Ga naar inhoud

Virussen verwijderen


Aanbevolen berichten

Beste medewerkers van pc-helpforum,

Ik heb de laatste tijd een hoop gelezen over virussen en nog meer, ik denk dat mijn laptop gebruikt word voor een botnet maar ben hier niet 100% zeker van, ik bekijk wel is mijn router log, en daar staat erg vaak UDP loop inbound, zelfde geld voor TCP en FIN scan, zelf voert mijn laptop zo nu en dan wel een is een SYN flood uit, er staat dan ook OUTbound.

Er zijn ook van die rare momenten dat me hele laptop opeens freezed, uit het niks, ik heb gecheck op virussen met AVG, MBAM & Avast, ik clean me laptop met CCleaner en er staan geen rare processen op / aan.

Ook terwijl ik dit getypt heb is die 2x vastgelopen.

Herkennen jullie dit? help me er dan astublieft mee, het irriteert met erg hard.

Met vriendelijke groeten,

IkHaatVirussen

Link naar reactie
Delen op andere sites

  • Reacties 47
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Beste Kape,

Er is een klein probleempje als ik die website wil bezoeken, het laat vrijwel gelijk zien dat die offline is, hij ligt er dus uit.

Dit is het hele bericht van die website, het kan een beetje vaag eruit ziet, tis ook maar kopieer en plak werk :P

[h=1]Error 522 Ray ID: 13dbfb8730890755[/h][h=2]Connection timed out[/h]

You[h=3]Browser[/h]Working

Amsterdam[h=3]CloudFlare[/h]Working

www.malwareremoval.com[h=3]Host[/h]Error

[h=2]What happened?[/h]The initial connection between CloudFlare's network and the origin web server timed out. As a result, the web page can not be displayed.

[h=2]What can I do?[/h][h=5]If you're a visitor of this website:[/h]Please try again in a few minutes.

[h=5]If you're the owner of this website:[/h]Contact your hosting provider letting them know your web server is not completing requests. An Error 522 means that the request was able to connect to your web server, but that the request didn't finish. The most likely cause is that something on your server is hogging resources. Additional troubleshooting information here.

CloudFlare Ray ID: 13dbfb8730890755

Your IP: **.***.***.***

Performance & security by CloudFlare

Is er toevallig nog een ander website adres omdat te kunnen downloaden?

Met vriendelijke groeten,

IkHaatVirussen

Link naar reactie
Delen op andere sites

Beste Kape,

Tis gelukig met de scan, hier heb je de logjes:

info.txt logfile of random's system information tool 1.08 2014-06-21 19:30:30

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{70991E0A-1108-437E-BA7D-085702C670C0}\setup.exe" -runfromtemp -l0x0013 -removeonly

-->"C:\Program Files (x86)\InstallShield Installation Information\{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}\setup.exe" -runfromtemp -l0x0013 -removeonly

-->"C:\Program Files (x86)\InstallShield Installation Information\{FB77DB0C-6951-47B6-9D80-A0FDBEE0334C}\setup.exe" -runfromtemp -l0x0009 -removeonly

Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 9.5.5 - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-A95000000001}

ArcSoft Magic-i Visual Effects 2-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{7BB90344-0647-468E-925A-7F69F7983421}\Setup.exe" -l0x9

ArcSoft WebCam Companion 3-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}\Setup.exe" -l0x9

AVG PC TuneUp 2014-->C:\Program Files (x86)\AVG\AVG PC TuneUp\TUInstallHelper.exe --Trigger-Uninstall

Catalyst Control Center - Branding-->MsiExec.exe /I{9EAC0E21-510E-4259-A9C6-F5D5B8969036}

Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\setup.exe" --uninstall --multi-install --chrome --system-level

Google Toolbar for Internet Explorer-->"C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8CA8B41417E66DEB.exe" /uninstall

Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}

Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

inSSIDer Office-->MsiExec.exe /X{8C127DE3-EC36-4BA3-A6EE-6DC4A9B6C526}

Instellingen voor het controleren van inhoud VAIO-->"C:\Program Files (x86)\InstallShield Installation Information\{23825B69-36DF-4DAD-9CFD-118D11D80F16}\setup.exe" -runfromtemp -l0x0013 -removeonly

Intel® Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm

Intel® Management Engine Components-->C:\Program Files (x86)\Intel\Intel® Management Engine Components\Uninstall\setup.exe -uninstall

Intel® Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\Uninstall\setup.exe -uninstall

Intel® Turbo Boost Technology Driver-->C:\Program Files (x86)\Intel\Intel® Turbo Boost Technology Driver\Uninstall\setup.exe -uninstall -iips

Java 6 Update 16-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF}

Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}

Malwarebytes Anti-Malware versie 2.0.2.1012-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"

Media Gallery-->"C:\Program Files (x86)\InstallShield Installation Information\{DD88F979-FA58-41AC-980C-A6E1A82B61D9}\setup.exe" -runfromtemp -l0x0013 -removeonly

Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}

Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft SQL Server Compact 3.5 SP1 English-->MsiExec.exe /I{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}

MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

MusicStation-->MsiExec.exe /X{AB259D46-F851-41B0-9AFA-AED8998AD68A}

Ondersteuning voor VAIO Transfer-->"C:\Program Files (x86)\InstallShield Installation Information\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}\setup.exe" -runfromtemp -l0x0013 -removeonly

PMB VAIO Edition Guide-->"C:\Program Files (x86)\InstallShield Installation Information\{88C252C8-A7EE-4B60-BF74-8E5919A8048F}\setup.exe" -runfromtemp -l0x0413 -removeonly

PMB VAIO Edition Guide-->MsiExec.exe /X{88C252C8-A7EE-4B60-BF74-8E5919A8048F}

PMB VAIO Edition plug-in (Click to Disc)-->"C:\Program Files (x86)\InstallShield Installation Information\{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}\setup.exe" -runfromtemp -l0x0413 -removeonly

PMB VAIO Edition plug-in (Click to Disc)-->MsiExec.exe /X{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}

PMB VAIO Edition plug-in (VAIO Image Optimizer)-->"C:\Program Files (x86)\InstallShield Installation Information\{1873FFC1-FDCB-47E1-B7C7-F418211E3530}\setup.exe" -runfromtemp -l0x0413 -removeonly

PMB VAIO Edition plug-in (VAIO Image Optimizer)-->MsiExec.exe /X{1873FFC1-FDCB-47E1-B7C7-F418211E3530}

PMB VAIO Edition plug-in (VAIO Movie Story)-->"C:\Program Files (x86)\InstallShield Installation Information\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}\setup.exe" -runfromtemp -l0x0413 -removeonly

PMB VAIO Edition plug-in (VAIO Movie Story)-->MsiExec.exe /X{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}

PMB-->MsiExec.exe /X{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}

Realtek HDMI Audio Driver for ATI-->C:\Program Files\Realtek\Audio\HDA\RtkUpd64.exe -k -m -nrg2709

Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly

Roxio Central Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}

Roxio Central Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}

Roxio Central Core-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}

Roxio Central Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}

Roxio Central Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}

Roxio Easy Media Creator 10 LJ-->C:\ProgramData\Uninstall\{537BF16E-7412-448C-95D8-846E85A1D817}\setup.exe /x {537BF16E-7412-448C-95D8-846E85A1D817} {lang}=NLD

Roxio Easy Media Creator Home-->MsiExec.exe /I{FE51662F-D8F6-43B5-99D9-D4894AF00F83}

Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {BD0F9F7E-62B2-3971-9E2E-B87B832CE89D}

Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {513BC47F-0560-33C2-A029-C5387642233A}

Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {599EC629-2679-30CE-B28B-7432EF5FC126}

Setting Utility Series-->"C:\Program Files (x86)\InstallShield Installation Information\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}\setup.exe" -runfromtemp -l0x0013 -removeonly

Sony Home Network Library-->"C:\Program Files (x86)\InstallShield Installation Information\{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Care-->"C:\Program Files (x86)\InstallShield Installation Information\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Content Metadata Intelligent Analyzing Manager-->C:\Program Files (x86)\InstallShield Installation Information\{4882EBF5-CA37-4EF4-BCB8-9B0E78B907D0}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Content Metadata Intelligent Network Service Manager-->C:\Program Files (x86)\InstallShield Installation Information\{4427F384-B5BE-4769-B7D0-C784FC321EB1}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Content Metadata Manager Settings-->C:\Program Files (x86)\InstallShield Installation Information\{12D0BE8D-538C-4AB1-86DE-C540308F50DA}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Content Metadata XML Interface Library-->C:\Program Files (x86)\InstallShield Installation Information\{291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Control Center-->"C:\Program Files (x86)\InstallShield Installation Information\{72042FA6-5609-489F-A8EA-3C2DD650F667}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Data Restore Tool-->"C:\Program Files (x86)\InstallShield Installation Information\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO DVD Menu Data-->C:\Program Files (x86)\InstallShield Installation Information\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Energiebeheer -->"C:\Program Files (x86)\InstallShield Installation Information\{803E4FA5-A940-4420-B89D-A8BC2E160247}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Entertainment Platform-->"C:\Program Files (x86)\InstallShield Installation Information\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Event Service-->"C:\Program Files (x86)\InstallShield Installation Information\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Gate Default-->"C:\Program Files (x86)\InstallShield Installation Information\{B7546697-2A80-4256-A24B-1C33163F535B}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Gate-->"C:\Program Files (x86)\InstallShield Installation Information\{A7C30414-2382-4086-B0D6-01A88ABA21C3}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Marketing Tools-->C:\Program Files (x86)\Sony\Marketing Tools\Uninstaller.exe /bootstrap

VAIO Media plus Opening Movie-->"C:\Program Files (x86)\InstallShield Installation Information\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Media plus-->"C:\Program Files (x86)\InstallShield Installation Information\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Movie Story Template Data-->"C:\Program Files (x86)\InstallShield Installation Information\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}\setup.exe" -runfromtemp -l0x0413 -removeonly

VAIO Movie Story Template Data-->MsiExec.exe /X{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}

VAIO Oorspronkelijke functie-instellingen-->"C:\Program Files (x86)\InstallShield Installation Information\{A63E7492-A0BC-4BB9-89A7-352965222380}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Personalization Manager-->C:\Program Files (x86)\InstallShield Installation Information\{A95187EF-BCF4-4468-B501-C0BAB976ADD1}\setup.exe -runfromtemp -l0x0013 -removeonly

VAIO Premium Partners-->C:\Program Files (x86)\Sony Corporation\VAIO Partners\uninstall.exe -prepareUninstall

VAIO Quick Web Access-->MsiExec.exe /I{931FE23C-BB40-4C7A-A594-DB35908D8E83}

VAIO Quick Web Access-->MsiExec.exe /x{931FE23C-BB40-4C7A-A594-DB35908D8E83} CUSTOM_HAVE_DIALOG=Yes

VAIO screensaver-->C:\Program Files (x86)\VAIO screensavers\VAIO_generic_screensaver.exe -prepareUninstall

VAIO Smart Network-->"C:\Program Files (x86)\InstallShield Installation Information\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Update 5-->"C:\Program Files (x86)\InstallShield Installation Information\{5BEE8F1F-BD32-4553-8107-500439E43BD7}\setup.exe" -runfromtemp -l0x0013 -removeonly

VAIO Wallpaper Contents-->"C:\Program Files (x86)\InstallShield Installation Information\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}\setup.exe" -runfromtemp -l0x0013 -removeonly

Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}

Windows Live - Hulpprogramma voor uploaden-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

Windows Live aanmeldhulp-->MsiExec.exe /I{1BD6AE96-4742-4498-9D03-9451C7E5A214}

Windows Live Call-->MsiExec.exe /I{2A8F82E8-7B86-4AFD-BFBC-2BA4C2CF52DB}

Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}

Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe

Windows Live Essentials-->MsiExec.exe /I{562B9CA4-6E52-4F87-ACEC-912FC004F1F0}

Windows Live Mail-->MsiExec.exe /I{2869F5EA-93C3-48E5-80DF-DB696BC84A91}

Windows Live Messenger-->MsiExec.exe /X{10F5387D-1728-423A-A578-B00982CF2646}

Windows Live Photo Gallery-->MsiExec.exe /X{11005483-57F9-400C-BF9F-CBC47540705A}

Windows Live Sync-->MsiExec.exe /X{CD19EDD9-1632-4002-9212-7478E4BA0423}

Windows Live Writer-->MsiExec.exe /X{35CA031C-D3CD-4A28-8D9B-C71466C4F045}

======System event log======

Computer Name: WIN-E4FL4AGDKOU

Event Code: 7036

Message: De Windows Search-service heeft nu de status gestopt.

Record Number: 3993

Source Name: Service Control Manager

Time Written: 20140531173842.443404-000

Event Type: Informatie

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 7040

Message: Het opstarttype van de service Windows Search is gewijzigd van automatisch starten in uitgeschakeld.

Record Number: 3992

Source Name: Service Control Manager

Time Written: 20140531173841.632202-000

Event Type: Informatie

User: VAIO-VAIO\Administrator

Computer Name: WIN-E4FL4AGDKOU

Event Code: 104

Message: Logboekbestand Setup is gewist.

Record Number: 3991

Source Name: Microsoft-Windows-Eventlog

Time Written: 20140531173831.626986-000

Event Type: Informatie

User: VAIO-VAIO\Administrator

Computer Name: WIN-E4FL4AGDKOU

Event Code: 104

Message: Logboekbestand Application is gewist.

Record Number: 3990

Source Name: Microsoft-Windows-Eventlog

Time Written: 20140531173831.595786-000

Event Type: Informatie

User: VAIO-VAIO\Administrator

Computer Name: WIN-E4FL4AGDKOU

Event Code: 104

Message: Logboekbestand System is gewist.

Record Number: 3989

Source Name: Microsoft-Windows-Eventlog

Time Written: 20140531173831.580186-000

Event Type: Informatie

User: VAIO-VAIO\Administrator

=====Application event log=====

Computer Name: VAIO-VAIO

Event Code: 4625

Message: Het EventSystem-subsysteem onderdrukt gedurende 86400 seconden dubbele vermeldingen in het gebeurtenislogboek. De time-out voor onderdrukking kan worden ingesteld met de REG_DWORD-waarde SuppressDuplicateDuration in de volgende registersleutel: HKLM\Software\Microsoft\EventSystem\EventLog.

Record Number: 1436

Source Name: Microsoft-Windows-EventSystem

Time Written: 20140531174103.000000-000

Event Type: Informatie

User:

Computer Name: VAIO-VAIO

Event Code: 1532

Message: De User Profile-service is gestopt.

Record Number: 1435

Source Name: Microsoft-Windows-User Profiles Service

Time Written: 20140531173846.873811-000

Event Type: Informatie

User: NT AUTHORITY\SYSTEM

Computer Name: WIN-E4FL4AGDKOU

Event Code: 1003

Message: De Windows Search-service is gestart.

Record Number: 1434

Source Name: Microsoft-Windows-Search

Time Written: 20140531173842.000000-000

Event Type: Informatie

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 1013

Message: De Windows Search-service is normaal gestopt.

Record Number: 1433

Source Name: Microsoft-Windows-Search

Time Written: 20140531173842.000000-000

Event Type: Informatie

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 103

Message: Windows (3208) Windows: De database-engine heeft een nieuwe sessie (0) stopgezet.

Record Number: 1432

Source Name: ESENT

Time Written: 20140531173842.000000-000

Event Type: Informatie

User:

=====Security event log=====

Computer Name: WIN-E4FL4AGDKOU

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: WIN-E4FL4AGDKOU$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldingstype: 5

Nieuwe aanmelding:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x250

Naam proces: C:\Windows\System32\services.exe

Netwerkgegevens:

Naam van werkstation:

Netwerkadres van bron: -

Poort van bron: -

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: Advapi

Verificatiepakket: Negotiate

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 1059

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20140531173844.393407-000

Event Type: Controle geslaagd

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 4672

Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Bevoegdheden: SeAssignPrimaryTokenPrivilege

SeTcbPrivilege

SeSecurityPrivilege

SeTakeOwnershipPrivilege

SeLoadDriverPrivilege

SeBackupPrivilege

SeRestorePrivilege

SeDebugPrivilege

SeAuditPrivilege

SeSystemEnvironmentPrivilege

SeImpersonatePrivilege

Record Number: 1058

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20140531173842.817804-000

Event Type: Controle geslaagd

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: WIN-E4FL4AGDKOU$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldingstype: 5

Nieuwe aanmelding:

Beveiligings-id: S-1-5-18

Accountnaam: SYSTEM

Accountdomein: NT AUTHORITY

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x250

Naam proces: C:\Windows\System32\services.exe

Netwerkgegevens:

Naam van werkstation:

Netwerkadres van bron: -

Poort van bron: -

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: Advapi

Verificatiepakket: Negotiate

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 1057

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20140531173842.817804-000

Event Type: Controle geslaagd

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 4738

Message: Er is een gebruikersaccount gewijzigd.

Onderwerp:

Beveiligings-id: S-1-5-21-977117929-700349860-3947260413-500

Accountnaam: Administrator

Accountdomein: WIN-E4FL4AGDKOU

Aanmeldings-id: 0x3b366

Doelaccount:

Beveiligings-id: S-1-5-21-977117929-700349860-3947260413-500

Accountnaam: Administrator

Accountdomein: WIN-E4FL4AGDKOU

Gewijzigde kenmerken:

SAM-accountnaam: -

Weergavenaam: -

Principal-naam van gebruiker: -

Basismap: -

Basisstation: -

Pad naar script: -

Pad naar profiel: -

Gebruikerswerkstations: -

Wachtwoord voor het laatst ingesteld: -

Account verloopt op: -

Primaire groeps-id: -

Mag overdragen aan: -

Oude UAC-waarde: 0x211

Nieuwe UAC-waarde: 0x211

Gebruikersaccountbeheer: -

Gebruikersparameters: -

SID-geschiedenis: -

Aantal uren aangemeld: -

Aanvullende gegevens:

Bevoegdheden: -

Record Number: 1056

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20140531173840.977001-000

Event Type: Controle geslaagd

User:

Computer Name: WIN-E4FL4AGDKOU

Event Code: 1102

Message: Het controlelogboek is gewist.

Onderwerp:

Beveiligings-id: S-1-5-21-977117929-700349860-3947260413-500

Accountnaam: Administrator

Domeinnaam: WIN-E4FL4AGDKOU

Aanmeldings-id: 0x3b366

Record Number: 1055

Source Name: Microsoft-Windows-Eventlog

Time Written: 20140531173831.595786-000

Event Type: Controle geslaagd

User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=AMD64

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

"NUMBER_OF_PROCESSORS"=4

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 37 Stepping 2, GenuineIntel

"PROCESSOR_REVISION"=2502

"configsetroot"=%SystemRoot%\ConfigSetRoot

"RoxioCentral"=C:\Program Files (x86)\Common Files\Roxio Shared\10.0\Roxio Central36\

"EMC_AUTOPLAY"=C:\Program Files (x86)\Common Files\Roxio Shared\

-----------------EOF-----------------

De 2e:

Logfile of random's system information tool 1.08 (written by random/random)

Run by VAIO at 2014-06-21 19:29:50

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 62 GB (13%) free of 466 GB

Total RAM: 3950 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 19:30:05, on 21-6-2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.17126)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe

C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe

C:\Program Files (x86)\Java\jre6\bin\jusched.exe

C:\Program Files (x86)\AVG\AVG2014\avguirux.exe

C:\Program Files (x86)\AVG\AVG2014\avgui.exe

C:\Windows\SysWOW64\ctfmon.exe

C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\VAIO\Downloads\RSIT-1.06.exe

C:\Program Files (x86)\trend micro\VAIO.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY

O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User '?')

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')

O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')

O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')

O4 - HKUS\S-1-5-21-977117929-700349860-3947260413-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User '?')

O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe

O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11168 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]

Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2014-05-31 433648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-06-04 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2014-05-31 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-06-04 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-13 98304]

"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2014-05-13 5181456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-05-20 6160152]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]

C:\Windows\system32\VESWinlogon.dll [2009-12-01 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]

"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-06-21 19:29:52 ----D---- C:\Program Files (x86)\trend micro

2014-06-21 19:29:50 ----D---- C:\rsit

2014-06-20 21:25:17 ----A---- C:\Windows\SysWOW64\authuitu.dll

2014-06-20 21:20:15 ----D---- C:\Users\VAIO\AppData\Roaming\AVG

2014-06-20 21:08:51 ----D---- C:\ProgramData\AVG

2014-06-20 21:08:31 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2014-06-20 21:00:39 ----D---- C:\Users\VAIO\AppData\Roaming\AVG2014

2014-06-20 20:57:08 ----D---- C:\Users\VAIO\AppData\Roaming\TuneUp Software

2014-06-20 20:55:59 ----HD---- C:\$AVG

2014-06-20 20:55:59 ----D---- C:\ProgramData\AVG2014

2014-06-20 20:55:00 ----D---- C:\Program Files (x86)\AVG

2014-06-20 20:37:12 ----HD---- C:\ProgramData\Common Files

2014-06-20 20:37:12 ----D---- C:\ProgramData\MFAData

2014-06-11 15:47:26 ----A---- C:\Windows\SysWOW64\usp10.dll

2014-06-11 15:47:24 ----A---- C:\Windows\SysWOW64\msxml6.dll

2014-06-11 15:47:23 ----A---- C:\Windows\SysWOW64\msxml6r.dll

2014-06-11 15:47:23 ----A---- C:\Windows\SysWOW64\msxml3r.dll

2014-06-11 15:47:23 ----A---- C:\Windows\SysWOW64\msxml3.dll

2014-06-11 15:47:23 ----A---- C:\Windows\SysWOW64\mshtmled.dll

2014-06-11 15:47:23 ----A---- C:\Windows\SysWOW64\ieetwproxystub.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\urlmon.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\mshtml.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\msfeeds.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\jscript9diag.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-06-11 15:47:22 ----A---- C:\Windows\SysWOW64\dxtmsft.dll

2014-06-11 15:47:21 ----A---- C:\Windows\SysWOW64\iesetup.dll

2014-06-11 15:47:21 ----A---- C:\Windows\SysWOW64\iertutil.dll

2014-06-11 15:47:20 ----A---- C:\Windows\SysWOW64\jsproxy.dll

2014-06-11 15:47:20 ----A---- C:\Windows\SysWOW64\ieui.dll

2014-06-11 15:47:20 ----A---- C:\Windows\SysWOW64\iernonce.dll

2014-06-11 15:47:20 ----A---- C:\Windows\SysWOW64\ieframe.dll

2014-06-11 15:47:20 ----A---- C:\Windows\SysWOW64\dxtrans.dll

2014-06-11 15:47:18 ----A---- C:\Windows\SysWOW64\mshtmlmedia.dll

2014-06-11 15:47:18 ----A---- C:\Windows\SysWOW64\jscript9.dll

2014-06-11 15:47:18 ----A---- C:\Windows\SysWOW64\ieUnatt.exe

2014-06-11 15:47:17 ----A---- C:\Windows\SysWOW64\wininet.dll

2014-06-11 15:47:17 ----A---- C:\Windows\SysWOW64\vbscript.dll

2014-06-11 15:47:17 ----A---- C:\Windows\SysWOW64\msrating.dll

2014-06-11 15:47:17 ----A---- C:\Windows\SysWOW64\ieapfltr.dll

2014-06-09 15:48:38 ----SD---- C:\Windows\SysWOW64\Microsoft

2014-06-08 18:13:46 ----D---- C:\Program Files (x86)\Adobe

2014-06-08 17:54:14 ----D---- C:\ProgramData\AVAST Software

2014-06-06 03:05:29 ----A---- C:\Windows\SysWOW64\DWrite.dll

2014-06-05 16:56:01 ----A---- C:\Windows\SysWOW64\explorer.exe

2014-06-05 16:56:01 ----A---- C:\Windows\explorer.exe

2014-06-05 16:56:00 ----A---- C:\Windows\SysWOW64\WMPhoto.dll

2014-06-05 16:55:59 ----A---- C:\Windows\SysWOW64\d3d10warp.dll

2014-06-05 16:55:59 ----A---- C:\Windows\SysWOW64\d2d1.dll

2014-06-05 16:55:02 ----A---- C:\Windows\SysWOW64\WindowsCodecs.dll

2014-06-05 16:55:02 ----A---- C:\Windows\splwow64.exe

2014-06-04 23:02:17 ----A---- C:\Windows\SysWOW64\wmploc.DLL

2014-06-04 23:02:17 ----A---- C:\Windows\SysWOW64\wmp.dll

2014-06-04 22:53:07 ----A---- C:\Windows\SysWOW64\PerfStringBackup.INI

2014-06-04 22:51:29 ----D---- C:\Windows\Migration

2014-06-04 22:39:46 ----A---- C:\Windows\SysWOW64\elshyph.dll

2014-06-04 22:39:42 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2014-06-04 22:39:42 ----A---- C:\Windows\SysWOW64\msls31.dll

2014-06-04 22:39:42 ----A---- C:\Windows\SysWOW64\jsIntl.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\wextract.exe

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\webcheck.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\url.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\licmgr10.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\inseng.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\iexpress.exe

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\iedkcs32.dll

2014-06-04 22:39:40 ----A---- C:\Windows\SysWOW64\icardie.dll

2014-06-04 22:39:39 ----A---- C:\Windows\SysWOW64\pngfilt.dll

2014-06-04 22:39:39 ----A---- C:\Windows\SysWOW64\occache.dll

2014-06-04 22:39:39 ----A---- C:\Windows\SysWOW64\MshtmlDac.dll

2014-06-04 22:39:39 ----A---- C:\Windows\SysWOW64\mshta.exe

2014-06-04 22:39:39 ----A---- C:\Windows\SysWOW64\imgutil.dll

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\mshtmler.dll

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\msfeedssync.exe

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\jscript.dll

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\iepeers.dll

2014-06-04 22:39:38 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll

2014-06-04 22:39:37 ----A---- C:\Windows\SysWOW64\iesysprep.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2014-06-04 22:37:43 ----AH---- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\XpsPrint.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\XpsGdiConverter.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\WindowsCodecsExt.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\UIAnimation.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\msmpeg2vdec.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\dxgi.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\d3d10level9.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\d3d10core.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\d3d10_1core.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\d3d10_1.dll

2014-06-04 22:37:43 ----A---- C:\Windows\SysWOW64\d3d10.dll

2014-06-04 20:39:23 ----A---- C:\Windows\SysWOW64\msieftp.dll

2014-06-04 20:39:21 ----A---- C:\Windows\SysWOW64\comctl32.dll

2014-06-04 20:39:03 ----A---- C:\Windows\SysWOW64\dhcpcsvc6.dll

2014-06-04 20:39:03 ----A---- C:\Windows\SysWOW64\dhcpcore6.dll

2014-06-04 20:38:45 ----A---- C:\Windows\SysWOW64\shell32.dll

2014-06-04 20:38:41 ----A---- C:\Windows\SysWOW64\wintrust.dll

2014-06-04 20:37:23 ----A---- C:\Windows\SysWOW64\cryptsvc.dll

2014-06-04 20:37:23 ----A---- C:\Windows\SysWOW64\cryptnet.dll

2014-06-04 20:37:23 ----A---- C:\Windows\SysWOW64\crypt32.dll

2014-06-04 20:37:18 ----A---- C:\Windows\SysWOW64\wer.dll

2014-06-04 20:37:17 ----A---- C:\Windows\SysWOW64\imagehlp.dll

2014-06-04 20:37:16 ----A---- C:\Windows\SysWOW64\tzres.dll

2014-06-04 20:36:37 ----A---- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2014-06-04 20:36:37 ----A---- C:\Windows\SysWOW64\authui.dll

2014-06-04 20:36:34 ----A---- C:\Windows\SysWOW64\credui.dll

2014-06-04 20:36:28 ----A---- C:\Windows\SysWOW64\lpk.dll

2014-06-04 20:36:28 ----A---- C:\Windows\SysWOW64\fontsub.dll

2014-06-04 20:36:28 ----A---- C:\Windows\SysWOW64\dciman32.dll

2014-06-04 20:36:28 ----A---- C:\Windows\SysWOW64\atmfd.dll

2014-06-04 20:36:27 ----A---- C:\Windows\SysWOW64\RMActivate_isv.exe

2014-06-04 20:36:27 ----A---- C:\Windows\SysWOW64\atmlib.dll

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\secproc_ssp_isv.dll

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\secproc_ssp.dll

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\secproc_isv.dll

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\secproc.dll

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\RMActivate_ssp.exe

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\RMActivate.exe

2014-06-04 20:36:26 ----A---- C:\Windows\SysWOW64\msdrm.dll

2014-06-04 20:36:08 ----A---- C:\Windows\SysWOW64\d3d11.dll

2014-06-04 20:35:57 ----A---- C:\Windows\SysWOW64\WMVDECOD.DLL

2014-06-04 20:35:55 ----A---- C:\Windows\SysWOW64\rpcrt4.dll

2014-06-04 20:35:49 ----A---- C:\Windows\SysWOW64\nlaapi.dll

2014-06-04 20:35:49 ----A---- C:\Windows\SysWOW64\netcorehc.dll

2014-06-04 20:35:49 ----A---- C:\Windows\SysWOW64\ncsi.dll

2014-06-04 20:35:48 ----A---- C:\Windows\SysWOW64\netevent.dll

2014-06-04 20:35:27 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe

2014-06-04 20:35:26 ----A---- C:\Windows\SysWOW64\schannel.dll

2014-06-04 20:35:26 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe

2014-06-04 20:35:26 ----A---- C:\Windows\SysWOW64\kerberos.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\wdigest.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\TSpkg.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\objsel.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\ncrypt.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\msv1_0.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\KernelBase.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\dimsroam.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\cngprovider.dll

2014-06-04 20:35:25 ----A---- C:\Windows\SysWOW64\adprovider.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\wincredprovider.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\sspicli.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\secur32.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\dpapiprovider.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\credssp.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\capiprovider.dll

2014-06-04 20:35:24 ----A---- C:\Windows\SysWOW64\apisetschema.dll

2014-06-04 20:35:15 ----A---- C:\Windows\SysWOW64\WebClnt.dll

2014-06-04 20:35:15 ----A---- C:\Windows\SysWOW64\davclnt.dll

2014-06-04 20:34:41 ----A---- C:\Windows\SysWOW64\mswsock.dll

2014-06-04 20:34:14 ----A---- C:\Windows\SysWOW64\tdh.dll

2014-06-04 20:34:14 ----A---- C:\Windows\SysWOW64\ntdll.dll

2014-06-04 20:34:14 ----A---- C:\Windows\SysWOW64\advapi32.dll

2014-06-04 20:34:08 ----A---- C:\Windows\SysWOW64\iologmsg.dll

2014-06-04 20:34:01 ----A---- C:\Windows\SysWOW64\shdocvw.dll

2014-06-04 20:33:56 ----A---- C:\Windows\SysWOW64\win32spl.dll

2014-06-04 20:33:54 ----A---- C:\Windows\SysWOW64\gdi32.dll

2014-06-04 20:33:53 ----A---- C:\Windows\SysWOW64\qedit.dll

2014-06-04 20:33:52 ----A---- C:\Windows\SysWOW64\cryptdlg.dll

2014-06-04 20:33:43 ----A---- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2014-06-04 20:33:41 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\wow32.dll

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\user.exe

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\setup16.exe

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\ntvdm64.dll

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\kernel32.dll

2014-06-04 20:33:41 ----A---- C:\Windows\SysWOW64\instnm.exe

2014-06-04 20:33:36 ----A---- C:\Windows\SysWOW64\certutil.exe

2014-06-04 20:33:36 ----A---- C:\Windows\SysWOW64\certenc.dll

2014-06-04 20:33:29 ----A---- C:\Windows\SysWOW64\wscript.exe

2014-06-04 20:33:29 ----A---- C:\Windows\SysWOW64\scrrun.dll

2014-06-04 20:33:29 ----A---- C:\Windows\SysWOW64\cscript.exe

2014-06-04 20:33:09 ----A---- C:\Windows\SysWOW64\nshwfp.dll

2014-06-04 20:33:09 ----A---- C:\Windows\SysWOW64\FWPUCLNT.DLL

2014-06-04 15:46:41 ----D---- C:\Program Files (x86)\MetaGeek

2014-06-03 13:02:36 ----A---- C:\Windows\SysWOW64\dfshim.dll

2014-06-03 13:02:27 ----A---- C:\Windows\SysWOW64\mfc40u.dll

2014-06-03 13:02:27 ----A---- C:\Windows\SysWOW64\mfc40.dll

2014-06-03 13:02:19 ----A---- C:\Windows\SysWOW64\mscoree.dll

2014-06-03 13:02:17 ----A---- C:\Windows\SysWOW64\mf.dll

2014-06-03 13:02:17 ----A---- C:\Windows\SysWOW64\CertEnroll.dll

2014-06-03 13:02:14 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll

2014-06-03 13:02:13 ----A---- C:\Windows\SysWOW64\PresentationHost.exe

2014-06-03 13:02:11 ----A---- C:\Windows\SysWOW64\RacEngn.dll

2014-06-03 13:02:10 ----A---- C:\Windows\SysWOW64\AuthFWSnapin.dll

2014-06-03 13:02:08 ----A---- C:\Windows\SysWOW64\ExplorerFrame.dll

2014-06-03 13:02:07 ----A---- C:\Windows\SysWOW64\ole32.dll

2014-06-03 13:02:05 ----A---- C:\Windows\SysWOW64\vssapi.dll

2014-06-03 13:02:05 ----A---- C:\Windows\SysWOW64\taskschd.dll

2014-06-03 13:02:05 ----A---- C:\Windows\SysWOW64\SearchFolder.dll

2014-06-03 13:02:05 ----A---- C:\Windows\SysWOW64\d3d9.dll

2014-06-03 13:02:03 ----A---- C:\Windows\SysWOW64\mstsc.exe

2014-06-03 13:02:02 ----A---- C:\Windows\SysWOW64\certcli.dll

2014-06-03 13:02:01 ----A---- C:\Windows\SysWOW64\dwmcore.dll

2014-06-03 13:02:00 ----A---- C:\Windows\SysWOW64\tcpmonui.dll

2014-06-03 13:02:00 ----A---- C:\Windows\SysWOW64\odbc32.dll

2014-06-03 13:01:59 ----A---- C:\Windows\SysWOW64\TSWorkspace.dll

2014-06-03 13:01:58 ----A---- C:\Windows\SysWOW64\winhttp.dll

2014-06-03 13:01:58 ----A---- C:\Windows\SysWOW64\tsmf.dll

2014-06-03 13:01:58 ----A---- C:\Windows\SysWOW64\setupapi.dll

2014-06-03 13:01:58 ----A---- C:\Windows\SysWOW64\dot3api.dll

2014-06-03 13:01:57 ----A---- C:\Windows\SysWOW64\netlogon.dll

2014-06-03 13:01:57 ----A---- C:\Windows\SysWOW64\MSVidCtl.dll

2014-06-03 13:01:57 ----A---- C:\Windows\SysWOW64\dbgeng.dll

2014-06-03 13:01:57 ----A---- C:\Windows\SysWOW64\apphelp.dll

2014-06-03 13:01:56 ----A---- C:\Windows\SysWOW64\netcfgx.dll

2014-06-03 13:01:55 ----A---- C:\Windows\SysWOW64\WsmSvc.dll

2014-06-03 13:01:55 ----A---- C:\Windows\SysWOW64\upnp.dll

2014-06-03 13:01:55 ----A---- C:\Windows\SysWOW64\Query.dll

2014-06-03 13:01:54 ----A---- C:\Windows\SysWOW64\netfxperf.dll

2014-06-03 13:01:54 ----A---- C:\Windows\SysWOW64\mmcndmgr.dll

2014-06-03 13:01:54 ----A---- C:\Windows\SysWOW64\DShowRdpFilter.dll

2014-06-03 13:01:53 ----A---- C:\Windows\SysWOW64\shlwapi.dll

2014-06-03 13:01:53 ----A---- C:\Windows\SysWOW64\SessEnv.dll

2014-06-03 13:01:53 ----A---- C:\Windows\SysWOW64\PortableDeviceApi.dll

2014-06-03 13:01:53 ----A---- C:\Windows\SysWOW64\imapi2fs.dll

2014-06-03 13:01:52 ----A---- C:\Windows\SysWOW64\userenv.dll

2014-06-03 13:01:52 ----A---- C:\Windows\SysWOW64\mcbuilder.exe

2014-06-03 13:01:52 ----A---- C:\Windows\SysWOW64\certmgr.dll

2014-06-03 13:01:51 ----A---- C:\Windows\SysWOW64\xpsservices.dll

2014-06-03 13:01:51 ----A---- C:\Windows\SysWOW64\drvstore.dll

2014-06-03 13:01:51 ----A---- C:\Windows\SysWOW64\comdlg32.dll

2014-06-03 13:01:50 ----A---- C:\Windows\SysWOW64\cmd.exe

2014-06-03 13:01:49 ----A---- C:\Windows\SysWOW64\Wldap32.dll

2014-06-03 13:01:49 ----A---- C:\Windows\SysWOW64\propsys.dll

2014-06-03 13:01:49 ----A---- C:\Windows\SysWOW64\mfds.dll

2014-06-03 13:01:49 ----A---- C:\Windows\SysWOW64\framedynos.dll

2014-06-03 13:01:48 ----A---- C:\Windows\SysWOW64\user32.dll

2014-06-03 13:01:47 ----A---- C:\Windows\SysWOW64\azroles.dll

2014-06-03 13:01:46 ----A---- C:\Windows\SysWOW64\themeui.dll

2014-06-03 13:01:46 ----A---- C:\Windows\SysWOW64\taskeng.exe

2014-06-03 13:01:46 ----A---- C:\Windows\SysWOW64\spp.dll

2014-06-03 13:01:45 ----A---- C:\Windows\SysWOW64\dhcpcore.dll

2014-06-03 13:01:43 ----A---- C:\Windows\SysWOW64\taskcomp.dll

2014-06-03 13:01:43 ----A---- C:\Windows\SysWOW64\NaturalLanguage6.dll

2014-06-03 13:01:43 ----A---- C:\Windows\SysWOW64\mfreadwrite.dll

2014-06-03 13:01:43 ----A---- C:\Windows\SysWOW64\dbghelp.dll

2014-06-03 13:01:43 ----A---- C:\Windows\SysWOW64\basecsp.dll

2014-06-03 13:01:42 ----A---- C:\Windows\SysWOW64\WinSATAPI.dll

2014-06-03 13:01:42 ----A---- C:\Windows\SysWOW64\evr.dll

2014-06-03 13:01:42 ----A---- C:\Windows\SysWOW64\calc.exe

2014-06-03 13:01:41 ----A---- C:\Windows\SysWOW64\sqlsrv32.dll

2014-06-03 13:01:40 ----A---- C:\Windows\SysWOW64\ws2_32.dll

2014-06-03 13:01:40 ----A---- C:\Windows\SysWOW64\UIRibbon.dll

2014-06-03 13:01:40 ----A---- C:\Windows\SysWOW64\sxs.dll

2014-06-03 13:01:40 ----A---- C:\Windows\SysWOW64\stobject.dll

2014-06-03 13:01:40 ----A---- C:\Windows\SysWOW64\netshell.dll

2014-06-03 13:01:39 ----A---- C:\Windows\SysWOW64\prncache.dll

2014-06-03 13:01:38 ----A---- C:\Windows\SysWOW64\WSDApi.dll

2014-06-03 13:01:38 ----A---- C:\Windows\SysWOW64\wmpeffects.dll

2014-06-03 13:01:38 ----A---- C:\Windows\SysWOW64\printui.dll

2014-06-03 13:01:38 ----A---- C:\Windows\SysWOW64\net1.exe

2014-06-03 13:01:37 ----A---- C:\Windows\SysWOW64\scansetting.dll

2014-06-03 13:01:37 ----A---- C:\Windows\SysWOW64\rpchttp.dll

2014-06-03 13:01:36 ----A---- C:\Windows\SysWOW64\MMDevAPI.dll

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\wpdshext.dll

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\WMVCORE.DLL

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\wlangpui.dll

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\t2embed.dll

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\QSHVHOST.DLL

2014-06-03 13:01:35 ----A---- C:\Windows\SysWOW64\pnidui.dll

2014-06-03 13:01:34 ----A---- C:\Windows\SysWOW64\webservices.dll

2014-06-03 13:01:34 ----A---- C:\Windows\SysWOW64\SyncCenter.dll

2014-06-03 13:01:34 ----A---- C:\Windows\SysWOW64\netdiagfx.dll

2014-06-03 13:01:34 ----A---- C:\Windows\SysWOW64\fde.dll

2014-06-03 13:01:33 ----A---- C:\Windows\SysWOW64\wuapi.dll

2014-06-03 13:01:33 ----A---- C:\Windows\SysWOW64\wscapi.dll

2014-06-03 13:01:33 ----A---- C:\Windows\SysWOW64\WinSCard.dll

2014-06-03 13:01:33 ----A---- C:\Windows\SysWOW64\pla.dll

2014-06-03 13:01:32 ----A---- C:\Windows\SysWOW64\winsta.dll

2014-06-03 13:01:32 ----A---- C:\Windows\SysWOW64\MSMPEG2ENC.DLL

2014-06-03 13:01:32 ----A---- C:\Windows\SysWOW64\msasn1.dll

2014-06-03 13:01:31 ----A---- C:\Windows\SysWOW64\imapi2.dll

2014-06-03 13:01:31 ----A---- C:\Windows\SysWOW64\DXPTaskRingtone.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\WMPEncEn.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\winmm.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\shsvcs.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\onex.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\hbaapi.dll

2014-06-03 13:01:30 ----A---- C:\Windows\SysWOW64\autofmt.exe

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\thumbcache.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\samcli.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\regapi.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\proquota.exe

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\netiohlp.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\msutb.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\msinfo32.exe

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\mimefilt.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\ipsmsnap.dll

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\IPHLPAPI.DLL

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\autoconv.exe

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\autochk.exe

2014-06-03 13:01:29 ----A---- C:\Windows\SysWOW64\AudioSes.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\wcncsvc.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\tcpipcfg.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\srchadmin.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\schtasks.exe

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\powercpl.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\msihnd.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\framedyn.dll

2014-06-03 13:01:28 ----A---- C:\Windows\SysWOW64\eapphost.dll

2014-06-03 13:01:27 ----A---- C:\Windows\SysWOW64\QAGENT.DLL

2014-06-03 13:01:27 ----A---- C:\Windows\SysWOW64\netid.dll

2014-06-03 13:01:27 ----A---- C:\Windows\SysWOW64\mscorier.dll

2014-06-03 13:01:27 ----A---- C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll

2014-06-03 13:01:27 ----A---- C:\Windows\SysWOW64\actxprxy.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\wlanpref.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\wdc.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\Vault.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\untfs.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\StructuredQuery.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\scesrv.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\rastls.dll

2014-06-03 13:01:26 ----A---- C:\Windows\SysWOW64\nci.dll

2014-06-03 13:01:25 ----A---- C:\Windows\SysWOW64\WMNetMgr.dll

2014-06-03 13:01:25 ----A---- C:\Windows\SysWOW64\RpcRtRemote.dll

2014-06-03 13:01:25 ----A---- C:\Windows\SysWOW64\Robocopy.exe

2014-06-03 13:01:24 ----A---- C:\Windows\SysWOW64\taskmgr.exe

2014-06-03 13:01:24 ----A---- C:\Windows\SysWOW64\mtxclu.dll

2014-06-03 13:01:24 ----A---- C:\Windows\SysWOW64\DxpTaskSync.dll

2014-06-03 13:01:24 ----A---- C:\Windows\SysWOW64\Display.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\XpsRasterService.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\userinit.exe

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\termmgr.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\shsetup.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\rasppp.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\puiobj.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\logoncli.dll

2014-06-03 13:01:23 ----A---- C:\Windows\SysWOW64\eudcedit.exe

2014-06-03 13:01:22 ----A---- C:\Windows\SysWOW64\wiadefui.dll

2014-06-03 13:01:22 ----A---- C:\Windows\SysWOW64\sppcomapi.dll

2014-06-03 13:01:22 ----A---- C:\Windows\SysWOW64\SensorsCpl.dll

2014-06-03 13:01:22 ----A---- C:\Windows\SysWOW64\FirewallControlPanel.dll

2014-06-03 13:01:22 ----A---- C:\Windows\SysWOW64\cabview.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\themecpl.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\tapisrv.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\scecli.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\hgcpl.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\fontext.dll

2014-06-03 13:01:21 ----A---- C:\Windows\SysWOW64\dnscmmc.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\SndVolSSO.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\mscories.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\mscms.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\mprddm.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\localsec.dll

2014-06-03 13:01:20 ----A---- C:\Windows\SysWOW64\iasacct.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\wlanui.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\w32tm.exe

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\VAN.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\usercpl.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\spwizeng.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\SndVol.exe

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\prntvpt.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\PerfCenterCPL.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\netcenter.dll

2014-06-03 13:01:19 ----A---- C:\Windows\SysWOW64\batmeter.dll

2014-06-03 13:01:18 ----A---- C:\Windows\SysWOW64\zipfldr.dll

2014-06-03 13:01:18 ----A---- C:\Windows\SysWOW64\MSAC3ENC.DLL

2014-06-03 13:01:18 ----A---- C:\Windows\SysWOW64\fdeploy.dll

2014-06-03 13:01:18 ----A---- C:\Windows\SysWOW64\azroleui.dll

2014-06-03 13:01:18 ----A---- C:\Windows\SysWOW64\accessibilitycpl.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\wusa.exe

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\networkmap.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\netjoin.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\Faultrep.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\cryptui.dll

2014-06-03 13:01:17 ----A---- C:\Windows\SysWOW64\adsldp.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\sud.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\prnfldr.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\photowiz.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\OnLineIDCpl.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\MediaMetadataHandler.dll

2014-06-03 13:01:16 ----A---- C:\Windows\SysWOW64\ActionCenter.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\sisbkup.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\shwebsvc.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\iprtrmgr.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\ifsutil.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\iasrad.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\ftp.exe

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\efscore.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\dot3cfg.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\defaultlocationcpl.dll

2014-06-03 13:01:15 ----A---- C:\Windows\SysWOW64\ActionCenterCPL.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\wmpmde.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\syncui.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\rtutils.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\ntlanman.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\dskquoui.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\DeviceCenter.dll

2014-06-03 13:01:14 ----A---- C:\Windows\SysWOW64\autoplay.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\systemcpl.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\sethc.exe

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\riched20.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\OobeFldr.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\ntprint.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\netplwiz.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\NAPHLPR.DLL

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\fms.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\blackbox.dll

2014-06-03 13:01:13 ----A---- C:\Windows\SysWOW64\activeds.dll

2014-06-03 13:01:12 ----A---- C:\Windows\SysWOW64\wmpsrcwp.dll

2014-06-03 13:01:12 ----A---- C:\Windows\SysWOW64\migisol.dll

2014-06-03 13:01:12 ----A---- C:\Windows\SysWOW64\httpapi.dll

2014-06-03 13:01:12 ----A---- C:\Windows\SysWOW64\dpx.dll

2014-06-03 13:01:12 ----A---- C:\Windows\SysWOW64\asycfilt.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\wuwebv.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\wlanmsm.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\wavemsp.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\tzutil.exe

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\ReAgent.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\provsvc.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\ocsetup.exe

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\nshipsec.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\msftedit.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\isoburn.exe

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\dsuiext.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\dot3ui.dll

2014-06-03 13:01:11 ----A---- C:\Windows\SysWOW64\dfrgui.exe

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\wvc.dll

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\wtsapi32.dll

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\wimgapi.dll

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\twext.dll

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\PkgMgr.exe

2014-06-03 13:01:10 ----A---- C:\Windows\SysWOW64\mstask.dll

2014-06-03 13:01:09 ----A---- C:\Windows\twain_32.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\uxlib.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\slwga.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\setupugc.exe

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\qcap.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\qasf.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\msvfw32.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\mciavi32.dll

2014-06-03 13:01:09 ----A---- C:\Windows\SysWOW64\audiodev.dll

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\WPDShServiceObj.dll

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\wmdrmsdk.dll

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\nslookup.exe

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\msscp.dll

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\diskraid.exe

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\DevicePairingFolder.dll

2014-06-03 13:01:08 ----A---- C:\Windows\SysWOW64\clusapi.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\wimserv.exe

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\remotepg.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\rdpencom.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\raschap.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\QUTIL.DLL

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\perfmon.exe

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\networkexplorer.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\NAPCRYPT.DLL

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\input.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\drmmgrtn.dll

2014-06-03 13:01:07 ----A---- C:\Windows\SysWOW64\acppage.dll

2014-06-03 13:01:07 ----A---- C:\Windows\bfsvc.exe

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\wpdwcn.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\wmpdxm.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\vpnikeapi.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\vdsbas.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\UserAccountControlSettings.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\runonce.exe

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\onexui.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\olepro32.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\ocsetapi.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\iTVData.dll

2014-06-03 13:01:06 ----A---- C:\Windows\SysWOW64\dxdiagn.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\wudriver.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\wmpshell.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\wmdrmdev.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\unimdmat.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\shacct.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\msvidc32.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\msiexec.exe

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\MFPlay.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\lsmproxy.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\logagent.exe

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\eapp3hst.dll

2014-06-03 13:01:05 ----A---- C:\Windows\SysWOW64\bitsadmin.exe

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\WPDSp.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\srvcli.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\sqlcese30.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\rdpd3d.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\PortableDeviceStatus.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\pdh.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\OpcServices.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\olethk32.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\ncryptui.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\mprapi.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\logman.exe

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\iscsium.dll

2014-06-03 13:01:04 ----A---- C:\Windows\SysWOW64\cscapi.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\WMVSDECD.DLL

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\wmdrmnet.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\WMADMOD.DLL

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\wiavideo.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\utildll.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\takeown.exe

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\QSVRMGMT.DLL

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\mapistub.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\mapi32.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\iyuv_32.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\fphc.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\dot3msm.dll

2014-06-03 13:01:03 ----A---- C:\Windows\SysWOW64\avifil32.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\vfwwdm32.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\sppinst.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\qdv.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\QCLIPROV.DLL

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\MuiUnattend.exe

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\msyuv.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\msrle32.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\msnetobj.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\EhStorAPI.dll

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\cmstp.exe

2014-06-03 13:01:02 ----A---- C:\Windows\SysWOW64\cca.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\wsnmp32.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\WMSPDMOD.DLL

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\wkscli.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\tsbyuv.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\spbcd.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\setupcln.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\resutils.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\relog.exe

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\rastapi.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\pdhui.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\netiougc.exe

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\netbtugc.exe

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\mydocs.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\msorcl32.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\itircl.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\iscsicli.exe

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\iasrecst.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\diskpart.exe

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\AzSqlExt.dll

2014-06-03 13:01:01 ----A---- C:\Windows\SysWOW64\amstream.dll

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\wuapp.exe

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\wmpps.dll

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\WerFaultSecure.exe

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\tlscsp.dll

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\syssetup.dll

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\ReAgentc.exe

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\findstr.exe

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\eappgnui.dll

2014-06-03 13:01:00 ----A---- C:\Windows\SysWOW64\CertPolEng.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\unlodctr.exe

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\sppc.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\spopk.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\shimgvw.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\netutils.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\muifontsetup.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\mobsync.exe

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\mciqtz32.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\luainstall.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\iccvid.dll

2014-06-03 13:00:59 ----A---- C:\Windows\SysWOW64\cabinet.dll

2014-06-03 13:00:58 ----A---- C:\Windows\SysWOW64\msdmo.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\wups.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\UIRibbonRes.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\rdprefdrvapi.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\perfts.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\odbcconf.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\inetmib1.dll

2014-06-03 13:00:57 ----A---- C:\Windows\SysWOW64\imm32.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\wshbth.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\TRAPI.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\schedcli.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\napdsnap.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\elsTrans.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\dsauth.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\cscdll.dll

2014-06-03 13:00:56 ----A---- C:\Windows\SysWOW64\bitsperf.dll

2014-06-03 13:00:55 ----A---- C:\Windows\SysWOW64\wsdchngr.dll

2014-06-03 13:00:55 ----A---- C:\Windows\SysWOW64\sscore.dll

2014-06-03 13:00:55 ----A---- C:\Windows\SysWOW64\shgina.dll

2014-06-03 13:00:55 ----A---- C:\Windows\SysWOW64\riched32.dll

2014-06-03 13:00:53 ----A---- C:\Windows\SysWOW64\wshirda.dll

2014-06-03 13:00:52 ----A---- C:\Windows\SysWOW64\spwmp.dll

2014-06-03 13:00:52 ----A---- C:\Windows\SysWOW64\C_ISCII.DLL

2014-06-03 13:00:52 ----A---- C:\Windows\SysWOW64\browseui.dll

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\shunimpl.dll

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\KBDTUQ.DLL

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\KBDTUF.DLL

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\KBDSG.DLL

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\kbdlk41a.dll

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\KBDGR1.DLL

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\KBDGKL.DLL

2014-06-03 13:00:51 ----A---- C:\Windows\SysWOW64\dxmasf.dll

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\nlsbres.dll

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDUS.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDUGHR1.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDTURME.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDTAJIK.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDSF.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDPO.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDNEPR.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDMON.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDMAORI.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDLT1.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINTEL.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINTAM.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINORI.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINMAR.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINKAN.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINHIN.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDINBEN.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDGEO.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDCZ1.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDBULG.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDBLR.DLL

2014-06-03 13:00:50 ----A---- C:\Windows\SysWOW64\KBDBASH.DLL

2014-06-03 13:00:49 ----A---- C:\Windows\SysWOW64\spwizres.dll

2014-06-03 13:00:49 ----A---- C:\Windows\SysWOW64\pifmgr.dll

2014-06-03 13:00:42 ----A---- C:\Windows\SysWOW64\wdscore.dll

2014-06-03 13:00:37 ----A---- C:\Windows\SysWOW64\sqmapi.dll

2014-06-03 13:00:31 ----A---- C:\Windows\SysWOW64\wbemcomn.dll

2014-06-03 12:39:14 ----A---- C:\Windows\SysWOW64\esent.dll

2014-06-03 12:39:12 ----A---- C:\Windows\SysWOW64\fsutil.exe

2014-06-02 20:07:32 ----D---- C:\Program Files (x86)\Microsoft.NET

2014-06-02 16:56:09 ----D---- C:\Program Files (x86)\MSXML 4.0

2014-06-02 15:08:07 ----D---- C:\Users\VAIO\AppData\Roaming\WinRAR

2014-06-02 13:53:20 ----D---- C:\Windows\SysWOW64\Wat

2014-06-02 12:37:18 ----A---- C:\Windows\SysWOW64\wmi.dll

2014-06-01 14:53:03 ----A---- C:\Windows\SysWOW64\xmllite.dll

2014-06-01 14:53:01 ----A---- C:\Windows\SysWOW64\odbcjt32.dll

2014-06-01 14:53:00 ----A---- C:\Windows\SysWOW64\odbctrac.dll

2014-06-01 14:53:00 ----A---- C:\Windows\SysWOW64\odbccu32.dll

2014-06-01 14:53:00 ----A---- C:\Windows\SysWOW64\odbccr32.dll

2014-06-01 14:53:00 ----A---- C:\Windows\SysWOW64\odbccp32.dll

2014-06-01 14:52:48 ----A---- C:\Windows\SysWOW64\poqexec.exe

2014-06-01 14:52:46 ----A---- C:\Windows\SysWOW64\mstscax.dll

2014-06-01 14:52:45 ----A---- C:\Windows\SysWOW64\tsgqec.dll

2014-06-01 14:52:45 ----A---- C:\Windows\SysWOW64\aaclient.dll

2014-06-01 14:52:25 ----A---- C:\Windows\SysWOW64\sbe.dll

2014-06-01 14:52:25 ----A---- C:\Windows\SysWOW64\CPFilters.dll

2014-06-01 14:52:23 ----A---- C:\Windows\SysWOW64\quartz.dll

2014-06-01 14:52:23 ----A---- C:\Windows\SysWOW64\qdvd.dll

2014-06-01 14:52:18 ----A---- C:\Windows\SysWOW64\ntshrui.dll

2014-06-01 14:52:14 ----A---- C:\Windows\SysWOW64\tquery.dll

2014-06-01 14:52:14 ----A---- C:\Windows\SysWOW64\mssrch.dll

2014-06-01 14:52:13 ----A---- C:\Windows\SysWOW64\SearchProtocolHost.exe

2014-06-01 14:52:13 ----A---- C:\Windows\SysWOW64\SearchIndexer.exe

2014-06-01 14:52:13 ----A---- C:\Windows\SysWOW64\mssvp.dll

2014-06-01 14:52:13 ----A---- C:\Windows\SysWOW64\mssphtb.dll

2014-06-01 14:52:13 ----A---- C:\Windows\SysWOW64\mssph.dll

2014-06-01 14:52:11 ----A---- C:\Windows\SysWOW64\SearchFilterHost.exe

2014-06-01 14:52:11 ----A---- C:\Windows\SysWOW64\msscntrs.dll

2014-06-01 14:51:33 ----A---- C:\Windows\SysWOW64\webio.dll

2014-06-01 14:50:55 ----A---- C:\Windows\SysWOW64\mfc42u.dll

2014-06-01 14:50:55 ----A---- C:\Windows\SysWOW64\mfc42.dll

2014-06-01 14:50:32 ----A---- C:\Windows\SysWOW64\dnscacheugc.exe

2014-06-01 14:50:32 ----A---- C:\Windows\SysWOW64\dnsapi.dll

2014-06-01 14:50:15 ----A---- C:\Windows\SysWOW64\dpnet.dll

2014-06-01 14:50:15 ----A---- C:\Windows\SysWOW64\dpnaddr.dll

2014-06-01 14:50:13 ----A---- C:\Windows\SysWOW64\packager.dll

2014-06-01 14:50:05 ----A---- C:\Windows\SysWOW64\psisdecd.dll

2014-06-01 14:50:02 ----A---- C:\Windows\SysWOW64\Wpc.dll

2014-06-01 14:50:02 ----A---- C:\Windows\SysWOW64\gameux.dll

2014-06-01 14:49:36 ----A---- C:\Windows\SysWOW64\msi.dll

2014-06-01 14:49:12 ----A---- C:\Windows\SysWOW64\synceng.dll

2014-06-01 14:48:41 ----A---- C:\Windows\SysWOW64\drvinst.exe

2014-06-01 14:48:41 ----A---- C:\Windows\SysWOW64\devrtl.dll

2014-06-01 14:48:41 ----A---- C:\Windows\SysWOW64\devobj.dll

2014-06-01 14:48:41 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll

2014-06-01 14:48:37 ----A---- C:\Windows\SysWOW64\netapi32.dll

2014-06-01 14:48:37 ----A---- C:\Windows\SysWOW64\browcli.dll

2014-06-01 14:48:31 ----A---- C:\Windows\SysWOW64\prevhost.exe

2014-06-01 14:48:30 ----A---- C:\Windows\SysWOW64\srclient.dll

2014-06-01 14:48:29 ----A---- C:\Windows\SysWOW64\inetcomm.dll

2014-06-01 14:48:28 ----A---- C:\Windows\SysWOW64\msvcrt.dll

2014-06-01 14:48:24 ----A---- C:\Windows\SysWOW64\oleaut32.dll

2014-06-01 14:48:24 ----A---- C:\Windows\SysWOW64\oleacc.dll

2014-06-01 14:48:22 ----A---- C:\Windows\SysWOW64\EncDec.dll

2014-06-01 14:48:13 ----A---- C:\Windows\SysWOW64\cdosys.dll

2014-05-31 20:42:15 ----D---- C:\ProgramData\Malwarebytes

2014-05-31 20:42:15 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-05-31 20:09:04 ----D---- C:\Users\VAIO\AppData\Roaming\.minecraft

2014-05-31 20:04:35 ----D---- C:\Users\VAIO\AppData\Roaming\Macromedia

2014-05-31 19:59:34 ----A---- C:\Windows\SysWOW64\rdpcore.dll

2014-05-31 19:51:29 ----D---- C:\Users\VAIO\AppData\Roaming\Google

2014-05-31 19:51:19 ----D---- C:\Users\VAIO\AppData\Roaming\Adobe

2014-05-31 19:48:26 ----D---- C:\Users\VAIO\AppData\Roaming\Intel Corporation

2014-05-31 19:48:17 ----D---- C:\Users\VAIO\AppData\Roaming\ATI

2014-05-31 19:47:44 ----D---- C:\Users\VAIO\AppData\Roaming\Identities

2014-05-31 19:46:54 ----HD---- C:\Windows\msdownld.tmp

2014-05-31 19:43:08 ----D---- C:\Users\VAIO\AppData\Roaming\Sony Corporation

2014-05-31 19:43:03 ----SD---- C:\Users\VAIO\AppData\Roaming\Microsoft

2014-05-31 19:43:03 ----D---- C:\Users\VAIO\AppData\Roaming\Media Center Programs

2014-05-31 19:42:42 ----SHD---- C:\ProgramData\Sjablonen

2014-05-31 19:42:42 ----SHD---- C:\ProgramData\Menu Start

2014-05-31 19:42:42 ----SHD---- C:\ProgramData\Favorieten

2014-05-31 19:42:42 ----SHD---- C:\ProgramData\Documenten

2014-05-31 19:42:42 ----SHD---- C:\ProgramData\Bureaublad

2014-05-31 19:28:55 ----D---- C:\Windows\SysWOW64\winrm

2014-05-31 19:28:55 ----D---- C:\Windows\SysWOW64\sysprep

2014-05-31 19:28:55 ----D---- C:\Windows\SysWOW64\slmgr

2014-05-31 19:28:55 ----D---- C:\Windows\SysWOW64\nl

2014-05-31 19:28:55 ----D---- C:\Windows\SysWOW64\0413

2014-05-31 19:28:55 ----D---- C:\Windows\nl-NL

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\XPSViewer

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\WCN

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\Printing_Admin_Scripts

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\drivers\UMDF

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\drivers\nl-NL

2014-05-31 19:01:25 ----ASH---- C:\hiberfil.sys

2014-05-31 19:00:47 ----D---- C:\Documentation

2014-05-31 19:00:47 ----D---- C:\_FS_SWRINFO

2014-05-31 19:00:09 ----A---- C:\Windows\SysWOW64\d3dx9_32.dll

2014-05-31 18:59:30 ----D---- C:\Program Files (x86)\Microsoft

2014-05-31 18:59:16 ----D---- C:\Program Files (x86)\Windows Live SkyDrive

2014-05-31 18:59:01 ----D---- C:\Program Files (x86)\Windows Live

2014-05-31 18:58:51 ----D---- C:\Windows\PCHEALTH

2014-05-31 18:58:08 ----D---- C:\Program Files (x86)\Common Files\Windows Live

2014-05-31 18:57:43 ----D---- C:\Program Files (x86)\Sony Corporation

2014-05-31 18:57:27 ----A---- C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt

2014-05-31 18:55:31 ----A---- C:\Windows\SysWOW64\d3dx9_35.dll

2014-05-31 18:55:19 ----D---- C:\Temp

2014-05-31 18:55:02 ----A---- C:\Windows\SysWOW64\VESWinlogon.dll

2014-05-31 18:52:01 ----A---- C:\Windows\SysWOW64\javaws.exe

2014-05-31 18:52:01 ----A---- C:\Windows\SysWOW64\javaw.exe

2014-05-31 18:52:01 ----A---- C:\Windows\SysWOW64\java.exe

2014-05-31 18:52:01 ----A---- C:\Windows\SysWOW64\deploytk.dll

2014-05-31 18:51:58 ----D---- C:\Program Files (x86)\Java

2014-05-31 18:51:50 ----D---- C:\Program Files (x86)\VAIO screensavers

2014-05-31 18:51:50 ----A---- C:\Windows\SysWOW64\Generic_version.txt

2014-05-31 18:51:45 ----D---- C:\ProgramData\Uninstall

2014-05-31 18:51:39 ----D---- C:\ProgramData\Sonic

2014-05-31 18:51:33 ----D---- C:\Program Files (x86)\Roxio

2014-05-31 18:51:14 ----D---- C:\Program Files (x86)\Common Files\Sonic Shared

2014-05-31 18:51:08 ----D---- C:\Program Files (x86)\Common Files\Roxio Shared

2014-05-31 18:50:58 ----N---- C:\Windows\SysWOW64\pxhpinst.exe

2014-05-31 18:50:58 ----N---- C:\Windows\SysWOW64\pxdrv.dll

2014-05-31 18:50:58 ----N---- C:\Windows\SysWOW64\pxafs.dll

2014-05-31 18:50:58 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine

2014-05-31 18:48:24 ----D---- C:\ProgramData\MusicStation

2014-05-31 18:48:24 ----D---- C:\Program Files (x86)\MusicStation

2014-05-31 18:48:21 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services

2014-05-31 18:48:21 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2014-05-31 18:47:57 ----D---- C:\Program Files (x86)\Microsoft Office

2014-05-31 18:45:32 ----A---- C:\Windows\SysWOW64\D3DX9_41.dll

2014-05-31 18:45:32 ----A---- C:\Windows\SysWOW64\d3dx10_41.dll

2014-05-31 18:45:32 ----A---- C:\Windows\SysWOW64\D3DCompiler_41.dll

2014-05-31 18:44:57 ----D---- C:\ProgramData\SiteAdvisor

2014-05-31 18:42:18 ----D---- C:\ProgramData\McAfee

2014-05-31 18:42:04 ----A---- C:\Windows\SysWOW64\Mdat_1.4.00.0912180.txt

2014-05-31 18:41:53 ----RA---- C:\Windows\SysWOW64\msvcp71.dll

2014-05-31 18:41:53 ----A---- C:\Windows\SysWOW64\unicows.dll

2014-05-31 18:41:53 ----A---- C:\Windows\SysWOW64\PCDLIB32.DLL

2014-05-31 18:41:53 ----A---- C:\Windows\SysWOW64\msvcr71.dll

2014-05-31 18:41:51 ----D---- C:\Program Files (x86)\Common Files\ArcSoft

2014-05-31 18:41:51 ----D---- C:\Program Files (x86)\ArcSoft

2014-05-31 18:41:42 ----D---- C:\ProgramData\Google

2014-05-31 18:41:37 ----D---- C:\Program Files (x86)\Google

2014-05-31 18:41:35 ----D---- C:\ProgramData\Partner

2014-05-31 18:41:32 ----D---- C:\Windows\SysWOW64\Macromed

2014-05-31 18:41:28 ----D---- C:\ProgramData\Evernote

2014-05-31 18:41:13 ----HD---- C:\SPLASH.000

2014-05-31 18:40:58 ----HD---- C:\SPLASH.SYS

2014-05-31 18:40:41 ----D---- C:\Program Files (x86)\Downloaded Installations

2014-05-31 18:40:12 ----D---- C:\ProgramData\ATI

2014-05-31 18:39:38 ----D---- C:\Program Files (x86)\ATI Technologies

2014-05-31 18:38:48 ----D---- C:\ProgramData\Adobe

2014-05-31 18:38:48 ----D---- C:\Program Files (x86)\Common Files\Adobe

2014-05-31 18:38:26 ----D---- C:\Windows\Sonysys

2014-05-31 18:38:16 ----D---- C:\Program Files (x86)\SONY

2014-05-31 18:36:27 ----D---- C:\Windows\SysWOW64\RTCOM

2014-05-31 18:36:16 ----HD---- C:\Program Files (x86)\Temp

2014-05-31 18:36:16 ----D---- C:\Program Files (x86)\Realtek

2014-05-31 18:36:16 ----A---- C:\Windows\RtlExUpd.dll

2014-05-31 18:36:10 ----D---- C:\Program Files (x86)\Common Files\InstallShield

2014-05-31 18:35:46 ----D---- C:\Windows\SoftwareDistribution

2014-05-31 18:30:26 ----ASH---- C:\pagefile.sys

2014-05-31 18:30:25 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 months======

2014-06-21 19:30:20 ----D---- C:\Windows\Temp

2014-06-21 19:29:52 ----RD---- C:\Program Files (x86)

2014-06-21 02:13:05 ----D---- C:\Windows

2014-06-21 01:54:47 ----SH---- C:\Program Files (x86)\desktop.ini

2014-06-21 01:54:47 ----RD---- C:\Users

2014-06-21 01:48:15 ----D---- C:\Windows\SysWOW64\LogFiles

2014-06-21 01:48:10 ----D---- C:\Windows\Prefetch

2014-06-21 01:48:08 ----D---- C:\Windows\System32

2014-06-21 01:41:14 ----D---- C:\Windows\inf

2014-06-20 21:25:42 ----SHD---- C:\Windows\Installer

2014-06-20 21:25:17 ----D---- C:\Windows\SysWOW64

2014-06-20 21:08:51 ----HD---- C:\ProgramData

2014-06-20 20:45:09 ----D---- C:\Windows\Panther

2014-06-20 20:45:08 ----D---- C:\Windows\Logs

2014-06-20 20:45:08 ----D---- C:\Windows\debug

2014-06-20 20:39:26 ----RD---- C:\Program Files

2014-06-20 19:21:45 ----A---- C:\Windows\SysWOW64\log.txt

2014-06-11 19:09:12 ----D---- C:\Windows\winsxs

2014-06-11 19:07:47 ----D---- C:\Windows\SysWOW64\en-US

2014-06-11 19:07:44 ----D---- C:\Program Files (x86)\Internet Explorer

2014-06-09 21:02:18 ----D---- C:\Windows\LiveKernelReports

2014-06-09 18:00:52 ----D---- C:\Windows\rescache

2014-06-09 14:53:54 ----SD---- C:\ProgramData\Microsoft

2014-06-08 14:14:32 ----D---- C:\Windows\Microsoft.NET

2014-06-08 14:07:01 ----RSD---- C:\Windows\assembly

2014-06-06 04:08:37 ----D---- C:\Windows\SysWOW64\nl-NL

2014-06-05 02:47:16 ----D---- C:\Program Files (x86)\Windows Media Player

2014-06-05 02:47:06 ----D---- C:\Windows\SysWOW64\wbem

2014-06-05 02:47:06 ----D---- C:\Windows\SysWOW64\migration

2014-06-05 02:47:04 ----D---- C:\Windows\PolicyDefinitions

2014-06-05 02:47:00 ----D---- C:\Windows\SysWOW64\pt-PT

2014-06-05 02:47:00 ----D---- C:\Windows\SysWOW64\pt-BR

2014-06-05 02:47:00 ----D---- C:\Windows\SysWOW64\pl-PL

2014-06-05 02:47:00 ----D---- C:\Windows\SysWOW64\ko-KR

2014-06-05 02:47:00 ----D---- C:\Windows\SysWOW64\it-IT

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\zh-TW

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\zh-HK

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\zh-CN

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\tr-TR

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\sv-SE

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\ru-RU

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\nb-NO

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\ja-JP

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\hu-HU

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\fr-FR

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\fi-FI

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\es-ES

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\el-GR

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\de-DE

2014-06-05 02:46:59 ----D---- C:\Windows\SysWOW64\cs-CZ

2014-06-05 02:46:58 ----D---- C:\Windows\SysWOW64\da-DK

2014-06-05 02:46:55 ----D---- C:\Windows\AppPatch

2014-06-05 02:46:40 ----D---- C:\Program Files (x86)\Windows Defender

2014-06-03 19:17:19 ----D---- C:\Program Files (x86)\Windows Sidebar

2014-06-03 19:17:19 ----D---- C:\Program Files (x86)\Windows Portable Devices

2014-06-03 19:17:19 ----D---- C:\Program Files (x86)\Windows Photo Viewer

2014-06-03 19:17:19 ----D---- C:\Program Files (x86)\Windows Mail

2014-06-03 19:17:19 ----D---- C:\Program Files (x86)\Common Files\System

2014-06-03 19:17:18 ----D---- C:\Windows\servicing

2014-06-03 19:17:17 ----D---- C:\Windows\ehome

2014-06-03 19:17:12 ----D---- C:\Windows\SysWOW64\Setup

2014-06-03 19:17:12 ----D---- C:\Windows\SysWOW64\oobe

2014-06-03 19:17:12 ----D---- C:\Windows\SysWOW64\manifeststore

2014-06-03 19:17:12 ----D---- C:\Windows\SysWOW64\AdvancedInstallers

2014-06-03 19:17:11 ----D---- C:\Windows\SysWOW64\sppui

2014-06-03 19:17:11 ----D---- C:\Windows\SysWOW64\migwiz

2014-06-03 19:17:10 ----D---- C:\Windows\SysWOW64\Dism

2014-06-03 19:16:24 ----RSD---- C:\Windows\Fonts

2014-06-03 19:13:28 ----A---- C:\Windows\SysWOW64\msclmd.dll

2014-06-03 14:04:59 ----D---- C:\Windows\Drivers

2014-06-02 16:55:35 ----D---- C:\Program Files (x86)\Common Files\microsoft shared

2014-05-31 20:07:22 ----D---- C:\Windows\Tasks

2014-05-31 19:55:09 ----D---- C:\Program Files (x86)\Common Files

2014-05-31 19:47:40 ----SHD---- C:\$Recycle.Bin

2014-05-31 19:47:32 ----D---- C:\Windows\SysWOW64\drivers

2014-05-31 19:47:03 ----D---- C:\Program Files (x86)\Intel

2014-05-31 19:37:52 ----D---- C:\ProgramData\Sony Corporation

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\MUI

2014-05-31 19:28:54 ----D---- C:\Windows\SysWOW64\DriverStore

2014-05-31 19:28:53 ----D---- C:\Windows\SysWOW64\com

2014-05-31 19:28:53 ----D---- C:\Windows\IME

2014-05-31 19:28:53 ----D---- C:\Windows\DigitalLocker

2014-05-31 19:01:21 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2014-05-31 18:57:41 ----D---- C:\Windows\Help

2014-05-31 18:57:21 ----D---- C:\Windows\Resources

2014-05-31 18:55:24 ----D---- C:\Program Files (x86)\Common Files\Sony Shared

2014-05-31 18:44:52 ----A---- C:\Windows\win.ini

2014-05-31 18:41:58 ----D---- C:\Windows\system

2014-05-31 18:38:32 ----A---- C:\Windows\csup.txt

2014-05-31 18:36:06 ----D---- C:\Windows\Globalization

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys []

R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys []

R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys []

R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys []

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys []

R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []

R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys []

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys []

R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys []

R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys []

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []

R2 rimspci;rimspci; C:\Windows\system32\drivers\rimssne64.sys []

R2 risdsnpe;risdsnpe; C:\Windows\system32\drivers\risdsne64.sys []

R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys []

R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys []

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []

R3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys []

R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys []

R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys []

R3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys []

R3 btwaudio;Bluetooth-audioapparaat; C:\Windows\system32\drivers\btwaudio.sys []

R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys []

R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []

R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []

R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []

R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []

R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys []

R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys []

R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []

R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\drivers\SFEP.sys []

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2014-03-26 14112]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys []

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys []

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []

S3 Impcd;Impcd; C:\Windows\system32\drivers\Impcd.sys []

S3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys []

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-05-13 3644432]

R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-05-13 292424]

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 873248]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-21 13336]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2009-12-14 268824]

R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-04-15 2185528]

R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]

R2 VAIO Event Service;VAIO Event Service; C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe [2009-12-01 204648]

R2 VSNService;VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2009-11-25 821760]

R3 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-31 116648]

S3 fsssvc;De service Windows Live Family Safety; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-31 116648]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-06-04 194032]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe /V []

S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2014-05-31 332272]

S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-09-16 480624]

S3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager; C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-09-01 361840]

S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface; C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2009-09-08 110960]

S3 VUAgent;VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [2009-10-30 1165680]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

S4 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]

S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 PMBDeviceInfoProvider;PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]

S4 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-31 313840]

S4 Roxio Upnp Server 10;Roxio Upnp Server 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-31 362992]

S4 SampleCollector;Intel® Sample Collector; C:\Program Files\Sony\VAIO Care\collsvc.exe [2009-09-16 167424]

S4 SOHCImp;VAIO Media plus Content Importer; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-10-15 120104]

S4 SOHDBSvr;VAIO Media plus Database Manager; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-10-15 70952]

S4 SOHDms;VAIO Media plus Digital Media Server; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-10-15 427304]

S4 SOHDs;VAIO Media plus Device Searcher; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-10-15 75048]

S4 SOHPlMgr;VAIO Media plus Playlist Manager; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-10-15 91432]

S4 uCamMonitor;CamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]

S4 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [2009-09-14 69632]

S4 VCFw;VAIO Content Folder Watcher; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-09-14 642416]

S4 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2009-09-14 206336]

-----------------EOF-----------------

Bedankt voor het bekijken en het helpen.

Met vriendelijke groeten,

IkHaatVirussen

Link naar reactie
Delen op andere sites

Je Java software is verouderd.

Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand JavaSetup wordt aangeboden - kies hier voor "bestand opslaan".
  • Sluit alle programma's die eventueel open zijn - zeker je web browser!
  • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
  • Vink alles aan met Java Runtime Environment (JRE of J2SE of JAVA) in de naam.
  • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
  • Herhaal dit tot alle oudere versies verdwenen zijn.
  • Na het verwijderen van alle oudere versies, herstart je pc.
  • Klik vervolgens op JavaSetup om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4};c
 C:\ProgramData\Partner;fs
 Partner Service;s
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options];r64
  emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad.

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Beste Kape,

Wel allemaal leuk en aardig enzo, maar ik zou het fijn vinden als je me wat extra informatie kan geven over wat er speelt op mijn computer.

Ik heb AdwCleaner gerunt en dit is de log:

- - - Updated - - -

Beste Kape,

Nog een klein dingetje die ik vergeten ben om te melden in het berichtje hierboven, heb je enig verstand van games die runnen op JAVA?

Ik krijg steeds deze error:

#

# A fatal error has been detected by the Java Runtime Environment:

#

# EXCEPTION_INT_DIVIDE_BY_ZERO (0xc0000094) at pc=0x000000000a8601b5, pid=4968, tid=1764

#

# JRE version: Java SE Runtime Environment (7.0_60-b19) (build 1.7.0_60-b19)

# Java VM: Java HotSpot 64-Bit Server VM (24.60-b09 mixed mode windows-amd64 compressed oops)

# Problematic frame:

# C [atio6axx.dll+0x7201b5]

#

# Failed to write core dump. Minidumps are not enabled by default on client versions of Windows

#

# An error report file with more information is saved as:

# C:\Users\VAIO\Desktop\IridiumLauncher-v3.5\hs_err_pid4968.log

#

# If you would like to submit a bug report, please visit:

# http://bugreport.sun.com/bugreport/crash.jsp

# The crash happened outside the Java Virtual Machine in native code.

# See problematic frame for where to report the bug.

#

AL lib: (EE) alc_cleanup: 1 device not closed

Ik heb de laatste versie, en sinds dien heb ik daar last van.

Met vriendelijke groeten,

IkhaatVirussen

AdwCleaner[S0].txt

Link naar reactie
Delen op andere sites

Wel allemaal leuk en aardig enzo, maar ik zou het fijn vinden als je me wat extra informatie kan geven over wat er speelt op mijn computer.
Je hebt een (eerder lichte) besmetting op je PC binnengehaald. We proberen deze via de verschillende tools nu te verwijderen. Een groot deel is er al mee opgeruimd. Hoe staat het nu met de eerder gemelde problemen ?
Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.