tweede gedeeldte van de logfile

willem

24-01-2014 17:48

hallo allen, kan helaas niet het proggie verwijderen van system speedup, hieronder de gevraagde logfiles in 2 gedeelte ivm met de grote ervan, zouden jullie is kunnen bekijken wat ik er aan kan doen… hoor het graag van jullie
Logfile of random's system information tool 1.09 (written by random/random)
Run by Gebuiker at 2014-01-24 17:07:50
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 181 GB (38%) free of 477 GB
Total RAM: 3070 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:08:14, on 24-1-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16750)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Comodo\COMODO Internet Security\cis.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Gebuiker\Downloads\RSIT.exe
C:\Program Files\trend micro\Gebuiker.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1390570799&from=vit&uid=395049983_1052451_D09EFD02&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1390570799&from=vit&uid=395049983_1052451_D09EFD02&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1390570799&from=vit&uid=395049983_1052451_D09EFD02&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - ##TOOLBAR_DISABLED_##{0cc09160-108c-4759-bab1-5c12c216e005} - (no file)
O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe” -Embedding -boot
O4 - HKLM\..\Run: C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: C:\Windows\p_981116.exe /Q:A
O4 - HKLM\..\Run: C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKCU\..\Run: “C:\Program Files\Skype\Phone\Skype.exe” /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-18\..\RunOnce: “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“http://go.microsoft.com/fwlink/?LinkID=122915” /build:7601 (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\RunOnce: “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“http://go.microsoft.com/fwlink/?LinkID=122915” /build:7601 (User ‘Default user’)
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O9 - Extra ‘Tools’ menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Acronis Scheduler2Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup-service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\Windows\system32\brsvc01a.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
–
End of file - 7397 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3706457735-2140502151-1534198828-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3706457735-2140502151-1534198828-1000UA.job
C:\Windows\tasks\System Speedup_DEFAULT.job
C:\Windows\tasks\System Speedup_UPDATES.job
C:\Windows\tasks\_DEFAULT.job
C:\Windows\tasks\_UPDATES.job
======Registry dump======
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
##TOOLBAR_DISABLED_##{0cc09160-108c-4759-bab1-5c12c216e005}
{ae07101b-46d4-4a98-af68-0333ea26e113}
“SSBkgdUpdate”=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
“PaperPort PTD”=C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
“IndexSearch”=C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
“BrMfcWnd”=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
“ControlCenter3”=C:\Program Files\Brother\ControlCenter3\brctrcen.exe
“DXM6Patch_981116”=C:\Windows\p_981116.exe
“COMODO Internet Security”=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
“Adobe ARM”=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“WebCamRT.exe”=
“Skype”=C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe /Auto
C:\Users\Gebuiker\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT –mid b87b4b10d39a47d09eddd16f5efea250-03aba8ab899236046bf6fc45ecccd7cfdafa4e83 –CMPID 0913b
C:\Users\Gebuiker\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED
C:\Users\Gebuiker\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Avant Browser\webkit\chrome.exe –no-startup-window
C:\Users\Gebuiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe / /PROMPT /CMPID=ROC_NT
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Smart Driver Updater\SDULauncher.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe -osboot
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Users\Gebuiker\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\Gebuiker\AppData\Roaming\BROWSE~1\tcbhn.exe
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
“{4F07DA45-8170-4859-9B5F-037EF2970034}”=
“SecurityProviders”=credssp.dll
“ConsentPromptBehaviorAdmin”=5
“ConsentPromptBehaviorUser”=3
“EnableUIADesktopToggle”=0
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“EnableLinkedConnections”=1
“EnableShellExecuteHooks”=1
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“VIDC.YVYU”=msyuv.dll
“VIDC.IYUV”=iyuv_32.dll
“msacm.l3acm”=l3codeca.acm
“vidc.cvid”=iccvid.dll
“msacm.voxacm160”=vct3216.acm
“MSVideo”=vfwwdm32.dll
“MSVideo8”=VfWWDM32.dll
“VIDC.UYVY”=msyuv.dll
“VIDC.YUY2”=msyuv.dll
“VIDC.YVU9”=tsbyuv.dll
“wave3”=wdmaud.drv
“midi3”=wdmaud.drv
“mixer3”=wdmaud.drv
“wave4”=wdmaud.drv
“midi4”=wdmaud.drv
“mixer4”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“wave2”=wdmaud.drv
“midi2”=wdmaud.drv
“mixer2”=wdmaud.drv
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“msacm.siren”=sirenacm.dll
“msacm.l3codecp”=l3codecp.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 1 month======
2014-01-24 16:06:28 —-D—- C:\rsit
2014-01-24 16:06:28 —-D—- C:\Program Files\trend micro
2014-01-24 14:56:03 —-D—- C:\Users\Gebuiker\AppData\Roaming\System Speedup
2014-01-24 14:44:28 —-D—- C:\ProgramData\Allmyapps
2014-01-24 14:44:17 —-D—- C:\Program Files\Advanced Disk Recovery
2014-01-24 14:44:00 —-D—- C:\Program Files\Systweak Support Dock
2014-01-24 14:40:35 —-D—- C:\Users\Gebuiker\AppData\Roaming\systweak
2014-01-24 14:40:34 —-D—- C:\Program Files\System Speedup
2014-01-24 14:40:24 —-D—- C:\Program Files\iRobinHood
2014-01-24 14:40:23 —-D—- C:\ProgramData\IePluginService
2014-01-24 14:40:17 —-D—- C:\Program Files\SupTab
2014-01-24 14:40:12 —-D—- C:\ProgramData\WPM
2014-01-22 18:21:35 —-D—- C:\Users\Gebuiker\AppData\Roaming\USBSafelyRemove
2014-01-22 18:21:27 —-D—- C:\ProgramData\USBSRService
2014-01-22 18:21:25 —-D—- C:\Program Files\USB Safely Remove
2014-01-19 14:23:31 —-D—- C:\Program Files\Common Files\Wise Installation Wizard
2014-01-19 12:33:32 —-A—- C:\Windows\system32\drivers\Cat.DB
2014-01-19 12:33:16 —-D—- C:\Program Files\PC Tools Security
2014-01-18 10:30:19 —-D—- C:\Program Files\Common Files\DESIGNER
2014-01-11 18:56:20 —-D—- C:\Users\Gebuiker\AppData\Roaming\TeamViewer
2014-01-11 14:18:11 —-D—- C:\Users\Gebuiker\AppData\Roaming\Apple Computer
2014-01-11 14:18:03 —-D—- C:\ProgramData\ProductData
2014-01-11 14:17:59 —-D—- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 10:53:49 —-D—- C:\Program Files\Common Files\Adobe
2014-01-07 10:53:49 —-D—- C:\Program Files\Adobe
2014-01-02 19:46:45 —-HD—- C:\VTRoot
2014-01-02 19:46:37 —-A—- C:\Windows\system32\drivers\fvstore.dat
2014-01-02 19:39:25 —-D—- C:\first_launch
2014-01-02 17:03:41 —-D—- C:\Users\Gebuiker\AppData\Roaming\MPC-HC
2014-01-01 12:10:24 —-D—- C:\Users\Gebuiker\AppData\Roaming\NAVIGON Fresh
2014-01-01 12:10:24 —-D—- C:\ProgramData\boost_interprocess
2014-01-01 12:08:51 —-D—- C:\Program Files\NAVIGON
2013-12-31 19:10:46 —-D—- C:\Users\Gebuiker\AppData\Roaming\Open Download Manager
2013-12-31 19:09:29 —-D—- C:\Program Files\OpenDownloaderManager
2013-12-26 10:31:45 —-A—- C:\Windows\system32\wininet.dll
2013-12-26 10:31:45 —-A—- C:\Windows\system32\urlmon.dll
2013-12-26 10:31:45 —-A—- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-26 10:31:45 —-A—- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-26 10:31:45 —-A—- C:\Windows\system32\msls31.dll
2013-12-26 10:31:45 —-A—- C:\Windows\system32\elshyph.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\wextract.exe
2013-12-26 10:31:44 —-A—- C:\Windows\system32\vbscript.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\msrating.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\mshtmled.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\mshtml.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\msfeeds.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\jsproxy.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\inseng.dll
2013-12-26 10:31:44 —-A—- C:\Windows\system32\iexpress.exe
2013-12-26 10:31:44 —-A—- C:\Windows\system32\ieUnatt.exe
2013-12-26 10:31:44 —-A—- C:\Windows\system32\iertutil.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-26 10:31:43 —-A—- C:\Windows\system32\pngfilt.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\occache.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\mshtmler.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\mshta.exe
2013-12-26 10:31:43 —-A—- C:\Windows\system32\msfeedssync.exe
2013-12-26 10:31:43 —-A—- C:\Windows\system32\msfeedsbs.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\jscript9.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\jscript.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\imgutil.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\ieui.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\iesysprep.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\iepeers.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\ieframe.dll
2013-12-26 10:31:43 —-A—- C:\Windows\system32\IEAdvpack.dll
2013-12-26 10:31:42 —-A—- C:\Windows\system32\iernonce.dll
2013-12-26 10:31:42 —-A—- C:\Windows\system32\ieapfltr.dll
2013-12-26 10:31:42 —-A—- C:\Windows\system32\ieapfltr.dat
2013-12-26 10:31:42 —-A—- C:\Windows\system32\ie4uinit.exe
2013-12-26 10:31:42 —-A—- C:\Windows\system32\icardie.dll
2013-12-26 10:31:42 —-A—- C:\Windows\system32\dxtrans.dll
2013-12-26 10:31:42 —-A—- C:\Windows\system32\dxtmsft.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\webcheck.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\url.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\mshtmlmedia.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\licmgr10.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\iesetup.dll
2013-12-26 10:31:41 —-A—- C:\Windows\system32\iedkcs32.dll
2013-12-26 10:31:09 —-A—- C:\Windows\system32\taskhost.exe
2013-12-26 10:30:52 —-A—- C:\Windows\system32\winsrv.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-26 10:30:51 —-AH—- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-26 10:30:51 —-A—- C:\Windows\system32\KernelBase.dll
2013-12-26 10:30:51 —-A—- C:\Windows\system32\kernel32.dll
2013-12-26 10:30:51 —-A—- C:\Windows\system32\conhost.exe
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-26 10:30:50 —-AH—- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-26 10:29:11 —-AH—- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-26 10:29:10 —-AH—- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-26 10:29:10 —-AH—- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\XpsPrint.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\XpsGdiConverter.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\WMPhoto.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\WindowsCodecsExt.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\msmpeg2vdec.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\FntCache.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\DWrite.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\d3d10core.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\d3d10_1core.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\d3d10_1.dll
2013-12-26 10:29:10 —-A—- C:\Windows\system32\d3d10.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\WindowsCodecs.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\UIAnimation.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\dxgi.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\d3d10warp.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\d3d10level9.dll
2013-12-26 10:29:09 —-A—- C:\Windows\system32\d2d1.dll
2013-12-26 10:26:35 —-A—- C:\Windows\system32\d3d11.dll
2013-12-26 10:01:33 —-D—- C:\Windows\system32\SPReview
2013-12-26 10:00:31 —-D—- C:\Windows\system32\EventProviders
2013-12-26 09:58:11 —-A—- C:\Windows\system32\dfshim.dll
2013-12-26 09:58:08 —-A—- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-26 09:58:08 —-A—- C:\Windows\system32\mstscax.dll
2013-12-26 09:58:08 —-A—- C:\Windows\system32\LSCSHostPolicy.dll
2013-12-26 09:58:08 —-A—- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-12-26 09:58:05 —-A—- C:\Windows\system32\tssrvlic.dll
2013-12-26 09:58:05 —-A—- C:\Windows\system32\mfc40u.dll
2013-12-26 09:58:05 —-A—- C:\Windows\system32\mfc40.dll
2013-12-26 09:58:04 —-A—- C:\Windows\system32\sysmain.dll
2013-12-26 09:58:04 —-A—- C:\Windows\system32\RDVGHelper.exe
2013-12-26 09:58:03 —-A—- C:\Windows\system32\secproc_isv.dll
2013-12-26 09:58:02 —-A—- C:\Windows\system32\secproc.dll
2013-12-26 09:58:02 —-A—- C:\Windows\system32\RMActivate_isv.exe
2013-12-26 09:58:02 —-A—- C:\Windows\system32\RMActivate.exe
2013-12-26 09:58:00 —-A—- C:\Windows\system32\spwizui.dll
2013-12-26 09:58:00 —-A—- C:\Windows\system32\mscoree.dll
2013-12-26 09:58:00 —-A—- C:\Windows\system32\mf.dll
2013-12-26 09:57:59 —-A—- C:\Windows\system32\mcupdate_GenuineIntel.dll
2013-12-26 09:57:59 —-A—- C:\Windows\system32\CertEnroll.dll
2013-12-26 09:57:58 —-A—- C:\Windows\system32\wmp.dll
2013-12-26 09:57:57 —-A—- C:\Windows\system32\PresentationHostProxy.dll
2013-12-26 09:57:57 —-A—- C:\Windows\system32\PresentationHost.exe
2013-12-26 09:57:57 —-A—- C:\Windows\system32\esent.dll
2013-12-26 09:57:57 —-A—- C:\Windows\system32\drivers\msiscsi.sys
2013-12-26 09:57:57 —-A—- C:\Windows\system32\drivers\hwpolicy.sys
2013-12-26 09:57:56 —-A—- C:\Windows\system32\schedsvc.dll
2013-12-26 09:57:56 —-A—- C:\Windows\system32\RacEngn.dll
2013-12-26 09:57:55 —-A—- C:\Windows\system32\rdpdd.dll
2013-12-26 09:57:55 —-A—- C:\Windows\system32\ntdll.dll
2013-12-26 09:57:55 —-A—- C:\Windows\system32\AuthFWSnapin.dll
2013-12-26 09:57:54 —-A—- C:\Windows\system32\wevtsvc.dll
2013-12-26 09:57:54 —-A—- C:\Windows\system32\qmgr.dll
2013-12-26 09:57:54 —-A—- C:\Windows\system32\ole32.dll
2013-12-26 09:57:54 —-A—- C:\Windows\system32\ExplorerFrame.dll
2013-12-26 09:57:53 —-A—- C:\Windows\system32\vssapi.dll
2013-12-26 09:57:53 —-A—- C:\Windows\system32\SearchFolder.dll
2013-12-26 09:57:53 —-A—- C:\Windows\system32\d3d9.dll
2013-12-26 09:57:52 —-A—- C:\Windows\system32\taskschd.dll
2013-12-26 09:57:52 —-A—- C:\Windows\system32\spreview.exe
2013-12-26 09:57:52 —-A—- C:\Windows\system32\spinstall.exe
2013-12-26 09:57:52 —-A—- C:\Windows\system32\PushPrinterConnections.exe
2013-12-26 09:57:52 —-A—- C:\Windows\system32\mstsc.exe
2013-12-26 09:57:52 —-A—- C:\Windows\system32\IKEEXT.DLL
2013-12-26 09:57:52 —-A—- C:\Windows\system32\crypt32.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\wer.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\termsrv.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\rpcrt4.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\msxml6.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\gpsvc.dll
2013-12-26 09:57:51 —-A—- C:\Windows\system32\certcli.dll
2013-12-26 09:57:50 —-A—- C:\Windows\system32\wbengine.exe
2013-12-26 09:57:50 —-A—- C:\Windows\system32\scavengeui.dll
2013-12-26 09:57:50 —-A—- C:\Windows\system32\odbc32.dll
2013-12-26 09:57:50 —-A—- C:\Windows\system32\MPSSVC.dll
2013-12-26 09:57:50 —-A—- C:\Windows\system32\dwmcore.dll
2013-12-26 09:57:50 —-A—- C:\Windows\system32\diagperf.dll
2013-12-26 09:57:49 —-A—- C:\Windows\system32\WinSAT.exe
2013-12-26 09:57:49 —-A—- C:\Windows\system32\umrdp.dll
2013-12-26 09:57:49 —-A—- C:\Windows\system32\TSWorkspace.dll
2013-12-26 09:57:49 —-A—- C:\Windows\system32\tsmf.dll
2013-12-26 09:57:49 —-A—- C:\Windows\system32\dot3api.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\winhttp.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\VSSVC.exe
2013-12-26 09:57:48 —-A—- C:\Windows\system32\setupapi.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\rdpshell.exe
2013-12-26 09:57:48 —-A—- C:\Windows\system32\netlogon.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\netcfgx.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\MSVidCtl.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\drivers\nvstor.sys
2013-12-26 09:57:48 —-A—- C:\Windows\system32\dbgeng.dll
2013-12-26 09:57:48 —-A—- C:\Windows\system32\apphelp.dll
2013-12-26 09:57:47 —-A—- C:\Windows\system32\WsmSvc.dll
2013-12-26 09:57:47 —-A—- C:\Windows\system32\WMVDECOD.DLL
2013-12-26 09:57:47 —-A—- C:\Windows\system32\winlogon.exe
2013-12-26 09:57:47 —-A—- C:\Windows\system32\user32.dll
2013-12-26 09:57:47 —-A—- C:\Windows\system32\Query.dll
2013-12-26 09:57:47 —-A—- C:\Windows\system32\gpprefcl.dll
2013-12-26 09:57:47 —-A—- C:\Windows\system32\drivers\srv.sys
2013-12-26 09:57:47 —-A—- C:\Windows\system32\advapi32.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\upnp.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\sppobjs.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\netfxperf.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\msv1_0.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\msdrm.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\mmcndmgr.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\lsm.exe
2013-12-26 09:57:46 —-A—- C:\Windows\system32\imapi2fs.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\DShowRdpFilter.dll
2013-12-26 09:57:46 —-A—- C:\Windows\system32\drivers\srv2.sys
2013-12-26 09:57:46 —-A—- C:\Windows\system32\drivers\nvraid.sys
2013-12-26 09:57:46 —-A—- C:\Windows\system32\drivers\csc.sys
2013-12-26 09:57:46 —-A—- C:\Windows\system32\authui.dll
2013-12-26 09:57:45 —-A—- C:\Windows\system32\usp10.dll
2013-12-26 09:57:45 —-A—- C:\Windows\system32\shlwapi.dll
2013-12-26 09:57:45 —-A—- C:\Windows\system32\SessEnv.dll
2013-12-26 09:57:45 —-A—- C:\Windows\system32\PortableDeviceApi.dll
2013-12-26 09:57:45 —-A—- C:\Windows\system32\mcbuilder.exe
2013-12-26 09:57:44 —-A—- C:\Windows\system32\xpsservices.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\winload.exe
2013-12-26 09:57:44 —-A—- C:\Windows\system32\WebClnt.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\userenv.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\umpnpmgr.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\sppwinob.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\rpcss.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\iphlpsvc.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\drvstore.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\comdlg32.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\certmgr.dll
2013-12-26 09:57:44 —-A—- C:\Windows\system32\audiosrv.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\Wldap32.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\win32spl.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\rdpendp.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\propsys.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\nlasvc.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\mfds.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\framedynos.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\drivers\volsnap.sys
2013-12-26 09:57:43 —-A—- C:\Windows\system32\dnsapi.dll
2013-12-26 09:57:43 —-A—- C:\Windows\system32\cmd.exe
2013-12-26 09:57:43 —-A—- C:\Windows\system32\BFE.DLL
2013-12-26 09:57:42 —-A—- C:\Windows\system32\wmicmiplugin.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\winresume.exe
2013-12-26 09:57:42 —-A—- C:\Windows\system32\werconcpl.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\themeui.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\samsrv.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\rdpclip.exe
2013-12-26 09:57:42 —-A—- C:\Windows\system32\ncsi.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\drivers\netio.sys
2013-12-26 09:57:42 —-A—- C:\Windows\system32\drivers\ndis.sys
2013-12-26 09:57:42 —-A—- C:\Windows\system32\cscsvc.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\azroles.dll
2013-12-26 09:57:42 —-A—- C:\Windows\system32\appmgr.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\taskeng.exe
2013-12-26 09:57:41 —-A—- C:\Windows\system32\taskcomp.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\spp.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\rdpinit.exe
2013-12-26 09:57:41 —-A—- C:\Windows\system32\NaturalLanguage6.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\msxml3.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\mswsock.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\mfreadwrite.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\drivers\storport.sys
2013-12-26 09:57:41 —-A—- C:\Windows\system32\drivers\http.sys
2013-12-26 09:57:41 —-A—- C:\Windows\system32\dhcpcore.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\dbghelp.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\credui.dll
2013-12-26 09:57:41 —-A—- C:\Windows\system32\basecsp.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\WinSATAPI.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\vpnike.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\UIRibbon.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\srvsvc.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\sqlsrv32.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\spoolsv.exe
2013-12-26 09:57:40 —-A—- C:\Windows\system32\QAGENTRT.DLL
2013-12-26 09:57:40 —-A—- C:\Windows\system32\lpksetup.exe
2013-12-26 09:57:40 —-A—- C:\Windows\system32\gdi32.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\fveapi.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\evr.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\drivers\mrxdav.sys
2013-12-26 09:57:40 —-A—- C:\Windows\system32\drivers\amdsata.sys
2013-12-26 09:57:40 —-A—- C:\Windows\system32\drivers\1394ohci.sys
2013-12-26 09:57:40 —-A—- C:\Windows\system32\cryptsvc.dll
2013-12-26 09:57:40 —-A—- C:\Windows\system32\calc.exe
2013-12-26 09:57:39 —-A—- C:\Windows\system32\ws2_32.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\tspubwmi.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\sxs.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\stobject.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\prncache.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\printui.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\netshell.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\inetpp.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\hgprint.dll
2013-12-26 09:57:39 —-A—- C:\Windows\system32\drivers\rdbss.sys
2013-12-26 09:57:39 —-A—- C:\Windows\system32\drivers\msdsm.sys
2013-12-26 09:57:39 —-A—- C:\Windows\system32\drivers\fvevol.sys
2013-12-26 09:57:39 —-A—- C:\Windows\system32\comctl32.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\WSDApi.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\WMVCORE.DLL
2013-12-26 09:57:38 —-A—- C:\Windows\system32\wmpeffects.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\wlangpui.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\vds.exe
2013-12-26 09:57:38 —-A—- C:\Windows\system32\scansetting.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\rpchttp.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\net1.exe
2013-12-26 09:57:38 —-A—- C:\Windows\system32\MMDevAPI.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\FXSSVC.exe
2013-12-26 09:57:38 —-A—- C:\Windows\system32\drivers\vmbus.sys
2013-12-26 09:57:38 —-A—- C:\Windows\system32\drivers\pci.sys
2013-12-26 09:57:38 —-A—- C:\Windows\system32\dps.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\dnsrslvr.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\davclnt.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\ci.dll
2013-12-26 09:57:38 —-A—- C:\Windows\system32\aitagent.exe
2013-12-26 09:57:38 —-A—- C:\Windows\system32\aepdu.dll
2013-12-26 09:57:37 —-A—- C:\Windows\system32\t2embed.dll
2013-12-26 09:57:37 —-A—- C:\Windows\system32\QSHVHOST.DLL
2013-12-26 09:57:37 —-A—- C:\Windows\system32\pnidui.dll
2013-12-26 09:57:37 —-A—- C:\Windows\system32\IPSECSVC.DLL
2013-12-26 09:57:37 —-A—- C:\Windows\system32\drivers\usbport.sys
2013-12-26 09:57:37 —-A—- C:\Windows\system32\consent.exe
2013-12-26 09:57:37 —-A—- C:\Windows\system32\aaclient.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\wscapi.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\wpdshext.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\wisptis.exe
2013-12-26 09:57:36 —-A—- C:\Windows\system32\WinSCard.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\webservices.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\vmicsvc.exe
2013-12-26 09:57:36 —-A—- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\tscfgwmi.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\SyncCenter.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\sdengin2.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\scrptadm.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\pla.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\netdiagfx.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\MSMPEG2ENC.DLL
2013-12-26 09:57:36 —-A—- C:\Windows\system32\msasn1.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\mcmde.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\fde.dll
2013-12-26 09:57:36 —-A—- C:\Windows\system32\drivers\vhdmp.sys
2013-12-26 09:57:36 —-A—- C:\Windows\system32\drivers\termdd.sys
2013-12-26 09:57:36 —-A—- C:\Windows\system32\drivers\sbp2port.sys
2013-12-26 09:57:36 —-A—- C:\Windows\system32\drivers\rdpdr.sys
2013-12-26 09:57:36 —-A—- C:\Windows\system32\drivers\amdxata.sys
2013-12-26 09:57:36 —-A—- C:\Windows\system32\cscobj.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\WUDFSvc.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\WMPEncEn.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\winsta.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\wiaservc.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\shsvcs.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\setupcl.exe
2013-12-26 09:57:35 —-A—- C:\Windows\system32\onex.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\imapi2.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\gameux.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\DXPTaskRingtone.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\dwmredir.dll
2013-12-26 09:57:35 —-A—- C:\Windows\system32\drivers\msahci.sys
2013-12-26 09:57:35 —-A—- C:\Windows\system32\drivers\acpi.sys
2013-12-26 09:57:35 —-A—- C:\Windows\system32\aeinv.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\winmm.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\wcncsvc.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\vaultsvc.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\umpo.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\thumbcache.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\tcpipcfg.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\TabSvc.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\srchadmin.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\schtasks.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\samcli.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\regapi.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\rasmans.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\QAGENT.DLL
2013-12-26 09:57:34 —-A—- C:\Windows\system32\proquota.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\powercpl.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\netiohlp.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\netid.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\Narrator.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\msutb.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\msinfo32.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\msihnd.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\mscorier.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\mimefilt.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\ipsmsnap.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\IPHLPAPI.DLL
2013-12-26 09:57:34 —-A—- C:\Windows\system32\hbaapi.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\halmacpi.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\hal.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\framedyn.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\eapphost.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\DXP.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\winusb.sys
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\volmgr.sys
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\USBSTOR.SYS
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\udfs.sys
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\srvnet.sys
2013-12-26 09:57:34 —-A—- C:\Windows\system32\drivers\netbt.sys
2013-12-26 09:57:34 —-A—- C:\Windows\system32\bootres.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\autofmt.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\autoconv.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\autochk.exe
2013-12-26 09:57:34 —-A—- C:\Windows\system32\AudioSes.dll
2013-12-26 09:57:34 —-A—- C:\Windows\system32\audiodg.exe
2013-12-26 09:57:33 —-A—- C:\Windows\system32\WMNetMgr.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\wlanpref.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\wdc.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\Vault.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\untfs.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\taskmgr.exe
2013-12-26 09:57:33 —-A—- C:\Windows\system32\StructuredQuery.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\sppsvc.exe
2013-12-26 09:57:33 —-A—- C:\Windows\system32\sdclt.exe
2013-12-26 09:57:33 —-A—- C:\Windows\system32\scesrv.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\RpcRtRemote.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\Robocopy.exe
2013-12-26 09:57:33 —-A—- C:\Windows\system32\rastls.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\oleaut32.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\nci.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\ListSvc.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\DxpTaskSync.dll
2013-12-26 09:57:33 —-A—- C:\Windows\system32\drivers\ataport.sys
2013-12-26 09:57:33 —-A—- C:\Windows\system32\actxprxy.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\XpsRasterService.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\wiadefui.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\userinit.exe
2013-12-26 09:57:32 —-A—- C:\Windows\system32\termmgr.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\sppcomapi.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\shsetup.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\sharemediacpl.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\rasppp.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\puiobj.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\mtxclu.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\msdtctm.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\msdri.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\msconfig.exe
2013-12-26 09:57:32 —-A—- C:\Windows\system32\logoncli.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\FirewallControlPanel.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\eudcedit.exe
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\winhv.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\vmstorfl.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\usbvideo.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\usbehci.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\storvsc.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\scsiport.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\mpio.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\mountmgr.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\drivers\iaStorV.sys
2013-12-26 09:57:32 —-A—- C:\Windows\system32\Display.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\DiagCpl.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\cscui.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\cabview.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\biocpl.dll
2013-12-26 09:57:32 —-A—- C:\Windows\system32\atmfd.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\wpccpl.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\wkssvc.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\usercpl.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\themecpl.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\tapisrv.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\SndVolSSO.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\SensorsCpl.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\scecli.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\PhotoScreensaver.scr
2013-12-26 09:57:31 —-A—- C:\Windows\system32\PerfCenterCPL.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\mscories.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\mscms.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\mprddm.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\localsec.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\KMSVC.DLL
2013-12-26 09:57:31 —-A—- C:\Windows\system32\iasacct.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\hgcpl.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\FWPUCLNT.DLL
2013-12-26 09:57:31 —-A—- C:\Windows\system32\fontext.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\drivers\usbhub.sys
2013-12-26 09:57:31 —-A—- C:\Windows\system32\drivers\rdyboost.sys
2013-12-26 09:57:31 —-A—- C:\Windows\system32\drivers\BTHUSB.SYS
2013-12-26 09:57:31 —-A—- C:\Windows\system32\dnscmmc.dll
2013-12-26 09:57:31 —-A—- C:\Windows\system32\bcdsrv.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\zipfldr.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\wpdbusenum.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\wlanui.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\wksprt.exe
2013-12-26 09:57:30 —-A—- C:\Windows\system32\w32tm.exe
2013-12-26 09:57:30 —-A—- C:\Windows\system32\VAN.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\spwizeng.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\SndVol.exe
2013-12-26 09:57:30 —-A—- C:\Windows\system32\qedit.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\prntvpt.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\networkmap.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\netjoin.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\netcenter.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\MSAC3ENC.DLL
2013-12-26 09:57:30 —-A—- C:\Windows\system32\mblctr.exe
2013-12-26 09:57:30 —-A—- C:\Windows\system32\fdeploy.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\drivers\ks.sys
2013-12-26 09:57:30 —-A—- C:\Windows\system32\drivers\afd.sys
2013-12-26 09:57:30 —-A—- C:\Windows\system32\cryptui.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\batmeter.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\azroleui.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\adsldp.dll
2013-12-26 09:57:30 —-A—- C:\Windows\system32\accessibilitycpl.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\wusa.exe
2013-12-26 09:57:29 —-A—- C:\Windows\system32\wpd_ci.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\taskbarcpl.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\syncui.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\sud.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\slui.exe
2013-12-26 09:57:29 —-A—- C:\Windows\system32\sisbkup.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\shwebsvc.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\sdcpl.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\recovery.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\prnfldr.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\photowiz.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\OnLineIDCpl.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\mspbda.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\msieftp.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\MediaMetadataHandler.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\iprtrmgr.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\ifsutil.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\iasrad.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\halacpi.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\ftp.exe
2013-12-26 09:57:29 —-A—- C:\Windows\system32\Faultrep.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\efscore.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\drivers\hidclass.sys
2013-12-26 09:57:29 —-A—- C:\Windows\system32\dot3cfg.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\defaultlocationcpl.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\credssp.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\cfgmgr32.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\autoplay.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\ActionCenterCPL.dll
2013-12-26 09:57:29 —-A—- C:\Windows\system32\ActionCenter.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wvc.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wtsapi32.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wsqmcons.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wmpsrcwp.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wmpmde.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wlanmsm.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wimgapi.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\wavemsp.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\vdsutil.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\tzutil.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\systemcpl.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\sysclass.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\sppnp.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\sethc.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\rtutils.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\riched20.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\recdisc.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\ReAgent.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\rdpsign.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\provsvc.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\OobeFldr.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\ocsetup.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\ntprint.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\ntlanman.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\nshwfp.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\nshipsec.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\nlaapi.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\netplwiz.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\NAPHLPR.DLL
2013-12-26 09:57:28 —-A—- C:\Windows\system32\msftedit.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\migisol.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\isoburn.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\httpapi.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\fvecpl.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\fsquirt.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\fms.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dsuiext.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dskquoui.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\drivers\tssecsrv.sys
2013-12-26 09:57:28 —-A—- C:\Windows\system32\drivers\tdx.sys
2013-12-26 09:57:28 —-A—- C:\Windows\system32\drivers\ndproxy.sys
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dpx.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dot3ui.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dot3svc.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\dfrgui.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\DeviceCenter.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\blackbox.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\bcdedit.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\bcdboot.exe
2013-12-26 09:57:28 —-A—- C:\Windows\system32\AxInstSv.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\AuxiliaryDisplayServices.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\asycfilt.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\appinfo.dll
2013-12-26 09:57:28 —-A—- C:\Windows\system32\activeds.dll
2013-12-26 09:57:27 —-A—- C:\Windows\twain_32.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\wwanconn.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\WPDShServiceObj.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\wmdrmsdk.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\wimserv.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\uxlib.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\twext.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\TSpkg.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\ssText3d.scr
2013-12-26 09:57:27 —-A—- C:\Windows\system32\srrstr.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\SmiEngine.dll
willem

24-01-2014 17:50

2013-12-26 09:57:27 —-A—- C:\Windows\system32\slwga.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\shdocvw.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\setupugc.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\rdpencom.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\qcap.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\qasf.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\PresentationSettings.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\PkgMgr.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\nslookup.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\msvfw32.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\mstask.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\msscp.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\mciavi32.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\imm32.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\iisRtl.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\diskraid.exe
2013-12-26 09:57:27 —-A—- C:\Windows\system32\DevicePairingFolder.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\clusapi.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\certprop.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\audiodev.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\AdmTmpl.dll
2013-12-26 09:57:27 —-A—- C:\Windows\system32\acppage.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\wpdwcn.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\wmpshell.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\wmpdxm.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\wmdrmdev.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\vpnikeapi.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\vdsbas.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\UserAccountControlSettings.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\unimdmat.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\tabcal.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\sqlcese30.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\shacct.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\sdrsvc.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\runonce.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\remotepg.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\rdpd3d.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\raschap.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\QUTIL.DLL
2013-12-26 09:57:26 —-A—- C:\Windows\system32\PnPUnattend.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\perfmon.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\onexui.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\olepro32.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\ocsetapi.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\nltest.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\networkexplorer.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\NAPCRYPT.DLL
2013-12-26 09:57:26 —-A—- C:\Windows\system32\msvidc32.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\msiexec.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\mprapi.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\MFPlay.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\Mcx2Svc.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\lsmproxy.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\logagent.exe
2013-12-26 09:57:26 —-A—- C:\Windows\system32\iTVData.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\iscsium.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\input.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\fontsub.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\eapp3hst.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\dxdiagn.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\drmmgrtn.dll
2013-12-26 09:57:26 —-A—- C:\Windows\system32\drivers\rmcast.sys
2013-12-26 09:57:26 —-A—- C:\Windows\system32\Bubbles.scr
2013-12-26 09:57:26 —-A—- C:\Windows\system32\bitsadmin.exe
2013-12-26 09:57:26 —-A—- C:\Windows\bfsvc.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\wwanprotdim.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\WUDFx.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\WUDFPlatform.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\WPDSp.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\WMVSDECD.DLL
2013-12-26 09:57:25 —-A—- C:\Windows\system32\wmdrmnet.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\WMADMOD.DLL
2013-12-26 09:57:25 —-A—- C:\Windows\system32\wiavideo.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\utildll.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\unattend.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\tsgqec.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\takeown.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\srvcli.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\sqmapi.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\sppinst.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\Ribbons.scr
2013-12-26 09:57:25 —-A—- C:\Windows\system32\RelPost.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\QSVRMGMT.DLL
2013-12-26 09:57:25 —-A—- C:\Windows\system32\qprocess.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\qdv.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\QCLIPROV.DLL
2013-12-26 09:57:25 —-A—- C:\Windows\system32\PortableDeviceSyncProvider.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\PortableDeviceStatus.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\pdh.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\OpcServices.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\olethk32.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\ncryptui.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\Mystify.scr
2013-12-26 09:57:25 —-A—- C:\Windows\system32\msyuv.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\msrle32.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\msnetobj.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\MdSched.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\mapistub.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\mapi32.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\lpremove.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\logman.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\iyuv_32.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\fphc.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\EhStorAPI.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\dot3msm.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\djoin.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\CscMig.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\cscapi.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\cmstp.exe
2013-12-26 09:57:25 —-A—- C:\Windows\system32\cca.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\avifil32.dll
2013-12-26 09:57:25 —-A—- C:\Windows\system32\ActionQueue.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\WUDFHost.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\wsnmp32.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\WMSPDMOD.DLL
2013-12-26 09:57:24 —-A—- C:\Windows\system32\wmpps.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\wkscli.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\wiarpc.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\WerFaultSecure.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\wdiasqmmodule.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\WavDest.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\vfwwdm32.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\unlodctr.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\umb.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\tskill.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\tsdiscon.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\tscon.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\tsbyuv.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\tlscsp.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\syssetup.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\sppuinotify.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\sppc.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\spopk.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\spbcd.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\shimgvw.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\shadow.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\setupcln.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\setbcdlocale.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\secproc_ssp_isv.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\secproc_ssp.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\rwinsta.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\RMActivate_ssp.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\resutils.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\repair-bde.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\relog.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\ReAgentc.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\rastapi.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\qwinsta.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\quser.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\qappsrv.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\PrintIsolationProxy.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\PrintBrmUi.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\prevhost.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\pdhui.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\nrpsrv.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\netutils.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\netiougc.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\netcfg.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\netbtugc.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\mydocs.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\MultiDigiMon.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\MuiUnattend.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\muifontsetup.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\msorcl32.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\msg.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\msdmo.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\mobsync.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\mciqtz32.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\manage-bde.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\luainstall.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\logoff.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\itircl.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\iscsicli.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\iccvid.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\iasrecst.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\HotStartUserAgent.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\FXSTIFF.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\findstr.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\eappgnui.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\usbrpm.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\usbccgp.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\tdi.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\tcpipreg.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\ndisuio.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\CompositeBus.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\drivers\bthport.sys
2013-12-26 09:57:24 —-A—- C:\Windows\system32\dosx.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\dnscacheugc.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\diskpart.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\chgusr.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\chgport.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\chglogon.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\CertPolEng.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\cabinet.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\BdeHdCfg.exe
2013-12-26 09:57:24 —-A—- C:\Windows\system32\basesrv.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\AzSqlExt.dll
2013-12-26 09:57:24 —-A—- C:\Windows\system32\amstream.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\WUDFCoinstaller.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\wshbth.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\wsdchngr.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\vmstorfltres.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\vmicres.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\vmbusres.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\UIRibbonRes.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\TRAPI.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\sscore.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\shgina.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\schedcli.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\riched32.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\reset.exe
2013-12-26 09:57:23 —-A—- C:\Windows\system32\rdprefdrvapi.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\RDPENCDD.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\query.exe
2013-12-26 09:57:23 —-A—- C:\Windows\system32\perfts.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\odbcconf.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\napdsnap.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\LogonUI.exe
2013-12-26 09:57:23 —-A—- C:\Windows\system32\inetmib1.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\icaapi.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\FXSMON.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\elsTrans.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\dsauth.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\drivers\tunnel.sys
2013-12-26 09:57:23 —-A—- C:\Windows\system32\drivers\ndiswan.sys
2013-12-26 09:57:23 —-A—- C:\Windows\system32\drivers\dfsc.sys
2013-12-26 09:57:23 —-A—- C:\Windows\system32\drivers\cdrom.sys
2013-12-26 09:57:23 —-A—- C:\Windows\system32\drivers\acpipmi.sys
2013-12-26 09:57:23 —-A—- C:\Windows\system32\cscdll.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\change.exe
2013-12-26 09:57:23 —-A—- C:\Windows\system32\bitsperf.dll
2013-12-26 09:57:23 —-A—- C:\Windows\system32\atmlib.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\wshirda.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\wmploc.DLL
2013-12-26 09:57:22 —-A—- C:\Windows\system32\vmictimeprovider.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\VmdCoinstall.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\vmbuspipe.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\VmbusCoinstaller.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\spwmp.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\shunimpl.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\RDPREFDD.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\rdpcfgex.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\IcCoinstall.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\dxmasf.dll
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\WUDFRd.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\WUDFPf.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\wanarp.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\VMBusHID.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\USBCAMD2.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\USBCAMD.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\umbus.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\sffp_sd.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\scfilter.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\RDPCDD.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\kbdhid.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\IPMIDrv.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\hidusb.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\HdAudio.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\hdaudbus.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\drivers\appid.sys
2013-12-26 09:57:22 —-A—- C:\Windows\system32\C_ISCII.DLL
2013-12-26 09:57:22 —-A—- C:\Windows\system32\browseui.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\tzres.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\spwizres.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\pifmgr.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\nlsbres.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDUS.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDUGHR1.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDTURME.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDTUQ.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDTUF.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDTAJIK.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDSG.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDSF.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDPO.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDNEPR.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDMON.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDMAORI.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDLT1.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\kbdlk41a.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINTEL.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINTAM.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINORI.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINMAR.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINKAN.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINHIN.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDINBEN.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDGR1.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDGKL.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDGEO.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDCZ1.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDBULG.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDBLR.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\KBDBASH.DLL
2013-12-26 09:57:21 —-A—- C:\Windows\system32\drivers\vms3cap.sys
2013-12-26 09:57:21 —-A—- C:\Windows\system32\dpnaddr.dll
2013-12-26 09:57:21 —-A—- C:\Windows\system32\BlbEvents.dll
2013-12-26 09:57:19 —-A—- C:\Windows\system32\wdscore.dll
2013-12-26 09:57:12 —-A—- C:\Windows\system32\wbemcomn.dll
======List of files/folders modified in the last 1 month======
2014-01-24 17:07:52 —-D—- C:\Windows\Temp
2014-01-24 17:03:31 —-D—- C:\Windows\system32\config
2014-01-24 17:03:03 —-D—- C:\Windows\system32\Tasks
2014-01-24 17:00:19 —-D—- C:\Windows
2014-01-24 17:00:18 —-D—- C:\ProgramData\NVIDIA
2014-01-24 17:00:16 —-RD—- C:\Program Files
2014-01-24 16:58:14 —-D—- C:\Windows\System32
2014-01-24 16:43:09 —-D—- C:\Windows\system32\drivers
2014-01-24 15:59:42 —-D—- C:\Program Files\CCleaner
2014-01-24 15:53:10 —-D—- C:\Windows\addins
2014-01-24 15:24:00 —-D—- C:\Windows\Branding
2014-01-24 14:58:14 —-D—- C:\Windows\Tasks
2014-01-24 14:46:43 —-HD—- C:\ProgramData
2014-01-24 14:44:15 —-D—- C:\Windows\Prefetch
2014-01-24 14:05:45 —-D—- C:\Users\Gebuiker\AppData\Roaming\Skype
2014-01-19 18:08:04 —-D—- C:\ProgramData\Spotnet
2014-01-19 18:08:04 —-D—- C:\Program Files\Spotnet
2014-01-19 18:06:54 —-AD—- C:\ProgramData\TEMP
2014-01-19 15:35:23 —-D—- C:\Windows\system32\catroot2
2014-01-19 14:23:31 —-D—- C:\Program Files\Common Files
2014-01-19 12:54:21 —-D—- C:\Windows\SoftwareDistribution
2014-01-19 12:51:11 —-D—- C:\Windows\debug
2014-01-19 12:51:10 —-D—- C:\Windows\Panther
2014-01-19 12:37:26 —-D—- C:\Users\Gebuiker\AppData\Roaming\uTorrent
2014-01-19 12:33:32 —-SHD—- C:\System Volume Information
2014-01-19 12:33:20 —-SHD—- C:\Windows\Installer
2014-01-19 10:56:14 —-D—- C:\Program Files\IObit
2014-01-19 10:38:55 —-D—- C:\Windows\inf
2014-01-18 10:39:27 —-D—- C:\Windows\winsxs
2014-01-18 10:30:55 —-A—- C:\Windows\ODBC.INI
2014-01-18 10:30:42 —-RSD—- C:\Windows\assembly
2014-01-18 10:30:21 —-RSD—- C:\Windows\Fonts
2014-01-18 10:30:21 —-D—- C:\Program Files\Common Files\microsoft shared
2014-01-18 10:30:20 —-D—- C:\Windows\ShellNew
2014-01-18 10:30:20 —-D—- C:\Program Files\Microsoft Office
2014-01-18 10:30:13 —-D—- C:\Program Files\Microsoft.NET
2014-01-18 10:27:38 —-D—- C:\Windows\system
2014-01-18 10:23:01 —-D—- C:\ProgramData\Microsoft Help
2014-01-18 10:22:46 —-SD—- C:\ProgramData\Microsoft
2014-01-18 10:21:03 —-D—- C:\Program Files\MSBuild
2014-01-18 10:19:55 —-D—- C:\Program Files\Common Files\System
2014-01-18 10:19:50 —-A—- C:\Windows\win.ini
2014-01-17 10:44:44 —-A—- C:\Windows\system32\PerfStringBackup.INI
2014-01-17 09:37:21 —-SHD—- C:\Windows\BitLockerDiscoveryVolumeContents
2014-01-14 17:18:01 —-D—- C:\Users\Gebuiker\AppData\Roaming\IObit
2014-01-14 17:17:47 —-D—- C:\ProgramData\IObit
2014-01-12 10:03:34 —-SD—- C:\Users\Gebuiker\AppData\Roaming\Microsoft
2014-01-11 18:55:58 —-D—- C:\Program Files\TeamViewer
2014-01-11 14:34:13 —-D—- C:\Windows\ModemLogs
2014-01-11 14:34:13 —-D—- C:\Windows\Minidump
2014-01-11 14:34:13 —-D—- C:\Windows\Logs
2014-01-11 14:29:49 —-D—- C:\Users\Gebuiker\AppData\Roaming\BitTorrent
2014-01-10 17:43:32 —-D—- C:\Windows\system32\drivers\UMDF
2014-01-10 16:14:06 —-D—- C:\Windows\system32\DriverStore
2014-01-10 16:14:06 —-D—- C:\Windows\system32\catroot
2014-01-07 20:06:58 —-D—- C:\Program Files\Google
2014-01-07 10:53:50 —-D—- C:\ProgramData\Adobe
2014-01-04 14:52:32 —-D—- C:\Program Files\Comodo
2014-01-03 17:25:52 —-D—- C:\Windows\TAPI
2014-01-03 16:23:29 —-D—- C:\ProgramData\Comodo
2014-01-02 20:03:53 —-D—- C:\ProgramData\MFAData
2014-01-02 20:02:25 —-D—- C:\ProgramData\AVG2014
2014-01-02 20:02:15 —-HD—- C:\$AVG
2014-01-02 19:57:42 —-D—- C:\Windows\system32\wdi
2014-01-02 19:40:44 —-SD—- C:\ProgramData\Shared Space
2014-01-01 15:55:45 —-D—- C:\Windows\ehome
2014-01-01 15:27:26 —-D—- C:\Program Files\Malwarebytes' Anti-Malware
2013-12-31 23:09:38 —-D—- C:\Windows\system32\NDF
2013-12-28 10:52:13 —-D—- C:\Windows\rescache
2013-12-26 12:13:21 —-D—- C:\Windows\Microsoft.NET
2013-12-26 10:37:16 —-D—- C:\Windows\system32\nl-NL
2013-12-26 10:37:16 —-D—- C:\Windows\system32\migration
2013-12-26 10:37:16 —-D—- C:\Windows\PolicyDefinitions
2013-12-26 10:37:15 —-D—- C:\Windows\system32\en-US
2013-12-26 10:37:14 —-D—- C:\Windows\system32\zh-TW
2013-12-26 10:37:14 —-D—- C:\Windows\system32\zh-HK
2013-12-26 10:37:14 —-D—- C:\Windows\system32\zh-CN
2013-12-26 10:37:14 —-D—- C:\Windows\system32\tr-TR
2013-12-26 10:37:14 —-D—- C:\Windows\system32\sv-SE
2013-12-26 10:37:14 —-D—- C:\Windows\system32\pt-PT
2013-12-26 10:37:14 —-D—- C:\Windows\system32\pt-BR
2013-12-26 10:37:14 —-D—- C:\Windows\system32\pl-PL
2013-12-26 10:37:14 —-D—- C:\Windows\system32\ko-KR
2013-12-26 10:37:14 —-D—- C:\Windows\system32\it-IT
2013-12-26 10:37:14 —-D—- C:\Windows\system32\hu-HU
2013-12-26 10:37:14 —-D—- C:\Windows\system32\fr-FR
2013-12-26 10:37:14 —-D—- C:\Windows\system32\fi-FI
2013-12-26 10:37:14 —-D—- C:\Windows\system32\es-ES
2013-12-26 10:37:14 —-D—- C:\Windows\system32\el-GR
2013-12-26 10:37:14 —-D—- C:\Windows\system32\de-DE
2013-12-26 10:37:14 —-D—- C:\Windows\system32\cs-CZ
2013-12-26 10:37:14 —-D—- C:\Program Files\Internet Explorer
2013-12-26 10:37:13 —-D—- C:\Windows\system32\ru-RU
2013-12-26 10:37:13 —-D—- C:\Windows\system32\nb-NO
2013-12-26 10:37:13 —-D—- C:\Windows\system32\ja-JP
2013-12-26 10:37:13 —-D—- C:\Windows\system32\da-DK
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Sidebar
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Portable Devices
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Photo Viewer
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Media Player
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Mail
2013-12-26 10:14:22 —-D—- C:\Program Files\Windows Journal
2013-12-26 10:14:22 —-D—- C:\Program Files\DVD Maker
2013-12-26 10:14:21 —-D—- C:\Windows\servicing
2013-12-26 10:14:21 —-D—- C:\Program Files\Windows Defender
2013-12-26 10:14:18 —-D—- C:\Windows\system32\sysprep
2013-12-26 10:14:18 —-D—- C:\Windows\system32\sppui
2013-12-26 10:14:18 —-D—- C:\Windows\system32\Setup
2013-12-26 10:14:18 —-D—- C:\Windows\system32\oobe
2013-12-26 10:14:18 —-D—- C:\Windows\system32\manifeststore
2013-12-26 10:14:18 —-D—- C:\Windows\system32\AdvancedInstallers
2013-12-26 10:14:16 —-D—- C:\Windows\system32\wbem
2013-12-26 10:14:16 —-D—- C:\Windows\system32\inetsrv
2013-12-26 10:14:16 —-D—- C:\Windows\system32\drivers\nl-NL
2013-12-26 10:14:15 —-D—- C:\Windows\system32\migwiz
2013-12-26 10:14:15 —-D—- C:\Windows\system32\Dism
2013-12-26 10:14:07 —-D—- C:\Windows\AppPatch
2013-12-26 10:14:01 —-D—- C:\Windows\system32\Boot
2013-12-26 10:07:09 —-A—- C:\Windows\system32\msclmd.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys
R3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys
S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys
S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys
S3 netr73;RT73 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr73.sys
S3 NVENETFD;NVIDIA nForce-netwerkcontroller; C:\Windows\system32\DRIVERS\nvm62x32.sys
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys
S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Acronis Scheduler2Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 afcdpsrv;Acronis Nonstop Backup-service ; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe
R2 Brother XP spl Service;BrSplService; C:\Windows\system32\brsvc01a.exe
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
—————–EOF—————–
Ben

24-01-2014 18:12

Hallo,
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Download Zoek.exe naar het bureaublad.
* Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
* Dubbelklik vervolgens op Zoek.exe om de tool te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
emptyclsid;
torpigcheck;
emptyfolderscheck;delete
{0cc09160-108c-4759-bab1-5c12c216e005};c
{ae07101b-46d4-4a98-af68-0333ea26e113};c
C:\Windows\tasks\System Speedup_DEFAULT.job;f
C:\Windows\tasks\System Speedup_UPDATES.job;f
C:\Windows\tasks\_DEFAULT.job;f
C:\Windows\tasks\_UPDATES.job;f
C:\Users\Gebuiker\AppData\Roaming\System Speedup;fs
C:\ProgramData\Allmyapps;fs
C:\Program Files\Advanced Disk Recovery;fs
C:\Program Files\Systweak Support Dock;fs
C:\Users\Gebuiker\AppData\Roaming\systweak;fs
C:\Program Files\System Speedup;fs
chromelook;
C:\Program Files\iRobinHood;fs
C:\ProgramData\IePluginService;fs
C:\Program Files\SupTab;fs
C:\ProgramData\WPM;fs
standardsearch;
filesrcm;
autoclean;
startupall;
* Klik nu op de knop "Run script".
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
* Post het geopende logje in het volgende bericht.
willem

24-01-2014 18:36

hallo ben, wilde niet lukken met dat zoek.exe. beveiligings scan geeft aan dit schadelijk kan zijn voor me pc… heb je nog meer tips voor me… gr willem
Ben

24-01-2014 18:40

willem Schreef:
——————————————————-
> hallo ben, wilde niet lukken met dat zoek.exe.
> beveiligings scan geeft aan dit schadelijk kan
> zijn voor me pc… heb je nog meer tips voor me…
> gr willem
Daarom staat er ook:
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Zoek.exe en infecties gebruiken de zelfde intenties, daarom word zoek.exe als gevaarlijk.
Maar neem van mij aan dat het geen kwaad kan anders gebruik ik het niet (tu)
Dus je kan mijn handleiding gewoon uitvoeren.
willem

24-01-2014 19:40

hallo ben, nou hierbij dat loggie dan, hopelijk kan je hier wat mee en heb ik het goed gedaan, hoor het wel…
Zoek.exe v5.0.0.0 Updated 22-Januari-2014
Tool run by Gebuiker on vr 24-01-2014 at 19:19:40,98.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Gebuiker\Downloads\zoek.exe
===== Runcheck 19:22:51,37 =====
— Create Environment Variables 19:22:52,31
— Checking Input 19:23:11,94
— AU AppData Check 19:23:17,13
— Remove From Windows Installer 19:23:26,70
— StartMenuInternet Check 19:24:53,09
— IE Startpage Check 19:25:32,15
— Program Files DB Check 19:27:25,89
— C:\Users\Default\AppData\Roaming DB Check 19:28:28,64
— C:\Users\Default User\AppData\Roaming DB Check 19:28:28,64
— C:\Users\Gebuiker\AppData\Roaming DB Check 19:28:28,64
— C:\Users\UpdatusUser\AppData\Roaming DB Check 19:28:28,64
— C:\Windows\system32\config\systemprofile\AppData\Roaming DB Check 19:28:28,64
— C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 19:28:28,64
— C:\Windows\serviceprofiles\Localservice\AppData\Roaming DB Check 19:28:28,64
— C:\Users\Gebuiker DB Check 19:31:00,15
— C:\ProgramData DB Check 19:31:22,18
— C:\Users\Default\AppData\Local DB Check 19:31:23,28
— C:\Users\Default User\AppData\Local DB Check 19:31:23,28
— C:\Users\Gebuiker\AppData\Local DB Check 19:31:23,28
— C:\Users\UpdatusUser\AppData\Local DB Check 19:31:23,28
— C:\Windows\system32\config\systemprofile\AppData\Local DB Check 19:31:23,28
— C:\Windows\serviceprofiles\networkservice\AppData\Local DB Check 19:31:23,28
— C:\Windows\serviceprofiles\Localservice\AppData\Local DB Check 19:31:23,28
— C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 19:33:08,00
— C:\Users\Gebuiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 19:33:18,40
— Tasks DB Check 19:33:24,11
— Downloads DB Check 19:33:28,58
— C:\Users\Gebuiker\AppData\LocalLow DB Check 19:33:34,63
— C:\Users\UpdatusUser\AppData\LocalLow DB Check 19:33:34,63
— C:\Windows\system32\config\systemprofile\AppData\LocalLow DB Check 19:33:34,63
— C:\Windows\serviceprofiles\networkservice\AppData\LocalLow DB Check 19:33:34,63
— Tasks2 DB Check 19:34:35,89
— Documents DB Check 19:34:58,84
— C:\Users\Public\Desktop DB Check 19:35:04,34
— C:\Users\Gebuiker\Desktop DB Check 19:35:07,96
— Services DB Check 19:35:20,63
— FF prefs.js DB Check 19:35:46,74
— Del by CLSID 19:35:48,67
— Delete Services 19:37:52,97
— Registry Fix 19:37:57,40
— Delete files\folders 19:37:57,42
— Create Backups 19:37:57,64
— Recently Created 19:38:30,52
Ben

24-01-2014 19:43

Hallo,
Je bent goed bezig maar je heb de scanner niet geheel laten uit scannen, dus scan opnieuw (als hij al is gestopt)
Het kan wel 45 min duren dus neem de tijd er staat genoeg malware op je pc.
willem

24-01-2014 19:52

ja oke ben ahah ja dacht al das snel, gaat nog een keer doen…. maar heb je een idee waar ik straks beste mee kan scannen dan, heb mailware bytes gedaan en hitman pro….. hoor het wel fijne avond nog….
Ben

24-01-2014 19:54

Hallo,
Stap voor stap willem (tu)
willem

25-01-2014 09:15

hallo ben, nou het is wel weg dat proggie, wat doet dat proggie zoek.exe dan, wat zijn de goeie mailware scanners hoor het wel van je.alvast bedankt voor je medewerking hier bij, ben er blij mee…..
gr en goed weekend…..
willem

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

tweede gedeeldte van de logfile

willem

willem

Ben

willem

Ben

willem

Ben

willem

Ben

willem