Ga naar inhoud

virus die directory en extensies omzet naar ink


Aanbevolen berichten

hi, ik heb sinds enkele dagen een probleem met mijn laptop. Als ik een usb stick of memorycard aansluit op mijn pc gaat hij direct de mappen of directory s gaan omzetten naar *.ink en zo kan mijn pc bepaalde mappen nt meer toevoegen.

 

Hoe kan ik dit probleem oplossen aub

 

mvg beunco

Link naar bericht
Delen op andere sites

Download icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.


Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .


RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.


Bekijk ook de

.
Link naar bericht
Delen op andere sites

Met RSIT wordt een overzicht gemaakt van de belangrijkste onderdelen van de PC, om mogelijke fouten en/of besmettingen te kunnen detecteren.

 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

 

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
 F:\WINDOWS\SET8.tmp;f
F:\WINDOWS\SET4.tmp;f
F:\WINDOWS\SET3.tmp;f
torpigcheck;
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.
Zoek.exe logbestand plaatsen
  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar bericht
Delen op andere sites

hi kape

 

ik heb dit ontvangen via zoek

 

Zoek.exe v5.0.0.1 Updated 08-October-2015
Tool run by dr dre on 09.10.2015 at 19:20:05,10.
Microsoft Windows XP Professional 5.1.2600 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: F:\prog downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

09.10.2015 19:21:24 Zoek.exe System Restore Point Created Successfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\CDF {67EA19A0-CCEF-11d0-8024-00C04FD75D13} %SystemRoot%\system32\shdocvw.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\MyDocuments {ECF03A33-103D-11d2-854D-006008059367} %SystemRoot%\system32\mydocs.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll


==== Empty Folders Check ======================

F:\Documents and Settings\dr dre\Application Data\Panda Security deleted successfully
F:\Documents and Settings\dr dre\Local Settings\Application Data\Adobe deleted successfully
 

 

 

 

Concreet wat doet die zoek.exe, want kweet graag wat ik doe dan gewoon alles klakkeloos overnemen van u

 

veel dank alleszins

Link naar bericht
Delen op andere sites

Indien dit alles is wat er in het zoek-logje staat, heb je het programma niet lang genoeg laten werken. Dit is maar een (beperkt) deel van de informatie die zoek.exe verzamelt en waar het meteen de (bekende) besmettingen en/of ongewenste bestanden en mappen mee verwijdert van de PC. Dat is de belangrijkste functie van dit programma. Bovendien verschaft het ons nog een inzicht in mogelijke problemen, die manueel moeten behandeld worden.

 

Zou je zoek.exe nog eens opnieuw willen laten scannen (nu wat langer), tot het compleet log zich presenteert. Dit mag je dan in een volgend bericht hangen.

Link naar bericht
Delen op andere sites

Zoek.exe v5.0.0.1 Updated 08-October-2015
Tool run by dr dre on 10.10.2015 at 17:03:25,87.
Microsoft Windows XP Professional 5.1.2600 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: f:\prog downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

10.10.2015 17:04:33 Zoek.exe System Restore Point Created Successfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\CDF {67EA19A0-CCEF-11d0-8024-00C04FD75D13} %SystemRoot%\system32\shdocvw.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\MyDocuments {ECF03A33-103D-11d2-854D-006008059367} %SystemRoot%\system32\mydocs.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll


==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

"F:\WINDOWS\SET8.tmp" not found
"F:\WINDOWS\SET4.tmp" not found
"F:\WINDOWS\SET3.tmp" not found
F:\Documents and Settings\dr dre\Menu Start\Programma's\Opstarten\csrss.vbs deleted

==== Files Recently Created / Modified ======================

====== F:\WINDOWS ====
2015-10-04 06:31:15    C7BC96C3711C0D269DA26D1F0ECEC547    69    ----a-w-    F:\WINDOWS\NeroDigital.ini
2015-09-18 21:50:33    589344AB570D246D38BFACF87A1267C0    4382    ----a-w-    F:\WINDOWS\imsins.BAK
2015-09-18 21:50:30    3C0DCC8E541E9D0B09958DCE6C0808BF    4205    ----a-w-    F:\WINDOWS\ODBCINST.INI
2015-09-18 21:50:13    ECD7C0A5F9C3AF8A5A85EBACDC5B98C7    15872    ----a-w-    F:\WINDOWS\TASKMAN.EXE
2015-09-18 21:50:12    F8771112BF40968D3C2CFAA585A3D2B6    70144    ----a-w-    F:\WINDOWS\NOTEPAD.EXE
2015-09-18 21:03:14    513F31040392F8090F2E5EEBFC69062B    225749    ----a-w-    F:\WINDOWS\hpdj3740.his
2015-09-18 21:03:14    007FF245DE5E7489D2D92C83FC252DF6    10632    ----a-w-    F:\WINDOWS\hpdj3740.ini
2015-09-18 20:25:52    E34C882EBFC47A2B89110D904768B88E    545    ----a-w-    F:\WINDOWS\NOCLOSE.PIF
2015-09-18 20:25:52    DC13E6178762D09AA77CCD1ACFDC8DB4    545    ----a-w-    F:\WINDOWS\LHA.PIF
2015-09-18 20:25:52    CD372C250481170D0F873F42F73A0518    545    ----a-w-    F:\WINDOWS\UC.PIF
2015-09-18 20:25:52    C77360C3DA5DBBAFCF063D79522D785A    368    ----a-w-    F:\WINDOWS\wincmd.ini
2015-09-18 20:25:52    B6EF59CB8A31AF4433F201E8328808B7    545    ----a-w-    F:\WINDOWS\PKZIP.PIF
2015-09-18 20:25:52    A79594BC46ADA0E4B7AF852D3B2C7713    545    ----a-w-    F:\WINDOWS\PKUNZIP.PIF
2015-09-18 20:25:52    8A0A6F29237C62F1B782D0487A65EB9D    545    ----a-w-    F:\WINDOWS\RAR.PIF
2015-09-18 20:25:52    326E0EBE02C5BE720D11E3130B3A8D33    545    ----a-w-    F:\WINDOWS\ARJ.PIF
2015-09-18 20:01:20    21C027DC0D6560DAA34626A1E90AD3C1    4602    ----a-w-    F:\WINDOWS\SchedLgU.Txt
2015-09-18 19:59:57    4B4DC7F354A62CEEE7C409BCCB97681D    8192    ----a-w-    F:\WINDOWS\REGLOCS.OLD
2015-09-18 19:59:06    6A2CB42966136854F4464516FBB4AE72    2048    --s-a-w-    F:\WINDOWS\bootstat.dat
2015-09-18 19:57:00    D41D8CD98F00B204E9800998ECF8427E    0    ----a-w-    F:\WINDOWS\control.ini
2015-09-18 19:56:56    DC17DD0189B0C36D863B4DD0A036C10F    316640    ----a-w-    F:\WINDOWS\WMSysPr9.prx
2015-09-18 19:56:11    5A5CFF37F1BD0F86B9BDAAD7A9445882    749    ---ha-r-    F:\WINDOWS\WindowsShell.Manifest
2015-09-18 19:55:33    81051BCC2CF1BEDF378224B0A93E2877    2    ----a-w-    F:\WINDOWS\desktop.ini
2015-09-18 19:55:33    2F3CDC1D898FD25B2547F5BFEB01FD0D    48680    --sh--w-    F:\WINDOWS\winnt256.bmp
2015-09-18 19:55:33    2F3CDC1D898FD25B2547F5BFEB01FD0D    48680    --sh--w-    F:\WINDOWS\winnt.bmp
2015-09-18 19:54:24    6C2F0BA210C2B53EF07653ABAC6C2490    37    ----a-w-    F:\WINDOWS\vbaddin.ini
2015-09-18 19:54:24    487403459F0B2F1A3ADEEF02496BD80E    36    ----a-w-    F:\WINDOWS\vb.ini
2015-09-18 19:54:01    EB3BFC14E41FBAA41B4FD4489AA82D39    65832    ----a-w-    F:\WINDOWS\Santa Fe Stucco.bmp
2015-09-18 19:54:01    DAC71A10A6A71CB6E3F427AE3283734B    1272    ----a-w-    F:\WINDOWS\Blauw 16.bmp
2015-09-18 19:54:01    927A66BD587E31CB12D3AB25381658DC    17362    ----a-w-    F:\WINDOWS\Rhododendron.bmp
2015-09-18 19:54:01    73D70ED3EC3BBFD8FD35DF431C38F374    17062    ----a-w-    F:\WINDOWS\Kopje koffie.bmp
2015-09-18 19:54:01    5B4AC407E566076BB726BA91E067D313    26680    ----a-w-    F:\WINDOWS\Rivier Sumida.bmp
2015-09-18 19:54:01    5290EA6951F4724259F423B12C8E1393    9522    ----a-w-    F:\WINDOWS\Zapotec.bmp
2015-09-18 19:54:01    3A8B85AB7B415BF3F8AFE285DFE0CE29    16730    ----a-w-    F:\WINDOWS\Patroon.bmp
2015-09-18 19:54:01    39F43DBCE366B2561DF073B4C0839299    65978    ----a-w-    F:\WINDOWS\Zeepbellen.bmp
2015-09-18 19:54:01    280920B6773C74C3649A934257112BE1    65954    ----a-w-    F:\WINDOWS\Prairie.bmp
2015-09-18 19:54:01    203EF178BF8B0A8EC34E27E4DEDB6349    17336    ----a-w-    F:\WINDOWS\Stekkie.bmp
2015-09-18 19:54:01    1AC5E83598D4F2143B59A2D893C3279A    26582    ----a-w-    F:\WINDOWS\Groensteen.bmp
====== F:\DOCUME~1\DRDRE~1\LOCALS~1\Temp ====
2015-10-04 08:04:10    94A3F185B7D4B68219EA064E5F22A3C2    4799400    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS05A5785F\avgsetupapix.dll
2015-10-04 08:04:09    C209C1E20EC20811EE415A165A8DEC01    2875304    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS05A5785F\avgsetupx.exe
2015-10-04 08:04:09    70B0826DF9F32DE60D6FA8D6010AA83C    778152    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS05A5785F\avgntdumpx.exe
2015-10-04 08:04:05    B571BDEF3606ADFC2E0C6B88E70249A9    2892128    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\avg-84866328-1bd8-4122-bc1e-d94a3fed4261.exe
2015-10-04 08:03:53    A8450FB0E17DCFE04E1EED7E38E84BA9    25512    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrdtesta.exe
2015-10-04 08:03:53    9E240182322F517861473A630C85228C    24488    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrdtestx.exe
2015-10-04 08:03:53    8ABA5F3BB11A15E70A5139192D8D53CB    371624    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrunasx.exe
2015-10-04 08:03:53    8909276F509DC6776149B823B7B865F2    534952    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgmfarx.dll
2015-10-04 08:03:53    7C69B24D70EDCC7709CC6149BAD16D6C    785320    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgntdumpx.exe
2015-10-04 08:03:53    4706A3523C92B99657D5417541131ABF    6920824    ------w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgmfapx.exe
2015-10-04 08:03:53    1EF311C44B22C97AB69FE19266CED618    966224    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\htmlayout.dll
2015-10-04 07:48:51    F57E12833F272D34DFF3C1BAE0B344D0    914680    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\PGUse.exe
2015-10-04 07:48:51    BDEC6873F88B0C80583A905E71532EC8    392440    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\SMCLPav.dll
2015-10-04 07:48:51    5BE9DA786FB5C151953609AB406327C0    156920    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\PAV2WSC.dll
2015-10-04 07:48:51    58BD00B0CD3F99FEA5C815722D47F701    180472    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\DGNano.dll
2015-10-04 07:48:51    3E1D69C6FE21B2892FFE95BC82CB5535    506104    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\PAVSMCL.dll
2015-10-04 07:48:51    27D4BCC325306B1415A89DE550528E04    94720    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\MsiZap.Exe
2015-10-04 07:48:51    059398809072A8FE34C55B3851D1B0FC    269048    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\SMCLpav.exe
2015-10-04 07:22:40    5507C79818AB8509D35ABC869D3235BF    470232    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSINanoRun.exe
2015-10-04 07:22:39    FC0680AE03D9C3690948FDD10D5A8385    75000    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\tracelog.exe
2015-10-04 07:22:39    E6C1D14DD35ACEEC06F3DCB58A69665D    621816    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSANUpgSI.dll
2015-10-04 07:22:39    DB7393F74471C6A3ABF3A10C462C4389    536824    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSANCU.exe
2015-10-04 07:22:39    CE6E51602EB487F6BF55BDB1969BB9AF    116472    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSW8Utils.dll
2015-10-04 07:22:39    8089F0D3AEFDE6FC4679F0100A70B02E    972608    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PsGui.dll
2015-10-04 07:22:39    5507C79818AB8509D35ABC869D3235BF    470232    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\C5\PSINanoRun.exe
2015-10-04 07:22:38    F57E12833F272D34DFF3C1BAE0B344D0    914680    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\PGUse.exe
2015-10-04 07:22:38    BDEC6873F88B0C80583A905E71532EC8    392440    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\SMCLPav.dll
2015-10-04 07:22:38    5BE9DA786FB5C151953609AB406327C0    156920    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\PAV2WSC.dll
2015-10-04 07:22:38    58BD00B0CD3F99FEA5C815722D47F701    180472    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\DGNano.dll
2015-10-04 07:22:38    3E1D69C6FE21B2892FFE95BC82CB5535    506104    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\PAVSMCL.dll
2015-10-04 07:22:38    27D4BCC325306B1415A89DE550528E04    94720    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\MsiZap.Exe
2015-10-04 07:22:38    059398809072A8FE34C55B3851D1B0FC    269048    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\SMCLpav.exe
2015-10-04 06:44:15    F8BAB3CB0F8A7D4DE607FB58EB83C2A2    64167304    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{55F5C714-7EE8-4EBF-972A-1F2FA10DDA67}.exe
2015-09-30 14:18:16    B8C997E772BE343E1664FEE14C1FB9B7    28849904    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\vlc-2.2.1-win32.exe
====== Java Cache =====
====== F:\WINDOWS\system32 =====
2015-09-28 05:53:33    C357BF9CE80DDB0269FF8C3BF6689A35    106496    ----a-w-    F:\WINDOWS\System32\TwnLib20.dll
2015-09-28 05:53:27    AC225D792D1A214631BE5FDE7DE9143A    471040    ------w-    F:\WINDOWS\System32\ImagXRA7.dll
2015-09-28 05:53:27    97915FBD07E749BCCCF7FFE78E9A7C37    262144    ------w-    F:\WINDOWS\System32\ImagXR7.dll
2015-09-28 05:53:27    9121702322CBEE1957D1617A6A38CD55    364544    ------w-    F:\WINDOWS\System32\TwnLib4.dll
2015-09-28 05:53:27    903DE5707D29A1E034ED40F54571F1B7    1568768    ------w-    F:\WINDOWS\System32\ImagX7.dll
2015-09-28 05:53:27    8F03FD1C3BD8F6B575E6CF5E0E89FF13    476320    ------w-    F:\WINDOWS\System32\ImagXpr7.dll
2015-09-28 05:53:26    4CD0DA3622E72B6F0B184665063D1C08    38912    ------w-    F:\WINDOWS\System32\picn20.dll
2015-09-28 05:53:24    3E4C03CEFAD8DE135263236B61A49C90    155648    ----a-w-    F:\WINDOWS\System32\NeroCheck.exe
====== F:\WINDOWS\system32\drivers =====
2015-09-18 21:52:01    D9F724AA26C010A217C97606B160ED68    3072    ----a-w-    F:\WINDOWS\System32\drivers\audstub.sys
2015-09-18 21:51:39    7BB9C58A13323F5EDC89C88F98C80CBA    57856    ----a-w-    F:\WINDOWS\System32\drivers\redbook.sys
2015-09-18 21:51:23    80D1B490B60E74E002DC116EC5D41748    6400    ----a-w-    F:\WINDOWS\System32\drivers\enum1394.sys
2015-09-18 21:51:08    AE2C8544E747C20062DB27456EA2D67A    8832    ----a-w-    F:\WINDOWS\System32\drivers\wmiacpi.sys
2015-09-18 21:51:05    EA22EDADF90C0ABA8319454B2A07B700    14080    ----a-w-    F:\WINDOWS\System32\drivers\battc.sys
2015-09-18 21:51:05    DF1B1A24BF52D0EBC01ED4ECE8979F50    9344    ----a-w-    F:\WINDOWS\System32\drivers\compbatt.sys
2015-09-18 21:51:05    4266BE808F85826AEDF3C64C1E240203    14080    ----a-w-    F:\WINDOWS\System32\drivers\CmBatt.sys
2015-09-18 21:50:13    50708DAA1B1CBB7D6AC1CF8F56A24410    11264    ----a-w-    F:\WINDOWS\System32\drivers\irenum.sys
2015-09-18 21:13:58    BF79E659C506674C0497CC9C61F1A165    2432    ------w-    F:\WINDOWS\System32\drivers\cdr4_xp.sys
2015-09-18 21:13:58    2C41CD49D82D5FD85C72D57B6CA25471    2560    ------w-    F:\WINDOWS\System32\drivers\cdralw2k.sys
2015-09-18 21:13:58    0C8DA0A8B0D227319C285E0EAE65DEFD    46080    ------w-    F:\WINDOWS\System32\drivers\PxHelp20.sys
2015-09-18 21:05:48    A42369B7CD8886CD7C70F33DA6FCBCF5    25856    ----a-w-    F:\WINDOWS\System32\drivers\usbprint.sys
2015-09-18 20:43:47    48846B31BE5A4FA662CCFDE7A1BA86B9    5854752    ----a-w-    F:\WINDOWS\System32\drivers\igxpmp32.sys
2015-09-18 20:43:24    9EB7001200BC53DAD5BC531F0E58970E    2236544    ----a-w-    F:\WINDOWS\System32\drivers\NETw4x32.sys
2015-09-18 20:42:17    8E186B8F23295D1E42C573B82B80D548    6400    ----a-w-    F:\WINDOWS\System32\drivers\splitter.sys
2015-09-18 20:42:17    2797F33EBF50466020C430EE4F037933    82944    ----a-w-    F:\WINDOWS\System32\drivers\wdmaud.sys
2015-09-18 20:42:16    A6F881284AC1150E37D9AE47FF601267    52864    ----a-w-    F:\WINDOWS\System32\drivers\DMusic.sys
2015-09-18 20:42:13    94ABC808FC4B6D7D2BBF42B85E25BB4D    54272    ----a-w-    F:\WINDOWS\System32\drivers\swmidi.sys
2015-09-18 20:42:12    D93CAD07C5683DB066B0B2D2D3790EAD    171776    ----a-w-    F:\WINDOWS\System32\drivers\kmixer.sys
2015-09-18 20:42:12    841F385C6CFAF66B58FBD898722BB4F0    142464    ----a-w-    F:\WINDOWS\System32\drivers\aec.sys
2015-09-18 20:42:11    650AD082D46BAC0E64C9C0E0928492FD    60800    ----a-w-    F:\WINDOWS\System32\drivers\sysaudio.sys
2015-09-18 20:42:11    1ED4DBBAE9F5D558DBBA4CC450E3EB2E    2944    ----a-w-    F:\WINDOWS\System32\drivers\drmkaud.sys
2015-09-18 20:42:10    AE431A8DD3C1D0D0610CDBAC16057AD0    7552    ----a-w-    F:\WINDOWS\System32\drivers\MSKSSRV.sys
2015-09-18 20:42:10    1988A33FF19242576C3D0EF9CE785DA7    4992    ----a-w-    F:\WINDOWS\System32\drivers\MSPQM.sys
2015-09-18 20:42:09    13E75FEF9DFEB08EEDED9D0246E1F448    5376    ----a-w-    F:\WINDOWS\System32\drivers\MSPCLOCK.sys
2015-09-18 20:42:06    FF86422268DE771D571E123EB7092C6A    60288    ----a-w-    F:\WINDOWS\System32\drivers\drmk.sys
2015-09-18 20:41:35    0F332C0BA9B968EBC8CBB906416F8597    213696    ----a-w-    F:\WINDOWS\System32\drivers\SynTP.sys
2015-09-18 20:35:31    133B243EE5CCC607686A5648B807542D    5632    ----a-w-    F:\WINDOWS\System32\drivers\intelide.sys
2015-09-18 19:55:00    157754F0DF355A9E0A6F54721914F9C6    124800    ----a-w-    F:\WINDOWS\System32\drivers\fltMgr.sys
2015-09-18 19:54:59    A859C2DA6B06024C9B4D995B90FE8175    73472    ----a-w-    F:\WINDOWS\System32\drivers\sr.sys
2015-09-18 19:53:48    ED0580AF02502D00AD8C4C066B156BE9    21896    ----a-w-    F:\WINDOWS\System32\drivers\tdtcp.sys
2015-09-18 19:53:48    D4F5643D7714EF499AE9527FDCD50894    139400    ----a-w-    F:\WINDOWS\System32\drivers\rdpwd.sys
2015-09-18 19:53:48    38D437CF2D98965F239B0ABCD66DCB0F    12040    ----a-w-    F:\WINDOWS\System32\drivers\tdpipe.sys
2015-09-18 19:53:30    A540A99C281D933F3D69D55E48727F47    40840    ----a-w-    F:\WINDOWS\System32\drivers\termdd.sys
2015-09-18 19:53:30    A2CAE2C60BC37E0751EF9DDA7CEAF4AD    196864    ----a-w-    F:\WINDOWS\System32\drivers\rdpdr.sys
====== F:\WINDOWS\Tasks ======
====== F:\WINDOWS\Temp ======
======= F:\Program Files =====
2015-10-08 18:57:34    --------    d-----w-    F:\Program Files\trend micro
2015-09-28 05:53:24    --------    d-----w-    F:\Program Files\Common Files\Ahead
2015-09-28 05:53:18    --------    d-----w-    F:\Program Files\Ahead
2015-09-18 21:50:30    --------    d-----w-    F:\Program Files\Common Files\ODBC
2015-09-18 21:50:27    --------    d-----w-    F:\Program Files\Common Files\SpeechEngines
2015-09-18 21:50:26    --------    d-----w-    F:\Program Files\Common Files\Microsoft Shared
2015-09-18 21:50:26    --------    d-----w-    F:\Program Files\Common Files
2015-09-18 21:27:02    --------    d-----w-    F:\Program Files\VideoLAN
2015-09-18 21:21:29    --------    d-----w-    F:\Program Files\Microsoft Works
2015-09-18 21:21:24    --------    d-----w-    F:\Program Files\MSBuild
2015-09-18 21:21:15    --------    d-----w-    F:\Program Files\Microsoft Visual Studio
2015-09-18 21:21:15    --------    d-----w-    F:\Program Files\Common Files\DESIGNER
2015-09-18 21:19:05    --------    d-----w-    F:\Program Files\Microsoft Office
2015-09-18 21:13:51    --------    d-----w-    F:\Program Files\Winamp
2015-09-18 21:13:14    --------    d-----w-    F:\Program Files\WinRAR
2015-09-18 21:03:54    --------    d-----w-    F:\Program Files\HP
2015-09-18 20:54:51    --------    d-----w-    F:\Program Files\uTorrent
2015-09-18 20:50:20    --------    d-----w-    F:\Program Files\Mozilla Maintenance Service
2015-09-18 20:42:03    --------    d-----w-    F:\Program Files\Analog Devices
2015-09-18 20:41:35    --------    d-----w-    F:\Program Files\Synaptics
2015-09-18 20:40:18    --------    d-----w-    F:\Program Files\Broadcom
2015-09-18 20:38:39    --------    d-----w-    F:\Program Files\Hewlett-Packard
2015-09-18 20:35:22    --------    d-----w-    F:\Program Files\Intel
2015-09-18 20:34:21    --------    d--h--w-    F:\Program Files\InstallShield Installation Information
2015-09-18 20:34:21    --------    d-----w-    F:\Program Files\HPQ
2015-09-18 20:34:19    --------    d-----w-    F:\Program Files\Common Files\InstallShield
2015-09-18 20:03:21    --------    d--h--w-    F:\Program Files\Uninstall Information
2015-09-18 19:57:22    --------    d-----w-    F:\Program Files\xerox
2015-09-18 19:57:22    --------    d-----w-    F:\Program Files\microsoft frontpage
2015-09-18 19:56:07    --------    d-----w-    F:\Program Files\Online Services
2015-09-18 19:55:25    --------    d-----w-    F:\Program Files\Common Files\Services
2015-09-18 19:55:21    --------    d-----w-    F:\Program Files\Common Files\MSSoap
2015-09-18 19:55:08    --------    d-----w-    F:\Program Files\Movie Maker
2015-09-18 19:54:55    --------    d-----w-    F:\Program Files\NetMeeting
2015-09-18 19:54:52    --------    d-----w-    F:\Program Files\Outlook Express
2015-09-18 19:54:45    --------    d-----w-    F:\Program Files\Common Files\System
2015-09-18 19:54:42    --------    d-----w-    F:\Program Files\Internet Explorer
2015-09-18 19:54:20    --------    d-----w-    F:\Program Files\Windows Media Player
2015-09-18 19:54:17    --------    d-----w-    F:\Program Files\Messenger
2015-09-18 19:54:14    --------    d-----w-    F:\Program Files\MSN Gaming Zone
2015-09-18 19:53:49    --------    d-----w-    F:\Program Files\Windows NT
======= F: =====
2015-09-18 21:48:37    BB4E8E4D5CC4EF59D6E34B5F0CA7EF7F    210    --sh--w-    F:\boot.ini
====== F:\Documents and Settings\dr dre\Application Data ======
2015-10-04 08:04:10    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\AvgSetupLog
2015-10-04 08:04:05    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\Avg
2015-10-04 08:03:55    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\Avg2015
2015-10-04 06:47:09    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\panda
2015-10-04 06:43:38    0B95B9FE02682BB7AE65D3BC0E22F12A    68928    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-09-23 20:48:43    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\Adobe
2015-09-20 16:27:05    DCD16F407E7DCAD851D7C871924EA134    4608    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-18 21:50:08    88CF0FF92A4A9FA7BD9B7513B2E9E22B    62    --sha-w-    F:\Documents and Settings\Default User\Application Data\desktop.ini
2015-09-18 21:50:08    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start\Programma's\Opstarten
2015-09-18 21:50:08    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start\Programma's
2015-09-18 21:49:52    --------    d-s---w-    F:\Documents and Settings\Default User\Application Data\Microsoft
2015-09-18 21:27:52    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\vlc
2015-09-18 21:19:11    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\Microsoft Help
2015-09-18 21:13:15    --------    d-----w-    F:\Documents and Settings\dr dre\Menu Start\Programma's\WinRAR
2015-09-18 20:54:42    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\uTorrent
2015-09-18 20:50:28    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\Mozilla
2015-09-18 20:50:28    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\Mozilla
2015-09-18 20:42:59    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\InstallShield
2015-09-18 20:03:22    --------    d-----w-    F:\Documents and Settings\dr dre\Application Data\Identities
2015-09-18 20:03:16    88CF0FF92A4A9FA7BD9B7513B2E9E22B    62    --sha-w-    F:\Documents and Settings\dr dre\Application Data\desktop.ini
2015-09-18 20:03:16    --------    d-s---w-    F:\Documents and Settings\dr dre\Application Data\Microsoft
2015-09-18 20:03:16    --------    d-----w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\Microsoft
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start\Programma's\Opstarten
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start\Programma's\Bureau-accessoires\Toegankelijkheid
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start\Programma's\Bureau-accessoires\Entertainment
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start\Programma's\Bureau-accessoires
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start\Programma's
2015-09-18 20:01:20    --------    d-s---w-    F:\Documents and Settings\LocalService\Application Data\Microsoft
2015-09-18 20:01:20    --------    d-----w-    F:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
2015-09-18 19:59:55    --------    d-----w-    F:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
2015-09-18 19:59:54    --------    d-s---w-    F:\Documents and Settings\NetworkService\Application Data\Microsoft
2015-09-18 19:59:03    88CF0FF92A4A9FA7BD9B7513B2E9E22B    62    --sha-w-    F:\WINDOWS\system32\config\systemprofile\Application Data\desktop.ini
2015-09-18 19:59:03    --------    d-s---w-    F:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft
2015-09-18 19:59:03    --------    d-----w-    F:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft
2015-09-18 19:57:00    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start\Programma's\Bureau-accessoires\Toegankelijkheid
2015-09-18 19:56:59    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start\Programma's\Bureau-accessoires\Entertainment
2015-09-18 19:56:55    --------    d-----w-    F:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft
2015-09-18 19:56:07    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start\Programma's\Bureau-accessoires
====== F:\Documents and Settings\dr dre ======
2015-09-18 21:50:08    --------    d-s---w-    F:\Documents and Settings\Default User\Cookies
2015-09-18 21:50:08    --------    d--h--w-    F:\Documents and Settings\Default User\Sjablonen
2015-09-18 21:50:08    --------    d--h--w-    F:\Documents and Settings\Default User\Onlangs geopend
2015-09-18 21:50:08    --------    d--h--w-    F:\Documents and Settings\Default User\Netwerkprinteromgeving
2015-09-18 21:50:08    --------    d--h--w-    F:\Documents and Settings\Default User\NetHood
2015-09-18 21:50:08    --------    d--h--r-    F:\Documents and Settings\Default User\SendTo
2015-09-18 21:50:08    --------    d--h--r-    F:\Documents and Settings\Default User\Local Settings
2015-09-18 21:50:08    --------    d-----w-    F:\Documents and Settings\Default User\Mijn documenten
2015-09-18 21:50:08    --------    d-----w-    F:\Documents and Settings\Default User\Favorieten
2015-09-18 21:50:08    --------    d-----w-    F:\Documents and Settings\Default User\Bureaublad
2015-09-18 21:50:08    --------    d-----r-    F:\Documents and Settings\Default User\Menu Start
2015-09-18 21:49:52    --------    d--h--r-    F:\Documents and Settings\Default User\Application Data
2015-09-18 20:03:17    7D19A444F835CF627FB65127A25778A7    188    --sh--w-    F:\Documents and Settings\dr dre\ntuser.ini
2015-09-18 20:03:16    --------    d-s---w-    F:\Documents and Settings\dr dre\Cookies
2015-09-18 20:03:16    --------    d--h--w-    F:\Documents and Settings\dr dre\Sjablonen
2015-09-18 20:03:16    --------    d--h--w-    F:\Documents and Settings\dr dre\Netwerkprinteromgeving
2015-09-18 20:03:16    --------    d--h--w-    F:\Documents and Settings\dr dre\NetHood
2015-09-18 20:03:16    --------    d--h--w-    F:\Documents and Settings\dr dre\Local Settings
2015-09-18 20:03:16    --------    d--h--r-    F:\Documents and Settings\dr dre\SendTo
2015-09-18 20:03:16    --------    d--h--r-    F:\Documents and Settings\dr dre\Onlangs geopend
2015-09-18 20:03:16    --------    d--h--r-    F:\Documents and Settings\dr dre\Application Data
2015-09-18 20:03:16    --------    d-----w-    F:\Documents and Settings\dr dre\Bureaublad
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Mijn documenten
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Menu Start
2015-09-18 20:03:16    --------    d-----r-    F:\Documents and Settings\dr dre\Favorieten
2015-09-18 20:01:20    6FC234AD3752E1267B34FB12BCD6718B    20    --sh--w-    F:\Documents and Settings\LocalService\ntuser.ini
2015-09-18 20:01:20    --------    d-s---w-    F:\Documents and Settings\LocalService\Cookies
2015-09-18 20:01:20    --------    d--h--w-    F:\Documents and Settings\LocalService\Local Settings
2015-09-18 20:01:20    --------    d-----w-    F:\Documents and Settings\LocalService\Application Data
2015-09-18 19:59:55    6FC234AD3752E1267B34FB12BCD6718B    20    --sh--w-    F:\Documents and Settings\NetworkService\ntuser.ini
2015-09-18 19:59:54    --------    d-s---w-    F:\Documents and Settings\NetworkService\Cookies
2015-09-18 19:59:54    --------    d--h--w-    F:\Documents and Settings\NetworkService\Local Settings
2015-09-18 19:59:54    --------    d-----w-    F:\Documents and Settings\NetworkService\Application Data
2015-09-18 19:59:03    --------    d-s---w-    F:\WINDOWS\system32\config\systemprofile\Cookies
2015-09-18 19:59:03    --------    d--h--w-    F:\WINDOWS\system32\config\systemprofile\Sjablonen
2015-09-18 19:59:03    --------    d--h--w-    F:\WINDOWS\system32\config\systemprofile\Onlangs geopend
2015-09-18 19:59:03    --------    d--h--w-    F:\WINDOWS\system32\config\systemprofile\Netwerkprinteromgeving
2015-09-18 19:59:03    --------    d--h--w-    F:\WINDOWS\system32\config\systemprofile\NetHood
2015-09-18 19:59:03    --------    d--h--r-    F:\WINDOWS\system32\config\systemprofile\SendTo
2015-09-18 19:59:03    --------    d--h--r-    F:\WINDOWS\system32\config\systemprofile\Local Settings
2015-09-18 19:59:03    --------    d--h--r-    F:\WINDOWS\system32\config\systemprofile\Application Data
2015-09-18 19:59:03    --------    d-----w-    F:\WINDOWS\system32\config\systemprofile\Mijn documenten
2015-09-18 19:59:03    --------    d-----w-    F:\WINDOWS\system32\config\systemprofile\Favorieten
2015-09-18 19:59:03    --------    d-----w-    F:\WINDOWS\system32\config\systemprofile\Bureaublad
2015-09-18 19:59:03    --------    d-----r-    F:\WINDOWS\system32\config\systemprofile\Menu Start
2015-09-18 19:54:41    --------    d-----r-    F:\Documents and Settings\All Users\Documenten\Mijn afbeeldingen
2015-09-18 19:54:20    --------    d-----r-    F:\Documents and Settings\All Users\Documenten\Mijn muziek
2015-09-18 19:53:30    --------    d-----r-    F:\Documents and Settings\All Users\Documenten\Mijn video's

====== F: exe-files ==
2015-10-08 18:57:34    9A2347903D6EDB84C10F288BC0578C1C    388608    ----a-w-    F:\Program Files\trend micro\dr dre.exe
2015-10-08 18:57:05    8685FAF50C04F9A9C2F56FF64B0B7ACB    1107968    ----a-w-    F:\prog downloads\RSIT.exe
2015-10-04 12:13:14    020A8FC29E1B824F024CD4954076034C    1088736    ----a-w-    F:\prog downloads\ink-destructor\Tweaking.com-RepairlnkFileAssociation.exe
2015-10-04 08:04:09    C209C1E20EC20811EE415A165A8DEC01    2875304    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS05A5785F\avgsetupx.exe
2015-10-04 08:04:09    70B0826DF9F32DE60D6FA8D6010AA83C    778152    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS05A5785F\avgntdumpx.exe
2015-10-04 08:04:05    B571BDEF3606ADFC2E0C6B88E70249A9    2892128    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\avg-84866328-1bd8-4122-bc1e-d94a3fed4261.exe
2015-10-04 08:03:53    A8450FB0E17DCFE04E1EED7E38E84BA9    25512    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrdtesta.exe
2015-10-04 08:03:53    9E240182322F517861473A630C85228C    24488    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrdtestx.exe
2015-10-04 08:03:53    8ABA5F3BB11A15E70A5139192D8D53CB    371624    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgrunasx.exe
2015-10-04 08:03:53    7C69B24D70EDCC7709CC6149BAD16D6C    785320    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgntdumpx.exe
2015-10-04 08:03:53    4706A3523C92B99657D5417541131ABF    6920824    ------w-    F:\Documents and Settings\dr dre\Local Settings\Temp\7zS4BC7BD2F\avgmfapx.exe
2015-10-04 07:48:51    F57E12833F272D34DFF3C1BAE0B344D0    914680    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\PGUse.exe
2015-10-04 07:48:51    27D4BCC325306B1415A89DE550528E04    94720    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\MsiZap.Exe
2015-10-04 07:48:51    059398809072A8FE34C55B3851D1B0FC    269048    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DG13\SMCLpav.exe
2015-10-04 07:22:40    5507C79818AB8509D35ABC869D3235BF    470232    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSINanoRun.exe
2015-10-04 07:22:39    FC0680AE03D9C3690948FDD10D5A8385    75000    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\tracelog.exe
2015-10-04 07:22:39    DB7393F74471C6A3ABF3A10C462C4389    536824    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{EF3427FE-86CE-4340-BA3E-00D3380CB7B7}\PSANCU.exe
2015-10-04 07:22:39    5507C79818AB8509D35ABC869D3235BF    470232    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\C5\PSINanoRun.exe
2015-10-04 07:22:38    F57E12833F272D34DFF3C1BAE0B344D0    914680    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\PGUse.exe
2015-10-04 07:22:38    27D4BCC325306B1415A89DE550528E04    94720    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\MsiZap.Exe
2015-10-04 07:22:38    059398809072A8FE34C55B3851D1B0FC    269048    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\DGC4\SMCLpav.exe
2015-10-04 06:44:15    F8BAB3CB0F8A7D4DE607FB58EB83C2A2    64167304    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Temp\{55F5C714-7EE8-4EBF-972A-1F2FA10DDA67}.exe
=== F: other files ==
2015-10-04 06:47:10    E4D444FAE0175BE2786B5A178F5A6CC0    181    ----a-w-    F:\Documents and Settings\dr dre\Local Settings\Application Data\panda\white.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-21-2025429265-776561741-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\ctfmon.exe"
"uTorrent"="F:\Program Files\uTorrent\uTorrent.exe"
"csrss"="wscript.exe //B F:\DOCUME~1\DRDRE~1\LOCALS~1\Temp\csrss.vbs"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"="F:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"SynTPStart"="F:\Program Files\Synaptics\SynTP\SynTPStart.exe"
"SoundMAXPnP"="F:\Program Files\Analog Devices\Core\smax4pnp.exe"
"SoundMAX"="F:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray"
"IgfxTray"="F:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="F:\WINDOWS\system32\hkcmd.exe"
"Persistence"="F:\WINDOWS\system32\igfxpers.exe"
"HP Component Manager"="F:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
"HPDJ Taskbar Utility"="F:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe"
"HP Software Update"="F:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
"WinampAgent"="F:\Program Files\Winamp\winampa.exe"
"csrss"="wscript.exe //B F:\DOCUME~1\DRDRE~1\LOCALS~1\Temp\csrss.vbs"
"NeroFilterCheck"="F:\WINDOWS\system32\NeroCheck.exe"
"Panda Security URL Filtering"="F:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering\Panda_URL_Filtering.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\ctfmon.exe"
"uTorrent"="F:\Program Files\uTorrent\uTorrent.exe"
"csrss"="wscript.exe //B F:\DOCUME~1\DRDRE~1\LOCALS~1\Temp\csrss.vbs"

==== Startup Folders ======================

2015-09-23 17:58:31    204288    ----a-w-    F:\Documents and Settings\dr dre\Menu Start\Programma's\Opstarten\csrss.exe

==== Folders in F:\DOCUME~1\ALLUSE~1\APPLIC~1 0-6 Months Old ======================

2015-09-18 21:19:05    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
2015-09-18 21:49:52    --------    d-s---w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
2015-09-23 20:45:51    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
2015-09-23 20:45:52    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee Security Scan
2015-10-04 06:43:38    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\Panda Security
2015-10-04 06:47:08    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\Panda Security URL Filtering
2015-10-04 08:03:55    --------    d-----w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\MFAData
2015-10-04 08:03:55    --------    d--h--w-    F:\DOCUME~1\ALLUSE~1\APPLIC~1\Common Files

==== Firefox Start and Search pages ======================

ProfilePath: F:\Documents and Settings\DRDRE~1\Application Data\Mozilla\Firefox\Profiles\wdfr6qy8.default
user_pref("keyword.URL", "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=");

==== Firefox Extensions ======================

AppDir: F:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: F:\Documents and Settings\dr dre\Application Data\Mozilla\Firefox\Profiles\wdfr6qy8.default
5B087706B1A7BC260CC4BFB6EFE26D77    - F:\Program Files\Windows Media Player\npdrmv2.dll -    Microsoft® DRM
B66373BE0D51DFF85DC2F671227A66FC    - F:\Program Files\Windows Media Player\npdsplay.dll -    Windows Media Player Plug-in Dynamic Link Library
AAB8CD2564F813AD1A0CCD4C6071B633    - F:\Program Files\Windows Media Player\npwmsdrm.dll -    Microsoft® DRM
52CE0DBFD9738AE528CF525A0367EBEB    - F:\Program Files\VideoLAN\VLC\npvlc.dll -    VLC Web Plugin
1A62BB86D17B8DC0D4339BACC8D60635    - F:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll -    Shockwave Flash


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Empty IE Cache ======================

F:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
F:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
F:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
F:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
F:\Documents and Settings\dr dre\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
F:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

F:\Documents and Settings\dr dre\Local Settings\Application Data\Mozilla\Firefox\Profiles\wdfr6qy8.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== F:\zoek_backup content ======================

F:\zoek_backup (files=6 folders=2 2326667 bytes)

==== Empty Temp Folders ======================

F:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
F:\Documents and Settings\dr dre\Local Settings\Temp will be emptied at reboot
F:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
F:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
F:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

F:\WINDOWS\Temp successfully emptied
F:\DOCUME~1\DRDRE~1\LOCALS~1\Temp successfully emptied

==== Deleting Files / Folders ======================

"F:\Documents and Settings\dr dre\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"F:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on 10.10.2015 at 17:15:23,51 ======================
 

Link naar bericht
Delen op andere sites
×
×
  • Nieuwe aanmaken...