PDA

Volledige versie bekijken : Alle browsers geinfecteerd met "SweetPacks"


boneless
29 March 2013, 00:07
Al gescanned met MBAM, 1 infectie verwijderd. AVG vind niets. Gmer crashed na een paar minuten scannen.

Mijn IE heeft 3 addons genaamd Sweetpacks, alle browsers die ik heb hebben een Sweetpacks start pagina plotseling. Geen idee hoe ik dit binnen gehaald heb, ben normaal erg voorzichtig...

Hopelijk kan iemand me helpen, en alvast bedankt!

MBAM log
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org


Database version: v2013.03.28.12


Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16521
Ton :: VERRA [administrator]


28.03.2013 16:43:11
mbam-log-2013-03-28 (16-43-11).txt


Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 257791
Time elapsed: 4 minute(s), 15 second(s)


Memory Processes Detected: 0
(No malicious items detected)


Memory Modules Detected: 0
(No malicious items detected)


Registry Keys Detected: 0
(No malicious items detected)


Registry Values Detected: 0
(No malicious items detected)


Registry Data Items Detected: 0
(No malicious items detected)


Folders Detected: 0
(No malicious items detected)


Files Detected: 0
(No malicious items detected)


(end)

DDS log
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16521 BrowserJavaVersion: 10.17.2
Run by Ton at 16:55:59 on 2013-03-28
Microsoft Windows 7 Professional 6.1.7601.1.1252.47.1033.18.8075.4019 [GMT -5:00]
.
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlk.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Common Files\Siemens\ACE\bin\CCAgent.exe
C:\Windows\system32\taskhost.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEClient.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEServer.exe
C:\PROGRAM FILES\COMMON FILES\SIEMENS\ALMPANELPLUGIN\ALMPANELPLUGIN.EXE
C:\Program Files (x86)\Siemens\Automation\WinCC RT Advanced\SmartServer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
C:\Windows\system32\CxAudMsg64.exe
C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\system32\hasplms.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\SysWOW64\lkads.exe
C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
c:\Program Files\Microsoft SQL Server\MSSQL10.KAMSTRUPHEAT2008\MSSQL\Binn\sqlserv r.exe
c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
C:\Program Files (x86)\Nortel\Nortel VPN Client\NvcSvcMgr.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe
C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceSe rvice64x.exe
C:\Windows\SysWOW64\SAsrv.exe
C:\Program Files (x86)\Common Files\Siemens\ace\bin\SCSMX.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\PNIOMGR.exe
C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Program Files (x86)\eCatcher-Talk2M\Talk2mVpnService\bin\Talk2MVpnService.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe
C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
C:\Program Files (x86)\X-Rite\Devices\Services\xritedeviced.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
C:\Program Files (x86)\Common Files\Siemens\CommonArchiving\CCDBUtils.exe
C:\Program Files (x86)\X-Rite\Devices\Services\i1Display\i1DisplayDeviceSer vice.exe
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\rundll32.exe
C:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXE
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe
C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Users\Ton\AppData\Roaming\Spotify\Data\SpotifyW ebHelper.exe
C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
C:\Users\Ton\AppData\Local\Radvision\Conference Client\7.15.001.46\cucore.exe
C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\X-Rite\Devices\Lib\xritelegacyd.exe
C:\Windows\system32\rundll32.exe
C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe
C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe
C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe
C:\Program Files (x86)\Common Files\Siemens\Sqlany\dbsrv9.exe
C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\notepad.exe
C:\Windows\system32\taskhost.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.com/
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Updater By SweetPacks: {C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} - C:\Program Files\Updater By SweetPacks\Extension32.dll
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SweetPacks Browser Helper: {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
TB: SweetPacks Toolbar for Internet Explorer: {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
TB: SweetPacks Toolbar for Internet Explorer: {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
uRun: [Spotify Web Helper] "C:\Users\Ton\AppData\Roaming\Spotify\Data\SpotifyW ebHelper.exe"
uRun: [AdobeBridge] <no file>
mRun: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrB kGndMonitor
mRun: [X-Rite Legacy Device] C:\Program Files (x86)\X-Rite\Devices\Lib\xritelegacyd.exe
mRun: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
mRun: [S7UB Start] "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
mRun: [WinCC flexible Smart Start] "C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe" /startup
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.ex e" -launchedbylogin
mRun: [WRSVC] "C:\Program Files (x86)\Webroot\WRSA.exe" -ul
mRun: [SiemensAutomationFileStorage] "C:\Program Files (x86)\Siemens\Automation\Portal V11\Bin\Siemens.Automation.ObjectFrame.FileStorage .Server.exe" preload
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [NI Update Service] "C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe" -startupTask
mRun: [MobileAccess] C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst
mRun: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
mRun: [NVC] "C:\Program Files (x86)\Nortel\Nortel VPN Client\Nvc.exe" -autostart
mRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
StartupFolder: C:\Users\Ton\AppData\Roaming\MICROS~1\Windows\STAR TM~1\Programs\Startup\J.lnk - C:\Users\Ton\AppData\Roaming\Realtime Soft\UltraMon\3.2.1\Profiles\J.umprofile
StartupFolder: C:\Users\Ton\AppData\Roaming\MICROS~1\Windows\STAR TM~1\Programs\Startup\Work.lnk - C:\Users\Ton\AppData\Roaming\Realtime Soft\UltraMon\3.1.0\Profiles\Work.umprofile
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\BLUETO~1.LNK - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\COLORC~1.LNK - C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Gamma\CalibrationLoader.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\COLORC~2.LNK - C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\NIERRO~1.LNK - C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\UltraMon.lnk - C:\Windows\Installer\{ED7FE81C-378C-411D-B5B4-509B978BA204}\IcoUltraMon.ico
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Sta rtup\VPNGUI~1.LNK - C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&ksporter til Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
DPF: {6EEFD7B1-B26C-440D-B55A-1EC677189F30} - hxxps://89.191.19.126:4433/NELX.cab
DPF: {8D9563A9-8D5F-459B-87F2-BA842255CB9A} - hxxps://uag.nordic-paper.com/InternalSite/WhlCompMgr.cab
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{DE96462C-B190-4FE5-BB95-B54FD96B6A7D} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{DE96462C-B190-4FE5-BB95-B54FD96B6A7D}\4433532427F616462616E646 : DHCPNameServer = 193.75.75.75 193.75.75.193 193.75.75.75
TCP: Interfaces\{DE96462C-B190-4FE5-BB95-B54FD96B6A7D}\65746573531393546483536343 : DHCPNameServer = 192.168.2.254
TCP: Interfaces\{DE96462C-B190-4FE5-BB95-B54FD96B6A7D}\8445340245F6E6023507F647 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{DE96462C-B190-4FE5-BB95-B54FD96B6A7D}\E45687477456E64556C6F51454 : DHCPNameServer = 217.13.7.140 217.13.4.24
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli ACGina C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\Inst aller\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Updater By SweetPacks: {C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD} - C:\Program Files\Updater By SweetPacks\Extension64.dll
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [TpShocks] TpShocks.exe
x64-Run: [ForteConfig] C:\Program Files\Conexant\ForteConfig\fmapp.exe
x64-Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
x64-Run: [ALCKRESI.EXE] C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE
x64-Run: [AcWin7Hlpr] C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.e xe"
x64-Run: [SonicWALLNetExtender] C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe -hideGUI -clearReboot
x64-Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: psfus - C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Ton\AppData\Roaming\Mozilla\Firefox\Profi les\rsc8g9hq.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10043&barid={0F5967B4-8FEA-11E2-87E4-E02EDEB55B0F}
FF - prefs.js: browser.search.selectedEngine - Bing
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: keyword.URL - hxxp://start.sweetpacks.com/?src=2&st=12&barid={0F5967B4-8FEA-11E2-87E4-E02EDEB55B0F}&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Ton\AppData\Local\Radvision\Installer\1.5 .0.1\npClientInstMgr.dll
FF - plugin: C:\Windows\System32\Wat\npWatWeb.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
P2 cortsmartserver;CoRtSm@rtServer;C:\Program Files (x86)\Siemens\Automation\WinCC RT Advanced\SmartServer.exe [2012-8-20 567080]
P2 smartserver;Sm@rtServer;C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe [2012-4-26 558416]
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgi dsha.sys [2013-2-8 71480]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-2-8 311096]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-2-8 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-2-8 45880]
R0 dlkmdldr;dlkmdldr;C:\Windows\System32\drivers\dlkm dldr.sys [2012-6-14 15224]
R0 DzHDD64;DzHDD64;C:\Windows\System32\drivers\DZHDD6 4.SYS [2012-5-6 29512]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2013-3-15 155272]
R0 nipbcfk;National Instruments Class Upper Filter Driver;C:\Windows\System32\drivers\nipbcfk.sys [2012-1-12 16984]
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpc iflt.sys [2013-2-6 30496]
R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sy s [2013-3-15 1093256]
R0 TPDIGIMN;TPDIGIMN;C:\Windows\System32\drivers\ApsH M64.sys [2011-12-28 25416]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2013-3-15 228488]
R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2013-3-15 166024]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\driv ers\avgidsdrivera.sys [2013-2-26 246072]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-2-8 206136]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-2-14 239416]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-3-18 283200]
R1 lenovo.smi;Lenovo System Interface Driver;C:\Windows\System32\drivers\smiifx64.sys [2011-12-13 15472]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.s ys [2013-2-6 284448]
R1 PHCORE;PHCORE;C:\Program Files\Lenovo\RapidBoot\PHCORE64.sys [2011-7-8 32104]
R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-3-15 3696632]
R2 aksdf;aksdf;C:\Windows\System32\drivers\aksdf.sys [2012-6-18 75648]
R2 almservice;Automation License Manager Service;C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [2011-12-11 1543816]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-2-27 4937264]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-2-19 282624]
R2 CCAgent;CCAgent;C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCAgent.exe [2011-11-2 363008]
R2 CCDBUtils;CCDBUtils;C:\Program Files (x86)\Common Files\Siemens\commonarchiving\CCDBUtils.exe [2012-7-26 102400]
R2 CCEServer;CCEServer;C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEServer.exe [2011-11-2 245248]
R2 CxAudMsg;Conexant Audio Message Service;C:\Windows\System32\CxAudMsg64.exe [2012-5-6 198784]
R2 DisplayLinkService;DisplayLinkManager;C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2012-5-15 8510936]
R2 hasplms;Sentinel HASP License Manager;C:\Windows\System32\hasplms.exe -run --> C:\Windows\System32\hasplms.exe -run [?]
R2 i1 Display Service;X-Rite Device i1 Display;C:\Program Files (x86)\X-Rite\Devices\Services\i1Display\i1DisplayDeviceSer vice.exe [2012-6-7 163328]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-2-24 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute;C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2012-5-6 41320]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;C:\Program Files\Lenovo\HOTKEY\micmute.exe [2011-12-13 101736]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2012-5-6 59240]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [2011-12-13 133992]
R2 MacheenService;Macheen Service;C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [2013-1-23 29920]
R2 mi-raysat_3dsmax2013_64;mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit;C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [2011-9-14 86016]
R2 MSSQL$KAMSTRUPHEAT2008;SQL Server (KAMSTRUPHEAT2008);C:\Program Files\Microsoft SQL Server\MSSQL10.KAMSTRUPHEAT2008\MSSQL\Binn\sqlserv r.exe [2011-9-22 58345832]
R2 MSSQL$WINCCFLEXEXPRESS;SQL Server (WINCCFLEXEXPRESS);C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 MSSQL$WINCCPLUSMIG;SQL Server (WINCCPLUSMIG);C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 NIApplicationWebServer;NI Application Web Server;C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 53960]
R2 niLXIDiscovery;NI LXI Discovery Service;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [2012-6-6 236768]
R2 nimDNSResponder;NI mDNS Responder Service;C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2012-5-31 258776]
R2 NINetworkDiscovery;NI Network Discovery;C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [2012-6-6 169192]
R2 NiViPxiK;NI-VISA PXI Driver;C:\Windows\System32\drivers\NiViPxiKl.sys [2012-6-6 13008]
R2 NvcSvcMgr;Nortel VPN Client;C:\Program Files (x86)\Nortel\Nortel VPN Client\NvcSvcMgr.exe [2011-4-20 628056]
R2 nvcwfpco;nvcwfpco;C:\Windows\System32\drivers\nvcw fpco.sys [2011-4-14 80448]
R2 risdxc;risdxc;C:\Windows\System32\drivers\risdxc64 .sys [2012-5-6 101888]
R2 s7hspsvx;S7 HSP Service;C:\Program Files (x86)\Siemens\Step7\S7BIN\s7hspsvx.exe [2011-10-31 61493]
R2 s7oiehsx64;SIMATIC IEPG Help Service;C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [2012-6-29 141096]
R2 s7ousbu64x;SIMATIC USB Service;C:\Windows\System32\drivers\s7ousbu64x.sys [2012-2-22 196608]
R2 s7sn2srtx;PROFINET IO RT-Protocol V2.0;C:\Windows\System32\drivers\s7sn2srtx.sys [2012-3-29 83032]
R2 S7TraceServiceX;S7TraceServiceX;C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceSe rvice64x.exe [2012-6-29 471848]
R2 SAService;Conexant SmartAudio service;C:\Windows\System32\SAsrv.exe --> C:\Windows\System32\SAsrv.exe [?]
R2 SCSMonitor;SCSMonitor;C:\Program Files (x86)\Common Files\Siemens\ace\bin\SCSMX.exe [2011-11-2 163328]
R2 smihlp;SMI Helper Driver (smihlp);C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [2011-5-30 13128]
R2 SROSVC;Screen Reading Optimizer Service Program;C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2012-6-7 446800]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-1-10 383264]
R2 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2012-8-18 7017888]
R2 Talk2MVpnService;Talk2MVpnService;C:\Program Files (x86)\eCatcher-Talk2M\Talk2mVpnService\bin\Talk2MVpnService.exe [2012-9-23 102400]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-1-2 3560288]
R2 TPHKLOAD;Lenovo Hotkey Client Loader;C:\Program Files\Lenovo\HOTKEY\tphkload.exe [2011-12-13 145256]
R2 TPHKSVC;On Screen Display;C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [2011-12-13 142696]
R2 UA Local Discovery Server;UA Local Discovery Server;C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe [2010-5-6 28160]
R2 uagqecsvc;Microsoft Forefront UAG Quarantine Enforcement Client;C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe [2013-1-19 151320]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-5-6 2656280]
R2 Updater By SweetPacks;Updater By SweetPacks;C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe [2013-3-18 188760]
R2 WebUpdate4;Web Update Wizard Service V4;C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe [2013-1-16 278800]
R2 WMCoreService;Mobile Broadband Service;C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe servicemode --> C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe servicemode [?]
R2 xritedeviced;X-Rite Device Manager;C:\Program Files (x86)\X-Rite\Devices\Services\xritedeviced.exe [2012-5-6 142848]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-6-25 3325232]
R3 5U877;USB Video Device;C:\Windows\System32\drivers\5U877.sys [2012-5-6 166016]
R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2013-3-15 367200]
R3 CCEClient;CCEClient;C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEClient.exe [2011-11-2 264704]
R3 dlkmd;dlkmd;C:\Windows\System32\drivers\dlkmd.sys [2012-6-14 317816]
R3 dpmconv;SIMATIC NET DP Driver;C:\Windows\System32\drivers\dpmconv.sys [2012-5-20 259072]
R3 ecnssndis; Mobile Broadband Driver;C:\Windows\System32\drivers\wwuss64.sys [2012-5-6 26664]
R3 ecnssndisfltr; Mobile Broadband Driver Filter;C:\Windows\System32\drivers\wwussf64.sys [2012-5-6 30248]
R3 Mbm3CBus;F5521gw Mobile Broadband Device (WDM);C:\Windows\System32\drivers\Mbm3CBus.sys [2012-5-6 419400]
R3 Mbm3DevMt; Mobile Broadband Device Management Driver (WDM);C:\Windows\System32\drivers\Mbm3DevMt.sys [2012-5-6 430664]
R3 Mbm3mdfl; Mobile Broadband Modem Port Filter;C:\Windows\System32\drivers\Mbm3mdfl.sys [2012-5-6 19528]
R3 Mbm3Mdm; Mobile Broadband Modem Port Driver;C:\Windows\System32\drivers\Mbm3Mdm.sys [2012-5-6 483400]
R3 NT_NvcA;Nortel VPN Adapter;C:\Windows\System32\drivers\ntnvca.sys [2011-4-14 44096]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-5-10 97792]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-5-10 217600]
R3 NxDrv;SonicWALL NetExtender Adapter;C:\Windows\System32\drivers\NxDrv.sys [2009-10-21 24264]
R3 s7odpx2x64;SIMATIC Knotentaufe;C:\Windows\System32\drivers\s7odpx2x64 .sys [2012-1-17 71168]
R3 s7oppinx64;SIMATIC PPI Transport;C:\Windows\System32\drivers\s7oppinx64.s ys [2012-1-17 107520]
R3 s7oserix64;Siemens PC Serial Cable;C:\Windows\System32\drivers\s7oserix64.sys [2011-5-5 121344]
R3 s7osmcax64;SIMATIC PC Adapter RS232;C:\Windows\System32\drivers\s7osmcax64.sys [2011-9-29 195584]
R3 s7osobux64;SIMATIC SoftBus;C:\Windows\System32\drivers\s7osobux64.sys [2011-5-5 152576]
R3 s7otmcd64x;SIMATIC Memory Cards;C:\Windows\System32\drivers\s7otmcd64x.sys [2011-5-5 199680]
R3 s7otranx64;SIMATIC Transport;C:\Windows\System32\drivers\s7otranx64.s ys [2012-1-17 260096]
R3 s7otsadx64;SIMATIC TS Adapter RS232;C:\Windows\System32\drivers\s7otsadx64.sys [2011-9-29 192000]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_dr iver_Intel.sys [2013-1-3 44344]
R3 TVTI2C;Lenovo SM bus driver;C:\Windows\System32\drivers\tvti2c.sys [2011-5-30 40248]
R3 vsnl2ada;SIMATIC NET FDL Driver;C:\Windows\System32\drivers\vsnl2ada.sys [2012-4-17 126976]
R3 WwanUsbServ;Mobile Broadband Driver;C:\Windows\System32\drivers\WwanUsbMp64.sys [2012-6-7 268840]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 HyperW7Svc;HyperW7 Service;C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-7-8 144232]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-8 161536]
S2 WRSVC;WRSVC;"C:\Program Files (x86)\Webroot\WRSA.exe" -service --> C:\Program Files (x86)\Webroot\WRSA.exe [?]
S3 BTWAMPFL;BTWAMPFL;C:\Windows\System32\drivers\btwa mpfl.sys [2012-5-6 437288]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2012-5-6 39976]
S3 CCArchiveManagerService;CCArchiveManagerService;C: \Program Files (x86)\Common Files\Siemens\commonarchiving\CCArchiveManager.exe [2012-7-26 761856]
S3 CCRedundancyAgent-Service;CCRedundancyAgent-Service;C:\Program Files (x86)\Common Files\Siemens\commonarchiving\CCRedundancyAgent.ex e [2012-7-26 856064]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 cxbu0x64;OMNIKEY 3x21;C:\Windows\System32\drivers\cxbu0x64.sys [2011-9-6 177920]
S3 DisplayLinkUsbPort;DisplayLink USB Device;C:\Windows\System32\drivers\DisplayLinkUsbP ort_6.3.38103.0.sys [2012-6-14 17408]
S3 DMService;Microsoft Forefront UAG Endpoint Component Manager;C:\Windows\DOWNLO~1\DMService.exe [2013-1-19 487704]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-20 71168]
S3 DozeSvc;Lenovo Doze Mode Service;C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [2012-5-6 320576]
S3 dpmcslv;dpmcslv;C:\Windows\System32\drivers\dpmcsl v.sys [2005-7-4 68280]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-2-23 1432400]
S3 HidCom64;USB to LoopLink Driver Service;C:\Windows\System32\drivers\PRHidCom64.sys [2012-7-12 32000]
S3 l36wgps; Mobile Broadband GPS Port;C:\Windows\System32\drivers\l36wgps64.sys [2012-6-7 101416]
S3 nidimk;nidimk;C:\Windows\System32\drivers\nidimkl. sys [2012-1-27 12968]
S3 nipalfwedl;nipalfwedl;C:\Windows\System32\drivers\ nipalfwedl.sys [2012-6-6 12520]
S3 nipalusbedl;nipalusbedl;C:\Windows\System32\driver s\nipalusbedl.sys [2012-6-6 12520]
S3 NiViPciK;NI-VISA PCI Driver;C:\Windows\System32\drivers\NiViPciKl.sys [2012-6-6 13008]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-1 178824]
S3 Power Manager DBC Service;Power Manager DBC Service;C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [2012-5-6 1666112]
S3 PwmEWSvc;Cisco EnergyWise Enabler;C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe [2012-5-6 1665088]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominipor t.sys [2012-11-18 19456]
S3 RedundancyControl;RedundancyControl;C:\Program Files (x86)\Common Files\Siemens\ace\bin\RedundancyControl.exe [2011-11-2 486400]
S3 RedundancyState;RedundancyState;C:\Program Files (x86)\Common Files\Siemens\ace\bin\RedundancyState.exe [2011-11-2 198144]
S3 s7oupc2x64;SIMATIC PC Adapter USB - USB Driver;C:\Windows\System32\drivers\s7oupc2x64.sys [2012-2-22 28672]
S3 SCSFsX;SCSFsX;C:\Program Files (x86)\Common Files\Siemens\ace\bin\SCSFsX.exe [2011-11-2 101888]
S3 silabenm;Kamstrup USB interface Serial Port Enumerator Driver;C:\Windows\System32\drivers\silabenm.sys [2011-7-19 27336]
S3 silabser;Kamstrup USB interface Driver;C:\Windows\System32\drivers\silabser.sys [2011-7-19 69120]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUs bFlt.sys [2012-11-18 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-11-18 30208]
S3 vpcuxd;USB Virtualization Stub Service;C:\Windows\System32\drivers\vpcuxd.sys [2012-6-18 16384]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-6-7 1255736]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit);C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 76488]
S4 RsFx0105;RsFx0105 Driver;C:\Windows\System32\drivers\RsFx0105.sys [2011-9-22 311144]
S4 SQLAgent$KAMSTRUPHEAT2008;SQL Server Agent (KAMSTRUPHEAT2008);C:\Program Files\Microsoft SQL Server\MSSQL10.KAMSTRUPHEAT2008\MSSQL\Binn\SQLAGEN T.EXE [2011-9-22 431464]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2013-03-25 17:56:20 -------- d-----w- C:\Users\Ton\AppData\Roaming\.technic
2013-03-25 17:45:41 2776576 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2013-03-22 23:27:12 -------- d-----w- C:\Program Files (x86)\MeeSoft
2013-03-21 14:26:59 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-03-18 16:39:22 -------- d-----w- C:\Program Files (x86)\SweetIM
2013-03-18 16:38:12 -------- d-----w- C:\Program Files\Updater By SweetPacks
2013-03-18 16:38:10 -------- d-----w- C:\Users\Ton\AppData\Local\Programs
2013-03-18 16:37:34 -------- d-----w- C:\Program Files (x86)\Maxis
2013-03-18 16:36:03 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2013-03-18 16:35:59 -------- d-----w- C:\Users\Ton\AppData\Roaming\DAEMON Tools Lite
2013-03-18 16:35:58 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2013-03-18 16:35:03 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2013-03-16 15:18:28 -------- d-----w- C:\My backups
2013-03-16 00:16:22 367200 ----a-w- C:\Windows\System32\drivers\afcdp.sys
2013-03-16 00:16:18 1340040 ----a-w- C:\Windows\System32\drivers\tdrpman.sys
2013-03-16 00:16:17 1093256 ----a-w- C:\Windows\System32\drivers\tib_mounter.sys
2013-03-16 00:16:15 228488 ----a-w- C:\Windows\System32\drivers\vididr.sys
2013-03-16 00:16:12 166024 ----a-w- C:\Windows\System32\drivers\vidsflt.sys
2013-03-16 00:16:09 340104 ----a-w- C:\Windows\System32\drivers\snapman.sys
2013-03-16 00:16:09 155272 ----a-w- C:\Windows\System32\drivers\fltsrv.sys
2013-03-16 00:01:26 -------- d-----w- C:\Program Files (x86)\Runtime Software
2013-03-15 23:59:18 -------- d-----w- C:\ProgramData\Macrium
2013-03-15 21:50:17 108448 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2013-03-15 21:48:17 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-28 13:57:35 -------- d-----w- C:\Users\Ton\AppData\Local\Nortel
2013-02-28 13:57:34 -------- d-----w- C:\ProgramData\Nortel
2013-02-28 13:57:34 -------- d-----w- C:\Program Files (x86)\Nortel
2013-02-28 13:50:12 -------- d-----w- C:\Program Files (x86)\MSECache
2013-02-27 04:40:46 246072 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
.
==================== Find3M ====================
.
2013-03-28 14:34:33 73432 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-28 14:34:33 693976 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-03-15 21:50:15 963488 ----a-w- C:\Windows\System32\deployJava1.dll
2013-03-15 21:50:15 1085344 ----a-w- C:\Windows\System32\npDeployJava1.dll
2013-03-15 21:48:13 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-03-15 21:48:13 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-02-14 08:52:46 239416 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-02-08 09:37:56 116536 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2013-02-08 09:37:54 311096 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2013-02-08 09:37:50 71480 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2013-02-08 09:37:42 206136 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2013-02-08 09:37:40 45880 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
2013-01-13 21:17:03 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 21:17:02 2560 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 21:16:42 10752 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 21:12:46 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 21:11:21 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 21:11:08 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 21:11:07 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:35:31 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 20:35:31 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 20:35:18 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 20:32:07 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 20:31:48 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 20:31:41 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 20:31:40 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:31:00 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-01-13 20:22:22 1988096 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2013-01-13 20:20:31 293376 ----a-w- C:\Windows\SysWow64\dxgi.dll
2013-01-13 20:09:00 249856 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2013-01-13 20:08:43 220160 ----a-w- C:\Windows\SysWow64\d3d10core.dll
2013-01-13 20:08:35 1504768 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-01-13 19:59:04 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-01-13 19:58:28 1175552 ----a-w- C:\Windows\System32\FntCache.dll
2013-01-13 19:54:01 604160 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2013-01-13 19:53:58 207872 ----a-w- C:\Windows\SysWow64\WindowsCodecsExt.dll
2013-01-13 19:53:14 187392 ----a-w- C:\Windows\SysWow64\UIAnimation.dll
2013-01-13 19:51:30 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2013-01-13 19:49:17 363008 ----a-w- C:\Windows\System32\dxgi.dll
2013-01-13 19:48:47 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2013-01-13 19:46:25 1080832 ----a-w- C:\Windows\SysWow64\d3d10.dll
2013-01-13 19:43:21 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-01-13 19:38:39 333312 ----a-w- C:\Windows\System32\d3d10_1core.dll
2013-01-13 19:38:32 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-01-13 19:38:21 296960 ----a-w- C:\Windows\System32\d3d10core.dll
2013-01-13 19:37:57 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2013-01-13 19:25:04 245248 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll
2013-01-13 19:24:33 648192 ----a-w- C:\Windows\System32\d3d10level9.dll
2013-01-13 19:24:30 221184 ----a-w- C:\Windows\System32\UIAnimation.dll
2013-01-13 19:20:42 194560 ----a-w- C:\Windows\System32\d3d10_1.dll
2013-01-13 19:20:04 1238528 ----a-w- C:\Windows\System32\d3d10.dll
2013-01-13 19:15:40 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-01-13 19:10:36 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2013-01-13 19:02:06 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-01-13 18:34:58 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-01-13 18:32:43 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-01-13 18:09:52 522752 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-01-13 17:26:42 1158144 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2013-01-13 17:05:09 1682432 ----a-w- C:\Windows\System32\XpsPrint.dll
2013-01-10 21:37:29 3460896 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-01-10 21:37:27 6382880 ----a-w- C:\Windows\System32\nvcpl.dll
2013-01-10 21:36:46 2934933 ----a-w- C:\Windows\System32\nvcoproc.bin
2013-01-10 21:36:44 884512 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-01-10 21:36:44 63776 ----a-w- C:\Windows\System32\nvshext.dll
2013-01-10 21:36:44 558880 ----a-w- C:\Windows\SysWow64\oemdspif.dll
2013-01-10 21:36:44 2558240 ----a-w- C:\Windows\System32\nvsvcr.dll
2013-01-10 21:36:44 118560 ----a-w- C:\Windows\System32\nvmctray.dll
2013-01-10 21:36:42 997664 ----a-w- C:\Windows\System32\nv3dappshext.dll
2013-01-10 21:36:42 55584 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2013-01-10 21:35:52 550176 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-01-04 06:11:21 2284544 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2013-01-04 05:46:09 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-01-04 04:51:16 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-01-04 03:26:48 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-01-04 02:47:35 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-01-04 02:47:34 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-01-04 02:47:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-01-04 02:47:33 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-01-03 06:00:54 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-01-03 06:00:42 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
.
============= FINISH: 16:56:54,37 ===============
Rosty
29 March 2013, 07:14
Opmerking: Vista of Windows 7 ? >> Alle tools steeds uitvoeren als admin.
Download AdwCleaner (http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner) by Xplode naar het bureaublad.

http://i341.photobucket.com/albums/o365/EvelineGirl/A3qkP9RCEAAOZhQ.jpg


Sluit alle openstaande vensters. Vista en Windows 7 gebruikers: Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren... Voor XP: Gewoon dubbelklikken op AdwCleaner. Klik vervolgens op Verwijderen. Klik bij AdwCleaner – Information op OK Klik bij AdwCleaner – Restart Required op OK


Dat tijdens de aktie de snelkoppelingen verdwijnen, is normaal.
Nadat de PC opnieuw is opgestart, opent een logfile.
Post aansluitend de inhoud van dit log in je volgende bericht.
boneless
29 March 2013, 15:00
Dankje Rosty!

Ook AdwCleaner crashte, maar de tweede keer lukte het wel. Weet echter niet of de log file wel compleet is na de herstart?

# AdwCleaner v2.115 - Logfile created 03/29/2013 at 07:53:05
# Updated 17/03/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Ton - VERRA
# Boot Mode : Normal
# Running from : C:\Users\Ton\Desktop\adwcleaner.exe
# Option [Delete]




***** [Services] *****




***** [Files / Folders] *****


Folder Deleted : C:\Users\Ton\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhh ajpdfd
Folder Deleted : C:\Users\Ton\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcni mhokcj


***** [Registry] *****




***** [Internet Browsers] *****


-\\ Internet Explorer v10.0.9200.16521


[OK] Registry is clean.


-\\ Mozilla Firefox v16.0.2 (en-US)


File : C:\Users\Ton\AppData\Roaming\Mozilla\Firefox\Profi les\rsc8g9hq.default\prefs.js


[OK] File is clean.


-\\ Google Chrome v25.0.1364.172


File : C:\Users\Ton\AppData\Local\Google\Chrome\User Data\Default\Preferences


[OK] File is clean.


*************************


AdwCleaner[R1].txt - [5985 octets] - [29/03/2013 07:52:04]
AdwCleaner[R2].txt - [1288 octets] - [29/03/2013 07:52:58]
AdwCleaner[S1].txt - [5774 octets] - [29/03/2013 07:52:21]
AdwCleaner[S2].txt - [1223 octets] - [29/03/2013 07:53:05]


########## EOF - C:\AdwCleaner[S2].txt - [1283 octets] ##########
Rosty
29 March 2013, 18:32
Download zoek.exe (http://hijackthis.nl/smeenk/) naar het bureaublad.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier (http://www.pcwebplus.nl/phpbb/viewtopic.php?f=231&t=5401) of hier (http://www.pcwebplus.nl/phpbb/viewtopic.php?f=231&t=5402)) kan je lezen hoe je dat doet.
Dubbelklik op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.


startupall;
filesrcm;

Vink nu de onderstaande opties aan.




Standaard Search
Auto Clean
Running processes
Empty All Temp
Recently Created
Firefox Look
Chrome Look
Reset Chrome
Reset Hosts
emptyclsid


Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post nu de inhoud van het geopende logje in het volgende bericht.[/code]
boneless
29 March 2013, 20:57
Hey!

Ik kon niet alle instellingen vinden, dus heb deze gebruikt:
http://i195.photobucket.com/albums/z68/tonverra/Capture_zpsec031249.jpg



Zoek.exe Version 4.0.0.2 Updated 28-03-2013
Tool run by Ton on 29.03.2013 at 11:45:33,49.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected


==== Running Processes ======================


C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
C:\Windows\system32\winlogon.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlk.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Common Files\Siemens\ACE\bin\CCAgent.exe
C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEClient.exe
C:\Program Files (x86)\Common Files\Siemens\ace\bin\CCEServer.exe
C:\Program Files (x86)\Siemens\Automation\WinCC RT Advanced\SmartServer.exe
C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
C:\Windows\system32\CxAudMsg64.exe
C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\PROGRAM FILES\COMMON FILES\SIEMENS\ALMPANELPLUGIN\ALMPANELPLUGIN.EXE
C:\Windows\system32\hasplms.exe
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\Windows\SysWOW64\lkads.exe
C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
c:\Program Files\Microsoft SQL Server\MSSQL10.KAMSTRUPHEAT2008\MSSQL\Binn\sqlserv r.exe
c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\taskhost.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Nortel\Nortel VPN Client\NvcSvcMgr.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe
C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceSe rvice64x.exe
C:\Windows\SysWOW64\SAsrv.exe
C:\Program Files (x86)\Common Files\Siemens\ace\bin\SCSMX.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\PNIOMGR.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SRORest.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Program Files (x86)\eCatcher-Talk2M\Talk2mVpnService\bin\Talk2MVpnService.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe
C:\Program Files\Updater By SweetPacks\ExtensionUpdaterService.exe
C:\Program Files (x86)\Lenovo\MobileAccess\WebUpdateSvc4.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
C:\Program Files (x86)\X-Rite\Devices\Services\xritedeviced.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Common Files\Siemens\CommonArchiving\CCDBUtils.exe
C:\Program Files (x86)\X-Rite\Devices\Services\i1Display\i1DisplayDeviceSer vice.exe
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\rundll32.exe
C:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXE
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Users\Ton\AppData\Roaming\Spotify\Data\SpotifyW ebHelper.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Users\Ton\AppData\Local\Radvision\Conference Client\7.15.001.46\cucore.exe
C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\X-Rite\Devices\Lib\xritelegacyd.exe
C:\Windows\system32\rundll32.exe
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe
C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe
C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe
C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe
C:\Program Files (x86)\Common Files\Siemens\Sqlany\dbsrv9.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\Pres entationFontCache.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Dwm.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskhost.exe
C:\Users\Ton\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe


==== Deleting CLSID Registry Keys ======================




==== Deleting CLSID Registry Values ======================




==== Reset Hosts File ======================


# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost


==== FireFox Fix ======================


ProfilePath: C:\Users\Ton\AppData\Roaming\Mozilla\Firefox\Profi les\rsc8g9hq.default


user.js not found
---- Lines SweetPacks removed from prefs.js ----


user_pref("browser.startup.homepage", "http://start.sweetpacks.com/?src=10&st=12&crg=3.5000006.10043&barid={0F5967B4-8FEA-11E2-87E4-E02EDEB55B0F}");
user_pref("keyword.URL", "http://start.sweetpacks.com/?src=2&st=12&barid={0F5967B4-8FEA-11E2-87E4-E02EDEB55B0F}&q=");


---- Lines SweetPacks modified from prefs.js ----




---- FireFox user.js and prefs.js backups ----


prefs__1149_.backup


==== Deleting Files \ Folders ======================


"C:\Users\Ton\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}" deleted


==== Files Recently Created / Modified ======================


====== C:\Windows ====
2013-03-18 16:37:50 DF9ACD3FEB67BC3B05ECC5514B4DB091 530 ----a-w- C:\Windows\eReg.dat
====== C:\Users\Ton\AppData\Local\Temp ====
2013-03-18 16:37:03 E345E9DB01C35692A12392CDF99FD2FD 4323232 ----a-w- C:\Users\Ton\AppData\Local\Temp\SweetIESetup.exe
2013-03-18 16:37:03 98726383785FAC5730AB596294B0F655 977 ----a-w- C:\Users\Ton\AppData\Local\Temp\WSSetup.exe
2013-03-18 16:37:03 98726383785FAC5730AB596294B0F655 977 ----a-w- C:\Users\Ton\AppData\Local\Temp\uninstaller.exe
2013-03-18 16:37:03 98726383785FAC5730AB596294B0F655 977 ----a-w- C:\Users\Ton\AppData\Local\Temp\GenericUninstall.e xe
2013-03-18 16:37:03 8A4AF3B0695F29186AD02E2FD766FA3B 393016 ----a-w- C:\Users\Ton\AppData\Local\Temp\mgsqlite3.dll
2013-03-18 16:37:03 22B2A0890F693031C07414CAE2EA4D83 1291168 ----a-w- C:\Users\Ton\AppData\Local\Temp\hsbing_717_active. exe
2013-03-18 16:36:57 A915FB363AB5245F60BD60FB1EA89644 1736704 ----a-w- C:\Users\Ton\AppData\Local\Temp\AutoRunGUI.dll
2013-03-18 16:36:55 ED09C05EE09F7093DB5D90EF59C26494 4636944 ----a-w- C:\Users\Ton\AppData\Local\Temp\bundlesweetimsetup .exe
2013-03-18 16:35:03 11D751D299B9ABDC77BFF4156C75C4CF 38480 ----a-w- C:\Users\Ton\AppData\Local\Temp\bitool.dll
2013-03-18 14:47:57 160802E5F19E41F1461466AE1D304DA4 16744 ----a-w- C:\Users\Ton\AppData\Local\Temp\Lenovo.TVT.Custome rFeedback.Agent.exe
2013-03-16 00:15:53 CF2A3D888970BEE95052CBF9308A4608 609592 ----a-w- C:\Users\Ton\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
====== C:\Windows\SysWOW64 =====
2013-03-25 17:48:52 EC68C565EFEE1AAE6174C17F826C9384 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2013-03-25 17:48:52 C28A634CF127DA67D566B5E14D0A0170 719360 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2013-03-25 17:48:52 C225E5307D8D4982A1687F2702C37C78 158720 ----a-w- C:\Windows\SysWOW64\msls31.dll
2013-03-25 17:48:52 BA15504FA59A8DC304F1CBAEBA6252A1 1766912 ----a-w- C:\Windows\SysWOW64\wininet.dll
2013-03-25 17:48:52 B3D105459BBA576A763E8C061E49F5C5 1129984 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2013-03-25 17:48:52 AF0332E09DDBE0172237D1958A7DADB8 79872 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2013-03-25 17:48:52 A3DA36A9E63FD0F9B45781E326AC6501 39936 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2013-03-25 17:48:52 9DF7A7C74D8632CB5EBD37E3A374825E 204800 ----a-w- C:\Windows\SysWOW64\webcheck.dll
2013-03-25 17:48:52 96E0F0BED5D9EBABB899D8CA83C36A7E 523264 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2013-03-25 17:48:52 87E71F2A83681F41B796CA685818EF2D 163840 ----a-w- C:\Windows\SysWOW64\msrating.dll
2013-03-25 17:48:52 84AC80FCD61D389948B8C0E47623B79B 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-03-25 17:48:52 81C4D657D37C3A5418B54BFECE821B84 57344 ----a-w- C:\Windows\SysWOW64\pngfilt.dll
2013-03-25 17:48:52 66D8CDC28A0AADDA34133AE733934658 2046464 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2013-03-25 17:48:52 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\SysWOW64\wextract.exe
2013-03-25 17:48:52 338520304B99471BD0ED121954FE7863 82432 ----a-w- C:\Windows\SysWOW64\inseng.dll
2013-03-25 17:48:52 0402BFC25AB49E02256BC24E32829773 185344 ----a-w- C:\Windows\SysWOW64\elshyph.dll
2013-03-25 17:48:52 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\SysWOW64\iexpress.exe
2013-03-25 17:48:51 E3FA8AEAA2F40EC1BB00FEFB2C4F3AD9 14317568 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2013-03-25 17:48:51 DEFB55D4FF094673DF31FA89A8A8A2F0 226816 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2013-03-25 17:48:51 C68FBBF01E86CB6CF0B797748FBD6C1A 357888 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2013-03-25 17:48:51 B96C13B5C85AC4240FE95DE115945D59 38400 ----a-w- C:\Windows\SysWOW64\imgutil.dll
2013-03-25 17:48:51 AFE08AAD4D0D54FE2EF44739255AAA0F 2877440 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2013-03-25 17:48:51 A7E8E3A9F92D9B0D495F636A1D282883 48640 ----a-w- C:\Windows\SysWOW64\mshtmler.dll
2013-03-25 17:48:51 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\SysWOW64\ieapfltr.dat
2013-03-25 17:48:51 8A45166CD9874463AB76B552C9C2D3AD 110592 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll
2013-03-25 17:48:51 87513A002B7B0F9C259F2431DFD008DC 137216 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2013-03-25 17:48:51 828B4A41BE891A7AEC07E693422B4A3A 117248 ----a-w- C:\Windows\SysWOW64\iepeers.dll
2013-03-25 17:48:51 80B47F0F45C3EBF41C30E0BA367D25D3 125440 ----a-w- C:\Windows\SysWOW64\occache.dll
2013-03-25 17:48:51 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-03-25 17:48:51 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe
2013-03-25 17:48:51 50EE6790FBBCE920FFABAD5D747F2788 391680 ----a-w- C:\Windows\SysWOW64\ieui.dll
2013-03-25 17:48:51 4BF21D1946E8119D9C23F6F925D43F01 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2013-03-25 17:48:51 4A47CAEA8D3B82DE439A79771ECED4B1 361984 ----a-w- C:\Windows\SysWOW64\html.iec
2013-03-25 17:48:51 49C9634AD2516448A0250812B7F5325C 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll
2013-03-25 17:48:51 414A3D9AAE072CDEFE0B64C2EBEE18D2 61952 ----a-w- C:\Windows\SysWOW64\tdc.ocx
2013-03-25 17:48:51 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe
2013-03-25 17:48:51 2D7A29C35D0894481A69FA3AC45F18F0 41984 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll
2013-03-25 17:48:51 1DACF9167B6544536B6E9813EC026703 13761024 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2013-03-25 17:48:51 059F9C59DAEDE8AF2C8C55BE278A99B0 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll
2013-03-25 17:48:50 F0D4AE074D9BC0741DC6E91C741F2F8C 23040 ----a-w- C:\Windows\SysWOW64\licmgr10.dll
2013-03-25 17:48:50 E14A07B768EC49D382CABCE2F078D576 232960 ----a-w- C:\Windows\SysWOW64\url.dll
2013-03-25 17:48:50 9D9AC6CE9A9D951AC40DE91CD6F0A620 1441280 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2013-03-25 17:48:50 932571EFF79B93F94E84ADF4989A277F 69120 ----a-w- C:\Windows\SysWOW64\icardie.dll
2013-03-25 17:48:50 826D75A36336858B004774792DC4CF4F 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2013-03-25 17:48:50 404FAD93ABFBD86D1AAAB47D5DFA6505 242200 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2013-03-25 17:48:50 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\SysWOW64\ieuinit.inf
2013-03-25 17:48:50 0F44172A5B34E8F208CD0F209EDD4A73 629248 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2013-03-25 17:48:50 06A2617B25C920887D80E8A79B7E48EA 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2013-03-25 17:45:41 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\SysWOW64\UIAnimation.dll
2013-03-25 17:45:41 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-03-25 17:45:34 545F1BAAADD0BF1F4FE4586293FCA07D 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll
2013-03-25 17:45:29 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-03-25 17:45:29 B3170CCC779B682C3341873EA60CF084 1988096 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll
2013-03-25 17:45:29 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 17:45:29 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 17:45:29 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 17:45:29 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 17:45:29 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 17:45:29 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\SysWOW64\d3d10_1.dll
2013-03-25 17:45:29 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 17:45:29 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 17:45:29 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 17:45:29 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 17:45:28 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\SysWOW64\dxgi.dll
2013-03-25 17:45:28 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\SysWOW64\d3d10level9.dll
2013-03-25 17:45:27 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\SysWOW64\d3d10core.dll
2013-03-25 17:45:27 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\SysWOW64\d3d10_1core.dll
2013-03-25 17:45:27 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\SysWOW64\d3d10.dll
2013-03-25 17:45:27 7ACDFB4CC67F4993DF0E0731576309B2 1504768 ----a-w- C:\Windows\SysWOW64\d3d11.dll
2013-03-25 17:45:27 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\SysWOW64\XpsPrint.dll
2013-03-25 17:45:27 4277F5164DE9B7C665BB928B9145BEE0 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll
2013-03-25 17:45:26 9FF8F684BACF326082E5562F7C104A79 3419136 ----a-w- C:\Windows\SysWOW64\d2d1.dll
2013-03-25 17:45:26 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-03-25 17:45:26 3BCECD87AB4E6743BFB45B352AD1A529 1230336 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll
2013-03-15 21:48:17 F003B6C8BFD5F675A4DD398D2A8AEB63 95648 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-03-25 17:48:52 5051BB40FFB2BA4870C0A059CA03294F 1054720 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2013-03-25 17:48:52 3531FA12A76A32ECECD972196775DF7C 226304 ----a-w- C:\Windows\Sysnative\elshyph.dll
2013-03-25 17:48:50 FC6B4D5450871A4D5CB344AFF6C090EF 281600 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2013-03-25 17:48:50 EC08E38751854C5B8899139B7DD29FF9 197120 ----a-w- C:\Windows\Sysnative\msrating.dll
2013-03-25 17:48:50 EBA7F74ACC7FF61FF92C2072C92CEF14 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2013-03-25 17:48:50 E1055A7FAD39F1F7C44F6152044056EA 905728 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2013-03-25 17:48:50 D8DD5CBB9668EEE98915EA49C72F78FA 441856 ----a-w- C:\Windows\Sysnative\html.iec
2013-03-25 17:48:50 D6FCE28376454CDED6E9B144B6EF309A 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll
2013-03-25 17:48:50 D2685013EEF64BB5DCD252BAB5C5FAD0 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe
2013-03-25 17:48:50 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\Sysnative\ieapfltr.dat
2013-03-25 17:48:50 7EC25F7ABF7CE6B0FE93787524EE537B 452096 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2013-03-25 17:48:50 69F1D418B4C4EC23033D598E4CBC6B73 2240512 ----a-w- C:\Windows\Sysnative\wininet.dll
2013-03-25 17:48:50 62077020B3106089469922A93EF3ECE1 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll
2013-03-25 17:48:50 5B64B732BD620A873A2FD74862CC9018 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2013-03-25 17:48:50 402D797A7905DC3C6FE11E75CD5252EB 235008 ----a-w- C:\Windows\Sysnative\url.dll
2013-03-25 17:48:50 23C80181B93AA17DACB08A7474A8558B 2647552 ----a-w- C:\Windows\Sysnative\iertutil.dll
2013-03-25 17:48:50 23556D116D5FB93395B2A648EEB24251 81408 ----a-w- C:\Windows\Sysnative\icardie.dll
2013-03-25 17:48:50 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\Sysnative\ieuinit.inf
2013-03-25 17:48:50 1456EECCB5CF6B91513200F95D61706E 762368 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2013-03-25 17:48:50 112183DF91C9BAECB498E4A86ECDE598 216064 ----a-w- C:\Windows\Sysnative\msls31.dll
2013-03-25 17:48:50 0524F299A1C79CBB537AA03376C552B7 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll
2013-03-25 17:48:49 D9C10A4A0B3411146E6FC8936B079934 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe
2013-03-25 17:48:49 D8076F8A3C34064582035AE6696DC34A 27648 ----a-w- C:\Windows\Sysnative\licmgr10.dll
2013-03-25 17:48:49 D0F66CFAED5B85543216EF526D380B8B 270848 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2013-03-25 17:48:49 CF1387441D1096DBD4A23E155F1EE958 173568 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2013-03-25 17:48:49 BC0D4AFBE94D8E1F81C8926D805C3366 247296 ----a-w- C:\Windows\Sysnative\webcheck.dll
2013-03-25 17:48:49 ADE73A865A5F136E84F49BB6B1627C6E 1509376 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2013-03-25 17:48:49 9D8B838E173E6C69A735ADEF3C55D31D 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2013-03-25 17:48:49 96938C3BA9C09CEF29A7B909E3881538 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2013-03-25 17:48:49 7539E5B4A9763C22CE5CACE3E9A6246F 19221504 ----a-w- C:\Windows\Sysnative\mshtml.dll
2013-03-25 17:48:49 4E426A67C46379B75A5E671B46FC07F6 102912 ----a-w- C:\Windows\Sysnative\inseng.dll
2013-03-25 17:48:49 4CFBEC37E4FAD530E623E1541E1EA958 599552 ----a-w- C:\Windows\Sysnative\vbscript.dll
2013-03-25 17:48:49 40738329209CBE2C9B48F7E30F7C1414 144896 ----a-w- C:\Windows\Sysnative\wextract.exe
2013-03-25 17:48:49 2AAE2B8FED8390879C2369FC63F7001F 97280 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2013-03-25 17:48:48 F651D95B5043EFC20A6108A853553984 92160 ----a-w- C:\Windows\Sysnative\SetIEInstalledDate.exe
2013-03-25 17:48:48 E965529C43D25F2BDA77D705098BF777 135680 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll
2013-03-25 17:48:48 D0D4CE6C6CE87269A34A184356475D17 149504 ----a-w- C:\Windows\Sysnative\occache.dll
2013-03-25 17:48:48 C6EEC6399077E12FA902BD31F009699E 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll
2013-03-25 17:48:48 C2F21E3059AFF5E616F3E361D9FA10CD 62976 ----a-w- C:\Windows\Sysnative\pngfilt.dll
2013-03-25 17:48:48 C28A152C8F971B209C685F1B34B0CBF4 855552 ----a-w- C:\Windows\Sysnative\jscript.dll
2013-03-25 17:48:48 B3B0F58C489048D8DC1927164402EA31 3958784 ----a-w- C:\Windows\Sysnative\jscript9.dll
2013-03-25 17:48:48 A4DC3CD413A4D0E7CE805CAEC39CE724 15407616 ----a-w- C:\Windows\Sysnative\ieframe.dll
2013-03-25 17:48:48 942E110384668EEFF44751A02EDDF5E4 48640 ----a-w- C:\Windows\Sysnative\mshtmler.dll
2013-03-25 17:48:48 82D602EBBBA6D08E4691F32269FD3494 12800 ----a-w- C:\Windows\Sysnative\msfeedssync.exe
2013-03-25 17:48:48 658E8FEC79A4AB5BFDE032627B5C9667 13824 ----a-w- C:\Windows\Sysnative\mshta.exe
2013-03-25 17:48:48 63CAE56FE4215F98FEB0188748A99378 52224 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll
2013-03-25 17:48:48 5B15164486C66B76699E1CD2CD2F3A2A 51200 ----a-w- C:\Windows\Sysnative\imgutil.dll
2013-03-25 17:48:48 440104AEB9DAF8AC9842080AE59740FA 77312 ----a-w- C:\Windows\Sysnative\tdc.ocx
2013-03-25 17:48:48 364D3FB12030D214433E794A67CD4C41 526848 ----a-w- C:\Windows\Sysnative\ieui.dll
2013-03-25 17:48:48 18A94D6E9D27D169D38DAB91F6A97518 136192 ----a-w- C:\Windows\Sysnative\iepeers.dll
2013-03-25 17:45:41 E8EEA503870CB6A6DC4E09A2433DF33E 2776576 ----a-w- C:\Windows\Sysnative\msmpeg2vdec.dll
2013-03-25 17:45:41 04CB7C8FDC6D9640DD82A527208F72C4 221184 ----a-w- C:\Windows\Sysnative\UIAnimation.dll
2013-03-25 17:45:34 893E8C1E4A1263EDDB1A6922D0E32201 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll
2013-03-25 17:45:29 FB4045578F5180BDB1963AB352B78548 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-25 17:45:29 F5CEF064C7E6D95DA86B9D064A56A969 3584 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-25 17:45:29 F49E92B50CED5C9F1725D3C0329FD933 10752 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-25 17:45:29 C498EF41B93986BCBD483597573EB96D 2565120 ----a-w- C:\Windows\Sysnative\d3d10warp.dll
2013-03-25 17:45:29 AFC3DB5C6EB8CA8017DDB81D6C0AD02A 9728 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-25 17:45:29 9AE80F6A66B30E3ED8CDF858CF28B11B 194560 ----a-w- C:\Windows\Sysnative\d3d10_1.dll
2013-03-25 17:45:29 9108540E866F75C7AF2B91DD921A8091 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-25 17:45:29 9094039A00485F71C4DE64BF51F64C46 3072 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-25 17:45:29 72723D3E4781BADC62C3180C137E7B23 4096 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-25 17:45:29 6F623BD09CBB4C3F97374F12976E5EA5 522752 ----a-w- C:\Windows\Sysnative\XpsGdiConverter.dll
2013-03-25 17:45:29 64A4AB126E24FD3F58EBE64852773DB5 2560 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-25 17:45:29 0E6FBF19D9DFBB77316C23DF91F8A101 5632 ---ha-w- C:\Windows\Sysnative\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-25 17:45:28 8DFB5752FCE145A6B295093C0A8BE131 363008 ----a-w- C:\Windows\Sysnative\dxgi.dll
2013-03-25 17:45:27 FA428BDBCFAB9DC3D58F0BD2CCD50EA2 1682432 ----a-w- C:\Windows\Sysnative\XpsPrint.dll
2013-03-25 17:45:27 C4C183E6551084039EC862DA1C945E3D 1175552 ----a-w- C:\Windows\Sysnative\FntCache.dll
2013-03-25 17:45:27 B2CA1AC17E78D986B22FD6C2261CD84F 1238528 ----a-w- C:\Windows\Sysnative\d3d10.dll
2013-03-25 17:45:27 AFB73882AE41E1629A63E6713FE30FB9 296960 ----a-w- C:\Windows\Sysnative\d3d10core.dll
2013-03-25 17:45:27 63F72417CA38D8FC8F53709649B589E3 333312 ----a-w- C:\Windows\Sysnative\d3d10_1core.dll
2013-03-25 17:45:27 63BB89DED1E9104E68D33E54DE4D340D 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll
2013-03-25 17:45:27 448B02AD260EC3E1E892FCE6DFDDEEBD 1887232 ----a-w- C:\Windows\Sysnative\d3d11.dll
2013-03-25 17:45:27 3834316FE8A653227282196525E07DFE 648192 ----a-w- C:\Windows\Sysnative\d3d10level9.dll
2013-03-25 17:45:26 F1C19F0AA151B90A7416FA1D50DDB582 245248 ----a-w- C:\Windows\Sysnative\WindowsCodecsExt.dll
2013-03-25 17:45:26 BDDF242A49E7B7DC5CCEC291BCE53ACB 1424384 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll
2013-03-25 17:45:26 7E8A672B7B06A6EB11960C22E0360C59 3928064 ----a-w- C:\Windows\Sysnative\d2d1.dll
2013-03-15 21:50:17 F448ADBEC1DD571CB9FD94887E7690E9 108448 ----a-w- C:\Windows\Sysnative\WindowsAccessBridge-64.dll
====== C:\Windows\Sysnative\drivers =====
2013-03-21 14:26:59 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys
2013-03-18 16:36:03 46571ED73AE84469DCA53081D33CF3C8 283200 ----a-w- C:\Windows\Sysnative\drivers\dtsoftbus01.sys
2013-03-16 00:16:22 ABCF9C80EAACE03021BB7F450EB8993F 367200 ----a-w- C:\Windows\Sysnative\drivers\afcdp.sys
2013-03-16 00:16:18 843DAFC2CD4ED5D57FA40FD2000C6296 1340040 ----a-w- C:\Windows\Sysnative\drivers\tdrpman.sys
2013-03-16 00:16:17 31C9790525705B292F3B30F6676873CD 1093256 ----a-w- C:\Windows\Sysnative\drivers\tib_mounter.sys
2013-03-16 00:16:15 927CBC96C4635F235301411E530FB56E 228488 ----a-w- C:\Windows\Sysnative\drivers\vididr.sys
2013-03-16 00:16:12 88B4E5C396003BCF479CA4D9BE851D57 166024 ----a-w- C:\Windows\Sysnative\drivers\vidsflt.sys
2013-03-16 00:16:09 FDB6E127DF739D4911319F0C8D339CAF 340104 ----a-w- C:\Windows\Sysnative\drivers\snapman.sys
2013-03-16 00:16:09 F0CC1A9106F9FB0F704F6ED95622B43E 155272 ----a-w- C:\Windows\Sysnative\drivers\fltsrv.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-03-18 16:38:12 -------- d-----w- C:\Program Files\Updater By SweetPacks
======= C:\Program Files (x86) =====
2013-03-22 23:27:12 -------- d-----w- C:\Program Files (x86)\MeeSoft
2013-03-18 16:37:34 -------- d-----w- C:\Program Files (x86)\Maxis
2013-03-18 16:35:58 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2013-03-16 00:15:57 -------- d-----w- C:\Program Files (x86)\Common Files\Acronis
2013-03-16 00:15:57 -------- d-----w- C:\Program Files (x86)\Acronis
2013-03-16 00:01:26 -------- d-----w- C:\Program Files (x86)\Runtime Software
2013-02-28 13:57:34 -------- d-----w- C:\Program Files (x86)\Nortel
2013-02-28 13:50:12 -------- d-----w- C:\Program Files (x86)\MSECache
======= C: =====
2013-03-29 12:53:05 8589CF927950036426B0A9D64E265E81 1352 ----a-w- C:\AdwCleaner[S2].txt
2013-03-29 12:52:58 7783D1ED4198701A72315CE3C23DB002 1288 ----a-w- C:\AdwCleaner[R2].txt
2013-03-29 12:52:21 A5B767A1A12784366C381E38F788ECB8 5774 ----a-w- C:\AdwCleaner[S1].txt
2013-03-29 12:52:04 725D0207776FF01F233EE1381E3046D0 5985 ----a-w- C:\AdwCleaner[R1].txt
====== C:\Users\Ton\AppData\Roaming ======
2013-03-25 17:56:20 -------- d-----w- C:\users\Ton\AppData\Roaming\.technic
2013-03-18 16:38:10 -------- d-----w- C:\users\Ton\AppData\Local\Programs
2013-03-18 16:35:59 -------- d-----w- C:\users\Ton\AppData\Roaming\DAEMON Tools Lite
2013-03-16 00:17:17 -------- d-----w- C:\users\Ton\AppData\Roaming\Acronis
2013-03-13 02:28:34 -------- d-----w- C:\users\Ton\AppData\Locallow\Temp
2013-02-28 13:57:35 -------- d-----w- C:\users\Ton\AppData\Local\Nortel
====== C:\Users\Ton ======
2013-03-18 16:35:03 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2013-03-16 00:16:07 -------- d-----w- C:\ProgramData\Acronis
2013-03-15 23:59:18 -------- d-----w- C:\ProgramData\Macrium
2013-02-28 13:57:34 -------- d-----w- C:\ProgramData\Nortel


====== C: exe-files ==
2013-03-29 13:13:21 6BA917116ED7AF532071B78010996ED4 322552 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00003223\up datus.15353096_RUNASUSER.exe
2013-03-29 12:51:13 EC4961D7E0F6ACEF4E8446E062048D88 609993 ----a-w- C:\Users\Ton\Desktop\adwcleaner.exe
2013-03-28 21:43:17 66F698F99AF0BCB1128B94D6A11650F5 377856 ----a-w- C:\Users\Ton\Downloads\x9jznhoy.exe
2013-03-28 21:25:36 178A34E5554DCE485E1262DDF027960C 2237968 ----a-w- C:\Users\Ton\Downloads\tdsskiller.exe
2013-03-28 21:18:47 0FB6D382FA5FBF72D05FC2A4503B7DF2 10156344 ----a-w- C:\Users\Ton\Downloads\mbam-setup-1.70.0.1100.exe
2013-03-28 14:45:25 10CAFF66DD735B3AC20EDD031776915A 256936 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
2013-03-28 14:45:23 CCAA9977B74EB590547764C475448579 102400 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\bin\vtex.exe
2013-03-28 14:27:50 CE4322CFFED1AB3D09A58775E052ABBE 8389632 ----a-w- C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\bin\studiomdl.exe
2013-03-27 00:04:49 668D2125F4F4B24DA933466FF9F66638 321976 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00003191\up datus.15329366_RUNASUSER.exe
2013-03-25 23:49:32 A996A3FCBD1DD86F908A6304120B3FE6 7548744 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgmfapx.exe
2013-03-25 23:49:32 9F96249A7823C7C2B9E0B6D46A77CAE6 15920 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrdtestx.exe
2013-03-25 23:49:32 7DDB04EFCA15BEE73286D67270894303 44080 ----a-w- C:\ProgramData\MFAData\SelfUpd\avguirux.exe
2013-03-25 23:49:31 69D812B395637F8FCFEA7C7CC1660AE1 628272 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgntdumpx.exe
2013-03-25 23:49:24 A207399E698B1AE761300218A5C6C997 189560 ----a-w- C:\ProgramData\MFAData\SelfUpd\fixcfg.exe
2013-03-25 23:49:24 6CDB170214F110345D3DE78D0C189963 408344 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgwsc.exe
2013-03-25 23:49:24 6B72E1E329C4E98C6B6FDD2D265E3BA3 196664 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgwdsvc.exe
2013-03-25 23:49:22 BC24870D220DD11CB6E2BD4189F33B43 433272 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgsrmax.exe
2013-03-25 23:49:22 9DADF1A809ECEC86F04BDE35190D59FE 3147384 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgui.exe
2013-03-25 23:49:22 4D1BE3536D17A1B3862BC998D1834A26 510072 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgsrmaa.exe
2013-03-25 23:49:21 DC83C9F4130F447EAD187879708C8035 952952 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrsa.exe
2013-03-25 23:49:21 B809B20913A473AA204F85FB5BB33DDB 410744 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgscana.exe
2013-03-25 23:49:21 A91E381471BEAD831335D253377D94E3 349304 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgscanx.exe
2013-03-25 23:49:21 88898DBB395E15F084C57533615C4BA6 16504 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgrdtesta.exe
2013-03-25 23:49:20 FF0602E28D69B977F889D435F902545E 952440 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgemca.exe
2013-03-25 23:49:20 B2247A6EC9B84C9D50A6571EF7CD6221 825976 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgdumpa.exe
2013-03-25 23:49:20 AFA4960B02E3A9A972B9D7FC03AFCE29 622200 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgdumpx.exe
2013-03-25 23:49:20 4AFC14AFA58878FAA1D249E7E90EA54B 5814904 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgidsagent.exe
2013-03-25 23:49:20 2FC6C98A23864B2E50E53B4848939EAF 1354360 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgnsa.exe
2013-03-25 23:49:20 16ED62929808C759270D9720BDAE6135 796792 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgntdumpa.exe
2013-03-25 23:49:19 DE35D659575C700BA4E8E912671EA4BA 2763896 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgdiagex.exe
2013-03-25 23:49:19 DB34611AFB2647628D215BB215095181 649848 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgcmgr.exe
2013-03-25 23:49:19 CF433BC29D4089D264F24A1ED371941D 531576 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgcsrva.exe
2013-03-25 23:49:19 BB6F4582FB8D7A2B934E50DC5FBE7ABB 4658296 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgcrema.exe
2013-03-25 23:49:19 99997FA9056ACB38AA388BDA134CEF6E 440440 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgcsrvx.exe
2013-03-25 23:49:18 8FE9D01FA51260A9B5373D46E86D4F9D 329848 ----a-w- C:\ProgramData\MFAData\SelfUpd\avgcfgex.exe
2013-03-25 21:19:52 9A2D6E8FBB006B662A3ABC3330741257 20066008 ----a-w- C:\Users\Ton\AppData\Roaming\Spotify\Spotify_new.e xe
2013-03-25 17:48:52 84AC80FCD61D389948B8C0E47623B79B 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-03-25 17:48:52 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\SysWOW64\wextract.exe
2013-03-25 17:48:52 5051BB40FFB2BA4870C0A059CA03294F 1054720 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2013-03-25 17:48:52 2859EBC065D2E1CCC94161CE28BAC085 770560 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-03-25 17:48:52 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\SysWOW64\iexpress.exe
2013-03-25 17:48:51 87513A002B7B0F9C259F2431DFD008DC 137216 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2013-03-25 17:48:51 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-03-25 17:48:51 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe
2013-03-25 17:48:51 5397E32E882C0148CEC13D9EACFB7157 222208 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2013-03-25 17:48:51 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe
2013-03-25 17:48:51 3090B888E263E56744F8BFEF3A36D67D 467456 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2013-03-25 17:48:51 15CCEAC53648FF7C17AE98923BCD3D75 24576 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2013-03-25 17:48:50 D2685013EEF64BB5DCD252BAB5C5FAD0 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-03-25 17:48:50 681B380492ACB571ED6CCC1F37F53343 775184 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-03-25 17:48:50 5B64B732BD620A873A2FD74862CC9018 51712 ----a-w- C:\Windows\System32\ie4uinit.exe
2013-03-25 17:48:50 05277EDA27E5A55CA22AC37DAC47DD23 223744 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2013-03-25 17:48:49 D9C10A4A0B3411146E6FC8936B079934 167424 ----a-w- C:\Windows\System32\iexpress.exe
2013-03-25 17:48:49 CF1387441D1096DBD4A23E155F1EE958 173568 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-03-25 17:48:49 40738329209CBE2C9B48F7E30F7C1414 144896 ----a-w- C:\Windows\System32\wextract.exe
2013-03-25 17:48:48 F651D95B5043EFC20A6108A853553984 92160 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe
2013-03-25 17:48:48 82D602EBBBA6D08E4691F32269FD3494 12800 ----a-w- C:\Windows\System32\msfeedssync.exe
2013-03-25 17:48:48 658E8FEC79A4AB5BFDE032627B5C9667 13824 ----a-w- C:\Windows\System32\mshta.exe
2013-03-25 17:48:48 4BA4770D890B320DAB575B07C7DAF59D 481280 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2013-03-25 17:48:47 D57BCCD989555B0D6E47AE0F364DD4D3 327680 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe
2013-03-25 17:27:13 18DF9D4D0934D1C2AC80F5FF3BFCE4E5 321840 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00003104\up datus.15296554_RUNASUSER.exe
2013-03-23 16:34:00 1D893852267937896454B5D0265D70D9 5193336 ----a-w- C:\Program Files (x86)\AVG\AVG2013\avgcrema.exe
2013-03-22 23:27:12 D8F5DB3A2827F1DCDFA352E0F51E9AC7 46080 ----a-w- C:\Program Files (x86)\MeeSoft\DiagramDesigner\Uninstall.exe
2013-03-22 23:27:12 50DF35AB5E55DDA059955AFD05F85CEC 577536 ----a-w- C:\Program Files (x86)\MeeSoft\DiagramDesigner\DiagramDesigner.exe
2013-03-22 23:25:58 E8CED247C8CE145B7C174205B6D83357 1393105 ----a-w- C:\Users\Ton\Downloads\DiagramDesignerSetup.exe
=== C: other files ==
2013-03-28 21:48:33 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Ton\Downloads\dds.com
2013-03-26 00:00:50 A024E6A14F2DB7B937B54D19F7297E1F 1394398 ----a-w- C:\Program Files (x86)\AVG\AVG2013\banners\banners.zip
2013-03-25 17:57:45 A640FC6E00E512295C9FBB5ED7BC9777 508955 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ue-mps-v0.3.2.199.zip
2013-03-25 17:57:44 B45BDAC416D6085B905537081B9A8EEF 74991 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\z-tekkitlite-configs-v0.6.0.zip
2013-03-25 17:57:44 6AB57A2B7A560A8D2B848D78B0D41C0E 1053475 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\DimensionalDoors-1.4.6R1.2.1RC1-12.zip
2013-03-25 17:57:42 AA3C52D262807411FE6401700AC8EDA9 1040520 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\dimensional-doors-v1.2.1.12.zip
2013-03-25 17:57:42 6F5861219C3DEFCA5E0B26D2A328F50E 906925 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\StevesCarts2.0.0.a61.zip
2013-03-25 17:57:41 CC9664653D4A797F66715CF03E96B3BE 836425 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\stevescarts-v2.0.0.a61.zip
2013-03-25 17:57:41 B44BB7393A08F46D8D09618446B6110B 577661 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\appeng-rv9-f.zip
2013-03-25 17:57:40 E40974406D4A9488E0B81744E022346B 524945 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\applied-energistics-v9.f.zip
2013-03-25 17:57:40 D63FB24C18990D9AECDD77B800AB39E1 31239 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\wrcbe-redpower-v1.3.2.8.zip
2013-03-25 17:57:40 B5DAEA424BBB65FF55FAB2BC6215C691 2846 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\flatbedrock-v1.0.3.zip
2013-03-25 17:57:40 72516F73816121A1BC0B0D7F7FB43EFA 3365 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\FlatBedrock_1.0.3.zip
2013-03-25 17:57:39 44C5BFBBA9CBEA90FD7D199E1956EF1F 237800 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\wrcbe-addons-v1.3.2.8.zip
2013-03-25 17:57:38 E769B7BA34A26E4616C91CB2E68E3085 115622 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\wrcbe-v1.3.2.8.zip
2013-03-25 17:57:38 60BF92C112FF43C45930794C00858D1D 255015 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\tubestuff-v52.3.2.zip
2013-03-25 17:57:38 1D16D660947254B33864A2CFF173D287 52362 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\treecapitator-v1.4.6.r07.zip
2013-03-25 17:57:37 1CBDB869DE524F2F38652A1AD079EADE 727045 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\ThermalExpansion-2.2.2.2.zip
2013-03-25 17:57:35 59ADEFC32503E0E55291199C43EE817C 657110 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\thermalexpansion-v2.2.2.2.zip
2013-03-25 17:57:35 2462AECC02DF6D44780BC62548645205 243784 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\[1.4.6]ReiMinimap_v3.2_06.zip
2013-03-25 17:57:34 F33FFAB221579545EC5A6FA5C7B179E4 590750 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\RedPowerMechanical-2.0pr6.zip
2013-03-25 17:57:34 DB77437AE86AC3B0CCF7AED763994AF6 200964 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\RedPowerDigital-2.0pr6.zip
2013-03-25 17:57:34 95879EDB24892EE611EA6FCE8C2A2389 230898 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\reisminimap-v3.2_06.zip
2013-03-25 17:57:34 9445DB5EF4A2014A12B2EF26E8120A46 93628 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\RedPowerCompat-2.0pr6.zip
2013-03-25 17:57:34 43143756A7636620DA4429608A155650 337974 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\RedPowerCore-2.0pr6.zip
2013-03-25 17:57:28 560B5BE916539F1090B51BB4B92DE196 1122627 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\redpower-v2.0.6.zip
2013-03-25 17:57:28 3A26C7688DB4AC63170F9CC0A19FDC14 25889 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\powercrystalscore-v1.0.3.34.zip
2013-03-25 17:57:27 71537A2608743F78838CA755A0E11C58 176710 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\OpenCCSensors-0.1.4b.zip
2013-03-25 17:57:27 60C7E16727ADB1D093A996D5C85EB521 68835 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\powerconverters-v2.2.2.29.zip
2013-03-25 17:57:26 F24B0D257B54F2C656D548E0EE867DFF 139887 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\openccsensors-v0.1.4b.zip
2013-03-25 17:57:26 9D54941E6A6419748DFFD5C3069AB216 96249 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\OmniTools-3.0.4.zip
2013-03-25 17:57:25 F6AFA3FB1CF9FD14EBA427A809C935D7 27554 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\netherores-v2.0.6.32.zip
2013-03-25 17:57:25 DA3F424602B277CE32A88AD820A83B30 110419 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\nei-plugins-v1.0.4.5.zip
2013-03-25 17:57:25 5B71B235FB236CBBE2591F230663489B 87063 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\omnitools-v3.0.4.zip
2013-03-25 17:57:25 19BF02F4589FAD4B2B123EEF204D92B0 28106 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\nei-redpower-v1.4.3.zip
2013-03-25 17:57:24 A60BD9FE7EB5D915D42F7BCD454C5232 322626 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\nei-v1.4.7.0.zip
2013-03-25 17:57:24 04F25875D3A04F903D7EE2D9F2CA013D 1481511 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\mystcraft-uni-1.4.7-0.10.1.00.zip
2013-03-25 17:57:23 EF03368D9E9DD77ED4F8C1472C68E7B7 616142 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\mfr-v2.3.2.287.zip
2013-03-25 17:57:23 DB5EE87AA5466FEBD46FA56BA2AF9AC4 98599 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\ironchest-universal-1.4.7-5.1.0.260.zip
2013-03-25 17:57:23 C9E4D9AE3F2FFF8A267A1A5214B7AC19 1409366 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\mystcraft-v0.10.1.00.zip
2013-03-25 17:57:23 11813228255894BCFDE0CAC96459F0BD 87965 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ironchests-v5.1.0.260.zip
2013-03-25 17:57:22 D33C9EF0037AE88C511DA2010B428E70 180053 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\immibiscore-v52.4.5.zip
2013-03-25 17:57:22 C6EF881D57C7C1FF66641FE122903280 359927 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\IC2NuclearControl-1.4.6.zip
2013-03-25 17:57:22 4C84540F16FFE1CD5A7715C66A60E0E0 135468 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\inventorytweaks-v1.50.zip
2013-03-25 17:57:22 4BE7575C1B096858E5F1CF8727319E06 339287 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-nuclearcontrol-v1.4.6.zip
2013-03-25 17:57:22 364412D6013E45124B3A65FBDF93BD4F 140901 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\InvTweaks-1.50-1.4.7.zip
2013-03-25 17:57:21 F34FEEA18405B0A4B0C9BA7D748EF522 463853 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-advancedrepulsionsystems-v52.0.6.zip
2013-03-25 17:57:21 8BB5CEA54C239A6EE14DC8FBA8864DBB 63738 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\compactsolars-universal-1.4.7-4.0.3.29.zip
2013-03-25 17:57:21 418DF11EE0AD1047F07A827B7C731288 106022 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-advancedpowermanagement-v1.1.55.zip
2013-03-25 17:57:21 043088B76476582B1004DBB110B912B8 55897 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-compactsolars-v4.0.3.29.zip
2013-03-25 17:57:20 FD9D03888521A1D4A3F30C70999DD290 140913 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\AdvancedMachines_1.4.6.zip
2013-03-25 17:57:20 237E7F18FA0B464418F45B48A9627801 126859 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-advancedmachines-v4.7.zip
2013-03-25 17:57:18 9230E1D967FAE5906BEE8689626AD956 2821216 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ic2-v1.115.231.zip
2013-03-25 17:57:17 E766D0D95634D553228A0E80DA75CF84 519099 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\factorization-v0.7.10.zip
2013-03-25 17:57:17 60A6703DAE1EB32D3B5E39E48A2CC96A 433778 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\ee3-vpre1f.zip
2013-03-25 17:57:17 278D524D0EF77AEB95E182B2F84CE42D 96281 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\enderstorage-v1.4.1.2.zip
2013-03-25 17:57:17 14F602937D05DA278589729982513A3B 95213 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\dimanchor-v52.1.9.zip
2013-03-25 17:57:16 A9BF007BC1E75BEAC81A3783D30A2234 71269 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\CoFHCore-1.4.7.3.zip
2013-03-25 17:57:16 3226042DC83E5003968AE7480397DF02 109908 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\customport-v2.0.zip
2013-03-25 17:57:15 B54D572BD73B0A444C6C83043B52F9D4 850623 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\ComputerCraft1.5.zip
2013-03-25 17:57:15 90CAC88003DAB28B14826B8A86DE1D87 89249 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\chickenchunks-v1.3.1.0.zip
2013-03-25 17:57:15 5766B1E19AEBE08D974E608812F4D29C 65640 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\cofhcore-v1.4.7.3.zip
2013-03-25 17:57:15 1BDF716F35847E2DE6780C7C97C8A3FD 184987 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\codechickencore-v0.7.3.zip
2013-03-25 17:57:15 19EF35A3813676F1A988D06FDDCAE138 760492 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\computercraft-v1.5.zip
2013-03-25 17:57:13 5ABDC436EE20AF888CBBD2A060B0880A 87653 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\buildcraft-additionalpipes-v2.1.3.u42.zip
2013-03-25 17:57:12 F36A3455B7F6A4C74A8BB4D0FD7A7EC0 22173 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\[1.4.7]bspkrsCorev1.01.zip
2013-03-25 17:57:12 E1CAE7E18E8F9B6AD46F5D13DD9CC755 189036 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\balkonsweaponmod-v1.10_1.4.6.zip
2013-03-25 17:57:12 DAB9E63D97359C58C47786B4420AE7E2 800898 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\buildcraft-v3.4.3.zip
2013-03-25 17:57:12 A0DAA6B83B61EB6A41CDDB9FFCF65574 200487 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\m ods\Weaponmod.zip
2013-03-25 17:57:12 9E7647CDC9BDF9D7C533571C07A89828 20615 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\bspkrscore-v1.01.zip
2013-03-25 17:57:10 0176DB1259E13EAFE20AAB9C5F184C5B 1702920 ----a-w- C:\Users\Ton\AppData\Roaming\.technic\tekkitlite\t emp\basemods-tekkitlite-v0.6.0.zip
2013-03-22 20:42:17 F3F9526A2F723448CB3123344187D73E 14880 ----a-w- C:\Users\Ton\Downloads\OU-Global-Header.zip


==== Startup Registry Enabled ======================


[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"


[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"


[HKEY_USERS\S-1-5-21-4221071459-3843519137-964184494-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="C:\Users\Ton\AppData\Roaming\Spotify\Data\SpotifyW ebHelper.exe"
"CUCore Agent"="C:\Users\Ton\AppData\Local\Radvision\Conference Client\7.15.001.46\ConfAgent.exe /minimize"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN193444ZY05PJ:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"
"NIRegistrationWizard"="C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\Registra tionWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1044"
"Akamai NetSession Interface"="C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"


[HKEY_USERS\S-1-5-21-4221071459-3843519137-964184494-1016\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"


[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOn ce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"


[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOn ce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"


[HKEY_USERS\S-1-5-21-4221071459-3843519137-964184494-1016\Software\Microsoft\Windows\CurrentVersion\Run Once]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
"Lenovoautoqdrive"="C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorun reg.exe /DRIVE=Q"
"Lenovo.ShowBand"="C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe /show"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"RotateImage"="C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"Lenovo Registration"="C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot"
"S7UB Start"="C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe -StartDB"
"WinCC flexible Smart Start"="C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe /startup"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.ex e -launchedbylogin"
"WRSVC"="C:\Program Files (x86)\Webroot\WRSA.exe -ul"
"SiemensAutomationFileStorage"="C:\Program Files (x86)\Siemens\Automation\Portal V11\Bin\Siemens.Automation.ObjectFrame.FileStorage .Server.exe preload"
"NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
"NI Update Service"="C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe -startupTask"
"MobileAccess"="C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst"
"ADSK DLMSession"="C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe"
"NVC"="C:\Program Files (x86)\Nortel\Nortel VPN Client\Nvc.exe -autostart"
"TrueImageMonitor.exe"="C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"AcronisTibMounterMonitor"="C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"
"X-Rite Legacy Device"="C:\Program Files (x86)\X-Rite\Devices\Lib\xritelegacyd.exe"


[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run]
"Spotify Web Helper"="C:\Users\Ton\AppData\Roaming\Spotify\Data\SpotifyW ebHelper.exe"
"CUCore Agent"="C:\Users\Ton\AppData\Local\Radvision\Conference Client\7.15.001.46\ConfAgent.exe /minimize"
"HP Deskjet 3050A J611 series (NET)"="C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe -deviceID CN193444ZY05PJ:NW -scfn HP Deskjet 3050A J611 series (NET) -AutoStart 1"
"NIRegistrationWizard"="C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\Registra tionWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1044"
"Akamai NetSession Interface"="C:\Users\Ton\AppData\Local\Akamai\netsession_win.e xe"
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"


==== Startup Registry Enabled x64 ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"TpShocks"="TpShocks.exe"
"ForteConfig"="C:\Program Files\Conexant\ForteConfig\fmapp.exe"
"LENOVO.TPKNRRES"="C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe"
"ALCKRESI.EXE"="C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE"
"AcWin7Hlpr"="C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.e xe"
"SonicWALLNetExtender"="C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEGui.exe -hideGUI -clearReboot"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t"
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Acronis Scheduler2 Service"="C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"


==== Startup Folders ======================


2012-10-03 19:16:04 1204 ----a-w- C:\users\Ton\AppData\Roaming\Microsoft\Windows\Sta rt Menu\Programs\Startup\J.lnk
2012-06-14 10:06:13 1220 ------w- C:\users\Ton\AppData\Roaming\Microsoft\Windows\Sta rt Menu\Programs\Startup\Work.lnk
2012-05-06 12:13:21 890 ------w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
2012-05-06 12:28:00 1414 ------w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Gamma.lnk
2012-05-06 12:28:00 1328 ------w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Tray.lnk
2013-01-15 22:06:12 1234 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk
2012-09-30 21:51:44 2585 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk
2012-10-31 16:47:00 2653 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk


==== Task Scheduler Jobs ======================


C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02.01.2013 05:46]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02.01.2013 05:46]


==== Firefox Extensions ======================


ProfilePath: C:\Users\Ton\AppData\Roaming\Mozilla\Firefox\Profi les\rsc8g9hq.default
- Firebug - %ProfilePath%\extensions\firebug@software.joehewit t.com.xpi
- Greasemonkey - %ProfilePath%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
- User Agent Switcher - %ProfilePath%\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi


AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}


==== Firefox Plugins ======================


Profilepath: C:\Users\Ton\AppData\Roaming\Mozilla\Firefox\Profi les\rsc8g9hq.default
D4BD9F86123C87ECA570418B69326F99 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.170.2
0D335F1DDDDEF070342429E5B376469E - C:\Users\Ton\AppData\Local\Radvision\Installer\1.5 .0.1\npClientInstMgr.dll - Conference Client Dispatcher
87132527E2256CF6683A18C4EB34DD3B - C:\Windows\system32\Wat\npWatWeb.dll - Windows Activation Technologies
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System




==== Set IE to Default ======================


Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.com/"
"Default_Page_URL"="http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU


New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://google.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"


==== All HKCU SearchScopes ======================


HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"


==== Reset Google Chrome ======================


C:\users\Ton\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\users\Ton\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully


==== Empty IE Cache ======================


C:\Windows\system32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ton\AppData\Local\Microsoft\Windows\Tempo rary Internet Files\Content.IE5 emptied successfully
C:\Users\Ton\AppData\Local\Microsoft\Windows\Tempo rary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Ton\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully


==== Empty FireFox Cache ======================


C:\users\Ton\AppData\Local\Mozilla\Firefox\Profile s\rsc8g9hq.default\Cache emptied successfully


==== Empty Chrome Cache ======================


C:\users\Ton\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully


==== Empty All Flash Cache ======================


Flash Cache Emptied Successfully


==== Empty All Java Cache ======================


Java Cache cleared successfully


After Reboot


==== Empty Temp Folders ======================


C:\Windows\Temp successfully emptied
C:\Users\Ton\AppData\Local\Temp successfully emptied


==== Empty Recycle Bin ======================


C:\$RECYCLE.BIN successfully emptied
Rosty
30 March 2013, 07:48
Hoe werkt alles nu?
boneless
30 March 2013, 16:42
Ziet er een stuk beter uit. In ieder geval wordt geen nieuwe pagina geopend als ik een van mijn browsers start.

Ik zie echter in mijn IE nog steeds een addon:

http://i195.photobucket.com/albums/z68/tonverra/Capture_zps3f3d12e2.jpg

Ik gebruik eigenlijk nooit IE, maar het feit dat het daar nog staat lijkt me niet erg goed?

Nogmaals bedankt!
Rosty
30 March 2013, 17:02
Kun je die daar niet verwijderen dan?
boneless
31 March 2013, 18:56
Nee, de "verwijderen" knop is grijs.. Zie op internet dat ik dat via de reg. kan verwijderen?
Rosty
31 March 2013, 20:38
Probeer eens met deze Uninstaller (http://www.minatica.be/content/491-Revo-Uninstaller)