Ga naar inhoud

links werken niet meer in firefox (en in LIVEMAIL)


rudy52

Aanbevolen berichten

ComboFix 13-08-29.01 - rudy 30-08-2013 15:14:33.4.4 - x86

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3063.2129 [GMT 2:00]

Gestart vanuit: c:\users\rudy\Downloads\ComboFix.exe

gebruikte Opdracht switches :: c:\users\rudy\Documents\cfscript.txt

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\Expat Shield

c:\expat shield\hssstate.xml

c:\expat shield\hsswd\hsswd.cfg

c:\program files\Common Files\DVDVideoSoft

c:\program files\Common Files\DVDVideoSoft\bin\atl100.dll

c:\program files\Common Files\DVDVideoSoft\bin\ContextMenuHelper.exe

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\da-DK\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\de-DE\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\DVDVideoSoft.Resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\DVSSysReport.exe

c:\program files\Common Files\DVDVideoSoft\bin\DVSUpdate.exe

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\el-GR\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\es-ES\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\fr-FR\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\hu-HU\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\hu-HU\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\hu-HU\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\hu-HU\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\hu-HU\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\it-IT\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ja-JP\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\mfc100u.dll

c:\program files\Common Files\DVDVideoSoft\bin\mfcm100u.dll

c:\program files\Common Files\DVDVideoSoft\bin\msvcp100.dll

c:\program files\Common Files\DVDVideoSoft\bin\msvcr100.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\nl-NL\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pl-PL\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\PrerequisiteCheck.exe

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-BR\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\pt-PT\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\ru-RU\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\SubscriptionOffer.exe

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\sv-SE\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\tr-TR\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CHS\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CHS\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CHT\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CHT\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-CN\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\DVDVideoSoft.AppFx.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\DVDVideoSoft.DialogForms.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\DVDVideoSoft.Resources.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\DVSSysReport.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\PrerequisiteCheck.resources.dll

c:\program files\Common Files\DVDVideoSoft\bin\zh-TW\SubscriptionOffer.resources.dll

c:\program files\Common Files\DVDVideoSoft\chimes.wav

c:\program files\Common Files\DVDVideoSoft\FreeStudioManager.exe

c:\program files\Common Files\DVDVideoSoft\lib\atl100.dll

c:\program files\Common Files\DVDVideoSoft\lib\avcodec-54.dll

c:\program files\Common Files\DVDVideoSoft\lib\avdevice-54.dll

c:\program files\Common Files\DVDVideoSoft\lib\avfilter-3.dll

c:\program files\Common Files\DVDVideoSoft\lib\avformat-54.dll

c:\program files\Common Files\DVDVideoSoft\lib\avresample-0.dll

c:\program files\Common Files\DVDVideoSoft\lib\avutil-51.dll

c:\program files\Common Files\DVDVideoSoft\lib\avutil-52.dll

c:\program files\Common Files\DVDVideoSoft\lib\boost_date_time-vc100-mt-1_53.dll

c:\program files\Common Files\DVDVideoSoft\lib\boost_filesystem-vc100-mt-1_53.dll

c:\program files\Common Files\DVDVideoSoft\lib\boost_regex-vc100-mt-1_53.dll

c:\program files\Common Files\DVDVideoSoft\lib\boost_system-vc100-mt-1_53.dll

c:\program files\Common Files\DVDVideoSoft\lib\boost_thread-vc100-mt-1_53.dll

c:\program files\Common Files\DVDVideoSoft\lib\collector.dll

c:\program files\Common Files\DVDVideoSoft\lib\CudaTranscoder.dll

c:\program files\Common Files\DVDVideoSoft\lib\DVSiTunes.dll

c:\program files\Common Files\DVDVideoSoft\lib\DVSResources.dll

c:\program files\Common Files\DVDVideoSoft\lib\dvsservice.exe

c:\program files\Common Files\DVDVideoSoft\lib\dvssyshelper.dll

c:\program files\Common Files\DVDVideoSoft\lib\ffmpeg.exe

c:\program files\Common Files\DVDVideoSoft\lib\icudt51.dll

c:\program files\Common Files\DVDVideoSoft\lib\icuin51.dll

c:\program files\Common Files\DVDVideoSoft\lib\icuuc51.dll

c:\program files\Common Files\DVDVideoSoft\lib\libcurl.dll

c:\program files\Common Files\DVDVideoSoft\lib\libeay32.dll

c:\program files\Common Files\DVDVideoSoft\lib\libEGL.dll

c:\program files\Common Files\DVDVideoSoft\lib\libfftw3f-3.dll

c:\program files\Common Files\DVDVideoSoft\lib\libGLESv2.dll

c:\program files\Common Files\DVDVideoSoft\lib\libmp3lame.dll

c:\program files\Common Files\DVDVideoSoft\lib\MediaTagsEditor.dll

c:\program files\Common Files\DVDVideoSoft\lib\mfc100u.dll

c:\program files\Common Files\DVDVideoSoft\lib\mfcm100u.dll

c:\program files\Common Files\DVDVideoSoft\lib\Microsoft.WindowsAPICodePack.dll

c:\program files\Common Files\DVDVideoSoft\lib\Microsoft.WindowsAPICodePack.Shell.dll

c:\program files\Common Files\DVDVideoSoft\lib\mmcore-pinv.dll

c:\program files\Common Files\DVDVideoSoft\lib\mmcore.dll

c:\program files\Common Files\DVDVideoSoft\lib\msvcp100.dll

c:\program files\Common Files\DVDVideoSoft\lib\msvcr100.dll

c:\program files\Common Files\DVDVideoSoft\lib\platforms\qwindows.dll

c:\program files\Common Files\DVDVideoSoft\lib\postproc-52.dll

c:\program files\Common Files\DVDVideoSoft\lib\Qt5Core.dll

c:\program files\Common Files\DVDVideoSoft\lib\Qt5Gui.dll

c:\program files\Common Files\DVDVideoSoft\lib\Qt5Widgets.dll

c:\program files\Common Files\DVDVideoSoft\lib\rockid-pinv.dll

c:\program files\Common Files\DVDVideoSoft\lib\rockid.dll

c:\program files\Common Files\DVDVideoSoft\lib\SDL.dll

c:\program files\Common Files\DVDVideoSoft\lib\ssleay32.dll

c:\program files\Common Files\DVDVideoSoft\lib\stat.dll

c:\program files\Common Files\DVDVideoSoft\lib\swresample-0.dll

c:\program files\Common Files\DVDVideoSoft\lib\swscale-2.dll

c:\program files\Common Files\DVDVideoSoft\lib\tier0-pinv.dll

c:\program files\Common Files\DVDVideoSoft\lib\tier0.dll

c:\program files\Common Files\DVDVideoSoft\lib\Uninstall.exe

c:\program files\Common Files\DVDVideoSoft\lib\VideoFileToIPOD.dll

c:\program files\Common Files\DVDVideoSoft\lib\wbrhelper.dll

c:\program files\Common Files\DVDVideoSoft\lib\zlib1.dll

c:\program files\Conduit

c:\program files\Conduit\Community Alerts\Alert.dll

c:\program files\DVDVideoSoft

c:\program files\DVDVideoSoft\Free Audio Converter\da-DK\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\da-DK\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\da-DK\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\da-DK\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\da-DK\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\de-DE\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\de-DE\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\de-DE\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\de-DE\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\de-DE\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.AudioConverterAppExt.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.AVConverter.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.CategorizedByFormatAppExt.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.DVSiTunes.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.MediaTagsEditor.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.PresetEditor.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.Presets.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.Resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.RockIdHelper.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.TaskbarManager.dll

c:\program files\DVDVideoSoft\Free Audio Converter\DVDVideoSoft.VideoFileToIPOD.dll

c:\program files\DVDVideoSoft\Free Audio Converter\el-GR\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\el-GR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\el-GR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\el-GR\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\el-GR\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\es-ES\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\es-ES\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\es-ES\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\es-ES\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\es-ES\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\fr-FR\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\fr-FR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\fr-FR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\fr-FR\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\fr-FR\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe

c:\program files\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.xml

c:\program files\DVDVideoSoft\Free Audio Converter\FreeAudioConverterProfile.xml

c:\program files\DVDVideoSoft\Free Audio Converter\hu-HU\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\hu-HU\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\hu-HU\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\hu-HU\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\hu-HU\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\it-IT\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\it-IT\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\it-IT\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\it-IT\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\it-IT\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ja-JP\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ja-JP\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ja-JP\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ja-JP\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ja-JP\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\nl-NL\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\nl-NL\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\nl-NL\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\nl-NL\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\nl-NL\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pl-PL\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pl-PL\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pl-PL\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pl-PL\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pl-PL\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-BR\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-BR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-BR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-BR\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-BR\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-PT\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-PT\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-PT\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-PT\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\pt-PT\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ru-RU\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ru-RU\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ru-RU\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ru-RU\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\ru-RU\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\sv-SE\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\sv-SE\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\sv-SE\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\sv-SE\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\sv-SE\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\taglib-sharp.dll

c:\program files\DVDVideoSoft\Free Audio Converter\tr-TR\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\tr-TR\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\tr-TR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\tr-TR\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\tr-TR\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-CN\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-CN\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-CN\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-CN\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-CN\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-TW\DVDVideoSoft.AppFx.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-TW\DVDVideoSoft.DialogForms.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-TW\DVDVideoSoft.PresetEditor.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-TW\DVDVideoSoft.Resources.resources.dll

c:\program files\DVDVideoSoft\Free Audio Converter\zh-TW\DvsVideoConverterModule.resources.dll

c:\program files\DVDVideoSoft\unins000.dat

c:\program files\DVDVideoSoft\unins000.exe

c:\program files\DVDVideoSoft\unins000.msg

c:\program files\Expat Shield

c:\program files\Expat Shield\bin\af_proxy_cmd.exe

c:\program files\Expat Shield\bin\curl-ca-bundle.crt

c:\program files\Expat Shield\bin\EXPATTrayService.exe

c:\program files\Expat Shield\bin\fbw.exe

c:\program files\Expat Shield\bin\ffinst.exe

c:\program files\Expat Shield\bin\hssinst.dll

c:\program files\Expat Shield\bin\HssInstaller.exe

c:\program files\Expat Shield\bin\hsswd.exe

c:\program files\Expat Shield\bin\lang\gui-ara.dll

c:\program files\Expat Shield\bin\lang\gui-bur.dll

c:\program files\Expat Shield\bin\lang\gui-chi.dll

c:\program files\Expat Shield\bin\lang\gui-eng.dll

c:\program files\Expat Shield\bin\lang\gui-fre.dll

c:\program files\Expat Shield\bin\lang\gui-ger.dll

c:\program files\Expat Shield\bin\lang\gui-per.dll

c:\program files\Expat Shield\bin\lang\gui-rus.dll

c:\program files\Expat Shield\bin\lang\gui-spa.dll

c:\program files\Expat Shield\bin\lang\gui-vie.dll

c:\program files\Expat Shield\bin\libcurl.dll

c:\program files\Expat Shield\bin\libeay32.dll

c:\program files\Expat Shield\bin\libidn-11.dll

c:\program files\Expat Shield\bin\libpkcs11-helper-1.dll

c:\program files\Expat Shield\bin\libssl32.dll

c:\program files\Expat Shield\bin\openvpn.exe

c:\program files\Expat Shield\bin\openvpnas.exe

c:\program files\Expat Shield\bin\openvpntray.exe

c:\program files\Expat Shield\bin\tapinstall.exe

c:\program files\Expat Shield\bin\vistahlp.dll

c:\program files\Expat Shield\bin\winhlp.dll

c:\program files\Expat Shield\config\config.hvpn

c:\program files\Expat Shield\config\hss_data\wrurl

c:\program files\Expat Shield\config\hsscon.cfg

c:\program files\Expat Shield\config\hssst.cfg

c:\program files\Expat Shield\config\proxy.hvpn

c:\program files\Expat Shield\config\sd-info-direct.cfg

c:\program files\Expat Shield\config\sd-info-main.cfg

c:\program files\Expat Shield\config\sd-info-saved.cfg

c:\program files\Expat Shield\config\sdcon.cfg

c:\program files\Expat Shield\config\upd_dat.cfg

c:\program files\Expat Shield\driver\OemWin2k.inf

c:\program files\Expat Shield\driver\taphss.cat

c:\program files\Expat Shield\driver\taphss.sys

c:\program files\Expat Shield\expat.ico

c:\program files\Expat Shield\HssFF\config_ff.txt

c:\program files\Expat Shield\HssFF\config_ff_srch.txt

c:\program files\Expat Shield\HssIE\config.txt

c:\program files\Expat Shield\HssIE\config_srch.txt

c:\program files\Expat Shield\HssIE\ExpatIE.dll

c:\program files\Expat Shield\hsswd\default\default.cfg

c:\program files\Expat Shield\HssWPR\hssdrv.cat

c:\program files\Expat Shield\HssWPR\hssdrv.sys

c:\program files\Expat Shield\HssWPR\hssdrv_m.cat

c:\program files\Expat Shield\HssWPR\hssinst.dll

c:\program files\Expat Shield\HssWPR\HssInstaller.exe

c:\program files\Expat Shield\HssWPR\hsssrv.exe

c:\program files\Expat Shield\HssWPR\nethss.inf

c:\program files\Expat Shield\HssWPR\nethss_m.inf

c:\program files\Expat Shield\HssWPR\wpr.conf

c:\program files\Expat Shield\htdocs\check.js

c:\program files\Expat Shield\htdocs\conect.png

c:\program files\Expat Shield\htdocs\connect_original.png

c:\program files\Expat Shield\htdocs\connect_stay.png

c:\program files\Expat Shield\htdocs\disconnect.html

c:\program files\Expat Shield\htdocs\disconnect_original.png

c:\program files\Expat Shield\htdocs\Expat_desktop_icon.ico

c:\program files\Expat Shield\htdocs\greenico.png

c:\program files\Expat Shield\htdocs\HSS_logo.png

c:\program files\Expat Shield\htdocs\lang.js

c:\program files\Expat Shield\htdocs\logo.png

c:\program files\Expat Shield\htdocs\message.html

c:\program files\Expat Shield\htdocs\nsidefs.js

c:\program files\Expat Shield\htdocs\oac.html

c:\program files\Expat Shield\htdocs\oac.js

c:\program files\Expat Shield\htdocs\redico.png

c:\program files\Expat Shield\htdocs\restart.html

c:\program files\Expat Shield\htdocs\turnoff.png

c:\program files\Expat Shield\htdocs\turnon.png

c:\program files\Expat Shield\license.txt

c:\program files\Expat Shield\log\config.log

c:\program files\Expat Shield\log\oas.log

c:\program files\Expat Shield\Uninstall.exe

c:\program files\Expat_Shield

c:\program files\Expat_Shield\Expat_ShieldToolbarHelper.exe

c:\program files\Expat_Shield\GottenAppsContextMenu.xml

c:\program files\Expat_Shield\hk64tbExpa.dll

c:\program files\Expat_Shield\hktbExpa.dll

c:\program files\Expat_Shield\ldrtbExpa.dll

c:\program files\Expat_Shield\OtherAppsContextMenu.xml

c:\program files\Expat_Shield\prxtbExpa.dll

c:\program files\Expat_Shield\SharedAppsContextMenu.xml

c:\program files\Expat_Shield\tbExpa.dll

c:\program files\Expat_Shield\toolbar.cfg

c:\program files\Expat_Shield\ToolbarContextMenu.xml

c:\program files\Expat_Shield\uninstall.exe

c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}

.

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

-------\Service_ExpatShieldService

-------\Service_ExpatSrv

-------\Service_ExpatTrayService

-------\Service_ExpatWd

-------\Service_ExpatShieldService

-------\Service_ExpatSrv

-------\Service_ExpatTrayService

-------\Service_ExpatWd

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-07-28 to 2013-08-30 ))))))))))))))))))))))))))))))

.

.

2013-08-28 10:27 . 2013-08-28 10:28 -------- d-----w- C:\AdwCleaner

2013-08-27 09:45 . 2013-08-27 10:00 -------- d-----w- C:\muziek-mp3

2013-08-27 08:05 . 2013-08-27 08:05 -------- d-----w- c:\program files\Trend Micro

2013-08-26 12:39 . 2013-08-06 07:28 7166848 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{42028B9F-816C-4419-ADE8-1D60436BB1C9}\mpengine.dll

2013-08-22 09:21 . 2013-08-22 09:23 -------- d-----w- c:\windows\system32\MRT

2013-08-22 09:10 . 2013-07-09 04:52 175104 ----a-w- c:\windows\system32\wintrust.dll

2013-08-22 09:10 . 2013-07-09 04:46 140288 ----a-w- c:\windows\system32\cryptsvc.dll

2013-08-22 09:10 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\system32\crypt32.dll

2013-08-22 09:10 . 2013-07-09 04:46 103936 ----a-w- c:\windows\system32\cryptnet.dll

2013-08-22 09:10 . 2012-10-03 16:42 242176 ----a-w- c:\windows\system32\nlasvc.dll

2013-08-22 09:10 . 2012-10-03 16:42 175104 ----a-w- c:\windows\system32\netcorehc.dll

2013-08-22 09:10 . 2012-10-03 16:42 156672 ----a-w- c:\windows\system32\ncsi.dll

2013-08-22 09:10 . 2012-10-03 16:40 499712 ----a-w- c:\windows\system32\iphlpsvc.dll

2013-08-22 09:10 . 2012-10-03 16:42 52224 ----a-w- c:\windows\system32\nlaapi.dll

2013-08-22 09:10 . 2012-10-03 15:21 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

2013-08-22 09:10 . 2012-10-03 16:42 18944 ----a-w- c:\windows\system32\netevent.dll

2013-08-22 09:09 . 2013-07-19 01:41 2048 ----a-w- c:\windows\system32\tzres.dll

2013-08-22 09:09 . 2013-04-10 05:03 936448 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll

2013-08-22 09:09 . 2013-04-10 05:03 988672 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll

2013-08-22 09:09 . 2013-04-10 05:03 969216 ----a-w- c:\program files\Windows Journal\JNWDRV.dll

2013-08-22 09:09 . 2013-04-10 05:04 1221632 ----a-w- c:\program files\Windows Journal\NBDoc.DLL

2013-08-22 09:09 . 2013-05-13 03:08 903168 ----a-w- c:\windows\system32\certutil.exe

2013-08-22 09:09 . 2013-05-13 03:08 43008 ----a-w- c:\windows\system32\certenc.dll

2013-08-22 09:09 . 2013-07-09 05:03 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-08-22 09:09 . 2013-07-09 05:03 3968960 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-08-22 09:07 . 2013-06-05 03:05 2347520 ----a-w- c:\windows\system32\win32k.sys

2013-08-22 09:07 . 2013-02-27 05:05 101720 ----a-w- c:\windows\system32\consent.exe

2013-08-22 09:07 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\system32\authui.dll

2013-08-22 09:07 . 2013-02-27 04:49 47104 ----a-w- c:\windows\system32\appinfo.dll

2013-08-22 09:07 . 2013-06-04 04:53 509440 ----a-w- c:\windows\system32\qedit.dll

2013-08-22 09:07 . 2013-03-19 04:53 186368 ----a-w- c:\windows\system32\wwansvc.dll

2013-08-22 09:07 . 2013-03-19 03:33 40960 ----a-w- c:\windows\system32\wwanprotdim.dll

2013-08-22 09:07 . 2012-11-23 02:48 49152 ----a-w- c:\windows\system32\taskhost.exe

2013-08-22 09:06 . 2013-05-27 04:57 680960 ----a-w- c:\program files\Windows Defender\MpSvc.dll

2013-08-22 09:06 . 2013-05-27 04:57 392704 ----a-w- c:\program files\Windows Defender\MpClient.dll

2013-08-22 09:06 . 2013-05-27 04:57 224768 ----a-w- c:\program files\Windows Defender\MpCommu.dll

2013-08-22 08:46 . 2013-06-15 03:38 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys

2013-08-22 08:15 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe

2013-08-21 17:37 . 2013-08-21 17:37 -------- d-----w- c:\program files\Mozilla Maintenance Service

2013-08-19 17:56 . 2013-08-19 17:56 -------- d-----w- C:\temp

2013-08-15 11:35 . 2013-03-07 07:49 19840 ----a-w- c:\windows\system32\EuEpmGdi.dll

2013-08-15 11:35 . 2013-04-11 12:10 2498216 ----a-w- c:\windows\system32\BootMan.exe

2013-08-15 11:35 . 2013-03-07 07:49 9160 ----a-w- c:\windows\system32\EuGdiDrv.sys

2013-08-15 11:35 . 2013-03-07 07:49 87112 ----a-w- c:\windows\system32\setupempdrv03.exe

2013-08-15 11:35 . 2013-03-07 07:49 14920 ----a-w- c:\windows\system32\epmntdrv.sys

2013-08-15 11:35 . 2013-08-15 11:35 -------- d-----w- c:\program files\EaseUS

2013-08-15 08:03 . 2013-08-15 08:03 -------- d-----w- c:\program files\Common Files\Adobe

2013-08-15 07:57 . 2013-08-15 07:57 -------- d-----w- c:\program files\Mediafour

2013-08-15 07:56 . 2013-08-15 07:56 -------- d-----w- c:\windows\Downloaded Installations

2013-08-15 07:55 . 2013-08-15 07:55 -------- d-----w- c:\windows\system32\URTTEMP

2013-08-14 10:31 . 2013-08-14 10:31 -------- d-----w- c:\programdata\Freemake

2013-08-14 10:30 . 2013-08-14 10:31 -------- d-----w- c:\program files\Freemake

2013-08-14 09:24 . 2013-08-14 09:24 -------- d-----w- c:\program files\Microsoft Expression

2013-08-14 09:11 . 2013-08-14 09:11 -------- d-----w- c:\program files\Exact Audio Copy

2013-08-13 17:19 . 2013-08-13 17:19 -------- d-----w- c:\program files\Griffith

2013-08-13 16:10 . 2013-08-15 15:06 -------- d-----w- C:\Muziek-bib

2013-08-13 15:46 . 2013-08-13 15:46 -------- d-----w- c:\programdata\FileOpen

2013-08-13 15:45 . 2013-07-26 05:35 27152 ----a-w- c:\windows\system32\nitrolocalmon2.dll

2013-08-13 15:45 . 2013-07-26 05:35 18448 ----a-w- c:\windows\system32\nitrolocalui2.dll

2013-08-13 15:45 . 2013-08-13 15:45 -------- d-----w- c:\programdata\Nitro

2013-08-13 15:45 . 2013-08-13 15:45 -------- d-----w- c:\program files\Nitro

2013-08-13 15:45 . 2013-08-13 15:45 -------- d-----w- c:\program files\Common Files\Nitro

2013-08-13 13:50 . 2013-08-13 13:50 -------- d-----w- C:\Soulseek

2013-08-13 13:46 . 2013-08-28 19:48 -------- d-----w- c:\programdata\Soulseek

2013-08-13 13:45 . 2013-08-13 13:45 -------- d-----w- c:\program files\SoulseekQt

2013-08-13 13:44 . 2013-08-13 13:44 -------- d-----w- c:\program files\SoulseekNS

2013-08-13 13:13 . 2013-08-13 13:13 -------- d-----w- c:\programdata\MediaMonkey

2013-08-13 13:13 . 2013-08-13 13:13 -------- d-----w- c:\program files\MediaMonkey

2013-08-13 12:38 . 2013-08-13 16:21 -------- d--h--w- c:\windows\Icons

2013-08-13 10:29 . 2013-08-13 10:29 -------- d-----w- c:\programdata\Canneverbe Limited

2013-08-13 10:29 . 2013-08-13 12:17 -------- d-----w- c:\program files\CDBurnerXP

2013-08-13 10:03 . 2013-08-13 10:03 -------- d-----w- c:\program files\ImgBurn

2013-08-13 09:45 . 2013-08-13 09:45 -------- d-----w- c:\program files\Speccy

2013-08-13 09:43 . 2013-08-13 09:43 -------- d-----w- c:\program files\LopeSoft

2013-08-13 09:32 . 2013-08-13 09:32 -------- d-----w- c:\program files\Common Files\Innovative Solutions

2013-08-13 09:32 . 2013-08-13 09:57 -------- d-----w- c:\programdata\Innovative Solutions

2013-08-13 09:32 . 2013-08-13 09:56 -------- d-----w- c:\program files\Innovative Solutions

2013-08-13 09:27 . 2013-08-13 09:27 -------- d-----w- c:\program files\PrivaZer

2013-08-13 09:22 . 2013-08-13 09:22 -------- d-----w- c:\program files\FileHippo.com

2013-08-13 09:20 . 2013-08-13 09:20 -------- d-----w- c:\program files\Magical Jelly Bean

2013-08-13 09:19 . 2010-03-15 10:31 165376 ----a-w- c:\windows\system32\unrar.dll

2013-08-13 09:18 . 2013-08-13 09:19 -------- d-----w- c:\program files\K-Lite Codec Pack

2013-08-13 09:18 . 2013-08-13 09:18 -------- d-----w- c:\program files\Free Opener

2013-08-13 09:17 . 2013-08-13 09:17 -------- d-----w- c:\programdata\APN

2013-08-13 09:16 . 2013-08-13 09:16 -------- d-----w- c:\program files\Glary Utilities

2013-08-13 07:57 . 2013-08-13 07:57 -------- d-----w- c:\windows\system32\SPReview

2013-08-13 07:55 . 2013-08-13 07:55 -------- d-----w- c:\windows\system32\EventProviders

2013-08-13 07:40 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll

2013-08-13 07:40 . 2010-11-20 12:21 11776 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-08-13 07:40 . 2010-11-20 10:24 52224 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys

2013-08-13 07:38 . 2010-11-20 12:24 271664 ----a-w- c:\windows\system32\fveapi.dll

2013-08-13 07:37 . 2010-11-20 12:21 410112 ----a-w- c:\windows\system32\wlanui.dll

2013-08-13 07:36 . 2010-11-20 12:20 427520 ----a-w- c:\windows\system32\PortableDeviceStatus.dll

2013-08-13 07:35 . 2010-11-20 12:00 6656 ----a-w- c:\windows\system32\KBDSF.DLL

2013-08-13 07:30 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\wdscore.dll

2013-08-13 07:29 . 2010-11-20 12:21 189952 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll

2013-08-13 07:29 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll

2013-08-13 07:29 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll

2013-08-13 07:28 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\sqmapi.dll

2013-08-13 07:26 . 2013-04-17 18:20 23872 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe

2013-08-13 06:52 . 2013-08-13 06:52 -------- d-----w- c:\programdata\Malwarebytes

2013-08-13 06:52 . 2013-08-13 06:54 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-08-13 06:52 . 2013-04-04 12:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-08-13 06:51 . 2013-08-13 07:13 -------- d-----w- c:\programdata\IObit

2013-08-13 06:51 . 2013-08-13 12:12 -------- d-----w- c:\program files\IObit

2013-08-12 17:59 . 2013-08-12 17:59 -------- d-----w- c:\program files\CCleaner

2013-08-12 17:54 . 2013-08-12 17:54 -------- d-----w- c:\program files\Recuva

2013-08-12 10:13 . 2013-08-12 17:51 -------- d-----w- c:\program files\Calibre2

2013-08-12 08:21 . 2013-08-12 08:21 -------- d-----w- c:\windows\system32\Wat

2013-08-12 06:22 . 2013-08-26 17:48 -------- d-----w- c:\windows\Panther

2013-08-12 05:38 . 2013-08-13 10:54 -------- d-----w- C:\Windows.old

2013-08-12 02:05 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll

2013-08-12 02:05 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll

2013-08-12 02:05 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll

2013-08-12 01:19 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2013-08-12 01:19 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2013-08-12 01:19 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll

2013-08-12 01:17 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2013-08-12 01:17 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2013-08-12 01:17 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

2013-08-12 01:17 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

2013-08-12 01:17 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe

2013-08-12 01:17 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll

2013-08-12 01:17 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2013-08-12 01:16 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-08-13 08:20 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll

2013-08-11 22:22 . 2012-07-17 12:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SRS Audio Sandbox"="c:\program files\SRS Labs\Audio Sandbox\SRSSSC.exe" [2010-01-07 3216664]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-14 9288296]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

@="Service"

.

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"Advanced SystemCare 6"="c:\program files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"

"IAStorIcon"=c:\program files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"EaseUS EPM tray"=c:\program files\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe

"IObit Malware Fighter"="c:\program files\IObit\IObit Malware Fighter\IMF.exe" /autostart

.

R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2013-03-07 14920]

R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2013-03-07 9160]

R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2013-08-26 108032]

R3 RegFilter;RegFilter;c:\program files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys [2013-03-26 31752]

R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]

R3 UrlFilter;UrlFilter;c:\program files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys [2013-03-26 20944]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-08-12 1343400]

R4 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]

R4 FileMonitor;FileMonitor;c:\program files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys [2013-03-23 21480]

R4 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [2013-04-25 335168]

S0 aswRvrt;aswRvrt; [x]

S0 aswVmm;aswVmm; [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-27 176128]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-05-09 66336]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]

S2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3;c:\program files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [2013-07-26 196624]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-04-27 64904]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-04-27 146568]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-05-31 267880]

S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2009-09-22 579072]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-08-30 12:51 1177552 ----a-w- c:\program files\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe

.

Inhoud van de 'Gedeelde Taken' map

.

2013-08-27 c:\windows\Tasks\GlaryInitialize.job

- c:\program files\Glary Utilities\initialize.exe [2013-08-13 13:39]

.

2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-12 00:39]

.

2013-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-12 00:39]

.

.

------- Bijkomende Scan -------

.

IE: Afbeelding knippen - c:\program files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4

IE: Kopieer selectie - c:\program files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3

IE: Kopieer URL - c:\program files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0

IE: Nieuwe notitie - c:\program files\Evernote\Evernote\\EvernoteIERes\NewNote.html

IE: Pagina opemen - c:\program files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1

TCP: DhcpNameServer = 195.130.130.2 195.130.131.2

FF - ProfilePath - c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\

FF - prefs.js: browser.startup.homepage - HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag

FF - ExtSQL: 2013-08-12 02:37; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF

FF - ExtSQL: 2013-08-21 20:29; {64161300-e22b-11db-8314-0800200c9a66}; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi

FF - ExtSQL: 2013-08-21 20:31; readable@evernote.com; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\readable@evernote.com.xpi

FF - ExtSQL: 2013-08-21 20:52; {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi

FF - ExtSQL: 2013-08-22 09:37; tiletabs@DW-dev; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\tiletabs@DW-dev.xpi

FF - ExtSQL: 2013-08-22 10:17; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - ExtSQL: 2013-08-22 10:43; searchy@searchy; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\searchy@searchy.xpi

FF - ExtSQL: 2013-08-22 10:58; savedpasswordeditor@daniel.dawson; c:\users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\extensions\savedpasswordeditor@daniel.dawson.xpi

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: nglayout.initialpaint.delay - 600

FF - user.js: content.notify.interval - 600000

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.switch.threshold - 600000

.

- - - - ORPHANS VERWIJDERD - - - -

.

AddRemove-ExpatShield - c:\program files\Expat Shield\Uninstall.exe

AddRemove-Free Audio Converter_is1 - c:\program files\Common Files\DVDVideoSoft\lib\Uninstall.exe

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\windows\system32\atieclxx.exe

c:\program files\AVAST Software\Avast\AvastSvc.exe

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

c:\windows\system32\taskhost.exe

c:\windows\System32\WUDFHost.exe

c:\windows\system32\conhost.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\windows\system32\DllHost.exe

c:\windows\system32\sppsvc.exe

.

**************************************************************************

.

Voltooingstijd: 2013-08-30 15:26:36 - machine werd herstart

ComboFix-quarantined-files.txt 2013-08-30 13:26

ComboFix2.txt 2013-08-29 13:11

ComboFix3.txt 2013-08-29 12:59

ComboFix4.txt 2013-08-28 19:18

ComboFix5.txt 2013-08-30 13:13

.

Pre-Run: 986.860.277.760 bytes beschikbaar

Post-Run: 986.676.682.752 bytes beschikbaar

.

- - End Of File - - 1139970B9E9F8F5F25710331D11A2EAD

A36C5E4F47E84449FF07ED3517B43A31

Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
startupall; 
filesrcm;

  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

aangepast door kape
Link naar reactie
Delen op andere sites

Tool run by rudy on za 31-08-2013 at 12:06:28,24.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\rudy\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

31-8-2013 12:08:46 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Internet Explorer\SearchScopes\{43D03AA4-F21D-41F9-967F-19D98489D1E0} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\prefs.js:

user_pref("browser.startup.homepage", "www.hln.be");

Added to C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\mp9n4ne2.default\prefs.js:

Added to C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\mp9n4ne2.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592

---- Lines CT2911070 removed from prefs.js ----

---- Lines CT2911070 modified from prefs.js ----

---- Lines CT2911070 removed from user.js ----

---- FireFox user.js and prefs.js backups ----

user_31-08-2013_1210_.backup

prefs_31-08-2013_1210_.backup

ProfilePath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\mp9n4ne2.default

user.js not found

---- Lines CT2911070 removed from prefs.js ----

---- Lines CT2911070 modified from prefs.js ----

---- FireFox user.js and prefs.js backups ----

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"bProtectTabs"=-

==== Deleting Files \ Folders ======================

"C:\Program Files\Expat_Shield" deleted

"C:\Program Files\Common Files\DVDVideoSoft\bin" deleted

"C:\Program Files\Conduit" deleted

"C:\ProgramData\APN" deleted

"C:\ProgramData\Babylon" deleted

"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Expat Shield" deleted

"C:\Users\rudy\AppData\Local\Conduit" deleted

"C:\Users\rudy\AppData\LocalLow\Expat_Shield" deleted

"C:\Users\rudy\AppData\LocalLow\Conduit" deleted

"C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\mp9n4ne2.default\CT2911070" deleted

"C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\mp9n4ne2.default\CT2911070" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-08-28 19:03:31 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe

2013-08-28 19:03:31 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe

2013-08-28 19:03:31 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe

2013-08-28 19:03:31 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe

2013-08-28 19:03:31 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe

2013-08-13 07:37:23 163A95975E1D8819E653AA3E961371CA 51200 ----a-w- C:\Windows\twain_32.dll

2013-08-13 07:37:08 DBD14D0DB0382DFE96D7B5007DDD5ABE 65024 ----a-w- C:\Windows\bfsvc.exe

2013-08-12 00:37:36 E9C8673674ECF840EE59ED805DBE9966 41664 ----a-w- C:\Windows\avastSS.scr

2013-08-11 21:52:55 8B88EBBB05A0E56B7DCC708498C02B3E 2616320 ----a-w- C:\Windows\explorer.exe

2013-08-11 21:25:56 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\ativpsrm.bin

2013-08-11 21:19:22 DA256F9F53336B560201CDEFEAE35320 380928 ------r- C:\Windows\RtlUI2.exe

2013-08-11 21:19:22 9FCED27FC13C71D6DB2E1CE56BBAA30C 188416 ------r- C:\Windows\RTLExtUI.dll

2013-08-11 21:19:22 00D8BA2934C8B2EC7137C88B8C96F122 614400 ------r- C:\Windows\Rtlihvs.dll

2013-08-11 21:09:14 C613568549E0036980D873B0B3B18115 1251944 ------r- C:\Windows\RtlExUpd.dll

====== C:\Users\rudy\AppData\Local\Temp ====

====== C:\Windows\system32 =====

2013-08-26 17:42:59 FECA97DEEBE08DBCEDA90F35027B3B12 523264 ----a-w- C:\Windows\System32\msfeeds.dll

2013-08-26 17:42:59 FCCFE8F718BDC25ED5DD6BED8F0AFD55 1433088 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-08-26 17:42:59 FAE68ED2E090D09938642F66D004B872 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-08-26 17:42:59 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\System32\ieuinit.inf

2013-08-26 17:42:59 F47FF71033FD3F3C776CB6B579A13623 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe

2013-08-26 17:42:59 F0CA8B5121B02924A5C006750797097D 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-08-26 17:42:59 E209FE08045621CC91365F7273E11582 36352 ----a-w- C:\Windows\System32\imgutil.dll

2013-08-26 17:42:59 E0F76CC8056B6756D91ACF069175F075 116736 ----a-w- C:\Windows\System32\iepeers.dll

2013-08-26 17:42:59 DE7626C6B3DBFA754B98E0C5ED623FCE 151552 ----a-w- C:\Windows\System32\iexpress.exe

2013-08-26 17:42:59 CF9A5FB24CB98DFDEB7B9CDA12320070 61952 ----a-w- C:\Windows\System32\iesetup.dll

2013-08-26 17:42:59 CE54DE13D773ACA4AD2C41670789D6F2 126976 ----a-w- C:\Windows\System32\occache.dll

2013-08-26 17:42:59 C61A0337513A654CAE415FC0FE622CB4 86016 ----a-w- C:\Windows\System32\iesysprep.dll

2013-08-26 17:42:59 C5CEDA6C019B8F7B659491685CA8AD36 139264 ----a-w- C:\Windows\System32\wextract.exe

2013-08-26 17:42:59 C1E2BB164B8AA91B8CF87D14023FE9FD 111616 ----a-w- C:\Windows\System32\IEAdvpack.dll

2013-08-26 17:42:59 B170CFC8F6413E3B7925E043B4A5283B 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll

2013-08-26 17:42:59 B092FA149E09151B7F9CFB1D5FEED7A3 190464 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-08-26 17:42:59 A60867F57403A52F4F67C80EBB2F4E04 48640 ----a-w- C:\Windows\System32\mshtmler.dll

2013-08-26 17:42:59 A1044D0CFABCB3B20A13B51165DAA252 675840 ----a-w- C:\Windows\System32\ieapfltr.dll

2013-08-26 17:42:59 9F337A820115196DF96DA78F19966F33 367104 ----a-w- C:\Windows\System32\dxtmsft.dll

2013-08-26 17:42:59 9D6538DCA4C222AA0FCE14CDBAF13097 13312 ----a-w- C:\Windows\System32\mshta.exe

2013-08-26 17:42:59 95DB51033CB29C40CE91672295AD8CF8 639488 ----a-w- C:\Windows\System32\jsIntl.dll

2013-08-26 17:42:59 8D5664644004CE31C35FD0977AD330FA 2154496 ----a-w- C:\Windows\System32\iertutil.dll

2013-08-26 17:42:59 8CDBF369EFD4F5528CDC8B8F31E21E73 3584 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2013-08-26 17:42:59 827472E84471E6D3C98A32B857423E9A 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2013-08-26 17:42:59 7F26F3058FB12BBADAF40E5725ACF422 645120 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-08-26 17:42:59 7BDCD87FF4AEE2EE5632C1833F89CAA8 233472 ----a-w- C:\Windows\System32\url.dll

2013-08-26 17:42:59 78680B4DABE52EBCD321AAF5079A4894 43008 ----a-w- C:\Windows\System32\msfeedsbs.dll

2013-08-26 17:42:59 750C874339ABB62C1C25171DCFE63AF3 337408 ----a-w- C:\Windows\System32\html.iec

2013-08-26 17:42:59 63D0C4723AC57DF5ED138A25527CEA4D 1140224 ----a-w- C:\Windows\System32\urlmon.dll

2013-08-26 17:42:59 63CA000B30B0E0DF210EBE6684CC8DA1 193536 ----a-w- C:\Windows\System32\elshyph.dll

2013-08-26 17:42:59 615C75FF4AA4B482BD474031E192D73E 69632 ----a-w- C:\Windows\System32\mshtmled.dll

2013-08-26 17:42:59 607CBFAC4412874796ACB04AF8DF0EC8 112128 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-08-26 17:42:59 5F253633E90C698B5DE3F08977104C95 56320 ----a-w- C:\Windows\System32\pngfilt.dll

2013-08-26 17:42:59 568931BEA3DD2BE39BCC01A1A0D9E4FE 164864 ----a-w- C:\Windows\System32\msrating.dll

2013-08-26 17:42:59 54DBDC4633870364C8799132784321D1 244224 ----a-w- C:\Windows\System32\dxtrans.dll

2013-08-26 17:42:59 54AAAC132ED14ED725198C0FE0BB5E33 32768 ----a-w- C:\Windows\System32\iernonce.dll

2013-08-26 17:42:59 547B98715A83A943C4D4CDD4BCA72AC2 1788928 ----a-w- C:\Windows\System32\wininet.dll

2013-08-26 17:42:59 5239B89FB61D9BE9699E2D918C43BDC9 892416 ----a-w- C:\Windows\System32\mshtmlmedia.dll

2013-08-26 17:42:59 4D12FD9A956F3367503945378F4AC499 62464 ----a-w- C:\Windows\System32\tdc.ocx

2013-08-26 17:42:59 454805B7C6E650195E1A29C88AE2976C 4246528 ----a-w- C:\Windows\System32\jscript9.dll

2013-08-26 17:42:59 44534A31F1E14CE1D4665B63E57B8419 534528 ----a-w- C:\Windows\System32\jscript9diag.dll

2013-08-26 17:42:59 416B7D19EE64E278EDDA4342617D2205 24576 ----a-w- C:\Windows\System32\licmgr10.dll

2013-08-26 17:42:59 3E0D3BDA5515F5EF150967CFE952D24C 11086848 ----a-w- C:\Windows\System32\ieframe.dll

2013-08-26 17:42:59 3BF6EDFFB91B2EB902F90986699841A8 238408 ----a-w- C:\Windows\System32\iedkcs32.dll

2013-08-26 17:42:59 39CCF64B5F2A781C50ED3A29847AF066 183808 ----a-w- C:\Windows\System32\msls31.dll

2013-08-26 17:42:59 31F7373A009690A35C747656ACA6E198 444416 ----a-w- C:\Windows\System32\ieui.dll

2013-08-26 17:42:59 2F2BA57AF5B361C37CAA00EA4CE6490C 16985600 ----a-w- C:\Windows\System32\mshtml.dll

2013-08-26 17:42:59 2E2E91966C6AD38C783C51FC10BEC61E 609280 ----a-w- C:\Windows\System32\ieapfltr.dat

2013-08-26 17:42:59 2B1CC82D5397866121A7B95F58170978 612352 ----a-w- C:\Windows\System32\jscript.dll

2013-08-26 17:42:59 2B187D3A111761255CCD2EB3690FB441 12288 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-08-26 17:42:59 2819C97B61213BEAAB09AA3D8F2864E7 43008 ----a-w- C:\Windows\System32\jsproxy.dll

2013-08-26 17:42:59 27175EB0654A722849807FCE882D870E 83456 ----a-w- C:\Windows\System32\inseng.dll

2013-08-26 17:42:59 1D055A7049B9BFA83B77178D8ED66D18 2724352 ----a-w- C:\Windows\System32\mshtml.tlb

2013-08-26 17:42:59 139194280FCC470BF3F2694BF948862E 454144 ----a-w- C:\Windows\System32\vbscript.dll

2013-08-26 17:42:59 075792738D2C5392D2D150F4E308F55B 207360 ----a-w- C:\Windows\System32\webcheck.dll

2013-08-26 17:42:59 032856F04B638061E305E14D94397951 69120 ----a-w- C:\Windows\System32\icardie.dll

2013-08-26 17:42:13 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\System32\d3d10core.dll

2013-08-26 17:42:13 E12C4928B32ACE04610259647F072635 906240 ----a-w- C:\Windows\System32\FntCache.dll

2013-08-26 17:42:13 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\System32\dxgi.dll

2013-08-26 17:42:13 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\System32\d3d10_1core.dll

2013-08-26 17:42:13 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\System32\XpsGdiConverter.dll

2013-08-26 17:42:13 B3170CCC779B682C3341873EA60CF084 1988096 ----a-w- C:\Windows\System32\d3d10warp.dll

2013-08-26 17:42:13 9FF8F684BACF326082E5562F7C104A79 3419136 ----a-w- C:\Windows\System32\d2d1.dll

2013-08-26 17:42:13 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\System32\UIAnimation.dll

2013-08-26 17:42:13 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\System32\d3d10.dll

2013-08-26 17:42:13 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\System32\XpsPrint.dll

2013-08-26 17:42:13 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-08-26 17:42:13 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-08-26 17:42:13 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll

2013-08-26 17:42:13 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-08-26 17:42:13 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\System32\msmpeg2vdec.dll

2013-08-26 17:42:13 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-08-26 17:42:13 545F1BAAADD0BF1F4FE4586293FCA07D 417792 ----a-w- C:\Windows\System32\WMPhoto.dll

2013-08-26 17:42:13 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\System32\d3d10level9.dll

2013-08-26 17:42:13 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-08-26 17:42:13 4277F5164DE9B7C665BB928B9145BEE0 1247744 ----a-w- C:\Windows\System32\DWrite.dll

2013-08-26 17:42:13 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\System32\d3d10_1.dll

2013-08-26 17:42:13 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll

2013-08-26 17:42:13 3BCECD87AB4E6743BFB45B352AD1A529 1230336 ----a-w- C:\Windows\System32\WindowsCodecs.dll

2013-08-26 17:42:13 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-08-26 17:42:13 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-08-26 17:42:13 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-08-22 09:10:19 AE8EB083B050E17A7D6EB5E28AECDDD6 1166848 ----a-w- C:\Windows\System32\crypt32.dll

2013-08-22 09:10:19 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\System32\cryptsvc.dll

2013-08-22 09:10:19 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\System32\cryptnet.dll

2013-08-22 09:10:19 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\System32\wintrust.dll

2013-08-22 09:10:02 58F67245D041FBE7AF88F4EAF79DF0FA 499712 ----a-w- C:\Windows\System32\iphlpsvc.dll

2013-08-22 09:10:02 5078492B9CAC9CB721698DB51F039035 175104 ----a-w- C:\Windows\System32\netcorehc.dll

2013-08-22 09:10:02 374071043F9E4231EE43BE2BB48DD36D 242176 ----a-w- C:\Windows\System32\nlasvc.dll

2013-08-22 09:10:02 140D9F911182357626165EA0BEB98C4F 156672 ----a-w- C:\Windows\System32\ncsi.dll

2013-08-22 09:10:01 50E0DD0A5B8D8BC353578F2F73926697 52224 ----a-w- C:\Windows\System32\nlaapi.dll

2013-08-22 09:10:00 23FC8068953C9BE2D63AE4EF1129112A 18944 ----a-w- C:\Windows\System32\netevent.dll

2013-08-22 09:09:47 D5E18BA95F9E7D787D25EF07AC68603E 2048 ----a-w- C:\Windows\System32\tzres.dll

2013-08-22 09:09:16 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe

2013-08-22 09:09:14 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\System32\certenc.dll

2013-08-22 09:09:04 9FA7BF625122CCAC90FCD307174D8CF3 3913664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-08-22 09:09:03 DD5F17D44E9966E7EA447AE8C4D12D6C 3968960 ----a-w- C:\Windows\System32\ntkrnlpa.exe

2013-08-22 09:08:59 113B224CA1F55673C410A91D986D2276 1289096 ----a-w- C:\Windows\System32\ntdll.dll

2013-08-22 09:08:55 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\System32\win32spl.dll

2013-08-22 09:08:55 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\System32\d3d11.dll

2013-08-22 09:08:53 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\System32\cryptdlg.dll

2013-08-22 09:08:51 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\System32\WMVDECOD.DLL

2013-08-22 09:08:49 EF71BA5DF59034962B0C62314A71351A 193536 ----a-w- C:\Windows\System32\dhcpcore6.dll

2013-08-22 09:08:49 81F6C1AE23B1C493D9E996C3103915D7 44032 ----a-w- C:\Windows\System32\dhcpcsvc6.dll

2013-08-22 09:08:34 5A043BDA3BFADD5B4C16F3BDE5EC4312 652800 ----a-w- C:\Windows\System32\rpcrt4.dll

2013-08-22 09:07:45 4D52150FC35E333F6CBBB6B6E6D9366D 2347520 ----a-w- C:\Windows\System32\win32k.sys

2013-08-22 09:07:40 565D78187494FB5F08B5A52DEB2AEA7A 12872704 ----a-w- C:\Windows\System32\shell32.dll

2013-08-22 09:07:39 EACFDF31921F51C097629F1F3C9129B4 47104 ----a-w- C:\Windows\System32\appinfo.dll

2013-08-22 09:07:39 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\System32\authui.dll

2013-08-22 09:07:39 B0BC447C758FF055D53FC6831FDB0344 101720 ----a-w- C:\Windows\System32\consent.exe

2013-08-22 09:07:39 1F05F5A16881CD928C82D53CEFCF4477 180224 ----a-w- C:\Windows\System32\shdocvw.dll

2013-08-22 09:07:33 DA8AAF7E56F698608A89542131F74818 40960 ----a-w- C:\Windows\System32\wwanprotdim.dll

2013-08-22 09:07:33 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe

2013-08-22 09:07:33 674EB817CF6E43B7DF3EC26E06E98D98 509440 ----a-w- C:\Windows\System32\qedit.dll

2013-08-22 09:07:33 3C5E51C05BE9B56EAFF4E388C3AB25E4 186368 ----a-w- C:\Windows\System32\wwansvc.dll

2013-08-22 08:26:36 C9BB421982248E7AB9610AA9887C6331 268352 ----a-w- C:\Windows\System32\FNTCACHE.DAT

2013-08-22 08:15:03 786B9C958A4F217322C24C736263C51F 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe

====== C:\Windows\system32\drivers =====

2013-08-22 09:10:01 3EEBD3BD93DA46A26E89893C7AB2FF3B 35328 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys

2013-08-22 09:08:35 ED80D303102A746D30C1684B387BCBF1 33280 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys

2013-08-22 09:08:35 8C9C922D71F1CD4DEF73F186416B7896 712048 ----a-w- C:\Windows\System32\drivers\ndis.sys

2013-08-22 09:08:35 16498EBC04AE9DD07049A8884B205C05 728424 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-08-22 09:08:34 E405328A0E38BF823E2361C413283F6D 218984 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-08-22 09:08:32 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-08-22 08:46:15 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys

2013-08-13 07:40:04 FD1D6C73E6333BE727CBCC6054247654 52224 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys

2013-08-13 07:39:45 CB7A9ABB12B8415BCE5D74994C7BA3AE 233344 ----a-w- C:\Windows\System32\drivers\msiscsi.sys

2013-08-13 07:39:45 0C4E035C7F105F1299258C90886C64C5 14208 ----a-w- C:\Windows\System32\drivers\hwpolicy.sys

2013-08-13 07:39:11 F497F67932C6FA693D7DE2780631CFE7 245632 ----a-w- C:\Windows\System32\drivers\volsnap.sys

2013-08-13 07:39:04 871917B07A141BFF43D76D8844D48106 513536 ----a-w- C:\Windows\System32\drivers\http.sys

2013-08-13 07:39:02 CEB46AB7C01C9F825F8CC6BABC18166A 115712 ----a-w- C:\Windows\System32\drivers\mrxdav.sys

2013-08-13 07:39:01 1B133875B8AA8AC48969BD3458AFE9F5 164864 ----a-w- C:\Windows\System32\drivers\1394ohci.sys

2013-08-13 07:38:56 D528BC58A489409BA40334EBF96A311B 242688 ----a-w- C:\Windows\System32\drivers\rdbss.sys

2013-08-13 07:38:56 55055F8AD8BE27A64C831322A780A228 116096 ----a-w- C:\Windows\System32\drivers\msdsm.sys

2013-08-13 07:38:51 673E55C3498EB970088E812EA820AA8F 153984 ----a-w- C:\Windows\System32\drivers\pci.sys

2013-08-13 07:38:47 04DBF4B01EA4BF25A9A3E84AFFAC9B20 53120 ----a-w- C:\Windows\System32\drivers\termdd.sys

2013-08-13 07:38:46 05D860DA1040F111503AC416CCEF2BCA 85376 ----a-w- C:\Windows\System32\drivers\sbp2port.sys

2013-08-13 07:38:41 5461686CCA2FDA57B024547733AB42E3 160128 ----a-w- C:\Windows\System32\drivers\vhdmp.sys

2013-08-13 07:38:40 012C5F4E9349E711E11E0F19A8589F0A 28032 ----a-w- C:\Windows\System32\drivers\msahci.sys

2013-08-13 07:38:36 CEA80C80BED809AA0DA6FEBC04733349 274304 ----a-w- C:\Windows\System32\drivers\acpi.sys

2013-08-13 07:38:35 EE43346C7E4B5E63E54F927BABBB32FF 246784 ----a-w- C:\Windows\System32\drivers\udfs.sys

2013-08-13 07:38:30 4C63E00F2F4B5F86AB48A58CD990F212 53120 ----a-w- C:\Windows\System32\drivers\volmgr.sys

2013-08-13 07:38:26 280122DDCF04B378EDD1AD54D71C1E54 187904 ----a-w- C:\Windows\System32\drivers\netbt.sys

2013-08-13 07:38:23 4B55C9F9A93B3BFD01ED7366EB0B9D2E 132992 ----a-w- C:\Windows\System32\drivers\ataport.sys

2013-08-13 07:38:18 2D699FB6E89CE0D8DA14ECC03B3EDFE0 130432 ----a-w- C:\Windows\System32\drivers\mpio.sys

2013-08-13 07:38:15 FC8771F45ECCCFD89684E38842539B9B 78208 ----a-w- C:\Windows\System32\drivers\mountmgr.sys

2013-08-13 07:38:11 099972E1FAF4950D3994FBAB9DD21253 140160 ----a-w- C:\Windows\System32\drivers\scsiport.sys

2013-08-13 07:38:05 518395321DC96FE2C9F0E96AC743B656 173440 ----a-w- C:\Windows\System32\drivers\rdyboost.sys

2013-08-13 07:37:56 5DCEF0C32BE0F33277326586FA503689 190976 ----a-w- C:\Windows\System32\drivers\ks.sys

2013-08-13 07:37:49 931A1DF1520ABC6E84BA4A75E6957025 55808 ----a-w- C:\Windows\System32\drivers\hidclass.sys

2013-08-13 07:37:35 B459575348C20E8121D6039DA063C704 74752 ----a-w- C:\Windows\System32\drivers\tdx.sys

2013-08-13 07:37:26 A4BDC541E69674FBFF1A8FF00BE913F2 48640 ----a-w- C:\Windows\System32\drivers\ndproxy.sys

2013-08-13 07:37:05 906DCFC5EBF4EC0433F8D4FFFB0BA334 117760 ----a-w- C:\Windows\System32\drivers\rmcast.sys

2013-08-13 07:36:43 D8A65DAFB3EB41CBB622745676FCD072 46080 ----a-w- C:\Windows\System32\drivers\ndisuio.sys

2013-08-13 07:36:33 2F885864D5BC8A16C86BEE595969A48A 21504 ----a-w- C:\Windows\System32\drivers\tdi.sys

2013-08-13 07:36:32 CBE8C58A8579CFE5FCCF809E6F114E89 31232 ----a-w- C:\Windows\System32\drivers\CompositeBus.sys

2013-08-13 07:36:32 1A078C3FE1C1F9C8561CD600C69AD300 26112 ----a-w- C:\Windows\System32\drivers\usbrpm.sys

2013-08-13 07:36:27 BE167ED0FDB9C1FA1133953C18D5A6C9 108544 ----a-w- C:\Windows\System32\drivers\cdrom.sys

2013-08-13 07:36:24 F024449C97EC1E464AAFFDA18593DB88 78336 ----a-w- C:\Windows\System32\drivers\dfsc.sys

2013-08-13 07:36:24 B2FA25D9B17A68BB93D58B0556E8C90D 108544 ----a-w- C:\Windows\System32\drivers\tunnel.sys

2013-08-13 07:36:21 1EFBC664ABFF416D1D07DB115DCB264F 10240 ----a-w- C:\Windows\System32\drivers\acpipmi.sys

2013-08-13 07:36:19 38FBE267E7E6983311179230FACB1017 118784 ----a-w- C:\Windows\System32\drivers\ndiswan.sys

2013-08-13 07:36:17 10C19F8290891AF023EAEC0832E1EB4D 24064 ----a-w- C:\Windows\System32\drivers\hidusb.sys

2013-08-13 07:36:16 AEA177F783E20150ACE5383EE368DA19 50176 ----a-w- C:\Windows\System32\drivers\appid.sys

2013-08-13 07:36:14 4BD7134618C1D2A27466A099062547BF 65536 ----a-w- C:\Windows\System32\drivers\IPMIDrv.sys

2013-08-13 07:36:13 FD82D2B38C465A55C527E339BA1201B1 25856 ----a-w- C:\Windows\System32\drivers\USBCAMD.sys

2013-08-13 07:36:13 E071E5BE621FEC4590117C488A78AE32 25856 ----a-w- C:\Windows\System32\drivers\USBCAMD2.sys

2013-08-13 07:36:13 9E3CED91863E6EE98C24794D05E27A71 28160 ----a-w- C:\Windows\System32\drivers\kbdhid.sys

2013-08-13 07:36:12 D295BED4B898F0FD999FCFA9B32B071B 39936 ----a-w- C:\Windows\System32\drivers\umbus.sys

2013-08-13 07:36:12 3C3C78515F5AB448B022BDF5B8FFDD2E 63488 ----a-w- C:\Windows\System32\drivers\wanarp.sys

2013-08-13 07:36:11 9036377B8A6C15DC2EEC53E489D159B5 108544 ----a-w- C:\Windows\System32\drivers\hdaudbus.sys

2013-08-13 07:36:11 6D4CCAEDC018F1CF52866BBBAA235982 12800 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys

2013-08-13 07:36:10 23DAE03F29D253AE74C44F99E515F9A1 6656 ----a-w- C:\Windows\System32\drivers\RDPCDD.sys

2013-08-13 07:36:10 0693B5EC673E34DC147E195779A4DCF6 26624 ----a-w- C:\Windows\System32\drivers\scfilter.sys

2013-08-13 06:52:44 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-08-12 18:00:12 F92DE757E4B7CE9C07C5E65423F3AE3B 43008 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2013-08-12 18:00:12 E185D44FAC515A18D9DEDDC23C2CDF44 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2013-08-12 18:00:12 BD9C55D7023C5DE374507ACC7A14E2AC 75776 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2013-08-12 18:00:12 8DC94AEC6A7E644A06135AE7506DC2E9 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2013-08-12 18:00:12 68DF884CF41CDADA664BEB01DAF67E3D 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2013-08-12 18:00:12 5787196F32D043572EC6565C0EF1B8E0 5888 ----a-w- C:\Windows\System32\drivers\usbd.sys

2013-08-12 18:00:12 3AA940AA9AC3055FE32FF2D3D20CCD28 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2013-08-12 18:00:06 4380E59A170D88C4F1022EFF6719A8A4 143744 ----a-w- C:\Windows\System32\drivers\nvstor.sys

2013-08-12 18:00:05 B3E25EE28883877076E0E1FF877D02E0 117120 ----a-w- C:\Windows\System32\drivers\nvraid.sys

2013-08-12 18:00:04 F991AB9CC6B908DB552166768176896A 76288 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS

2013-08-12 18:00:04 EF3D32464EBBB10449465C8CAB57CA19 148864 ----a-w- C:\Windows\System32\drivers\storport.sys

2013-08-12 18:00:04 D320BF87125326F996D4904FE24300FC 80256 ----a-w- C:\Windows\System32\drivers\amdsata.sys

2013-08-12 18:00:04 5CD5F9A5444E6CDCB0AC89BD62D8B76E 332160 ----a-w- C:\Windows\System32\drivers\iaStorV.sys

2013-08-12 18:00:04 46387FB17B086D16DEA267D5BE23A2F2 22400 ----a-w- C:\Windows\System32\drivers\amdxata.sys

2013-08-12 01:19:17 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2013-08-12 01:19:14 A840213F1ACDCC175B4D1D5AAEAC0D7A 526952 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys

2013-08-12 01:19:14 48704647CD2E9DAA2EB81BDE6D029EDB 47720 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys

2013-08-12 01:17:48 867C301E8B790040AE9CF6486E8041DF 155136 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys

2013-08-12 01:17:48 06E6F32C8D0A3F66D956F57B43A2E070 66560 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys

2013-08-12 01:17:45 933222B19FF3E7EA5F65517EA1F7D57E 3 ----a-w- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf

2013-08-12 01:16:21 7DAE5EBCC80E45D3253F4923DC424D05 19824 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2013-08-12 00:39:08 FAF091AA45A6A6CF3CF94FE065950956 175 ----a-w- C:\Windows\System32\drivers\aswSnx.sys.sum

2013-08-12 00:39:08 3FFBEE694566CADB0A64D8A1ACD7DBCE 175 ----a-w- C:\Windows\System32\drivers\aswSP.sys.sum

2013-08-12 00:39:08 22EA82FFE8CA4965C1994F24C35DC202 175 ----a-w- C:\Windows\System32\drivers\aswVmm.sys.sum

2013-08-12 00:39:06 937300BC7C4CDF7576BCCE44E19BBB9D 369584 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2013-08-12 00:39:06 4AF5F360BA1E8794D32B366E45A64A0A 29816 ----a-w- C:\Windows\System32\drivers\aswFsBlk.sys

2013-08-12 00:39:05 FFE9A993B3EC2908FECB1DF2C39148BB 61680 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2013-08-12 00:39:05 1F71F170D90E42EFDE9633D81D5E12DC 56080 ----a-w- C:\Windows\System32\drivers\aswTdi.sys

2013-08-12 00:39:04 CCD565A8A72AF7D45F9A242013870926 770344 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2013-08-12 00:39:04 B680134BA1813B78B47FDD1DFF223CA5 49376 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2013-08-12 00:39:04 8CFAA2B965773A653F48F1207A9CB9C4 175176 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2013-08-12 00:39:03 1F7094D4268D46F718C51286DC189791 66336 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2013-08-12 00:12:00 B9BB8E2093C1615AD6EA55AD96214354 27192 ----a-w- C:\Windows\System32\drivers\revoflt.sys

2013-08-11 21:56:40 5E43D2B0EE64123D4880DFA6626DEFDE 1211752 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2013-08-11 21:56:37 E4C2764065D66EA1D2D3EBC28FE99C46 311808 ----a-w- C:\Windows\System32\drivers\srv.sys

2013-08-11 21:56:37 BE6BD660CAA6F291AE06A718A4FA8ABC 114688 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2013-08-11 21:56:37 03F0545BD8D4C77FA0AE1CEEDFCC71AB 310272 ----a-w- C:\Windows\System32\drivers\srv2.sys

2013-08-11 21:56:36 9EBBBA55060F786F0FCAA3893BFA2806 338944 ----a-w- C:\Windows\System32\drivers\afd.sys

2013-08-11 21:56:35 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys

2013-08-11 21:55:53 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys

2013-08-11 21:55:05 F031683E6D1FEA157ABB2FF260B51E61 183808 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2013-08-11 21:54:59 D30159AC9237519FBC62C6EC247D2D46 134000 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2013-08-11 21:54:59 B7895B4182C0D16F6EFADEB8081E8D36 67440 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2013-08-11 21:54:59 247B4CE2DAB1160CD422D532D5241E1F 369336 ----a-w- C:\Windows\System32\drivers\cng.sys

2013-08-11 21:54:52 B81F204D146000BE76651A50670A5E9E 96768 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

2013-08-11 21:54:52 6D17A4791ACA19328C685D256349FEFC 223744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

2013-08-11 21:54:52 5D16C921E3671636C0EBA3BBAAC5FD25 123904 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

2013-08-11 21:54:17 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS

2013-08-11 21:54:17 776FCEFE2CD27C442DF66D3F3535078D 240496 ----a-w- C:\Windows\System32\drivers\netio.sys

2013-08-11 21:52:08 3F34A1B4C5F6475F320C275E63AFCE9B 56176 ----a-w- C:\Windows\System32\drivers\partmgr.sys

2013-08-11 21:51:45 D0F0D7A97C90FE72A79732812E65F822 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

2013-08-11 21:51:45 8F2DA3028D5FCBD1A060A3DE64CD6506 69632 ----a-w- C:\Windows\System32\drivers\bowser.sys

2013-08-11 21:39:26 2C2C5AFE7EE4F620D69C23C0617651A8 24576 ----a-w- C:\Windows\System32\drivers\tdtcp.sys

2013-08-11 21:39:26 1CB91B2BD8F6DD367DFC2EF26FD751B2 18432 ----a-w- C:\Windows\System32\drivers\tdpipe.sys

2013-08-11 21:19:22 51ADEF77E4C929535FD50DA153774E79 579072 ----a-r- C:\Windows\System32\drivers\rtl8192su.sys

2013-08-11 21:15:31 0516998076AD894AE7E362C3110AA071 267880 ----a-w- C:\Windows\System32\drivers\Rt86win7.sys

2013-08-11 21:09:27 DC86631461122F6E06B471B68CB17FFC 18 ------r- C:\Windows\System32\drivers\VERSION.DAT

2013-08-11 21:09:22 4BE85CF5831A41104C2DDED55FBC3565 3114024 ----a-w- C:\Windows\System32\drivers\RTKVHDA.sys

2013-08-11 21:07:35 26541A068572F650A2FA490726FE81BE 435736 ----a-w- C:\Windows\System32\drivers\iaStor.sys

2013-08-11 20:32:11 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf

====== C:\Windows\Tasks ======

2013-08-13 09:16:59 D294353C7FC38190DD2336F61C626891 2588 ----a-w- C:\Windows\system32\Tasks\GlaryInitialize

2013-08-13 09:16:59 806F7E72FF30E1F98E253DAC34E3979E 310 ----a-w- C:\Windows\Tasks\GlaryInitialize.job

2013-08-13 07:12:49 33FBA688165E5E8B0267F3FE18ABDE19 3082 ----a-w- C:\Windows\system32\Tasks\ASC6_PerformanceMonitor

2013-08-12 00:39:09 9F5B90390AF042AB578CE94AA22C1B5C 4046 ----a-w- C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA

2013-08-12 00:39:09 9207049225159E2ABD4890691884ABC9 1040 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-08-12 00:39:08 372244D95479EA799E2819E49F082905 3794 ----a-w- C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

2013-08-12 00:39:08 08FD8560E823680AA03A1796ABC1B422 1036 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-08-12 00:39:03 1703CBDA09C8B8F9389AD3B9B44A104B 4182 ----a-w- C:\Windows\system32\Tasks\avast! Emergency Update

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-08-30 13:50:55 -------- d-----w- C:\Program Files\RegCompact.NET

2013-08-27 09:55:50 -------- d-----w- C:\Program Files\Common Files\DVDVideoSoft

2013-08-27 09:55:47 -------- d-----w- C:\Program Files\DVDVideoSoft

2013-08-27 08:05:42 -------- d-----w- C:\Program Files\Trend Micro

2013-08-21 17:37:23 -------- d-----w- C:\Program Files\Mozilla Maintenance Service

2013-08-19 18:24:08 -------- d-----w- C:\Program Files\Expat Shield

2013-08-15 11:35:06 -------- d-----w- C:\Program Files\EaseUS

2013-08-15 08:03:37 -------- d-----w- C:\Program Files\Common Files\Adobe

2013-08-15 08:03:37 -------- d-----w- C:\Program Files\Adobe

2013-08-15 07:57:57 -------- d-----w- C:\Program Files\Mediafour

2013-08-14 10:30:51 -------- d-----w- C:\Program Files\Freemake

2013-08-14 09:24:14 -------- d-----w- C:\Program Files\Microsoft Expression

2013-08-14 09:11:46 -------- d-----w- C:\Program Files\Exact Audio Copy

2013-08-13 17:19:07 -------- d-----w- C:\Program Files\Griffith

2013-08-13 15:45:31 -------- d-----w- C:\Program Files\Nitro

2013-08-13 15:45:31 -------- d-----w- C:\Program Files\Common Files\Nitro

2013-08-13 13:45:47 -------- d-----w- C:\Program Files\SoulseekQt

2013-08-13 13:44:34 -------- d-----w- C:\Program Files\SoulseekNS

2013-08-13 13:13:22 -------- d-----w- C:\Program Files\MediaMonkey

2013-08-13 10:29:08 -------- d-----w- C:\Program Files\CDBurnerXP

2013-08-13 10:03:00 -------- d-----w- C:\Program Files\ImgBurn

2013-08-13 09:45:32 -------- d-----w- C:\Program Files\Speccy

2013-08-13 09:43:16 -------- d-----w- C:\Program Files\LopeSoft

2013-08-13 09:32:46 -------- d-----w- C:\Program Files\Common Files\Innovative Solutions

2013-08-13 09:32:43 -------- d-----w- C:\Program Files\Innovative Solutions

2013-08-13 09:27:06 -------- d-----w- C:\Program Files\PrivaZer

2013-08-13 09:22:56 -------- d-----w- C:\Program Files\FileHippo.com

2013-08-13 09:20:10 -------- d-----w- C:\Program Files\Magical Jelly Bean

2013-08-13 09:18:59 -------- d-----w- C:\Program Files\K-Lite Codec Pack

2013-08-13 09:18:46 -------- d-----w- C:\Program Files\Free Opener

2013-08-13 09:16:52 -------- d-----w- C:\Program Files\Glary Utilities

2013-08-13 06:51:09 -------- d-----w- C:\Program Files\IObit

2013-08-12 17:54:07 -------- d-----w- C:\Program Files\Recuva

2013-08-12 10:13:03 -------- d-----w- C:\Program Files\Calibre2

2013-08-12 00:39:06 -------- d-----w- C:\Program Files\Google

2013-08-12 00:12:00 -------- d-----w- C:\Program Files\VS Revo Group

2013-08-11 23:51:00 -------- d-----w- C:\Program Files\SRS Labs

2013-08-11 23:25:29 -------- d-----w- C:\Program Files\AllMyBooks

2013-08-11 23:13:03 -------- d-----w- C:\Program Files\Evernote

2013-08-11 22:54:57 -------- d-----w- C:\Program Files\MozBackup

2013-08-11 22:21:50 -------- d-----w- C:\Program Files\Windows Live

2013-08-11 22:18:06 -------- d-----w- C:\Program Files\Microsoft.NET

2013-08-11 22:11:51 -------- d-----w- C:\Program Files\Common Files\Windows Live

2013-08-11 21:22:14 -------- d-----w- C:\Program Files\Renesas Electronics

2013-08-11 21:19:16 -------- d-----w- C:\Program Files\REALTEK 11n USB Wireless LAN Driver

2013-08-11 21:12:25 -------- d-----w- C:\Program Files\ATI

2013-08-11 21:09:20 -------- d-----w- C:\Program Files\Realtek

2013-08-11 21:09:12 -------- d-----w- C:\Program Files\Common Files\InstallShield

2013-08-11 21:07:34 -------- d--h--w- C:\Program Files\InstallShield Installation Information

2013-08-11 21:07:34 -------- d-----w- C:\Program Files\Intel

======= C: =====

2013-08-13 08:32:03 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\asc_rdflag

2013-08-08 12:11:14 5062494197ED6ACE2DD0A5DDD5135BB7 8192 ----a-w- C:\wubildr.mbr

2013-08-08 12:11:14 228590E15F4A8BEF48A0C1C383C98A80 153084 ----a-w- C:\wubildr

====== C:\Users\rudy\AppData\Roaming ======

2013-08-30 13:50:58 DDFD5FCC909BC97BE08811A68A018D4E 92 ----a-w- C:\users\rudy\AppData\Local\fusioncache.dat

2013-08-30 13:50:55 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegCompact.NET

2013-08-30 13:26:39 -------- d-----w- C:\users\Public\AppData\Local\temp

2013-08-30 13:26:39 -------- d-----w- C:\users\Default\AppData\Local\temp

2013-08-30 13:26:39 -------- d-----w- C:\users\Default User\AppData\Local\temp

2013-08-30 13:20:25 -------- d-----w- C:\users\rudy\AppData\Local\temp

2013-08-27 09:54:16 -------- d-----w- C:\users\rudy\AppData\Roaming\DVDVideoSoft

2013-08-22 08:25:15 59E27F22D2477756E1ED91F7230FB7D1 58016 ----a-w- C:\users\rudy\AppData\Local\GDIPFONTCACHEV1.DAT

2013-08-15 08:06:24 -------- d-----w- C:\users\rudy\AppData\Locallow\Adobe

2013-08-15 08:02:40 -------- d-----w- C:\users\rudy\AppData\Local\Adobe

2013-08-14 10:31:01 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake

2013-08-14 10:26:42 -------- d-----w- C:\users\rudy\AppData\Roaming\xrecode2

2013-08-13 17:23:45 -------- d-----w- C:\users\rudy\AppData\Roaming\gtk-2.0

2013-08-13 17:19:40 -------- d-----w- C:\users\rudy\AppData\Roaming\griffith

2013-08-13 15:46:05 -------- d-----w- C:\users\rudy\AppData\Roaming\Nitro

2013-08-13 15:46:05 -------- d-----w- C:\users\rudy\AppData\Roaming\FileOpen

2013-08-13 15:43:53 -------- d-----w- C:\users\rudy\AppData\Roaming\Downloaded Installations

2013-08-13 14:44:47 -------- d-----w- C:\users\rudy\AppData\Locallow\Temp

2013-08-13 13:45:49 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt

2013-08-13 13:44:35 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soulseek NS

2013-08-13 13:13:41 -------- d-----w- C:\users\rudy\AppData\Local\MediaMonkey

2013-08-13 13:13:30 -------- d-----w- C:\users\rudy\AppData\Roaming\MediaMonkey

2013-08-13 10:29:18 -------- d-----w- C:\users\rudy\AppData\Roaming\Canneverbe Limited

2013-08-13 10:17:55 -------- d-----w- C:\users\rudy\AppData\Roaming\EAC

2013-08-13 10:17:53 -------- d-----w- C:\users\rudy\AppData\Roaming\AccurateRip

2013-08-13 10:04:13 -------- d-----w- C:\users\rudy\AppData\Roaming\ImgBurn

2013-08-13 10:03:01 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn

2013-08-13 09:32:52 -------- d-----w- C:\users\rudy\AppData\Local\Innovative Solutions

2013-08-13 09:27:07 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer

2013-08-13 09:27:06 -------- d-----w- C:\users\rudy\AppData\Local\privazer

2013-08-13 09:16:52 -------- d-----w- C:\users\rudy\AppData\Roaming\Glarysoft

2013-08-13 07:48:11 0C4B1ACB72943D8D024DABD9CDC37F85 7605 ----a-w- C:\users\rudy\AppData\Local\Resmon.ResmonCfg

2013-08-13 07:12:23 -------- d-----w- C:\users\rudy\AppData\Roaming\Apple Computer

2013-08-13 07:12:23 -------- d-----w- C:\users\rudy\AppData\Locallow\IObit

2013-08-13 07:12:21 -------- d-----w- C:\users\rudy\AppData\Roaming\IObit

2013-08-12 17:54:11 -------- d-----w- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva

2013-08-12 10:13:42 -------- d-----w- C:\users\rudy\AppData\Roaming\calibre

2013-08-12 00:51:12 -------- d-----w- C:\users\rudy\AppData\Local\Microsoft Games

2013-08-12 00:43:30 -------- d-----w- C:\users\rudy\AppData\Roaming\TuneUp Software

2013-08-12 00:39:07 -------- d-----w- C:\users\rudy\AppData\Local\Google

2013-08-12 00:12:03 -------- d-----w- C:\users\rudy\AppData\Local\VS Revo Group

2013-08-12 00:11:46 -------- d-----w- C:\users\rudy\AppData\Local\Programs

2013-08-12 00:06:15 -------- d-----w- C:\users\rudy\AppData\Local\SRS Labs

2013-08-11 23:25:32 -------- d-----w- C:\users\rudy\AppData\Roaming\Obsidium

2013-08-11 23:13:26 -------- d-----w- C:\users\rudy\AppData\Locallow\Evernote

2013-08-11 23:13:26 -------- d-----w- C:\users\rudy\AppData\Local\Evernote

2013-08-11 22:30:38 -------- d-----w- C:\users\rudy\AppData\Roaming\Windows Live Writer

2013-08-11 22:30:38 -------- d-----w- C:\users\rudy\AppData\Local\Windows Live Writer

2013-08-11 22:12:22 -------- d-----w- C:\users\rudy\AppData\Local\Windows Live

2013-08-11 21:51:05 -------- d-----w- C:\users\rudy\AppData\Roaming\Adobe

2013-08-11 21:34:45 -------- d-----w- C:\users\rudy\AppData\Roaming\Mozilla

2013-08-11 21:34:45 -------- d-----w- C:\users\rudy\AppData\Local\Mozilla

2013-08-11 21:27:26 -------- d-----w- C:\users\rudy\AppData\Roaming\Intel Corporation

2013-08-11 21:27:14 -------- d-----w- C:\users\rudy\AppData\Roaming\ATI

2013-08-11 21:27:14 -------- d-----w- C:\users\rudy\AppData\Local\ATI

2013-08-11 21:23:57 -------- d-----w- C:\users\rudy\AppData\Local\Diagnostics

2013-08-11 21:07:33 -------- d-----w- C:\users\rudy\AppData\Roaming\InstallShield

2013-08-11 21:05:11 -------- d-----w- C:\users\rudy\AppData\Locallow\Microsoft

2013-08-11 20:59:23 -------- d-----r- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-08-11 20:59:23 -------- d-----r- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-08-11 20:59:03 -------- d-----w- C:\users\rudy\AppData\Roaming\Identities

2013-08-11 20:58:40 -------- d-----w- C:\users\rudy\AppData\Local\VirtualStore

2013-08-11 20:58:35 -------- d-sh--we C:\users\rudy\AppData\Local\Temporary Internet Files

2013-08-11 20:58:35 -------- d-sh--we C:\users\rudy\AppData\Local\Geschiedenis

2013-08-11 20:58:35 -------- d-sh--we C:\users\rudy\AppData\Local\Application Data

2013-08-11 20:58:35 -------- d-s---w- C:\users\rudy\AppData\Roaming\Microsoft

2013-08-11 20:58:35 -------- d-----w- C:\users\rudy\AppData\Roaming\Media Center Programs

2013-08-11 20:58:35 -------- d-----w- C:\users\rudy\AppData\Local\Microsoft

2013-08-11 20:58:35 -------- d-----r- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2013-08-11 20:58:35 -------- d-----r- C:\users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-08-11 20:58:13 -------- d-sh--we C:\users\Default\AppData\Local\Geschiedenis

2013-08-11 20:58:13 -------- d-sh--we C:\users\Default User\AppData\Local\Geschiedenis

====== C:\Users\rudy ======

2013-08-30 13:50:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegCompact.NET

2013-08-28 19:18:04 -------- d-----w- C:\Users\Public\AppData

2013-08-28 10:26:46 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 ----a-w- C:\Users\rudy\Downloads\adwcleaner.exe

2013-08-27 09:56:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2013-08-27 09:53:58 194036FCF59C90F405B4F21F28B5F197 1080592 ----a-w- C:\Users\rudy\Downloads\FreeAudioConverter.exe

2013-08-27 09:23:08 8DE9F588DFB1641F2C0EA05BD4B60605 218 ----a-w- C:\Users\rudy\.recently-used.xbel

2013-08-27 08:26:02 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\rudy\Downloads\mbam-setup.exe

2013-08-26 17:38:16 7DF8AF5B6A24A9FF238B9311EC3082CD 29143368 ----a-w- C:\Users\rudy\Downloads\IE11-Windows6.1-x86-en-us.exe

2013-08-23 12:50:43 -------- d-----r- C:\Users\rudy\Saved Games

2013-08-22 08:24:52 10F4163F0EDDC031100180787D5F696F 347424 ----a-w- C:\Users\rudy\Downloads\MicrosoftFixit.wu.RNP.Run.exe

2013-08-21 17:36:36 BF1035FE20E6357EEC02967F9630F2B0 281728 ----a-w- C:\Users\rudy\Downloads\Firefox Setup Stub 23.0.1.exe

2013-08-21 16:58:12 4965F5CC6A9DC508E19A40911F88455F 22918416 ----a-w- C:\Users\rudy\Downloads\Firefox Setup 23.0.1.exe

2013-08-19 18:23:11 E28083629B874A4C4DE5AFF48838B2F7 6990832 ----a-w- C:\Users\rudy\Downloads\HSS-2.25-install-anchorfree-232-expatshield[1].exe

2013-08-19 18:21:32 1D275BCA9A36307E0360933E30A73F15 272072 ----a-w- C:\Users\rudy\Downloads\DM-232.exe

2013-08-19 18:12:15 E28083629B874A4C4DE5AFF48838B2F7 6990832 ----a-w- C:\Users\rudy\Downloads\HSS-2.25-install-anchorfree-232-expatshield.exe

2013-08-19 17:58:26 6C5681EBFC1CF0D2571BD232D2365C2A 8478184 ----a-w- C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit(1).exe

2013-08-19 17:57:22 6C5681EBFC1CF0D2571BD232D2365C2A 8478184 ----a-w- C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit.exe

2013-08-15 11:35:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 9.2.2

2013-08-15 08:03:22 -------- d-----w- C:\ProgramData\Adobe

2013-08-15 07:50:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter

2013-08-14 10:31:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake

2013-08-14 10:31:01 -------- d-----w- C:\ProgramData\Freemake

2013-08-14 09:24:22 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression

2013-08-14 09:11:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy

2013-08-13 17:30:49 1E0698C76D90CD1D98A56BA2052B6A92 64 ----a-w- C:\Users\rudy\.gtk-bookmarks

2013-08-13 16:42:49 -------- d-----w- C:\Users\rudy\Mail-save bij herinstall w7

2013-08-13 15:46:05 -------- d-----w- C:\ProgramData\FileOpen

2013-08-13 15:45:31 -------- d-----w- C:\ProgramData\Nitro

2013-08-13 14:10:16 -------- d-----w- C:\Users\rudy\Mijn ontvangen bestanden

2013-08-13 13:46:50 -------- d-----w- C:\ProgramData\Soulseek

2013-08-13 13:44:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soulseek NS

2013-08-13 13:13:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey

2013-08-13 13:13:25 -------- d-----w- C:\ProgramData\MediaMonkey

2013-08-13 10:29:18 -------- d-----w- C:\ProgramData\Canneverbe Limited

2013-08-13 09:43:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LopeSoft

2013-08-13 09:32:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller Free

2013-08-13 09:32:45 -------- d-----w- C:\ProgramData\Innovative Solutions

2013-08-13 09:20:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder

2013-08-13 09:18:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Opener

2013-08-13 09:16:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities

2013-08-13 07:12:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6

2013-08-13 06:51:18 -------- d-----w- C:\ProgramData\IObit

2013-08-12 10:13:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management

2013-08-12 00:42:59 -------- d-----w- C:\ProgramData\TuneUp Software

2013-08-12 00:42:46 -------- d-sh--w- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

2013-08-12 00:42:46 -------- d--h--w- C:\ProgramData\Common Files

2013-08-12 00:40:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2013-08-12 00:39:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus

2013-08-12 00:12:01 -------- d-----w- C:\ProgramData\VS Revo Group

2013-08-12 00:12:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro

2013-08-11 23:54:27 -------- d-----w- C:\ProgramData\SRS Labs

2013-08-11 23:51:15 -------- d-----w- C:\ProgramData\Real

2013-08-11 23:51:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs

2013-08-11 23:49:42 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\rudy\ntuser.pol

2013-08-11 23:48:22 -------- d-----w- C:\ProgramData\TEMP

2013-08-11 23:25:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software

2013-08-11 23:22:25 -------- d-----w- C:\ProgramData\explauncher

2013-08-11 23:13:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote

2013-08-11 22:54:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup

2013-08-11 21:34:26 -------- d-----w- C:\ProgramData\Mozilla

2013-08-11 21:27:14 -------- d-----w- C:\ProgramData\ATI

2013-08-11 21:22:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics

2013-08-11 21:21:27 -------- d-----w- C:\ProgramData\Downloaded Installations

2013-08-11 21:13:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center

2013-08-11 21:07:58 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2013-08-11 20:59:23 -------- d-----r- C:\Users\rudy\Searches

2013-08-11 20:58:58 -------- d-----r- C:\Users\rudy\Contacts

2013-08-11 20:58:35 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\rudy\ntuser.ini

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Sjablonen

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\SendTo

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Recent

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Netwerkprinteromgeving

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\NetHood

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Mijn documenten

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Menu Start

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Local Settings

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Cookies

2013-08-11 20:58:35 -------- d-sh--we C:\Users\rudy\Application Data

2013-08-11 20:58:35 -------- d--h--w- C:\Users\rudy\AppData

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Videos

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Pictures

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Music

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Links

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Favorites

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Downloads

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Documents

2013-08-11 20:58:35 -------- d-----r- C:\Users\rudy\Desktop

2013-08-11 20:58:14 -------- d-sh--we C:\ProgramData\Sjablonen

2013-08-11 20:58:14 -------- d-sh--we C:\ProgramData\Menu Start

2013-08-11 20:58:14 -------- d-sh--we C:\ProgramData\Favorieten

2013-08-11 20:58:14 -------- d-sh--we C:\ProgramData\Documenten

2013-08-11 20:58:14 -------- d-sh--we C:\ProgramData\Bureaublad

2013-08-11 20:58:13 -------- d-sh--we C:\Users\Default\Sjablonen

2013-08-11 20:58:13 -------- d-sh--we C:\Users\Default\Netwerkprinteromgeving

2013-08-11 20:58:13 -------- d-sh--we C:\Users\Default\Mijn documenten

2013-08-11 20:58:13 -------- d-sh--we C:\Users\Default\Menu Start

====== C: exe-files ==

2013-08-30 14:50:48 592EDC5CC76B4B8CE2D9D9FB97E21B25 34513760 ----a-w- C:\Program Files\Google\Update\Install\{759BF38F-35D0-4D5E-806A-AC5D18DEDB6F}\29.0.1547.62_chrome_installer.exe

2013-08-30 14:50:47 592EDC5CC76B4B8CE2D9D9FB97E21B25 34513760 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.62\29.0.1547.62_chrome_installer.exe

2013-08-29 12:50:26 DC5C3A2292D011EF3BBF9D17BD28A54C 1194848 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.62\29.0.1547.62_29.0.1547.57_chrome_updater.exe

2013-08-28 19:03:31 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe

2013-08-28 19:03:31 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe

2013-08-28 19:03:31 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe

2013-08-28 19:03:31 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe

2013-08-28 19:03:31 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe

2013-08-28 10:26:46 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 ----a-w- C:\Users\rudy\Downloads\adwcleaner.exe

2013-08-27 09:56:10 4710F1DA954C01378DCD20C101B1FD60 6468376 ----a-w- C:\Program Files\Common Files\DVDVideoSoft\FreeStudioManager.exe

2013-08-27 09:56:05 0A1E087163AA25C9F6F4B17D0A9D814E 2045440 ----a-w- C:\Program Files\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe

2013-08-27 09:56:01 F330AEEF34F027B875352BC48D5BD187 285240 ----a-w- C:\Program Files\Common Files\DVDVideoSoft\lib\ffmpeg.exe

2013-08-27 09:55:59 4D5A5B1642045F6058FA4B45EE9E8D40 243256 ----a-w- C:\Program Files\Common Files\DVDVideoSoft\lib\dvsservice.exe

2013-08-27 09:55:51 54E7E0BDD4CE604E5C3AC30AEA20602C 317952 ----a-w- C:\Program Files\Common Files\DVDVideoSoft\lib\Uninstall.exe

2013-08-27 09:55:50 F3E16313FAF115EA12D512C40F18437E 1176240 ----a-w- C:\Program Files\DVDVideoSoft\unins000.exe

2013-08-27 09:54:17 194036FCF59C90F405B4F21F28B5F197 1080592 ----a-w- C:\Users\rudy\AppData\Roaming\DVDVideoSoft\FreeAudioConverter.exe

2013-08-27 09:53:58 194036FCF59C90F405B4F21F28B5F197 1080592 ----a-w- C:\Users\rudy\Downloads\FreeAudioConverter.exe

2013-08-27 08:26:02 A66B365579D8CEBD7F1D4D6B6F7F9373 10284816 ----a-w- C:\Users\rudy\Downloads\mbam-setup.exe

2013-08-26 17:42:59 FAE68ED2E090D09938642F66D004B872 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-08-26 17:42:59 F47FF71033FD3F3C776CB6B579A13623 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe

2013-08-26 17:42:59 F0CA8B5121B02924A5C006750797097D 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-08-26 17:42:59 DE7626C6B3DBFA754B98E0C5ED623FCE 151552 ----a-w- C:\Windows\System32\iexpress.exe

2013-08-26 17:42:59 DC034BD2F6BF12C1DF857174261983F7 467456 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2013-08-26 17:42:59 C5CEDA6C019B8F7B659491685CA8AD36 139264 ----a-w- C:\Windows\System32\wextract.exe

2013-08-26 17:42:59 B7E544DFAE205778A12A1BBC8B8FAA4B 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2013-08-26 17:42:59 B092FA149E09151B7F9CFB1D5FEED7A3 190464 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-08-26 17:42:59 9D6538DCA4C222AA0FCE14CDBAF13097 13312 ----a-w- C:\Windows\System32\mshta.exe

2013-08-26 17:42:59 99C94C074B5A0E1F4547A571AC335B14 1389056 ----a-w- C:\Program Files\Internet Explorer\F12.exe

2013-08-26 17:42:59 7F26F3058FB12BBADAF40E5725ACF422 645120 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-08-26 17:42:59 70F2CC6345E7DB647D36ECB78C1E270F 25600 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2013-08-26 17:42:59 607CBFAC4412874796ACB04AF8DF0EC8 112128 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-08-26 17:42:59 2B187D3A111761255CCD2EB3690FB441 12288 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-08-26 17:42:59 2088122E90EC8F278D93B1D734F296DD 359752 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe

2013-08-26 17:42:59 0F87C3720CDB339FBE8768DB0D68A81E 794952 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2013-08-26 17:38:16 7DF8AF5B6A24A9FF238B9311EC3082CD 29143368 ----a-w- C:\Users\rudy\Downloads\IE11-Windows6.1-x86-en-us.exe

=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"SRS Audio Sandbox"="C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe /hideme"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s"

"avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"SRS Audio Sandbox"="C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe /hideme"

==== Startup Registry Disabled ======================

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-]

"Advanced SystemCare 6"="\"C:\\Program Files\\IObit\\Advanced SystemCare 6\\ASCTray.exe\" /AutoStart"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"NUSB3MON"="\"C:\\Program Files\\Renesas Electronics\\USB 3.0 Host Controller Driver\\Application\\nusb3mon.exe\""

"IAStorIcon"="C:\\Program Files\\Intel\\Intel® Rapid Storage Technology\\IAStorIcon.exe"

"Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"EaseUS EPM tray"="C:\\Program Files\\EaseUS\\EaseUS Partition Master 9.2.2\\bin\\EpmNews.exe"

"IObit Malware Fighter"="\"C:\\Program Files\\IObit\\IObit Malware Fighter\\IMF.exe\" /autostart"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GlaryInitialize.job --a------ C:\Program Files\Glary Utilities\initialize.exe [28-04-2013 15:39]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12-08-2013 02:39]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12-08-2013 02:39]

==== Firefox Extensions ======================

ProfilePath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592

- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

- Clearly - %ProfilePath%\extensions\readable@evernote.com.xpi

- Undetermined - %ProfilePath%\extensions\savedpasswordeditor@daniel.dawson.xpi

- InstantFox - %ProfilePath%\extensions\searchy@searchy.xpi

- Tile Tabs - %ProfilePath%\extensions\tiletabs@DW-dev.xpi

- Stylish - %ProfilePath%\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi

- Speed Dial - %ProfilePath%\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592

101700E93EB905992B518256CB441829 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll - Google Update

0C8597DBC74AAF5179471BA013E3C6B4 - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash

14771EF55F4873E7C347E6EB5304A9CE - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll - Nitro PDF plugin for Firefox and Chrome

3A523765D795DB006C010B915C3A840A - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat

42A9B216A7A288512CE2F9A6BCCE96BC - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat

2D758513B6E7A83DDF4B4C250E0001A3 - C:\Program Files\Nitro\Reader 3\npnitroie.dll - Nitro PDF plugin for Internet Explorer

5BBF76A283A844AEA0B2FCDC212C9177 - C:\Program Files\Nitro\Reader 3\npdf.dll - Nitro PDF Library

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx[22-04-2013 19:01]

Google Docs - rudy - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - rudy - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - rudy - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - rudy - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Speed Dial - rudy - Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi

Foxtab Speed Dial - rudy - Default\Extensions\fcoecifcadmambfikillppkoafmgachp

wide awake theme - rudy - Default\Extensions\jghojamolcelbkfdejjhaliddkkhhpeb

Google Mail Checker - rudy - Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff

Advanced SystemCare Surfing Protection - rudy - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

Card number - rudy - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - rudy - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi deleted successfully

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dgpdioedihjhncjafcpgbbjdpbbkikmi_0.localstorage deleted successfully

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dgpdioedihjhncjafcpgbbjdpbbkikmi_0.localstorage-journal deleted successfully

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp deleted successfully

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcoecifcadmambfikillppkoafmgachp_0.localstorage deleted successfully

C:\Users\rudy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcoecifcadmambfikillppkoafmgachp_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\users\rudy\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\users\rudy\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{a060276a-53be-45ec-8ebe-b94b1e803179} deleted successfully

==== HijackThis Entries ======================

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files\Expat Shield\HssIE\ExpatIE.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll

O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

O4 - HKCU\..\Run: [sRS Audio Sandbox] "C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe" /hideme

O8 - Extra context menu item: Afbeelding knippen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4

O8 - Extra context menu item: Kopieer selectie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3

O8 - Extra context menu item: Kopieer URL - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0

O8 - Extra context menu item: Nieuwe notitie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\NewNote.html

O8 - Extra context menu item: Pagina opemen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1

O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html

O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Expat Shield Tray Service (ExpatTrayService) - Unknown owner - C:\Program Files\Expat Shield\bin\ExpatTrayService.EXE

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe

==== Empty IE Cache ======================

C:\Users\rudy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\rudy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\users\rudy\AppData\Local\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\users\rudy\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\rudy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 31-08-2013 at 12:16:16,14 ======================

Link naar reactie
Delen op andere sites

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Program Files\Common Files\DVDVideoSoft;fs
 C:\Program Files\DVDVideoSoft;fs
 C:\Program Files\Expat Shield;fs
 C:\asc_rdflag;f
 C:\users\rudy\AppData\Roaming\DVDVideoSoft;fs
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft;fs
 C:\Users\rudy\Downloads\FreeAudioConverter.exe;f
 C:\Users\rudy\Downloads\mbam-setup.exe;f
 C:\Users\rudy\Downloads\HSS-2.25-install-anchorfree-232-expatshield[1].exe;f
 C:\Users\rudy\Downloads\DM-232.exe;f
 C:\Users\rudy\Downloads\HSS-2.25-install-anchorfree-232-expatshield.exe;f
 C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit(1).exe;f
 C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit.exe;f
 {3706EE7C-3CAD-445D-8A43-03EBC3B75908};c
 ExpatTrayService;s

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Shortcut Fix
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Tool run by rudy on zo 01-09-2013 at 9:22:01,54.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\rudy\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results31-08-2013-1216.log 68312 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3706EE7C-3CAD-445D-8A43-03EBC3B75908} deleted successfully

HKEY_USERS\S-1-5-21-1232880136-1482466113-3239310269-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3706EE7C-3CAD-445D-8A43-03EBC3B75908} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{3706EE7C-3CAD-445D-8A43-03EBC3B75908} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ExpatTrayService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\ExpatTrayService deleted successfully

==== Deleting Files \ Folders ======================

"C:\asc_rdflag" deleted

"C:\Users\rudy\Downloads\FreeAudioConverter.exe" deleted

"C:\Users\rudy\Downloads\mbam-setup.exe" deleted

"C:\Users\rudy\Downloads\DM-232.exe" deleted

"C:\Users\rudy\Downloads\HSS-2.25-install-anchorfree-232-expatshield.exe" deleted

"C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit(1).exe" deleted

"C:\Users\rudy\Downloads\HSS-3.09-install-hss-409-conduit.exe" deleted

"C:\Program Files\Common Files\DVDVideoSoft" deleted

"C:\Program Files\DVDVideoSoft" deleted

"C:\Program Files\Expat Shield" deleted

"C:\users\rudy\AppData\Roaming\DVDVideoSoft" deleted

"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592

- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

- Clearly - %ProfilePath%\extensions\readable@evernote.com.xpi

- Undetermined - %ProfilePath%\extensions\savedpasswordeditor@daniel.dawson.xpi

- InstantFox - %ProfilePath%\extensions\searchy@searchy.xpi

- Tile Tabs - %ProfilePath%\extensions\tiletabs@DW-dev.xpi

- Stylish - %ProfilePath%\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi

- Speed Dial - %ProfilePath%\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\rudy\AppData\Roaming\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592

101700E93EB905992B518256CB441829 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll - Google Update

0C8597DBC74AAF5179471BA013E3C6B4 - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash

14771EF55F4873E7C347E6EB5304A9CE - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll - Nitro PDF plugin for Firefox and Chrome

3A523765D795DB006C010B915C3A840A - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat

42A9B216A7A288512CE2F9A6BCCE96BC - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat

2D758513B6E7A83DDF4B4C250E0001A3 - C:\Program Files\Nitro\Reader 3\npnitroie.dll - Nitro PDF plugin for Internet Explorer

5BBF76A283A844AEA0B2FCDC212C9177 - C:\Program Files\Nitro\Reader 3\npdf.dll - Nitro PDF Library

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx[22-04-2013 19:01]

wide awake theme - rudy - Default\Extensions\jghojamolcelbkfdejjhaliddkkhhpeb

Advanced SystemCare Surfing Protection - rudy - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== shortcuts on Users Desktops ======================

C:\Users\rudy\Desktop\Advanced Uninstaller Free.lnk - C:\Program Files\Innovative Solutions\Advanced Uninstaller Free\uninstaller.exe

C:\Users\rudy\Desktop\All My Books .lnk - C:\Program Files\AllMyBooks\allmybooks.exe

C:\Users\rudy\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe

C:\Users\rudy\Desktop\CDBurnerXP.lnk - C:\Program Files\CDBurnerXP\cdbxpp.exe

C:\Users\rudy\Desktop\Evernote.lnk - C:\Program Files\Evernote\Evernote\Evernote.exe

C:\Users\rudy\Desktop\Glary Utilities.lnk - C:\Program Files\Glary Utilities\Integrator.exe

C:\Users\rudy\Desktop\Griffith.lnk - C:\Program Files\Griffith\griffith.exe

C:\Users\rudy\Desktop\HiJackThis.lnk - C:\Users\rudy\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

C:\Users\rudy\Desktop\ImgBurn.lnk - C:\Program Files\ImgBurn\ImgBurn.exe

C:\Users\rudy\Desktop\PrivaZer.lnk - C:\Program Files\PrivaZer\PrivaZer.exe

C:\Users\rudy\Desktop\Recuva.lnk - C:\Program Files\Recuva\recuva.exe

C:\Users\rudy\Desktop\Update Checker.lnk - C:\Program Files\FileHippo.com\UpdateChecker.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe

C:\Users\Public\Desktop\Advanced SystemCare 6.lnk - C:\Program Files\IObit\Advanced SystemCare 6\ASC.exe

C:\Users\Public\Desktop\avast Free Antivirus.lnk -

C:\Users\Public\Desktop\calibre - E-book management.lnk - C:\Program Files\Calibre2\calibre.exe

C:\Users\Public\Desktop\Configure FileMenu Tools.lnk - C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools.exe

C:\Users\Public\Desktop\EaseUS Partition Master 9.2.2.lnk - C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\bin\EPMStartLoader.exe

C:\Users\Public\Desktop\Exact Audio Copy.lnk - C:\Program Files\Exact Audio Copy\EAC.exe

C:\Users\Public\Desktop\Expat Shield Launch.lnk - C:\Program Files\Expat Shield\bin\openvpntray.exe

C:\Users\Public\Desktop\Free Audio Converter.lnk - C:\Program Files\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe

C:\Users\Public\Desktop\Freemake Audio Converter.lnk - C:\Program Files\Freemake\Freemake Audio Converter\FreemakeAudioConverter.exe

C:\Users\Public\Desktop\IObit Malware Fighter.lnk - C:\Program Files\IObit\IObit Malware Fighter\IMF.exe

C:\Users\Public\Desktop\KeyFinder.lnk - C:\Program Files\Magical Jelly Bean\keyfinder.exe

C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\Users\Public\Desktop\MediaMonkey.lnk - C:\Program Files\MediaMonkey\MediaMonkey.exe

C:\Users\Public\Desktop\MozBackup.lnk - C:\Program Files\MozBackup\MozBackup.exe

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe

C:\Users\Public\Desktop\Nitro Reader.lnk - C:\Program Files\Nitro\Reader 3\NitroPDFReader.exe

C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe

C:\Users\Public\Desktop\Speccy.lnk - C:\Program Files\Speccy\Speccy.exe

C:\Users\Public\Desktop\SRS Audio Sandbox.lnk - C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe

C:\Users\Public\Desktop\Uninstaller.lnk - C:\Program Files\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

==== shortcuts in Users Start Menu ======================

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk - C:\Program Files\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk - C:\Program Files\ImgBurn\ImgBurn.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk - C:\Program Files\PrivaZer\PrivaZer.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\Program Files\CCleaner\uninst.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Audio Converter.lnk - C:\Program Files\Freemake\Freemake Audio Converter\Uninstall\unins000.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\rudy\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn\ImgBurn Read Me.lnk - C:\Program Files\ImgBurn\ReadMe.txt

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn\ImgBurn.lnk - C:\Program Files\ImgBurn\ImgBurn.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImgBurn\Uninstall.lnk - C:\Program Files\ImgBurn\uninstall.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer\Privazer desinstalleren.lnk - C:\Program Files\PrivaZer\privazer_remover.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer\PrivaZer.lnk - C:\Program Files\PrivaZer\PrivaZer.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva\Recuva.lnk - C:\Program Files\Recuva\recuva.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva\Uninstall Recuva.lnk - C:\Program Files\Recuva\uninst.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt\SoulseekQt.lnk - C:\Program Files\SoulseekQt\SoulseekQt.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt\Uninstall.lnk - C:\Program Files\SoulseekQt\uninstall.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Uninstall Programs.lnk - C:\Program Files\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AB0000000001}\SC_Reader.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk - C:\Program Files\CDBurnerXP\cdbxpp.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk - C:\Windows\ehome\ehshell.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Reader 3.lnk - C:\Windows\Installer\{FE3047CE-660C-4D22-82BE-E76954EAABDF}\Reader.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk - C:\Program Files\DVD Maker\DVDMaker.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk - C:\Program Files\Windows Live\Mail\wlmail.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk - C:\Windows\system32\mblctr.exe /open

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk - C:\Windows\system32\SnippingTool.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk - C:\Windows\system32\StikyNot.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\ShapeCollector.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk - C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk - C:\Program Files\Windows Journal\Journal.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Configuration.lnk - C:\Windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.msc

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Wizards.lnk - C:\Windows\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6\Advanced SystemCare 6.lnk - C:\Program Files\IObit\Advanced SystemCare 6\ASC.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6\Toolbox.lnk - C:\Program Files\IObit\Advanced SystemCare 6\ASC.exe /toolbox

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6\Turbo Boost.lnk - C:\Program Files\IObit\Advanced SystemCare 6\ASC.exe /turboboost

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6\Verwijder Advanced SystemCare.lnk - C:\Program Files\IObit\Advanced SystemCare 6\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller Free\Advanced Uninstaller Free.lnk - C:\Program Files\Innovative Solutions\Advanced Uninstaller Free\uninstaller.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller Free\Uninstall.lnk - C:\Program Files\Innovative Solutions\Advanced Uninstaller Free\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast Free Antivirus.lnk -

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software\All My Books .lnk - C:\Program Files\AllMyBooks\allmybooks.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software\All My Books License.lnk - C:\Program Files\AllMyBooks\license.rtf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software\Bolide Software Website.lnk - C:\Program Files\AllMyBooks\bolide.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software\Order All My Books.lnk - C:\Program Files\AllMyBooks\order.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bolide Software\Uninstall All My Books.lnk - C:\Program Files\AllMyBooks\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management\calibre - E-book management.lnk - C:\Program Files\Calibre2\calibre.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management\E-book viewer.lnk - C:\Program Files\Calibre2\ebook-viewer.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management\LRF viewer.lnk - C:\Program Files\Calibre2\lrfviewer.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 9.2.2\EaseUS Partition Master 9.2.2.lnk - C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\bin\EPMStartLoader.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 9.2.2\Uninstall EaseUS Partition Master 9.2.2.lnk - C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote\Evernote.lnk - C:\Windows\Installer\{A6563D7C-F3AD-11E2-A4DB-984BE15F174E}\Evernote.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Exact Audio Copy.lnk - C:\Program Files\Exact Audio Copy\EAC.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\FAQ.lnk - C:\Program Files\Exact Audio Copy\Documentation\FAQ.txt

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Legal.lnk - C:\Program Files\Exact Audio Copy\Legal.rtf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\News.lnk - C:\Program Files\Exact Audio Copy\News.rtf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy\Uninstall.lnk - C:\Program Files\Exact Audio Copy\uninst.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Opener\Free Opener.lnk - C:\Program Files\Free Opener\FreeOpener.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Opener\Uninstall Free Opener.lnk - C:\Program Files\Free Opener\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake\Freemake Audio Converter.lnk - C:\Program Files\Freemake\Freemake Audio Converter\FreemakeAudioConverter.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities\Glary Utilities.lnk - C:\Program Files\Glary Utilities\Integrator.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities\Verwijder Glary Utilities.lnk - C:\Program Files\Glary Utilities\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel® Rapid Storage Technology.lnk - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorUI.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter\IObit Malware Fighter.lnk - C:\Program Files\IObit\IObit Malware Fighter\IMF.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter\Verwijder IObit Malware Fighter.lnk - C:\Program Files\IObit\IObit Malware Fighter\unins001.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder\KeyFinder.lnk - C:\Program Files\Magical Jelly Bean\keyfinder.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder\Uninstall KeyFinder.lnk - C:\Program Files\Magical Jelly Bean\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LopeSoft\FileMenu Tools\Configure FileMenu Tools.lnk - C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LopeSoft\FileMenu Tools\Help.lnk - C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools_enu.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey\MediaMonkey Lees-mij.lnk - C:\Program Files\MediaMonkey\readme.txt

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey\MediaMonkey op het Web.lnk - C:\Program Files\MediaMonkey\MediaMonkey.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey\MediaMonkey.lnk - C:\Program Files\MediaMonkey\MediaMonkey.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey\Verwijder MediaMonkey.lnk - C:\Program Files\MediaMonkey\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression\Microsoft Expression Encoder 4 Screen Capture.lnk - C:\Program Files\Microsoft Expression\Encoder 4\EEScreen.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression\Microsoft Expression Encoder 4 SDK.lnk - C:\Program Files\Microsoft Expression\Encoder 4\SDK

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression\Microsoft Expression Encoder 4.lnk - C:\Program Files\Microsoft Expression\Encoder 4\Encoder.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup\MozBackup.lnk - C:\Program Files\MozBackup\MozBackup.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup\Uninstall.lnk - C:\Program Files\MozBackup\Uninstall.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegCompact.NET\RegCompact.NET.lnk - C:\Program Files\RegCompact.NET\RegCompact.NET.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics\USB 3.0 Host Controller Driver\USB 3.0 Host Controller Utility.lnk - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3utl.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro Help.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo Uninstaller Pro Help.pdf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Verwijder Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soulseek NS\Soulseek.lnk - C:\Program Files\SoulseekNS\slsk.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soulseek NS\Uninstall Soulseek.lnk - C:\Program Files\SoulseekNS\uninstall.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs\Audio Sandbox\SRS Audio Sandbox Readme.lnk - C:\Program Files\SRS Labs\Audio Sandbox\SRS Audio Sandbox Readme.txt

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs\Audio Sandbox\SRS Audio Sandbox.lnk - C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\All My Books .lnk - C:\Program Files\AllMyBooks\allmybooks.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CDBurnerXP.lnk - C:\Program Files\CDBurnerXP\cdbxpp.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\EaseUS Partition Master 9.2.2.lnk - C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\bin\EPMStartLoader.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PrivaZer.lnk - C:\Program Files\PrivaZer\PrivaZer.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Uninstall Programs.lnk - C:\Program Files\IObit\Advanced SystemCare 6\Suc10_Uninstal.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\avast Free Antivirus.lnk -

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Exact Audio Copy.lnk - C:\Program Files\Exact Audio Copy\EAC.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MediaMonkey.lnk - C:\Program Files\MediaMonkey\MediaMonkey.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Soulseek.lnk - C:\Program Files\SoulseekNS\slsk.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\SRS Audio Sandbox.lnk - C:\Program Files\SRS Labs\Audio Sandbox\SRSSSC.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Mail.lnk - C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Users\rudy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1

==== Empty IE Cache ======================

C:\Users\rudy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\rudy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\users\rudy\AppData\Local\Mozilla\Firefox\Profiles\0x1kqpnu.default-1377109569592\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\users\rudy\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\rudy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 01-09-2013 at 9:30:04,44 ======================

Link naar reactie
Delen op andere sites

Download Dr.Web CureIt en sla het op je bureaublad op.

  • Dubbelklik drweb-cureit.exe en sta het toe om te express scan te starten.
    Indien er een popup verschijnt met het voorstel tot kopen/50% korting mag je deze sluiten.
  • De express scan zal de bestanden scannen die momenteel in het geheugen geladen zijn. Wanneer er iets gevonden wordt klik op 'alles selecteren' kies nu voor 'repareren' en uit het kleine menutje dat verschijnt kies je 'verplaatsen'.
  • Kies bovenaan in het menu voor Language/Taal en wijzig deze naar Dutch (Nederlands) indien deze bij jou anders staat ingesteld.
  • Druk op F9, kies daarna voor het tabblad Acties en stel daar het volgende in onder Malware:

    • Adware: Verplaats
    • Dialers: Verplaats
    • Jokes: Rapportage
    • Riskware: Rapportage
    • Hacktools: Verplaats
    • Haal dan het vinkje weg bij 'Prompt bij actie'.

    [*]Kies daarna voor het tabblad Scan en verwijder het vinkje bij Heuristische analyse.

    Druk vervolgens op Toepassen gevolgd door OK.

    [*]Eenmaal als de korte scan is beëindigd vink je aan: Volledige scan.

    Druk daarna op het groene pijltje (start knop) om de scan te starten.

    [*]Gevonden bestanden worden naar '%USERPROFILE%\DocterWeb\Quarantine' -map verplaatst indien het herstellen niet mogelijk is.

    [*]Nadat de scan gedaan is ga dan naar Bestand en kies Rapportage lijst opslaan.

    Bewaar deze op je bureaublad en sluit daarna Dr.Web CureIt.

    [*]Herstart vervolgens de computer!! Dit is een belangrijke stap want het kan zijn dat Dr.Web CureIt bestanden zal verplaatsen/verwijderen tijdens herstart.

    [*]Na het herstarten, kopieer en plak de inhoud van die log die je eerder hebt bewaard in je volgende post.

Link naar reactie
Delen op andere sites

Hallo, ik merk dat er steeds meer goed draaiende programma's van mijn pc verwijderd worden ?! (ondermeer "free audio converter" en "expat shield" zijn al zeker verdwenen). Aan het probleem is nog hoegenaamd niets veranderd en de kans dat het na een weekje hi-jacken met allerhande pgm's nog ooit lukt, lijkt me obestaande. Om de schade die ik intussen heb opgelopen te beperken, stel ik voor er maar mee op te houden.

Link naar reactie
Delen op andere sites

Hallo, ik merk dat er steeds meer goed draaiende programma's van mijn pc verwijderd worden ?! (ondermeer "free audio converter" en "expat shield" zijn al zeker verdwenen). Aan het probleem is nog hoegenaamd niets veranderd en de kans dat het na een weekje hi-jacken met allerhande pgm's nog ooit lukt, lijkt me obestaande. Om de schade die ik intussen heb opgelopen te beperken, stel ik voor er maar mee op te houden.
Hangt er maar van af wat je "goede" programma's noemt natuurlijk. Over "Free Audio Convertor" : "Free Audio Converter has been seen bundling various 3rd party software during the installation process" en "Expat Shield" is ook niet meteen een lieverdje. Maar uiteraard ligt de keuze bij u en zullen we dit topic op uw verzoek dan ook sluiten.

Verwijder zeker nog de gebruikte tools: Combofix, zoek.exe en AdwCleaner.

aangepast door kape
Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.