Hoe verwijder ik 22find?

Romano1991 · 26 februari 2013

Hallo,

ik heb geen idee wat ik heb gedaan, maar ik heb sinds kort een startpagina en deze kan ik niet wijzigen of verwijderen. Nu heb ik al een beetje onderzoek gedaan en zag ik dat het malware was. Ik heb Hitman al geinstallerd en laten lopen, die heet het in quarantaine geplaatst, maar de site komt nog steeds tevoorschijn als ik chrome opstart.

Kan iemand mij helpen hoe ik dit wegkrijg?

MVG

Romano

kape · 26 februari 2013

1. Download HijackThis. (klik er op)

Klik op HijackThis.msi en de download start automatisch na 5 seconden.

Bestand HijackThis.msi opslaan. Daarna kiezen voor "uitvoeren".

Hijackthis wordt nu op je PC geïnstalleerd, een snelkoppeling wordt op je bureaublad geplaatst.

Als je geen netwerkverbinding meer hebt, kan je de download doen met een andere pc en het bestand met een usb stick overbrengen

Als je enkel nog in veilige modus kan werken, moet je de executable (HijackThis.exe) downloaden.

Sla deze op in een nieuwe map op de C schijf (bvb C:\\hijackthis) en start hijackthis dan vanaf deze map.

De logjes kan je dan ook in die map terugvinden.

2. Klik op de snelkoppeling om HijackThis te starten. (lees eerst de rode tekst hieronder!)

Klik ofwel op "Do a systemscan and save a logfile", ofwel eerst op "Scan" en dan op "Savelog".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd. Plak nu het HJT logje in je bericht door CTRL en V-toets.

Krijg je een melding ""For some reason your system denied writing to the Host file ....", klik dan gewoon door op de OK-toets.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\\Program Files\\Trend Micro\\HiJackThis of C:\\Program Files (x86)\\Trend Micro\\HiJackThis. (Bekijk hier de afbeelding ---> Klik hier)

3. Na het plaatsen van je logje wordt dit door een expert nagekeken en hij begeleidt jou verder door het ganse proces.

Tip!

Wil je in woord en beeld weten hoe je een logje met HijackThis maakt en plaatst op het forum, klik dan HIER.

Romano1991 · 26 februari 2013

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 19:07:01, on 26-2-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16438)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe

C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe

D:\Program Files\Adobe\Acrobat x Pro\Acrobat\acrotray.exe

C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

D:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe

C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe

C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe

C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\User\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll (file missing)

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL

O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O4 - HKLM\..\Run: [sVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL

O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [KeNotify] C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe

O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun

O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "D:\Program Files\Adobe\Acrobat x Pro\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "D:\Program Files\Adobe\Acrobat x Pro\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [CheckRun22find_uninstaller] "C:\Users\User\AppData\Roaming\CheckRun22find.exe" -c=http://www.22find.com/?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702773

O4 - HKLM\..\Run: [indexSearch] "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"

O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"

O4 - HKLM\..\Run: [PPort12reminder] "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"

O4 - HKLM\..\Run: [PDFHook] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe

O4 - HKLM\..\Run: [PDF5 Registry Controller] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe

O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun

O4 - HKLM\..\Run: [brStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN

O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background

O4 - HKCU\..\Run: [HP Officejet 6700 (NET)] "C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe" -deviceID "CN21J1H12P05RQ:NW" -scfn "HP Officejet 6700 (NET)" -AutoStart 1

O4 - HKCU\..\Run: [iSUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')

O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')

O4 - Startup: Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk = ?

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Openen in PDF Viewer Plus - res://C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm

O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll

O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll

O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL

O20 - AppInit_DLLs: c:\progra~3\browse~3\261095~1.52\{c16c1~1\browse~1.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe

O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe

O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)

O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe

O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 20034 bytes

juisterr · 26 februari 2013

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O4 - HKLM\..\Run: [CheckRun22find_uninstaller] "C:\Users\User\AppData\Roaming\CheckRun22find.exe" -c=http://www.22find.com/?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK507 6GSXN_12JXT04BTXX12JXT04BT&ts=1361702773

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\\Program Files\\Trend Micro\\HiJackThis of C:\\Program Files (x86)\\Trend Micro\\HiJackThis.

- - - Updated - - -

Hallo, we gaan de volgende tool inzetten. zoek.exe ®by smeenk

Download zoek.exe naar het bureaublad.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier of hier) kan je lezen hoe je dat doet.
Dubbelklik op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
```
startupall;
filesrcm;
shortcutfix;
emptyclsid;
```
Vink nu de onderstaande opties aan.
- Standaard Search
- Auto Clean
- Empty All Temp
- IE Defaults
[*] Klik nu op de knop "Run script".

[*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

[*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

[*] Post nu de inhoud van het geopende logje in het volgende bericht.

Romano1991 · 27 februari 2013

Zoek.exe Version 4.0.0.1 Updated 27-02-2013

Tool run by User on wo 27-02-2013 at 9:04:10,57.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{27B4851A-3207-45A2-B947-BE8AFE6163AB} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{27B4851A-3207-45A2-B947-BE8AFE6163AB} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF059E31-CC5A-4E2E-BF3B-96E929D65503} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000F18F2-09EB-4A59-82B2-5AE4184C39C3} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe

C:\Windows\SysWOW64\rpcnet.exe

C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe

C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe

D:\Program Files\Adobe\Acrobat x Pro\Acrobat\acrotray.exe

C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

D:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe

C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe

C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe

C:\Program Files (x86)\Browny02\BrYNSvc.exe

C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe

C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

D:\Program Files\iTunes\iTunes.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe

C:\Windows\SysWOW64\DllHost.exe

C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

C:\Users\User\Desktop\zoek.exe

C:\Windows\SysWOW64\cmd.exe

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"bProtector Start Page"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"bProtectorDefaultScope"=-

==== Deleting Files \ Folders ======================

"C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\22find.lnk" deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.settings" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\00" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\01" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\02" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\03" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\10" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\11" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\12" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\13" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\20" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\21" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\22" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings\23" not deleted

"C:\Program Files (x86)\Common Files\337" deleted

"C:\Program Files (x86)\Desk 365" deleted

"C:\Users\User\AppData\Roaming\Babylon" deleted

"C:\ProgramData\Browser Manager" deleted

"C:\ProgramData\BrowserProtect" not deleted

"C:\ProgramData\CloudSoft" deleted

"C:\ProgramData\Browse2save" deleted

"C:\ProgramData\InstallMate" deleted

"C:\ProgramData\Babylon" deleted

"C:\Users\User\AppData\Local\Wajam" deleted

"C:\Users\User\AppData\LocalLow\searchresultstb" deleted

"C:\Users\User\AppData\LocalLow\DataMngr" deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" not deleted

"C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\traking_settings" not deleted

==== System Specs ======================

Windows: Windows XP Home Edition Service Pack 2 (Build 2600)

Internet Explorer: 9.10.9200.16438

Memory (RAM): 3955 MB

CPU Info: Intel® Core i5 CPU M 430 @ 2.27GHz

CPU Speed: 2259,0 MHz

Sound Card: Luidsprekers (Realtek High Defi |

Display Adapters: ATI Mobility Radeon HD 5650 | ATI Mobility Radeon HD 5650 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver

Monitors: 1x; Algemeen PnP-beeldscherm |

Screen Resolution: 1600 X 900 - 32 bit

Network: Network Present

Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Realtek PCIe FE Family Controller | Atheros AR9285 Wireless Network Adapter

CD / DVD Drives: 2x (E: | F: | ) E: HL-DT-STDVDRAM GT30N | F: DTSOFT BDROM

Ports: COM3 | COM4 LPT Port NOT Present.

Mouse: 5 Button Wheel Mouse Present

Hard Disks: C: 232,4GB | D: 232,9GB

Hard Disks - Free: C: 158,2GB | D: 55,3GB

Manufacturer *: TOSHIBA

BIOS Info: AT/AT COMPATIBLE | 05/24/11 | TOSCPL - 74

Time Zone: West-Europa (standaardtijd)

Motherboard *: TOSHIBA NALAA

Sun Java version: 1.6.0_17

Country: Nederland

Language: NLD

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-02-24 15:31:09 AB94EDDD08F4EFF2A7D50563F6FAD791 93 ----a-w- C:\Windows\brpcfx.ini

2013-02-24 15:31:09 A5828E3F9E8C0B249C5FC1CCD389D144 260 ----a-w- C:\Windows\Brpfx04a.ini

2013-02-24 15:29:26 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\brdfxspd.dat

2013-02-24 15:29:26 7D6E128FDC85D9EC2130ECAEC7FB7C76 66 ----a-w- C:\Windows\Brfaxrx.ini

====== C:\Users\User\AppData\Local\Temp ====

2013-02-24 16:33:07 E563A65BAEA25CEF8F49FB0228CB8555 22916830 ----a-w- C:\Users\User\AppData\Local\Temp\vlc-2.0.5-win32.exe

2013-02-18 08:41:20 57BC8F4F1201610668773875A4484C1E 392784 ----a-w- C:\Users\User\AppData\Local\Temp\uninst1.exe

2013-02-18 08:41:09 57BC8F4F1201610668773875A4484C1E 392784 ----a-w- C:\Users\User\AppData\Local\Temp\GUninstaller.exe

====== C:\Windows\SysWOW64 =====

2013-02-24 15:29:40 2C0DF74811D6CCC6591D09718A0A6A8F 73728 ------w- C:\Windows\SysWOW64\BRCrypt.dll

2013-02-24 15:29:26 9CC228C7AFD7E535819662D2F952C482 180224 ------w- C:\Windows\SysWOW64\BrMuSNMP.dll

2013-02-24 15:29:26 18F402071F89F7AA24E68194A07FAD88 118784 ------w- C:\Windows\SysWOW64\BrMfNt.dll

2013-02-24 15:28:48 B431F2725136A9A2B64ACD9CD6624D52 25299 ----a-w- C:\Windows\SysWOW64\BRLM03A.DLL

2013-02-24 15:28:39 BE1EAFB5EC2AC86065C39372FF1A8F99 5120 ------w- C:\Windows\SysWOW64\BrDctF2L.dll

2013-02-24 15:28:39 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Windows\SysWOW64\NSSearch.dll

2013-02-24 15:28:38 90571D0237E3766017712E37DB5243BD 2560 ------w- C:\Windows\SysWOW64\BrDctF2S.dll

2013-02-24 15:28:38 5790DD6C789EFD358CB8E904E22E5105 73728 ------w- C:\Windows\SysWOW64\BrDctF2.dll

2013-02-15 15:14:37 69C8F2FB528EC1282BC5FD123D60D527 67823584 ----a-w- C:\Windows\SysWOW64\MRT.exe

2013-02-14 16:06:35 44840873E07F5809748147A437B46C16 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-02-14 16:06:34 BB5CA7B175C6026678DD49CB2616ECD1 2074624 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-02-14 16:06:33 06B8F1FD05DEE6CD818171CBBCBD898A 14332928 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-02-14 16:06:32 3387C8C51E647B1A936E97E79423E34B 1138688 ----a-w- C:\Windows\SysWOW64\urlmon.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-02-26 15:34:05 5614386D4CFDF9E56F355C45BEEBC976 12872 ----a-w- C:\Windows\Sysnative\bootdelete.exe

2013-02-24 15:29:26 1C7072A3FC2C6397087D2673465E4717 290304 ------w- C:\Windows\Sysnative\BrfxDA5c.dll

2013-02-24 15:29:25 E3370E3143ED1FB77D356F688F2EBB2A 143360 ------r- C:\Windows\Sysnative\BrSNMP64.dll

2013-02-24 15:29:25 D4337D3831424F67B27C9B03EAFC9768 255488 ------r- C:\Windows\Sysnative\NSSRH64.dll

2013-02-24 15:29:25 82D1598F79F11698F37DAD243EC528A4 83968 ------r- C:\Windows\Sysnative\BrNetSti.dll

2013-02-24 15:29:25 3DD350544B000E8529A36C650A81BFB1 58880 ------r- C:\Windows\Sysnative\BrWiaNCp.dll

2013-02-24 15:29:25 2CA5E582FC96D4D895D484DF1DFA3559 51200 ------r- C:\Windows\Sysnative\Brnsplg.dll

2013-02-24 15:29:20 0B9018DEA262E0FBD4EFB7473A16F399 1439744 ----a-w- C:\Windows\Sysnative\BrWi209d.dll

2013-02-24 15:29:19 F459D8DB60C8B64B6DAB219DBF0C02E1 278528 ----a-w- C:\Windows\Sysnative\BrJDec.dll

2013-02-15 14:37:40 3D7C1DFE052288F40AC9ABFB2A824B92 741480 ------w- C:\Windows\Sysnative\HPDiscoPM5C12.dll

2013-02-14 16:06:35 BDE0FEEBA7ACF8958339DB0A9640C6EE 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-02-14 16:06:34 4B51F08D7D0318FF134D34A9885F6E7C 2672640 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-02-14 16:06:32 D6A0004CE89810DEBEE99F04DFFEF12F 1352192 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-02-14 16:06:32 60538B5B013FABE0BDE0B90A84C5AAC0 19452928 ----a-w- C:\Windows\Sysnative\mshtml.dll

====== C:\Windows\Sysnative\drivers =====

2013-02-13 07:25:14 B62A953F2BF3922C8764A29C34A22899 1913192 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys

2013-02-13 07:25:14 41C67E4205C606A103DEC8651D0B6FE6 288088 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-02-26 15:05:38 -------- d-----w- C:\Program Files\HitmanPro

2013-02-24 15:25:59 -------- d-----w- C:\Program Files\Nuance

2013-02-15 14:37:02 -------- d-----w- C:\Program Files\HP

2013-02-12 09:52:40 -------- d-----w- C:\Program Files\Babylon

======= C:\Program Files (x86) =====

2013-02-24 15:29:35 -------- d-----w- C:\Program Files (x86)\Browny02

2013-02-24 15:29:26 -------- d-----w- C:\Program Files (x86)\ControlCenter4

2013-02-24 15:28:38 -------- d-----w- C:\Program Files (x86)\Brother

2013-02-24 15:23:30 -------- d-----w- C:\Program Files (x86)\Common Files\ScanSoft Shared

2013-02-24 15:23:28 -------- d-----w- C:\Program Files (x86)\Nuance

2013-02-15 14:37:06 -------- d-----w- C:\Program Files (x86)\HP

======= C: =====

====== C:\Users\User\AppData\Roaming ======

2013-02-24 15:37:11 -------- d-----w- C:\users\User\AppData\Roaming\ControlCenter4

2013-02-24 15:36:25 -------- d-----w- C:\users\User\AppData\Roaming\FLEXnet

2013-02-24 15:26:27 -------- d-----w- C:\users\User\AppData\Roaming\InstallShield

2013-02-24 15:24:33 -------- d-----w- C:\users\User\AppData\Roaming\Nuance

2013-02-24 10:45:52 -------- d-----w- C:\users\User\AppData\Roaming\eDownload

2013-02-15 14:37:50 -------- d-----w- C:\users\User\AppData\Roaming\HpUpdate

2013-02-15 14:26:48 -------- d-----w- C:\users\User\AppData\Local\HP

2013-01-30 09:31:00 -------- d-----w- C:\users\User\AppData\Local\Programs

====== C:\Users\User ======

2013-02-26 15:01:55 -------- d-----w- C:\ProgramData\HitmanPro

2013-02-26 15:01:26 -------- d-----w- C:\ProgramData\Hitman Pro

2013-02-24 15:29:35 -------- d-----w- C:\ProgramData\ControlCenter4

2013-02-24 15:25:12 -------- d-----w- C:\ProgramData\zeon

2013-02-24 15:24:28 -------- d-----w- C:\ProgramData\ScanSoft

2013-02-24 15:23:28 -------- d-----w- C:\ProgramData\Nuance

2013-02-23 17:25:06 -------- d-----w- C:\ProgramData\BrowserProtect

2013-02-15 14:37:09 -------- d-----w- C:\ProgramData\HP

2013-02-15 14:36:43 02CF12D1459DB163114A9B074DC17F0A 57 ----a-w- C:\ProgramData\Ament.ini

====== C: exe-files ==

2013-02-26 15:05:41 9C66FEEFCA9D5DD712AB78D17BB16DA8 108904 ----a-w- C:\Program Files\HitmanPro\hmpsched.exe

2013-02-26 15:05:38 59D6855D1E465385BF408F4E9860C902 9511456 ----a-w- C:\Program Files\HitmanPro\HitmanPro.exe

2013-02-24 16:08:31 BF1837697766FD66B4BEABDB980941F2 32417632 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\25.0.1364.97\25.0.1364.97_chrome_installer.exe

2013-02-24 15:38:30 EBCC2CEFDA0CE9F8DBFD7F4E380AF081 352960 ----a-w- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe

2013-02-24 15:29:40 FCAA8C905236AE15C206121664FA2717 118784 ------w- C:\Brother\DrvLangChg\DrvLangChg.exe

2013-02-24 15:29:40 6F0AA3CC6B15A887C3F3F598A9FE4546 274432 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrScUtil.exe

2013-02-24 15:29:40 6783D360FC3E84D1CCCE1958E0BE4EEE 53248 ------w- C:\Brother\DeviceSearch\DeviceSearch.exe

2013-02-24 15:29:40 5F534973260D105B9DB067969D32CEBB 200704 ------w- C:\Program Files (x86)\Brother\Brmfl10g\Brinstck.exe

2013-02-24 15:29:39 FE33D3F13AC6AF6645DD2DF05DA2D0C8 708608 ------w- C:\Program Files (x86)\Brother\Brmfl10g\brmfrmss.exe

2013-02-24 15:29:37 FB3781454571293308BF4513772EFACB 155648 ------w- C:\Program Files (x86)\Browny02\Brother\BrotherOfflineChk.exe

2013-02-24 15:29:37 AF08D67D635A4B726097147AE3A3ED23 740536 ------w- C:\Program Files (x86)\Browny02\Brother\BrotherNetTool.exe

2013-02-24 15:29:37 7F42FFCD6FF7CA558C2D95DADCD5EFA9 2621440 ------r- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe

2013-02-24 15:29:35 EA7E57F87D6FEE5FD6C5F813C04E8CD2 245760 ------w- C:\Program Files (x86)\Browny02\BrYNSvc.exe

2013-02-24 15:29:35 5BFEB9C2A4015B0559A1BDE769D71B69 72192 ----a-w- C:\Program Files (x86)\ControlCenter4\PtProv64.exe

2013-02-24 15:29:34 E3564D023DCCA4A1854DC2226C99120D 335872 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe

2013-02-24 15:29:34 A45D13E52EC4B9DE73AF1B98994BC777 98304 ----a-w- C:\Program Files (x86)\ControlCenter4\BrMapiSend.exe

2013-02-24 15:29:34 282526417918AAE7E07FB14556FC1E53 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrTwnAccs.exe

2013-02-24 15:29:33 7CFD44EDD74553FC8EE8479A79987579 1204224 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe

2013-02-24 15:29:26 0F9EAD48C40D771FAF014F7B513F8040 24576 ------w- C:\Program Files (x86)\Brother\Brmfl10g\cvtifmax.exe

2013-02-24 15:29:26 043236C891A6D558F65457E4C2F789D8 544768 ----a-w- C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe

2013-02-24 15:29:26 016B31B67ACDF4AEB325FAC166684E5D 139264 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe

2013-02-24 15:29:25 C32EC58CE8C8EB58A689D52FE9B71683 782336 ------w- C:\Program Files (x86)\Brother\Brmfl10g\AddrBook.exe

2013-02-24 15:29:25 6AD10CB38AD76EFA55F421BCAF730F57 1028096 ------r- C:\Program Files (x86)\Brother\Brmfl10g\PCfxDial.exe

2013-02-24 15:29:25 5AE643D2D1F8BDD10C3A351D091F6D27 569344 ------r- C:\Program Files (x86)\Brother\Brmfl10g\PCfxSet.exe

2013-02-24 15:29:24 B2E84C5334E4E9D62DEE535E82117471 433256 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrRemPnP.exe

2013-02-24 15:29:24 513FBC73A000369009518280BF9C64D8 90112 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrStDvPt.exe

2013-02-24 15:29:24 27C9A12D64E5E7F6A395A2D0B8610522 45056 ------r- C:\Program Files (x86)\Brother\Brolink\Brolink0.exe

2013-02-24 15:29:24 27C9A12D64E5E7F6A395A2D0B8610522 45056 ------r- C:\Program Files (x86)\Brother\Brmfl10g\Brolink\Brolink0.exe

2013-02-24 15:27:53 FBAB280D0CAC5E21C72F0A1A7B5B9608 455600 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\setup.exe

2013-02-24 10:46:36 54553F8C9B752E868B396EE59D496CFC 3636352 ----a-w- C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27I3Z4AQ\Desk365[1].exe

2013-02-24 10:46:33 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V7MGOIZX\QuickShare1[1].exe

2013-02-24 10:46:33 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V7MGOIZX\AddLyrics[1].exe

2013-02-24 10:46:20 AC41A97FAEB0FA4878F0F4202413ECAA 9111848 ----a-w- C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V7MGOIZX\component_libcef_1.963.439[1].exe

2013-02-23 17:25:08 FA127AC8BDF668903543D29C96B31632 2561488 ----a-w- C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe

=== C: other files ==

2013-02-26 14:43:54 86E44F84A7903EA6E7734466322D4CB8 716 ----a-w- C:\Users\User\AppData\Local\Temp\test9.bat

2013-02-24 16:14:06 4EC63663356575DE6887D2344F0D9B7F 119952 ----a-w- C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.60.126.1_0\McChPlg.dll

2013-02-24 16:14:06 0912D0CCFD6CBEFE2BD6B4473D006771 56832 ----a-w- C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins\PriamNPAPI.dll

2013-02-24 15:29:40 E6E2FFEB453B4665F5533D2336BF5E6B 241664 ------w- C:\Program Files (x86)\Brother\Brmfl10g\brmfrsif.dll

2013-02-24 15:29:40 C3A83880A85AD36A0A34A2191C1C6AEA 65536 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrIctDut.dll

2013-02-24 15:29:40 99DD0ADE58EA3D4EC461136996E48BEB 77824 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrScdSti.dll

2013-02-24 15:29:40 8165EA7CB0BFEEDEBA6942BA45232BD3 61440 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrIctEng.dll

2013-02-24 15:29:40 58760943D029DD8F0A9C79F355B677E2 442368 ------w- C:\Program Files (x86)\Brother\Brmfl10g\brmfrsdg.dll

2013-02-24 15:29:40 3607524E3E4E75E50FF7394FD00459D8 102400 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrMfNt.dll

2013-02-24 15:29:40 309F89FD6023FAEC0F8240FF13FD1AF1 77824 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrScdWia.dll

2013-02-24 15:29:40 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Brother\DeviceSearch\NSSearch.dll

2013-02-24 15:29:39 D859150A3280619C1466BA71DEFDA73F 650 ------r- C:\Program Files (x86)\Browny02\Brother\prnptst2k.vbs

2013-02-24 15:29:39 5B557242C12DF680372E002FDF95C2F9 211968 ------r- C:\Program Files (x86)\Browny02\Brother\prnadmin.dll

2013-02-24 15:29:39 4A802E0C0FFE4AFE9C7F351CBBEDFDE9 29488 ------r- C:\Program Files (x86)\Browny02\Brother\prnport.vbs

2013-02-24 15:29:39 208BCFC4B18E6D7888BA2C04C2297B1F 45056 ------r- C:\Program Files (x86)\Browny02\Brother\THoop.dll

2013-02-24 15:29:39 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Program Files (x86)\Browny02\Brother\NSSearch.dll

2013-02-24 15:29:38 CAA5E8DE421C5875731CD3BA5233F162 626688 ------r- C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll

2013-02-24 15:29:37 FB4A4604783018E7FCE1A72FBB260111 14336 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolSvk.dll

2013-02-24 15:29:37 D54BF118C55E9D498E65AF3EDE4CBC8B 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolSwe.dll

2013-02-24 15:29:37 D158AED4DACDC357D6007417FB01DAAD 14848 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolSpa.dll

2013-02-24 15:29:37 C1D305AD95D4B9DBC5A8E496E3009BEB 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolTrk.dll

2013-02-24 15:29:37 C1B24321BEA02F913484874E06DE23C1 14848 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolPtb.dll

2013-02-24 15:29:37 ABEF2C6BCA42974B3EA4A09094465CCA 15360 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolPol.dll

2013-02-24 15:29:37 A92B61F824D2873128F058B025685554 14848 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolRus.dll

2013-02-24 15:29:37 7146FFC5C3E9F5F4E8210C85B9FCEF79 15360 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolRom.dll

2013-02-24 15:29:37 1782DC4186F22AD55BAD48AC314038BF 9216 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolKor.dll

2013-02-24 15:29:37 168F9450CF1F476A30A864B2BF79ED71 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolNor.dll

2013-02-24 15:29:37 05C0A1248CCAA0070B6894646A370C64 14848 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolPor.dll

2013-02-24 15:29:36 F586D6A11F34E971A271FD24A19A0E1A 14336 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolDut.dll

2013-02-24 15:29:36 F47C4B411067284D144B890F862422A5 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolCze.dll

2013-02-24 15:29:36 EC16E80ED80C887534DA7A77FCA9DE55 7680 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolCht.dll

2013-02-24 15:29:36 CD71DAABE4FF251EDD47839752E04654 15360 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolHun.dll

2013-02-24 15:29:36 BFE97A7E6E71F166DAA86B93FC04A3D3 15360 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolFrc.dll

2013-02-24 15:29:36 BEDDBB0F42E15C50F3055E0E4393BB30 15872 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolGer.dll

2013-02-24 15:29:36 BD79E88DEF4C3587DF8D4E71DDD727C1 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolDan.dll

2013-02-24 15:29:36 B907641B954B7C8C7F81EA8679314BFD 208896 ------r- C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll

2013-02-24 15:29:36 A355FA4B455A050B53B33A8B7DCCF816 8704 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolJpn.dll

2013-02-24 15:29:36 8CA5D9E160C5D61D375702B0D3E9AC4A 7680 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolChn.dll

2013-02-24 15:29:36 734E176043E665E15780A7BA57A6FA66 14848 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolIta.dll

2013-02-24 15:29:36 661272BBD123A4D4C5C37B63AD7A357A 15360 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolFre.dll

2013-02-24 15:29:36 31F46714544E5932D2996FCDC492C542 14336 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolBul.dll

2013-02-24 15:29:36 182D0342D35B6A0C7C7A21A4647A44FC 13824 ------w- C:\Program Files (x86)\Browny02\Brother\BrNetToolFin.dll

2013-02-24 15:29:35 F71EC3FEC2EBEB67D067E9DA1469A9E0 122880 ------w- C:\Program Files (x86)\Browny02\BRLMW03A.DLL

2013-02-24 15:29:35 F410AC07933BDDD13278299DF222E03D 327680 ------w- C:\Program Files (x86)\Browny02\BrMonitor.dll

2013-02-24 15:29:35 EE52983425E3E1867D75AECD4CC6D736 1717600 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltclr15u.dll

2013-02-24 15:29:35 E348A6CA715F100CF14DA95DB9188058 357728 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltimgcor15u.dll

2013-02-24 15:29:35 B431F2725136A9A2B64ACD9CD6624D52 25299 ------r- C:\Program Files (x86)\Browny02\brlm03a.dll

2013-02-24 15:29:35 A1DC6E7CE8804203D96DE3FD29135821 501088 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltkrn15u.dll

2013-02-24 15:29:35 5F6850FC83F5A2E0AB1C34F4AD31B6D1 189792 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltfil15u.dll

2013-02-24 15:29:35 59DBBA43CBBC9F039196DE4DCEB23A4A 40960 ------w- C:\Program Files (x86)\Browny02\brif03a.dll

2013-02-24 15:29:35 38E5E24BEDE6F59AFC648CB7EF897D69 180224 ------w- C:\Program Files (x86)\Browny02\BroSNMP.dll

2013-02-24 15:29:35 38507824F51BFAA3F4703FA9AA41F3AF 267616 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltdis15u.dll

2013-02-24 15:29:35 27A559C83AF3FCC4AB2A25D0BC01EC06 49152 ------w- C:\Program Files (x86)\Browny02\BRHOOK.DLL

2013-02-24 15:29:35 162B5659145F19EB9328DA1CB1E55637 144736 ----a-w- C:\Program Files (x86)\ControlCenter4\Ltimgutl15u.dll

2013-02-24 15:29:34 B51D113223FEFF1F2BCC3BDD42727BB2 128352 ----a-w- C:\Program Files (x86)\ControlCenter4\Lfpng15u.dll

2013-02-24 15:29:34 A9F6719FCFA6F8247C2E3B43F15FF1FC 978944 ----a-w- C:\Program Files (x86)\ControlCenter4\BrImgProc.dll

2013-02-24 15:29:34 9F01FAAB70CBD0B4791D8D4227DA54B2 94208 ----a-w- C:\Program Files (x86)\ControlCenter4\BrImgPDF.dll

2013-02-24 15:29:34 5C47084F127A783599C637862C6A3222 398688 ----a-w- C:\Program Files (x86)\ControlCenter4\Lfcmp15u.dll

2013-02-24 15:29:34 53260A23A343C5423FED3CD66AD7A74A 161104 ----a-w- C:\Program Files (x86)\ControlCenter4\Lftif15u.dll

2013-02-24 15:29:34 41824923DDF7092E4778E129A6DAFEB4 107856 ----a-w- C:\Program Files (x86)\ControlCenter4\Lffax15u.dll

2013-02-24 15:29:34 2170D18A7A2A9E27C4F50AE542F83B4F 30560 ----a-w- C:\Program Files (x86)\ControlCenter4\Lfbmp15u.dll

2013-02-24 15:29:34 0061771856D6AD987EE03A707B9B05C5 234848 ----a-w- C:\Program Files (x86)\ControlCenter4\Lfj2k15u.dll

2013-02-24 15:29:33 FDA6F754E7297810F39D6A4C1331FFE8 204800 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcThumb.dll

2013-02-24 15:29:33 E7481BA14B8C86943447CCEB07CBFEA1 114688 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcMapi.dll

2013-02-24 15:29:33 E05603DBC17F6EE1DCCBC0CBB5A8A27C 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLPol.dll

2013-02-24 15:29:33 C579463F8E8334F2CFAE9D33A18E0B8F 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLRus.dll

2013-02-24 15:29:33 AF6BB50677A83D66E197AB1091E40838 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLPtb.dll

2013-02-24 15:29:33 80ED4FBB336B4328B4D4F67298C2F418 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLTrk.dll

2013-02-24 15:29:33 64E1E08DA679E3A19EDF3F276B26B533 151552 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcScan.dll

2013-02-24 15:29:33 4FD1A0C5382574B80631D2D04738B4C3 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLSpa.dll

2013-02-24 15:29:33 47D5E6AE3EAA9141573143A519BFFA7F 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLPor.dll

2013-02-24 15:29:33 44AE566D892D11739BAA69A884E7B323 135168 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcOcr.dll

2013-02-24 15:29:33 3B3CC9EFA96F7CC87112A4068622DB06 98304 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcSmon.dll

2013-02-24 15:29:33 3A7D8199EFF01B35E3C8669EC13A0A38 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLRom.dll

2013-02-24 15:29:33 2E6D3DA2DAF713149F298B0850EBDACA 98304 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcPcc.dll

2013-02-24 15:29:33 19535C4B1BE46613999A173DC4AD9670 237568 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcPrnt.dll

2013-02-24 15:29:33 164AD74C3A8DB8D4BF8CF2E185F24DA3 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLSvk.dll

2013-02-24 15:29:33 13ABB2FB39889BC5FB5F28D3C1ED7CBB 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLUsa.dll

2013-02-24 15:29:33 09D650E37CB8D447F092FFAC419E8CEB 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLSwe.dll

2013-02-24 15:29:32 E9845BF4097E02E474AF06565A5D136C 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLIta.dll

2013-02-24 15:29:32 C3F0BF99B5A3A1FC8F8D7C4F39A92BBC 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLFin.dll

2013-02-24 15:29:32 B8325992CBF25ECB833E65E413306D85 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLHun.dll

2013-02-24 15:29:32 867A399C82B39ED961714D8ABB86892B 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll

2013-02-24 15:29:32 83E3BF25C4676F99A08D155D18E89E6B 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLFre.dll

2013-02-24 15:29:32 7ED26A53F1C8B0D9E0DA0866194D13A8 73728 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLKor.dll

2013-02-24 15:29:32 7BC36A984A28E54835815D3CC63F468A 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLNor.dll

2013-02-24 15:29:32 520B500212BA73F67716B9DBEABD51BB 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLFrc.dll

2013-02-24 15:29:32 43BC7B966ACC3262A257461357900616 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLDut.dll

2013-02-24 15:29:32 3359816DD135D305C3B33A20C0885DF4 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLGer.dll

2013-02-24 15:29:32 31DF8E5CADCBF659E4251B16E60051CD 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLEng.dll

2013-02-24 15:29:32 24F47CC93DF8BB2E5D3B754B1F2CD344 86016 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLDan.dll

2013-02-24 15:29:32 0BA762421CAB220AB158A7E40AE06803 73728 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLJpn.dll

2013-02-24 15:29:31 9C027FC9EAA4ADB39832273203810697 69632 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLChn.dll

2013-02-24 15:29:31 505F56795C9C4DD6093CF0CCE343EDEE 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLBul.dll

2013-02-24 15:29:31 154D610DA50991792ED367C2B1D78FD2 69632 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcLCht.dll

2013-02-24 15:29:27 AECDBAC5FB4BA4829E498B7D394FC8F3 16179200 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll

2013-02-24 15:29:27 6CDFAC42AFF9F630828984A4FD3803D7 131072 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcFile.dll

2013-02-24 15:29:27 05676C8F1685E198AED95F34FB5AE982 118784 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcFtp.dll

2013-02-24 15:29:26 FE9F9AE8E9595EDCE85719FCDB7251FF 61440 ------w- C:\Program Files (x86)\Brother\Brmfl10g\frxlang.dll

2013-02-24 15:29:26 FC2BD601B48F8107AD74195166CCD69C 24576 ------w- C:\Program Files (x86)\Brother\Brmfl10g\brrunpp.dll

2013-02-24 15:29:26 D5857104B6BDB7325FBC58F196505758 155648 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll

2013-02-24 15:29:26 6C13E1F69181003070DA7893F87C8F1E 118784 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcDevMan.dll

2013-02-24 15:29:26 6AA7883986D3B351CB068919DAF2F309 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll

2013-02-24 15:29:26 517EEF6693CEB66A26CCC5BE12EEA42D 249856 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcExtPg.dll

2013-02-24 15:29:26 336639C41A5DDC35A0A1FBFEA7E8A28D 90112 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcFaxRx.dll

2013-02-24 15:29:26 05ABB7127ECF0F37C5E037F948426CF5 110592 ----a-w- C:\Program Files (x86)\ControlCenter4\BrCcFcnv.dll

2013-02-24 15:29:25 F83998D4A987500232B7D5A091F04984 294912 ------r- C:\Program Files (x86)\Brother\Brmfl10g\pcfxcom.dll

2013-02-24 15:29:24 E56EB94556CB8530C8B51E6B4EAB67E9 122880 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrRemPnP.dll

2013-02-24 15:29:24 BE5836D947082911E975B816C69640EB 122880 ------w- C:\Program Files (x86)\Brother\Brmfl10g\BrmfPrint.dll

2013-02-24 15:29:23 E3370E3143ED1FB77D356F688F2EBB2A 143360 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\NetScn\SysDir\BrSNMP64.dll

2013-02-24 15:29:23 D4337D3831424F67B27C9B03EAFC9768 255488 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\NetScn\SysDir\NSSRH64.dll

2013-02-24 15:29:23 3DD350544B000E8529A36C650A81BFB1 58880 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\NetScn\SysDir\BrWiaNCp.dll

2013-02-24 15:29:23 2CA5E582FC96D4D895D484DF1DFA3559 51200 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\NetScn\SysDir\Brnsplg.dll

2013-02-24 15:29:22 82D1598F79F11698F37DAD243EC528A4 83968 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\NetScn\SysDir\BrNetSti.dll

2013-02-24 15:29:10 C69BE0A488B106FF48634E1649130A25 7680 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\PCFAX\BRLFXA5C.dll

2013-02-24 15:29:10 438A725C407591F85A1585E00F7E9089 231936 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\PCFAX\BRUFXA5C.dll

2013-02-24 15:29:10 0A8BF3229EE6091B72B9E22C19472C39 242688 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\PCFAX\BROFXA5C.dll

2013-02-24 15:29:07 B67512DA42C0C90BF236D5485226C1C7 11520 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\Drivers\x86\BrUsbSIb.sys

2013-02-24 15:29:07 9F80879913DC2712FD0C4D734E3F519B 71424 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\Drivers\x86\brserib.sys

2013-02-24 15:29:05 80082AD46578F0D3270D2E56D6433082 14592 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\Drivers\amd64\BrUsbSIb.sys

2013-02-24 15:29:05 6DF544E72FF139E8FBBBA6D0E569BEA5 87552 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\Drivers\amd64\brserib.sys

2013-02-24 15:28:41 FB4A4604783018E7FCE1A72FBB260111 14336 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolSvk.dll

2013-02-24 15:28:41 D859150A3280619C1466BA71DEFDA73F 650 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\prnptst2k.vbs

2013-02-24 15:28:41 D54BF118C55E9D498E65AF3EDE4CBC8B 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolSwe.dll

2013-02-24 15:28:41 C1D305AD95D4B9DBC5A8E496E3009BEB 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolTrk.dll

2013-02-24 15:28:41 5B557242C12DF680372E002FDF95C2F9 211968 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\prnadmin.dll

2013-02-24 15:28:41 4A802E0C0FFE4AFE9C7F351CBBEDFDE9 29488 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\prnport.vbs

2013-02-24 15:28:41 208BCFC4B18E6D7888BA2C04C2297B1F 45056 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\THoop.dll

2013-02-24 15:28:41 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\NSSearch.dll

2013-02-24 15:28:40 D158AED4DACDC357D6007417FB01DAAD 14848 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolSpa.dll

2013-02-24 15:28:40 C1B24321BEA02F913484874E06DE23C1 14848 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolPtb.dll

2013-02-24 15:28:40 ABEF2C6BCA42974B3EA4A09094465CCA 15360 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolPol.dll

2013-02-24 15:28:40 A92B61F824D2873128F058B025685554 14848 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolRus.dll

2013-02-24 15:28:40 A355FA4B455A050B53B33A8B7DCCF816 8704 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolJpn.dll

2013-02-24 15:28:40 734E176043E665E15780A7BA57A6FA66 14848 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolIta.dll

2013-02-24 15:28:40 7146FFC5C3E9F5F4E8210C85B9FCEF79 15360 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolRom.dll

2013-02-24 15:28:40 1782DC4186F22AD55BAD48AC314038BF 9216 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolKor.dll

2013-02-24 15:28:40 168F9450CF1F476A30A864B2BF79ED71 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolNor.dll

2013-02-24 15:28:40 05C0A1248CCAA0070B6894646A370C64 14848 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolPor.dll

2013-02-24 15:28:39 F586D6A11F34E971A271FD24A19A0E1A 14336 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolDut.dll

2013-02-24 15:28:39 F47C4B411067284D144B890F862422A5 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolCze.dll

2013-02-24 15:28:39 EC16E80ED80C887534DA7A77FCA9DE55 7680 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolCht.dll

2013-02-24 15:28:39 CD71DAABE4FF251EDD47839752E04654 15360 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolHun.dll

2013-02-24 15:28:39 BFE97A7E6E71F166DAA86B93FC04A3D3 15360 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolFrc.dll

2013-02-24 15:28:39 BEDDBB0F42E15C50F3055E0E4393BB30 15872 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolGer.dll

2013-02-24 15:28:39 BD79E88DEF4C3587DF8D4E71DDD727C1 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolDan.dll

2013-02-24 15:28:39 8CA5D9E160C5D61D375702B0D3E9AC4A 7680 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolChn.dll

2013-02-24 15:28:39 661272BBD123A4D4C5C37B63AD7A357A 15360 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolFre.dll

2013-02-24 15:28:39 31F46714544E5932D2996FCDC492C542 14336 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolBul.dll

2013-02-24 15:28:39 182D0342D35B6A0C7C7A21A4647A44FC 13824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrNetToolFin.dll

2013-02-24 15:28:34 C3A83880A85AD36A0A34A2191C1C6AEA 65536 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Instck\BrIctDut.dll

2013-02-24 15:28:34 8165EA7CB0BFEEDEBA6942BA45232BD3 61440 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Instck\BrIctEng.dll

2013-02-24 15:28:33 99DD0ADE58EA3D4EC461136996E48BEB 77824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Instck\BrScdSti.dll

2013-02-24 15:28:33 3607524E3E4E75E50FF7394FD00459D8 102400 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Instck\BrMfNt.dll

2013-02-24 15:28:33 309F89FD6023FAEC0F8240FF13FD1AF1 77824 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Instck\BrScdWia.dll

2013-02-24 15:28:33 1B81CDAACBDE3FACF1084B09BFBCEEF4 217088 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\DevSearch\NSSearch.dll

2013-02-24 15:28:32 CAA5E8DE421C5875731CD3BA5233F162 626688 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrStMonWRes.dll

2013-02-24 15:28:31 B907641B954B7C8C7F81EA8679314BFD 208896 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\Company\BrFirmUpdateCheck.dll

2013-02-24 15:28:31 B431F2725136A9A2B64ACD9CD6624D52 25299 ------r- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\brlm03a.dll

2013-02-24 15:28:31 38E5E24BEDE6F59AFC648CB7EF897D69 180224 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\BroSNMP.dll

2013-02-24 15:28:30 F71EC3FEC2EBEB67D067E9DA1469A9E0 122880 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\BRLMW03A.DLL

2013-02-24 15:28:30 F410AC07933BDDD13278299DF222E03D 327680 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\BrMonitor.dll

2013-02-24 15:28:30 E348A6CA715F100CF14DA95DB9188058 357728 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltimgcor15u.dll

2013-02-24 15:28:30 A1DC6E7CE8804203D96DE3FD29135821 501088 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltkrn15u.dll

2013-02-24 15:28:30 5F6850FC83F5A2E0AB1C34F4AD31B6D1 189792 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltfil15u.dll

2013-02-24 15:28:30 59DBBA43CBBC9F039196DE4DCEB23A4A 40960 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\brif03a.dll

2013-02-24 15:28:30 27A559C83AF3FCC4AB2A25D0BC01EC06 49152 ------w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\Browny02\BRHOOK.DLL

2013-02-24 15:28:30 162B5659145F19EB9328DA1CB1E55637 144736 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltimgutl15u.dll

2013-02-24 15:28:29 EE52983425E3E1867D75AECD4CC6D736 1717600 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltclr15u.dll

2013-02-24 15:28:29 B51D113223FEFF1F2BCC3BDD42727BB2 128352 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lfpng15u.dll

2013-02-24 15:28:29 5C47084F127A783599C637862C6A3222 398688 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lfcmp15u.dll

2013-02-24 15:28:29 53260A23A343C5423FED3CD66AD7A74A 161104 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lftif15u.dll

2013-02-24 15:28:29 41824923DDF7092E4778E129A6DAFEB4 107856 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lffax15u.dll

2013-02-24 15:28:29 38507824F51BFAA3F4703FA9AA41F3AF 267616 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Ltdis15u.dll

2013-02-24 15:28:29 2170D18A7A2A9E27C4F50AE542F83B4F 30560 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lfbmp15u.dll

2013-02-24 15:28:29 0061771856D6AD987EE03A707B9B05C5 234848 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\Lfj2k15u.dll

2013-02-24 15:28:28 E05603DBC17F6EE1DCCBC0CBB5A8A27C 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLPol.dll

2013-02-24 15:28:28 C579463F8E8334F2CFAE9D33A18E0B8F 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLRus.dll

2013-02-24 15:28:28 AF6BB50677A83D66E197AB1091E40838 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLPtb.dll

2013-02-24 15:28:28 80ED4FBB336B4328B4D4F67298C2F418 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLTrk.dll

2013-02-24 15:28:28 4FD1A0C5382574B80631D2D04738B4C3 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLSpa.dll

2013-02-24 15:28:28 47D5E6AE3EAA9141573143A519BFFA7F 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLPor.dll

2013-02-24 15:28:28 3A7D8199EFF01B35E3C8669EC13A0A38 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLRom.dll

2013-02-24 15:28:28 164AD74C3A8DB8D4BF8CF2E185F24DA3 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLSvk.dll

2013-02-24 15:28:28 13ABB2FB39889BC5FB5F28D3C1ED7CBB 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLUsa.dll

2013-02-24 15:28:28 09D650E37CB8D447F092FFAC419E8CEB 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLSwe.dll

2013-02-24 15:28:27 E9845BF4097E02E474AF06565A5D136C 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLIta.dll

2013-02-24 15:28:27 C3F0BF99B5A3A1FC8F8D7C4F39A92BBC 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLFin.dll

2013-02-24 15:28:27 B8325992CBF25ECB833E65E413306D85 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLHun.dll

2013-02-24 15:28:27 83E3BF25C4676F99A08D155D18E89E6B 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLFre.dll

2013-02-24 15:28:27 7ED26A53F1C8B0D9E0DA0866194D13A8 73728 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLKor.dll

2013-02-24 15:28:27 7BC36A984A28E54835815D3CC63F468A 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLNor.dll

2013-02-24 15:28:27 520B500212BA73F67716B9DBEABD51BB 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLFrc.dll

2013-02-24 15:28:27 43BC7B966ACC3262A257461357900616 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLDut.dll

2013-02-24 15:28:27 3359816DD135D305C3B33A20C0885DF4 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLGer.dll

2013-02-24 15:28:27 31DF8E5CADCBF659E4251B16E60051CD 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLEng.dll

2013-02-24 15:28:27 0BA762421CAB220AB158A7E40AE06803 73728 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLJpn.dll

2013-02-24 15:28:26 9C027FC9EAA4ADB39832273203810697 69632 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLChn.dll

2013-02-24 15:28:26 867A399C82B39ED961714D8ABB86892B 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLCze.dll

2013-02-24 15:28:26 505F56795C9C4DD6093CF0CCE343EDEE 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLBul.dll

2013-02-24 15:28:26 24F47CC93DF8BB2E5D3B754B1F2CD344 86016 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLDan.dll

2013-02-24 15:28:26 154D610DA50991792ED367C2B1D78FD2 69632 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcLCht.dll

2013-02-24 15:27:58 A9F6719FCFA6F8247C2E3B43F15FF1FC 978944 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrImgProc.dll

2013-02-24 15:27:57 FDA6F754E7297810F39D6A4C1331FFE8 204800 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcThumb.dll

2013-02-24 15:27:57 9F01FAAB70CBD0B4791D8D4227DA54B2 94208 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrImgPDF.dll

2013-02-24 15:27:57 64E1E08DA679E3A19EDF3F276B26B533 151552 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcScan.dll

2013-02-24 15:27:57 3B3CC9EFA96F7CC87112A4068622DB06 98304 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcSmon.dll

2013-02-24 15:27:57 19535C4B1BE46613999A173DC4AD9670 237568 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcPrnt.dll

2013-02-24 15:27:56 E7481BA14B8C86943447CCEB07CBFEA1 114688 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcMapi.dll

2013-02-24 15:27:56 44AE566D892D11739BAA69A884E7B323 135168 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcOcr.dll

2013-02-24 15:27:56 2E6D3DA2DAF713149F298B0850EBDACA 98304 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcPcc.dll

2013-02-24 15:27:55 AECDBAC5FB4BA4829E498B7D394FC8F3 16179200 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcGrImg.dll

2013-02-24 15:27:55 6CDFAC42AFF9F630828984A4FD3803D7 131072 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcFile.dll

2013-02-24 15:27:55 6AA7883986D3B351CB068919DAF2F309 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcDlgRc.dll

2013-02-24 15:27:55 517EEF6693CEB66A26CCC5BE12EEA42D 249856 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcExtPg.dll

2013-02-24 15:27:55 336639C41A5DDC35A0A1FBFEA7E8A28D 90112 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcFaxRx.dll

2013-02-24 15:27:55 05ABB7127ECF0F37C5E037F948426CF5 110592 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcFcnv.dll

2013-02-24 15:27:55 05676C8F1685E198AED95F34FB5AE982 118784 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcFtp.dll

2013-02-24 15:27:54 D5857104B6BDB7325FBC58F196505758 155648 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcAssoc.dll

2013-02-24 15:27:54 708814A62BA813CEA1A94BB77D68195B 552214 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ISSetup.dll

2013-02-24 15:27:54 6C13E1F69181003070DA7893F87C8F1E 118784 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\ControlCenter\BrCcDevMan.dll

2013-02-24 15:27:53 2985A79020EC96AFC2D1C8AB318B866F 385968 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\_Setup.dll

2013-02-24 15:26:34 9495B07F33DED991C65D9B04945D44C5 519232 ----a-w- C:\Users\User\AppData\Local\Temp\{7BA9AD6F-A0CC-4BA8-85F9-73CEF60C5842}\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\difxapi.dll

2013-02-23 17:25:08 1B33DBE7E528949942999099EFAF0E87 2231248 ----a-w- C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll

2013-02-23 17:24:40 44B75394181CC3056C24E1A35E4298BE 6656 ----a-w- C:\Users\User\AppData\Local\Temp\76A32BEA-BAB0-7891-B8B7-801EFB8FB92A\Latest\reslib.dll

2013-02-23 17:24:40 39EFC6BD073A446EB539BF100A3DE1B1 5120 ----a-w- C:\Users\User\AppData\Local\Temp\76A32BEA-BAB0-7891-B8B7-801EFB8FB92A\Latest\IECookieLow.dll

2013-02-23 17:24:40 0F66E8E2340569FB17E774DAC2010E31 520234 ----a-w- C:\Users\User\AppData\Local\Temp\76A32BEA-BAB0-7891-B8B7-801EFB8FB92A\Latest\sqlite3.dll

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"TOSHIBA Online Product Information"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="D:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

"HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN21J1H12P05RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1"

"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

"TOSHIBA Online Product Information"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SVPWUTIL"="C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL"

"HWSetup"="C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP"

"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"KeNotify"="C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe"

"ToshibaServiceStation"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60"

"Adobe Acrobat Speed Launcher"="D:\Program Files\Adobe\Acrobat x Pro\Acrobat\Acrobat_sl.exe"

"Acrobat Assistant 8.0"="D:\Program Files\Adobe\Acrobat x Pro\Acrobat\Acrotray.exe"

"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"

"AdobeCS5.5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe -launchedbylogin"

"RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"

"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"iTunesHelper"="D:\Program Files\iTunes\iTunesHelper.exe"

"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

"CheckRun22find_uninstaller"="C:\Users\User\AppData\Roaming\CheckRun22find.exe -c=http://www.22find.com/?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702773"

"IndexSearch"="C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe"

"PaperPort PTD"="C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe"

"PPort12reminder"="C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe -r C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"

"PDFHook"="C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe"

"PDF5 Registry Controller"="C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe"

"ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun"

"BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN"

"TWebCamera"=""C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="D:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

"HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN21J1H12P05RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1"

"ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Toshiba TEMPRO"="C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3"

"TosVolRegulator"="C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe"

"Toshiba Registration"="C:\Program Files\Toshiba\Registration\ToshibaReminder.exe"

"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"

"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

"TosNC"="%ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe "

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"TPwrMain"="%ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE"

"HSON"="%ProgramFiles%\TOSHIBA\TBS\HSON.exe "

"SmoothView"="%ProgramFiles%\Toshiba\SmoothView\SmoothView.exe "

"00TCrdMain"="%ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe "

"SmartFaceVWatcher"="%ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe "

"TosSENotify"="C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe"

"Teco"=""%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r"

"TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe "

"TosReelTimeMonitor"="%ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Pro Agent]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DAEMON Tools Pro Agent"

"hkey"="HKCU"

"command"="\"D:\\Program Files\\DAEMON Tools Pro\\DTAgent.exe\" -autorun"

==== Startup Folders ======================

2010-04-22 07:24:02 1258 ----a-w- C:\users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk

2010-04-22 07:24:02 1258 ----a-w- C:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk

2013-02-15 15:01:54 1916 ----a-w- C:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-12-2012 19:38]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-12-2012 19:38]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[04-12-2012 10:47]

ijblflkdjdopkpdgllkmlbgcffjbnfda - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[]

jpmbfleldcgkldadpdinhjjopdfpjfjp - C:\Users\User\AppData\Local\Wajam\Chrome\wajam.crx[]

kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\User\AppData\Local\Torch\Plugins\TorchPlugin.crx[]

ppcdoaocbbnmjellaieenhdopdepdlpc - C:\ProgramData\Browse2save\ppcdoaocbbnmjellaieenhdopdepdlpc.crx[]

Google Docs - User - Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - User - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - User - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - User - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

SiteAdvisor - User - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho

Wajam - User - Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp

Gmail - User - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Browse2save - User - Default\Extensions\ppcdoaocbbnmjellaieenhdopdepdlpc

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

"Default_Page_URL"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

"Start Page"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

"Start Page"="http://www.22find.com/newtab?utm_source=b&utm_medium=tok&from=tok&uid=TOSHIBAXMK5076GSXN_12JXT04BTXX12JXT04BT&ts=1361702788"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://www.google.com"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{4FA5C809-0A7E-4E6E-A894-411D89BA069C} Unknown Url="Not_Found"

{532F31F7-91F1-4F5F-BE7E-EB6E98358E72} Unknown Url="Not_Found"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4FA5C809-0A7E-4E6E-A894-411D89BA069C} deleted successfully

HKEY_USERS\S-1-5-21-219882033-3719750935-4043585095-1000\Software\Microsoft\Internet Explorer\SearchScopes\{532F31F7-91F1-4F5F-BE7E-EB6E98358E72} deleted successfully

==== Deleting CLSID Registry Values ======================

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Brother Creative Center.lnk - C:\Program Files (x86)\Brother\CreativeCenter\Brother Creative Center.url

==== shortcuts in Users Start Menu ======================

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Officejet 6700 (netwerk).lnk - C:\Windows\system32\RunDll32.exe "C:\Program Files\HP\HP Officejet 6700\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN21J1H12P05RQ;CONNECTION=NW;MONITOR=1;

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk - C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000005}\_SC_Distiller.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk - C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000005}\_SC_Acrobat.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-registratie.lnk - C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2\Adobe LiveCycle Designer ES2.lnk - D:\Program Files\Adobe\Acrobat x Pro\Designer 9.0\FormDesigner.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\ControlCenter4.lnk - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /model="MFC-J6510DW LAN"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Installatie Diagnose.lnk - C:\Program Files (x86)\Brother\Brmfl10g\Brinstck.exe MFC-J6510DW LAN

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Installatie ongedaan maken.lnk - C:\Program Files (x86)\InstallShield Installation Information\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}\setup.exe -runfromtemp -l0x0013 UNINSTALL Reg=BHM11,Brother MFC-J6510DW,LAN

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Lees Mij.lnk - C:\Program Files (x86)\Brother\Brmfl10g\readmedut.rtf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Network PhotoCapture Centre.lnk - C:\Windows\explorer.exe "ftp://BRW0022589E3CF1"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Onlineregistratie.lnk - C:\Program Files (x86)\Brother\Brmfl10g\Brolink\Brolink0.exe OLR_URL /mMFC-J6510DW

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Remote Setup.lnk - C:\Program Files (x86)\Brother\Brmfl10g\brmfrmss.exe NET "MFC-J6510DW LAN"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Status Monitor.lnk - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe Brother MFC-J6510DW Printer on BRW0022589E3CF1 /SHOW

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Instellingen Scanner\Lees Mij.lnk - C:\Program Files (x86)\Brother\Brmfl10g\ScanRead.txt

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Instellingen Scanner\Scanner Toepassing.lnk - C:\Program Files (x86)\Brother\Brmfl10g\BrScUtil.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\Instellingen Scanner\Scanners en camera's.lnk - C:\Windows\System32\control.exe /name Microsoft.ScannersAndCameras

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\PC-FAX Ontvangst\Het gebruik van PC-FAX ontvangen.lnk - C:\Program Files (x86)\Brother\Brmfl10g\howtousepcfaxrx.htm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\PC-FAX Ontvangst\Ontvangen.lnk - C:\Program Files (x86)\Brother\Brmfl10g\FAXRX.exe -Net "MFC-J6510DW LAN"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\PC-FAX verzenden\Het gebruik van PC-FAX verzenden.lnk - C:\Program Files (x86)\Brother\Brmfl10g\howtousebrotherpc.htm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\PC-FAX verzenden\PC-FAX Adresboek.lnk - C:\Program Files (x86)\Brother\Brmfl10g\AddrBook.exe PCFAX TOP

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother\MFC-J6510DW LAN\PC-FAX verzenden\PC-FAX Setup.lnk - C:\Program Files (x86)\Brother\Brmfl10g\PCfxSet.exe PCFAX

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Google

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hitman Pro\Hitman Pro.lnk - D:\Program Files\Hitman Pro\hitmanpro2.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hitman Pro\Verwijder Hitman Pro.lnk - D:\Program Files\Hitman Pro\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\HitmanPro.lnk - C:\Program Files (x86)\HitmanPro\HitmanPro.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro\Verwijder HitmanPro 3.7.lnk - C:\Program Files (x86)\HitmanPro\HitmanPro.exe /uninstall

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Update.lnk - C:\Program Files (x86)\HP\HP Software Update\hpwucli.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Benodigdheden kopen.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\Bin\hpqDTSS.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Help.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\bin\HelpViewer\hpqlpvwr.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\HP Officejet 6700.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\Bin\HP Officejet 6700.exe -Start UDCDevicePage

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\HP Onderzoek productverbetering.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\Bin\HPCustPartic.exe /changesettings /UA 9.5 /DDV 0x1000

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\HP Scan.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\bin\HPScan.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\IP-adres bijwerken.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\Bin\DeviceSetup.exe /changeip ""

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Online-Help voor draadloos afdrukken.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\WirelessEasyShortcut.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Printer instellen en software.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\Bin\DeviceSetupLauncher.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Verwijderen.lnk - C:\Windows\SysWOW64\msiexec.exe /qb /x {490F6871-BF4C-4C25-A4D2-33914A323B64}

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Officejet 6700\Website productondersteuning.lnk - C:\Program Files (x86)\HP\HP Officejet 6700\ProductSupportShortcut.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee\McAfee Internet Security.lnk - C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe /desktopicon

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\ImageViewer.lnk - C:\Program Files (x86)\Nuance\PaperPort\pppagevw.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\PaperPort.lnk - C:\Program Files (x86)\Nuance\PaperPort\PaprPort.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\PDF Viewer Plus.lnk - C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\PDFPlus.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12\Wizard Scannerinstellingen.lnk - C:\Program Files (x86)\Nuance\PaperPort\ScannerWizardU.exe /A [PaperPort 12.1] /L [dut]

==== shortcuts in Quick Launch ======================

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

==== shortcuts After Repair ======================

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ppcdoaocbbnmjellaieenhdopdepdlpc deleted successfully

==== HijackThis Entries ======================