Telkens de zelfde 10 microsoft update

Snowi

13-01-2014 18:39

Goeden avond.
Mijn pc loopt bij bepaalde programma's vast en krijg ik telkens de zelfde 10 update's van microsoft kort nadat deze zijn geinstalleerd.
Ik weet niet als het ook hierdoor komt maar als ik in mijn mail box van outlook express een mail van facebook krijg en ik op de link van facebook klik, gaat niet een facebook pagina open in de explorer maar een google pagina. Zou iemand mij hiermee kunnen helpen aub.
Groetjes
Ben

13-01-2014 18:45

Hallo,
Doe het volgende eerst;
Link: http://antivirus.startpagina.nl/prikbord/4625317/voer-dit-eerst-uit-voordat-je-de-logjes-plaatst-(aangepaste-versie-dd-08-01-2014)#msg-4625317 (tu)
Snowi

13-01-2014 22:12

Het heeft lang geduurd omdat ik het helemaal heb laten scannen
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2014.01.13.06
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Laptops4all :: MAXBOSTON
13-1-2014 18:52:13
mbam-log-2014-01-13 (18-52-13).txt
Scan type: Volledige scan (C:\|E:\|F:\|)
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 380254
Verstreken tijd: 3 uur/uren, 5 minuut/minuten, 16 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SecretSauce (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\Software\Torntv V6.0 (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 4
C:\Program Files\SecretSauce (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\plugins (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0 (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
Bestanden gedetecteerd: 74
C:\Program Files\SecretSauce\SecretSauceBHO.dll (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0\Torntv V6.0-chromeinstaller.exe (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0\Torntv V6.0-updater.exe (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0\utils.exe (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF10.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF11.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF12.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF13.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF14.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF15.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF16.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF17.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF18.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF19.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF2.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF20.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF21.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF22.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF23.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF24.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF25.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF26.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF4.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF5.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF6.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF7.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF8.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}\components\DatamngrHlpFF9.dll (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WPM\wprotectmanager.exe.vir (PUP.Optional.WpManager.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Documents and Settings\Laptops4all\Application Data\Desk 365\components\component_libcef_1.1364.1123.exe.vir (PUP.Optional.Desk365.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\lucky leap\luckyleap.Common.dll.vir (PUP.Optional.Browsefox) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\lucky leap\luckyleapBHO.dll.vir (PUP.Optional.LuckyLeap.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\lucky leap\updateluckyleap.exe.vir (PUP.Optional.LuckyLeap.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\lucky leap\bin\utilluckyleap.exe.vir (PUP.Optional.LuckyLeap.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\lucky leap\update\hjiu0tk1.ya5.exe.vir (PUP.Optional.LuckyLeap.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\Datamngr.dll.vir (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe.vir (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\DatamngrUI.exe.vir (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\IEBHO.dll.vir (PUP.Optional.Bandoo.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\SRTOOL~1\FF\uninstall.exe.vir (PUP.Optional.MoviesToolBar.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\Movies Toolbar\Datamngr\SRTOOL~1\IE\uninstall.exe.vir (PUP.Optional.MoviesToolBar.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\AdwCleaner\Quarantine\C\Program Files\TornTV.com\trtextsetup.exe.vir (PUP.Optional.Bundler) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\CltMngSvc.exe.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\SPTool.dll.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\uninstall.exe.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\cltmng.exe.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPTool64.exe.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC32.dll.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC32Loader.dll.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC64.dll.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC64Loader.dll.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\UI\bin\cltmngui.exe.vir (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1CSGZ2O1\spstub.exe (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MT7NKZU9\SPSetup.exe (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Temp\nsd4CAD.exe (PUP.Optional.SearchProtect.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Temp\nsn6156.exe (PUP.Optional.SearchProtect.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Temp\utt28F7.tmp.exe (PUP.Optional.Conduit.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\AppData\Local\Temp\ICReinstall_cdex.exe (PUP.Optional.InstallCore.A) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Users\Max Boston\Downloads\SetupImgBurn_2.5.8.0.exe (PUP.Optional.OpenCandy) -> Succesvol in quarantaine geplaatst en verwijderd.
E:\Windows\Setup\SCRIPTS\Windows7Loader.exe (Hacktool.Agent) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\WINDOWS\Tasks\Torntv V6.0-updater.job (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Laptops4all\SendTo\Desk 365.lnk (PUP.Optional.Desk365.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\SecretSauce.ico (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\SecretSauceUninstall.exe (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\updateSecretSauce.exe (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\updateSecretSauce.InstallState (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\sqlite3.dll (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\utilSecretSauce.exe (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\utilSecretSauce.InstallState (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\plugins\SecretSauce.FFUpdate.dll (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\plugins\SecretSauce.GCUpdate.dll (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\SecretSauce\bin\plugins\SecretSauce.IEUpdate.dll (PUP.Optional.SecretSauce.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0\45960.crx (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files\Torntv V6.0\Uninstall.exe (PUP.Optional.TornTV.A) -> Succesvol in quarantaine geplaatst en verwijderd.
(einde)
Snowi

13-01-2014 22:13

Logfile of random's system information tool 1.09 (written by random/random)
Run by Laptops4all at 2014-01-13 18:54:28
Microsoft Windows XP Professional Service Pack 3
System drive C: has 47 GB (61%) free of 76 GB
Total RAM: 2002 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:54:36, on 13-1-2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\AMT\atchksrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Intel\AMT\LMS.exe
C:\Program Files\OO Software\Defrag\oodag.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
C:\Program Files\Intel\AMT\UNS.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\YSS8OCDH\RSIT.exe
C:\Program Files\trend micro\Laptops4all.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: “C:\Program Files\Intel\AMT\atchk.exe”
O4 - HKLM\..\Run: “C:\Program Files\Winamp\winampa.exe”
O4 - HKLM\..\Run: C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: “C:\Program Files\Alwil Software\Avast5\avastUI.exe” /nogui
O4 - HKLM\..\Run: C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\RunOnce: C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: “C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKCU\..\Run: C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\Run: C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: FastMediaConverter.lnk = C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Intel(R) Active Management Technology System Status Service (atchksrv) - Intel Corporation - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel - C:\Program Files\Intel\AMT\UNS.exe
–
End of file - 7152 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\HPpromotions journeysoftware.job
C:\WINDOWS\tasks\Torntv V6.0-updater.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{962DB0AA-20C3-45A5-B7E6-734CF628FE5B}.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default
“{20a82645-c095-46ed-80e3-08825760534b}”=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
“wrc@avast.com”=C:\Program Files\Alwil Software\Avast5\WebRep\FF
“Description”=Adobe Shockwave Player
“Path”=C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
“Description”=Java™ Deployment Toolkit
“Path”=C:\WINDOWS\system32\npDeployJava1.dll
“Description”=Oracle® Next Generation Java™ Plug-In
“Path”=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
“Description”=Ag Player Plugin
“Path”=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
“Description”=Windows Presentation Foundation plug-in for Mozilla browsers
“Path”=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
“Description”=Handles PDFs in-place in Firefox
“Path”=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\
ascsurfingprotection@iobit.com
ChoiceGuard@Microsoft
{58d2a791-6199-482f-a9aa-9b725ec61362}
{669E7F40-B964-7100-9E2C-16C6DAA58A01}
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\searchplugins\
yahoo_ff.xml
======Registry dump======
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
“atchk”=C:\Program Files\Intel\AMT\atchk.exe
“WinampAgent”=C:\Program Files\Winamp\winampa.exe
“IgfxTray”=C:\WINDOWS\system32\igfxtray.exe
“HotKeysCmds”=C:\WINDOWS\system32\hkcmd.exe
“Persistence”=C:\WINDOWS\system32\igfxpers.exe
“SoundMAXPnP”=C:\Program Files\Analog Devices\Core\smax4pnp.exe
“HP Software Update”=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
“NeroFilterCheck”=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
“SecurDisc”=C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
“Apoint”=C:\Program Files\Apoint\Apoint.exe
“ETDCtrl”=C:\Program Files\Elantech\ETDCtrl.exe
“avast”=C:\Program Files\Alwil Software\Avast5\avastUI.exe
“OODefragTray”=C:\Program Files\OO Software\Defrag\oodtray.exe
“Malwarebytes Anti-Malware”=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
“Spotify Web Helper”=C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe
“ctfmon.exe”=C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\PROGRA~1\WinZip\WZQKPI~1.EXE
C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten
FastMediaConverter.lnk - C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\igfxdev.dll
C:\WINDOWS\system32\WgaLogon.dll
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“NoDriveTypeAutoRun”=323
“NoDriveAutoRun”=67108863
“NoDrives”=0
“NoDriveAutoRun”=67108863
“NoDriveTypeAutoRun”=323
“NoDrives”=0
“%windir%\system32\sessmgr.exe”=“%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019”
“%windir%\Network Diagnostic\xpnetdiag.exe”=“%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000”
“C:\Program Files\Maxthon\Bin\MxUp.exe”=“C:\Program Files\Maxthon\Bin\MxUp.exe:*:Enabled:MxUp”
“C:\Program Files\Maxthon\Bin\Maxthon.exe”=“C:\Program Files\Maxthon\Bin\Maxthon.exe:*:Enabled:Maxthon”
“C:\WINDOWS\system32\dpvsetup.exe”=“C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test”
“C:\Program Files\Winamp\winamp.exe”=“C:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp”
“C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe”=“C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup”
“C:\Documents and Settings\Laptops4all\Application Data\Spotify\spotify.exe”=“C:\Documents and Settings\Laptops4all\Application Data\Spotify\spotify.exe:*:Enabled:Spotify”
“%windir%\system32\sessmgr.exe”=“%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019”
“%windir%\Network Diagnostic\xpnetdiag.exe”=“%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000”
“midimapper”=midimap.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msadpcm”=msadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.trspch”=tssoft32.acm
“vidc.cvid”=iccvid.dll
“vidc.I420”=msh263.drv
“vidc.iv31”=ir32_32.dll
“vidc.iv32”=ir32_32.dll
“vidc.iv41”=ir41_32.ax
“vidc.iyuv”=iyuv_32.dll
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“vidc.uyvy”=msyuv.dll
“vidc.yuy2”=msyuv.dll
“vidc.yvu9”=tsbyuv.dll
“vidc.yvyu”=msyuv.dll
“wavemapper”=msacm32.drv
“msacm.msg723”=msg723.acm
“vidc.M263”=msh263.drv
“vidc.M261”=msh261.drv
“msacm.msaudio1”=msaud32.acm
“msacm.sl_anet”=sl_anet.acm
“msacm.iac2”=C:\WINDOWS\system32\iac25_32.ax
“vidc.iv50”=ir50_32.dll
“msacm.l3acm”=C:\WINDOWS\system32\l3codeca.acm
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“aux1”=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-01-13 18:54:28 —-D—- C:\rsit
2014-01-13 18:54:28 —-D—- C:\Program Files\trend micro
2014-01-13 18:51:24 —-D—- C:\Documents and Settings\Laptops4all\Application Data\Malwarebytes
2014-01-13 18:51:24 —-A—- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2014-01-13 18:51:20 —-D—- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-01-13 18:51:19 —-D—- C:\Program Files\Malwarebytes' Anti-Malware
2014-01-13 18:51:19 —-A—- C:\WINDOWS\system32\drivers\mbam.sys
2014-01-13 18:44:29 —-SHD—- C:\RECYCLER
2014-01-13 18:43:53 —-D—- C:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-13 14:44:07 —-D—- C:\Documents and Settings\Laptops4all\Application Data\ElevatedDiagnostics
2014-01-13 13:08:19 —-D—- C:\Documents and Settings\Laptops4all\Application Data\TuneUp Software
2014-01-13 13:00:41 —-A—- C:\WINDOWS\ntbtlog.txt
2014-01-13 12:48:19 —-A—- C:\WINDOWS\system32\uxtuneup.dll
2014-01-13 12:46:53 —-A—- C:\WINDOWS\system32\TURegOpt.exe
2014-01-13 12:46:38 —-D—- C:\Documents and Settings\Laptops4all\Application Data\AVG
2014-01-13 12:44:39 —-D—- C:\Program Files\AVG
2014-01-13 12:43:20 —-D—- C:\Documents and Settings\All Users\Application Data\AVG
2014-01-13 12:42:59 —-SHD—- C:\Documents and Settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-13 12:29:48 —-A—- C:\TDSSKiller.2.8.16.0_13.01.2014_12.29.48_log.txt
2014-01-13 12:24:11 —-A—- C:\ComboFix.txt
2014-01-13 12:08:58 —-RASHD—- C:\cmdcons
2014-01-13 12:06:27 —-D—- C:\WINDOWS\erdnt
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\WudfRd.sys.bak
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\WudfPf.sys.bak
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\ws2ifsl.sys.bak
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\wpdusb.sys.bak
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\wmilib.sys.bak
2014-01-13 11:32:04 —-A—- C:\WINDOWS\system32\drivers\wmiacpi.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wdmaud.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\watv10nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\watv06nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wanarp.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wadv11nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wadv09nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wadv08nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wadv07nt.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\wacompen.sys.bak
2014-01-13 11:32:03 —-A—- C:\WINDOWS\system32\drivers\volsnap.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\videoprt.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\viaagp.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\vga.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\vdmindvd.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\usbvideo.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\usbuhci.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\usbstor.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\usbprint.sys.bak
2014-01-13 11:32:02 —-A—- C:\WINDOWS\system32\drivers\usbport.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbintel.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbhub.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbehci.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbd.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbccgp.sys.bak
2014-01-13 11:32:01 —-A—- C:\WINDOWS\system32\drivers\usbcamd2.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\usbcamd.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\USBAUDIO.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\usb8023x.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\usb8023.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\update.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\Uim_Vim.sys.bak
2014-01-13 11:32:00 —-A—- C:\WINDOWS\system32\drivers\Uim_IM.sys.bak
2014-01-13 11:31:59 —-A—- C:\WINDOWS\system32\drivers\UimFIO.sys.bak
2014-01-13 11:31:59 —-A—- C:\WINDOWS\system32\drivers\UimBus.sys.bak
2014-01-13 11:31:59 —-A—- C:\WINDOWS\system32\drivers\udfs.sys.bak
2014-01-13 11:31:59 —-A—- C:\WINDOWS\system32\drivers\uagp35.sys.bak
2014-01-13 11:31:59 —-A—- C:\WINDOWS\system32\drivers\tunmp.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tsbvcap.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tosdvd.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\termdd.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tdtcp.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tdpipe.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tdi.sys.bak
2014-01-13 11:31:58 —-A—- C:\WINDOWS\system32\drivers\tcpip6.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\tcpip.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\tape.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\sysaudio.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\swmidi.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\swenum.sys.bak
2014-01-13 11:31:57 —-A—- C:\WINDOWS\system32\drivers\stream.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\srv.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\sr.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\splitter.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\sonydcam.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\smclib.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\smbali.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\slwdmsup.sys.bak
2014-01-13 11:31:56 —-A—- C:\WINDOWS\system32\drivers\slnthal.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\slntamr.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\slnt7554.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\sisagp.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\sfloppy.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\sffp_sd.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\sffp_mmc.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\sffdisk.sys.bak
2014-01-13 11:31:55 —-A—- C:\WINDOWS\system32\drivers\serial.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\serenum.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\secdrv.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\sdbus.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\scsiport.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\s3gnbm.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\rootmdm.sys.bak
2014-01-13 11:31:54 —-A—- C:\WINDOWS\system32\drivers\rndismpx.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\rndismp.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\rmcast.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\riodrv.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\rio8drv.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\rfcomm.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\revoflt.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\redbook.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\recagent.sys.bak
2014-01-13 11:31:53 —-A—- C:\WINDOWS\system32\drivers\rdpwd.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\rdpdr.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\rdpcdd.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\rdbss.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\rawwan.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\raspti.sys.bak
2014-01-13 11:31:52 —-A—- C:\WINDOWS\system32\drivers\raspptp.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\raspppoe.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\rasl2tp.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\rasacd.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\PxHelp20.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\ptilink.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\psched.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\processr.sys.bak
2014-01-13 11:31:51 —-A—- C:\WINDOWS\system32\drivers\portcls.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\pcmcia.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\pciidex.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\pciide.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\pci.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\parvdm.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\partmgr.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\parport.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\p3.sys.bak
2014-01-13 11:31:50 —-A—- C:\WINDOWS\system32\drivers\oprghdlr.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwrdr.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwlnkspx.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwlnknb.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwlnkipx.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwlnkfwd.sys.bak
2014-01-13 11:31:49 —-A—- C:\WINDOWS\system32\drivers\nwlnkflt.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\nv4_mini.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\null.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\ntmtlfax.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\ntfs.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\npfs.sys.bak
2014-01-13 11:31:48 —-A—- C:\WINDOWS\system32\drivers\nmnt.sys.bak
2014-01-13 11:31:47 —-A—- C:\WINDOWS\system32\drivers\nikedrv.sys.bak
2014-01-13 11:31:47 —-A—- C:\WINDOWS\system32\drivers\nic1394.sys.bak
2014-01-13 11:31:47 —-A—- C:\WINDOWS\system32\drivers\netbt.sys.bak
2014-01-13 11:31:47 —-A—- C:\WINDOWS\system32\drivers\netbios.sys.bak
2014-01-13 11:31:47 —-A—- C:\WINDOWS\system32\drivers\ndproxy.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\ndiswan.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\ndisuio.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\ndistapi.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\mutohpen.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\mup.sys.bak
2014-01-13 11:31:46 —-A—- C:\WINDOWS\system32\drivers\mtxparhm.sys.bak
2014-01-13 11:31:45 —-A—- C:\WINDOWS\system32\drivers\mtlstrm.sys.bak
2014-01-13 11:31:45 —-A—- C:\WINDOWS\system32\drivers\mtlmnt5.sys.bak
2014-01-13 11:31:45 —-A—- C:\WINDOWS\system32\drivers\mssmbios.sys.bak
2014-01-13 11:31:45 —-A—- C:\WINDOWS\system32\drivers\mspqm.sys.bak
2014-01-13 11:31:45 —-A—- C:\WINDOWS\system32\drivers\mspclock.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\mskssrv.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\msgpc.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\msfs.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\mrxsmb.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\mrxdav.sys.bak
2014-01-13 11:31:44 —-A—- C:\WINDOWS\system32\drivers\mqac.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mountmgr.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mouhid.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mouclass.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\modem.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mnmdd.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mf.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mdmxsdk.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mcd.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\mbam.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\LMouFlt2.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\LKbdFlt2.sys.bak
2014-01-13 11:31:43 —-A—- C:\WINDOWS\system32\drivers\LHidFlt2.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\ksecdd.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\ks.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\kmixer.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\kbfiltr.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\kbdhid.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\kbdclass.sys.bak
2014-01-13 11:31:42 —-A—- C:\WINDOWS\system32\drivers\jmccgp.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\isapnp.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\irenum.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\irbus.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\ipsec.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\ipnat.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\ipinip.sys.bak
2014-01-13 11:31:41 —-A—- C:\WINDOWS\system32\drivers\ipfltdrv.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\ip6fw.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\intelppm.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\intelide.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\InCDRm.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\InCDrec.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\InCDPass.sys.bak
2014-01-13 11:31:40 —-A—- C:\WINDOWS\system32\drivers\InCDfs.sys.bak
2014-01-13 11:31:39 —-A—- C:\WINDOWS\system32\drivers\imapi.sys.bak
2014-01-13 11:31:39 —-A—- C:\WINDOWS\system32\drivers\igxpmp32.sys.bak
2014-01-13 11:31:39 —-A—- C:\WINDOWS\system32\drivers\ifxtpm.sys.bak
2014-01-13 11:31:39 —-A—- C:\WINDOWS\system32\drivers\i8042prt.sys.bak
2014-01-13 11:31:39 —-A—- C:\WINDOWS\system32\drivers\http.sys.bak
2014-01-13 11:31:38 —-A—- C:\WINDOWS\system32\drivers\hsfdpsp2.sys.bak
2014-01-13 11:31:38 —-A—- C:\WINDOWS\system32\drivers\hsfcxts2.sys.bak
2014-01-13 11:31:38 —-A—- C:\WINDOWS\system32\drivers\hsfbs2s2.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\HPZius12.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\HPZipr12.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\HPZid412.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\hidusb.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\hidparse.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\hidir.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\hidclass.sys.bak
2014-01-13 11:31:37 —-A—- C:\WINDOWS\system32\drivers\hidbth.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\HECI.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\Hdaudio.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\hdaudbus.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\gagp30kx.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\ftdisk.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\fsvga.sys.bak
2014-01-13 11:31:36 —-A—- C:\WINDOWS\system32\drivers\fs_rec.sys.bak
2014-01-13 11:31:35 —-A—- C:\WINDOWS\system32\drivers\fltmgr.sys.bak
2014-01-13 11:31:35 —-A—- C:\WINDOWS\system32\drivers\flpydisk.sys.bak
2014-01-13 11:31:35 —-A—- C:\WINDOWS\system32\drivers\fips.sys.bak
2014-01-13 11:31:35 —-A—- C:\WINDOWS\system32\drivers\fdc.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\fastfat.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\ETD.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\e1e5132.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\dxgthk.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\dxg.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\dxapi.sys.bak
2014-01-13 11:31:34 —-A—- C:\WINDOWS\system32\drivers\drmkaud.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\drmk.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\dmusic.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\dmload.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\dmio.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\dmboot.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\diskdump.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\disk.sys.bak
2014-01-13 11:31:33 —-A—- C:\WINDOWS\system32\drivers\crusoe.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cpqdap01.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\classpnp.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cinemst2.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cdrom.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cdralw2k.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cdr4_xp.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cdfs.sys.bak
2014-01-13 11:31:32 —-A—- C:\WINDOWS\system32\drivers\cdaudio.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\cbidf2k.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthusb.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthprint.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthport.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthpan.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthmodem.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bthenum.sys.bak
2014-01-13 11:31:31 —-A—- C:\WINDOWS\system32\drivers\bridge.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\beep.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\audstub.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\atmuni.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\atmlane.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\atmepvc.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\atmarpc.sys.bak
2014-01-13 11:31:30 —-A—- C:\WINDOWS\system32\drivers\atinxsxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinxbxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atintuxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinttxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinsnxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinrvxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinraxx.sys.bak
2014-01-13 11:31:29 —-A—- C:\WINDOWS\system32\drivers\atinpdxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\atinmdxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\atinbtxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati2mtag.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati2mtaa.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1xsxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1xbxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1tuxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1ttxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1snxx.sys.bak
2014-01-13 11:31:28 —-A—- C:\WINDOWS\system32\drivers\ati1rvxx.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\ati1raxx.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\ati1pdxx.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\ati1mdxx.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\ati1btxx.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\atapi.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\asyncmac.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\asapi.sys.bak
2014-01-13 11:31:27 —-A—- C:\WINDOWS\system32\drivers\arp1394.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\Apfiltr.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\amdk7.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\amdk6.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\amdagp.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\alim1541.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\agpcpq.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\agp440.sys.bak
2014-01-13 11:31:26 —-A—- C:\WINDOWS\system32\drivers\afd.sys.bak
2014-01-13 11:31:25 —-A—- C:\WINDOWS\system32\drivers\aec.sys.bak
2014-01-13 11:31:25 —-A—- C:\WINDOWS\system32\drivers\aeaudio.sys.bak
2014-01-13 11:31:25 —-A—- C:\WINDOWS\system32\drivers\ADIHdAud.sys.bak
2014-01-13 11:31:25 —-A—- C:\WINDOWS\system32\drivers\acpiec.sys.bak
2014-01-13 11:31:25 —-A—- C:\WINDOWS\system32\drivers\acpi.sys.bak
2014-01-12 17:35:43 —-A—- C:\Nieuw tekstdocument.txt
2013-12-26 12:53:19 —-D—- C:\Documents and Settings\Laptops4all\Application Data\Spotify
2013-12-26 12:43:39 —-D—- C:\Documents and Settings\Laptops4all\Application Data\FastMediaConverter
2013-12-26 12:43:22 —-D—- C:\Program Files\FastMediaConverter
2013-12-22 07:32:28 —-A—- C:\WINDOWS\system32\msvcr100.dll
2013-12-22 07:32:28 —-A—- C:\WINDOWS\system32\msvcp100.dll
2013-12-22 07:31:23 —-D—- C:\Program Files\SecretSauce
2013-12-22 07:30:57 —-D—- C:\Program Files\Torntv V6.0
2013-12-19 18:28:03 —-D—- C:\Program Files\Microsoft
2013-12-19 18:27:46 —-D—- C:\Program Files\Windows Live SkyDrive
2013-12-19 18:27:29 —-D—- C:\Program Files\Windows Live
2013-12-19 18:23:44 —-D—- C:\Program Files\Common Files\Windows Live
2013-12-19 14:05:55 —-HD—- C:\WINDOWS\$NtUninstallKB926139-v2$
2013-12-19 14:05:53 —-D—- C:\Program Files\Speccy
2013-12-19 14:05:04 —-D—- C:\Program Files\Common Files\Java
2013-12-19 13:58:34 —-D—- C:\Documents and Settings\All Users\Application Data\VS Revo Group
2013-12-19 13:17:30 —-DC—- C:\WINDOWS\$NtUninstallKB2808679$
2013-12-19 13:16:05 —-DC—- C:\WINDOWS\$NtUninstallKB2492386$
2013-12-19 13:11:54 —-DC—- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2013-12-19 13:10:41 —-A—- C:\WINDOWS\imsins.BAK
2013-12-19 13:10:28 —-DC—- C:\WINDOWS\$NtUninstallbasecsp$
2013-12-19 13:06:46 —-D—- C:\Documents and Settings\Laptops4all\Application Data\Apple Computer
2013-12-19 13:06:30 —-D—- C:\Documents and Settings\All Users\Application Data\IObit
2013-12-19 13:06:08 —-D—- C:\Program Files\IObit
2013-12-19 13:05:49 —-D—- C:\Documents and Settings\Laptops4all\Application Data\IObit
2013-12-17 12:41:31 —-D—- C:\Program Files\Common Files\Java(2)
2013-12-17 10:43:13 —-D—- C:\WINDOWS\SoftwareDistribution
2013-12-17 10:23:24 —-A—- C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-16 22:34:13 —-RASH—- C:\BOOTSECT.BAK
2013-12-16 22:34:11 —-D—- C:\Boot
2013-12-16 22:34:11 —-A—- C:\Boot.bak
2013-12-16 20:58:28 —-D—- C:\WINDOWS\system32\windowspowershell
2013-12-16 17:51:06 —-D—- C:\WINDOWS\ERUNT
2013-12-16 17:27:24 —-A—- C:\WINDOWS\system32\drivers\revoflt.sys
2013-12-16 17:27:22 —-D—- C:\Program Files\VS Revo Group
2013-12-16 17:25:54 —-D—- C:\JRT
2013-12-16 12:06:48 —-D—- C:\Program Files\Enigma Software Group
2013-12-16 12:05:57 —-D—- C:\Program Files\Common Files\Wise Installation Wizard
2013-12-14 15:55:25 —-D—- C:\136ffab6d9cc2363e1c93d1f
======List of files/folders modified in the last 1 month======
2014-01-13 18:54:28 —-RD—- C:\Program Files
2014-01-13 18:54:26 —-D—- C:\WINDOWS\Prefetch
2014-01-13 18:53:51 —-D—- C:\WINDOWS\system32\CatRoot2
2014-01-13 18:51:57 —-D—- C:\WINDOWS\system32\drivers
2014-01-13 18:47:08 —-SHD—- C:\WINDOWS\Installer
2014-01-13 18:43:58 —-SD—- C:\Documents and Settings\Laptops4all\Application Data\Microsoft
2014-01-13 18:43:57 —-D—- C:\Config.Msi
2014-01-13 18:43:53 —-D—- C:\WINDOWS
2014-01-13 18:08:12 —-D—- C:\WINDOWS\Microsoft.NET
2014-01-13 18:00:31 —-D—- C:\WINDOWS\Temp
2014-01-13 17:52:29 —-A—- C:\WINDOWS\system32\log.txt
2014-01-13 17:25:12 —-A—- C:\WINDOWS\SchedLgU.Txt
2014-01-13 17:24:55 —-D—- C:\WINDOWS\system32
2014-01-13 17:24:55 —-A—- C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-13 17:24:48 —-RSD—- C:\WINDOWS\assembly
2014-01-13 17:24:45 —-D—- C:\WINDOWS\WinSxS
2014-01-13 16:44:56 —-D—- C:\WINDOWS\AppPatch
2014-01-13 16:44:18 —-D—- C:\WINDOWS\system32\CatRoot
2014-01-13 13:55:05 —-D—- C:\WINDOWS\Help
2014-01-13 12:46:55 —-D—- C:\WINDOWS\system32\config
2014-01-13 12:34:00 —-D—- C:\AdwCleaner
2014-01-13 12:23:35 —-SD—- C:\WINDOWS\Tasks
2014-01-13 12:20:18 —-A—- C:\WINDOWS\system.ini
2014-01-13 12:20:01 —-D—- C:\WINDOWS\system32\drivers\etc
2014-01-13 12:14:33 —-D—- C:\Program Files\Common Files
2014-01-13 12:09:04 —-RASH—- C:\boot.ini
2014-01-11 15:16:11 —-D—- C:\Jenny
2014-01-09 15:38:18 —-D—- C:\MUSIC SIR SHAM
2014-01-07 12:03:47 —-D—- C:\Program Files\Mozilla Firefox
2014-01-07 11:57:15 —-D—- C:\Documents and Settings\Laptops4all\Application Data\Winamp
2014-01-02 17:00:05 —-D—- C:\WINDOWS\network diagnostic
2014-01-01 12:38:42 —-SHD—- C:\System Volume Information
2013-12-26 19:43:55 —-AC—- C:\WINDOWS\NeroDigital.ini
2013-12-19 20:00:47 —-SD—- C:\Documents and Settings\All Users\Application Data\Microsoft
2013-12-19 20:00:27 —-D—- C:\Program Files\Common Files\Microsoft Shared
2013-12-19 18:27:36 —-RSD—- C:\WINDOWS\Fonts
2013-12-19 18:27:14 —-HD—- C:\WINDOWS\inf
2013-12-19 14:06:16 —-D—- C:\WINDOWS\system32\wbem
2013-12-19 14:06:15 —-D—- C:\WINDOWS\Registration
2013-12-19 14:04:57 —-D—- C:\Program Files\Java
2013-12-19 14:03:45 —-RSHDC—- C:\WINDOWS\system32\dllcache
2013-12-19 13:54:31 —-D—- C:\WINDOWS\system32\Restore
2013-12-19 13:39:05 —-D—- C:\WINDOWS\Debug
2013-12-19 13:16:48 —-D—- C:\WINDOWS\ie8updates
2013-12-19 13:16:43 —-D—- C:\WINDOWS\security
2013-12-19 13:16:21 —-HD—- C:\WINDOWS\$hf_mig$
2013-12-19 13:11:35 —-D—- C:\WINDOWS\system32\nl-nl
2013-12-19 13:11:34 —-D—- C:\WINDOWS\system32\XPSViewer
2013-12-16 17:44:01 —-D—- C:\WINDOWS\Downloaded Installations
2013-12-16 13:08:41 —-D—- C:\Program Files\CCleaner
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys
R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys
R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys
R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys
R1 kbdhid;Stuurprogramma voor toetsenbord-HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys
R1 Uim_IM;UIM Drive Backup Image Plugin; C:\WINDOWS\System32\Drivers\Uim_IM.sys
R1 Uim_Vim;UIM Virtual Image Plugin; C:\WINDOWS\System32\Drivers\Uim_Vim.sys
R1 UimBus;Universal Image Mounter Controller; C:\WINDOWS\system32\DRIVERS\UimBus.sys
R1 WmiAcpi;Microsoft Windows Beheerinterface voor ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys
R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
R3 HECI;Intel(R) Management Engine Interface; C:\WINDOWS\system32\DRIVERS\HECI.sys
R3 hidusb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS
R3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver; C:\WINDOWS\system32\DRIVERS\jmccgp.sys
R3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFlt2.sys
R3 LKbdFlt2;Logitech Keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\LKbdFlt2.sys
R3 LMouFlt2;Logitech Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFlt2.sys
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
S3 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys
S3 ETD;Dell Touchpad; C:\WINDOWS\system32\DRIVERS\ETD.sys
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys
S3 TotRec8;Total Recorder WDM audio filter driver; \??\C:\WINDOWS\system32\drivers\TotRec8.sys
S3 TrueSight;TrueSight; \??\
S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys
S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 atchksrv;Intel(R) Active Management Technology System Status Service; C:\Program Files\Intel\AMT\atchksrv.exe
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
R2 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
R2 LMS;Intel(R) Active Management Technology Local Management Service; C:\Program Files\Intel\AMT\LMS.exe
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
R2 UNS;Intel(R) Active Management Technology User Notification Service; C:\Program Files\Intel\AMT\UNS.exe
R2 UxTuneUp;AVG Thema-uitbreiding; C:\WINDOWS\System32\svchost.exe
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
S3 WMPNetworkSvc;Windows Media Player Network Sharing-service; C:\Program Files\Windows Media Player\WMPNetwk.exe
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
—————–EOF—————–
Snowi

13-01-2014 22:14

info.txt logfile of random's system information tool 1.09 2014-01-13 18:54:40
======Uninstall list======
–>C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
–>C:\WINDOWS\NuNInst.exe /UNINSTALL
–>C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
–>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Aangifte inkomstenbelasting 2012–>C:\WINDOWS\belastingen\2012\ib2012u.exe
Adobe AIR–>c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR–>MsiExec.exe /I{FDB3B167-F4FA-461D-976F-286304A57B2A}
Adobe Flash Player 10 ActiveX–>C:\WINDOWS\system32\Macromed\Flash\FlashUtil10u_ActiveX.exe -maintain activex
Adobe Reader 9.5.4 - Nederlands–>MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-A95000000001}
Adobe Shockwave Player 11.6–>“C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe”
ASAPI Update–>C:\PROGRA~1\VOB\ASAPIU~1\IWUNIN~1.EXE -uninstall C:\WINDOWS\ISUNINST.EXE -fC:\PROGRA~1\VOB\ASAPIU~1\ASAPI.isu
avast! Free Antivirus–>C:\Program Files\Alwil Software\Avast5\aswRunDll.exe “C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll” RunSetup
AVG PC TuneUp 2014–>C:\Program Files\AVG\AVG PC TuneUp\TUInstallHelper.exe –Trigger-Uninstall
Beveiligingsupdate voor Windows Internet Explorer 7 (KB2792100)–>“C:\WINDOWS\ie7updates\KB2792100-IE7\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 7 (KB2797052)–>“C:\WINDOWS\ie7updates\KB2797052-IE7\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531)–>“C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2618444)–>“C:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2744842)–>“C:\WINDOWS\ie8updates\KB2744842-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2792100)–>“C:\WINDOWS\ie8updates\KB2792100-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2797052)–>“C:\WINDOWS\ie8updates\KB2797052-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2809289)–>“C:\WINDOWS\ie8updates\KB2809289-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2817183)–>“C:\WINDOWS\ie8updates\KB2817183-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2829530)–>“C:\WINDOWS\ie8updates\KB2829530-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2838727)–>“C:\WINDOWS\ie8updates\KB2838727-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2846071)–>“C:\WINDOWS\ie8updates\KB2846071-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2847204)–>“C:\WINDOWS\ie8updates\KB2847204-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2862772)–>“C:\WINDOWS\ie8updates\KB2862772-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2870699)–>“C:\WINDOWS\ie8updates\KB2870699-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2879017)–>“C:\WINDOWS\ie8updates\KB2879017-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2888505)–>“C:\WINDOWS\ie8updates\KB2888505-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2898785)–>“C:\WINDOWS\ie8updates\KB2898785-IE8\spuninst\spuninst.exe”
Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381)–>“C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe”
CCleaner–>“C:\Program Files\CCleaner\uninst.exe”
Dell Touchpad–>%ProgramFiles%\Elantech\ETDUn_inst.exe
eLicenser Control–>C:\PROGRA~1\ELICEN~1\UNWISE.EXE C:\PROGRA~1\ELICEN~1\INSTALL.LOG
Free Easy Burner V 5.1–>“C:\Program Files\Free Easy CD DVD Burner\uninstall.exe”
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=“”
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=“”
HP Deskjet 5900 series–>C:\Program Files\HP\Digital Imaging\{79546A5F-AE7C-4693-8670-A3401B43ABD2}\setup\hpzscr01.exe -datfile hpfscr05.dat
HP Extended Capabilities 5.0–>C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone 5.0–>C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.0–>C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Software Update–>MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D}
HP Solution Center & Imaging Support Tools 5.0–>C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
ImgBurn–>“C:\Program Files\ImgBurn\uninstall.exe”
InfraRecorder–>C:\Program Files\InfraRecorder\uninstall.exe
Intel(R) Graphics Media Accelerator Driver–>C:\WINDOWS\system32\igxpun.exe -uninstall
Intel(R) Network Connections Drivers–>Prounstl.exe
Intel® Active Management Technology–>C:\WINDOWS\system32\mesoludlg.exe -uninstall
Intel® Management Engine Interface–>C:\WINDOWS\system32\heciudlg.exe -uninstall
Internet Explorer (Enable DEP)–>C:\WINDOWS\system32\sdbinst.exe -u “C:\WINDOWS\AppPatch\Custom\{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb”
Java 7 Update 17–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217017FF}
Junk Mail filter update–>MsiExec.exe /I{8E5233E1-7495-44FB-8DEB-4BE906D59619}
Malwarebytes Anti-Malware versie 1.75.0.1300–>“C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe”
Maxthon Cloud Browser–>C:\Program Files\Maxthon\Bin\Mx3Uninstall.exe
Microsoft .NET Framework 1.1 Dutch Language Pack–>MsiExec.exe /X{168F8BAC-A269-48E9-BB7A-A51B594CF6FF}
Microsoft .NET Framework 1.1 Security Update (KB2833941)–>“C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe” “C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2833941\M2833941Uninstall.msp”
Microsoft .NET Framework 1.1–>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1–>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2–>MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2–>MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1–>C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1–>MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard–>MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP–>“C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe”
Microsoft Internationalized Domain Names Mitigation APIs–>“C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe”
Microsoft National Language Support Downlevel APIs–>“C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe”
Microsoft Primary Interoperability Assemblies 2005–>MsiExec.exe /X{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
Microsoft Silverlight–>MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0–>“C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe”
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17–>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148–>MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161–>MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mozilla Firefox 25.0.1 (x86 nl)–>“C:\Program Files\Mozilla Firefox\uninstall\helper.exe”
Mozilla Maintenance Service–>“C:\Program Files\Mozilla Maintenance Service\uninstall.exe”
MSVCRT–>MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)–>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)–>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 7 Essentials–>MsiExec.exe /X{9B4E6CB9-E54D-47F7-A414-E2D5740E1043}
neroxml–>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O&O Defrag Free Edition–>MsiExec.exe /I{E29CFB36-F070-4612-8DB5-7038161B6294}
OpenOffice.org 3.2–>MsiExec.exe /I{9C43D327-EC1E-4FCC-8F40-D4ACCCCA0BF6}
Paragon Backup & Recovery™ 2013 Free–>MsiExec.exe /I{C268B5E1-A5DA-11DF-A289-005056C00008}
Revo Uninstaller Pro 3.0.5–>“C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe”
SecretSauce–>C:\Program Files\SecretSauce\SecretSauceuninstall.exe
Security Update for CAPICOM (KB931906)–>MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)–>MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT=“”
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {939AF4BC-EC42-38D1-AE82-91D4A7ED8911} /qb+ REBOOTPROMPT=“”
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8433C01-319F-3370-850E-87C35496299A} /qb+ REBOOTPROMPT=“”
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {48B0C142-A0F4-3263-90E1-1984CBB8DD18} /qb+ REBOOTPROMPT=“”
Segoe UI–>MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Speccy–>“C:\Program Files\Speccy\uninst.exe”
Steinberg WaveLab v4.00c–>C:\PROGRA~1\STEINB~1\Wavelab\UNWISE.EXE C:\PROGRA~1\STEINB~1\Wavelab\INSTALL.LOG
swMSM–>MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Torntv V6.0–>C:\Program Files\Torntv V6.0\Uninstall.exe /fromcontrolpanel=1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=“”
Update voor Windows Internet Explorer 8 (KB2598845)–>“C:\WINDOWS\ie8updates\KB2598845-IE8\spuninst\spuninst.exe”
VLC media player 1.1.5–>C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp–>“C:\Program Files\Winamp\UninstWA.exe”
Windows Internet Explorer 8–>“C:\WINDOWS\ie8\spuninst\spuninst.exe”
Windows Live - Hulpprogramma voor uploaden–>MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Live aanmeldhulp–>MsiExec.exe /I{1BD6AE96-4742-4498-9D03-9451C7E5A214}
Windows Live Communications Platform–>MsiExec.exe /I{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
Windows Live Essentials–>C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials–>MsiExec.exe /I{EB5A3E9D-91CF-4C97-B816-72DE0625ACA3}
Windows Live Mail–>MsiExec.exe /I{2869F5EA-93C3-48E5-80DF-DB696BC84A91}
Windows Media Format 11 runtime–>“C:\Program Files\Windows Media Player\wmsetsdk.exe” /UninstallAll
Windows Media Format 11 runtime–>“C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe”
Windows Media Player 11–>“C:\Program Files\Windows Media Player\Setup_wm.exe” /Uninstall
Windows Media Player 11–>“C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe”
Windows PowerShell(TM) 1.0–>“C:\WINDOWS\$NtUninstallKB926139-v2$\spuninst\spuninst.exe”
Windows XP Service Pack 3–>“C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe”
WinRAR 4.20 (32-bit)–>C:\Program Files\WinRAR\uninstall.exe
WinZip 17.0–>MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240D8}
======Security center information======
AV: avast! Antivirus
======System event log======
Computer Name: MAXBOSTON
Event Code: 32
Message: Intel(R) 82566DM-2 Gigabit Network Connection
Link has been established: 1000Mbps.
Record Number: 4799
Source Name: e1express
Time Written: 20140107080813.000000+060
Event Type: Gegevens
User:
Computer Name: MAXBOSTON
Event Code: 2
Message: HECI driver has started successfully.
Record Number: 4798
Source Name: HECI
Time Written: 20140107080813.000000+060
Event Type: Gegevens
User:
Computer Name: MAXBOSTON
Event Code: 1
Message: IFXTPM: Device driver created at Dec 17 2007, V2.01.0001.00, Infineon TPM is started
Record Number: 4797
Source Name: IFXTPM
Time Written: 20140107080813.000000+060
Event Type: Gegevens
User:
Computer Name: MAXBOSTON
Event Code: 6005
Message: De Event Log-service is gestart.
Record Number: 4796
Source Name: EventLog
Time Written: 20140107080809.000000+060
Event Type: Gegevens
User:
Computer Name: MAXBOSTON
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.
Record Number: 4795
Source Name: EventLog
Time Written: 20140107080809.000000+060
Event Type: Gegevens
User:
=====Application event log=====
Computer Name: MAXBOSTON
Event Code: 1002
Message: De prestatiemeteritems voor de ASP.NET-service (ASP.NET) bevinden zich al in het
register. Deze hoeven niet opnieuw te worden geïnstalleerd.
Record Number: 4922
Source Name: LoadPerf
Time Written: 20140105164618.000000+060
Event Type: Gegevens
User:
Computer Name: MAXBOSTON
Event Code: 3011
Message: Het verwijderen van de tekenreeksen van prestatiemeteritems voor de ASP.NET-service
(ASP.NET) is mislukt. De foutcode is de eerste DWORD in de sectie Gegevens.
Record Number: 4921
Source Name: LoadPerf
Time Written: 20140105164618.000000+060
Event Type: Fout
User:
Computer Name: MAXBOSTON
Event Code: 3012
Message: De prestatietekenreeksen in de waarde van de registersleutel Performance worden beschadigd bij het verwerken van
de Performance extension counter provider. De waarde van BaseIndex in de registersleutel Performance
is de eerste DWORD in de gegevenssectie, de waarde van LastCounter de tweede
DWORD en de waarde van LastHelp de derde DWORD.
Record Number: 4920
Source Name: LoadPerf
Time Written: 20140105164618.000000+060
Event Type: Fout
User:
Computer Name: MAXBOSTON
Event Code: 3012
Message: De prestatietekenreeksen in de waarde van de registersleutel Performance worden beschadigd bij het verwerken van
de Performance extension counter provider. De waarde van BaseIndex in de registersleutel Performance
is de eerste DWORD in de gegevenssectie, de waarde van LastCounter de tweede
DWORD en de waarde van LastHelp de derde DWORD.
Record Number: 4919
Source Name: LoadPerf
Time Written: 20140105164618.000000+060
Event Type: Fout
User:
Computer Name: MAXBOSTON
Event Code: 1000
Message: Prestatiemeteritems voor de ASP.NET_2.0.50727-service (ASP.NET_2.0.50727) zijn geladen. De record-
gegevens bevatten de nieuwe indexwaarden die zijn toegewezen aan
deze service.
Record Number: 4918
Source Name: LoadPerf
Time Written: 20140105164618.000000+060
Event Type: Gegevens
User:
======Environment variables======
“ComSpec”=%SystemRoot%\system32\cmd.exe
“Path”=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\WINDOWS\system32\WindowsPowerShell\v1.0
“windir”=%SystemRoot%
“FP_NO_HOST_CHECK”=NO
“OS”=Windows_NT
“PROCESSOR_ARCHITECTURE”=x86
“PROCESSOR_LEVEL”=6
“PROCESSOR_IDENTIFIER”=x86 Family 6 Model 15 Stepping 11, GenuineIntel
“PROCESSOR_REVISION”=0f0b
“NUMBER_OF_PROCESSORS”=2
“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.PSC1
“TEMP”=%SystemRoot%\TEMP
“TMP”=%SystemRoot%\TEMP
—————–EOF—————–
Ben

14-01-2014 09:31

Hallo,
Schakel eerst de Antivirussoftware uit voordat je zoek.exe instaleerd.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Antivirus software uitschakelen
Antispy & malware software uitschakelen
Download
Zoek.exe naar het bureaublad.
Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
Dubbelklik vervolgens op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
emptyclsid;
torpigcheck;
emptyfolderscheck;delete
chromelook;
standardsearch;
filesrcm;
autoclean;
startupall;
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht.
Snowi

14-01-2014 10:00

Zoek.exe v5.0.0.0 Updated 12-Januari-2014
Tool run by Laptops4all on di 14-01-2014 at 9:36:37,39.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Laptops4all\Bureaublad\zoek.exe
==== System Restore Info ======================
14-1-2014 9:37:57 Zoek.exe System Restore Point Created Succesfully.
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\CDF {67EA19A0-CCEF-11d0-8024-00C04FD75D13} %SystemRoot%\system32\shdocvw.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\MyDocuments {ECF03A33-103D-11d2-854D-006008059367} %SystemRoot%\system32\mydocs.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll
==== Empty Folders Check ======================
C:\Program Files\Enigma Software Group deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\Documents and Settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully
C:\Documents and Settings\Laptops4all\Application Data\PACE Anti-Piracy deleted successfully
C:\Documents and Settings\Laptops4all\Local Settings\Application Data\cache deleted successfully
C:\Documents and Settings\Laptops4all\Local Settings\Application Data\Downloaded Installations deleted successfully
C:\Documents and Settings\Laptops4all\Local Settings\Application Data\PACE Anti-Piracy deleted successfully
C:\Documents and Settings\Laptops4all\Local Settings\Application Data\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-4053885489-4140769136-2780787085-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{9D717F81-9148-4F12-8568-69135F087DB0} deleted successfully
HKEY_USERS\S-1-5-21-4053885489-4140769136-2780787085-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} deleted successfully
==== Running Processes ======================
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\AMT\atchksrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\AMT\LMS.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
C:\Program Files\Intel\AMT\atchk.exe
C:\Program Files\Intel\AMT\UNS.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Alwil Software\Avast5\avastUI.exe
C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Laptops4all\Bureaublad\zoek.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
==== Deleting Services ======================
==== FireFox Fix ======================
ProfilePath: C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default
user.js not found
—- Lines browser.startup.page removed from prefs.js —-
user_pref(“browser.startup.page”, 3);
—- FireFox user.js and prefs.js backups —-
prefs_14-01-2014_0943_.backup
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
@=“C:\\Program Files\\Maxthon\\Bin\\Maxthon.exe”
@=“C:\\Program Files\\Maxthon\\Bin\\Maxthon.exe”
==== Deleting Files \ Folders ======================
C:\Documents and Settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found
C:\Documents and Settings\Laptops4all\daemonprocess.txt deleted
C:\Documents and Settings\Laptops4all\.android deleted
C:\Documents and Settings\Laptops4all\Application Data\Microsoft\Internet Explorer\Quick Launch\Mobogenie.lnk deleted
C:\Documents and Settings\All Users\Menu Start\Programma's\YTD Video Downloader deleted
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\firefox@secretsauce.biz.xpi deleted
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\staged deleted
==== System Specs ======================
Windows: Windows XP Professional Service Pack 3 (Build 2600)
Memory (RAM): 2003 MB
CPU Info: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz
CPU Speed: 2318,8 MHz
Sound Card: SoundMAX HD Audio |
Display Adapters: Intel(R) Q35 Express Chipset Family | NetMeeting driver | RDPDD Chained DD
Monitors: 1x; Plug en Play-monitor |
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Intel(R) 82566DM-2 Gigabit Network Connection
CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SH-224BB
Ports: COM3 | COM1 LPT1
Mouse: 8 Button Wheel Mouse Present
Hard Disks: C: 74,5GB | E: 48,8GB | F: 1814,2GB
Hard Disks - Free: C: 45,4GB | E: 25,6GB | F: 1752,4GB
Manufacturer *: Hewlett-Packard
BIOS Info: AT/AT COMPATIBLE | 07/18/07 | HPQOEM - 20070718
Time Zone: West-Europa (standaardtijd)
Motherboard *: Hewlett-Packard 0AA8h
Country: Nederland
Language: NLD
==== System Specs (Software) ======================
Anti-Virus: avast! Antivirus On-access scanning disabled (Updated)
Default Browser: Windows® Internet Explorer 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
Internet Explorer version: 8.0.6001.18702
Mozilla Firefox version: 25.0.1 (x86 nl)
Shockwave Player version: 11.6r626
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
2014-01-14 07:11:11 A283E768FA12EF33087F07B01F82D6DD 181064 —-a-w- C:\WINDOWS\PSEXESVC.EXE
2013-12-19 12:10:41 5E579DD041A2F412A16C754C2E6C0E25 1393 —-a-w- C:\WINDOWS\imsins.BAK
2013-12-16 12:58:06 D1E75542EC8D1B4851765A57AC63618E 1908 —-a-w- C:\WINDOWS\diagwrn.xml
2013-12-16 12:58:06 D1E75542EC8D1B4851765A57AC63618E 1908 —-a-w- C:\WINDOWS\diagerr.xml
====== C:\DOCUME~1\LAPTOP~1\LOCALS~1\Temp ====
2014-01-13 13:46:09 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.WinFileFolder.FISC.139313047770138598.1.3.Run.exe
2014-01-13 13:44:43 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.IEPerformance.FISC.139313047770138598.1.2.Run.exe
2014-01-13 13:43:37 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.IEAddon.FISC.139313047770138598.1.1.Run.exe
====== Java Cache =====
====== C:\WINDOWS\system32 =====
2014-01-13 11:48:19 CC7A4572AF76CA5DD55F7F742F185297 35640 —-a-w- C:\WINDOWS\System32\uxtuneup.dll
2014-01-13 11:46:53 8CC0D4BE3DD08959909EE879EEC19B3C 36152 —-a-w- C:\WINDOWS\System32\TURegOpt.exe
====== C:\WINDOWS\system32\drivers =====
2014-01-13 17:51:19 4470E3C1E0C3378E4CAB137893C12C3A 22856 —-a-w- C:\WINDOWS\System32\drivers\mbam.sys
2014-01-13 10:32:04 F15FEAFFFBB3644CCC80C5DA584E6311 77568 —-a-w- C:\WINDOWS\System32\drivers\WudfPf.sys.bak
2014-01-13 10:32:04 CF4DEF1BF66F06964DC0D91844239104 38528 —-a-w- C:\WINDOWS\System32\drivers\wpdusb.sys.bak
2014-01-13 10:32:04 C42584FD66CE9E17403AEBCA199F7BDB 8832 —-a-w- C:\WINDOWS\System32\drivers\wmiacpi.sys.bak
2014-01-13 10:32:04 6ABE6E225ADB5A751622A9CC3BC19CE8 12032 —-a-w- C:\WINDOWS\System32\drivers\ws2ifsl.sys.bak
2014-01-13 10:32:04 2F31B7F954BED437F2C75026C65CAF7B 4352 —-a-w- C:\WINDOWS\System32\drivers\wmilib.sys.bak
2014-01-13 10:32:04 28B524262BCE6DE1F7EF9F510BA3985B 82944 —-a-w- C:\WINDOWS\System32\drivers\WudfRd.sys.bak
2014-01-13 10:32:03 E20B95BAEDB550F32DD489265C1DA1F6 34560 —-a-w- C:\WINDOWS\System32\drivers\wanarp.sys.bak
2014-01-13 10:32:03 ACED8C149B30F8496C237BCBA3727B48 14208 —-a-w- C:\WINDOWS\System32\drivers\wacompen.sys.bak
2014-01-13 10:32:03 8AB662B3C4691E6DDF61C96BB5B7D103 53504 —-a-w- C:\WINDOWS\System32\drivers\volsnap.sys.bak
2014-01-13 10:32:03 7BB3AA595E4507A788DE1CDC63F4C8C4 11871 —-a-w- C:\WINDOWS\System32\drivers\wadv09nt.sys.bak
2014-01-13 10:32:03 791CC45DE6E50445BE72E8AD6401FF45 25471 —-a-w- C:\WINDOWS\System32\drivers\watv10nt.sys.bak
2014-01-13 10:32:03 714038A8AA5DE08E12062202CD7EAEB5 11295 —-a-w- C:\WINDOWS\System32\drivers\wadv08nt.sys.bak
2014-01-13 10:32:03 6768ACF64B18196494413695F0C3A00F 83072 —-a-w- C:\WINDOWS\System32\drivers\wdmaud.sys.bak
2014-01-13 10:32:03 36E6C405B6143D09687F4056FD9A0D10 11935 —-a-w- C:\WINDOWS\System32\drivers\wadv11nt.sys.bak
2014-01-13 10:32:03 352FA0E98BC461CE1CE5D41F64DB558D 22271 —-a-w- C:\WINDOWS\System32\drivers\watv06nt.sys.bak
2014-01-13 10:32:03 0308AEF61941E4AF478FA1A0F83812F5 11807 —-a-w- C:\WINDOWS\System32\drivers\wadv07nt.sys.bak
2014-01-13 10:32:02 E28726B72C46821A28830E077D39A55B 81664 —-a-w- C:\WINDOWS\System32\drivers\videoprt.sys.bak
2014-01-13 10:32:02 A717C8721046828520C9EDF31288FC00 25856 —-a-w- C:\WINDOWS\System32\drivers\usbprint.sys.bak
2014-01-13 10:32:02 A32426D9B14A089EAA1D922E0C5801A9 26368 —-a-w- C:\WINDOWS\System32\drivers\usbstor.sys.bak
2014-01-13 10:32:02 813236B1183CFCF289E367BD5DE6E29E 123008 —-a-w- C:\WINDOWS\System32\drivers\usbvideo.sys.bak
2014-01-13 10:32:02 754292CE5848B3738281B4F3607EAEF4 42240 —-a-w- C:\WINDOWS\System32\drivers\viaagp.sys.bak
2014-01-13 10:32:02 6DF35CA139C3BC15CC74390ABB114EFE 144128 —-a-w- C:\WINDOWS\System32\drivers\usbport.sys.bak
2014-01-13 10:32:02 55E01061C74A8CEFFF58DC36114A8D3F 58112 —-a-w- C:\WINDOWS\System32\drivers\vdmindvd.sys.bak
2014-01-13 10:32:02 26496F9DEE2D787FC3E61AD54821FFE6 20608 —-a-w- C:\WINDOWS\System32\drivers\usbuhci.sys.bak
2014-01-13 10:32:02 0D3A8FAFCEACD8B7625CD549757A7DF1 20992 —-a-w- C:\WINDOWS\System32\drivers\vga.sys.bak
2014-01-13 10:32:01 CE97845D2E3F0D274B8BAC1ED07C6149 25728 —-a-w- C:\WINDOWS\System32\drivers\usbcamd2.sys.bak
2014-01-13 10:32:01 4BAC8DF07F1D8434FC640E677A62204E 30336 —-a-w- C:\WINDOWS\System32\drivers\usbehci.sys.bak
2014-01-13 10:32:01 290913DC4F1125E5A82DE52579A44C43 15872 —-a-w- C:\WINDOWS\System32\drivers\usbintel.sys.bak
2014-01-13 10:32:01 1B611611C28D2DF25BC057D79C6F13FC 32384 —-a-w- C:\WINDOWS\System32\drivers\usbccgp.sys.bak
2014-01-13 10:32:01 1AB3CDDE553B6E064D2E754EFE20285C 59520 —-a-w- C:\WINDOWS\System32\drivers\usbhub.sys.bak
2014-01-13 10:32:01 04FE5EF6ED4818EC4839EA5C611A6310 5376 —-a-w- C:\WINDOWS\System32\drivers\usbd.sys.bak
2014-01-13 10:32:00 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 —-a-w- C:\WINDOWS\System32\drivers\usb8023x.sys.bak
2014-01-13 10:32:00 AA16B72277CDCE5310DEF8BB8F5DB695 283600 —-a-w- C:\WINDOWS\System32\drivers\Uim_Vim.sys.bak
2014-01-13 10:32:00 803BDC7127F26F01E19070D4B26C037F 452816 —-a-w- C:\WINDOWS\System32\drivers\Uim_IM.sys.bak
2014-01-13 10:32:00 65898A183FBF1D1F7759D5CCB364DCD4 60160 —-a-w- C:\WINDOWS\System32\drivers\USBAUDIO.sys.bak
2014-01-13 10:32:00 402DDC88356B1BAC0EE3DD1580C76A31 384768 —-a-w- C:\WINDOWS\System32\drivers\update.sys.bak
2014-01-13 10:32:00 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B 12928 —-a-w- C:\WINDOWS\System32\drivers\usb8023.sys.bak
2014-01-13 10:32:00 1C1A47B40C23358245AA8D0443B6935E 25600 —-a-w- C:\WINDOWS\System32\drivers\usbcamd.sys.bak
2014-01-13 10:31:59 E67C7846EE66133B15FA407854778D4B 326992 —-a-w- C:\WINDOWS\System32\drivers\UimFIO.sys.bak
2014-01-13 10:31:59 D85938F272D1BCF3DB3A31FC0A048928 44672 —-a-w- C:\WINDOWS\System32\drivers\uagp35.sys.bak
2014-01-13 10:31:59 8F861EDA21C05857EB8197300A92501C 12288 —-a-w- C:\WINDOWS\System32\drivers\tunmp.sys.bak
2014-01-13 10:31:59 5787B80C2E3C5E2F56C2A233D91FA2C9 66048 —-a-w- C:\WINDOWS\System32\drivers\udfs.sys.bak
2014-01-13 10:31:59 3CC218CF2A6443478B0EF705B803C504 81232 —-a-w- C:\WINDOWS\System32\drivers\UimBus.sys.bak
2014-01-13 10:31:58 D74A8EC75305F1D3CFDE7C7FC1BD62A9 21376 —-a-w- C:\WINDOWS\System32\drivers\tsbvcap.sys.bak
2014-01-13 10:31:58 C56B6D0402371CF3700EB322EF3AAF61 21896 —-a-w- C:\WINDOWS\System32\drivers\tdtcp.sys.bak
2014-01-13 10:31:58 88155247177638048422893737429D9E 40840 —-a-w- C:\WINDOWS\System32\drivers\termdd.sys.bak
2014-01-13 10:31:58 699450901C5CCFD82357CBC531CEDD23 51712 —-a-w- C:\WINDOWS\System32\drivers\tosdvd.sys.bak
2014-01-13 10:31:58 6471A66807F5E104E4885F5B67349397 12040 —-a-w- C:\WINDOWS\System32\drivers\tdpipe.sys.bak
2014-01-13 10:31:58 4E53BBCC4BE37D7A4BD6EF1098C89FF7 226880 —-a-w- C:\WINDOWS\System32\drivers\tcpip6.sys.bak
2014-01-13 10:31:58 0539D5E53587F82D1B4FD74C5BE205CF 19072 —-a-w- C:\WINDOWS\System32\drivers\tdi.sys.bak
2014-01-13 10:31:57 FD6093E3DECD925F1CFFC8A0DD539D72 14976 —-a-w- C:\WINDOWS\System32\drivers\tape.sys.bak
2014-01-13 10:31:57 9AEFA14BD6B182D61E3119FA5F436D3D 361600 —-a-w- C:\WINDOWS\System32\drivers\tcpip.sys.bak
2014-01-13 10:31:57 8CE882BCC6CF8A62F2B2323D95CB3D01 56576 —-a-w- C:\WINDOWS\System32\drivers\swmidi.sys.bak
2014-01-13 10:31:57 8B83F3ED0F1688B4958F77CD6D2BF290 60800 —-a-w- C:\WINDOWS\System32\drivers\sysaudio.sys.bak
2014-01-13 10:31:57 3E5D89099DED9E86E5639F411693218F 49408 —-a-w- C:\WINDOWS\System32\drivers\stream.sys.bak
2014-01-13 10:31:57 3941D127AEF12E93ADDF6FE6EE027E0F 4352 —-a-w- C:\WINDOWS\System32\drivers\swenum.sys.bak
2014-01-13 10:31:56 F9B8E30E82EE95CF3E1D3E495599B99C 95424 —-a-w- C:\WINDOWS\System32\drivers\slnthal.sys.bak
2014-01-13 10:31:56 DB56BB2C55723815CF549D7FC50CFCEB 13240 —-a-w- C:\WINDOWS\System32\drivers\slwdmsup.sys.bak
2014-01-13 10:31:56 AB8B92451ECB048A4D1DE7C3FFCB4A9F 6272 —-a-w- C:\WINDOWS\System32\drivers\splitter.sys.bak
2014-01-13 10:31:56 895BE38A993B9BD5ABBE570D63D88A2E 5888 —-a-w- C:\WINDOWS\System32\drivers\smbali.sys.bak
2014-01-13 10:31:56 64D2A7640E0767ECD3BCB38D3200E7CE 73472 —-a-w- C:\WINDOWS\System32\drivers\sr.sys.bak
2014-01-13 10:31:56 489703624DAC94ED943C2ABDA022A1CD 25344 —-a-w- C:\WINDOWS\System32\drivers\sonydcam.sys.bak
2014-01-13 10:31:56 47DDFC2F003F7F9F0592C6874962A2E7 357888 —-a-w- C:\WINDOWS\System32\drivers\srv.sys.bak
2014-01-13 10:31:56 017DAECF0ED3AA731313433601EC40FA 14592 —-a-w- C:\WINDOWS\System32\drivers\smclib.sys.bak
2014-01-13 10:31:55 D9673011648A71ED1E1F77B831BC85E6 129535 —-a-w- C:\WINDOWS\System32\drivers\slnt7554.sys.bak
2014-01-13 10:31:55 D66D22D76878BF3483A6BE30183FB648 10240 —-a-w- C:\WINDOWS\System32\drivers\sffp_mmc.sys.bak
2014-01-13 10:31:55 C17C331E435ED8737525C86A7557B3AC 11008 —-a-w- C:\WINDOWS\System32\drivers\sffp_sd.sys.bak
2014-01-13 10:31:55 92C21762653BB2CE51147EB8A9AA654F 65536 —-a-w- C:\WINDOWS\System32\drivers\serial.sys.bak
2014-01-13 10:31:55 8E6B8C671615D126FDC553D1E2DE5562 11392 —-a-w- C:\WINDOWS\System32\drivers\sfloppy.sys.bak
2014-01-13 10:31:55 6B33D0EBD30DB32E27D1D78FE946A754 40960 —-a-w- C:\WINDOWS\System32\drivers\sisagp.sys.bak
2014-01-13 10:31:55 2C1779C0FEB1F4A6033600305EBA623A 404990 —-a-w- C:\WINDOWS\System32\drivers\slntamr.sys.bak
2014-01-13 10:31:55 0FA803C64DF0914B41F807EA276BF2A6 11904 —-a-w- C:\WINDOWS\System32\drivers\sffdisk.sys.bak
2014-01-13 10:31:54 D8B0B4ADE32574B2D9C5CC34DC0DBBE7 5888 —-a-w- C:\WINDOWS\System32\drivers\rootmdm.sys.bak
2014-01-13 10:31:54 90A3935D05B494A5A39D37E71F09A677 20480 —-a-w- C:\WINDOWS\System32\drivers\secdrv.sys.bak
2014-01-13 10:31:54 8D04819A3CE51B9EB47E5689B44D43C4 79232 —-a-w- C:\WINDOWS\System32\drivers\sdbus.sys.bak
2014-01-13 10:31:54 76C465F570E90C28942D52CCB2580A10 96384 —-a-w- C:\WINDOWS\System32\drivers\scsiport.sys.bak
2014-01-13 10:31:54 726548542AFECA56257FF01EB13BB6D7 30592 —-a-w- C:\WINDOWS\System32\drivers\rndismpx.sys.bak
2014-01-13 10:31:54 0F29512CCD6BEAD730039FB4BD2C85CE 15744 —-a-w- C:\WINDOWS\System32\drivers\serenum.sys.bak
2014-01-13 10:31:54 0DBCC071A268E0340A2BA6BDD98BACE4 166912 —-a-w- C:\WINDOWS\System32\drivers\s3gnbm.sys.bak
2014-01-13 10:31:53 E9AAA0092D74A9D371659C4C38882E12 13776 —-a-w- C:\WINDOWS\System32\drivers\recagent.sys.bak
2014-01-13 10:31:53 A56FE08EC7473E8580A390BB1081CDD7 12032 —-a-w- C:\WINDOWS\System32\drivers\rio8drv.sys.bak
2014-01-13 10:31:53 96F7A9A7BF0C9C0440A967440065D33C 203136 —-a-w- C:\WINDOWS\System32\drivers\rmcast.sys.bak
2014-01-13 10:31:53 8B5B8A11306190C6963D3473F052D3C8 27064 —-a-w- C:\WINDOWS\System32\drivers\revoflt.sys.bak
2014-01-13 10:31:53 851C30DF2807FCFA21E4C681A7D6440E 59136 —-a-w- C:\WINDOWS\System32\drivers\rfcomm.sys.bak
2014-01-13 10:31:53 601844CBCF617FF8C868130CA5B2039D 30592 —-a-w- C:\WINDOWS\System32\drivers\rndismp.sys.bak
2014-01-13 10:31:53 43AF5212BD8FB5BA6EED9754358BD8F7 139784 —-a-w- C:\WINDOWS\System32\drivers\rdpwd.sys.bak
2014-01-13 10:31:53 4173BC66E485FD77A03C4819F60BD0DA 58112 —-a-w- C:\WINDOWS\System32\drivers\redbook.sys.bak
2014-01-13 10:31:53 0A854DF84C77A0BE205BFEAB2AE4F0EC 12032 —-a-w- C:\WINDOWS\System32\drivers\riodrv.sys.bak
2014-01-13 10:31:52 FDBB1D60066FCFBB7452FD8F9829B242 16512 —-a-w- C:\WINDOWS\System32\drivers\raspti.sys.bak
2014-01-13 10:31:52 EFEEC01B1D3CF84F16DDD24D9D9D8F99 48384 —-a-w- C:\WINDOWS\System32\drivers\raspptp.sys.bak
2014-01-13 10:31:52 7AD224AD1A1437FE28D89CF22B17780A 175744 —-a-w- C:\WINDOWS\System32\drivers\rdbss.sys.bak
2014-01-13 10:31:52 4912D5B403614CE99C28420F75353332 4224 —-a-w- C:\WINDOWS\System32\drivers\rdpcdd.sys.bak
2014-01-13 10:31:52 15CABD0F7C00C47C70124907916AF3F1 196224 —-a-w- C:\WINDOWS\System32\drivers\rdpdr.sys.bak
2014-01-13 10:31:52 01524CD237223B18ADBB48F70083F101 34432 —-a-w- C:\WINDOWS\System32\drivers\rawwan.sys.bak
2014-01-13 10:31:51 FE0D99D6F31E4FAD8159F690D68DED9C 8832 —-a-w- C:\WINDOWS\System32\drivers\rasacd.sys.bak
2014-01-13 10:31:51 E82A496C3961EFC6828B508C310CE98F 146048 —-a-w- C:\WINDOWS\System32\drivers\portcls.sys.bak
2014-01-13 10:31:51 E42E3433DBB4CFFE8FDD91EAB29AEA8E 45648 —-a-w- C:\WINDOWS\System32\drivers\PxHelp20.sys.bak
2014-01-13 10:31:51 82A17ECA34D801590A67C0A2244965ED 39936 —-a-w- C:\WINDOWS\System32\drivers\processr.sys.bak
2014-01-13 10:31:51 80D317BD1C3DBC5D4FE7B1678C60CADD 17792 —-a-w- C:\WINDOWS\System32\drivers\ptilink.sys.bak
2014-01-13 10:31:51 5BC962F2654137C9909C3D4603587DEE 41472 —-a-w- C:\WINDOWS\System32\drivers\raspppoe.sys.bak
2014-01-13 10:31:51 11B4A627BC9614B885C4969BFA5FF8A6 51328 —-a-w- C:\WINDOWS\System32\drivers\rasl2tp.sys.bak
2014-01-13 10:31:51 09298EC810B07E5D582CB3A3F9255424 69120 —-a-w- C:\WINDOWS\System32\drivers\psched.sys.bak
2014-01-13 10:31:50 E3934CCC20A4D24F1924E13D36D2A5BD 80256 —-a-w- C:\WINDOWS\System32\drivers\parport.sys.bak
2014-01-13 10:31:50 C6547B4D2394C254030299761EC97259 46848 —-a-w- C:\WINDOWS\System32\drivers\p3.sys.bak
2014-01-13 10:31:50 BEB3BA25197665D82EC7065B724171C6 19712 —-a-w- C:\WINDOWS\System32\drivers\partmgr.sys.bak
2014-01-13 10:31:50 B31EDEBA4DA28283F6B8DC4756FB9585 3328 —-a-w- C:\WINDOWS\System32\drivers\pciide.sys.bak
2014-01-13 10:31:50 52E60F29221D0D1AC16737E8DBF7C3E9 24960 —-a-w- C:\WINDOWS\System32\drivers\pciidex.sys.bak
2014-01-13 10:31:50 4BB30DDC53EBC76895E38694580CDFE9 3456 —-a-w- C:\WINDOWS\System32\drivers\oprghdlr.sys.bak
2014-01-13 10:31:50 3B166F9F753C21AEDAA9A6BD76B49655 68224 —-a-w- C:\WINDOWS\System32\drivers\pci.sys.bak
2014-01-13 10:31:50 2137FFD65F8E609A3A5ACD487C56CCE0 120448 —-a-w- C:\WINDOWS\System32\drivers\pcmcia.sys.bak
2014-01-13 10:31:50 1EADE28746A64C21E0A808BB12A63326 6912 —-a-w- C:\WINDOWS\System32\drivers\parvdm.sys.bak
2014-01-13 10:31:49 C99B3415198D1AAB7227F2C88FD664B9 32512 —-a-w- C:\WINDOWS\System32\drivers\nwlnkfwd.sys.bak
2014-01-13 10:31:49 C0BB7D1615E1ACBDC99757F6CEAF8CF0 55936 —-a-w- C:\WINDOWS\System32\drivers\nwlnkspx.sys.bak
2014-01-13 10:31:49 B305F3FAD35083837EF46A0BBCE2FC57 12416 —-a-w- C:\WINDOWS\System32\drivers\nwlnkflt.sys.bak
2014-01-13 10:31:49 8B8B1BE2DBA4025DA6786C645F77F123 88320 —-a-w- C:\WINDOWS\System32\drivers\nwlnkipx.sys.bak
2014-01-13 10:31:49 56D34A67C05E94E16377C60609741FF8 63232 —-a-w- C:\WINDOWS\System32\drivers\nwlnknb.sys.bak
2014-01-13 10:31:49 36B9B950E3D2E100970A48D8BAD86740 163584 —-a-w- C:\WINDOWS\System32\drivers\nwrdr.sys.bak
2014-01-13 10:31:48 78A08DD6A8D65E697C18E1DB01C5CDCA 574976 —-a-w- C:\WINDOWS\System32\drivers\ntfs.sys.bak
2014-01-13 10:31:48 73C1E1F395918BC2C6DD67AF7591A3AD 2944 —-a-w- C:\WINDOWS\System32\drivers\null.sys.bak
2014-01-13 10:31:48 576B34CEAE5B7E5D9FD2775E93B3DB53 180360 —-a-w- C:\WINDOWS\System32\drivers\ntmtlfax.sys.bak
2014-01-13 10:31:48 3182D64AE053D6FB034F44B6DEF8034A 30848 —-a-w- C:\WINDOWS\System32\drivers\npfs.sys.bak
2014-01-13 10:31:48 2B298519EDBFCF451D43E0F1E8F1006D 1897408 —-a-w- C:\WINDOWS\System32\drivers\nv4_mini.sys.bak
2014-01-13 10:31:48 1E421A6BCF2203CC61B821ADA9DE878B 40320 —-a-w- C:\WINDOWS\System32\drivers\nmnt.sys.bak
2014-01-13 10:31:47 E9E47CFB2D461FA0FC75B7A74C6383EA 61824 —-a-w- C:\WINDOWS\System32\drivers\nic1394.sys.bak
2014-01-13 10:31:47 BE984D604D91C217355CDD3737AAD25D 12032 —-a-w- C:\WINDOWS\System32\drivers\nikedrv.sys.bak
2014-01-13 10:31:47 9282BD12DFB069D3889EB3FCC1000A9B 40960 —-a-w- C:\WINDOWS\System32\drivers\ndproxy.sys.bak
2014-01-13 10:31:47 74B2B2F5BEA5E9A3DC021D685551BD3D 162816 —-a-w- C:\WINDOWS\System32\drivers\netbt.sys.bak
2014-01-13 10:31:47 5D81CF9A2F1A3A756B66CF684911CDF0 34688 —-a-w- C:\WINDOWS\System32\drivers\netbios.sys.bak
2014-01-13 10:31:46 F927A4434C5028758A842943EF1A3849 14592 —-a-w- C:\WINDOWS\System32\drivers\ndisuio.sys.bak
2014-01-13 10:31:46 EDC1531A49C80614B2CFDA43CA8659AB 91520 —-a-w- C:\WINDOWS\System32\drivers\ndiswan.sys.bak
2014-01-13 10:31:46 DE6A75F5C270E756C5508D94B6CF68F5 105472 —-a-w- C:\WINDOWS\System32\drivers\mup.sys.bak
2014-01-13 10:31:46 B538DCD9816EA35FA4F637CFC261AAA8 12672 —-a-w- C:\WINDOWS\System32\drivers\mutohpen.sys.bak
2014-01-13 10:31:46 6DDA78A0BE692B61B668FAB860F276CF 452736 —-a-w- C:\WINDOWS\System32\drivers\mtxparhm.sys.bak
2014-01-13 10:31:46 0109C4F3850DFBAB279542515386AE22 10496 —-a-w- C:\WINDOWS\System32\drivers\ndistapi.sys.bak
2014-01-13 10:31:45 C53775780148884AC87C455489A0C070 126686 —-a-w- C:\WINDOWS\System32\drivers\mtlmnt5.sys.bak
2014-01-13 10:31:45 BAD59648BA099DA4A17680B39730CB3D 4992 —-a-w- C:\WINDOWS\System32\drivers\mspqm.sys.bak
2014-01-13 10:31:45 AF5F4F3F14A8EA2C26DE30F7A1E17136 15488 —-a-w- C:\WINDOWS\System32\drivers\mssmbios.sys.bak
2014-01-13 10:31:45 54886A652BF5685192141DF304E923FD 1309184 —-a-w- C:\WINDOWS\System32\drivers\mtlstrm.sys.bak
2014-01-13 10:31:45 325BB26842FC7CCC1FCCE2C457317F3E 5376 —-a-w- C:\WINDOWS\System32\drivers\mspclock.sys.bak
2014-01-13 10:31:44 D1575E71568F4D9E14CA56B7B0453BF1 7552 —-a-w- C:\WINDOWS\System32\drivers\mskssrv.sys.bak
2014-01-13 10:31:44 C941EA2454BA8350021D774DAF0F1027 19072 —-a-w- C:\WINDOWS\System32\drivers\msfs.sys.bak
2014-01-13 10:31:44 7D304A5EB4344EBEEAB53A2FE3FFB9F0 456320 —-a-w- C:\WINDOWS\System32\drivers\mrxsmb.sys.bak
2014-01-13 10:31:44 70C14F5CCA5CF73F8A645C73A01D8726 92544 —-a-w- C:\WINDOWS\System32\drivers\mqac.sys.bak
2014-01-13 10:31:44 11D42BB6206F33FBB3BA0288D3EF81BD 180608 —-a-w- C:\WINDOWS\System32\drivers\mrxdav.sys.bak
2014-01-13 10:31:44 0A02C63C8B144BD8C86B103DEE7C86A2 35072 —-a-w- C:\WINDOWS\System32\drivers\msgpc.sys.bak
2014-01-13 10:31:43 D6521D11B17454EE2AAC5A6F3053FA43 22206 —-a-w- C:\WINDOWS\System32\drivers\LHidFlt2.sys.bak
2014-01-13 10:31:43 D1F8BE91ED4DDB671D42E473E3FE71AB 7680 —-a-w- C:\WINDOWS\System32\drivers\mcd.sys.bak
2014-01-13 10:31:43 B463CA5432FE295EE49CEABF7C2CE61E 67694 —-a-w- C:\WINDOWS\System32\drivers\LMouFlt2.sys.bak
2014-01-13 10:31:43 A80B9A0BAD1B73637DBCBBA7DF72D3FD 42368 —-a-w- C:\WINDOWS\System32\drivers\mountmgr.sys.bak
2014-01-13 10:31:43 A7DA20AB18A1BDAE28B0F349E57DA0D1 63744 —-a-w- C:\WINDOWS\System32\drivers\mf.sys.bak
2014-01-13 10:31:43 8114EEAC353F549331AB73E9AF4219ED 30336 —-a-w- C:\WINDOWS\System32\drivers\modem.sys.bak
2014-01-13 10:31:43 4AE068242760A1FB6E1A44BF4E16AFA6 4224 —-a-w- C:\WINDOWS\System32\drivers\mnmdd.sys.bak
2014-01-13 10:31:43 4470E3C1E0C3378E4CAB137893C12C3A 22856 —-a-w- C:\WINDOWS\System32\drivers\mbam.sys.bak
2014-01-13 10:31:43 401C0603DC3D112A09A04CDCF8FEFB79 5838 —-a-w- C:\WINDOWS\System32\drivers\LKbdFlt2.sys.bak
2014-01-13 10:31:43 1A4E2214DD63E4A876463D3427EE8261 23552 —-a-w- C:\WINDOWS\System32\drivers\mouclass.sys.bak
2014-01-13 10:31:43 195741AEE20369980796B557358CD774 11868 —-a-w- C:\WINDOWS\System32\drivers\mdmxsdk.sys.bak
2014-01-13 10:31:43 18017899254E01371E1A39754D6BF98C 12288 —-a-w- C:\WINDOWS\System32\drivers\mouhid.sys.bak
2014-01-13 10:31:42 E010F5F8081E7F81D57285B19FA4815B 14960 —-a-w- C:\WINDOWS\System32\drivers\jmccgp.sys.bak
2014-01-13 10:31:42 B833B70FE639F01FB36CEDABE57EF031 14720 —-a-w- C:\WINDOWS\System32\drivers\kbdhid.sys.bak
2014-01-13 10:31:42 B467646C54CC746128904E1654C750C1 92928 —-a-w- C:\WINDOWS\System32\drivers\ksecdd.sys.bak
2014-01-13 10:31:42 6C6F4A5FC5A2343995D1B0F111D5CF06 17280 —-a-w- C:\WINDOWS\System32\drivers\kbfiltr.sys.bak
2014-01-13 10:31:42 692BCF44383D056AED41B045A323D378 172416 —-a-w- C:\WINDOWS\System32\drivers\kmixer.sys.bak
2014-01-13 10:31:42 380397621E94B32C744E7B2CC1330390 25088 —-a-w- C:\WINDOWS\System32\drivers\kbdclass.sys.bak
2014-01-13 10:31:42 0753515F78DF7F271A5E61C20BCD36A1 141056 —-a-w- C:\WINDOWS\System32\drivers\ks.sys.bak
2014-01-13 10:31:41 CC748EA12C6EFFDE940EE98098BF96BB 152832 —-a-w- C:\WINDOWS\System32\drivers\ipnat.sys.bak
2014-01-13 10:31:41 C93C9FF7B04D772627A3646D89F7BF89 11264 —-a-w- C:\WINDOWS\System32\drivers\irenum.sys.bak
2014-01-13 10:31:41 B87AB476DCF76E72010632B5550955F5 20864 —-a-w- C:\WINDOWS\System32\drivers\ipinip.sys.bak
2014-01-13 10:31:41 731F22BA402EE4B62748ADAF6363C182 32896 —-a-w- C:\WINDOWS\System32\drivers\ipfltdrv.sys.bak
2014-01-13 10:31:41 4F9694BDEFC1F0629704A1E2B7B96A66 46848 —-a-w- C:\WINDOWS\System32\drivers\irbus.sys.bak
2014-01-13 10:31:41 23C74D75E36E7158768DD63D92789A91 75264 —-a-w- C:\WINDOWS\System32\drivers\ipsec.sys.bak
2014-01-13 10:31:41 0B78E1A31340E1FB1E389D5633F7C3A0 37760 —-a-w- C:\WINDOWS\System32\drivers\isapnp.sys.bak
2014-01-13 10:31:40 FC4DBF18A4EB0D2FE3171471A3D0F9A8 37040 —-a-w- C:\WINDOWS\System32\drivers\InCDPass.sys.bak
2014-01-13 10:31:40 F8E7C551DEF07FDC12CA5CC7AE5D975B 16304 —-a-w- C:\WINDOWS\System32\drivers\InCDrec.sys.bak
2014-01-13 10:31:40 7BFC3EDA22190C0FE8C2CA19E5379DA5 118576 —-a-w- C:\WINDOWS\System32\drivers\InCDfs.sys.bak
2014-01-13 10:31:40 72C63AD984D427D34BD5B9DB838D88EB 5504 —-a-w- C:\WINDOWS\System32\drivers\intelide.sys.bak
2014-01-13 10:31:40 3BB22519A194418D5FEC05D800A19AD0 36608 —-a-w- C:\WINDOWS\System32\drivers\ip6fw.sys.bak
2014-01-13 10:31:40 31A5A3809249A326EB0EF58D563A9654 38576 —-a-w- C:\WINDOWS\System32\drivers\InCDRm.sys.bak
2014-01-13 10:31:40 2D2254FAC267E6B1C7865E8EBEF60C6D 40448 —-a-w- C:\WINDOWS\System32\drivers\intelppm.sys.bak
2014-01-13 10:31:39 F80A415EF82CD06FFAF0D971528EAD38 265728 —-a-w- C:\WINDOWS\System32\drivers\http.sys.bak
2014-01-13 10:31:39 C5DB546F9028CD00E64335091860D8F3 1730272 —-a-w- C:\WINDOWS\System32\drivers\igxpmp32.sys.bak
2014-01-13 10:31:39 C43372D0682F8E32E4EC21117E089EC0 53504 —-a-w- C:\WINDOWS\System32\drivers\i8042prt.sys.bak
2014-01-13 10:31:39 91C5E9F49F32110CED27E2F902FAD607 44800 —-a-w- C:\WINDOWS\System32\drivers\ifxtpm.sys.bak
2014-01-13 10:31:39 083A052659F5310DD8B6A6CB05EDCF8E 42112 —-a-w- C:\WINDOWS\System32\drivers\imapi.sys.bak
2014-01-13 10:31:38 EBB354438A4C5A3327FB97306260714A 1041536 —-a-w- C:\WINDOWS\System32\drivers\hsfdpsp2.sys.bak
2014-01-13 10:31:38 970178E8E003EB1481293830069624B9 220032 —-a-w- C:\WINDOWS\System32\drivers\hsfbs2s2.sys.bak
2014-01-13 10:31:38 1225EBEA76AAC3C84DF6C54FE5E5D8BE 685056 —-a-w- C:\WINDOWS\System32\drivers\hsfcxts2.sys.bak
2014-01-13 10:31:37 F5F12506BD0BF7B3A8435CC106D5B22B 28024 —-a-w- C:\WINDOWS\System32\drivers\HPZius12.sys.bak
2014-01-13 10:31:37 D8CC702BB02AD520C3379E7ECB009AE1 25728 —-a-w- C:\WINDOWS\System32\drivers\hidbth.sys.bak
2014-01-13 10:31:37 CCF82C5EC8A7326C3066DE870C06DAF1 10368 —-a-w- C:\WINDOWS\System32\drivers\hidusb.sys.bak
2014-01-13 10:31:37 CB32403A7A3692ADF1192608DC0E802B 22952 —-a-w- C:\WINDOWS\System32\drivers\HPZipr12.sys.bak
2014-01-13 10:31:37 C569EF030B11F896E123A30AC92678DB 25088 —-a-w- C:\WINDOWS\System32\drivers\hidparse.sys.bak
2014-01-13 10:31:37 BB1A6FB7D35A91E599973FA74A619056 19200 —-a-w- C:\WINDOWS\System32\drivers\hidir.sys.bak
2014-01-13 10:31:37 3E85959A4192DB645FEF5F70698959D5 56376 —-a-w- C:\WINDOWS\System32\drivers\HPZid412.sys.bak
2014-01-13 10:31:37 1AF592532532A402ED7C060F6954004F 36864 —-a-w- C:\WINDOWS\System32\drivers\hidclass.sys.bak
2014-01-13 10:31:36 FA8CA22E70245C81FF29C36AF56292FC 125696 —-a-w- C:\WINDOWS\System32\drivers\ftdisk.sys.bak
2014-01-13 10:31:36 C865D1F6D03595DF213DC3C67E4E4C58 45056 —-a-w- C:\WINDOWS\System32\drivers\HECI.sys.bak
2014-01-13 10:31:36 643730AE5937BC14E262761B1402C852 12288 —-a-w- C:\WINDOWS\System32\drivers\fsvga.sys.bak
2014-01-13 10:31:36 573C7D0A32852B48F3058CFD8026F511 144384 —-a-w- C:\WINDOWS\System32\drivers\hdaudbus.sys.bak
2014-01-13 10:31:36 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A 7936 —-a-w- C:\WINDOWS\System32\drivers\fs_rec.sys.bak
2014-01-13 10:31:36 3A74C423CF6BCCA6982715878F450A3B 46464 —-a-w- C:\WINDOWS\System32\drivers\gagp30kx.sys.bak
2014-01-13 10:31:36 2A013E7530BEAB6E569FAA83F517E836 145920 —-a-w- C:\WINDOWS\System32\drivers\Hdaudio.sys.bak
2014-01-13 10:31:35 B2CF4B0786F8212CB92ED2B50C6DB6B0 129792 —-a-w- C:\WINDOWS\System32\drivers\fltmgr.sys.bak
2014-01-13 10:31:35 9D27E7B80BFCDF1CDD9B555862D5E7F0 20480 —-a-w- C:\WINDOWS\System32\drivers\flpydisk.sys.bak
2014-01-13 10:31:35 92CDD60B6730B9F50F6A1A0C1F8CDC81 27392 —-a-w- C:\WINDOWS\System32\drivers\fdc.sys.bak
2014-01-13 10:31:35 8BFFFB5AC954E19DFDB96D56512AA518 44672 —-a-w- C:\WINDOWS\System32\drivers\fips.sys.bak
2014-01-13 10:31:34 FE97D0343ACFDEBDD578FC67CC91FA87 10496 —-a-w- C:\WINDOWS\System32\drivers\dxapi.sys.bak
2014-01-13 10:31:34 AC7280566A7BB85CB3291F04DDC1198E 71168 —-a-w- C:\WINDOWS\System32\drivers\dxg.sys.bak
2014-01-13 10:31:34 A73F5D6705B1D820C19B18782E176EFD 3328 —-a-w- C:\WINDOWS\System32\drivers\dxgthk.sys.bak
2014-01-13 10:31:34 A0E3BD0AF38FF793D54314EF4B2B81CE 314632 —-a-w- C:\WINDOWS\System32\drivers\ETD.sys.bak
2014-01-13 10:31:34 8F5FCFF8E8848AFAC920905FBD9D33C8 2944 —-a-w- C:\WINDOWS\System32\drivers\drmkaud.sys.bak
2014-01-13 10:31:34 38D332A6D56AF32635675F132548343E 143744 —-a-w- C:\WINDOWS\System32\drivers\fastfat.sys.bak
2014-01-13 10:31:34 1D4D0BD8427154963C7E0DB562D741C0 239120 —-a-w- C:\WINDOWS\System32\drivers\e1e5132.sys.bak
2014-01-13 10:31:33 E9317282A63CA4D188C0DF5E09C6AC5F 5888 —-a-w- C:\WINDOWS\System32\drivers\dmload.sys.bak
2014-01-13 10:31:33 E65E2353A5D74EA89971CB918EEEB2F6 14208 —-a-w- C:\WINDOWS\System32\drivers\diskdump.sys.bak
2014-01-13 10:31:33 DEC123E0C75971D0CC7A6C6A75E28429 800000 —-a-w- C:\WINDOWS\System32\drivers\dmboot.sys.bak
2014-01-13 10:31:33 D0F92143EE15117735B967D3BC2F77CF 40832 —-a-w- C:\WINDOWS\System32\drivers\crusoe.sys.bak
2014-01-13 10:31:33 8A208DFCF89792A484E76C40E5F50B45 52864 —-a-w- C:\WINDOWS\System32\drivers\dmusic.sys.bak
2014-01-13 10:31:33 7268E66259722F6228C730685B201092 153856 —-a-w- C:\WINDOWS\System32\drivers\dmio.sys.bak
2014-01-13 10:31:33 6CB08593487F5701D2D2254E693EAFCE 60160 —-a-w- C:\WINDOWS\System32\drivers\drmk.sys.bak
2014-01-13 10:31:33 044452051F3E02E7963599FC8F4F3E25 36352 —-a-w- C:\WINDOWS\System32\drivers\disk.sys.bak
2014-01-13 10:31:32 FE47DD8FE6D7768FF94EBEC6C74B2719 49536 —-a-w- C:\WINDOWS\System32\drivers\classpnp.sys.bak
2014-01-13 10:31:32 C885B02847F5D2FD45A24E219ED93B32 63744 —-a-w- C:\WINDOWS\System32\drivers\cdfs.sys.bak
2014-01-13 10:31:32 C3E76B0C05EBF7261ABFB08D9E75822E 9072 —-a-w- C:\WINDOWS\System32\drivers\cdr4_xp.sys.bak
2014-01-13 10:31:32 C1B486A7658353D33A10CC15211A873B 18688 —-a-w- C:\WINDOWS\System32\drivers\cdaudio.sys.bak
2014-01-13 10:31:32 9624293E55AD405415862B504CA95B73 11776 —-a-w- C:\WINDOWS\System32\drivers\cpqdap01.sys.bak
2014-01-13 10:31:32 9612CC2E08F8185179F2C225860BF942 262528 —-a-w- C:\WINDOWS\System32\drivers\cinemst2.sys.bak
2014-01-13 10:31:32 1F4260CC5B42272D71F79E570A27A4FE 62976 —-a-w- C:\WINDOWS\System32\drivers\cdrom.sys.bak
2014-01-13 10:31:32 17590DFE29E02842A6E3A463E443D1B9 9200 —-a-w- C:\WINDOWS\System32\drivers\cdralw2k.sys.bak
2014-01-13 10:31:31 FCA6F069597B62D42495191ACE3FC6C1 37888 —-a-w- C:\WINDOWS\System32\drivers\bthmodem.sys.bak
2014-01-13 10:31:31 F934D1B230F84E1D19DD00AC5A7A83ED 71552 —-a-w- C:\WINDOWS\System32\drivers\bridge.sys.bak
2014-01-13 10:31:31 BB68CEBFFD181E18A26112D1B9F90F3D 36480 —-a-w- C:\WINDOWS\System32\drivers\bthprint.sys.bak
2014-01-13 10:31:31 B279426E3C0C344893ED78A613A73BDE 17024 —-a-w- C:\WINDOWS\System32\drivers\bthenum.sys.bak
2014-01-13 10:31:31 90A673FC8E12A79AFBED2576F6A7AAF9 13952 —-a-w- C:\WINDOWS\System32\drivers\cbidf2k.sys.bak
2014-01-13 10:31:31 80602B8746D3738F5886CE3D67EF06B6 101120 —-a-w- C:\WINDOWS\System32\drivers\bthpan.sys.bak
2014-01-13 10:31:31 61364CD71EF63B0F038B7E9DF00F1EFA 18944 —-a-w- C:\WINDOWS\System32\drivers\bthusb.sys.bak
2014-01-13 10:31:31 29FF6A865782D0F5B8E7FA1FFAB4182B 272640 —-a-w- C:\WINDOWS\System32\drivers\bthport.sys.bak
2014-01-13 10:31:30 E7EF69B38D17BA01F914AE8F66216A38 352256 —-a-w- C:\WINDOWS\System32\drivers\atmuni.sys.bak
2014-01-13 10:31:30 DA1F27D85E0D1525F6621372E7B685E9 4224 —-a-w- C:\WINDOWS\System32\drivers\beep.sys.bak
2014-01-13 10:31:30 D9F724AA26C010A217C97606B160ED68 3072 —-a-w- C:\WINDOWS\System32\drivers\audstub.sys.bak
2014-01-13 10:31:30 AE76348A2605FB197FA8FF1D6F547836 55808 —-a-w- C:\WINDOWS\System32\drivers\atmlane.sys.bak
2014-01-13 10:31:30 9916C1225104BA14794209CFA8012159 59904 —-a-w- C:\WINDOWS\System32\drivers\atmarpc.sys.bak
2014-01-13 10:31:30 77B575D7AAB35D5908AE6CE681608D62 63488 —-a-w- C:\WINDOWS\System32\drivers\atinxsxx.sys.bak
2014-01-13 10:31:30 39A0A59180F19946374275745B21AEBA 31360 —-a-w- C:\WINDOWS\System32\drivers\atmepvc.sys.bak
2014-01-13 10:31:29 EDD66332608D27F4FD5069BCD0BC5164 73216 —-a-w- C:\WINDOWS\System32\drivers\atintuxx.sys.bak
2014-01-13 10:31:29 E90AC2B14E98F1A4372E5891B4278784 14336 —-a-w- C:\WINDOWS\System32\drivers\atinpdxx.sys.bak
2014-01-13 10:31:29 DA36687D701C833430605A298731410B 52224 —-a-w- C:\WINDOWS\System32\drivers\atinraxx.sys.bak
2014-01-13 10:31:29 D80A8F6C0A717446496C3A06D33B0D9C 13824 —-a-w- C:\WINDOWS\System32\drivers\atinttxx.sys.bak
2014-01-13 10:31:29 CEDDEE2E0591894D19654D458FD3B9BE 28672 —-a-w- C:\WINDOWS\System32\drivers\atinsnxx.sys.bak
2014-01-13 10:31:29 A7A01B907DB63898D40B0A14248FF9A2 104960 —-a-w- C:\WINDOWS\System32\drivers\atinrvxx.sys.bak
2014-01-13 10:31:29 3E7D485CBD0B0D9F6EA2AD9442411831 31744 —-a-w- C:\WINDOWS\System32\drivers\atinxbxx.sys.bak
2014-01-13 10:31:28 F7706DAE7D101F1B19CE552D772EBFCE 21343 —-a-w- C:\WINDOWS\System32\drivers\ati1ttxx.sys.bak
2014-01-13 10:31:28 ED4C2BF8403F4437987C0BA09CF48716 13824 —-a-w- C:\WINDOWS\System32\drivers\atinmdxx.sys.bak
2014-01-13 10:31:28 DAC7D785CF62F5BD41441E9D6F5A6EFE 26367 —-a-w- C:\WINDOWS\System32\drivers\ati1snxx.sys.bak
2014-01-13 10:31:28 BCAF267B10620F8C93F6E87AB726E145 63663 —-a-w- C:\WINDOWS\System32\drivers\ati1rvxx.sys.bak
2014-01-13 10:31:28 9D888490786F4C3B3E2A81492967A403 701440 —-a-w- C:\WINDOWS\System32\drivers\ati2mtag.sys.bak
2014-01-13 10:31:28 993E7BD6438FE989E328C6B4BCA246A9 57856 —-a-w- C:\WINDOWS\System32\drivers\atinbtxx.sys.bak
2014-01-13 10:31:28 6F714B4720DD80FFA9F8D2731594EA4C 36463 —-a-w- C:\WINDOWS\System32\drivers\ati1tuxx.sys.bak
2014-01-13 10:31:28 67FFBC158DD4D27BA3FC92C6ACD87F73 29455 —-a-w- C:\WINDOWS\System32\drivers\ati1xbxx.sys.bak
2014-01-13 10:31:28 63657F4D48597B8E4C27C5FEABFB0553 327168 —-a-w- C:\WINDOWS\System32\drivers\ati2mtaa.sys.bak
2014-01-13 10:31:28 0D8CAB1F08F7D3C4DE228B49E12E596A 34735 —-a-w- C:\WINDOWS\System32\drivers\ati1xsxx.sys.bak
2014-01-13 10:31:27 D649C57DA6FA762C64013747E5D7D2D6 56623 —-a-w- C:\WINDOWS\System32\drivers\ati1btxx.sys.bak
2014-01-13 10:31:27 B5B8A80875C1DEDEDA8B02765642C32F 60800 —-a-w- C:\WINDOWS\System32\drivers\arp1394.sys.bak
2014-01-13 10:31:27 B153AFFAC761E7F5FCFA822B9C4E97BC 14336 —-a-w- C:\WINDOWS\System32\drivers\asyncmac.sys.bak
2014-01-13 10:31:27 9F3A2F5AA6875C72BF062C712CFA2674 96512 —-a-w- C:\WINDOWS\System32\drivers\atapi.sys.bak
2014-01-13 10:31:27 9D318099BF3876A4AF4BC75966D27603 30671 —-a-w- C:\WINDOWS\System32\drivers\ati1raxx.sys.bak
2014-01-13 10:31:27 7DE1504DBA7E72313BB4CA5587DF86CF 10240 —-a-w- C:\WINDOWS\System32\drivers\asapi.sys.bak
2014-01-13 10:31:27 6FDC61E8E8E17F6ECC2D9A10FA8DF347 12047 —-a-w- C:\WINDOWS\System32\drivers\ati1pdxx.sys.bak
2014-01-13 10:31:27 60B6AA2DC1521DA343F781B70EB7895A 11615 —-a-w- C:\WINDOWS\System32\drivers\ati1mdxx.sys.bak
2014-01-13 10:31:26 ED897EDD269BBA2F43F0A603CED59966 41472 —-a-w- C:\WINDOWS\System32\drivers\amdk6.sys.bak
2014-01-13 10:31:26 CB08AED0DE2DD889A8A820CD8082D83C 42752 —-a-w- C:\WINDOWS\System32\drivers\alim1541.sys.bak
2014-01-13 10:31:26 B21FCBC58CB13BAC70F74B5AC5DA7409 108767 —-a-w- C:\WINDOWS\System32\drivers\Apfiltr.sys.bak
2014-01-13 10:31:26 95B4FB835E28AA1336CEEB07FD5B9398 43008 —-a-w- C:\WINDOWS\System32\drivers\amdagp.sys.bak
2014-01-13 10:31:26 5E8EB512F516247E8C1B96A9DCAB6C9C 41856 —-a-w- C:\WINDOWS\System32\drivers\amdk7.sys.bak
2014-01-13 10:31:26 1E44BC1E83D8FD2305F8D452DB109CF9 138496 —-a-w- C:\WINDOWS\System32\drivers\afd.sys.bak
2014-01-13 10:31:26 08FD04AA961BDC77FB983F328334E3D7 42368 —-a-w- C:\WINDOWS\System32\drivers\agp440.sys.bak
2014-01-13 10:31:26 03A7E0922ACFE1B07D5DB2EEB0773063 44928 —-a-w- C:\WINDOWS\System32\drivers\agpcpq.sys.bak
2014-01-13 10:31:25 8BED39E3C35D6A489438B8141717A557 142592 —-a-w- C:\WINDOWS\System32\drivers\aec.sys.bak
2014-01-13 10:31:25 63F517B1A87DABF3F5ACB8A7952FC1D1 12032 —-a-w- C:\WINDOWS\System32\drivers\acpiec.sys.bak
2014-01-13 10:31:25 4E6E32DF81005355056A76491D29D05C 306688 —-a-w- C:\WINDOWS\System32\drivers\ADIHdAud.sys.bak
2014-01-13 10:31:25 058CDC314672A28A90566A787D9876E7 94848 —-a-w- C:\WINDOWS\System32\drivers\aeaudio.sys.bak
2014-01-13 10:31:25 02273A448BA21A7D447DAEB47810D40C 188544 —-a-w- C:\WINDOWS\System32\drivers\acpi.sys.bak
2013-12-16 16:27:24 8B5B8A11306190C6963D3473F052D3C8 27064 —-a-w- C:\WINDOWS\System32\drivers\revoflt.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-14 06:55:40 ——– d—–w- C:\Program Files\Tweaking.com
2014-01-13 17:54:28 ——– d—–w- C:\Program Files\trend micro
2014-01-13 11:44:39 ——– d—–w- C:\Program Files\AVG
2013-12-26 11:43:22 ——– d—–w- C:\Program Files\FastMediaConverter
2013-12-19 17:28:03 ——– d—–w- C:\Program Files\Microsoft
2013-12-19 17:27:46 ——– d—–w- C:\Program Files\Windows Live SkyDrive
2013-12-19 17:27:29 ——– d—–w- C:\Program Files\Windows Live
2013-12-19 17:23:44 ——– d—–w- C:\Program Files\Common Files\Windows Live
2013-12-19 13:05:53 ——– d—–w- C:\Program Files\Speccy
2013-12-19 13:05:04 ——– d—–w- C:\Program Files\Common Files\Java
2013-12-19 12:06:08 ——– d—–w- C:\Program Files\IObit
2013-12-17 11:41:31 ——– d—–w- C:\Program Files\Common Files\Java(2)
2013-12-16 16:27:22 ——– d—–w- C:\Program Files\VS Revo Group
2013-12-16 11:05:57 ——– d—–w- C:\Program Files\Common Files\Wise Installation Wizard
Snowi

14-01-2014 10:01

======= C: =====
2014-01-13 11:09:02 271E9B6A3AEC7BCA63D9231A4B3575C0 261936 –sha-r- C:\cmldr
2014-01-12 20:03:10 D46B6EC5B9FDD71004DC8C0A30ED97C2 15 —-a-w- C:\THE LOVE YOU SAVE (cover version) - TRACY NELSON.MRK
2014-01-12 20:03:03 EB8FD560E4C3C71792172596B3B6CD27 33054972 —-a-w- C:\THE LOVE YOU SAVE (cover version) - TRACY NELSON.wav
2014-01-12 20:03:03 9724E9A66577442876AD1C7E906A49B0 129104 —-a-w- C:\THE LOVE YOU SAVE (cover version) - TRACY NELSON.gpk
2014-01-12 19:21:51 D46B6EC5B9FDD71004DC8C0A30ED97C2 15 —-a-w- C:\DIDN'T WE DO IT (cover version) - ANN PEEBLES.MRK
2014-01-12 19:21:41 9CFDDCC323E19558916EC70FAFAE9323 158464 —-a-w- C:\DIDN'T WE DO IT (cover version) - ANN PEEBLES.gpk
2014-01-12 19:21:41 7F3062DEAA32C8D4DB63AE8060F26E9D 40571052 —-a-w- C:\DIDN'T WE DO IT (cover version) - ANN PEEBLES.wav
2014-01-12 16:35:43 D41D8CD98F00B204E9800998ECF8427E 0 —-a-w- C:\Nieuw tekstdocument.txt
2014-01-11 10:48:10 B45CE5BFB063FE502031BFF33D4FF276 26231308 —-a-w- C:\HAVE PITTY ON ME (cover version original sound 2 x REFREIN) - THE TAMS.wav
2014-01-10 19:02:50 5134B65A301911A337ABCAB8A5A185AE 26885116 —-a-w- C:\SEARCH YOUR HEART (soul) - RUDOLPH TAYLOR.wav
2014-01-10 18:39:30 4ECD098A056FA75F1E4C8212236234BF 30391344 —-a-w- C:\RULER OF MY HEART (cover version) - DIRTY DOZEN BAND.wav
2014-01-10 18:03:36 D4D5BA4B58BD67DD96C07D0615710D01 24490704 —-a-w- C:\TROUBLES (soul) - PHIL COLBERT.wav
2014-01-10 17:48:32 269696147BEAB276939AFA7A00AB6EB8 28981556 —-a-w- C:\TELL HIM TONIGHT (soul cover version) - THE CLIMATES.wav
2014-01-10 17:23:09 35EB1840CFA516E0AB3C9845C9BA54EA 43013720 —-a-w- C:\DON'T BE HIS FOOL (good soul) - PAT BROWN.wav
2014-01-08 15:43:51 581A6E415EB3FDBD03DA361282E6EDF3 33625752 —-a-w- C:\TURN ME ON (cover RAGGATON version) - HITS DANCE CLUB.wav
2014-01-08 15:27:57 5AF91F7C08702F85EA4E0C9DFB792AF7 34716560 —-a-w- C:\COVER ME (soft KADANCE) - ADMIRAL P..wav
2014-01-08 14:16:20 EC28EE269E59C0AB090070A7A8A2506A 47135916 —-a-w- C:\EASY (cover version LIONEL RITCHIEno tussenstuk) - ROGER ft ZAP.wav
2014-01-08 12:05:47 81E283AE723F6E17266A7DF2E33B63DC 40906360 —-a-w- C:\IT'S GOING DOWN (ballad opnieuw ongenomen) - DAN CAREY.wav
2014-01-06 14:03:38 231CA38CC06469E26B74EE6BBFFF32FF 51211200 —-a-w- C:\HOW YOU GONNA ACT LIKE THAT (cover version) - THE HIT CO..wav
2014-01-06 13:55:17 FC5922DA48B49D457AF89846333A7658 41089320 —-a-w- C:\PUT THAT WOMAN FIRST (cover version JAHEIM) - THE HIT CO..wav
2014-01-06 12:54:32 021A5EE8C7D31D1C2B17A3FCE4DDEC57 27584544 —-a-w- C:\IT'S A MAN'S MAN'S WORLD (cover no tussen stuk) - MARY BYRNE.wav
2014-01-06 11:40:17 F4380507F948D88B57E18D48907AA22F 36576940 —-a-w- C:\WUK IT UP (soca-zouk style) - BYRON LEE.wav
2014-01-05 11:37:24 B7E4CEB8859BB8BA58BB2AEAEE380FA4 46802620 —-a-w- C:\YOU CAN MAKE IT IF YOU TRY (cover version) - GENE ALLISON.wav
2013-12-30 14:19:07 70CEBD72B9F8023BB5F98849EDAB0922 43865368 —-a-w- C:\CONGA (HOT merengue) - MARFIL.wav
2013-12-30 12:22:01 CEC144E80EAB673980014CF98D019A52 53156396 —-a-w- C:\TIC TOCK ( soul - ballad) - AL LINDSEY.wav
2013-12-29 17:46:36 6AEE71D3233F8D029935F70C713DC925 42955692 —-a-w- C:\LET THEM TALK (cover version no solo) - MIKE BLOOMFIELD.wav
2013-12-29 11:33:01 04F01E5F70871B170A21DE44880134D0 30361720 —-a-w- C:\PLEASE COME HOME 4 X-MAS (cover EAGLES) - EAGLES COVER.wav
2013-12-28 18:36:10 0C0D4E153839D8825F5984A8366F8329 40316212 —-a-w- C:\IF TOMORROW NEVER COMES (reggae version) - SWISS ETANA.wav
2013-12-26 17:32:37 66E7AEC6D5BB65D77BF04037BE09C662 60194124 —-a-w- C:\SOUL BANANA (various jingle songs intermesso) - JIVE BUNNY.wav
2013-12-24 14:36:24 EBF78328B1534135788B47263E12F6CF 171208984 —-a-w- C:\SUAVEMENTE (various mix) - DJ RUBEN VILORIA.wav
2013-12-24 14:07:12 BABACBD14050E6C0A608EDD85091F123 123988384 —-a-w- C:\JUAN LOUIS GUERA (merengue mix) - DJ 1000 JAUSS.wav
2013-12-24 13:32:54 06BBE6A37E354EE9557E01A438C52338 38942168 —-a-w- C:\YIYO SARANTE (salsa) - ROMPERE.wav
2013-12-24 13:17:58 F25F554DA3AA00224F72C28AEF0D60F8 41005592 —-a-w- C:\VOYA LEVARTE (GOOD bachata) - KEVIN SANCHEZ.wav
2013-12-24 13:05:00 C8CFD6CCF3AA3B63CE9089B2459FC845 41441128 —-a-w- C:\ALL OUT OF LOVE (bachata version) - FRANCIS ROSSI EL WAO.wav
2013-12-19 16:02:27 7A727D9EF9EE48744C7C6630F7862202 38017952 —-a-w- C:\MEMBERS ONLY (cover FEMALE version) - KARAOKE VERSION.wav
2013-12-16 21:43:19 7F24A6687C7EA03B6C9C50AE37773C4B 462433 –sha-r- C:\BEGXI
2013-12-16 21:34:13 9F337FEB04FE0126346AECBB6BDA65F2 8192 –sha-r- C:\BOOTSECT.BAK
2013-12-16 21:34:11 882021418375303061B16C0AF33AB53F 355 —-a-w- C:\Boot.bak
2013-12-16 21:34:11 259525CFB422E6AC8E87BC9777B1DF73 383786 –sha-r- C:\bootmgr
====== C:\Documents and Settings\Laptops4all\Application Data ======
2014-01-14 07:20:22 ——– d—–w- C:\Documents and Settings\LocalService\Menu Start\Programma's\Bureau-accessoires
2014-01-14 07:20:22 ——– d—–w- C:\Documents and Settings\LocalService\Menu Start\Programma's
2014-01-13 13:44:07 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\ElevatedDiagnostics
2014-01-13 12:08:19 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\TuneUp Software
2014-01-13 11:46:38 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\AVG
2013-12-26 11:53:24 ——– d—–w- C:\Documents and Settings\Laptops4all\Local Settings\Application Data\Spotify
2013-12-26 11:53:19 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\Spotify
2013-12-26 11:50:14 ——– d—–w- C:\Documents and Settings\Laptops4all\Local Settings\Application Data\iConvertor
2013-12-26 11:43:39 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\FastMediaConverter
2013-12-19 12:39:06 ——– d—–w- C:\WINDOWS\system32\config\systemprofile\Application Data\IObit
2013-12-19 12:06:46 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\Apple Computer
2013-12-19 12:05:49 ——– d—–w- C:\Documents and Settings\Laptops4all\Application Data\IObit
2013-12-17 09:25:11 D9AD3F71AC0CAB3B56CBD67AA45D2854 24728 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2013-12-16 16:27:37 ——– d—–w- C:\Documents and Settings\Laptops4all\Local Settings\Application Data\VS Revo Group
====== C:\Documents and Settings\Laptops4all ======
2014-01-14 07:20:22 ——– d—–w- C:\Documents and Settings\LocalService\Menu Start
2014-01-14 06:50:48 10500A511F9552CF5161281EAD669D46 5048198 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\tweaking.com_windows_repair_aio_setup.exe
2014-01-14 06:48:01 93674CF1054782C57042E30A9621218B 714960 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\ReimageRepair.exe
2014-01-13 16:08:39 ——– d-sh–w- C:\Documents and Settings\Default User\Cookies
2014-01-13 11:31:41 246FE58EFFD357B2078842708155E46C 1236282 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\adwcleaner.exe
2014-01-13 11:29:39 178A34E5554DCE485E1262DDF027960C 2237968 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\tdsskiller.exe
2014-01-13 11:26:56 ——– d-sh–w- C:\Documents and Settings\NetworkService\Cookies
2014-01-13 10:29:59 066578C0ABF37BA7852727685476C37B 3810304 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\RogueKiller.exe
2014-01-13 10:27:37 728939B5B99998AAF2A5A3C7378B66F3 708597 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\FSS.exe
2013-12-19 13:05:55 ——– d–h–r- C:\Documents and Settings\Laptops4all\Onlangs geopend
====== C: exe-files ==
2014-01-14 07:11:11 A283E768FA12EF33087F07B01F82D6DD 181064 —-a-w- C:\WINDOWS\PSEXESVC.EXE
2014-01-14 06:55:40 2237B196DE74B2516360F2E0A4B302A0 1346048 —-a-w- C:\Program Files\Tweaking.com\Windows Repair (All in One)\uninstall.exe
2014-01-14 06:50:48 10500A511F9552CF5161281EAD669D46 5048198 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\tweaking.com_windows_repair_aio_setup.exe
2014-01-14 06:48:01 93674CF1054782C57042E30A9621218B 714960 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\ReimageRepair.exe
2014-01-13 17:54:28 9A2347903D6EDB84C10F288BC0578C1C 388608 —-a-w- C:\Program Files\trend micro\Laptops4all.exe
2014-01-13 17:43:53 EE2BBFA13ABF5DA559FD7753CEC411AF 131991 —-a-w- C:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla11.exe
2014-01-13 17:43:53 0376FEDC5ADB49075343025E4ACB7923 131039 —-a-w- C:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla.exe
2014-01-13 15:42:15 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\Q83119FP\MicrosoftFixit.wu.LB.37313054914184995.1.1.Run.exe
2014-01-13 13:46:09 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.WinFileFolder.FISC.139313047770138598.1.3.Run.exe
2014-01-13 13:46:07 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\Q83119FP\MicrosoftFixit.WinFileFolder.FISC.139313047770138598.1.3.Run.exe
2014-01-13 13:44:43 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.IEPerformance.FISC.139313047770138598.1.2.Run.exe
2014-01-13 13:44:41 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\6UM4UNP6\MicrosoftFixit.IEPerformance.FISC.139313047770138598.1.2.Run.exe
2014-01-13 13:43:37 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\MicrosoftFixit.IEAddon.FISC.139313047770138598.1.1.Run.exe
2014-01-13 13:43:29 A0844C730F1091B491A8737404F4C914 347816 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\6PK7HQ1G\MicrosoftFixit.IEAddon.FISC.139313047770138598.1.1.Run.exe
2014-01-13 11:47:23 E5E10C8DA7CA857EB2F4730C32523329 2133304 —-a-w- C:\Program Files\AVG\AVG PC TuneUp\UpdateWizard\SilentUpdater.exe
2014-01-13 11:46:53 8CC0D4BE3DD08959909EE879EEC19B3C 36152 —-a-w- C:\WINDOWS\system32\TURegOpt.exe
2014-01-13 11:31:41 246FE58EFFD357B2078842708155E46C 1236282 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\adwcleaner.exe
2014-01-13 11:29:39 178A34E5554DCE485E1262DDF027960C 2237968 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\tdsskiller.exe
2014-01-13 11:09:00 5F1499F64F80AA219A94A5D945B3836D 610816 —-a-w- C:\cmdcons\autofmt.exe
2014-01-13 11:09:00 3C200120F6E86A1A42EDA2E1E2D17AEC 619008 —-a-w- C:\cmdcons\autochk.exe
2014-01-13 10:54:43 788FCDDD88240A85039F7F561093B118 448512 —-a-w- C:\RECYCLER\S-1-5-21-4053885489-4140769136-2780787085-1003\Dc5.exe
2014-01-13 10:29:59 066578C0ABF37BA7852727685476C37B 3810304 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\RogueKiller.exe
2014-01-13 10:27:37 728939B5B99998AAF2A5A3C7378B66F3 708597 —-a-w- C:\Documents and Settings\Laptops4all\Bureaublad\FSS.exe
=== C: other files ==
2014-01-14 07:06:43 FEA8D4B59F36908B83F97B15E2D90019 192 —-a-w- C:\Documents and Settings\Laptops4all\Local Settings\Temp\temp435.bat
2014-01-13 17:51:19 4470E3C1E0C3378E4CAB137893C12C3A 22856 —-a-w- C:\WINDOWS\system32\drivers\mbam.sys
2014-01-13 11:47:22 28A9E4EA1D45B30A9080BA0BD63A5ECB 7709008 —-a-w- C:\Program Files\AVG\AVG PC TuneUp\UpdateWizard\package_14.0.1001.204_to_14.0.1001.295.zip
==== Startup Registry Enabled ======================
“CTFMON.EXE”=“C:\WINDOWS\system32\CTFMON.EXE”
“Spotify Web Helper”=“C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe”
“ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe”
“CTFMON.EXE”=“C:\WINDOWS\system32\CTFMON.EXE”
“atchk”=“C:\Program Files\Intel\AMT\atchk.exe”
“WinampAgent”=“C:\Program Files\Winamp\winampa.exe”
“IgfxTray”=“C:\WINDOWS\system32\igfxtray.exe”
“HotKeysCmds”=“C:\WINDOWS\system32\hkcmd.exe”
“Persistence”=“C:\WINDOWS\system32\igfxpers.exe”
“SoundMAXPnP”=“C:\Program Files\Analog Devices\Core\smax4pnp.exe”
“HP Software Update”=“C:\Program Files\HP\HP Software Update\HPWuSchd2.exe”
“NeroFilterCheck”=“C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe ”
“SecurDisc”=“C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe ”
“Apoint”=“C:\Program Files\Apoint\Apoint.exe”
“avast”=“C:\Program Files\Alwil Software\Avast5\avastUI.exe /nogui”
“OODefragTray”=“C:\Program Files\OO Software\Defrag\oodtray.exe ”
“ETDCtrl”=“%ProgramFiles%\Elantech\ETDCtrl.exe ”
“Spotify Web Helper”=“C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe”
“ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe”
==== Startup Registry Disabled ======================
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Adobe ARM”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\“”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Adobe Reader Speed Launcher”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\“”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“InCD”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\Nero\\Nero 7\\InCD\\InCD.exe”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“OODefragTray”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\OO Software\\Defrag\\oodtray.exe”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“SunJavaUpdateSched”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\“”
“item”=“WinZip Quick Pick”
“path”=“C:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\WinZip Quick Pick.lnk”
“backup”=“C:\\WINDOWS\\pss\\WinZip Quick Pick.lnkCommon Startup”
“command”=“C:\\PROGRA~1\\WinZip\\WZQKPI~1.EXE”
==== Task Scheduler Jobs ======================
C:\WINDOWS\tasks\avast\Undetermined Task.exe
C:\WINDOWS\tasks\HPpromotions journeysoftware.job –a—— C:\Program Files\hp\digital imaging\bin\hp promotions\journeysoftware\HPpromo.exe
C:\WINDOWS\tasks\User_Feed_Synchronization-{962DB0AA-20C3-45A5-B7E6-734CF628FE5B}.job –ah—– C:\WINDOWS\system32\msfeedssync.exe
==== Folders in C:\Documents and Settings\All Users\Application Data 0-6 Months Old ======================
2013-12-19 12:06:30 ——– d—–w- C:\Documents and Settings\All Users\Application Data\IObit
2013-12-19 12:58:34 ——– d—–w- C:\Documents and Settings\All Users\Application Data\VS Revo Group
2014-01-13 11:43:20 ——– d—–w- C:\Documents and Settings\All Users\Application Data\AVG
2014-01-13 17:51:20 ——– d—–w- C:\Documents and Settings\All Users\Application Data\Malwarebytes
==== Firefox Extensions Registry ======================
“wrc@avast.com”=“C:\Program Files\Alwil Software\Avast5\WebRep\FF”
==== Firefox Extensions ======================
ProfilePath: C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default
- Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\ascsurfingprotection@iobit.com
- Microsoft Choice Guard - %ProfilePath%\extensions\ChoiceGuard@Microsoft
- Start Page - %ProfilePath%\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}
- New tab - %ProfilePath%\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01}
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default
BE501CBC29B2025A263D80D399F1797A - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll - Silverlight Plug-In
05C4A7136F3012BB47107333B5D351D3 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U17
D4BD9F86123C87ECA570418B69326F99 - C:\WINDOWS\system32\npDeployJava1.dll - Java Deployment Toolkit 7.0.170.2
ECD88CDFC178E6A84DB1346EABF9F03F - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat
ECD88CDFC178E6A84DB1346EABF9F03F - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
B6A800D881A0176C544988870861E798 - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
901DF887DBDF87FA3C659239F68F3228 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
0F9DEA5814D22F83FED5F427E263DED0 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
F89E6BBD6A080D8C714DFB6F30678288 - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
3CB231F12674D3CB0AC1F5EDE9578E85 - C:\WINDOWS\system32\npwmsdrm.dll - Microsoft® Windows Media Services
B27CCB1168B1960AEC6E9D3E0E0F0D2A - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrlui.dll - Microsoft® Silverlight
3EA079023D32054BFD73D08E77C72609 - C:\WINDOWS\system32\npptools.dll - Besturingssysteem Microsoft® Windows®
==== Deleted Firefox Extensions ======================
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362} deleted
C:\Documents and Settings\Laptops4all\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\extensions\{669E7F40-B964-7100-9E2C-16C6DAA58A01} deleted
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://www.google.com”
“Start Page”=“http://www.google.com”
New Values:
“Start Page”=“http://www.google.com”
“Start Page”=“http://go.microsoft.com/fwlink/?LinkId=69157”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
“DefaultScope”=“{0633EE93-D776-472f-A0FF-E1416B8B2E3A}”
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== HijackThis Entries ======================
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: “C:\Program Files\Intel\AMT\atchk.exe”
O4 - HKLM\..\Run: “C:\Program Files\Winamp\winampa.exe”
O4 - HKLM\..\Run: C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: “C:\Program Files\Alwil Software\Avast5\avastUI.exe” /nogui
O4 - HKLM\..\Run: C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKCU\..\Run: “C:\Documents and Settings\Laptops4all\Application Data\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKCU\..\Run: C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\Run: C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: FastMediaConverter.lnk = C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Intel(R) Active Management Technology System Status Service (atchksrv) - Intel Corporation - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Intel(R) Active Management Technology Local Management Service (LMS) - Intel - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
O23 - Service: Intel(R) Active Management Technology User Notification Service (UNS) - Intel - C:\Program Files\Intel\AMT\UNS.exe
==== Empty IE Cache ======================
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\Q83119FP will be deleted at reboot
C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Documents and Settings\Laptops4all\Local Settings\Application Data\Mozilla\Firefox\Profiles\5yglxngq.default\Cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=31 folders=10 138093 bytes)
==== Empty Temp Folders ======================
C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp emptied successfully
C:\Documents and Settings\Laptops4all\Local Settings\Temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\LAPTOP~1\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
“C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\index.dat” deleted
“C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat” not deleted
“C:\Documents and Settings\Laptops4all\Local Settings\Temporary Internet Files\Content.IE5\Q83119FP” not found
==== EOF on di 14-01-2014 at 9:56:22,23 ======================
Ben

14-01-2014 10:06

Hallo,
Heb je al die programma's al gebruikt die op je bureaublad staan?
Zoals TDSSKiller, RogueKiller. en FSS
Snowi

14-01-2014 10:41

Hoi ben
Ik heb alleen TDSSKILLER laten scannen maar deze had niets gevonden. En de rest heb ik inderdaad zelf op mijn bureaublad gezet maar ik weet niet hoe het werkt.
Wanneer er problemen zijn,dan denk ik dat het iets geks is en ga ik op internet lezen wat je er aan kan doen maar nu blijkt het knap moeilijk te zijn.
Ik wil jullie ook niet altijd lastig vallen voor elk klein dingetje maar sorry als ik het moeilijker hebt gemaakt.
Gr

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Telkens de zelfde 10 microsoft update

Snowi

Ben

Snowi

Snowi

Snowi

Ben

Snowi

Snowi

Ben

Snowi