Logfile of random's system information tool 1.10 (written by random/random) Run by Wil at 2014-10-11 13:36:57 Microsoft Windows 8.1 System drive C: has 193 GB (85%) free of 229 GB Total RAM: 8078 MB (62% free) HijackThis download failed ======Listing Processes====== c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-d982-0115e2b6ed4c /binaryPath="C:\Program Files (x86)\AVG\AVG2015\" wininit.exe winlogon.exe C:\Windows\system32\lsass.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS "dwm.exe" "C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe" "C:\Program Files (x86)\Bonjour\mDNSResponder.exe" dashost.exe {30b0b5a1-1d08-4444-b91f923ec0f0c605} "C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hosterid:0 "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"CCF Settings Server" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"CCFHosterShutdownPlugin_45123" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"fs_se_hotfix_plugin" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"MBB" "C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"Scanner Daemon" "C:\Program Files\Intel\iCLS Client\HeciServer.exe" "C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE" /service /stopevent=492 /ipcexch=516 "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"FSAUA" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"F-Secure Configuration Handler" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"fs_ccf_upstream_plugin32" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"NID" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"Service Enabler Daemon" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\fssm32.exe" 3 892 896 900 "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"F-Secure Anti-Virus Handler" "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -hostForkedPlugin -app -PointAppFamily:100 -HosterID:0 -plugin:"F-Secure Alert and Management Extension Handler" oid 1.3.6.1.4.1.2213.11.1.27.64 HosterGroupType 0 "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a08785ce-bbb3-4010-a13d-c12212094fa5 -SystemEventPortName:HostProcess-3bd2012a-6548-4800-a882-8933ce4bb43f -IoCancelEventPortName:HostProcess-e8f194b6-1688-4fda-b21a-98be3dffc613 -NonStateChangingEventPortName:HostProcess-cc4ef1a7-9c8b-4023-b838-0d1eb33869dd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a4423fd-2d48-458d-92cf-217c7755df10 -DeviceGroupId:WpdFsGroup C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray C:\Windows\Explorer.EXE C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\System32\skydrive.exe -Embedding C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} taskhostex.exe "C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe" -servicelaunch=true "C:\Windows\System32\igfxtray.exe" "C:\Windows\system32\igfxsrvc.exe" -Embedding "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager\stpass.exe" "C:\Program Files\LaCie\Network Assistant\LaCie Network Assistant.exe" silent "C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe" -app -hosterid:1 "C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" /splash "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe" "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "C:\Windows\System32\SettingSyncHost.exe" -Embedding C:\Windows\System32\RuntimeBroker.exe -Embedding taskhost.exe $(Arg0) "C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Solitaire.exe" -ServerName:App.AppXx8xn0rs58sab7mvbtxgdhw97cpm1dzhb.mca "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE" C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:26140 CREDAT:267521 /prefetch:2 "C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3322357139-579024337-2054507064-100146_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3322357139-579024337-2054507064-100146 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Windows\system32\SearchFilterHost.exe" 0 584 588 596 65536 592 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:26140 CREDAT:2757997 /prefetch:2 "C:\Users\Wil\AppData\Local\Microsoft\Windows\INetCache\IE\PS5RCQ75\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{215BA832-75A3-426E-A4FC-7C5B58CE6A10}] Kaspersky Passsword Manager Toolbar - C:\PROGRA~2\KASPER~1\KASPER~1\spIEBho.dll [2013-01-29 1317728] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - Kaspersky Passsword Manager Toolbar - C:\PROGRA~2\KASPER~1\KASPER~1\spIEBho.dll [2013-01-29 1317728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-25 391128] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-25 771544] "Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-25 770520] "IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936] "CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-10 689488] "CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-17 2114376] "Acronis Scheduler2 Service"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 518960] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GBMLite8AgentLaCie"=C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe [2008-09-18 189056] "KasperskyPasswordManager"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager\stpass.exe [2013-01-29 3176384] "LaCie Ethernet Agent Startup"=C:\Program Files\LaCie\Network Assistant\LaCie Network Assistant.exe [2014-02-11 9895936] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "F-Secure Hoster (45123)"=C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [2012-11-26 183864] "F-Secure Manager"=C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE [2013-08-27 310208] "IJNetworkScanUtility"=C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [2007-05-21 124512] "GBMLite8AgentLaCie"=C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe [2008-09-18 189056] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176] "TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2014-03-05 7836312] "AcronisTibMounterMonitor"=C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-10-10 1103272] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2014-09-05 3593744] "DLSService"=C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2014-01-25 624640] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CleanHlp.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLinkedConnections"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.yuy2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "vidc.yvyu"=msyuv.dll "vidc.yvu9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "vidc.uyvy"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-10-11 13:36:58 ----D---- C:\Program Files\trend micro 2014-10-11 13:36:57 ----D---- C:\rsit 2014-10-11 13:22:02 ----D---- C:\Program Files (x86)\Google 2014-10-08 16:28:05 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys 2014-10-08 16:27:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-10-08 16:27:53 ----A---- C:\Windows\system32\drivers\mwac.sys 2014-10-08 16:27:53 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys 2014-10-08 16:27:53 ----A---- C:\Windows\system32\drivers\mbam.sys 2014-10-08 16:27:12 ----D---- C:\ProgramData\Malwarebytes 2014-10-05 15:27:37 ----D---- C:\Users\Wil\AppData\Roaming\AVG2015 2014-10-05 15:27:19 ----D---- C:\Users\Wil\AppData\Roaming\TuneUp Software 2014-10-05 15:27:10 ----HD---- C:\$AVG 2014-10-05 15:27:10 ----D---- C:\ProgramData\AVG2015 2014-10-05 15:27:03 ----D---- C:\Program Files (x86)\AVG 2014-10-05 15:24:46 ----HD---- C:\ProgramData\Common Files 2014-10-05 15:24:46 ----D---- C:\ProgramData\MFAData 2014-09-14 08:25:26 ----A---- C:\Windows\system32\WSDMon.dll 2014-09-14 08:25:26 ----A---- C:\Windows\system32\tcpmon.dll 2014-09-14 08:25:23 ----A---- C:\Windows\SYSWOW64\explorer.exe 2014-09-14 08:25:23 ----A---- C:\Windows\system32\uDWM.dll 2014-09-14 08:25:23 ----A---- C:\Windows\explorer.exe 2014-09-14 08:25:22 ----A---- C:\Windows\system32\twinui.dll 2014-09-14 08:25:21 ----A---- C:\Windows\SYSWOW64\twinui.dll 2014-09-14 08:25:21 ----A---- C:\Windows\system32\actxprxy.dll 2014-09-14 08:25:20 ----A---- C:\Windows\SYSWOW64\UXInit.dll 2014-09-14 08:25:20 ----A---- C:\Windows\SYSWOW64\actxprxy.dll 2014-09-14 08:25:20 ----A---- C:\Windows\system32\UXInit.dll 2014-09-14 08:24:45 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll 2014-09-14 08:24:44 ----A---- C:\Windows\SYSWOW64\authui.dll 2014-09-14 08:24:44 ----A---- C:\Windows\system32\authui.dll 2014-09-14 08:24:43 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll 2014-09-14 08:24:43 ----A---- C:\Windows\system32\shell32.dll 2014-09-14 08:24:42 ----A---- C:\Windows\SYSWOW64\shell32.dll 2014-09-14 08:24:41 ----A---- C:\Windows\system32\Windows.UI.Search.dll 2014-09-14 08:24:41 ----A---- C:\Windows\system32\mstscax.dll 2014-09-14 08:24:40 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2014-09-14 08:24:40 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-09-14 08:24:39 ----A---- C:\Windows\system32\SettingsHandlers.dll 2014-09-14 08:24:39 ----A---- C:\Windows\system32\d3d10warp.dll 2014-09-14 08:24:35 ----A---- C:\Windows\system32\mfcore.dll 2014-09-14 08:24:35 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-09-14 08:24:34 ----A---- C:\Windows\SYSWOW64\mfcore.dll 2014-09-14 08:24:34 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2014-09-14 08:24:33 ----A---- C:\Windows\system32\wlansvc.dll 2014-09-14 08:24:33 ----A---- C:\Windows\system32\gpsvc.dll 2014-09-14 08:24:32 ----A---- C:\Windows\system32\workfolderssvc.dll 2014-09-14 08:24:32 ----A---- C:\Windows\system32\Windows.Media.dll 2014-09-14 08:24:31 ----A---- C:\Windows\system32\iphlpsvc.dll 2014-09-14 08:24:30 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll 2014-09-14 08:24:30 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll 2014-09-14 08:24:30 ----A---- C:\Windows\system32\mfmp4srcsnk.dll 2014-09-14 08:24:30 ----A---- C:\Windows\system32\localspl.dll 2014-09-14 08:24:29 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll 2014-09-14 08:24:29 ----A---- C:\Windows\SYSWOW64\mfplat.dll 2014-09-14 08:24:29 ----A---- C:\Windows\system32\WMVDECOD.DLL 2014-09-14 08:24:29 ----A---- C:\Windows\system32\drivers\srv.sys 2014-09-14 08:24:28 ----A---- C:\Windows\system32\SRH.dll 2014-09-14 08:24:28 ----A---- C:\Windows\system32\printui.dll 2014-09-14 08:24:28 ----A---- C:\Windows\system32\mfplat.dll 2014-09-14 08:24:28 ----A---- C:\Windows\system32\drivers\ntfs.sys 2014-09-14 08:24:27 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL 2014-09-14 08:24:27 ----A---- C:\Windows\system32\wuaueng.dll 2014-09-14 08:24:27 ----A---- C:\Windows\system32\mispace.dll 2014-09-14 08:24:27 ----A---- C:\Windows\system32\drivers\srv2.sys 2014-09-14 08:24:26 ----A---- C:\Windows\system32\XpsPrint.dll 2014-09-14 08:24:26 ----A---- C:\Windows\system32\netcfgx.dll 2014-09-14 08:24:26 ----A---- C:\Windows\system32\drivers\netio.sys 2014-09-14 08:24:25 ----A---- C:\Windows\SYSWOW64\netcfgx.dll 2014-09-14 08:24:25 ----A---- C:\Windows\SYSWOW64\mispace.dll 2014-09-14 08:24:25 ----A---- C:\Windows\system32\WorkfoldersControl.dll 2014-09-14 08:24:25 ----A---- C:\Windows\system32\AppxPackaging.dll 2014-09-14 08:24:24 ----AC---- C:\Windows\system32\drivers\spaceport.sys 2014-09-14 08:24:24 ----A---- C:\Windows\SYSWOW64\SRH.dll 2014-09-14 08:24:24 ----A---- C:\Windows\SYSWOW64\printui.dll 2014-09-14 08:24:24 ----A---- C:\Windows\system32\wlanmsm.dll 2014-09-14 08:24:24 ----A---- C:\Windows\system32\srvsvc.dll 2014-09-14 08:24:24 ----A---- C:\Windows\system32\aclui.dll 2014-09-14 08:24:23 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll 2014-09-14 08:24:23 ----A---- C:\Windows\SYSWOW64\aclui.dll 2014-09-14 08:24:23 ----A---- C:\Windows\system32\spoolsv.exe 2014-09-14 08:24:23 ----A---- C:\Windows\system32\mfreadwrite.dll 2014-09-14 08:24:22 ----AC---- C:\Windows\system32\drivers\volsnap.sys 2014-09-14 08:24:22 ----AC---- C:\Windows\system32\drivers\usbccgp.sys 2014-09-14 08:24:22 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll 2014-09-14 08:24:22 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll 2014-09-14 08:24:22 ----A---- C:\Windows\system32\SHCore.dll 2014-09-14 08:24:21 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll 2014-09-14 08:24:21 ----A---- C:\Windows\system32\puiobj.dll 2014-09-14 08:24:20 ----A---- C:\Windows\SYSWOW64\SHCore.dll 2014-09-14 08:24:20 ----A---- C:\Windows\SYSWOW64\mftranscode.dll 2014-09-14 08:24:20 ----A---- C:\Windows\system32\storagewmi.dll 2014-09-14 08:24:20 ----A---- C:\Windows\system32\mftranscode.dll 2014-09-14 08:24:20 ----A---- C:\Windows\system32\comdlg32.dll 2014-09-14 08:24:19 ----AC---- C:\Windows\system32\drivers\USBHUB3.SYS 2014-09-14 08:24:19 ----A---- C:\Windows\system32\wuapi.dll 2014-09-14 08:24:19 ----A---- C:\Windows\system32\winload.exe 2014-09-14 08:24:19 ----A---- C:\Windows\system32\WebClnt.dll 2014-09-14 08:24:19 ----A---- C:\Windows\system32\usbmon.dll 2014-09-14 08:24:18 ----A---- C:\Windows\system32\wisp.dll 2014-09-14 08:24:18 ----A---- C:\Windows\system32\lsasrv.dll 2014-09-14 08:24:18 ----A---- C:\Windows\system32\defragsvc.dll 2014-09-14 08:24:17 ----A---- C:\Windows\SYSWOW64\comdlg32.dll 2014-09-14 08:24:17 ----A---- C:\Windows\system32\wsecedit.dll 2014-09-14 08:24:17 ----A---- C:\Windows\system32\winresume.exe 2014-09-14 08:24:17 ----A---- C:\Windows\system32\drivers\srvnet.sys 2014-09-14 08:24:16 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2014-09-14 08:24:16 ----A---- C:\Windows\SYSWOW64\clusapi.dll 2014-09-14 08:24:16 ----A---- C:\Windows\system32\winmmbase.dll 2014-09-14 08:24:16 ----A---- C:\Windows\system32\user32.dll 2014-09-14 08:24:16 ----A---- C:\Windows\system32\profsvc.dll 2014-09-14 08:24:16 ----A---- C:\Windows\system32\drivers\nwifi.sys 2014-09-14 08:24:15 ----AC---- C:\Windows\system32\drivers\usbhub.sys 2014-09-14 08:24:15 ----A---- C:\Windows\SYSWOW64\puiobj.dll 2014-09-14 08:24:15 ----A---- C:\Windows\system32\wpdbusenum.dll 2014-09-14 08:24:15 ----A---- C:\Windows\system32\win32spl.dll 2014-09-14 08:24:15 ----A---- C:\Windows\system32\WiFiDisplay.dll 2014-09-14 08:24:15 ----A---- C:\Windows\system32\rdpcorets.dll 2014-09-14 08:24:14 ----A---- C:\Windows\SYSWOW64\wlanapi.dll 2014-09-14 08:24:14 ----A---- C:\Windows\SYSWOW64\Display.dll 2014-09-14 08:24:14 ----A---- C:\Windows\system32\VAN.dll 2014-09-14 08:24:14 ----A---- C:\Windows\system32\SettingSync.dll 2014-09-14 08:24:14 ----A---- C:\Windows\system32\rdvidcrl.dll 2014-09-14 08:24:14 ----A---- C:\Windows\system32\conhost.exe 2014-09-14 08:24:13 ----A---- C:\Windows\SYSWOW64\winmmbase.dll 2014-09-14 08:24:13 ----A---- C:\Windows\SYSWOW64\storagewmi.dll 2014-09-14 08:24:13 ----A---- C:\Windows\system32\WUSettingsProvider.dll 2014-09-14 08:24:13 ----A---- C:\Windows\system32\WorkFoldersGPExt.dll 2014-09-14 08:24:13 ----A---- C:\Windows\system32\Display.dll 2014-09-14 08:24:13 ----A---- C:\Windows\system32\AppxSip.dll 2014-09-14 08:24:12 ----A---- C:\Windows\SYSWOW64\wisp.dll 2014-09-14 08:24:12 ----A---- C:\Windows\system32\SndVol.exe 2014-09-14 08:24:12 ----A---- C:\Windows\system32\osk.exe 2014-09-14 08:24:12 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys 2014-09-14 08:24:12 ----A---- C:\Windows\system32\clusapi.dll 2014-09-14 08:24:11 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2014-09-14 08:24:11 ----A---- C:\Windows\system32\mfps.dll 2014-09-14 08:24:11 ----A---- C:\Windows\system32\drivers\ndis.sys 2014-09-14 08:24:11 ----A---- C:\Windows\system32\DafPrintProvider.dll 2014-09-14 08:24:11 ----A---- C:\Windows\system32\bcryptprimitives.dll 2014-09-14 08:24:10 ----AC---- C:\Windows\system32\drivers\hdaudbus.sys 2014-09-14 08:24:10 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll 2014-09-14 08:24:10 ----A---- C:\Windows\system32\winmm.dll 2014-09-14 08:24:10 ----A---- C:\Windows\system32\httpprxm.dll 2014-09-14 08:24:10 ----A---- C:\Windows\system32\drivers\NdisImPlatform.sys 2014-09-14 08:24:10 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2014-09-14 08:24:09 ----A---- C:\Windows\SYSWOW64\AppxSip.dll 2014-09-14 08:24:09 ----A---- C:\Windows\system32\wucltux.dll 2014-09-14 08:24:09 ----A---- C:\Windows\system32\Windows.Networking.dll 2014-09-14 08:24:09 ----A---- C:\Windows\system32\twinapi.dll 2014-09-14 08:24:09 ----A---- C:\Windows\system32\dwmapi.dll 2014-09-14 08:24:09 ----A---- C:\Windows\system32\drivers\bridge.sys 2014-09-14 08:24:08 ----A---- C:\Windows\SYSWOW64\wsecedit.dll 2014-09-14 08:24:08 ----A---- C:\Windows\system32\WSShared.dll 2014-09-14 08:24:08 ----A---- C:\Windows\system32\WorkFoldersShell.dll 2014-09-14 08:24:08 ----A---- C:\Windows\system32\prnntfy.dll 2014-09-14 08:24:08 ----A---- C:\Windows\system32\GdiPlus.dll 2014-09-14 08:24:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll 2014-09-14 08:24:07 ----A---- C:\Windows\SYSWOW64\winmm.dll 2014-09-14 08:24:07 ----A---- C:\Windows\SYSWOW64\prnntfy.dll 2014-09-14 08:24:07 ----A---- C:\Windows\system32\puiapi.dll 2014-09-14 08:24:07 ----A---- C:\Windows\system32\gpedit.dll 2014-09-14 08:24:06 ----A---- C:\Windows\SYSWOW64\SndVol.exe 2014-09-14 08:24:06 ----A---- C:\Windows\SYSWOW64\puiapi.dll 2014-09-14 08:24:06 ----A---- C:\Windows\system32\iasnap.dll 2014-09-14 08:24:05 ----AC---- C:\Windows\system32\drivers\pci.sys 2014-09-14 08:24:05 ----A---- C:\Windows\SYSWOW64\WSShared.dll 2014-09-14 08:24:05 ----A---- C:\Windows\SYSWOW64\VAN.dll 2014-09-14 08:24:05 ----A---- C:\Windows\SYSWOW64\dwmapi.dll 2014-09-14 08:24:05 ----A---- C:\Windows\system32\wups.dll 2014-09-14 08:24:05 ----A---- C:\Windows\system32\adhsvc.dll 2014-09-14 08:24:04 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-09-14 08:24:04 ----A---- C:\Windows\system32\drivers\ks.sys 2014-09-14 08:24:03 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll 2014-09-14 08:24:03 ----A---- C:\Windows\system32\wwanconn.dll 2014-09-14 08:24:03 ----A---- C:\Windows\system32\wcmcsp.dll 2014-09-14 08:24:03 ----A---- C:\Windows\system32\stobject.dll 2014-09-14 08:24:03 ----A---- C:\Windows\system32\dab.dll 2014-09-14 08:24:03 ----A---- C:\Windows\system32\AppxSysprep.dll 2014-09-14 08:24:02 ----A---- C:\Windows\SYSWOW64\rsaenh.dll 2014-09-14 08:24:02 ----A---- C:\Windows\SYSWOW64\iasnap.dll 2014-09-14 08:24:02 ----A---- C:\Windows\SYSWOW64\gpedit.dll 2014-09-14 08:24:02 ----A---- C:\Windows\system32\wuauclt.exe 2014-09-14 08:24:02 ----A---- C:\Windows\system32\ActionCenter.dll 2014-09-14 08:24:01 ----A---- C:\Windows\system32\wups2.dll 2014-09-14 08:24:01 ----A---- C:\Windows\system32\wlanapi.dll 2014-09-14 08:24:01 ----A---- C:\Windows\system32\rsaenh.dll 2014-09-14 08:24:00 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll 2014-09-14 08:24:00 ----A---- C:\Windows\SYSWOW64\SettingSync.dll 2014-09-14 08:24:00 ----A---- C:\Windows\SYSWOW64\osk.exe 2014-09-14 08:24:00 ----A---- C:\Windows\system32\wshbth.dll 2014-09-14 08:24:00 ----A---- C:\Windows\system32\schannel.dll 2014-09-14 08:23:59 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll 2014-09-14 08:23:59 ----A---- C:\Windows\system32\SearchFolder.dll 2014-09-14 08:23:59 ----A---- C:\Windows\system32\PrintDialogs.dll 2014-09-14 08:23:59 ----A---- C:\Windows\system32\browser.dll 2014-09-14 08:23:58 ----A---- C:\Windows\SYSWOW64\wshbth.dll 2014-09-14 08:23:58 ----A---- C:\Windows\SYSWOW64\stobject.dll 2014-09-14 08:23:58 ----A---- C:\Windows\system32\wlansvcpal.dll 2014-09-14 08:23:58 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll 2014-09-14 08:23:57 ----A---- C:\Windows\SYSWOW64\KBDRUM.DLL 2014-09-14 08:23:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll 2014-09-14 08:23:57 ----A---- C:\Windows\system32\Defrag.exe 2014-09-14 08:23:56 ----A---- C:\Windows\SYSWOW64\wups.dll 2014-09-14 08:23:56 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll 2014-09-14 08:23:56 ----A---- C:\Windows\system32\KBDRUM.DLL 2014-09-14 08:23:55 ----A---- C:\Windows\SYSWOW64\schannel.dll 2014-09-14 08:23:55 ----A---- C:\Windows\system32\KBDYAK.DLL 2014-09-14 08:23:55 ----A---- C:\Windows\system32\KBDRU1.DLL 2014-09-14 08:23:55 ----A---- C:\Windows\system32\KBDRU.DLL 2014-09-14 08:23:55 ----A---- C:\Windows\system32\KBDBASH.DLL 2014-09-14 08:23:54 ----A---- C:\Windows\SYSWOW64\user32.dll 2014-09-14 08:23:54 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL 2014-09-14 08:23:54 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL 2014-09-14 08:23:54 ----A---- C:\Windows\system32\BluetoothApis.dll 2014-09-14 08:23:53 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL 2014-09-14 08:23:53 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL 2014-09-14 08:23:51 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll 2014-09-14 08:23:51 ----A---- C:\Windows\SYSWOW64\certcli.dll 2014-09-14 08:23:51 ----A---- C:\Windows\system32\wwanmm.dll 2014-09-14 08:23:51 ----A---- C:\Windows\system32\SndVolSSO.dll 2014-09-14 08:23:51 ----A---- C:\Windows\system32\KBDTAT.DLL 2014-09-14 08:23:51 ----A---- C:\Windows\system32\certcli.dll 2014-09-14 08:23:50 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL 2014-09-14 08:23:50 ----A---- C:\Windows\SYSWOW64\BluetoothApis.dll 2014-09-14 08:23:50 ----A---- C:\Windows\system32\compstui.dll 2014-09-14 08:23:49 ----A---- C:\Windows\system32\wlansec.dll 2014-09-14 08:23:49 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-09-14 08:23:49 ----A---- C:\Windows\system32\rdpudd.dll 2014-09-14 08:23:48 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2014-09-14 08:23:48 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-09-14 08:23:48 ----A---- C:\Windows\system32\wudriver.dll 2014-09-14 08:23:48 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-09-14 08:23:47 ----A---- C:\Windows\SYSWOW64\KBDTT102.DLL 2014-09-14 08:23:47 ----A---- C:\Windows\system32\KBDTT102.DLL 2014-09-14 08:16:59 ----A---- C:\Windows\system32\drivers\msgpioclx.sys ======List of files/folders modified in the last 1 month====== 2014-10-11 13:36:58 ----RD---- C:\Program Files 2014-10-11 13:36:58 ----D---- C:\Windows\Prefetch 2014-10-11 13:28:57 ----D---- C:\Windows\system32\Tasks 2014-10-11 13:28:56 ----SHD---- C:\Windows\Installer 2014-10-11 13:28:56 ----D---- C:\Windows\Temp 2014-10-11 13:28:56 ----D---- C:\Windows\Tasks 2014-10-11 13:22:21 ----D---- C:\Program Files (x86) 2014-10-11 13:00:00 ----D---- C:\Windows\system32\sru 2014-10-11 11:57:46 ----D---- C:\Windows\SysWOW64 2014-10-11 09:14:18 ----RD---- C:\Windows\System32 2014-10-11 09:14:18 ----D---- C:\Windows\Inf 2014-10-11 09:14:18 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-10-11 09:09:51 ----D---- C:\Windows\system32\config 2014-10-11 09:09:05 ----D---- C:\Windows\system32\wbem 2014-10-11 09:09:04 ----D---- C:\Windows\system32\drivers\UMDF 2014-10-11 09:09:04 ----D---- C:\Program Files\Windows Media Player 2014-10-11 09:09:01 ----D---- C:\Windows 2014-10-11 09:08:30 ----D---- C:\Windows\SYSWOW64\wbem 2014-10-11 09:08:29 ----D---- C:\Windows\system32\catroot2 2014-10-11 09:08:29 ----D---- C:\Windows\apppatch 2014-10-11 09:08:29 ----D---- C:\Program Files\Windows Portable Devices 2014-10-11 09:08:29 ----D---- C:\Program Files\Windows Photo Viewer 2014-10-11 09:08:29 ----D---- C:\Program Files\Internet Explorer 2014-10-11 09:08:29 ----D---- C:\Program Files (x86)\Internet Explorer 2014-10-11 09:08:28 ----D---- C:\Windows\WinSxS 2014-10-11 09:07:56 ----D---- C:\Windows\SYSWOW64\config 2014-10-11 09:07:54 ----D---- C:\Windows\system32\drivers 2014-10-11 09:07:54 ----D---- C:\Windows\system32\CodeIntegrity 2014-10-11 09:07:54 ----D---- C:\Windows\system32\catroot 2014-10-11 09:07:52 ----RSD---- C:\Windows\Fonts 2014-10-11 09:07:52 ----HD---- C:\Windows\ELAMBKUP 2014-10-11 09:07:49 ----D---- C:\Users\Wil\AppData\Roaming\U3 2014-10-11 09:07:34 ----D---- C:\Program Files\Bonjour 2014-10-11 09:07:32 ----D---- C:\Program Files (x86)\Internetbeveiliging 2014-10-11 09:07:31 ----D---- C:\Program Files (x86)\Bonjour 2014-10-11 09:07:13 ----HD---- C:\Program Files\WindowsApps 2014-10-11 09:06:48 ----D---- C:\Windows\registration 2014-10-11 09:06:20 ----D---- C:\Windows\WinStore 2014-10-11 09:06:20 ----D---- C:\Windows\Web 2014-10-11 09:06:20 ----D---- C:\Windows\Vss 2014-10-11 09:06:20 ----D---- C:\Windows\vpnplugins 2014-10-11 09:06:20 ----D---- C:\Windows\twain_32 2014-10-11 09:06:20 ----D---- C:\Windows\SYSWOW64\XPSViewer 2014-10-11 09:06:20 ----D---- C:\Windows\SYSWOW64\winrm 2014-10-11 09:06:20 ----D---- C:\Windows\SYSWOW64\WindowsPowerShell 2014-10-11 09:06:20 ----D---- C:\Windows\SYSWOW64\wdi 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\spp 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\Speech 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\slmgr 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\oobe 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\networklist 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\MUI 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\MsDtc 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\migration 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\Macromed 2014-10-11 09:06:19 ----D---- C:\Windows\SYSWOW64\Licenses 2014-10-11 09:06:18 ----D---- C:\Windows\SYSWOW64\InstallShield 2014-10-11 09:06:18 ----D---- C:\Windows\SYSWOW64\InputMethod 2014-10-11 09:06:18 ----D---- C:\Windows\SYSWOW64\IME 2014-10-11 09:06:18 ----D---- C:\Windows\SYSWOW64\drivers 2014-10-11 09:06:18 ----D---- C:\Windows\SYSWOW64\Dism 2014-10-11 09:06:16 ----D---- C:\Windows\SYSWOW64\Com 2014-10-11 09:06:16 ----D---- C:\Windows\SystemResources 2014-10-11 09:06:16 ----D---- C:\Windows\system32\winrm 2014-10-11 09:06:16 ----D---- C:\Windows\system32\WindowsPowerShell 2014-10-11 09:06:16 ----D---- C:\Windows\system32\WindowsInternal.Inbox.Shared 2014-10-11 09:06:16 ----D---- C:\Windows\system32\WindowsInternal.Inbox.Media.Shared 2014-10-11 09:06:16 ----D---- C:\Windows\system32\WinBioPlugIns 2014-10-11 09:06:16 ----D---- C:\Windows\System 2014-10-11 09:06:15 ----D---- C:\Windows\system32\wdi 2014-10-11 09:06:15 ----D---- C:\Windows\system32\SystemResetPlatform 2014-10-11 09:06:15 ----D---- C:\Windows\system32\Sysprep 2014-10-11 09:06:14 ----D---- C:\Windows\system32\spp 2014-10-11 09:06:14 ----D---- C:\Windows\system32\spool 2014-10-11 09:06:14 ----D---- C:\Windows\system32\Speech 2014-10-11 09:06:14 ----D---- C:\Windows\system32\SMI 2014-10-11 09:06:14 ----D---- C:\Windows\system32\slmgr 2014-10-11 09:06:14 ----D---- C:\Windows\system32\Printing_Admin_Scripts 2014-10-11 09:06:14 ----D---- C:\Windows\system32\oobe 2014-10-11 09:06:14 ----D---- C:\Windows\system32\nl-NL 2014-10-11 09:06:14 ----D---- C:\Windows\system32\networklist 2014-10-11 09:06:13 ----SD---- C:\Windows\system32\Microsoft 2014-10-11 09:06:13 ----D---- C:\Windows\system32\MUI 2014-10-11 09:06:13 ----D---- C:\Windows\system32\MsDtc 2014-10-11 09:06:13 ----D---- C:\Windows\system32\migwiz 2014-10-11 09:06:13 ----D---- C:\Windows\system32\migration 2014-10-11 09:06:13 ----D---- C:\Windows\system32\Macromed 2014-10-11 09:06:13 ----D---- C:\Windows\system32\Licenses 2014-10-11 09:06:13 ----D---- C:\Windows\system32\InputMethod 2014-10-11 09:06:13 ----D---- C:\Windows\system32\IME 2014-10-11 09:06:12 ----SD---- C:\Windows\system32\dsc 2014-10-11 09:06:12 ----D---- C:\Windows\system32\DriverStore 2014-10-11 09:06:11 ----SD---- C:\Windows\system32\Configuration 2014-10-11 09:06:11 ----SD---- C:\Windows\system32\CompatTel 2014-10-11 09:06:11 ----D---- C:\Windows\system32\Dism 2014-10-11 09:06:11 ----D---- C:\Windows\system32\Com 2014-10-11 09:06:10 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information 2014-10-11 09:06:10 ----D---- C:\Windows\system32\Boot 2014-10-11 09:06:10 ----D---- C:\Windows\Speech 2014-10-11 09:06:10 ----D---- C:\Windows\SKB 2014-10-11 09:06:10 ----D---- C:\Windows\Setup 2014-10-11 09:06:10 ----D---- C:\Windows\servicing 2014-10-11 09:06:10 ----D---- C:\Windows\ServiceProfiles 2014-10-11 09:06:10 ----D---- C:\Windows\security 2014-10-11 09:06:10 ----D---- C:\Windows\schemas 2014-10-11 09:06:10 ----D---- C:\Windows\Resources 2014-10-11 09:06:10 ----D---- C:\Windows\rescache 2014-10-11 09:06:10 ----D---- C:\Windows\PolicyDefinitions 2014-10-11 09:06:10 ----D---- C:\Windows\PLA 2014-10-11 09:06:10 ----D---- C:\Windows\Performance 2014-10-11 09:06:10 ----D---- C:\Windows\Microsoft.NET 2014-10-11 09:06:08 ----RD---- C:\Windows\ImmersiveControlPanel 2014-10-11 09:06:08 ----D---- C:\Windows\InputMethod 2014-10-11 09:06:08 ----D---- C:\Windows\IME 2014-10-11 09:06:07 ----RD---- C:\Windows\DesktopTileResources 2014-10-11 09:06:07 ----RD---- C:\Windows\BrowserChoice 2014-10-11 09:06:07 ----RD---- C:\Windows\assembly 2014-10-11 09:06:07 ----D---- C:\Windows\Help 2014-10-11 09:06:07 ----D---- C:\Windows\Globalization 2014-10-11 09:06:07 ----D---- C:\Windows\FileManager 2014-10-11 09:06:07 ----D---- C:\Windows\diagnostics 2014-10-11 09:06:07 ----D---- C:\Windows\Camera 2014-10-11 09:06:07 ----D---- C:\Windows\Branding 2014-10-11 09:06:07 ----D---- C:\Windows\Boot 2014-10-11 09:06:04 ----SD---- C:\Users\Wil\AppData\Roaming\Microsoft 2014-10-11 09:06:04 ----D---- C:\Windows\AppCompat 2014-10-11 09:06:04 ----D---- C:\Windows\ADFS 2014-10-11 09:06:04 ----D---- C:\Users\Wil\AppData\Roaming\Thunderbird 2014-10-11 09:06:04 ----D---- C:\Users\Wil\AppData\Roaming\Kaspersky Lab 2014-10-11 09:06:03 ----D---- C:\Users\Wil\AppData\Roaming\Genie-Soft 2014-10-11 09:06:03 ----D---- C:\Users\Wil\AppData\Roaming\Canon 2014-10-11 09:06:03 ----D---- C:\Users\Wil\AppData\Roaming\Adobe 2014-10-11 09:05:44 ----HD---- C:\ProgramData 2014-10-11 09:05:44 ----D---- C:\ProgramData\Trusteer 2014-10-11 09:05:43 ----SHD---- C:\Program Files\Windows Sidebar 2014-10-11 09:05:43 ----SD---- C:\ProgramData\Microsoft 2014-10-11 09:05:43 ----HD---- C:\ProgramData\CanonBJ 2014-10-11 09:05:43 ----D---- C:\ProgramData\Intel 2014-10-11 09:05:43 ----D---- C:\ProgramData\F-Secure 2014-10-11 09:05:43 ----D---- C:\ProgramData\Apple 2014-10-11 09:05:43 ----D---- C:\ProgramData\Adobe 2014-10-11 09:05:43 ----D---- C:\Program Files\Windows NT 2014-10-11 09:05:43 ----D---- C:\Program Files\Windows Mail 2014-10-11 09:05:43 ----D---- C:\Program Files\Windows Journal 2014-10-11 09:05:43 ----D---- C:\Program Files\Windows Defender 2014-10-11 09:05:43 ----D---- C:\Program Files\Reference Assemblies 2014-10-11 09:05:43 ----D---- C:\Program Files\Realtek 2014-10-11 09:05:43 ----D---- C:\Program Files\MSBuild 2014-10-11 09:05:43 ----D---- C:\Program Files\Microsoft Silverlight 2014-10-11 09:05:43 ----D---- C:\Program Files\Microsoft Office 2014-10-11 09:05:43 ----D---- C:\Program Files\LaCie 2014-10-11 09:05:43 ----D---- C:\Program Files\Intel 2014-10-11 09:05:43 ----D---- C:\Program Files\GIGABYTE 2014-10-11 09:05:43 ----D---- C:\Program Files\Common Files\System 2014-10-11 09:05:43 ----D---- C:\Program Files\Common Files\microsoft shared 2014-10-11 09:05:43 ----D---- C:\Program Files\Common Files 2014-10-11 09:05:42 ----HD---- C:\Program Files\CanonBJ 2014-10-11 09:05:42 ----D---- C:\Program Files\CCleaner 2014-10-11 09:05:42 ----D---- C:\Program Files (x86)\Windows Photo Viewer 2014-10-11 09:05:42 ----D---- C:\Program Files (x86)\Windows NT 2014-10-11 09:05:42 ----D---- C:\Program Files (x86)\Windows Media Player 2014-10-11 09:05:42 ----D---- C:\Program Files (x86)\Windows Mail 2014-10-11 09:05:42 ----D---- C:\Program Files (x86)\Windows Defender 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Trusteer 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Softwarenetz 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Reference Assemblies 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Realtek 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\MSBuild 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Mozilla Thunderbird 2014-10-11 09:05:41 ----D---- C:\Program Files (x86)\Microsoft.NET 2014-10-11 09:05:40 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\Microsoft Office 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\Microsoft Analysis Services 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\LaCie 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\Kaspersky Lab 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\Intel 2014-10-11 09:05:40 ----D---- C:\Program Files (x86)\GIGABYTE 2014-10-11 09:05:39 ----D---- C:\Program Files (x86)\DYMO 2014-10-11 09:05:39 ----D---- C:\Program Files (x86)\Common Files 2014-10-11 09:05:38 ----SHD---- C:\$Recycle.Bin 2014-10-11 09:05:38 ----RHD---- C:\MSOCache 2014-10-11 09:05:38 ----D---- C:\Program Files (x86)\Canon 2014-10-11 09:05:38 ----D---- C:\Program Files (x86)\Adobe 2014-10-11 09:05:38 ----D---- C:\Program Files (x86)\Acronis 2014-10-11 09:05:38 ----D---- C:\Program Files (x86)\Acro Software 2014-10-11 08:37:22 ----D---- C:\Windows\AppReadiness 2014-10-10 19:50:44 ----D---- C:\Belangrijk 2014-10-10 18:43:24 ----SHD---- C:\System Volume Information 2014-10-05 14:50:31 ----D---- C:\Windows\debug 2014-10-05 14:07:26 ----D---- C:\Windows\SoftwareDistribution 2014-10-05 10:16:25 ----D---- C:\Windows\system32\NDF 2014-09-24 09:06:57 ----D---- C:\Windows\CbsTemp 2014-09-16 08:21:20 ----RD---- C:\Windows\ToastData 2014-09-16 08:21:15 ----D---- C:\Windows\SYSWOW64\setup 2014-09-16 08:21:14 ----D---- C:\Windows\system32\setup 2014-09-16 08:21:14 ----D---- C:\Windows\system32\drivers\nl-NL ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-06-18 190744] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2014-07-18 313624] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2014-08-06 123672] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-18 31512] R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2014-03-27 116000] R0 fsbts;fsbts; C:\Windows\system32\Drivers\fsbts.sys [2014-03-08 56016] R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-07 644968] R0 RapportHades64;RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [2014-07-31 293784] R0 RapportKE64;RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [2014-07-31 536984] R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2014-03-27 269600] R0 tib;Acronis TIB Manager; C:\Windows\system32\DRIVERS\tib.sys [2014-03-27 1120032] R0 tib_mounter;Acronis TIB Mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [2014-03-27 198432] R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2013-10-28 22240] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-18 153368] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2014-07-24 247576] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-08-20 243480] R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2014-07-18 273176] R1 F-Secure HIPS;F-Secure HIPS Driver; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2014-06-23 69960] R1 fsvista;F-Secure Vista Support Driver; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2013-08-27 13248] R1 RapportCerberus_80049;RapportCerberus_80049; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_80049.sys [2014-09-04 768184] R1 RapportEI64;RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2014-07-31 444184] R1 RapportPG64;RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2014-07-31 562136] R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2014-03-27 367200] R3 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2014-06-09 203304] R3 fsni;fsni; \??\C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Scanning\fsni64.sys [2013-04-25 80832] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-29 3698904] R3 iwdbus;@oem3.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-12-27 27032] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-05-12 25816] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-10-11 122584] R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-05-12 64216] R3 MEIx64;@oem8.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288] R3 RTL8168;@oem9.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-09-09 833752] R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2013-08-22 11776] S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2013-09-04 20496] S1 UsbCharger;UsbCharger; C:\Windows\system32\DRIVERS\UsbCharger.sys [2013-10-24 22240] S3 cleanhlp;cleanhlp; \??\C:\Program Files\Run\cleanhlp64.sys [] S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [] S3 intaud_WaveExtensible;@oem2.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-12-27 38296] S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2014-03-27 1464096] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 1144144] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704] R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-03-27 3881976] R2 Bonjour Service;Bonjour-service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-10-07 345376] R2 DymoPnpService;DYMO PnP Service; C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe [2011-01-28 32336] R2 fshoster;F-Secure Dll Hoster; C:\Program Files (x86)\Internetbeveiliging\fshoster32.exe [2012-11-26 183864] R2 FSORSPClient;F-Secure ORSP Client; C:\Program Files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [2014-03-08 60352] R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720] R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520] R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472] R2 RapportMgmtService;Rapport Management Service; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2014-07-31 1919256] R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2014-02-04 7148216] R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696] R3 FSMA;F-Secure Management Agent; C:\Program Files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE [2013-08-27 207808] R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2014-09-05 3364368] S2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2014-09-05 293448] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440] S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272] S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000] S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-02-04 150600] -----------------EOF-----------------