Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2014-10-05 01:42:11
Microsoft Windows 8.1
System drive C: has 261 GB (89%) free of 293 GB
Total RAM: 3683 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 01:42:16, on 5-10-2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\trend micro\admin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://blank/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O4 - HKLM\..\Run: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7960 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
dashost.exe {e330e8ac-98fe-4c37-9c89b8671be1c05e}
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Teco\TecoService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
taskhostex.exe
"C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe20_ Global\UsGthrCtrlFltPipeMssGthrPipe20 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
taskeng.exe {C673ED15-E5B0-4891-BB9C-3A7086D829C7}
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\admin\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-09-25 218776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-09-25 2334416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-11-29 13261456]
"SRS Premium Sound HD"=C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2012-10-22 2172816]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2012-11-01 2565544]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2012-08-14 169896]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2012-07-11 356776]
"TODDMain"=C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [2012-08-05 213136]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-20 2774256]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TPUReg"=C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [2012-12-05 7152640]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-10-05 01:42:11 ----D---- C:\Program Files\trend micro
2014-10-01 17:49:52 ----SHD---- C:\Config.Msi
2014-09-29 13:39:49 ----D---- C:\ProgramData\Trusteer
2014-09-25 20:36:12 ----D---- C:\Users\admin\AppData\Roaming\Windows Live Writer
2014-09-25 20:32:39 ----D---- C:\WINDOWS\nl
2014-09-25 20:30:32 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-09-25 20:28:16 ----D---- C:\Program Files (x86)\Windows Live
2014-09-25 20:27:46 ----D---- C:\WINDOWS\PCHEALTH
2014-09-25 20:26:32 ----D---- C:\Program Files\Windows Live
2014-09-25 20:26:17 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-09-25 20:26:17 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-09-25 20:26:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-09-25 20:26:15 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-09-25 20:26:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-09-25 20:26:01 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-09-15 06:44:33 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-09-15 06:44:33 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-09-15 06:44:32 ----A---- C:\WINDOWS\explorer.exe
2014-09-15 06:44:30 ----A---- C:\WINDOWS\system32\twinui.dll
2014-09-15 06:44:25 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-09-15 06:44:22 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-09-15 06:44:15 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-09-15 06:44:14 ----A---- C:\WINDOWS\system32\tcpmon.dll
2014-09-15 06:43:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-09-15 06:43:05 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-09-15 06:43:04 ----A---- C:\WINDOWS\system32\authui.dll
2014-09-15 06:42:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-09-15 06:42:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-09-15 06:42:47 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-09-15 06:42:46 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-09-15 06:42:43 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-15 06:42:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-09-15 06:42:41 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-09-15 06:42:40 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-09-15 06:42:38 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-09-15 06:42:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-09-15 06:42:31 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-09-15 06:42:30 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-09-15 06:42:29 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-09-15 06:42:29 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-09-15 06:42:27 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-09-15 06:42:26 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-09-15 06:42:23 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-09-15 06:42:21 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\system32\localspl.dll
2014-09-15 06:42:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-09-15 06:42:15 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-09-15 06:42:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-09-15 06:42:12 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-09-15 06:42:11 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-09-15 06:42:10 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\SRH.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\printui.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-09-15 06:42:08 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-09-15 06:42:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-09-15 06:42:07 ----A---- C:\WINDOWS\system32\mispace.dll
2014-09-15 06:42:07 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-09-15 06:42:06 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2014-09-15 06:42:06 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-09-15 06:42:05 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-09-15 06:42:05 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-09-15 06:42:04 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-09-15 06:42:04 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\system32\aclui.dll
2014-09-15 06:42:02 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-09-15 06:42:02 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2014-09-15 06:42:02 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-09-15 06:42:00 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-09-15 06:41:59 ----A---- C:\WINDOWS\system32\spoolsv.exe
2014-09-15 06:41:59 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-09-15 06:41:58 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-09-15 06:41:58 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-09-15 06:41:57 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-09-15 06:41:57 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-09-15 06:41:57 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-09-15 06:41:56 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-09-15 06:41:56 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-09-15 06:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-09-15 06:41:56 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-09-15 06:41:54 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2014-09-15 06:41:54 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-09-15 06:41:53 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-09-15 06:41:53 ----A---- C:\WINDOWS\system32\mftranscode.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\usbmon.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-09-15 06:41:51 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-09-15 06:41:51 ----A---- C:\WINDOWS\system32\winload.exe
2014-09-15 06:41:51 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\wisp.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-09-15 06:41:49 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-09-15 06:41:49 ----A---- C:\WINDOWS\system32\winresume.exe
2014-09-15 06:41:48 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-09-15 06:41:48 ----A---- C:\WINDOWS\system32\wsecedit.dll
2014-09-15 06:41:48 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-09-15 06:41:47 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\user32.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-09-15 06:41:46 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\winmmbase.dll
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-09-15 06:41:45 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\system32\conhost.exe
2014-09-15 06:41:43 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-09-15 06:41:43 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-09-15 06:41:43 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\system32\VAN.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\Display.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\AppxSip.dll
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\osk.exe
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-09-15 06:41:39 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\mfps.dll
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-09-15 06:41:37 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-09-15 06:41:37 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\winmm.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2014-09-15 06:41:34 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2014-09-15 06:41:34 ----A---- C:\WINDOWS\system32\prnntfy.dll
2014-09-15 06:41:34 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-09-15 06:41:33 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\system32\gpedit.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\system32\puiapi.dll
2014-09-15 06:41:30 ----A---- C:\WINDOWS\system32\iasnap.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-09-15 06:41:28 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-09-15 06:41:28 ----A---- C:\WINDOWS\system32\wups.dll
2014-09-15 06:41:27 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-09-15 06:41:27 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\stobject.dll
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\system32\dab.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-09-15 06:41:23 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-09-15 06:41:23 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2014-09-15 06:41:23 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-09-15 06:41:22 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-09-15 06:41:22 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-09-15 06:41:21 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-09-15 06:41:21 ----A---- C:\WINDOWS\system32\wups2.dll
2014-09-15 06:41:20 ----A---- C:\WINDOWS\system32\wshbth.dll
2014-09-15 06:41:20 ----A---- C:\WINDOWS\system32\schannel.dll
2014-09-15 06:41:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2014-09-15 06:41:19 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\browser.dll
2014-09-15 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2014-09-15 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-09-15 06:41:14 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2014-09-15 06:41:14 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-09-15 06:41:14 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-09-15 06:41:13 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-09-15 06:41:13 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2014-09-15 06:41:12 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-09-15 06:41:11 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-09-15 06:41:11 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2014-09-15 06:41:11 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2014-09-15 06:41:10 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-09-15 06:41:10 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2014-09-15 06:41:10 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2014-09-15 06:41:09 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2014-09-15 06:41:06 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-09-15 06:41:06 ----A---- C:\WINDOWS\system32\certcli.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-09-15 06:41:04 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\compstui.dll
2014-09-15 06:41:03 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2014-09-15 06:41:02 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-09-15 06:41:02 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-09-15 06:41:01 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:40:59 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-09-15 06:40:59 ----A---- C:\WINDOWS\system32\KBDTT102.DLL
2014-09-15 06:40:58 ----A---- C:\WINDOWS\SYSWOW64\KBDTT102.DLL
2014-09-15 06:29:06 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-09-11 18:07:27 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-09-11 18:07:27 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-09-11 18:07:23 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-09-11 18:07:22 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-09-11 18:07:21 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-11 18:07:20 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-09-11 18:07:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-09-11 18:07:19 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-09-11 18:07:14 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-09-11 18:07:14 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-09-11 18:07:13 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-09-11 18:07:13 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-09-11 18:07:09 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-09-11 18:07:09 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-09-11 18:07:06 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-09-11 18:07:03 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-09-11 18:06:57 ----A---- C:\WINDOWS\system32\wininet.dll
2014-09-11 18:06:56 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-09-11 18:06:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-09-11 18:06:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-09-11 18:06:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-09-11 18:06:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-09-11 18:06:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-09-11 18:06:49 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-09-11 18:06:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-09-11 18:06:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-09-11 18:06:45 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-09-11 18:05:01 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-09-11 18:04:16 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-09-11 18:04:16 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-09-11 18:04:15 ----A---- C:\WINDOWS\system32\aepic.dll
2014-09-11 18:03:16 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2014-09-11 18:03:15 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
======List of files/folders modified in the last 1 month======
2014-10-05 01:42:15 ----D---- C:\WINDOWS\Prefetch
2014-10-05 01:42:11 ----RD---- C:\Program Files
2014-10-05 01:39:27 ----D---- C:\WINDOWS\Temp
2014-10-05 01:39:27 ----D---- C:\WINDOWS\SoftwareDistribution
2014-10-05 01:39:27 ----D---- C:\WINDOWS\debug
2014-10-05 01:39:27 ----D---- C:\Windows
2014-10-05 01:00:00 ----D---- C:\WINDOWS\system32\sru
2014-10-04 12:31:25 ----D---- C:\WINDOWS\system32\config
2014-10-04 12:28:12 ----D---- C:\WINDOWS\WinSxS
2014-10-04 12:25:46 ----D---- C:\WINDOWS\Microsoft.NET
2014-10-04 09:20:08 ----RD---- C:\WINDOWS\System32
2014-10-04 09:20:08 ----D---- C:\WINDOWS\Inf
2014-10-04 09:20:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-03 11:03:33 ----D---- C:\WINDOWS\AppReadiness
2014-10-03 08:47:00 ----D---- C:\Program Files (x86)
2014-10-03 08:46:59 ----D---- C:\Program Files (x86)\Google
2014-10-01 18:08:54 ----D---- C:\WINDOWS\system32\NDF
2014-10-01 17:50:39 ----SHD---- C:\WINDOWS\Installer
2014-10-01 17:50:30 ----D---- C:\WINDOWS\SysWOW64
2014-10-01 17:49:31 ----SHD---- C:\System Volume Information
2014-10-01 11:24:06 ----D---- C:\Program Files\CCleaner
2014-09-30 20:13:22 ----D---- C:\WINDOWS\system32\drivers
2014-09-30 17:46:53 ----HD---- C:\Program Files\WindowsApps
2014-09-30 17:27:03 ----HD---- C:\ProgramData
2014-09-29 15:50:25 ----D---- C:\WINDOWS\LiveKernelReports
2014-09-27 17:21:55 ----RSD---- C:\WINDOWS\assembly
2014-09-25 20:39:28 ----D---- C:\WINDOWS\Logs
2014-09-25 20:33:50 ----SD---- C:\Users\admin\AppData\Roaming\Microsoft
2014-09-25 20:27:49 ----D---- C:\Program Files\Common Files\microsoft shared
2014-09-25 20:25:51 ----SD---- C:\ProgramData\Microsoft
2014-09-25 19:55:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-09-25 09:21:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-09-25 09:20:23 ----D---- C:\Program Files\Microsoft Office 15
2014-09-24 09:02:31 ----D---- C:\WINDOWS\rescache
2014-09-24 08:53:15 ----D---- C:\WINDOWS\CbsTemp
2014-09-24 08:52:29 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2014-09-24 08:52:29 ----D---- C:\WINDOWS\system32\nl-NL
2014-09-22 08:42:39 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-09-18 21:35:30 ----D---- C:\WINDOWS\system32\DriverStore
2014-09-18 07:56:10 ----RD---- C:\WINDOWS\ToastData
2014-09-18 07:55:51 ----D---- C:\Program Files\Windows Journal
2014-09-18 07:55:50 ----D---- C:\WINDOWS\WinStore
2014-09-18 07:55:50 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-09-18 07:55:50 ----D---- C:\WINDOWS\SYSWOW64\setup
2014-09-18 07:55:45 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-09-18 07:55:45 ----D---- C:\WINDOWS\system32\drivers\nl-NL
2014-09-18 07:55:45 ----D---- C:\WINDOWS\system32\Boot
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\wbem
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\setup
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\oobe
2014-09-18 07:55:37 ----RSD---- C:\WINDOWS\Fonts
2014-09-18 07:55:35 ----D---- C:\WINDOWS\apppatch
2014-09-18 07:55:32 ----D---- C:\WINDOWS\SYSWOW64\InputMethod
2014-09-18 07:55:31 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-09-18 07:55:31 ----D---- C:\WINDOWS\system32\migration
2014-09-15 06:27:13 ----D---- C:\WINDOWS\system32\catroot2
2014-09-13 08:14:35 ----D---- C:\WINDOWS\system32\catroot
2014-09-12 22:59:25 ----SD---- C:\WINDOWS\system32\CompatTel
2014-09-12 22:59:16 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-12 22:59:15 ----D---- C:\Program Files\Internet Explorer
2014-09-12 22:58:31 ----D---- C:\WINDOWS\system32\MRT
2014-09-12 22:52:28 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-11 18:08:16 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-09-11 18:08:15 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-09-11 18:08:01 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-11 18:08:01 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-09-11 18:08:00 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-09-11 18:08:00 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-11 18:07:59 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-09-11 18:07:58 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-09-11 18:07:57 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-09-11 18:07:57 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-09-11 18:07:56 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-09-11 18:07:56 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-09-11 18:07:51 ----A---- C:\WINDOWS\system32\msrating.dll
2014-09-11 18:07:50 ----A---- C:\WINDOWS\system32\jsproxy.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 tos_sps64;@oem10.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\WINDOWS\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem35.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2012-07-26 32832]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-03-13 157016]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-09-11 14344]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\WINDOWS\system32\DRIVERS\TVALZFL.sys [2012-07-22 16768]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-12-05 3242896]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 RtkBtFilter2;@oem18.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Module; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2012-07-11 24208]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 RTWlanE;@oem33.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-10-21 2946264]
R3 SynTP;@oem31.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-08-20 524016]
R3 TDCMDPST;TOSHIBA Writing Engine Filter Driver; C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem34.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem16.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\WINDOWS\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 RapportKE64;RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys []
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2013-09-20 95984]
S3 RSUSBSTOR;@oem5.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2012-06-13 252048]
S3 RtkBtFilter;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2012-07-11 24208]
S3 ssudmdm;@oem11.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem7.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-08-12 2428088]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-13 156672]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-12-05 201872]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-08-25 291240]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-07-27 53384]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-07-28 458152]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2010-01-25 245760]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02 116648]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-01-04 116240]
-----------------EOF-----------------
---------- Bericht toegevoegd op 01:47 ---------- Vorige bericht was op 01:43 ----------
info.txt logfile of random's system information tool 1.09 2013-10-11 14:35:33
======Uninstall list======
-->"C:\Program Files (x86)\InstallShield Installation Information\{11D530CE-F649-45FA-84C0-5CD47F46CE2D}\setup.exe" -runfromtemp -l0x0409 -ADDREMOVE -removeonly
-->"C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - main\Uninstall.exe"
Aloha TriPeaks-->"C:\Program Files (x86)\WildGames\Aloha TriPeaks\uninstall\uninstaller.exe"
AMD Accelerated Video Transcoding-->MsiExec.exe /X{8E7CCFB3-4102-6A32-8C4F-202B7AB7C8E3}
AMD APP SDK Runtime-->MsiExec.exe /I{503F672D-6C84-448A-8F8F-4BC35AC83441}
AMD Catalyst Install Manager-->msiexec /q/x{8DE47BBC-F471-6960-2FAB-13D8983397C5} REBOOT=ReallySuppress
AVG 2014-->"C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe" /AppMode=SETUP /Uninstall
AVG 2014-->MsiExec.exe /I{C28192C9-A8B9-40F1-A310-C2B2754D3DD0}
AVG 2014-->MsiExec.exe /I{DF1A8490-3CD2-4878-92BE-F746D7CCACC1}
AVG Nation toolbar-->C:\Program Files (x86)\AVG Nation toolbar\UNINSTALL.exe /PROMPT /UNINSTALL
Bejeweled 3-->"C:\Program Files (x86)\WildGames\Bejeweled 3\uninstall\uninstaller.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{24D38277-CE6E-4E12-A2EE-F46832A4FA2F}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\WildGames\Chuzzle Deluxe\uninstall\uninstaller.exe"
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Empress of the Deep - The Darkest Secret-->"C:\Program Files (x86)\WildGames\Empress of the Deep - The Darkest Secret\uninstall\uninstaller.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\setup.exe" --uninstall --multi-install --chrome --system-level --verbose-logging
Intel AppUp(R) center-->C:\Program Files (x86)\Intel\IntelAppStore\run_uninstaller.exe
Island Tribe-->"C:\Program Files (x86)\WildGames\Island Tribe\uninstall\uninstaller.exe"
Jewel Quest Solitaire 2-->"C:\Program Files (x86)\WildGames\Jewel Quest Solitaire 2\uninstall\uninstaller.exe"
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
Magic Academy-->"C:\Program Files (x86)\WildGames\Magic Academy\uninstall\uninstaller.exe"
Malwarebytes Anti-Malware versie 1.75.0.1300-->"C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
Peggle Nights-->"C:\Program Files (x86)\WildGames\Peggle Nights\uninstall\uninstaller.exe"
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\WildGames\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
Polar Bowler-->"C:\Program Files (x86)\WildGames\Polar Bowler\uninstall\uninstaller.exe"
Premium Sound HD-->MsiExec.exe /X{000A208E-1050-4181-AC37-E13DA9254B73}
Realtek Bluetooth Filter Driver Package-->"C:\Program Files (x86)\InstallShield Installation Information\{0CC0980D-811D-43B8-A455-8D150EB5BC0D}\setup.exe" -runfromtemp -l0x0409 -removeonly
Realtek Bluetooth Filter Driver Package-->MsiExec.exe /X{0CC0980D-811D-43B8-A455-8D150EB5BC0D}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0409 -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Realtek WLAN Driver-->C:\Program Files (x86)\InstallShield Installation Information\{9D3D8C60-A55F-4fed-B2B9-173001290E16}\Install.exe -uninst -l0x9
Shared C Run-time for x64-->MsiExec.exe /I{EF79C448-6946-4D71-8134-03407888C054}
Spotify-->"C:\Program Files (x86)\Spotify\Spotify.exe" /uninstall
Synaptics Pointing Device Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TOSHIBA Desktop Assist-->MsiExec.exe /X{95CCACF0-010D-45F0-82BF-858643D8BC02}
TOSHIBA eco Utility-->MsiExec.exe /X{5944B9D4-3C2A-48DE-931E-26B31714A2F7}
TOSHIBA Function Key-->MsiExec.exe /X{16562A90-71BC-41A0-B890-D91B0C267120}
TOSHIBA Manuals-->"C:\Program Files (x86)\InstallShield Installation Information\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}\setup.exe" -runfromtemp -l0x0409 -removeonly
TOSHIBA Password Utility-->C:\Program Files (x86)\InstallShield Installation Information\{78931270-BC9E-441A-A52B-73ECD4ACFAB5}\setup.exe -runfromtemp -l0x0409
TOSHIBA PC Health Monitor-->MsiExec.exe /X{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}
TOSHIBA Recovery Media Creator-->C:\Program Files (x86)\InstallShield Installation Information\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}\Setup.exe -runfromtemp -removeonly
TOSHIBA Service Station-->MsiExec.exe /X{B8C8422F-01F1-4791-B084-047AAFF9BFCC}
TOSHIBA System Driver-->MsiExec.exe /X{1E6A96A1-2BAB-43EF-8087-30437593C66C}
TOSHIBA System Settings-->MsiExec.exe /X{05A55927-DB9B-4E26-BA44-828EBFF829F0}
Toshiba TEMPRO-->MsiExec.exe /X{F76F5214-83A8-4030-80C9-1EF57391D72A}
TOSHIBA VIDEO PLAYER-->MsiExec.exe /X{FF07604E-C860-40E9-A230-E37FA41F103A}
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
Virtual Villagers 4 - The Tree of Life-->"C:\Program Files (x86)\WildGames\Virtual Villagers 4 - The Tree of Life\uninstall\uninstaller.exe"
Visual Studio 2012 x64 Redistributables-->MsiExec.exe /I{8C775E70-A791-4DA8-BCC3-6AB7136F4484}
Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
WildTangent Games App (Toshiba Games)-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\toshiba\Uninstall.exe"
WildTangent Games-->"C:\Program Files (x86)\WildGames\Uninstall.exe"
Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth (07/11/2012 2.3.13.3)-->C:\PROGRA~1\DIFX\F4092DA208C2C970\DPInst.exe /u C:\windows\system32\DRVSTORE\rtkfilter_693EA7D500E611161F3712DFBC862505D5129E36\rtkfilter.inf
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{2A07C35B-8384-4DA4-9A95-442B6C89A073}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Language Selector-->MsiExec.exe /I{027E5FAB-1476-4C59-AAB4-32EF28520399}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{D588365A-AE39-4F27-BDAE-B4E72C8E900C}
Windows Live MIME IFilter-->MsiExec.exe /I{DA54F80E-261C-41A2-A855-549A144F2F59}
Windows Live Photo Common-->MsiExec.exe /X{9BD262D0-B788-4546-A0A5-F4F56EC3834B}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{14B441B7-774D-4170-98EA-A13667AE6218}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
======Hosts File======
::1 localhost
======System event log======
Computer Name: c870d
Event Code: 26
Message: Toepassingspop-up: explorer.exe - Systeemwaarschuwing : Unknown Hard Error
Record Number: 3186
Source Name: Application Popup
Time Written: 20131008073540.307938-000
Event Type: Informatie
User: NT AUTHORITY\SYSTEM
Computer Name: c870d
Event Code: 104
Message: Logboekbestand Windows PowerShell is gewist.
Record Number: 3185
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.815369-000
Event Type: Informatie
User: c870d\admin
Computer Name: c870d
Event Code: 104
Message: Logboekbestand Key Management Service is gewist.
Record Number: 3184
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.472170-000
Event Type: Informatie
User: c870d\admin
Computer Name: c870d
Event Code: 104
Message: Logboekbestand Internet Explorer is gewist.
Record Number: 3183
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.331653-000
Event Type: Informatie
User: c870d\admin
Computer Name: c870d
Event Code: 104
Message: Logboekbestand System is gewist.
Record Number: 3182
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072024.972818-000
Event Type: Informatie
User: c870d\admin
=====Application event log=====
Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3896
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008074615.000000-000
Event Type: Informatie
User:
Computer Name: c870d
Event Code: 103
Message: msiexec (4536) Instance: De database-engine heeft de sessie (0) stopgezet.
Dirty Shutdown: 0
Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.015, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.
Record Number: 3895
Source Name: ESENT
Time Written: 20131008074157.000000-000
Event Type: Informatie
User:
Computer Name: c870d
Event Code: 327
Message: msiexec (4536) Instance: De database-engine heeft een database (1, C:\ProgramData\Microsoft\Windows\AppRepository\PackageRepository.edb) uit de bijlage gehaald. (Tijd=0 seconden)
Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.016, [7] 0.000, [8] 0.000, [9] 0.015, [10] 0.032, [11] 0.015, [12] 0.016.
Revived Cache: 0
Record Number: 3894
Source Name: ESENT
Time Written: 20131008074157.000000-000
Event Type: Informatie
User:
Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3893
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008073542.000000-000
Event Type: Informatie
User:
Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3892
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008073538.000000-000
Event Type: Informatie
User:
=====Security event log=====
Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD
Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Gast
Domein doelaccount: c870d
Record Number: 8429
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.591098-000
Event Type: Controle geslaagd
User:
Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD
Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Administrator
Domein doelaccount: c870d
Record Number: 8428
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.581095-000
Event Type: Controle geslaagd
User:
Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD
Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Gast
Domein doelaccount: c870d
Record Number: 8427
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.538096-000
Event Type: Controle geslaagd
User:
Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD
Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Administrator
Domein doelaccount: c870d
Record Number: 8426
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.536093-000
Event Type: Controle geslaagd
User:
Computer Name: c870d
Event Code: 1102
Message: Het controlelogboek is gewist.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Domeinnaam: c870d
Aanmeldings-id: 0x19A80
Record Number: 8425
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072024.536042-000
Event Type: Controle geslaagd
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=20
"PROCESSOR_IDENTIFIER"=AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=0200
"AMDAPPSDKROOT"=C:\Program Files (x86)\AMD APP\
-----------------EOF-----------------