.2.1.2652 ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Citrix\ICA Client\concentr.exe C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DeviceAgent.exe C:\Users\Eigenaar\Downloads\zoek.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\AGEIA Technologies not found C:\PROGRA~2\qualitink not found C:\PROGRA~2\TornTV.com not found C:\Users\Eigenaar\Documents\Optimizer Pro deleted C:\Users\Eigenaar\daemonprocess.txt deleted C:\PROGRA~2\Mobogenie deleted C:\found.000 deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\eSafe deleted C:\PROGRA~3\Tarma Installer deleted C:\PROGRA~3\Package Cache deleted C:\Users\Eigenaar\AppData\Local\Bundled software uninstaller deleted C:\Users\Eigenaar\AppData\Local\Mobogenie deleted C:\Users\Eigenaar\AppData\Local\cache deleted C:\Users\Eigenaar\AppData\LocalLow\Torntv 2 deleted C:\Users\Eigenaar\Documents\Add-in Express deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 6126 MB CPU Info: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz CPU Speed: 2308,2 MHz Sound Card: Luidsprekers (High Definition A | Display Adapters: NVIDIA GeForce GT 520M | NVIDIA GeForce GT 520M Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Realtek PCIe FE Family Controller | Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW TS-L633F Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 594,8GB Hard Disks - Free: C: 367,9GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 07/18/12 | TOSASU - 6222004 Time Zone: Romance (standaardtijd) Motherboard *: Intel Corporation Oneonta Falls Country: Nederland Language: NLD ==== System Specs (Software) ====================== Internet Explorer Version: 11.321.14393.0 Google Chrome version: 54.0.2840.71 Adobe Reader version: 11.0.0.379 Sun Java version: 1.7.0_55 (32-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-11-06 14:48:44 A470FC325D5F69D6B171A5F28232BD4F 4673304 ----a-w- C:\WINDOWS\explorer.exe 2016-11-06 14:47:44 BCDB205132974EC3AB6F5C01DD93489B 130560 ----a-w- C:\WINDOWS\splwow64.exe ====== C:\Users\Eigenaar\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-11-06 14:50:11 97DB310F624DF60F89773B47328F008B 12174848 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2016-11-06 14:50:04 AF3F5EE938656D2F92B2CA512DCB034B 747008 ----a-w- C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2016-11-06 14:49:51 7A2A7A1E8A0FB49EDD29FCE9D24E33F9 1424488 ----a-w- C:\WINDOWS\SysWOW64\d3d9.dll 2016-11-06 14:49:50 ABC876110238D8FDBC868E3B8270D86C 1263848 ----a-w- C:\WINDOWS\SysWOW64\msctf.dll 2016-11-06 14:49:45 A8678930066706C79C0B04F8CF91B4AE 7468032 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2016-11-06 14:49:39 6AAF3F01481C49A6299924A44F4EAA24 1557808 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2016-11-06 14:49:34 C3E0142EB96C1401F972A55AE2071C81 95232 ----a-w- C:\WINDOWS\SysWOW64\BluetoothApis.dll 2016-11-06 14:49:33 2065F3B7BB23DB8E0395DED69A498912 576400 ----a-w- C:\WINDOWS\SysWOW64\wer.dll 2016-11-06 14:49:33 15817560A0BD74683AA4DEA7A71255D3 555008 ----a-w- C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-11-06 14:49:30 77F0F4BCE23963904F930FE2D99AE7D4 459776 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll 2016-11-06 14:49:29 ECA98102FDA036EA3F2852A407FBCC9F 470016 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll 2016-11-06 14:49:29 D37C001CC9131C80A201F3C27B808F18 186424 ----a-w- C:\WINDOWS\SysWOW64\weretw.dll 2016-11-06 14:49:29 49A6050FBE7C8D0B3C5E1A2A55E1BFC4 749920 ----a-w- C:\WINDOWS\SysWOW64\drvstore.dll 2016-11-06 14:49:29 26180577AC7731FB95D0DBEBC9840404 471552 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll 2016-11-06 14:49:27 F4C78B9D11E446682807C0B1468FF4DF 222720 ----a-w- C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2016-11-06 14:49:27 8183E6F1CB1279219CCC631674F357B2 179712 ----a-w- C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-11-06 14:49:26 D3F868A86554F462B75852C103A51803 1228288 ----a-w- C:\WINDOWS\SysWOW64\usercpl.dll 2016-11-06 14:49:26 346BC86522950AC3F2BBE645836BBE04 67584 ----a-w- C:\WINDOWS\SysWOW64\iscsiwmi.dll 2016-11-06 14:48:58 E99618325465E564B678B8FD9AB50B74 20969928 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2016-11-06 14:48:44 D03279F3764B17D469174402FD67F65E 1323008 ----a-w- C:\WINDOWS\SysWOW64\wsp_fs.dll 2016-11-06 14:48:42 51022991C13E9AA968424F5F8D25466C 1113600 ----a-w- C:\WINDOWS\SysWOW64\wsp_health.dll 2016-11-06 14:48:39 EDD1E47BAF4CC905D31A1FC87C99C82F 1993216 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2016-11-06 14:48:36 A3E205E94443B388264B53276C28646C 182784 ----a-w- C:\WINDOWS\SysWOW64\mfsensorgroup.dll 2016-11-06 14:48:33 67A6B5E9C56578342FA9A9F3811C3127 455040 ----a-w- C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2016-11-06 14:48:31 199BB32B8878D8DDDCF7ACD40424ECE9 81408 ----a-w- C:\WINDOWS\SysWOW64\cmifw.dll 2016-11-06 14:48:29 6826F8695BC445B826C4AE0A7205364E 772608 ----a-w- C:\WINDOWS\SysWOW64\ntshrui.dll 2016-11-06 14:48:29 51D061BEC9CE0B6693B7C21546F58D2C 74752 ----a-w- C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-11-06 14:48:28 B5A437927F0BE276A5C34A71761A6DBC 465920 ----a-w- C:\WINDOWS\SysWOW64\LockAppBroker.dll 2016-11-06 14:48:28 7093B0D11DBA94523F5714F80495FCB5 90624 ----a-w- C:\WINDOWS\SysWOW64\olepro32.dll 2016-11-06 14:48:27 073F6F7935D0AD0F088272BAF23BF398 79360 ----a-w- C:\WINDOWS\SysWOW64\asycfilt.dll 2016-11-06 14:48:26 BDF7BDD5D89F09977B6A1BE52FEA41C7 18432 ----a-w- C:\WINDOWS\SysWOW64\stdole2.tlb 2016-11-06 14:48:25 476862E989515FDA0F2552ADB59BBDDE 198144 ----a-w- C:\WINDOWS\SysWOW64\FSClient.dll 2016-11-06 14:48:17 BD015F37450FC3C1A4098DFB1912687E 12349440 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2016-11-06 14:48:13 49BA6CBE300A27B968467B30A92210CF 13868544 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-11-06 14:48:08 01C2988C758BD155CA88E018D02C8FA3 2748928 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2016-11-06 14:48:06 623EFE96365AE8F0EEBE6B104B18DAB2 6108672 ----a-w- C:\WINDOWS\SysWOW64\mos.dll 2016-11-06 14:48:04 3E8908FCB9B3624901B4C5C4ECEBD687 2708992 ----a-w- C:\WINDOWS\SysWOW64\esent.dll 2016-11-06 14:47:58 B6EF4459B26D2D55535094AF29E206A9 1570680 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2016-11-06 14:47:57 FAA16FBC6711E6DB2DB50D37FBF19D1E 2999808 ----a-w- C:\WINDOWS\SysWOW64\win32kfull.sys 2016-11-06 14:47:55 A8D17164E37141D1FAC49843B177D5F3 5376000 ----a-w- C:\WINDOWS\SysWOW64\BingMaps.dll 2016-11-06 14:47:53 D531B49869D898A1D28D1868A615A0FE 760832 ----a-w- C:\WINDOWS\SysWOW64\NMAA.dll 2016-11-06 14:47:53 D2F04061D48AFD883072E68245F40435 484584 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2016-11-06 14:47:53 C4ABAF3F9F322C968AEACFA2A9925F08 838144 ----a-w- C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-11-06 14:47:53 238C5C54118A7807B2362CB83531182B 675840 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.dll 2016-11-06 14:47:52 FC815DA31E8EE168F89D29101BE8C1C1 542208 ----a-w- C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2016-11-06 14:47:52 671E38CF2AD869B6D83A7DD2C91EBDA0 187904 ----a-w- C:\WINDOWS\SysWOW64\mfksproxy.dll 2016-11-06 14:47:51 19513A910B600F6FD639BCDD326DDB9D 254656 ----a-w- C:\WINDOWS\SysWOW64\wmpeffects.dll 2016-11-06 14:47:50 F3157B20F2F9240F10A8FBCF909147AE 1631232 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2016-11-06 14:47:50 5B1DAB6FC3627A51B839C7F71C4959D7 715264 ----a-w- C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-11-06 14:47:48 6CBECADC72DE0693D830648FBC241227 175104 ----a-w- C:\WINDOWS\SysWOW64\wmpdxm.dll 2016-11-06 14:47:48 069C566D053D998837EA6A16F6652F09 32768 ----a-w- C:\WINDOWS\SysWOW64\efsext.dll 2016-11-06 14:47:44 E70DD2021CD187351EFE94ACE2B5B2CC 102912 ----a-w- C:\WINDOWS\SysWOW64\wmpshell.dll 2016-11-06 14:47:43 C3926AB51D0A56E12FE7DF8C6BDAB120 109568 ----a-w- C:\WINDOWS\SysWOW64\chartv.dll 2016-11-06 14:47:43 84AF13FE61DC95AC2D597FCCDB46EE61 357376 ----a-w- C:\WINDOWS\SysWOW64\Geolocation.dll 2016-11-06 14:47:43 65A62B9F807AC148B4FF80A9084C812F 549376 ----a-w- C:\WINDOWS\SysWOW64\ActionCenterCPL.dll 2016-11-06 14:47:42 9D55397B7000228C59836BA5E5B44DFB 306688 ----a-w- C:\WINDOWS\SysWOW64\esentutl.exe 2016-11-06 14:47:33 837545D9554CC4746FEFA31811859ACC 7626752 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2016-11-06 14:47:31 47EC695564C0C0268300E5A996399A89 2256896 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2016-11-06 14:47:27 B011D0A9593526FBDC99AB0C11B239E0 5685760 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-11-06 14:47:27 71122A72B7100C823867AE5CD27BB26F 1969912 ----a-w- C:\WINDOWS\SysWOW64\hevcdecoder.dll 2016-11-06 14:47:26 E8EDC4785646866E8CE0573D1935FDFB 4311736 ----a-w- C:\WINDOWS\SysWOW64\explorer.exe 2016-11-06 14:47:25 00265109796854F61E1B869E5265E8C1 1595392 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2016-11-06 14:47:24 15B77C775E662EF0E39032E3992B21B1 2256592 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2016-11-06 14:47:15 CB8C1D493C5A801F8AF6D5328A91C570 2333184 ----a-w- C:\WINDOWS\SysWOW64\WsmSvc.dll 2016-11-06 14:47:15 B14573527A1C75447F83DECD00A24E07 33280 ----a-w- C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2016-11-06 14:47:13 98D9A5D88518A284D5D70800C922A322 545944 ----a-w- C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-11-06 14:47:12 F30A3A524E7D3B345304724ACAD460A6 1556992 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2016-11-06 14:47:11 D3ABAC096932A15C2E347CFDE300C281 959112 ----a-w- C:\WINDOWS\SysWOW64\ole32.dll 2016-11-06 14:47:11 1F2C068D22D4E980430D02D7AAB79FF0 2484736 ----a-w- C:\WINDOWS\SysWOW64\gameux.dll 2016-11-06 14:47:10 D1393913F0666A92EA436B6C7A0CC099 310272 ----a-w- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-11-06 14:47:10 9F1F1CCF24B2D6982A3443A4825BA96E 422400 ----a-w- C:\WINDOWS\SysWOW64\twinapi.dll 2016-11-06 14:47:10 57D2A617BD2E8663E5B56835EC1BFFF0 142336 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll 2016-11-06 14:47:09 B7938AAC81C0233A39A11E7FA31BFD55 39424 ----a-w- C:\WINDOWS\SysWOW64\dtdump.exe 2016-11-06 14:47:09 3D70809FAFD92B41552369AFBE0A7607 580608 ----a-w- C:\WINDOWS\SysWOW64\hgcpl.dll 2016-11-06 14:46:59 F0D7EBAC8AF6083293F2627868BE22B4 152064 ----a-w- C:\WINDOWS\SysWOW64\autoplay.dll 2016-11-06 14:46:59 E1384740313A08126FA2D3A709AD8E28 358912 ----a-w- C:\WINDOWS\SysWOW64\stobject.dll 2016-11-06 14:46:59 93F6F443EC908A0810D89FD809F3DDE0 632832 ----a-w- C:\WINDOWS\SysWOW64\sud.dll 2016-11-06 14:46:59 93319B7E502C192C92E0CD2B97617509 288256 ----a-w- C:\WINDOWS\SysWOW64\systemcpl.dll 2016-11-06 14:46:59 5838E521A894FB9B2E3978EB6A646353 798208 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2016-11-06 14:46:58 F8884F3F10E2018846C7607EA573315F 348672 ----a-w- C:\WINDOWS\SysWOW64\zipfldr.dll 2016-11-06 14:46:58 01247DCCE50D4032E4D93E45137C61FD 506880 ----a-w- C:\WINDOWS\SysWOW64\DevicePairing.dll 2016-11-06 14:46:57 7DD00FBBF8256FE99593B7A13D064BC5 896512 ----a-w- C:\WINDOWS\SysWOW64\fontext.dll 2016-11-06 14:46:57 40449FA933832310BDE90BE4C21354AA 2458112 ----a-w- C:\WINDOWS\SysWOW64\themecpl.dll 2016-11-06 14:46:43 7B93CD92C41D9DD69835B6219B1BB7BF 19416576 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2016-11-06 14:46:40 442DC61509E9672786E548A0B5EE531C 3307520 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-11-06 14:46:39 8923FE21F17099DED0CA9357791FDA83 19418112 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2016-11-06 14:46:34 C52927410240787FFEC4682C931B2AEA 4423680 ----a-w- C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2016-11-06 14:46:33 A3EA585DC457B57A6DEFC1654504C4A6 3892352 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2016-11-06 14:46:30 F6F5D864C91DE608518ACED43C900056 2166232 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2016-11-06 14:46:29 5D52820BCF597EAC5B109D1494B149BA 1556712 ----a-w- C:\WINDOWS\SysWOW64\crypt32.dll 2016-11-06 14:46:28 757941B57CBDB59C97C7C2D55C9A664C 952416 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2016-11-06 14:46:26 B74141855782DF8B4BC10613078D8638 709120 ----a-w- C:\WINDOWS\SysWOW64\CPFilters.dll 2016-11-06 14:46:26 80C84FDEB9891DF894AEC50F09C172B5 2276736 ----a-w- C:\WINDOWS\SysWOW64\d3d11.dll 2016-11-06 14:46:25 F3F33D11511351D96F919D8C719AAAFF 4612608 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-11-06 14:46:23 1AF944ED98AA15C72B1039D8CBA41CFF 1853776 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-11-06 14:46:22 3EA6EBC56A17E2B9AF27459179949D56 806400 ----a-w- C:\WINDOWS\SysWOW64\D3D12.dll 2016-11-06 14:46:21 7F1F8A3AF8CDA9368966E22AE64D5C9E 1435896 ----a-w- C:\WINDOWS\SysWOW64\user32.dll 2016-11-06 14:46:20 DF51C1442A3DB8ADE2B78DCDEC2419FD 636928 ----a-w- C:\WINDOWS\SysWOW64\winhttp.dll 2016-11-06 14:46:19 B1BA71F16535CF6619AEEEFEA302A28B 687936 ----a-w- C:\WINDOWS\SysWOW64\msvproc.dll 2016-11-06 14:46:19 1F7BCA44AD521CA0722AC787DC746C5E 1123368 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2016-11-06 14:46:18 63CF9E094A62A787937B955D654C55DE 2005504 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2016-11-06 14:46:17 E4BDE75B8A2B008D2F6E3F080FDCF51B 272720 ----a-w- C:\WINDOWS\SysWOW64\wintrust.dll 2016-11-06 14:46:16 BB8D21E3DEAA7FB1D77158D4FBCF24D5 327680 ----a-w- C:\WINDOWS\SysWOW64\daxexec.dll 2016-11-06 14:46:15 29B81C330268D77A8B23D697C7CD1CFA 410112 ----a-w- C:\WINDOWS\SysWOW64\SndVolSSO.dll 2016-11-06 14:46:14 6CE5B809ACB5B03BEA6140FC31D53B44 884224 ----a-w- C:\WINDOWS\SysWOW64\inetcomm.dll 2016-11-06 14:46:13 1E6B34E44C4FEBFBC06B6CAE14E7529B 846560 ----a-w- C:\WINDOWS\SysWOW64\WinTypes.dll 2016-11-06 14:46:12 242A028EC89D850F6084F6085E669A07 601712 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2016-11-06 14:46:12 21C5E2DEC69E82B444082BC9DC18C930 1509376 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-11-06 14:46:10 727F5E1E1BCF599AF1F03B9ADC356525 712192 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-11-06 14:46:09 83563656E52E536D97F7527A9FDD7D0C 1170944 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-11-06 14:46:09 3758F3E6D5AD0115710A4C38EBC566B5 306176 ----a-w- C:\WINDOWS\SysWOW64\ieproxy.dll 2016-11-06 14:46:09 12FAECF59215A3FB4AB8AC76B039B4AC 198656 ----a-w- C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-11-06 14:46:07 DBAD85BFE615D3C006D68DC630FACBFD 76800 ----a-w- C:\WINDOWS\SysWOW64\powercfg.exe 2016-11-06 14:46:07 3D84D07AE55418FCB30E647DF2BB419F 226304 ----a-w- C:\WINDOWS\SysWOW64\dhcpcore6.dll 2016-11-06 14:46:06 F8CA7E1DCC958DEE67AB07F3671758F4 3733504 ----a-w- C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2016-11-06 14:46:06 617EBC7797E4A5F84B204199AE9CDE7D 336896 ----a-w- C:\WINDOWS\SysWOW64\msinfo32.exe 2016-11-06 14:46:05 84049D2250E659F66994E0D64099FBC3 81408 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2016-11-06 14:46:05 4CE9153BA933DE8AE9A448003E226233 270336 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-11-06 14:50:24 867007DEFA3E68B8DE00D69FAB614B56 22224480 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2016-11-06 14:50:16 339647E1113C49E330B0E38A72F4202E 13081600 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2016-11-06 14:50:12 9B142FECCBE9D402D63892B12EB1C8AC 498952 ----a-w- C:\WINDOWS\Sysnative\DolbyDecMFT.dll 2016-11-06 14:50:10 0AE04E934E2E2EC164B228622651F730 4129928 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2016-11-06 14:50:06 65F0D2AB077B8BEDA121E9C12C136E86 3778560 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2016-11-06 14:50:01 B227E34833D54E00C02A4EDA448B85C4 6285312 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2016-11-06 14:49:59 11F32C85117347BB8F25D27C41B76785 8075776 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2016-11-06 14:49:57 30E8FBBB05CA98C68CC86346504CA417 1062480 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2016-11-06 14:49:53 B4CB86B1629298C7DAC179BDAD012AF4 1608896 ----a-w- C:\WINDOWS\Sysnative\d3d9.dll 2016-11-06 14:49:52 4EA522C8A9DEFF1B880A0DB393660DCD 3617792 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2016-11-06 14:49:51 585B1A45FF2C661A63ADFF199CA47A3D 1418312 ----a-w- C:\WINDOWS\Sysnative\msctf.dll 2016-11-06 14:49:42 40628BFFD1C5D6B7E27D66AA36E9BDCC 1472536 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2016-11-06 14:49:40 B1383DC57D602C97546C2BCDB4357170 1990648 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2016-11-06 14:49:40 90262FC8018F7B58A99EB9C7E11419A9 2290176 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2016-11-06 14:49:39 B632A851F22428E3CEE286F38679469E 574976 ----a-w- C:\WINDOWS\Sysnative\energy.dll 2016-11-06 14:49:38 8E64543F3A4EE52A5F9A41029F12CF48 691080 ----a-w- C:\WINDOWS\Sysnative\msvproc.dll 2016-11-06 14:49:38 2191EC84CF98382CFC971AF8EA6DE67F 1051112 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2016-11-06 14:49:37 E8D73CBAD80A2F4C684D80DBC8D9D854 894088 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2016-11-06 14:49:37 5D67D5D4CC0E50364A7A79FA66CC9DA4 509440 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_Bluetooth.dll 2016-11-06 14:49:36 93630049B7E54402713B679B3FB83511 1274712 ----a-w- C:\WINDOWS\Sysnative\ole32.dll 2016-11-06 14:49:36 7044281C968D12CCB9E76B29C37F62E3 628040 ----a-w- C:\WINDOWS\Sysnative\fontdrvhost.exe 2016-11-06 14:49:33 C75B1B48BCAADEB0275C1EBE2EAE742D 539136 ----a-w- C:\WINDOWS\Sysnative\usocore.dll 2016-11-06 14:49:33 5757459686554B784F3CCE8C3BAF6D8B 1461200 ----a-w- C:\WINDOWS\Sysnative\user32.dll 2016-11-06 14:49:32 9E6B76FB8F1FECB5F3A671B931CED845 982528 ----a-w- C:\WINDOWS\Sysnative\inetcomm.dll 2016-11-06 14:49:29 C509CCD23B086DFC9EAF86E280043672 147456 ----a-w- C:\WINDOWS\Sysnative\winsrv.dll 2016-11-06 14:49:28 C02E819A0CEF6330F06509DA8EAA15ED 811416 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2016-11-06 14:49:28 12BBCC45F54D25603314599D7CA90B8B 43520 ----a-w- C:\WINDOWS\Sysnative\TpmTasks.dll 2016-11-06 14:49:26 B3F963EBD55AEBA106342F5CBBCFEF5F 274432 ----a-w- C:\WINDOWS\Sysnative\ListSvc.dll 2016-11-06 14:49:26 086994F0B334B16A6896C7F9D8895FDB 186880 ----a-w- C:\WINDOWS\Sysnative\MusNotification.exe 2016-11-06 14:49:24 436E42B41D61C2C8CB0B1339C46F4F64 89088 ----a-w- C:\WINDOWS\Sysnative\asycfilt.dll 2016-11-06 14:49:24 4158D5AE28FE0E07146520545C230162 842240 ----a-w- C:\WINDOWS\Sysnative\ntshrui.dll 2016-11-06 14:49:13 8ACBB77704C5F1AD3B21FE491577DFB1 17188352 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2016-11-06 14:49:09 1116F03F4DFC2055CECF76A20BEE0944 9131008 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2016-11-06 14:49:03 5198CD4FA6598174AE4F02B081BF0230 7817568 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2016-11-06 14:48:49 F6F2D7F3A0BA9B834ADAE7C973372F85 4749312 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_nt.dll 2016-11-06 14:48:43 B479624FC19C6B4768CE641753DC79DC 1354320 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2016-11-06 14:48:43 1F97EF33C04069DF59402F3BA6791BD8 1883784 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2016-11-06 14:48:42 CBBFC6299690D014FA1A0BF8892BED05 1173496 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2016-11-06 14:48:40 F3D563CF231AD62A647589A99B642262 913920 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.dll 2016-11-06 14:48:40 4D06D0976C0004975F8FD8B8432C4B46 701952 ----a-w- C:\WINDOWS\Sysnative\Windows.Networking.Connectivity.dll 2016-11-06 14:48:39 A6CDBB9CDEB402BF4F9DFC21C4C18D72 558080 ----a-w- C:\WINDOWS\Sysnative\wpnprv.dll 2016-11-06 14:48:39 45E17A495E9F42D1A50F5DEF27E3BF2F 1643008 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Speech.dll 2016-11-06 14:48:38 202348B31115A1EA0CE94F9704DB52CA 744448 ----a-w- C:\WINDOWS\Sysnative\StoreAgent.dll 2016-11-06 14:48:37 91793D288E1D10153A74C581A44F036B 236544 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers_Flights.dll 2016-11-06 14:48:36 FF190115CBA067F58C981F0A9F43ABDF 187904 ----a-w- C:\WINDOWS\Sysnative\wscsvc.dll 2016-11-06 14:48:36 A35CEC1EA36C5C25A907F49E53BB665C 406016 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentClient.dll 2016-11-06 14:48:36 851CFA2D53D2356751DAE97098BC4A82 1631232 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.Resources.dll 2016-11-06 14:48:34 CCE8B1A17831BB56BB7DDE778BBF1387 495104 ----a-w- C:\WINDOWS\Sysnative\DataSenseHandlers.dll 2016-11-06 14:48:34 A04033DD0D90A143B95E9E97E479E18A 3400192 ----a-w- C:\WINDOWS\Sysnative\SyncCenter.dll 2016-11-06 14:48:34 7FF2BCE9A5678D979FD300889BA1AC03 81408 ----a-w- C:\WINDOWS\Sysnative\HttpsDataSource.dll 2016-11-06 14:48:33 ECD3A6985F7FCA050F8AE7EC61B3AFD5 828416 ----a-w- C:\WINDOWS\Sysnative\appwiz.cpl 2016-11-06 14:48:33 CBF66ABD6CA811FDB96AC599A52089A8 496128 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.UserAccountsHandlers.dll 2016-11-06 14:48:33 A8F1FF5E4392B9246E9EF5FF078E4925 629248 ----a-w- C:\WINDOWS\Sysnative\hgcpl.dll 2016-11-06 14:48:33 8C1EA3582353AF483908056CADAA7F71 211456 ----a-w- C:\WINDOWS\Sysnative\InstallAgent.exe 2016-11-06 14:48:33 8B2B89F540E9CC08DFE7E4DD0DB0281B 773712 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2016-11-06 14:48:32 DFC9DFE42FACD7993E7278A4BE6B640D 567296 ----a-w- C:\WINDOWS\Sysnative\DevicePairing.dll 2016-11-06 14:48:32 C57EE3C6B7A684E7DD1B9969B3F61C02 940032 ----a-w- C:\WINDOWS\Sysnative\fontext.dll 2016-11-06 14:48:32 76243E7DC953026A6548EC13A497E6C1 391168 ----a-w- C:\WINDOWS\Sysnative\wuuhext.dll 2016-11-06 14:48:31 3A66288AB3CA0D35C2F665A406A59C7F 655872 ----a-w- C:\WINDOWS\Sysnative\sud.dll 2016-11-06 14:48:31 08805138ABD2C17AA6ECD42826C1BEAD 347136 ----a-w- C:\WINDOWS\Sysnative\Display.dll 2016-11-06 14:48:30 461B249DB9DC4389B8024CD3AE17788F 2611200 ----a-w- C:\WINDOWS\Sysnative\gameux.dll 2016-11-06 14:48:28 C892022800FCC059365954F37CAE0EDF 163328 ----a-w- C:\WINDOWS\Sysnative\autoplay.dll 2016-11-06 14:48:28 0F406D4B0977958D29E25D4DB0AF04A6 389632 ----a-w- C:\WINDOWS\Sysnative\stobject.dll 2016-11-06 14:48:28 0C4D5B1C001E5B34C759E1A96315FC62 90112 ----a-w- C:\WINDOWS\Sysnative\powercfg.exe 2016-11-06 14:48:27 B24DF87EDB9AE2F69CB156BEC7250DA1 338944 ----a-w- C:\WINDOWS\Sysnative\fhcpl.dll 2016-11-06 14:48:27 8C6D674C009759B53F03FEA0B77FB076 2512384 ----a-w- C:\WINDOWS\Sysnative\themecpl.dll 2016-11-06 14:48:26 E927C800402DB05BA5B20B0F24E7B197 217088 ----a-w- C:\WINDOWS\Sysnative\DevicePairingFolder.dll 2016-11-06 14:48:26 520078011F9C405759556F4DA49BD803 240640 ----a-w- C:\WINDOWS\Sysnative\NetworkDesktopSettings.dll 2016-11-06 14:48:26 368A8F7CB6C5D664799759AD4862C9C5 717312 ----a-w- C:\WINDOWS\Sysnative\taskbarcpl.dll 2016-11-06 14:48:25 9316A9A9EE2EBDFB81562C421BD869AF 65024 ----a-w- C:\WINDOWS\Sysnative\OnDemandConnRouteHelper.dll 2016-11-06 14:48:23 D8F0898669C97AC14D7E48E33C804C6A 115200 ----a-w- C:\WINDOWS\Sysnative\IdCtrls.dll 2016-11-06 14:48:21 FFDBA3AC392B37E97CFEC98A4A640ABD 13441024 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2016-11-06 14:48:16 70AB367D6F0ED3C1478E4679087B0E53 137568 ----a-w- C:\WINDOWS\Sysnative\acmigration.dll 2016-11-06 14:48:15 E02744EBE7FA55C63D30ABBA1EC91EEB 1637728 ----a-w- C:\WINDOWS\Sysnative\appraiser.dll 2016-11-06 14:48:09 DFBB31D6490F9798A16D5F16F407AE8F 3287552 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2016-11-06 14:48:08 B456F96A00545F3F2CE5EBCEC55C17B2 2186896 ----a-w- C:\WINDOWS\Sysnative\hevcdecoder.dll 2016-11-06 14:48:05 011C9D432E756AF6A7BFEC1E32DE0605 1913344 ----a-w- C:\WINDOWS\Sysnative\wsp_fs.dll 2016-11-06 14:48:03 EBABE2BCCBB21BEBDD5BC6B6AE1A179A 584032 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2016-11-06 14:48:03 BCB9F3F5C67DAF7FCA462CB7F63C4376 3054080 ----a-w- C:\WINDOWS\Sysnative\esent.dll 2016-11-06 14:48:03 A6A29385042B7104A797C2A72A638A04 1235296 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2016-11-06 14:48:03 1AEBF878B8D8638EB823CD398F148EDE 78688 ----a-w- C:\WINDOWS\Sysnative\CompatTelRunner.exe 2016-11-06 14:48:02 FE45874BB9216243CE736C9807CE4E68 32256 ----a-w- C:\WINDOWS\Sysnative\WSManHTTPConfig.exe 2016-11-06 14:48:02 95E795E17E85BDD48A1574CFB59882E8 1554944 ----a-w- C:\WINDOWS\Sysnative\wsp_health.dll 2016-11-06 14:48:02 0701B80266B6B3D110BAFEF40347FA09 595296 ----a-w- C:\WINDOWS\Sysnative\generaltel.dll 2016-11-06 14:48:01 CAD14E0AD1F03397E9B1C8733D76BEF4 1980416 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2016-11-06 14:48:01 A26570B4A21AD6F4D597148D3C22274E 2716672 ----a-w- C:\WINDOWS\Sysnative\WsmSvc.dll 2016-11-06 14:48:00 D876C567AB767258036F05E4766189FD 1054208 ----a-w- C:\WINDOWS\Sysnative\qmgr.dll 2016-11-06 14:47:59 D27086EBF2D41BBCC2672D7B3D22FB90 232800 ----a-w- C:\WINDOWS\Sysnative\aepic.dll 2016-11-06 14:47:59 90D968F1B69B0074EECFCC7AA5C23021 322912 ----a-w- C:\WINDOWS\Sysnative\invagent.dll 2016-11-06 14:47:56 DD062ACA9093121AD90D799F66EA1A0D 272384 ----a-w- C:\WINDOWS\Sysnative\mfksproxy.dll 2016-11-06 14:47:56 D9D6F747EFF5E427D4C3047A65603554 341936 ----a-w- C:\WINDOWS\Sysnative\wintrust.dll 2016-11-06 14:47:56 79DCE27E8C4CF6701BFE49EC2446BBF6 792064 ----a-w- C:\WINDOWS\Sysnative\spoolsv.exe 2016-11-06 14:47:53 260878ADE654580A3B0817004353ABAB 682816 ----a-w- C:\WINDOWS\Sysnative\wer.dll 2016-11-06 14:47:52 7FD0E0A3A683A3654CC4D81B4564EE54 292872 ----a-w- C:\WINDOWS\Sysnative\wmpeffects.dll 2016-11-06 14:47:52 727F2875259DFB0A19004A3722DCDB9D 908640 ----a-w- C:\WINDOWS\Sysnative\drvstore.dll 2016-11-06 14:47:51 8EDDDC9DC969ADFAAD6DCB88EE228A8E 1726976 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Immersive.dll 2016-11-06 14:47:51 6BA66FE47BFAF223AEE6C98F28EB4D8E 2315264 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2016-11-06 14:47:51 2DE0C12EC72BC4ABF8029E39DCF26C99 238056 ----a-w- C:\WINDOWS\Sysnative\weretw.dll 2016-11-06 14:47:50 CDD8EDF4C35BE6D6137112F5CC7A70DA 500064 ----a-w- C:\WINDOWS\Sysnative\pcasvc.dll 2016-11-06 14:47:50 C928D4779242D32956565A4110961AD6 483328 ----a-w- C:\WINDOWS\Sysnative\twinapi.dll 2016-11-06 14:47:49 C58F08689228B307F42E4143E99F6A5E 78336 ----a-w- C:\WINDOWS\Sysnative\iscsiwmi.dll 2016-11-06 14:47:49 B888C77AD1918D7D9437977B967BF7A7 93184 ----a-w- C:\WINDOWS\Sysnative\cmifw.dll 2016-11-06 14:47:48 E936902AE86AC6BE7AF7609894D74B93 126464 ----a-w- C:\WINDOWS\Sysnative\wmpshell.dll 2016-11-06 14:47:48 94074A43D56655B9FE5FEF2AFD448F45 217600 ----a-w- C:\WINDOWS\Sysnative\wmpdxm.dll 2016-11-06 14:47:48 4870EA291FA02021B98B720936814F72 881664 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2016-11-06 14:47:47 C18A0685310ACE5B085551677FB29955 90112 ----a-w- C:\WINDOWS\Sysnative\updatepolicy.dll 2016-11-06 14:47:43 AF3487A721FB43C8E4EE96BB8E42BB15 130560 ----a-w- C:\WINDOWS\Sysnative\chartv.dll 2016-11-06 14:47:43 AC5F1F4FEE52CFC0DDB4A02EC6A262D1 432128 ----a-w- C:\WINDOWS\Sysnative\WpAXHolder.dll 2016-11-06 14:47:42 8F8F8FA35F3CED1F869673E16D8A54E4 869888 ----a-w- C:\WINDOWS\Sysnative\wuapi.dll 2016-11-06 14:47:42 628A15E06770327358C80C2462261BA8 339968 ----a-w- C:\WINDOWS\Sysnative\esentutl.exe 2016-11-06 14:47:42 37929F180E10D1D277D1E3D22FF886AE 48640 ----a-w- C:\WINDOWS\Sysnative\wups.dll 2016-11-06 14:47:39 23529A00195CE71252FEBF647E56E27D 5622088 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2016-11-06 14:47:37 8BA7A3B2A791159BD5A08D32F8D30A4B 1356352 ----a-w- C:\WINDOWS\Sysnative\ClipUp.exe 2016-11-06 14:47:37 018E797BA4861E98AFC7B52C471423B0 7216640 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2016-11-06 14:47:35 892206A0E24EA4B6134CAC2A0F6A54BF 1600632 ----a-w- C:\WINDOWS\Sysnative\sppobjs.dll 2016-11-06 14:47:34 70F4E5440CEECCBC0A8071128FE89946 7654912 ----a-w- C:\WINDOWS\Sysnative\mos.dll 2016-11-06 14:47:30 4CE3CF14092DF1B265D68FDC280D6193 7792640 ----a-w- C:\WINDOWS\Sysnative\BingMaps.dll 2016-11-06 14:47:28 E88D553F9AF1391D5006FEB1EF8541AF 4708864 ----a-w- C:\WINDOWS\Sysnative\ExplorerFrame.dll 2016-11-06 14:47:25 39833DC1C734E08593909E7C405361E9 2827864 ----a-w- C:\WINDOWS\Sysnative\d3d11.dll 2016-11-06 14:47:24 F8468E150EB55D038571F99476DD3262 2913104 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2016-11-06 14:47:24 A0F3716738FA4A7B0719C463ED65B91D 742704 ----a-w- C:\WINDOWS\Sysnative\sppwinob.dll 2016-11-06 14:47:23 A2F1C319DE3DC001611E15226FA63BE6 1365504 ----a-w- C:\WINDOWS\Sysnative\wpncore.dll 2016-11-06 14:47:23 9C58479C6F685B0CB9FBA560DD905B0B 1005568 ----a-w- C:\WINDOWS\Sysnative\D3D12.dll 2016-11-06 14:47:23 1A67F02D6CF159EE2BD0FEAB157F8F89 1851696 ----a-w- C:\WINDOWS\Sysnative\crypt32.dll 2016-11-06 14:47:22 59E69B38FBB892BED6F373AE428FB256 942080 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2016-11-06 14:47:22 49BF5C8182C3D2D6CD9F7EEDF1CFDB66 1840640 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2016-11-06 14:47:21 C2A3B07F0118D61086C99BDCBAB6A6A3 817664 ----a-w- C:\WINDOWS\Sysnative\winhttp.dll 2016-11-06 14:47:21 AB7A00FB1CC356DB931582E5B35E799B 1492480 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2016-11-06 14:47:21 4C326C9D935D2F1ED904DC1715716F79 936448 ----a-w- C:\WINDOWS\Sysnative\NMAA.dll 2016-11-06 14:47:20 D176C2BFA32EF5FB52C495600338AAF9 905216 ----a-w- C:\WINDOWS\Sysnative\MapControlCore.dll 2016-11-06 14:47:20 9D541C9CAA45B118439FB9D90430370A 1060864 ----a-w- C:\WINDOWS\Sysnative\JpMapControl.dll 2016-11-06 14:47:20 47E6107CA36990552608CC6316A58086 283488 ----a-w- C:\WINDOWS\Sysnative\DeviceCensus.exe 2016-11-06 14:47:20 239B9AB452DE728ABCB5E957FAE2699D 635904 ----a-w- C:\WINDOWS\Sysnative\FlightSettings.dll 2016-11-06 14:47:19 21766CDBBA69CE5C42AA3F666DF7F524 4474368 ----a-w- C:\WINDOWS\Sysnative\D3DCompiler_47.dll 2016-11-06 14:47:16 B737F6FB33A6F79BCBC293A5B32C1C4E 410624 ----a-w- C:\WINDOWS\Sysnative\cdpsvc.dll 2016-11-06 14:47:16 81C56248655872C203C52E03F29DEC9F 463872 ----a-w- C:\WINDOWS\Sysnative\daxexec.dll 2016-11-06 14:47:15 FDEB82FC97ABBE8350AA918C7D8AFF50 882680 ----a-w- C:\WINDOWS\Sysnative\EditionUpgradeManagerObj.dll 2016-11-06 14:47:15 CA80E0CE8289060D6C3157FD463DAE3D 329216 ----a-w- C:\WINDOWS\Sysnative\wc_storage.dll 2016-11-06 14:47:15 6FAD3704C336BF87A2543EF82C987F33 120832 ----a-w- C:\WINDOWS\Sysnative\BluetoothApis.dll 2016-11-06 14:47:15 2531EF3423A9FE1692005A41907E3BE3 339456 ----a-w- C:\WINDOWS\Sysnative\cdpusersvc.dll 2016-11-06 14:47:15 094064FD67AA46A13DF65A39C9405DEC 590960 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2016-11-06 14:47:14 C539A88D4D53C2DE20D76B1D5C8EB77E 718848 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Playback.BackgroundMediaPlayer.dll 2016-11-06 14:47:14 B2B0EB8BB0D741B798C691A9FED1B7B8 98816 ----a-w- C:\WINDOWS\Sysnative\BthRadioMedia.dll 2016-11-06 14:47:14 9EDC292CFA20432BE47F2840A5AB5C15 702464 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Playback.MediaPlayer.dll 2016-11-06 14:47:14 3BC06B2436C509172D1F13E109BAA408 720896 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.BackgroundMediaPlayback.dll 2016-11-06 14:47:13 F7EFAD8D7F960B7FFF1FA5074B1ECE41 193536 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.WiFi.dll 2016-11-06 14:47:13 518FE9EAE640B8CBE80FE374D7DF28B9 886784 ----a-w- C:\WINDOWS\Sysnative\CPFilters.dll 2016-11-06 14:47:13 3D5F44B1137E72725BD8A37E3F003185 429568 ----a-w- C:\WINDOWS\Sysnative\SndVolSSO.dll 2016-11-06 14:47:13 05213973D67F7FD9997BAA005FC33AB3 1029632 ----a-w- C:\WINDOWS\Sysnative\MapsStore.dll 2016-11-06 14:47:12 F9D247D75B43DD4AE6E0C72B2C815C44 1359360 ----a-w- C:\WINDOWS\Sysnative\usercpl.dll 2016-11-06 14:47:12 D243745884BCBC21E91AB569A0AD514E 673792 ----a-w- C:\WINDOWS\Sysnative\winlogon.exe 2016-11-06 14:47:11 AE598A72F00E8BD6D2C5CCCFD9659833 1267504 ----a-w- C:\WINDOWS\Sysnative\WinTypes.dll 2016-11-06 14:47:10 5FA2F33AA3E18276A5E72DBD1F33F622 534096 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2016-11-06 14:47:10 55C58F16ABEEB035D1D3B9DB475EDB09 241152 ----a-w- C:\WINDOWS\Sysnative\dafBth.dll 2016-11-06 14:47:10 4AD7225B1E6FC9024A1C55923C6072AD 579072 ----a-w- C:\WINDOWS\Sysnative\LockAppBroker.dll 2016-11-06 14:47:10 036D826413ED8690A0F944CEDA444403 111616 ----a-w- C:\WINDOWS\Sysnative\MDMAppInstaller.exe 2016-11-06 14:47:09 CF84B93F0193CE7788C585B1A4C555D6 40448 ----a-w- C:\WINDOWS\Sysnative\efsext.dll 2016-11-06 14:47:09 8F15AD07A36C0F9B4B825F32A8011972 313856 ----a-w- C:\WINDOWS\Sysnative\moshostcore.dll 2016-11-06 14:47:09 504676BDB30DA598EC24A2BB5331987E 566784 ----a-w- C:\WINDOWS\Sysnative\ActionCenterCPL.dll 2016-11-06 14:47:08 30A8C6FAA572A020F373DA089AD9A603 337920 ----a-w- C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll 2016-11-06 14:46:59 D7CE49E869C7A61FF6336E6CADC8033A 161792 ----a-w- C:\WINDOWS\Sysnative\EditionUpgradeHelper.dll 2016-11-06 14:46:59 2ADA0B221942ED692B172B236541C392 265728 ----a-w- C:\WINDOWS\Sysnative\dhcpcore6.dll 2016-11-06 14:46:58 4D202C5C09D955C3DA7B4FFCBDC6AC9F 243712 ----a-w- C:\WINDOWS\Sysnative\shdocvw.dll 2016-11-06 14:46:57 5BB95BF277A60BC0A7C397799B7C22E6 438784 ----a-w- C:\WINDOWS\Sysnative\EncDec.dll 2016-11-06 14:46:53 66A10D67BDD2400AB74632EEB48FD63E 23680000 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2016-11-06 14:46:47 4A9B24409BC87A84801BA6F9FF4963FE 22568960 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2016-11-06 14:46:36 B96109DC5B8DF54A27F3FB7CCCF09CFF 2670592 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2016-11-06 14:46:35 8FF9C45D01C50D6C1F2A9D149624E240 2266624 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentServer.dll 2016-11-06 14:46:32 97F66EE7A8342B7707D3F438D8D808E7 2750384 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2016-11-06 14:46:32 6C159EC791FA7DE9C99DD5A099147A57 983040 ----a-w- C:\WINDOWS\Sysnative\RemoteNaturalLanguage.dll 2016-11-06 14:46:31 3FC194B562885E972DC003F6B4F4E2CE 1779712 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2016-11-06 14:46:30 4D2F68E0BC1F8C8DEC9DDE1DBB6D30C7 2476544 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2016-11-06 14:46:29 A6CCEA8AA934E09295E75D53D79F17EB 1512960 ----a-w- C:\WINDOWS\Sysnative\win32kbase.sys 2016-11-06 14:46:24 9E662F3580DC5C6CECE7E51B31433536 909824 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2016-11-06 14:46:23 DF1E6557FA2D92350A0EA194523F694E 1694712 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2016-11-06 14:46:22 EF1BB0EF8A12C32DD88C409706B8145E 945664 ----a-w- C:\WINDOWS\Sysnative\iphlpsvc.dll 2016-11-06 14:46:18 68CE253C68FD0A25DB4F65B03D1694FE 631296 ----a-w- C:\WINDOWS\Sysnative\NotificationController.dll 2016-11-06 14:46:17 CD2014FD556A6D52CD37AEC58F317A1D 1690112 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.onecore.dll 2016-11-06 14:46:17 583EC9BF6E31D25AE6E1CE0FDEADB1FC 523776 ----a-w- C:\WINDOWS\Sysnative\MusUpdateHandlers.dll 2016-11-06 14:46:16 4816E166BD2C0E637DB183D24765684F 805376 ----a-w- C:\WINDOWS\Sysnative\FrameServer.dll 2016-11-06 14:46:15 E16D62A6B83A0B260FFC81C02F426E9B 467968 ----a-w- C:\WINDOWS\Sysnative\Geolocation.dll 2016-11-06 14:46:15 D2F163E37AFD3E3294AC0B71617AF6E6 323584 ----a-w- C:\WINDOWS\Sysnative\twinui.pcshell.dll 2016-11-06 14:46:15 4602AFABC56BCA46A5BDA4EA4E6B18B8 296960 ----a-w- C:\WINDOWS\Sysnative\mfsensorgroup.dll 2016-11-06 14:46:14 1205FA5FEC074FDE107C86DAA4CE909D 956416 ----a-w- C:\WINDOWS\Sysnative\AppXDeploymentExtensions.desktop.dll 2016-11-06 14:46:13 A8DD0C0DA172F5916742D9DA7B6CE5CE 690176 ----a-w- C:\WINDOWS\Sysnative\ieproxy.dll 2016-11-06 14:46:13 731F7C6E4B65D50250DF25DCF532FB94 1637888 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2016-11-06 14:46:12 632E40D4B280A9B1F3666C7B59B8F960 160096 ----a-w- C:\WINDOWS\Sysnative\CloudExperienceHostBroker.dll 2016-11-06 14:46:10 28AEA9AC3951A7A981FEDD50B02CCEE0 219648 ----a-w- C:\WINDOWS\Sysnative\AudioSrvPolicyManager.dll 2016-11-06 14:46:09 DF4022C406B86F15117E7B678E7F499A 261632 ----a-w- C:\WINDOWS\Sysnative\indexeddbserver.dll 2016-11-06 14:46:09 BA1AF3F03004E839BAAF9316FA96012C 227328 ----a-w- C:\WINDOWS\Sysnative\cdd.dll 2016-11-06 14:46:08 D484D466F4A80A77E708E32D1767A6BC 388608 ----a-w- C:\WINDOWS\Sysnative\zipfldr.dll 2016-11-06 14:46:06 5E241274083F9DF700237065ABE2FD8F 369664 ----a-w- C:\WINDOWS\Sysnative\msinfo32.exe 2016-11-06 14:46:05 C51C73F3BFD34D358F593F4088F4829D 88576 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2016-11-06 14:46:05 7F1227FBF92744F5CE1AC05C5886631C 314880 ----a-w- C:\WINDOWS\Sysnative\FSClient.dll 2016-11-06 14:46:05 27D5AC0C9ADFAF0AC31596468C36F2B5 18432 ----a-w- C:\WINDOWS\Sysnative\stdole2.tlb ====== C:\WINDOWS\Sysnative\drivers ===== 2016-11-06 14:49:34 23522E5D581F7722B1B5B86737CAE39C 227328 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2016-11-06 14:48:36 039B5A8CBD5C75D1C46DF15F7C74D136 63328 ----a-w- C:\WINDOWS\Sysnative\drivers\dam.sys 2016-11-06 14:48:33 60EB6A4CE3E21887D302350631C16F26 118272 ----a-w- C:\WINDOWS\Sysnative\drivers\capimg.sys 2016-11-06 14:48:28 C1E85B4FB08B4CCF16841B165910148B 258560 ----a-w- C:\WINDOWS\Sysnative\drivers\xboxgip.sys 2016-11-06 14:47:53 3DFBB8B3F8BC0A91297030D0E530BA37 79200 ----a-w- C:\WINDOWS\Sysnative\drivers\crashdmp.sys 2016-11-06 14:47:49 DEA44117F9EE53EAFCE555C0A9B108C6 509280 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2016-11-06 14:46:35 A10C7C1E69FC90620C7BF2E51302A01F 1100128 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2016-11-06 14:46:23 C994DF90427103CCB80F893FFD2B1CE8 557408 ----a-w- C:\WINDOWS\Sysnative\drivers\spaceport.sys 2016-11-06 14:46:18 4F25E481124059CC593B4C68BC485640 2537824 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2016-11-06 14:46:18 125C83C44EEE61E2ED5893F23AEF0FC9 2190688 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-11-06 14:46:16 72C828E0A21020FC6723A940A8F2F085 658272 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-11-06 14:46:16 323AA1953ED9C01E23F740FA891FE064 584032 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2016-11-06 14:46:16 101CC1FD8D48ED1EF71F0840158D0E6D 335712 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2016-11-06 14:46:14 5BEE032780FCE432A80E58C14CDEA965 402272 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-11-06 14:46:12 B23596AFC687B5256CCD7DD429E2E6FB 409952 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2016-11-06 14:46:09 5157325B17E455D9DF7AFBB4B608E78A 156672 ----a-w- C:\WINDOWS\Sysnative\drivers\hidclass.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-11-13 14:37:46 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Eigenaar\AppData\Roaming ====== 2016-10-23 09:33:47 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing 2016-10-16 06:05:00 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\ConnectedDevicesPlatform ====== C:\Users\Eigenaar ====== 2016-11-13 14:37:15 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Eigenaar\Downloads\RSITx64.exe 2016-11-09 17:24:39 6FC234AD3752E1267B34FB12BCD6718B 20 --sha-w- C:\Users\DefaultAppPool\ntuser.ini ====== C: exe-files == 2016-11-13 14:37:46 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Eigenaar.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-1767438687-32798215-2649250762-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Uploader"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe" "OneDrive"="C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "ToshibaServiceStation"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "DBAgent"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe /WinStart" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Uploader"="C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe" "OneDrive"="C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Samsung Link"="C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " "TosSENotify"="C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" "WindowsDefender"=""%ProgramFiles%\Windows Defender\MSASCuiL.exe"" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [21-11-2015 17:18] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-02-2015 19:02] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d1312b9858628e.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-02-2015 19:02] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-02-2015 19:02] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d1312b98a22d37.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-02-2015 19:02] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\0" [c:\program files\internet explorer\iexplore.exe] "C:\WINDOWS\SysNative\tasks\4977" [wscript.exe C:\Users\Eigenaar\AppData\Local\Temp\launchie.vbs //B] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\Eigenaar DBAgent 2 0" ["C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore1d1312b9858628e" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA1d1312b98a22d37" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\OneDrive Standalone Update Task" [C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe] "C:\WINDOWS\SysNative\tasks\Seagate_Install_Launch" [C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{6A499552-9837-4A92-8056-FAFA4CF32FE3}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Norton Identity Safe\Norton Error Analyzer" [C:\Program Files (x86)\Norton Identity Safe\Engine\2013.1.0.32\SymErr.exe] "C:\WINDOWS\SysNative\tasks\Norton Identity Safe\Norton Error Processor" [C:\Program Files (x86)\Norton Identity Safe\Engine\2013.1.0.32\SymErr.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bicnnkjibmphdeigoodpjlcklcnaobdj - C:\Program Files (x86)\TornTV.com\torntv10.crx[] Google Slides - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Belfius Smart Card Reader Chrome Extension - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\agicnfmechmlphpjmeefookfjhifbmhi Google Docs - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Crew Emblem Background Transparency? ... - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\jepgoclafbnigepkpnfafdaihgmannjc Towns - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfpicpeahbmmbigocblndhdmgpkcggpk Chrome Web Store Payments - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Chrome Media Router - Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Chromium Fix ====================== C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.activaweb.fr_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.activaweb.fr_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} - http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=rg&utm_content=ds&from=smt&uid=TOSHIBAXMK6475GSX_71QHFAVXSXX71QHFAVXS&ts=1383592477&type=default&q={searchTerms} HKLM\Wow6432Node\SearchScopes "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} - http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=rg&utm_content=ds&from=smt&uid=TOSHIBAXMK6475GSX_71QHFAVXSXX71QHFAVXS&ts=1383592477&type=default&q={searchTerms} HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WsysControl deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60 O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [DBAgent] "C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe" /WinStart O4 - HKCU\..\Run: [Uploader] C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe O4 - HKCU\..\Run: [OneDrive] "C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe O23 - Service: Seagate Dashboard Services - Seagate Technology LLC - C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe O23 - Service: Seagate MobileBackup Service - Seagate Technology LLC - C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Eigenaar\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=339 folders=50 16196799 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Eigenaar\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 14-11-2016 at 21:04:45,06 ======================