Hallo Maxstar,
Allereerst bedankt voor je reactie. Ik heb de stappen uitgevoerd zoals aangegeven en hieronder de text van de DDS file
Ik stel het zeer op prijs dat iedereen behulpzaam is. Thx!
.
DDS (Ver_2011-08-26.01) - NTFSAMD64 NETWORK
Internet Explorer: 9.0.8112.16421
Run by Brainfactor at 19:23:55 on 2012-03-23
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4095.2610 [GMT 1:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\helppane.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://
www.google.nl/" onclick="window.open(this.href);return false;
uWindow Title = Windows Internet Explorer wordt aangeboden door MSN and Bing
uInternet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local>
uURLSearchHooks: H - No File
mWinlogon: Userinit=userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB: {66BD2442-241B-44CD-8C7A-B51037053CDB} - No File
uRun: [googletalk] C:\Users\Brainfactor\AppData\Roaming\Google\Google Talk\googletalk.exe /autostart
uRun: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [Akamai NetSession Interface] "C:\Users\Brainfactor\AppData\Local\Akamai\netsession_win.exe"
uRun: [Download Master] C:\Program Files (x86)\Download Master\dmaster.exe -autorun
uRun: [Google Update] "C:\Users\Brainfactor\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [GBMLite8AgentLaCie] C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe
uRun: [Vidalia] "C:\Program Files (x86)\Vidalia Bundle\Vidalia\vidalia.exe"
uRun: [Olympus ib] "C:\Program Files (x86)\Olympus\ib\olycamdetect.exe" /Startup
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [Update] C:\Users\Brainfactor\AppData\Roaming\0.7005105154255638.exe
mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [GBMLite8AgentLaCie] C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [MDS_Menu] "C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Olympus\ib" UpdateWithCreateOnce "Software\OLYMPUS\ib\1.0"
mRun: [Olympus ib] "C:\Program Files (x86)\Olympus\ib\olycamdetect.exe" /Startup
mRun: [<NO NAME>]
mRun: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
StartupFolder: C:\Users\BRAINF~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Brainfactor\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\BRAINF~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Çàêà÷àòü ÂÑÅ ïðè ïîìîùè Download Master - C:\Program Files (x86)\Download Master\dmieall.htm
IE: Çàêà÷àòü ïðè ïîìîùè Download Master - C:\Program Files (x86)\Download Master\dmie.htm
IE: Ïåðåäàòü íà óäàëåííóþ çàêà÷êó DM - C:\Program Files (x86)\Download Master\remdown.htm
IE: ???????? ??? ??? ?????? Download Master
IE: ???????? ??? ?????? Download Master
IE: ???????? ?? ????????? ??????? DM
IE: {8DAE90AD-4583-4977-9DD4-4360F7A45C74}
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab" onclick="window.open(this.href);return false;
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab" onclick="window.open(this.href);return false;
DPF: {EBF0E6DC-7CDA-4FE4-A10E-2EDB53BEAC97} - hxxp://meldingen.vanmeijel.nl/infraactive/in_wrapper.CAB" onclick="window.open(this.href);return false;
TCP: DhcpNameServer = 212.54.35.25 212.54.40.25
TCP: Interfaces\{7A944EB0-8537-4F3C-AD8E-D851E999AACE} : DhcpNameServer = 212.54.35.25 212.54.40.25
TCP: Interfaces\{7A944EB0-8537-4F3C-AD8E-D851E999AACE}\0484F6D6564333332313 : DhcpNameServer = 192.168.1.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{9FDDE16B-836F-4806-AB1F-1455CBEFF289}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
TB-X64: {66BD2442-241B-44CD-8C7A-B51037053CDB} - No File
mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [GBMLite8AgentLaCie] C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [MDS_Menu] "C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Olympus\ib" UpdateWithCreateOnce "Software\OLYMPUS\ib\1.0"
mRun-x64: [Olympus ib] "C:\Program Files (x86)\Olympus\ib\olycamdetect.exe" /Startup
mRun-x64: [(standaard)]
mRun-x64: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
IE-X64: {8DAE90AD-4583-4977-9DD4-4360F7A45C74}
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R3 netr7364;Stuurprogramma voor 802.11 b/g draadloze USB-adapter voor Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?]
R3 RTL8167;Realtek 8167 NT-stuurprogramma;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
S2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
S2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2009-7-14 20992]
S2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update-service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-18 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-5 2214504]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856]
S3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
S3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
S3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]
S3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]
S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 gupdatem;Google Update-service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-18 136176]
S3 HCW85BDA;Hauppauge WinTV 885 Video Capture;C:\Windows\system32\drivers\HCW85BDA.sys --> C:\Windows\system32\drivers\HCW85BDA.sys [?]
S3 OlyCamComm;OLYMPUS USB Communication Device;C:\Windows\system32\DRIVERS\OlyCamComm.sys --> C:\Windows\system32\DRIVERS\OlyCamComm.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-03-22 21:18:01 -------- d---a-w- C:\Kaspersky Rescue Disk 10.0
2012-03-22 19:27:45 157696 ----a-w- C:\Users\Brainfactor\AppData\Roaming\0.7005105154255638.exe
2012-03-22 18:09:09 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{1D781133-BC21-41C0-B425-43D8ABC2202B}
2012-03-22 18:08:46 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{4FE801D7-0A52-4581-8B88-A834396EAAEB}
2012-03-21 22:15:12 -------- d-----w- C:\Users\Brainfactor\AppData\Local\TechSmith
2012-03-21 22:13:58 -------- d-----w- C:\Windows\SysWow64\QuickTime
2012-03-21 22:13:28 -------- d-----w- C:\Program Files (x86)\Common Files\TechSmith Shared
2012-03-21 19:47:50 -------- d-----w- C:\Program Files\Handbrake
2012-03-21 19:15:56 -------- d-----w- C:\ProgramData\Sony Corporation
2012-03-21 19:15:50 -------- d-----w- C:\Users\Brainfactor\AppData\Local\kinoma
2012-03-21 19:14:54 -------- d-----w- C:\Users\Brainfactor\AppData\Local\Sony Corporation
2012-03-21 19:14:53 -------- d-----w- C:\Program Files (x86)\Sony
2012-03-21 19:14:53 -------- d-----w- C:\Program Files (x86)\Common Files\Sony Shared
2012-03-21 16:27:24 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{9D85343C-A6A6-4BBD-A6AF-11F71F487754}
2012-03-21 16:27:01 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{EA5FAC00-0035-4757-BC2F-C99B87251422}
2012-03-20 22:40:00 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{4EC10C8F-0E87-40FE-A64A-983B66ED0C8B}
2012-03-20 22:39:37 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{6F63CC8C-32A3-475B-85BD-56E3AF9309C1}
2012-03-20 10:00:46 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{5B022572-1906-4B9C-B906-EBDC3E12E61C}
2012-03-20 10:00:27 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{5BACA429-869B-4F50-ADFB-0CD6814B8E20}
2012-03-20 09:21:46 -------- d-----r- C:\Program Files (x86)\Skype
2012-03-19 22:00:00 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{EA4EBF05-BB3D-4CD1-B8E1-A5B1D50C3FCD}
2012-03-19 21:59:37 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{183914AD-23CA-48F3-9CCF-1A047EB1C555}
2012-03-19 21:49:04 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{1281119A-A327-4349-BA2E-D117606A4918}
2012-03-19 21:48:41 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{D5668EA5-D27E-4715-9EC4-4E428A9F7216}
2012-03-19 20:13:19 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{965DAFA8-6167-4064-970D-DFA3C9D75712}
2012-03-19 08:08:45 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{8CE052FB-5973-406E-BC7C-A768163CD645}
2012-03-19 08:08:35 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{22C068C4-BBC1-47EA-BBAB-6D4F5172F718}
2012-03-19 08:08:23 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{ED63BCF0-7FB6-47A4-B012-7E4F04848CB3}
2012-03-19 08:07:59 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{40C2A469-AA77-427E-B18E-655FC422EE97}
2012-03-18 11:34:54 -------- d-----w- C:\Windows\System32\20-20 Technologies
2012-03-18 08:20:27 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{FE4E2021-C5CC-4B67-9248-DC279D2CF1F2}
2012-03-18 08:20:04 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{3DF18BAE-8522-4A07-B14C-B5109FA9FD95}
2012-03-17 15:46:44 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{0A66D1E2-77FC-4D73-9469-A46642A07BEE}
2012-03-17 15:46:22 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{F0ED8CD5-CAA0-415A-AB57-D1654CDB98B6}
2012-03-17 15:44:10 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{0B04CD0A-9B33-4B3B-BB90-4BA50362711F}
2012-03-17 15:39:30 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{B93DE1EF-C70B-48D0-BFC8-99CA34697AC0}
2012-03-17 14:52:54 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{D757B5D7-F36D-481F-9C92-4596ED5702EA}
2012-03-17 11:32:23 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{A31719AC-F9A3-4A76-9178-C19AB84D69C0}
2012-03-17 11:32:01 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{176A9AE2-62F4-45C4-9284-F8C305ADBA2A}
2012-03-17 09:07:31 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{942D8FEE-74BB-4D4C-8906-7CF8FCBF7116}
2012-03-17 09:07:09 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{A7AD5B35-12D1-4180-AF3F-468027BD8A17}
2012-03-17 08:48:15 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{71724C75-FDB3-4993-8F3A-E416449D46B4}
2012-03-16 20:19:53 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{0EA7FDC2-D96C-4CF8-BF80-4B2403F75120}
2012-03-16 20:19:31 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{506EA227-B250-4CCC-99AD-31B8F35AC234}
2012-03-16 06:26:12 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{371194DC-7A24-47AE-AC6D-DDC7DB6B5CE8}
2012-03-16 06:25:48 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{F8F4E803-A4CE-41E9-97FB-8648EA29D97B}
2012-03-15 08:09:58 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{5C1D5464-44E3-4096-886D-2F5F00833EE0}
2012-03-15 08:09:35 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{83863DD4-1FEA-47CB-8581-468A1D7BA39E}
2012-03-15 07:55:39 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{ADE075BB-8C91-4F8A-AD55-F83985E987DD}
2012-03-15 07:55:17 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E8436D22-96B5-4274-AEA2-025A0D0ECE50}
2012-03-14 20:00:34 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-03-14 20:00:33 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-03-14 20:00:33 3913584 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-03-14 09:41:02 -------- d-----w- C:\Users\Brainfactor\AppData\Roaming\Belastingdienst
2012-03-14 09:40:50 -------- d-----w- C:\Program Files (x86)\Belastingdienst
2012-03-14 09:16:16 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{86000E0B-F721-466B-A137-6BA69168A294}
2012-03-14 09:15:53 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E66B7D85-64F9-4705-8440-161367F29270}
2012-03-14 09:00:26 3145728 ----a-w- C:\Windows\System32\win32k.sys
2012-03-14 09:00:24 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2012-03-14 09:00:24 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-03-14 09:00:22 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2012-03-14 09:00:22 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2012-03-14 09:00:22 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2012-03-14 08:59:42 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-03-14 08:59:42 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-03-14 08:59:42 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-03-14 08:59:42 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-03-13 21:15:27 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{B4A721B6-8A6D-4144-B68A-07A9704084CA}
2012-03-13 21:15:05 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{BE80662D-4BE9-4E7F-8030-699F2E5F70DE}
2012-03-13 06:18:43 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{92A04942-966B-41ED-83BC-1E872A913288}
2012-03-13 06:18:20 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{63304B95-DC1D-4A03-926D-9337FB5C872D}
2012-03-12 16:29:49 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{86D518AC-D3E8-42B2-8007-A84215CC96BC}
2012-03-12 16:29:25 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{666D1A80-897A-40AB-91D3-669F52400D97}
2012-03-11 12:26:39 -------- d-----w- C:\Users\Brainfactor\AppData\Local\OLYMPUS
2012-03-11 12:25:30 -------- d-----w- C:\Program Files (x86)\Olympus
2012-03-11 12:10:00 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{29E2632E-2DDB-4960-A40C-68EECAA384FD}
2012-03-11 12:09:38 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{5E201AF5-9A9E-4E0A-B74A-36372199DCF0}
2012-03-10 21:07:35 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{EF1A8402-D362-4E3C-BD85-9A5C6109D07B}
2012-03-10 08:27:09 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{8081EC5B-8898-4B44-8881-33A6BD43371C}
2012-03-10 08:26:58 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{597526FF-FB40-486C-B498-D0CF07F199EB}
2012-03-09 17:40:31 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{825A361D-8477-468A-8476-0E3F16E960DE}
2012-03-09 17:40:07 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{D67724C9-74E4-4831-AAAE-9384F9F28EF6}
2012-03-08 14:06:48 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{FDCE0BB9-1044-484D-B3A2-7B57E41D90FE}
2012-03-08 14:06:26 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{30ED3CA4-B8EA-4CC4-81AB-0E371B36C7D1}
2012-03-07 17:15:30 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{3CD245AB-21F4-46C8-9EB2-2690451574E2}
2012-03-07 17:15:05 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{17326B8A-3660-4610-B6D3-AA852D882912}
2012-03-06 19:02:38 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{0B2679A1-7CE3-46C1-AF63-768AD65359D4}
2012-03-06 06:40:36 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{17C20BC5-88BB-4816-B135-EA51DEF173D8}
2012-03-06 06:40:12 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{17EF01D6-5BEB-4D15-B965-576D9E5DB226}
2012-03-05 16:08:33 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{42CCFA70-A1A1-42E9-81AE-EE02D1490BBC}
2012-03-05 16:08:10 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{6A4E4218-A27A-4B60-88F0-91CA05E07B99}
2012-03-05 16:01:54 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{FBE096D6-E8A8-45E0-91AC-6B8531CA7376}
2012-03-04 11:30:36 -------- d-----w- C:\Program Files\iPod
2012-03-04 11:30:35 -------- d-----w- C:\Program Files\iTunes
2012-03-04 11:30:35 -------- d-----w- C:\Program Files (x86)\iTunes
2012-03-04 11:26:27 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E0EF16C1-6D4B-4366-8AC0-0FEABC4FE69C}
2012-03-04 11:26:16 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{34EB4B8E-A03D-469D-8D72-621DD579F371}
2012-03-04 11:25:56 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{50D01E29-1E49-4DE2-8994-77DAB73C141B}
2012-03-04 11:21:17 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{85AD139C-9E91-48BA-A804-802B61D401BB}
2012-03-03 21:57:15 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{710BBC0E-2035-412F-BB3D-F1B981BE6D67}
2012-03-03 21:56:53 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E96917E5-5A32-4180-AF2E-74230B7350B5}
2012-03-03 09:06:25 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{A948A13F-5C6C-4223-8575-055385BC6A3C}
2012-03-03 09:06:01 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{11D8727C-7307-408B-ADA4-9247B443AB6F}
2012-03-02 15:47:11 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{34B42EFA-5ED5-4E8D-A959-184D85C7F426}
2012-03-02 15:46:48 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{5005F466-3902-4E2F-8DA4-8DFD9F3FEB54}
2012-03-01 11:35:52 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{1AE4C3A8-B1BF-4DD4-B1D2-871C00FBA048}
2012-03-01 11:35:29 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E28FE6C8-6F55-4FD1-856D-413F3C25E00A}
2012-02-29 21:52:49 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{16FE845E-EF58-4740-ACC1-C45B3F110E4A}
2012-02-29 09:44:50 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{93D7A9F0-86B6-48C9-ACE6-CA6A2E3EEC36}
2012-02-29 09:44:27 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{3B2C9313-4436-4FA3-9F5E-FEED57DEFC4B}
2012-02-28 21:44:01 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E1B66365-9721-4F12-995C-5F1DD8F6A23C}
2012-02-28 21:43:39 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E6EF3980-4C6B-4E5B-ADA7-D9D2C9263592}
2012-02-28 06:58:54 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{D915A8E9-2094-4751-BD16-265F972E97EF}
2012-02-28 06:58:32 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{A6C03D7B-D17D-4AC0-8AE9-52C2ED35FCFB}
2012-02-27 16:05:46 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{B4D343B9-7357-45D6-AC56-A5588761D5EF}
2012-02-27 16:05:19 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{01A57D2A-7B2C-41F5-A978-C967D1C89382}
2012-02-26 20:55:47 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{4703E5F6-004F-4810-A909-D6F78CC61D25}
2012-02-26 20:55:25 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{578F5C49-723C-469F-89CD-9ED6216C9AB3}
2012-02-26 08:02:02 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{569DD6B1-E048-47CF-B180-21F4AE548E90}
2012-02-26 08:01:41 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{37AC6F50-D2E1-421E-BE38-84CC6A71E7F2}
2012-02-25 10:03:19 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{B109AA74-D821-40E8-AF0B-612C4DC90330}
2012-02-25 10:03:08 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E60452C7-564C-40FC-8785-11624FE8AD0C}
2012-02-25 10:02:57 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{CD576975-7F49-4901-9F53-D2A0946BCF24}
2012-02-25 10:02:34 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{AA086F4A-8D56-414B-90D7-ABD904CCE27E}
2012-02-24 08:00:30 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{B47BB59E-0734-48FF-AEF3-912A227AEAEB}
2012-02-24 08:00:06 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{32454DF4-6B01-4919-9A8F-6FC72CCFE982}
2012-02-23 10:56:04 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{FC6AEDF7-2350-4F33-9A9E-36E43D1A5287}
2012-02-23 10:55:42 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{E5E8C64D-7D97-4E9C-B567-D3B75B31B7E4}
2012-02-23 10:31:48 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{D8119489-A2CF-43C6-A1AF-C1AFAE7142B3}
2012-02-23 10:31:22 -------- d-----w- C:\Users\Brainfactor\AppData\Local\{2298B1DE-F49D-4330-9A2D-83C7C64F182F}
.
==================== Find3M ====================
.
2012-03-20 15:19:32 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-03-16 12:18:08 51200 ----a-w- C:\Windows\System32\MTAG32_S.DLL
2012-03-16 12:18:08 267776 ----a-w- C:\Windows\System32\MSTMON_S.EXE
2012-03-16 12:18:08 226816 ----a-w- C:\Windows\System32\MUINST_S.EXE
2012-03-16 12:18:08 1443328 ----a-w- C:\Windows\System32\MSTMON_S.DLL
2012-03-16 12:18:08 119808 ----a-w- C:\Windows\System32\MSPOOL_S.DLL
2012-03-16 12:18:07 93184 ----a-w- C:\Windows\System32\MCMM___S.DLL
2012-03-16 12:18:07 83968 ----a-w- C:\Windows\System32\MLMON__S.DLL
2012-03-16 12:18:07 77312 ----a-w- C:\Windows\System32\MICM___S.DLL
2012-03-16 12:18:07 59904 ----a-w- C:\Windows\System32\MIMF32_S.DLL
2012-03-16 12:18:07 54784 ----a-w- C:\Windows\System32\MCOINS_S.DLL
2012-03-16 12:18:07 107520 ----a-w- C:\Windows\System32\MGDI32_S.DLL
2012-01-04 10:44:20 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2012-01-04 08:58:41 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2011-12-30 06:26:08 515584 ----a-w- C:\Windows\System32\timedate.cpl
2011-12-30 05:27:56 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2011-12-28 03:59:24 498688 ----a-w- C:\Windows\System32\drivers\afd.sys
.
============= FINISH: 19:25:11,55 ===============