Ga naar inhoud

internet doet raar


Kreox

Aanbevolen berichten

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Dat betekent dat je log te groot is en de transmissietijd te klein om dit te plaatsen. Dan kan je dit best als bijlage aan een volgend bericht hangen. Dat doe je door "meer opties" te kiezen bij je volgend bericht en dan "beheer bijlagen" te gebruiken.

Link naar reactie
Delen op andere sites

Dit is prima gelukt :top:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-,r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe];r64
 C:\Users\nick\AppData\Roaming\Systweak;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe v5.0.0.0 Updated 07-March-2014

Tool run by nick on vr 07/03/2014 at 15:42:22,33.

Microsoft Windows 8.1 6.3.9600 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\nick\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

7/03/2014 15:44:08 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Bitdefender deleted successfully

C:\PROGRA~3\Browser Manager deleted successfully

C:\PROGRA~3\BrowserProtect deleted successfully

C:\PROGRA~3\Oracle deleted successfully

C:\PROGRA~3\Wincert deleted successfully

C:\Users\nick\AppData\Roaming\QuickScan deleted successfully

C:\Users\nick\AppData\Roaming\Systweak deleted successfully

C:\Users\nick\AppData\Local\Bundled software uninstaller deleted successfully

C:\Users\nick\AppData\Local\CrashDumps deleted successfully

C:\Users\nick\AppData\Local\WarThunder deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SSUService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\splashtopremoteservice deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\nick\AppData\Roaming\Mozilla\Firefox\Profiles\tzgzi565.default

---- Lines browser.startup.page removed from prefs.js ----

user_pref("browser.startup.page", 1);

---- FireFox user.js and prefs.js backups ----

user_20140703_1549_.backup

prefs_20140703_1549_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe]

==== Deleting Files \ Folders ======================

C:\Users\nick\AppData\Roaming\Systweak not found

C:\Users\nick\.android deleted

C:\PROGRA~2\Advanced System Optimizer 3 deleted

C:\PROGRA~2\Splashtop deleted

C:\PROGRA~3\ProductData deleted

C:\PROGRA~3\Splashtop deleted

C:\PROGRA~3\Package Cache deleted

C:\Users\nick\AppData\Local\somotomoviestoolbar1 deleted

C:\Users\nick\AppData\Local\WebPlayer deleted

C:\Users\nick\AppData\LocalLow\ADSRemoval deleted

C:\Users\nick\AppData\LocalLow\somotomoviestoolbar1 deleted

C:\WINDOWS\Syswow64\SET2CDE.tmp deleted

C:\WINDOWS\Syswow64\SETCC4.tmp deleted

C:\WINDOWS\Syswow64\SETF0AA.tmp deleted

C:\WINDOWS\Syswow64\SETF2A0.tmp deleted

C:\WINDOWS\SysWow64\AI_RecycleBin deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====

2014-03-04 13:36:21 9130CCE19B5DB3D2E31F9F789263FC4A 511328 ----a-w- C:\WINDOWS\capicom.dll

====== C:\Users\nick\AppData\Local\Temp ====

2014-03-07 13:48:54 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\nick\AppData\Local\Temp\SDIAG_5cfb770d-e3c0-4280-8fa2-9b8a8cec2668\NetworkDiagnosticSnapIn.dll

2014-03-07 13:48:30 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\nick\AppData\Local\Temp\SDIAG_1d06babb-7e53-4332-90a4-4216b5a55d9b\NetworkDiagnosticSnapIn.dll

2014-03-07 13:42:52 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\nick\AppData\Local\Temp\SDIAG_ffc4660b-2cfe-4216-be35-cbe76c23b6fb\NetworkDiagnosticSnapIn.dll

2014-03-06 21:57:08 C76B8E74F900E083712ADC5B597A05C3 339264 ----a-w- C:\Users\nick\AppData\Local\Temp\1676\taskmgr.dll

2014-03-06 21:57:08 3417F6F93614863ECD9058D6B6CE516C 1145152 ----a-w- C:\Users\nick\AppData\Local\Temp\1676\ProjectOnUninstall.exe

====== Java Cache =====

====== C:\WINDOWS\SysWOW64 =====

2014-03-05 00:38:54 42433CDEC449D40F508752F2D487D8E4 478208 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2014-03-05 00:38:53 D292652F380DFC23897CB31B1940E56C 588800 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2014-03-05 00:38:52 3104FCDE0470E5D89C9991FC0EDDE57E 18643560 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll

2014-03-05 00:38:51 9929F71938D9FCE4550BEB935071F0C8 13949440 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2014-03-05 00:38:50 A863A4DEF854D579C36EAA9DECF21C80 336896 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll

2014-03-05 00:38:50 A00970DBAD7034523CF9D2C395A944B8 103936 ----a-w- C:\WINDOWS\SysWOW64\OEMLicense.dll

2014-03-05 00:38:50 716046CF7941B176C18AA58785899A2D 174592 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll

2014-03-05 00:38:50 65ACE54B8EDA937EE7706733D27F40A8 802816 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2014-03-05 00:38:50 0A42FD0BB893250653DC2864CAAE69BA 5770752 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll

2014-03-05 00:38:49 EC308077E9BEEDF523AE3D6BA042E016 630272 ----a-w- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll

2014-03-05 00:38:49 DBB6B2FA462A5E7029766B09ED9CDA73 381168 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll

2014-03-05 00:38:49 CF8746715C1AA00C29F789825E321C7C 770560 ----a-w- C:\WINDOWS\SysWOW64\ReAgent.dll

2014-03-05 00:38:49 986ABF43F76F5B0E3557363FB4925C78 1472048 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll

2014-03-05 00:38:48 E2C1E49EBFB8EFA1AFF6966533BAD12B 140800 ----a-w- C:\WINDOWS\SysWOW64\easwrt.dll

2014-03-05 00:38:48 A7DE6E0B69826D5B6F5FF68AABCF7035 218112 ----a-w- C:\WINDOWS\SysWOW64\sti.dll

2014-03-05 00:38:48 1A419AB7606DAE61FDF01D8F941E5F5C 855552 ----a-w- C:\WINDOWS\SysWOW64\rdvidcrl.dll

2014-03-04 13:36:21 4689243030C759BC6B37E2E91BCC065B 74512 ----a-w- C:\WINDOWS\SysWOW64\bdsandboxuiskin32.dll

====== C:\WINDOWS\SysWOW64\drivers =====

====== C:\WINDOWS\Sysnative =====

2014-03-06 09:41:50 F0D94C5786977B4C44A914683DEBAA9A 1958616 ----a-w- C:\WINDOWS\Sysnative\RTSnMg64.cpl

2014-03-06 09:41:50 928A1E0360023226799F08F07108C07B 244480 ----a-w- C:\WINDOWS\Sysnative\slprp64.dll

2014-03-06 09:41:50 5AE160D9D229409D975D71AA1D38F5D9 898816 ----a-w- C:\WINDOWS\Sysnative\sl3apo64.dll

2014-03-06 09:41:50 35C6A24D95DC70A73D2DABD04FA7EB2D 1044224 ----a-w- C:\WINDOWS\Sysnative\slcnt64.dll

2014-03-06 09:41:50 0F94B0EB0F9691C56E2C2F392F5BD53B 723200 ----a-w- C:\WINDOWS\Sysnative\sltech64.dll

2014-03-06 09:41:50 0E2C5B7C842024F50B1795A980C4D0FF 2810072 ----a-w- C:\WINDOWS\Sysnative\RtPgEx64.dll

2014-03-06 09:41:50 0C089E47D8BD3996742F0939DE7E2D48 2103040 ----a-w- C:\WINDOWS\Sysnative\WavesGUILib64.dll

2014-03-06 09:41:49 6DB093B854351CD7F36A4E8EA7082E7A 2782936 ----a-w- C:\WINDOWS\Sysnative\RtkAPO64.dll

2014-03-06 09:41:49 2A7224C314131592497D02A57D867218 618200 ----a-w- C:\WINDOWS\Sysnative\RtDataProc64.dll

2014-03-06 09:41:49 22CAB76AF907B82664FEDE6A653ABA2A 1286872 ----a-w- C:\WINDOWS\Sysnative\RTCOM64.dll

2014-03-06 09:41:48 E15522E4A9CF2F48395F5548167E8895 1345280 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPO5064.dll

2014-03-06 09:41:48 DD8A18C147ACD7799D84FD4A4E1C4064 1922304 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioRealtek264.dll

2014-03-06 09:41:48 D956C3D6ECE65A10A1018A72E08C4973 1013504 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioAPOShell64.dll

2014-03-06 09:41:48 6FE243C4544916588BE5DEC48F541714 154840 ----a-w- C:\WINDOWS\Sysnative\RCoInstII64.dll

2014-03-06 09:41:48 61D45CFD4C0694D318D8160857CF4DDA 14153984 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioRealtek64.dll

2014-03-06 09:41:48 34775CBB1FAA0693C61994082B4C55D9 5753112 ----a-w- C:\WINDOWS\Sysnative\NAHIMICAPOlfx.dll

2014-03-06 09:41:48 32D0421AE8550172EEFC6301685FED1C 912184 ----a-w- C:\WINDOWS\Sysnative\NAHIMICAPOSettingsIPC.dll

2014-03-06 09:41:48 1A6C91215105B6B6C48B0F531E1CD8FA 2036992 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioEQ64.dll

2014-03-06 09:41:48 0B8F799CDEFF2A5C4ADFA86CC22323FA 3899648 ----a-w- C:\WINDOWS\Sysnative\MaxxAudioVnN64.dll

2014-03-06 09:41:48 038364E2CA0621AD0436DC72C46EF8C0 43720192 ----a-w- C:\WINDOWS\Sysnative\RCoRes64.dat

2014-03-06 09:41:15 0D2106264D437A031DD64A9DA514357F 73800 ----a-w- C:\WINDOWS\Sysnative\RtNicProp64.dll

2014-03-05 21:55:45 4663971589869EFC3788BE4D0A4E663D 1652 ----a-w- C:\WINDOWS\Sysnative\ASOROSet.bin

2014-03-05 00:38:53 968FB3BA8E7DF0933A1CF593BD503F4A 461312 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll

2014-03-05 00:38:53 43D0F8E593ABD37B5BC9573EDD71EFEB 628736 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe

2014-03-05 00:38:53 3022CFC7840D12C51F2A061EC7F46383 4190720 ----a-w- C:\WINDOWS\Sysnative\win32k.sys

2014-03-05 00:38:53 1D8F8BE07D2B06C32ADB4B08F0F2A357 749056 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll

2014-03-05 00:38:52 FF73B88BA206966BD228320F664D4D92 21199256 ----a-w- C:\WINDOWS\Sysnative\shell32.dll

2014-03-05 00:38:51 04B5ADB034D17585D3BCFC6DE5CADFF8 18576384 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll

2014-03-05 00:38:50 E069B63DAD920D231FA8A141DFF43A8C 960512 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll

2014-03-05 00:38:50 B88A70259DF2927787C0B766DD4CFB5C 206336 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll

2014-03-05 00:38:50 7561B559B8431C92A73B1EF1756DC6EB 6640640 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll

2014-03-05 00:38:50 68085A085DE8E3540EE8E02CAE575B2E 138240 ----a-w- C:\WINDOWS\Sysnative\OEMLicense.dll

2014-03-05 00:38:49 E80700EB046D0B82B694C98CF7231C08 481944 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll

2014-03-05 00:38:49 E287F157F7A0011D93179C64EF8ADCF2 376320 ----a-w- C:\WINDOWS\Sysnative\pnrpsvc.dll

2014-03-05 00:38:49 D03BF756457B6A1EB305B26046BB9B4D 914944 ----a-w- C:\WINDOWS\Sysnative\ReAgent.dll

2014-03-05 00:38:49 C8ACFF60C553E63949A79DC370B516E4 947712 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll

2014-03-05 00:38:49 A95838FFFAEAA7500263D491575F7E0C 1214976 ----a-w- C:\WINDOWS\Sysnative\schedsvc.dll

2014-03-05 00:38:49 A0D3749BB1BC942C7D21C4D99E79A615 131160 ----a-w- C:\WINDOWS\Sysnative\easinvoker.exe

2014-03-05 00:38:49 847CFF96ACB575CE73C0E2E86C6BA993 842752 ----a-w- C:\WINDOWS\Sysnative\MsSpellCheckingFacility.dll

2014-03-05 00:38:49 1FCA4E287F0ED13BF037A484AA2FE3B1 419160 ----a-w- C:\WINDOWS\Sysnative\hal.dll

2014-03-05 00:38:48 7C5C9E65AC6579CA552A9CF9BB7F4845 1057280 ----a-w- C:\WINDOWS\Sysnative\rdvidcrl.dll

2014-03-05 00:38:48 66F214C9E446407D78048681394820A6 178176 ----a-w- C:\WINDOWS\Sysnative\easwrt.dll

2014-03-05 00:38:48 3D136E8D4C0407D9C40FD8BDD649B587 1720560 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll

2014-03-05 00:38:48 0B9FBEC5714523FF76DDFEB320FE2DF2 303616 ----a-w- C:\WINDOWS\Sysnative\sti.dll

2014-03-04 19:33:12 4E8F2BB3A5A87E75C35533723B50E685 385 ----a-w- C:\WINDOWS\Sysnative\user_gensett.xml

2014-03-04 13:26:29 E9E81E357565CC674973315FA7D28E7E 84848 ----a-w- C:\WINDOWS\Sysnative\BDSandBoxUISkin.dll

2014-03-04 13:26:29 D5589113219EC50732890CB5F19C50E2 34384 ----a-w- C:\WINDOWS\Sysnative\BDSandBoxUH.dll

2014-03-04 13:26:29 4689243030C759BC6B37E2E91BCC065B 74512 ----a-w- C:\WINDOWS\Sysnative\bdsandboxuiskin32.dll

====== C:\WINDOWS\Sysnative\drivers =====

2014-03-06 09:41:50 C651A99B25AF42423FF80A88A58CD00B 3791320 ----a-w- C:\WINDOWS\Sysnative\drivers\RTKVHD64.sys

2014-03-06 09:41:50 072413353DBD94C37F23CD85E0F2DF05 5804772 ----a-w- C:\WINDOWS\Sysnative\drivers\rtvienna.dat

2014-03-06 09:41:48 867F8909D2DC751A2C986DA044ED271F 704269 ----a-w- C:\WINDOWS\Sysnative\drivers\RTAIODAT.DAT

2014-03-05 00:38:50 13B160C1913F012BD1615EB1398D3779 1530712 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys

2014-03-05 00:38:49 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys

2014-03-05 00:38:49 22EDC0DE06A0272DFA4C7B47B5D8E377 382808 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys

2014-03-05 00:38:48 D22EB844EB57D016CC34178AC86456DF 325464 -c--a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS

2014-03-04 13:36:42 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_avchv_01009.Wdf

====== C:\WINDOWS\Tasks ======

2014-03-06 21:35:52 70198BA20EAAB6C21B08798E8608DC50 3158 ----a-w- C:\WINDOWS\Sysnative\Tasks\Game_Booster_AutoUpdate

2014-02-13 00:11:09 613E4476B1CA3D91DEE059C47ABD5618 940 ----a-w- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002UA.job

2014-02-13 00:11:09 14B5B46E6349F56739DFBC2FBB05A826 3786 ----a-w- C:\WINDOWS\Sysnative\Tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002UA

2014-02-13 00:11:08 DE739C7C5C8ED3792118B7B073C3D450 3436 ----a-w- C:\WINDOWS\Sysnative\Tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002Core

2014-02-13 00:11:08 766C872092DE76D0521ACC5DFA7BDA48 918 ----a-w- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002Core.job

====== C:\WINDOWS\Temp ======

======= C:\Program Files =====

2014-03-06 22:55:16 -------- d-----w- C:\Program Files\trend micro

2014-03-04 13:26:13 -------- d-----w- C:\Program Files\Common Files\Bitdefender

2014-02-26 21:01:59 -------- d-----w- C:\Program Files\AutoHotkey

2014-02-16 19:56:05 -------- d-----w- C:\Program Files\Adobe

2014-02-16 19:53:13 -------- d-----w- C:\Program Files\Common Files\Adobe

======= C:\PROGRA~2 =====

2014-03-06 00:43:40 -------- d-----w- C:\PROGRA~2\IObit

2014-03-04 13:26:11 -------- d-----w- C:\PROGRA~2\COMMON~1\Bitdefender

2014-02-21 19:38:45 -------- d-----w- C:\PROGRA~2\AMD AVT

2014-02-11 23:27:05 -------- d-----w- C:\PROGRA~2\ShaPlus Bandwidth Meter

2014-02-11 01:48:58 -------- d-----w- C:\PROGRA~2\NCSOFT

2014-02-10 01:07:56 -------- d-----w- C:\PROGRA~2\VideoLAN

2014-02-07 16:03:24 -------- d-----w- C:\PROGRA~2\TeamViewer

======= C: =====

2014-03-06 09:43:19 635DA49E3C3C17FD6C1FFCFBBDCAA61B 165659 ----a-w- C:\MyXML.xml

====== C:\Users\nick\AppData\Roaming ======

2014-03-06 09:45:00 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\nick\AppData\Locallow\ChangeTaskbarRect

2014-03-06 09:43:19 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\IObit

2014-03-06 01:47:53 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\IObit

2014-03-06 00:44:07 -------- d-----w- C:\Users\nick\AppData\Roaming\Apple Computer

2014-03-06 00:44:05 -------- d-----w- C:\Users\nick\AppData\Locallow\IObit

2014-03-04 19:55:02 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Bitdefender

2014-03-04 19:33:08 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\QuickScan

2014-03-04 02:53:47 -------- d-----w- C:\Users\nick\AppData\Roaming\IObit

2014-02-17 23:18:47 C21E83B4EE2D4420AE675D53A29436EC 132 ----a-w- C:\Users\nick\AppData\Roaming\Adobe PNG Format CS6 Prefs

2014-02-17 23:00:40 -------- d-----w- C:\Users\nick\AppData\Locallow\Adobe

2014-02-17 00:17:25 -------- d-----w- C:\Users\nick\AppData\Local\Splashtop

2014-02-16 21:23:42 -------- d-----w- C:\Users\nick\AppData\Roaming\RotMG.Production

2014-02-16 19:51:13 -------- d-----w- C:\Users\nick\AppData\Local\Adobe

2014-02-16 19:25:38 -------- d-----w- C:\Users\nick\AppData\Roaming\uTorrent

2014-02-13 00:11:06 -------- d-----w- C:\Users\nick\AppData\Local\Facebook

2014-02-11 23:27:05 -------- d-----w- C:\Users\nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ShaPlus Bandwidth Meter

2014-02-11 01:49:35 -------- d-----w- C:\Users\nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCSOFT

2014-02-11 01:48:57 -------- d-----w- C:\Users\nick\AppData\Roaming\NCSOFT

2014-02-11 01:48:57 -------- d-----w- C:\Users\nick\AppData\Local\NCSOFT

2014-02-10 14:02:57 -------- d-----w- C:\Users\nick\AppData\Local\netz

2014-02-10 01:08:23 -------- d-----w- C:\Users\nick\AppData\Roaming\vlc

2014-02-09 19:00:34 -------- d-----w- C:\Users\nick\AppData\Local\Spotify

2014-02-09 19:00:14 -------- d-----w- C:\Users\nick\AppData\Roaming\Spotify

2014-02-07 16:03:29 -------- d-----w- C:\Users\nick\AppData\Roaming\TeamViewer

====== C:\Users\nick ======

2014-03-07 14:38:27 FE9FF83060DA70DBA88404DF35B1BEB3 255915 ----a-w- C:\ProgramData\1394203065.bdinstall.bin

2014-03-06 00:43:51 -------- d-----w- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}

2014-03-06 00:43:50 -------- d-----w- C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}

2014-03-04 19:54:54 07ED9E293E8A2738DD8FE65CA8734BD8 1794299 ----a-w- C:\ProgramData\1393962590.bdinstall.bin

2014-03-04 19:49:54 -------- d-----w- C:\ProgramData\Bitdefender

2014-03-04 19:37:35 F3FC3CBC83C6E717AB8072FEF008D101 62751 ----a-w- C:\ProgramData\1393961848.bdinstall.bin

2014-03-04 19:36:23 785AE9691AFF4CB25309C3A44BDA235B 252206 ----a-w- C:\ProgramData\1393961739.bdinstall.bin

2014-03-04 19:33:20 6077869839AB1E2A67CD8BC99F9088D7 500564 ----a-w- C:\ProgramData\1393961370.bdinstall.bin

2014-03-04 14:16:09 965AD95E6B1A37D73C41C01D4D9DF055 62936 ----a-w- C:\ProgramData\1393942510.bdinstall.bin

2014-03-04 14:02:54 93E2852C7B507DDF8EF8683E67F0496D 247562 ----a-w- C:\ProgramData\1393941602.bdinstall.bin

2014-03-04 13:42:46 3300C7394BE1C473708B1B3A15D0308C 276886 ----a-w- C:\ProgramData\1393940477.bdinstall.bin

2014-03-04 13:35:45 D86A26DB7B533088C66B8D9FFF638404 2247 ----a-w- C:\ProgramData\1393939579.5260.bin

2014-03-04 13:26:57 5921C25D1EC606B43E72AEF01348B312 1545 ----a-w- C:\ProgramData\1393939579.3724.bin

2014-03-04 13:26:28 F16B1D97001DC8616486B8D904B939A0 1090 ----a-w- C:\ProgramData\1393939579.3628.bin

2014-03-04 13:26:28 8633B72E4B8FF33002A5040041ECB78A 9466 ----a-w- C:\ProgramData\1393939579.4752.bin

2014-03-04 13:26:28 6923CC995BECF8CC3ACB86BF5F8FE2D7 148837 ----a-w- C:\ProgramData\1393939579.3692.bin

2014-03-04 13:26:28 66E97D6ECBA2F5F54AA40FD14FE75192 1090 ----a-w- C:\ProgramData\1393939579.2548.bin

2014-03-04 13:26:28 5F9C99139AD9AC92BCD89B79217FAA74 17164 ----a-w- C:\ProgramData\1393939579.3700.bin

2014-03-04 13:26:28 1915D9DAEF108DC91FA9D82DE8EE2D26 2963 ----a-w- C:\ProgramData\1393939579.1424.bin

2014-03-04 13:26:28 0DA50E3AB4A8D39610A6F84AB9605E21 17887 ----a-w- C:\ProgramData\1393939579.3652.bin

2014-03-04 13:26:22 8CE4A6FF6A9D331E19B8FE0A9455E4B9 51333 ----a-w- C:\ProgramData\1393939579.3380.bin

2014-03-04 13:26:22 1F51306B3A492F2D7A0ADDFAFF7304B7 52401 ----a-w- C:\ProgramData\1393939579.1400.bin

2014-03-04 13:26:19 E21F4F14FAA8A11ABC89EFA0E5FE765C 116472 ----a-w- C:\ProgramData\1393939579.4392.bin

2014-03-04 02:53:47 -------- d-----w- C:\ProgramData\IObit

2014-03-02 22:29:32 -------- d-----w- C:\ProgramData\Badoo

2014-02-26 21:01:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey

2014-02-22 12:22:26 -------- d-----w- C:\ProgramData\ATI

2014-02-21 19:38:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

2014-02-17 00:15:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splashtop Remote

2014-02-16 19:56:50 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe

2014-02-11 23:27:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShaPlus Bandwidth Meter

2014-02-10 01:08:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

====== C: exe-files ==

2014-03-07 14:01:51 1DD071EF86CC8E5C020A484F852F2245 187024 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\RTINSTALLER64.EXE

2014-03-07 14:01:46 2ADA4E02C77DEABBE99DFA7CB4E09B23 401112 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe

2014-03-07 14:01:07 9C8592971EC5819981D4CFFD7A2EA674 88680 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\AutoInst.exe

2014-03-07 14:01:07 2ADA4E02C77DEABBE99DFA7CB4E09B23 401112 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\setup.exe

2014-03-07 14:01:04 F6AFA6707D90FEBFEBE19EEFF1958EED 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IBVZ1LQ.exe

2014-03-07 14:01:04 AEEA4F31344172358D4ACD30BD22AC48 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IYY4YNN.exe

2014-03-07 14:01:04 762A3F3096C03D90B88C7DE3BE7839A9 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IJZUC65.exe

2014-03-07 14:01:04 5957BDD4FAFFA250797ABCBF31D2CEDE 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IH0W1EQ.exe

2014-03-07 14:01:04 4040FACB40D5C757F9655A5090766029 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$ILIPP96.exe

2014-03-07 14:01:04 35A76D36D0DFC93DC0452F9BA83D5A3A 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IH9XKVU.exe

2014-03-07 14:01:04 1A1526C57AE33CB705C067C68E9663FE 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IOU0RWR.exe

2014-03-07 14:01:04 02806954423A20596538E8789E939F29 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$I9EHYVJ.exe

2014-03-06 22:55:17 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\nick.exe

2014-03-06 22:55:04 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$R9EHYVJ.exe

2014-03-06 21:57:08 3417F6F93614863ECD9058D6B6CE516C 1145152 ----a-w- C:\Users\nick\AppData\Local\Temp\1676\ProjectOnUninstall.exe

2014-03-06 21:56:08 32063E064041F87B3DC075E472FF0E2C 2126656 ----a-w- C:\Users\nick\AppData\Roaming\IObit\IObit Uninstaller\UninstallPromotetemp.exe

2014-03-06 21:56:08 1867EE4DCC825BD4CAE557C33B8C47FB 639296 ----a-w- C:\Users\nick\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe

2014-03-06 21:49:02 18494CF7B3A5E736CA6EA0491B850267 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IEBMJWE.exe

2014-03-06 21:37:31 ECA745AE9DDECCE3B4C55BE0B657B0DB 3730704 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremovalsetup02251.exe

2014-03-06 21:36:26 C0227B33BAB59AE7BDF36FF7D4EFDD9A 50640 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\IWsIMF.exe

2014-03-06 21:36:14 5D5C7FB543A444265F6C50C0F3F94FC8 23810056 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\imf-setup.exe

2014-03-06 21:35:49 5A7FBA53746852B3543839E77B913893 595288 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$REBMJWE.exe

2014-03-06 21:35:44 C2D13B4E69DBB5CA2C18D63F1497B940 4348568 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\gamebooster.exe

2014-03-06 10:10:13 F5690E8194B9FEE1C6EA162C4423E678 16457568 ----a-w- C:\Riot Games\League of Legends\RADS\projects\lol_game_client\releases\0.0.0.203\deploy\League of Legends.exe

2014-03-06 09:43:18 A47389D4C9AF6DDD7F45B9789B8E86C0 855840 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\Sua13_EmptyFolderScanner.exe

2014-03-06 09:43:10 0D99F9CE326CB196F1393AF292705689 7039808 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\startmenu8-setup.exe

2014-03-06 09:41:50 72C58C9DE23EE6B9B15E9D3A33E5B59E 1719512 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe

2014-03-06 09:41:50 2FF3426DE6BB81F20849755381B47B52 287488 ----a-w- C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe

2014-03-06 09:41:49 B291D7BE1D602860F764270CF02079B7 7506136 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

2014-03-06 09:41:49 57E2E6BF2D8B3EDA2077A3A5502F2333 290520 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

2014-03-06 09:41:48 F31CDC26F3624750C2AE2DEFF1E598DA 1368792 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

2014-03-06 09:41:48 736E5D35E9AA5F847CC84A0DA6BF2B18 3670272 ----a-w- C:\Program Files\Realtek\Audio\HDA\MaxxAudioControl64.exe

2014-03-06 09:41:48 3749C2382FFEFBB2C5C42AB5D09C10BC 13662936 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

2014-03-06 09:38:50 7BD7CEBB998A6CA14AF7160439304473 15309848 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\driver-booster-setup.exe

2014-03-06 09:25:34 7F7A184E97B0B22A06106FFF9B5783D6 9514264 ----a-w- C:\Program Files (x86)\Steam\SteamApps\downloading\238960\PathOfExileSteam.exe

2014-03-06 09:24:52 D52DC3CD5A3AF6F0CAA14A7FC79E95E3 11201344 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RH0W1EQ.exe

2014-03-06 01:38:55 73D791AC03E6F5940BFCB4806FB95D9B 3582536 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$R5SFRY6\Driver.Reviver.4.0.1.76.exe

2014-03-06 01:38:51 B041A393F9DBC1D82D34F3E25E651A27 19403384 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$R5SFRY6\Cracked\x86\DriverReviver.exe

2014-03-06 01:32:18 CFD6D138AD276C3B1BE965E8A415B517 69632 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vtex.exe

2014-03-06 01:32:18 28262E773967196061FD698BBE82C667 70144 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vvis.exe

2014-03-06 01:32:17 D78A10B33696F6BA70B9A0ED8409FA53 79360 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\shadercompile.exe

2014-03-06 01:32:17 A3A56E89566AA9B484ED4ED3EAA5DB49 197120 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\glview.exe

2014-03-06 01:32:16 8E9E289994E88E4A13B0DF9C3E6AC0DC 133120 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\splitskybox.exe

2014-03-06 01:32:16 40FC169942A652632E63B2913D7A6FD3 79872 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vrad.exe

2014-03-06 01:32:13 E223AD4A168DC2A3FE95787AA984A72B 144896 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hammer.exe

2014-03-06 01:32:13 0E27E4C2D5BF4F1F824B1AA610995598 178176 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\captioncompiler.exe

2014-03-06 01:31:42 FAF967D562F82BBF5216A0390D33F885 417792 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vbspinfo.exe

2014-03-06 01:31:42 F1312A8A00E31D4C9AE77D2A46ED67F8 687104 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\height2normal.exe

2014-03-06 01:31:42 D9FF3EE7CE7DB49F36B48A4FDBC22E13 700928 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\mksheet.exe

2014-03-06 01:31:42 D62898AFA3F9D2950E6F828035C9AE19 657920 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vpk.exe

2014-03-06 01:31:42 D24DAD595C462F6D0989577B3DD4CF54 301056 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\motionmapper.exe

2014-03-06 01:31:42 D043E293CDAC33E0E3D7F5865DA041F4 698880 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\height2ssbump.exe

2014-03-06 01:31:42 C126BF9D4D2CEA5420A78C8B03E4788E 683008 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\normal2ssbump.exe

2014-03-06 01:31:42 AF029F3FD18CA4F10F66688216068BF8 1670144 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hlfaceposer.exe

2014-03-06 01:31:42 8EFA9BBEC102CA37DA086FAACAC1C635 1912832 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\studiomdl.exe

2014-03-06 01:31:42 6E15CA496D0BCF502C0381AA3C0953F0 2737664 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\qc_eyes.exe

2014-03-06 01:31:42 50DAC9FCC0EF9BAE9E8569EA0B247DCB 3236352 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\elementviewer.exe

2014-03-06 01:31:42 3884609500D4484E52B59C08B1A9D075 1453568 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vbsp.exe

2014-03-06 01:31:42 367A4BDC826F2390A3FACDB44D16CDB7 424960 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\bspzip.exe

2014-03-06 01:31:42 2DA3A4839222EF172BE7636CAD1C12B9 564224 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\dmxconvert.exe

2014-03-06 01:31:42 2A4F9E7A9877CDCDE592E29D610A9798 713728 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\vtf2tga.exe

2014-03-06 01:31:42 23A28CB97FADF493B8F71999FF5F8E0D 1696768 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\dmxedit.exe

2014-03-06 01:31:42 23952D561344123DC5646D06718D0330 460800 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\hlmv.exe

2014-03-06 01:31:42 2358BA0771787A0D95B330B440173D00 630272 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\pfm2tgas.exe

2014-03-06 00:45:06 DE3EDDFF9D6562B29F908B1C6F444295 2436416 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\UpdateTool_HP.exe

2014-03-06 00:44:18 E690108B244554CF961882E2931417D7 356640 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCU-ad.exe

2014-03-06 00:44:03 FD1A725D68F8082323F9F5C6B09DCDE8 2151232 ----a-w- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

2014-03-06 00:40:43 EAC62E97A0B231726D8DE532F3D6091D 62687640 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RPGHTKE\asc-ultimate-setup.exe

2014-03-05 23:18:04 91089A5A067CDC489D3F57E268F39F94 134312 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Might & Magic - Duel of Champions\awesomium_pak_utility.exe

2014-03-05 23:18:03 29624A09537508B7E0019A75BA5D7B5E 20136 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Might & Magic - Duel of Champions\DirectXCheckRequirement.exe

2014-03-05 23:18:01 D1C5FFD8D0E532269BDB3DBD2F0B5EC2 40104 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Might & Magic - Duel of Champions\awesomium_process.exe

2014-03-05 23:18:00 841C63972159DA86C6E5330D89D9E7B5 10316968 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Might & Magic - Duel of Champions\Game.exe

2014-03-05 23:18:00 456367FB6A5420A65AD67086BE749789 539304 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Might & Magic - Duel of Champions\Redist\DXSETUP.exe

2014-03-05 23:17:58 19EDD0BDD9C326A3FA30B824D7014B03 1739776 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Spelunky\Spelunky.exe

2014-03-05 23:17:21 B1CA09A1D7B4797FFB40B9C0B4683056 6975488 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\GameData\Bin\MightyQuest.exe

2014-03-05 23:16:39 E7074A931E40E924A85D9D549DEB3B60 85784 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Path of Exile\PackCheck.exe

2014-03-05 23:09:57 BEF9A624309BF7E04C6E199A2836B1DA 304920 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Path of Exile\CrashUpload.exe

2014-03-05 23:09:57 58F40235B676CD03C778B3980C5FD812 9514264 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe

2014-03-05 23:05:03 DF23682BC3BF3470FD9D5C51B245F055 16906592 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Loadout\Loadout.exe

2014-03-05 23:05:03 2C88DCD9EEB537731CFEAD101EFF9FC6 1835008 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Loadout\SubmitReport.exe

2014-03-05 23:01:40 595EB151F39E173306F0530DA49B204F 3208704 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\bin\studiomdl.exe

2014-03-05 21:54:26 F7C384C72A4A233BF3A1932237843CF9 200704 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W8_INF\B161046\clinfo.exe

2014-03-05 21:54:23 56B986D13C74903FE27B71BA85C76037 995342 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W8_INF\B161046\amdocl_as32.exe

2014-03-05 21:54:23 28F4F5BAC73505F71B8AEC95B7FBE1DD 798734 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W8_INF\B161046\amdocl_ld32.exe

2014-03-05 21:54:22 98D1D30B4564864465FE870CD985B488 229376 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W86A_INF\B161046\clinfo.exe

2014-03-05 21:54:18 ECC9D68F5BEF5CD67BE2D2F758661980 1187342 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W86A_INF\B161046\amdocl_as64.exe

2014-03-05 21:54:18 DD3E0FE46F9AB3F9A339F4DD3B2B2E4C 1061902 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W86A_INF\B161046\amdocl_ld64.exe

2014-03-05 21:54:18 56B986D13C74903FE27B71BA85C76037 995342 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W86A_INF\B161046\amdocl_as32.exe

2014-03-05 21:54:18 28F4F5BAC73505F71B8AEC95B7FBE1DD 798734 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\Display\W86A_INF\B161046\amdocl_ld32.exe

2014-03-05 21:54:16 C1E72E582ED514B8BA0E424057A5644E 660736 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Bin64\Setup.exe

2014-03-05 21:54:15 E919357CAB6CE5C5101EA133507D7588 516352 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Bin64\ATISetup.exe

2014-03-05 21:54:15 1EA0CAD6E09DCD004ED219E7109974F9 5559552 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Bin64\InstallManagerApp.exe

2014-03-05 21:44:09 3457D08CF28462CB33691F0242918DF2 15070576 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RUBO6SW.15646+Patch-XenoCoder\aso3setup.exe

2014-03-05 21:44:06 DC7EA290775827D85B7986A7D1B5E593 1450064 ----a-w- C:\Users\nick\AppData\Roaming\uTorrent\updates\3.4.0_30620.exe

2014-03-05 21:35:27 5D038AC8E0CDCAB2FD78E9665AB154E9 15082328 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RBVZ1LQ.exe

2014-03-05 00:38:54 42433CDEC449D40F508752F2D487D8E4 478208 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe

2014-03-05 00:38:53 43D0F8E593ABD37B5BC9573EDD71EFEB 628736 ----a-w- C:\Windows\System32\SettingSyncHost.exe

2014-03-05 00:38:49 A0D3749BB1BC942C7D21C4D99E79A615 131160 ----a-w- C:\Windows\System32\easinvoker.exe

2014-03-05 00:04:51 2E73BE976D4263C32A63FCC05007BCFF 9219632 ----a-w- C:\Program Files (x86)\Battle.net\Battle.net.4269\Battle.net.exe

2014-03-04 21:21:06 55DAEDCC441DFBE208E2EE995F2F0BBB 568512 ----a-w- C:\Program Files (x86)\Common Files\Steam\SteamServiceTmp.exe

2014-03-04 20:00:52 C8F069A68D57DA55102D58CFE24C0D72 4765152 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RYY4YNN.exe

2014-03-04 19:37:16 6A68792A4ABD2D948C9A49382B9366C1 7162992 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RLIPP96.exe

2014-03-04 19:28:20 490C611A7CADF9EFD476BB623D36823B 7304088 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RH9XKVU.exe

2014-03-04 18:57:25 3E3E4E3BCB793BE852D3F3BFBA81C884 36835032 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.146\33.0.1750.146_chrome_installer.exe

2014-03-04 13:57:10 99EDAB82414D23D14947415E5C502FE1 786136 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.146\33.0.1750.146_33.0.1750.117_chrome_updater.exe

2014-03-04 13:44:43 54305ED6A52920B12846FE1466339D20 8798256 ----a-w- C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe

2014-03-04 13:41:16 E8AF847D8FEFC5721C80AD52E2935D19 676568 ----a-w- C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe

2014-03-04 13:41:16 51D6B456D7F4D1AC4CBAA39B9FCAC908 751704 ----a-w- C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe

2014-03-04 13:26:12 51D6B456D7F4D1AC4CBAA39B9FCAC908 751704 ----a-w- C:\Program Files (x86)\Common Files\Bitdefender\setupinformation\setupdownloader.exe

2014-03-04 13:26:11 E8AF847D8FEFC5721C80AD52E2935D19 676568 ----a-w- C:\Program Files (x86)\Common Files\Bitdefender\setupinformation\setuplauncher.exe

2014-03-04 13:25:43 1E862D1673629D3392E56B113BCCCE7A 7168064 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$ROU0RWR.exe

2014-03-02 23:45:26 A74953E82687011DF68671899AB3ECB1 188928 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\bin\vtex.exe

2014-03-02 23:28:45 3DD26C5DE5029D33145A8659E88E8922 5632 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\redist\CmdLineDebugger.exe

2014-03-02 23:27:58 A51D90F2F9394F5EA0A3ACAE3BD2B219 163840 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\7z.exe

2014-03-02 23:27:58 2D57A236F64156EF89F2C5E0EC68775B 61024 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\BlueScreenView.exe

2014-03-02 23:27:58 1C6B3A6E1E9DF2C8313BCF98AABFC8E1 230912 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\xdelta3.0z.x86_32.exe

2014-03-02 23:27:30 BECC1563425C6B613CBEE3EA8DCCAC08 227328 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\MQELDiagnostics.exe

2014-03-02 23:27:29 ED3C6A4CD390C46A8DE02283CF6CD426 59904 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\LauncherPatcher.exe

2014-03-02 23:27:19 AA94EB756E06D530965C0C22ADF2CF4A 136192 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\GameData\Bin\mightyquest-ui.exe

2014-03-02 23:25:53 BE0C2E2C51D5EDBD2832594483E4E8A0 288680 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe

2014-03-02 23:25:53 34362BD18BCAC8076583EDC780C01A49 2746368 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\bin\hlmv.exe

2014-03-02 23:25:53 194DF328CE1035539824B2FB1475F44E 799744 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\bin\dmxconvert.exe

2014-03-02 23:25:52 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\_CommonRedist\DirectX\Jun2010\DXSETUP.exe

2014-03-02 23:25:36 8F101F568A73B0F4E46387839D762931 3792384 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\PublicLauncher.exe

2014-03-02 23:25:36 50D4FAA7C0091842C413F2F37E7F2A4A 453944 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\Launcher\AwesomiumProcess.exe

2014-03-02 23:25:35 C9D9EEBCCEF20D637F193490CEC05E79 10274136 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\_CommonRedist\vcredist\2010\vcredist_x64.exe

2014-03-02 23:25:35 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\_CommonRedist\DirectX\Jun2010\DXSETUP.exe

2014-03-02 23:25:35 1801436936E64598BAB5B87B37DC7F87 8990552 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\_CommonRedist\vcredist\2010\vcredist_x86.exe

2014-03-02 22:29:15 80A7B243EC53F80D7003E91B6A6F5767 3230432 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RJZUC65.exe

=== C: other files ==

2014-03-07 14:39:45 7CC0D898D00675F14BA0C4BF056C1CF4 839896 ----a-w- C:\Windows\LastGood\system32\DRIVERS\Rt630x64.sys

2014-03-07 14:01:51 7CC0D898D00675F14BA0C4BF056C1CF4 839896 ----a-w- C:\Program Files (x86)\Realtek\NICDRV_8169\WIN8\rt630x64.sys

2014-03-07 14:01:08 7CC0D898D00675F14BA0C4BF056C1CF4 839896 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\WIN8\64\rt630x64.sys

2014-03-07 14:01:07 C47899326A92A043CF51E33CCB8BB7BC 12 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\Silent_Install.bat

2014-03-07 14:01:07 8FCFE97BDBA30C79104F615885EC06F1 700632 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\WIN8\32\rt630x86.sys

2014-03-07 14:01:07 3B53FBD11A835CCAB4B96CEB553644A1 31 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2\Install_Win8_8.1_8024_01212014_2\Silent_Uninstall.bat

2014-03-07 14:01:04 DB91A1B6C54B5E37C1D08EEBE11CEAAA 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IS82F2A.zip

2014-03-07 14:01:04 D8AA55B47DD0C20C29608150028E6B29 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$I7RNGLO.zip

2014-03-07 14:01:04 6202D5693271ED01E1789187C82B0CD4 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IHCRN5W.zip

2014-03-07 14:01:04 0CCF46DEECB93BD35464694B4B540B87 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$IEYVEQ7.zip

2014-03-07 13:57:55 453BA2B84BD799B95AC2364696E5872A 6029973 ----a-w- C:\Users\nick\Downloads\Install_Win8_8.1_8024_01212014_2.zip

2014-03-06 09:42:18 FA2B7507CD49908B2260949E52F8B9FE 3707864 ----a-w- C:\Windows\LastGood.Tmp\system32\DRIVERS\RTKVHD64.sys

2014-03-06 09:41:50 C651A99B25AF42423FF80A88A58CD00B 3791320 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys

2014-03-06 09:41:39 19764658C1468C2C0CEF133D28414A6B 591360 ----a-w- C:\Windows\LastGood.Tmp\system32\DRIVERS\Rt630x64.sys

2014-03-06 01:31:42 39AEEC42F17DED67E7A3F2204BA1C265 7392448 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\bin\itemtest.com

2014-03-05 21:54:30 BFB3A0DD5D69A5FE4EE02F8679B1805C 129536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\WDM\HDMI\W864A\atihdw86.sys

2014-03-05 21:54:30 9DA5646DAE413D3B8CA8EB61A5C8330C 113664 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\WDM\HDMI\W8\atihdw83.sys

2014-03-05 21:54:30 7049EC2391D5B675D279C120FB031269 78848 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\WDM\HDMI\W7\atihdw73.sys

2014-03-05 21:54:30 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter_svr\W864A\amd64\USBFilter.sys

2014-03-05 21:54:30 37CB595C0AB20ECBFA5170D3185690DB 96256 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\WDM\HDMI\W764A\atihdw76.sys

2014-03-05 21:54:29 F9254DE6FA0A2782A4810726F2D677EF 26280 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI_svr\W864A\amd_xata.sys

2014-03-05 21:54:29 DE60139831783EB826E31AE6F63E07B7 25344 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W864A\amd_xata.sys

2014-03-05 21:54:29 D197F5FDB34CC9C1991CEDE1709D8A87 52280 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\CIR\LH64a\AmdCIR.sys

2014-03-05 21:54:29 D197F5FDB34CC9C1991CEDE1709D8A87 52280 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\CIR\LH\AmdCIR.sys

2014-03-05 21:54:29 B71DD38B09A55117454C6E89BD5B4AFE 34624 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W7\amd_xata.sys

2014-03-05 21:54:29 B25FB446E6EED2D1DD71251FF28D651C 80640 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W864A\amd_sata.sys

2014-03-05 21:54:29 B107921C04A361FC487177340600D9F3 62520 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\CIR\LH64a\AmdCIR64.sys

2014-03-05 21:54:29 B107921C04A361FC487177340600D9F3 62520 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\CIR\LH\AmdCIR64.sys

2014-03-05 21:54:29 A8FD2F5F3E70BE8FF66D2AFC6B6FB051 42304 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI_svr\W764A\amd_xata.sys

2014-03-05 21:54:29 A8FD2F5F3E70BE8FF66D2AFC6B6FB051 42304 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W764A\amd_xata.sys

2014-03-05 21:54:29 A87858941FD7EF2FFD3DB5A11CB53D62 21760 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W8\amd_xata.sys

2014-03-05 21:54:29 8CC43A5EEB350665F8C2DC7C77668CE8 70464 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W7\amd_sata.sys

2014-03-05 21:54:29 78BA6C76EAB8AEECD43C06E0E63FAD3D 45736 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter\W8\x86\USBFilter.sys

2014-03-05 21:54:29 78BA6C76EAB8AEECD43C06E0E63FAD3D 45736 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter\W7\x86\USBFilter.sys

2014-03-05 21:54:29 78BA6C76EAB8AEECD43C06E0E63FAD3D 45736 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter\W8\x86\USBFilter.sys

2014-03-05 21:54:29 604156FE3A67F5683A9605DE5A9527A3 69888 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W8\amd_sata.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter_svr\W764A\amd64\USBFilter.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter\W864A\amd64\USBFilter.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB8xx\UsbFilter\W764A\amd64\USBFilter.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter_svr\W864A\amd64\USBFilter.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter_svr\W764A\amd64\USBFilter.sys

2014-03-05 21:54:29 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter\W864A\amd64\USBFilter.sys

2014-03-05 21:54:29 172C69FE64D07BDF5CE24146274F8CB8 82240 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI_svr\W764A\amd_sata.sys

2014-03-05 21:54:29 172C69FE64D07BDF5CE24146274F8CB8 82240 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI\W764A\amd_sata.sys

2014-03-05 21:54:29 0E6F9683928F99DF16E0E7924E4807D9 80552 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\SB7xx\AHCI_svr\W864A\amd_sata.sys

2014-03-05 21:54:28 F9254DE6FA0A2782A4810726F2D677EF 26280 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI_svr\W864A\amd_xata.sys

2014-03-05 21:54:28 AD3FBC908B0AB8A511023A97326C98D0 85312 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\USB30\amdhub\W7\x86\amdhub30.sys

2014-03-05 21:54:28 A8FD2F5F3E70BE8FF66D2AFC6B6FB051 42304 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI_svr\W764A\amd_xata.sys

2014-03-05 21:54:28 7DCA2C59491D420947A0B529DB37C7CF 227648 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\USB30\amdxhc\W764A\x64\amdxhc.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE_svr\W864A\amdide.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE_svr\W764A\amdide.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W864A\AmdIde.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W8\AmdIde.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W764A\AmdIde.sys

2014-03-05 21:54:28 7AA286C7F10916DB23734AF066EEC65D 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W7\AmdIde.sys

2014-03-05 21:54:28 78BA6C76EAB8AEECD43C06E0E63FAD3D 45736 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter\W7\x86\USBFilter.sys

2014-03-05 21:54:28 64D26A4E5BD72B9E87E1CEF439FA4BBD 238936 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\RAID\W7\ahcix86s.sys

2014-03-05 21:54:28 59530EC8EA069CE693CA32D914F61FA2 293720 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\RAID\W764A\ahcix64s.sys

2014-03-05 21:54:28 5592ECCED81779AA70CEA4ACA9001D5D 301816 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\RAID\W864A\ahcix64s.sys

2014-03-05 21:54:28 504901430B6E03B99EBB6BF26E0868C6 58536 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\UsbFilter\W764A\amd64\USBFilter.sys

2014-03-05 21:54:28 45B3F9AB0C8E31277BA8F248B05DA54B 178496 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\USB30\amdxhc\W7\x86\amdxhc.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE_svr\W864A\amdide64.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE_svr\W764A\amdide64.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W864A\AmdIde64.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W8\AmdIde64.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W764A\AmdIde64.sys

2014-03-05 21:54:28 35D34AD337A1AC46F74C3377B4CCA88E 11944 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\MINI_IDE\W7\AmdIde64.sys

2014-03-05 21:54:28 31E49F5C9871A28C0691B691E13FC689 79488 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W864A\AMDCIR64.sys

2014-03-05 21:54:28 31E49F5C9871A28C0691B691E13FC689 79488 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W8\AMDCIR64.sys

2014-03-05 21:54:28 31E49F5C9871A28C0691B691E13FC689 79488 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W764A\AMDCIR64.sys

2014-03-05 21:54:28 31E49F5C9871A28C0691B691E13FC689 79488 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W7\AMDCIR64.sys

2014-03-05 21:54:28 0E6F9683928F99DF16E0E7924E4807D9 80552 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI_svr\W864A\amd_sata.sys

2014-03-05 21:54:28 0A365981E36E06A3684C59FE74F7192E 243960 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\RAID\W8\ahcix86s.sys

2014-03-05 21:54:28 05120427227F6F088ECA75942ED7ACA9 106816 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\USB30\amdhub\W764A\x64\amdhub30.sys

2014-03-05 21:54:28 02AA6F2B5F3E881860E045F0938A6057 66688 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W864A\AMDCIR.sys

2014-03-05 21:54:28 02AA6F2B5F3E881860E045F0938A6057 66688 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W8\AMDCIR.sys

2014-03-05 21:54:28 02AA6F2B5F3E881860E045F0938A6057 66688 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W764A\AMDCIR.sys

2014-03-05 21:54:28 02AA6F2B5F3E881860E045F0938A6057 66688 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\CIR\W7\AMDCIR.sys

2014-03-05 21:54:27 DE60139831783EB826E31AE6F63E07B7 25344 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W864A\amd_xata.sys

2014-03-05 21:54:27 B71DD38B09A55117454C6E89BD5B4AFE 34624 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W7\amd_xata.sys

2014-03-05 21:54:27 B25FB446E6EED2D1DD71251FF28D651C 80640 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W864A\amd_sata.sys

2014-03-05 21:54:27 AD3FBC908B0AB8A511023A97326C98D0 85312 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Bolton\USB30\amdhub\W7\x86\amdhub30.sys

2014-03-05 21:54:27 A8FD2F5F3E70BE8FF66D2AFC6B6FB051 42304 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W764A\amd_xata.sys

2014-03-05 21:54:27 A87858941FD7EF2FFD3DB5A11CB53D62 21760 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W8\amd_xata.sys

2014-03-05 21:54:27 8CC43A5EEB350665F8C2DC7C77668CE8 70464 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W7\amd_sata.sys

2014-03-05 21:54:27 7DCA2C59491D420947A0B529DB37C7CF 227648 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Bolton\USB30\amdxhc\W764A\x64\amdxhc.sys

2014-03-05 21:54:27 7A09F261577EEAA5B05EB09DFE31FD0E 14864 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Filter\NB-SB\LH\AtiPcie.sys

2014-03-05 21:54:27 604156FE3A67F5683A9605DE5A9527A3 69888 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W8\amd_sata.sys

2014-03-05 21:54:27 45B3F9AB0C8E31277BA8F248B05DA54B 178496 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Bolton\USB30\amdxhc\W7\x86\amdxhc.sys

2014-03-05 21:54:27 172C69FE64D07BDF5CE24146274F8CB8 82240 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI_svr\W764A\amd_sata.sys

2014-03-05 21:54:27 172C69FE64D07BDF5CE24146274F8CB8 82240 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\hseries\AHCI\W764A\amd_sata.sys

2014-03-05 21:54:27 059A9BE0B331532F70623B6B0DF9A78D 16912 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Filter\NB-SB\LH64A\AtiPcie.sys

2014-03-05 21:54:27 05120427227F6F088ECA75942ED7ACA9 106816 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\SBDrv\Bolton\USB30\amdhub\W764A\x64\amdhub30.sys

2014-03-05 21:54:17 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\amdkmpfd\W864A\amdkmpfd.sys

2014-03-05 21:54:17 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\amdkmpfd\W764A\amdkmpfd.sys

2014-03-05 21:54:17 095755431562D86F069FB527924ED339 24832 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\amdkmpfd\W8\amdkmpfd.sys

2014-03-05 21:54:17 095755431562D86F069FB527924ED339 24832 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Packages\Drivers\amdkmpfd\W7\amdkmpfd.sys

2014-03-05 21:54:15 EE50D9E29B198F57EA8575169C8EE49E 28416 ----a-w- C:\temp\pciven_1002&dev_4391&cc_0106\Bin64\atdcm64a.sys

2014-03-05 00:38:53 3022CFC7840D12C51F2A061EC7F46383 4190720 ----a-w- C:\Windows\System32\win32k.sys

2014-03-05 00:38:50 13B160C1913F012BD1615EB1398D3779 1530712 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2014-03-05 00:38:49 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\Windows\System32\drivers\rdbss.sys

2014-03-05 00:38:49 22EDC0DE06A0272DFA4C7B47B5D8E377 382808 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2014-03-05 00:38:48 D22EB844EB57D016CC34178AC86456DF 325464 -c--a-w- C:\Windows\System32\drivers\USBXHCI.SYS

2014-03-04 02:43:44 D1298C8B4F779C7651C44FA06FBEC5A5 2329988 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RHCRN5W.zip

2014-03-04 02:33:06 089985B2C5AF74A9A5A269B4648ABFB8 414218 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$RS82F2A.zip

2014-03-04 02:32:58 089985B2C5AF74A9A5A269B4648ABFB8 414218 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$R7RNGLO.zip

2014-03-04 02:32:56 089985B2C5AF74A9A5A269B4648ABFB8 414218 ----a-w- C:\$Recycle.Bin\S-1-5-21-3669046239-300307098-1176684625-1002\$REYVEQ7.zip

2014-03-02 23:28:45 058F89B4AEB63A3E605A7D8146A2BA41 358 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\redist\cleanup.bat

2014-03-02 23:26:56 AB6511CA5DD739C389529460B6BB4BD9 342 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\GameData\Data\Generated\deltree.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_USERS\S-1-5-21-3669046239-300307098-1176684625-1002\Software\Microsoft\Windows\CurrentVersion\Run]

"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"

"Raptr"="C:\PROGRA~2\Raptr\RAPTRS~1.EXE --startup"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

@="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run"

"KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload"

"Spotify"="C:\Users\nick\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

"Spotify Web Helper"="C:\Users\nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Facebook Update"="C:\Users\nick\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

"Badoo Desktop"="C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

"Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"

"KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"

"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"

"Raptr"="C:\PROGRA~2\Raptr\RAPTRS~1.EXE --startup"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

@="C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run"

"KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload"

"Spotify"="C:\Users\nick\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

"Spotify Web Helper"="C:\Users\nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Facebook Update"="C:\Users\nick\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"HydraVisionDesktopManager"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

"Badoo Desktop"="C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

"InstallerLauncher"="C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe /run:C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdvancedSystemCareService7]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ASCAntivirusSrv]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ASO3DiskOptimizer]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BEService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdAndroidSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BstHdLogRotatorSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LiveUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\rpcapd]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RzOvlMon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SplashtopRemoteService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SSUService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Steam Client Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SwitchBoard]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TeamViewer9]

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [20/02/2014 20:06]

C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002Core.job --a-------- [undetermined Task]

C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002UA.job --a-------- C:\Users\nick\AppData\Local\Facebook\Update\FacebookUpdate.exe [13/02/2014 01:11]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/11/2013 16:36]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/11/2013 16:36]

==== Other Scheduled Tasks ======================

"C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002Core" [C:\Users\nick\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\WINDOWS\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3669046239-300307098-1176684625-1002UA" [C:\Users\nick\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\WINDOWS\SysNative\tasks\Game_Booster_AutoUpdate" [C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe]

"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{8F66FE0D-E054-45E9-8EED-C151EF4E1982}" [C:\WINDOWS\system32\msfeedssync.exe]

==== Firefox Extensions ======================

ProfilePath: C:\Users\nick\AppData\Roaming\Mozilla\Firefox\Profiles\tzgzi565.default

- Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF

- leethax.net extension - %ProfilePath%\extensions\leethax@leethax.net.xpi

- Greasemonkey - %ProfilePath%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\nick\AppData\Roaming\Mozilla\Firefox\Profiles\tzgzi565.default

18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013

853A6F93105790D4DC4D30CC92B19E11 - C:\Users\nick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

aaaaimdcedbpbcjjbbnfcbbjcngmomic - C:\Users\nick\AppData\Local\somotomoviestoolbar1\GC\toolbar.crx[]

nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx[]

Google Drive - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

Brushed - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg

YouTube - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

AdBlock - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

HS Linkifier - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgfciolhdhbagnccplcficnahgleflam

Google Wallet - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\nick\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\Users\nick\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully

C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\nick\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=154 folders=70 91415219 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\nick\AppData\Local\Temp will be emptied at reboot

C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied

C:\Users\nick\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on vr 07/03/2014 at 15:55:35,71 ======================

Link naar reactie
Delen op andere sites

Met Bitdefender heb je een prima bescherming (als die up-to-date is uiteraard). Dus zal je ofwel bij surfen, ofwel bij downloaden mogelijk toch de besmetting hebben binnengehaald. Daarbij is het dus altijd extra uitkijken.

Nu er geen problemen meer zijn, mag je niet vergeten om de gebruikte tools te verwijderen:

Download 51a5ce45263de-delfix.pngDelfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

  • Remove disinfection tools
  • Purge System Restore
  • Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.