Vraag & Antwoord

Beveiliging & privacy

Virus Alureon weg? maar mappen blijven onzichtbaar etc.

Anoniem
wendyk
101 antwoorden
  • Okido.
  • Hieronder de MBAM scan log en Uninstallijst

    Malwarebytes' Anti-Malware 1.51.1.1800
    www.malwarebytes.org

    Databaseversie: 7622

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    31-8-2011 23:24:22
    mbam-log-2011-08-31 (23-24-22).txt

    Scantype: Snelle scan
    Objecten gescand: 185354
    Verstreken tijd: 4 minuut/minuten, 47 seconde(n)

    Geheugenprocessen geïnfecteerd: 0
    Geheugenmodulen geïnfecteerd: 0
    Registersleutels geïnfecteerd: 0
    Registerwaarden geïnfecteerd: 0
    Registerdata geïnfecteerd: 0
    Mappen geïnfecteerd: 0
    Bestanden geïnfecteerd: 0

    Geheugenprocessen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Geheugenmodulen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registersleutels geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registerwaarden geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registerdata geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Mappen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Bestanden geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)


    Uninstall-lijst HijackThis:

    Aangifte inkomstenbelasting 2010
    ABN AMRO e.dentifier2 software
    Adobe Flash Player 10 Plugin
    Adobe Photoshop Elements 2.0
    Adobe Reader 9.3.4 - Nederlands
    ArcSoft Magic-i Visual Effects 2
    ArcSoft PhotoStudio 5.5
    ArcSoft WebCam Companion 3
    Canon Camera Access Library
    Canon Camera Support Core Library
    Canon Camera Window DC_DV 5 for ZoomBrowser EX
    Canon Camera Window DC_DV 6 for ZoomBrowser EX
    Canon Camera Window DSLR 5 for ZoomBrowser EX
    Canon Camera Window MC 6 for ZoomBrowser EX
    Canon MovieEdit Task for ZoomBrowser EX
    Canon PhotoRecord
    Canon RAW Image Task for ZoomBrowser EX
    Canon Utilities PhotoStitch 3.1
    Canon ZoomBrowser EX (E)
    CanoScan Toolbox Ver4.9
    Definition update for Microsoft Office 2010 (KB982726)
    Evernote
    Feedback Tool
    Google Chrome
    Google Toolbar for Internet Explorer
    Google Toolbar for Internet Explorer
    Google Update Helper
    HiJackThis
  • Ik krijg het idee, dat er een behoorlijk stuk is weggevallen van de softwarelijst!
  • Sorry, inderdaad iets mis gegaan denk ik. Ik heb het nu opnieuw gedaan en dan is ie inderdaad veeeel langer.

    Aangifte inkomstenbelasting 2010
    ABN AMRO e.dentifier2 software
    Adobe Flash Player 10 Plugin
    Adobe Photoshop Elements 2.0
    Adobe Reader 9.3.4 - Nederlands
    ArcSoft Magic-i Visual Effects 2
    ArcSoft PhotoStudio 5.5
    ArcSoft WebCam Companion 3
    Canon Camera Access Library
    Canon Camera Support Core Library
    Canon Camera Window DC_DV 5 for ZoomBrowser EX
    Canon Camera Window DC_DV 6 for ZoomBrowser EX
    Canon Camera Window DSLR 5 for ZoomBrowser EX
    Canon Camera Window MC 6 for ZoomBrowser EX
    Canon MovieEdit Task for ZoomBrowser EX
    Canon PhotoRecord
    Canon RAW Image Task for ZoomBrowser EX
    Canon Utilities PhotoStitch 3.1
    Canon ZoomBrowser EX (E)
    CanoScan Toolbox Ver4.9
    Definition update for Microsoft Office 2010 (KB982726)
    Evernote
    Feedback Tool
    Google Chrome
    Google Toolbar for Internet Explorer
    Google Toolbar for Internet Explorer
    Google Update Helper
    HiJackThis
    Instellingen voor het controleren van inhoud VAIO
    Intel(R) Control Center
    Intel(R) Management Engine Components
    Intel(R) Rapid Storage Technology
    Intel(R) Turbo Boost Technology Driver
    Java(TM) 6 Update 21
    Junk Mail filter update
    Malwarebytes' Anti-Malware versie 1.51.1.1800
    Manual CanoScan 8400F
    Media Gallery
    Microsoft Choice Guard
    Microsoft Office 2010
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office 2010 Service Pack 1 (SP1)
    Microsoft Office Access MUI (Dutch) 2010
    Microsoft Office Excel MUI (Dutch) 2010
    Microsoft Office Groove MUI (Dutch) 2010
    Microsoft Office InfoPath MUI (Dutch) 2010
    Microsoft Office OneNote MUI (Dutch) 2010
    Microsoft Office Outlook Connector
    Microsoft Office Outlook MUI (Dutch) 2010
    Microsoft Office PowerPoint MUI (Dutch) 2010
    Microsoft Office Professional Plus 2010
    Microsoft Office Professional Plus 2010
    Microsoft Office Proof (Dutch) 2010
    Microsoft Office Proof (English) 2010
    Microsoft Office Proof (French) 2010
    Microsoft Office Proof (German) 2010
    Microsoft Office Proofing (Dutch) 2010
    Microsoft Office Publisher MUI (Dutch) 2010
    Microsoft Office Shared MUI (Dutch) 2010
    Microsoft Office Word MUI (Dutch) 2010
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft SQL Server Compact 3.5 SP1 English
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    MSVCRT
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MusicStation
    OmniPage SE 2.0
    Ondersteuning voor VAIO Transfer
    PMB
    PMB VAIO Edition Guide
    PMB VAIO Edition Plug-in
    Presto! PageManager 6.11
    Realtek HDMI Audio Driver for ATI
    Realtek High Definition Audio Driver
    Roxio Central Audio
    Roxio Central Copy
    Roxio Central Core
    Roxio Central Data
    Roxio Central Tools
    Roxio Easy Media Creator 10 LJ
    Roxio Easy Media Creator Home
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)
    Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)
    Setting Utility Series
    Skype Toolbars
    Skype™ 5.1
    SOHLib Merge Module
    Sony Home Network Library
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft Office 2010 (KB2494150)
    VAIO - PMB VAIO Edition Guide
    VAIO - PMB VAIO Edition Plug-in
    VAIO - Remote-toetsenbord
    VAIO Care
    VAIO Control Center
    VAIO Data Restore Tool
    VAIO DVD Menu Data
    VAIO Energiebeheer
    VAIO Entertainment Platform
    VAIO Event Service
    VAIO Gate
    VAIO Gate Default
    VAIO Marketing Tools
    VAIO Media plus
    VAIO Media plus Opening Movie
    VAIO Movie Story Template Data
    VAIO Movie Story Template Data
    VAIO Oorspronkelijke functie-instellingen
    VAIO Premium Partners
    VAIO Quick Web Access
    VAIO Quick Web Access
    VAIO screensaver
    VAIO Smart Network
    VAIO Update
    VAIO Wallpaper Contents
    Verzoek of wijziging voorlopige aanslag 2011
    Windows Live - Hulpprogramma voor uploaden
    Windows Live aanmeldhulp
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Essentials
    Windows Live Mail
    Windows Live Messenger
    Windows Live Photo Gallery
    Windows Live Sync
    Windows Live Writer
  • Hoi wendyk, we beginnen nu eerst met Java, want die versie in jouw Windows is al van een tijdje terug, dus een veiligheidsrisico.

    Download daarom eerst naar je bureaublad [b:f42c2a00da]Java 7 Update 0 (x86) voor Windows 7/XP/Vista/2000/2003/2008 Offline[/b:f42c2a00da]

    Echter nog niet de nieuwe versie installeren!


    Je gaat daarna eerst naar Configuratiescherm
    [list:f42c2a00da][*:f42c2a00da][b:f42c2a00da]Software[/b:f42c2a00da] - Windows 2000/Windows XP
    [*:f42c2a00da][b:f42c2a00da]Programma's en onderdelen[/b:f42c2a00da] - Windows Vista en Windows 7[/list:u:f42c2a00da] en je verwijdert daar [b:f42c2a00da]Java(TM) 6 Update 21[/b:f42c2a00da]

    Vervolgens start jij je PC opnieuw op.

    Dan mag je daarna de nieuwste Java versie installeren.


    Daarna doe je het volgende:

    [b:f42c2a00da]Welk programma[/b:f42c2a00da]: ComboFix
    [b:f42c2a00da]Waarvoor/waarom[/b:f42c2a00da]: Zeer specialistische scanner om Windows diepgaand te onderzoeken
    en zo mogelijk op te schonen.
    [b:f42c2a00da]Moeilijkheidsgraad[/b:f42c2a00da]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
    [b:f42c2a00da]Downloadlokatie[/b:f42c2a00da]: Dit programma absoluut naar het bureaublad downloaden!
    [b:f42c2a00da]Download ComboFix via één van deze locaties[/b:f42c2a00da]:
    [list:f42c2a00da][*:f42c2a00da][b:f42c2a00da]Bleepingcomputer[/b:f42c2a00da]
    [*:f42c2a00da][b:f42c2a00da]ForoSpyware[/b:f42c2a00da]
    [*:f42c2a00da][b:f42c2a00da]Geekstogo[/b:f42c2a00da][/list:u:f42c2a00da]
    [b:f42c2a00da]Hier[/b:f42c2a00da] zie je hoe je ComboFix moet gebruiken.

    Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn!
    [b:f42c2a00da]Hier[/b:f42c2a00da] en [b:f42c2a00da]hier[/b:f42c2a00da] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

    [b:f42c2a00da]Voor alle duidelijkheid nogmaals[/b:f42c2a00da]: ComboFix dient vanaf het bureaublad gestart te worden.

    [b:f42c2a00da]Opmerkingen[/b:f42c2a00da]:
    [list:f42c2a00da][*:f42c2a00da] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).
    [*:f42c2a00da]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten.
    [*:f42c2a00da]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:f42c2a00da]
    [b:f42c2a00da]ComboFix is opgestart[/b:f42c2a00da]:
    [list:f42c2a00da][*:f42c2a00da]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
    [*:f42c2a00da]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen!
    [*:f42c2a00da]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
    [*:f42c2a00da]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
    [*:f42c2a00da]Post de inhoud van dit logbestand in je volgende bericht.
    [*:f42c2a00da]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:f42c2a00da]
    [b:f42c2a00da]Belangrijke opmerking[/b:f42c2a00da]:
    [list:f42c2a00da][*:f42c2a00da][b:f42c2a00da]
  • ComboFix 11-08-31.05 - Ruth 01-09-2011 13:50:05.1.4 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3950.2155 [GMT 2:00]
    Gestart vanuit: c:\users\Ruth\Desktop\ComboFix.exe
    AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
    SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\program files (x86)\newsoft
    c:\program files (x86)\newsoft\Presto! PageManager 6\_Rtf_Reader.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\_Rtf2Pdf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\afrikns.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\albanian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\AminPlay.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\Amplayer.ex_
    c:\program files (x86)\newsoft\Presto! PageManager 6\Amplayer.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\AmProf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Anno.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\author.ri
    c:\program files (x86)\newsoft\Presto! PageManager 6\Avi2Mpeg1.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\AviToMpeg2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\basque.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\bcdll32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Bkground.lst
    c:\program files (x86)\newsoft\Presto! PageManager 6\Bold.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\BOOT.EX_
    c:\program files (x86)\newsoft\Presto! PageManager 6\brazil.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\brazil.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\breton.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Build Number.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\bulgar.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\bulgar.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\byelorus.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\catalan.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\ccmllnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\chechen.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\ChkVer.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\CloseNetGroup.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\cmdlnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Codecvt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Combine.hn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\Combine.pn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\Convert.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\crimtat.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\croatian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\czech.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\czech.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Da.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\DANISH.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\DANISH.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\A_RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\ARECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\AUX_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_F.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_M.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.FAC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLUS_T.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\COS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\COS.VAR
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\DBSINFO.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\FEAT_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\RECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\T4436.ID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\WORD_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\BIG5.HID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\BIG5GB.TBX
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\DEF_BIG.DIC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FACTORP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FARG_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FEATURE.SET
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FID_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FWD_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\GBBIG5.TBX
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\GROUPP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\INFO_BIG.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\PC120P2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\POST_BIG.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\RCG_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\RCG_BIG.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SIM_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SIM_BIG.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SING_BIG.LUT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\WORD_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\A_RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\ARECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\AUX_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_F.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_M.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.FAC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLUS_T.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\COS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\COS.VAR
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\DBSINFO.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\E76.ID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\FEAT_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\RECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\WORD_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\BIG5.HID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FACTORP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FARG_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FEATURE.SET
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FID_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FWD_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\GROUPP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\INFO_BIG.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\PC120P2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\POST_BIG.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\RCG_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\RCG_BIG.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SIM_BIG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SIM_BIG.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SING_BIG.LUT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\WORD_BIG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\A_RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\ARECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\AUX_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_F.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_M.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.FAC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\COS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\COS.VAR
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\DBSINFO.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\FEAT_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\RECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\TRAIN.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\WORD_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\def_jis.dic
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\ERR_JIS.LUT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FACTORP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FARG_JIS.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FEATURE.SET
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\GROUPP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\Info_jis.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\JIS.HID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\KANA.TRI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\PC120P2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\POST_JIS.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\RCG_JIS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\RCG_JIS.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SIM_JIS.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SIM_JIS.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SING_JIS.LUT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\WORD_JIS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\A_RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\ARECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\AUX_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_F.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_M.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.FAC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLUS_T.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\COS.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\COS.VAR
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\DBSINFO.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\FEAT_ARG.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\RECOG.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\RECOG_P.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\S3834.ID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\WORD_P.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\BIG5GB.TBX
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\DEF_GB.DIC
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FACTORP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FARG_GB.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FEATURE.SET
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FWD_GB.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GB.HID
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GBBIG5.TBX
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GROUPP2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\INFO_GB.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\PC120P2.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\POST_GB.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\RCG_GB.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\RCG_GB.INF
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SIM_GB.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SIM_GB.TBL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SING_GB.LUT
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\WORD_GB.DBS
    c:\program files (x86)\newsoft\Presto! PageManager 6\DBL40T.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\DibToMpeg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.hn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.pn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.pn2
    c:\program files (x86)\newsoft\Presto! PageManager 6\DirSelDll.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P1.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P2.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P3.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P4.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\DUTCH.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\DUTCH.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\ENGINE0.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\english.dic
    c:\program files (x86)\newsoft\Presto! PageManager 6\English.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\English.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\EpExifUtil.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\EPPIM2.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\EpTiffUtil.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\eston.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\eston.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\ExcelVBA.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ExeBud32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Export.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\EXPupk32.EXE
    c:\program files (x86)\newsoft\Presto! PageManager 6\Expvw.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\faxlnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fengnad.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FID.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\fijian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\FILECOPY.AVI
    c:\program files (x86)\newsoft\Presto! PageManager 6\Filter.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fine0.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fine32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\finedll.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\FineOCREngine.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FineSeg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FINNISH.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\FINNISH.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fioall.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fioall.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOALL32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOBMP32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOEXT32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOFPX32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\fiogif32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOJPG32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCD32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCT32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCX32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPNG32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fiopof32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fiopsd32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOTGA32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\FioThumb.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FIOTIF32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fiowmf32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\flemmish.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\flemmish.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Fobj410.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FOBJ420.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\foldrlnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\FR.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\French.dic
    c:\program files (x86)\newsoft\Presto! PageManager 6\French.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\French.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Function.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\german.dic
    c:\program files (x86)\newsoft\Presto! PageManager 6\German.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\German.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\germanns.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\germanns.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\GetPhotoPath.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\GetPhotoPath.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\greek.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\greek.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Grinf05.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\grinf07.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\GRINF11.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\hawaiian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\HookDll.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\hungar.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\iceland.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\iConvert16.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\IDoc.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\IFolder.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\IInbox.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\ijl15.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Image.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ImgToAviExe.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ImportOldDB.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\indones.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\InitCtrl.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\adinit.dat
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.exp
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.ilk
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.lib
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\cmmap000.bin
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\debmp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dehex.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\demet.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dess.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\detree.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dewp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibfpx2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibgp42.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibjpg2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibpcd2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibpsd2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxbm2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxpm2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxwd2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd32.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd42.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd52.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd62.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd72.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd82.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcdr2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcm52.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcm72.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcmx2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imdsf2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imfmv2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imgdf2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imgem2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imigs2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\immet2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impif2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imps_2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impsi2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impsz2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imrnd2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\iphgw2.flt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\isgdi32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LTSCSD13.TLB
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LTSCSN10.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LWPAPIN.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LWPAPIPN.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccca.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccch.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccda.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccdu.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfa.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfi.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfmt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\scclo.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccole.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccra.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccta.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccut.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccvw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsacad.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsacs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsami.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsbdr.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsbmp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vscgm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdbs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdez.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdif.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdrw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdx.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsemf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsen4.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsens.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsenw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vseshr.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsexe2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfax.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfcd.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfcs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfft.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsflw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfwk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgdsf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgif.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgzip.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshgs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshtml.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshwp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsich.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsich6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsimg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsiwp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsjw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsleg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vslwp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vslzh.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsm11.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmanu.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmcw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmif.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmm4.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmmfn.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmpp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmsg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmsw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwkd.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwks.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwp2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwpf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwrk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsow.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspbm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspcl.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspcx.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdfi.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdx.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspfs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspgl.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspic.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspict.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspng.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspntg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp7.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp97.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsppl.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspsp6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqa.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqad.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqp6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqp9.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsras.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrbs.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrft.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrfx.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrtf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssam.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssc5.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssdw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsshw3.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssmd.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssms.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssmt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssnap.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssoc.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssoi.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssow.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsspt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstaz.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstext.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstga.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstif6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstxt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsvcrd.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsviso.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsvw3.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsw6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsw97.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswbmp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswg2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswk4.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswk6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswks.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswmf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswml.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsword.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswork.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswp5.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswp6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpg.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpg2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpl.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsws.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsws2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsxl5.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsxy.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vszip.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\IPM.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\ippocr32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\irish.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ism.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\IsmDraw.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ITALIAN.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\ITALIAN.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\Italic.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\Italic.pts
    c:\program files (x86)\newsoft\Presto! PageManager 6\JPEGLIB.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\kabard.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\keyword.ri
    c:\program files (x86)\newsoft\Presto! PageManager 6\latin.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\latvian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\lcppn22.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Lcspell.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\lithuan.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\LiveUpdate.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\LiveUpdateTray.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\Lnseg32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\LowAlpha.hn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\LowALpha.pn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\LowAlpha.pn2
    c:\program files (x86)\newsoft\Presto! PageManager 6\Lpm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAY.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAYMSG.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAYtest.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\LZEXPAND.DLX
    c:\program files (x86)\newsoft\Presto! PageManager 6\macedon.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\maori.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\mapilnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Matrix.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\Matrix.pts
    c:\program files (x86)\newsoft\Presto! PageManager 6\Memio.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\MFC42.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\mitscn32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Model0.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Model1.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Model2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Model3.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\moldav.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Mpg1
    c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCP60.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\msvcrt.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCRT20.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCRT40.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\MyUninst.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\NetDll.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NetGroup.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\nextpwd.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm0.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm1.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm3.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmbul.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmcsy.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMDAN.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmden.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMDUT.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMENG.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmeti.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMFIN.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMFRA.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMGER.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmgre.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMITA.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmnlb.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMNON.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMNOR.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmplk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmptb.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMPTG.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmrus.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMSPN.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMSWE.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmtrk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmukr.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\nnxprt32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Normal.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\Normal.pts
    c:\program files (x86)\newsoft\Presto! PageManager 6\NORWBOK.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\NORWBOK.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\NORWNYN.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\NORWNYN.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\Noteslnk.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\nsfip.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NSFPX.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NSMEM.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NsPdf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NsScan.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NSWia.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\NTSTHK16.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\NTSTHK32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ocrutil.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\opccli32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\OSmScan.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\ossetic.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\pack.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\back.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\close_dw.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\close_fy.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\NSVIDEO.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\play_dw.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\play_fy.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_dw.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_fy.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_up.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\VCARD.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\VMPLAYER.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\PALETTE.MAP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Paper.lst
    c:\program files (x86)\newsoft\Presto! PageManager 6\PART.PAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\PART.PTS
    c:\program files (x86)\newsoft\Presto! PageManager 6\pccrsdk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PCDLIB32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\pdflib.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PDFWDLL.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\photonet.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\pm20.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pm60DB.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmapps.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmappu.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmdata.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmdb23.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb2x.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb4x.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb50J.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PmDibRes.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMExeBud.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMIEVW.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMINSO.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMMAIL.EXE
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMMKView.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMNotes.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmNotes.str
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmocr.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMPoll32.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmres.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Pmsb.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMScan.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmscan32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmsetap.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMSetup.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMToApp.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmtwain.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\pmview.ex_
    c:\program files (x86)\newsoft\Presto! PageManager 6\PMVLink.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PNGcore.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\polish.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\polish.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\PORTUG.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\PORTUG.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\Post.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PPMPCX.DL_
    c:\program files (x86)\newsoft\Presto! PageManager 6\PPMTIF.DL_
    c:\program files (x86)\newsoft\Presto! PageManager 6\prestopm.cnt
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.dbk
    c:\program files (x86)\newsoft\Presto! PageManager 6\prestopm.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\Prestopm.hlp
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.ibk
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.idx
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.ndb
    c:\program files (x86)\newsoft\Presto! PageManager 6\Prestopm.pdf
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrintFun.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\PrintFun.lst
    c:\program files (x86)\newsoft\Presto! PageManager 6\printlnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Psapi.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\PSaver.lst
    c:\program files (x86)\newsoft\Presto! PageManager 6\PSaver.scr
    c:\program files (x86)\newsoft\Presto! PageManager 6\PShow.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\PShow.lst
    c:\program files (x86)\newsoft\Presto! PageManager 6\PTLIB.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Qem.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Readme.txt
    c:\program files (x86)\newsoft\Presto! PageManager 6\ReadOCRData.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Recogn.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Recpage.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\regapp.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\Register.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\Register.ini
    c:\program files (x86)\newsoft\Presto! PageManager 6\RegSession.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\RemoveIcons.ico
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p1.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p1.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p2.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p2.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p3.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p3.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p4.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p4.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\bottom.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-dn.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-gray.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-hi.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-Thumb.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-up.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsDn.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsHi.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsUp.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskDn.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskHi.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskUp.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\tree-bg.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-dn.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-gray.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-hi.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-Thumb.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-up.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\rhaetian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\roman.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\RPR371.JRT
    c:\program files (x86)\newsoft\Presto! PageManager 6\RTDSK40.EXE
    c:\program files (x86)\newsoft\Presto! PageManager 6\Russian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Russian.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\samoan.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\AutumnView.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\BCR 4.ppt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\boat.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\cat.JPG
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\History.JPG
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Lake.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\License.pdf
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\OCR Pro 4.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\PageManager 6.ppt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Play Ground.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Press.doc
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\readme.txt
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Score Card.xls
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Shop.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Splash.JPG
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Tower.jpg
    c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\VideoWorks 6.ppt
    c:\program files (x86)\newsoft\Presto! PageManager 6\SCAN0.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan1.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan13.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan15.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan2.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan20.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan23.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan3.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan5.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan6.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\scan7.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\SCANFIXN.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\scanman.drv
    c:\program files (x86)\newsoft\Presto! PageManager 6\SCANNERS.DAT
    c:\program files (x86)\newsoft\Presto! PageManager 6\scanport.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\card_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Doc_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Letter_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\magazine_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Other_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Photo.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Photo_c.BMP
    c:\program files (x86)\newsoft\Presto! PageManager 6\SCNTHK16.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ScrBase.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ScrSaverEraser.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\search.avi
    c:\program files (x86)\newsoft\Presto! PageManager 6\Segment.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\serbian.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\slovak.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\sloven.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Sm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\SmtLaunch6.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\sosalnk.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\SPANISH.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\SPANISH.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\stamp.___
    c:\program files (x86)\newsoft\Presto! PageManager 6\Stath1.ftr
    c:\program files (x86)\newsoft\Presto! PageManager 6\Statm1.ftr
    c:\program files (x86)\newsoft\Presto! PageManager 6\Statm2.ftr
    c:\program files (x86)\newsoft\Presto! PageManager 6\swahili.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\SWEDISH.LCD
    c:\program files (x86)\newsoft\Presto! PageManager 6\SWEDISH.LMD
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB4
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB5
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB6
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH4
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH5
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH6
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB4
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB5
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB6
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH4
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH5
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH6
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_0
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_1
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_2
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_3
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_4
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\DEWINDOW
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\encode.log
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ENWINDOW
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\HUFFCODE
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\HUFFDEC
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\out.dat
    c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\PSY_DATA
    c:\program files (x86)\newsoft\Presto! PageManager 6\tagalog.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p1.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p2.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p3.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p4.bmp
    c:\program files (x86)\newsoft\Presto! PageManager 6\Tcm.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\ThumbnailDll.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Tiff.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\tm_bmp32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\tm_pcx32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TIF32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TMT16.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TWN16.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TWN32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TXT32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\tu32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\tuhand32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\TuMach32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Tuover.dbs
    c:\program files (x86)\newsoft\Presto! PageManager 6\turkish.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\turkish.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\Typewrit.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\Typewrit.pts
    c:\program files (x86)\newsoft\Presto! PageManager 6\uao.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\UCICCITT.DL_
    c:\program files (x86)\newsoft\Presto! PageManager 6\UCIG3432.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\UCIJPEG.DL_
    c:\program files (x86)\newsoft\Presto! PageManager 6\UCIJPG32.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\UFioDll.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\UFSE.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\ukrain.lcd
    c:\program files (x86)\newsoft\Presto! PageManager 6\ukrain.lmd
    c:\program files (x86)\newsoft\Presto! PageManager 6\UMXADDIN.INI
    c:\program files (x86)\newsoft\Presto! PageManager 6\umxnts32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Underlin.pat
    c:\program files (x86)\newsoft\Presto! PageManager 6\UNPACK.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\unregapp.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\UpAlpha.hn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\UpALpha.pn1
    c:\program files (x86)\newsoft\Presto! PageManager 6\UpAlpha.pn2
    c:\program files (x86)\newsoft\Presto! PageManager 6\UXFSE.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\Vcd_NTSC
    c:\program files (x86)\newsoft\Presto! PageManager 6\Vcd_PAL
    c:\program files (x86)\newsoft\Presto! PageManager 6\VideoData.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Wait.exe
    c:\program files (x86)\newsoft\Presto! PageManager 6\WL40ENT.DLL
    c:\program files (x86)\newsoft\Presto! PageManager 6\work\stamp.___
    c:\program files (x86)\newsoft\Presto! PageManager 6\WriteOcr2Pdf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\WriteOcrFileList2Pdf.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Wtim32.cfg
    c:\program files (x86)\newsoft\Presto! PageManager 6\wtim32.dll
    c:\program files (x86)\newsoft\Presto! PageManager 6\Ynd32.DLL
    c:\windows\IsUn0413.exe
    c:\windows\SysWow64\mfc100deu.dll
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2011-08-01 to 2011-09-01 ))))))))))))))))))))))))))))))
    .
    .
    2011-09-01 13:58 . 2011-09-01 13:58 ——– d—–w- c:\users\Default\AppData\Local\temp
    2011-09-01 11:32 . 2011-09-01 11:32 ——– d—–w- c:\program files (x86)\Java
    2011-08-31 20:36 . 2011-08-31 20:36 388096 —-a-r- c:\users\Ruth\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-08-31 20:26 . 2011-08-12 04:10 8862544 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1954F191-99B0-4CDB-B485-7805CF5BA241}\mpengine.dll
    2011-08-31 19:35 . 2011-08-31 20:00 ——– d—–w- C:\Lop SD
    2011-08-31 14:41 . 2011-08-31 20:36 ——– d—–w- c:\program files (x86)\Trend Micro
    2011-08-31 10:24 . 2011-07-06 17:52 41272 —-a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
    2011-08-31 10:24 . 2011-08-31 10:24 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
    2011-08-30 12:13 . 2011-08-30 12:13 ——– d—–w- c:\program files\ATI
    2011-08-30 11:28 . 2011-08-30 11:28 55384 —-a-w- c:\windows\system32\drivers\SBREDrv.sys
    2011-08-30 11:24 . 2011-08-30 11:54 ——– d—–w- c:\programdata\Lavasoft
    2011-08-30 11:24 . 2011-08-30 11:24 ——– d—–w- c:\program files (x86)\Lavasoft
    2011-08-29 17:20 . 2011-08-29 17:20 ——– d—–w- c:\program files\CCleaner
    2011-08-29 16:48 . 2011-08-29 16:48 ——– d—–w- C:\ATI
    2011-08-29 15:50 . 2011-08-29 15:50 ——– d—–w- c:\windows\system32\Macromed
    2011-08-29 15:32 . 2011-08-29 15:32 ——– d—–w- C:\AMD
    2011-08-29 14:46 . 2011-08-29 14:46 21200 —-a-w- c:\windows\system32\drivers\TVicHW64.sys
    2011-08-29 14:02 . 2011-08-29 14:02 ——– d—–w- C:\SPLASH.SYS
    2011-08-29 13:38 . 2011-08-29 13:38 ——– d—–w- c:\users\Ruth\AppData\Roaming\Malwarebytes
    2011-08-29 13:38 . 2011-08-29 13:38 ——– d—–w- c:\programdata\Malwarebytes
    2011-08-29 13:19 . 2011-08-30 12:44 ——– d—–w- C:\Update
    2011-08-23 18:12 . 2011-07-09 05:26 2048 —-a-w- c:\windows\system32\tzres.dll
    2011-08-23 18:12 . 2011-07-09 04:29 2048 —-a-w- c:\windows\SysWow64\tzres.dll
    2011-08-19 21:13 . 2011-08-19 21:13 ——– d—–w- c:\users\Default\AppData\Local\Microsoft Help
    2011-08-19 16:16 . 2011-08-19 16:16 ——– d—–w- c:\windows\system32\SPReview
    2011-08-19 16:15 . 2011-08-19 16:15 ——– d—–w- c:\windows\system32\EventProviders
    2011-08-11 20:10 . 2011-01-27 19:39 601424 ——w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7BE812D4-2ADF-4404-9217-CA29797390A0}\gapaengine.dll
    2011-08-10 15:06 . 2011-06-23 05:43 5561216 —-a-w- c:\windows\system32\ntoskrnl.exe
    2011-08-10 15:06 . 2011-06-23 04:33 3967872 —-a-w- c:\windows\SysWow64\ntkrnlpa.exe
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-09-01 11:32 . 2010-09-13 13:56 544656 —-a-w- c:\windows\SysWow64\deployJava1.dll
    2011-08-29 15:50 . 2011-05-13 11:01 414368 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-08-19 16:25 . 2009-07-14 02:36 152576 —-a-w- c:\windows\SysWow64\msclmd.dll
    2011-08-19 16:25 . 2009-07-14 02:36 175616 —-a-w- c:\windows\system32\msclmd.dll
    2011-08-12 04:10 . 2010-09-14 17:20 8862544 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2011-07-28 15:49 . 2011-07-28 15:49 60416 —-a-w- c:\windows\system32\OVDecode64.dll
    2011-07-28 15:49 . 2011-07-28 15:49 53760 —-a-w- c:\windows\SysWow64\OVDecode.dll
    2011-07-28 15:48 . 2011-07-28 15:48 51200 —-a-w- c:\windows\system32\OpenCL.dll
    2011-07-28 15:48 . 2011-07-28 15:48 43520 —-a-w- c:\windows\SysWow64\OpenCL.dll
    2011-07-28 15:48 . 2011-07-28 15:48 16552960 —-a-w- c:\windows\system32\amdocl64.dll
    2011-07-28 15:48 . 2011-07-28 15:48 13555712 —-a-w- c:\windows\SysWow64\amdocl.dll
    2011-07-16 04:26 . 2011-08-10 15:07 44032 —-a-w- c:\windows\apppatch\acwow64.dll
    2011-07-13 04:53 . 2011-07-29 01:02 8578896 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll
    2011-06-16 01:34 . 2011-06-16 01:34 79872 —-a-w- c:\windows\SysWow64\SlotMaximizerAg.dll
    2011-06-16 01:34 . 2011-06-16 01:34 2971648 —-a-w- c:\windows\system32\SlotMaximizerBe.dll
    2011-06-16 01:34 . 2011-06-16 01:34 2117632 —-a-w- c:\windows\SysWow64\SlotMaximizerBe.dll
    2011-06-16 01:34 . 2011-06-16 01:34 105984 —-a-w- c:\windows\system32\SlotMaximizerAg.dll
    2011-06-15 19:27 . 2011-06-15 19:27 91648 —-a-w- c:\windows\system32\SetIEInstalledDate.exe
    2011-06-15 19:27 . 2011-06-15 19:27 89088 —-a-w- c:\windows\system32\RegisterIEPKEYs.exe
    2011-06-15 19:27 . 2011-06-15 19:27 86528 —-a-w- c:\windows\SysWow64\iesysprep.dll
    2011-06-15 19:27 . 2011-06-15 19:27 85504 —-a-w- c:\windows\system32\iesetup.dll
    2011-06-15 19:27 . 2011-06-15 19:27 76800 —-a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
    2011-06-15 19:27 . 2011-06-15 19:27 76800 —-a-w- c:\windows\system32\tdc.ocx
    2011-06-15 19:27 . 2011-06-15 19:27 74752 —-a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
    2011-06-15 19:27 . 2011-06-15 19:27 74752 —-a-w- c:\windows\SysWow64\iesetup.dll
    2011-06-15 19:27 . 2011-06-15 19:27 63488 —-a-w- c:\windows\SysWow64\tdc.ocx
    2011-06-15 19:27 . 2011-06-15 19:27 603648 —-a-w- c:\windows\system32\vbscript.dll
    2011-06-15 19:27 . 2011-06-15 19:27 49664 —-a-w- c:\windows\system32\imgutil.dll
    2011-06-15 19:27 . 2011-06-15 19:27 48640 —-a-w- c:\windows\SysWow64\mshtmler.dll
    2011-06-15 19:27 . 2011-06-15 19:27 48640 —-a-w- c:\windows\system32\mshtmler.dll
    2011-06-15 19:27 . 2011-06-15 19:27 448512 —-a-w- c:\windows\system32\html.iec
    2011-06-15 19:27 . 2011-06-15 19:27 420864 —-a-w- c:\windows\SysWow64\vbscript.dll
    2011-06-15 19:27 . 2011-06-15 19:27 367104 —-a-w- c:\windows\SysWow64\html.iec
    2011-06-15 19:27 . 2011-06-15 19:27 35840 —-a-w- c:\windows\SysWow64\imgutil.dll
    2011-06-15 19:27 . 2011-06-15 19:27 30720 —-a-w- c:\windows\system32\licmgr10.dll
    2011-06-15 19:27 . 2011-06-15 19:27 23552 —-a-w- c:\windows\SysWow64\licmgr10.dll
    2011-06-15 19:27 . 2011-06-15 19:27 222208 —-a-w- c:\windows\system32\msls31.dll
    2011-06-15 19:27 . 2011-06-15 19:27 173056 —-a-w- c:\windows\system32\ieUnatt.exe
    2011-06-15 19:27 . 2011-06-15 19:27 165888 —-a-w- c:\windows\system32\iexpress.exe
    2011-06-15 19:27 . 2011-06-15 19:27 161792 —-a-w- c:\windows\SysWow64\msls31.dll
    2011-06-15 19:27 . 2011-06-15 19:27 160256 —-a-w- c:\windows\system32\wextract.exe
    2011-06-15 19:27 . 2011-06-15 1
  • … en hier nog de rest, want volgens mij staat deze helft van de log nog niet in mijn vorige mail.

    2011-06-15 19:27 . 2011-06-15 19:27 152064 —-a-w- c:\windows\SysWow64\wextract.exe
    2011-06-15 19:27 . 2011-06-15 19:27 150528 —-a-w- c:\windows\SysWow64\iexpress.exe
    2011-06-15 19:27 . 2011-06-15 19:27 1492992 —-a-w- c:\windows\system32\inetcpl.cpl
    2011-06-15 19:27 . 2011-06-15 19:27 142848 —-a-w- c:\windows\SysWow64\ieUnatt.exe
    2011-06-15 19:27 . 2011-06-15 19:27 1427456 —-a-w- c:\windows\SysWow64\inetcpl.cpl
    2011-06-15 19:27 . 2011-06-15 19:27 135168 —-a-w- c:\windows\system32\IEAdvpack.dll
    2011-06-15 19:27 . 2011-06-15 19:27 12288 —-a-w- c:\windows\system32\mshta.exe
    2011-06-15 19:27 . 2011-06-15 19:27 11776 —-a-w- c:\windows\SysWow64\mshta.exe
    2011-06-15 19:27 . 2011-06-15 19:27 114176 —-a-w- c:\windows\system32\admparse.dll
    2011-06-15 19:27 . 2011-06-15 19:27 111616 —-a-w- c:\windows\system32\iesysprep.dll
    2011-06-15 19:27 . 2011-06-15 19:27 110592 —-a-w- c:\windows\SysWow64\IEAdvpack.dll
    2011-06-15 19:27 . 2011-06-15 19:27 101888 —-a-w- c:\windows\SysWow64\admparse.dll
    2011-06-11 03:07 . 2011-07-13 18:03 3137536 —-a-w- c:\windows\system32\win32k.sys
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-21 39408]
    "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-01-26 15026056]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-11-20 284696]
    "ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-08-26 320880]
    "PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2009-10-24 597792]
    "MarketingTools"="c:\program files (x86)\Sony\Marketing Tools\MarketingTools.exe" [2010-05-21 26624]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
    2009-12-01 20:03 98304 —-a-w- c:\windows\System32\VESWinlogon.dll
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 133104]
    R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-30 362992]
    R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [x]
    R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 133104]
    R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [x]
    R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
    R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-30 313840]
    R3 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2010-09-10 108400]
    R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2010-10-12 423280]
    R3 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2010-09-10 67952]
    R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-01-20 286936]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 TVICHW64;TVICHW64;c:\windows\system32\DRIVERS\TVICHW64.SYS [x]
    R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-01-20 887000]
    R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-05-19 549616]
    R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-10-25 387896]
    R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2011-02-18 99104]
    R3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [2011-04-20 1021840]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
    S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
    S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
    S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [x]
    S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [x]
    S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-01-29 259192]
    S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
    S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]
    S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2010-08-11 845312]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
    S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]
    S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
    S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
    S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
    S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
    S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [x]
    S3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248]
    S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2011-02-14 44736]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
    .
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2011-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 03:50]
    .
    2011-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 03:50]
    .
    .
    ——— x86-64 ———–
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-16 9636896]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x0
    .
    ——- Bijkomende Scan ——-
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.nl/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
    IE: Google Sidewiki… - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
    IE: Pagina verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    TCP: DhcpNameServer = 192.168.2.1
    DPF: {1FEC8B6F-250A-4293-B12C-67A7EF0B758A} - hxxp://www.kerkomroep.nl/ocx/sIKNPlayer.cab
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    SafeBoot-mcmscsvc
    SafeBoot-MCODS
    HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
    AddRemove-Adobe Photoshop Elements 2.0 - c:\windows\ISUN0413.EXE
    AddRemove-Intel® Integrated Performance Primitives 1.1 - c:\windows\system32\UninstIPP.isu
    .
    .
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
    "ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11a_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11a_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Voltooingstijd: 2011-09-01 16:20:07
    ComboFix-quarantined-files.txt 2011-09-01 14:20
    .
    Pre-Run: 381.796.913.152 bytes beschikbaar
    Post-Run: 387.958.018.048 bytes beschikbaar
    .
    - - End Of File - - 75DCA5C1C1B7F9B897973FB8F6874CD2
  • Download nu TDSSKiller opnieuw start het tool op de juiste manier op.

    Post wederom d inhoud van log.
  • 2011/09/01 17:21:18.0467 0900 TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57
    2011/09/01 17:21:18.0560 0900 ================================================================================
    2011/09/01 17:21:18.0560 0900 SystemInfo:
    2011/09/01 17:21:18.0560 0900
    2011/09/01 17:21:18.0560 0900 OS Version: 6.1.7601 ServicePack: 1.0
    2011/09/01 17:21:18.0560 0900 Product type: Workstation
    2011/09/01 17:21:18.0560 0900 ComputerName: RUTH-VAIO
    2011/09/01 17:21:18.0560 0900 UserName: Ruth
    2011/09/01 17:21:18.0560 0900 Windows directory: C:\Windows
    2011/09/01 17:21:18.0560 0900 System windows directory: C:\Windows
    2011/09/01 17:21:18.0560 0900 Running under WOW64
    2011/09/01 17:21:18.0560 0900 Processor architecture: Intel x64
    2011/09/01 17:21:18.0560 0900 Number of processors: 4
    2011/09/01 17:21:18.0560 0900 Page size: 0x1000
    2011/09/01 17:21:18.0560 0900 Boot type: Normal boot
    2011/09/01 17:21:18.0560 0900 ================================================================================
    2011/09/01 17:21:19.0169 0900 Initialize success
    2011/09/01 17:21:24.0707 5240 ================================================================================
    2011/09/01 17:21:24.0707 5240 Scan started
    2011/09/01 17:21:24.0707 5240 Mode: Manual;
    2011/09/01 17:21:24.0707 5240 ================================================================================
    2011/09/01 17:21:24.0956 5240 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
    2011/09/01 17:21:25.0066 5240 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
    2011/09/01 17:21:25.0190 5240 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
    2011/09/01 17:21:25.0300 5240 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
    2011/09/01 17:21:25.0409 5240 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
    2011/09/01 17:21:25.0502 5240 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
    2011/09/01 17:21:25.0658 5240 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
    2011/09/01 17:21:25.0768 5240 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
    2011/09/01 17:21:25.0892 5240 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
    2011/09/01 17:21:26.0002 5240 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
    2011/09/01 17:21:26.0111 5240 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
    2011/09/01 17:21:26.0360 5240 amdkmdag (ea244a8b88de8b5986bf3b7903b063af) C:\Windows\system32\DRIVERS\atikmdag.sys
    2011/09/01 17:21:26.0735 5240 amdkmdap (dca6e341a4a7c31ea8a14c6166c9b249) C:\Windows\system32\DRIVERS\atikmpag.sys
    2011/09/01 17:21:26.0828 5240 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
    2011/09/01 17:21:26.0875 5240 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
    2011/09/01 17:21:26.0969 5240 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
    2011/09/01 17:21:27.0031 5240 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
    2011/09/01 17:21:27.0172 5240 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys
    2011/09/01 17:21:27.0281 5240 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
    2011/09/01 17:21:27.0421 5240 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
    2011/09/01 17:21:27.0515 5240 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
    2011/09/01 17:21:27.0593 5240 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
    2011/09/01 17:21:27.0686 5240 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
    2011/09/01 17:21:27.0780 5240 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
    2011/09/01 17:21:27.0920 5240 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
    2011/09/01 17:21:28.0217 5240 atikmdag (ea244a8b88de8b5986bf3b7903b063af) C:\Windows\system32\DRIVERS\atikmdag.sys
    2011/09/01 17:21:28.0404 5240 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
    2011/09/01 17:21:28.0544 5240 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
    2011/09/01 17:21:28.0622 5240 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
    2011/09/01 17:21:28.0763 5240 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
    2011/09/01 17:21:28.0825 5240 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
    2011/09/01 17:21:28.0919 5240 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
    2011/09/01 17:21:28.0950 5240 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
    2011/09/01 17:21:29.0059 5240 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
    2011/09/01 17:21:29.0106 5240 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
    2011/09/01 17:21:29.0200 5240 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
    2011/09/01 17:21:29.0246 5240 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
    2011/09/01 17:21:29.0356 5240 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
    2011/09/01 17:21:29.0402 5240 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
    2011/09/01 17:21:29.0512 5240 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
    2011/09/01 17:21:29.0621 5240 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
    2011/09/01 17:21:29.0730 5240 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
    2011/09/01 17:21:29.0808 5240 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
    2011/09/01 17:21:29.0933 5240 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
    2011/09/01 17:21:30.0026 5240 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
    2011/09/01 17:21:30.0182 5240 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
    2011/09/01 17:21:30.0245 5240 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
    2011/09/01 17:21:30.0463 5240 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
    2011/09/01 17:21:30.0572 5240 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
    2011/09/01 17:21:30.0713 5240 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
    2011/09/01 17:21:30.0806 5240 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
    2011/09/01 17:21:30.0947 5240 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
    2011/09/01 17:21:30.0994 5240 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
    2011/09/01 17:21:31.0103 5240 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
    2011/09/01 17:21:31.0150 5240 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
    2011/09/01 17:21:31.0274 5240 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
    2011/09/01 17:21:31.0399 5240 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
    2011/09/01 17:21:31.0540 5240 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
    2011/09/01 17:21:31.0586 5240 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
    2011/09/01 17:21:31.0711 5240 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
    2011/09/01 17:21:31.0852 5240 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
    2011/09/01 17:21:31.0914 5240 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
    2011/09/01 17:21:32.0070 5240 e.dentifier2 (a0d5450b3d4689dce4cbbc8268141c37) C:\Windows\system32\DRIVERS\aabed2.sys
    2011/09/01 17:21:32.0179 5240 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
    2011/09/01 17:21:32.0398 5240 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
    2011/09/01 17:21:32.0460 5240 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
    2011/09/01 17:21:32.0600 5240 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
    2011/09/01 17:21:32.0632 5240 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
    2011/09/01 17:21:32.0725 5240 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
    2011/09/01 17:21:32.0834 5240 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
    2011/09/01 17:21:32.0866 5240 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
    2011/09/01 17:21:32.0897 5240 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
    2011/09/01 17:21:32.0944 5240 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
    2011/09/01 17:21:33.0037 5240 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
    2011/09/01 17:21:33.0084 5240 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
    2011/09/01 17:21:33.0178 5240 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
    2011/09/01 17:21:33.0302 5240 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
    2011/09/01 17:21:33.0349 5240 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
    2011/09/01 17:21:33.0474 5240 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
    2011/09/01 17:21:33.0583 5240 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
    2011/09/01 17:21:33.0692 5240 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
    2011/09/01 17:21:33.0802 5240 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
    2011/09/01 17:21:33.0864 5240 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
    2011/09/01 17:21:33.0926 5240 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
    2011/09/01 17:21:34.0036 5240 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
    2011/09/01 17:21:34.0176 5240 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
    2011/09/01 17:21:34.0254 5240 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
    2011/09/01 17:21:34.0379 5240 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
    2011/09/01 17:21:34.0441 5240 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
    2011/09/01 17:21:34.0535 5240 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
    2011/09/01 17:21:34.0613 5240 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
    2011/09/01 17:21:34.0675 5240 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
    2011/09/01 17:21:34.0956 5240 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
    2011/09/01 17:21:35.0346 5240 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
    2011/09/01 17:21:35.0471 5240 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
    2011/09/01 17:21:35.0642 5240 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
    2011/09/01 17:21:35.0798 5240 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
    2011/09/01 17:21:35.0845 5240 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
    2011/09/01 17:21:35.0892 5240 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
    2011/09/01 17:21:36.0017 5240 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    2011/09/01 17:21:36.0064 5240 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
    2011/09/01 17:21:36.0188 5240 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
    2011/09/01 17:21:36.0235 5240 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
    2011/09/01 17:21:36.0329 5240 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
    2011/09/01 17:21:36.0376 5240 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
    2011/09/01 17:21:36.0438 5240 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
    2011/09/01 17:21:36.0532 5240 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
    2011/09/01 17:21:36.0594 5240 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
    2011/09/01 17:21:36.0688 5240 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
    2011/09/01 17:21:36.0734 5240 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
    2011/09/01 17:21:36.0875 5240 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
    2011/09/01 17:21:37.0015 5240 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
    2011/09/01 17:21:37.0046 5240 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
    2011/09/01 17:21:37.0093 5240 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
    2011/09/01 17:21:37.0202 5240 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
    2011/09/01 17:21:37.0249 5240 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
    2011/09/01 17:21:37.0296 5240 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
    2011/09/01 17:21:37.0343 5240 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
    2011/09/01 17:21:37.0468 5240 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
    2011/09/01 17:21:37.0499 5240 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
    2011/09/01 17:21:37.0624 5240 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
    2011/09/01 17:21:37.0733 5240 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
    2011/09/01 17:21:37.0811 5240 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
    2011/09/01 17:21:37.0889 5240 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
    2011/09/01 17:21:37.0936 5240 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
    2011/09/01 17:21:38.0060 5240 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
    2011/09/01 17:21:38.0107 5240 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
    2011/09/01 17:21:38.0185 5240 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
    2011/09/01 17:21:38.0232 5240 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
    2011/09/01 17:21:38.0341 5240 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    2011/09/01 17:21:38.0404 5240 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    2011/09/01 17:21:38.0450 5240 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
    2011/09/01 17:21:38.0544 5240 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
    2011/09/01 17:21:38.0606 5240 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
    2011/09/01 17:21:38.0700 5240 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
    2011/09/01 17:21:38.0731 5240 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
    2011/09/01 17:21:38.0856 5240 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
    2011/09/01 17:21:38.0965 5240 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
    2011/09/01 17:21:38.0981 5240 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
    2011/09/01 17:21:39.0059 5240 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
    2011/09/01 17:21:39.0106 5240 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
    2011/09/01 17:21:39.0199 5240 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
    2011/09/01 17:21:39.0246 5240 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
    2011/09/01 17:21:39.0277 5240 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
    2011/09/01 17:21:39.0371 5240 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
    2011/09/01 17:21:39.0464 5240 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
    2011/09/01 17:21:39.0574 5240 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
    2011/09/01 17:21:39.0636 5240 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
    2011/09/01 17:21:39.0683 5240 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
    2011/09/01 17:21:39.0745 5240 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
    2011/09/01 17:21:39.0823 5240 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
    2011/09/01 17:21:39.0917 5240 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
    2011/09/01 17:21:39.0979 5240 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
    2011/09/01 17:21:40.0104 5240 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
    2011/09/01 17:21:40.0213 5240 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    2011/09/01 17:21:40.0338 5240 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
    2011/09/01 17:21:40.0369 5240 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
    2011/09/01 17:21:40.0447 5240 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
    2011/09/01 17:21:40.0588 5240 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
    2011/09/01 17:21:40.0650 5240 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
    2011/09/01 17:21:40.0759 5240 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
    2011/09/01 17:21:40.0868 5240 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
    2011/09/01 17:21:40.0915 5240 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
    2011/09/01 17:21:41.0040 5240 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
    2011/09/01 17:21:41.0071 5240 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
    2011/09/01 17:21:41.0118 5240 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
    2011/09/01 17:21:41.0134 5240 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
    2011/09/01 17:21:41.0180 5240 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
    2011/09/01 17:21:41.0274 5240 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
    2011/09/01 17:21:41.0321 5240 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
    2011/09/01 17:21:41.0492 5240 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
    2011/09/01 17:21:41.0539 5240 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
    2011/09/01 17:21:41.0617 5240 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
    2011/09/01 17:21:41.0711 5240 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
    2011/09/01 17:21:41.0789 5240 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
    2011/09/01 17:21:41.0914 5240 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
    2011/09/01 17:21:42.0007 5240 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
    2011/09/01 17:21:42.0038 5240 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
    2011/09/01 17:21:42.0148 5240 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
    2011/09/01 17:21:42.0210 5240 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
    2011/09/01 17:21:42.0257 5240 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
    2011/09/01 17:21:42.0366 5240 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
    2011/09/01 17:21:42.0413 5240 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
    2011/09/01 17:21:42.0444 5240 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
    2011/09/01 17:21:42.0491 5240 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
    2011/09/01 17:21:42.0584 5240 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
    2011/09/01 17:21:42.0616 5240 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
    2011/09/01 17:21:42.0678 5240 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
    2011/09/01 17:21:42.0740 5240 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
    2011/09/01 17:21:42.0865 5240 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
    2011/09/01 17:21:42.0896 5240 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
    2011/09/01 17:21:42.0959 5240 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
    2011/09/01 17:21:43.0099 5240 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
    2011/09/01 17:21:43.0162 5240 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
    2011/09/01 17:21:43.0286 5240 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
    2011/09/01 17:21:43.0333 5240 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
    2011/09/01 17:21:43.0458 5240 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
    2011/09/01 17:21:43.0567 5240 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
    2011/09/01 17:21:43.0630 5240 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
    2011/09/01 17:21:43.0739 5240 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
    2011/09/01 17:21:43.0801 5240 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
    2011/09/01 17:21:43.0910 5240 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
    2011/09/01 17:21:44.0004 5240 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
    2011/09/01 17:21:44.0035 5240 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
    2011/09/01 17:21:44.0113 5240 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
    2011/09/01 17:21:44.0160 5240 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
    2011/09/01 17:21:44.0285 5240 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
    2011/09/01 17:21:44.0332 5240 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
    2011/09/01 17:21:44.0441 5240 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
    2011/09/01 17:21:44.0612 5240 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
    2011/09/01 17:21:44.0675 5240 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
    2011/09/01 17:21:44.0706 5240 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
    2011/09/01 17:21:44.0737 5240 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
    2011/09/01 17:21:44.0784 5240 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
    2011/09/01 17:21:44.0878 5240 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
    2011/09/01 17:21:45.0002 5240 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\drivers\tcpip.sys
    2011/09/01 17:21:45.0190 5240 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\DRIVERS\tcpip.sys
    2011/09/01 17:21:45.0252 5240 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
    2011/09/01 17:21:45.0299 5240 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
    2011/09/01 17:21:45.0330 5240 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
    2011/09/01 17:21:45.0361 5240 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
    2011/09/01 17:21:45.0408 5240 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
    2011/09/01 17:21:45.0502 5240 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
    2011/09/01 17:21:45.0564 5240 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
    2011/09/01 17:21:45.0689 5240 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
    2011/09/01 17:21:45.0845 5240 TVICHW64 (1a006963644c7fde5be60036f3a43e68) C:\Windows\system32\DRIVERS\TVICHW64.SYS
    2011/09/01 17:21:45.0938 5240 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
    2011/09/01 17:21:46.0001 5240 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
    2011/09/01 17:21:46.0141 5240 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
    2011/09/01 17:21:46.0250 5240 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
    2011/09/01 17:21:46.0297 5240 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
    2011/09/01 17:21:46.0360 5240 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
    2011/09/01 17:21:46.0406 5240 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
    2011/09/01 17:21:46.0438 5240 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
    2011/09/01 17:21:46.0547 5240 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
    2011/09/01 17:21:46.0594 5240 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
    2011/09/01 17:21:46.0640 5240 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
    2011/09/01 17:21:46.0687 5240 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
    2011/09/01 17:21:46.0750 5240 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
    2011/09/01 17:21:46.0796 5240 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
    2011/09/01 17:21:46.0906 5240 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
    2011/09/01 17:21:47.0046 5240 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
    2011/09/01 17:21:47.0093 5240 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
    2011/09/01 17:21:47.0171 5240 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
    2011/09/01 17:21:47.0218 5240 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
    2011/09/01 17:21:47.0264 5240 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
    2011/09/01 17:21:47.0311 5240 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
    2011/09/01 17:21:47.0358 5240 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
    2011/09/01 17:21:47.0420 5240 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
    2011/09/01 17:21:47.0467 5240 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
    2011/09/01 17:21:47.0608 5240 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
    2011/09/01 17:21:47.0623 5240 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
    2011/09/01 17:21:47.0686 5240 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
    2011/09/01 17:21:47.0795 5240 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    2011/09/01 17:21:47.0810 5240 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    2011/09/01 17:21:47.0951 5240 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
    2011/09/01 17:21:48.0029 5240 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
    2011/09/01 17:21:48.0154 5240 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
    2011/09/01 17:21:48.0200 5240 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
    2011/09/01 17:21:48.0341 5240 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
    2011/09/01 17:21:48.0450 5240 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
    2011/09/01 17:21:48.0544 5240 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
    2011/09/01 17:21:48.0606 5240 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
    2011/09/01 17:21:48.0637 5240 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
    2011/09/01 17:21:48.0700 5240 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
    2011/09/01 17:21:48.0762 5240 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    2011/09/01 17:21:48.0778 5240 Boot (0x1200) (11df49247e523bd1a6467a837ba1c29c) \Device\Harddisk0\DR0\Partition0
    2011/09/01 17:21:48.0793 5240 Boot (0x1200) (5c779cb2c8735712f1aaa3f0527e399a) \Device\Harddisk0\DR0\Partition1
    2011/09/01 17:21:48.0793 5240 ================================================================================
    2011/09/01 17:21:48.0793 5240 Scan finished
    2011/09/01 17:21:48.0793 5240 ================================================================================
    2011/09/01 17:21:48.0809 2440 Detected object count: 0
    2011/09/01 17:21:48.0809 2440 Actual detected object count: 0
  • Vraag: heb jij al recovery-DVD's gemaakt?
  • Volgens mij wel, maar voor de zekerheid ga ik hier even zoeken of ik ze kan vinden.
  • Mooi, want laat weten of je ze gevonden hebt.
  • Ja, de drie hersteldisks heb ik.
  • Oke dan gaan we toch de MBR repareren.

    Start aswMBR opnieuw op en post eerst het nieuwe log daarvan.
  • ok. Hieronder de log (die van gisteren zit er volgens mij ook nog bij).

    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
    Run date: 2011-08-31 17:58:50
    —————————–
    17:58:50.279 OS Version: Windows x64 6.1.7601 Service Pack 1
    17:58:50.279 Number of processors: 4 586 0x2502
    17:58:50.279 ComputerName: RUTH-VAIO UserName: Ruth
    17:58:51.579 Initialize success
    18:01:02.754 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    18:01:02.764 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
    18:01:02.764 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062
    18:01:02.764 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:01:02.764 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063
    18:01:02.774 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:01:02.774 Disk 0 MBR read successfully
    18:01:02.774 Disk 0 MBR scan
    18:01:02.784 Disk 0 TDL4@MBR code has been found
    18:01:02.784 Disk 0 Windows 7 default MBR code found via API
    18:01:02.784 Disk 0 MBR hidden
    18:01:02.794 Disk 0 MBR [TDL4] **ROOTKIT**
    18:01:02.794 Disk 0 trace - called modules:
    18:01:02.804 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063af254]<<
    18:01:02.804 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006397060]
    18:01:02.814 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa800433c6e0]
    18:01:02.814 5 ACPI.sys[fffff88000f397a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004341050]
    18:01:02.824 \Driver\iaStor[0xfffffa8004319060] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063af254
    18:01:02.824 Scan finished successfully
    18:01:57.891 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat"
    18:01:57.911 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt"


    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
    Run date: 2011-09-01 18:33:19
    —————————–
    18:33:19.976 OS Version: Windows x64 6.1.7601 Service Pack 1
    18:33:19.977 Number of processors: 4 586 0x2502
    18:33:19.978 ComputerName: RUTH-VAIO UserName: Ruth
    18:33:23.136 Initialize success
    18:33:58.721 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    18:33:58.724 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
    18:33:58.727 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000064
    18:33:58.729 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:33:58.731 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000065
    18:33:58.733 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:33:58.739 Disk 0 MBR read successfully
    18:33:58.743 Disk 0 MBR scan
    18:33:58.746 Disk 0 TDL4@MBR code has been found
    18:33:58.750 Disk 0 Windows 7 default MBR code found via API
    18:33:58.754 Disk 0 MBR hidden
    18:33:58.758 Disk 0 MBR [TDL4] **ROOTKIT**
    18:33:58.762 Disk 0 trace - called modules:
    18:33:58.766 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cf254]<<
    18:33:58.771 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b7060]
    18:33:58.776 3 CLASSPNP.SYS[fffff88001bcb43f] -> nt!IofCallDriver -> [0xfffffa8004344430]
    18:33:58.780 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004347050]
    18:33:58.784 \Driver\iaStor[0xfffffa800356b7d0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cf254
    18:33:58.789 Scan finished successfully
    18:35:01.428 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat"
    18:35:01.458 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt"
  • Oké, start aswMBR opnieuw op en klik vervolgens op FIX MBR.

    Daarna je PC je absoluut opnieuw opstarten!

    Is Windows weer opgestart start dan wederom aswMBR opnieuw op voor een nieuwe scan met log!
    Post dan wederom de inhoud van het log.
  • Als hij als laatste regel geeft:
    Disk 0 windows 601 MBR fixed successfully.
    Is hij dan al klaar en kan ik afsluiten en opnieuw opstarten, of moet hij eerst nog meer dingen gaan doen voordat ik opnieuw kan opstarten?
  • Het programmaatje was zo snel klaar dat ik het vorige berichtje heb gepost. Maar hij deed daarna niks meer, dus ik ben er maar vanuit gegaan dat ik de computer opnieuw kon opstarten. Hier is de log.

    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
    Run date: 2011-08-31 17:58:50
    —————————–
    17:58:50.279 OS Version: Windows x64 6.1.7601 Service Pack 1
    17:58:50.279 Number of processors: 4 586 0x2502
    17:58:50.279 ComputerName: RUTH-VAIO UserName: Ruth
    17:58:51.579 Initialize success
    18:01:02.754 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    18:01:02.764 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
    18:01:02.764 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062
    18:01:02.764 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:01:02.764 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063
    18:01:02.774 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:01:02.774 Disk 0 MBR read successfully
    18:01:02.774 Disk 0 MBR scan
    18:01:02.784 Disk 0 TDL4@MBR code has been found
    18:01:02.784 Disk 0 Windows 7 default MBR code found via API
    18:01:02.784 Disk 0 MBR hidden
    18:01:02.794 Disk 0 MBR [TDL4] **ROOTKIT**
    18:01:02.794 Disk 0 trace - called modules:
    18:01:02.804 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063af254]<<
    18:01:02.804 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006397060]
    18:01:02.814 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa800433c6e0]
    18:01:02.814 5 ACPI.sys[fffff88000f397a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004341050]
    18:01:02.824 \Driver\iaStor[0xfffffa8004319060] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063af254
    18:01:02.824 Scan finished successfully
    18:01:57.891 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat"
    18:01:57.911 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt"


    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
    Run date: 2011-09-01 18:33:19
    —————————–
    18:33:19.976 OS Version: Windows x64 6.1.7601 Service Pack 1
    18:33:19.977 Number of processors: 4 586 0x2502
    18:33:19.978 ComputerName: RUTH-VAIO UserName: Ruth
    18:33:23.136 Initialize success
    18:33:58.721 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    18:33:58.724 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
    18:33:58.727 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000064
    18:33:58.729 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:33:58.731 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000065
    18:33:58.733 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0
    18:33:58.739 Disk 0 MBR read successfully
    18:33:58.743 Disk 0 MBR scan
    18:33:58.746 Disk 0 TDL4@MBR code has been found
    18:33:58.750 Disk 0 Windows 7 default MBR code found via API
    18:33:58.754 Disk 0 MBR hidden
    18:33:58.758 Disk 0 MBR [TDL4] **ROOTKIT**
    18:33:58.762 Disk 0 trace - called modules:
    18:33:58.766 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cf254]<<
    18:33:58.771 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b7060]
    18:33:58.776 3 CLASSPNP.SYS[fffff88001bcb43f] -> nt!IofCallDriver -> [0xfffffa8004344430]
    18:33:58.780 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004347050]
    18:33:58.784 \Driver\iaStor[0xfffffa800356b7d0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cf254
    18:33:58.789 Scan finished successfully
    18:35:01.428 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat"
    18:35:01.458 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt"


    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
    Run date: 2011-09-01 19:07:34
    —————————–
    19:07:34.550 OS Version: Windows x64 6.1.7601 Service Pack 1
    19:07:34.550 Number of processors: 4 586 0x2502
    19:07:34.550 ComputerName: RUTH-VAIO UserName: Ruth
    19:07:35.908 Initialize success
    19:07:42.560 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    19:07:42.560 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
    19:07:42.565 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062
    19:07:42.567 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0
    19:07:42.570 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063
    19:07:42.572 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0
    19:07:42.600 Disk 0 MBR read successfully
    19:07:42.605 Disk 0 MBR scan
    19:07:42.607 Disk 0 TDL4@MBR code has been found
    19:07:42.610 Disk 0 Windows 7 default MBR code found via API
    19:07:42.612 Disk 0 MBR hidden
    19:07:42.615 Disk 0 MBR [TDL4] **ROOTKIT**
    19:07:42.620 Disk 0 trace - called modules:
    19:07:42.625 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cd254]<<
    19:07:42.960 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b5060]
    19:07:42.962 3 CLASSPNP.SYS[fffff88001b7243f] -> nt!IofCallDriver -> [0xfffffa8004340c30]
    19:07:42.967 5 ACPI.sys[fffff88000fb07a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004343050]
    19:07:42.977 \Driver\iaStor[0xfffffa8004323cb0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cd254
    19:07:42.982 Scan finished successfully
    19:07:57.177 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat"
    19:07:57.227 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt"
  • 19:07:42.615 Disk 0 MBR [TDL4] **ROOTKIT**

    Dus ik weet niet wat je nu gedaan hebt.

    Je moet wel op de meldingen in het schermpje letten.
    Op het moment dat de melding komt dat je zondermeer nu de PC opnieuw moet opstarten, doe je dat.

    Ik ga ervan uit dat de knop FIX MBR aktief was?
  • Hij heeft verder geen meldingen gegeven in het schermpje. hij gaf alleen als laatste regel:
    Disk 0 windows 601 MBR fixed successfully.
    Daarna heb ik Exit gedaan en opnieuw opgestart.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.