lauwers1968
-
Items
3 -
Registratiedatum
-
Laatst bezocht
lauwers1968's prestaties
-
Denk dat mijn PC gehackt is?
lauwers1968 reageerde op lauwers1968's topic in Archief Hardware algemeen
Zoek.exe v5.0.0.0 Updated 14-April-2014 Tool run by Kati on vr 25/04/2014 at 10:04:59,13. Microsoft® Windows Vista™ Home Premium 6.0.6001 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Kati\Downloads\zoek.exe [scan all users] [Checkboxes used] ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\AVG\AVG2014\avgidsagent.exe C:\Program Files\AVG\AVG2014\avgwdsvc.exe C:\Program Files\Microsoft\BingBar\SeaPort.EXE C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\taskeng.exe C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe C:\Program Files\AVG\AVG2014\avgemcx.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Epson Software\Event Manager\EEventManager.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wuauclt.exe C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Kati\Downloads\zoek.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\conime.exe C:\Windows\system32\wbem\wmiprvse.exe ==== System Restore Info ====================== 25/04/2014 10:12:45 Zoek.exe System Restore Point Created Succesfully. ==== Windows Installer Info ====================== ABBYY FineReader 6.0 Sprint [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006FCA9B229EC4896DC2FC53B9CA70]C:\Windows\Installer\2ca77b.msi Adobe Reader X (10.1.9) - Nederlands [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA7DA73401B744AA0100000010]C:\Windows\Installer\1d320d.msi AVG 2014 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2A865CDBCF993EC42824818F25B598D3]C:\Windows\Installer\3241a.msi AVG 2014 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\742E69C0D0799F8449A701066AB7CE6C]C:\Windows\Installer\28ace9.msi AVG PC TuneUp Language Pack (nl-NL) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\344FB27B6DBACDE4CA5DCC7BD2EB3CD3]C:\Windows\Installer\e2a392.msi Bing Bar [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5509804B864D4A546AABA531D87D51CF]C:\Windows\Installer\416c91.msi Compatibiliteitspakket voor het 2007 Microsoft Office system [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002109020031400000000000F01FEC]C:\Windows\Installer\2ba553.msi Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\18555481990E8AB4CBB63FB4F26006C0]C:\Windows\Installer\1d3217.msi Google Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E]C:\Windows\Installer\e8911.msi Junk Mail filter update [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1E3325E85947BF44D8BEB49E605D6991]C:\Windows\Installer\699c2f.msi Microsoft .NET Framework 3.5 Language Pack SP1 - nld [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D837101508D9A73BB19F1C2537128FB]c:\Windows\Installer\137727.msi Microsoft .NET Framework 3.5 SP1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\26DDC2EC4210AC63483DF9D4FCC5B59D]c:\Windows\Installer\2a4b95.msi Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5C1093C35543A0E32A41B090A305076A]C:\Windows\Installer\4a56cd.msi Microsoft Application Error Reporting [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\000021599B0090400000000000F01FEC]C:\Windows\Installer\699bf7.msi Microsoft Choice Guard [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\ABB21E0F66DA22044A351A8C0A4C5D07]C:\Windows\Installer\699c21.msi Microsoft Maths 3.0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\84838670EBE87824588DE87CD6889B60]C:\Windows\Installer\2ba559.msi Microsoft Office PowerPoint Viewer 2007 (Dutch) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00002159FA0031400000000000F01FEC]C:\Windows\Installer\2ba54d.msi Microsoft Silverlight [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D7314F9862C648A4DB8BE2A5B47BE100]c:\Windows\Installer\3f0eb5.msi Microsoft SQL Server 2005 Compact Edition [ENU] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D034B0FAA6BD374B960AAD30DF10D8B]C:\Windows\Installer\699c3b.msi Microsoft Sync Framework Runtime Native v1.0 (x86) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\788E47A8F0F87104FA35BC4A2211AA5A]C:\Windows\Installer\699c5a.msi Microsoft Sync Framework Services Native v1.0 (x86) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A4FA46DB08C82514DA77CFDD0F2580BA]C:\Windows\Installer\699c60.msi Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D5E3C0FEDA1E123187686FED06E995A]c:\Windows\Installer\14edbd.msi Microsoft Works [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5F1F8515B1AF94D45B64555A00B498DB]C:\Windows\Installer\2ba547.msi MSVCRT [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E577B2224C65CF4E801A9E52375DB49]C:\Windows\Installer\699bfd.msi TuneUp Utilities 2014 (en-US) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64EC8C41C86CB164CB9A2E678A85156C]C:\Windows\Installer\4840b.msi TuneUp Utilities 2014 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A374D8EF60F699F45B4FEB7DB2A230C8]C:\Windows\Installer\4840f.msi Visual Studio 2012 x86 Redistributables [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A91FFE89BA03B4E49B340FB6C136BE8F]C:\Windows\Installer\10a336.msi Windows Live - Hulpprogramma voor uploaden [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DDB6C50237B7ED245850A990F3532A83]C:\Windows\Installer\699c0f.msi Windows Live aanmeldhulp [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\69EA6DB124748944D93049157C5E2A41]C:\Windows\Installer\699c15.msi Windows Live Call [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0362C02C7A3BAB44DB0D132E65EA94E0]C:\Windows\Installer\699c09.msi Windows Live Communications Platform [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\940E57139A9FD3A4F891CAF90B54411D]C:\Windows\Installer\699c03.msi Windows Live Essentials [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D9E3A5BEFC1979C48B6127ED6052CA3A]C:\Windows\Installer\699c1b.msi Windows Live Family Safety [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8EB2BEACE9FEEFB41856B3456BA26FFC]C:\Windows\Installer\699c72.msi Windows Live Mail [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\AE5F96823C395E8408FDBD96B68CA419]C:\Windows\Installer\699c35.msi Windows Live Messenger [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D00A83CCDEE7EC6429181D9DB7182FA2]C:\Windows\Installer\699c29.msi Windows Live Movie Maker [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7721602354F9B3C428991D605D5A20DE]C:\Windows\Installer\699c4e.msi Windows Live Photo Gallery [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3689CEF62FE570A4D9B0AC184BE7F395]C:\Windows\Installer\699c47.msi Windows Live Sync [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A307F43ED9C1F1B4BAEB7D8E08B068D0]C:\Windows\Installer\699c41.msi Windows Live Writer [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C130AC53DC3D82A4D8B97C41664C0F54]C:\Windows\Installer\699c6c.msi ==== Checking Systemdrive for Symlinks ====================== De volumenaam van station C is BOOT Het volumenummer is 4C8D-036A Map van C:\ 02/11/2006 15:02 <KOPPELING> Documents and Settings [C:\Users] 0 bestand(en) 0 bytes Map van C:\Program Files\Windows NT 15/09/2012 16:15 <KOPPELING> Bureau-accessoires [C:\Program Files\Windows NT\Accessories] 0 bestand(en) 0 bytes Map van C:\ProgramData 02/11/2006 15:02 <KOPPELING> Application Data [C:\ProgramData] 15/09/2012 16:15 <KOPPELING> Bureaublad [C:\Users\Public\Desktop] 02/11/2006 15:02 <KOPPELING> Desktop [C:\Users\Public\Desktop] 15/09/2012 16:15 <KOPPELING> Documenten [C:\Users\Public\Documents] 02/11/2006 15:02 <KOPPELING> Documents [C:\Users\Public\Documents] 15/09/2012 16:15 <KOPPELING> Favorieten [C:\Users\Public\Favorites] 02/11/2006 15:02 <KOPPELING> Favorites [C:\Users\Public\Favorites] 15/09/2012 16:15 <KOPPELING> Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 15/09/2012 16:15 <KOPPELING> Sjablonen [C:\ProgramData\Microsoft\Windows\Templates] 02/11/2006 15:02 <KOPPELING> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 02/11/2006 15:02 <KOPPELING> Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\ProgramData\Microsoft\Windows\Start Menu 15/09/2012 16:15 <KOPPELING> Programma's [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users 02/11/2006 15:02 <SYMLINKD> All Users [C:\ProgramData] 02/11/2006 15:02 <KOPPELING> Default User [C:\Users\Default] 0 bestand(en) 0 bytes Map van C:\Users\All Users 02/11/2006 15:02 <KOPPELING> Application Data [C:\ProgramData] 15/09/2012 16:15 <KOPPELING> Bureaublad [C:\Users\Public\Desktop] 02/11/2006 15:02 <KOPPELING> Desktop [C:\Users\Public\Desktop] 15/09/2012 16:15 <KOPPELING> Documenten [C:\Users\Public\Documents] 02/11/2006 15:02 <KOPPELING> Documents [C:\Users\Public\Documents] 15/09/2012 16:15 <KOPPELING> Favorieten [C:\Users\Public\Favorites] 02/11/2006 15:02 <KOPPELING> Favorites [C:\Users\Public\Favorites] 15/09/2012 16:15 <KOPPELING> Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 15/09/2012 16:15 <KOPPELING> Sjablonen [C:\ProgramData\Microsoft\Windows\Templates] 02/11/2006 15:02 <KOPPELING> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 02/11/2006 15:02 <KOPPELING> Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\All Users\Microsoft\Windows\Start Menu 15/09/2012 16:15 <KOPPELING> Programma's [C:\ProgramData\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\Default 02/11/2006 15:02 <KOPPELING> Application Data [C:\Users\Default\AppData\Roaming] 02/11/2006 15:02 <KOPPELING> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies] 02/11/2006 15:02 <KOPPELING> Local Settings [C:\Users\Default\AppData\Local] 15/09/2012 16:15 <KOPPELING> Menu Start [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 15/09/2012 16:15 <KOPPELING> Mijn documenten [C:\Users\Default\Documents] 02/11/2006 15:02 <KOPPELING> My Documents [C:\Users\Default\Documents] 02/11/2006 15:02 <KOPPELING> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 15/09/2012 16:15 <KOPPELING> Netwerkprinteromgeving [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 02/11/2006 15:02 <KOPPELING> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 02/11/2006 15:02 <KOPPELING> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent] 02/11/2006 15:02 <KOPPELING> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo] 15/09/2012 16:15 <KOPPELING> Sjablonen [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 02/11/2006 15:02 <KOPPELING> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 02/11/2006 15:02 <KOPPELING> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\Default\AppData\Local 02/11/2006 15:02 <KOPPELING> Application Data [C:\Users\Default\AppData\Local] 15/09/2012 16:15 <KOPPELING> Geschiedenis [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 02/11/2006 15:02 <KOPPELING> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 02/11/2006 15:02 <KOPPELING> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 bestand(en) 0 bytes Map van C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu 15/09/2012 16:15 <KOPPELING> Programma's [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\Default\Documents 15/09/2012 16:15 <KOPPELING> Mijn afbeeldingen [C:\Users\Default\Pictures] 15/09/2012 16:15 <KOPPELING> Mijn muziek [C:\Users\Default\Music] 15/09/2012 16:15 <KOPPELING> Mijn video's [C:\Users\Default\Videos] 02/11/2006 15:02 <KOPPELING> My Music [C:\Users\Default\Music] 02/11/2006 15:02 <KOPPELING> My Pictures [C:\Users\Default\Pictures] 02/11/2006 15:02 <KOPPELING> My Videos [C:\Users\Default\Videos] 0 bestand(en) 0 bytes Map van C:\Users\Kati 15/09/2012 16:19 <KOPPELING> Application Data [C:\Users\Kati\AppData\Roaming] 15/09/2012 16:19 <KOPPELING> Cookies [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Cookies] 15/09/2012 16:19 <KOPPELING> Local Settings [C:\Users\Kati\AppData\Local] 15/09/2012 16:19 <KOPPELING> Menu Start [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu] 15/09/2012 16:19 <KOPPELING> Mijn documenten [C:\Users\Kati\Documents] 15/09/2012 16:19 <KOPPELING> NetHood [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 15/09/2012 16:19 <KOPPELING> Netwerkprinteromgeving [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 15/09/2012 16:19 <KOPPELING> Recent [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Recent] 15/09/2012 16:19 <KOPPELING> SendTo [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\SendTo] 15/09/2012 16:19 <KOPPELING> Sjablonen [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Templates] 0 bestand(en) 0 bytes Map van C:\Users\Kati\AppData\Local 15/09/2012 16:19 <KOPPELING> Application Data [C:\Users\Kati\AppData\Local] 15/09/2012 16:19 <KOPPELING> Geschiedenis [C:\Users\Kati\AppData\Local\Microsoft\Windows\History] 15/09/2012 16:19 <KOPPELING> Temporary Internet Files [C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 bestand(en) 0 bytes Map van C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu 15/09/2012 16:19 <KOPPELING> Programma's [C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs] 0 bestand(en) 0 bytes Map van C:\Users\Kati\Documents 15/09/2012 16:19 <KOPPELING> Mijn afbeeldingen [C:\Users\Kati\Pictures] 15/09/2012 16:19 <KOPPELING> Mijn muziek [C:\Users\Kati\Music] 15/09/2012 16:19 <KOPPELING> Mijn video's [C:\Users\Kati\Videos] 0 bestand(en) 0 bytes Map van C:\Users\Public\Documents 15/09/2012 16:15 <KOPPELING> Mijn afbeeldingen [C:\Users\Public\Pictures] 15/09/2012 16:15 <KOPPELING> Mijn muziek [C:\Users\Public\Music] 15/09/2012 16:15 <KOPPELING> Mijn video's [C:\Users\Public\Videos] 02/11/2006 15:02 <KOPPELING> My Music [C:\Users\Public\Music] 02/11/2006 15:02 <KOPPELING> My Pictures [C:\Users\Public\Pictures] 02/11/2006 15:02 <KOPPELING> My Videos [C:\Users\Public\Videos] 0 bestand(en) 0 bytes Totaal aantal weergegeven bestanden: 0 bestand(en) 0 bytes 76 map(pen) 252.204.093.440 bytes beschikbaar ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2461260600-4002621271-1757197105-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} deleted successfully HKEY_USERS\S-1-5-21-2461260600-4002621271-1757197105-1000\Software\Microsoft\Internet Explorer\SearchScopes\{84dc9f6c-c9a5-4c64-ab67-d6ef60f963c8} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ABBYY FineReader 6.0 Sprint Adobe Flash Player 12 ActiveX Adobe Reader X (10.1.9) - Nederlands AVG 2014 AVG PC TuneUp Language Pack (nl-NL) Bing Bar Canon Easy-WebPrint EX Canon IJ Scan Utility Canon Inkjet Printer/Scanner/Fax Extended Survey Program Canon MG5500 series MP Drivers Canon MG5500 series On-screen Manual Canon My Image Garden Canon My Image Garden Design Files Canon My Printer Canon Quick Menu Compatibiliteitspakket voor het 2007 Microsoft Office system Epson Easy Photo Print 2 Epson Event Manager EPSON Scan Epson Stylus SX210_SX410_TX210_TX410 Handboek Gebruikersregistratie voor Canon MG5500 series Google Chrome Google Toolbar for Internet Explorer Google Update Helper Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Junk Mail filter update Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Maths 3.0 Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Works Mobistar Internet Everywhere MSVCRT Printer EPSON SX210 Series verwijderen Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL TuneUp Utilities 2014 TuneUp Utilities 2014 (en-US) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Visual Studio 2012 x86 Redistributables Windows Live - Hulpprogramma voor uploaden Windows Live aanmeldhulp Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live Photo Gallery Windows Live Sync Windows Live Writer ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted C:\PROGRA~2\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} deleted C:\PROGRA~2\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted C:\Users\Kati\AppData\Local\genienext deleted C:\Users\Kati\daemonprocess.txt deleted C:\Users\Kati\.android deleted C:\Program Files\Ask.com deleted C:\Users\Kati\AppData\Roaming\newnext.me deleted C:\Users\Kati\AppData\Roaming\systweak deleted C:\Users\Kati\AppData\Local\Lollipop deleted C:\Users\Kati\AppData\Local\Mobogenie deleted C:\Users\Kati\AppData\Local\cache deleted C:\Users\Kati\Downloads\rcp_nlwin_sd.exe deleted C:\Users\Kati\Downloads\SoftonicDownloader_voor_avg-pc-tuneup.exe deleted C:\Users\Kati\AppData\LocalLow\IAC deleted C:\Windows\system32\tasks\AVG_SYS_TASK deleted C:\Windows\system32\tasks\RegClean Pro_DEFAULT deleted C:\END deleted C:\Windows\system32\roboot.exe deleted ==== System Specs ====================== Windows: Windows Vista Home Premium Edition Service Pack 1 (Build 6001) Memory (RAM): 895 MB CPU Info: AMD Athlon 64 X2 Dual Core Processor 5000+ CPU Speed: 2596,1 MHz Sound Card: Apparaat voor digitale uitvoer | Apparaat voor digitale uitvoer | Display Adapters: | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 1x; Screen Resolution: 1024 X 768 - 32 bit Network: Network Present Network Adapters: Realtek RTL8168/8111 Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GSA-H42N Ports: COM1 | COM2 LPT1 Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 305,4GB | D: 29,9GB Hard Disks - Free: C: 235,8GB | D: 13,7GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 06/28/07 | MEDION - 6000728 Time Zone: West-Europa (standaardtijd) Motherboard *: MEDIONPC MS-7327 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus Free Edition 2014 On-access scanning disabled (Outdated) Anti-Spyware: AVG AntiVirus Free Edition 2014 disabled (Outdated) Default Browser: Google Chrome 34.0.1847.116 Internet Explorer version: 7.0.6001.18000 Google Chrome version: 34.0.1847.116 Adobe Reader version: 10.1.9.22 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-04-04 09:41:19 DAF60E13E96ECB67F0EDAA89C6B01B8D 151040 ----a-w- C:\Windows\notepad.exe 2014-04-04 09:40:48 467A3B03E924B7B7EDD16D34740574B0 134656 ----a-w- C:\Windows\regedit.exe 2014-04-04 09:40:39 64C48506832B4AA8DFFB234529F24AD0 58880 ----a-w- C:\Windows\bfsvc.exe 2014-04-04 09:40:26 8F59BB5F948D317316C0A35ED93F75BC 13312 ----a-w- C:\Windows\fveupdate.exe 2014-04-04 09:40:25 3708CCEE4878EB0B9E7B92355A631853 498176 ----a-w- C:\Windows\HelpPane.exe ====== C:\Users\Kati\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== 2014-04-23 14:28:26 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf 2014-04-06 10:31:25 491E9D9A26A745F6AE7D570849F4BD87 54632 ----a-w- C:\Windows\System32\drivers\fssfltr.sys 2014-04-05 09:24:06 8153396D5551276227FA146900F734E6 69632 ----a-w- C:\Windows\System32\drivers\bowser.sys 2014-04-05 09:24:04 A3E9FA213F443AC77C7746119D13FEEC 75264 ----a-w- C:\Windows\System32\drivers\dfsc.sys 2014-04-05 09:23:47 BFEF604508A0ED1EAE2A73E872555FFB 72192 ----a-w- C:\Windows\System32\drivers\pacer.sys 2014-04-05 09:23:45 2252AEF839B1093D16761189F45AF885 304640 ----a-w- C:\Windows\System32\drivers\srv.sys 2014-04-05 09:23:42 6B5FA5ADFACAC9DBBE0991F4566D7D55 213504 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2014-04-05 09:23:42 5C80D8159181C7ABF1B14BA703B01E0B 79360 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2014-04-05 09:23:42 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 105984 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-04-05 09:23:22 48EB99503533C27AC6135648E5474457 273408 ----a-w- C:\Windows\System32\drivers\afd.sys 2014-04-05 09:23:01 B7FF59408034119476B00A81BB53D5D1 146432 ----a-w- C:\Windows\System32\drivers\srv2.sys 2014-04-05 09:23:01 2ACCC9B12AF02030F531E6CCA6F8B76E 102400 ----a-w- C:\Windows\System32\drivers\srvnet.sys 2014-04-05 09:22:00 85F33880B8CFB554BD3D9CCDB486845A 625152 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-04-05 09:22:00 3C21CE48FF529BB73DADB98770B54025 148480 ----a-w- C:\Windows\System32\drivers\nwifi.sys 2014-04-05 09:21:14 782568AB6A43160A159B6215B70BCCE9 898952 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-04-04 09:41:26 E384487CB84BE41D09711C30CA79646C 31288 ----a-w- C:\Windows\System32\drivers\mssmbios.sys 2014-04-04 09:41:26 B572DA05BF4E098D4BBA3A4734FB505B 5504 ----a-w- C:\Windows\System32\drivers\mspqm.sys 2014-04-04 09:41:26 B5614AECB05A9340AA0FB55BF561CC63 163384 ----a-w- C:\Windows\System32\drivers\msrpc.sys 2014-04-04 09:41:26 7199C1EEC1E4993CAF96B8C0A26BD58A 6016 ----a-w- C:\Windows\System32\drivers\mstee.sys 2014-04-04 09:41:26 6DFD1D322DE55B0B7DB7D21B90BEC49C 49720 ----a-w- C:\Windows\System32\drivers\mup.sys 2014-04-04 09:41:26 1D373C90D62DDB641D50E55B9E78D65E 5888 ----a-w- C:\Windows\System32\drivers\mspclock.sys 2014-04-04 09:41:25 A9927F4A46B816C92F461ACB90CF8515 22528 ----a-w- C:\Windows\System32\drivers\msfs.sys 2014-04-04 09:41:22 D8C63D34D9C9E56C059E24EC7185CC07 8192 ----a-w- C:\Windows\System32\drivers\mskssrv.sys 2014-04-04 09:41:21 F247EEC28317F6C739C16DE420097301 181304 ----a-w- C:\Windows\System32\drivers\msiscsi.sys 2014-04-04 09:41:21 0F400E306F385C56317357D6DEA56F62 16440 ----a-w- C:\Windows\System32\drivers\msisadrv.sys 2014-04-04 09:41:19 ECB5003F484F9ED6C608D6D6C7886CBB 34816 ----a-w- C:\Windows\System32\drivers\npfs.sys 2014-04-04 09:41:12 C5DBBCDA07D780BDA9B685DF333BB41E 4608 ----a-w- C:\Windows\System32\drivers\null.sys 2014-04-04 09:41:12 B4EFFE29EB4F15538FD8A9681108492D 1081912 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2014-04-04 09:41:12 609773E344A97410CE4EBF74A8914FCF 16384 ----a-w- C:\Windows\System32\drivers\nsiproxy.sys 2014-04-04 09:41:11 D6973AA34C4D5D76C0430B181C3CD389 16896 ----a-w- C:\Windows\System32\drivers\ndisuio.sys 2014-04-04 09:41:11 CB57FEB3288CF6D5CADC6EF0E50718D9 223288 ----a-w- C:\Windows\System32\drivers\netio.sys 2014-04-04 09:41:11 BCD093A5A6777CF626434568DC7DBA78 35840 ----a-w- C:\Windows\System32\drivers\netbios.sys 2014-04-04 09:41:11 9BDC71790FA08F0A0B5F10462B1BD0B1 529464 ----a-w- C:\Windows\System32\drivers\ndis.sys 2014-04-04 09:41:11 7C5FEE5B1C5728507CD96FB4A13E7A02 184320 ----a-w- C:\Windows\System32\drivers\netbt.sys 2014-04-04 09:41:11 71DAB552B41936358F3B541AE5997FB3 49664 ----a-w- C:\Windows\System32\drivers\ndproxy.sys 2014-04-04 09:41:11 3D14C3B3496F88890D431E8AA022A411 121344 ----a-w- C:\Windows\System32\drivers\ndiswan.sys 2014-04-04 09:41:11 0E186E90404980569FB449BA7519AE61 20992 ----a-w- C:\Windows\System32\drivers\ndistapi.sys 2014-04-04 09:41:09 8F5C7426567798E62A3B3614965D62CC 84480 ----a-w- C:\Windows\System32\drivers\luafv.sys 2014-04-04 09:41:08 B271EC02E71271A2DA28B3B7BC4E4F15 18944 ----a-w- C:\Windows\System32\drivers\mcd.sys 2014-04-04 09:41:07 E50A95179211B12946F7E035D60AF560 95744 ----a-w- C:\Windows\System32\drivers\irda.sys 2014-04-04 09:41:07 D1C5883087A0C3F1344D9D55A44901F6 47104 ----a-w- C:\Windows\System32\drivers\lltdio.sys 2014-04-04 09:41:07 8793643A67B42CEC66490B2A0CF92D68 100864 ----a-w- C:\Windows\System32\drivers\ipnat.sys 2014-04-04 09:41:07 62C265C38769B864CB25B4BCF62DF6C3 47616 ----a-w- C:\Windows\System32\drivers\ipfltdrv.sys 2014-04-04 09:41:07 47CB1CBB1D80517D7909D0860128E860 148992 ----a-w- C:\Windows\System32\drivers\ks.sys 2014-04-04 09:41:07 37605E0A8CF00CBBA538E753E4344C6E 35384 ----a-w- C:\Windows\System32\drivers\kbdclass.sys 2014-04-04 09:41:07 18247836959BA67E3511B62846B9C2E0 15872 ----a-w- C:\Windows\System32\drivers\kbdhid.sys 2014-04-04 09:41:07 109C0DFB82C3632FBD11949B73AEEAC9 13312 ----a-w- C:\Windows\System32\drivers\irenum.sys 2014-04-04 09:41:06 BDAFC88AA6B92F7842416EA6A48E1600 57400 ----a-w- C:\Windows\System32\drivers\mountmgr.sys 2014-04-04 09:41:06 93B8D4869E12CFBE663915502900876F 15872 ----a-w- C:\Windows\System32\drivers\mouhid.sys 2014-04-04 09:41:06 5BF6A1326A335C5298477754A506D263 34360 ----a-w- C:\Windows\System32\drivers\mouclass.sys 2014-04-04 09:41:06 22241FEBA9B2DEFA669C8CB0A8DD7D2E 64000 ----a-w- C:\Windows\System32\drivers\mpsdrv.sys 2014-04-04 09:41:03 AE3DE84536B6799D2267443CEC8EDBB9 110080 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2014-04-04 09:41:01 E13B5EA0F51BA5B1512EC671393D09BA 31744 ----a-w- C:\Windows\System32\drivers\modem.sys 2014-04-04 09:40:57 A7D7EA1771D2ED6F39A8063E79B6C3E8 17408 ----a-w- C:\Windows\System32\drivers\smclib.sys 2014-04-04 09:40:57 031E6BCD53C9B2B9ACE111EAFEC347B6 66560 ----a-w- C:\Windows\System32\drivers\smb.sys 2014-04-04 09:40:56 8AF3D28A879BF75DB53A0EE7A4289624 19968 ----a-w- C:\Windows\System32\drivers\sermouse.sys 2014-04-04 09:40:56 6D663022DB3E7058907784AE14B69898 83456 ----a-w- C:\Windows\System32\drivers\serial.sys 2014-04-04 09:40:55 CE9EC966638EF0B10B864DDEDF62A099 17920 ----a-w- C:\Windows\System32\drivers\serenum.sys 2014-04-04 09:40:54 FC175F5DDAB666D7F4D17449A547626F 16440 ----a-w- C:\Windows\System32\drivers\pciide.sys 2014-04-04 09:40:54 75DAD0E7F4CD3CB9455A76123AC16BF3 167936 ----a-w- C:\Windows\System32\drivers\portcls.sys 2014-04-04 09:40:54 01B94418DEB235DFF777CC80076354B4 151096 ----a-w- C:\Windows\System32\drivers\pci.sys 2014-04-04 09:40:53 8A79FDF04A73428597E2CAF9D0D67850 79360 ----a-w- C:\Windows\System32\drivers\parport.sys 2014-04-04 09:40:53 790E27C3DB53410B40FF9EF2FD10A1D9 61952 ----a-w- C:\Windows\System32\drivers\ohci1394.sys 2014-04-04 09:40:53 6C580025C81CAF3AE9E3617C22CAD00E 8704 ----a-w- C:\Windows\System32\drivers\parvdm.sys 2014-04-04 09:40:53 3B38467E7C3DAED009DFE359E17F139F 56376 ----a-w- C:\Windows\System32\drivers\partmgr.sys 2014-04-04 09:40:51 9C508F4074A39E8B4B31D27198146FAD 60416 ----a-w- C:\Windows\System32\drivers\rspndr.sys 2014-04-04 09:40:51 46ED71AFE2C872931E87AB958BE133FA 45112 ----a-w- C:\Windows\System32\drivers\pciidex.sys 2014-04-04 09:40:50 8F5DB387FF2F57AD9107B7EB78A6D34B 33280 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys 2014-04-04 09:40:50 75E8A6BFA7374ABA833AE92BF41AE4E6 8192 ----a-w- C:\Windows\System32\drivers\rootmdm.sys 2014-04-04 09:40:49 9F5E0E1926014D17486901C88ECA2DB7 31232 ----a-w- C:\Windows\System32\drivers\qwavedrv.sys 2014-04-04 09:40:49 6F5CA34AE885645ACF8A20D564DB976C 142904 ----a-w- C:\Windows\System32\drivers\scsiport.sys 2014-04-04 09:40:49 147D7F9C556D259924351FEB0DE606C3 11776 ----a-w- C:\Windows\System32\drivers\rasacd.sys 2014-04-04 09:40:48 ECFFFAEC0C1ECD8DBC77F39070EA1DB1 62976 ----a-w- C:\Windows\System32\drivers\raspptp.sys 2014-04-04 09:40:48 E1C18F4097A5ABCEC941DC4B2F99DB7E 181248 ----a-w- C:\Windows\System32\drivers\rdpwd.sys 2014-04-04 09:40:48 A7D141684E9500AC928A772ED8E6B671 69120 ----a-w- C:\Windows\System32\drivers\rassstp.sys 2014-04-04 09:40:48 A214ADBAF4CB47DD2728859EF31F26B0 76288 ----a-w- C:\Windows\System32\drivers\rasl2tp.sys 2014-04-04 09:40:48 9D91FE5286F748862ECFFA05F8A0710C 6144 ----a-w- C:\Windows\System32\drivers\RDPENCDD.sys 2014-04-04 09:40:48 89E59BE9A564262A3FB6C4F4F1CD9899 6144 ----a-w- C:\Windows\System32\drivers\RDPCDD.sys 2014-04-04 09:40:48 6E1C5D0457622F9EE35F683110E93D14 224768 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2014-04-04 09:40:48 3E9D9B048107B40D87B97DF2E48E0744 41472 ----a-w- C:\Windows\System32\drivers\raspppoe.sys 2014-04-04 09:40:46 64109E623ABD6955C8FB110B592E68B7 55352 ----a-w- C:\Windows\System32\drivers\disk.sys 2014-04-04 09:40:46 0183496303B4F8A5878D99A667F33170 19968 ----a-w- C:\Windows\System32\drivers\Diskdump.sys 2014-04-04 09:40:44 E9ACAE97F17C99CB735A1E08859BF806 36408 ----a-w- C:\Windows\System32\drivers\crashdmp.sys 2014-04-04 09:40:44 4388CEBB2C6A7F484AC409A90A3C9FAE 127544 ----a-w- C:\Windows\System32\drivers\Classpnp.sys 2014-04-04 09:40:42 DD2CD259D83D8B72C02C5F2331FF9D68 143416 ----a-w- C:\Windows\System32\drivers\ecache.sys 2014-04-04 09:40:42 A8C0139A884861E3AAE9CFE73B208A9F 58936 ----a-w- C:\Windows\System32\drivers\fileinfo.sys 2014-04-04 09:40:42 0AE429A696AECBC5970E3CF2C62635AE 27648 ----a-w- C:\Windows\System32\drivers\filetrace.sys 2014-04-04 09:40:42 05EA53AFE985443011E36DAB07343B46 192056 ----a-w- C:\Windows\System32\drivers\fltMgr.sys 2014-04-04 09:40:41 97FEF831AB90BEE128C9AF390E243F80 5632 ----a-w- C:\Windows\System32\drivers\drmkaud.sys 2014-04-04 09:40:41 7BE5A3C671A2CB56E94403BFC2020A0D 130048 ----a-w- C:\Windows\System32\drivers\drmk.sys 2014-04-04 09:40:41 3C489390C2E2064563727752AF8EAB9E 143360 ----a-w- C:\Windows\System32\drivers\fastfat.sys 2014-04-04 09:40:41 0D858EB20589A34EFB25695ACAA6AA2D 136192 ----a-w- C:\Windows\System32\drivers\exfat.sys 2014-04-04 09:40:40 EAAAFEF04FBB45665C9576E525D45A12 13312 ----a-w- C:\Windows\System32\drivers\dxapi.sys 2014-04-04 09:40:40 6D16255C9EB5683F83A472E1679ED2E4 76288 ----a-w- C:\Windows\System32\drivers\dxg.sys 2014-04-04 09:40:39 D1C03AE69C29E239FC8000C5C0DEA709 110136 ----a-w- C:\Windows\System32\drivers\ataport.sys 2014-04-04 09:40:39 C078D2B163F090601200FA5A6FF3CE0A 29240 ----a-w- C:\Windows\System32\drivers\Dumpata.sys 2014-04-04 09:40:39 53B202ABEE6455406254444303E87BE1 17408 ----a-w- C:\Windows\System32\drivers\asyncmac.sys 2014-04-04 09:40:39 2D9C903DC76A66813D350A562DE40ED9 21560 ----a-w- C:\Windows\System32\drivers\atapi.sys 2014-04-04 09:40:38 9F5F8F2318DFA3974A6F6A5602733929 12288 ----a-w- C:\Windows\System32\drivers\bdasup.sys 2014-04-04 09:40:38 67E506B75BD5326A3EC7B70BD014DFB6 6144 ----a-w- C:\Windows\System32\drivers\beep.sys 2014-04-04 09:40:37 FCB8C7210F0135E24C6580F7F649C73C 266808 ----a-w- C:\Windows\System32\drivers\acpi.sys 2014-04-04 09:40:37 0349BE02F329F4F48F1D48097FD65974 53376 ----a-w- C:\Windows\System32\drivers\1394bus.sys 2014-04-04 09:40:36 93AE7F7DD54AB986A6F1A1B37BE7442D 44032 ----a-w- C:\Windows\System32\drivers\amdk8.sys 2014-04-04 09:40:36 72DF06D26AE4CED2E08F428B96302B0E 93696 ----a-w- C:\Windows\System32\drivers\bridge.sys 2014-04-04 09:40:35 1EC25CEA0DE6AC4718BF89F9E1778B57 67072 ----a-w- C:\Windows\System32\drivers\cdrom.sys 2014-04-04 09:40:34 7ADD03E75BEB9E6DD102C3081D29840A 70144 ----a-w- C:\Windows\System32\drivers\cdfs.sys 2014-04-04 09:40:29 22D56C8184586B7A1F6FA60BE5F5A2BD 54784 ----a-w- C:\Windows\System32\drivers\i8042prt.sys 2014-04-04 09:40:27 854CA287AB7FAF949617A788306D967E 12288 ----a-w- C:\Windows\System32\drivers\hidusb.sys 2014-04-04 09:40:26 65EA8B77B5851854F0C55C43FA51A198 12800 ----a-w- C:\Windows\System32\drivers\fs_rec.sys 2014-04-04 09:40:26 495FA4351A96F228B4301D1E616DEFA0 101432 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-04-04 09:40:25 C87B1EE051C0464491C1A7B03FA0BC99 53760 ----a-w- C:\Windows\System32\drivers\hdaudbus.sys 2014-04-04 09:40:25 175444D3A01CA45D0E1C5DC5F48DF7CD 25472 ----a-w- C:\Windows\System32\drivers\hidparse.sys 2014-04-04 09:40:25 04F49DDD00A26C6CA984A9B480FDAA33 38912 ----a-w- C:\Windows\System32\drivers\hidclass.sys 2014-04-04 09:40:18 6C8B7DF75ECF4A7DD668BEC58E268329 32768 ----a-w- C:\Windows\System32\drivers\watchdog.sys 2014-04-04 09:40:18 55201897378CCA7AF8B5EFD874374A26 62464 ----a-w- C:\Windows\System32\drivers\wanarp.sys 2014-04-04 09:40:17 E3A3CB253C0EC2494D4A61F5E43A389C 15872 ----a-w- C:\Windows\System32\drivers\ws2ifsl.sys 2014-04-04 09:40:16 AC13CB789D93412106B0FB6C7EB2BCB6 83328 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2014-04-04 09:40:16 13B5F255E90624A5BA0441D39CFB6BE2 51200 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2014-04-04 09:40:15 C546864EED786304762D030FEBF6B411 17976 ----a-w- C:\Windows\System32\drivers\wmilib.sys 2014-04-04 09:40:09 D4A2E4A4B011F3A883AF77315A5AE76B 30208 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2014-04-04 09:40:08 D09276B1FAB033CE1D40DCBDF303D10F 71680 ----a-w- C:\Windows\System32\drivers\tdx.sys 2014-04-04 09:40:08 77937EFF009AC696B90E09F671F9D0A4 20992 ----a-w- C:\Windows\System32\drivers\tdi.sys 2014-04-04 09:40:08 5DCF5E267BE67A1AE926F2DF77FBCC56 17920 ----a-w- C:\Windows\System32\drivers\tdpipe.sys 2014-04-04 09:40:08 389C63E32B3CEFED425B61ED92D3F021 29184 ----a-w- C:\Windows\System32\drivers\tdtcp.sys 2014-04-04 09:40:08 1239FD18895040D97B7CDBC19BC2075E 24576 ----a-w- C:\Windows\System32\drivers\tape.sys 2014-04-04 09:40:06 F713E67C329CE82FF1E1EBB497887427 681984 ----a-w- C:\Windows\System32\drivers\spsys.sys 2014-04-04 09:40:06 7AEBDEEF071FE28B0EEF2CDD69102BFF 21048 ----a-w- C:\Windows\System32\drivers\spldr.sys 2014-04-04 09:40:04 E75C4B5269091D15A2E7DC0B6D35F2F5 18944 ----a-w- C:\Windows\System32\drivers\usbprint.sys 2014-04-04 09:40:04 D8B4A53DD2769F226B3EB374374987C9 227896 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2014-04-04 09:40:04 D173F7B936C8F579BCC4F78DA861929C 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2014-04-04 09:40:04 CEBE90821810E76320155BEBA722FCF9 39424 ----a-w- C:\Windows\System32\drivers\usbehci.sys 2014-04-04 09:40:04 CC6B28E4CE39951357963119CE47B143 194560 ----a-w- C:\Windows\System32\drivers\usbhub.sys 2014-04-04 09:40:04 CAF811AE4C147FFCD5B51750C7F09142 73216 ----a-w- C:\Windows\System32\drivers\usbccgp.sys 2014-04-04 09:40:04 C048D2C33D27441A0CDCAAE2651EB03D 110080 ----a-w- C:\Windows\System32\drivers\videoprt.sys 2014-04-04 09:40:04 BF85EAAB7B889E4B621111E0372CB147 25728 ----a-w- C:\Windows\System32\drivers\USBCAMD.sys 2014-04-04 09:40:04 B0B0C4970BD60E6E2B0FD33B2960490D 25728 ----a-w- C:\Windows\System32\drivers\USBCAMD2.sys 2014-04-04 09:40:04 A508C9BD8724980512136B039BBA65E9 35328 ----a-w- C:\Windows\System32\drivers\usbscan.sys 2014-04-04 09:40:04 98F5FFE6316BD74E9E2C97206C190196 294456 ----a-w- C:\Windows\System32\drivers\volmgrx.sys 2014-04-04 09:40:04 87BA6B83C5D19B69160968D07D6E2982 55296 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-04-04 09:40:04 87B06E1F30B749A114F74622D013F8D4 26112 ----a-w- C:\Windows\System32\drivers\vgapnp.sys 2014-04-04 09:40:04 7BDB7B0E7D45AC0402D78B90789EF47C 19456 ----a-w- C:\Windows\System32\drivers\usbohci.sys 2014-04-04 09:40:04 7BA58ECF0C0A9A69D44B3DCA62BECF56 15288 ----a-w- C:\Windows\System32\drivers\swenum.sys 2014-04-04 09:40:04 790FDAC6D0C762DF9047C3C625A6FF6C 5888 ----a-w- C:\Windows\System32\drivers\usbd.sys 2014-04-04 09:40:04 69503668AC66C77C6CD7AF86FBDF8C43 52792 ----a-w- C:\Windows\System32\drivers\volmgr.sys 2014-04-04 09:40:04 65AD9C60DBFA2F0EA582E691CBA03F0C 226304 ----a-w- C:\Windows\System32\drivers\usbport.sys 2014-04-04 09:40:04 39AD2C7B9C05C1CCD12480890DBA4EB5 123960 ----a-w- C:\Windows\System32\drivers\Storport.sys 2014-04-04 09:40:04 2E93AC0A1D8C79D019DB6C51F036636C 25088 ----a-w- C:\Windows\System32\drivers\vga.sys 2014-04-04 09:40:04 264232EF4283F123438C60D49E52D596 52992 ----a-w- C:\Windows\System32\drivers\stream.sys 2014-04-04 09:40:03 DCF0F056A2E4F52287264F5AB29CF206 23552 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2014-04-04 09:40:03 A048056F5E1A96A9BF3071B91741A5AA 54328 ----a-w- C:\Windows\System32\drivers\termdd.sys 2014-04-04 09:40:03 8B5088058FA1D1CD897A2113CCFF6C58 226816 ----a-w- C:\Windows\System32\drivers\udfs.sys 2014-04-04 09:40:03 88BD96A1BAEED33EE8BDF9499C07A841 7680 ----a-w- C:\Windows\System32\drivers\umpass.sys 2014-04-04 09:40:03 32CFF9F809AE9AED85464492BF3E32D2 34816 ----a-w- C:\Windows\System32\drivers\umbus.sys ====== C:\Windows\Tasks ====== 2014-04-06 09:43:51 C6168AB9BA9F599B158CBBCBFD077D52 2758 ----a-w- C:\Windows\system32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-04-24 09:08:53 -------- d-----w- C:\Program Files\trend micro 2014-04-06 10:29:29 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition 2014-04-06 10:28:10 -------- d-----w- C:\Program Files\Microsoft 2014-04-06 10:27:50 -------- d-----w- C:\Program Files\Windows Live SkyDrive 2014-04-06 10:27:27 -------- d-----w- C:\Program Files\Windows Live 2014-04-06 09:42:38 -------- d-----w- C:\Program Files\Common Files\Windows Live 2014-04-06 09:40:57 -------- d-----w- C:\Program Files\Microsoft Silverlight 2014-04-04 12:32:29 -------- d--h--w- C:\Program Files\CanonBJ 2014-04-04 12:18:36 -------- d-----w- C:\Program Files\Microsoft.NET 2014-04-04 11:55:19 -------- d-----w- C:\Program Files\Canon ======= C: ===== ====== C:\Users\Kati\AppData\Roaming ====== 2014-04-08 14:04:05 -------- d-----w- C:\Users\Kati\AppData\Local\Windows Live 2014-04-07 16:56:02 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\TuneUp Software 2014-04-06 16:57:49 -------- d-----w- C:\Users\Kati\AppData\Local\TuneUp Software 2014-04-04 15:01:22 C120E05CD312038424C5F91EEEB70D1F 268028 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\WPFFontCache_v0400-S-1-5-21-2461260600-4002621271-1757197105-1000-12288.dat 2014-04-04 15:01:22 9CD7F205D679700787A681119936165C 608956 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\WPFFontCache_v0400-S-1-5-21-2461260600-4002621271-1757197105-1000-8192.dat 2014-04-04 15:01:21 DCEF64A1B517F970AC33DA965E621A2A 268028 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\WPFFontCache_v0400-System.dat 2014-04-04 12:48:09 -------- d-----w- C:\Users\Kati\AppData\Roaming\Canon 2014-04-04 12:43:11 -------- d-----w- C:\Users\Kati\AppData\Locallow\Canon Easy-WebPrint EX 2014-03-30 09:41:41 -------- d-----w- C:\Users\Default\AppData\Roaming\TuneUp Software 2014-03-30 09:41:41 -------- d-----w- C:\Users\Default User\AppData\Roaming\TuneUp Software ====== C:\Users\Kati ====== 2014-04-24 09:07:58 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Kati\Downloads\RSIT.exe 2014-04-06 10:27:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live 2014-04-06 09:41:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-04-05 11:52:33 -------- d-----w- C:\ProgramData\WindowsSearch 2014-04-04 13:12:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG5500 series 2014-04-04 12:58:46 -------- d--h--w- C:\ProgramData\CanonIJMyPrinter 2014-04-04 12:48:03 -------- d--h--w- C:\ProgramData\CanonIJQuickMenu 2014-04-04 12:42:35 -------- d-----w- C:\ProgramData\CanonIJWSpt 2014-04-04 12:35:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-04-04 12:34:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Manual 2014-04-04 12:27:07 -------- d--h--w- C:\ProgramData\CanonBJ 2014-04-04 12:01:40 -------- d-----w- C:\ProgramData\CanonIJPLM 2014-04-04 11:56:36 -------- d--h--w- C:\ProgramData\CanonIJETV 2014-04-02 08:01:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG ====== C: exe-files == 2014-04-25 08:04:20 AEE8CCD190B1E25737AFA480B16A652B 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2461260600-4002621271-1757197105-1000\$I8NQE1E.exe 2014-04-25 08:04:15 2EF8FF06DDF24E5E5E823E618EF19881 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2461260600-4002621271-1757197105-1000\$I8PWG39.exe 2014-04-25 05:55:07 9C26C1D55F036B35EE993AF68D762FD6 7123400 ----a-w- C:\Program Files\AVG\AVG2014\Notification\Launcher.exe 2014-04-24 09:08:53 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Kati.exe 2014-04-24 09:07:58 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Kati\Downloads\RSIT.exe 2014-04-23 15:09:24 5547AB584CA80A42F1A0CFC6405D0EE7 37003992 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\34.0.1847.116\34.0.1847.116_chrome_installer.exe 2014-04-23 09:50:23 8FAE9109245E4B4FF42704ECFB86F1B6 8704216 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\34.0.1847.116\34.0.1847.116_33.0.1750.154_chrome_updater.exe === C: other files == ======== System Restore Points ======== RP270: 10/04/2014 12:00:21 - Windows Update RP271: 11/04/2014 12:26:43 - Gepland herstelpunt RP272: 14/04/2014 11:50:53 - TuneUp Utilities 2014 is verwijderd RP273: 14/04/2014 11:54:50 - Removed TuneUp Utilities 2014 (en-US) RP274: 14/04/2014 11:59:16 - Windows Update RP275: 15/04/2014 14:03:30 - Gepland herstelpunt RP276: 16/04/2014 8:38:05 - Gepland herstelpunt RP277: 17/04/2014 16:29:43 - Gepland herstelpunt RP278: 18/04/2014 8:40:47 - Gepland herstelpunt RP279: 19/04/2014 15:00:34 - Gepland herstelpunt RP280: 21/04/2014 12:11:01 - Gepland herstelpunt RP281: 22/04/2014 9:55:51 - Gepland herstelpunt RP282: 23/04/2014 10:09:47 - Herstelbewerking RP283: 23/04/2014 10:52:46 - Herstelbewerking RP284: 23/04/2014 12:53:07 - Windows Update RP285: 24/04/2014 12:48:46 - Gepland herstelpunt RP286: 25/04/2014 8:44:15 - Windows Update RP287: 25/04/2014 9:46:23 - Windows Update RP288: 25/04/2014 10:11:26 - zoek.exe restore point ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-2461260600-4002621271-1757197105-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "EPSON SX210 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU C:\Users\Kati\AppData\Local\Temp\E_S7C90.tmp /EF HKCU" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "EEventManager"="C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe" "AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY" "CanonQuickMenu"="C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "EPSON SX210 Series"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU C:\Users\Kati\AppData\Local\Temp\E_S7C90.tmp /EF HKCU" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Startup Registry Disabled ====================== [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "swg"="\"C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"" "WMPNSCFG"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [12/03/2014 09:35] C:\Windows\tasks\GoogleUpdateTaskMachineCore1cef32d35986220.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [16/09/2012 13:34] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [16/09/2012 13:34] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cef32d35986220" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\TuneUp Utilities 2014\OneClick.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [23/09/2012 13:07] ==== Chrome Look ====================== YouTube - Kati\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Kati\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - Kati\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Kati\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\Users\Kati\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Kati\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_CLASSES_ROOT\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Kati\Desktop\cv pagina 1 - Snelkoppeling.lnk - C:\Users\Kati\Pictures\cv update\cv pagina 1.pdf C:\Users\Kati\Desktop\cv pagina 2 - Snelkoppeling.lnk - C:\Users\Kati\Pictures\cv update\cv pagina 2.pdf C:\Users\Kati\Desktop\cv pagina 3 - Snelkoppeling.lnk - C:\Users\Kati\Pictures\cv update\cv pagina 3.pdf C:\Users\Kati\Desktop\ongebruikte programma's\Adobe Reader X .lnk - C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe C:\Users\Kati\Desktop\ongebruikte programma's\Canon MG5500 series Schermhandleiding.lnk - C:\Program Files\Canon\IJ Manual\Easy Guide Viewer\cmview.exe "C:\PROGRAM FILES\Canon\IJ Manual\CANON MG5500 SERIES\Dutch\Info.egv" C:\Users\Kati\Desktop\ongebruikte programma's\Canon Quick Menu.lnk - C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE C:\Users\Kati\Desktop\ongebruikte programma's\Epson Easy Photo Print.lnk - C:\Program Files\Epson Software\Easy Photo Print\EPQuicker.exe C:\Users\Kati\Desktop\ongebruikte programma's\EPSON Scan.lnk - C:\Windows\twain_32\escndv\escndv.exe C:\Users\Kati\Desktop\ongebruikte programma's\Epson Stylus SX210_SX410_TX210_TX410 Handboek.lnk - C:\Program Files\epson\TPMANUAL\ESSX210_410_TX210_410\NLD\USE_G\index.htm C:\Users\Kati\Desktop\ongebruikte programma's\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Kati\Desktop\ongebruikte programma's\Internetbrowser selecteren.lnk - C:\Windows\System32\browserchoice.exe /launch C:\Users\Kati\Desktop\ongebruikte programma's\Mobistar Internet Everywhere.lnk - C:\Program Files\Mobistar Internet Everywhere\Mobistar Internet Everywhere.exe C:\Users\Kati\Desktop\ongebruikte programma's\SMS.lnk - ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files\AVG\AVG2014\avgui.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk - C:\Windows\system32\notepad.exe C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk - C:\Windows\system32\control.exe /name Microsoft.EaseOfAccessCenter C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk - C:\Windows\system32\notepad.exe C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk - C:\Windows\system32\control.exe /name Microsoft.EaseOfAccessCenter C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk - C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk - C:\Program Files\Windows Mail\WinMail.exe C:\Users\Kati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk - C:\Program Files\Windows Mail\WinMail.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk - C:\Windows\system32\mspaint.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk - C:\Windows\system32\mstsc.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk - C:\Windows\System32\mobsync.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk - C:\Program Files\Windows NT\Accessories\wordpad.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk - C:\Windows\system32\dfrgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk - C:\Windows\system32\msinfo32.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk - C:\Windows\system32\WindowsPowerShell\v1.0\PowerShell_ISE.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk - C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk - C:\Windows\system32\compmgmt.msc /s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Reliability and Performance Monitor.lnk - C:\Windows\system32\perfmon.msc /s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk - C:\Windows\system32\services.msc C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk - C:\Windows\system32\WF.msc C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk - C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe -NoExit -ImportSystemModules C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files\AVG\AVG2014\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Manual\Canon MG5500 series Schermhandleiding.lnk - C:\Program Files\Canon\IJ Manual\Easy Guide Viewer\cmview.exe "C:\PROGRAM FILES\Canon\IJ Manual\CANON MG5500 SERIES\Dutch\Info.egv" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\IJ Scan Utility\IJ Scan Utility.lnk - C:\Program Files\Canon\IJ Scan Utility\SCANUTILITY.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Image Garden\My Image Garden.lnk - C:\Program Files\Canon\My Image Garden\cnmigmain.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer.lnk - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /mn C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Quick Menu\Quick Menu.lnk - C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Windows Marketplace.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Windows Web.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\GameExplorer.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MG5500 series\Gebruikersregistratie.LNK - C:\Program Files\Canon\IJEREG\MG5500 series\IJEREG.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files\Microsoft Silverlight\5.1.30214.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Call.lnk - C:\Program Files\Windows Live\Messenger\wlcstart.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Family Safety.lnk - C:\Windows\Installer\{CAEB2BE8-EF9E-4BFE-8165-3B54B62AF6CF}\fssicon.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mail.lnk - C:\Program Files\Windows Live\Mail\wlmail.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Messenger .lnk - C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Movie Maker.lnk - C:\Program Files\Windows Live\Photo Gallery\MovieMaker.Exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Photo Gallery.lnk - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk - C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Kati\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 ==== Uninstall List x86 ====================== ABBYY FineReader 6.0 Sprint [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}] Adobe Flash Player 12 ActiveX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX] Adobe Reader X (10.1.9) - Nederlands [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1043-7B44-AA1000000001}] AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0C96E247-970D-48F9-947A-1060A67BECC6}] AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{BDC568A2-99FC-4CE3-8242-18F8525B893D}] AVG 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG] AVG PC TuneUp Language Pack (nl-NL) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B72BF443-ABD6-4EDC-ACD5-CCB72DBEC33D}] Bing Bar [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B4089055-D468-45A4-A6BA-5A138DD715FC}] Canon Easy-WebPrint EX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Easy-WebPrint EX] Canon IJ Scan Utility [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Canon_IJ_Scan_Utility] Canon Inkjet Printer/Scanner/Fax Extended Survey Program [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CANONIJPLM100] Canon MG5500 series MP Drivers [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series] Canon MG5500 series On-screen Manual [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Canon MG5500 series On-screen Manual] Canon My Image Garden [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Canon My Image Garden] Canon My Image Garden Design Files [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Canon My Image Garden Design Files] Canon My Printer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CanonMyPrinter] Canon Quick Menu [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CanonQuickMenu] Epson Easy Photo Print 2 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}] Epson Event Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{48F22622-1CC2-4A83-9C1E-644DD96F832D}] EPSON Scan [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\EPSON Scanner] Epson Stylus SX210_SX410_TX210_TX410 Handboek [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Epson Stylus SX210_SX410_TX210_TX410 Gebruikershandleiding] Gebruikersregistratie voor Canon MG5500 series [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Gebruikersregistratie voor Canon MG5500 series] Google Chrome [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome] Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] Google Toolbar for Internet Explorer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] Google Update Helper [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}] Junk Mail filter update [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8E5233E1-7495-44FB-8DEB-4BE906D59619}] Microsoft .NET Framework 3.5 Language Pack SP1 - nld [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{101738D7-D805-37A9-BB91-1F2C351782BF}] Microsoft .NET Framework 3.5 SP1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}] Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3C3901C5-3455-3E0A-A214-0B093A5070A6}] Microsoft Choice Guard [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}] Microsoft Maths 3.0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{07683848-8EBE-4287-85D8-8EC76D88B906}] Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}] Microsoft SQL Server 2005 Compact Edition [ENU] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}] Microsoft Sync Framework Runtime Native v1.0 (x86) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}] Microsoft Sync Framework Services Native v1.0 (x86) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}] Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}] Microsoft Works [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5158F1F5-FA1B-4D49-B546-55A5004B89BD}] Mobistar Internet Everywhere [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mobistar Internet Everywhere] MSVCRT [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}] Printer EPSON SX210 Series verwijderen [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\EPSON SX210 Series] TuneUp Utilities 2014 (en-US) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{14C8CE46-C68C-461B-BCA9-E276A85851C6}] TuneUp Utilities 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}] Visual Studio 2012 x86 Redistributables [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}] Windows Live - Hulpprogramma voor uploaden [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{205C6BDD-7B73-42DE-8505-9A093F35A238}] Windows Live aanmeldhulp [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1BD6AE96-4742-4498-9D03-9451C7E5A214}] Windows Live Call [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C20C2630-B3A7-44BA-BDD0-31E256AE490E}] Windows Live Communications Platform [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}] Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EB5A3E9D-91CF-4C97-B816-72DE0625ACA3}] Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinLiveSuite_Wave3] Windows Live Family Safety [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CAEB2BE8-EF9E-4BFE-8165-3B54B62AF6CF}] Windows Live Mail [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2869F5EA-93C3-48E5-80DF-DB696BC84A91}] Windows Live Messenger [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CC38A00D-7EED-46CE-9281-D1D97B81F22A}] Windows Live Movie Maker [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{32061277-9F45-4C3B-8299-D106D5A502ED}] Windows Live Photo Gallery [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6FEC9863-5EF2-4A07-9D0B-CA81B47E3F59}] Windows Live Sync [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D}] Windows Live Writer [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{35CA031C-D3CD-4A28-8D9B-C71466C4F045}] ==== HijackThis Entries ====================== O1 - Hosts: ::1 localhost O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [EPSON SX210 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Users\Kati\AppData\Local\Temp\E_S7C90.tmp" /EF "HKCU" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe ==== Silent Runners ====================== "Silent Runners.vbs", revision 69.2, Silent Runners - Adware? Disinfect, don't reformat! Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++} Sidebar = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [MS] EPSON SX210 Series = C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Users\Kati\AppData\Local\Temp\E_S7C90.tmp" /EF "HKCU" [sEIKO EPSON CORPORATION] swg = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [Google Inc.] WMPNSCFG = C:\Program Files\Windows Media Player\WMPNSCFG.exe [MS] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} Windows Defender = C:\Program Files\Windows Defender\MSASCui.exe -hide EEventManager = C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe [sEIKO EPSON CORPORATION] AVG_UI = "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY [AVG Technologies CZ, s.r.o.] CanonQuickMenu = C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon [CANON INC.] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}\(Default) = Canon Easy-WebPrint EX BHO -> {HKLM...CLSID} = Canon Easy-WebPrint EX BHO \InProcServer32\(Default) = C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [CANON INC.] {9030D464-4C02-4ABF-8ECC-5164760863C6}\(Default) = (no title provided) -> {HKLM...CLSID} = Windows Live Aanmelden - Help \InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [MS] {9421DD08-935F-4701-A9CA-22DF90AC4EA6}\(Default) = (no title provided) -> {HKLM...CLSID} = Easy Photo Print \InProcServer32\(Default) = C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [sEIKO EPSON CORPORATION / CyCom Technology Corp.] {AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided) -> {HKLM...CLSID} = Google Toolbar Helper \InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\(Default) = (no title provided) -> {HKLM...CLSID} = Google Toolbar Notifier BHO \InProcServer32\(Default) = C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll [Google Inc.] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} = Microsoft Office Metadata Handler -> {HKLM...CLSID} = Microsoft Office Metadata Handler \InProcServer32\(Default) = C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll [MS] {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} = Microsoft Office Thumbnail Handler -> {HKLM...CLSID} = Microsoft Office Thumbnail Handler \InProcServer32\(Default) = C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll [MS] {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} = AVG Shell Extension -> {HKLM...CLSID} = AVG Shell Extension Class \InProcServer32\(Default) = C:\Program Files\AVG\AVG2014\avgse.dll [AVG Technologies CZ, s.r.o.] {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} = TuneUp Shredder Shell Extension -> {HKLM...CLSID} = TuneUp Shredder Shell Extension \InProcServer32\(Default) = C:\Program Files\TuneUp Utilities 2014\SDShelEx-win32.dll [TuneUp Software] {4838CD50-7E5D-4811-9B17-C47A85539F28} = TuneUp Disk Space Explorer Shell Extension -> {HKLM...CLSID} = TuneUp Disk Space Explorer Shell Extension \InProcServer32\(Default) = C:\Program Files\TuneUp Utilities 2014\DseShExt-x86.dll [TuneUp Software] {0563DB41-F538-4B37-A92D-4659049B7766} = WLMD Message Handler -> {HKLM...CLSID} = CLSID_WLMCMimeFilter \InProcServer32\(Default) = C:\Program Files\Windows Live\Mail\mailcomm.dll [MS] {00F33137-EE26-412F-8D71-F84E4C2C6625} = (no title provided) -> {HKLM...CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} = Windows Live Photo Gallery Viewer Drop Target Shim -> {HKLM...CLSID} = Windows Live Photo Gallery Viewer Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} = Windows Live Photo Gallery Editor Drop Target Shim -> {HKLM...CLSID} = Windows Live Photo Gallery Editor Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] {00F30F90-3E96-453B-AFCD-D71989ECC2C7} = Windows Live Photo Gallery Autoplay Drop Target Shim -> {HKLM...CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\ <<!>> livecall\CLSID = {828030A1-22C1-4009-854F-8E305202313F} -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL [MS] <<!>> ms-itss\CLSID = {0A9007C0-4076-11D3-8789-0000F8105754} -> {HKLM...CLSID} = Microsoft Infotech Storage Protocol for IE 4.0 \InProcServer32\(Default) = C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [MS] <<!>> msnim\CLSID = {828030A1-22C1-4009-854F-8E305202313F} -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL [MS] <<!>> wlmailhtml\CLSID = {03C514A3-1EFB-4856-9F99-10D7BE1653C0} -> {HKLM...CLSID} = Windows Live Mail HTML Asynchronous Pluggable Protocol Handler \InProcServer32\(Default) = C:\Program Files\Windows Live\Mail\mailcomm.dll [MS] HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\ AVG Shell Extension\(Default) = {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} -> {HKLM...CLSID} = AVG Shell Extension Class \InProcServer32\(Default) = C:\Program Files\AVG\AVG2014\avgse.dll [AVG Technologies CZ, s.r.o.] EPP\(Default) = {3F3B81BE-529B-40b9-8189-6666B241ADFA} -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = C:\Program Files\Epson Software\Easy Photo Print\EPPShell.dll [sEIKO EPSON CORPORATION] TuneUp Shredder Shell Extension\(Default) = {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} -> {HKLM...CLSID} = TuneUp Shredder Shell Extension \InProcServer32\(Default) = C:\Program Files\TuneUp Utilities 2014\SDShelEx-win32.dll [TuneUp Software] HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\ TuneUp Disk Space Explorer Shell Extension\(Default) = {4838CD50-7E5D-4811-9B17-C47A85539F28} -> {HKLM...CLSID} = TuneUp Disk Space Explorer Shell Extension \InProcServer32\(Default) = C:\Program Files\TuneUp Utilities 2014\DseShExt-x86.dll [TuneUp Software] TuneUp Shredder Shell Extension\(Default) = {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} -> {HKLM...CLSID} = TuneUp Shredder Shell Extension \InProcServer32\(Default) = C:\Program Files\TuneUp Utilities 2014\SDShelEx-win32.dll [TuneUp Software] HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\ {F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = PDF Column Info -> {HKLM...CLSID} = PDF Shell Extension \InProcServer32\(Default) = C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll [Adobe Systems, Inc.] HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\ AVG Shell Extension\(Default) = {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} -> {HKLM...CLSID} = AVG Shell Extension Class \InProcServer32\(Default) = C:\Program Files\AVG\AVG2014\avgse.dll [AVG Technologies CZ, s.r.o.] Active Desktop and Wallpaper: ----------------------------- Active Desktop may be disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState Displayed if Active Desktop enabled and wallpaper not set by Group Policy: HKCU\Software\Microsoft\Internet Explorer\Desktop\General\ Wallpaper = C:\Windows\web\Wallpaper\img24.jpg Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ SCRNSAVE.EXE = C:\Windows\system32\logon.scr [MS] Windows Portable Device AutoPlay Handlers ----------------------------------------- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ MSLivePhotoAcqHWEventHandler\ Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10;nl-nl.8117.0416 ProgID = Microsoft.LivePhotoAcqHWEventHandler HKLM\SOFTWARE\Classes\Microsoft.LivePhotoAcqHWEventHandler\CLSID\(Default) = {3BD0ACD1-71CA-4475-92CC-E0AA0AAF843F} -> {HKLM...CLSID} = (no title provided) \LocalServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [MS] MSLivePhotoAcquireDropHandler\ Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10;nl-nl.8117.0416 InvokeProgID = Microsoft.LivePhotoAcqDTShim.1 InvokeVerb = open HKLM\SOFTWARE\Classes\Microsoft.LivePhotoAcqDTShim.1\shell\open\DropTarget\CLSID = {00F33137-EE26-412F-8D71-F84E4C2C6625} -> {HKLM...CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] MSLiveShowPicturesOnArrival\ Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10;nl-nl.8117.0416 InvokeProgID = Microsoft.Photos.LiveAutoplayShim.1 InvokeVerb = open HKLM\SOFTWARE\Classes\Microsoft.Photos.LiveAutoplayShim.1\shell\open\DropTarget\CLSID = {00F30F90-3E96-453B-AFCD-D71989ECC2C7} -> {HKLM...CLSID} = Windows Live Photo Gallery Viewer Autoplay Shim \InProcServer32\(Default) = C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll [MS] MSLiveVideoCameraArrivalCaptureWizard\ Provider = @%ProgramFiles%\Windows Live\Photo Gallery\regres.dll,-10 ProgID = WLXAutoPlayMgr.WLXHWEventHandler InitCmdLine = WLXVideoAcquireWizard HKLM\SOFTWARE\Classes\WLXAutoPlayMgr.WLXHWEventHandler\CLSID\(Default) = {9B5C97F6-B3A5-4A6D-8B03-993EC7291A22} -> {HKLM...CLSID} = WLXWEventHandler Class \LocalServer32\(Default) = "C:\Program Files\Windows Live\Photo Gallery\WLXVideoCameraAutoPlayManager.exe" [MS] WIA_{9E4FDDBA-D8C6-41BB-873B-9B4587778D4E}\ Provider = EPSON Scan CLSID = {A55803CC-4D53-404c-8557-FD63DBA95D24} InitCmdLine = /WiaCmd;C:\Windows\twain_32\escndv\escndv.exe /StiDevice:%1 /StiEvent:%2; -> {HKLM...CLSID} = WPDShextAutoplay \LocalServer32\(Default) = C:\Windows\system32\WPDShextAutoplay.exe [MS] WIA_{ADE2984A-DFD7-4116-9BF7-2CCF879B042C}\ Provider = Epson Event Manager CLSID = {A55803CC-4D53-404c-8557-FD63DBA95D24} InitCmdLine = /WiaCmd;C:\Program Files\Epson Software\Event Manager\EEventManager.exe /StiDevice:%1 /StiEvent:%2; -> {HKLM...CLSID} = WPDShextAutoplay \LocalServer32\(Default) = C:\Windows\system32\WPDShextAutoplay.exe [MS] WIA_{D35B34BC-0567-49C7-B596-BFBF7DF01EB3}\ Provider = ABBYY FineReader 6.0 Sprint CLSID = {A55803CC-4D53-404c-8557-FD63DBA95D24} InitCmdLine = /WiaCmd;C:\Program Files\ABBYY FineReader 6.0 Sprint\Sprint.exe /StiDevice:%1 /StiEvent:%2; -> {HKLM...CLSID} = WPDShextAutoplay \LocalServer32\(Default) = C:\Windows\system32\WPDShextAutoplay.exe [MS] Windows Sidebar Gadgets: {++} ------------------------ C:\Users\Kati\AppData\Local\Microsoft\Windows Sidebar\Settings.ini %PROGRAMFILES%\windows sidebar\gadgets\Clock.gadget Non-disabled Scheduled Tasks: {++} ----------------------------- C:\Windows\System32\Tasks Adobe Flash Player Updater -> launches: C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [Adobe Systems Incorporated] Adobe-online actualiseringsprogramma -> launches: C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [Adobe Systems Incorporated] CreateChoiceProcessTask -> launches: C:\Windows\System32\browserchoice.exe /launch [MS] GoogleUpdateTaskMachineCore -> launches: C:\Program Files\Google\Update\GoogleUpdate.exe /c [Google Inc.] GoogleUpdateTaskMachineCore1cef32d35986220 -> launches: C:\Program Files\Google\Update\GoogleUpdate.exe /c [Google Inc.] GoogleUpdateTaskMachineUA -> launches: C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler [Google Inc.] TuneUpUtilities_Task_BkGndMaintenance2013 -> launches: C:\Program Files\TuneUp Utilities 2014\OneClick.exe $(Arg0) [file not found] {5F255AC0-D7AF-4477-9462-B75CD6DA37D7} -> launches: C:\Windows\system32\pcalua.exe -a E:\Install\Driver\Setup.exe -d E:\Install\Driver [MS] {BAFF1CD2-25CF-42C6-BF48-EA7A91A3464B} -> launches: C:\Windows\system32\pcalua.exe -a E:\Install\Autorun\Setup.exe -d E:\Install\Autorun [MS] {BBE62F3C-5F1D-440F-9BE9-29CE6FD10EA5} -> launches: C:\Windows\system32\pcalua.exe -a "C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NJMF51M6\avira_free_antivirus_en[1].exe" -d C:\Windows\system32 [MS] {C3F95D30-71C1-45B4-A747-B42CE06488E9} -> launches: C:\Windows\system32\pcalua.exe -a "C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VT0MTO45\avira_free_antivirus_en[1].exe" -d C:\Windows\system32 [MS] {D413422E-6514-4D46-93DC-2FAEF20CA03F} -> launches: C:\Windows\system32\pcalua.exe -a E:\Setup.EXE -d E:\ [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client AD RMS Rights Policy Template Management (Manual) -> launches: {BF5CB148-7C77-4d8a-A53E-D81C70CF743C} -> {HKLM...CLSID} = AD RMS Rights Policy Template Management (Manual) Task Handler \InProcServer32\(Default) = C:\Windows\system32\msdrm.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Bluetooth UninstallDeviceTask -> launches: BthUdTask.exe $(Arg0) [MS] C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient SystemTask -> launches: {58fb76b9-ac85-4e55-ac04-427593b1d060} -> {HKLM...CLSID} = Certificate Services Client Task Handler \InProcServer32\(Default) = C:\Windows\system32\dimsjob.dll [MS] UserTask -> launches: {58fb76b9-ac85-4e55-ac04-427593b1d060} -> {HKLM...CLSID} = Certificate Services Client Task Handler \InProcServer32\(Default) = C:\Windows\system32\dimsjob.dll [MS] UserTask-Roam -> launches: {58fb76b9-ac85-4e55-ac04-427593b1d060} -> {HKLM...CLSID} = Certificate Services Client Task Handler \InProcServer32\(Default) = C:\Windows\system32\dimsjob.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program Consolidator -> launches: %SystemRoot%\System32\wsqmcons.exe [MS] OptinNotification -> launches: %SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0 [MS] Uploader -> launches: %windir%\system32\WSqmCons.exe -u [MS] VistaSP1CEIP -> (HIDDEN!) launches: %systemroot%\servicing\vsp1ceip.exe /delete /tn "\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP" /f [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Defrag ManualDefrag -> launches: %windir%\system32\defrag.exe -c [MS] ScheduledDefrag -> launches: %windir%\system32\defrag.exe -c -i [MS] C:\Windows\System32\Tasks\Microsoft\Windows\DiskDiagnostic Microsoft-Windows-DiskDiagnosticDataCollector -> (HIDDEN!) launches: %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Media Center ehDRMInit -> launches: %SystemRoot%\ehome\ehPrivJob.exe /DRMInit [MS] mcupdate -> launches: %SystemRoot%\ehome\mcupdate $(Arg0) -gc [MS] OCURActivate -> launches: %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate [MS] OCURDiscovery -> launches: %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery [MS] UpdateRecordPath -> launches: %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) [MS] C:\Windows\System32\Tasks\Microsoft\Windows\MobilePC HotStart -> launches: {06DA0625-9701-43da-BFD7-FBEEA2180A1E} -> {HKLM...CLSID} = HotStart User Agent \InProcServer32\(Default) = C:\Windows\System32\HotStartUserAgent.dll [MS] TMM -> launches: {35EF4182-F900-4632-B072-8639E4478A61} -> {HKLM...CLSID} = Transient Multi-Monitor Manager \InProcServer32\(Default) = C:\Windows\System32\TMM.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\MUI LPRemove -> launches: %windir%\system32\lpremove.exe [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia SystemSoundsService -> launches: {2DEA658F-54C1-4227-AF9B-260AB5FC3543} -> {HKLM...CLSID} = Microsoft PlaySoundService Class \InProcServer32\(Default) = C:\Windows\System32\PlaySndSrv.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\NetworkAccessProtection NAPStatus UI -> launches: {f09878a1-4652-4292-aa63-8c7d4fd7648f} -> {HKLM...CLSID} = Nap ITask Handler Implementation \InProcServer32\(Default) = C:\Windows\System32\QAgent.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\RAC RACAgent -> (HIDDEN!) launches: %windir%\system32\RacAgent.exe [MS] C:\Windows\System32\Tasks\Microsoft\Windows\RemoteAssistance RemoteAssistanceTask -> (HIDDEN!) launches: %windir%\system32\RAServer.exe /offerraupdate [MS] C:\Windows\System32\Tasks\Microsoft\Windows\RestartManager {C4EDDA57-C9BE-42ba-B0F3-22B666A95EF4} -> (HIDDEN!) launches: C:\Windows\system32\rmclient.exe \\.\pipe\RestartManager-{42A5281E-2C2B-4989-BFB9-0096B0EA1BC1} [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Shell CrawlStartPages -> launches: {51653423-e62d-4ff7-894a-dabb2b8e21e2} -> {HKLM...CLSID} = CrawlStartPages Task Handler \InProcServer32\(Default) = C:\Windows\System32\srchadmin.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\SideShow GadgetManager -> launches: {FF87090D-4A9A-4f47-879B-29A80C355D61} -> {HKLM...CLSID} = GadgetsManager Class \InProcServer32\(Default) = C:\Windows\System32\AuxiliaryDisplayServices.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\SystemRestore SR -> launches: %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Tcpip IpAddressConflict1 -> launches: rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem [MS] IpAddressConflict2 -> launches: rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem [MS] C:\Windows\System32\Tasks\Microsoft\Windows\TextServicesFramework MsCtfMonitor -> (HIDDEN!) launches: {01575cfe-9a55-4003-a5e1-f38d1ebdcbe1} -> {HKLM...CLSID} = MsCtfMonitor task handler \InProcServer32\(Default) = C:\Windows\system32\MsCtfMonitor.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\UPnP UPnPHostConfig -> launches: sc.exe config upnphost start= auto [MS] C:\Windows\System32\Tasks\Microsoft\Windows\WDI ResolutionHost -> (HIDDEN!) launches: {900be39d-6be8-461a-bc4d-b0fa71f5ecb1} -> {HKLM...CLSID} = DiagnosticInfrastructureCustomHandler \InProcServer32\(Default) = C:\Windows\System32\wdi.dll [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Windows Error Reporting QueueReporting -> launches: %windir%\system32\wermgr.exe -queuereporting [MS] C:\Windows\System32\Tasks\Microsoft\Windows\Wired GatherWiredInfo -> launches: %windir%\system32\gatherWiredInfo.vbs [null data] C:\Windows\System32\Tasks\Microsoft\Windows\Wireless GatherWirelessInfo -> launches: %windir%\system32\gatherWirelessInfo.vbs [null data] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = %SystemRoot%\system32\NLAapi.dll [MS] 000000000002\LibraryPath = %SystemRoot%\system32\napinsp.dll [MS] 000000000003\LibraryPath = %SystemRoot%\system32\pnrpnsp.dll [MS] 000000000004\LibraryPath = %SystemRoot%\system32\pnrpnsp.dll [MS] 000000000005\LibraryPath = %SystemRoot%\System32\mswsock.dll [MS] 000000000006\LibraryPath = %SystemRoot%\System32\winrnr.dll [MS] Transport Service Providers HKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 22 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ {F2CF5485-4E02-4F68-819C-B92DE9277049} -> {HKLM...CLSID} = &Links \InProcServer32\(Default) = C:\Windows\system32\ieframe.dll [MS] {2318C2B1-4965-11D4-9B18-009027A5CD4F} -> {HKLM...CLSID} = Google Toolbar \InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ {9421DD08-935F-4701-A9CA-22DF90AC4EA6} = EPTBL -> {HKLM...CLSID} = Easy Photo Print \InProcServer32\(Default) = C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [sEIKO EPSON CORPORATION / CyCom Technology Corp.] {2318C2B1-4965-11D4-9B18-009027A5CD4F} = (no title provided) -> {HKLM...CLSID} = Google Toolbar \InProcServer32\(Default) = C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [Google Inc.] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} = Canon Easy-WebPrint EX -> {HKLM...CLSID} = Canon Easy-WebPrint EX \InProcServer32\(Default) = C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [CANON INC.] Explorer Bars HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\ {21347690-EC41-4F9A-8887-1F4AEE672439}\(Default) = (no title provided) -> {HKLM...CLSID} = Canon Easy-WebPrint EX \InProcServer32\(Default) = C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [CANON INC.] Extensions (Tools menu items, main toolbar menu buttons) HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\ {219C3416-8CB2-491A-A3C7-D9FCDDC9D600}\ ButtonText = In weblog opnemen MenuText = &In weblog opnemen met Windows Live Writer CLSIDExtension = {5F7B1267-94A9-47F5-98DB-E99415F33AEC} -> {HKLM...CLSID} = BlogThisToolbarButton Class \InProcServer32\(Default) = C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll [MS] Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ Adobe Acrobat Update Service, AdobeARMservice, "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [Adobe Systems Incorporated] AVG WatchDog, avgwd, "C:\Program Files\AVG\AVG2014\avgwdsvc.exe" [AVG Technologies CZ, s.r.o.] BBUpdate, BBUpdate, "C:\Program Files\Microsoft\BingBar\SeaPort.EXE" [MS] Canon Inkjet Printer/Scanner/Fax Extended Survey Program, IJPLMSVC, C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [null data] EPSON V3 Service4(01), EPSON_PM_RPCV4_01, C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [sEIKO EPSON CORPORATION] EPSON V5 Service4(01), EPSON_EB_RPCV4_01, C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [sEIKO EPSON CORPORATION] TuneUp Utilities Service, TuneUp.UtilitiesSvc, "C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe" [TuneUp Software] Safe Mode Drivers & Services (subkey name, subkey default value): ----------------------------------------------------------------- HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\ <<!>> PEVSystemStart, Service HKLM\System\CurrentControlSet\Control\SafeBoot\Network\ <<!>> PEVSystemStart, Service Print Monitors: --------------- HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\ Canon BJ Language Monitor MG5500 series\Driver = CNMLMBU.DLL [CANON INC.] Canon BJNP Port\Driver = CNMNPPM.DLL [CANON INC.] EPSON SX210 Series 32MonitorBE\Driver = E_FLBFDE.DLL [sEIKO EPSON CORPORATION] ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Kati\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Kati\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1256 folders=119 112958258 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Kati\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Kati\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Kati\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on vr 25/04/2014 at 10:33:43,16 ====================== -
Denk dat mijn PC gehackt is?
lauwers1968 reageerde op lauwers1968's topic in Archief Hardware algemeen
Logfile of random's system information tool 1.09 (written by random/random) Run by Kati at 2014-04-24 11:08:53 Microsoft® Windows Vista™ Home Premium Service Pack 1 System drive C: has 242 GB (77%) free of 313 GB Total RAM: 895 MB (20% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:09:26, on 24/04/2014 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18527) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Epson Software\Event Manager\EEventManager.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\System32\mobsync.exe C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Kati\Downloads\RSIT.exe C:\Program Files\trend micro\Kati.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [EPSON SX210 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Users\Kati\AppData\Local\Temp\E_S7C90.tmp" /EF "HKCU" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe -- End of file - 6519 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore1cef32d35986220.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}] Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24 176736] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}] Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-31 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll [2013-10-16 1001936] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-31 194504] {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24 4438104] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184] "EEventManager"=C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe [2008-12-04 665424] "AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-03-19 4971024] "CanonQuickMenu"=C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2013-05-02 1282120] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-18 1233920] "EPSON SX210 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE [2008-11-06 199680] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-09-16 39408] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "mixer2"=wdmaud.drv "msacm.siren"=sirenacm.dll ======List of files/folders created in the last 1 month====== 2014-04-24 11:08:53 ----D---- C:\Program Files\trend micro 2014-04-24 11:08:52 ----D---- C:\rsit 2014-04-06 12:31:25 ----A---- C:\Windows\system32\drivers\fssfltr.sys 2014-04-06 12:31:21 ----DC---- C:\Windows\system32\DRVSTORE 2014-04-06 12:30:27 ----D---- C:\Program Files\Microsoft Sync Framework 2014-04-06 12:29:36 ----A---- C:\Windows\system32\d3dx9_32.dll 2014-04-06 12:29:29 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2014-04-06 12:28:10 ----D---- C:\Program Files\Microsoft 2014-04-06 12:27:50 ----D---- C:\Program Files\Windows Live SkyDrive 2014-04-06 12:27:27 ----D---- C:\Program Files\Windows Live 2014-04-06 12:27:16 ----D---- C:\Windows\PCHEALTH 2014-04-06 11:42:38 ----D---- C:\Program Files\Common Files\Windows Live 2014-04-06 11:40:57 ----D---- C:\Program Files\Microsoft Silverlight 2014-04-06 11:38:59 ----A---- C:\Windows\system32\msshsq.dll 2014-04-05 13:52:33 ----D---- C:\ProgramData\WindowsSearch 2014-04-05 13:13:43 ----A---- C:\Windows\system32\msshooks.dll 2014-04-05 13:13:42 ----A---- C:\Windows\system32\msscb.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\thawbrkr.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\srchadmin.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\SearchFilterHost.exe 2014-04-05 13:13:41 ----A---- C:\Windows\system32\propsys.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\propdefs.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\msstrc.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\mssprxy.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\mssitlb.dll 2014-04-05 13:13:41 ----A---- C:\Windows\system32\korwbrkr.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\xmlfilter.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\wsepno.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\rtffilt.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\offfilt.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\nlhtml.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\msscntrs.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\mimefilt.dll 2014-04-05 13:13:40 ----A---- C:\Windows\system32\chsbrkr.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\tquery.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\SearchProtocolHost.exe 2014-04-05 13:13:39 ----A---- C:\Windows\system32\SearchIndexer.exe 2014-04-05 13:13:39 ----A---- C:\Windows\system32\mssvp.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\mssrch.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\mssphtb.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\mssph.dll 2014-04-05 13:13:39 ----A---- C:\Windows\system32\chtbrkr.dll 2014-04-05 13:07:49 ----A---- C:\Windows\system32\psisdecd.dll 2014-04-05 12:03:28 ----A---- C:\Windows\system32\winrsmgr.dll 2014-04-05 12:03:01 ----A---- C:\Windows\system32\wsmprovhost.exe 2014-04-05 12:03:01 ----A---- C:\Windows\system32\winrshost.exe 2014-04-05 12:03:01 ----A---- C:\Windows\system32\winrs.exe 2014-04-05 12:02:58 ----A---- C:\Windows\system32\wsmplpxy.dll 2014-04-05 12:02:58 ----A---- C:\Windows\system32\winrssrv.dll 2014-04-05 12:02:54 ----A---- C:\Windows\system32\wevtfwd.dll 2014-04-05 12:02:54 ----A---- C:\Windows\system32\wecutil.exe 2014-04-05 12:02:54 ----A---- C:\Windows\system32\wecsvc.dll 2014-04-05 12:02:54 ----A---- C:\Windows\system32\wecapi.dll 2014-04-05 12:02:53 ----A---- C:\Windows\system32\WsmRes.dll 2014-04-05 12:02:53 ----A---- C:\Windows\system32\pwrshplugin.dll 2014-04-05 12:02:44 ----A---- C:\Windows\system32\winrm.vbs 2014-04-05 12:02:41 ----A---- C:\Windows\system32\WsmWmiPl.dll 2014-04-05 12:02:41 ----A---- C:\Windows\system32\WsmAuto.dll 2014-04-05 12:02:41 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll 2014-04-05 12:02:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe 2014-04-05 12:02:41 ----A---- C:\Windows\system32\winrscmd.dll 2014-04-05 12:02:40 ----A---- C:\Windows\system32\WsmSvc.dll 2014-04-05 11:25:13 ----A---- C:\Windows\system32\wmp.dll 2014-04-05 11:25:06 ----A---- C:\Windows\system32\wmploc.DLL 2014-04-05 11:24:40 ----A---- C:\Windows\system32\srvsvc.dll 2014-04-05 11:24:40 ----A---- C:\Windows\system32\netevent.dll 2014-04-05 11:24:33 ----A---- C:\Windows\system32\usp10.dll 2014-04-05 11:24:18 ----A---- C:\Windows\system32\fontsub.dll 2014-04-05 11:24:18 ----A---- C:\Windows\system32\atmfd.dll 2014-04-05 11:24:17 ----A---- C:\Windows\system32\atmlib.dll 2014-04-05 11:24:12 ----A---- C:\Windows\system32\odbc32.dll 2014-04-05 11:24:06 ----A---- C:\Windows\system32\drivers\bowser.sys 2014-04-05 11:24:04 ----A---- C:\Windows\system32\drivers\dfsc.sys 2014-04-05 11:24:00 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-04-05 11:23:59 ----A---- C:\Windows\system32\ntkrnlpa.exe 2014-04-05 11:23:59 ----A---- C:\Windows\system32\ntdll.dll 2014-04-05 11:23:57 ----A---- C:\Windows\system32\mfc42u.dll 2014-04-05 11:23:57 ----A---- C:\Windows\system32\mfc42.dll 2014-04-05 11:23:50 ----A---- C:\Windows\system32\iccvid.dll 2014-04-05 11:23:47 ----A---- C:\Windows\system32\pacerprf.dll 2014-04-05 11:23:47 ----A---- C:\Windows\system32\drivers\pacer.sys 2014-04-05 11:23:45 ----A---- C:\Windows\system32\drivers\srv.sys 2014-04-05 11:23:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2014-04-05 11:23:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2014-04-05 11:23:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2014-04-05 11:23:40 ----A---- C:\Windows\system32\dnsrslvr.dll 2014-04-05 11:23:40 ----A---- C:\Windows\system32\dnsapi.dll 2014-04-05 11:23:39 ----A---- C:\Windows\system32\dnscacheugc.exe 2014-04-05 11:23:36 ----A---- C:\Windows\system32\asycfilt.dll 2014-04-05 11:23:34 ----A---- C:\Windows\system32\ole32.dll 2014-04-05 11:23:31 ----A---- C:\Windows\system32\spoolsv.exe 2014-04-05 11:23:29 ----A---- C:\Windows\system32\t2embed.dll 2014-04-05 11:23:25 ----A---- C:\Windows\system32\win32k.sys 2014-04-05 11:23:22 ----A---- C:\Windows\system32\drivers\afd.sys 2014-04-05 11:23:14 ----A---- C:\Windows\system32\shsvcs.dll 2014-04-05 11:23:09 ----A---- C:\Windows\system32\sdclt.exe 2014-04-05 11:23:01 ----A---- C:\Windows\system32\drivers\srvnet.sys 2014-04-05 11:23:01 ----A---- C:\Windows\system32\drivers\srv2.sys 2014-04-05 11:22:58 ----A---- C:\Windows\system32\MP4SDECD.DLL 2014-04-05 11:22:55 ----A---- C:\Windows\system32\vbscript.dll 2014-04-05 11:22:55 ----A---- C:\Windows\system32\jscript.dll 2014-04-05 11:22:52 ----A---- C:\Windows\system32\oleaut32.dll 2014-04-05 11:22:51 ----A---- C:\Windows\system32\mfc40u.dll 2014-04-05 11:22:51 ----A---- C:\Windows\system32\mfc40.dll 2014-04-05 11:22:49 ----A---- C:\Windows\system32\rtutils.dll 2014-04-05 11:22:42 ----A---- C:\Windows\system32\Apphlpdm.dll 2014-04-05 11:22:41 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll 2014-04-05 11:22:34 ----A---- C:\Windows\system32\wmpmde.dll 2014-04-05 11:22:31 ----A---- C:\Windows\system32\EncDec.dll 2014-04-05 11:22:30 ----A---- C:\Windows\system32\sbeio.dll 2014-04-05 11:22:30 ----A---- C:\Windows\system32\sbe.dll 2014-04-05 11:22:25 ----A---- C:\Windows\system32\quartz.dll 2014-04-05 11:22:21 ----A---- C:\Windows\system32\shell32.dll 2014-04-05 11:22:20 ----A---- C:\Windows\system32\shlwapi.dll 2014-04-05 11:22:17 ----A---- C:\Windows\system32\taskschd.dll 2014-04-05 11:22:17 ----A---- C:\Windows\system32\schedsvc.dll 2014-04-05 11:22:16 ----A---- C:\Windows\system32\wmicmiplugin.dll 2014-04-05 11:22:16 ----A---- C:\Windows\system32\taskeng.exe 2014-04-05 11:22:16 ----A---- C:\Windows\system32\taskcomp.dll 2014-04-05 11:22:12 ----A---- C:\Windows\system32\inetcomm.dll 2014-04-05 11:22:09 ----A---- C:\Windows\system32\wersvc.dll 2014-04-05 11:22:09 ----A---- C:\Windows\system32\Faultrep.dll 2014-04-05 11:22:06 ----A---- C:\Windows\system32\msxml3.dll 2014-04-05 11:22:03 ----A---- C:\Windows\system32\consent.exe 2014-04-05 11:22:00 ----A---- C:\Windows\system32\emdmgmt.dll 2014-04-05 11:22:00 ----A---- C:\Windows\system32\drivers\nwifi.sys 2014-04-05 11:22:00 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2014-04-05 11:22:00 ----A---- C:\Windows\system32\dataclen.dll 2014-04-05 11:21:59 ----A---- C:\Windows\system32\cdd.dll 2014-04-05 11:21:55 ----A---- C:\Windows\system32\tzres.dll 2014-04-05 11:21:31 ----A---- C:\Windows\system32\wshext.dll 2014-04-05 11:21:31 ----A---- C:\Windows\system32\wscript.exe 2014-04-05 11:21:31 ----A---- C:\Windows\system32\scrobj.dll 2014-04-05 11:21:31 ----A---- C:\Windows\system32\cscript.exe 2014-04-05 11:21:30 ----A---- C:\Windows\system32\scrrun.dll 2014-04-05 11:21:27 ----A---- C:\Windows\system32\kernel32.dll 2014-04-05 11:21:23 ----A---- C:\Windows\system32\winsrv.dll 2014-04-05 11:21:23 ----A---- C:\Windows\system32\csrsrv.dll 2014-04-05 11:21:19 ----A---- C:\Windows\system32\mstscax.dll 2014-04-05 11:21:18 ----A---- C:\Windows\system32\mstsc.exe 2014-04-05 11:21:14 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-04-05 11:21:11 ----A---- C:\Windows\system32\comctl32.dll 2014-04-05 11:21:05 ----A---- C:\Windows\system32\occache.dll 2014-04-05 11:21:05 ----A---- C:\Windows\system32\mshtml.dll 2014-04-05 11:21:05 ----A---- C:\Windows\system32\ieframe.dll 2014-04-05 11:21:04 ----A---- C:\Windows\system32\wininet.dll 2014-04-05 11:21:04 ----A---- C:\Windows\system32\urlmon.dll 2014-04-05 11:21:03 ----A---- C:\Windows\system32\msfeeds.dll 2014-04-05 11:21:03 ----A---- C:\Windows\system32\ieapfltr.dll 2014-04-05 11:21:02 ----A---- C:\Windows\system32\mshtmled.dll 2014-04-05 11:21:02 ----A---- C:\Windows\system32\iertutil.dll 2014-04-05 11:21:02 ----A---- C:\Windows\system32\iepeers.dll 2014-04-05 11:21:02 ----A---- C:\Windows\system32\iedkcs32.dll 2014-04-05 11:21:01 ----A---- C:\Windows\system32\ieUnatt.exe 2014-04-05 11:21:01 ----A---- C:\Windows\system32\ieencode.dll 2014-04-05 11:21:01 ----A---- C:\Windows\system32\ieaksie.dll 2014-04-05 11:21:00 ----A---- C:\Windows\system32\mstime.dll 2014-04-05 11:21:00 ----A---- C:\Windows\system32\jsproxy.dll 2014-04-05 11:12:40 ----A---- C:\Windows\system32\schannel.dll 2014-04-04 15:13:10 ----D---- C:\Windows\system32\STRING 2014-04-04 15:13:10 ----A---- C:\Windows\system32\CNMNPUI.DLL 2014-04-04 15:13:09 ----A---- C:\Windows\system32\CNMNPPM.DLL 2014-04-04 14:58:46 ----HD---- C:\ProgramData\CanonIJMyPrinter 2014-04-04 14:48:09 ----D---- C:\Users\Kati\AppData\Roaming\Canon 2014-04-04 14:48:03 ----HD---- C:\ProgramData\CanonIJQuickMenu 2014-04-04 14:42:35 ----D---- C:\ProgramData\CanonIJWSpt 2014-04-04 14:32:29 ----HD---- C:\Program Files\CanonBJ 2014-04-04 14:27:07 ----HD---- C:\ProgramData\CanonBJ 2014-04-04 14:23:32 ----A---- C:\Windows\system32\CNMLMBU.DLL 2014-04-04 14:18:36 ----D---- C:\Program Files\Microsoft.NET 2014-04-04 14:16:25 ----A---- C:\Windows\system32\PresentationHostProxy.dll 2014-04-04 14:16:25 ----A---- C:\Windows\system32\PresentationHost.exe 2014-04-04 14:16:25 ----A---- C:\Windows\system32\netfxperf.dll 2014-04-04 14:16:25 ----A---- C:\Windows\system32\mscoree.dll 2014-04-04 14:16:24 ----A---- C:\Windows\system32\dfshim.dll 2014-04-04 14:15:41 ----A---- C:\Windows\system32\CNHMCA.dll 2014-04-04 14:15:41 ----A---- C:\Windows\system32\CNC_BUL.dll 2014-04-04 14:15:41 ----A---- C:\Windows\system32\CNC_BUI.dll 2014-04-04 14:15:41 ----A---- C:\Windows\system32\CNC_BUC.dll 2014-04-04 14:01:40 ----D---- C:\ProgramData\CanonIJPLM 2014-04-04 13:56:36 ----HD---- C:\ProgramData\CanonIJETV 2014-04-04 13:55:19 ----D---- C:\Program Files\Canon 2014-04-04 12:16:55 ----A---- C:\Windows\system32\SPWizUI.dll 2014-04-04 12:16:55 ----A---- C:\Windows\system32\SPReview.exe 2014-04-04 11:47:44 ----A---- C:\Windows\system32\sdspres.dll 2014-04-04 11:47:37 ----A---- C:\Windows\system32\recdisc.exe 2014-04-04 11:46:44 ----A---- C:\Windows\system32\vsp1cln.exe 2014-04-04 11:46:30 ----A---- C:\Windows\system32\spp.dll 2014-04-04 11:46:28 ----A---- C:\Windows\system32\sxproxy.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\NAPMONTR.DLL 2014-04-04 11:41:26 ----A---- C:\Windows\system32\napipsec.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\NapiNSP.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\NAPHLPR.DLL 2014-04-04 11:41:26 ----A---- C:\Windows\system32\napdsnap.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\NAPCRYPT.DLL 2014-04-04 11:41:26 ----A---- C:\Windows\system32\Mystify.scr 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mydocs.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mycomput.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\MuiUnattend.exe 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mtxoci.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mtxlegih.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mtxdm.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mtxclu.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mtstocom.exe 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msxbde40.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msvbvm60.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msutb.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mstlsapi.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mstext40.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mstask.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\mssha.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msscp.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msrepl40.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msrdc.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msrd3x40.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msrating.dll 2014-04-04 11:41:26 ----A---- C:\Windows\system32\msra.exe 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\mup.sys 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\mstee.sys 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\mssmbios.sys 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\msrpc.sys 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\mspqm.sys 2014-04-04 11:41:26 ----A---- C:\Windows\system32\drivers\mspclock.sys 2014-04-04 11:41:25 ----A---- C:\Windows\system32\mswsock.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\mswmdm.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\MSVidCtl.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msvcrt.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msftedit.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msfeedssync.exe 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msfeedsbs.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msexcl40.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msdtcVSp1res.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msdtcuiu.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\msdtctm.dll 2014-04-04 11:41:25 ----A---- C:\Windows\system32\drivers\msfs.sys 2014-04-04 11:41:23 ----A---- C:\Windows\system32\mshta.exe 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdtclog.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdtckrm.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdtc.exe 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdt.exe 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdelta.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdart.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msdadiag.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\msctfui.dll 2014-04-04 11:41:23 ----A---- C:\Windows\system32\MsCtfMonitor.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\mspbde40.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\mspatcha.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\mspaint.exe 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msorcl32.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msoert2.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msoeacct.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msobjs.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msnetobj.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL 2014-04-04 11:41:22 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL 2014-04-04 11:41:22 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msmmsp.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msltus40.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msls31.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msjtes40.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msihnd.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msiexec.exe 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msieftp.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msidle.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msident.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msidcrl30.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msi.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msdt.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msdri.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\msdmo.dll 2014-04-04 11:41:22 ----A---- C:\Windows\system32\drivers\mskssrv.sys 2014-04-04 11:41:21 ----A---- C:\Windows\system32\msjetoledb40.dll 2014-04-04 11:41:21 ----A---- C:\Windows\system32\msjet40.dll 2014-04-04 11:41:21 ----A---- C:\Windows\system32\msisip.dll 2014-04-04 11:41:21 ----A---- C:\Windows\system32\msimtf.dll 2014-04-04 11:41:21 ----A---- C:\Windows\system32\drivers\msiscsi.sys 2014-04-04 11:41:21 ----A---- C:\Windows\system32\drivers\msisadrv.sys 2014-04-04 11:41:20 ----A---- C:\Windows\system32\msinfo32.exe 2014-04-04 11:41:19 ----A---- C:\Windows\system32\notepad.exe 2014-04-04 11:41:19 ----A---- C:\Windows\system32\Nlsdl.dll 2014-04-04 11:41:19 ----A---- C:\Windows\system32\drivers\npfs.sys 2014-04-04 11:41:19 ----A---- C:\Windows\notepad.exe 2014-04-04 11:41:15 ----A---- C:\Windows\system32\nlsbres.dll 2014-04-04 11:41:15 ----A---- C:\Windows\system32\nlmgp.dll 2014-04-04 11:41:13 ----A---- C:\Windows\system32\odbcconf.dll 2014-04-04 11:41:13 ----A---- C:\Windows\system32\odbcbcp.dll 2014-04-04 11:41:13 ----A---- C:\Windows\system32\ocsetup.exe 2014-04-04 11:41:13 ----A---- C:\Windows\system32\objsel.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\odbctrac.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\odbcjt32.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\odbccu32.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\odbccr32.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\odbccp32.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntvdm.exe 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntshrui.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntprint.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntmarta.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntlanman.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\ntdsapi.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\nslookup.exe 2014-04-04 11:41:12 ----A---- C:\Windows\system32\nsisvc.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\nsi.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\nshipsec.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\netcenter.dll 2014-04-04 11:41:12 ----A---- C:\Windows\system32\drivers\null.sys 2014-04-04 11:41:12 ----A---- C:\Windows\system32\drivers\ntfs.sys 2014-04-04 11:41:12 ----A---- C:\Windows\system32\drivers\nsiproxy.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netiougc.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netid.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netdiagfx.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netcorehc.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netcfgx.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netcfg.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\netbtugc.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\net1.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\net.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ndfetw.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ndfapi.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ncsi.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ncryptui.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ncrypt.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\ncobjapi.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\nci.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\NcdProp.dll 2014-04-04 11:41:11 ----A---- C:\Windows\system32\nbtstat.exe 2014-04-04 11:41:11 ----A---- C:\Windows\system32\NAPSTAT.EXE 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\netio.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\netbt.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\netbios.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\ndproxy.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\ndiswan.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\ndisuio.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\ndistapi.sys 2014-04-04 11:41:11 ----A---- C:\Windows\system32\drivers\ndis.sys 2014-04-04 11:41:10 ----A---- C:\Windows\system32\nlasvc.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\nlaapi.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\networkmap.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\networkitemfactory.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\networkexplorer.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\netprof.dll 2014-04-04 11:41:10 ----A---- C:\Windows\system32\Netplwiz.exe 2014-04-04 11:41:10 ----A---- C:\Windows\system32\netman.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\netshell.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\NetProjW.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\netprofm.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\netplwiz.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\netlogon.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\mblctr.exe 2014-04-04 11:41:09 ----A---- C:\Windows\system32\makecab.exe 2014-04-04 11:41:09 ----A---- C:\Windows\system32\luainstall.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\lsmproxy.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\lsm.exe 2014-04-04 11:41:09 ----A---- C:\Windows\system32\logman.exe 2014-04-04 11:41:09 ----A---- C:\Windows\system32\loghours.dll 2014-04-04 11:41:09 ----A---- C:\Windows\system32\lodctr.exe 2014-04-04 11:41:09 ----A---- C:\Windows\system32\drivers\luafv.sys 2014-04-04 11:41:08 ----A---- C:\Windows\system32\MFWMAAEC.DLL 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mfvdsp.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mfplat.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mfcsubs.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\MediaMetadataHandler.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\MdSched.exe 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mdminst.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\McxDriv.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\Mcx2Svc.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mcmde.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\mcbuilder.exe 2014-04-04 11:41:08 ----A---- C:\Windows\system32\lpremove.exe 2014-04-04 11:41:08 ----A---- C:\Windows\system32\lpksetup.exe 2014-04-04 11:41:08 ----A---- C:\Windows\system32\LogonUI.exe 2014-04-04 11:41:08 ----A---- C:\Windows\system32\logon.scr 2014-04-04 11:41:08 ----A---- C:\Windows\system32\localui.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\localsec.dll 2014-04-04 11:41:08 ----A---- C:\Windows\system32\drivers\mcd.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\loadperf.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\lnkstub.exe 2014-04-04 11:41:07 ----A---- C:\Windows\system32\lltdsvc.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\lltdapi.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\licmgr10.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\l2nacp.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\l2gpstore.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ktmw32.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ktmutil.exe 2014-04-04 11:41:07 ----A---- C:\Windows\system32\KMSVC.DLL 2014-04-04 11:41:07 ----A---- C:\Windows\system32\keymgr.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\kdusb.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\kdcom.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\KBDKOR.DLL 2014-04-04 11:41:07 ----A---- C:\Windows\system32\KBDJPN.DLL 2014-04-04 11:41:07 ----A---- C:\Windows\system32\itss.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iscsiwmi.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iscsium.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iscsilog.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iscsiexe.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iscsied.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ipsmsnap.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ipsecsnp.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iprtrmgr.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\iprtprio.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ipnathlp.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\IPHLPAPI.DLL 2014-04-04 11:41:07 ----A---- C:\Windows\system32\ipconfig.exe 2014-04-04 11:41:07 ----A---- C:\Windows\system32\IPBusEnum.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\inseng.dll 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\lltdio.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\ks.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\kbdhid.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\kbdclass.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\irenum.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\irda.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\ipnat.sys 2014-04-04 11:41:07 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys 2014-04-04 11:41:06 ----A---- C:\Windows\system32\MPSSVC.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mprmsg.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mprdim.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mprddm.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mprapi.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mpr.dll 2014-04-04 11:41:06 ----A---- C:\Windows\system32\MPG4DECD.DLL 2014-04-04 11:41:06 ----A---- C:\Windows\system32\mountvol.exe 2014-04-04 11:41:06 ----A---- C:\Windows\system32\drivers\mpsdrv.sys 2014-04-04 11:41:06 ----A---- C:\Windows\system32\drivers\mountmgr.sys 2014-04-04 11:41:06 ----A---- C:\Windows\system32\drivers\mouhid.sys 2014-04-04 11:41:06 ----A---- C:\Windows\system32\drivers\mouclass.sys 2014-04-04 11:41:05 ----A---- C:\Windows\system32\mscandui.dll 2014-04-04 11:41:05 ----A---- C:\Windows\system32\MP43DECD.DLL 2014-04-04 11:41:05 ----A---- C:\Windows\system32\MP3DMOD.DLL 2014-04-04 11:41:04 ----A---- C:\Windows\system32\msctf.dll 2014-04-04 11:41:04 ----A---- C:\Windows\system32\msconfig.exe 2014-04-04 11:41:04 ----A---- C:\Windows\system32\mscms.dll 2014-04-04 11:41:03 ----A---- C:\Windows\system32\msacm32.dll 2014-04-04 11:41:03 ----A---- C:\Windows\system32\MSAC3ENC.DLL 2014-04-04 11:41:03 ----A---- C:\Windows\system32\msaatext.dll 2014-04-04 11:41:03 ----A---- C:\Windows\system32\drivers\mrxdav.sys 2014-04-04 11:41:02 ----A---- C:\Windows\system32\mmcshext.dll 2014-04-04 11:41:02 ----A---- C:\Windows\system32\mmcndmgr.dll 2014-04-04 11:41:02 ----A---- C:\Windows\system32\mmcbase.dll 2014-04-04 11:41:02 ----A---- C:\Windows\system32\mmc.exe 2014-04-04 11:41:01 ----A---- C:\Windows\system32\modemui.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\mobsync.exe 2014-04-04 11:41:01 ----A---- C:\Windows\system32\MMDevAPI.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\mmcss.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\mlang.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\milcore.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\migisol.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\MigAutoPlay.exe 2014-04-04 11:41:01 ----A---- C:\Windows\system32\midimap.dll 2014-04-04 11:41:01 ----A---- C:\Windows\system32\drivers\modem.sys 2014-04-04 11:41:00 ----A---- C:\Windows\system32\shrink.dll 2014-04-04 11:41:00 ----A---- C:\Windows\system32\shimgvw.dll 2014-04-04 11:41:00 ----A---- C:\Windows\system32\shgina.dll 2014-04-04 11:41:00 ----A---- C:\Windows\system32\seclogon.dll 2014-04-04 11:41:00 ----A---- C:\Windows\system32\SecEdit.exe 2014-04-04 11:41:00 ----A---- C:\Windows\system32\sdshext.dll 2014-04-04 11:41:00 ----A---- C:\Windows\system32\sdrsvc.dll 2014-04-04 11:40:59 ----A---- C:\Windows\system32\shwebsvc.dll 2014-04-04 11:40:59 ----A---- C:\Windows\system32\shutdown.exe 2014-04-04 11:40:59 ----A---- C:\Windows\system32\shsetup.dll 2014-04-04 11:40:59 ----A---- C:\Windows\system32\shrpubw.exe 2014-04-04 11:40:59 ----A---- C:\Windows\system32\shacct.dll 2014-04-04 11:40:58 ----A---- C:\Windows\system32\softkbd.dll 2014-04-04 11:40:58 ----A---- C:\Windows\system32\SnippingTool.exe 2014-04-04 11:40:58 ----A---- C:\Windows\system32\SndVol.exe 2014-04-04 11:40:58 ----A---- C:\Windows\system32\smss.exe 2014-04-04 11:40:58 ----A---- C:\Windows\system32\SmiInstaller.dll 2014-04-04 11:40:58 ----A---- C:\Windows\system32\shdocvw.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SmiEngine.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SMBHelperClass.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\slwmi.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\slwga.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLUINotify.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLUI.exe 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLsvc.exe 2014-04-04 11:40:57 ----A---- C:\Windows\system32\slmgr.vbs 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLLUA.exe 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLCommDlg.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\slcinst.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLCExt.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\slcc.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\SLC.dll 2014-04-04 11:40:57 ----A---- C:\Windows\system32\drivers\smclib.sys 2014-04-04 11:40:57 ----A---- C:\Windows\system32\drivers\smb.sys 2014-04-04 11:40:56 ----A---- C:\Windows\system32\sfc_os.dll 2014-04-04 11:40:56 ----A---- C:\Windows\system32\sfc.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\setupugc.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\setupSNK.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\setupcln.dll 2014-04-04 11:40:56 ----A---- C:\Windows\system32\setupcl.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\setupapi.dll 2014-04-04 11:40:56 ----A---- C:\Windows\system32\sethc.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\SessEnv.dll 2014-04-04 11:40:56 ----A---- C:\Windows\system32\services.exe 2014-04-04 11:40:56 ----A---- C:\Windows\system32\serialui.dll 2014-04-04 11:40:56 ----A---- C:\Windows\system32\drivers\sermouse.sys 2014-04-04 11:40:56 ----A---- C:\Windows\system32\drivers\serial.sys 2014-04-04 11:40:55 ----A---- C:\Windows\system32\Sens.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\sendmail.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\powrprof.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\pnrpnsp.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\PNPXAssocPrx.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\PNPXAssoc.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\PnPutil.exe 2014-04-04 11:40:55 ----A---- C:\Windows\system32\PnPUnattend.exe 2014-04-04 11:40:55 ----A---- C:\Windows\system32\pnpui.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\pnidui.dll 2014-04-04 11:40:55 ----A---- C:\Windows\system32\drivers\serenum.sys 2014-04-04 11:40:54 ----A---- C:\Windows\system32\QAGENT.DLL 2014-04-04 11:40:54 ----A---- C:\Windows\system32\puiobj.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\puiapi.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\PSHED.DLL 2014-04-04 11:40:54 ----A---- C:\Windows\system32\psbase.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\provthrd.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\profsvc.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\profprov.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\procinst.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\prntvpt.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\prnntfy.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\printui.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\prevhost.exe 2014-04-04 11:40:54 ----A---- C:\Windows\system32\PresentationSettings.exe 2014-04-04 11:40:54 ----A---- C:\Windows\system32\powercpl.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pots.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pnpts.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pnpsetup.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pngfilt.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pcasvc.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\pcadm.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\p2psvc.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\p2pnetsh.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\p2phost.exe 2014-04-04 11:40:54 ----A---- C:\Windows\system32\P2PGraph.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\p2pcollab.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\P2P.dll 2014-04-04 11:40:54 ----A---- C:\Windows\system32\drivers\portcls.sys 2014-04-04 11:40:54 ----A---- C:\Windows\system32\drivers\pciide.sys 2014-04-04 11:40:54 ----A---- C:\Windows\system32\drivers\pci.sys 2014-04-04 11:40:53 ----A---- C:\Windows\system32\pcaui.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\osblprov.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\osbaseln.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\OptionalFeatures.exe 2014-04-04 11:40:53 ----A---- C:\Windows\system32\oobefldr.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\olethk32.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\olesvr32.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\olepro32.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\oleprn.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\oledlg.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\olecli32.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\oleacc.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\ogldrv.dll 2014-04-04 11:40:53 ----A---- C:\Windows\system32\drivers\parvdm.sys 2014-04-04 11:40:53 ----A---- C:\Windows\system32\drivers\partmgr.sys 2014-04-04 11:40:53 ----A---- C:\Windows\system32\drivers\parport.sys 2014-04-04 11:40:53 ----A---- C:\Windows\system32\drivers\ohci1394.sys 2014-04-04 11:40:52 ----A---- C:\Windows\system32\pla.dll 2014-04-04 11:40:52 ----A---- C:\Windows\system32\PkgMgr.exe 2014-04-04 11:40:52 ----A---- C:\Windows\system32\PING.EXE 2014-04-04 11:40:52 ----A---- C:\Windows\system32\pidgenx.dll 2014-04-04 11:40:52 ----A---- C:\Windows\system32\photowiz.dll 2014-04-04 11:40:52 ----A---- C:\Windows\system32\PhotoScreensaver.scr 2014-04-04 11:40:52 ----A---- C:\Windows\system32\onex.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\RstrtMgr.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\rshx32.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\rsaenh.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\PlaySndSrv.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\perfts.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\perfnet.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\perfmon.msc 2014-04-04 11:40:51 ----A---- C:\Windows\system32\perfmon.exe 2014-04-04 11:40:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\pdhui.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\pdh.dll 2014-04-04 11:40:51 ----A---- C:\Windows\system32\drivers\rspndr.sys 2014-04-04 11:40:51 ----A---- C:\Windows\system32\drivers\pciidex.sys 2014-04-04 11:40:50 ----A---- C:\Windows\system32\samsrv.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\samlib.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\runonce.exe 2014-04-04 11:40:50 ----A---- C:\Windows\system32\rtm.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\RpcPing.exe 2014-04-04 11:40:50 ----A---- C:\Windows\system32\rpchttp.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\Robocopy.exe 2014-04-04 11:40:50 ----A---- C:\Windows\system32\riched32.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\riched20.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\Ribbons.scr 2014-04-04 11:40:50 ----A---- C:\Windows\system32\rgb9rast.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\resutils.dll 2014-04-04 11:40:50 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL 2014-04-04 11:40:50 ----A---- C:\Windows\system32\drivers\rootmdm.sys 2014-04-04 11:40:50 ----A---- C:\Windows\system32\drivers\RNDISMP.sys 2014-04-04 11:40:49 ----A---- C:\Windows\system32\sdengin2.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\sdchange.exe 2014-04-04 11:40:49 ----A---- C:\Windows\system32\scksp.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\schtasks.exe 2014-04-04 11:40:49 ----A---- C:\Windows\system32\scesrv.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\scecli.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\SCardSvr.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\scansetting.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\sbunattend.exe 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rasdlg.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rasdiag.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rasctrs.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rascfg.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rasauto.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\rasapi32.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\RacAgent.exe 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qwave.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\QUTIL.DLL 2014-04-04 11:40:49 ----A---- C:\Windows\system32\Query.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\QSVRMGMT.DLL 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qmgr.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qedit.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qdvd.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qdv.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\QCLIPROV.DLL 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qcap.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\qasf.dll 2014-04-04 11:40:49 ----A---- C:\Windows\system32\QAGENTRT.DLL 2014-04-04 11:40:49 ----A---- C:\Windows\system32\drivers\scsiport.sys 2014-04-04 11:40:49 ----A---- C:\Windows\system32\drivers\rasacd.sys 2014-04-04 11:40:49 ----A---- C:\Windows\system32\drivers\qwavedrv.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\remotepg.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\RelMon.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rekeywiz.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\regsvc.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\regini.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\RegCtrl.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\regapi.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\reg.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rdrleakdiag.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rdpwsx.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rdpencom.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\RDPENCDD.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rdpdd.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rdpcfgex.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rastapi.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasqec.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasppp.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasplap.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasphone.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasmontr.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\RASMM.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasmans.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasman.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\rasgcw.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\raserver.exe 2014-04-04 11:40:48 ----A---- C:\Windows\system32\QSHVHOST.DLL 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\rdpwd.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\RDPENCDD.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\RDPCDD.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\rdbss.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\rassstp.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\raspptp.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\raspppoe.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\drivers\rasl2tp.sys 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3dim700.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3dim.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3d9.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3d8.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3d10core.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3d10_1core.dll 2014-04-04 11:40:48 ----A---- C:\Windows\system32\d3d10_1.dll 2014-04-04 11:40:48 ----A---- C:\Windows\regedit.exe 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dinput8.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dimsroam.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dimsjob.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\diantz.exe 2014-04-04 11:40:47 ----A---- C:\Windows\system32\devenum.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\Defrag.exe 2014-04-04 11:40:47 ----A---- C:\Windows\system32\ddraw.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dbnetlib.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dbghelp.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\dbgeng.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\d3dxof.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\d3d10.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\csrstub.exe 2014-04-04 11:40:47 ----A---- C:\Windows\system32\csrss.exe 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cscdll.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cscapi.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cryptui.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cryptsvc.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cryptnet.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\cryptdll.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\crypt32.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\credui.dll 2014-04-04 11:40:47 ----A---- C:\Windows\system32\credssp.dll 2014-04-04 11:40:46 ----A---- C:\Windows\system32\drivers\Diskdump.sys 2014-04-04 11:40:46 ----A---- C:\Windows\system32\drivers\disk.sys 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dispex.dll 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dispdiag.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dispci.dll 2014-04-04 11:40:46 ----A---- C:\Windows\system32\diskraid.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\diskpart.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dfsr.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dfrgui.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\DfrgNtfs.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dfrgifc.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dfrgfat.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\DFDWiz.exe 2014-04-04 11:40:46 ----A---- C:\Windows\system32\dfdts.dll 2014-04-04 11:40:46 ----A---- C:\Windows\system32\devmgr.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\diagperf.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\dhcpsapi.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\DHCPQEC.DLL 2014-04-04 11:40:45 ----A---- C:\Windows\system32\dhcpcsvc6.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\dhcpcsvc.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\DfsShlEx.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmmon32.exe 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmlua.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmipnpinstall.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmifw.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmicryptinstall.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmdl32.exe 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmdial32.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmd.exe 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cmcfg32.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\clusapi.dll 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cipher.exe 2014-04-04 11:40:45 ----A---- C:\Windows\system32\cic.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\drivers\crashdmp.sys 2014-04-04 11:40:44 ----A---- C:\Windows\system32\drivers\Classpnp.sys 2014-04-04 11:40:44 ----A---- C:\Windows\system32\corpol.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\convert.exe 2014-04-04 11:40:44 ----A---- C:\Windows\system32\conime.exe 2014-04-04 11:40:44 ----A---- C:\Windows\system32\comuid.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\comsvcs.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\comsnap.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\comres.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\comrepl.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\ComputerDefaults.exe 2014-04-04 11:40:44 ----A---- C:\Windows\system32\compstui.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\CompMgmtLauncher.exe 2014-04-04 11:40:44 ----A---- C:\Windows\system32\CompatUI.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\colorui.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\COLORCNV.DLL 2014-04-04 11:40:44 ----A---- C:\Windows\system32\colbact.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\cofiredm.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\cmstplua.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\cmstp.exe 2014-04-04 11:40:44 ----A---- C:\Windows\system32\cmpbk32.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\clfsw32.dll 2014-04-04 11:40:44 ----A---- C:\Windows\system32\clfs.sys 2014-04-04 11:40:44 ----A---- C:\Windows\system32\clbcatq.dll 2014-04-04 11:40:43 ----A---- C:\Windows\system32\esentutl.exe 2014-04-04 11:40:43 ----A---- C:\Windows\system32\esentprf.dll 2014-04-04 11:40:43 ----A---- C:\Windows\system32\esent.dll 2014-04-04 11:40:43 ----A---- C:\Windows\system32\els.dll 2014-04-04 11:40:43 ----A---- C:\Windows\system32\comdlg32.dll 2014-04-04 11:40:43 ----A---- C:\Windows\system32\cmutil.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fmifs.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\filemgmt.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\feclient.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fdWSD.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fdWCN.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fdSSDP.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fdPHost.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fdeploy.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\fde.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\EncDump.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\efsadu.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\eapsvc.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\EAPQEC.DLL 2014-04-04 11:40:42 ----A---- C:\Windows\system32\eappprxy.dll 2014-04-04 11:40:42 ----A---- C:\Windows\system32\drivers\fltMgr.sys 2014-04-04 11:40:42 ----A---- C:\Windows\system32\drivers\filetrace.sys 2014-04-04 11:40:42 ----A---- C:\Windows\system32\drivers\fileinfo.sys 2014-04-04 11:40:42 ----A---- C:\Windows\system32\drivers\ecache.sys 2014-04-04 11:40:41 ----A---- C:\Windows\system32\fontext.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\FirewallControlPanel.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\FirewallAPI.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\findstr.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\findnetprinters.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\f3ahvoas.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\extrac32.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\extmgr.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\ExplorerFrame.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\expand.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\evr.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\eventcls.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drmv2clt.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drmmgrtn.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drivers\fastfat.sys 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drivers\exfat.sys 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drivers\drmkaud.sys 2014-04-04 11:40:41 ----A---- C:\Windows\system32\drivers\drmk.sys 2014-04-04 11:40:41 ----A---- C:\Windows\system32\driverquery.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dpx.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dpapimig.exe 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3ui.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3svc.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3msm.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3gpui.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3gpclnt.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3dlg.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3cfg.dll 2014-04-04 11:40:41 ----A---- C:\Windows\system32\dot3api.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\eapphost.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\eappgnui.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\eappcfg.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\eapp3hst.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxva2.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxtrans.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxtmsft.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxgi.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxdiagn.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dxdiag.exe 2014-04-04 11:40:40 ----A---- C:\Windows\system32\DWWIN.EXE 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dwmredir.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dwmapi.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dwm.exe 2014-04-04 11:40:40 ----A---- C:\Windows\system32\drivers\dxg.sys 2014-04-04 11:40:40 ----A---- C:\Windows\system32\drivers\dxapi.sys 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dps.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dpnet.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\DpiScaling.exe 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dnshc.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmvdsitf.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmutil.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmusic.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmsynth.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmscript.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmocx.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmloader.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmime.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmdskres2.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmdskmgr.dll 2014-04-04 11:40:40 ----A---- C:\Windows\system32\dmdlgs.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\duser.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsuiext.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dssenh.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dssec.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsquery.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsprop.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsound.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dskquoui.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dskquota.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsdmo.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\dsauth.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drvstore.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drvinst.exe 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drivers\Dumpata.sys 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drivers\ataport.sys 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drivers\atapi.sys 2014-04-04 11:40:39 ----A---- C:\Windows\system32\drivers\asyncmac.sys 2014-04-04 11:40:39 ----A---- C:\Windows\system32\BFE.DLL 2014-04-04 11:40:39 ----A---- C:\Windows\system32\bcdedit.exe 2014-04-04 11:40:39 ----A---- C:\Windows\system32\batt.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\basesrv.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\basecsp.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AuthFWSnapin.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AuthFWGP.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\authfwcfg.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\Aurora.scr 2014-04-04 11:40:39 ----A---- C:\Windows\system32\auditpol.exe 2014-04-04 11:40:39 ----A---- C:\Windows\system32\audiosrv.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AudioSes.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AUDIOKSE.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AudioEng.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\audiodg.exe 2014-04-04 11:40:39 ----A---- C:\Windows\system32\audiodev.dll 2014-04-04 11:40:39 ----A---- C:\Windows\system32\AtBroker.exe 2014-04-04 11:40:39 ----A---- C:\Windows\system32\at.exe 2014-04-04 11:40:39 ----A---- C:\Windows\bfsvc.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\drivers\beep.sys 2014-04-04 11:40:38 ----A---- C:\Windows\system32\drivers\bdasup.sys 2014-04-04 11:40:38 ----A---- C:\Windows\system32\bitsadmin.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\bcrypt.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\bcdsrv.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\bcdprov.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\AzSqlExt.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\azroleui.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\azroles.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\avrt.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\autoplay.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\autofmt.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\autoconv.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\autochk.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\authz.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\authui.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\ACW.exe 2014-04-04 11:40:38 ----A---- C:\Windows\system32\actxprxy.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\activeds.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\ActiveContentWizard.dll 2014-04-04 11:40:38 ----A---- C:\Windows\system32\ActionQueue.dll 2014-04-04 11:40:37 ----A---- C:\Windows\system32\drivers\acpi.sys 2014-04-04 11:40:37 ----A---- C:\Windows\system32\drivers\1394bus.sys 2014-04-04 11:40:37 ----A---- C:\Windows\system32\apircl.dll 2014-04-04 11:40:37 ----A---- C:\Windows\system32\apds.dll 2014-04-04 11:40:37 ----A---- C:\Windows\system32\amstream.dll 2014-04-04 11:40:37 ----A---- C:\Windows\system32\aclui.dll 2014-04-04 11:40:37 ----A---- C:\Windows\system32\accessibilitycpl.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\drivers\bridge.sys 2014-04-04 11:40:36 ----A---- C:\Windows\system32\drivers\amdk8.sys 2014-04-04 11:40:36 ----A---- C:\Windows\system32\catsrvut.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\catsrv.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\capisp.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\cacls.exe 2014-04-04 11:40:36 ----A---- C:\Windows\system32\cabinet.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\Bubbles.scr 2014-04-04 11:40:36 ----A---- C:\Windows\system32\btpanui.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\BOOTVID.DLL 2014-04-04 11:40:36 ----A---- C:\Windows\system32\bootstr.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\apss.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\appinfo.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\apphelp.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\alg.exe 2014-04-04 11:40:36 ----A---- C:\Windows\system32\advpack.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\advapi32.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\adtschema.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\adsnt.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\adsmsext.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\adsldpc.dll 2014-04-04 11:40:36 ----A---- C:\Windows\system32\adsldp.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\drivers\cdrom.sys 2014-04-04 11:40:35 ----A---- C:\Windows\system32\certutil.exe 2014-04-04 11:40:35 ----A---- C:\Windows\system32\certreq.exe 2014-04-04 11:40:35 ----A---- C:\Windows\system32\certprop.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\certmgr.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\CertEnrollUI.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\CertEnrollCtrl.exe 2014-04-04 11:40:35 ----A---- C:\Windows\system32\CertEnroll.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\certcli.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\bthci.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\browseui.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\browser.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\bridgeunattend.exe 2014-04-04 11:40:35 ----A---- C:\Windows\system32\brcplsdw.dll 2014-04-04 11:40:35 ----A---- C:\Windows\system32\brcpl.dll 2014-04-04 11:40:34 ----A---- C:\Windows\system32\drivers\cdfs.sys 2014-04-04 11:40:34 ----A---- C:\Windows\system32\cfgmgr32.dll 2014-04-04 11:40:34 ----A---- C:\Windows\system32\cfgbkend.dll 2014-04-04 11:40:34 ----A---- C:\Windows\system32\cewmdm.dll 2014-04-04 11:40:34 ----A---- C:\Windows\system32\cdosys.dll 2014-04-04 11:40:33 ----A---- C:\Windows\system32\bootcfg.exe 2014-04-04 11:40:33 ----A---- C:\Windows\system32\blackbox.dll 2014-04-04 11:40:33 ----A---- C:\Windows\system32\bitsigd.dll 2014-04-04 11:40:31 ----A---- C:\Windows\system32\IMJP10K.DLL 2014-04-04 11:40:31 ----A---- C:\Windows\system32\imgutil.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\input.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\InkEd.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\InfDefaultInstall.exe 2014-04-04 11:40:30 ----A---- C:\Windows\system32\inetppui.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\inetpp.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\inetmib1.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\imapi2fs.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\imapi2.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\imapi.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\imagesp1.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\imagehlp.dll 2014-04-04 11:40:30 ----A---- C:\Windows\system32\IKEEXT.DLL 2014-04-04 11:40:29 ----A---- C:\Windows\system32\imm32.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\icaapi.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iassvcs.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iassdo.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iassam.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iasrad.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iaspolcy.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\IasMigPlugin.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iashlpr.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\iasacct.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\ias.dll 2014-04-04 11:40:29 ----A---- C:\Windows\system32\drivers\i8042prt.sys 2014-04-04 11:40:28 ----A---- C:\Windows\system32\ifsutil.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\ifmon.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\iexpress.exe 2014-04-04 11:40:28 ----A---- C:\Windows\system32\iesetup.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\iernonce.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\ieakeng.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\ie4uinit.exe 2014-04-04 11:40:28 ----A---- C:\Windows\system32\idndl.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\icsunattend.exe 2014-04-04 11:40:28 ----A---- C:\Windows\system32\icsfiltr.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\icm32.dll 2014-04-04 11:40:28 ----A---- C:\Windows\system32\iasnap.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\icfupgd.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\icardie.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\icacls.exe 2014-04-04 11:40:27 ----A---- C:\Windows\system32\HotStartUserAgent.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\hnetmon.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\hnetcfg.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\hlink.dll 2014-04-04 11:40:27 ----A---- C:\Windows\system32\drivers\hidusb.sys 2014-04-04 11:40:26 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2014-04-04 11:40:26 ----A---- C:\Windows\system32\fwcfg.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\fundisc.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\ftp.exe 2014-04-04 11:40:26 ----A---- C:\Windows\system32\fsutil.exe 2014-04-04 11:40:26 ----A---- C:\Windows\system32\fsmgmt.msc 2014-04-04 11:40:26 ----A---- C:\Windows\system32\framedynos.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\framedyn.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\framebuf.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\fphc.dll 2014-04-04 11:40:26 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2014-04-04 11:40:26 ----A---- C:\Windows\system32\drivers\fs_rec.sys 2014-04-04 11:40:26 ----A---- C:\Windows\fveupdate.exe 2014-04-04 11:40:25 ----A---- C:\Windows\system32\HelpPaneProxy.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\hbaapi.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\GuidedHelp.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\graftabl.com 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gpupdate.exe 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gpsvc.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gpresult.exe 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gpedit.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gpapi.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\getmac.exe 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gatherWiredInfo.vbs 2014-04-04 11:40:25 ----A---- C:\Windows\system32\gacinstall.dll 2014-04-04 11:40:25 ----A---- C:\Windows\system32\drivers\hidparse.sys 2014-04-04 11:40:25 ----A---- C:\Windows\system32\drivers\hidclass.sys 2014-04-04 11:40:25 ----A---- C:\Windows\system32\drivers\hdaudbus.sys 2014-04-04 11:40:25 ----A---- C:\Windows\HelpPane.exe 2014-04-04 11:40:20 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll 2014-04-04 11:40:20 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WLanConn.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wlancfg.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wisptis.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\winusb.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\winsta.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WINSRPC.DLL 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WinSCard.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WinSATAPI.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WinSAT.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wininit.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\WinFXDocObj.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\winethc.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiashext.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiaservc.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiascanprofiles.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiarpc.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiadss.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiadefui.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiaaut.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wiaacmgr.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\whealogr.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wfapigp.dll 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wextract.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wevtutil.exe 2014-04-04 11:40:19 ----A---- C:\Windows\system32\wevtsvc.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\winnsi.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\winmm.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\winlogon.exe 2014-04-04 11:40:18 ----A---- C:\Windows\system32\WebClnt.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\webcheck.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\wbemcomn.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\wavemsp.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\WavDest.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\waitfor.exe 2014-04-04 11:40:18 ----A---- C:\Windows\system32\w32tm.exe 2014-04-04 11:40:18 ----A---- C:\Windows\system32\w32time.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\VSSVC.exe 2014-04-04 11:40:18 ----A---- C:\Windows\system32\vsstrace.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\vssapi.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\vssadmin.exe 2014-04-04 11:40:18 ----A---- C:\Windows\system32\vss_ps.dll 2014-04-04 11:40:18 ----A---- C:\Windows\system32\drivers\watchdog.sys 2014-04-04 11:40:18 ----A---- C:\Windows\system32\drivers\wanarp.sys 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wship6.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wshcon.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wsecedit.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\WSDMon.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscsvc.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscproxystub.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscntfy.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscmisetup.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscisvif.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wscapi.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wpdbusenum.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wevtapi.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wermgr.exe 2014-04-04 11:40:17 ----A---- C:\Windows\system32\WerFaultSecure.exe 2014-04-04 11:40:17 ----A---- C:\Windows\system32\WerFault.exe 2014-04-04 11:40:17 ----A---- C:\Windows\system32\werdiagcontroller.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wercplsupport.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wercon.exe 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wer.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wdscore.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wdi.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wdc.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wcnwiz.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\wcncsvc.dll 2014-04-04 11:40:17 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys 2014-04-04 11:40:16 ----A---- C:\Windows\system32\xpssvcs.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\XPSSHHDR.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\xmlprovi.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\xmllite.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\xcopy.exe 2014-04-04 11:40:16 ----A---- C:\Windows\system32\xactsrv.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wzcdlg.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wvc.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wuwebv.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wusa.exe 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wups2.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wups.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wudriver.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WUDFx.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WUDFSvc.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WUDFPlatform.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WUDFCoinstaller.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wucltux.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wuaueng.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wsqmcons.exe 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wsock32.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wsnmp32.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WSHTCPIP.DLL 2014-04-04 11:40:16 ----A---- C:\Windows\system32\ws2_32.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpnpinst.exe 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpdwcn.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WPDSp.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WPDShServiceObj.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\WPDShextAutoplay.exe 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpdshext.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpd_ci.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpcsvc.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpclsp.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpccpl.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\wpcao.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\Wpc.dll 2014-04-04 11:40:16 ----A---- C:\Windows\system32\drivers\WUDFRd.sys 2014-04-04 11:40:16 ----A---- C:\Windows\system32\drivers\WUDFPf.sys 2014-04-04 11:40:15 ----A---- C:\Windows\system32\xwizards.dll 2014-04-04 11:40:15 ----A---- C:\Windows\system32\WUDFHost.exe 2014-04-04 11:40:15 ----A---- C:\Windows\system32\wuauclt.exe 2014-04-04 11:40:15 ----A---- C:\Windows\system32\wuapp.exe 2014-04-04 11:40:15 ----A---- C:\Windows\system32\wuapi.dll 2014-04-04 11:40:15 ----A---- C:\Windows\system32\wtsapi32.dll 2014-04-04 11:40:15 ----A---- C:\Windows\system32\wmidx.dll 2014-04-04 11:40:15 ----A---- C:\Windows\system32\drivers\wmilib.sys 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wow32.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMVXENCD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMVSENCD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMVSDECD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMVENCOD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmvdspa.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMVDECOD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMSPDMOE.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmpsrcwp.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmpshell.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmdrmsdk.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmdrmnet.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wmdrmdev.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMASF.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMADMOE.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WMADMOD.DLL 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlgpclnt.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\Wldap32.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlanui.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlanpref.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WlanMmHC.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WlanMM.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\WLanHC.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlangpui.dll 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlanext.exe 2014-04-04 11:40:14 ----A---- C:\Windows\system32\wlandlg.dll 2014-04-04 11:40:13 ----A---- C:\Windows\system32\WMPhoto.dll 2014-04-04 11:40:13 ----A---- C:\Windows\system32\WMPEncEn.dll 2014-04-04 11:40:13 ----A---- C:\Windows\system32\wmiprop.dll 2014-04-04 11:40:12 ----A---- C:\Windows\system32\wmpcm.dll 2014-04-04 11:40:11 ----A---- C:\Windows\system32\Tabbtn.dll 2014-04-04 11:40:11 ----A---- C:\Windows\system32\systeminfo.exe 2014-04-04 11:40:11 ----A---- C:\Windows\system32\systemcpl.dll 2014-04-04 11:40:09 ----A---- C:\Windows\system32\tcpmon.dll 2014-04-04 11:40:09 ----A---- C:\Windows\system32\tcpipcfg.dll 2014-04-04 11:40:09 ----A---- C:\Windows\system32\tbssvc.dll 2014-04-04 11:40:09 ----A---- C:\Windows\system32\tbs.dll 2014-04-04 11:40:09 ----A---- C:\Windows\system32\taskmgr.exe 2014-04-04 11:40:09 ----A---- C:\Windows\system32\tasklist.exe 2014-04-04 11:40:09 ----A---- C:\Windows\system32\taskkill.exe 2014-04-04 11:40:09 ----A---- C:\Windows\system32\drivers\tcpipreg.sys 2014-04-04 11:40:08 ----A---- C:\Windows\system32\tdh.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\tcpmon.ini 2014-04-04 11:40:08 ----A---- C:\Windows\system32\tapisrv.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\TapiMigPlugin.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\takeown.exe 2014-04-04 11:40:08 ----A---- C:\Windows\system32\tabcal.exe 2014-04-04 11:40:08 ----A---- C:\Windows\system32\TabbtnEx.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\sstpsvc.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\ssText3d.scr 2014-04-04 11:40:08 ----A---- C:\Windows\system32\SSShim.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\ssdpsrv.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\srwmi.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\srrstr.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\sqmapi.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\sqlsrv32.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\sqlcese30.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\sqlceqp30.dll 2014-04-04 11:40:08 ----A---- C:\Windows\system32\drivers\tdx.sys 2014-04-04 11:40:08 ----A---- C:\Windows\system32\drivers\tdtcp.sys 2014-04-04 11:40:08 ----A---- C:\Windows\system32\drivers\tdpipe.sys 2014-04-04 11:40:08 ----A---- C:\Windows\system32\drivers\tdi.sys 2014-04-04 11:40:08 ----A---- C:\Windows\system32\drivers\tape.sys 2014-04-04 11:40:07 ----A---- C:\Windows\system32\ssBranded.scr 2014-04-04 11:40:06 ----A---- C:\Windows\system32\SysFxUI.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\syncui.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\synceng.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\SyncCenter.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\sxstrace.exe 2014-04-04 11:40:06 ----A---- C:\Windows\system32\sxsstore.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\sxs.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\swprv.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spwizres.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spwizimg.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spwizeng.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\sppnp.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spopk.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spoolss.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\spbcd.dll 2014-04-04 11:40:06 ----A---- C:\Windows\system32\SoundRecorder.exe 2014-04-04 11:40:06 ----A---- C:\Windows\system32\drivers\spsys.sys 2014-04-04 11:40:06 ----A---- C:\Windows\system32\drivers\spldr.sys 2014-04-04 11:40:05 ----A---- C:\Windows\system32\sysmain.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\zipfldr.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\xwtpw32.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\VIDRESZR.DLL 2014-04-04 11:40:04 ----A---- C:\Windows\system32\vga64k.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\vga256.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\vga.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\userinit.exe 2014-04-04 11:40:04 ----A---- C:\Windows\system32\userenv.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\usercpl.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\user32.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\usbui.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\usbperf.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\usbmon.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\url.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\upnphost.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\upnpcont.exe 2014-04-04 11:40:04 ----A---- C:\Windows\system32\upnp.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\untfs.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\syssetup.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\syskey.exe 2014-04-04 11:40:04 ----A---- C:\Windows\system32\svchost.exe 2014-04-04 11:40:04 ----A---- C:\Windows\system32\sud.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\Storprop.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\stobject.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\sti_ci.dll 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\volsnap.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\volmgrx.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\volmgr.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\videoprt.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\vgapnp.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\vga.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbscan.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbprint.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbport.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbohci.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbhub.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbehci.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbd.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\USBCAMD.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\usb8023.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\swenum.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\stream.sys 2014-04-04 11:40:04 ----A---- C:\Windows\system32\drivers\Storport.sys 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vfwwdm32.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\version.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\verifier.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\verifier.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdsutil.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdsldr.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdsdyn.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdsbas.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vds_ps.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vds.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdmredir.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\vdmdbg.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\VAN.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\uxtheme.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\uxsms.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\uudf.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\Utilman.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\utildll.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\unlodctr.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\unbcl.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\unattendedjoin.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\unattend.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\umpnpmgr.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\umb.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\ulib.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\UIHub.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\ucsvc.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\txfw32.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\txflog.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TsWpfWrp.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TSTheme.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TSpkg.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\tsddd.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\tscupgrd.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\trkwks.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\tracerpt.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TpmInit.exe 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TMM.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\TimeDateMUICallback.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\thumbcache.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\themeui.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\themecpl.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\termsrv.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\termmgr.dll 2014-04-04 11:40:03 ----A---- C:\Windows\system32\drivers\umpass.sys 2014-04-04 11:40:03 ----A---- C:\Windows\system32\drivers\umbus.sys 2014-04-04 11:40:03 ----A---- C:\Windows\system32\drivers\udfs.sys 2014-04-04 11:40:03 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2014-04-04 11:40:03 ----A---- C:\Windows\system32\drivers\termdd.sys 2014-04-04 11:40:02 ----A---- C:\Windows\system32\UIAutomationCore.dll 2014-04-04 11:40:02 ----A---- C:\Windows\system32\UI0Detect.exe 2014-04-04 11:40:02 ----A---- C:\Windows\system32\ufat.dll 2014-04-04 11:40:02 ----A---- C:\Windows\system32\uexfat.dll 2014-04-04 11:40:02 ----A---- C:\Windows\system32\uDWM.dll 2014-04-04 11:36:57 ----A---- C:\Windows\system32\cbsra.exe 2014-04-04 11:35:56 ----D---- C:\cb63aa8c943d4fbf81f39b99 ======List of files/folders modified in the last 1 month====== 2014-04-24 11:09:08 ----D---- C:\Windows\Prefetch 2014-04-24 11:08:53 ----RD---- C:\Program Files 2014-04-24 11:08:50 ----D---- C:\Windows\Temp 2014-04-24 09:23:55 ----D---- C:\ProgramData\MFAData 2014-04-23 16:30:04 ----D---- C:\Windows\System32 2014-04-23 16:30:04 ----D---- C:\Windows\inf 2014-04-23 16:30:04 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-04-23 16:28:26 ----D---- C:\Windows\system32\drivers 2014-04-23 16:28:24 ----D---- C:\Windows 2014-04-23 16:06:16 ----SHD---- C:\Windows\Installer 2014-04-23 13:44:49 ----D---- C:\Windows\rescache 2014-04-23 13:09:36 ----D---- C:\Windows\system32\MRT 2014-04-23 13:09:32 ----D---- C:\Windows\Debug 2014-04-23 13:09:18 ----A---- C:\Windows\system32\mrt.exe 2014-04-23 13:09:07 ----D---- C:\Windows\winsxs 2014-04-23 12:56:15 ----SHD---- C:\System Volume Information 2014-04-23 12:04:04 ----D---- C:\Windows\system32\catroot2 2014-04-23 11:47:09 ----D---- C:\Program Files\Common Files\microsoft shared 2014-04-23 11:47:06 ----RSD---- C:\Windows\Fonts 2014-04-23 11:47:06 ----D---- C:\Windows\system32\wbem 2014-04-23 11:47:06 ----D---- C:\Windows\system32\nl-NL 2014-04-23 11:47:06 ----D---- C:\Windows\system32\drivers\UMDF 2014-04-23 11:46:59 ----D---- C:\Windows\system32\Msdtc 2014-04-23 11:46:59 ----D---- C:\Program Files\TuneUp Utilities 2014 2014-04-23 11:35:03 ----D---- C:\Windows\system32\config 2014-04-23 11:32:03 ----D---- C:\Windows\ShellNew 2014-04-23 11:31:21 ----D---- C:\Windows\Tasks 2014-04-23 11:31:21 ----D---- C:\Windows\system32\Tasks 2014-04-23 11:31:21 ----D---- C:\Windows\system32\spool 2014-04-23 11:31:21 ----D---- C:\Windows\system32\en-US 2014-04-23 11:31:20 ----D---- C:\Windows\system32\CodeIntegrity 2014-04-23 11:31:20 ----D---- C:\Windows\Minidump 2014-04-23 11:31:20 ----D---- C:\Windows\Microsoft.NET 2014-04-23 11:31:14 ----RSD---- C:\Windows\assembly 2014-04-23 11:30:56 ----D---- C:\Program Files\Mobistar Internet Everywhere 2014-04-23 11:29:39 ----D---- C:\Windows\registration 2014-04-23 11:29:33 ----D---- C:\Windows\servicing 2014-04-23 11:29:32 ----D---- C:\Windows\system32\oobe 2014-04-23 11:29:32 ----D---- C:\Windows\PolicyDefinitions 2014-04-23 11:29:32 ----D---- C:\Windows\ehome 2014-04-23 11:29:32 ----D---- C:\Program Files\Windows Sidebar 2014-04-23 11:29:32 ----D---- C:\Program Files\Windows Media Player 2014-04-23 11:29:32 ----D---- C:\Program Files\Windows Mail 2014-04-23 11:29:32 ----D---- C:\Program Files\Internet Explorer 2014-04-23 11:29:31 ----D---- C:\Windows\system32\XPSViewer 2014-04-23 11:29:31 ----D---- C:\Windows\system32\WCN 2014-04-23 11:29:30 ----D---- C:\Windows\IME 2014-04-23 11:29:29 ----D---- C:\Program Files\Common Files\System 2014-04-19 13:35:35 ----HD---- C:\ProgramData 2014-04-14 12:10:11 ----D---- C:\Windows\Panther 2014-04-14 12:10:11 ----D---- C:\Windows\Logs 2014-04-14 12:02:30 ----D---- C:\Windows\system32\catroot 2014-04-08 16:40:36 ----SD---- C:\ProgramData\Microsoft 2014-04-08 15:34:23 ----D---- C:\Windows\system32\zh-HK 2014-04-06 13:42:48 ----SHD---- C:\Boot 2014-04-06 11:42:38 ----D---- C:\Program Files\Common Files 2014-04-05 13:38:22 ----D---- C:\Program Files\Movie Maker 2014-04-05 13:38:12 ----D---- C:\Windows\AppPatch 2014-04-04 15:56:00 ----SD---- C:\Users\Kati\AppData\Roaming\Microsoft 2014-04-04 14:43:54 ----RSD---- C:\Windows\Media 2014-04-04 14:43:52 ----D---- C:\Windows\twain_32 2014-04-04 13:02:00 ----ASH---- C:\Program Files\desktop.ini 2014-04-04 12:52:18 ----D---- C:\Program Files\Windows Calendar 2014-04-04 12:52:13 ----D---- C:\Program Files\Windows Collaboration 2014-04-04 12:52:12 ----D---- C:\Program Files\Windows Journal 2014-04-04 12:52:11 ----D---- C:\Program Files\Windows Photo Gallery 2014-04-04 12:51:57 ----D---- C:\Program Files\Windows Defender 2014-04-04 12:51:54 ----D---- C:\Windows\MSAgent 2014-04-04 12:51:52 ----D---- C:\Windows\L2Schemas 2014-04-04 12:51:52 ----D---- C:\Windows\DigitalLocker 2014-04-04 12:51:49 ----D---- C:\Windows\system32\ko-KR 2014-04-04 12:51:49 ----D---- C:\Windows\system32\da-DK 2014-04-04 12:51:49 ----D---- C:\Windows\system32\com 2014-04-04 12:51:48 ----D---- C:\Windows\system32\it-IT 2014-04-04 12:51:48 ----D---- C:\Windows\system32\el-GR 2014-04-04 12:51:48 ----D---- C:\Windows\system32\de-DE 2014-04-04 12:51:46 ----D---- C:\Windows\system32\sysprep 2014-04-04 12:51:46 ----D---- C:\Windows\system32\migration 2014-04-04 12:51:34 ----D---- C:\Windows\system32\sv-SE 2014-04-04 12:51:34 ----D---- C:\Windows\system32\setup 2014-04-04 12:51:34 ----D---- C:\Windows\system32\ru-RU 2014-04-04 12:51:34 ----D---- C:\Windows\system32\ias 2014-04-04 12:51:34 ----D---- C:\Windows\system32\he-IL 2014-04-04 12:51:34 ----D---- C:\Windows\system32\fr-FR 2014-04-04 12:51:34 ----D---- C:\Windows\system32\AdvancedInstallers 2014-04-04 12:51:33 ----D---- C:\Windows\system32\SLUI 2014-04-04 12:51:33 ----D---- C:\Windows\system32\pt-PT 2014-04-04 12:51:33 ----D---- C:\Windows\system32\hu-HU 2014-04-04 12:51:33 ----D---- C:\Windows\system32\fi-FI 2014-04-04 12:51:33 ----D---- C:\Windows\system32\cs-CZ 2014-04-04 12:51:31 ----D---- C:\Windows\system32\zh-TW 2014-04-04 12:51:31 ----D---- C:\Windows\system32\zh-CN 2014-04-04 12:51:31 ----D---- C:\Windows\system32\pl-PL 2014-04-04 12:51:31 ----D---- C:\Windows\system32\manifeststore 2014-04-04 12:51:31 ----D---- C:\Windows\system32\ja-JP 2014-04-04 12:51:31 ----D---- C:\Windows\system32\es-ES 2014-04-04 12:51:29 ----D---- C:\Windows\system32\ro-RO 2014-04-04 12:51:28 ----D---- C:\Windows\system32\drivers\nl-NL 2014-04-04 12:51:24 ----D---- C:\Windows\system32\tr-TR 2014-04-04 12:51:20 ----D---- C:\Windows\system32\nb-NO 2014-04-04 12:51:13 ----D---- C:\Windows\system32\ar-SA 2014-04-04 12:51:09 ----D---- C:\Windows\system32\migwiz 2014-04-04 12:51:07 ----D---- C:\Windows\system32\pt-BR 2014-04-04 12:48:55 ----D---- C:\Windows\Boot 2014-04-04 12:48:52 ----D---- C:\Windows\system32\Boot 2014-04-04 12:30:30 ----A---- C:\Windows\system32\ifxcardm.dll 2014-04-04 12:30:19 ----A---- C:\Windows\system32\axaltocm.dll 2014-04-04 12:16:57 ----D---- C:\Windows\system32\uk-UA 2014-04-04 12:16:57 ----D---- C:\Windows\system32\th-TH 2014-04-04 12:16:57 ----D---- C:\Windows\system32\sr-Latn-CS 2014-04-04 12:16:57 ----D---- C:\Windows\system32\sl-SI 2014-04-04 12:16:57 ----D---- C:\Windows\system32\sk-SK 2014-04-04 12:16:56 ----D---- C:\Windows\system32\lv-LV 2014-04-04 12:16:56 ----D---- C:\Windows\system32\lt-LT 2014-04-04 12:16:56 ----D---- C:\Windows\system32\hr-HR 2014-04-04 12:16:56 ----D---- C:\Windows\system32\et-EE 2014-04-04 12:16:56 ----D---- C:\Windows\system32\bg-BG ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-11-25 149272] R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-10-31 222520] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-10-01 102712] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-10 27448] R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2013-11-25 120600] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-25 210712] R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-01-19 22808] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-11-01 176952] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-08-01 193848] R3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2010-12-30 72832] R3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [2013-12-16 12320] R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328] R3 XUIF;X10 USB Wireless Transceiver; C:\Windows\System32\Drivers\x10ufx2.sys [2006-11-30 27416] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-04-28 54632] S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2010-12-30 85632] S3 huawei_cdcecm;huawei_cdcecm; C:\Windows\system32\DRIVERS\ew_jucdcecm.sys [2010-12-30 51456] S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2010-12-30 26496] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 102912] S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 101248] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-18 35328] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-02-23 3782672] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2013-09-24 348008] R2 BBSvc;Bing Bar Update Service; C:\Program Files\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176] R2 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648] R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872] R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664] R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [2013-12-18 1742136] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-09-16 136176] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12 257928] S3 fsssvc;De service Windows Live Family Safety; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-09-16 136176] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-10-06 194032] S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] -----------------EOF----------------- -
Hallo, Sinds een week of twee begint mijn PC trager en trager te reageren. Daarom heeft mijn broer (Lauwers Alain)mij aangeraden om jullie hulp in te roepen. Hij heeft ook zijn laptop weer tiptop in orde gekregen dankzij jullie (Kape)Ik heb vista op mijn pc staan. De pc die ik gebruik is ongeveer 6 jaar oud. Hopelijk kunnen jullie mij helpen? Mvg Kati.
