aanmelden intenet

hallo
regelmatig krijg ik de volgende melding:Foutcode: DNS_PROBE_FINISHED_NO_INTERNET
kom dus niet op internet
na pobleemoplossing kan ik er gewoon weer op
is erg irritant, wat kan ik hier aan doen?

reset je modem/router eens ...

heb ik al gedaan

maak je gebruik van een draadloze verbinding ?
indien zo : doe je het volgende ..

1. Ga in Apparaatbeheer naar de netwerkadapters.
2. Klik met de rechtermuisknop op de draadloze driver, en selecteer "Verwijderen".
3. Herstart de computer. ..nadat deze herstart is zal er een nieuw stuurprogramma opgehaald en geinstalleerd worden .
**indien dit geen oplossing bied dan dien je via de Pc-Instellingen de windows zich te laten herinstalleren met behoud van bestanden

Download MiniToolBox en plaats dit tool op jouw bureaublad.

Farbar MiniToolBox gebruiken:

• Sluit nu eerst alle nog openstaande programmavensters!
  • Windows 2000 en Windows XP: start "MiniToolBox.exe" via dubbelklikken.
  • Windows Vista, Windows 7 en Windows 8: start "MiniToolBox.exe" via rechtsklik Als Administrator uitvoeren.

Vink de volgende onderdelen aan:

• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List content of Hosts
• List IP configuration
• List Winsock Entries
• List last 10 Event Viewer log
  • Klik nu op de knop "Go".
  • Aansluitend wordt een log aangemaakt (Result.txt) in de zelfde map waar "MiniToolBox.exe" in zit.
  • Kopieer en plak de inhoud van het log in jouw volgende bericht.

Notabene: indien "Reset FF Proxy Settings" gekozen is, dienen de gebruikte webbrowsers afgesloten te zijn!

MiniToolBox by Farbar Version: 21-07-2014
Ran by admin (administrator) on 02-10-2014 at 10:30:57
Running from "C:\Users\admin\Downloads"
Microsoft Windows 8.1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8723AE Wireless LAN 802.11n PCI-E NIC = Wi-Fi (Connected)
Realtek PCIe FE Family-controller = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set interface interface="LAN-verbinding* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth-netwerkverbinding" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-verbinding* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : c870d
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter LAN-verbinding* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
Physical Address. . . . . . . . . : 24-FD-52-29-AF-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8723AE Wireless LAN 802.11n PCI-E NIC
Physical Address. . . . . . . . . : 24-FD-52-29-AF-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::a824:4fb4:343:8659%4(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.178.11(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : donderdag 2 oktober 2014 06:55:42
Lease Expires . . . . . . . . . . : donderdag 2 oktober 2014 11:25:48
Default Gateway . . . . . . . . . : 192.168.178.1
DHCP Server . . . . . . . . . . . : 192.168.178.1
DHCPv6 IAID . . . . . . . . . . . : 371522898
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-1F-79-A0-7C-05-07-78-8F-B8
DNS Servers . . . . . . . . . . . : 212.54.44.54
212.54.40.25
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family-controller
Physical Address. . . . . . . . . : 7C-05-07-78-8F-B8
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Server: dns.mnd.iss.as9143.net
Address: 212.54.44.54

Name: google.com
Addresses: 2a00:1450:4013:c00::8a
173.194.65.138
173.194.65.139
173.194.65.100
173.194.65.113
173.194.65.102
173.194.65.101


Pinging google.com [74.125.136.138] with 32 bytes of data:
Reply from 74.125.136.138: bytes=32 time=12ms TTL=48
Reply from 74.125.136.138: bytes=32 time=13ms TTL=48

Ping statistics for 74.125.136.138:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server: dns.mnd.iss.as9143.net
Address: 212.54.44.54

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=186ms TTL=41
Reply from 98.138.253.109: bytes=32 time=170ms TTL=41

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 170ms, Maximum = 186ms, Average = 178ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
7...24 fd 52 29 af dd ......Microsoft Wi-Fi Direct Virtual Adapter
4...24 fd 52 29 af dd ......Realtek RTL8723AE Wireless LAN 802.11n PCI-E NIC
3...7c 05 07 78 8f b8 ......Realtek PCIe FE Family-controller
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.178.1 192.168.178.11 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.178.0 255.255.255.0 On-link 192.168.178.11 281
192.168.178.11 255.255.255.255 On-link 192.168.178.11 281
192.168.178.255 255.255.255.255 On-link 192.168.178.11 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.178.11 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.178.11 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
4 281 fe80::/64 On-link
4 281 fe80::a824:4fb4:343:8659/128
On-link
1 306 ff00::/8 On-link
4 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/02/2014 10:21:45 AM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/02/2014 07:42:30 AM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 10:23:57 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 09:19:40 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 08:36:09 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 08:24:13 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 07:18:01 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 07:00:50 PM) (Source: Application Hang) (User: )
Description: Het programma backgroundTaskHost.exe, versie 6.3.9600.16384 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 12d4

Starttijd: 01cfdd9882f8ed90

Eindtijd: 4294967295

Toepassingspad: C:\WINDOWS\system32\backgroundTaskHost.exe

Rapport-id: 77209968-498c-11e4-bebd-24fd522a138d

Volledige pakketnaam met fout: Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt

Relatieve toepassings-id van pakket met fout: App

Error: (10/01/2014 06:05:36 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.

Error: (10/01/2014 05:58:23 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/">.


System errors:
=============
Error: (10/02/2014 06:55:49 AM) (Source: BTHUSB) (User: )
Description: Er is een onbekende fout in de lokale Bluetooth-adapter opgetreden en deze wordt niet gebruikt. Het stuurprogramma wordt verwijderd.

Error: (09/25/2014 08:18:33 PM) (Source: Service Control Manager) (User: )
Description: De Update AdvanceElite-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 5000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (09/06/2014 03:50:08 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (09/06/2014 03:50:08 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (09/06/2014 03:50:08 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (09/02/2014 09:41:51 PM) (Source: Service Control Manager) (User: )
Description: De Superfetch-service is gestopt met de volgende foutcode:
%%1062.

Error: (08/31/2014 10:18:01 AM) (Source: Service Control Manager) (User: )
Description: De Superfetch-service is gestopt met de volgende foutcode:
%%6.

Error: (08/31/2014 10:17:08 AM) (Source: EventLog) (User: )
Description: De vorige afsluiting van het systeem om 02:34:59 op ?31-?8-?2014 is onverwacht gebeurd.

Error: (08/31/2014 10:16:33 AM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT AUTHORITY)
Description: 32212254731173344

Error: (08/30/2014 05:24:08 AM) (Source: DCOM) (User: C870D)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}


Microsoft Office Sessions:
=========================
Error: (10/02/2014 10:21:45 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/02/2014 07:42:30 AM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 10:23:57 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 09:19:40 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 08:36:09 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 08:24:13 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 07:18:01 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 07:00:50 PM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.1638412d401cfdd9882f8ed904294967295C:\WINDOWS\system32\backgroundTaskHost.exe77209968-498c-11e4-bebd-24fd522a138dFacebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nntApp

Error: (10/01/2014 06:05:36 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/

Error: (10/01/2014 05:58:23 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-4270470650-44760745-1284566504-1001}/


**** End of log ****

Gaat het nu beter?

ik heb tot nu toe nog geen last gehad.
dank

Mooi zo.

nee dus, is erger geworden, moet steeds eerst de verbinding verbreken en daarna weer verbinding maken en dan kan ik er gewoon weer op.
krijg elke keer deze melding,: Google Chrome kan de webpagina niet weergeven omdat je computer niet is verbonden met internet.
Controleer je internetverbinding
Controleer je kabels en start alle routers, modems of andere netwerkapparaten die je gebruikt opnieuw op.
Sta Chrome via je firewall- of antivirusinstellingen toe het netwerk te gebruiken.
Als dit programma al wordt vermeld als een programma dat toegang heeft tot het netwerk, kun je proberen het uit de lijst te verwijderen en het opnieuw toe te voegen.
Foutcode: DNS_PROBE_FINISHED_NO_INTERNET

Doe nu het volgende: ga naar Start en typ in de zoekregel cmd - bovenaan in het startmenu zie je nu de betreffende snelkoppeling.
Klik deze snelkoppeling met rechts aan en kies voor Als administrator uitvoeren.

In het zwarte venster typ je nu netsh winsock reset gevolgd door indrukken van de Entertoets.
Je mag ook de opdracht kopiren en via rechtsklik in het zwarte venster plakken.

Is de reparatie klaar, dien jij vervolgens de computer opnieuw op te starten.

gedaan

En gaat het nu beter, want graag wat mededeelzamer...

ik moet t even afwachtten, want nadat ik een tijdje niet op de laptop ben geweest, dan wordt de verbinding verbroken, dus ga ik jou op de hoogte houden, tot nu toe, werkt t goed en lijkt ie ook weer wat sneller

Kijk eens hier: http://www.nationaalcomputerforum.nl/showthread.php?t=119119 en gebruik in ieder geval de tweak via de opdrachtprompt voor sneller internetten!

thuis gekomen,nadat ik de laptop aan heb laten staan, moest ik weer de verbinding verbreken en opnieuw aanmelden, kreeg dezelfde melding als bovenstaande
het gekke is, mijn man heeft hier nooit last van en gebruikt dezelfde verbinding

Ik heb de discussie nu verplaatst.

Download RSIT van de onderstaande locaties en sla deze op het bureablad op.
Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

RSIT Downloaden

• RSIT 32 bit (RSIT.exe)
• RSIT 64 bit (RSITx64.exe)

RSIT Uitvoeren

• Dubbelklik op RSIT.exe om de tool te starten.
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
• Als u RSIT de eerste keer uitvoert zal HijackThis gedownload worden als deze niet aanwezig is, sta dit vervolgens toe.
• Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" geopend.

RSIT Logbestanden plaatsen

• Post de inhoud van zowel het logbestand met de naam Log.txt als ook het logbestand met de naam "Info.txt in uw volgende bericht. (Deze logbestanden kunt u tevens terug vinden in de map "C:\rsit")"

Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2014-10-05 01:42:11
Microsoft Windows 8.1
System drive C: has 261 GB (89%) free of 293 GB
Total RAM: 3683 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 01:42:16, on 5-10-2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\trend micro\admin.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://blank/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O4 - HKLM\..\Run: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7960 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
dashost.exe {e330e8ac-98fe-4c37-9c89b8671be1c05e}
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe

"C:\Program Files\TOSHIBA\Teco\TecoService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding

"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
taskhostex.exe
"C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe20_ Global\UsGthrCtrlFltPipeMssGthrPipe20 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
taskeng.exe {C673ED15-E5B0-4891-BB9C-3A7086D829C7}
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\admin\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-09-25 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-09-25 2334416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-11-29 13261456]
"SRS Premium Sound HD"=C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2012-10-22 2172816]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2012-11-01 2565544]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2012-08-14 169896]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2012-07-11 356776]
"TODDMain"=C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [2012-08-05 213136]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-20 2774256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TPUReg"=C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [2012-12-05 7152640]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Verzenden naar OneNote.lnk - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-10-05 01:42:11 ----D---- C:\Program Files\trend micro
2014-10-01 17:49:52 ----SHD---- C:\Config.Msi
2014-09-29 13:39:49 ----D---- C:\ProgramData\Trusteer
2014-09-25 20:36:12 ----D---- C:\Users\admin\AppData\Roaming\Windows Live Writer
2014-09-25 20:32:39 ----D---- C:\WINDOWS\nl
2014-09-25 20:30:32 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-09-25 20:28:16 ----D---- C:\Program Files (x86)\Windows Live
2014-09-25 20:27:46 ----D---- C:\WINDOWS\PCHEALTH
2014-09-25 20:26:32 ----D---- C:\Program Files\Windows Live
2014-09-25 20:26:17 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-09-25 20:26:17 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-09-25 20:26:15 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-09-25 20:26:15 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-09-25 20:26:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-09-25 20:26:01 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-09-15 06:44:33 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-09-15 06:44:33 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-09-15 06:44:32 ----A---- C:\WINDOWS\explorer.exe
2014-09-15 06:44:30 ----A---- C:\WINDOWS\system32\twinui.dll
2014-09-15 06:44:25 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-09-15 06:44:22 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-09-15 06:44:21 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-09-15 06:44:15 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-09-15 06:44:14 ----A---- C:\WINDOWS\system32\tcpmon.dll
2014-09-15 06:43:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-09-15 06:43:05 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-09-15 06:43:04 ----A---- C:\WINDOWS\system32\authui.dll
2014-09-15 06:42:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-09-15 06:42:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-09-15 06:42:47 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-09-15 06:42:46 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-09-15 06:42:43 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-15 06:42:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-09-15 06:42:41 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-09-15 06:42:40 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-09-15 06:42:38 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-09-15 06:42:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-09-15 06:42:31 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-09-15 06:42:30 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-09-15 06:42:29 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-09-15 06:42:29 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-09-15 06:42:27 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-09-15 06:42:26 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-09-15 06:42:23 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-09-15 06:42:21 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-09-15 06:42:16 ----A---- C:\WINDOWS\system32\localspl.dll
2014-09-15 06:42:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-09-15 06:42:15 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-09-15 06:42:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-09-15 06:42:12 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-09-15 06:42:11 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-09-15 06:42:10 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\SRH.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\printui.dll
2014-09-15 06:42:09 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-09-15 06:42:08 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-09-15 06:42:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-09-15 06:42:07 ----A---- C:\WINDOWS\system32\mispace.dll
2014-09-15 06:42:07 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-09-15 06:42:06 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2014-09-15 06:42:06 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-09-15 06:42:05 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-09-15 06:42:05 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-09-15 06:42:04 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-09-15 06:42:04 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-09-15 06:42:03 ----A---- C:\WINDOWS\system32\aclui.dll
2014-09-15 06:42:02 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-09-15 06:42:02 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2014-09-15 06:42:02 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-09-15 06:42:00 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-09-15 06:41:59 ----A---- C:\WINDOWS\system32\spoolsv.exe
2014-09-15 06:41:59 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-09-15 06:41:58 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-09-15 06:41:58 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-09-15 06:41:57 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-09-15 06:41:57 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-09-15 06:41:57 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-09-15 06:41:56 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-09-15 06:41:56 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-09-15 06:41:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-09-15 06:41:56 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-09-15 06:41:54 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2014-09-15 06:41:54 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-09-15 06:41:53 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-09-15 06:41:53 ----A---- C:\WINDOWS\system32\mftranscode.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\usbmon.dll
2014-09-15 06:41:52 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-09-15 06:41:51 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-09-15 06:41:51 ----A---- C:\WINDOWS\system32\winload.exe
2014-09-15 06:41:51 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\wisp.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-09-15 06:41:50 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-09-15 06:41:49 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-09-15 06:41:49 ----A---- C:\WINDOWS\system32\winresume.exe
2014-09-15 06:41:48 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-09-15 06:41:48 ----A---- C:\WINDOWS\system32\wsecedit.dll
2014-09-15 06:41:48 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-09-15 06:41:47 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\user32.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-09-15 06:41:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-09-15 06:41:46 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\winmmbase.dll
2014-09-15 06:41:46 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-09-15 06:41:45 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-09-15 06:41:44 ----A---- C:\WINDOWS\system32\conhost.exe
2014-09-15 06:41:43 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-09-15 06:41:43 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-09-15 06:41:43 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-09-15 06:41:42 ----A---- C:\WINDOWS\system32\VAN.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\Display.dll
2014-09-15 06:41:41 ----A---- C:\WINDOWS\system32\AppxSip.dll
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\osk.exe
2014-09-15 06:41:40 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2014-09-15 06:41:39 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-09-15 06:41:39 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\mfps.dll
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-09-15 06:41:38 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-09-15 06:41:37 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-09-15 06:41:37 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys
2014-09-15 06:41:37 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\winmm.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-09-15 06:41:36 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-09-15 06:41:35 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2014-09-15 06:41:34 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2014-09-15 06:41:34 ----A---- C:\WINDOWS\system32\prnntfy.dll
2014-09-15 06:41:34 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-09-15 06:41:33 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2014-09-15 06:41:32 ----A---- C:\WINDOWS\system32\gpedit.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2014-09-15 06:41:31 ----A---- C:\WINDOWS\system32\puiapi.dll
2014-09-15 06:41:30 ----A---- C:\WINDOWS\system32\iasnap.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-09-15 06:41:29 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-09-15 06:41:29 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-09-15 06:41:28 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-09-15 06:41:28 ----A---- C:\WINDOWS\system32\wups.dll
2014-09-15 06:41:27 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-09-15 06:41:27 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\stobject.dll
2014-09-15 06:41:26 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-09-15 06:41:25 ----A---- C:\WINDOWS\system32\dab.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-09-15 06:41:24 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-09-15 06:41:23 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-09-15 06:41:23 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2014-09-15 06:41:23 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-09-15 06:41:22 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-09-15 06:41:22 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-09-15 06:41:21 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-09-15 06:41:21 ----A---- C:\WINDOWS\system32\wups2.dll
2014-09-15 06:41:20 ----A---- C:\WINDOWS\system32\wshbth.dll
2014-09-15 06:41:20 ----A---- C:\WINDOWS\system32\schannel.dll
2014-09-15 06:41:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2014-09-15 06:41:19 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-09-15 06:41:18 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-09-15 06:41:17 ----A---- C:\WINDOWS\system32\browser.dll
2014-09-15 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2014-09-15 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-09-15 06:41:14 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2014-09-15 06:41:14 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-09-15 06:41:14 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-09-15 06:41:13 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-09-15 06:41:13 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2014-09-15 06:41:12 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-09-15 06:41:11 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-09-15 06:41:11 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2014-09-15 06:41:11 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2014-09-15 06:41:10 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-09-15 06:41:10 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2014-09-15 06:41:10 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2014-09-15 06:41:09 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2014-09-15 06:41:08 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2014-09-15 06:41:06 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-09-15 06:41:06 ----A---- C:\WINDOWS\system32\certcli.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-09-15 06:41:05 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-09-15 06:41:04 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2014-09-15 06:41:04 ----A---- C:\WINDOWS\system32\compstui.dll
2014-09-15 06:41:03 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2014-09-15 06:41:02 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-09-15 06:41:02 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-09-15 06:41:01 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-09-15 06:41:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:40:59 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-09-15 06:40:59 ----A---- C:\WINDOWS\system32\KBDTT102.DLL
2014-09-15 06:40:58 ----A---- C:\WINDOWS\SYSWOW64\KBDTT102.DLL
2014-09-15 06:29:06 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-09-11 18:07:27 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-09-11 18:07:27 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-09-11 18:07:23 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-09-11 18:07:22 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-09-11 18:07:21 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-11 18:07:20 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-09-11 18:07:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-09-11 18:07:19 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-09-11 18:07:14 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-09-11 18:07:14 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-09-11 18:07:13 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-09-11 18:07:13 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-09-11 18:07:11 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-09-11 18:07:09 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-09-11 18:07:09 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-11 18:07:07 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-09-11 18:07:06 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-09-11 18:07:03 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-09-11 18:06:57 ----A---- C:\WINDOWS\system32\wininet.dll
2014-09-11 18:06:56 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-09-11 18:06:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-09-11 18:06:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-09-11 18:06:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-09-11 18:06:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-09-11 18:06:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-09-11 18:06:49 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-09-11 18:06:47 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-09-11 18:06:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-09-11 18:06:45 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-09-11 18:05:01 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-09-11 18:04:16 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-09-11 18:04:16 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-09-11 18:04:15 ----A---- C:\WINDOWS\system32\aepic.dll
2014-09-11 18:03:16 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2014-09-11 18:03:15 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll

======List of files/folders modified in the last 1 month======

2014-10-05 01:42:15 ----D---- C:\WINDOWS\Prefetch
2014-10-05 01:42:11 ----RD---- C:\Program Files
2014-10-05 01:39:27 ----D---- C:\WINDOWS\Temp
2014-10-05 01:39:27 ----D---- C:\WINDOWS\SoftwareDistribution
2014-10-05 01:39:27 ----D---- C:\WINDOWS\debug
2014-10-05 01:39:27 ----D---- C:\Windows
2014-10-05 01:00:00 ----D---- C:\WINDOWS\system32\sru
2014-10-04 12:31:25 ----D---- C:\WINDOWS\system32\config
2014-10-04 12:28:12 ----D---- C:\WINDOWS\WinSxS
2014-10-04 12:25:46 ----D---- C:\WINDOWS\Microsoft.NET
2014-10-04 09:20:08 ----RD---- C:\WINDOWS\System32
2014-10-04 09:20:08 ----D---- C:\WINDOWS\Inf
2014-10-04 09:20:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-03 11:03:33 ----D---- C:\WINDOWS\AppReadiness
2014-10-03 08:47:00 ----D---- C:\Program Files (x86)
2014-10-03 08:46:59 ----D---- C:\Program Files (x86)\Google
2014-10-01 18:08:54 ----D---- C:\WINDOWS\system32\NDF
2014-10-01 17:50:39 ----SHD---- C:\WINDOWS\Installer
2014-10-01 17:50:30 ----D---- C:\WINDOWS\SysWOW64
2014-10-01 17:49:31 ----SHD---- C:\System Volume Information
2014-10-01 11:24:06 ----D---- C:\Program Files\CCleaner
2014-09-30 20:13:22 ----D---- C:\WINDOWS\system32\drivers
2014-09-30 17:46:53 ----HD---- C:\Program Files\WindowsApps
2014-09-30 17:27:03 ----HD---- C:\ProgramData
2014-09-29 15:50:25 ----D---- C:\WINDOWS\LiveKernelReports
2014-09-27 17:21:55 ----RSD---- C:\WINDOWS\assembly
2014-09-25 20:39:28 ----D---- C:\WINDOWS\Logs
2014-09-25 20:33:50 ----SD---- C:\Users\admin\AppData\Roaming\Microsoft
2014-09-25 20:27:49 ----D---- C:\Program Files\Common Files\microsoft shared
2014-09-25 20:25:51 ----SD---- C:\ProgramData\Microsoft
2014-09-25 19:55:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-09-25 09:21:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-09-25 09:20:23 ----D---- C:\Program Files\Microsoft Office 15
2014-09-24 09:02:31 ----D---- C:\WINDOWS\rescache
2014-09-24 08:53:15 ----D---- C:\WINDOWS\CbsTemp
2014-09-24 08:52:29 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2014-09-24 08:52:29 ----D---- C:\WINDOWS\system32\nl-NL
2014-09-22 08:42:39 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-09-18 21:35:30 ----D---- C:\WINDOWS\system32\DriverStore
2014-09-18 07:56:10 ----RD---- C:\WINDOWS\ToastData
2014-09-18 07:55:51 ----D---- C:\Program Files\Windows Journal
2014-09-18 07:55:50 ----D---- C:\WINDOWS\WinStore
2014-09-18 07:55:50 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-09-18 07:55:50 ----D---- C:\WINDOWS\SYSWOW64\setup
2014-09-18 07:55:45 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-09-18 07:55:45 ----D---- C:\WINDOWS\system32\drivers\nl-NL
2014-09-18 07:55:45 ----D---- C:\WINDOWS\system32\Boot
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\wbem
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\setup
2014-09-18 07:55:44 ----D---- C:\WINDOWS\system32\oobe
2014-09-18 07:55:37 ----RSD---- C:\WINDOWS\Fonts
2014-09-18 07:55:35 ----D---- C:\WINDOWS\apppatch
2014-09-18 07:55:32 ----D---- C:\WINDOWS\SYSWOW64\InputMethod
2014-09-18 07:55:31 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-09-18 07:55:31 ----D---- C:\WINDOWS\system32\migration
2014-09-15 06:27:13 ----D---- C:\WINDOWS\system32\catroot2
2014-09-13 08:14:35 ----D---- C:\WINDOWS\system32\catroot
2014-09-12 22:59:25 ----SD---- C:\WINDOWS\system32\CompatTel
2014-09-12 22:59:16 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-12 22:59:15 ----D---- C:\Program Files\Internet Explorer
2014-09-12 22:58:31 ----D---- C:\WINDOWS\system32\MRT
2014-09-12 22:52:28 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-11 18:08:16 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-09-11 18:08:15 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-09-11 18:08:01 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-11 18:08:01 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-09-11 18:08:00 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-09-11 18:08:00 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-11 18:07:59 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-09-11 18:07:58 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-09-11 18:07:57 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-09-11 18:07:57 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-09-11 18:07:56 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-09-11 18:07:56 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-09-11 18:07:51 ----A---- C:\WINDOWS\system32\msrating.dll
2014-09-11 18:07:50 ----A---- C:\WINDOWS\system32\jsproxy.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 tos_sps64;@oem10.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\WINDOWS\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem35.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2012-07-26 32832]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-03-13 157016]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-09-11 14344]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\WINDOWS\system32\DRIVERS\TVALZFL.sys [2012-07-22 16768]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-12-05 3242896]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 RtkBtFilter2;@oem18.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Module; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2012-07-11 24208]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT-stuurprogramma; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 RTWlanE;@oem33.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-10-21 2946264]
R3 SynTP;@oem31.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-08-20 524016]
R3 TDCMDPST;TOSHIBA Writing Engine Filter Driver; C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem34.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem16.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\WINDOWS\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB-videoapparaat (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 RapportKE64;RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys []
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2013-09-20 95984]
S3 RSUSBSTOR;@oem5.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2012-06-13 252048]
S3 RtkBtFilter;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2012-07-11 24208]
S3 ssudmdm;@oem11.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem7.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-08-12 2428088]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-13 156672]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-12-05 201872]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-08-25 291240]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-07-27 53384]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-07-28 458152]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2010-01-25 245760]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-02 116648]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-03-30 150600]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-01-04 116240]

-----------------EOF-----------------

---------- Bericht toegevoegd op 01:47 ---------- Vorige bericht was op 01:43 ----------

info.txt logfile of random's system information tool 1.09 2013-10-11 14:35:33

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{11D530CE-F649-45FA-84C0-5CD47F46CE2D}\setup.exe" -runfromtemp -l0x0409 -ADDREMOVE -removeonly
-->"C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\TOSHIBA Games\Game Explorer Categories - main\Uninstall.exe"
Aloha TriPeaks-->"C:\Program Files (x86)\WildGames\Aloha TriPeaks\uninstall\uninstaller.exe"
AMD Accelerated Video Transcoding-->MsiExec.exe /X{8E7CCFB3-4102-6A32-8C4F-202B7AB7C8E3}
AMD APP SDK Runtime-->MsiExec.exe /I{503F672D-6C84-448A-8F8F-4BC35AC83441}
AMD Catalyst Install Manager-->msiexec /q/x{8DE47BBC-F471-6960-2FAB-13D8983397C5} REBOOT=ReallySuppress
AVG 2014-->"C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe" /AppMode=SETUP /Uninstall
AVG 2014-->MsiExec.exe /I{C28192C9-A8B9-40F1-A310-C2B2754D3DD0}
AVG 2014-->MsiExec.exe /I{DF1A8490-3CD2-4878-92BE-F746D7CCACC1}
AVG Nation toolbar-->C:\Program Files (x86)\AVG Nation toolbar\UNINSTALL.exe /PROMPT /UNINSTALL
Bejeweled 3-->"C:\Program Files (x86)\WildGames\Bejeweled 3\uninstall\uninstaller.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{24D38277-CE6E-4E12-A2EE-F46832A4FA2F}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Chuzzle Deluxe-->"C:\Program Files (x86)\WildGames\Chuzzle Deluxe\uninstall\uninstaller.exe"
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Empress of the Deep - The Darkest Secret-->"C:\Program Files (x86)\WildGames\Empress of the Deep - The Darkest Secret\uninstall\uninstaller.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\setup.exe" --uninstall --multi-install --chrome --system-level --verbose-logging
Intel AppUp(R) center-->C:\Program Files (x86)\Intel\IntelAppStore\run_uninstaller.exe
Island Tribe-->"C:\Program Files (x86)\WildGames\Island Tribe\uninstall\uninstaller.exe"
Jewel Quest Solitaire 2-->"C:\Program Files (x86)\WildGames\Jewel Quest Solitaire 2\uninstall\uninstaller.exe"
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
Magic Academy-->"C:\Program Files (x86)\WildGames\Magic Academy\uninstall\uninstaller.exe"
Malwarebytes Anti-Malware versie 1.75.0.1300-->"C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
Peggle Nights-->"C:\Program Files (x86)\WildGames\Peggle Nights\uninstall\uninstaller.exe"
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\WildGames\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
Polar Bowler-->"C:\Program Files (x86)\WildGames\Polar Bowler\uninstall\uninstaller.exe"
Premium Sound HD-->MsiExec.exe /X{000A208E-1050-4181-AC37-E13DA9254B73}
Realtek Bluetooth Filter Driver Package-->"C:\Program Files (x86)\InstallShield Installation Information\{0CC0980D-811D-43B8-A455-8D150EB5BC0D}\setup.exe" -runfromtemp -l0x0409 -removeonly
Realtek Bluetooth Filter Driver Package-->MsiExec.exe /X{0CC0980D-811D-43B8-A455-8D150EB5BC0D}
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0409 -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Realtek WLAN Driver-->C:\Program Files (x86)\InstallShield Installation Information\{9D3D8C60-A55F-4fed-B2B9-173001290E16}\Install.exe -uninst -l0x9
Shared C Run-time for x64-->MsiExec.exe /I{EF79C448-6946-4D71-8134-03407888C054}
Spotify-->"C:\Program Files (x86)\Spotify\Spotify.exe" /uninstall
Synaptics Pointing Device Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TOSHIBA Desktop Assist-->MsiExec.exe /X{95CCACF0-010D-45F0-82BF-858643D8BC02}
TOSHIBA eco Utility-->MsiExec.exe /X{5944B9D4-3C2A-48DE-931E-26B31714A2F7}
TOSHIBA Function Key-->MsiExec.exe /X{16562A90-71BC-41A0-B890-D91B0C267120}
TOSHIBA Manuals-->"C:\Program Files (x86)\InstallShield Installation Information\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}\setup.exe" -runfromtemp -l0x0409 -removeonly
TOSHIBA Password Utility-->C:\Program Files (x86)\InstallShield Installation Information\{78931270-BC9E-441A-A52B-73ECD4ACFAB5}\setup.exe -runfromtemp -l0x0409
TOSHIBA PC Health Monitor-->MsiExec.exe /X{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}
TOSHIBA Recovery Media Creator-->C:\Program Files (x86)\InstallShield Installation Information\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}\Setup.exe -runfromtemp -removeonly
TOSHIBA Service Station-->MsiExec.exe /X{B8C8422F-01F1-4791-B084-047AAFF9BFCC}
TOSHIBA System Driver-->MsiExec.exe /X{1E6A96A1-2BAB-43EF-8087-30437593C66C}
TOSHIBA System Settings-->MsiExec.exe /X{05A55927-DB9B-4E26-BA44-828EBFF829F0}
Toshiba TEMPRO-->MsiExec.exe /X{F76F5214-83A8-4030-80C9-1EF57391D72A}
TOSHIBA VIDEO PLAYER-->MsiExec.exe /X{FF07604E-C860-40E9-A230-E37FA41F103A}
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
Virtual Villagers 4 - The Tree of Life-->"C:\Program Files (x86)\WildGames\Virtual Villagers 4 - The Tree of Life\uninstall\uninstaller.exe"
Visual Studio 2012 x64 Redistributables-->MsiExec.exe /I{8C775E70-A791-4DA8-BCC3-6AB7136F4484}
Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
WildTangent Games App (Toshiba Games)-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\toshiba\Uninstall.exe"
WildTangent Games-->"C:\Program Files (x86)\WildGames\Uninstall.exe"
Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth (07/11/2012 2.3.13.3)-->C:\PROGRA~1\DIFX\F4092DA208C2C970\DPInst.exe /u C:\windows\system32\DRVSTORE\rtkfilter_693EA7D500E611161F3712DFBC862505D5129E36\rtkfilter.inf
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{2A07C35B-8384-4DA4-9A95-442B6C89A073}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Language Selector-->MsiExec.exe /I{027E5FAB-1476-4C59-AAB4-32EF28520399}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{D588365A-AE39-4F27-BDAE-B4E72C8E900C}
Windows Live MIME IFilter-->MsiExec.exe /I{DA54F80E-261C-41A2-A855-549A144F2F59}
Windows Live Photo Common-->MsiExec.exe /X{9BD262D0-B788-4546-A0A5-F4F56EC3834B}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{14B441B7-774D-4170-98EA-A13667AE6218}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

======Hosts File======

::1 localhost

======System event log======

Computer Name: c870d
Event Code: 26
Message: Toepassingspop-up: explorer.exe - Systeemwaarschuwing : Unknown Hard Error
Record Number: 3186
Source Name: Application Popup
Time Written: 20131008073540.307938-000
Event Type: Informatie
User: NT AUTHORITY\SYSTEM

Computer Name: c870d
Event Code: 104
Message: Logboekbestand Windows PowerShell is gewist.
Record Number: 3185
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.815369-000
Event Type: Informatie
User: c870d\admin

Computer Name: c870d
Event Code: 104
Message: Logboekbestand Key Management Service is gewist.
Record Number: 3184
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.472170-000
Event Type: Informatie
User: c870d\admin

Computer Name: c870d
Event Code: 104
Message: Logboekbestand Internet Explorer is gewist.
Record Number: 3183
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072025.331653-000
Event Type: Informatie
User: c870d\admin

Computer Name: c870d
Event Code: 104
Message: Logboekbestand System is gewist.
Record Number: 3182
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072024.972818-000
Event Type: Informatie
User: c870d\admin

=====Application event log=====

Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3896
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008074615.000000-000
Event Type: Informatie
User:

Computer Name: c870d
Event Code: 103
Message: msiexec (4536) Instance: De database-engine heeft de sessie (0) stopgezet.

Dirty Shutdown: 0

Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.015, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000.
Record Number: 3895
Source Name: ESENT
Time Written: 20131008074157.000000-000
Event Type: Informatie
User:

Computer Name: c870d
Event Code: 327
Message: msiexec (4536) Instance: De database-engine heeft een database (1, C:\ProgramData\Microsoft\Windows\AppRepository\PackageRepository.edb) uit de bijlage gehaald. (Tijd=0 seconden)

Internal Timing Sequence: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.016, [7] 0.000, [8] 0.000, [9] 0.015, [10] 0.032, [11] 0.015, [12] 0.016.
Revived Cache: 0
Record Number: 3894
Source Name: ESENT
Time Written: 20131008074157.000000-000
Event Type: Informatie
User:

Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3893
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008073542.000000-000
Event Type: Informatie
User:

Computer Name: c870d
Event Code: 1002
Message: De shell is onverwacht beindigd en explorer.exe is opnieuw gestart.
Record Number: 3892
Source Name: Microsoft-Windows-Winlogon
Time Written: 20131008073538.000000-000
Event Type: Informatie
User:

=====Security event log=====

Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.

Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD

Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Gast
Domein doelaccount: c870d
Record Number: 8429
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.591098-000
Event Type: Controle geslaagd
User:

Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.

Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD

Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Administrator
Domein doelaccount: c870d
Record Number: 8428
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.581095-000
Event Type: Controle geslaagd
User:

Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.

Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD

Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Gast
Domein doelaccount: c870d
Record Number: 8427
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.538096-000
Event Type: Controle geslaagd
User:

Computer Name: c870d
Event Code: 4797
Message: Er is geprobeerd een query uit te voeren op het bestaan van een blanco wachtwoord voor een account.

Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Accountdomein: c870d
Aanmeldings-id: 0x19ACD

Extra informatie:
Werkstation beller: C870D
Naam doelaccount: Administrator
Domein doelaccount: c870d
Record Number: 8426
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20131008073541.536093-000
Event Type: Controle geslaagd
User:

Computer Name: c870d
Event Code: 1102
Message: Het controlelogboek is gewist.
Onderwerp:
Beveiligings-id: S-1-5-21-4270470650-44760745-1284566504-1001
Accountnaam: admin
Domeinnaam: c870d
Aanmeldings-id: 0x19A80
Record Number: 8425
Source Name: Microsoft-Windows-Eventlog
Time Written: 20131008072024.536042-000
Event Type: Controle geslaagd
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=20
"PROCESSOR_IDENTIFIER"=AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=0200
"AMDAPPSDKROOT"=C:\Program Files (x86)\AMD APP\

-----------------EOF-----------------

Doe nu het volgende: download Farbar Recovery Scan Tool 32 of 64 bit van n van de onderstaande links
Farbar Recovery Scan Tool 32 bit (x86)
Farbar Recovery Scan Tool 64 bit (x64)
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen!
Opmerkingen:

• Alle openstaande programma's en webpagina's dienen afgesloten te zijn.

Antivirusprogramma en actieve malwarescanners dienen al voor je FRST.exe start gedeaktiveert zijn!
Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

FRST opstarten:

• Windows 2000 en Windows XP: dubbelklik op FRST.exe.
• Windows Vista, Windows 7 en Windows 8: via rechtsklik op FRST.exe of FRST64.exe en kies voor "Als Administrator uitvoeren".

FRST is opgestart:

• Wanneer het programma is geopend klik dan op de knop Yes bij de disclaimer.
• Druk vervolgens op de Scan knop.
• Aansluitend zal een logbestand (FRST.txt) aangemaakt worden en op het bureaublad opgeslagen worden.
• Post de inhoud van FRST.txt in je volgende bericht

.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014
Ran by admin (administrator) on C870D on 06-10-2014 15:05:14
Running from C:\Users\admin\Downloads
Loaded Profile: admin (Available profiles: admin & Administrator)
Platform: Windows 8.1 (X64) OS Language: Nederlands (Nederland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13261456 2012-11-29] (Realtek Semiconductor)
HKLM\...\Run: [SRS Premium Sound HD] => C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2172816 2012-10-22] (SRS Labs, Inc.)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2565544 2012-11-01] ()
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [169896 2012-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [356776 2012-07-11] (TOSHIBA Corporation)
HKLM\...\Run: [TODDMain] => C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe [213136 2012-08-05] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2774256 2013-08-20] (Synaptics Incorporated)
HKLM-x32\...\Run: [TPUReg] => C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe [7152640 2012-12-05] (Pegatron Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-04-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-4270470650-44760745-1284566504-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-4270470650-44760745-1284566504-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-4270470650-44760745-1284566504-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk
ShortcutTarget: Verzenden naar OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://blank/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
SearchScopes: HKLM - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {BAFDF4AF-D2A4-43D4-8069-3AD640E3A0BB} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKLM-x32 - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {BAFDF4AF-D2A4-43D4-8069-3AD640E3A0BB} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MATMJS
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 212.54.44.54 212.54.40.25

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF Plugin HKCU: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll No File

Chrome:
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Documenten) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-02]
CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-02]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-02]
CHR Extension: (Google Zoeken) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-02]
CHR Extension: (Google Wallet) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-02]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-23] (Advanced Micro Devices, Inc.) [File not signed]
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2428088 2014-08-12] (Microsoft Corporation)
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [156672 2011-10-13] () [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201872 2012-12-05] (Realtek Semiconductor)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116240 2013-01-04] (Toshiba Europe GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [95984 2013-09-20] (McAfee, Inc.)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
S3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [24208 2012-07-11] (Realtek Microelectronics)
R3 RtkBtFilter2; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [24208 2012-07-11] (Realtek Microelectronics)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2013-10-21] (Realtek Semiconductor Corporation )
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S0 RapportKE64; System32\Drivers\RapportKE64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-06 15:05 - 2014-10-06 15:05 - 00014243 _____ () C:\Users\admin\Downloads\FRST.txt
2014-10-06 15:01 - 2014-10-06 15:04 - 00001436 _____ () C:\Users\admin\Desktop\FRST64 - Snelkoppeling.lnk
2014-10-06 15:00 - 2014-10-06 15:00 - 02109952 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2014-10-06 14:58 - 2014-10-06 14:58 - 00000000 ____D () C:\Users\admin\AppData\Local\{C8ABDB90-F5E8-4517-BF4A-F47CE5BD76BB}
2014-10-05 01:42 - 2014-10-05 01:42 - 00000000 ____D () C:\Program Files\trend micro
2014-10-05 01:41 - 2014-10-05 01:42 - 00001445 _____ () C:\Users\admin\Desktop\RSITx64 - Snelkoppeling.lnk
2014-10-05 01:41 - 2014-10-05 01:41 - 01222144 _____ () C:\Users\admin\Downloads\RSITx64.exe
2014-10-05 01:40 - 2014-10-05 01:40 - 00000000 ____D () C:\Users\admin\AppData\Local\{309E7AB3-3A80-480E-B9BF-C64815B33A92}
2014-10-03 19:45 - 2014-10-03 19:45 - 00000000 ____D () C:\Users\admin\AppData\Local\{23DAB456-F3FE-48BA-A473-C973B13616B0}
2014-10-02 22:22 - 2014-10-02 22:22 - 00000000 ____D () C:\Users\admin\AppData\Local\{253267B9-1B8A-4678-A44E-D07BDD1812A7}
2014-10-02 10:30 - 2014-10-02 10:31 - 00017306 _____ () C:\Users\admin\Downloads\Result.txt
2014-10-02 10:27 - 2014-10-02 10:30 - 00001519 _____ () C:\Users\admin\Desktop\MiniToolBox (2) - Snelkoppeling.lnk
2014-10-02 10:27 - 2014-10-02 10:27 - 00401920 _____ (Farbar) C:\Users\admin\Downloads\MiniToolBox (2).exe
2014-10-02 10:26 - 2014-10-02 10:26 - 00401920 _____ (Farbar) C:\Users\admin\Downloads\MiniToolBox.exe
2014-10-02 10:26 - 2014-10-02 10:26 - 00401920 _____ (Farbar) C:\Users\admin\Downloads\MiniToolBox (1).exe
2014-10-02 10:22 - 2014-10-02 10:22 - 00000000 ____D () C:\Users\admin\AppData\Local\{1CE4D5B2-10B8-46B3-9FD0-70285CE1FDDE}
2014-10-01 11:42 - 2014-10-01 11:42 - 00000000 ____D () C:\Users\admin\AppData\Local\{87024E03-16C6-46D6-8775-268A0F52F160}
2014-10-01 11:22 - 2014-10-01 11:23 - 04965896 _____ (Piriform Ltd) C:\Users\admin\Downloads\ccsetup418 (2).exe
2014-09-30 20:55 - 2014-09-30 20:55 - 00000000 ____D () C:\Users\admin\AppData\Local\{42C7449A-E4F2-424C-8B7D-6359F30F0AB5}
2014-09-30 08:23 - 2014-09-30 08:23 - 00687600 _____ (Live Soft Action S. R. L. ) C:\Users\admin\Downloads\SAMSUNG OMNIA M GT-S7530 user guide provided through pdfretriever.com.exe
2014-09-30 07:44 - 2014-09-30 07:44 - 00000000 ____D () C:\Users\admin\AppData\Local\{B0F7B7A2-9C0B-4063-878F-E07C53785FC2}
2014-09-29 13:42 - 2014-09-29 13:42 - 00000000 ____D () C:\Users\admin\AppData\Local\Trusteer
2014-09-29 13:39 - 2014-09-29 13:39 - 00436504 _____ (IBM Corp.) C:\Users\admin\Downloads\RpprtSetup.exe
2014-09-29 13:39 - 2014-09-29 13:39 - 00000000 ____D () C:\ProgramData\Trusteer
2014-09-29 09:21 - 2014-09-29 09:21 - 00000000 ____D () C:\Users\admin\AppData\Local\{231F0B6E-2CB9-4421-9666-D249FCF2566A}
2014-09-29 09:21 - 2014-09-29 09:21 - 00000000 ____D () C:\Users\admin\AppData\Local\{06117A61-151F-47C7-A58A-353DA379F635}
2014-09-28 08:54 - 2014-09-28 08:55 - 04964488 _____ (Piriform Ltd) C:\Users\admin\Downloads\ccsetup418 (1).exe
2014-09-27 16:11 - 2014-09-27 16:11 - 00000000 ____D () C:\Users\admin\Documents\Nieuwe map
2014-09-27 08:28 - 2014-09-27 08:28 - 00000000 ____D () C:\Users\admin\AppData\Local\{F17C1821-BF8A-4A56-8F08-9F08E180742C}
2014-09-27 06:59 - 2014-09-27 07:00 - 04964488 _____ (Piriform Ltd) C:\Users\admin\Downloads\ccsetup418.exe
2014-09-26 11:15 - 2014-09-26 11:15 - 00000000 ____D () C:\Users\admin\AppData\Local\{5BFC68EF-C672-429C-A9EC-005E8A839D84}
2014-09-25 20:36 - 2014-10-01 11:54 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Windows Live Writer
2014-09-25 20:36 - 2014-09-25 20:36 - 00000000 ____D () C:\Users\admin\AppData\Local\Windows Live Writer
2014-09-25 20:35 - 2014-09-25 20:35 - 00000000 ____D () C:\Users\admin\AppData\Local\{47EEFFDD-4F70-42A5-AAE8-69E5BDB6E81A}
2014-09-25 20:32 - 2014-09-25 20:32 - 00000000 ____D () C:\WINDOWS\nl
2014-09-25 20:31 - 2014-09-25 20:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-09-25 20:31 - 2014-09-25 20:31 - 00001292 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2014-09-25 20:30 - 2014-09-25 20:31 - 00001361 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2014-09-25 20:30 - 2014-09-25 20:30 - 00001445 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-09-25 20:30 - 2014-09-25 20:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-09-25 20:28 - 2014-09-25 20:41 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-09-25 20:27 - 2014-09-25 20:27 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-09-25 20:26 - 2014-09-25 20:41 - 00000000 ____D () C:\Program Files\Windows Live
2014-09-25 20:26 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2014-09-25 20:26 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2014-09-25 20:26 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2014-09-25 20:26 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2014-09-25 20:26 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-09-25 20:26 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2014-09-25 20:24 - 2014-09-29 09:21 - 00000000 ____D () C:\Users\admin\AppData\Local\Windows Live
2014-09-25 20:23 - 2014-09-25 20:24 - 01290600 _____ (Microsoft Corporation) C:\Users\admin\Downloads\wlsetup-web.exe
2014-09-25 20:22 - 2014-09-25 20:22 - 00204138 _____ () C:\Users\admin\Downloads\Windows8.1-KB2990967-x64.msu
2014-09-24 15:05 - 2014-09-24 15:05 - 00047880 _____ () C:\Users\admin\Downloads\reiskostenborderel (1).docm
2014-09-15 06:44 - 2014-08-23 09:48 - 02374784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-09-15 06:44 - 2014-08-23 09:13 - 02084520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-09-15 06:44 - 2014-08-23 08:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-09-15 06:44 - 2014-08-23 07:32 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-09-15 06:44 - 2014-08-23 06:44 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-09-15 06:44 - 2014-08-23 06:34 - 13423104 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-09-15 06:44 - 2014-08-23 06:33 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-09-15 06:44 - 2014-08-23 06:31 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-09-15 06:44 - 2014-08-23 06:20 - 11818496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-09-15 06:44 - 2014-07-30 03:56 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-09-15 06:44 - 2014-07-29 07:22 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2014-09-15 06:43 - 2014-07-24 11:44 - 16874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-09-15 06:43 - 2014-07-24 09:39 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-09-15 06:43 - 2014-07-24 09:30 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-09-15 06:42 - 2014-07-24 17:28 - 00412992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-09-15 06:42 - 2014-07-24 17:20 - 21266336 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-09-15 06:42 - 2014-07-24 17:16 - 02574208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-09-15 06:42 - 2014-07-24 17:07 - 07424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-09-15 06:42 - 2014-07-24 17:07 - 02009920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-09-15 06:42 - 2014-07-24 17:03 - 02141920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-09-15 06:42 - 2014-07-24 17:03 - 00882136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-09-15 06:42 - 2014-07-24 17:03 - 00818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-09-15 06:42 - 2014-07-24 16:57 - 02515264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-09-15 06:42 - 2014-07-24 16:57 - 00475968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-09-15 06:42 - 2014-07-24 15:48 - 02410976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-09-15 06:42 - 2014-07-24 15:46 - 18760328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-09-15 06:42 - 2014-07-24 15:36 - 02145472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-09-15 06:42 - 2014-07-24 15:36 - 00707536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-09-15 06:42 - 2014-07-24 15:36 - 00674512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-09-15 06:42 - 2014-07-24 13:44 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-09-15 06:42 - 2014-07-24 13:43 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-09-15 06:42 - 2014-07-24 13:42 - 01200640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-09-15 06:42 - 2014-07-24 12:20 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2014-09-15 06:42 - 2014-07-24 11:39 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-09-15 06:42 - 2014-07-24 11:33 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2014-09-15 06:42 - 2014-07-24 11:16 - 12730880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-09-15 06:42 - 2014-07-24 11:03 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-09-15 06:42 - 2014-07-24 10:53 - 01261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-09-15 06:42 - 2014-07-24 10:49 - 01287680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-09-15 06:42 - 2014-07-24 10:38 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-09-15 06:42 - 2014-07-24 10:32 - 01532416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-09-15 06:42 - 2014-07-24 10:27 - 00907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-09-15 06:42 - 2014-07-24 10:21 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-09-15 06:42 - 2014-07-24 10:10 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-09-15 06:42 - 2014-07-24 10:10 - 00889344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-09-15 06:42 - 2014-07-24 10:02 - 03465216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-09-15 06:42 - 2014-07-24 10:01 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-09-15 06:42 - 2014-07-24 10:01 - 01992192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2014-09-15 06:42 - 2014-07-24 09:50 - 01182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-09-15 06:42 - 2014-07-24 09:46 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-15 06:42 - 2014-07-24 09:44 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-09-15 06:42 - 2014-07-24 09:43 - 02696704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-09-15 06:42 - 2014-07-24 09:38 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-09-15 06:42 - 2014-07-24 09:38 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-09-15 06:42 - 2014-07-24 09:28 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-09-15 06:42 - 2014-07-04 11:30 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-09-15 06:42 - 2014-06-26 02:32 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-09-15 06:42 - 2014-06-14 08:03 - 02389504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-09-15 06:42 - 2014-06-14 07:46 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-09-15 06:42 - 2014-06-05 12:18 - 01018368 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-09-15 06:42 - 2014-05-06 06:41 - 00486744 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-09-15 06:42 - 2014-05-06 02:55 - 00391000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-09-15 06:41 - 2014-07-24 17:28 - 00468288 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-09-15 06:41 - 2014-07-24 17:28 - 00419648 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-09-15 06:41 - 2014-07-24 17:28 - 00280384 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-09-15 06:41 - 2014-07-24 17:28 - 00143680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-09-15 06:41 - 2014-07-24 17:25 - 00054752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-09-15 06:41 - 2014-07-24 17:23 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-09-15 06:41 - 2014-07-24 17:23 - 00125472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-09-15 06:41 - 2014-07-24 17:20 - 00645592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-09-15 06:41 - 2014-07-24 17:20 - 00263400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-09-15 06:41 - 2014-07-24 17:16 - 00211216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-09-15 06:41 - 2014-07-24 17:05 - 01660048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-09-15 06:41 - 2014-07-24 17:05 - 01519560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-09-15 06:41 - 2014-07-24 17:05 - 01488008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-09-15 06:41 - 2014-07-24 17:05 - 01356840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-09-15 06:41 - 2014-07-24 17:03 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-09-15 06:41 - 2014-07-24 17:03 - 00233888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-09-15 06:41 - 2014-07-24 17:03 - 00205512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2014-09-15 06:41 - 2014-07-24 15:50 - 00098048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-09-15 06:41 - 2014-07-24 15:48 - 00180208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-09-15 06:41 - 2014-07-24 15:46 - 00477200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-09-15 06:41 - 2014-07-24 15:36 - 00355800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-09-15 06:41 - 2014-07-24 15:36 - 00180720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2014-09-15 06:41 - 2014-07-24 13:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2014-09-15 06:41 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2014-09-15 06:41 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2014-09-15 06:41 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2014-09-15 06:41 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2014-09-15 06:41 - 2014-07-24 13:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2014-09-15 06:41 - 2014-07-24 13:47 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-09-15 06:41 - 2014-07-24 13:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-09-15 06:41 - 2014-07-24 13:45 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-09-15 06:41 - 2014-07-24 13:42 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-09-15 06:41 - 2014-07-24 13:42 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2014-09-15 06:41 - 2014-07-24 13:41 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2014-09-15 06:41 - 2014-07-24 13:41 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2014-09-15 06:41 - 2014-07-24 13:33 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-09-15 06:41 - 2014-07-24 13:33 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-09-15 06:41 - 2014-07-24 13:22 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2014-09-15 06:41 - 2014-07-24 13:06 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll
2014-09-15 06:41 - 2014-07-24 13:05 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2014-09-15 06:41 - 2014-07-24 13:05 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-09-15 06:41 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2014-09-15 06:41 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2014-09-15 06:41 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2014-09-15 06:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2014-09-15 06:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2014-09-15 06:41 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2014-09-15 06:41 - 2014-07-24 12:49 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-09-15 06:41 - 2014-07-24 12:33 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-09-15 06:41 - 2014-07-24 12:32 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-09-15 06:41 - 2014-07-24 12:18 - 01089024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2014-09-15 06:41 - 2014-07-24 12:12 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-09-15 06:41 - 2014-07-24 12:10 - 01844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-09-15 06:41 - 2014-07-24 12:10 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-09-15 06:41 - 2014-07-24 12:10 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2014-09-15 06:41 - 2014-07-24 12:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll
2014-09-15 06:41 - 2014-07-24 12:09 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-09-15 06:41 - 2014-07-24 12:06 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-09-15 06:41 - 2014-07-24 12:05 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-09-15 06:41 - 2014-07-24 11:53 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2014-09-15 06:41 - 2014-07-24 11:52 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-09-15 06:41 - 2014-07-24 11:42 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2014-09-15 06:41 - 2014-07-24 11:40 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-09-15 06:41 - 2014-07-24 11:32 - 01048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2014-09-15 06:41 - 2014-07-24 11:27 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-09-15 06:41 - 2014-07-24 11:27 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-09-15 06:41 - 2014-07-24 11:25 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-09-15 06:41 - 2014-07-24 11:24 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-09-15 06:41 - 2014-07-24 11:23 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-09-15 06:41 - 2014-07-24 11:21 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2014-09-15 06:41 - 2014-07-24 11:18 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2014-09-15 06:41 - 2014-07-24 11:14 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-09-15 06:41 - 2014-07-24 11:13 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2014-09-15 06:41 - 2014-07-24 11:12 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-09-15 06:41 - 2014-07-24 11:11 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-09-15 06:41 - 2014-07-24 11:11 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2014-09-15 06:41 - 2014-07-24 11:10 - 00540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-09-15 06:41 - 2014-07-24 11:09 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-09-15 06:41 - 2014-07-24 11:04 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-09-15 06:41 - 2014-07-24 11:04 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-09-15 06:41 - 2014-07-24 11:02 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-09-15 06:41 - 2014-07-24 10:58 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2014-09-15 06:41 - 2014-07-24 10:53 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-09-15 06:41 - 2014-07-24 10:49 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-09-15 06:41 - 2014-07-24 10:49 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-09-15 06:41 - 2014-07-24 10:49 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-09-15 06:41 - 2014-07-24 10:48 - 00659968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-09-15 06:41 - 2014-07-24 10:47 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-09-15 06:41 - 2014-07-24 10:43 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2014-09-15 06:41 - 2014-07-24 10:39 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-09-15 06:41 - 2014-07-24 10:36 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2014-09-15 06:41 - 2014-07-24 10:30 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-09-15 06:41 - 2014-07-24 10:29 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-09-15 06:41 - 2014-07-24 10:28 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2014-09-15 06:41 - 2014-07-24 10:24 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:41 - 2014-07-24 10:23 - 01404416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-09-15 06:41 - 2014-07-24 10:22 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-09-15 06:41 - 2014-07-24 10:21 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-09-15 06:41 - 2014-07-24 10:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2014-09-15 06:41 - 2014-07-24 10:19 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-09-15 06:41 - 2014-07-24 10:18 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-09-15 06:41 - 2014-07-24 10:18 - 00795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2014-09-15 06:41 - 2014-07-24 10:18 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-09-15 06:41 - 2014-07-24 10:16 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-09-15 06:41 - 2014-07-24 10:16 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2014-09-15 06:41 - 2014-07-24 10:15 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-09-15 06:41 - 2014-07-24 10:15 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-09-15 06:41 - 2014-07-24 10:15 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2014-09-15 06:41 - 2014-07-24 10:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-09-15 06:41 - 2014-07-24 10:12 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-15 06:41 - 2014-07-24 10:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-09-15 06:41 - 2014-07-24 10:10 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-09-15 06:41 - 2014-07-24 10:08 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-09-15 06:41 - 2014-07-24 10:08 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2014-09-15 06:41 - 2014-07-24 10:07 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-09-15 06:41 - 2014-07-24 10:05 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-09-15 06:41 - 2014-07-24 10:04 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-09-15 06:41 - 2014-07-24 10:01 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-09-15 06:41 - 2014-07-24 10:00 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-09-15 06:41 - 2014-07-24 09:58 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-09-15 06:41 - 2014-07-24 09:58 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-09-15 06:41 - 2014-07-24 09:54 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2014-09-15 06:41 - 2014-07-24 09:50 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-09-15 06:41 - 2014-07-24 09:49 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2014-09-15 06:41 - 2014-07-24 09:47 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-09-15 06:41 - 2014-07-24 09:43 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-09-15 06:41 - 2014-07-24 09:43 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2014-09-15 06:41 - 2014-07-24 09:41 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-09-15 06:41 - 2014-07-24 09:33 - 03360768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-09-15 06:41 - 2014-07-24 06:11 - 00513544 _____ () C:\WINDOWS\SysWOW64\locale.nls
2014-09-15 06:41 - 2014-07-24 06:11 - 00513544 _____ () C:\WINDOWS\system32\locale.nls
2014-09-15 06:41 - 2014-07-12 07:55 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2014-09-15 06:41 - 2014-07-12 07:23 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-09-15 06:41 - 2014-07-12 06:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2014-09-15 06:41 - 2014-07-12 06:33 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-09-15 06:41 - 2014-07-12 06:13 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-09-15 06:41 - 2014-07-04 14:59 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-09-15 06:41 - 2014-07-04 12:29 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2014-09-15 06:41 - 2014-07-04 12:20 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-09-15 06:41 - 2014-07-04 12:06 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2014-09-15 06:41 - 2014-07-04 12:00 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-09-15 06:41 - 2014-07-04 11:27 - 00474112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-09-15 06:41 - 2014-06-27 08:22 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-09-15 06:41 - 2014-06-26 02:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2014-09-15 06:41 - 2014-06-20 01:37 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-09-15 06:41 - 2014-06-19 04:13 - 00310080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-09-15 06:41 - 2014-06-07 14:46 - 00216368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-09-15 06:41 - 2014-06-07 12:20 - 00189016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2014-09-15 06:41 - 2014-06-05 16:00 - 01118040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-09-15 06:41 - 2014-06-05 11:42 - 00889856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-09-15 06:41 - 2014-05-31 07:00 - 01463808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2014-09-15 06:41 - 2014-05-31 06:18 - 01319936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2014-09-15 06:41 - 2014-05-29 08:23 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-09-15 06:41 - 2014-05-29 07:25 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-09-15 06:41 - 2014-05-29 07:20 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-09-15 06:41 - 2014-05-29 06:36 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-09-15 06:41 - 2014-05-26 09:26 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-09-15 06:41 - 2014-05-10 12:12 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-09-15 06:41 - 2014-05-10 10:46 - 00335680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-09-15 06:41 - 2014-03-25 04:27 - 00160600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2014-09-15 06:41 - 2014-03-25 04:27 - 00123920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2014-09-15 06:41 - 2014-03-25 03:20 - 00128568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2014-09-15 06:41 - 2014-03-25 03:20 - 00127544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2014-09-15 06:40 - 2014-07-24 13:51 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTT102.DLL
2014-09-15 06:40 - 2014-07-24 12:52 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTT102.DLL
2014-09-15 06:40 - 2014-07-24 10:06 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-09-15 06:40 - 2014-07-10 01:19 - 00387391 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-09-15 06:29 - 2014-08-15 02:36 - 00146752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-09-11 18:07 - 2014-08-16 04:40 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-09-11 18:07 - 2014-08-16 03:56 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-09-11 18:07 - 2014-08-16 03:54 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-09-11 18:07 - 2014-08-16 03:43 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-09-11 18:07 - 2014-08-16 03:32 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-09-11 18:07 - 2014-08-16 03:25 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-11 18:07 - 2014-08-16 03:22 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-11 18:07 - 2014-08-16 03:20 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-11 18:07 - 2014-08-16 03:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-09-11 18:07 - 2014-08-16 03:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-09-11 18:07 - 2014-08-16 03:11 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-11 18:07 - 2014-08-16 03:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-09-11 18:07 - 2014-08-16 03:05 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-09-11 18:07 - 2014-08-16 03:05 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-09-11 18:07 - 2014-08-16 03:03 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-11 18:07 - 2014-08-16 02:58 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-11 18:07 - 2014-08-16 02:53 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-11 18:07 - 2014-08-16 02:53 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-11 18:07 - 2014-08-16 02:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-11 18:07 - 2014-08-16 02:44 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-11 18:07 - 2014-08-16 02:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-09-11 18:07 - 2014-08-16 02:12 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-11 18:06 - 2014-08-16 04:04 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-11 18:06 - 2014-08-16 04:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-09-11 18:06 - 2014-08-16 04:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-09-11 18:06 - 2014-08-16 03:45 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-11 18:06 - 2014-08-16 03:18 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-11 18:06 - 2014-08-16 03:03 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-09-11 18:06 - 2014-08-16 02:56 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-09-11 18:06 - 2014-08-16 02:53 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-09-11 18:06 - 2014-08-16 02:51 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-11 18:06 - 2014-08-16 02:44 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-11 18:06 - 2014-08-16 02:34 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-09-11 18:06 - 2014-08-16 02:20 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-09-11 18:06 - 2014-08-16 02:14 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-11 18:05 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-09-11 18:04 - 2014-09-05 04:36 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-09-11 18:04 - 2014-09-05 04:31 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-09-11 18:04 - 2014-09-05 02:48 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-09-11 18:03 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-09-11 18:03 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-06 15:05 - 2013-10-06 22:15 - 00000000 ____D () C:\FRST
2014-10-06 15:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-10-06 14:41 - 2014-09-02 12:38 - 00000940 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-06 09:44 - 2013-12-19 11:29 - 00003946 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{AD926220-B094-41FA-AD6E-8FAD61D012B4}
2014-10-06 06:24 - 2013-10-31 12:15 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4270470650-44760745-1284566504-1001
2014-10-05 08:54 - 2014-05-06 20:11 - 00005038 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for C870D-admin c870d
2014-10-05 08:40 - 2013-09-30 06:15 - 01823174 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-05 08:40 - 2013-09-30 05:59 - 00806704 _____ () C:\WINDOWS\system32\perfh013.dat
2014-10-05 08:40 - 2013-09-30 05:59 - 00162170 _____ () C:\WINDOWS\system32\perfc013.dat
2014-10-05 08:36 - 2014-09-02 21:22 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-05 08:34 - 2013-12-04 23:47 - 00000000 ___DO () C:\Users\admin\SkyDrive
2014-10-05 08:33 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-05 01:51 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-10-03 11:03 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-10-03 08:47 - 2014-09-02 21:22 - 00001066 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-03 08:47 - 2014-09-02 21:22 - 00001062 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-03 08:46 - 2013-10-31 08:56 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-01 18:08 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-10-01 11:24 - 2014-06-03 21:01 - 00000845 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-01 11:24 - 2014-05-10 12:43 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-01 09:22 - 2014-05-10 12:43 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-09-30 20:55 - 2014-09-02 21:22 - 00004040 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-30 20:55 - 2014-09-02 21:22 - 00003804 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-09-30 17:27 - 2013-10-31 08:56 - 00000000 ____D () C:\Users\admin\AppData\Local\Google
2014-09-29 15:50 - 2012-07-26 10:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2014-09-27 16:12 - 2013-07-16 00:05 - 00000000 ____D () C:\Users\admin\AppData\Local\Packages
2014-09-25 20:39 - 2013-07-29 21:54 - 00000000 ____D () C:\Users\admin\Tracing
2014-09-25 20:27 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-25 14:44 - 2013-08-22 16:44 - 00482488 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-09-25 09:20 - 2014-05-06 19:44 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-09-24 09:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-09-24 08:53 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-09-22 08:42 - 2013-11-06 10:15 - 00278152 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-09-20 10:47 - 2014-09-02 21:21 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-18 07:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-09-18 07:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-18 07:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-09-18 07:55 - 2013-09-30 06:02 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-18 07:55 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-09-18 07:55 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-09-18 07:55 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2014-09-18 07:55 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\InputMethod
2014-09-18 07:55 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-09-18 07:55 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-09-12 22:59 - 2014-07-12 00:29 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-09-12 22:58 - 2013-10-31 05:59 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-12 22:52 - 2013-10-31 05:59 - 101694776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-11 18:08 - 2014-06-11 06:17 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-09-11 18:08 - 2014-06-11 06:17 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-11 18:08 - 2014-06-11 06:17 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-11 18:08 - 2014-06-11 06:16 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-09-11 18:08 - 2014-06-11 06:16 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-09-11 18:08 - 2014-06-11 06:16 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-09-11 18:08 - 2014-05-02 10:49 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-09-11 18:08 - 2014-05-02 10:49 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-09-11 18:07 - 2014-06-11 06:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-09-11 18:07 - 2014-06-11 06:16 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-09-11 18:07 - 2014-06-11 06:16 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-09-11 18:07 - 2014-06-11 06:16 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-09-11 18:07 - 2014-06-11 06:16 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-09-11 18:07 - 2014-06-11 06:16 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-09-11 18:07 - 2014-06-11 06:16 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-09-11 18:07 - 2014-06-11 06:16 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-09-09 19:42 - 2014-09-02 12:38 - 00003828 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

Files to move or delete:
====================
C:\ProgramData\whlb32g.dll


Some content of TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\PresentationCore.dll
C:\Users\Administrator\AppData\Local\Temp\PresentationFramework.dll
C:\Users\Administrator\AppData\Local\Temp\ReachFramework.dll
C:\Users\Administrator\AppData\Local\Temp\UIAutomationProvider.dll
C:\Users\Administrator\AppData\Local\Temp\UIAutomationTypes.dll
C:\Users\Administrator\AppData\Local\Temp\WindowsBase.dll
C:\Users\Administrator\AppData\Local\Temp\WindowsFormsIntegration.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-06 06:25

==================== End Of Log ============================