Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=2 EventIdentifier=-1610612734 EventType=1 InsertionStrings={"C:\Program Files (x86)\Common.exe",""C:\Program Files (x86)\Common" Files\InstallShield\Driver\7\Intel 32\IDriver.exe /RegServer","C:\Windows\SysWOW64","","","C:\Windows\syswow64\MsiExec.exe"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Executed process: C:\Program Files (x86)\Common.exe Executed command: "C:\Program Files (x86)\Common" Files\InstallShield\Driver\7\Intel 32\IDriver.exe /RegServer Calling process: C:\Windows\syswow64\MsiExec.exe Current directory: C:\Windows\SysWOW64 RecordNumber=10117 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151209190539.000000-000 TimeWritten=20151209190539.000000-000 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\7z1512.exe",""7z1512.exe"","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\UXTheme.dll","process detach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\UXTheme.dll Called entry: DllMain Called function: process detach Calling process: C:\Users\Administrator\Downloads\7z1512.exe Calling command: "7z1512.exe" Current directory: C:\Users\Administrator\Downloads RecordNumber=1304 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151128164557.000000+060 TimeWritten=20151128164557.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\7z1512.exe",""7z1512.exe"","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\UXTheme.dll","process attach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\UXTheme.dll Called entry: DllMain Called function: process attach Calling process: C:\Users\Administrator\Downloads\7z1512.exe Calling command: "7z1512.exe" Current directory: C:\Users\Administrator\Downloads RecordNumber=1303 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151128164555.000000+060 TimeWritten=20151128164555.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\nsis-2.46-setup.exe",""nsis-2.46-setup.exe"","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\ShFolder","process detach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\ShFolder.dll Called entry: DllMain Called function: process detach Calling process: C:\Users\Administrator\Downloads\nsis-2.46-setup.exe Calling command: "nsis-2.46-setup.exe" Current directory: C:\Users\Administrator\Downloads RecordNumber=1288 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151127210933.000000+060 TimeWritten=20151127210933.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\nsis-2.46-setup.exe",""nsis-2.46-setup.exe"","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\ShFolder.dll","process attach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\ShFolder.dll Called entry: DllMain Called function: process attach Calling process: C:\Users\Administrator\Downloads\nsis-2.46-setup.exe Calling command: "nsis-2.46-setup.exe" Current directory: C:\Users\Administrator\Downloads RecordNumber=1287 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151127210932.000000+060 TimeWritten=20151127210932.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\freeofficewindows.exe","/help","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\Cabinet.dll","process detach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\Cabinet.dll Called entry: DllMain Called function: process detach Calling process: C:\Users\Administrator\Downloads\freeofficewindows.exe Calling command: freeofficewindows.exe /help Current directory: C:\Users\Administrator\Downloads RecordNumber=1138 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151118131042.000000+060 TimeWritten=20151118131042.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\freeofficewindows.exe","/help","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\Cabinet.dll","process attach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\Cabinet.dll Called entry: DllMain Called function: process attach Calling process: C:\Users\Administrator\Downloads\freeofficewindows.exe Calling command: freeofficewindows.exe /help Current directory: C:\Users\Administrator\Downloads RecordNumber=1137 SourceName=Vulnerability and Exploit Detector TimeGenerated=20151118130456.000000+060 TimeWritten=20151118130456.000000+060 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\Silverlight.exe","Silverlight.exe /?","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\FEClient.dll","process detach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\FEClient.dll Called entry: DllMain Called function: process detach Calling process: C:\Users\Administrator\Downloads\Silverlight.exe Calling command: Silverlight.exe /? Current directory: C:\Users\Administrator\Downloads RecordNumber=137 SourceName=Vulnerability and Exploit Detector TimeGenerated=20150926044946.000000+120 TimeWritten=20150926044946.000000+120 Type=Error User=AMNESIAC\Administrator Category=0 CategoryString= ComputerName=AMNESIAC Data= EventCode=1 EventIdentifier=-1610612735 EventType=1 InsertionStrings={"C:\Users\Administrator\Downloads\Silverlight.exe","Silverlight.exe /?","C:\Users\Administrator\Downloads","C:\Users\Administrator\Downloads\FEClient.dll","process attach"} Logfile=Application Message=This might have been the call and the execution of a malicious executable (worm, virus, trojan horse)! Called module: C:\Users\Administrator\Downloads\FEClient.dll Called entry: DllMain Called function: process attach Calling process: C:\Users\Administrator\Downloads\Silverlight.exe Calling command: Silverlight.exe /? Current directory: C:\Users\Administrator\Downloads RecordNumber=136 SourceName=Vulnerability and Exploit Detector TimeGenerated=20150926044945.000000+120 TimeWritten=20150926044945.000000+120 Type=Error User=AMNESIAC\Administrator