Ga naar inhoud

Windows 7 Live Mail werkt wel maar zeer traag


Elkedage
 Delen

Aanbevolen berichten


  • Reacties 32
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

We zullen eerst eens nagaan of malware of virussen de oorzaak zijn van je probleem.

1. Download HijackThis.

Klik op HijackThis.msi en de download start automatisch na 5 seconden.

Bestand HijackThis.msi opslaan. Daarna kiezen voor "uitvoeren".

Als je geen netwerkverbinding meer hebt, kan je de download doen met een andere pc en het bestand met een usb stick overbrengen

Als je enkel nog in veilige modus kan werken, moet je de executable downloaden.

Sla deze op in een nieuwe map op de C schijf (bvb C:\hijackthis) en start hijackthis dan vanaf deze map.

De logjes kan je dan ook in die map terugvinden.


2. Klik op de snelkoppeling om HijackThis te starten (lees eerst de rode tekst!)

Klik ofwel op "Do a systemscan and save a logfile", ofwel eerst op "Scan" en dan op "Savelog".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd. Plak nu het HJT logje in je bericht door CTRL en V-toets.

Krijg je een melding ""For some reason your system denied writing to the Host file ....", klik dan gewoon door op de OK-toets.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis. (Bekijk hier de afbeelding ---> Bijlage 12634)

Wil je in woord en beeld weten hoe je een logje met HijackThis maakt en plaatst op het forum, klik dan HIER.


3. Na het plaatsen van je logje wordt dit door een expert (Kape of Kweezie Wabbit) nagekeken en begeleidt hij jou verder door het ganse proces.

Link naar reactie
Delen op andere sites

Is het dit??

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 15:53:43, on 24-2-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16464)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe

C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe

C:\Windows\system32\igfxext.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_168_ActiveX.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\cyriel2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JR290NG2\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = {searchTerms - Bing}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = {searchTerms - Bing}

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyWebSearch Home Page

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = {searchTerms - Bing}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = {searchTerms - Bing}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Search Assistant BHO - {06e05b40-77fa-40b6-9077-ed1a7577b1ef} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Toolbar BHO - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - C:\PROGRA~1\UTILIT~2\bar\1.bin\49bar.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\IPS\IPSBHO.DLL

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll

O3 - Toolbar: Utility Chest - {cf67755f-9265-449c-87cf-b945519e073b} - C:\Program Files\UtilityChest_49\bar\1.bin\49bar.dll

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe

O4 - HKLM\..\Run: [utility Chest Search Scope Monitor] "C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [utilityChest_49 Browser Plugin Loader] C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe

O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\RunOnce: [uninstall C:\Users\cyriel2\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\cyriel2\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910"

O4 - Global Startup: Bluetooth.lnk = ?

O4 - Global Startup: Dell System Manager.lnk = C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: *.dell.com

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Credential Vault Host Control Service - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe

O23 - Service: Credential Vault Host Storage - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe

O23 - Service: Dell System Manager Service (dcpsysmgrsvc) - Dell Inc. - C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® PROSet Monitoring Service - Intel Corporation - C:\Windows\system32\IProsetMonitor.exe

O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\ccSvcHst.exe

O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe

O23 - Service: Qualcomm Gobi 2000 Download Service (Dell) (QDLService2kDell) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe

O23 - Service: Qualcomm Gobi 2000 Download Service (Dell_CTC) (QDLService2kDell_CTC) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\stlang.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe

O23 - Service: Utility ChestService (UtilityChest_49Service) - COMPANYVERS_NAME - C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe

--

End of file - 9524 bytes

Link naar reactie
Delen op andere sites


Ga naar Start - Alle programma's - Bureauaccesoires.

Zoek het icoon van het opdrachtprompt en klik er op met de rechter muisknop en kies dan in het lijstje voor “uitvoeren als administrator” om het opdrachtprompt te openen.

Tik in: sc stop UtilityChest_49Service en druk op Enter.

Tik in: sc delete UtilityChest_49Service en druk op Enter.

Tik in exit en druk Enter.

Als je op een van deze instructies een foutmelding krijgt, ga dan gewoon door met de volgende instructie.

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = {searchTerms - Bing}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = {searchTerms - Bing}

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyWebSearch Home Page

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = {searchTerms - Bing}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = {searchTerms - Bing}

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Search Assistant BHO - {06e05b40-77fa-40b6-9077-ed1a7577b1ef} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Toolbar BHO - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - C:\PROGRA~1\UTILIT~2\bar\1.bin\49bar.dll

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O3 - Toolbar: Utility Chest - {cf67755f-9265-449c-87cf-b945519e073b} - C:\Program Files\UtilityChest_49\bar\1.bin\49bar.dll

O4 - HKLM\..\Run: [utility Chest Search Scope Monitor] "C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [utilityChest_49 Browser Plugin Loader] C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe

O4 - HKCU\..\RunOnce: [uninstall C:\Users\cyriel2\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\cyriel2\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910"

O4 - Global Startup: Bluetooth.lnk = ?

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\\Program Files\\Trend Micro\\HiJackThis of C:\\Program Files (x86)\\Trend Micro\\HiJackThis.

Download MBAM (Malwarebytes Anti-Malware)

Dubbelklik op mbam-setup.exe om het programma te installeren.

Zorg ervoor dat er een vinkje geplaatst is voor Update Malwarebytes' Anti-Malware en Start Malwarebytes' Anti-Malware, Klik daarna op "Voltooien".

Indien een update gevonden werd, zal die gedownload en geïnstalleerd worden.

Wanneer het programma volledig up to date is, selecteer dan in het tabblad Scanner : "Snelle Scan", daarna klik op Scan.

Het scannen kan een tijdje duren, dus wees geduldig.

Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.

Zorg ervoor dat daar alles aangevinkt is, daarna klik op: Verwijder geselecteerde.

Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. (Zie verder).

Indien er de rootkit (TDSS) aanwezig is, zal MBAM vragen te herstarten. Doe dit dan ook.

MBAM zal na de herstart opnieuw scannen en de rootkit verwijderen.

Het log wordt automatisch bewaard door MBAM en kan je terugvinden door op de "Logs" tab te klikken in het programma.

Indien MBAM moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven waar je OK moet klikken. Daarna zal het vragen om de computer opnieuw op te starten... dus sta toe dat MBAM de computer opnieuw opstart.

Plak de inhoud van het logje in je volgende bericht, samen met een nieuw logje van HijackThis.

Link naar reactie
Delen op andere sites

Hier het Logje:

Malwarebytes Anti-Malware (-evaluatieversie-) 1.70.0.1100

www.malwarebytes.org

Databaseversie: v2013.02.24.05

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 9.0.8112.16421

cyriel2 :: CYRIEL2-PC [administrator]

Bescherming: Ingeschakeld

24-2-2013 18:26:52

mbam-log-2013-02-24 (18-26-52).txt

Scan type: Snelle scan

Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scan opties: P2P

Objecten gescand: 208272

Verstreken tijd: 4 minuut/minuten, 10 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 1

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Slecht: (22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!) Goed: (Google) -> Succesvol in quarantaine geplaatst en gerepareerd.

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 1

C:\Users\Ceriel\Downloads\kerst_en_nieuwjaars_boodschap_viviane_powerpoints.exe (PUP.Adware.Agent) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)

Van Hijack kan ik geen log meer maken :-)

Link naar reactie
Delen op andere sites


Download AdwCleaner by Xplode naar je bureaublad.

A3qkP9RCEAAOZhQ.jpg

Sluit alle openstaande vensters.

  • Vista en Windows 7 gebruikers: Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren...
  • Voor XP: Gewoon dubbelklikken op AdwCleaner.
  • Klik vervolgens op Verwijderen.
  • Klik bij AdwCleaner – Informatie op OK
  • Klik bij AdwCleaner – Herstarten Noodzakelijk op OK

Dat tijdens de actie de snelkoppelingen verdwijnen, is normaal. Nadat de PC opnieuw is opgestart, opent een logfile. Post de inhoud van dit log in je volgende bericht.

Link naar reactie
Delen op andere sites

met deze:

# AdwCleaner v2.113 - Verslag gemaakt op 24/02/2013 om 21:54:12

# Geactualiseerd op 23/02/2013 door Xplode

# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits)

# Gebruiker : cyriel2 - CYRIEL2-PC

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : C:\Users\cyriel2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JR290NG2\adwcleaner.exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

File Désinfected : C:\Users\cyriel2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\22find.lnk

File Désinfected : C:\Users\cyriel2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

File Désinfected : C:\Users\cyriel2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\22find.lnk

File Désinfected : C:\Users\cyriel2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk

File Désinfected : C:\Users\cyriel2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

File Désinfected : C:\Users\cyriel2\Desktop\Internet Explorer.lnk

Map Verwijdert : C:\Users\cyriel2\AppData\Roaming\OpenCandy

***** [Register] *****

Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Verwijdert : HKCU\Software\SmartBar

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}

Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}

Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}

Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}

Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Het register bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[s1].txt - [2865 octets] - [24/02/2013 21:54:12]

########## EOF - C:\AdwCleaner[s1].txt - [2925 octets] ##########

Link naar reactie
Delen op andere sites

Download RSIT.

Sla het op je Bureaublad op.

Dubbelklik op RSIT om het te starten.

Klik op Continue in het disclaimer venster.

Zodra de scan beëindigd is, zullen twee logs openen. Post de inhoud van log.txt (zal gemaximaliseerd zijn) en info.txt (zal geminimaliseerd zijn) in je volgende antwoord.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.09 (written by random/random)

Run by cyriel2 at 2013-02-25 11:31:31

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 263 GB (86%) free of 305 GB

Total RAM: 3510 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:31:38, on 25-2-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16464)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\UtilityChest_49\bar\1.bin\49brmon.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Desk 365\desk365.exe

C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe

C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\ccSvcHst.exe

C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe

C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe

C:\Program Files\Internet Explorer\IELowutil.exe

C:\Windows\system32\igfxext.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_168_ActiveX.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\cyriel2\Desktop\RSIT.exe

C:\Users\cyriel2\Desktop\RSIT.exe

C:\Program Files\trend micro\cyriel2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = {searchTerms - Bing}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R3 - URLSearchHook: (no name) - {7a55cbb2-2b2e-4a41-9de1-6ac5d2c2be0a} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Search Assistant BHO - {06e05b40-77fa-40b6-9077-ed1a7577b1ef} - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll

O2 - BHO: Toolbar BHO - {58f7b5ca-1162-42e8-8bbc-d543b4edd780} - C:\PROGRA~1\UTILIT~2\bar\1.bin\49bar.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\IPS\IPSBHO.DLL

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Norton Identity Protection - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll

O3 - Toolbar: Utility Chest - {cf67755f-9265-449c-87cf-b945519e073b} - C:\Program Files\UtilityChest_49\bar\1.bin\49bar.dll

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\..\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe

O4 - HKLM\..\Run: [utility Chest Search Scope Monitor] "C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [utilityChest_49 Browser Plugin Loader] C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe

O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\Run: [Desk 365] C:\Program Files\Desk 365\desk365.exe /autorun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Global Startup: Dell System Manager.lnk = C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: *.dell.com

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Credential Vault Host Control Service - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe

O23 - Service: Credential Vault Host Storage - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe

O23 - Service: Dell System Manager Service (dcpsysmgrsvc) - Dell Inc. - C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe

O23 - Service: Desk 365 service (desksvc) - 337 Technology Limited. - C:\Program Files\Desk 365\deskSvc.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® PROSet Monitoring Service - Intel Corporation - C:\Windows\system32\IProsetMonitor.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\ccSvcHst.exe

O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe

O23 - Service: Qualcomm Gobi 2000 Download Service (Dell) (QDLService2kDell) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe

O23 - Service: Qualcomm Gobi 2000 Download Service (Dell_CTC) (QDLService2kDell_CTC) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\stlang.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe

O23 - Service: Utility ChestService (UtilityChest_49Service) - COMPANYVERS_NAME - C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe

--

End of file - 9865 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06e05b40-77fa-40b6-9077-ed1a7577b1ef}]

Search Assistant BHO - C:\Program Files\UtilityChest_49\bar\1.bin\49SrcAs.dll [2013-02-24 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58f7b5ca-1162-42e8-8bbc-d543b4edd780}]

Toolbar BHO - C:\PROGRA~1\UTILIT~2\bar\1.bin\49bar.dll [2013-02-24 707728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]

Norton Vulnerability Protection - C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\IPS\IPSBHO.DLL [2012-09-06 387040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-06 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}]

Norton Identity Protection - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll [2013-02-14 509776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-02-06 192144]

{A13C2648-91D4-4bf3-BC6D-0079707C4389} - Norton Identity Safe Toolbar - C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\coIEPlg.dll [2013-02-14 509776]

{cf67755f-9265-449c-87cf-b945519e073b} - Utility Chest - C:\Program Files\UtilityChest_49\bar\1.bin\49bar.dll [2013-02-24 707728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-01-31 137752]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-01-31 171032]

"Persistence"=C:\Windows\system32\igfxpers.exe [2011-01-31 172568]

"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-07-22 495708]

"Utility Chest Search Scope Monitor"=C:\PROGRA~1\UTILIT~2\bar\1.bin\49srchmn.exe [2013-02-24 42536]

"UtilityChest_49 Browser Plugin Loader"=C:\PROGRA~1\UTILIT~2\bar\1.bin\49brmon.exe [2013-02-24 30096]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Akamai NetSession Interface"=C:\Users\cyriel2\AppData\Local\Akamai\netsession_win.exe [2012-10-09 4441920]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-02-07 17706088]

"Desk 365"=C:\Program Files\Desk 365\desk365.exe [2013-02-24 642128]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Dell System Manager.lnk - C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2011-01-12 228864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-02-25 11:31:31 ----D---- C:\rsit

2013-02-24 22:11:55 ----A---- C:\AdwCleaner[R1].txt

2013-02-24 21:54:12 ----A---- C:\AdwCleaner[s1].txt

2013-02-24 18:48:57 ----D---- C:\Program Files\Trend Micro

2013-02-24 18:25:53 ----D---- C:\Users\cyriel2\AppData\Roaming\Malwarebytes

2013-02-24 18:25:43 ----D---- C:\ProgramData\Malwarebytes

2013-02-24 18:25:42 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2013-02-24 18:25:42 ----A---- C:\Windows\system32\drivers\mbam.sys

2013-02-24 18:08:35 ----D---- C:\Program Files\Common Files\337

2013-02-24 18:08:10 ----D---- C:\Program Files\Desk 365

2013-02-24 18:07:55 ----D---- C:\Users\cyriel2\AppData\Roaming\Desk 365

2013-02-24 15:51:21 ----D---- C:\Program Files\UtilityChest_49

2013-02-24 14:59:46 ----A---- C:\Windows\system32\aestecap.dll

2013-02-24 14:59:45 ----A---- C:\Windows\system32\stlang.dll

2013-02-24 14:53:23 ----A---- C:\Windows\system32\DellSPMsg.dll

2013-02-23 15:00:44 ----D---- C:\Users\cyriel2\AppData\Roaming\Skype

2013-02-23 14:59:36 ----D---- C:\Program Files\Common Files\Skype

2013-02-23 14:59:35 ----RD---- C:\Program Files\Skype

2013-02-23 14:59:02 ----D---- C:\ProgramData\Skype

2013-02-13 18:42:33 ----A---- C:\Windows\system32\vbscript.dll

2013-02-13 18:42:33 ----A---- C:\Windows\system32\mshtmled.dll

2013-02-13 18:42:32 ----A---- C:\Windows\system32\wininet.dll

2013-02-13 18:42:32 ----A---- C:\Windows\system32\msfeeds.dll

2013-02-13 18:42:32 ----A---- C:\Windows\system32\jsproxy.dll

2013-02-13 18:42:32 ----A---- C:\Windows\system32\jscript.dll

2013-02-13 18:42:32 ----A---- C:\Windows\system32\ieUnatt.exe

2013-02-13 18:42:32 ----A---- C:\Windows\system32\ieui.dll

2013-02-13 18:42:31 ----A---- C:\Windows\system32\urlmon.dll

2013-02-13 18:42:31 ----A---- C:\Windows\system32\url.dll

2013-02-13 18:42:31 ----A---- C:\Windows\system32\jscript9.dll

2013-02-13 18:42:31 ----A---- C:\Windows\system32\iertutil.dll

2013-02-13 18:42:30 ----A---- C:\Windows\system32\mshtml.dll

2013-02-13 18:42:29 ----A---- C:\Windows\system32\ieframe.dll

2013-02-13 18:27:57 ----A---- C:\Windows\system32\win32k.sys

2013-02-13 18:27:47 ----A---- C:\Windows\system32\ntoskrnl.exe

2013-02-13 18:27:47 ----A---- C:\Windows\system32\ntkrnlpa.exe

2013-02-13 18:27:42 ----A---- C:\Windows\system32\drivers\tcpip.sys

2013-02-13 18:27:42 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS

2013-02-13 18:27:39 ----A---- C:\Windows\system32\winsrv.dll

2013-02-08 19:10:58 ----A---- C:\Windows\system32\msonpmon.dll

2013-02-08 19:10:38 ----D---- C:\Program Files\Microsoft Works

2013-02-08 19:10:34 ----D---- C:\Program Files\Common Files\DESIGNER

2013-02-08 19:07:48 ----D---- C:\ProgramData\Microsoft Help

2013-02-08 19:07:48 ----D---- C:\Program Files\Microsoft Office

2013-02-08 19:07:24 ----RHD---- C:\MSOCache

2013-02-08 18:57:27 ----D---- C:\Windows\system32\drivers\NST

2013-02-08 18:57:26 ----D---- C:\Program Files\Norton Identity Safe

2013-02-08 18:57:24 ----D---- C:\Program Files\Symantec

2013-02-08 18:57:24 ----A---- C:\Windows\system32\drivers\SYMEVENT.SYS

2013-02-08 18:57:00 ----D---- C:\Windows\system32\drivers\NAV

2013-02-08 18:56:59 ----D---- C:\Program Files\Norton AntiVirus

2013-02-08 18:47:55 ----D---- C:\ProgramData\PCSettings

2013-02-08 18:45:43 ----N---- C:\Windows\system32\MpSigStub.exe

2013-02-08 18:14:21 ----D---- C:\Program Files\Common Files\Symantec Shared

2013-02-08 18:13:57 ----D---- C:\ProgramData\Symantec

2013-02-08 18:13:40 ----D---- C:\Program Files\NortonInstaller

2013-02-08 18:00:58 ----D---- C:\ProgramData\Symantec Temporary Files

2013-02-08 15:45:25 ----D---- C:\Users\cyriel2\AppData\Roaming\Macromedia

2013-02-08 15:45:25 ----D---- C:\Users\cyriel2\AppData\Roaming\Adobe

2013-02-08 15:45:18 ----D---- C:\Windows\system32\Macromed

2013-02-08 15:45:18 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-02-08 13:33:44 ----D---- C:\ProgramData\Adobe

2013-02-07 17:42:49 ----D---- C:\Back up

2013-02-07 16:00:23 ----D---- C:\Users\cyriel2\AppData\Roaming\Windows Live Writer

2013-02-07 15:47:14 ----D---- C:\Windows\PCHEALTH

2013-02-07 15:46:52 ----D---- C:\Program Files\Windows Live

2013-02-07 15:43:37 ----A---- C:\Windows\system32\d3dx10_42.dll

2013-02-07 15:42:46 ----A---- C:\Windows\system32\d3dx9_32.dll

2013-02-07 15:42:01 ----D---- C:\Program Files\Microsoft SkyDrive

2013-02-07 15:41:50 ----D---- C:\ProgramData\Microsoft SkyDrive

2013-02-07 15:40:42 ----D---- C:\Program Files\Common Files\Windows Live

2013-02-07 11:45:32 ----D---- C:\Users\cyriel2\AppData\Roaming\PCDr

2013-02-07 11:16:12 ----A---- C:\Windows\system32\bipbsp.dll

2013-02-07 11:16:11 ----A---- C:\Windows\system32\brcmbsp.dll

2013-02-07 11:15:55 ----D---- C:\ProgramData\Broadcom

2013-02-07 11:15:55 ----D---- C:\Program Files\Broadcom Corporation

2013-02-07 11:15:48 ----A---- C:\Windows\system32\pbadrvdll.dll

2013-02-07 11:15:48 ----A---- C:\Windows\system32\drivers\PBADRV.sys

2013-02-06 18:12:33 ----A---- C:\Users\cyriel2\AppData\Roaming\DRVR_WIN_R262333.EXE

2013-02-06 11:16:38 ----D---- C:\Program Files\Speccy

2013-02-06 11:15:45 ----D---- C:\ProgramData\Google

2013-02-06 11:15:45 ----D---- C:\Program Files\Google

2013-02-06 10:13:30 ----A---- C:\Windows\system32\drivers\ndis.sys

2013-02-06 10:13:29 ----A---- C:\Windows\system32\drivers\RNDISMP.sys

2013-02-06 10:13:09 ----A---- C:\Windows\system32\nlasvc.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\nlaapi.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\netevent.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\netcorehc.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\ncsi.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\iphlpsvc.dll

2013-02-06 10:13:09 ----A---- C:\Windows\system32\drivers\tcpipreg.sys

2013-02-06 10:13:09 ----A---- C:\Windows\system32\drivers\netio.sys

2013-02-06 10:13:06 ----A---- C:\Windows\system32\OxpsConverter.exe

2013-02-06 10:12:46 ----A---- C:\Windows\system32\taskhost.exe

2013-02-06 10:12:45 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2013-02-06 10:12:45 ----A---- C:\Windows\system32\dhcpcore6.dll

2013-02-05 22:00:02 ----D---- C:\ProgramData\Novatel Wireless

2013-02-05 21:59:27 ----D---- C:\Windows\Downloaded Installations

2013-02-05 20:13:33 ----A---- C:\Windows\system32\drivers\btwrchid.sys

2013-02-05 20:13:33 ----A---- C:\Windows\system32\drivers\btwl2cap.sys

2013-02-05 20:13:33 ----A---- C:\Windows\system32\drivers\btwavdt.sys

2013-02-05 20:13:33 ----A---- C:\Windows\system32\drivers\btwaudio.sys

2013-02-05 19:47:22 ----D---- C:\ProgramData\QUALCOMM

2013-02-05 19:47:22 ----D---- C:\Program Files\QUALCOMM

2013-02-05 19:47:11 ----D---- C:\Windows\Dell

2013-02-05 19:43:43 ----A---- C:\Users\cyriel2\AppData\Roaming\DRVR_WIN_R280717.EXE

2013-02-05 18:58:15 ----D---- C:\Program Files\Dell

2013-02-05 18:58:08 ----D---- C:\ProgramData\Dell

2013-02-05 18:57:17 ----A---- C:\Users\cyriel2\AppData\Roaming\APP_WIN_R312260.EXE

2013-02-05 18:05:56 ----D---- C:\Windows\system32\SPReview

2013-02-05 18:05:30 ----D---- C:\Windows\system32\EventProviders

2013-02-05 16:55:34 ----A---- C:\Windows\system32\dfshim.dll

2013-02-05 16:55:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-02-05 16:55:31 ----A---- C:\Windows\system32\mstscax.dll

2013-02-05 16:55:31 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys

2013-02-05 16:55:29 ----A---- C:\Windows\system32\d3d10warp.dll

2013-02-05 16:55:28 ----A---- C:\Windows\system32\sysmain.dll

2013-02-05 16:55:28 ----A---- C:\Windows\system32\mfc40u.dll

2013-02-05 16:55:28 ----A---- C:\Windows\system32\mfc40.dll

2013-02-05 16:55:27 ----A---- C:\Windows\system32\secproc_isv.dll

2013-02-05 16:55:26 ----A---- C:\Windows\system32\secproc.dll

2013-02-05 16:55:26 ----A---- C:\Windows\system32\RMActivate_isv.exe

2013-02-05 16:55:26 ----A---- C:\Windows\system32\RMActivate.exe

2013-02-05 16:55:25 ----A---- C:\Windows\system32\spwizui.dll

2013-02-05 16:55:25 ----A---- C:\Windows\system32\mscoree.dll

2013-02-05 16:55:24 ----A---- C:\Windows\system32\mf.dll

2013-02-05 16:55:24 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll

2013-02-05 16:55:24 ----A---- C:\Windows\system32\CertEnroll.dll

2013-02-05 16:55:23 ----A---- C:\Windows\system32\wmp.dll

2013-02-05 16:55:23 ----A---- C:\Windows\system32\PresentationHostProxy.dll

2013-02-05 16:55:23 ----A---- C:\Windows\system32\PresentationHost.exe

2013-02-05 16:55:23 ----A---- C:\Windows\system32\drivers\msiscsi.sys

2013-02-05 16:55:23 ----A---- C:\Windows\system32\drivers\hwpolicy.sys

2013-02-05 16:55:22 ----A---- C:\Windows\system32\schedsvc.dll

2013-02-05 16:55:22 ----A---- C:\Windows\system32\RacEngn.dll

2013-02-05 16:55:22 ----A---- C:\Windows\system32\AuthFWSnapin.dll

2013-02-05 16:55:21 ----A---- C:\Windows\system32\rdpdd.dll

2013-02-05 16:55:21 ----A---- C:\Windows\system32\qmgr.dll

2013-02-05 16:55:20 ----A---- C:\Windows\system32\wevtsvc.dll

2013-02-05 16:55:20 ----A---- C:\Windows\system32\ole32.dll

2013-02-05 16:55:20 ----A---- C:\Windows\system32\ExplorerFrame.dll

2013-02-05 16:55:19 ----A---- C:\Windows\system32\vssapi.dll

2013-02-05 16:55:19 ----A---- C:\Windows\system32\taskschd.dll

2013-02-05 16:55:19 ----A---- C:\Windows\system32\SearchFolder.dll

2013-02-05 16:55:19 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-02-05 16:55:19 ----A---- C:\Windows\system32\d3d9.dll

2013-02-05 16:55:18 ----A---- C:\Windows\system32\wer.dll

2013-02-05 16:55:18 ----A---- C:\Windows\system32\termsrv.dll

2013-02-05 16:55:18 ----A---- C:\Windows\system32\spreview.exe

2013-02-05 16:55:18 ----A---- C:\Windows\system32\spinstall.exe

2013-02-05 16:55:18 ----A---- C:\Windows\system32\mstsc.exe

2013-02-05 16:55:17 ----A---- C:\Windows\system32\rpcrt4.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\odbc32.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\MPSSVC.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\gpsvc.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\dwmcore.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\diagperf.dll

2013-02-05 16:55:17 ----A---- C:\Windows\system32\certcli.dll

2013-02-05 16:55:16 ----A---- C:\Windows\system32\WinSAT.exe

2013-02-05 16:55:16 ----A---- C:\Windows\system32\winhttp.dll

2013-02-05 16:55:16 ----A---- C:\Windows\system32\wbengine.exe

2013-02-05 16:55:16 ----A---- C:\Windows\system32\TSWorkspace.dll

2013-02-05 16:55:16 ----A---- C:\Windows\system32\tsmf.dll

2013-02-05 16:55:16 ----A---- C:\Windows\system32\scavengeui.dll

2013-02-05 16:55:16 ----A---- C:\Windows\system32\dot3api.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\WindowsCodecs.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\VSSVC.exe

2013-02-05 16:55:15 ----A---- C:\Windows\system32\setupapi.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\netlogon.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\MSVidCtl.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\dbgeng.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\d3d11.dll

2013-02-05 16:55:15 ----A---- C:\Windows\system32\apphelp.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\WsmSvc.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\WMVDECOD.DLL

2013-02-05 16:55:14 ----A---- C:\Windows\system32\winlogon.exe

2013-02-05 16:55:14 ----A---- C:\Windows\system32\user32.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\upnp.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\Query.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\netcfgx.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\DShowRdpFilter.dll

2013-02-05 16:55:14 ----A---- C:\Windows\system32\advapi32.dll

2013-02-05 16:55:13 ----A---- C:\Windows\system32\netfxperf.dll

2013-02-05 16:55:13 ----A---- C:\Windows\system32\msv1_0.dll

2013-02-05 16:55:13 ----A---- C:\Windows\system32\mmcndmgr.dll

2013-02-05 16:55:13 ----A---- C:\Windows\system32\lsm.exe

2013-02-05 16:55:13 ----A---- C:\Windows\system32\imapi2fs.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\userenv.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\sppobjs.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\shlwapi.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\SessEnv.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\PortableDeviceApi.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\msdrm.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\mcbuilder.exe

2013-02-05 16:55:12 ----A---- C:\Windows\system32\certmgr.dll

2013-02-05 16:55:12 ----A---- C:\Windows\system32\authui.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\xpsservices.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\winload.exe

2013-02-05 16:55:11 ----A---- C:\Windows\system32\WebClnt.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\sppwinob.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\rpcss.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\drvstore.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\comdlg32.dll

2013-02-05 16:55:11 ----A---- C:\Windows\system32\cmd.exe

2013-02-05 16:55:11 ----A---- C:\Windows\system32\audiosrv.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\Wldap32.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\samsrv.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\propsys.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\mfds.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\framedynos.dll

2013-02-05 16:55:10 ----A---- C:\Windows\system32\drivers\volsnap.sys

2013-02-05 16:55:10 ----A---- C:\Windows\system32\BFE.DLL

2013-02-05 16:55:09 ----A---- C:\Windows\system32\wmicmiplugin.dll

2013-02-05 16:55:09 ----A---- C:\Windows\system32\winresume.exe

2013-02-05 16:55:08 ----A---- C:\Windows\system32\werconcpl.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\themeui.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\taskeng.exe

2013-02-05 16:55:08 ----A---- C:\Windows\system32\spp.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\mswsock.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\drivers\http.sys

2013-02-05 16:55:08 ----A---- C:\Windows\system32\dhcpcore.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\credui.dll

2013-02-05 16:55:08 ----A---- C:\Windows\system32\azroles.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\WinSATAPI.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\taskcomp.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\NaturalLanguage6.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\mfreadwrite.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\gdi32.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\evr.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\dxgi.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\drivers\mrxdav.sys

2013-02-05 16:55:07 ----A---- C:\Windows\system32\dbghelp.dll

2013-02-05 16:55:07 ----A---- C:\Windows\system32\basecsp.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\vpnike.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\UIRibbon.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\srvsvc.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\sqlsrv32.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\QAGENTRT.DLL

2013-02-05 16:55:06 ----A---- C:\Windows\system32\lpksetup.exe

2013-02-05 16:55:06 ----A---- C:\Windows\system32\fveapi.dll

2013-02-05 16:55:06 ----A---- C:\Windows\system32\drivers\1394ohci.sys

2013-02-05 16:55:06 ----A---- C:\Windows\system32\calc.exe

2013-02-05 16:55:05 ----A---- C:\Windows\system32\ws2_32.dll

2013-02-05 16:55:05 ----A---- C:\Windows\system32\sxs.dll

2013-02-05 16:55:05 ----A---- C:\Windows\system32\stobject.dll

2013-02-05 16:55:05 ----A---- C:\Windows\system32\netshell.dll

2013-02-05 16:55:05 ----A---- C:\Windows\system32\hgprint.dll

2013-02-05 16:55:05 ----A---- C:\Windows\system32\drivers\rdbss.sys

2013-02-05 16:55:05 ----A---- C:\Windows\system32\drivers\msdsm.sys

2013-02-05 16:55:05 ----A---- C:\Windows\system32\drivers\fvevol.sys

2013-02-05 16:55:05 ----A---- C:\Windows\system32\comctl32.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\WSDApi.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\wmpeffects.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\rpchttp.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\prncache.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\printui.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\net1.exe

2013-02-05 16:55:04 ----A---- C:\Windows\system32\inetpp.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\dps.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\ci.dll

2013-02-05 16:55:04 ----A---- C:\Windows\system32\aitagent.exe

2013-02-05 16:55:04 ----A---- C:\Windows\system32\aepdu.dll

2013-02-05 16:55:03 ----A---- C:\Windows\system32\WMVCORE.DLL

2013-02-05 16:55:03 ----A---- C:\Windows\system32\vds.exe

2013-02-05 16:55:03 ----A---- C:\Windows\system32\scansetting.dll

2013-02-05 16:55:03 ----A---- C:\Windows\system32\MMDevAPI.dll

2013-02-05 16:55:03 ----A---- C:\Windows\system32\FXSSVC.exe

2013-02-05 16:55:03 ----A---- C:\Windows\system32\drivers\pci.sys

2013-02-05 16:55:03 ----A---- C:\Windows\system32\davclnt.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\wpdshext.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\wlangpui.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\webservices.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\t2embed.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\SyncCenter.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\QSHVHOST.DLL

2013-02-05 16:55:02 ----A---- C:\Windows\system32\pnidui.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\netdiagfx.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\IPSECSVC.DLL

2013-02-05 16:55:02 ----A---- C:\Windows\system32\fde.dll

2013-02-05 16:55:02 ----A---- C:\Windows\system32\drivers\termdd.sys

2013-02-05 16:55:02 ----A---- C:\Windows\system32\drivers\sbp2port.sys

2013-02-05 16:55:02 ----A---- C:\Windows\system32\consent.exe

2013-02-05 16:55:02 ----A---- C:\Windows\system32\aaclient.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\wscapi.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\wisptis.exe

2013-02-05 16:55:01 ----A---- C:\Windows\system32\WinSCard.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\sdengin2.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\pla.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL

2013-02-05 16:55:01 ----A---- C:\Windows\system32\msasn1.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\mcmde.dll

2013-02-05 16:55:01 ----A---- C:\Windows\system32\drivers\vhdmp.sys

2013-02-05 16:55:00 ----A---- C:\Windows\system32\winsta.dll

2013-02-05 16:55:00 ----A---- C:\Windows\system32\wiaservc.dll

2013-02-05 16:55:00 ----A---- C:\Windows\system32\setupcl.exe

2013-02-05 16:55:00 ----A---- C:\Windows\system32\imapi2.dll

2013-02-05 16:55:00 ----A---- C:\Windows\system32\DXPTaskRingtone.dll

2013-02-05 16:55:00 ----A---- C:\Windows\system32\drivers\msahci.sys

2013-02-05 16:55:00 ----A---- C:\Windows\system32\aeinv.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\WMPEncEn.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\winmm.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\vaultsvc.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\TabSvc.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\shsvcs.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\rasmans.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\onex.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\netiohlp.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\Narrator.exe

2013-02-05 16:54:59 ----A---- C:\Windows\system32\hbaapi.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\dwmredir.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\drivers\udfs.sys

2013-02-05 16:54:59 ----A---- C:\Windows\system32\drivers\acpi.sys

2013-02-05 16:54:59 ----A---- C:\Windows\system32\bootres.dll

2013-02-05 16:54:59 ----A---- C:\Windows\system32\autofmt.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\wcncsvc.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\thumbcache.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\tcpipcfg.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\srchadmin.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\schtasks.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\samcli.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\regapi.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\proquota.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\powercpl.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\msutb.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\msinfo32.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\msihnd.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\mimefilt.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\ipsmsnap.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\IPHLPAPI.DLL

2013-02-05 16:54:58 ----A---- C:\Windows\system32\halmacpi.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\hal.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\framedyn.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\eapphost.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\drivers\winusb.sys

2013-02-05 16:54:58 ----A---- C:\Windows\system32\autoconv.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\autochk.exe

2013-02-05 16:54:58 ----A---- C:\Windows\system32\AudioSes.dll

2013-02-05 16:54:58 ----A---- C:\Windows\system32\audiodg.exe

2013-02-05 16:54:57 ----A---- C:\Windows\system32\umpo.dll

2013-02-05 16:54:57 ----A---- C:\Windows\system32\QAGENT.DLL

2013-02-05 16:54:57 ----A---- C:\Windows\system32\netid.dll

2013-02-05 16:54:57 ----A---- C:\Windows\system32\mscorier.dll

2013-02-05 16:54:57 ----A---- C:\Windows\system32\DXP.dll

2013-02-05 16:54:57 ----A---- C:\Windows\system32\drivers\volmgr.sys

2013-02-05 16:54:57 ----A---- C:\Windows\system32\drivers\netbt.sys

2013-02-05 16:54:57 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll

2013-02-05 16:54:57 ----A---- C:\Windows\system32\actxprxy.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\WMNetMgr.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\wlanpref.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\wdc.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\Vault.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\untfs.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\StructuredQuery.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\sppsvc.exe

2013-02-05 16:54:56 ----A---- C:\Windows\system32\sdclt.exe

2013-02-05 16:54:56 ----A---- C:\Windows\system32\scesrv.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\RpcRtRemote.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\Robocopy.exe

2013-02-05 16:54:56 ----A---- C:\Windows\system32\rastls.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\nci.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\ListSvc.dll

2013-02-05 16:54:56 ----A---- C:\Windows\system32\drivers\ataport.sys

2013-02-05 16:54:55 ----A---- C:\Windows\system32\XpsRasterService.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\userinit.exe

2013-02-05 16:54:55 ----A---- C:\Windows\system32\taskmgr.exe

2013-02-05 16:54:55 ----A---- C:\Windows\system32\sharemediacpl.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\puiobj.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\mtxclu.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\msdri.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\DxpTaskSync.dll

2013-02-05 16:54:55 ----A---- C:\Windows\system32\drivers\mpio.sys

2013-02-05 16:54:55 ----A---- C:\Windows\system32\drivers\mountmgr.sys

2013-02-05 16:54:55 ----A---- C:\Windows\system32\Display.dll

2013-02-05 16:54:54 ----A---- C:\Windows\system32\termmgr.dll

2013-02-05 16:54:54 ----A---- C:\Windows\system32\eudcedit.exe

2013-02-05 16:54:54 ----A---- C:\Windows\system32\drivers\scsiport.sys

2013-02-05 16:54:54 ----A---- C:\Windows\system32\DiagCpl.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\wiadefui.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\sppcomapi.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\shsetup.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\rasppp.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\msdtctm.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\msconfig.exe

2013-02-05 16:54:53 ----A---- C:\Windows\system32\logoncli.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\cabview.dll

2013-02-05 16:54:53 ----A---- C:\Windows\system32\biocpl.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\wpccpl.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\themecpl.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\SensorsCpl.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\PhotoScreensaver.scr

2013-02-05 16:54:52 ----A---- C:\Windows\system32\hgcpl.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-02-05 16:54:52 ----A---- C:\Windows\system32\FirewallControlPanel.dll

2013-02-05 16:54:52 ----A---- C:\Windows\system32\drivers\rdyboost.sys

2013-02-05 16:54:52 ----A---- C:\Windows\system32\dnscmmc.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\wkssvc.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\usercpl.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\tapisrv.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\SndVolSSO.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\scecli.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\mscories.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\mscms.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\mprddm.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\localsec.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\KMSVC.DLL

2013-02-05 16:54:51 ----A---- C:\Windows\system32\iasacct.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\fontext.dll

2013-02-05 16:54:51 ----A---- C:\Windows\system32\bcdsrv.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\zipfldr.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\wpdbusenum.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\wlanui.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\wksprt.exe

2013-02-05 16:54:50 ----A---- C:\Windows\system32\w32tm.exe

2013-02-05 16:54:50 ----A---- C:\Windows\system32\VAN.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\spwizeng.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\SndVol.exe

2013-02-05 16:54:50 ----A---- C:\Windows\system32\qedit.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\prntvpt.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\netcenter.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\mblctr.exe

2013-02-05 16:54:50 ----A---- C:\Windows\system32\fdeploy.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\drivers\ks.sys

2013-02-05 16:54:50 ----A---- C:\Windows\system32\batmeter.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\azroleui.dll

2013-02-05 16:54:50 ----A---- C:\Windows\system32\accessibilitycpl.dll

2013-02-05 16:54:49 ----A---- C:\Windows\system32\networkmap.dll

2013-02-05 16:54:49 ----A---- C:\Windows\system32\netjoin.dll

2013-02-05 16:54:49 ----A---- C:\Windows\system32\MSAC3ENC.DLL

2013-02-05 16:54:49 ----A---- C:\Windows\system32\cryptui.dll

2013-02-05 16:54:49 ----A---- C:\Windows\system32\adsldp.dll

2013-02-05 16:54:48 ----A---- C:\Windows\system32\wusa.exe

2013-02-05 16:54:48 ----A---- C:\Windows\system32\prnfldr.dll

2013-02-05 16:54:48 ----A---- C:\Windows\system32\OnLineIDCpl.dll

2013-02-05 16:54:48 ----A---- C:\Windows\system32\mspbda.dll

2013-02-05 16:54:48 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll

2013-02-05 16:54:48 ----A---- C:\Windows\system32\Faultrep.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\wpd_ci.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\taskbarcpl.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\sud.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\slui.exe

2013-02-05 16:54:47 ----A---- C:\Windows\system32\sisbkup.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\shwebsvc.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\photowiz.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\msieftp.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\MediaMetadataHandler.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\iprtrmgr.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\ifsutil.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\iasrad.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\halacpi.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\ftp.exe

2013-02-05 16:54:47 ----A---- C:\Windows\system32\drivers\hidclass.sys

2013-02-05 16:54:47 ----A---- C:\Windows\system32\dot3cfg.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\defaultlocationcpl.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\credssp.dll

2013-02-05 16:54:47 ----A---- C:\Windows\system32\ActionCenter.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\wmpmde.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\vdsutil.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\systemcpl.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\syncui.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\sppnp.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\sethc.exe

2013-02-05 16:54:46 ----A---- C:\Windows\system32\sdcpl.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\rtutils.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\riched20.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\recovery.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\recdisc.exe

2013-02-05 16:54:46 ----A---- C:\Windows\system32\OobeFldr.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\ntprint.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\ntlanman.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\nshwfp.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\efscore.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\dskquoui.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\drivers\tdx.sys

2013-02-05 16:54:46 ----A---- C:\Windows\system32\DeviceCenter.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\blackbox.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\bcdedit.exe

2013-02-05 16:54:46 ----A---- C:\Windows\system32\bcdboot.exe

2013-02-05 16:54:46 ----A---- C:\Windows\system32\AxInstSv.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\autoplay.dll

2013-02-05 16:54:46 ----A---- C:\Windows\system32\ActionCenterCPL.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\wsqmcons.exe

2013-02-05 16:54:45 ----A---- C:\Windows\system32\wmpsrcwp.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\wlanmsm.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\wavemsp.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\tzutil.exe

2013-02-05 16:54:45 ----A---- C:\Windows\system32\ReAgent.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\provsvc.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\nshipsec.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\netplwiz.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\NAPHLPR.DLL

2013-02-05 16:54:45 ----A---- C:\Windows\system32\msftedit.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\migisol.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\isoburn.exe

2013-02-05 16:54:45 ----A---- C:\Windows\system32\httpapi.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\fms.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\dsuiext.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\drivers\tssecsrv.sys

2013-02-05 16:54:45 ----A---- C:\Windows\system32\dpx.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\dot3ui.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\dot3svc.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\dfrgui.exe

2013-02-05 16:54:45 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\asycfilt.dll

2013-02-05 16:54:45 ----A---- C:\Windows\system32\activeds.dll

2013-02-05 16:54:44 ----A---- C:\Windows\twain_32.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\wvc.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\wtsapi32.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\wimgapi.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\uxlib.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\twext.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\sysclass.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\ssText3d.scr

2013-02-05 16:54:44 ----A---- C:\Windows\system32\srrstr.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\SmiEngine.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\slwga.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\shdocvw.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\setupugc.exe

2013-02-05 16:54:44 ----A---- C:\Windows\system32\qcap.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\qasf.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\PkgMgr.exe

2013-02-05 16:54:44 ----A---- C:\Windows\system32\ocsetup.exe

2013-02-05 16:54:44 ----A---- C:\Windows\system32\mstask.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\imm32.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\drivers\ndproxy.sys

2013-02-05 16:54:44 ----A---- C:\Windows\system32\certprop.dll

2013-02-05 16:54:44 ----A---- C:\Windows\system32\appinfo.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\wwanconn.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\WPDShServiceObj.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\wmdrmsdk.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\wimserv.exe

2013-02-05 16:54:43 ----A---- C:\Windows\system32\TSpkg.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\remotepg.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\rdpencom.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\raschap.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\perfmon.exe

2013-02-05 16:54:43 ----A---- C:\Windows\system32\nslookup.exe

2013-02-05 16:54:43 ----A---- C:\Windows\system32\msvfw32.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\msscp.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\mciavi32.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\diskraid.exe

2013-02-05 16:54:43 ----A---- C:\Windows\system32\DevicePairingFolder.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\clusapi.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\audiodev.dll

2013-02-05 16:54:43 ----A---- C:\Windows\system32\acppage.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\wpdwcn.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\wmpdxm.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe

2013-02-05 16:54:42 ----A---- C:\Windows\system32\vpnikeapi.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\vdsbas.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\UserAccountControlSettings.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\sdrsvc.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\runonce.exe

2013-02-05 16:54:42 ----A---- C:\Windows\system32\QUTIL.DLL

2013-02-05 16:54:42 ----A---- C:\Windows\system32\onexui.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\olepro32.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\ocsetapi.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\nltest.exe

2013-02-05 16:54:42 ----A---- C:\Windows\system32\networkexplorer.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\NAPCRYPT.DLL

2013-02-05 16:54:42 ----A---- C:\Windows\system32\Mcx2Svc.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\logagent.exe

2013-02-05 16:54:42 ----A---- C:\Windows\system32\iTVData.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\input.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\dxdiagn.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\drmmgrtn.dll

2013-02-05 16:54:42 ----A---- C:\Windows\system32\drivers\sdbus.sys

2013-02-05 16:54:42 ----A---- C:\Windows\bfsvc.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\wwanprotdim.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\WPDSp.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\wmpshell.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\WMPhoto.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\wmdrmdev.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\WMADMOD.DLL

2013-02-05 16:54:41 ----A---- C:\Windows\system32\utildll.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\unimdmat.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\tsgqec.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\tabcal.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\srvcli.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\sqlcese30.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\shacct.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\Ribbons.scr

2013-02-05 16:54:41 ----A---- C:\Windows\system32\rdpd3d.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\QSVRMGMT.DLL

2013-02-05 16:54:41 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\PortableDeviceStatus.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\PnPUnattend.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\pdh.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\OpcServices.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\olethk32.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\ncryptui.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\Mystify.scr

2013-02-05 16:54:41 ----A---- C:\Windows\system32\msvidc32.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\msiexec.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\mprapi.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\MFPlay.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\MdSched.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\mapistub.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\mapi32.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\lsmproxy.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\lpremove.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\logman.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\iscsium.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\eapp3hst.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\drivers\rmcast.sys

2013-02-05 16:54:41 ----A---- C:\Windows\system32\djoin.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\cscapi.dll

2013-02-05 16:54:41 ----A---- C:\Windows\system32\Bubbles.scr

2013-02-05 16:54:41 ----A---- C:\Windows\system32\bitsadmin.exe

2013-02-05 16:54:41 ----A---- C:\Windows\system32\ActionQueue.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\wsnmp32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\WMVSDECD.DLL

2013-02-05 16:54:40 ----A---- C:\Windows\system32\WMSPDMOD.DLL

2013-02-05 16:54:40 ----A---- C:\Windows\system32\wmpps.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\wmdrmnet.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\wkscli.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\wiavideo.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\WerFaultSecure.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\WavDest.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\vfwwdm32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\unattend.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\umb.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\tsbyuv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\tlscsp.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\takeown.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\syssetup.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\sppuinotify.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\sppinst.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\spbcd.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\setupcln.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\setbcdlocale.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\secproc_ssp_isv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\secproc_ssp.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\resutils.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\RelPost.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\relog.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\ReAgentc.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\rastapi.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\qdv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\QCLIPROV.DLL

2013-02-05 16:54:40 ----A---- C:\Windows\system32\PrintIsolationProxy.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\pdhui.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\nrpsrv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\netiougc.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\netbtugc.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\mydocs.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\MultiDigiMon.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\MuiUnattend.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\msyuv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\msrle32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\msorcl32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\msnetobj.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\iyuv_32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\itircl.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\iscsicli.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\iasrecst.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\FXSTIFF.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\fphc.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\findstr.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\EhStorAPI.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\eappgnui.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\drivers\ndisuio.sys

2013-02-05 16:54:40 ----A---- C:\Windows\system32\dot3msm.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\diskpart.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\cmstp.exe

2013-02-05 16:54:40 ----A---- C:\Windows\system32\CertPolEng.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\cca.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\basesrv.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\AzSqlExt.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\avifil32.dll

2013-02-05 16:54:40 ----A---- C:\Windows\system32\amstream.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\wiarpc.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\wdiasqmmodule.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\unlodctr.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\UIRibbonRes.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\sppc.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\spopk.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\shimgvw.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\RMActivate_ssp.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\repair-bde.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\rdprefdrvapi.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\perfts.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\odbcconf.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\netutils.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\netcfg.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\muifontsetup.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\msdmo.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\mobsync.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\mciqtz32.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\manage-bde.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\luainstall.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\inetmib1.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\iccvid.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\icaapi.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\HotStartUserAgent.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\FXSMON.dll

2013-02-05 16:54:39 ----A---- C:\Windows\system32\drivers\usbrpm.sys

2013-02-05 16:54:39 ----A---- C:\Windows\system32\drivers\tdi.sys

2013-02-05 16:54:39 ----A---- C:\Windows\system32\drivers\dfsc.sys

2013-02-05 16:54:39 ----A---- C:\Windows\system32\drivers\CompositeBus.sys

2013-02-05 16:54:39 ----A---- C:\Windows\system32\drivers\cdrom.sys

2013-02-05 16:54:39 ----A---- C:\Windows\system32\dosx.exe

2013-02-05 16:54:39 ----A---- C:\Windows\system32\cabinet.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\wshbth.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\wsdchngr.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\TRAPI.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\sscore.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\shgina.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\schedcli.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\riched32.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\RDPENCDD.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\rdpcfgex.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\napdsnap.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\LogonUI.exe

2013-02-05 16:54:38 ----A---- C:\Windows\system32\elsTrans.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\dsauth.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\drivers\tunnel.sys

2013-02-05 16:54:38 ----A---- C:\Windows\system32\drivers\ndiswan.sys

2013-02-05 16:54:38 ----A---- C:\Windows\system32\drivers\hidusb.sys

2013-02-05 16:54:38 ----A---- C:\Windows\system32\drivers\appid.sys

2013-02-05 16:54:38 ----A---- C:\Windows\system32\drivers\acpipmi.sys

2013-02-05 16:54:38 ----A---- C:\Windows\system32\cscdll.dll

2013-02-05 16:54:38 ----A---- C:\Windows\system32\bitsperf.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\wshirda.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\wmploc.DLL

2013-02-05 16:54:37 ----A---- C:\Windows\system32\spwmp.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\shunimpl.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\RDPREFDD.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\dxmasf.dll

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\wanarp.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\USBCAMD.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\umbus.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\sffp_sd.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\scfilter.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\RDPCDD.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\kbdhid.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\HdAudio.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\hdaudbus.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\drivers\Dot4Prt.sys

2013-02-05 16:54:37 ----A---- C:\Windows\system32\C_ISCII.DLL

2013-02-05 16:54:37 ----A---- C:\Windows\system32\browseui.dll

2013-02-05 16:54:36 ----A---- C:\Windows\system32\spwizres.dll

2013-02-05 16:54:36 ----A---- C:\Windows\system32\pifmgr.dll

2013-02-05 16:54:36 ----A---- C:\Windows\system32\nlsbres.dll

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDUS.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDUGHR1.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDTURME.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDTUQ.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDTUF.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDTAJIK.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDSG.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDSF.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDPO.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDNEPR.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDMON.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDMAORI.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDLT1.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\kbdlk41a.dll

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINTEL.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINTAM.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINORI.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINMAR.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINKAN.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINHIN.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDINBEN.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDGR1.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDGKL.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDGEO.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDCZ1.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDBULG.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDBLR.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\KBDBASH.DLL

2013-02-05 16:54:36 ----A---- C:\Windows\system32\BlbEvents.dll

2013-02-05 16:54:34 ----A---- C:\Windows\system32\wdscore.dll

2013-02-05 16:54:25 ----A---- C:\Windows\system32\wbemcomn.dll

2013-02-05 16:54:19 ----A---- C:\Windows\system32\sqmapi.dll

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-02-05 16:40:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\fsutil.exe

2013-02-05 16:40:40 ----A---- C:\Windows\system32\esent.dll

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\storport.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\nvstor.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\nvraid.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\iaStorV.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\amdxata.sys

2013-02-05 16:40:40 ----A---- C:\Windows\system32\drivers\amdsata.sys

2013-02-05 16:40:37 ----A---- C:\Windows\system32\drivers\bthport.sys

2013-02-05 16:40:36 ----A---- C:\Windows\system32\fsquirt.exe

2013-02-05 16:40:36 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS

2013-02-05 16:32:03 ----D---- C:\Windows\Minidump

2013-02-05 16:03:28 ----A---- C:\Windows\system32\brcmbsp_log.txt

2013-02-05 16:03:28 ----A---- C:\Windows\system32\bipbsp_log.txt

2013-02-05 16:03:02 ----D---- C:\Program Files\DIFX

2013-02-05 16:03:00 ----DC---- C:\Windows\system32\DRVSTORE

2013-02-05 16:02:35 ----D---- C:\Windows\system32\BioAPIFFDB

2013-02-05 15:48:36 ----D---- C:\Program Files\Broadcom

2013-02-05 15:32:02 ----D---- C:\Program Files\Microsoft.NET

2013-02-05 15:27:02 ----D---- C:\Windows\system32\Wat

2013-02-05 15:26:36 ----A---- C:\Windows\system32\FntCache.dll

2013-02-05 15:26:36 ----A---- C:\Windows\system32\d2d1.dll

2013-02-05 15:03:47 ----A---- C:\Windows\system32\fontsub.dll

2013-02-05 15:03:47 ----A---- C:\Windows\system32\atmlib.dll

2013-02-05 15:03:47 ----A---- C:\Windows\system32\atmfd.dll

2013-02-05 14:37:45 ----A---- C:\Windows\system32\Wdfres.dll

2013-02-05 14:37:45 ----A---- C:\Windows\system32\drivers\WdfLdr.sys

2013-02-05 14:37:45 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-02-05 14:37:02 ----A---- C:\Windows\system32\WUDFSvc.dll

2013-02-05 14:37:02 ----A---- C:\Windows\system32\WUDFPlatform.dll

2013-02-05 14:37:02 ----A---- C:\Windows\system32\drivers\WUDFRd.sys

2013-02-05 14:37:02 ----A---- C:\Windows\system32\drivers\WUDFPf.sys

2013-02-05 14:37:01 ----A---- C:\Windows\system32\WUDFx.dll

2013-02-05 14:37:01 ----A---- C:\Windows\system32\WUDFHost.exe

2013-02-05 14:37:01 ----A---- C:\Windows\system32\WUDFCoinstaller.dll

2013-02-05 14:36:11 ----A---- C:\Windows\system32\wmi.dll

2013-02-05 14:36:11 ----A---- C:\Windows\system32\imagehlp.dll

2013-02-05 14:36:11 ----A---- C:\Windows\system32\drivers\fs_rec.sys

2013-02-05 14:35:17 ----A---- C:\Windows\system32\wextract.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\webcheck.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\pngfilt.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\occache.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\msrating.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\msls31.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\mshtmler.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\mshta.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\msfeedssync.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\licmgr10.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\inseng.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\imgutil.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iexpress.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iesysprep.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iesetup.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iernonce.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iepeers.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\iedkcs32.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ieapfltr.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ieapfltr.dat

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ieakui.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ieaksie.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ieakeng.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\ie4uinit.exe

2013-02-05 14:35:17 ----A---- C:\Windows\system32\icardie.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\dxtrans.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\dxtmsft.dll

2013-02-05 14:35:17 ----A---- C:\Windows\system32\admparse.dll

2013-02-05 14:33:27 ----A---- C:\Windows\system32\browserchoice.exe

2013-02-05 14:28:52 ----A---- C:\Windows\system32\MRT.exe

2013-02-05 14:26:30 ----A---- C:\Windows\system32\DWrite.dll

2013-02-05 14:26:26 ----A---- C:\Windows\system32\cdosys.dll

2013-02-05 14:26:21 ----A---- C:\Windows\system32\rdpcore.dll

2013-02-05 14:26:21 ----A---- C:\Windows\system32\drivers\tdtcp.sys

2013-02-05 14:26:21 ----A---- C:\Windows\system32\drivers\tdpipe.sys

2013-02-05 14:26:20 ----A---- C:\Windows\system32\drivers\rdpwd.sys

2013-02-05 14:26:19 ----A---- C:\Windows\system32\XpsPrint.dll

2013-02-05 14:26:17 ----A---- C:\Windows\system32\ntshrui.dll

2013-02-05 14:26:11 ----A---- C:\Windows\system32\drivers\afd.sys

2013-02-05 14:26:10 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys

2013-02-05 14:26:10 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys

2013-02-05 14:26:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys

2013-02-05 14:26:04 ----A---- C:\Windows\system32\tquery.dll

2013-02-05 14:26:04 ----A---- C:\Windows\system32\mssrch.dll

2013-02-05 14:26:03 ----A---- C:\Windows\system32\SearchProtocolHost.exe

2013-02-05 14:26:03 ----A---- C:\Windows\system32\SearchIndexer.exe

2013-02-05 14:26:03 ----A---- C:\Windows\system32\SearchFilterHost.exe

2013-02-05 14:26:03 ----A---- C:\Windows\system32\mssvp.dll

2013-02-05 14:26:03 ----A---- C:\Windows\system32\mssphtb.dll

2013-02-05 14:26:03 ----A---- C:\Windows\system32\mssph.dll

2013-02-05 14:26:03 ----A---- C:\Windows\system32\msscntrs.dll

2013-02-05 14:26:02 ----A---- C:\Windows\system32\spoolsv.exe

2013-02-05 14:25:59 ----A---- C:\Windows\system32\drivers\srvnet.sys

2013-02-05 14:25:59 ----A---- C:\Windows\system32\drivers\srv2.sys

2013-02-05 14:25:59 ----A---- C:\Windows\system32\drivers\srv.sys

2013-02-05 14:25:58 ----A---- C:\Windows\system32\webio.dll

2013-02-05 14:25:57 ----A---- C:\Windows\system32\drivers\ntfs.sys

2013-02-05 14:25:56 ----A---- C:\Windows\system32\ntdll.dll

2013-02-05 14:25:53 ----A---- C:\Windows\system32\kerberos.dll

2013-02-05 14:25:50 ----A---- C:\Windows\system32\ncrypt.dll

2013-02-05 14:25:43 ----A---- C:\Windows\system32\Wpc.dll

2013-02-05 14:25:43 ----A---- C:\Windows\system32\gameux.dll

2013-02-05 14:25:38 ----A---- C:\Windows\system32\inetcomm.dll

2013-02-05 14:25:37 ----A---- C:\Windows\system32\sbe.dll

2013-02-05 14:25:37 ----A---- C:\Windows\system32\CPFilters.dll

2013-02-05 14:25:30 ----A---- C:\Windows\system32\cryptsvc.dll

2013-02-05 14:25:30 ----A---- C:\Windows\system32\cryptnet.dll

2013-02-05 14:25:30 ----A---- C:\Windows\system32\crypt32.dll

2013-02-05 14:25:23 ----A---- C:\Windows\system32\oleaut32.dll

2013-02-05 14:25:23 ----A---- C:\Windows\system32\oleacc.dll

2013-02-05 14:25:14 ----A---- C:\Windows\system32\rdrmemptylst.exe

2013-02-05 14:25:14 ----A---- C:\Windows\system32\rdpwsx.dll

2013-02-05 14:25:14 ----A---- C:\Windows\system32\rdpcorekmts.dll

2013-02-05 14:25:13 ----A---- C:\Windows\system32\localspl.dll

2013-02-05 14:25:12 ----A---- C:\Windows\system32\win32spl.dll

2013-02-05 14:25:11 ----A---- C:\Windows\system32\msi.dll

2013-02-05 14:25:10 ----A---- C:\Windows\system32\msxml3r.dll

2013-02-05 14:25:10 ----A---- C:\Windows\system32\msxml3.dll

2013-02-05 14:25:07 ----A---- C:\Windows\system32\EncDec.dll

2013-02-05 14:25:05 ----A---- C:\Windows\system32\psisdecd.dll

2013-02-05 14:24:58 ----A---- C:\Windows\system32\quartz.dll

2013-02-05 14:24:57 ----A---- C:\Windows\system32\qdvd.dll

2013-02-05 14:24:57 ----A---- C:\Windows\system32\dnsrslvr.dll

2013-02-05 14:24:57 ----A---- C:\Windows\system32\dnscacheugc.exe

2013-02-05 14:24:57 ----A---- C:\Windows\system32\dnsapi.dll

2013-02-05 14:24:56 ----A---- C:\Windows\system32\msxml6.dll

2013-02-05 14:24:54 ----A---- C:\Windows\system32\profsvc.dll

2013-02-05 14:24:54 ----A---- C:\Windows\system32\profprov.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-02-05 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-02-05 14:24:51 ----A---- C:\Windows\system32\KernelBase.dll

2013-02-05 14:24:51 ----A---- C:\Windows\system32\kernel32.dll

2013-02-05 14:24:51 ----A---- C:\Windows\system32\conhost.exe

2013-02-05 14:24:41 ----A---- C:\Windows\system32\umpnpmgr.dll

2013-02-05 14:24:41 ----A---- C:\Windows\system32\cfgmgr32.dll

2013-02-05 14:24:40 ----A---- C:\Windows\system32\usp10.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\sspisrv.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\sspicli.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\secur32.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\schannel.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\lsass.exe

2013-02-05 14:24:39 ----A---- C:\Windows\system32\lsasrv.dll

2013-02-05 14:24:39 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-02-05 14:24:39 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-02-05 14:24:39 ----A---- C:\Windows\system32\drivers\cng.sys

2013-02-05 14:24:36 ----A---- C:\Windows\system32\wintrust.dll

2013-02-05 14:24:32 ----A---- C:\Windows\system32\netapi32.dll

2013-02-05 14:24:32 ----A---- C:\Windows\system32\browser.dll

2013-02-05 14:24:32 ----A---- C:\Windows\system32\browcli.dll

2013-02-05 14:24:31 ----A---- C:\Windows\system32\srcore.dll

2013-02-05 14:24:31 ----A---- C:\Windows\system32\rstrui.exe

2013-02-05 14:24:19 ----A---- C:\Windows\system32\WFS.exe

2013-02-05 14:24:19 ----A---- C:\Windows\system32\FXSCOVER.exe

2013-02-05 14:24:18 ----A---- C:\Windows\system32\dpnet.dll

2013-02-05 14:24:18 ----A---- C:\Windows\system32\dpnaddr.dll

2013-02-05 14:24:17 ----A---- C:\Windows\system32\odbctrac.dll

2013-02-05 14:24:17 ----A---- C:\Windows\system32\odbcjt32.dll

2013-02-05 14:24:17 ----A---- C:\Windows\system32\odbccu32.dll

2013-02-05 14:24:17 ----A---- C:\Windows\system32\odbccr32.dll

2013-02-05 14:24:17 ----A---- C:\Windows\system32\odbccp32.dll

2013-02-05 14:24:17 ----A---- C:\Windows\explorer.exe

2013-02-05 14:24:16 ----A---- C:\Windows\system32\packager.dll

2013-02-05 14:24:15 ----A---- C:\Windows\system32\XpsGdiConverter.dll

2013-02-05 14:24:12 ----A---- C:\Windows\system32\prevhost.exe

2013-02-05 14:24:11 ----A---- C:\Windows\system32\d3d10_1core.dll

2013-02-05 14:24:11 ----A---- C:\Windows\system32\d3d10_1.dll

2013-02-05 14:24:10 ----A---- C:\Windows\system32\drivers\partmgr.sys

2013-02-05 14:24:08 ----A---- C:\Windows\system32\xmllite.dll

2013-02-05 14:24:07 ----A---- C:\Windows\system32\synceng.dll

2013-02-05 14:24:06 ----A---- C:\Windows\system32\d3d10level9.dll

2013-02-05 14:24:04 ----A---- C:\Windows\system32\msvcrt.dll

2013-02-05 14:24:03 ----A---- C:\Windows\system32\csrsrv.dll

2013-02-05 14:23:58 ----A---- C:\Windows\system32\drivers\Diskdump.sys

2013-02-05 14:23:57 ----A---- C:\Windows\system32\shell32.dll

2013-02-05 14:23:49 ----A---- C:\Windows\system32\mfc42u.dll

2013-02-05 14:23:49 ----A---- C:\Windows\system32\mfc42.dll

2013-02-05 14:23:45 ----A---- C:\Windows\system32\poqexec.exe

2013-02-05 14:23:44 ----A---- C:\Windows\system32\drivers\bowser.sys

2013-02-05 14:13:55 ----A---- C:\Windows\system32\tzres.dll

2013-02-05 14:13:48 ----A---- C:\Windows\system32\drivers\dxgmms1.sys

2013-02-05 14:13:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-02-05 14:13:48 ----A---- C:\Windows\system32\cdd.dll

2013-02-05 14:08:50 ----A---- C:\Windows\system32\wups2.dll

2013-02-05 14:08:50 ----A---- C:\Windows\system32\wucltux.dll

2013-02-05 14:08:50 ----A---- C:\Windows\system32\wuaueng.dll

2013-02-05 14:08:50 ----A---- C:\Windows\system32\wuauclt.exe

2013-02-05 14:08:42 ----A---- C:\Windows\system32\wups.dll

2013-02-05 14:08:42 ----A---- C:\Windows\system32\wudriver.dll

2013-02-05 14:08:42 ----A---- C:\Windows\system32\wuapi.dll

2013-02-05 14:08:35 ----A---- C:\Windows\system32\wuwebv.dll

2013-02-05 14:08:35 ----A---- C:\Windows\system32\wuapp.exe

2013-02-05 13:39:11 ----A---- C:\Windows\system32\aestaren.dll

2013-02-05 13:39:11 ----A---- C:\Windows\system32\aestacap.dll

2013-02-05 13:39:10 ----D---- C:\Windows\system32\SRSLabs

2013-02-05 13:38:42 ----A---- C:\Windows\system32\drivers\stwrt.sys

2013-02-05 13:38:40 ----N---- C:\Windows\system32\stapi32.dll

2013-02-05 13:38:40 ----A---- C:\Windows\system32\stcplx.dll

2013-02-05 13:38:40 ----A---- C:\Windows\system32\stapo.dll

2013-02-05 13:38:40 ----A---- C:\Windows\system32\st326292.dll

2013-02-05 13:38:39 ----HD---- C:\Program Files\InstallShield Installation Information

2013-02-05 13:38:39 ----D---- C:\Program Files\IDT

2013-02-05 13:37:46 ----D---- C:\Program Files\Common Files\Intel

2013-02-05 13:36:51 ----D---- C:\Intel

2013-02-05 13:36:42 ----A---- C:\Windows\system32\TVWSetup.exe

2013-02-05 13:36:42 ----A---- C:\Windows\system32\igfxtray.exe

2013-02-05 13:36:42 ----A---- C:\Windows\system32\igfxsrvc.exe

2013-02-05 13:36:41 ----A---- C:\Windows\system32\igfxpers.exe

2013-02-05 13:36:41 ----A---- C:\Windows\system32\igfxext.exe

2013-02-05 13:36:41 ----A---- C:\Windows\system32\hkcmd.exe

2013-02-05 13:36:41 ----A---- C:\Windows\system32\GfxUI.exe

2013-02-05 13:36:37 ----A---- C:\Windows\system32\IntcDAuC.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\iglhsip32.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\iglhcp32.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxTMM.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxsrvc.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxress.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxpph.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxexps.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxdo.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\IGFXDEVLib.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxdev.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\igfxCoIn_v2281.dll

2013-02-05 13:36:37 ----A---- C:\Windows\system32\drivers\IntcDAud.sys

2013-02-05 13:36:37 ----A---- C:\Windows\system32\drivers\Impcd.sys

2013-02-05 13:36:36 ----A---- C:\Windows\system32\igdumdx32.dll

2013-02-05 13:36:36 ----A---- C:\Windows\system32\igdumd32.dll

2013-02-05 13:36:36 ----A---- C:\Windows\system32\igd10umd32.dll

2013-02-05 13:36:36 ----A---- C:\Windows\system32\drivers\igdkmd32.sys

2013-02-05 13:36:35 ----A---- C:\Windows\system32\ig4icd32.dll

2013-02-05 13:36:35 ----A---- C:\Windows\system32\hccutils.dll

2013-02-05 13:36:35 ----A---- C:\Windows\system32\gfxSrvc.dll

2013-02-05 13:36:35 ----A---- C:\Windows\system32\d3dx10_40.dll

2013-02-05 13:32:53 ----D---- C:\Program Files\WIDCOMM

2013-02-05 13:32:11 ----A---- C:\Windows\system32\drivers\btwampfl.sys

2013-02-05 13:32:01 ----D---- C:\Dell

2013-02-05 13:13:28 ----D---- C:\ProgramData\Norton

2013-02-05 13:13:15 ----D---- C:\ProgramData\NortonInstaller

2013-02-05 13:01:22 ----D---- C:\Program Files\Intel

2013-02-05 13:01:15 ----A---- C:\Windows\system32\PROUnstl.exe

2013-02-05 12:59:41 ----SHD---- C:\Windows\Installer

2013-02-05 11:52:57 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-02-05 11:49:19 ----D---- C:\Windows\SoftwareDistribution

2013-02-05 11:48:49 ----D---- C:\Users\cyriel2\AppData\Roaming\Identities

2013-02-05 11:48:35 ----SD---- C:\Users\cyriel2\AppData\Roaming\Microsoft

2013-02-05 11:48:35 ----D---- C:\Users\cyriel2\AppData\Roaming\Media Center Programs

2013-02-05 11:48:27 ----SHD---- C:\Recovery

2013-02-05 11:48:27 ----SHD---- C:\ProgramData\Sjablonen

2013-02-05 11:48:27 ----SHD---- C:\ProgramData\Menu Start

2013-02-05 11:48:27 ----SHD---- C:\ProgramData\Favorieten

2013-02-05 11:48:27 ----SHD---- C:\ProgramData\Documenten

2013-02-05 11:48:27 ----SHD---- C:\ProgramData\Bureaublad

2013-02-05 11:37:36 ----D---- C:\Windows\Prefetch

2013-02-05 11:37:14 ----SHD---- C:\System Volume Information

2013-02-05 11:37:14 ----ASH---- C:\pagefile.sys

2013-02-05 11:37:14 ----ASH---- C:\hiberfil.sys

2013-02-05 11:36:32 ----D---- C:\Windows\Panther

======List of files/folders modified in the last 1 month======

2013-02-25 11:31:09 ----D---- C:\Windows\Temp

2013-02-24 23:18:43 ----D---- C:\Windows\system32\config

2013-02-24 18:48:57 ----RD---- C:\Program Files

2013-02-24 18:40:00 ----D---- C:\Windows\system32\drivers

2013-02-24 18:25:43 ----HD---- C:\ProgramData

2013-02-24 18:08:35 ----D---- C:\Program Files\Common Files

2013-02-24 18:08:20 ----D---- C:\Windows\system32\Tasks

2013-02-24 16:38:12 ----RSD---- C:\Windows\assembly

2013-02-24 16:38:12 ----D---- C:\Windows\Microsoft.NET

2013-02-24 14:59:50 ----D---- C:\Windows\System32

2013-02-13 18:47:17 ----D---- C:\Windows\winsxs

2013-02-13 18:45:34 ----D---- C:\Windows\system32\migration

2013-02-13 18:45:34 ----D---- C:\Program Files\Internet Explorer

2013-02-13 18:42:51 ----D---- C:\Windows\system32\catroot2

2013-02-13 18:42:51 ----D---- C:\Windows\system32\catroot

2013-02-13 18:41:07 ----D---- C:\Windows\inf

2013-02-09 18:49:13 ----D---- C:\Windows\system32\DriverStore

2013-02-08 19:31:54 ----RSD---- C:\Windows\Fonts

2013-02-08 19:31:43 ----D---- C:\Program Files\Common Files\microsoft shared

2013-02-08 19:10:26 ----SD---- C:\ProgramData\Microsoft

2013-02-08 19:08:25 ----D---- C:\Windows\ShellNew

2013-02-08 15:57:00 ----D---- C:\Windows\Tasks

2013-02-08 15:49:25 ----D---- C:\Windows

2013-02-08 15:45:25 ----D---- C:\Windows\Downloaded Program Files

2013-02-07 17:17:27 ----D---- C:\Users

2013-02-07 15:42:08 ----D---- C:\Windows\Logs

2013-02-07 13:35:00 ----A---- C:\Windows\system32\NETw5r32.dll

2013-02-07 13:35:00 ----A---- C:\Windows\system32\NETw5c32.dll

2013-02-07 13:09:23 ----D---- C:\Windows\system32\LogFiles

2013-02-06 22:07:48 ----D---- C:\Windows\rescache

2013-02-06 12:35:56 ----D---- C:\Windows\system32\wdi

2013-02-06 11:09:06 ----D---- C:\Windows\system32\nl-NL

2013-02-05 18:24:22 ----D---- C:\Windows\system32\drivers\UMDF

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Sidebar

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Portable Devices

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Photo Viewer

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Media Player

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Mail

2013-02-05 18:22:03 ----D---- C:\Program Files\Windows Journal

2013-02-05 18:22:03 ----D---- C:\Program Files\DVD Maker

2013-02-05 18:22:02 ----D---- C:\Windows\servicing

2013-02-05 18:22:02 ----D---- C:\Windows\ehome

2013-02-05 18:22:02 ----D---- C:\Program Files\Windows Defender

2013-02-05 18:22:02 ----D---- C:\Program Files\Common Files\System

2013-02-05 18:21:57 ----D---- C:\Windows\system32\oobe

2013-02-05 18:21:57 ----D---- C:\Windows\system32\da-DK

2013-02-05 18:21:56 ----D---- C:\Windows\system32\sysprep

2013-02-05 18:21:56 ----D---- C:\Windows\system32\sppui

2013-02-05 18:21:56 ----D---- C:\Windows\system32\Setup

2013-02-05 18:21:56 ----D---- C:\Windows\system32\manifeststore

2013-02-05 18:21:56 ----D---- C:\Windows\system32\es-ES

2013-02-05 18:21:56 ----D---- C:\Windows\system32\drivers\nl-NL

2013-02-05 18:21:56 ----D---- C:\Windows\system32\cs-CZ

2013-02-05 18:21:56 ----D---- C:\Windows\system32\AdvancedInstallers

2013-02-05 18:21:55 ----D---- C:\Windows\system32\wbem

2013-02-05 18:21:52 ----D---- C:\Windows\system32\migwiz

2013-02-05 18:21:51 ----D---- C:\Windows\system32\Dism

2013-02-05 18:21:37 ----D---- C:\Windows\AppPatch

2013-02-05 18:21:31 ----D---- C:\Windows\system32\Boot

2013-02-05 18:10:45 ----A---- C:\Windows\system32\msclmd.dll

2013-02-05 15:32:02 ----D---- C:\Windows\system32\en-US

2013-02-05 15:19:02 ----D---- C:\Windows\PolicyDefinitions

2013-02-05 14:28:54 ----D---- C:\Windows\debug

2013-02-05 13:33:39 ----SD---- C:\Windows\system32\Microsoft

2013-02-05 12:21:59 ----D---- C:\Windows\system32\restore

2013-02-05 11:51:34 ----D---- C:\Windows\system32\CodeIntegrity

2013-02-05 11:48:48 ----SHD---- C:\$Recycle.Bin

2013-02-05 11:48:27 ----D---- C:\Windows\system32\Recovery

2013-02-05 11:48:27 ----D---- C:\Program Files\Windows NT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2008-06-04 26608]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]

R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NAV\1402010.016\SYMDS.SYS [2012-10-03 368288]

R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NAV\1402010.016\SYMEFA.SYS [2012-10-03 927904]

R1 BHDrvx86;BHDrvx86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.1.22\Definitions\BASHDefs\20130208.001\BHDrvx86.sys [2013-01-16 997464]

R1 ccSet_NAV;Norton AntiVirus Settings Manager; C:\Windows\system32\drivers\NAV\1402010.016\ccSetx86.sys [2012-08-20 134304]

R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DD03000.01A\ccSetx86.sys [2012-11-16 134304]

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2013-02-08 376480]

R1 IDSVix86;IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.1.22\Definitions\IPSDefs\20130222.001\IDSvix86.sys [2013-02-07 386720]

R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\NAV\1402010.016\SRTSPX.SYS [2012-09-06 32888]

R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NAV\1402010.016\Ironx86.SYS [2012-09-06 175264]

R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NAV\1402010.016\SYMNETS.SYS [2012-09-06 338592]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]

R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]

R3 cvusbdrv;Dell ControlVault; C:\Windows\System32\Drivers\cvusbdrv.sys [2009-11-03 33832]

R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K; C:\Windows\system32\DRIVERS\e1k6232.sys [2012-02-02 388264]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-02-08 106656]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-01-12 9035776]

R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-26 132480]

R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-08-31 269824]

R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-12-14 21104]

R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.1.22\Definitions\VirusDefs\20130223.009\NAVENG.SYS [2013-02-08 93296]

R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.1.22\Definitions\VirusDefs\20130223.009\NAVEX15.SYS [2013-02-08 1603824]

R3 NETw5s32;Intel® Wireless WiFi Link adapter stuurprogramma onder Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2013-02-07 6114816]

R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]

R3 SRTSP;Symantec Real Time Storage Protection; C:\Windows\system32\drivers\NAV\1402010.016\SRTSP.SYS [2012-10-08 586400]

R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10305; C:\Windows\system32\DRIVERS\stwrt.sys [2010-07-22 431616]

R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2013-02-08 142496]

R3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\drivers\WinUSB.sys [2010-11-20 35968]

S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]

S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]

S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]

S3 btwampfl;Bluetooth AMP USB Filter; C:\Windows\system32\drivers\btwampfl.sys [2013-02-05 274472]

S3 btwaudio;Bluetooth-audioapparaat; C:\Windows\system32\drivers\btwaudio.sys [2013-02-05 88104]

S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2013-02-05 110632]

S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2013-02-05 33320]

S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2013-02-05 18728]

S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]

S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 16384]

S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 10752]

S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]

S3 NAL;Nal Service ; \??\C:\Windows\system32\Drivers\iqvw32.sys [2012-09-20 31048]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]

S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2009-03-03 81920]

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-01-08 628000]

R2 Credential Vault Host Control Service;Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2010-03-24 812448]

R2 Credential Vault Host Storage;Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2010-03-24 27040]

R2 dcpsysmgrsvc;Dell System Manager Service; C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [2011-07-28 390000]

R2 desksvc;Desk 365 service; C:\Program Files\Desk 365\deskSvc.exe [2013-02-24 271440]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2012-09-06 112968]

R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]

R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]

R2 NAV;Norton AntiVirus; C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\ccSvcHst.exe [2012-12-04 143928]

R2 NCO;Norton Identity Safe; C:\Program Files\Norton Identity Safe\Engine\2013.3.0.26\ccSvcHst.exe [2012-12-24 144520]

R2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell); C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe [2010-05-17 331512]

R2 QDLService2kDell_CTC;Qualcomm Gobi 2000 Download Service (Dell_CTC); C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe [2010-05-17 331512]

R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10101; C:\Program Files\IDT\WDM\STacSV.exe [2010-07-22 245842]

R2 UtilityChest_49Service;Utility ChestService; C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe [2013-02-24 42504]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-06 116648]

S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-07 161384]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-23 251248]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-06 116648]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-06 194032]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-05 1343400]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.09 2013-02-25 11:31:43

======Uninstall list======

-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}

-->MsiExec.exe /I{8054D734-39C7-463D-B764-9C883982B8F9}

Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_168_ActiveX.exe -maintain activex

BioAPI Framework-->MsiExec.exe /X{AF7E4468-E364-4991-BC2A-6E8293E1055B}

D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}

Dell ControlVault Host Components Installer-->MsiExec.exe /I{5A26B7C0-55B1-4DA8-A693-E51380497A5E}

Dell Security Device Driver Pack-->"C:\Program Files\InstallShield Installation Information\{FF1DDCF4-3A28-4F7F-96D8-E3F4BD1C1702}\setup.exe" -runfromtemp -l0x0013 -removeonly

Dell System Manager-->MsiExec.exe /I{3EC64C00-4BBC-4C0A-9F95-40E3EDA72837}

Desk 365-->C:\Program Files\Desk 365\eUninstall.exe

Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_94DDE1EDD1CDF6A3.exe" /uninstall

Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}

Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

HiJackThis-->MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7}

IDT Audio-->"C:\Program Files\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly

InstallVC90Support-->MsiExec.exe /X{9E384B32-59C8-46EF-BEA6-4DC8F27CDB8E}

Intel® Graphics Media Accelerator Driver-->C:\Program Files\Intel\Intel® Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall

Intel® Network Connections 17.4.95.0-->MsiExec.exe /i{D54ADF6B-2164-4394-AF70-2778422E9DD8} ARPREMOVE=1

Intel® Network Connections 17.4.95.0-->MsiExec.exe /i{D54ADF6B-2164-4394-AF70-2778422E9DD8} ARPREMOVE=1

Junk Mail filter update-->MsiExec.exe /I{400C31E4-796F-4E86-8FDC-C3C4FACC6847}

Malwarebytes Anti-Malware versie 1.70.0.1100-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Microsoft .NET Framework 4 Client Profile NLD Language Pack-->MsiExec.exe /X{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}

Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client

Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0413-0000-0000000FF1CE} /uninstall {26257879-B20D-4D30-A429-B387A4890929}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0413-0000-0000000FF1CE} /uninstall {26257879-B20D-4D30-A429-B387A4890929}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0413-0000-0000000FF1CE} /uninstall {26257879-B20D-4D30-A429-B387A4890929}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0413-0000-0000000FF1CE} /uninstall {1D12BC91-360E-424C-97C4-813651313660}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0413-0000-0000000FF1CE} /uninstall {26257879-B20D-4D30-A429-B387A4890929}

Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}

Microsoft Office Excel MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0016-0413-0000-0000000FF1CE}

Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}

Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL

Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}

Microsoft Office OneNote MUI (Dutch) 2007-->MsiExec.exe /X{90120000-00A1-0413-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0018-0413-0000-0000000FF1CE}

Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proofing (Dutch) 2007-->MsiExec.exe /X{90120000-002C-0413-0000-0000000FF1CE}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {71F055E8-E2C6-4214-BB3D-BFE03561B89E}

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A}

Microsoft Office Shared MUI (Dutch) 2007-->MsiExec.exe /X{90120000-006E-0413-0000-0000000FF1CE}

Microsoft Office Word MUI (Dutch) 2007-->MsiExec.exe /X{90120000-001B-0413-0000-0000000FF1CE}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

MSVCRT110-->MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}

Norton AntiVirus-->C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV\562C4DD5\20.2.1.22\InstStub.exe /X /ARP

Norton Identity Safe-->C:\Program Files\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.3.0.26\InstStub.exe /X /ARP

Photo Common-->MsiExec.exe /X{743FD554-A73F-4FE8-BE7B-C283D16297F9}

Qualcomm Gobi 2000 Package for Dell-->MsiExec.exe /I{55958FAE-1862-4EE5-96BB-B9309CACE1C0}

Qualcomm Gobi 2000 Package for Dell-->MsiExec.exe /I{AD53FB5C-2D1B-4D9F-AE12-DE0B0DDD6C60}

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client

Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C6997D22-CC93-4ED9-AD8A-02C3F3D2F1F9}

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5DD3FF90-B302-45B2-A188-C5EA7ACD5D46}

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {D33B9EF5-3801-496A-A2D6-B7F4BE972D75}

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}

Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {43171CAD-DC60-4E7B-9703-B2EC18001B9F}

Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {EF5B5C7F-20CB-4A3A-AC3D-F5DE2C2BFDC7}

Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {020B65AD-B2ED-4B35-92CA-DB56EFB864A5}

Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CAB47CC0-A98C-47DD-9FA1-C0416EC96ED5}

Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {488F0918-97F9-4CD0-8AD5-8986A46AC962}

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}

Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition -->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {718E87EC-6590-485A-B12D-C01D290EDB12}

Skype™ 6.2-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}

Speccy-->"C:\Program Files\Speccy\uninst.exe"

Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1043 /parameterfolder ClientLP

Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {620E77C0-CDFE-4C14-AAEB-830ABB65864C}

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8153EC80-C988-4336-8DAF-6D99C0D26E0C}

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}

Update voor Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0413-0000-0000000FF1CE} /uninstall {5CF7002F-6F49-4482-9564-5614FBE560FA}

Update voor Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0413-0000-0000000FF1CE} /uninstall {15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}

Update voor Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0413-0000-0000000FF1CE} /uninstall {A66AE6A1-8D8C-4102-BC18-38CBDE40F809}

UPEK TouchChip Fingerprint Reader-->MsiExec.exe /X{0003C1E0-E0E7-49BB-A0F6-4AE6D2B09202}

Utility Chest Toolbar-->rundll32 C:\PROGRA~1\UTILIT~2\bar\1.bin\49Bar.dll,O

WIDCOMM Bluetooth Software-->MsiExec.exe /X{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}

Windows Live Communications Platform-->MsiExec.exe /I{0454BB9A-2A7A-4214-BDFF-937F7A711A44}

Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe

Windows Live Essentials-->MsiExec.exe /I{B7F31B9C-8775-4500-8E9D-6ABE9AE17CF4}

Windows Live ID Sign-in Assistant-->MsiExec.exe /I{8256F87F-8554-4457-8C3D-3F3324697D9F}

Windows Live Installer-->MsiExec.exe /I{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}

Windows Live Mail-->MsiExec.exe /I{70854FE6-3BF1-4C69-94D0-BEB821102E34}

Windows Live Mail-->MsiExec.exe /I{FA75723A-BF4A-40A2-BFCB-BBC320C27DC9}

Windows Live MIME IFilter-->MsiExec.exe /I{1B947146-366B-42CD-86D5-219993CE3EE2}

Windows Live Photo Common-->MsiExec.exe /X{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}

Windows Live PIMT Platform-->MsiExec.exe /I{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}

Windows Live SOXE Definitions-->MsiExec.exe /I{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}

Windows Live SOXE-->MsiExec.exe /I{FE7C0B3D-50B9-4951-BE78-A321CBF86552}

Windows Live UX Platform Language Pack-->MsiExec.exe /I{4AA2A466-8031-403A-8236-5301B4E391FB}

Windows Live UX Platform-->MsiExec.exe /I{4CCBD1F4-CEEC-452A-9CB8-46564B501315}

Windows Live Writer Resources-->MsiExec.exe /X{FEFD91C5-A25D-48D9-89DA-0FB7BB8B3EF7}

Windows Live Writer-->MsiExec.exe /X{06EED60F-7FFC-43A7-936E-AA4A8BD948B4}

Windows Live Writer-->MsiExec.exe /X{97C79BEC-43F7-4BD8-A6A7-85C0257E488A}

Windows Live Writer-->MsiExec.exe /X{D2C146B1-948D-47EF-8387-5D1C6B980F7C}

Windows-stuurprogrammapakket - Dell Inc. PBADRV System (09/11/2009 1.0.1.6)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst.exe /u C:\Windows\system32\DRVSTORE\pbadrv_D2D6D850155A9A458152AD991F9D098EDD92894A\pbadrv.inf

Windows-stuurprogrammapakket - Intel (NETw5s32) net (09/15/2009 13.0.0.107)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst32.exe /u C:\Windows\System32\DriverStore\FileRepository\netw5s32.inf_x86_neutral_5456a2e0e3eb171f\netw5s32.inf

Windows-stuurprogrammapakket - Intel (NETw5v32) net (09/15/2009 13.0.0.107)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst32.exe /u C:\Windows\System32\DriverStore\FileRepository\netw5v32.inf_x86_neutral_c85c6946bf8cb617\netw5v32.inf

======System event log======

Computer Name: 37L4247D28-05

Event Code: 7036

Message: De Distributed Link Tracking Client-service heeft nu de status stopped.

Record Number: 5

Source Name: Service Control Manager

Time Written: 20090714045645.074339-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 7036

Message: De Security Center-service heeft nu de status stopped.

Record Number: 4

Source Name: Service Control Manager

Time Written: 20090714045645.074339-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 7036

Message: De Desktop Window Manager Session Manager-service heeft nu de status stopped.

Record Number: 3

Source Name: Service Control Manager

Time Written: 20090714045645.074339-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 7036

Message: De Diagnostic Policy Service-service heeft nu de status stopped.

Record Number: 2

Source Name: Service Control Manager

Time Written: 20090714045645.074339-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 7036

Message: De Microsoft Software Shadow Copy Provider-service heeft nu de status stopped.

Record Number: 1

Source Name: Service Control Manager

Time Written: 20090714045645.074339-000

Event Type: Informatie

User:

=====Application event log=====

Computer Name: 37L4247D28-05

Event Code: 412

Message: Catalog Database (1072) Catalog Database: Kan de header van logboekbestand C:\Windows\system32\CatRoot2\edb.log niet lezen. Fout -546.

Record Number: 5

Source Name: ESENT

Time Written: 20130205103802.000000-000

Event Type: Fout

User:

Computer Name: 37L4247D28-05

Event Code: 5617

Message: Subsystemen van Windows Management Instrumentation-service zijn geïnitialiseerd

Record Number: 4

Source Name: Microsoft-Windows-WMI

Time Written: 20130205103801.000000-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 5615

Message: De Windows Management Instrumentation-service is gestart

Record Number: 3

Source Name: Microsoft-Windows-WMI

Time Written: 20130205103759.000000-000

Event Type: Informatie

User:

Computer Name: 37L4247D28-05

Event Code: 1531

Message: De User Profile-service is gestart.

Record Number: 2

Source Name: Microsoft-Windows-User Profiles Service

Time Written: 20130205103756.373287-000

Event Type: Informatie

User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247D28-05

Event Code: 4625

Message: Het EventSystem-subsysteem onderdrukt gedurende 86400 seconden dubbele vermeldingen in het gebeurtenislogboek. De time-out voor onderdrukking kan worden ingesteld met de REG_DWORD-waarde SuppressDuplicateDuration in de volgende registersleutel: HKLM\Software\Microsoft\EventSystem\EventLog.

Record Number: 1

Source Name: Microsoft-Windows-EventSystem

Time Written: 20130205103756.000000-000

Event Type: Informatie

User:

=====Security event log=====

Computer Name: 37L4247D28-05

Event Code: 4672

Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Bevoegdheden: SeAssignPrimaryTokenPrivilege

SeTcbPrivilege

SeSecurityPrivilege

SeTakeOwnershipPrivilege

SeLoadDriverPrivilege

SeBackupPrivilege

SeRestorePrivilege

SeDebugPrivilege

SeAuditPrivilege

SeSystemEnvironmentPrivilege

SeImpersonatePrivilege

Record Number: 5

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130205103737.372454-000

Event Type: Controle geslaagd

User:

Computer Name: 37L4247D28-05

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: 37L4247D28-05$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldingstype: 5

Nieuwe aanmelding:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x1d0

Naam proces: C:\Windows\System32\services.exe

Netwerkgegevens:

Naam van werkstation:

Netwerkadres van bron: -

Poort van bron: -

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: Advapi

Verificatiepakket: Negotiate

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 4

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130205103737.372454-000

Event Type: Controle geslaagd

User:

Computer Name: 37L4247D28-05

Event Code: 4902

Message: De tabel voor controlebeleid per gebruiker is gemaakt.

Aantal elementen: 0

Beleids-id: 0x24d89

Record Number: 3

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130205103731.116843-000

Event Type: Controle geslaagd

User:

Computer Name: 37L4247D28-05

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-0-0

Accountnaam: -

Accountdomein: -

Aanmeldings-id: 0x0

Aanmeldingstype: 0

Nieuwe aanmelding:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x4

Naam proces:

Netwerkgegevens:

Naam van werkstation: -

Netwerkadres van bron: -

Poort van bron: -

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: -

Verificatiepakket: -

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 2

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130205103729.619240-000

Event Type: Controle geslaagd

User:

Computer Name: 37L4247D28-05

Event Code: 4608

Message: Windows wordt opgestart.

Deze gebeurtenis wordt in het logboek geregistreerd wanneer LSASS.EXE wordt gestart en het subsysteem voor controle wordt geïnitialiseerd.

Record Number: 1

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130205103729.588040-000

Event Type: Controle geslaagd

User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\Windows Live\Shared;C:\Users\cyriel2\AppData\Local\Smartbar\Application\;C:\Users\cyriel2\AppData\Local\Smartbar\Application\

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=x86

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

"NUMBER_OF_PROCESSORS"=4

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 37 Stepping 5, GenuineIntel

"PROCESSOR_REVISION"=2505

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

 Delen


×
×
  • Nieuwe aanmaken...