Ga naar inhoud

Bluescreen - Win32:Rapiddown-A


Aanbevolen berichten

Beste forumleden,

Ik heb nog geen maand terug een pc gekocht via een webwinkel.

Alles werkt(e) perfect. 1TB HDD, 64GB SSD, i5-processor, 12GB-ram.

Enkele dagen terug wilde ik de pc in stand-by plaatsen, en startte hij echter meteen opnieuw op.

Daarna, na heropstart: foutmelding: Bluescreen. Het blauwe scherm zelf heb ik echter niet gezien.

Gisteren had ik de pc vergrendeld, en na een tijdje is hij vanzelf in stand-by gegaan. Blijkbaar hetzelfde probleem.

Bij het aanzetten van de pc deze ochtend: weer foutmelding dat pc is afgesloten en opnieuw opgestart. Foutmelding: opnieuw bluescreen.

Hieronder de tekst uit dat scherm:

Probleemhandtekening:\r

Gebeurtenisnaam van probleem:BlueScreen\r

Versie van besturingssysteem:6.1.7601.2.
1.0.768.3\r

Landinstelling-id:1043\r

\r

Aanvullende informatie over dit probleem:\r

BCCode:3b\r

BCP1:00000000C0000005\r

BCP2:FFFFF800032C9DCE\r

BCP3:FFFFF880089D96C0\r

BCP4:0000000000000000\r

OS Version:6_1_7601\r

Service Pack:1_0\r

Product:768_1\r

\r

Bestanden die helpen bij het beschrijven van het probleem:\r

C:\\Windows\\Minidump\\013014-
7503-01.dmp\r

C:\\Users\\win 7\\AppData\\Local\\Temp\\WER-
39016411-0.sysdata.xml\r

\r

Lees de onlineprivacyverklaring:\r

\r

Als de onlineprivacyverklaring niet beschikbaar is, lees dan onze offlineprivacyverklaring:\r

C:\\Windows\\system32\\nl-NL\\
erofflps.txt

Ik heb AVAST als antivirus geïnstalleerd staan op de pc. Heb een systeemscan bij opstart aangevraagd.

Enkele bestanden waren blijkbaar beschadigd. Deze zijn volgens mij ongevaarlijk, want zijn documenten die ik zelf gemaakt heb (melding: OLE-archief is beschadigd). Dit ging over een drietal bestanden.

Daarna de melding:

pdfcreator.exe is besmet met win32:Rapiddown-A [pup]

Ik heb de optie 'verwijderen' gekozen. AVAST heeft dit voor zover ik kan zien, netjes gedaan.

Kan het onverklaarbare heropstarten bij in stand-by-plaatsen, hierdoor veroorzaakt zijn geweest?

Graag jullie hulp.

Ik kan de dumpbestanden van de bluescreens trouwens niet openen. Toegang geweigerd.

mvg

Emperor

- - - Updated - - -

Dit is trouwens het rapport van AVAST:

post-25657-1417705659,3557_thumb.jpg

aangepast door Emperor
Link naar reactie
Delen op andere sites

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Hierbij het logje.

Sorry voor de late reactie. Om een of andere reden kreeg ik geen mail bij je reactie op deze topic.

Logfile of random's system information tool 1.09 (written by random/random)

Run by win 7 at 2014-02-06 20:07:38

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 13 GB (24%) free of 57 GB

Total RAM: 12167 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 20:07:48, on 06/02/14

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Users\win 7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\win 7.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"

O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s

O4 - HKLM\..\Run: [NeroCheck] C:\Windows\SysWOW64\\NeroCheck.exe

O4 - HKCU\..\Run: [spotify] "C:\Users\win 7\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\win 7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [Gadwin PrintScreen Pro] C:\Program Files (x86)\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe /nosplash

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: Afbeelding knippen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4

O8 - Extra context menu item: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4

O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3

O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1

O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0

O8 - Extra context menu item: Kopieer selectie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3

O8 - Extra context menu item: Kopieer URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0

O8 - Extra context menu item: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html

O8 - Extra context menu item: Nieuwe notitie - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html

O8 - Extra context menu item: Pagina opemen - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe

O23 - Service: DraftSight API Service - Dassault Systèmes - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12577 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

winlogon.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe" C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

"C:\Program Files\Intel\iCLS Client\HeciServer.exe"

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

WLIDSvcM.exe 1920

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Windows\System32\igfxtray.exe"

"C:\Windows\System32\hkcmd.exe"

"C:\Windows\System32\igfxpers.exe"

"C:\Windows\system32\igfxsrvc.exe" -Embedding

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Users\win 7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"C:\Program Files (x86)\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe" /nosplash

"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"

"C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe"

C:\Windows\splwow64.exe 8192

"C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

"C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\svchost.exe -k HPService

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8c86f5b6-8581-4b3f-a4c8-217530533a5f -SystemEventPortName:HostProcess-f49f3ba4-6229-4d1a-b451-1ae21ae951a1 -IoCancelEventPortName:HostProcess-07ee5bba-25c2-403b-88c7-231ae2948b60 -NonStateChangingEventPortName:HostProcess-ffc74448-8ae5-4f44-9340-0092497d278c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d484dc54-8021-4241-a760-610e2b65b6ae -DeviceGroupId:WpdFsGroup

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Program Files (x86)\Windows Live\Mail\wlmail.exe"

"C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding

C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

"C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe" -startup

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Windows\system32\wuauclt.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5876.0.1517466490\616590326" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,5,13,23 --gpu-vendor-id=0x8086 --gpu-device-id=0x0412 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3186 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group5 pct:10e stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5876.4.637588638\1946867943" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group5 pct:10e stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="5876.15.2074586246\169446883" /prefetch:673131151

C:\Windows\system32\sppsvc.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524

"C:\Users\win 7\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-31 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-01-14 256080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll [2014-01-14 346576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-31 1143168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]

Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-01-28 583520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-01-14 194128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll [2014-01-14 1001936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-01-14 256080]

{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-31 1390368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-01-14 194128]

{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-31 1143168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-05-24 165872]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-05-24 407536]

"Persistence"=C:\Windows\system32\igfxpers.exe [2013-05-24 444400]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-02-26 13423688]

"IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Spotify"=C:\Users\win 7\AppData\Roaming\Spotify\Spotify.exe [2014-01-14 6118400]

"Spotify Web Helper"=C:\Users\win 7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-01-14 1171968]

"Gadwin PrintScreen Pro"=C:\Program Files (x86)\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe [2012-05-30 1869552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"IMSS"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [2013-04-11 134616]

"USB3MON"=C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]

"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-01-31 3767096]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

"Nikon Message Center 2"=C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]

"NeroCheck"=C:\Windows\SysWOW64\\NeroCheck.exe [2001-07-09 155648]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\win 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2013-05-17 440832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]

FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2009-10-02 134656]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-02-06 20:07:38 ----D---- C:\rsit

2014-02-06 20:07:38 ----D---- C:\Program Files\trend micro

2014-02-04 22:30:14 ----D---- C:\Program Files (x86)\Evernote

2014-02-04 22:27:25 ----D---- C:\Program Files (x86)\Ahead

2014-02-04 22:27:22 ----A---- C:\Windows\SYSWOW64\drmclien.dll

2014-01-30 11:56:06 ----D---- C:\Program Files (x86)\Gadwin Systems

2014-01-27 14:40:52 ----D---- C:\Windows\Minidump

2014-01-18 18:19:42 ----D---- C:\ProgramData\Nikon

2014-01-17 11:26:36 ----A---- C:\Windows\SYSWOW64\wmploc.DLL

2014-01-17 11:26:36 ----A---- C:\Windows\SYSWOW64\wmp.dll

2014-01-17 11:26:36 ----A---- C:\Windows\system32\wmploc.DLL

2014-01-17 11:26:35 ----A---- C:\Windows\system32\wmp.dll

2014-01-17 11:20:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2014-01-17 11:20:58 ----A---- C:\Windows\SYSWOW64\ieui.dll

2014-01-17 11:20:58 ----A---- C:\Windows\system32\jsproxy.dll

2014-01-17 11:20:58 ----A---- C:\Windows\system32\ieUnatt.exe

2014-01-17 11:20:58 ----A---- C:\Windows\system32\ieui.dll

2014-01-17 11:20:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2014-01-17 11:20:57 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2014-01-17 11:20:57 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\mshtml.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\jscript9diag.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\iesetup.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\iernonce.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\ieetwproxystub.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\ieetwcollector.exe

2014-01-17 11:20:57 ----A---- C:\Windows\system32\ieapfltr.dll

2014-01-17 11:20:57 ----A---- C:\Windows\system32\ie4uinit.exe

2014-01-17 11:20:56 ----A---- C:\Windows\SYSWOW64\wininet.dll

2014-01-17 11:20:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2014-01-17 11:20:56 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2014-01-17 11:20:56 ----A---- C:\Windows\system32\wininet.dll

2014-01-17 11:20:56 ----A---- C:\Windows\system32\urlmon.dll

2014-01-17 11:20:56 ----A---- C:\Windows\system32\iertutil.dll

2014-01-17 11:20:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2014-01-17 11:20:55 ----A---- C:\Windows\system32\ieframe.dll

2014-01-17 11:20:54 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2014-01-17 11:20:54 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2014-01-17 11:20:54 ----A---- C:\Windows\system32\jscript9.dll

2014-01-17 11:17:39 ----A---- C:\Windows\system32\browserchoice.exe

2014-01-17 11:15:16 ----A---- C:\Windows\system32\drivers\WUDFRd.sys

2014-01-17 11:15:16 ----A---- C:\Windows\system32\drivers\WUDFPf.sys

2014-01-17 11:15:15 ----A---- C:\Windows\system32\WUDFx.dll

2014-01-17 11:15:15 ----A---- C:\Windows\system32\WUDFSvc.dll

2014-01-17 11:15:15 ----A---- C:\Windows\system32\WUDFPlatform.dll

2014-01-17 11:15:15 ----A---- C:\Windows\system32\WUDFHost.exe

2014-01-17 11:15:15 ----A---- C:\Windows\system32\WUDFCoinstaller.dll

2014-01-17 10:51:11 ----D---- C:\Users\win 7\AppData\Roaming\Nikon

2014-01-17 10:50:35 ----D---- C:\Windows\Downloaded Installations

2014-01-17 10:50:26 ----H---- C:\ProgramData\PKP_DLes.DAT

2014-01-17 10:50:12 ----D---- C:\Program Files\Common Files\Nikon

2014-01-17 10:50:11 ----D---- C:\Program Files\Nikon

2014-01-17 10:50:11 ----D---- C:\Program Files (x86)\Nikon

2014-01-17 10:50:10 ----A---- C:\Windows\SYSWOW64\ATL71.DLL

2014-01-17 10:50:08 ----H---- C:\ProgramData\PKP_DLev.DAT

2014-01-17 10:50:07 ----H---- C:\ProgramData\PKP_DLet.DAT

2014-01-17 10:49:58 ----H---- C:\ProgramData\PKP_DLeo.DAT

2014-01-17 10:49:58 ----D---- C:\ProgramData\Ultima_T15

2014-01-17 10:49:58 ----D---- C:\ProgramData\Framework

2014-01-17 10:49:58 ----D---- C:\ProgramData\EnterNHelp

2014-01-17 06:36:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2014-01-17 06:36:29 ----A---- C:\Windows\system32\WMPhoto.dll

2014-01-17 06:36:28 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll

2014-01-17 06:36:28 ----A---- C:\Windows\system32\WindowsCodecs.dll

2014-01-17 06:35:59 ----A---- C:\Windows\SYSWOW64\DWrite.dll

2014-01-17 06:35:59 ----A---- C:\Windows\system32\DWrite.dll

2014-01-17 06:35:57 ----D---- C:\Program Files (x86)\MSXML 4.0

2014-01-16 06:27:33 ----A---- C:\Windows\system32\IEUDINIT.EXE

2014-01-16 06:24:22 ----A---- C:\Windows\SYSWOW64\elshyph.dll

2014-01-16 06:24:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\wextract.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\url.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\occache.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\msrating.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\msls31.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\mshta.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\jsIntl.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\jscript.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\inseng.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\icardie.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2014-01-16 06:24:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\wextract.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\webcheck.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\vbscript.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\url.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\pngfilt.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\occache.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\msrating.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\msls31.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\mshtmlmedia.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\mshtmler.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\mshtmled.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\MshtmlDac.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\mshta.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\msfeedssync.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\msfeedsbs.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\msfeeds.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\licmgr10.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\jsIntl.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\jscript.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\inseng.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\imgutil.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\iexpress.exe

2014-01-16 06:24:21 ----A---- C:\Windows\system32\iesysprep.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\iepeers.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\iedkcs32.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\ieapfltr.dat

2014-01-16 06:24:21 ----A---- C:\Windows\system32\IEAdvpack.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\icardie.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\elshyph.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\dxtrans.dll

2014-01-16 06:24:21 ----A---- C:\Windows\system32\dxtmsft.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2014-01-16 06:23:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll

2014-01-16 06:23:07 ----A---- C:\Windows\SYSWOW64\d2d1.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\XpsPrint.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\UIAnimation.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\FntCache.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\dxgi.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10warp.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10level9.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10core.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10_1core.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10_1.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d3d10.dll

2014-01-16 06:23:07 ----A---- C:\Windows\system32\d2d1.dll

2014-01-16 06:22:24 ----D---- C:\Windows\SYSWOW64\Wat

2014-01-16 06:22:24 ----D---- C:\Windows\system32\Wat

2014-01-15 20:34:57 ----A---- C:\Windows\SYSWOW64\wmi.dll

2014-01-15 20:34:57 ----A---- C:\Windows\system32\wmi.dll

2014-01-15 20:34:57 ----A---- C:\Windows\system32\drivers\fs_rec.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbport.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbohci.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbhub.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbehci.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbd.sys

2014-01-15 15:03:07 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2014-01-15 15:03:04 ----A---- C:\Windows\system32\win32k.sys

2014-01-15 15:03:01 ----A---- C:\Windows\system32\drivers\tcpip.sys

2014-01-15 15:03:01 ----A---- C:\Windows\system32\drivers\netio.sys

2014-01-15 15:03:01 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS

2014-01-15 14:03:28 ----D---- C:\Program Files\Common Files\Macrovision Shared

2014-01-15 14:03:20 ----D---- C:\ProgramData\Dassault Systemes

2014-01-15 11:39:00 ----D---- C:\ProgramData\WEBREG

2014-01-15 11:35:33 ----D---- C:\Users\win 7\AppData\Roaming\HP

2014-01-15 11:33:22 ----D---- C:\ProgramData\HP Product Assistant

2014-01-15 11:32:28 ----D---- C:\Program Files (x86)\HP

2014-01-15 11:32:27 ----HD---- C:\Config.Msi

2014-01-15 11:31:59 ----D---- C:\Program Files\HP

2014-01-15 11:31:25 ----N---- C:\Windows\hpomdl30.dat

2014-01-15 11:31:25 ----A---- C:\Windows\hpoins30.dat

2014-01-15 11:29:59 ----D---- C:\ProgramData\HP

2014-01-15 11:29:52 ----A---- C:\Windows\system32\hppldcoi.dll

2014-01-15 11:29:52 ----A---- C:\Windows\system32\hposwia_p01a.dll

2014-01-15 11:29:52 ----A---- C:\Windows\system32\hpost_p01a.dll

2014-01-15 11:29:52 ----A---- C:\Windows\system32\hposc_p01a.dll

2014-01-15 00:00:11 ----HDC---- C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}

2014-01-15 00:00:11 ----D---- C:\Program Files (x86)\Stardock

2014-01-14 22:09:35 ----D---- C:\Program Files\Windows Live

2014-01-14 21:32:58 ----D---- C:\Users\win 7\AppData\Roaming\Mozilla

2014-01-14 21:32:57 ----D---- C:\Users\win 7\AppData\Roaming\Thunderbird

2014-01-14 21:32:54 ----D---- C:\ProgramData\Mozilla

2014-01-14 18:45:55 ----D---- C:\ProgramData\Stardock

2014-01-14 18:44:26 ----A---- C:\Users\win 7\AppData\Roaming\Stardockfences_debug_snapshot.dat

2014-01-14 18:44:21 ----D---- C:\Users\win 7\AppData\Roaming\Stardock

2014-01-14 18:20:17 ----D---- C:\Users\win 7\AppData\Roaming\Windows Live Writer

2014-01-14 18:19:35 ----D---- C:\Windows\PCHEALTH

2014-01-14 18:19:29 ----D---- C:\Program Files (x86)\Windows Live

2014-01-14 18:19:06 ----D---- C:\Program Files (x86)\Microsoft SkyDrive

2014-01-14 18:18:59 ----D---- C:\ProgramData\Microsoft SkyDrive

2014-01-14 17:26:32 ----D---- C:\Program Files (x86)\Microsoft Digital Image 2006

2014-01-14 17:22:19 ----D---- C:\Windows\SYSWOW64\Macromed

2014-01-14 17:18:13 ----A---- C:\Windows\ODBC.INI

2014-01-14 17:17:52 ----D---- C:\Windows\Msagent

2014-01-14 17:13:55 ----D---- C:\Program Files (x86)\Microsoft Works

2014-01-14 16:20:26 ----D---- C:\Users\win 7\AppData\Roaming\PrimoPDF

2014-01-14 16:19:14 ----A---- C:\Windows\system32\Primomonnt.dll

2014-01-14 16:19:12 ----D---- C:\Program Files (x86)\Nitro PDF

2014-01-14 15:16:56 ----D---- C:\Users\win 7\AppData\Roaming\Adobe

2014-01-14 14:47:51 ----D---- C:\Program Files (x86)\Adobe

2014-01-14 14:47:42 ----D---- C:\ProgramData\Adobe

2014-01-14 11:16:13 ----D---- C:\Users\win 7\AppData\Roaming\OpenOffice

2014-01-14 11:15:19 ----D---- C:\Program Files (x86)\OpenOffice 4

2014-01-14 11:13:47 ----D---- C:\Program Files\OpenOffice 4.0.1 (nl) Installation Files

2014-01-14 10:35:44 ----D---- C:\Users\win 7\AppData\Roaming\Spotify

2014-01-14 10:30:18 ----D---- C:\Users\win 7\AppData\Roaming\DraftSight

2014-01-14 10:30:12 ----D---- C:\Program Files\Dassault Systemes

2014-01-14 09:16:08 ----D---- C:\Users\win 7\AppData\Roaming\Ability5

2014-01-14 09:14:52 ----A---- C:\Windows\SYSWOW64\cdintf300.dll

2014-01-14 09:14:27 ----D---- C:\Program Files (x86)\Ability Office 5

2014-01-14 09:03:04 ----A---- C:\Windows\SYSWOW64\xmllite.dll

2014-01-14 09:03:04 ----A---- C:\Windows\system32\xmllite.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\odbctrac.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\odbccu32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\odbccr32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\odbccp32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\SYSWOW64\msieftp.dll

2014-01-14 09:03:02 ----A---- C:\Windows\system32\odbctrac.dll

2014-01-14 09:03:02 ----A---- C:\Windows\system32\odbccu32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\system32\odbccr32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\system32\odbccp32.dll

2014-01-14 09:03:02 ----A---- C:\Windows\system32\msieftp.dll

2014-01-14 09:03:01 ----A---- C:\Windows\SYSWOW64\comctl32.dll

2014-01-14 09:03:01 ----A---- C:\Windows\system32\comctl32.dll

2014-01-14 09:02:57 ----A---- C:\Windows\SYSWOW64\poqexec.exe

2014-01-14 09:02:57 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll

2014-01-14 09:02:57 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll

2014-01-14 09:02:57 ----A---- C:\Windows\system32\poqexec.exe

2014-01-14 09:02:57 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2014-01-14 09:02:57 ----A---- C:\Windows\system32\dhcpcore6.dll

2014-01-14 09:02:55 ----A---- C:\Windows\SYSWOW64\tsgqec.dll

2014-01-14 09:02:55 ----A---- C:\Windows\SYSWOW64\mstscax.dll

2014-01-14 09:02:55 ----A---- C:\Windows\SYSWOW64\aaclient.dll

2014-01-14 09:02:55 ----A---- C:\Windows\system32\tsgqec.dll

2014-01-14 09:02:55 ----A---- C:\Windows\system32\mstscax.dll

2014-01-14 09:02:55 ----A---- C:\Windows\system32\aaclient.dll

2014-01-14 09:02:53 ----A---- C:\Windows\SYSWOW64\wintrust.dll

2014-01-14 09:02:53 ----A---- C:\Windows\system32\wintrust.dll

2014-01-14 09:02:52 ----A---- C:\Windows\SYSWOW64\CPFilters.dll

2014-01-14 09:02:52 ----A---- C:\Windows\system32\CPFilters.dll

2014-01-14 09:02:51 ----A---- C:\Windows\SYSWOW64\sbe.dll

2014-01-14 09:02:51 ----A---- C:\Windows\system32\sbe.dll

2014-01-14 09:02:49 ----A---- C:\Windows\SYSWOW64\quartz.dll

2014-01-14 09:02:49 ----A---- C:\Windows\SYSWOW64\qdvd.dll

2014-01-14 09:02:49 ----A---- C:\Windows\system32\quartz.dll

2014-01-14 09:02:49 ----A---- C:\Windows\system32\qdvd.dll

2014-01-14 09:02:48 ----A---- C:\Windows\SYSWOW64\ntshrui.dll

2014-01-14 09:02:48 ----A---- C:\Windows\SYSWOW64\mssrch.dll

2014-01-14 09:02:48 ----A---- C:\Windows\system32\tquery.dll

2014-01-14 09:02:48 ----A---- C:\Windows\system32\SearchIndexer.exe

2014-01-14 09:02:48 ----A---- C:\Windows\system32\ntshrui.dll

2014-01-14 09:02:48 ----A---- C:\Windows\system32\mssrch.dll

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\tquery.dll

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\mssvp.dll

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\mssphtb.dll

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\mssph.dll

2014-01-14 09:02:47 ----A---- C:\Windows\SYSWOW64\msscntrs.dll

2014-01-14 09:02:47 ----A---- C:\Windows\system32\SearchProtocolHost.exe

2014-01-14 09:02:47 ----A---- C:\Windows\system32\SearchFilterHost.exe

2014-01-14 09:02:47 ----A---- C:\Windows\system32\mssvp.dll

2014-01-14 09:02:47 ----A---- C:\Windows\system32\mssphtb.dll

2014-01-14 09:02:47 ----A---- C:\Windows\system32\mssph.dll

2014-01-14 09:02:47 ----A---- C:\Windows\system32\msscntrs.dll

2014-01-14 09:02:45 ----A---- C:\Windows\system32\consent.exe

2014-01-14 09:02:45 ----A---- C:\Windows\system32\appinfo.dll

2014-01-14 09:02:43 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys

2014-01-14 09:02:43 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys

2014-01-14 09:02:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys

2014-01-14 09:02:41 ----A---- C:\Windows\SYSWOW64\webio.dll

2014-01-14 09:02:41 ----A---- C:\Windows\system32\webio.dll

2014-01-14 09:02:40 ----A---- C:\Windows\system32\wwansvc.dll

2014-01-14 09:02:40 ----A---- C:\Windows\system32\wwanprotdim.dll

2014-01-14 09:02:40 ----A---- C:\Windows\system32\drivers\ntfs.sys

2014-01-14 09:02:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll

2014-01-14 09:02:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll

2014-01-14 09:02:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll

2014-01-14 09:02:39 ----A---- C:\Windows\system32\cryptsvc.dll

2014-01-14 09:02:39 ----A---- C:\Windows\system32\cryptnet.dll

2014-01-14 09:02:39 ----A---- C:\Windows\system32\crypt32.dll

2014-01-14 09:02:38 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2014-01-14 09:02:38 ----A---- C:\Windows\system32\imagehlp.dll

2014-01-14 09:02:37 ----A---- C:\Windows\SYSWOW64\tzres.dll

2014-01-14 09:02:37 ----A---- C:\Windows\system32\tzres.dll

2014-01-14 09:02:32 ----A---- C:\Windows\system32\drivers\afd.sys

2014-01-14 09:02:30 ----A---- C:\Windows\system32\Wdfres.dll

2014-01-14 09:02:30 ----A---- C:\Windows\system32\drivers\WdfLdr.sys

2014-01-14 09:02:30 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2014-01-14 09:02:29 ----A---- C:\Windows\system32\drivers\usbcir.sys

2014-01-14 09:02:29 ----A---- C:\Windows\system32\drivers\portcls.sys

2014-01-14 09:02:29 ----A---- C:\Windows\system32\drivers\drmk.sys

2014-01-14 09:02:20 ----A---- C:\Windows\SYSWOW64\d3d11.dll

2014-01-14 09:02:20 ----A---- C:\Windows\system32\drivers\ataport.sys

2014-01-14 09:02:20 ----A---- C:\Windows\system32\d3d11.dll

2014-01-14 09:02:19 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll

2014-01-14 09:02:19 ----A---- C:\Windows\SYSWOW64\credui.dll

2014-01-14 09:02:19 ----A---- C:\Windows\SYSWOW64\authui.dll

2014-01-14 09:02:19 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2014-01-14 09:02:19 ----A---- C:\Windows\system32\credui.dll

2014-01-14 09:02:19 ----A---- C:\Windows\system32\authui.dll

2014-01-14 09:02:17 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

2014-01-14 09:02:17 ----A---- C:\Windows\SYSWOW64\kernel32.dll

2014-01-14 09:02:17 ----A---- C:\Windows\system32\winsrv.dll

2014-01-14 09:02:17 ----A---- C:\Windows\system32\smss.exe

2014-01-14 09:02:17 ----A---- C:\Windows\system32\KernelBase.dll

2014-01-14 09:02:17 ----A---- C:\Windows\system32\kernel32.dll

2014-01-14 09:02:17 ----A---- C:\Windows\system32\csrsrv.dll

2014-01-14 09:02:17 ----A---- C:\Windows\system32\conhost.exe

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2014-01-14 09:02:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2014-01-14 09:02:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll

2014-01-14 09:02:16 ----A---- C:\Windows\system32\apisetschema.dll

2014-01-14 09:02:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll

2014-01-14 09:02:11 ----A---- C:\Windows\SYSWOW64\atmfd.dll

2014-01-14 09:02:11 ----A---- C:\Windows\system32\rpcrt4.dll

2014-01-14 09:02:11 ----A---- C:\Windows\system32\drivers\hidparse.sys

2014-01-14 09:02:11 ----A---- C:\Windows\system32\drivers\hidclass.sys

2014-01-14 09:02:11 ----A---- C:\Windows\system32\atmlib.dll

2014-01-14 09:02:11 ----A---- C:\Windows\system32\atmfd.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\msxml6.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\msxml3r.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\msxml3.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\lpk.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\fontsub.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\dciman32.dll

2014-01-14 09:02:10 ----A---- C:\Windows\SYSWOW64\atmlib.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\msxml6.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\msxml3r.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\msxml3.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\lpk.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\fontsub.dll

2014-01-14 09:02:10 ----A---- C:\Windows\system32\dciman32.dll

2014-01-14 09:02:09 ----A---- C:\Windows\SYSWOW64\sspicli.dll

2014-01-14 09:02:09 ----A---- C:\Windows\SYSWOW64\secur32.dll

2014-01-14 09:02:09 ----A---- C:\Windows\SYSWOW64\schannel.dll

2014-01-14 09:02:09 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\sspisrv.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\sspicli.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\secur32.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\schannel.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\ncrypt.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\lsass.exe

2014-01-14 09:02:09 ----A---- C:\Windows\system32\lsasrv.dll

2014-01-14 09:02:09 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2014-01-14 09:02:09 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2014-01-14 09:02:09 ----A---- C:\Windows\system32\drivers\cng.sys

2014-01-14 09:02:04 ----A---- C:\Windows\SYSWOW64\mfc42u.dll

2014-01-14 09:02:04 ----A---- C:\Windows\SYSWOW64\mfc42.dll

2014-01-14 09:02:04 ----A---- C:\Windows\system32\mfc42u.dll

2014-01-14 09:02:04 ----A---- C:\Windows\system32\mfc42.dll

2014-01-14 09:02:03 ----A---- C:\Windows\system32\drivers\tssecsrv.sys

2014-01-14 09:02:02 ----A---- C:\Windows\SYSWOW64\qedit.dll

2014-01-14 09:02:02 ----A---- C:\Windows\SYSWOW64\dpnet.dll

2014-01-14 09:02:02 ----A---- C:\Windows\system32\qedit.dll

2014-01-14 09:02:02 ----A---- C:\Windows\system32\dpnet.dll

2014-01-14 09:02:01 ----A---- C:\Windows\system32\drivers\usb8023.sys

2014-01-14 09:02:01 ----A---- C:\Windows\system32\drivers\RNDISMP.sys

2014-01-14 09:02:01 ----A---- C:\Windows\system32\drivers\ndis.sys

2014-01-14 09:01:59 ----A---- C:\Windows\SYSWOW64\Wpc.dll

2014-01-14 09:01:59 ----A---- C:\Windows\SYSWOW64\gameux.dll

2014-01-14 09:01:59 ----A---- C:\Windows\system32\Wpc.dll

2014-01-14 09:01:59 ----A---- C:\Windows\system32\gameux.dll

2014-01-14 09:01:54 ----A---- C:\Windows\SYSWOW64\nlaapi.dll

2014-01-14 09:01:54 ----A---- C:\Windows\SYSWOW64\netevent.dll

2014-01-14 09:01:54 ----A---- C:\Windows\SYSWOW64\netcorehc.dll

2014-01-14 09:01:54 ----A---- C:\Windows\SYSWOW64\ncsi.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\nlasvc.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\nlaapi.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\netevent.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\netcorehc.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\ncsi.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\iphlpsvc.dll

2014-01-14 09:01:54 ----A---- C:\Windows\system32\drivers\tcpipreg.sys

2014-01-14 09:01:51 ----A---- C:\Windows\SYSWOW64\WebClnt.dll

2014-01-14 09:01:51 ----A---- C:\Windows\SYSWOW64\davclnt.dll

2014-01-14 09:01:51 ----A---- C:\Windows\system32\WebClnt.dll

2014-01-14 09:01:51 ----A---- C:\Windows\system32\drivers\mrxdav.sys

2014-01-14 09:01:51 ----A---- C:\Windows\system32\davclnt.dll

2014-01-14 09:01:50 ----A---- C:\Windows\SYSWOW64\mswsock.dll

2014-01-14 09:01:50 ----A---- C:\Windows\system32\mswsock.dll

2014-01-14 09:01:49 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL

2014-01-14 09:01:49 ----A---- C:\Windows\system32\WMVDECOD.DLL

2014-01-14 09:01:48 ----A---- C:\Windows\SYSWOW64\usp10.dll

2014-01-14 09:01:48 ----A---- C:\Windows\system32\usp10.dll

2014-01-14 09:01:47 ----A---- C:\Windows\system32\rdrmemptylst.exe

2014-01-14 09:01:47 ----A---- C:\Windows\system32\rdpwsx.dll

2014-01-14 09:01:47 ----A---- C:\Windows\system32\rdpcorekmts.dll

2014-01-14 09:01:47 ----A---- C:\Windows\system32\OxpsConverter.exe

2014-01-14 09:01:33 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe

2014-01-14 09:01:33 ----A---- C:\Windows\SYSWOW64\dnsapi.dll

2014-01-14 09:01:33 ----A---- C:\Windows\system32\drivers\srv2.sys

2014-01-14 09:01:33 ----A---- C:\Windows\system32\drivers\srv.sys

2014-01-14 09:01:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys

2014-01-14 09:01:33 ----A---- C:\Windows\system32\dnsrslvr.dll

2014-01-14 09:01:33 ----A---- C:\Windows\system32\dnscacheugc.exe

2014-01-14 09:01:33 ----A---- C:\Windows\system32\dnsapi.dll

2014-01-14 09:01:32 ----A---- C:\Windows\SYSWOW64\psisdecd.dll

2014-01-14 09:01:32 ----A---- C:\Windows\system32\psisdecd.dll

2014-01-14 09:01:32 ----A---- C:\Windows\system32\profsvc.dll

2014-01-14 09:01:32 ----A---- C:\Windows\system32\drivers\srvnet.sys

2014-01-14 09:01:32 ----A---- C:\Windows\system32\drivers\Diskdump.sys

2014-01-14 09:01:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

2014-01-14 09:01:25 ----A---- C:\Windows\system32\ntoskrnl.exe

2014-01-14 09:01:24 ----A---- C:\Windows\SYSWOW64\tdh.dll

2014-01-14 09:01:24 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

2014-01-14 09:01:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll

2014-01-14 09:01:24 ----A---- C:\Windows\SYSWOW64\advapi32.dll

2014-01-14 09:01:24 ----A---- C:\Windows\system32\wow64win.dll

2014-01-14 09:01:24 ----A---- C:\Windows\system32\wow64.dll

2014-01-14 09:01:24 ----A---- C:\Windows\system32\tdh.dll

2014-01-14 09:01:24 ----A---- C:\Windows\system32\ntdll.dll

2014-01-14 09:01:24 ----A---- C:\Windows\system32\advapi32.dll

2014-01-14 09:01:23 ----A---- C:\Windows\SYSWOW64\wow32.dll

2014-01-14 09:01:23 ----A---- C:\Windows\SYSWOW64\user.exe

2014-01-14 09:01:23 ----A---- C:\Windows\SYSWOW64\setup16.exe

2014-01-14 09:01:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

2014-01-14 09:01:23 ----A---- C:\Windows\SYSWOW64\instnm.exe

2014-01-14 09:01:23 ----A---- C:\Windows\system32\wow64cpu.dll

2014-01-14 09:01:23 ----A---- C:\Windows\system32\ntvdm64.dll

2014-01-14 09:01:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2014-01-14 09:01:19 ----A---- C:\Windows\system32\kerberos.dll

2014-01-14 09:01:19 ----A---- C:\Windows\system32\drivers\partmgr.sys

2014-01-14 09:01:18 ----A---- C:\Windows\SYSWOW64\msi.dll

2014-01-14 09:01:18 ----A---- C:\Windows\system32\msi.dll

2014-01-14 09:01:03 ----A---- C:\Windows\SYSWOW64\synceng.dll

2014-01-14 09:01:03 ----A---- C:\Windows\system32\synceng.dll

2014-01-14 09:01:02 ----A---- C:\Windows\system32\winresume.exe

2014-01-14 09:01:02 ----A---- C:\Windows\system32\winload.exe

2014-01-14 09:01:02 ----A---- C:\Windows\system32\kdusb.dll

2014-01-14 09:01:02 ----A---- C:\Windows\system32\kdcom.dll

2014-01-14 09:01:02 ----A---- C:\Windows\system32\kd1394.dll

2014-01-14 09:01:01 ----A---- C:\Windows\SYSWOW64\shell32.dll

2014-01-14 09:01:01 ----A---- C:\Windows\system32\shell32.dll

2014-01-14 09:01:00 ----A---- C:\Windows\SYSWOW64\shdocvw.dll

2014-01-14 09:01:00 ----A---- C:\Windows\system32\shdocvw.dll

2014-01-14 09:00:58 ----A---- C:\Windows\SYSWOW64\win32spl.dll

2014-01-14 09:00:58 ----A---- C:\Windows\SYSWOW64\gdi32.dll

2014-01-14 09:00:58 ----A---- C:\Windows\system32\win32spl.dll

2014-01-14 09:00:58 ----A---- C:\Windows\system32\gdi32.dll

2014-01-14 09:00:57 ----A---- C:\Windows\system32\taskhost.exe

2014-01-14 09:00:51 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll

2014-01-14 09:00:51 ----A---- C:\Windows\system32\cryptdlg.dll

2014-01-14 09:00:50 ----A---- C:\Windows\SYSWOW64\drvinst.exe

2014-01-14 09:00:50 ----A---- C:\Windows\SYSWOW64\devrtl.dll

2014-01-14 09:00:50 ----A---- C:\Windows\SYSWOW64\devobj.dll

2014-01-14 09:00:50 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll

2014-01-14 09:00:50 ----A---- C:\Windows\system32\umpnpmgr.dll

2014-01-14 09:00:48 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll

2014-01-14 09:00:48 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2014-01-14 09:00:46 ----A---- C:\Windows\SYSWOW64\prevhost.exe

2014-01-14 09:00:46 ----A---- C:\Windows\SYSWOW64\netapi32.dll

2014-01-14 09:00:46 ----A---- C:\Windows\SYSWOW64\browcli.dll

2014-01-14 09:00:46 ----A---- C:\Windows\system32\prevhost.exe

2014-01-14 09:00:46 ----A---- C:\Windows\system32\netapi32.dll

2014-01-14 09:00:46 ----A---- C:\Windows\system32\browser.dll

2014-01-14 09:00:46 ----A---- C:\Windows\system32\browcli.dll

2014-01-14 09:00:45 ----A---- C:\Windows\SYSWOW64\srclient.dll

2014-01-14 09:00:45 ----A---- C:\Windows\SYSWOW64\inetcomm.dll

2014-01-14 09:00:45 ----A---- C:\Windows\system32\srcore.dll

2014-01-14 09:00:45 ----A---- C:\Windows\system32\inetcomm.dll

2014-01-14 09:00:45 ----A---- C:\Windows\system32\FXSCOVER.exe

2014-01-14 09:00:45 ----A---- C:\Windows\system32\drivers\fvevol.sys

2014-01-14 09:00:44 ----A---- C:\Windows\SYSWOW64\msvcrt.dll

2014-01-14 09:00:44 ----A---- C:\Windows\system32\msvcrt.dll

2014-01-14 09:00:43 ----A---- C:\Windows\SYSWOW64\certutil.exe

2014-01-14 09:00:43 ----A---- C:\Windows\SYSWOW64\certenc.dll

2014-01-14 09:00:43 ----A---- C:\Windows\system32\certutil.exe

2014-01-14 09:00:43 ----A---- C:\Windows\system32\certenc.dll

2014-01-14 09:00:39 ----A---- C:\Windows\SYSWOW64\wscript.exe

2014-01-14 09:00:39 ----A---- C:\Windows\SYSWOW64\scrrun.dll

2014-01-14 09:00:39 ----A---- C:\Windows\SYSWOW64\cscript.exe

2014-01-14 09:00:39 ----A---- C:\Windows\system32\wscript.exe

2014-01-14 09:00:39 ----A---- C:\Windows\system32\scrrun.dll

2014-01-14 09:00:39 ----A---- C:\Windows\system32\cscript.exe

2014-01-14 09:00:38 ----A---- C:\Windows\system32\localspl.dll

2014-01-14 09:00:38 ----A---- C:\Windows\system32\drivers\bowser.sys

2014-01-14 09:00:37 ----A---- C:\Windows\SYSWOW64\oleaut32.dll

2014-01-14 09:00:37 ----A---- C:\Windows\SYSWOW64\oleacc.dll

2014-01-14 09:00:37 ----A---- C:\Windows\SYSWOW64\EncDec.dll

2014-01-14 09:00:37 ----A---- C:\Windows\system32\oleaut32.dll

2014-01-14 09:00:37 ----A---- C:\Windows\system32\oleacc.dll

2014-01-14 09:00:37 ----A---- C:\Windows\system32\EncDec.dll

2014-01-14 09:00:37 ----A---- C:\Windows\system32\drivers\dxgmms1.sys

2014-01-14 09:00:37 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2014-01-14 09:00:37 ----A---- C:\Windows\system32\cdd.dll

2014-01-14 09:00:24 ----A---- C:\Windows\SYSWOW64\cdosys.dll

2014-01-14 09:00:23 ----A---- C:\Windows\system32\cdosys.dll

2014-01-14 09:00:00 ----A---- C:\Windows\SYSWOW64\nshwfp.dll

2014-01-14 09:00:00 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL

2014-01-14 09:00:00 ----A---- C:\Windows\system32\scavengeui.dll

2014-01-14 09:00:00 ----A---- C:\Windows\system32\nshwfp.dll

2014-01-14 09:00:00 ----A---- C:\Windows\system32\IKEEXT.DLL

2014-01-14 09:00:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2014-01-14 08:59:59 ----A---- C:\Windows\SYSWOW64\packager.dll

2014-01-14 08:59:59 ----A---- C:\Windows\system32\packager.dll

2014-01-14 08:52:57 ----A---- C:\Windows\SYSWOW64\rdpcore.dll

2014-01-14 08:52:57 ----A---- C:\Windows\system32\rdpcore.dll

2014-01-14 08:52:57 ----A---- C:\Windows\system32\drivers\tdtcp.sys

2014-01-12 19:19:10 ----A---- C:\Windows\system32\wups2.dll

2014-01-12 19:19:10 ----A---- C:\Windows\system32\wucltux.dll

2014-01-12 19:19:10 ----A---- C:\Windows\system32\wuaueng.dll

2014-01-12 19:19:10 ----A---- C:\Windows\system32\wuauclt.exe

2014-01-12 19:19:08 ----A---- C:\Windows\system32\wuwebv.dll

2014-01-12 19:19:08 ----A---- C:\Windows\system32\wups.dll

2014-01-12 19:19:08 ----A---- C:\Windows\system32\wudriver.dll

2014-01-12 19:19:08 ----A---- C:\Windows\system32\wuapp.exe

2014-01-12 19:19:08 ----A---- C:\Windows\system32\wuapi.dll

2014-01-12 13:56:45 ----D---- C:\Users\win 7\AppData\Roaming\AVAST Software

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswVmm.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswstm.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswSP.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswSnx.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswRvrt.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswRdr2.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys

2014-01-12 13:53:48 ----A---- C:\Windows\system32\aswBoot.exe

2014-01-12 13:53:48 ----A---- C:\Windows\avastSS.scr

2014-01-12 13:51:30 ----D---- C:\Program Files\AVAST Software

2014-01-12 13:51:02 ----D---- C:\ProgramData\AVAST Software

2014-01-08 19:43:34 ----D---- C:\Program Files\GIGABYTE

2014-01-08 19:43:34 ----D---- C:\Program Files (x86)\GIGABYTE

2014-01-08 19:43:34 ----A---- C:\Windows\system32\drivers\UsbCharger.sys

2014-01-08 19:43:34 ----A---- C:\Windows\system32\drivers\AppleCharger.sys

2014-01-08 19:43:34 ----A---- C:\Windows\system32\AppleChargerSrv.exe

2014-01-08 19:43:21 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys

2014-01-08 19:43:14 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys

2014-01-08 19:43:14 ----A---- C:\Windows\system32\drivers\iusb3hub.sys

2014-01-08 19:43:08 ----D---- C:\Users\win 7\AppData\Roaming\Intel Corporation

2014-01-08 19:42:21 ----A---- C:\Windows\system32\drivers\Rt64win7.sys

2014-01-08 19:42:20 ----A---- C:\Windows\system32\RTNUninst64.dll

2014-01-08 19:42:20 ----A---- C:\Windows\system32\RtNicProp64.dll

2014-01-08 19:41:35 ----D---- C:\Windows\SYSWOW64\RTCOM

2014-01-08 19:41:35 ----D---- C:\Program Files\Realtek

2014-01-08 19:41:25 ----A---- C:\Windows\system32\WavesGUILib64.dll

2014-01-08 19:41:25 ----A---- C:\Windows\system32\SRSWOW64.dll

2014-01-08 19:41:25 ----A---- C:\Windows\system32\SRSTSX64.dll

2014-01-08 19:41:25 ----A---- C:\Windows\system32\SRSTSH64.dll

2014-01-08 19:41:25 ----A---- C:\Windows\system32\SRSHP64.dll

2014-01-08 19:41:24 ----A---- C:\Windows\system32\RtlCPAPI64.dll

2014-01-08 19:41:24 ----A---- C:\Windows\system32\RtkCoLDR64.dll

2014-01-08 19:41:24 ----A---- C:\Windows\system32\RtkCfg64.dll

2014-01-08 19:41:24 ----A---- C:\Windows\system32\RtkApi64.dll

2014-01-08 19:41:23 ----A---- C:\Windows\system32\RtPgEx64.dll

2014-01-08 19:41:23 ----A---- C:\Windows\system32\RtkAPO64.dll

2014-01-08 19:41:23 ----A---- C:\Windows\system32\RtDataProc64.dll

2014-01-08 19:41:23 ----A---- C:\Windows\system32\RTCOM64.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RTEEP64A.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RTEEL64A.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RTEEG64A.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RTEED64A.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RP3DHT64.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RP3DAA64.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\RCoInstII64.dll

2014-01-08 19:41:22 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys

2014-01-08 19:41:22 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT

2014-01-08 19:41:15 ----A---- C:\Windows\system32\MBWrp64.dll

2014-01-08 19:41:15 ----A---- C:\Windows\system32\MBppld64.dll

2014-01-08 19:41:15 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll

2014-01-08 19:41:15 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll

2014-01-08 19:41:15 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll

2014-01-08 19:41:14 ----A---- C:\Windows\SYSWOW64\MBAPO32.dll

2014-01-08 19:41:14 ----A---- C:\Windows\system32\MBPPCn64.dll

2014-01-08 19:41:14 ----A---- C:\Windows\system32\MBAPO64.dll

2014-01-08 19:41:11 ----A---- C:\Windows\system32\FMAPO64.dll

2014-01-08 19:41:09 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2014-01-08 19:41:09 ----A---- C:\Windows\system32\AERTAR64.dll

2014-01-08 19:41:08 ----D---- C:\Program Files (x86)\Realtek

2014-01-08 19:41:08 ----A---- C:\Windows\system32\AERTAC64.dll

2014-01-08 19:41:07 ----HD---- C:\Program Files (x86)\Temp

2014-01-08 19:41:06 ----R---- C:\Windows\RtlExUpd.dll

2014-01-08 19:40:40 ----A---- C:\Windows\SYSWOW64\OpenCL.DLL

2014-01-08 19:40:40 ----A---- C:\Windows\system32\OpenCL.DLL

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\Intel_OpenCL_ICD32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\iglhsip32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\iglhcp32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igfxdv32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdusc32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdumdim32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdde32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igdail32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\SYSWOW64\ig75icd32.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\MetroIntelGenericUIFramework.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\IntelOpenCL64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\Intel_OpenCL_ICD64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\iglhsip64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\iglhcp64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxtray.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxTMM.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxsrvc.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxsrvc.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxress.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxpph.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxpers.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxext.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxexps.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxdo.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\IGFXDEVLib.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxdev.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxCoIn_v3186.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxcmrt64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfxcmjit64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igfx11cmrt64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdusc64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdumdim64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdrcl64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdfcl64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdde64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdbcl64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igdail64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\igd10iumd64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\ig75icd64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\IccLibDll_x64.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\hkcmd.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\hccutils.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\GfxUIHotKeyMenu.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\GfxUIEx.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\gfxSrvc.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\GfxRes.dll

2014-01-08 19:40:34 ----A---- C:\Windows\system32\drivers\igdkmd64.sys

2014-01-08 19:40:34 ----A---- C:\Windows\system32\DPTopologyApp.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\difx64.exe

2014-01-08 19:40:34 ----A---- C:\Windows\system32\CustomModeApp.exe

2014-01-08 19:40:15 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll

2014-01-08 19:40:05 ----A---- C:\Windows\system32\IntcDAuC.dll

2014-01-08 19:40:05 ----A---- C:\Windows\system32\drivers\IntcDAud.sys

2014-01-08 19:40:04 ----D---- C:\ProgramData\Intel

2014-01-08 19:40:03 ----D---- C:\Program Files\Intel

2014-01-08 19:39:47 ----A---- C:\Windows\system32\drivers\HECIx64.sys

2014-01-08 19:39:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2014-01-08 19:39:21 ----D---- C:\Users\win 7\AppData\Roaming\InstallShield

2014-01-08 19:39:09 ----D---- C:\Program Files (x86)\Intel

2014-01-08 19:39:09 ----A---- C:\Windows\SYSWOW64\CSVer.dll

2014-01-08 19:38:56 ----D---- C:\Intel

2014-01-08 19:38:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

2014-01-08 19:37:05 ----D---- C:\Program Files (x86)\Microsoft.NET

2014-01-08 19:36:29 ----D---- C:\Program Files\Google

2014-01-08 19:36:28 ----D---- C:\ProgramData\Google

2014-01-08 19:36:14 ----SHD---- C:\Windows\Installer

2014-01-08 19:36:13 ----D---- C:\Program Files (x86)\Google

2014-01-08 19:35:22 ----A---- C:\Windows\GSetup.ini

2014-01-08 19:34:31 ----D---- C:\Users\win 7\AppData\Roaming\Identities

2014-01-08 19:34:28 ----SD---- C:\Users\win 7\AppData\Roaming\Microsoft

2014-01-08 19:34:28 ----D---- C:\Users\win 7\AppData\Roaming\Media Center Programs

2014-01-08 19:34:27 ----SHD---- C:\Recovery

2014-01-08 19:34:27 ----SHD---- C:\ProgramData\Sjablonen

2014-01-08 19:34:27 ----SHD---- C:\ProgramData\Menu Start

2014-01-08 19:34:27 ----SHD---- C:\ProgramData\Favorieten

2014-01-08 19:34:27 ----SHD---- C:\ProgramData\Documenten

2014-01-08 19:34:27 ----SHD---- C:\ProgramData\Bureaublad

2014-01-08 19:34:23 ----D---- C:\Windows\SoftwareDistribution

2014-01-08 19:31:11 ----D---- C:\Windows\Prefetch

2014-01-08 19:31:03 ----SHD---- C:\System Volume Information

2014-01-08 19:31:03 ----ASH---- C:\pagefile.sys

2014-01-08 19:31:03 ----ASH---- C:\hiberfil.sys

2014-01-08 19:30:36 ----D---- C:\Windows\Panther

======List of files/folders modified in the last 1 month======

2014-02-06 20:07:40 ----D---- C:\Windows\Temp

2014-02-06 20:07:38 ----RD---- C:\Program Files

2014-02-06 19:34:37 ----D---- C:\Windows\system32\config

2014-02-06 19:24:35 ----D---- C:\Windows\winsxs

2014-02-06 19:24:33 ----D---- C:\Windows\SysWOW64

2014-02-06 19:15:59 ----D---- C:\Windows\System32

2014-02-06 19:15:59 ----D---- C:\Windows\inf

2014-02-06 19:15:59 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-02-04 22:30:20 ----D---- C:\Windows\system32\Tasks

2014-02-04 22:30:14 ----RD---- C:\Program Files (x86)

2014-02-04 22:27:22 ----D---- C:\Windows\system32\catroot

2014-02-04 22:26:34 ----D---- C:\Windows

2014-01-31 08:16:59 ----SD---- C:\ProgramData\Microsoft

2014-01-28 15:47:27 ----D---- C:\Windows\system32\wdi

2014-01-27 07:22:02 ----D---- C:\Windows\system32\drivers\UMDF

2014-01-27 07:22:02 ----D---- C:\Windows\system32\drivers

2014-01-20 09:15:43 ----D---- C:\Windows\system32\catroot2

2014-01-18 18:30:24 ----D---- C:\Windows\rescache

2014-01-18 18:19:42 ----HD---- C:\ProgramData

2014-01-18 18:03:31 ----D---- C:\Windows\Microsoft.NET

2014-01-18 18:03:17 ----RSD---- C:\Windows\assembly

2014-01-17 18:04:09 ----D---- C:\Program Files\Windows Media Player

2014-01-17 18:04:09 ----D---- C:\Program Files\Common Files\System

2014-01-17 18:04:09 ----D---- C:\Program Files (x86)\Windows Media Player

2014-01-17 18:04:08 ----D---- C:\Windows\SYSWOW64\nl-NL

2014-01-17 18:04:08 ----D---- C:\Windows\system32\nl-NL

2014-01-17 18:04:08 ----D---- C:\Windows\ehome

2014-01-17 18:04:08 ----D---- C:\Windows\AppPatch

2014-01-17 18:04:07 ----RSD---- C:\Windows\Fonts

2014-01-17 18:04:07 ----D---- C:\Windows\system32\drivers\nl-NL

2014-01-17 18:04:07 ----D---- C:\Program Files\Windows Defender

2014-01-17 18:04:07 ----D---- C:\Program Files\Internet Explorer

2014-01-17 18:04:07 ----D---- C:\Program Files (x86)\Windows Defender

2014-01-17 18:04:07 ----D---- C:\Program Files (x86)\Internet Explorer

2014-01-17 18:04:06 ----D---- C:\Windows\SYSWOW64\migration

2014-01-17 18:04:06 ----D---- C:\Windows\system32\wbem

2014-01-17 18:04:06 ----D---- C:\Windows\system32\migration

2014-01-17 18:04:05 ----D---- C:\Windows\system32\Boot

2014-01-17 18:04:03 ----D---- C:\Windows\system32\DriverStore

2014-01-17 10:50:28 ----D---- C:\Program Files (x86)\Common Files

2014-01-17 10:50:12 ----D---- C:\Program Files\Common Files

2014-01-17 06:48:50 ----D---- C:\Program Files\Windows Journal

2014-01-16 06:27:40 ----D---- C:\Windows\SYSWOW64\wbem

2014-01-16 06:27:40 ----D---- C:\Windows\SYSWOW64\en-US

2014-01-16 06:27:40 ----D---- C:\Windows\system32\en-US

2014-01-16 06:27:40 ----D---- C:\Windows\PolicyDefinitions

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\zh-TW

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\zh-HK

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\zh-CN

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\tr-TR

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\sv-SE

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\ru-RU

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\pt-PT

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\pt-BR

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\pl-PL

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\nb-NO

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\ko-KR

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\ja-JP

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\it-IT

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\hu-HU

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\fr-FR

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\fi-FI

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\es-ES

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\el-GR

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\de-DE

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\da-DK

2014-01-16 06:27:39 ----D---- C:\Windows\SYSWOW64\cs-CZ

2014-01-16 06:27:39 ----D---- C:\Windows\system32\zh-TW

2014-01-16 06:27:39 ----D---- C:\Windows\system32\zh-HK

2014-01-16 06:27:39 ----D---- C:\Windows\system32\zh-CN

2014-01-16 06:27:39 ----D---- C:\Windows\system32\tr-TR

2014-01-16 06:27:39 ----D---- C:\Windows\system32\sv-SE

2014-01-16 06:27:39 ----D---- C:\Windows\system32\pt-PT

2014-01-16 06:27:39 ----D---- C:\Windows\system32\pt-BR

2014-01-16 06:27:39 ----D---- C:\Windows\system32\pl-PL

2014-01-16 06:27:39 ----D---- C:\Windows\system32\ko-KR

2014-01-16 06:27:39 ----D---- C:\Windows\system32\it-IT

2014-01-16 06:27:39 ----D---- C:\Windows\system32\hu-HU

2014-01-16 06:27:39 ----D---- C:\Windows\system32\fr-FR

2014-01-16 06:27:39 ----D---- C:\Windows\system32\fi-FI

2014-01-16 06:27:39 ----D---- C:\Windows\system32\es-ES

2014-01-16 06:27:39 ----D---- C:\Windows\system32\el-GR

2014-01-16 06:27:39 ----D---- C:\Windows\system32\de-DE

2014-01-16 06:27:39 ----D---- C:\Windows\system32\cs-CZ

2014-01-16 06:27:38 ----D---- C:\Windows\system32\ru-RU

2014-01-16 06:27:38 ----D---- C:\Windows\system32\nb-NO

2014-01-16 06:27:38 ----D---- C:\Windows\system32\ja-JP

2014-01-16 06:27:38 ----D---- C:\Windows\system32\da-DK

2014-01-16 06:27:33 ----D---- C:\Windows\Logs

2014-01-15 20:18:56 ----D---- C:\Windows\twain_32

2014-01-15 11:38:42 ----A---- C:\Windows\win.ini

2014-01-14 18:19:35 ----D---- C:\Program Files\Common Files\Microsoft Shared

2014-01-14 17:33:47 ----D---- C:\Windows\system32\FxsTmp

2014-01-14 17:30:56 ----D---- C:\Windows\Help

2014-01-14 17:25:28 ----D---- C:\Windows\system

2014-01-14 17:25:16 ----D---- C:\Windows\ShellNew

2014-01-14 16:19:14 ----A---- C:\Windows\primopdf.ini

2014-01-12 19:38:47 ----D---- C:\Windows\system32\NDF

2014-01-12 19:27:26 ----D---- C:\Windows\system32\LogFiles

2014-01-08 19:43:26 ----D---- C:\Windows\system32\CodeIntegrity

2014-01-08 19:36:42 ----D---- C:\Windows\system32\restore

2014-01-08 19:36:13 ----D---- C:\Windows\Tasks

2014-01-08 19:34:31 ----SHD---- C:\$Recycle.Bin

2014-01-08 19:34:28 ----RD---- C:\Users

2014-01-08 19:34:27 ----D---- C:\Windows\debug

2014-01-08 19:34:27 ----D---- C:\Program Files\Windows NT

2014-01-08 19:32:46 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-01-12 65776]

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-01-12 207904]

R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-04-30 677360]

R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-04-30 28656]

R0 iusb3hcs;Intel® USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]

R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2014-01-12 92544]

R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2014-01-31 1038072]

R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2014-01-31 421704]

R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2014-01-31 78648]

R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2014-01-31 80184]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-05-17 4433696]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-02-26 3333576]

R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-17 442368]

R3 iusb3hub;Intel® USB 3.0 hub-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]

R3 iusb3xhc;Intel® USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]

R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-04-11 64624]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-10-25 769168]

S1 UsbCharger;UsbCharger; C:\Windows\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]

S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-01-31 50344]

R2 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2013-08-30 123392]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]

R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]

R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2013-04-11 169432]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-04-11 366552]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08 116648]

S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]

S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]

S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-05-24 279024]

S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-15 1431888]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08 116648]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-01-08 194032]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-16 1255736]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

- - - Updated - - -

Ondertussen is in de loop van de week het probleem nog 1x opgetreden.

Tijdens dat ik met de pc aan het werk was. Plots, zonder aanleiding.

Heb je de dumpfiles nodig die Win7 maakt als een bluescreen optreedt?

aangepast door Emperor
Link naar reactie
Delen op andere sites

Hierbij een overzicht van de dumpfiles.

Ikzelf kan ze niet openen. Hij geeft een probleem met rechten aan...

Dit is het beste wat ik voorlopig kan leveren.

Als je meer info nodig hebt, kan je me dan zeggen hoe ik ze kan uploaden zonder het 'rechten'-probleem?

[ATTACH]30201[/ATTACH]

aangepast door Emperor
Link naar reactie
Delen op andere sites

Ook wij kunnen deze bijlage niet openen. Doe dan even dit:

Download Blue Screen View.

Start het programma op.

Je zal nu een overzicht krijgen van de laatste foutmeldingen en Minidumps (.dmp-bestand).

Selecteer het eerste bestand uit de lijst onder Dump File en druk op Ctrl+A

Klik vervolgens op File (Bestand) en daarna op Save Selected Items (geselecteerde items opslaan) (Ctrl+S)

Sla het bestand op je bureaublad op.

Voeg nu het bestand toe aan je volgend bericht.

Hoe je een bijlage toevoegt aan een bericht, kan je lezen in deze handleiding.

Link naar reactie
Delen op andere sites

Omdat de bsod meestal voorkomt bij de slaapstand, zou ik deze uitschakelen en ook de stand-by niet meer gebruiken.

Dit zal het risico op en crash alvast verminderen.

We gaan eerst eens bekijken welke hardware je hebt.

Download en installeer Speccy.

Speccy is er ook in Nederlandstalige versie, bij de installatie (of update) kan je de taal wijzigen van Engels naar Nederlands ... als je op het driehoekje klikt, krijg je een uitrolmenu waarin je Nederlands kan selecteren.

Wanneer, tijdens het installeren van Speccy, de optie aangeboden wordt om Google Chrome of Google Toolbar "gratis" mee te installeren dien je de vinkjes weg te halen, tenzij dit een bewuste keuze is.

525a111b37ea3-Speccy.PNG

Start nu het programma en er zal een overzicht gemaakt worden van je hardware.

Als dit gereed is selecteer je bovenaan "Bestand - Publiceer Snapshot" en vervolgens bevestig je die keuze met " Ja ".

In het venster dat nu opent krijg je een link te zien, kopieer nu die link en plak die in je volgende bericht. Zo krijgen we een gedetailleerd overzicht van je hardware.

Meer info over deze procedure lees je HIER.

Dan gaan we de harde schijf testen op fouten.

Download HD Tune en sla het bestand op.

Installeer HD Tune en start deze na de installatie op.

HDTune-error-scan.png

Vervolgens ga je naar het tabblad Error Scan, selecteer de harde schijf die je wil controleren en druk op Start.

De controle kan een hele tijd in beslag nemen afhankelijk van de grootte van de te controleren harde schijf.

Wat is het resultaat van deze test?

En vervolgens testen we het geheugen met Memtest86+

Alle informatie hierover vind je in deze handleiding.

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.