Ga naar inhoud

Bij opstarten Blijft PC Hangen,...


DesPurpleLightning
 Delen

Aanbevolen berichten

Dus.. Ik heb 4 Dagen op rij dat ik thuis kom.

Mijn Computer aanzet. Nadat hij bijna is opgestart blijft hij gewoon vasthangen.

Ik zet heb dan handmatig uit. En Wanneer ik deze opnieuw opstart werkt hij niet. Zelfs geen beeld.

Als ik de power knop induw valt hij na een paar seconden uit. En soms start hij meteen zelf terug op, zonder resultaat.

Maar na een paar keer opnieuw proberen Werkt hij wel.

Dus dan denk ik alles is oke.. Maar 4 Keer oprij? No way.

Iemand enig idee? Als ik geen oplossing vind doe ik hem terug de winkel binnen.

P.S. Ik dacht mss dat het te koud is in mijn kamer? Ma in de winter werkt hij wel.. Het is absoluut geen winter.

Link naar reactie
Delen op andere sites


  • Reacties 26
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Download en installeer Speccy.

Speccy is er ook in Nederlandstalige versie, bij de installatie (of update) kan je de taal wijzigen van Engels naar Nederlands ... als je op het driehoekje klikt, krijg je een uitrolmenu waarin je Nederlands kan selecteren.

Wanneer, tijdens het installeren van Speccy, de optie aangeboden wordt om Google Chrome of Google Toolbar "gratis" mee te installeren dien je de vinkjes weg te halen, tenzij dit een bewuste keuze is.

Speccysetup_zps67a9e41f.png

Start nu het programma en er zal een overzicht gemaakt worden van je hardware.

Als dit gereed is selecteer je bovenaan " Bestand - Publiceer Snapshot " en vervolgens bevestig je die keuze met " Ja ".

In het venster dat nu opent krijg je een link te zien, kopieer nu die link en plak die in je volgende bericht. Zo krijgen we een gedetailleerd overzicht van je hardware.

Meer info over deze procedure lees je HIER.

Link naar reactie
Delen op andere sites

Dus... vorige week deed hij niks meer.. Ik had met alle geluk een back-up gedaan van alles..

Ik heb hem toen binnnen gedaan in de winkel.. Zij hebben dood simpel gewoon recover gedaan..

Dat is natuurlijk altijd het makkelijkst... Maar! Sinds gisteren bleef hij weer 1maal vasthangen bij het opstarten

En Vandaag 2maal voordat ik erop verder kon... Dus Ligt het aan Mijn computer?

Of Ligt het aan sims 3 dat mijn zus installeert?

- - - Updated - - -

Download en installeer Speccy.

Speccy is er ook in Nederlandstalige versie, bij de installatie (of update) kan je de taal wijzigen van Engels naar Nederlands ... als je op het driehoekje klikt, krijg je een uitrolmenu waarin je Nederlands kan selecteren.

Wanneer, tijdens het installeren van Speccy, de optie aangeboden wordt om Google Chrome of Google Toolbar "gratis" mee te installeren dien je de vinkjes weg te halen, tenzij dit een bewuste keuze is.

Speccysetup_zps67a9e41f.png

Start nu het programma en er zal een overzicht gemaakt worden van je hardware.

Als dit gereed is selecteer je bovenaan " Bestand - Publiceer Snapshot " en vervolgens bevestig je die keuze met " Ja ".

In het venster dat nu opent krijg je een link te zien, kopieer nu die link en plak die in je volgende bericht. Zo krijgen we een gedetailleerd overzicht van je hardware.

Meer info over deze procedure lees je HIER.

http://speccy.piriform.com/results/ole0tfWoM2keGS0a2WTmpLF

Hier is de link

- - - Updated - - -

Ik heb een paar ideen..

- Kan het zijn dat een CD (Sims 3) Het opstarten blokkeerd?

- Sims 3 zelf?

Mijn scherm valt wel niet meer uit zoals bij de vorige keer.. Gewoon bevriezen.. En ik geraak er aan opgejaagd..

Link naar reactie
Delen op andere sites


Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.09 (written by random/random)

Run by DesPurpleLightning at 2013-09-26 18:20:52

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 1630 GB (88%) free of 1857 GB

Total RAM: 12264 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 18:21:02, on 26/09/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16686)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe

C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\DesPurpleLightning.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Delta Search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WebConnect - {2316c625-b487-4410-a1a5-ff040b65245f} - C:\Program Files (x86)\WebConnect\WebConnectbho.dll

O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\IPS\IPSBHO.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_70A11E2BAA9738C278CAEFC485CC5CB1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [uTorrent] "C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs:

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: Update WebConnect - WebConnect - C:\Program Files (x86)\WebConnect\updateWebConnect.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12462 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"

C:\Windows\system32\nvvsvc.exe -session -first

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files\Bonjour\mDNSResponder.exe"

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\diMaster.dll" /prefetch:1

"C:\Program Files (x86)\WebConnect\updateWebConnect.exe"

"C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe" /c /a /s UserSession2

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

WLIDSvcM.exe 2384

"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0b1e7132-17d1-40da-8601-4685355108a1 -SystemEventPortName:HostProcess-bafad8d4-72b8-4426-b4c7-17536685252c -IoCancelEventPortName:HostProcess-a4a6c6ee-b26a-49a5-8f3a-2ea9375ca7d0 -NonStateChangingEventPortName:HostProcess-02ba4fa8-3fa5-409b-a5d0-b1a21ecc8ef2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a2970a30-e37e-4668-abf6-d74d97a6ea8f -DeviceGroupId:WpdFsGroup

C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe"

"C:\Program Files\Microsoft IntelliType Pro\itype.exe"

"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"

"C:\Windows\SysWOW64\rundll32.exe" C:\Windows\Syswow64\cm106.dll,CMICtrlWnd

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

"C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

"C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE" /tsr

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\iPod\bin\iPodService.exe"

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3668.0.1777585444\751710265" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x1244 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.7533 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.1.1785678567\905099993" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.2.128450164\1147884155" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.4.457273540\1324813611" /prefetch:673131151

C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.5.1.4_1\npcoplgn.dll" --lang=nl --channel="3668.7.195569164\2130418617" /prefetch:-390060480

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.8.581276155\672975053" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.9.1020898360\97200632" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3668.11.264224442\1102461639" --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.15.1692399531\500244543" /prefetch:673131151

taskeng.exe {84128527-A771-4A67-AB02-34ED8E4099E7}

taskeng.exe {C67C7574-FA65-47B1-9467-BC42CCC3B46B}

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Control1 pct:5 m29stable:r6/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3668.18.1657803002\372966817" /prefetch:673131151

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544

"C:\Users\DesPurpleLightning\Downloads\RSITx64.exe"

C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\AutoKMS.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\UpdaterEX.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316c625-b487-4410-a1a5-ff040b65245f}]

WebConnect - C:\Program Files (x86)\WebConnect\WebConnectbho.dll [2013-08-30 149288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

Norton Identity Protection - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll [2013-08-15 526160]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]

Norton Vulnerability Protection - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\IPS\IPSBHO.DLL [2013-08-06 388512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-23 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-23 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll [2013-08-15 526160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-05-09 11821160]

"MedionReminder"=C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [2011-05-26 443688]

"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2009-11-05 2345848]

"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2009-11-05 2320752]

"Cm106Sound"=C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]

"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"MedionReminder"=C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe [2011-05-26 443688]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_70A11E2BAA9738C278CAEFC485CC5CB1"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]

"EA Core"=C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []

"uTorrent"=C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe [2013-09-23 1130576]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2011-04-30 284440]

"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-04-14 113288]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-08-04 107816]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-09-17 152392]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

OneNote 2010 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave5"=wdmaud.drv

"midi5"=wdmaud.drv

"mixer5"=wdmaud.drv

"wave6"=wdmaud.drv

"midi6"=wdmaud.drv

"mixer6"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-09-26 18:20:52 ----D---- C:\rsit

2013-09-26 18:20:52 ----D---- C:\Program Files\trend micro

2013-09-25 20:18:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll

2013-09-25 20:18:48 ----A---- C:\Windows\SYSWOW64\secur32.dll

2013-09-25 20:18:48 ----A---- C:\Windows\SYSWOW64\schannel.dll

2013-09-25 20:18:48 ----A---- C:\Windows\system32\schannel.dll

2013-09-25 20:18:48 ----A---- C:\Windows\system32\lsasrv.dll

2013-09-25 20:18:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-09-25 20:18:48 ----A---- C:\Windows\system32\drivers\cng.sys

2013-09-25 20:18:47 ----A---- C:\Windows\SYSWOW64\qdvd.dll

2013-09-25 20:18:47 ----A---- C:\Windows\system32\qdvd.dll

2013-09-25 20:11:16 ----D---- C:\backupress

2013-09-25 18:39:14 ----D---- C:\Program Files\Speccy

2013-09-23 21:30:18 ----D---- C:\ProgramData\EA Core

2013-09-23 16:56:27 ----D---- C:\ProgramData\Oracle

2013-09-23 16:56:26 ----D---- C:\ProgramData\Sun

2013-09-23 16:56:14 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll

2013-09-23 16:56:14 ----A---- C:\Windows\SYSWOW64\javaws.exe

2013-09-23 16:56:14 ----A---- C:\Windows\SYSWOW64\deployJava1.dll

2013-09-23 16:55:51 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

2013-09-23 16:55:51 ----A---- C:\Windows\SYSWOW64\javaw.exe

2013-09-23 16:55:51 ----A---- C:\Windows\SYSWOW64\java.exe

2013-09-23 16:55:37 ----D---- C:\Program Files (x86)\Java

2013-09-23 15:58:02 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Apple Computer

2013-09-23 15:57:52 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys

2013-09-23 15:57:51 ----DC---- C:\Windows\system32\DRVSTORE

2013-09-23 15:57:25 ----D---- C:\Program Files\iPod

2013-09-23 15:57:24 ----D---- C:\ProgramData\Apple Computer

2013-09-23 15:57:24 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-09-23 15:57:24 ----D---- C:\Program Files\iTunes

2013-09-23 15:57:24 ----D---- C:\Program Files (x86)\iTunes

2013-09-23 15:56:56 ----D---- C:\Program Files\Common Files\Apple

2013-09-23 15:46:32 ----D---- C:\Windows\AutoKMS

2013-09-23 15:41:28 ----D---- C:\Program Files\Common Files\DESIGNER

2013-09-23 15:40:59 ----D---- C:\Program Files\Microsoft Synchronization Services

2013-09-23 15:40:52 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition

2013-09-23 15:38:58 ----D---- C:\Program Files\Microsoft Analysis Services

2013-09-23 15:38:58 ----D---- C:\Program Files (x86)\Microsoft Analysis Services

2013-09-23 15:38:14 ----D---- C:\Program Files (x86)\Microsoft Office

2013-09-23 15:38:09 ----D---- C:\Program Files\Microsoft Office

2013-09-23 15:37:52 ----RHD---- C:\MSOCache

2013-09-23 15:25:05 ----D---- C:\Program Files\Microsoft Silverlight

2013-09-23 15:25:05 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2013-09-23 15:23:19 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll

2013-09-23 15:23:19 ----A---- C:\Windows\system32\WindowsCodecs.dll

2013-09-23 15:11:49 ----A---- C:\Windows\SYSWOW64\DWrite.dll

2013-09-23 15:11:49 ----A---- C:\Windows\system32\DWrite.dll

2013-09-23 15:10:42 ----D---- C:\Windows\system32\MRT

2013-09-23 14:58:21 ----D---- C:\Windows\SYSWOW64\Wat

2013-09-23 14:58:21 ----D---- C:\Windows\system32\Wat

2013-09-23 14:51:49 ----D---- C:\ProgramData\Microsoft Help

2013-09-23 14:50:10 ----D---- C:\Program Files (x86)\Apple Software Update

2013-09-23 14:47:14 ----D---- C:\ProgramData\Apple

2013-09-23 14:47:14 ----D---- C:\Program Files\Bonjour

2013-09-23 14:47:14 ----D---- C:\Program Files (x86)\Bonjour

2013-09-23 14:35:13 ----A---- C:\Windows\system32\Wdfres.dll

2013-09-23 14:35:13 ----A---- C:\Windows\system32\drivers\WdfLdr.sys

2013-09-23 14:35:13 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\wextract.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\url.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\occache.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\msrating.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\msls31.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\mshta.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\jscript.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\inseng.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\icardie.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\elshyph.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2013-09-23 14:29:27 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\wininet.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\wextract.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\webcheck.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\vbscript.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\urlmon.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\url.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\pngfilt.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\occache.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\msrating.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\msls31.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\mshtmlmedia.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\mshtmler.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\mshtmled.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\mshtml.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\mshta.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\msfeedssync.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\msfeeds.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\licmgr10.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\jsproxy.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\jscript9.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\jscript.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\inseng.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\imgutil.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iexpress.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ieUnatt.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ieui.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iesysprep.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iesetup.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iertutil.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iernonce.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iepeers.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ieframe.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\iedkcs32.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ieapfltr.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ieapfltr.dat

2013-09-23 14:29:27 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\ie4uinit.exe

2013-09-23 14:29:27 ----A---- C:\Windows\system32\icardie.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\elshyph.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\dxtrans.dll

2013-09-23 14:29:27 ----A---- C:\Windows\system32\dxtmsft.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-23 14:27:43 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\dxgi.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10core.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d3d10.dll

2013-09-23 14:27:43 ----A---- C:\Windows\SYSWOW64\d2d1.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\XpsPrint.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\XpsGdiConverter.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\WMPhoto.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\UIAnimation.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\msmpeg2vdec.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\FntCache.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\dxgi.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10warp.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10level9.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10core.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10_1core.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10_1.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d3d10.dll

2013-09-23 14:27:43 ----A---- C:\Windows\system32\d2d1.dll

2013-09-23 14:21:58 ----A---- C:\Windows\system32\browserchoice.exe

2013-09-23 14:19:47 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent

2013-09-23 14:13:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll

2013-09-23 14:13:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll

2013-09-23 14:13:06 ----A---- C:\Windows\system32\atmlib.dll

2013-09-23 14:13:06 ----A---- C:\Windows\system32\atmfd.dll

2013-09-23 14:12:14 ----A---- C:\Windows\system32\WUDFSvc.dll

2013-09-23 14:12:14 ----A---- C:\Windows\system32\WUDFPlatform.dll

2013-09-23 14:12:14 ----A---- C:\Windows\system32\WUDFCoinstaller.dll

2013-09-23 14:12:14 ----A---- C:\Windows\system32\drivers\WUDFRd.sys

2013-09-23 14:12:14 ----A---- C:\Windows\system32\drivers\WUDFPf.sys

2013-09-23 14:12:13 ----A---- C:\Windows\system32\WUDFx.dll

2013-09-23 14:12:13 ----A---- C:\Windows\system32\WUDFHost.exe

2013-09-23 14:08:23 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2013-09-23 14:08:23 ----A---- C:\Windows\system32\imagehlp.dll

2013-09-23 14:08:23 ----A---- C:\Windows\system32\drivers\fs_rec.sys

2013-09-23 14:08:22 ----A---- C:\Windows\SYSWOW64\wmi.dll

2013-09-23 14:08:22 ----A---- C:\Windows\system32\wmi.dll

2013-09-22 16:29:09 ----D---- C:\Program Files (x86)\Origin Games

2013-09-22 16:29:08 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Origin

2013-09-22 16:28:51 ----D---- C:\ProgramData\Origin

2013-09-22 16:28:35 ----D---- C:\Program Files (x86)\Origin

2013-09-22 16:24:02 ----D---- C:\ProgramData\Electronic Arts

2013-09-22 15:45:34 ----D---- C:\Program Files (x86)\Microsoft WSE

2013-09-22 15:31:23 ----D---- C:\Program Files (x86)\Electronic Arts

2013-09-22 12:18:00 ----A---- C:\Windows\system32\drivers\dxgmms1.sys

2013-09-22 12:18:00 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-09-22 12:18:00 ----A---- C:\Windows\system32\cdd.dll

2013-09-22 12:17:58 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll

2013-09-22 12:17:58 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll

2013-09-22 12:17:58 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2013-09-22 12:17:58 ----A---- C:\Windows\system32\dhcpcore6.dll

2013-09-22 12:17:55 ----A---- C:\Windows\SYSWOW64\tsgqec.dll

2013-09-22 12:17:55 ----A---- C:\Windows\SYSWOW64\mstscax.dll

2013-09-22 12:17:55 ----A---- C:\Windows\SYSWOW64\aaclient.dll

2013-09-22 12:17:55 ----A---- C:\Windows\system32\tsgqec.dll

2013-09-22 12:17:55 ----A---- C:\Windows\system32\mstscax.dll

2013-09-22 12:17:55 ----A---- C:\Windows\system32\aaclient.dll

2013-09-22 12:17:50 ----A---- C:\Windows\SYSWOW64\crypt32.dll

2013-09-22 12:17:50 ----A---- C:\Windows\system32\wintrust.dll

2013-09-22 12:17:50 ----A---- C:\Windows\system32\crypt32.dll

2013-09-22 12:17:49 ----A---- C:\Windows\SYSWOW64\wintrust.dll

2013-09-22 12:17:49 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll

2013-09-22 12:17:49 ----A---- C:\Windows\SYSWOW64\cryptnet.dll

2013-09-22 12:17:49 ----A---- C:\Windows\system32\cryptsvc.dll

2013-09-22 12:17:49 ----A---- C:\Windows\system32\cryptnet.dll

2013-09-22 12:17:46 ----A---- C:\Windows\SYSWOW64\quartz.dll

2013-09-22 12:17:46 ----A---- C:\Windows\system32\quartz.dll

2013-09-22 12:17:45 ----A---- C:\Windows\SYSWOW64\ntshrui.dll

2013-09-22 12:17:45 ----A---- C:\Windows\system32\ntshrui.dll

2013-09-22 12:17:44 ----A---- C:\Windows\SYSWOW64\authui.dll

2013-09-22 12:17:44 ----A---- C:\Windows\system32\consent.exe

2013-09-22 12:17:44 ----A---- C:\Windows\system32\authui.dll

2013-09-22 12:17:44 ----A---- C:\Windows\system32\appinfo.dll

2013-09-22 12:17:40 ----A---- C:\Windows\SYSWOW64\webio.dll

2013-09-22 12:17:40 ----A---- C:\Windows\system32\wwansvc.dll

2013-09-22 12:17:40 ----A---- C:\Windows\system32\wwanprotdim.dll

2013-09-22 12:17:40 ----A---- C:\Windows\system32\webio.dll

2013-09-22 12:17:40 ----A---- C:\Windows\system32\drivers\ntfs.sys

2013-09-22 12:17:30 ----A---- C:\Windows\SYSWOW64\tzres.dll

2013-09-22 12:17:30 ----A---- C:\Windows\system32\tzres.dll

2013-09-22 12:17:28 ----A---- C:\Windows\system32\drivers\ataport.sys

2013-09-22 12:17:26 ----A---- C:\Windows\system32\drivers\RNDISMP.sys

2013-09-22 12:17:26 ----A---- C:\Windows\system32\drivers\ndis.sys

2013-09-22 12:17:24 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

2013-09-22 12:17:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

2013-09-22 12:17:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll

2013-09-22 12:17:24 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

2013-09-22 12:17:24 ----A---- C:\Windows\SYSWOW64\kernel32.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\wow64win.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\wow64.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\winsrv.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\ntoskrnl.exe

2013-09-22 12:17:24 ----A---- C:\Windows\system32\ntdll.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\KernelBase.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\kernel32.dll

2013-09-22 12:17:24 ----A---- C:\Windows\system32\conhost.exe

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-09-22 12:17:23 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\wow32.dll

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\user.exe

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\setup16.exe

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\instnm.exe

2013-09-22 12:17:23 ----A---- C:\Windows\SYSWOW64\apisetschema.dll

2013-09-22 12:17:23 ----A---- C:\Windows\system32\wow64cpu.dll

2013-09-22 12:17:23 ----A---- C:\Windows\system32\WMVDECOD.DLL

2013-09-22 12:17:23 ----A---- C:\Windows\system32\smss.exe

2013-09-22 12:17:23 ----A---- C:\Windows\system32\ntvdm64.dll

2013-09-22 12:17:23 ----A---- C:\Windows\system32\csrsrv.dll

2013-09-22 12:17:23 ----A---- C:\Windows\system32\apisetschema.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\sspisrv.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\sspicli.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\secur32.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\rdrmemptylst.exe

2013-09-22 12:17:22 ----A---- C:\Windows\system32\rdpwsx.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\rdpcorekmts.dll

2013-09-22 12:17:22 ----A---- C:\Windows\system32\lsass.exe

2013-09-22 12:17:22 ----A---- C:\Windows\system32\drivers\usb8023.sys

2013-09-22 12:17:22 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-09-22 12:17:21 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll

2013-09-22 12:17:21 ----A---- C:\Windows\system32\rpcrt4.dll

2013-09-22 12:17:21 ----A---- C:\Windows\system32\msxml6.dll

2013-09-22 12:17:21 ----A---- C:\Windows\system32\msxml3.dll

2013-09-22 12:17:20 ----A---- C:\Windows\SYSWOW64\netcorehc.dll

2013-09-22 12:17:20 ----A---- C:\Windows\SYSWOW64\ncsi.dll

2013-09-22 12:17:20 ----A---- C:\Windows\SYSWOW64\msxml6.dll

2013-09-22 12:17:20 ----A---- C:\Windows\SYSWOW64\msxml3r.dll

2013-09-22 12:17:20 ----A---- C:\Windows\SYSWOW64\msxml3.dll

2013-09-22 12:17:20 ----A---- C:\Windows\system32\nlasvc.dll

2013-09-22 12:17:20 ----A---- C:\Windows\system32\netcorehc.dll

2013-09-22 12:17:20 ----A---- C:\Windows\system32\ncsi.dll

2013-09-22 12:17:20 ----A---- C:\Windows\system32\msxml3r.dll

2013-09-22 12:17:20 ----A---- C:\Windows\system32\iphlpsvc.dll

2013-09-22 12:17:19 ----A---- C:\Windows\SYSWOW64\nlaapi.dll

2013-09-22 12:17:19 ----A---- C:\Windows\SYSWOW64\netevent.dll

2013-09-22 12:17:19 ----A---- C:\Windows\system32\nlaapi.dll

2013-09-22 12:17:19 ----A---- C:\Windows\system32\netevent.dll

2013-09-22 12:17:19 ----A---- C:\Windows\system32\drivers\tcpipreg.sys

2013-09-22 12:17:17 ----A---- C:\Windows\system32\profsvc.dll

2013-09-22 12:17:05 ----A---- C:\Windows\SYSWOW64\qedit.dll

2013-09-22 12:17:05 ----A---- C:\Windows\SYSWOW64\dpnet.dll

2013-09-22 12:17:05 ----A---- C:\Windows\system32\qedit.dll

2013-09-22 12:17:05 ----A---- C:\Windows\system32\dpnet.dll

2013-09-22 12:17:04 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2013-09-22 12:17:04 ----A---- C:\Windows\system32\OxpsConverter.exe

2013-09-22 12:17:04 ----A---- C:\Windows\system32\ncrypt.dll

2013-09-22 12:17:01 ----A---- C:\Windows\SYSWOW64\usp10.dll

2013-09-22 12:17:01 ----A---- C:\Windows\system32\usp10.dll

2013-09-22 12:17:01 ----A---- C:\Windows\system32\drivers\tssecsrv.sys

2013-09-22 12:16:59 ----A---- C:\Windows\SYSWOW64\Wpc.dll

2013-09-22 12:16:59 ----A---- C:\Windows\SYSWOW64\gameux.dll

2013-09-22 12:16:59 ----A---- C:\Windows\system32\Wpc.dll

2013-09-22 12:16:59 ----A---- C:\Windows\system32\gameux.dll

2013-09-22 12:16:53 ----A---- C:\Windows\SYSWOW64\psisdecd.dll

2013-09-22 12:16:53 ----A---- C:\Windows\system32\psisdecd.dll

2013-09-22 12:16:52 ----A---- C:\Windows\system32\drivers\rdpwd.sys

2013-09-22 12:16:47 ----A---- C:\Windows\system32\win32k.sys

2013-09-22 12:16:47 ----A---- C:\Windows\system32\drivers\afd.sys

2013-09-22 12:16:43 ----A---- C:\Windows\SYSWOW64\msi.dll

2013-09-22 12:16:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2013-09-22 12:16:43 ----A---- C:\Windows\system32\msi.dll

2013-09-22 12:16:43 ----A---- C:\Windows\system32\kerberos.dll

2013-09-22 12:16:43 ----A---- C:\Windows\system32\drivers\partmgr.sys

2013-09-22 12:16:19 ----A---- C:\Windows\SYSWOW64\synceng.dll

2013-09-22 12:16:19 ----A---- C:\Windows\system32\synceng.dll

2013-09-22 12:16:18 ----A---- C:\Windows\SYSWOW64\shell32.dll

2013-09-22 12:16:18 ----A---- C:\Windows\system32\shell32.dll

2013-09-22 12:16:17 ----A---- C:\Windows\SYSWOW64\shdocvw.dll

2013-09-22 12:16:17 ----A---- C:\Windows\system32\shdocvw.dll

2013-09-22 12:16:16 ----A---- C:\Windows\SYSWOW64\win32spl.dll

2013-09-22 12:16:16 ----A---- C:\Windows\system32\win32spl.dll

2013-09-22 12:16:14 ----A---- C:\Windows\system32\taskhost.exe

2013-09-22 12:16:13 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll

2013-09-22 12:16:13 ----A---- C:\Windows\system32\cryptdlg.dll

2013-09-22 12:16:11 ----A---- C:\Windows\SYSWOW64\netapi32.dll

2013-09-22 12:16:11 ----A---- C:\Windows\SYSWOW64\browcli.dll

2013-09-22 12:16:11 ----A---- C:\Windows\system32\netapi32.dll

2013-09-22 12:16:11 ----A---- C:\Windows\system32\drivers\tcpip.sys

2013-09-22 12:16:11 ----A---- C:\Windows\system32\drivers\netio.sys

2013-09-22 12:16:11 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS

2013-09-22 12:16:11 ----A---- C:\Windows\system32\drivers\fvevol.sys

2013-09-22 12:16:11 ----A---- C:\Windows\system32\browser.dll

2013-09-22 12:16:11 ----A---- C:\Windows\system32\browcli.dll

2013-09-22 12:16:10 ----A---- C:\Windows\SYSWOW64\srclient.dll

2013-09-22 12:16:10 ----A---- C:\Windows\SYSWOW64\msvcrt.dll

2013-09-22 12:16:10 ----A---- C:\Windows\system32\srcore.dll

2013-09-22 12:16:10 ----A---- C:\Windows\system32\msvcrt.dll

2013-09-22 12:16:08 ----A---- C:\Windows\SYSWOW64\certutil.exe

2013-09-22 12:16:08 ----A---- C:\Windows\system32\certutil.exe

2013-09-22 12:16:07 ----A---- C:\Windows\SYSWOW64\certenc.dll

2013-09-22 12:16:07 ----A---- C:\Windows\system32\certenc.dll

2013-09-22 12:16:05 ----A---- C:\Windows\SYSWOW64\oleaut32.dll

2013-09-22 12:16:05 ----A---- C:\Windows\SYSWOW64\oleacc.dll

2013-09-22 12:16:05 ----A---- C:\Windows\system32\oleacc.dll

2013-09-22 12:16:05 ----A---- C:\Windows\system32\localspl.dll

2013-09-22 12:16:04 ----A---- C:\Windows\SYSWOW64\EncDec.dll

2013-09-22 12:16:04 ----A---- C:\Windows\system32\oleaut32.dll

2013-09-22 12:16:04 ----A---- C:\Windows\system32\EncDec.dll

2013-09-22 12:15:59 ----A---- C:\Windows\SYSWOW64\cdosys.dll

2013-09-22 12:15:59 ----A---- C:\Windows\system32\cdosys.dll

2013-09-22 12:15:58 ----A---- C:\Windows\SYSWOW64\d3d11.dll

2013-09-22 12:15:58 ----A---- C:\Windows\system32\spoolsv.exe

2013-09-22 12:15:58 ----A---- C:\Windows\system32\d3d11.dll

2013-09-22 12:15:58 ----A---- C:\Windows\splwow64.exe

2013-09-22 12:15:57 ----A---- C:\Windows\SYSWOW64\packager.dll

2013-09-22 12:15:57 ----A---- C:\Windows\system32\packager.dll

2013-09-21 22:40:57 ----ASH---- C:\pagefile.sys

2013-09-21 16:18:38 ----D---- C:\Program Files\Common Files\Symantec Shared

2013-09-21 16:18:38 ----A---- C:\Windows\system32\drivers\SYMEVENT64x86.SYS

2013-09-21 16:18:28 ----D---- C:\Windows\system32\drivers\N360x64

2013-09-21 16:18:27 ----D---- C:\Program Files (x86)\Norton 360

2013-09-21 16:18:23 ----D---- C:\Program Files (x86)\NortonInstaller

2013-09-21 16:15:25 ----D---- C:\ProgramData\Norton

2013-09-21 16:10:42 ----D---- C:\ProgramData\NortonInstaller

2013-09-21 16:09:06 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\vlc

2013-09-21 16:08:56 ----D---- C:\Program Files (x86)\VideoLAN

2013-09-21 16:08:33 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\UpdaterEX

2013-09-21 16:08:25 ----D---- C:\Program Files (x86)\Mozilla Firefox

2013-09-21 16:08:17 ----D---- C:\ProgramData\DSearchLink

2013-09-21 16:08:07 ----D---- C:\Program Files (x86)\WebConnect

2013-09-21 16:08:05 ----D---- C:\ProgramData\Babylon

2013-09-21 16:08:04 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Babylon

2013-09-21 16:02:42 ----N---- C:\Windows\Vmix106.dll

2013-09-21 16:02:34 ----N---- C:\Windows\SYSWOW64\cmpa106.dll

2013-09-21 16:02:34 ----N---- C:\Windows\SYSWOW64\CM106.dll

2013-09-21 16:02:33 ----N---- C:\Windows\system32\Cmeau106.exe

2013-09-21 16:02:21 ----A---- C:\Windows\system32\drivers\CM10664.sys

2013-09-21 16:01:59 ----N---- C:\Windows\system32\CmiInstallResAll64.dll

2013-09-21 16:01:56 ----RA---- C:\Windows\difxapi.dll

2013-09-21 15:57:21 ----D---- C:\Program Files\Microsoft IntelliPoint

2013-09-21 15:56:48 ----D---- C:\Program Files\Microsoft IntelliType Pro

2013-09-21 14:04:04 ----A---- C:\Windows\SYSWOW64\rdpcore.dll

2013-09-21 14:04:04 ----A---- C:\Windows\system32\rdpcore.dll

2013-09-21 14:04:04 ----A---- C:\Windows\system32\drivers\tdtcp.sys

2013-09-21 14:03:53 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Adobe

2013-09-21 13:58:56 ----A---- C:\Windows\system32\wups2.dll

2013-09-21 13:58:56 ----A---- C:\Windows\system32\wucltux.dll

2013-09-21 13:58:56 ----A---- C:\Windows\system32\wuaueng.dll

2013-09-21 13:58:56 ----A---- C:\Windows\system32\wuauclt.exe

2013-09-21 13:58:44 ----A---- C:\Windows\system32\wups.dll

2013-09-21 13:58:44 ----A---- C:\Windows\system32\wudriver.dll

2013-09-21 13:58:44 ----A---- C:\Windows\system32\wuapi.dll

2013-09-21 13:57:28 ----A---- C:\Windows\system32\wuwebv.dll

2013-09-21 13:57:28 ----A---- C:\Windows\system32\wuapp.exe

2013-09-21 13:56:37 ----HD---- C:\ProgramData\Medion Reminder

2013-09-21 13:56:20 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Intel Corporation

2013-09-21 13:55:53 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Identities

2013-09-21 13:55:51 ----SHD---- C:\$RECYCLE.BIN

2013-09-21 13:55:45 ----SD---- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft

2013-09-21 13:55:45 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Media Center Programs

2013-09-21 13:55:45 ----D---- C:\Users\DesPurpleLightning\AppData\Roaming\Macromedia

2013-09-21 13:53:54 ----D---- C:\Program Files\PlayReady

2013-09-21 13:53:52 ----D---- C:\ProgramData\Partner

2013-09-21 13:53:51 ----D---- C:\Program Files\Google

2013-09-21 13:53:29 ----D---- C:\Program Files (x86)\Google

2013-09-21 13:52:21 ----SHD---- C:\Recovery

2013-09-21 13:52:21 ----SHD---- C:\Documents and Settings

2013-09-21 13:49:41 ----D---- C:\Windows\SoftwareDistribution

======List of files/folders modified in the last 1 month======

2013-09-26 18:20:52 ----RD---- C:\Program Files

2013-09-26 18:20:34 ----D---- C:\Windows\Temp

2013-09-26 18:03:32 ----A---- C:\Windows\SYSWOW64\log.txt

2013-09-26 18:02:59 ----SHD---- C:\System Volume Information

2013-09-26 18:02:07 ----D---- C:\Windows\system32\Tasks

2013-09-26 18:02:05 ----D---- C:\Windows\Tasks

2013-09-26 18:01:36 ----D---- C:\Windows\system32\config

2013-09-25 22:10:02 ----D---- C:\Windows\System32

2013-09-25 22:10:02 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-09-25 21:27:10 ----D---- C:\Windows\system32\drivers

2013-09-25 21:26:54 ----D---- C:\Windows\inf

2013-09-25 20:34:25 ----D---- C:\Windows\Microsoft.NET

2013-09-25 20:34:08 ----RSD---- C:\Windows\assembly

2013-09-25 20:27:17 ----D---- C:\Windows\Prefetch

2013-09-25 20:26:29 ----D---- C:\Windows

2013-09-25 20:26:27 ----D---- C:\Windows\winsxs

2013-09-25 20:24:56 ----D---- C:\Windows\SysWOW64

2013-09-25 20:24:56 ----D---- C:\Windows\system32\nl-NL

2013-09-25 20:22:29 ----SHD---- C:\Windows\Installer

2013-09-25 20:19:25 ----D---- C:\Windows\system32\catroot

2013-09-25 20:19:24 ----D---- C:\Windows\system32\DriverStore

2013-09-25 20:18:37 ----D---- C:\Windows\system32\catroot2

2013-09-24 18:35:01 ----D---- C:\ProgramData\Adobe

2013-09-23 21:30:18 ----HD---- C:\ProgramData

2013-09-23 20:41:57 ----D---- C:\Windows\rescache

2013-09-23 16:56:25 ----D---- C:\Program Files (x86)\Common Files

2013-09-23 16:55:37 ----RD---- C:\Program Files (x86)

2013-09-23 16:33:42 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-09-23 15:56:56 ----D---- C:\Program Files\Common Files

2013-09-23 15:41:33 ----RSD---- C:\Windows\Fonts

2013-09-23 15:41:28 ----D---- C:\Program Files\Common Files\Microsoft Shared

2013-09-23 15:40:52 ----SD---- C:\ProgramData\Microsoft

2013-09-23 15:40:52 ----D---- C:\Program Files (x86)\Microsoft.NET

2013-09-23 15:38:58 ----D---- C:\Windows\ShellNew

2013-09-23 14:59:27 ----D---- C:\Program Files\Common Files\System

2013-09-23 14:59:25 ----D---- C:\Windows\AppPatch

2013-09-23 14:59:24 ----D---- C:\Windows\ehome

2013-09-23 14:59:23 ----D---- C:\Windows\system32\wbem

2013-09-23 14:59:23 ----D---- C:\Windows\system32\drivers\nl-NL

2013-09-23 14:59:20 ----D---- C:\Program Files\Windows Defender

2013-09-23 14:59:20 ----D---- C:\Program Files (x86)\Windows Defender

2013-09-23 14:59:19 ----D---- C:\Program Files (x86)\Internet Explorer

2013-09-23 14:59:16 ----D---- C:\Program Files\Internet Explorer

2013-09-23 14:59:11 ----D---- C:\Windows\SYSWOW64\pt-PT

2013-09-23 14:59:11 ----D---- C:\Windows\SYSWOW64\it-IT

2013-09-23 14:59:10 ----D---- C:\Windows\SYSWOW64\pl-PL

2013-09-23 14:59:10 ----D---- C:\Windows\SYSWOW64\hu-HU

2013-09-23 14:59:09 ----D---- C:\Windows\SYSWOW64\sl-SI

2013-09-23 14:59:09 ----D---- C:\Windows\SYSWOW64\el-GR

2013-09-23 14:59:08 ----D---- C:\Windows\SYSWOW64\migration

2013-09-23 14:59:07 ----D---- C:\Windows\SYSWOW64\tr-TR

2013-09-23 14:59:07 ----D---- C:\Windows\SYSWOW64\fr-FR

2013-09-23 14:59:06 ----D---- C:\Windows\SYSWOW64\wbem

2013-09-23 14:59:05 ----D---- C:\Windows\SYSWOW64\es-ES

2013-09-23 14:59:04 ----D---- C:\Windows\SYSWOW64\de-DE

2013-09-23 14:59:02 ----D---- C:\Windows\SYSWOW64\da-DK

2013-09-23 14:59:01 ----D---- C:\Windows\SYSWOW64\en-US

2013-09-23 14:58:59 ----D---- C:\Windows\system32\it-IT

2013-09-23 14:58:59 ----D---- C:\Windows\PolicyDefinitions

2013-09-23 14:58:58 ----D---- C:\Windows\system32\pt-PT

2013-09-23 14:58:58 ----D---- C:\Windows\system32\pl-PL

2013-09-23 14:58:57 ----D---- C:\Windows\system32\hu-HU

2013-09-23 14:58:56 ----D---- C:\Windows\system32\sl-SI

2013-09-23 14:58:56 ----D---- C:\Windows\system32\el-GR

2013-09-23 14:58:55 ----D---- C:\Windows\system32\tr-TR

2013-09-23 14:58:55 ----D---- C:\Windows\system32\migration

2013-09-23 14:58:55 ----D---- C:\Windows\system32\fr-FR

2013-09-23 14:58:54 ----D---- C:\Windows\system32\es-ES

2013-09-23 14:58:53 ----D---- C:\Windows\system32\de-DE

2013-09-23 14:58:52 ----D---- C:\Windows\system32\en-US

2013-09-23 14:58:52 ----D---- C:\Windows\system32\da-DK

2013-09-23 14:58:46 ----D---- C:\Windows\SYSWOW64\zh-HK

2013-09-23 14:58:46 ----D---- C:\Windows\SYSWOW64\pt-BR

2013-09-23 14:58:46 ----D---- C:\Windows\SYSWOW64\ko-KR

2013-09-23 14:58:44 ----D---- C:\Windows\SYSWOW64\fi-FI

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\zh-TW

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\zh-CN

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\sv-SE

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\ru-RU

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\ja-JP

2013-09-23 14:58:43 ----D---- C:\Windows\SYSWOW64\cs-CZ

2013-09-23 14:58:42 ----D---- C:\Windows\SYSWOW64\nb-NO

2013-09-23 14:58:39 ----D---- C:\Windows\system32\zh-HK

2013-09-23 14:58:39 ----D---- C:\Windows\system32\pt-BR

2013-09-23 14:58:39 ----D---- C:\Windows\system32\ko-KR

2013-09-23 14:58:38 ----D---- C:\Windows\system32\zh-TW

2013-09-23 14:58:38 ----D---- C:\Windows\system32\sv-SE

2013-09-23 14:58:38 ----D---- C:\Windows\system32\fi-FI

2013-09-23 14:58:37 ----D---- C:\Windows\system32\zh-CN

2013-09-23 14:58:37 ----D---- C:\Windows\system32\ru-RU

2013-09-23 14:58:37 ----D---- C:\Windows\system32\nb-NO

2013-09-23 14:58:37 ----D---- C:\Windows\system32\ja-JP

2013-09-23 14:58:37 ----D---- C:\Windows\system32\cs-CZ

2013-09-23 14:57:59 ----D---- C:\Program Files\Windows Journal

2013-09-23 14:33:12 ----D---- C:\Windows\Logs

2013-09-22 22:37:01 ----D---- C:\Program Files (x86)\Windows Sidebar

2013-09-22 22:37:01 ----D---- C:\Program Files (x86)\Windows Mail

2013-09-22 22:37:00 ----D---- C:\Program Files (x86)\Windows Photo Viewer

2013-09-22 22:37:00 ----D---- C:\Program Files (x86)\Windows Media Player

2013-09-22 22:36:59 ----D---- C:\Program Files\Windows Sidebar

2013-09-22 22:36:59 ----D---- C:\Program Files\Windows Media Player

2013-09-22 22:36:59 ----D---- C:\Program Files\Windows Mail

2013-09-22 22:36:58 ----D---- C:\Windows\servicing

2013-09-22 22:36:58 ----D---- C:\Program Files\Windows Photo Viewer

2013-09-22 22:36:56 ----D---- C:\Windows\SYSWOW64\winrm

2013-09-22 22:36:56 ----D---- C:\Windows\SYSWOW64\migwiz

2013-09-22 22:36:55 ----D---- C:\Windows\SYSWOW64\oobe

2013-09-22 22:36:49 ----D---- C:\Windows\SYSWOW64\sysprep

2013-09-22 22:36:49 ----D---- C:\Windows\SYSWOW64\slmgr

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\XPSViewer

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\WCN

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\Setup

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\MUI

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\DriverStore

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\drivers\UMDF

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\drivers

2013-09-22 22:36:48 ----D---- C:\Windows\SYSWOW64\Dism

2013-09-22 22:36:47 ----D---- C:\Windows\SYSWOW64\com

2013-09-22 22:36:46 ----D---- C:\Windows\system32\winrm

2013-09-22 22:36:46 ----D---- C:\Windows\system32\oobe

2013-09-22 22:36:46 ----D---- C:\Windows\system32\migwiz

2013-09-22 22:36:46 ----D---- C:\Windows\IME

2013-09-22 22:36:36 ----D---- C:\Windows\system32\sysprep

2013-09-22 22:36:36 ----D---- C:\Windows\system32\slmgr

2013-09-22 22:36:36 ----D---- C:\Windows\system32\Setup

2013-09-22 22:36:36 ----D---- C:\Windows\system32\drivers\UMDF

2013-09-22 22:36:36 ----D---- C:\Windows\system32\Boot

2013-09-22 22:36:35 ----D---- C:\Windows\system32\WCN

2013-09-22 22:36:35 ----D---- C:\Windows\system32\MUI

2013-09-22 22:36:35 ----D---- C:\Windows\system32\Dism

2013-09-22 22:36:32 ----D---- C:\Windows\system32\Printing_Admin_Scripts

2013-09-22 22:36:30 ----D---- C:\Windows\system32\com

2013-09-22 22:35:54 ----D---- C:\Windows\Speech

2013-09-22 22:35:54 ----D---- C:\Windows\es-ES

2013-09-22 22:35:36 ----D---- C:\Windows\en-US

2013-09-22 22:35:14 ----D---- C:\Windows\pt-PT

2013-09-22 22:34:15 ----D---- C:\Windows\it-IT

2013-09-22 22:32:46 ----D---- C:\Windows\fr-FR

2013-09-22 22:32:20 ----D---- C:\Program Files\DVD Maker

2013-09-22 20:45:39 ----D---- C:\Windows\de-DE

2013-09-22 18:43:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2013-09-21 22:46:25 ----D---- C:\Windows\debug

2013-09-21 22:42:06 ----D---- C:\Windows\SYSWOW64\RTCOM

2013-09-21 16:02:42 ----D---- C:\Windows\system

2013-09-21 14:28:57 ----D---- C:\Windows\system32\LogFiles

2013-09-21 13:56:55 ----D---- C:\Windows\system32\restore

2013-09-21 13:55:44 ----RD---- C:\Users

2013-09-21 13:52:21 ----D---- C:\Windows\system32\Recovery

2013-09-21 13:52:21 ----D---- C:\Windows\Panther

2013-09-01 17:08:54 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\1500010.003\SYMDS64.SYS [2013-08-01 493656]

R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\1500010.003\SYMEFA64.SYS [2013-08-05 1147480]

R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20130903.002\BHDrvx64.sys [2013-09-04 1525336]

R1 ccSet_N360;N360 Settings Manager; C:\Windows\system32\drivers\N360x64\1500010.003\ccSetx64.sys [2013-07-30 150104]

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2013-09-20 484952]

R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20130925.001\IDSvia64.sys [2013-09-21 520280]

R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\1500010.003\SRTSPX64.SYS [2013-07-31 36952]

R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\1500010.003\Ironx64.SYS [2013-07-31 264280]

R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\N360x64\1500010.003\SYMNETS.SYS [2013-07-31 590424]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2009-11-05 27512]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-09-20 140376]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-05-10 2861288]

R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2011-03-11 56344]

R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20130925.003\ENG64.SYS [2013-09-20 126040]

R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20130925.003\EX64.SYS [2013-09-20 2099288]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2011-04-13 87552]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2011-04-13 207872]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-02-18 189288]

R3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64k.sys [2009-11-05 34160]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]

R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-11-25 694888]

R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\N360x64\1500010.003\SRTSP64.SYS [2013-07-31 854616]

R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2013-09-21 177752]

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 USBMULCD;USB Multi-Channel Audio Device Interface; C:\Windows\system32\drivers\CM10664.sys [2010-07-16 1307648]

S3 wsvd;wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [2010-09-23 129008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-03-11 326168]

R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe [2013-08-31 264360]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-06-01 1016936]

R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-03-11 2656280]

R2 Update WebConnect;Update WebConnect; C:\Program Files (x86)\WebConnect\updateWebConnect.exe [2013-08-30 206632]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-09-17 641352]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-21 116648]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-21 116648]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]

S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-09-23 1255736]

S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

Whutt?

Link naar reactie
Delen op andere sites


Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
C:\Windows\tasks\AutoKMS.job;f
C:\Windows\AutoKMS;fs
C:\Program Files (x86)\WebConnect;fs
C:\ProgramData\Babylon;fs
C:\Users\DesPurpleLightning\AppData\Roaming\Babylon;fs
C:\ProgramData\Partner;u
Update WebConnect;s
firefoxlook; 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • HijackThis Log
  • Firefox Look
  • Chrome Look
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe Version 4.0.0.4 Updated 27-September-2013

Tool run by DesPurpleLightning on vr 27/09/2013 at 16:49:22,17.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\DesPurpleLightning\Downloads\zoek\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

27/09/2013 16:50:35 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-726929981-3964757932-2735912400-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-726929981-3964757932-2735912400-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update WebConnect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update WebConnect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update WebConnect deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update WebConnect deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

"C:\Windows\tasks\AutoKMS.job" deleted

"C:\Program Files (x86)\WebConnect\updateWebConnect.exe" deleted

"C:\Program Files (x86)\WebConnect\WebConnect.Common.dll" deleted

"C:\Program Files (x86)\WebConnect\updateWebConnect.exe" deleted

"C:\Program Files (x86)\WebConnect\WebConnect.Common.dll" deleted

"C:\Windows\AutoKMS" deleted

"C:\Program Files (x86)\WebConnect" not deleted

"C:\ProgramData\Babylon" deleted

"C:\Users\DesPurpleLightning\AppData\Roaming\Babylon" deleted

"C:\Program Files (x86)\WebConnect" not deleted

"C:\Users\DesPurpleLightning\AppData\Roaming\Babylon" deleted

"C:\ProgramData\Partner" deleted

"C:\ProgramData\DSearchLink" deleted

"C:\ProgramData\Babylon" deleted

"C:\Users\DesPurpleLightning\AppData\LocalLow\Delta" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-09-22 10:15:58 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe

2013-09-21 14:02:42 D95A09848A91C22D55CCAC9FCB1032FD 143360 ------w- C:\Windows\Vmix106.dll

2013-09-21 14:02:34 D081592806B2FE4461DE80B92C7AC46F 4608 ------w- C:\Windows\Thumbs.db

2013-09-21 14:02:34 CDC20969A4D73BD955775C2AAC3BB54D 276 ----a-w- C:\Windows\Cm106.ini.cfl

2013-09-21 14:02:34 6E42CF0D47AF25DEA4CECDBE093D521C 10134 ------w- C:\Windows\cmeau106.ico

2013-09-21 14:01:59 ABC23E5353817394BA53C927EFDD198D 112 ----a-w- C:\Windows\Cm106.ini.imi

2013-09-21 14:01:56 9CADC91DF349C198FFB5477A5B23B6C2 524768 ----a-r- C:\Windows\difxapi.dll

====== C:\Users\DESPUR~1\AppData\Local\Temp ====

2013-09-22 14:24:03 9FF6078C0DEA0672EAD358A1EC359F70 47796216 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Temp\EAD18C2.exe

2013-09-22 10:04:43 3C74C26999F2060BC6302448F173A342 340464 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Temp\uninst1.exe

====== Java Cache =====

2013-09-23 15:53:19 EF0B9040E2D9B1B8505303CDB0CD0A0E 146 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\10b5f501-53ed5225

2013-09-23 15:53:19 E3B716BE20CCD307B8BA22EE0F221685 1033 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\5626e281-14b786a6

2013-09-23 15:53:12 45934F387A40FF82C60D36E3C936F8A8 698 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\65627e8a-1a7c01f1

2013-09-23 15:53:10 FD59EE7E427EF2CAA0B8EA38EA4183E2 2762 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\660b204a-5b162e07

2013-09-23 15:53:19 62B1AD40C10DF98D40B58917AB51DCBA 1290 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\5805e34b-174312c8

2013-09-23 15:53:12 3A9E87DDADB915817E8AEF772D69FA92 699 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\3a6c4fce-159a5171

2013-09-23 15:53:07 F47A84FA4762E41FC4F3B2A0F71232EF 223082 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\7fbc6151-5d617dac

2013-09-23 15:53:13 A9E4AE31D5FC9D0C113CD01DF9DFAC60 705 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\36ea9355-671a3e7e

2013-09-23 15:53:13 FB2D399D260A0E64C8D7D100350F51A3 1146 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\23fac056-3a27028b

2013-09-23 15:53:19 5451B81D7C449922150B4E309C4D1DD7 130 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\3aec2b96-66fd40af

2013-09-23 15:53:18 78FD7CB599658FB86FEF311D493809F1 129 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\79d435d6-3a1088a5

2013-09-23 15:53:19 D655A3679A359FB81D771AA380E6FE4A 1022 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\16ee2fd7-10994180

2013-09-23 15:53:12 4A3229FEAC4B601D7583FE068ACD466D 423 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\37829ed7-1b0bae97

2013-09-23 15:53:19 1B0C5215DEA9EFE97B28076BCBDC34AA 569 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\4fbd158-409e244b

2013-09-23 15:53:15 17344FEB4DCA982172BC7514AA0E17C0 1067 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\3ccfde59-14c1359c

2013-09-23 15:53:18 594DCD30BC10F837656747BC931106B9 1214 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\783cdf59-2adf6b28

2013-09-23 15:53:19 9F25CC0DAB185DDFCC8C266DF7217365 1730 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\6eba015c-72242f73

2013-09-23 15:53:18 B1AD4B94A0A9A023EF3D288C07517435 765 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\78188703-2ee959fb

2013-09-23 15:53:12 B9616B8A66E92815482F5ED9722EA1C6 1117 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\2e9f95e1-3a29e917

2013-09-23 15:53:12 BCDC3B75E4B76B2DC9373A6849401D87 941 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3b9a2de1-6abc8ec8

2013-09-23 15:53:11 5DB2A7ECFF63E53DC2B597B90E4EF43E 527 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5642b861-7437d259

2013-09-23 15:53:14 192AD0D03CF5BBCEFD55104ABA673BBB 689 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\23b555a2-3d72c9d6

2013-09-23 15:53:14 652E6B08CB13CEF8B5986A3D019091EE 906 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\7603e62-2caba187

2013-09-23 15:53:13 AAA769F0E7F94B327C9E4343CC24BD3F 1162 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\50e8b764-6e83b94c

2013-09-23 15:53:15 5AAB20FD392D721E3AA6A09D8731056F 1214 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\2502c825-20f86856

2013-09-23 15:53:14 B2C2AAF1BCE48F9DA08A0E0D5A96397D 671 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\313bf684-5d0a565a

2013-09-23 15:53:19 BC7DCBAACE875B505A1F2AAFB56F8EAC 90 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\5ae8f44-52909d04

2013-09-23 15:53:15 1A8B04CD246147AB3ADC7161254DCD60 1337 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\77a55a04-796ba1f5

2013-09-23 15:53:12 6224549CBE5BCA650E079D39CFDAE5C3 1131 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\6b36d5e9-767c9de8

2013-09-23 15:53:12 02727403E772A7BB71E521495C5B2DA4 946 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\2158206a-29db776c

2013-09-23 15:53:12 EC4EBA472A2D99BBA874676696FDE92B 696 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\2d4ee8ab-1188a670

2013-09-23 15:53:19 DD39ED268AED5CA3E9E00A6B239F7433 678 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\3c6b07ee-7992fc94

2013-09-23 15:53:20 5AA47C3729595FF261CB63FD84269453 3285 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\2c716770-262bfa78

2013-09-23 15:53:19 43CB1DD81743DEC54945E7BFD73973A3 553 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4fa12930-21c3062b

2013-09-23 15:53:15 3688AF12FF87C7604A12ED76521D6039 4382 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\5d1cc834-1e549c1a

2013-09-23 15:53:18 B7CA4C6C9898C832E23788E21F6ED786 1383 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\53d212b7-5f2fd238

2013-09-23 15:53:14 58C440504EB6A17035EE739A60840478 666 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\1b3c0739-7415fe87

2013-09-23 15:53:14 1F43FC187BE32DB13787B39069D56727 9183 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\71714839-27bcc197

2013-09-23 15:53:12 24737EB5D2EBBC9081B8E63B51515849 696 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\743b163a-337b6619

2013-09-23 15:53:12 7592C9D74D4C8630F5A71BE56B12D8BA 643 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\1ac3717d-4488d04d

2013-09-23 15:53:18 81E92BE530F6E985D07766DAA1EE8150 100 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\1719977e-4a2e18c4

2013-09-23 15:53:13 571E01434B3A8E5BAE25C47BFEA28B91 696 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\491705be-7c975f51

2013-09-23 15:53:13 FB2D399D260A0E64C8D7D100350F51A3 1146 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5753657e-6e6722ac

2013-09-23 15:53:15 05D7102FDD0F96501D82CA8408E72B21 2494 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\1b21aa7f-4ce18666

2013-09-23 15:53:12 41213F3A31D75E3E457B76E223C974E4 435 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\56565007-32539bec

2013-09-23 15:53:13 EA3D72BE02FAF3AE3AF537F4B216653C 1136 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\60621588-433b97fa

2013-09-23 15:53:13 2815C88AEA6783CE7AD34640852D8E2E 671 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\5baf1ec9-67ce7de3

2013-09-24 16:32:41 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-6864cabf

====== C:\Windows\SysWOW64 =====

2013-09-25 18:18:48 BFB26890612FB8AE8B0463EBEBE84B7E 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll

2013-09-25 18:18:48 AF78F66116814FDD6677CEBD73035CDD 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll

2013-09-25 18:18:48 A113AFEED3159A1ED52D78CB0226006D 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll

2013-09-25 18:18:47 33B26FA5DBEB69FFAB703EDCB4E6DE4A 514560 ----a-w- C:\Windows\SysWOW64\qdvd.dll

2013-09-23 14:56:14 AF661355EBAB898EB92D5454AEF93CE0 868264 ----a-w- C:\Windows\SysWOW64\npDeployJava1.dll

2013-09-23 14:56:14 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe

2013-09-23 14:56:14 20D7DE8DFF1DF0242E88357902D45ABE 790440 ----a-w- C:\Windows\SysWOW64\deployJava1.dll

2013-09-23 14:55:51 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe

2013-09-23 14:55:51 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Windows\SysWOW64\java.exe

2013-09-23 14:55:51 6BEE003DB3FEF04151F614303EBB1E7B 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-09-23 13:23:19 5B2E4E90C04FB9AE9F2C5E99FF59B283 1230336 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll

2013-09-23 13:11:49 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll

2013-09-23 12:29:27 F0D4AE074D9BC0741DC6E91C741F2F8C 23040 ----a-w- C:\Windows\SysWOW64\licmgr10.dll

2013-09-23 12:29:27 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-09-23 12:29:27 E14A07B768EC49D382CABCE2F078D576 232960 ----a-w- C:\Windows\SysWOW64\url.dll

2013-09-23 12:29:27 DEFB55D4FF094673DF31FA89A8A8A2F0 226816 ----a-w- C:\Windows\SysWOW64\dxtrans.dll

2013-09-23 12:29:27 C68FBBF01E86CB6CF0B797748FBD6C1A 357888 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll

2013-09-23 12:29:27 C28A634CF127DA67D566B5E14D0A0170 719360 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll

2013-09-23 12:29:27 C225E5307D8D4982A1687F2702C37C78 158720 ----a-w- C:\Windows\SysWOW64\msls31.dll

2013-09-23 12:29:27 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-09-23 12:29:27 B96C13B5C85AC4240FE95DE115945D59 38400 ----a-w- C:\Windows\SysWOW64\imgutil.dll

2013-09-23 12:29:27 AF0332E09DDBE0172237D1958A7DADB8 79872 ----a-w- C:\Windows\SysWOW64\mshtmled.dll

2013-09-23 12:29:27 A7E8E3A9F92D9B0D495F636A1D282883 48640 ----a-w- C:\Windows\SysWOW64\mshtmler.dll

2013-09-23 12:29:27 9DF7A7C74D8632CB5EBD37E3A374825E 204800 ----a-w- C:\Windows\SysWOW64\webcheck.dll

2013-09-23 12:29:27 9D9AC6CE9A9D951AC40DE91CD6F0A620 1441280 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-09-23 12:29:27 96E0F0BED5D9EBABB899D8CA83C36A7E 523264 ----a-w- C:\Windows\SysWOW64\vbscript.dll

2013-09-23 12:29:27 932571EFF79B93F94E84ADF4989A277F 69120 ----a-w- C:\Windows\SysWOW64\icardie.dll

2013-09-23 12:29:27 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\SysWOW64\ieapfltr.dat

2013-09-23 12:29:27 8A45166CD9874463AB76B552C9C2D3AD 110592 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll

2013-09-23 12:29:27 87E71F2A83681F41B796CA685818EF2D 163840 ----a-w- C:\Windows\SysWOW64\msrating.dll

2013-09-23 12:29:27 828B4A41BE891A7AEC07E693422B4A3A 117248 ----a-w- C:\Windows\SysWOW64\iepeers.dll

2013-09-23 12:29:27 81C4D657D37C3A5418B54BFECE821B84 57344 ----a-w- C:\Windows\SysWOW64\pngfilt.dll

2013-09-23 12:29:27 80B47F0F45C3EBF41C30E0BA367D25D3 125440 ----a-w- C:\Windows\SysWOW64\occache.dll

2013-09-23 12:29:27 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe

2013-09-23 12:29:27 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll

2013-09-23 12:29:27 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-09-23 12:29:27 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-09-23 12:29:27 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-09-23 12:29:27 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-09-23 12:29:27 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe

2013-09-23 12:29:27 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-09-23 12:29:27 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\SysWOW64\wextract.exe

2013-09-23 12:29:27 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-09-23 12:29:27 4A47CAEA8D3B82DE439A79771ECED4B1 361984 ----a-w- C:\Windows\SysWOW64\html.iec

2013-09-23 12:29:27 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-09-23 12:29:27 414A3D9AAE072CDEFE0B64C2EBEE18D2 61952 ----a-w- C:\Windows\SysWOW64\tdc.ocx

2013-09-23 12:29:27 404FAD93ABFBD86D1AAAB47D5DFA6505 242200 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll

2013-09-23 12:29:27 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll

2013-09-23 12:29:27 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe

2013-09-23 12:29:27 338520304B99471BD0ED121954FE7863 82432 ----a-w- C:\Windows\SysWOW64\inseng.dll

2013-09-23 12:29:27 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll

2013-09-23 12:29:27 2D7A29C35D0894481A69FA3AC45F18F0 41984 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll

2013-09-23 12:29:27 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-09-23 12:29:27 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\SysWOW64\ieuinit.inf

2013-09-23 12:29:27 0F44172A5B34E8F208CD0F209EDD4A73 629248 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll

2013-09-23 12:29:27 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-09-23 12:29:27 0402BFC25AB49E02256BC24E32829773 185344 ----a-w- C:\Windows\SysWOW64\elshyph.dll

2013-09-23 12:29:27 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\SysWOW64\iexpress.exe

2013-09-23 12:29:27 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll

2013-09-23 12:29:27 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll

2013-09-23 12:27:43 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\SysWOW64\d3d10core.dll

2013-09-23 12:27:43 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\SysWOW64\dxgi.dll

2013-09-23 12:27:43 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\SysWOW64\d3d10_1core.dll

2013-09-23 12:27:43 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\SysWOW64\XpsGdiConverter.dll

2013-09-23 12:27:43 B3170CCC779B682C3341873EA60CF084 1988096 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll

2013-09-23 12:27:43 9FF8F684BACF326082E5562F7C104A79 3419136 ----a-w- C:\Windows\SysWOW64\d2d1.dll

2013-09-23 12:27:43 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\SysWOW64\UIAnimation.dll

2013-09-23 12:27:43 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\SysWOW64\d3d10.dll

2013-09-23 12:27:43 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\SysWOW64\XpsPrint.dll

2013-09-23 12:27:43 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-23 12:27:43 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-23 12:27:43 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\SysWOW64\WindowsCodecsExt.dll

2013-09-23 12:27:43 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-23 12:27:43 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\SysWOW64\msmpeg2vdec.dll

2013-09-23 12:27:43 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-23 12:27:43 545F1BAAADD0BF1F4FE4586293FCA07D 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll

2013-09-23 12:27:43 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\SysWOW64\d3d10level9.dll

2013-09-23 12:27:43 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-23 12:27:43 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\SysWOW64\d3d10_1.dll

2013-09-23 12:27:43 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-23 12:27:43 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-23 12:27:43 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-23 12:27:43 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-23 12:13:06 E32230F4135D507E79509C998F4D8C92 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll

2013-09-23 12:13:06 5DAF8A6B7F127C4E70A5C1F707347859 295424 ----a-w- C:\Windows\SysWOW64\atmfd.dll

2013-09-23 12:08:23 B2DB6ABA2E292235749B80A9C3DFA867 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll

2013-09-23 12:08:22 907281ED4AD35D41B29FFDC211EBAD80 5120 ----a-w- C:\Windows\SysWOW64\wmi.dll

2013-09-22 10:17:58 EF71BA5DF59034962B0C62314A71351A 193536 ----a-w- C:\Windows\SysWOW64\dhcpcore6.dll

2013-09-22 10:17:58 81F6C1AE23B1C493D9E996C3103915D7 44032 ----a-w- C:\Windows\SysWOW64\dhcpcsvc6.dll

2013-09-22 10:17:55 F5562EFA9E4867D30EC2330B80FCB25C 131584 ----a-w- C:\Windows\SysWOW64\aaclient.dll

2013-09-22 10:17:55 52D33A22DE04BD9F40E1B1A28B46A95C 3217408 ----a-w- C:\Windows\SysWOW64\mstscax.dll

2013-09-22 10:17:55 2A6BFDEDF2C57923E78F970BB15D7E7D 36864 ----a-w- C:\Windows\SysWOW64\tsgqec.dll

2013-09-22 10:17:50 AE8EB083B050E17A7D6EB5E28AECDDD6 1166848 ----a-w- C:\Windows\SysWOW64\crypt32.dll

2013-09-22 10:17:49 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll

2013-09-22 10:17:49 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll

2013-09-22 10:17:49 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\SysWOW64\wintrust.dll

2013-09-22 10:17:46 0AE0C4955E1DE29CCDC9DA1B816FE5EE 1328128 ----a-w- C:\Windows\SysWOW64\quartz.dll

2013-09-22 10:17:45 03F3B770DFBED6131653CEDA8CA780F0 442880 ----a-w- C:\Windows\SysWOW64\ntshrui.dll

2013-09-22 10:17:44 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll

2013-09-22 10:17:40 FB19FC5951A88F3C523E35C2C98D23C0 314880 ----a-w- C:\Windows\SysWOW64\webio.dll

2013-09-22 10:17:38 7E9917D5309A90E7576653BFE39F80D8 478720 ----a-w- C:\Windows\SysWOW64\timedate.cpl

2013-09-22 10:17:30 D5E18BA95F9E7D787D25EF07AC68603E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll

2013-09-22 10:17:24 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe

2013-09-22 10:17:24 365A5034093AD9E04F433046C4CDF6AB 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll

2013-09-22 10:17:24 1B7343C3765638D4D17CB925F84F8ABE 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll

2013-09-22 10:17:24 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe

2013-09-22 10:17:24 0184CC60AB10C8124D69AFB332C6AF1C 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll

2013-09-22 10:17:23 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe

2013-09-22 10:17:23 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe

2013-09-22 10:17:23 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll

2013-09-22 10:17:23 73EF27E157855E3CB18B021BC9622E4C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll

2013-09-22 10:17:23 57EC6102661E0E1D156C1EC251E7CAF8 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll

2013-09-22 10:17:23 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe

2013-09-22 10:17:23 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\SysWOW64\WMVDECOD.DLL

2013-09-22 10:17:21 4DC999CED9429939D75682EBD7D48901 663552 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll

2013-09-22 10:17:20 EAADD6E47ED2A7003ACE1793B98CF63F 1389568 ----a-w- C:\Windows\SysWOW64\msxml6.dll

2013-09-22 10:17:20 A45CB10FC8C4DCA23F96FE4D334F64FE 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll

2013-09-22 10:17:20 5078492B9CAC9CB721698DB51F039035 175104 ----a-w- C:\Windows\SysWOW64\netcorehc.dll

2013-09-22 10:17:20 21D3A18769EC2C4E56756D04E989A221 1236992 ----a-w- C:\Windows\SysWOW64\msxml3.dll

2013-09-22 10:17:20 140D9F911182357626165EA0BEB98C4F 156672 ----a-w- C:\Windows\SysWOW64\ncsi.dll

2013-09-22 10:17:19 23FC8068953C9BE2D63AE4EF1129112A 18944 ----a-w- C:\Windows\SysWOW64\netevent.dll

2013-09-22 10:17:19 0BA65122FFA7E37564EE86422DBF7AE8 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll

2013-09-22 10:17:05 674EB817CF6E43B7DF3EC26E06E98D98 509440 ----a-w- C:\Windows\SysWOW64\qedit.dll

2013-09-22 10:17:05 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\SysWOW64\dpnet.dll

2013-09-22 10:17:04 BF6D6ED5FADCEEE885BD0144ECF1BA27 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll

2013-09-22 10:17:01 B7230010D97787AF3D25E4C82F2B06B9 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll

2013-09-22 10:17:00 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\SysWOW64\oflc-nz.rs

2013-09-22 10:17:00 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\SysWOW64\fpb.rs

2013-09-22 10:17:00 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\SysWOW64\csrr.rs

2013-09-22 10:16:59 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\SysWOW64\esrb.rs

2013-09-22 10:16:59 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\SysWOW64\grb.rs

2013-09-22 10:16:59 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\SysWOW64\usk.rs

2013-09-22 10:16:59 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\SysWOW64\pegibbfc.rs

2013-09-22 10:16:59 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\SysWOW64\gameux.dll

2013-09-22 10:16:59 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\SysWOW64\pegi.rs

2013-09-22 10:16:59 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\SysWOW64\pegi-pt.rs

2013-09-22 10:16:59 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\SysWOW64\Wpc.dll

2013-09-22 10:16:59 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\SysWOW64\cob-au.rs

2013-09-22 10:16:59 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\SysWOW64\djctq.rs

2013-09-22 10:16:58 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\SysWOW64\oflc.rs

2013-09-22 10:16:58 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\SysWOW64\cero.rs

2013-09-22 10:16:58 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\SysWOW64\pegi-fi.rs

2013-09-22 10:16:53 68DCA1777D7224A79A9DC3D47BED6D32 75776 ----a-w- C:\Windows\SysWOW64\psisrndr.ax

2013-09-22 10:16:53 00ADF21DE55AA97297FAC65E4F3A0256 465408 ----a-w- C:\Windows\SysWOW64\psisdecd.dll

2013-09-22 10:16:43 BDA0B954A30498B5A7EDC6204CBA07ED 542208 ----a-w- C:\Windows\SysWOW64\kerberos.dll

2013-09-22 10:16:43 A6C29DB53ECA94FA8591C5388D604B82 2342400 ----a-w- C:\Windows\SysWOW64\msi.dll

2013-09-22 10:16:38 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\SysWOW64\locale.nls

2013-09-22 10:16:19 D23E615E0969AECC1134E372B0B295D1 78336 ----a-w- C:\Windows\SysWOW64\synceng.dll

2013-09-22 10:16:18 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll

2013-09-22 10:16:17 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll

2013-09-22 10:16:16 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\SysWOW64\win32spl.dll

2013-09-22 10:16:13 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\SysWOW64\cryptdlg.dll

2013-09-22 10:16:11 72910F1DEB838E6E08A9017BFB7D4F0B 41984 ----a-w- C:\Windows\SysWOW64\browcli.dll

2013-09-22 10:16:11 2FCA0D2C59A855C54BAFA22AA329DF0F 57344 ----a-w- C:\Windows\SysWOW64\netapi32.dll

2013-09-22 10:16:10 A81331D7EB6C5D1F7B1E4E4FC15F3EC0 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll

2013-09-22 10:16:10 9DC80A8AAAAAC397BDAB3C67165A824E 690688 ----a-w- C:\Windows\SysWOW64\msvcrt.dll

2013-09-22 10:16:08 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe

2013-09-22 10:16:07 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\SysWOW64\certenc.dll

2013-09-22 10:16:05 8E01332CC4B68BC6B5B7EFFE374442AA 233472 ----a-w- C:\Windows\SysWOW64\oleacc.dll

2013-09-22 10:16:05 6C765E82B57F2E66CE9C54AC238471D9 571904 ----a-w- C:\Windows\SysWOW64\oleaut32.dll

2013-09-22 10:16:04 813845D5C5D8325CA5E8B1F547016378 534528 ----a-w- C:\Windows\SysWOW64\EncDec.dll

2013-09-22 10:15:59 3B7C1A53047FF6ACEFD9BA6E281DEBB7 805376 ----a-w- C:\Windows\SysWOW64\cdosys.dll

2013-09-22 10:15:58 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\SysWOW64\d3d11.dll

2013-09-22 10:15:57 7B90C5F0A510852036822EE860CABF26 67072 ----a-w- C:\Windows\SysWOW64\packager.dll

2013-09-21 14:02:34 8AC47B5D5A2521C194B9433B9A0159D6 200704 ------w- C:\Windows\SysWOW64\cmpa106.dll

2013-09-21 14:02:34 3E162A46531454CDAA64BA1CE9DF3719 8151040 ------w- C:\Windows\SysWOW64\CM106.dll

2013-09-21 12:04:04 86F34E7288DA428E38E2D8C7E806A871 826880 ----a-w- C:\Windows\SysWOW64\rdpcore.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-09-25 18:18:48 B7D42CB36C08FA017E73FF2433CD7287 340992 ----a-w- C:\Windows\Sysnative\schannel.dll

2013-09-25 18:18:48 685527DA09EBFB681E98C515978BDEE2 1448448 ----a-w- C:\Windows\Sysnative\lsasrv.dll

2013-09-25 18:18:47 973131EB99BE1E19DAC502CB724E72A5 366592 ----a-w- C:\Windows\Sysnative\qdvd.dll

2013-09-23 13:23:19 3D7BB6DD7A87B3E36E44CA94444247A8 1424384 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll

2013-09-23 13:11:49 DD85F00EC31F77315AE992B7B0411D65 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll

2013-09-23 12:35:13 51DFBD18A435BAEC1F71A692373ECE4F 9728 ----a-w- C:\Windows\Sysnative\Wdfres.dll

2013-09-23 12:29:27 FC6B4D5450871A4D5CB344AFF6C090EF 281600 ----a-w- C:\Windows\Sysnative\dxtrans.dll

2013-09-23 12:29:27 F651D95B5043EFC20A6108A853553984 92160 ----a-w- C:\Windows\Sysnative\SetIEInstalledDate.exe

2013-09-23 12:29:27 EC08E38751854C5B8899139B7DD29FF9 197120 ----a-w- C:\Windows\Sysnative\msrating.dll

2013-09-23 12:29:27 E965529C43D25F2BDA77D705098BF777 135680 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll

2013-09-23 12:29:27 E1055A7FAD39F1F7C44F6152044056EA 905728 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll

2013-09-23 12:29:27 DCAE7117A97F5922B853981D6D491D71 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll

2013-09-23 12:29:27 D9C10A4A0B3411146E6FC8936B079934 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe

2013-09-23 12:29:27 D8DD5CBB9668EEE98915EA49C72F78FA 441856 ----a-w- C:\Windows\Sysnative\html.iec

2013-09-23 12:29:27 D8076F8A3C34064582035AE6696DC34A 27648 ----a-w- C:\Windows\Sysnative\licmgr10.dll

2013-09-23 12:29:27 D0F66CFAED5B85543216EF526D380B8B 270848 ----a-w- C:\Windows\Sysnative\iedkcs32.dll

2013-09-23 12:29:27 D0D4CE6C6CE87269A34A184356475D17 149504 ----a-w- C:\Windows\Sysnative\occache.dll

2013-09-23 12:29:27 CF57F63E6878BEA029B1098D03143AED 855552 ----a-w- C:\Windows\Sysnative\jscript.dll

2013-09-23 12:29:27 CC4AE7E2ECAEE7612B3C0D3AB302375C 19246592 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-09-23 12:29:27 C9BA36F9F3C8B5D929C84DFA0B9FB707 173568 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-09-23 12:29:27 C6DBD79D39061F189A3F1055D44E1590 3959296 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-09-23 12:29:27 C2F21E3059AFF5E616F3E361D9FA10CD 62976 ----a-w- C:\Windows\Sysnative\pngfilt.dll

2013-09-23 12:29:27 C016B4170A836CBA9DF98F02CD055C1B 526336 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-09-23 12:29:27 BC0D4AFBE94D8E1F81C8926D805C3366 247296 ----a-w- C:\Windows\Sysnative\webcheck.dll

2013-09-23 12:29:27 B98DDA3209E252884F6F9431A43424B3 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-09-23 12:29:27 ADE73A865A5F136E84F49BB6B1627C6E 1509376 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-09-23 12:29:27 AAFA952E774DDDB0956D3BDFAE5B5B99 2241024 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-09-23 12:29:27 942E110384668EEFF44751A02EDDF5E4 48640 ----a-w- C:\Windows\Sysnative\mshtmler.dll

2013-09-23 12:29:27 91573C042B3D9163F29CB1E1E51FF51A 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll

2013-09-23 12:29:27 8E9898BF21FF4232EE07BD5D1D1C6281 2647040 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-09-23 12:29:27 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\Sysnative\ieapfltr.dat

2013-09-23 12:29:27 82D602EBBBA6D08E4691F32269FD3494 12800 ----a-w- C:\Windows\Sysnative\msfeedssync.exe

2013-09-23 12:29:27 7EC25F7ABF7CE6B0FE93787524EE537B 452096 ----a-w- C:\Windows\Sysnative\dxtmsft.dll

2013-09-23 12:29:27 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe

2013-09-23 12:29:27 7248896237039BBC477DBB9C62C37FCB 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll

2013-09-23 12:29:27 658E8FEC79A4AB5BFDE032627B5C9667 13824 ----a-w- C:\Windows\Sysnative\mshta.exe

2013-09-23 12:29:27 63CAE56FE4215F98FEB0188748A99378 52224 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll

2013-09-23 12:29:27 5B15164486C66B76699E1CD2CD2F3A2A 51200 ----a-w- C:\Windows\Sysnative\imgutil.dll

2013-09-23 12:29:27 537394CF1A70BFFB0B3C7510404CF91C 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-09-23 12:29:27 5051BB40FFB2BA4870C0A059CA03294F 1054720 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe

2013-09-23 12:29:27 4E426A67C46379B75A5E671B46FC07F6 102912 ----a-w- C:\Windows\Sysnative\inseng.dll

2013-09-23 12:29:27 4CFBEC37E4FAD530E623E1541E1EA958 599552 ----a-w- C:\Windows\Sysnative\vbscript.dll

2013-09-23 12:29:27 440104AEB9DAF8AC9842080AE59740FA 77312 ----a-w- C:\Windows\Sysnative\tdc.ocx

2013-09-23 12:29:27 40738329209CBE2C9B48F7E30F7C1414 144896 ----a-w- C:\Windows\Sysnative\wextract.exe

2013-09-23 12:29:27 402D797A7905DC3C6FE11E75CD5252EB 235008 ----a-w- C:\Windows\Sysnative\url.dll

2013-09-23 12:29:27 390231BA1644AFE0ADD5A7F186EF6FA4 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll

2013-09-23 12:29:27 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe

2013-09-23 12:29:27 35552F806607A86E65B6047BF695D34B 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-09-23 12:29:27 3531FA12A76A32ECECD972196775DF7C 226304 ----a-w- C:\Windows\Sysnative\elshyph.dll

2013-09-23 12:29:27 2AAE2B8FED8390879C2369FC63F7001F 97280 ----a-w- C:\Windows\Sysnative\mshtmled.dll

2013-09-23 12:29:27 23556D116D5FB93395B2A648EEB24251 81408 ----a-w- C:\Windows\Sysnative\icardie.dll

2013-09-23 12:29:27 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\Sysnative\ieuinit.inf

2013-09-23 12:29:27 18A94D6E9D27D169D38DAB91F6A97518 136192 ----a-w- C:\Windows\Sysnative\iepeers.dll

2013-09-23 12:29:27 1456EECCB5CF6B91513200F95D61706E 762368 ----a-w- C:\Windows\Sysnative\ieapfltr.dll

2013-09-23 12:29:27 112183DF91C9BAECB498E4A86ECDE598 216064 ----a-w- C:\Windows\Sysnative\msls31.dll

2013-09-23 12:29:27 08F6335D55310C334B13B9616E61D13D 15404544 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-09-23 12:27:43 FB4045578F5180BDB1963AB352B78548 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-23 12:27:43 FA428BDBCFAB9DC3D58F0BD2CCD50EA2 1682432 ----a-w- C:\Windows\Sysnative\XpsPrint.dll

2013-09-23 12:27:43 F5CEF064C7E6D95DA86B9D064A56A969 3584 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-23 12:27:43 F49E92B50CED5C9F1725D3C0329FD933 10752 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-23 12:27:43 F1C19F0AA151B90A7416FA1D50DDB582 245248 ----a-w- C:\Windows\Sysnative\WindowsCodecsExt.dll

2013-09-23 12:27:43 E8EEA503870CB6A6DC4E09A2433DF33E 2776576 ----a-w- C:\Windows\Sysnative\msmpeg2vdec.dll

2013-09-23 12:27:43 C4C183E6551084039EC862DA1C945E3D 1175552 ----a-w- C:\Windows\Sysnative\FntCache.dll

2013-09-23 12:27:43 C498EF41B93986BCBD483597573EB96D 2565120 ----a-w- C:\Windows\Sysnative\d3d10warp.dll

2013-09-23 12:27:43 B2CA1AC17E78D986B22FD6C2261CD84F 1238528 ----a-w- C:\Windows\Sysnative\d3d10.dll

2013-09-23 12:27:43 AFC3DB5C6EB8CA8017DDB81D6C0AD02A 9728 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-23 12:27:43 AFB73882AE41E1629A63E6713FE30FB9 296960 ----a-w- C:\Windows\Sysnative\d3d10core.dll

2013-09-23 12:27:43 9AE80F6A66B30E3ED8CDF858CF28B11B 194560 ----a-w- C:\Windows\Sysnative\d3d10_1.dll

2013-09-23 12:27:43 9108540E866F75C7AF2B91DD921A8091 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-23 12:27:43 9094039A00485F71C4DE64BF51F64C46 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-23 12:27:43 8DFB5752FCE145A6B295093C0A8BE131 363008 ----a-w- C:\Windows\Sysnative\dxgi.dll

2013-09-23 12:27:43 893E8C1E4A1263EDDB1A6922D0E32201 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll

2013-09-23 12:27:43 7E8A672B7B06A6EB11960C22E0360C59 3928064 ----a-w- C:\Windows\Sysnative\d2d1.dll

2013-09-23 12:27:43 72723D3E4781BADC62C3180C137E7B23 4096 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-23 12:27:43 6F623BD09CBB4C3F97374F12976E5EA5 522752 ----a-w- C:\Windows\Sysnative\XpsGdiConverter.dll

2013-09-23 12:27:43 64A4AB126E24FD3F58EBE64852773DB5 2560 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-23 12:27:43 63F72417CA38D8FC8F53709649B589E3 333312 ----a-w- C:\Windows\Sysnative\d3d10_1core.dll

2013-09-23 12:27:43 3834316FE8A653227282196525E07DFE 648192 ----a-w- C:\Windows\Sysnative\d3d10level9.dll

2013-09-23 12:27:43 0E6FBF19D9DFBB77316C23DF91F8A101 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-23 12:27:43 04CB7C8FDC6D9640DD82A527208F72C4 221184 ----a-w- C:\Windows\Sysnative\UIAnimation.dll

2013-09-23 12:21:58 85D6E8F735865B502D65D1D91A79E3F3 294912 ----a-w- C:\Windows\Sysnative\browserchoice.exe

2013-09-23 12:13:06 CB2ABB2DA1E9C977302A78D86D4AE3B0 367616 ----a-w- C:\Windows\Sysnative\atmfd.dll

2013-09-23 12:13:06 2ED72B3F76C9368ABC01464DA64DB7AE 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll

2013-09-23 12:12:14 F1617F1014D51987D517A4C37A7C733B 45056 ----a-w- C:\Windows\Sysnative\WUDFCoinstaller.dll

2013-09-23 12:12:14 B20F051B03A966392364C83F009F7D17 84992 ----a-w- C:\Windows\Sysnative\WUDFSvc.dll

2013-09-23 12:12:14 B1DF2D87DC8BF6072699AC8301B37796 194048 ----a-w- C:\Windows\Sysnative\WUDFPlatform.dll

2013-09-23 12:12:13 8ABFE00F213F2571498F1B8FD7939A98 229888 ----a-w- C:\Windows\Sysnative\WUDFHost.exe

2013-09-23 12:12:13 25AE683DCB4AE7E6F1B193A0CB9DB35F 744448 ----a-w- C:\Windows\Sysnative\WUDFx.dll

2013-09-23 12:08:23 A1BE6A720D02E37F72E9CD89AE9CB3CF 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll

2013-09-23 12:08:22 C00DB14550E4BD49737F311C644E45FF 5120 ----a-w- C:\Windows\Sysnative\wmi.dll

2013-09-22 10:18:00 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll

2013-09-22 10:17:58 3CC16A849E6092E43909F48EF0E60306 226816 ----a-w- C:\Windows\Sysnative\dhcpcore6.dll

2013-09-22 10:17:58 3C06D5A929B798D0B13F6481242A0FD2 55296 ----a-w- C:\Windows\Sysnative\dhcpcsvc6.dll

2013-09-22 10:17:55 F4C640E85DB6450CB221E5224AA2AB51 3717632 ----a-w- C:\Windows\Sysnative\mstscax.dll

2013-09-22 10:17:55 CE4157E4B1E5041D252EF38EB61E9F0C 44032 ----a-w- C:\Windows\Sysnative\tsgqec.dll

2013-09-22 10:17:55 9F5C2F0CFEF95B4653E21443CDC0D587 158720 ----a-w- C:\Windows\Sysnative\aaclient.dll

2013-09-22 10:17:50 959041D7014C97133D859B45BCA0FC58 224256 ----a-w- C:\Windows\Sysnative\wintrust.dll

2013-09-22 10:17:50 287998A9BA0140ABB59792CDEB2F8483 1472512 ----a-w- C:\Windows\Sysnative\crypt32.dll

2013-09-22 10:17:49 A6B726DCA228F7878E38368A1BDC68BE 139776 ----a-w- C:\Windows\Sysnative\cryptnet.dll

2013-09-22 10:17:49 6B400F211BEE880A37A1ED0368776BF4 184320 ----a-w- C:\Windows\Sysnative\cryptsvc.dll

2013-09-22 10:17:46 44A8B9185030EA57F7999383643ADFFB 1572864 ----a-w- C:\Windows\Sysnative\quartz.dll

2013-09-22 10:17:45 037A719DAD50603202C978CD802623E4 509952 ----a-w- C:\Windows\Sysnative\ntshrui.dll

2013-09-22 10:17:44 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe

2013-09-22 10:17:44 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll

2013-09-22 10:17:44 3EF480BFED1B5947A32585E30A58D4ED 1930752 ----a-w- C:\Windows\Sysnative\authui.dll

2013-09-22 10:17:40 FE90B750AB808FB9DD8FBB428B5FF83B 230400 ----a-w- C:\Windows\Sysnative\wwansvc.dll

2013-09-22 10:17:40 603EBD34E216C5654A2D774EAC98D278 395776 ----a-w- C:\Windows\Sysnative\webio.dll

2013-09-22 10:17:40 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll

2013-09-22 10:17:38 FB10715E4099AF9FA389C71873245226 515584 ----a-w- C:\Windows\Sysnative\timedate.cpl

2013-09-22 10:17:30 B3CA3253009D26666F5BCB16E77D2618 2048 ----a-w- C:\Windows\Sysnative\tzres.dll

2013-09-22 10:17:24 D8973E71F1B35CD3F3DEA7C12D49D0F0 1161216 ----a-w- C:\Windows\Sysnative\kernel32.dll

2013-09-22 10:17:24 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe

2013-09-22 10:17:24 B22C00ED0491FD7B8803D7DDE2849F4C 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll

2013-09-22 10:17:24 AA913C4E63B6F3F52E20BC9932205BCC 243712 ----a-w- C:\Windows\Sysnative\wow64.dll

2013-09-22 10:17:24 9209EA3F29DFC339A87EFD604E035FE4 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll

2013-09-22 10:17:24 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll

2013-09-22 10:17:24 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe

2013-09-22 10:17:24 5B79D52A0388D8DEC5BF68411EA05A02 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll

2013-09-22 10:17:23 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe

2013-09-22 10:17:23 D29200AB0B37B7293C6942EAF755295E 1888768 ----a-w- C:\Windows\Sysnative\WMVDECOD.DLL

2013-09-22 10:17:23 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll

2013-09-22 10:17:23 659D71E315FB40FFE9AD46CB0588BEB1 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll

2013-09-22 10:17:23 49CEA3942A2B99A906EAFC94B853EDBD 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll

2013-09-22 10:17:23 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll

2013-09-22 10:17:22 C118A82CD78818C29AB228366EBF81C3 31232 ----a-w- C:\Windows\Sysnative\lsass.exe

2013-09-22 10:17:22 B66BC8B20B7F33975865B1DF99783FD8 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll

2013-09-22 10:17:22 9E5D9177660A76FC8DECDC37A91A5B0D 9216 ----a-w- C:\Windows\Sysnative\rdrmemptylst.exe

2013-09-22 10:17:22 6D5DCC1579B3961D791ABDE286A1CB5E 77312 ----a-w- C:\Windows\Sysnative\rdpwsx.dll

2013-09-22 10:17:22 5B236296E233CAA6BF86BE0C6501A224 149504 ----a-w- C:\Windows\Sysnative\rdpcorekmts.dll

2013-09-22 10:17:22 3A0CE5FE781708CD6ABD55313607EC8B 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll

2013-09-22 10:17:22 0144D8D75A0B12938AEEE859E3310A46 28160 ----a-w- C:\Windows\Sysnative\secur32.dll

2013-09-22 10:17:21 99B91C5D2FCEF218CAD3600ECB62A799 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll

2013-09-22 10:17:21 371948BC5911ABA06168FAC91ED25F06 1882624 ----a-w- C:\Windows\Sysnative\msxml3.dll

2013-09-22 10:17:21 26036E228D2467DE6975AD819C22C043 1217024 ----a-w- C:\Windows\Sysnative\rpcrt4.dll

2013-09-22 10:17:20 D4FAC263861BAE06971C7F7D0A8EBF15 216576 ----a-w- C:\Windows\Sysnative\ncsi.dll

2013-09-22 10:17:20 D0EC440FA8D306E4CEFC8CC4DEFD2AC4 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll

2013-09-22 10:17:20 8AD77806D336673F270DB31645267293 303104 ----a-w- C:\Windows\Sysnative\nlasvc.dll

2013-09-22 10:17:20 59B3BE37BAFBD40715F45D580783738B 246272 ----a-w- C:\Windows\Sysnative\netcorehc.dll

2013-09-22 10:17:20 08C2957BB30058E663720C5606885653 569344 ----a-w- C:\Windows\Sysnative\iphlpsvc.dll

2013-09-22 10:17:19 DC4382E93770B3BF0774DB7FE46C8239 18944 ----a-w- C:\Windows\Sysnative\netevent.dll

2013-09-22 10:17:19 46BB91A169B9B31FF44EB04C48EC1D41 70656 ----a-w- C:\Windows\Sysnative\nlaapi.dll

2013-09-22 10:17:17 53E83F1F6CF9D62F32801CF66D8352A8 209920 ----a-w- C:\Windows\Sysnative\profsvc.dll

2013-09-22 10:17:05 A3EC566925BEC505E2418C1AC14E541E 624128 ----a-w- C:\Windows\Sysnative\qedit.dll

2013-09-22 10:17:05 374CE9DAB2F0CB173B8FCF3AB8DB5D1B 478208 ----a-w- C:\Windows\Sysnative\dpnet.dll

2013-09-22 10:17:04 A236B1646E96AB06BE0F8D592B6D9A0D 245760 ----a-w- C:\Windows\Sysnative\OxpsConverter.exe

2013-09-22 10:17:04 5F3307352216618221A17CFEF273EEE2 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll

2013-09-22 10:17:01 DBF99FD9CAF75CA66D042BD8D050FF71 800768 ----a-w- C:\Windows\Sysnative\usp10.dll

2013-09-22 10:17:00 EBB73E4E8CA01089CF74ECE506EB7607 43520 ----a-w- C:\Windows\Sysnative\csrr.rs

2013-09-22 10:17:00 A2E0F1E01A0983E9C94565BBEC862BF7 40960 ----a-w- C:\Windows\Sysnative\cob-au.rs

2013-09-22 10:17:00 997938D423CE830161CB6059434E3C9F 45568 ----a-w- C:\Windows\Sysnative\oflc-nz.rs

2013-09-22 10:17:00 54B11BB2AFBC3D5EBA9C96F0C1820B9B 46592 ----a-w- C:\Windows\Sysnative\fpb.rs

2013-09-22 10:16:59 C4B0793E4B97AA36A2A8C81A7AA1979A 44544 ----a-w- C:\Windows\Sysnative\pegibbfc.rs

2013-09-22 10:16:59 6D540AF9B183FC97DC4CC54369561548 20480 ----a-w- C:\Windows\Sysnative\pegi-pt.rs

2013-09-22 10:16:59 661AE5EAC62C4598DD01795CEB915BAE 20480 ----a-w- C:\Windows\Sysnative\pegi.rs

2013-09-22 10:16:59 65A8302C7551CFE45FAA2BC085C9E7E2 15360 ----a-w- C:\Windows\Sysnative\djctq.rs

2013-09-22 10:16:59 5C48A43FC30FC61ECB1335DC646686BC 30720 ----a-w- C:\Windows\Sysnative\usk.rs

2013-09-22 10:16:59 4489D5D2CB4BA0799F3FB4625DE181CF 21504 ----a-w- C:\Windows\Sysnative\grb.rs

2013-09-22 10:16:59 2BCBA6052374959A30BD7948444DBB79 2746368 ----a-w- C:\Windows\Sysnative\gameux.dll

2013-09-22 10:16:59 027675ED9B34EE1B91505C3B8752649F 441856 ----a-w- C:\Windows\Sysnative\Wpc.dll

2013-09-22 10:16:58 D0C01412FBF59C1C25630C49F0C1B803 55296 ----a-w- C:\Windows\Sysnative\cero.rs

2013-09-22 10:16:58 9BB05674E013C35F4DAED51F5015355D 20480 ----a-w- C:\Windows\Sysnative\pegi-fi.rs

2013-09-22 10:16:58 51D25C805A01A2C4F930F9720CF51FFE 51712 ----a-w- C:\Windows\Sysnative\esrb.rs

2013-09-22 10:16:58 4773EB5962548068547214A620E9ACC3 23552 ----a-w- C:\Windows\Sysnative\oflc.rs

2013-09-22 10:16:53 78394F2B354BDC28C5C61837872DD132 108032 ----a-w- C:\Windows\Sysnative\psisrndr.ax

2013-09-22 10:16:53 050AF06F8B0463417E4AED9DA5816A65 613888 ----a-w- C:\Windows\Sysnative\psisdecd.dll

2013-09-22 10:16:47 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\Sysnative\win32k.sys

2013-09-22 10:16:43 5EB6E9C8BE1ACC5830780E0F9A846255 3216384 ----a-w- C:\Windows\Sysnative\msi.dll

2013-09-22 10:16:43 44E1A196DFCB53B01FE4B855C3B56A15 715776 ----a-w- C:\Windows\Sysnative\kerberos.dll

2013-09-22 10:16:38 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\Sysnative\locale.nls

2013-09-22 10:16:19 8699D17DFCFCD327784034DB6BD3A422 95744 ----a-w- C:\Windows\Sysnative\synceng.dll

2013-09-22 10:16:18 AD662B34B161198B9D66A564EDDA7D43 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll

2013-09-22 10:16:17 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll

2013-09-22 10:16:16 67CF11E00D026A5C0C88EA5F84D501E5 751104 ----a-w- C:\Windows\Sysnative\win32spl.dll

2013-09-22 10:16:14 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\Sysnative\taskhost.exe

2013-09-22 10:16:13 C06FAAF13E37CE482F612AFF2D2331F3 30720 ----a-w- C:\Windows\Sysnative\cryptdlg.dll

2013-09-22 10:16:11 EEEA40F0EDB0A6E5359E539E15D0BC77 73216 ----a-w- C:\Windows\Sysnative\netapi32.dll

2013-09-22 10:16:11 05F5A0D14A2EE1D8255C2AA0E9E8E694 136704 ----a-w- C:\Windows\Sysnative\browser.dll

2013-09-22 10:16:11 012787CEB35505EB78DF82E0A0072888 59392 ----a-w- C:\Windows\Sysnative\browcli.dll

2013-09-22 10:16:10 D5164131D596A070FF9C82BC4A488F1F 503808 ----a-w- C:\Windows\Sysnative\srcore.dll

2013-09-22 10:16:10 C391FC68282A000CDF953F8B6B55D2EF 634880 ----a-w- C:\Windows\Sysnative\msvcrt.dll

2013-09-22 10:16:08 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\Sysnative\certutil.exe

2013-09-22 10:16:07 189B0BAE1B0EDD51CEF1CD3F4CDEE02E 52224 ----a-w- C:\Windows\Sysnative\certenc.dll

2013-09-22 10:16:05 CF636C92B762B26F0B39B38E92380A09 331776 ----a-w- C:\Windows\Sysnative\oleacc.dll

2013-09-22 10:16:05 45CFBFA8EDC3DF4E2B7FB0D0260FE051 956928 ----a-w- C:\Windows\Sysnative\localspl.dll

2013-09-22 10:16:04 C06B32165E23A72A898B7A89679AD754 861696 ----a-w- C:\Windows\Sysnative\oleaut32.dll

2013-09-22 10:16:04 1392A9F9E56A876C616D8A33FE272C78 723456 ----a-w- C:\Windows\Sysnative\EncDec.dll

2013-09-22 10:15:59 1FEB1694B13247A451B274E114AFAC45 1133568 ----a-w- C:\Windows\Sysnative\cdosys.dll

2013-09-22 10:15:58 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\Sysnative\spoolsv.exe

2013-09-22 10:15:58 4C92EB7535CAA1681A77D928FBF9771F 1887232 ----a-w- C:\Windows\Sysnative\d3d11.dll

2013-09-22 10:15:57 BACE7F36D65968FD07757B239B01F4E2 77312 ----a-w- C:\Windows\Sysnative\packager.dll

2013-09-21 14:02:41 BB34973588729796EFE3547DADD79F42 389120 ------w- C:\Windows\Sysnative\CM106.cpl

2013-09-21 14:02:33 E94D563109A2EA6A00A41465F9AB399F 792576 ------w- C:\Windows\Sysnative\Cmeau106.exe

2013-09-21 14:01:59 11BB3D5DC9336037C14A46873FA1FFDF 359424 ------w- C:\Windows\Sysnative\CmiInstallResAll64.dll

2013-09-21 12:04:04 4474A8AEABD056DF636FD4FBEF49353B 1031680 ----a-w- C:\Windows\Sysnative\rdpcore.dll

2013-09-21 11:58:56 D9EF901DCA379CFE914E9FA13B73B4C4 2428952 ----a-w- C:\Windows\Sysnative\wuaueng.dll

2013-09-21 11:58:56 C1C03EA437EDDA8A7D4D8786E5AE6751 57880 ----a-w- C:\Windows\Sysnative\wuauclt.exe

2013-09-21 11:58:56 7FE0D0C8F53735EA17C9AE93EFE7AD5A 44056 ----a-w- C:\Windows\Sysnative\wups2.dll

2013-09-21 11:58:56 50EBD31C3527366FAFA468BD609F7352 2622464 ----a-w- C:\Windows\Sysnative\wucltux.dll

2013-09-21 11:58:44 E746ED90132C6B6313CE9179F56BD31D 38424 ----a-w- C:\Windows\Sysnative\wups.dll

2013-09-21 11:58:44 C47F35CC6FA4F1BDBEF8F87AC1A46537 701976 ----a-w- C:\Windows\Sysnative\wuapi.dll

2013-09-21 11:58:44 4AA6AA52A16EED6481E83D73EED4C8D5 99840 ----a-w- C:\Windows\Sysnative\wudriver.dll

2013-09-21 11:57:28 FF0729002E081668620A681182D63FE6 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe

2013-09-21 11:57:28 3E38C20AC83B01C45723B63B0F7A8FDC 186752 ----a-w- C:\Windows\Sysnative\wuwebv.dll

====== C:\Windows\Sysnative\drivers =====

2013-09-25 18:18:48 AAFCB52FE0037207FB6FBEA070D25EFE 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys

2013-09-25 18:18:48 7EFB9333E4ECCE6AE4AE9D777D9E553E 154480 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys

2013-09-23 13:57:52 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\Sysnative\drivers\GEARAspiWDM.sys

2013-09-23 12:35:14 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2013-09-23 12:35:13 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\Sysnative\drivers\WdfLdr.sys

2013-09-23 12:35:13 442783E2CB0DA19873B7A63833FF4CB4 785512 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys

2013-09-23 12:12:14 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys

2013-09-23 12:12:14 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys

2013-09-23 12:12:13 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\Sysnative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2013-09-23 12:08:23 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\Sysnative\drivers\fs_rec.sys

2013-09-22 10:18:00 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys

2013-09-22 10:18:00 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys

2013-09-22 10:17:40 B98F8C6E31CD07B2E6F71F7F648E38C0 1656680 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys

2013-09-22 10:17:28 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys

2013-09-22 10:17:26 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys

2013-09-22 10:17:26 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\Sysnative\drivers\RNDISMP.sys

2013-09-22 10:17:22 97A7070AEA4C058B6418519E869A63B4 95600 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys

2013-09-22 10:17:22 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys

2013-09-22 10:17:19 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\Sysnative\drivers\tcpipreg.sys

2013-09-22 10:17:01 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\Sysnative\drivers\tssecsrv.sys

2013-09-22 10:16:52 E61608AA35E98999AF9AAEEEA6114B0A 210944 ----a-w- C:\Windows\Sysnative\drivers\rdpwd.sys

2013-09-22 10:16:47 1C7857B62DE5994A75B054A9FD4C3825 498688 ----a-w- C:\Windows\Sysnative\drivers\afd.sys

2013-09-22 10:16:43 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys

2013-09-22 10:16:11 DB74544B75566C974815E79A62433F29 1910208 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys

2013-09-22 10:16:11 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\Sysnative\drivers\fvevol.sys

2013-09-22 10:16:11 7942B7AC3FF598F8A1736D51ADAF04E8 376688 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

2013-09-22 10:16:11 41C67E4205C606A103DEC8651D0B6FE6 288088 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS

2013-09-21 14:18:38 E16E2431516D904CED3946AD3FF8C86B 854 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.INF

2013-09-21 14:18:38 97E11C50CE52277B377396EA8838E539 177752 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.SYS

2013-09-21 14:18:38 7846ED59291A134CC5DD017C6EC7B433 8222 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.CAT

2013-09-21 14:02:21 F9B3054339A71F16430F6585EBC8BE96 1307648 ----a-w- C:\Windows\Sysnative\drivers\CM10664.sys

2013-09-21 13:57:40 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_point64k_01009.Wdf

2013-09-21 12:04:04 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\Sysnative\drivers\tdtcp.sys

====== C:\Windows\Tasks ======

2013-09-23 13:42:13 -------- d-----w- C:\Windows\Sysnative\Tasks\OfficeSoftwareProtectionPlatform

2013-09-23 12:50:11 -------- d-----w- C:\Windows\Sysnative\Tasks\Apple

2013-09-21 14:47:02 CBEBA22E85EF6FD0DA9A9397B647207B 1076 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-09-21 14:47:02 7DEA7C429F29558D821A3BE5C0788BAE 1080 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-09-21 14:47:02 5B29B6E44E68068FBE31A4606886DAF9 3824 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore

2013-09-21 14:47:02 05EDC981CB8D3D3218C834E656042745 4076 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA

2013-09-21 14:08:33 F7147F27B85303907462756ADB1160D0 3302 ----a-w- C:\Windows\Sysnative\Tasks\UpdaterEX

2013-09-21 14:08:33 48BA40BA8FC22E0FD432E97EB7F33280 324 ----a-w- C:\Windows\Tasks\UpdaterEX.job

2013-09-21 13:57:58 EC8D5F5C764092A5BA1D0A9F7E06B77C 3050 ----a-w- C:\Windows\Sysnative\Tasks\Microsoft_Hardware_Launch_IType_exe

2013-09-21 13:57:58 7E0027AF1C8FA81C46C6CEA9A46549D1 3040 ----a-w- C:\Windows\Sysnative\Tasks\Microsoft_Hardware_Launch_IPoint_exe

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-09-26 16:20:52 -------- d-----w- C:\Program Files\trend micro

2013-09-25 16:39:14 -------- d-----w- C:\Program Files\Speccy

2013-09-23 13:57:25 -------- d-----w- C:\Program Files\iPod

2013-09-23 13:57:24 -------- d-----w- C:\Program Files\iTunes

2013-09-23 13:56:56 -------- d-----w- C:\Program Files\Common Files\Apple

2013-09-23 13:41:28 -------- d-----w- C:\Program Files\Common Files\DESIGNER

2013-09-23 13:40:59 -------- d-----w- C:\Program Files\Microsoft Synchronization Services

2013-09-23 13:40:52 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition

2013-09-23 13:38:58 -------- d-----w- C:\Program Files\Microsoft Analysis Services

2013-09-23 13:38:09 -------- d-----w- C:\Program Files\Microsoft Office

2013-09-23 13:25:05 -------- d-----w- C:\Program Files\Microsoft Silverlight

2013-09-23 12:47:14 -------- d-----w- C:\Program Files\Bonjour

2013-09-21 13:57:21 -------- d-----w- C:\Program Files\Microsoft IntelliPoint

2013-09-21 13:56:48 -------- d-----w- C:\Program Files\Microsoft IntelliType Pro

2013-09-21 11:53:54 -------- d-----w- C:\Program Files\PlayReady

2013-09-21 11:53:51 -------- d-----w- C:\Program Files\Google

======= C:\Program Files (x86) =====

2013-09-23 14:56:25 -------- d-----w- C:\Program Files (x86)\Common Files\Java

2013-09-23 14:55:37 -------- d-----w- C:\Program Files (x86)\Java

2013-09-23 13:57:24 -------- d-----w- C:\Program Files (x86)\iTunes

2013-09-23 13:56:50 -------- d-----w- C:\Program Files (x86)\Common Files\Apple

2013-09-23 13:38:58 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services

2013-09-23 13:38:14 -------- d-----w- C:\Program Files (x86)\Microsoft Office

2013-09-23 13:25:05 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight

2013-09-23 12:50:10 -------- d-----w- C:\Program Files (x86)\Apple Software Update

2013-09-23 12:47:14 -------- d-----w- C:\Program Files (x86)\Bonjour

2013-09-22 14:29:09 -------- d-----w- C:\Program Files (x86)\Origin Games

2013-09-22 14:28:35 -------- d-----w- C:\Program Files (x86)\Origin

2013-09-22 13:45:34 -------- d-----w- C:\Program Files (x86)\Microsoft WSE

2013-09-22 13:31:23 -------- d-----w- C:\Program Files (x86)\Electronic Arts

2013-09-21 14:08:56 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-09-21 14:08:07 -------- d-----w- C:\Program Files (x86)\WebConnect

2013-09-21 11:53:29 -------- d-----w- C:\Program Files (x86)\Google

======= C: =====

====== C:\Users\DesPurpleLightning\AppData\Roaming ======

2013-09-24 16:32:52 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Locallow\Adobe

2013-09-24 16:32:52 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Adobe

2013-09-24 16:26:42 75F741C41CB659112D9E7EB08A4D3941 468992 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\~FontCache-System.dat

2013-09-23 14:53:49 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Locallow\Sun

2013-09-23 14:32:27 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help

2013-09-23 14:32:27 -------- d-----w- C:\Users\Default User\AppData\Local\Microsoft Help

2013-09-23 13:58:02 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Apple Computer

2013-09-23 13:58:02 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Apple Computer

2013-09-23 13:57:00 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer

2013-09-23 13:20:40 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\WindowsUpdate

2013-09-23 13:18:54 978FF398E70D957D5D406D559355BF71 8388608 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\~FontCache-S-1-5-21-726929981-3964757932-2735912400-1000.dat

2013-09-23 13:02:01 308C037732DD750FE8B01215E1C7E09D 16777216 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\~FontCache-FontFace.dat

2013-09-23 12:51:50 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Microsoft Help

2013-09-23 12:50:11 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Apple

2013-09-23 12:19:47 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent

2013-09-22 14:29:08 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Origin

2013-09-22 14:29:08 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Origin

2013-09-21 14:45:54 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Deployment

2013-09-21 14:45:54 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Apps

2013-09-21 14:09:06 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\vlc

2013-09-21 14:08:33 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\UpdaterEX

2013-09-21 14:08:33 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Programs

2013-09-21 14:04:49 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Diagnostics

2013-09-21 13:58:20 -------- d-s---w- C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft

2013-09-21 12:47:05 62659890517A8CB5E5699EC00C10BEB7 493176 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-726929981-3964757932-2735912400-1000-12288.dat

2013-09-21 12:47:05 31A32A34908E42B72D13CF8FB5A00D5C 611360 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-726929981-3964757932-2735912400-1000-4096.dat

2013-09-21 12:03:53 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Adobe

2013-09-21 12:02:24 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Google

2013-09-21 11:59:47 62659890517A8CB5E5699EC00C10BEB7 493176 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache-S-1-5-21-726929981-3964757932-2735912400-1000-8192.dat

2013-09-21 11:56:20 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Intel Corporation

2013-09-21 11:56:17 FBDD06894881CB876569505019384573 90112 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\GDIPFONTCACHEV1.DAT

2013-09-21 11:56:15 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Power2Go

2013-09-21 11:56:02 -------- d-----r- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-09-21 11:56:02 -------- d-----r- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-09-21 11:55:58 -------- d-s---w- C:\Users\DesPurpleLightning\AppData\Locallow\Microsoft

2013-09-21 11:55:53 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Identities

2013-09-21 11:55:50 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\VirtualStore

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\AppData\Local\Temporary Internet Files

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\AppData\Local\Geschiedenis

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\AppData\Local\Application Data

2013-09-21 11:55:45 -------- d-s---w- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft

2013-09-21 11:55:45 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WaveEditor

2013-09-21 11:55:45 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover

2013-09-21 11:55:45 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Roaming\Media Center Programs

2013-09-21 11:55:45 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Temp

2013-09-21 11:55:45 -------- d-----w- C:\Users\DesPurpleLightning\AppData\Local\Microsoft

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-09-21 11:53:29 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google

2013-09-21 11:52:26 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm

2013-09-21 11:51:03 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking

====== C:\Users\DesPurpleLightning ======

2013-09-26 16:20:20 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\DesPurpleLightning\Downloads\RSITx64.exe

2013-09-25 16:39:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy

2013-09-25 16:38:03 A0E9A27B051ACEB918F7DBB88BBF3DB3 5552488 ----a-w- C:\Users\DesPurpleLightning\Downloads\spsetup123.exe

2013-09-23 19:30:18 -------- d-----w- C:\ProgramData\EA Core

2013-09-23 14:56:27 -------- d-----w- C:\ProgramData\Oracle

2013-09-23 14:56:26 -------- d-----w- C:\ProgramData\Sun

2013-09-23 14:55:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2013-09-23 14:53:17 AC9C3A02685CEDAE968FCDB7A4618879 913832 ----a-w- C:\Users\DesPurpleLightning\Downloads\chromeinstall-7u40.exe

2013-09-23 13:57:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2013-09-23 13:57:24 -------- d-----w- C:\ProgramData\Apple Computer

2013-09-23 13:57:24 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-09-23 13:41:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2013-09-23 13:25:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2013-09-23 12:51:49 -------- d-----w- C:\ProgramData\Microsoft Help

2013-09-23 12:47:14 -------- d-----w- C:\ProgramData\Apple

2013-09-23 12:38:23 AB4E43F76456280BD8D9CA175A11BDD5 97176400 ----a-w- C:\Users\DesPurpleLightning\Downloads\iTunes64Setup.exe

2013-09-22 14:28:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

2013-09-22 14:28:51 -------- d-----w- C:\ProgramData\Origin

2013-09-22 14:24:02 -------- d-----w- C:\ProgramData\Electronic Arts

2013-09-21 20:41:22 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Searches

2013-09-21 20:41:22 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Music

2013-09-21 14:47:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2013-09-21 14:09:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2013-09-21 13:57:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse

2013-09-21 13:57:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Keyboard

2013-09-21 11:56:37 -------- d--h--w- C:\ProgramData\Medion Reminder

2013-09-21 11:56:02 -------- d-----r- C:\Users\DesPurpleLightning\Searches

2013-09-21 11:55:52 -------- d-----r- C:\Users\DesPurpleLightning\Contacts

2013-09-21 11:55:45 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\DesPurpleLightning\ntuser.ini

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Sjablonen

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\SendTo

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Recent

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Netwerkprinteromgeving

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\NetHood

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Mijn documenten

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Menu Start

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Local Settings

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Cookies

2013-09-21 11:55:45 -------- d-sh--we C:\Users\DesPurpleLightning\Application Data

2013-09-21 11:55:45 -------- d--h--w- C:\Users\DesPurpleLightning\AppData

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Videos

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Saved Games

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Pictures

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Music

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Links

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Favorites

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Downloads

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Documents

2013-09-21 11:55:45 -------- d-----r- C:\Users\DesPurpleLightning\Desktop

====== C: exe-files ==

2013-09-26 16:20:53 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\DesPurpleLightning.exe

2013-09-26 16:20:20 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\DesPurpleLightning\Downloads\RSITx64.exe

2013-09-25 18:20:02 869EB4AF9C510FEB3445BCAB3D578E08 404768 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{58A6A6C6-F7EA-44E2-AB06-D1DB0E580E14}\setup.exe

2013-09-25 16:38:03 A0E9A27B051ACEB918F7DBB88BBF3DB3 5552488 ----a-w- C:\Users\DesPurpleLightning\Downloads\spsetup123.exe

2013-09-23 19:33:12 BC49243557991AC42FCC01B8E3BB05D2 393216 ------w- C:\Program Files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\1.57.62\setup.exe

2013-09-23 19:30:18 7F41E6369DA61BCDC655B92582C5C12A 187563297 ------w- C:\ProgramData\EA Core\cache\Temp1F18\{ CP_Guest_7960(4)_ver2 }\Sims3_1.57.62.023002_from_1.54.95.022002.exe

2013-09-23 16:40:30 8EBE3AF79C4B64B6AF5B0389B65F34F9 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$IJFX69I.exe

2013-09-23 16:40:30 0A536FB96C07E69AABA958BBD268E328 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$I5A6Z9H.exe

2013-09-23 14:56:14 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe

2013-09-23 14:55:51 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe

2013-09-23 14:55:51 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Windows\SysWOW64\java.exe

2013-09-23 14:55:40 20121F1F03EA62AE7DBE20A5C065E62B 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe

2013-09-23 14:55:39 FE62A080B6B3846FB18F04B488BF686F 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe

2013-09-23 14:55:39 FB81754A3C79379C3882128875C8C948 48552 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe

2013-09-23 14:55:39 F744671F237351A00580DEBDA7B13C58 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe

2013-09-23 14:55:39 F07B981F68160C8932BD7E2A056E3542 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe

2013-09-23 14:55:39 ED2542D50B46FACB647E9ACE15376F71 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe

2013-09-23 14:55:39 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe

2013-09-23 14:55:39 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe

2013-09-23 14:55:39 DE16D31DDE767A35C4727D4F5C4F5165 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe

2013-09-23 14:55:39 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe

2013-09-23 14:55:39 A5937B2A94424CF1B13A4AD503AF6B2E 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe

2013-09-23 14:55:39 8BAE06DA395B81D5BB9D335719B4C71F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe

2013-09-23 14:55:39 8B060210811F4C88280BB1FE097C8D18 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe

2013-09-23 14:55:39 879FBD4327A0411AD856CD256E05ACC8 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe

2013-09-23 14:55:39 85369335B06BA3EF80DBB2463BD75FC6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe

2013-09-23 14:55:39 79E6E98DD340052FB62E85FC5C0F40B9 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe

2013-09-23 14:55:39 46D4A740A9CD31274B372AB31FDAB767 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe

2013-09-23 14:55:39 3F17C8C96551E1DFADAD909282D7A53B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe

2013-09-23 14:55:39 33329EE40961C9F75753135EEFEE5215 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe

2013-09-23 14:55:39 20238A6FE9CA82DB6AA17CB08F4906CF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe

2013-09-23 14:55:39 14478E73336D593E396FEE603118DF73 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe

2013-09-23 14:53:17 AC9C3A02685CEDAE968FCDB7A4618879 913832 ----a-w- C:\Users\DesPurpleLightning\Downloads\chromeinstall-7u40.exe

2013-09-23 13:35:04 4965B005492CBA7719E82B71E3245495 174440 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\64Bit\ProPlusr.WW\ose.exe

2013-09-23 13:35:04 4965B005492CBA7719E82B71E3245495 174440 ----a-w- C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\ose.exe

2013-09-23 13:35:04 4965B005492CBA7719E82B71E3245495 174440 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$R4CU6DD\ProPlusr.WW\ose.exe

2013-09-23 13:35:03 C87E561258F2F8650CEF999BF643A731 519584 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\64Bit\Office.nl-nl\dwtrig20.exe

2013-09-23 13:35:03 C87E561258F2F8650CEF999BF643A731 519584 ----a-w- C:\MSOCache\All Users\{90140000-006E-0413-1000-0000000FF1CE}-C\dwtrig20.exe

2013-09-23 13:35:03 C87E561258F2F8650CEF999BF643A731 519584 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$R4CU6DD\Office.nl-nl\dwtrig20.exe

2013-09-23 13:35:03 A41E524F8D45F0074FD07805FF0C9B12 838536 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\64Bit\Office.nl-nl\DW20.EXE

2013-09-23 13:35:03 A41E524F8D45F0074FD07805FF0C9B12 838536 ----a-w- C:\MSOCache\All Users\{90140000-006E-0413-1000-0000000FF1CE}-C\DW20.EXE

2013-09-23 13:35:03 A41E524F8D45F0074FD07805FF0C9B12 838536 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$R4CU6DD\Office.nl-nl\DW20.EXE

2013-09-23 13:35:02 F6AB7387545CCCA0431DCF89BB0DE8CB 1377656 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\64Bit\setup.exe

2013-09-23 13:35:02 F6AB7387545CCCA0431DCF89BB0DE8CB 1377656 ----a-w- C:\MSOCache\All Users\{91140000-0011-0000-1000-0000000FF1CE}-C\setup.exe

2013-09-23 13:35:02 F6AB7387545CCCA0431DCF89BB0DE8CB 1377656 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$R4CU6DD\setup.exe

2013-09-23 13:34:56 9D10F99A6712E28F8ACD5641E3A7EA6B 149352 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\32Bit\ProPlusr.WW\ose.exe

2013-09-23 13:34:56 9D10F99A6712E28F8ACD5641E3A7EA6B 149352 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$RWTB4QT\ProPlusr.WW\ose.exe

2013-09-23 13:34:54 FE247088CE6F91945459044ECFBBC90E 464248 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\setup.exe

2013-09-23 13:34:54 FE247088CE6F91945459044ECFBBC90E 464248 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$RJFX69I.exe

2013-09-23 13:34:54 C87E561258F2F8650CEF999BF643A731 519584 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\32Bit\Office.nl-nl\dwtrig20.exe

2013-09-23 13:34:54 C87E561258F2F8650CEF999BF643A731 519584 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$RWTB4QT\Office.nl-nl\dwtrig20.exe

2013-09-23 13:34:54 A41E524F8D45F0074FD07805FF0C9B12 838536 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\32Bit\Office.nl-nl\DW20.EXE

2013-09-23 13:34:54 A41E524F8D45F0074FD07805FF0C9B12 838536 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$RWTB4QT\Office.nl-nl\DW20.EXE

2013-09-23 13:34:54 4D92F518527353C0DB88A70FDDCFD390 1100664 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\32Bit\setup.exe

2013-09-23 13:34:54 4D92F518527353C0DB88A70FDDCFD390 1100664 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$RWTB4QT\setup.exe

2013-09-23 13:34:53 FEF5C779D0B44382EF8F073BA0BBF7BB 37329920 ----a-w- C:\Users\DesPurpleLightning\Desktop\Programma's\Microsoft 2010\Office 2010 Toolkit.exe

2013-09-23 13:34:53 FEF5C779D0B44382EF8F073BA0BBF7BB 37329920 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-726929981-3964757932-2735912400-1000\$R5A6Z9H.exe

2013-09-23 12:58:21 3CEC96DE223E49EAAE3651FCF8FAEA6C 1255736 ----a-w- C:\Windows\System32\Wat\WatAdminSvc.exe

2013-09-23 12:58:21 05E9265E2228799B68DC0F58A94E1AB8 249656 ----a-w- C:\Windows\System32\Wat\WatUX.exe

2013-09-23 12:38:23 AB4E43F76456280BD8D9CA175A11BDD5 97176400 ----a-w- C:\Users\DesPurpleLightning\Downloads\iTunes64Setup.exe

2013-09-23 12:29:27 F651D95B5043EFC20A6108A853553984 92160 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-09-23 12:29:27 D9C10A4A0B3411146E6FC8936B079934 167424 ----a-w- C:\Windows\System32\iexpress.exe

2013-09-23 12:29:27 D57BCCD989555B0D6E47AE0F364DD4D3 327680 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe

2013-09-23 12:29:27 C9BA36F9F3C8B5D929C84DFA0B9FB707 173568 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-09-23 12:29:27 82D602EBBBA6D08E4691F32269FD3494 12800 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-09-23 12:29:27 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe

2013-09-23 12:29:27 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-09-23 12:29:27 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-09-23 12:29:27 658E8FEC79A4AB5BFDE032627B5C9667 13824 ----a-w- C:\Windows\System32\mshta.exe

2013-09-23 12:29:27 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe

2013-09-23 12:29:27 5397E32E882C0148CEC13D9EACFB7157 222208 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe

2013-09-23 12:29:27 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\SysWOW64\wextract.exe

2013-09-23 12:29:27 5051BB40FFB2BA4870C0A059CA03294F 1054720 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-09-23 12:29:27 4BA4770D890B320DAB575B07C7DAF59D 481280 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2013-09-23 12:29:27 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-09-23 12:29:27 40738329209CBE2C9B48F7E30F7C1414 144896 ----a-w- C:\Windows\System32\wextract.exe

2013-09-23 12:29:27 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe

2013-09-23 12:29:27 37287D98A1BF5D56AA729CEB9B27C6B1 770648 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe

2013-09-23 12:29:27 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-09-23 12:29:27 351657C79B62B91E16A95AD23EA3710D 775256 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2013-09-23 12:29:27 3090B888E263E56744F8BFEF3A36D67D 467456 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe

2013-09-23 12:29:27 15CCEAC53648FF7C17AE98923BCD3D75 24576 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe

2013-09-23 12:29:27 05277EDA27E5A55CA22AC37DAC47DD23 223744 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2013-09-23 12:29:27 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\SysWOW64\iexpress.exe

2013-09-23 12:21:58 85D6E8F735865B502D65D1D91A79E3F3 294912 ----a-w- C:\Windows\System32\browserchoice.exe

2013-09-23 12:20:56 9FD5F385A0CB11454914E44CD8E6CDD6 1130576 ----a-w- C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\updates\3.3.1_30017.exe

2013-09-23 12:20:48 9FD5F385A0CB11454914E44CD8E6CDD6 1130576 ----a-w- C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe

2013-09-23 12:12:13 8ABFE00F213F2571498F1B8FD7939A98 229888 ----a-w- C:\Windows\System32\WUDFHost.exe

2013-09-22 16:46:02 DB9C52CE50D518C4F81DF4A1C4CCEE49 56094272 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Exotisch Eiland\Support\Origin\OriginSetup.exe

2013-09-22 16:45:17 42BA8E2B26AC7A5046A689880A604F76 28992 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Exotisch Eiland\Game\Bin\Sims3Launcher.exe

2013-09-22 16:45:17 415E6C714E78D45028E46B4ADA3D76EE 30016 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Exotisch Eiland\Game\Bin\TS3EP10.exe

2013-09-22 16:43:22 6CB95B248973FE757C6FD8EE15316CFA 399680 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\Sims3EP10Setup.exe

2013-09-22 16:41:17 428BFB702F7234B3F8329E11BBFB8A58 7612736 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP10\TS3EP10.exe

2013-09-22 16:36:51 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buurtleven Accessoires\Support\EADM\eadm-installer.exe

2013-09-22 16:36:40 74C70BDBFF78964BF66BF8CB9B626D93 29456 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buurtleven Accessoires\Game\Bin\TS3SP04.exe

2013-09-22 16:36:39 9FD0D56457888AECB3403FE29FCCD7F6 27920 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buurtleven Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:36:36 24D3292394F6A40A0E564BDB48B05268 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}\Sims3SP04Setup.exe

2013-09-22 16:30:34 D041E9DAC7F8898B294675C7B8AB820F 56112816 ----a-r- C:\Program Files (x86)\Electronic Arts\De Sims 3 Studententijd\Support\Origin\OriginSetup.exe

2013-09-22 16:29:25 77854B92F46CD2362FECF0C3F0C090F6 28992 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Studententijd\Game\Bin\Sims3Launcher.exe

2013-09-22 16:29:25 1B85BC54F75E8D3923942D7538B35BEE 30016 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Studententijd\Game\Bin\TS3EP09.exe

2013-09-22 16:26:51 8128B9C54C16644585939A5E6CA275F1 399680 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}\Sims3EP09Setup.exe

2013-09-22 16:25:26 EE006E6B43055129135568684A0FB311 7518528 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP09\TS3EP09.exe

2013-09-22 16:20:39 9FF6078C0DEA0672EAD358A1EC359F70 47796216 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Diesel Accessoires\Support\Origin\OriginSetup.exe

2013-09-22 16:20:34 7A33F4A8554B63770CA3E74C8A134276 30088 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Diesel Accessoires\Game\Bin\TS3SP07.exe

2013-09-22 16:20:33 B51014A347DF85255E88FB04CEA8B23B 28552 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Diesel Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:20:30 916634AEFC50CB2D44FF3FB90C848A29 399240 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}\Sims3SP07Setup.exe

2013-09-22 16:18:18 9FF6078C0DEA0672EAD358A1EC359F70 47796216 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Katy Perry Pakt uit\Support\Origin\OriginSetup.exe

2013-09-22 16:18:09 EE53F563F3E29928415F27C3058DE9B8 30048 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Katy Perry Pakt uit\Game\Bin\TS3SP06.exe

2013-09-22 16:18:08 C81EA88FB62DEDD1961C2A7D5E4CF323 28512 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Katy Perry Pakt uit\Game\Bin\Sims3Launcher.exe

2013-09-22 16:18:05 A2A97A6AC93137D12AC938A5164F9A18 399200 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{9B2506E3-9A3F-45B5-96BF-509CAD584650}\Sims3SP06Setup.exe

2013-09-22 16:16:22 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buitenleven Accessoires\Support\EADM\eadm-installer.exe

2013-09-22 16:14:41 E2FB8447FB1F4F2685E345A5B1252E6E 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buitenleven Accessoires\Game\Bin\TSLHelper.exe

2013-09-22 16:14:40 02410231B82BF13FA5619EFB5235FC5F 12272912 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buitenleven Accessoires\Game\Bin\TS3SP03.exe

2013-09-22 16:14:38 DBE321A0AEEE08B1E60B7D16ED4D8938 1324304 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buitenleven Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:14:35 AF907A434994CD0C5ACC672E6A86E332 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Buitenleven Accessoires\Game\Bin\S3Launcher.exe

2013-09-22 16:14:30 74BF020358A3F98B78149D7EBD3EC843 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{117B6BF6-82C3-420C-B284-9247C8568E53}\Sims3SP03Setup.exe

2013-09-22 16:12:02 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Supersnelle Accessoires\Support\EADM\eadm-installer.exe

2013-09-22 16:10:10 3BC65507D8EB988D90736AB9C83D3D38 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Supersnelle Accessoires\Game\Bin\TSLHelper.exe

2013-09-22 16:10:08 5F39A39F8C1A12210DAD6BF44AF02ADD 12084496 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Supersnelle Accessoires\Game\Bin\TS3SP02.exe

2013-09-22 16:10:07 8909F0C2B13212893887639F4598C488 1344784 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Supersnelle Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:10:05 6FC06BFAFF3A6EE8582C7A645601C6AD 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Supersnelle Accessoires\Game\Bin\S3Launcher.exe

2013-09-22 16:10:01 15A71B136744FF67C5BDBD0F56152F02 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}\Sims3SP02Setup.exe

2013-09-22 16:07:40 4E68625A20DB88A050E7DA352F847CCE 47997616 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Slaap- en badkamer Accessoires\Support\Origin\OriginSetup.exe

2013-09-22 16:07:34 59F051DCDE0031BC607BA675811DA527 30048 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Slaap- en badkamer Accessoires\Game\Bin\TS3SP05.exe

2013-09-22 16:07:33 45E182830F7BB770A5E92498844BB140 28512 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Slaap- en badkamer Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:07:31 6269C3EF6547EC6C49655B9F032E5B2E 399200 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{08A25478-C5DD-4EA7-B168-3D687CA987FF}\Sims3SP05Setup.exe

2013-09-22 16:05:25 6071C32578319CE1EE91210895F4B782 65073712 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 70s, 80s en 90s Accessoires\Support\Origin\OriginSetup.exe

2013-09-22 16:05:18 91C97504B12CC57B11C5628B5959EA9E 28552 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 70s, 80s en 90s Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 16:05:18 8139FF1CA1EE1ACC7022022058F09A4E 29576 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 70s, 80s en 90s Accessoires\Game\Bin\TS3SP08.exe

2013-09-22 16:05:14 C0B9A29D452B105706EBC21BDF684963 399240 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}\Sims3SP08Setup.exe

2013-09-22 16:03:33 FF62BBBC6E3A7F82DA72598FC0E3F2D8 7530816 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP08\TS3SP08.exe

2013-09-22 15:58:52 4E68625A20DB88A050E7DA352F847CCE 47997616 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Showtime\Support\Origin\OriginSetup.exe

2013-09-22 15:57:05 F4BA7B0EDD48A2326B0342C5CCD4687B 24064 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Showtime\Game\Bin\TS3EP06.exe

2013-09-22 15:57:05 017163701A49817F3BCBC614CA7B8B60 22528 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Showtime\Game\Bin\Sims3Launcher.exe

2013-09-22 15:54:06 4F56210C15C08FFFD4CD59F6E66FBE95 399200 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{3BBFD444-5FAB-49F6-98B1-A1954E831399}\Sims3EP06Setup.exe

2013-09-22 15:51:48 6071C32578319CE1EE91210895F4B782 65073712 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Jaargetijden\Support\Origin\OriginSetup.exe

2013-09-22 15:50:33 E115FD8C4EB49821BA74619D9A4757CC 28552 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Jaargetijden\Game\Bin\Sims3Launcher.exe

2013-09-22 15:50:33 C9D577A46C27025AD24B747F6C1D7877 30088 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Jaargetijden\Game\Bin\TS3EP08.exe

2013-09-22 15:50:24 095A648A59ECFCD110A878A93DFADE8E 399240 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{3DE92282-CB49-434F-81BF-94E5B380E889}\Sims3EP08Setup.exe

2013-09-22 15:48:32 29E6AF06AF850FB3AE60DC9F1D4FB9A3 7530816 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP08\TS3EP08.exe

2013-09-22 15:43:53 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Levensweg\Support\EADM\eadm-installer.exe

2013-09-22 15:41:33 51C8C1CA61D684A31E22314BD266928C 27920 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Levensweg\Game\Bin\Sims3Launcher.exe

2013-09-22 15:41:33 0A9D8E0201633538C1213599B5E9282A 29456 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Levensweg\Game\Bin\TS3EP04.exe

2013-09-22 15:41:22 C37BB726913B0EE46B2E3D6089093880 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\Sims3EP04Setup.exe

2013-09-22 15:19:42 232DEEF5BF3B3152CB216CE3BFC64C2F 59311032 ----a-r- C:\Program Files (x86)\Electronic Arts\De Sims 3 Bovennatuurlijk\Support\Origin\OriginSetup.exe

2013-09-22 15:18:36 6ADA5FF8282628816C9B126A3332F03B 30088 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Bovennatuurlijk\Game\Bin\TS3EP07.exe

2013-09-22 15:18:36 32CB3F1A367898F69E73F64EE8E49C64 28552 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Bovennatuurlijk\Game\Bin\Sims3Launcher.exe

2013-09-22 15:15:47 0DB534B0EDE52DF5B85C2B4059E47333 399240 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}\Sims3EP07Setup.exe

2013-09-22 15:05:44 FDD9AA8E74A6442CD5726B287C243CF9 7547200 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP07\TS3SP07.exe

2013-09-22 15:05:44 E4A9B992BBD0B1B0D28C898D4C35B516 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP06\TS3SP06.exe

2013-09-22 15:05:44 1D4D03F1C90FCD2BEF1FF5F8B8FCFD53 7641408 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP05\TS3SP05.exe

2013-09-22 15:05:43 B3602ECF185CD041D2B472E615D9BCFB 7547200 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP06\TS3EP06.exe

2013-09-22 15:05:43 868BF4B937195C7C2F3314BD90E407A2 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP07\TS3EP07.exe

2013-09-22 15:01:45 4E68625A20DB88A050E7DA352F847CCE 47997616 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Beestenbende\Support\Origin\OriginSetup.exe

2013-09-22 14:58:04 DAF60564A3EA57D4A7044AB7BE0A62C3 29456 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Beestenbende\Game\Bin\TS3EP05.exe

2013-09-22 14:58:04 D8CE721F96E9B76C57D916A13DBBCB3E 27920 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Beestenbende\Game\Bin\Sims3Launcher.exe

2013-09-22 14:55:13 815F7AC2D482762AF85C37A740FAAADC 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{C12631C6-804D-4B32-B0DD-8A496462F106}\Sims3EP05Setup.exe

2013-09-22 14:53:39 F2C8CABABFE39A5FABFA2F7B2C11DAE0 7559488 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP02\TS3EP02.exe

2013-09-22 14:53:39 BFA72BFCC8677616C830A787A4600C94 7551296 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP02\TS3SP02.exe

2013-09-22 14:53:39 B4C8CD77614A2FBEF7FA89B3A61258D3 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3\TS3.exe

2013-09-22 14:53:39 86601CCFC9DAC3394D38C896DBF951FB 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP04\TS3EP04.exe

2013-09-22 14:53:39 70DF1F46053CC9680E28E00303C13631 7559488 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP05\TS3EP05.exe

2013-09-22 14:53:39 6FE6486F21DD2F8433B761B3A67C62FA 7645504 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP04\TS3SP04.exe

2013-09-22 14:53:39 524260358E214C3D228ED8F10D68829A 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP01\TS3SP01.exe

2013-09-22 14:53:39 2665F300635131707F83D2C05BB34E2C 7559488 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3SP03\TS3SP03.exe

2013-09-22 14:53:39 21B2C153437F44BD21E0CDED04784228 7555392 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP03\TS3EP03.exe

2013-09-22 14:53:39 12DF63E7BD722317EAF8E8176E9CBD90 7551296 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Packs\TS3EP01\TS3EP01.exe

2013-09-22 14:53:37 930D54B9B2B94DDA6838C302684B5735 1550656 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Sims3LauncherW.exe

2013-09-22 14:53:37 3E4394EA34910E070C8BD206AC7F42BE 14424384 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\TS3W.exe

2013-09-22 14:50:30 F84E7676652E18F8326FF2DAA0C15395 506736 ----a-w- C:\Program Files (x86)\Origin\OriginCrashReporter.exe

2013-09-22 14:50:30 D550372E3ACD6E6E5C58AA7B1F586A3A 14176 ----a-w- C:\Program Files (x86)\Origin\igoproxy64.exe

2013-09-22 14:50:30 56AD75E5527EA5F36203CE79C54664E4 1332648 ----a-w- C:\Program Files (x86)\Origin\LegacyPM\OriginUninstall.exe

2013-09-22 14:49:55 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Ambities\Support\EADM\eadm-installer.exe

2013-09-22 14:49:00 732762D00B960097D0116917AB1449E1 16959688 ----a-w- C:\ProgramData\Origin\DownloadCache\{ CP_Guest_3312(1)_ver3 }\OriginThinSetup92.exe

2013-09-22 14:46:34 AE4417F7C2D24B8CE2E9B51807340FA7 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Ambities\Game\Bin\TSLHelper.exe

2013-09-22 14:46:33 3861DD7D05236FA91B3183AB122ECB62 12076304 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Ambities\Game\Bin\TS3EP02.exe

2013-09-22 14:46:32 36F9361B55BB1A3360771B30825A8C31 1336592 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Ambities\Game\Bin\Sims3Launcher.exe

2013-09-22 14:46:29 0ED179F61B8A45421D299802A4D9862E 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Ambities\Game\Bin\S3Launcher.exe

2013-09-22 14:43:32 F114F552A83E8AA437A11EDF2F2EC425 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}\Sims3EP02Setup.exe

2013-09-22 14:38:47 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Luxe Accessoires\Support\EADM\eadm-installer.exe

2013-09-22 14:35:31 A5BA62491016B6018C80A75EA0C6C05B 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Luxe Accessoires\Game\Bin\TSLHelper.exe

2013-09-22 14:35:29 6A8E38A3E5682F544557E8AEA90532B3 11699472 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Luxe Accessoires\Game\Bin\TS3SP01.exe

2013-09-22 14:35:27 FB2E1DF84B41F386DA09F71734C911F3 1336592 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Luxe Accessoires\Game\Bin\Sims3Launcher.exe

2013-09-22 14:35:24 2BFC63C009E4831B6DA141E38F07029A 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Luxe Accessoires\Game\Bin\S3Launcher.exe

2013-09-22 14:35:19 1097EBF78813AF1085AC7E57E68F8BA1 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{71828142-5A24-4BD0-97E7-976DA08CE6CF}\Sims3SP01Setup.exe

2013-09-22 14:31:48 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Na Middernacht\Support\EADM\eadm-installer.exe

2013-09-22 14:28:00 49EC2BD45DE0839A1EA6CAB206900E58 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Na Middernacht\Game\Bin\TSLHelper.exe

2013-09-22 14:27:58 A7761CD10A7EE2505D464D7F401803F6 12268816 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Na Middernacht\Game\Bin\TS3EP03.exe

2013-09-22 14:27:58 008D7E27160E386366DF6FF69FEE2C5F 1320208 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Na Middernacht\Game\Bin\Sims3Launcher.exe

2013-09-22 14:27:55 BFE4050213E954AB9E57A3D72EC688C4 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Na Middernacht\Game\Bin\S3Launcher.exe

2013-09-22 14:25:29 239EF2374C7482A5DEA2D23E2C30576D 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{45057FCE-5784-48BE-8176-D9D00AF56C3C}\Sims3EP03Setup.exe

2013-09-22 14:24:03 9FF6078C0DEA0672EAD358A1EC359F70 47796216 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Temp\EAD18C2.exe

2013-09-22 14:02:16 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Wereldavonturen\Support\EADM\eadm-installer.exe

2013-09-22 13:56:16 6929284ACAEDBC473A1A519CB8A7F867 54544 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Wereldavonturen\Game\Bin\TSLHelper.exe

2013-09-22 13:56:15 5201050A5B01DFBD53026527B5350A58 11396368 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Wereldavonturen\Game\Bin\TS3EP01.exe

2013-09-22 13:56:14 A1F4999BD950597858B45AB7F03570D7 1226000 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Wereldavonturen\Game\Bin\Sims3Launcher.exe

2013-09-22 13:56:12 498A9B0543D707097CE111E179C31940 107792 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3 Wereldavonturen\Game\Bin\S3Launcher.exe

2013-09-22 13:52:04 AE44F5BC7E258EEA0C0CB9F80652CC56 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}\Sims3EP01Setup.exe

2013-09-22 13:49:51 BC49243557991AC42FCC01B8E3BB05D2 393216 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe

2013-09-22 13:49:51 AF614E89B6FBC427D94A4ACCC891369E 108864 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\S3Launcher.exe

2013-09-22 13:45:34 6E42CF0D47AF25DEA4CECDBE093D521C 10134 ----a-r- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe

2013-09-22 13:45:15 F579E3F4188911414CED9E1F38ED8241 6667344 ----a-r- C:\Program Files (x86)\Electronic Arts\De Sims 3\Support\EADM\eadm-installer.exe

2013-09-22 13:34:38 26F5BD4308DC654A6A441996E2C29D87 55616 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\TSLHelper.exe

2013-09-22 13:34:37 9B04784EAB9BCDCA6239725967235D08 30016 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\TS3.exe

2013-09-22 13:34:36 D73A33E97E2408EDE6827A0E1DF813F1 28992 ----a-w- C:\Program Files (x86)\Electronic Arts\De Sims 3\Game\Bin\Sims3Launcher.exe

2013-09-22 13:31:23 199576171AD8DDB10E2AADE61BBF87CB 398608 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\Sims3Setup.exe

2013-09-22 10:17:44 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\System32\consent.exe

2013-09-22 10:17:30 F119D0BAB5777334F7CC6E2042175D73 49664 ----a-w- C:\Windows\servicing\GC64\tzupd.exe

2013-09-22 10:17:24 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\System32\conhost.exe

2013-09-22 10:17:24 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-09-22 10:17:24 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe

2013-09-22 10:17:24 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe

2013-09-22 10:17:23 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\System32\smss.exe

2013-09-22 10:17:23 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe

2013-09-22 10:17:23 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe

2013-09-22 10:17:23 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe

2013-09-22 10:17:22 C118A82CD78818C29AB228366EBF81C3 31232 ----a-w- C:\Windows\System32\lsass.exe

2013-09-22 10:17:22 9E5D9177660A76FC8DECDC37A91A5B0D 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe

2013-09-22 10:17:04 A236B1646E96AB06BE0F8D592B6D9A0D 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe

2013-09-22 10:16:14 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\System32\taskhost.exe

2013-09-22 10:16:08 4586B77B18FA9A8518AF76CA8FD247D9 1192448 ----a-w- C:\Windows\System32\certutil.exe

2013-09-22 10:16:08 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\SysWOW64\certutil.exe

2013-09-22 10:15:58 85DAA09A98C9286D4EA2BA8D0E644377 559104 ----a-w- C:\Windows\System32\spoolsv.exe

2013-09-22 10:15:58 127AA81343A7C6F665C22CB1293B0A90 67072 ----a-w- C:\Windows\splwow64.exe

2013-09-22 10:04:43 3C74C26999F2060BC6302448F173A342 340464 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Temp\uninst1.exe

2013-09-21 14:47:29 EB73E00567789C54C25B69EB9ACCA404 34530656 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\29.0.1547.76\29.0.1547.76_chrome_installer.exe

2013-09-21 14:47:01 D9A08472D8D0218A0AE2C9D9F63EA531 290696 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe

2013-09-21 14:47:01 A6F8D4FBC12177A75AB4C06D059229B6 784664 ----a-w- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateSetup.exe

2013-09-21 14:47:01 8726802EA4FBFFA3FD54FD2449BF51D4 217992 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe

2013-09-21 14:47:01 6466C051022547489D3409205128881B 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateBroker.exe

2013-09-21 14:47:01 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

2013-09-21 14:47:01 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdate.exe

2013-09-21 14:47:01 1CA3976D1B1FE826ADF339F90AC25C60 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateOnDemand.exe

2013-09-21 14:46:57 A6F8D4FBC12177A75AB4C06D059229B6 784664 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Apps\2.0\ANX5J0AN.CW7\WACZTN4L.002\inst...app_4fe91ede9f9bdca3_0001.0003_fc100576141c6894\GoogleUpdateSetup.exe

2013-09-21 14:46:57 A6F8D4FBC12177A75AB4C06D059229B6 784664 ----a-w- C:\Users\DesPurpleLightning\AppData\Local\Apps\2.0\ANX5J0AN.CW7\WACZTN4L.002\clic...exe_4fe91ede9f9bdca3_0001.0003_none_81523f7b64d98436\GoogleUpdateSetup.exe

2013-09-21 14:46:57 2D479A35439E0DFBDBF2FDB6DEE8D49B 10120 ------w- C:\Users\DesPurpleLightning\AppData\Local\Apps\2.0\ANX5J0AN.CW7\WACZTN4L.002\inst...app_4fe91ede9f9bdca3_0001.0003_fc100576141c6894\clickonce_bootstrap.exe

2013-09-21 14:41:31 C374493A97BDBB34111823EDD1ED3979 22528 ----a-w- C:\Users\DesPurpleLightning\Documents\Visual Studio 2010\Projects\Marvel\obj\x86\Debug\WindowsApplication1.exe

2013-09-21 14:41:30 C374493A97BDBB34111823EDD1ED3979 22528 ----a-w- C:\Users\DesPurpleLightning\Documents\Visual Studio 2010\Projects\Marvel\bin\Debug\WindowsApplication1.exe

2013-09-21 14:41:30 02BE6D33B1EDBC61C79882D3F556BD8A 11600 ----a-w- C:\Users\DesPurpleLightning\Documents\Visual Studio 2010\Projects\Marvel\bin\Debug\WindowsApplication1.vshost.exe

2013-09-21 14:41:30 02BE6D33B1EDBC61C79882D3F556BD8A 11600 ----a-w- C:\Users\DesPurpleLightning\Documents\Visual Studio 2010\Projects\Marvel\bin\Debug\Marvel.vshost.exe

2013-09-21 14:09:03 4204FD31FE4F356F8AA119D22E49EF23 209902 ----a-w- C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe

2013-09-21 14:02:41 E217E93D3056019E540C79F9218166C8 221184 ------w- C:\Windows\system\cm106eye.exe

2013-09-21 14:02:33 E94D563109A2EA6A00A41465F9AB399F 792576 ------w- C:\Windows\System32\Cmeau106.exe

2013-09-21 11:58:56 C1C03EA437EDDA8A7D4D8786E5AE6751 57880 ----a-w- C:\Windows\System32\wuauclt.exe

2013-09-21 11:57:28 FF0729002E081668620A681182D63FE6 36864 ----a-w- C:\Windows\System32\wuapp.exe

=== C: other files ==

2013-09-25 18:20:06 A211AB524324E84C2C805B52DFCDD544 124264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{3DA4BA3C-25F8-4AF7-AEFA-DD23384E866C}\nvhda32.sys

2013-09-25 18:20:06 77F9F9A199B87FE3F852E12F5419240B 149352 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{3DA4BA3C-25F8-4AF7-AEFA-DD23384E866C}\nvhda32v.sys

2013-09-25 18:20:06 1F07B814C0BB5AABA703ABFF1F31F2E8 189288 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{3DA4BA3C-25F8-4AF7-AEFA-DD23384E866C}\nvhda64v.sys

2013-09-25 18:20:06 0903639E765829867FE90895651BB558 156520 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{3DA4BA3C-25F8-4AF7-AEFA-DD23384E866C}\nvhda64.sys

2013-09-25 18:18:48 AAFCB52FE0037207FB6FBEA070D25EFE 458712 ----a-w- C:\Windows\System32\drivers\cng.sys

2013-09-25 18:18:48 7EFB9333E4ECCE6AE4AE9D777D9E553E 154480 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-09-24 16:34:32 80C4C1659E95296066CD0902007B6272 34532 ----a-w- C:\Users\DesPurpleLightning\AppData\LocalLow\Adobe\Acrobat\10.0\rdrmessage.zip

2013-09-23 14:55:40 8C636C988365FC3E61F1B5C5ACECCB55 18675 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip

2013-09-23 13:57:52 8E98D21EE06192492A5671A6144D092F 33240 -c--a-w- C:\Windows\System32\DRVSTORE\GEARAspiWD_53DFBC3344EBC2614851E0BF38F60B616DF86778\x64\GEARAspiWDM.sys

2013-09-23 13:57:52 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys

2013-09-23 12:35:13 AEA0A67275CFBA0E463E00C6E9A1DDAE 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys

2013-09-23 12:35:13 442783E2CB0DA19873B7A63833FF4CB4 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys

2013-09-23 12:12:14 DDA4CAF29D8C0A297F886BFE561E6659 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys

2013-09-23 12:12:14 AB886378EEB55C6C75B4F2D14B6C869F 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys

2013-09-23 12:08:23 6BD9295CC032DD3077C671FCCF579A7B 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2013-09-22 10:18:00 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-09-22 10:18:00 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-09-22 10:17:40 B98F8C6E31CD07B2E6F71F7F648E38C0 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2013-09-22 10:17:28 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys

2013-09-22 10:17:26 760E38053BF56E501D562B70AD796B88 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys

2013-09-22 10:17:26 0E01641D96889BDEB22DE12D30575B08 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys

2013-09-22 10:17:22 97A7070AEA4C058B6418519E869A63B4 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-09-22 10:17:22 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys

2013-09-22 10:17:19 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys

2013-09-22 10:17:01 4CE278FC9671BA81A138D70823FCAA09 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys

2013-09-22 10:16:52 E61608AA35E98999AF9AAEEEA6114B0A 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2013-09-22 10:16:47 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\System32\win32k.sys

2013-09-22 10:16:47 1C7857B62DE5994A75B054A9FD4C3825 498688 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-09-22 10:16:43 E9766131EEADE40A27DC27D2D68FBA9C 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys

2013-09-22 10:16:11 DB74544B75566C974815E79A62433F29 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-09-22 10:16:11 8F6322049018354F45F05A2FD2D4E5E0 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys

2013-09-22 10:16:11 7942B7AC3FF598F8A1736D51ADAF04E8 376688 ----a-w- C:\Windows\System32\drivers\netio.sys

2013-09-22 10:16:11 41C67E4205C606A103DEC8651D0B6FE6 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS

2013-09-21 14:50:53 7A43640C154A57001CDBD1266647D358 196 ----a-w- C:\Users\DesPurpleLightning\Downloads\Vanalles en Noch Wath\video.hd.zip

2013-09-21 14:50:53 5103489148184FF7C2799D04010B48CC 428002 ----a-w- C:\Users\DesPurpleLightning\Downloads\Vanalles en Noch Wath\Outlook.zip

2013-09-21 14:47:53 A90CEB111F301896C5841B6AAB73AA45 44366329 ----a-w- C:\Users\DesPurpleLightning\Pictures\2013-03-23\2013-03-23.zip

2013-09-21 14:47:53 032BFFE4E5FF085C612121C0BB8AC019 23280827 ----a-w- C:\Users\DesPurpleLightning\Pictures\2013-03-23\2013-03-25.zip

2013-09-21 14:41:26 B9CD645758020503F0A3C1AA68721AA0 7011492 ----a-w- C:\Users\DesPurpleLightning\Documents\School\Schooljaar 2012-2013 (1EM05)\Visual Basic.zip

2013-09-21 14:41:26 350414A6D8467E4ED6C69CA9682131F1 8141122 ----a-w- C:\Users\DesPurpleLightning\Documents\School\Schooljaar 2012-2013 (1EM05)\Geen Idee 2013.zip

2013-09-21 14:18:38 97E11C50CE52277B377396EA8838E539 177752 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS

2013-09-21 14:18:34 FF06138CA54AA969F886D5590F4ECD6D 590424 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\symnets.sys

2013-09-21 14:18:34 B18CE01B9C09C59422BA7C7064248B35 36952 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\srtspx64.sys

2013-09-21 14:18:34 B12034EFC73DE70042A110B314802740 1147480 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\SymEFA64.sys

2013-09-21 14:18:34 A5C16A0BE89EE409732178BEB62F7EA7 150104 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\ccSetx64.sys

2013-09-21 14:18:34 5C9EE2303CA7F267665D75237862B39C 493656 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\SymDS64.sys

2013-09-21 14:18:34 5BFBC7278A8CD8F4E0A28D5C862197E1 854616 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\srtsp64.sys

2013-09-21 14:18:34 48C2934683CBD06F662B088EEF49EF6A 264280 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\Ironx64.sys

2013-09-21 14:18:34 20F758E6339A16F97DD83389D582E09A 23568 ----a-r- C:\Windows\System32\drivers\N360x64\1500010.003\SymELAM.sys

2013-09-21 14:02:21 F9B3054339A71F16430F6585EBC8BE96 1307648 ----a-w- C:\Windows\System32\drivers\CM10664.sys

2013-09-21 12:04:04 51C5ECEB1CDEE2468A1748BE550CFBC8 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-726929981-3964757932-2735912400-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_70A11E2BAA9738C278CAEFC485CC5CB1"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"

"uTorrent"="C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_70A11E2BAA9738C278CAEFC485CC5CB1"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"

"uTorrent"="C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"MedionReminder"="C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe"

"itype"="C:\Program Files\Microsoft IntelliType Pro\itype.exe"

"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\ipoint.exe"

"Cm106Sound"="C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"MedionReminder"="C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe /DeleteRunKey"

==== Startup Folders ======================

2013-09-23 15:11:03 1270 ----a-w- C:\Users\DesPurpleLightning\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/09/2013 16:47]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/09/2013 16:47]

C:\Windows\tasks\UpdaterEX.job --a------ C:\Users\DESPUR1\AppData\Roaming\UPDATE1\UPDATE1\UPDATE1.exe []

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

ieakfmpjhljbpbfpldjkddkjmmgjmgon - C:\Program Files (x86)\WebConnect\ieakfmpjhljbpbfpldjkddkjmmgjmgon.crx[]

mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\Exts\Chrome.crx[12/09/2013 15:10]

YouTube - DesPurpleLightning - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Facebook - DesPurpleLightning - Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm

Neon Glow Purple - DesPurpleLightning - Default\Extensions\hofklbfpdiohbjhlddpddfdgcmobblpp

IMDB\u2122 - DesPurpleLightning - Default\Extensions\jipolnkooheenpfdecoclcohihplijco

Norton Identity Protection - DesPurpleLightning - Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk

Twitch Now - DesPurpleLightning - Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk

Chrome In-App Payments service - DesPurpleLightning - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Outlook.com - DesPurpleLightning - Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge

Gmail - DesPurpleLightning - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utorrent.nl.softonic.com_0.localstorage deleted successfully

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utorrent.nl.softonic.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www2.delta-search.com/?babsrc=hp_ss&mntrid=56b794445228754b&affid=119357&tsp=5012"

"Default_Page_URL"="http://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{249E54D8-2620-4D84-9F88-D7D11AB59D5C}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"

{249E54D8-2620-4D84-9F88-D7D11AB59D5C} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNF_enDE393"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-726929981-3964757932-2735912400-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2316C625-B487-4410-A1A5-FF040B65245F} deleted successfully

HKEY_USERS\S-1-5-21-726929981-3964757932-2735912400-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2316C625-B487-4410-A1A5-FF040B65245F} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2316C625-B487-4410-A1A5-FF040B65245F} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316C625-B487-4410-A1A5-FF040B65245F} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon deleted successfully

==== HijackThis Entries ======================

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll

O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\IPS\IPSBHO.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\coIEPlg.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_70A11E2BAA9738C278CAEFC485CC5CB1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [uTorrent] "C:\Users\DesPurpleLightning\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs:

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\21.0.1.3\N360.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\DesPurpleLightning\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\DesPurpleLightning\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\DesPurpleLightning\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\DESPUR~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\WebConnect" not found

"C:\Program Files (x86)\WebConnect" not found

==== EOF on vr 27/09/2013 at 16:59:26,77 ======================

Ik hoop dat dit iets betekent;-)

BTW

26-09-2013: Niet Blijven hangen.. Ik had de cd eruitgehaald de dag ervoor...

27-09-2013: Blijven hangen ongeveer 20min na opstarten... Bij uitzetten werkte mijn scherm na 3 keer niet.. Toen heb ik de stekkeruitgetrokken... En na een minuutje terugingestoken, en werkte hij wel...

Ik had een volledige recover gedaan Zaterdag.. Dat heeft dus geen fluit geholpen.. HELP MIJ.. Ik jaag me enorm op/

aangepast door kape
Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
C:\Windows\tasks\AutoKMS.job;f
C:\Windows\AutoKMS;fs
C:\Program Files (x86)\WebConnect;fs
C:\ProgramData\Babylon;fs
C:\Users\DesPurpleLightning\AppData\Roaming\Babylon;fs
C:\ProgramData\Partner;u
Update WebConnect;s
firefoxlook; 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • HijackThis Log
  • Firefox Look
  • Chrome Look
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Ik hoop dat je me kan helpen:-)

Link naar reactie
Delen op andere sites

Ik hoop dat je me kan helpen:-)
Die recover is vorige zaterdag gebeurd ... dus alle logjes zijn gemaakt nà de recover. Met inbegrip van alle malware die op je PC zat. Of zijn er tussen zaterdag en gisteren vrijdag al nieuwe downloads gedaan van "twijfelachtige" zaken ? aangepast door kape
Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen


×
×
  • Nieuwe aanmaken...