[code]
OTScanIt logfile created on: 16-5-2008 23:07:23
OTScanIt by OldTimer - Version 1.0.14.0     Folder = D:\Documents and Settings\AK47\Bureaublad\OTScanIt
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy
 
2,00 Gb Total Physical Memory | 1,61 Gb Available Physical Memory | 80,53% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): M:\pagefile.sys 4600 4600;
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 9,77 Gb Total Space | 4,39 Gb Free Space | 44,94% Space Free | Partition Type: NTFS
Drive D: | 24,42 Gb Total Space | 8,18 Gb Free Space | 33,49% Space Free | Partition Type: NTFS
Drive E: | 14,65 Gb Total Space | 7,67 Gb Free Space | 52,39% Space Free | Partition Type: NTFS
Drive F: | 39,08 Gb Total Space | 8,66 Gb Free Space | 22,16% Space Free | Partition Type: NTFS
Drive G: | 34,18 Gb Total Space | 9,67 Gb Free Space | 28,28% Space Free | Partition Type: NTFS
Drive H: | 34,18 Gb Total Space | 1,89 Gb Free Space | 5,54% Space Free | Partition Type: NTFS
Drive I: | 71,72 Gb Total Space | 6,55 Gb Free Space | 9,13% Space Free | Partition Type: NTFS
Drive K: | 127,99 Gb Total Space | 0,66 Gb Free Space | 0,52% Space Free | Partition Type: NTFS
Drive L: | 61,93 Gb Total Space | 1,91 Gb Free Space | 3,09% Space Free | Partition Type: NTFS
Drive M: | 4,89 Gb Total Space | 0,37 Gb Free Space | 7,54% Space Free | Partition Type: NTFS
Drive N: | 1,91 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive O: | 3,95 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive P: | 384,65 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive Q: | 7,54 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive R: | 19,53 Gb Total Space | 19,47 Gb Free Space | 99,67% Space Free | Partition Type: NTFS
Drive S: | 234,38 Gb Total Space | 123,74 Gb Free Space | 52,79% Space Free | Partition Type: NTFS
Drive T: | 234,38 Gb Total Space | 227,98 Gb Free Space | 97,27% Space Free | Partition Type: NTFS
Drive U: | 210,36 Gb Total Space | 192,27 Gb Free Space | 91,40% Space Free | Partition Type: NTFS

Computer Name: 2C1DA9758C24435
Current User Name: AK47
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users

[Processes - Non-Microsoft Only]
aawservice.exe -> E:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -> Lavasoft [Ver = 7,0,2,6 | Size = 587096 bytes | Modified Date = 4-1-2008 13:27:08 | Attr =    ]
lexbces.exe -> %SystemRoot%\system32\LEXBCES.EXE -> Lexmark International, Inc. [Ver = 9.47 | Size = 311296 bytes | Modified Date = 17-4-2006 19:42:14 | Attr =    ]
lexpps.exe -> %SystemRoot%\system32\LEXPPS.EXE -> Lexmark International, Inc. [Ver = 9.47 | Size = 174592 bytes | Modified Date = 17-4-2006 19:41:24 | Attr =    ]
nvsvc32.exe -> %SystemRoot%\system32\nvsvc32.exe -> NVIDIA Corporation [Ver = 6.14.10.9147 | Size = 155715 bytes | Modified Date = 11-8-2006 21:42:50 | Attr =    ]
pnkbstra.exe -> %SystemRoot%\system32\PnkBstrA.exe ->  [Ver =  | Size = 66872 bytes | Modified Date = 22-11-2007 22:40:37 | Attr =    ]
em_exec.exe -> %ProgramFiles%\Logitech\MouseWare\system\EM_EXEC.EXE -> Logitech Inc. [Ver = 9.80.019 | Size = 38912 bytes | Modified Date = 18-12-2003 9:50:00 | Attr =    ]
speedfan.exe -> E:\Program Files\SpeedFan\speedfan.exe -> Almico Software (www.almico.com) [Ver = 4.33.0.181 | Size = 2902528 bytes | Modified Date = 17-9-2007 19:04:02 | Attr =    ]
firefox.exe -> E:\Program Files\Mozilla Firefox\firefox.exe -> Mozilla Corporation [Ver = 1.8.1.14: 2008040413 | Size = 7660656 bytes | Modified Date = 16-5-2008 1:13:13 | Attr =    ]
otscanit.exe -> %UserProfile%\Bureaublad\OTScanIt\OTScanIt.exe -> OldTimer Tools [Ver = 1.0.14.0 | Size = 372224 bytes | Modified Date = 9-5-2008 21:51:12 | Attr =    ]

[Win32 Services - Non-Microsoft Only]
(aawservice) Ad-Aware 2007 Service [Win32_Own | Auto | Running] -> E:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe -> Lavasoft [Ver = 7,0,2,6 | Size = 587096 bytes | Modified Date = 4-1-2008 13:27:08 | Attr =    ]
(dmadmin) Logical Disk Manager Administrative-service [Win32_Shared | On_Demand | Stopped] -> %SystemRoot%\system32\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 4-8-2004 1:03:28 | Attr =    ]
(gusvc) Google Updater Service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.0.734.29932.beta | Size = 138168 bytes | Modified Date = 26-1-2007 19:16:07 | Attr =    ]
(IDriverT) InstallDriver Table Manager [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\InstallShield\Driver\1150\Intel 32\IDriverT.exe -> Macrovision Corporation [Ver = 11.50.42618 | Size = 69632 bytes | Modified Date = 14-11-2005 1:06:04 | Attr =    ]
(LexBceS) LexBce Server [Win32_Own | Auto | Running] -> %SystemRoot%\system32\LEXBCES.EXE -> Lexmark International, Inc. [Ver = 9.47 | Size = 311296 bytes | Modified Date = 17-4-2006 19:42:14 | Attr =    ]
(NVSvc) NVIDIA Display Driver Service [Win32_Own | Auto | Running] -> %SystemRoot%\system32\nvsvc32.exe -> NVIDIA Corporation [Ver = 6.14.10.9147 | Size = 155715 bytes | Modified Date = 11-8-2006 21:42:50 | Attr =    ]
(PnkBstrA) PnkBstrA [Win32_Own | Auto | Running] -> %SystemRoot%\system32\PnkBstrA.exe ->  [Ver =  | Size = 66872 bytes | Modified Date = 22-11-2007 22:40:37 | Attr =    ]
(SandraDataSrv) Sandra Data Service [Win32_Own | On_Demand | Stopped] -> E:\Program Files\SiSoftware\SiSoftware Sandra Pro Home 2007\Win32\RpcDataSrv.exe -> SiSoftware [Ver = 10.98.2007.6 | Size = 117288 bytes | Modified Date = 16-5-2006 17:21:58 | Attr =    ]
(SandraTheSrv) Sandra Service [Win32_Own | On_Demand | Stopped] -> E:\Program Files\SiSoftware\SiSoftware Sandra Pro Home 2007\RpcSandraSrv.exe -> SiSoftware [Ver = 10.98.2007.6 | Size = 1235496 bytes | Modified Date = 16-5-2006 17:21:58 | Attr =    ]

[Registry - Non-Microsoft Only]
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
DAEMON Tools -> %ProgramFiles%\DAEMON Tools\daemon.exe ["C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033] -> File not found
Logitech Utility -> %SystemRoot%\LOGI_MWX.EXE [Logi_MwX.Exe] -> Logitech Inc. [Ver = 9.80.013 | Size = 20992 bytes | Modified Date = 11-12-2003 9:50:00 | Attr =    ]
NvCplDaemon -> %SystemRoot%\system32\nvcpl.dll [RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup] -> NVIDIA Corporation [Ver = 6.14.10.9147 | Size = 7630848 bytes | Modified Date = 11-8-2006 21:43:02 | Attr =    ]
NvMediaCenter -> %SystemRoot%\system32\nvmctray.dll [RunDLL32.exe NvMCTray.dll,NvTaskbarInit] -> NVIDIA Corporation [Ver = 6.14.10.9147 | Size = 86016 bytes | Modified Date = 11-8-2006 21:43:04 | Attr =    ]
NVMixerTray -> %ProgramFiles%\NVIDIA Corporation\NvMixer\NVMixerTray.exe ["C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"] -> File not found
nwiz -> %SystemRoot%\system32\nwiz.exe [nwiz.exe /install] ->  [Ver =  | Size = 1519616 bytes | Modified Date = 11-8-2006 21:43:00 | Attr =    ]
< Administrator Startup Folder > -> D:\Documents and Settings\Administrator\Menu Start\Programma's\Opstarten -> 
< AK47 Startup Folder > -> D:\Documents and Settings\AK47\Menu Start\Programma's\Opstarten -> 
%UserProfile%\Menu Start\Programma's\Opstarten\HDDlife.lnk -> E:\Program Files\BinarySense\HDDlife\HDDlifePro.exe -> File not found
%UserProfile%\Menu Start\Programma's\Opstarten\Kopie van SpeedFan.lnk -> E:\Program Files\SpeedFan\speedfan.exe -> Almico Software (www.almico.com) [Ver = 4.33.0.181 | Size = 2902528 bytes | Modified Date = 17-9-2007 19:04:02 | Attr =    ]
< All Users Startup Folder > -> D:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten -> 
%AllUsersProfile%\Menu Start\Programma's\Opstarten\Adobe Reader Speed Launch.lnk -> E:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe -> Adobe Systems Incorporated [Ver = 7.0.5.2005092300 | Size = 29696 bytes | Modified Date = 23-9-2005 22:05:26 | Attr =    ]
< Default User Startup Folder > -> D:\Documents and Settings\Default User\Menu Start\Programma's\Opstarten -> 
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> 
{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} [HKEY_LOCAL_MACHINE] -> E:\Program Files\SUPERAntiSpyware\SASSEH.DLL [] -> SuperAdBlocker.com [Ver = 1, 0, 0, 1008 | Size = 77824 bytes | Modified Date = 20-12-2006 12:55:48 | Attr =    ]
< SecurityProviders [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> 
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_USERS\S-1-5-19] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_USERS\S-1-5-20] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon settings [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> 
!SASWinLogon -> E:\Program Files\SUPERAntiSpyware\SASWINLO.dll -> SUPERAntiSpyware.com [Ver = 1, 0, 0, 1046 | Size = 294912 bytes | Modified Date = 19-4-2007 12:41:36 | Attr =    ]
< CurrentVersion Policy Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveAutoRun -> 67108863 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 255 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\NoControlPanel -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\HideLegacyLogonScripts -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\HideLogoffScripts -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\RunLogonScriptSync -> 1 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\RunStartupScriptSync -> 1 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\HideStartupScripts -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\DisableRegistryTools -> 0 -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Uninstall\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\WindowsUpdate\ -> -> 
< CurrentVersion Policy Settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop\ -> -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Associations\ -> -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideLegacyLogonScripts -> 0 -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideLogoffScripts -> 0 -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunLogonScriptSync -> 1 -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunStartupScriptSync -> 1 -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideStartupScripts -> 0 -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\WindowsUpdate\ -> -> 
< CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\ -> -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> 
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\ -> -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> 
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-19] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 -> 
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-20] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 -> 
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop\ -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Associations\ -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideLegacyLogonScripts -> 0 -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideLogoffScripts -> 0 -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunLogonScriptSync -> 1 -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\RunStartupScriptSync -> 1 -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\HideStartupScripts -> 0 -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\WindowsUpdate\ -> -> 
< CDROM Autorun Settings > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom] -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\ -> ->
*DependOnGroup* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\DependOnGroup -> 
SCSI miniport ->  -> File not found
*MultiFile Done* -> -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\ErrorControl -> 1 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Group -> SCSI CDROM Class -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Start -> 1 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Tag -> 2 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Type -> 1 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\DisplayName -> Cd-rom-stuurprogramma -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\ImagePath -> C:\WINDOWS\system32\drivers\cdrom.sys [system32\DRIVERS\cdrom.sys] -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 49536 bytes | Modified Date = 3-8-2004 22:59:54 | Attr =    ]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun -> 1 -> 
*AutoRunAlwaysDisable* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRunAlwaysDisable -> 
NEC     MBR-7    ->  -> File not found
NEC     MBR-7.4  ->  -> File not found
PIONEER CHANGR DRM-1804X ->  -> File not found
PIONEER CD-ROM DRM-6324X ->  -> File not found
PIONEER CD-ROM DRM-624X  ->  -> File not found
TORiSAN CD-ROM CDR_C36 ->  -> File not found
*MultiFile Done* -> -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\ -> -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\0 -> IDE\CdRom_NEC_DVD_RW_ND-4550A____________________1.08____\5&39fdaa9a&0&0.0.0 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\Count -> 5 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\NextInstance -> 5 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\1 -> SCSI\CdRom&Ven_RM9055F&Prod_VIG760F&Rev_1.0\5&2ce69707&0&000 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\2 -> SCSI\CdRom&Ven_RM9055F&Prod_VIG760F&Rev_1.0\5&2ce69707&0&010 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\3 -> SCSI\CdRom&Ven_RM9055F&Prod_VIG760F&Rev_1.0\5&2ce69707&0&020 -> 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\4 -> SCSI\CdRom&Ven_RM9055F&Prod_VIG760F&Rev_1.0\5&2ce69707&0&030 -> 
< Drives - Autoruns > ->  -> 
AUTOEXEC.BAT [] -> %SystemDrive%\AUTOEXEC.BAT [ NTFS ] ->  [Ver =  | Size = 0 bytes | Modified Date = 24-9-2006 4:17:24 | Attr =    ]
AUTOEXEC.BAT [] -> K:\AUTOEXEC.BAT [ NTFS ] ->  [Ver =  | Size = 0 bytes | Modified Date = 29-4-2006 6:58:49 | Attr =    ]
autorun [] -> N:\autorun.exe [ UDF ] ->  [Ver = 1, 0, 0, 1 | Size = 1187840 bytes | Modified Date = 23-5-2005 1:22:41 | Attr = R  ]
Autorun.exe [MZ | ] -> N:\Autorun.exe [ UDF ] ->  [Ver = 1, 0, 0, 1 | Size = 1187840 bytes | Modified Date = 23-5-2005 1:22:41 | Attr = R  ]
Autorun.inf [[autorun] | icon=BF2.ico | open=Autorun.exe | ] -> N:\Autorun.inf [ UDF ] ->  [Ver =  | Size = 43 bytes | Modified Date = 23-5-2005 1:22:40 | Attr = R  ]
AutoRun [] -> O:\AutoRun.exe [ UDF ] -> Electronic Arts Inc. [Ver = 1.09.02 | Size = 569344 bytes | Modified Date = 17-10-2006 7:20:09 | Attr = R  ]
AutoRun.exe [MZ | ] -> O:\AutoRun.exe [ UDF ] -> Electronic Arts Inc. [Ver = 1.09.02 | Size = 569344 bytes | Modified Date = 17-10-2006 7:20:09 | Attr = R  ]
autorun.inf [[autorun] | open=Autorun.exe | Icon=NFS_icon.ico | Name=Need for Speed Carbon |  | [Special] | Disk=1 | ProductGuiID={259C0ABB-A3B2-4D70-008F-BF7EE491B70B} |  | ] -> O:\autorun.inf [ UDF ] ->  [Ver =  | Size = 152 bytes | Modified Date = 17-10-2006 7:53:44 | Attr = R  ]
AutoRunGUI.dll [MZ | ] -> O:\AutoRunGUI.dll [ UDF ] -> Electronic Arts Inc. [Ver = 1.09.02 | Size = 528384 bytes | Modified Date = 13-10-2006 10:01:46 | Attr = R  ]
AutoRun [] -> P:\AutoRun.exe [ CDFS ] ->  [Ver =  | Size = 1101824 bytes | Modified Date = 1-9-2003 23:50:21 | Attr = R  ]
Autorun.csf [
 | ] -> P:\Autorun.csf [ CDFS ] ->  [Ver =  | Size = 2046 bytes | Modified Date = 31-8-2003 5:36:09 | Attr = R  ]
Autorun.exe [’
Ä | ] -> P:\Autorun.exe [ CDFS ] ->  [Ver =  | Size = 1101824 bytes | Modified Date = 1-9-2003 23:50:21 | Attr = R  ]
autorun.inf [] -> P:\autorun.inf [ CDFS ] ->  [Ver =  | Size = 27 bytes | Modified Date = 31-8-2003 5:15:46 | Attr = R  ]
Autorun [] -> Q:\Autorun.exe [ UDF ] -> Electronic Arts Inc. [Ver = 1, 0, 0, 0 | Size = 165136 bytes | Modified Date = 6-3-2008 8:42:11 | Attr = R  ]
Autorun.inf [[AutoRun] | open=autorun.exe | icon=cnc3nod.ico | ] -> Q:\Autorun.inf [ UDF ] ->  [Ver =  | Size = 47 bytes | Modified Date = 25-1-2008 22:10:40 | Attr = R  ]
autorun.exe [MZ | ] -> Q:\autorun.exe [ UDF ] -> Electronic Arts Inc. [Ver = 1, 0, 0, 0 | Size = 165136 bytes | Modified Date = 6-3-2008 8:42:11 | Attr = R  ]
< HOSTS File > (27 bytes) -> C:\WINDOWS\System32\drivers\etc\Hosts -> 
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> 
HKEY_LOCAL_MACHINE\: Main\\Default_Page_URL -> http://go.microsoft.com/fwlink/?LinkId=69157 -> 
HKEY_LOCAL_MACHINE\: Main\\Default_Search_URL -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\Local Page -> C:\windows\system32\blank.htm -> 
HKEY_LOCAL_MACHINE\: Main\\Search Page -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\Start Page -> http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home -> 
HKEY_LOCAL_MACHINE\: Search\\CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> 
HKEY_LOCAL_MACHINE\: Search\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_LOCAL_MACHINE\: Search\\SearchAssistant -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> 
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> 
HKEY_CURRENT_USER\: Main\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_CURRENT_USER\: Main\\Local Page -> C:\windows\system32\blank.htm -> 
HKEY_CURRENT_USER\: Main\\Search Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_CURRENT_USER\: Main\\Start Page -> http://www.google.nl/ig -> 
HKEY_CURRENT_USER\: SearchURL\\ -> http://home.microsoft.com/access/autosearch.asp?p=%s[] -> 
HKEY_CURRENT_USER\: ProxyEnable -> 0 -> 
< Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> -> 
HKEY_USERS\.DEFAULT\: Main\\Search Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_USERS\.DEFAULT\: Main\\Start Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> 
HKEY_USERS\.DEFAULT\: ProxyEnable -> 0 -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> -> 
HKEY_USERS\S-1-5-18\: Main\\Search Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_USERS\S-1-5-18\: Main\\Start Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> 
HKEY_USERS\S-1-5-18\: ProxyEnable -> 0 -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: Main\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: Main\\Local Page -> C:\windows\system32\blank.htm -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: Main\\Search Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: Main\\Start Page -> http://www.google.nl/ig -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: SearchURL\\ -> http://home.microsoft.com/access/autosearch.asp?p=%s[] -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\: ProxyEnable -> 0 -> 
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 1 domain(s) found. -> 
1 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4 domain(s) found. -> 
www_ani-search.com [http] -> Lokaal intranet -> 
www_higsearch.com [http] -> Lokaal intranet -> 
tomb_povidon.com [http] -> Lokaal intranet -> 
www_searchixz.com [http] -> Lokaal intranet -> 
4 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4 domain(s) found. -> 
www_ani-search.com [http] -> Lokaal intranet -> 
www_higsearch.com [http] -> Lokaal intranet -> 
tomb_povidon.com [http] -> Lokaal intranet -> 
www_searchixz.com [http] -> Lokaal intranet -> 
4 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4 domain(s) found. -> 
www_ani-search.com [http] -> Lokaal intranet -> 
www_higsearch.com [http] -> Lokaal intranet -> 
tomb_povidon.com [http] -> Lokaal intranet -> 
www_searchixz.com [http] -> Lokaal intranet -> 
4 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4 domain(s) found. -> 
www_ani-search.com [http] -> Lokaal intranet -> 
www_higsearch.com [http] -> Lokaal intranet -> 
tomb_povidon.com [http] -> Lokaal intranet -> 
www_searchixz.com [http] -> Lokaal intranet -> 
4 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> 
{2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Google\GoogleToolbar3.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2423872 bytes | Modified Date = 20-1-2007 0:56:34 | Attr = R  ]
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> 
ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Google\GoogleToolbar3.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2423872 bytes | Modified Date = 20-1-2007 0:56:34 | Attr = R  ]
WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Google\GoogleToolbar3.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2423872 bytes | Modified Date = 20-1-2007 0:56:34 | Attr = R  ]
< Internet Explorer ToolBars [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\ -> 
ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Google\GoogleToolbar3.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2423872 bytes | Modified Date = 20-1-2007 0:56:34 | Attr = R  ]
WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Google\GoogleToolbar3.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2423872 bytes | Modified Date = 20-1-2007 0:56:34 | Attr = R  ]
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> 
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} [HKEY_LOCAL_MACHINE] -> E:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 132760 bytes | Modified Date = 14-3-2007 3:43:41 | Attr =    ]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} [HKEY_CURRENT_USER] -> E:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 501400 bytes | Modified Date = 14-3-2007 3:43:40 | Attr =    ]
{85d1f590-48f4-11d9-9669-0800200c9a66}:Exec -> %SystemRoot%\bdoscandel.exe [Uninstall BitDefender Online Scanner v8] ->  [Ver =  | Size = 53248 bytes | Modified Date = 25-5-2006 1:22:06 | Attr =    ]
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ -> 
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\ButtonText [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\CLSID [HKEY_LOCAL_MACHINE] ->  [{0000031A-0000-0000-C000-000000000046}] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\ClsidExtension [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\Default Visible [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\HotIcon [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\Icon [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKEY_LOCAL_MACHINE] -> E:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 132760 bytes | Modified Date = 14-3-2007 3:43:41 | Attr =    ]
CmdMapping\\{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Value  does not exist or could not be read.] -> File not found
CmdMapping\\{85d1f590-48f4-11d9-9669-0800200c9a66} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\bdoscandel.exe [Uninstall BitDefender Online Scanner v8] ->  [Ver =  | Size = 53248 bytes | Modified Date = 25-5-2006 1:22:06 | Attr =    ]
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> 
Ontvang alles met FlashGet -> K:\Program Files\FlashGet\jc_all.htm ->  [Ver =  | Size = 575 bytes | Modified Date = 6-2-2000 11:06:06 | Attr =    ]
Ontvang met FlashGet -> K:\Program Files\FlashGet\jc_link.htm ->  [Ver =  | Size = 1898 bytes | Modified Date = 6-2-2000 11:06:34 | Attr =    ]
Save Flash -> E:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll -> UnH Solutions [Ver = 1.2.0 | Size = 180224 bytes | Modified Date = 30-4-2005 15:53:32 | Attr =    ]
< Internet Explorer Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\ -> 
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKEY_LOCAL_MACHINE] -> E:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 132760 bytes | Modified Date = 14-3-2007 3:43:41 | Attr =    ]
CmdMapping\\{85d1f590-48f4-11d9-9669-0800200c9a66} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\bdoscandel.exe [Uninstall BitDefender Online Scanner v8] ->  [Ver =  | Size = 53248 bytes | Modified Date = 25-5-2006 1:22:06 | Attr =    ]
< Internet Explorer Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\ -> 
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKEY_LOCAL_MACHINE] -> E:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 132760 bytes | Modified Date = 14-3-2007 3:43:41 | Attr =    ]
CmdMapping\\{85d1f590-48f4-11d9-9669-0800200c9a66} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\bdoscandel.exe [Uninstall BitDefender Online Scanner v8] ->  [Ver =  | Size = 53248 bytes | Modified Date = 25-5-2006 1:22:06 | Attr =    ]
< Internet Explorer Extensions [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\Software\Microsoft\Internet Explorer\Extensions\ -> 
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\ButtonText [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\CLSID [HKEY_LOCAL_MACHINE] ->  [{0000031A-0000-0000-C000-000000000046}] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\ClsidExtension [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\Default Visible [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\HotIcon [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA}\\Icon [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKEY_LOCAL_MACHINE] -> E:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.10.6 | Size = 132760 bytes | Modified Date = 14-3-2007 3:43:41 | Attr =    ]
CmdMapping\\{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Key does not exist or could not be opened.] -> File not found
CmdMapping\\{43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} [HKEY_LOCAL_MACHINE] ->  [Reg Error: Value  does not exist or could not be read.] -> File not found
CmdMapping\\{85d1f590-48f4-11d9-9669-0800200c9a66} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\bdoscandel.exe [Uninstall BitDefender Online Scanner v8] ->  [Ver =  | Size = 53248 bytes | Modified Date = 25-5-2006 1:22:06 | Attr =    ]
< Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\] > -> HKEY_USERS\S-1-5-21-1123561945-1979792683-839522115-1004\Software\Microsoft\Internet Explorer\MenuExt\ -> 
Ontvang alles met FlashGet -> K:\Program Files\FlashGet\jc_all.htm ->  [Ver =  | Size = 575 bytes | Modified Date = 6-2-2000 11:06:06 | Attr =    ]
Ontvang met FlashGet -> K:\Program Files\FlashGet\jc_link.htm ->  [Ver =  | Size = 1898 bytes | Modified Date = 6-2-2000 11:06:34 | Attr =    ]
Save Flash -> E:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll -> UnH Solutions [Ver = 1.2.0 | Size = 180224 bytes | Modified Date = 30-4-2005 15:53:32 | Attr =    ]
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> 
PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> 
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> 
< DNS Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> 
{1BF7BDF1-0A8F-4BA8-91FC-F9513160D4AB} ->    (NVIDIA nForce Networking Controller) -> 
{7FCB1335-6CE1-4650-83E2-CB4652F83473} ->    (1394-netwerkkaart) -> 
{A0480839-1B70-4AAF-817D-0B9300F9997C} ->    () -> 
< Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> 
ipp: [HKEY_LOCAL_MACHINE] -> No CLSID value
msdaipp: [HKEY_LOCAL_MACHINE] -> No CLSID value
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> 
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}[HKEY_LOCAL_MACHINE] -> http://www.apple.com/qtactivex/qtplugin.cab[QuickTime Object] -> 
{166B1BCA-3F9C-11CF-8075-444553540000}[HKEY_LOCAL_MACHINE] -> http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab[Shockwave ActiveX Control] -> 
{17492023-C23A-453E-A040-C7C580BBF700}[HKEY_LOCAL_MACHINE] -> http://go.microsoft.com/fwlink/?linkid=39204[Windows Genuine Advantage Validation Tool] -> 
{215B8138-A3CF-44C5-803F-8226143CFC0A}[HKEY_LOCAL_MACHINE] -> http://eu-housecall.trendmicro-europe.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab[Trend Micro ActiveX Scan Agent 6.6] -> 
{233C1507-6A77-46A4-9443-F871F945D258}[HKEY_LOCAL_MACHINE] -> http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab[Shockwave ActiveX Control] -> 
{4F1E5B1A-2A80-42CA-8532-2D05CB959537}[HKEY_LOCAL_MACHINE] -> http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab[MSN Photo Upload Tool] -> 
{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}[HKEY_LOCAL_MACHINE] -> http://download.bitdefender.com/resources/scan8/oscan8.cab[BDSCANONLINE Control] -> 
{6414512B-B978-451D-A0D8-FCFDF33E833C}[HKEY_LOCAL_MACHINE] -> http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1159065150921[WUWebControl Class] -> 
{67A5F8DC-1A4B-4D66-9F24-A704AD929EEE}[HKEY_LOCAL_MACHINE] -> http://www.systemrequirementslab.com/sysreqlab2.cab[System Requirements Lab Class] -> 
{8AD9C840-044E-11D1-B3E9-00805F499D93}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-6u1-windows-i586-jc.cab[Java Plug-in 1.6.0_01] -> 
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab[Java Plug-in 1.6.0_01] -> 
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab[Java Plug-in 1.6.0_01] -> 
{D27CDB6E-AE6D-11CF-96B8-444553540000}[HKEY_LOCAL_MACHINE] -> http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab[Shockwave Flash Object] -> 
{EF791A6B-FC12-4C68-99EF-FB9E207A39E6}[HKEY_LOCAL_MACHINE] -> http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5160/mcfscan.cab[McFreeScan Class] -> 
< Module Usage Keys [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandel.exe\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandel.exe\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandel.exe\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandellang.ini\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandellang.ini\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/bdoscandellang.ini\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdcore.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdcore.dll\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdcore.dll\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdupd.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdupd.dll\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bdupd.dll\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Housecall_ActiveX.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Housecall_ActiveX.dll\\.Owner -> {215B8138-A3CF-44C5-803F-8226143CFC0A} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/Housecall_ActiveX.dll\\{215B8138-A3CF-44C5-803F-8226143CFC0A} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/ipsupd.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/ipsupd.dll\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/ipsupd.dll\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/lang.ini\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/lang.ini\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/lang.ini\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/libfn.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/libfn.dll\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/libfn.dll\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/live.ini\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/live.ini\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/live.ini\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MsnPUpld.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MsnPUpld.dll\\.Owner -> {4F1E5B1A-2A80-42CA-8532-2D05CB959537} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MsnPUpld.dll\\{4F1E5B1A-2A80-42CA-8532-2D05CB959537} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan8.ocx\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan8.ocx\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan8.ocx\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan81.ocx_x\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan81.ocx_x\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/oscan81.ocx_x\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/PURen-us.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/PURen-us.dll\\.Owner -> {4F1E5B1A-2A80-42CA-8532-2D05CB959537} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/PURen-us.dll\\{4F1E5B1A-2A80-42CA-8532-2D05CB959537} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/scanoptions.tsi\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/scanoptions.tsi\\.Owner -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/scanoptions.tsi\\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/sysreqlab2.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/sysreqlab2.dll\\.Owner -> {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/sysreqlab2.dll\\{67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL\\{17492023-C23A-453E-A040-C7C580BBF700} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\{215B8138-A3CF-44C5-803F-8226143CFC0A} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcp60.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcp60.dll\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcp60.dll\\{215B8138-A3CF-44C5-803F-8226143CFC0A} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\{215B8138-A3CF-44C5-803F-8226143CFC0A} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\{215B8138-A3CF-44C5-803F-8226143CFC0A} ->  -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/wuweb.dll\ -> -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/wuweb.dll\\.Owner -> Unknown Owner -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/wuweb.dll\\{6414512B-B978-451D-A0D8-FCFDF33E833C} ->  -> 


[Registry - Additional Scans - Non-Microsoft Only]


[Files/Folders - Created Within 90 days]
cleanup.bat -> %SystemDrive%\cleanup.bat ->  [Ver =  | Size = 574 bytes | Created Date = 14-5-2008 0:39:04 | Attr =    ]
cleanup.exe -> %SystemDrive%\cleanup.exe ->  [Ver =  | Size = 19286 bytes | Created Date = 14-5-2008 0:39:04 | Attr =    ]
ErdUndoCache -> %SystemDrive%\ErdUndoCache ->  [Folder | Created Date = 13-5-2008 17:51:56 | Attr =  H ]
QooBox -> %SystemDrive%\QooBox ->  [Folder | Created Date = 14-5-2008 10:35:56 | Attr =    ]
RVAXO -> %SystemDrive%\RVAXO ->  [Folder | Created Date = 14-5-2008 0:16:11 | Attr =    ]
tool -> %SystemDrive%\tool ->  [Folder | Created Date = 13-5-2008 19:00:46 | Attr =    ]
VundoFix Backups -> %SystemDrive%\VundoFix Backups ->  [Folder | Created Date = 15-5-2008 1:47:54 | Attr =    ]
zip.exe -> %SystemDrive%\zip.exe ->  [Ver =  | Size = 135168 bytes | Created Date = 14-5-2008 0:39:04 | Attr =    ]
~ErdUserProfile.$$$ -> %SystemDrive%\~ErdUserProfile.$$$ ->  [Folder | Created Date = 13-5-2008 17:49:48 | Attr =    ]
hamachi.sys -> %SystemRoot%\System32\drivers\hamachi.sys -> LogMeIn, Inc. [Ver = 6.0.2.2 | Size = 25280 bytes | Created Date = 6-5-2008 1:02:40 | Attr =    ]
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys ->  [Ver =  | Size = 15864 bytes | Created Date = 13-5-2008 19:33:29 | Attr =    ]
mbamcatchme.sys -> %SystemRoot%\System32\drivers\mbamcatchme.sys ->  [Ver =  | Size = 27048 bytes | Created Date = 13-5-2008 19:33:29 | Attr =    ]
nvtcp.sys -> %SystemRoot%\System32\drivers\nvtcp.sys -> NVIDIA Corporation [Ver = 1.00.00.05025 | Size = 101888 bytes | Created Date = 11-5-2008 15:32:56 | Attr =    ]
404Fix.exe -> %SystemRoot%\System32\404Fix.exe -> S!Ri.URZ [Ver =  | Size = 82944 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
CapabilityTable.exe -> %SystemRoot%\System32\CapabilityTable.exe -> NVIDIA Corporation [Ver = 2, 2, 1, 464 | Size = 466944 bytes | Created Date = 11-5-2008 15:33:27 | Attr =    ]
ds.dat -> %SystemRoot%\System32\ds.dat ->  [Ver =  | Size = 1 bytes | Created Date = 13-5-2008 16:18:29 | Attr =    ]
dumphive.exe -> %SystemRoot%\System32\dumphive.exe ->  [Ver =  | Size = 51200 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
IEDFix.exe -> %SystemRoot%\System32\IEDFix.exe -> S!Ri.URZ [Ver =  | Size = 82944 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
lfbmp13n.dll -> %SystemRoot%\System32\lfbmp13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 57344 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
lfcmp13n.dll -> %SystemRoot%\System32\lfcmp13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 401408 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
lfgif13n.dll -> %SystemRoot%\System32\lfgif13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 69632 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
lfpng13n.dll -> %SystemRoot%\System32\lfpng13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 159744 bytes | Created Date = 26-3-2008 21:20:51 | Attr =    ]
ltdis13n.dll -> %SystemRoot%\System32\ltdis13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 299008 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
ltefx13n.dll -> %SystemRoot%\System32\ltefx13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.068 | Size = 206336 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
ltfil13n.dll -> %SystemRoot%\System32\ltfil13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 163840 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
ltimg13n.dll -> %SystemRoot%\System32\ltimg13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 450560 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
ltkrn13n.dll -> %SystemRoot%\System32\ltkrn13n.dll -> LEAD Technologies, Inc. [Ver = 13.0.0.084 | Size = 462848 bytes | Created Date = 26-3-2008 21:20:49 | Attr =    ]
nvnrm.nvu -> %SystemRoot%\System32\nvnrm.nvu ->  [Ver =  | Size = 3903 bytes | Created Date = 11-5-2008 15:32:56 | Attr =    ]
nvsmb.nvu -> %SystemRoot%\System32\nvsmb.nvu ->  [Ver =  | Size = 1864 bytes | Created Date = 11-5-2008 15:32:55 | Attr =    ]
nvunrm.exe -> %SystemRoot%\System32\nvunrm.exe -> NVIDIA Corporation [Ver = 1 , 0 , 1 , 56  | Size = 208896 bytes | Created Date = 11-5-2008 15:32:56 | Attr =    ]
nvusmb.exe -> %SystemRoot%\System32\nvusmb.exe -> NVIDIA Corporation [Ver = 1 , 0 , 1 , 56  | Size = 208896 bytes | Created Date = 11-5-2008 15:32:55 | Attr =    ]
Process.exe -> %SystemRoot%\System32\Process.exe -> http://www.beyondlogic.org [Ver = 2, 0, 0, 0 | Size = 53248 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
SrchSTS.exe -> %SystemRoot%\System32\SrchSTS.exe -> S!Ri [Ver =  | Size = 288417 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
tmp.reg -> %SystemRoot%\System32\tmp.reg ->  [Ver =  | Size = 928 bytes | Created Date = 13-5-2008 18:02:57 | Attr =    ]
VACFix.exe -> %SystemRoot%\System32\VACFix.exe -> S!Ri.URZ [Ver =  | Size = 86528 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
VCCLSID.exe -> %SystemRoot%\System32\VCCLSID.exe -> S!Ri [Ver =  | Size = 289144 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
WS2Fix.exe -> %SystemRoot%\System32\WS2Fix.exe ->  [Ver =  | Size = 25600 bytes | Created Date = 15-5-2008 1:16:18 | Attr =    ]
ERDNT -> %SystemRoot%\ERDNT ->  [Folder | Created Date = 14-5-2008 0:22:08 | Attr =    ]
3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 
eReg.dat -> %SystemRoot%\eReg.dat ->  [Ver =  | Size = 975 bytes | Created Date = 4-5-2008 2:06:49 | Attr =    ]
ERUNT -> %SystemRoot%\ERUNT ->  [Folder | Created Date = 14-5-2008 1:14:05 | Attr =    ]
fdsv.exe -> %SystemRoot%\fdsv.exe -> Smallfrogs Studio [Ver = 1.0.0.10 | Size = 73728 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
grep.exe -> %SystemRoot%\grep.exe ->  [Ver =  | Size = 80412 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
nfsc_patch.ini -> %SystemRoot%\nfsc_patch.ini ->  [Ver =  | Size = 58 bytes | Created Date = 18-3-2008 3:53:22 | Attr =    ]
Nircmd.exe -> %SystemRoot%\Nircmd.exe -> NirSoft [Ver = 2.05 | Size = 28160 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
QTFont.for -> %SystemRoot%\QTFont.for ->  [Ver =  | Size = 1409 bytes | Created Date = 27-4-2008 10:57:38 | Attr =    ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn ->  [Ver =  | Size = 54156 bytes | Created Date = 27-4-2008 10:57:38 | Attr =  H ]
sed.exe -> %SystemRoot%\sed.exe ->  [Ver =  | Size = 98816 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
swreg.exe -> %SystemRoot%\swreg.exe -> SteelWerX [Ver = 3.0.0.0 | Size = 161792 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
swsc.exe -> %SystemRoot%\swsc.exe -> SteelWerX [Ver = 2.0.0.5 | Size = 136704 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
swxcacls.exe -> %SystemRoot%\swxcacls.exe -> SteelWerX [Ver = 1.0.1.1 | Size = 212480 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
TEMP -> %SystemRoot%\TEMP ->  [Folder | Created Date = 16-5-2008 22:46:33 | Attr =    ]
VFind.exe -> %SystemRoot%\VFind.exe ->  [Ver =  | Size = 49152 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
wininit.iniRVAXO -> %SystemRoot%\wininit.iniRVAXO ->  [Ver =  | Size = 687 bytes | Created Date = 13-5-2008 20:12:31 | Attr =    ]
zip.exe -> %SystemRoot%\zip.exe ->  [Ver =  | Size = 68096 bytes | Created Date = 14-5-2008 10:35:56 | Attr =    ]
[Files Created - Additional Folder Scans - Non-Microsoft Only]
Lavasoft -> %AllUsersProfile%\Application Data\Lavasoft ->  [Folder | Created Date = 13-5-2008 23:24:23 | Attr =    ]
Malwarebytes -> %AllUsersProfile%\Application Data\Malwarebytes ->  [Folder | Created Date = 13-5-2008 19:33:29 | Attr =    ]
Spybot - Search & Destroy -> %AllUsersProfile%\Application Data\Spybot - Search & Destroy ->  [Folder | Created Date = 13-5-2008 19:29:04 | Attr =    ]
SUPERAntiSpyware.com -> %AllUsersProfile%\Application Data\SUPERAntiSpyware.com ->  [Folder | Created Date = 15-5-2008 13:49:42 | Attr =    ]
Command & Conquer 3 Kane's Wrath -> %AppData%\Command & Conquer 3 Kane's Wrath ->  [Folder | Created Date = 11-5-2008 0:29:56 | Attr =    ]
FreeStone Group -> %AppData%\FreeStone Group ->  [Folder | Created Date = 11-5-2008 2:25:07 | Attr =    ]
Hamachi -> %AppData%\Hamachi ->  [Folder | Created Date = 6-5-2008 1:02:47 | Attr =    ]
InstallShield -> %AppData%\InstallShield ->  [Folder | Created Date = 28-2-2008 18:05:02 | Attr =    ]
LimeWire -> %AppData%\LimeWire ->  [Folder | Created Date = 6-3-2008 19:50:53 | Attr =    ]
Malwarebytes -> %AppData%\Malwarebytes ->  [Folder | Created Date = 13-5-2008 19:33:37 | Attr =    ]
SecuROM -> %AppData%\SecuROM ->  [Folder | Created Date = 11-5-2008 0:17:21 | Attr = RH ]
SUPERAntiSpyware.com -> %AppData%\SUPERAntiSpyware.com ->  [Folder | Created Date = 15-5-2008 13:49:24 | Attr =    ]
Uniblue -> %AppData%\Uniblue ->  [Folder | Created Date = 27-3-2008 23:19:45 | Attr =    ]
IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db ->  [Ver =  | Size = 6907454 bytes | Created Date = 23-4-2008 11:11:39 | Attr =  H ]
03041.xlsx -> %UserProfile%\Mijn documenten\03041.xlsx ->  [Ver =  | Size = 89493 bytes | Created Date = 18-4-2008 10:18:02 | Attr =    ]
1bcontrolevan3.xlsx -> %UserProfile%\Mijn documenten\1bcontrolevan3.xlsx ->  [Ver =  | Size = 13745 bytes | Created Date = 28-2-2008 17:24:07 | Attr =    ]
3dcontrole.xlsx -> %UserProfile%\Mijn documenten\3dcontrole.xlsx ->  [Ver =  | Size = 12095 bytes | Created Date = 27-2-2008 1:39:47 | Attr =    ]
aanvullingen-vragen-theorie-examen-b-1135648.pdf -> %UserProfile%\Mijn documenten\aanvullingen-vragen-theorie-examen-b-1135648.pdf ->  [Ver =  | Size = 372941 bytes | Created Date = 9-3-2008 17:55:01 | Attr =    ]
Chest.doc -> %UserProfile%\Mijn documenten\Chest.doc ->  [Ver =  | Size = 28160 bytes | Created Date = 1-4-2008 20:30:29 | Attr =    ]
Command & Conquer 3 Kane's Wrath -> %UserProfile%\Mijn documenten\Command & Conquer 3 Kane's Wrath ->  [Folder | Created Date = 11-5-2008 0:32:14 | Attr =    ]
1 D:\Documents and Settings\AK47\Mijn documenten\*.tmp files -> D:\Documents and Settings\AK47\Mijn documenten\*.tmp -> 
Command and Conquer Generals Data -> %UserProfile%\Mijn documenten\Command and Conquer Generals Data ->  [Folder | Created Date = 1-5-2008 18:09:27 | Attr =    ]
Command and Conquer Generals Zero Hour Data -> %UserProfile%\Mijn documenten\Command and Conquer Generals Zero Hour Data ->  [Folder | Created Date = 1-5-2008 18:07:59 | Attr =    ]
Image3.jpg -> %UserProfile%\Mijn documenten\Image3.jpg ->  [Ver =  | Size = 109103 bytes | Created Date = 18-4-2008 9:45:53 | Attr =    ]
IPSWAFF -> %UserProfile%\Mijn documenten\IPSWAFF ->  [Folder | Created Date = 16-3-2008 0:01:47 | Attr =    ]
joystick.jpg -> %UserProfile%\Mijn documenten\joystick.jpg ->  [Ver =  | Size = 41702 bytes | Created Date = 13-5-2008 12:31:11 | Attr =    ]
kijkgedrag.pdf -> %UserProfile%\Mijn documenten\kijkgedrag.pdf ->  [Ver =  | Size = 93057 bytes | Created Date = 11-5-2008 0:16:48 | Attr =    ]
LimeWire -> %UserProfile%\Mijn documenten\LimeWire ->  [Folder | Created Date = 6-3-2008 19:51:06 | Attr =    ]
model3a.xlsx -> %UserProfile%\Mijn documenten\model3a.xlsx ->  [Ver =  | Size = 11723 bytes | Created Date = 28-2-2008 19:31:24 | Attr =    ]
model3aformule.xlsx -> %UserProfile%\Mijn documenten\model3aformule.xlsx ->  [Ver =  | Size = 13379 bytes | Created Date = 10-3-2008 1:41:35 | Attr =    ]
model3Ccontrolegoed.xlsx -> %UserProfile%\Mijn documenten\model3Ccontrolegoed.xlsx ->  [Ver =  | Size = 18852 bytes | Created Date = 28-2-2008 22:48:04 | Attr =    ]
model3Ccontrolegoed2.xlsx -> %UserProfile%\Mijn documenten\model3Ccontrolegoed2.xlsx ->  [Ver =  | Size = 20152 bytes | Created Date = 28-2-2008 23:35:25 | Attr =    ]
model3controlegoed.xlsx -> %UserProfile%\Mijn documenten\model3controlegoed.xlsx ->  [Ver =  | Size = 19326 bytes | Created Date = 28-2-2008 20:38:52 | Attr =    ]
studiewijzerkr1.pdf -> %UserProfile%\Mijn documenten\studiewijzerkr1.pdf ->  [Ver =  | Size = 44712 bytes | Created Date = 7-3-2008 13:55:24 | Attr =    ]
The advanced workout.docx -> %UserProfile%\Mijn documenten\The advanced workout.docx ->  [Ver =  | Size = 12439 bytes | Created Date = 31-3-2008 3:11:18 | Attr =    ]
Thumbs.db -> %UserProfile%\Mijn documenten\Thumbs.db ->  [Ver =  | Size = 73728 bytes | Created Date = 25-3-2008 13:36:54 | Attr =  HS]
@Alternate Data Stream - 0 bytes -> %UserProfile%\Mijn documenten\Thumbs.db:encryptable
vomar.doc -> %UserProfile%\Mijn documenten\vomar.doc ->  [Ver =  | Size = 37376 bytes | Created Date = 19-4-2008 0:00:40 | Attr =    ]
vomar.docx -> %UserProfile%\Mijn documenten\vomar.docx ->  [Ver =  | Size = 15875 bytes | Created Date = 18-4-2008 23:53:48 | Attr =    ]
Ad-Aware 2007.lnk -> %AllUsersProfile%\Bureaublad\Ad-Aware 2007.lnk ->  [Ver =  | Size = 1656 bytes | Created Date = 13-5-2008 23:24:25 | Attr =    ]
Ad-Watch 2007.lnk -> %AllUsersProfile%\Bureaublad\Ad-Watch 2007.lnk ->  [Ver =  | Size = 1656 bytes | Created Date = 13-5-2008 23:24:25 | Attr =    ]
Command & Conquer 3 Kane's Wrath spelen.lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer 3 Kane's Wrath spelen.lnk ->  [Ver =  | Size = 903 bytes | Created Date = 11-5-2008 0:28:16 | Attr =    ]
Command & Conquer Generals Zero Hour .lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer Generals Zero Hour .lnk ->  [Ver =  | Size = 651 bytes | Created Date = 4-5-2008 2:09:31 | Attr =    ]
Command & Conquer Generals.lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer Generals.lnk ->  [Ver =  | Size = 607 bytes | Created Date = 4-5-2008 2:04:34 | Attr =    ]
hamachi.lnk -> %AllUsersProfile%\Bureaublad\hamachi.lnk ->  [Ver =  | Size = 538 bytes | Created Date = 6-5-2008 1:02:40 | Attr =    ]
Malwarebytes' Anti-Malware.lnk -> %AllUsersProfile%\Bureaublad\Malwarebytes' Anti-Malware.lnk ->  [Ver =  | Size = 570 bytes | Created Date = 13-5-2008 19:33:29 | Attr =    ]
Need for Speed™ Carbon.lnk -> %AllUsersProfile%\Bureaublad\Need for Speed™ Carbon.lnk ->  [Ver =  | Size = 887 bytes | Created Date = 18-3-2008 3:31:15 | Attr =    ]
Play Command & Conquer 3 Tiberium Wars.lnk -> %AllUsersProfile%\Bureaublad\Play Command & Conquer 3 Tiberium Wars.lnk ->  [Ver =  | Size = 823 bytes | Created Date = 11-5-2008 0:15:39 | Attr =    ]
RegistryBooster 2.lnk -> %AllUsersProfile%\Bureaublad\RegistryBooster 2.lnk ->  [Ver =  | Size = 648 bytes | Created Date = 27-3-2008 23:19:43 | Attr =    ]
SUPERAntiSpyware Free Edition.lnk -> %AllUsersProfile%\Bureaublad\SUPERAntiSpyware Free Edition.lnk ->  [Ver =  | Size = 650 bytes | Created Date = 15-5-2008 13:49:33 | Attr =    ]
ComboFix.exe -> %UserProfile%\Bureaublad\ComboFix.exe ->  [Ver =  | Size = 1914914 bytes | Created Date = 15-5-2008 13:55:56 | Attr =    ]
DefenceNet - ??a p??????? a???? Leopard 2A4 e?a?????e? ta s??d???ta.htm -> %UserProfile%\Bureaublad\DefenceNet - Νέα πολωνική αγορά Leopard 2A4 εξαγριώνει τα συνδικάτα.htm ->  [Ver =  | Size = 21600 bytes | Modified Date = 23-5-2007 3:13:53 | Attr =    ]
DefenceNet - ??a p??????? a???? Leopard 2A4 e?a?????e? ta s??d???ta_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Νέα πολωνική αγορά Leopard 2A4 εξαγριώνει τα συνδικάτα_bestanden ->  [Folder | Modified Date = 17-6-2007 3:30:49 | Attr =    ]
1 D:\Documents and Settings\AK47\Bureaublad\*.tmp files -> D:\Documents and Settings\AK47\Bureaublad\*.tmp -> 
DefenceNet - ???s?eta PzH-2000 ??a t?? ???????? St?at?.htm -> %UserProfile%\Bureaublad\DefenceNet - Πρόσθετα PzH-2000 για τον Ελληνικό Στρατό.htm ->  [Ver =  | Size = 36169 bytes | Modified Date = 23-5-2007 3:01:12 | Attr =    ]
DefenceNet - ???s?eta PzH-2000 ??a t?? ???????? St?at?_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Πρόσθετα PzH-2000 για τον Ελληνικό Στρατό_bestanden ->  [Folder | Modified Date = 3-6-2007 16:59:22 | Attr =    ]
DefenceNet - ?a?t?? a?t?-p???ß?????? COBRA ??a t?? ??????a.htm -> %UserProfile%\Bureaublad\DefenceNet - Ραντάρ αντι-πυροβολικού COBRA για την Τουρκία.htm ->  [Ver =  | Size = 21820 bytes | Modified Date = 20-6-2007 1:08:23 | Attr =    ]
DefenceNet - ?a?t?? a?t?-p???ß?????? COBRA ??a t?? ??????a_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Ραντάρ αντι-πυροβολικού COBRA για την Τουρκία_bestanden ->  [Folder | Modified Date = 30-6-2007 1:08:25 | Attr =    ]
DefenceNet - S??e??as?a INTRACOM-Raytheon.txt -> %UserProfile%\Bureaublad\DefenceNet - Συνεργασία INTRACOM-Raytheon.txt ->  [Ver =  | Size = 5594 bytes | Modified Date = 27-4-2007 14:56:35 | Attr =    ]
DefenceNet - ???????? Leopard 2A4 st?? ?ß??.htm -> %UserProfile%\Bureaublad\DefenceNet - Τουρκικά Leopard 2A4 στον Έβρο.htm ->  [Ver =  | Size = 25150 bytes | Modified Date = 3-6-2007 16:59:33 | Attr =    ]
DefenceNet - ???????? Leopard 2A4 st?? ?ß??_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Τουρκικά Leopard 2A4 στον Έβρο_bestanden ->  [Folder | Modified Date = 17-6-2007 3:30:49 | Attr =    ]
DSC01060.JPG -> %UserProfile%\Bureaublad\DSC01060.JPG ->  [Ver =  | Size = 245029 bytes | Created Date = 26-2-2008 22:20:53 | Attr =    ]
DSC01060b.JPG -> %UserProfile%\Bureaublad\DSC01060b.JPG ->  [Ver =  | Size = 26750 bytes | Created Date = 26-2-2008 22:22:06 | Attr =    ]
DSC01086.JPG -> %UserProfile%\Bureaublad\DSC01086.JPG ->  [Ver =  | Size = 234802 bytes | Created Date = 26-2-2008 22:20:15 | Attr =    ]
DSC01087.JPG -> %UserProfile%\Bureaublad\DSC01087.JPG ->  [Ver =  | Size = 175280 bytes | Created Date = 6-3-2008 17:22:01 | Attr =    ]
DSC01179.JPG -> %UserProfile%\Bureaublad\DSC01179.JPG ->  [Ver =  | Size = 168445 bytes | Created Date = 27-4-2008 20:30:42 | Attr =    ]
DSC01180.JPG -> %UserProfile%\Bureaublad\DSC01180.JPG ->  [Ver =  | Size = 215241 bytes | Created Date = 30-4-2008 23:02:37 | Attr =    ]
dss(2).exe -> %UserProfile%\Bureaublad\dss(2).exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Created Date = 15-5-2008 12:06:58 | Attr =    ]
dss(3).exe -> %UserProfile%\Bureaublad\dss(3).exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Created Date = 16-5-2008 21:14:24 | Attr =    ]
HijackThis.lnk -> %UserProfile%\Bureaublad\HijackThis.lnk ->  [Ver =  | Size = 816 bytes | Created Date = 13-5-2008 16:03:31 | Attr =    ]
Image3.jpg -> %UserProfile%\Bureaublad\Image3.jpg ->  [Ver =  | Size = 9968 bytes | Created Date = 27-2-2008 0:32:28 | Attr =    ]
latspread1.jpg -> %UserProfile%\Bureaublad\latspread1.jpg ->  [Ver =  | Size = 335622 bytes | Created Date = 17-2-2008 17:42:12 | Attr =    ]
LimeWire PRO 4.17.1.lnk -> %UserProfile%\Bureaublad\LimeWire PRO 4.17.1.lnk ->  [Ver =  | Size = 702 bytes | Created Date = 6-3-2008 19:50:49 | Attr =    ]
Lineaire Algebra -> %UserProfile%\Bureaublad\Lineaire Algebra ->  [Folder | Created Date = 17-2-2008 15:38:07 | Attr =    ]
Nieuwe map (23) -> %UserProfile%\Bureaublad\Nieuwe map (23) ->  [Folder | Created Date = 17-2-2008 17:26:42 | Attr =    ]
Nieuwe map (24) -> %UserProfile%\Bureaublad\Nieuwe map (24) ->  [Folder | Created Date = 18-2-2008 18:23:13 | Attr =    ]
Nieuwe map (25) -> %UserProfile%\Bureaublad\Nieuwe map (25) ->  [Folder | Created Date = 14-3-2008 16:26:02 | Attr =    ]
Nieuwe map (26) -> %UserProfile%\Bureaublad\Nieuwe map (26) ->  [Folder | Created Date = 19-3-2008 3:07:51 | Attr =    ]
Nieuwe map (27) -> %UserProfile%\Bureaublad\Nieuwe map (27) ->  [Folder | Created Date = 26-3-2008 21:20:03 | Attr =    ]
Nieuwe map (28) -> %UserProfile%\Bureaublad\Nieuwe map (28) ->  [Folder | Created Date = 6-4-2008 15:27:27 | Attr =    ]
Nieuwe map (29) -> %UserProfile%\Bureaublad\Nieuwe map (29) ->  [Folder | Created Date = 6-4-2008 15:29:53 | Attr =    ]
Nieuwe map (30) -> %UserProfile%\Bureaublad\Nieuwe map (30) ->  [Folder | Created Date = 23-4-2008 1:20:39 | Attr =    ]
OTScanIt -> %UserProfile%\Bureaublad\OTScanIt ->  [Folder | Created Date = 16-5-2008 23:04:42 | Attr =    ]
OTScanIt.exe -> %UserProfile%\Bureaublad\OTScanIt.exe ->  [Ver =  | Size = 543023 bytes | Created Date = 16-5-2008 23:01:35 | Attr =    ]
remove -> %UserProfile%\Bureaublad\remove ->  [Folder | Created Date = 13-5-2008 16:17:02 | Attr =    ]
SDFix -> %UserProfile%\Bureaublad\SDFix ->  [Folder | Created Date = 15-5-2008 0:06:07 | Attr =    ]
SmitfraudFix -> %UserProfile%\Bureaublad\SmitfraudFix ->  [Folder | Created Date = 13-5-2008 18:21:31 | Attr =    ]
SmitfraudFix.exe -> %UserProfile%\Bureaublad\SmitfraudFix.exe ->  [Ver =  | Size = 1390255 bytes | Created Date = 13-5-2008 17:56:42 | Attr =    ]
Snelkoppeling naar CNC3.exe.lnk -> %UserProfile%\Bureaublad\Snelkoppeling naar CNC3.exe.lnk ->  [Ver =  | Size = 763 bytes | Created Date = 11-5-2008 0:17:17 | Attr =    ]
Spybot - Search & Destroy.lnk -> %UserProfile%\Bureaublad\Spybot - Search & Destroy.lnk ->  [Ver =  | Size = 801 bytes | Created Date = 13-5-2008 19:29:08 | Attr =    ]
TaskManagerFix.exe -> %UserProfile%\Bureaublad\TaskManagerFix.exe -> Task Manager Fix [Ver = 2.00.0002 | Size = 77824 bytes | Created Date = 13-5-2008 18:24:26 | Attr =    ]
troep -> %UserProfile%\Bureaublad\troep ->  [Folder | Created Date = 3-4-2008 18:10:51 | Attr =    ]
trollchristanbul.jpg -> %UserProfile%\Bureaublad\trollchristanbul.jpg ->  [Ver =  | Size = 92941 bytes | Created Date = 18-4-2008 0:33:06 | Attr =    ]
USBSTICK -> %UserProfile%\Bureaublad\USBSTICK ->  [Folder | Created Date = 3-4-2008 14:44:36 | Attr =    ]
Video Card Stability Test.lnk -> %UserProfile%\Bureaublad\Video Card Stability Test.lnk ->  [Ver =  | Size = 912 bytes | Created Date = 11-5-2008 2:25:06 | Attr =    ]
NVIDIA Shared -> %CommonProgramFiles%\NVIDIA Shared ->  [Folder | Created Date = 11-5-2008 14:50:42 | Attr =    ]
Enigma Software Group -> %ProgramFiles%\Enigma Software Group ->  [Folder | Created Date = 13-5-2008 22:15:56 | Attr =    ]
MSXML 4.0 -> %ProgramFiles%\MSXML 4.0 ->  [Folder | Created Date = 14-5-2008 1:31:23 | Attr =    ]
Panda Security -> %ProgramFiles%\Panda Security ->  [Folder | Created Date = 15-5-2008 13:50:10 | Attr =    ]

[Files/Folders - Modified Within 90 days]
!KillBox -> %SystemDrive%\!KillBox ->  [Folder | Modified Date = 15-5-2008 0:42:14 | Attr =    ]
cleanup.bat -> %SystemDrive%\cleanup.bat ->  [Ver =  | Size = 574 bytes | Modified Date = 14-5-2008 0:40:31 | Attr =    ]
cleanup.exe -> %SystemDrive%\cleanup.exe ->  [Ver =  | Size = 19286 bytes | Modified Date = 14-5-2008 0:40:31 | Attr =    ]
ErdUndoCache -> %SystemDrive%\ErdUndoCache ->  [Folder | Modified Date = 13-5-2008 17:52:04 | Attr =  H ]
Program Files -> %ProgramFiles% ->  [Folder | Modified Date = 15-5-2008 13:50:10 | Attr = R  ]
QooBox -> %SystemDrive%\QooBox ->  [Folder | Modified Date = 16-5-2008 22:46:31 | Attr =    ]
RVAXO -> %SystemDrive%\RVAXO ->  [Folder | Modified Date = 14-5-2008 1:12:42 | Attr =    ]
System Volume Information -> %SystemDrive%\System Volume Information ->  [Folder | Modified Date = 16-5-2008 1:03:20 | Attr =  HS]
temp -> %SystemDrive%\temp ->  [Folder | Modified Date = 6-5-2008 1:02:04 | Attr =    ]
tool -> %SystemDrive%\tool ->  [Folder | Modified Date = 13-5-2008 19:00:46 | Attr =    ]
VundoFix Backups -> %SystemDrive%\VundoFix Backups ->  [Folder | Modified Date = 15-5-2008 1:47:54 | Attr =    ]
WINDOWS -> %SystemRoot% ->  [Folder | Modified Date = 16-5-2008 22:46:33 | Attr =    ]
zip.exe -> %SystemDrive%\zip.exe ->  [Ver =  | Size = 135168 bytes | Modified Date = 14-5-2008 0:40:31 | Attr =    ]
~ErdUserProfile.$$$ -> %SystemDrive%\~ErdUserProfile.$$$ ->  [Folder | Modified Date = 13-5-2008 17:50:15 | Attr =    ]
msjetol1.dll -> %SystemRoot%\System32\dllcache\msjetol1.dll ->  [Ver =  | Size = 355112 bytes | Modified Date = 25-3-2008 6:50:40 | Attr =    ]
etc -> %SystemRoot%\System32\drivers\etc ->  [Folder | Modified Date = 16-5-2008 22:42:58 | Attr =    ]
hosts -> %SystemRoot%\System32\drivers\etc\hosts ->  [Ver =  | Size = 27 bytes | Modified Date = 16-5-2008 22:42:58 | Attr =    ]
hosts.msn -> %SystemRoot%\System32\drivers\etc\hosts.msn ->  [Ver =  | Size = 22 bytes | Modified Date = 13-5-2008 19:21:56 | Attr =    ]
hamachi.sys -> %SystemRoot%\System32\drivers\hamachi.sys -> LogMeIn, Inc. [Ver = 6.0.2.2 | Size = 25280 bytes | Modified Date = 6-5-2008 1:02:40 | Attr =    ]
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys ->  [Ver =  | Size = 15864 bytes | Modified Date = 5-5-2008 20:46:32 | Attr =    ]
mbamcatchme.sys -> %SystemRoot%\System32\drivers\mbamcatchme.sys ->  [Ver =  | Size = 27048 bytes | Modified Date = 5-5-2008 20:46:36 | Attr =    ]
PnkBstrK.sys -> %SystemRoot%\System32\drivers\PnkBstrK.sys ->  [Ver =  | Size = 22328 bytes | Modified Date = 31-3-2008 17:56:59 | Attr =    ]
UMDF -> %SystemRoot%\System32\drivers\UMDF ->  [Folder | Modified Date = 28-2-2008 15:56:26 | Attr =    ]
Msft_User_WpdMtpDr_01_00_00.Wdf -> %SystemRoot%\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf ->  [Ver =  | Size = 0 bytes | Modified Date = 28-2-2008 15:56:26 | Attr =  H ]
404Fix.exe -> %SystemRoot%\System32\404Fix.exe -> S!Ri.URZ [Ver =  | Size = 82944 bytes | Modified Date = 28-4-2008 8:03:06 | Attr =    ]
CatRoot -> %SystemRoot%\System32\CatRoot ->  [Folder | Modified Date = 13-5-2008 21:47:21 | Attr =    ]
1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 
CatRoot2 -> %SystemRoot%\System32\CatRoot2 ->  [Folder | Modified Date = 16-5-2008 22:45:51 | Attr =    ]
config -> %SystemRoot%\System32\config ->  [Folder | Modified Date = 16-5-2008 22:29:43 | Attr =    ]
DirectX -> %SystemRoot%\System32\DirectX ->  [Folder | Modified Date = 11-5-2008 0:28:25 | Attr =    ]
dllcache -> %SystemRoot%\System32\dllcache ->  [Folder | Modified Date = 14-5-2008 1:36:18 | Attr = RHS]
drivers -> %SystemRoot%\System32\drivers ->  [Folder | Modified Date = 16-5-2008 22:46:34 | Attr =    ]
ds.dat -> %SystemRoot%\System32\ds.dat ->  [Ver =  | Size = 1 bytes | Modified Date = 13-5-2008 17:55:09 | Attr =    ]
FNTCACHE.DAT -> %SystemRoot%\System32\FNTCACHE.DAT ->  [Ver =  | Size = 872760 bytes | Modified Date = 14-5-2008 1:36:22 | Attr =    ]
IEDFix.exe -> %SystemRoot%\System32\IEDFix.exe -> S!Ri.URZ [Ver =  | Size = 82944 bytes | Modified Date = 28-4-2008 8:03:06 | Attr =    ]
KGyGaAvL.sys -> %SystemRoot%\System32\KGyGaAvL.sys ->  [Ver =  | Size = 2880 bytes | Modified Date = 2-5-2008 15:55:53 | Attr =  HS]
msjetoledb40.dll -> %SystemRoot%\System32\msjetoledb40.dll ->  [Ver =  | Size = 355112 bytes | Modified Date = 25-3-2008 6:50:40 | Attr =    ]
nvapps.xml -> %SystemRoot%\System32\nvapps.xml ->  [Ver =  | Size = 81231 bytes | Modified Date = 16-5-2008 22:44:44 | Attr =    ]
perfc009.dat -> %SystemRoot%\System32\perfc009.dat ->  [Ver =  | Size = 63528 bytes | Modified Date = 15-5-2008 14:50:21 | Attr =    ]
perfc013.dat -> %SystemRoot%\System32\perfc013.dat ->  [Ver =  | Size = 83226 bytes | Modified Date = 15-5-2008 14:50:21 | Attr =    ]
perfh009.dat -> %SystemRoot%\System32\perfh009.dat ->  [Ver =  | Size = 406328 bytes | Modified Date = 15-5-2008 14:50:21 | Attr =    ]
perfh013.dat -> %SystemRoot%\System32\perfh013.dat ->  [Ver =  | Size = 471832 bytes | Modified Date = 15-5-2008 14:50:21 | Attr =    ]
PerfStringBackup.INI -> %SystemRoot%\System32\PerfStringBackup.INI ->  [Ver =  | Size = 990844 bytes | Modified Date = 15-5-2008 14:50:21 | Attr =    ]
PnkBstrB.exe -> %SystemRoot%\System32\PnkBstrB.exe ->  [Ver =  | Size = 107832 bytes | Modified Date = 31-3-2008 17:56:00 | Attr =    ]
Restore -> %SystemRoot%\System32\Restore ->  [Folder | Modified Date = 16-5-2008 1:03:20 | Attr =    ]
tmp.reg -> %SystemRoot%\System32\tmp.reg ->  [Ver =  | Size = 928 bytes | Modified Date = 15-5-2008 1:16:30 | Attr =    ]
VACFix.exe -> %SystemRoot%\System32\VACFix.exe -> S!Ri.URZ [Ver =  | Size = 86528 bytes | Modified Date = 24-4-2008 8:10:33 | Attr =    ]
wpa.bak -> %SystemRoot%\System32\wpa.bak ->  [Ver =  | Size = 12540 bytes | Modified Date = 11-5-2008 15:36:08 | Attr =    ]
wpa.dbl -> %SystemRoot%\System32\wpa.dbl ->  [Ver =  | Size = 12598 bytes | Modified Date = 16-5-2008 22:45:00 | Attr =    ]
$hf_mig$ -> %SystemRoot%\$hf_mig$ ->  [Folder | Modified Date = 14-5-2008 1:34:34 | Attr =  H ]
3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 
ALCFDRTM.VER -> %SystemRoot%\ALCFDRTM.VER -> Realtek Semiconductor Corp. [Ver = 1.01 | Size = 60416 bytes | Modified Date = 1-5-2008 17:53:45 | Attr =    ]
anwblog.cfg -> %SystemRoot%\anwblog.cfg ->  [Ver =  | Size = 88 bytes | Modified Date = 6-3-2008 23:48:33 | Attr =    ]
assembly -> %SystemRoot%\assembly ->  [Folder | Modified Date = 18-3-2008 3:27:46 | Attr = R S]
bootstat.dat -> %SystemRoot%\bootstat.dat ->  [Ver =  | Size = 2048 bytes | Modified Date = 16-5-2008 22:42:43 | Attr =   S]
Downloaded Program Files -> %SystemRoot%\Downloaded Program Files ->  [Folder | Modified Date = 14-5-2008 0:22:46 | Attr =   S]
ERDNT -> %SystemRoot%\ERDNT ->  [Folder | Modified Date = 16-5-2008 22:29:38 | Attr =    ]
eReg.dat -> %SystemRoot%\eReg.dat ->  [Ver =  | Size = 975 bytes | Modified Date = 4-5-2008 2:11:18 | Attr =    ]
ERUNT -> %SystemRoot%\ERUNT ->  [Folder | Modified Date = 14-5-2008 1:14:08 | Attr =    ]
Fonts -> %SystemRoot%\Fonts ->  [Folder | Modified Date = 4-5-2008 2:05:00 | Attr = R S]
Help -> %SystemRoot%\Help ->  [Folder | Modified Date = 13-5-2008 21:47:27 | Attr =    ]
imsins.BAK -> %SystemRoot%\imsins.BAK ->  [Ver =  | Size = 1374 bytes | Modified Date = 14-5-2008 1:34:40 | Attr =    ]
inf -> %SystemRoot%\inf ->  [Folder | Modified Date = 15-5-2008 13:50:38 | Attr =  H ]
Installer -> %SystemRoot%\Installer ->  [Folder | Modified Date = 15-5-2008 14:50:22 | Attr =  HS]
LEXSTAT.INI -> %SystemRoot%\LEXSTAT.INI ->  [Ver =  | Size = 309 bytes | Modified Date = 19-4-2008 0:15:15 | Attr =    ]
Microsoft.NET -> %SystemRoot%\Microsoft.NET ->  [Folder | Modified Date = 15-5-2008 17:15:23 | Attr =    ]
mozver.dat -> %SystemRoot%\mozver.dat ->  [Ver =  | Size = 2546 bytes | Modified Date = 15-5-2008 13:50:23 | Attr =    ]
msagent -> %SystemRoot%\msagent ->  [Folder | Modified Date = 14-5-2008 1:36:17 | Attr =    ]
nfsc_patch.ini -> %SystemRoot%\nfsc_patch.ini ->  [Ver =  | Size = 58 bytes | Modified Date = 18-3-2008 3:53:22 | Attr =    ]
Prefetch -> %SystemRoot%\Prefetch ->  [Folder | Modified Date = 13-5-2008 22:17:41 | Attr =    ]
QTFont.for -> %SystemRoot%\QTFont.for ->  [Ver =  | Size = 1409 bytes | Modified Date = 27-4-2008 10:57:38 | Attr =    ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn ->  [Ver =  | Size = 54156 bytes | Modified Date = 13-5-2008 12:25:57 | Attr =  H ]
Registration -> %SystemRoot%\Registration ->  [Folder | Modified Date = 7-5-2008 21:56:01 | Attr =    ]
SoftwareDistribution -> %SystemRoot%\SoftwareDistribution ->  [Folder | Modified Date = 13-5-2008 21:47:28 | Attr =    ]
system.ini -> %SystemRoot%\system.ini ->  [Ver =  | Size = 227 bytes | Modified Date = 16-5-2008 22:43:05 | Attr =    ]
system32 -> %SystemRoot%\system32 ->  [Folder | Modified Date = 16-5-2008 22:46:35 | Attr =    ]
TEMP -> %SystemRoot%\TEMP ->  [Folder | Modified Date = 16-5-2008 22:46:35 | Attr =    ]
win.ini -> %SystemRoot%\win.ini ->  [Ver =  | Size = 621 bytes | Modified Date = 12-5-2008 21:34:03 | Attr =    ]
wininit.iniRVAXO -> %SystemRoot%\wininit.iniRVAXO ->  [Ver =  | Size = 687 bytes | Modified Date = 13-5-2008 20:45:34 | Attr =    ]
WinSxS -> %SystemRoot%\WinSxS ->  [Folder | Modified Date = 15-5-2008 14:50:17 | Attr =    ]
SA.DAT -> %SystemRoot%\tasks\SA.DAT ->  [Ver =  | Size = 6 bytes | Modified Date = 13-5-2008 17:58:48 | Attr =  H ]
D:\Documents and Settings\All Users\Application Data\Microsoft\HTML Help\ -> D:\Documents and Settings\All Users\Application Data\Microsoft\HTML Help ->  [Folder | Modified Date = 24-9-2006 19:35:21 | Attr =    ]
hhcolreg.dat -> D:\Documents and Settings\All Users\Application Data\Microsoft\HTML Help\hhcolreg.dat ->  [Ver =  | Size = 9144 bytes | Modified Date = 11-5-2008 15:59:18 | Attr =    ]
D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\ -> D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader ->  [Folder | Modified Date = 24-9-2006 6:07:22 | Attr =    ]
qmgr0.dat -> D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat ->  [Ver =  | Size = 5723 bytes | Modified Date = 16-5-2008 15:54:40 | Attr =    ]
qmgr1.dat -> D:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat ->  [Ver =  | Size = 5338 bytes | Modified Date = 16-5-2008 15:54:40 | Attr =    ]
D:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\ -> D:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA ->  [Folder | Modified Date = 6-12-2006 23:57:53 | Attr =    ]
opa11.dat -> D:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\opa11.dat ->  [Ver =  | Size = 8206 bytes | Modified Date = 26-10-2006 5:37:14 | Attr =    ]
opa12.dat -> D:\Documents and Settings\All Users\Application Data\Microsoft\OFFICE\DATA\opa12.dat ->  [Ver =  | Size = 8206 bytes | Modified Date = 12-11-2006 1:22:25 | Attr =    ]
D:\Documents and Settings\AK47\Local Settings\temp\ -> D:\Documents and Settings\AK47\Local Settings\temp ->  [Folder | Modified Date = 16-5-2008 23:02:06 | Attr =    ]
Perflib_Perfdata_8e4.dat -> D:\Documents and Settings\AK47\Local Settings\temp\Perflib_Perfdata_8e4.dat ->  [Ver =  | Size = 16384 bytes | Modified Date = 16-5-2008 22:45:12 | Attr =    ]
[Files Modified - Additional Folder Scans - Non-Microsoft Only]
Lavasoft -> %AllUsersProfile%\Application Data\Lavasoft ->  [Folder | Modified Date = 13-5-2008 23:24:23 | Attr =    ]
Malwarebytes -> %AllUsersProfile%\Application Data\Malwarebytes ->  [Folder | Modified Date = 13-5-2008 19:33:29 | Attr =    ]
Microsoft -> %AllUsersProfile%\Application Data\Microsoft ->  [Folder | Modified Date = 28-2-2008 15:56:26 | Attr =   S]
Spybot - Search & Destroy -> %AllUsersProfile%\Application Data\Spybot - Search & Destroy ->  [Folder | Modified Date = 13-5-2008 20:17:48 | Attr =    ]
SUPERAntiSpyware.com -> %AllUsersProfile%\Application Data\SUPERAntiSpyware.com ->  [Folder | Modified Date = 15-5-2008 13:49:42 | Attr =    ]
TEMP -> %AllUsersProfile%\Application Data\TEMP ->  [Folder | Modified Date = 13-5-2008 23:32:07 | Attr =    ]
@Alternate Data Stream - 111 bytes -> %AllUsersProfile%\Application Data\TEMP:C980DA7D
Adobe -> %AppData%\Adobe ->  [Folder | Modified Date = 19-4-2008 20:11:02 | Attr =    ]
Command & Conquer 3 Kane's Wrath -> %AppData%\Command & Conquer 3 Kane's Wrath ->  [Folder | Modified Date = 11-5-2008 0:29:57 | Attr =    ]
Corel -> %AppData%\Corel ->  [Folder | Modified Date = 13-5-2008 12:31:11 | Attr =    ]
FreeStone Group -> %AppData%\FreeStone Group ->  [Folder | Modified Date = 11-5-2008 2:25:07 | Attr =    ]
Hamachi -> %AppData%\Hamachi ->  [Folder | Modified Date = 11-5-2008 2:06:30 | Attr =    ]
InstallShield -> %AppData%\InstallShield ->  [Folder | Modified Date = 28-2-2008 18:05:02 | Attr =    ]
LimeWire -> %AppData%\LimeWire ->  [Folder | Modified Date = 16-5-2008 21:08:52 | Attr =    ]
Malwarebytes -> %AppData%\Malwarebytes ->  [Folder | Modified Date = 13-5-2008 19:33:37 | Attr =    ]
SecuROM -> %AppData%\SecuROM ->  [Folder | Modified Date = 11-5-2008 0:17:21 | Attr = RH ]
SopCast -> %AppData%\SopCast ->  [Folder | Modified Date = 10-5-2008 18:24:59 | Attr =    ]
SUPERAntiSpyware.com -> %AppData%\SUPERAntiSpyware.com ->  [Folder | Modified Date = 15-5-2008 13:49:24 | Attr =    ]
Uniblue -> %AppData%\Uniblue ->  [Folder | Modified Date = 27-3-2008 23:19:45 | Attr =    ]
uTorrent -> %AppData%\uTorrent ->  [Folder | Modified Date = 13-5-2008 23:28:01 | Attr =    ]
Xfire -> %AppData%\Xfire ->  [Folder | Modified Date = 30-4-2008 13:28:29 | Attr =    ]
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ->  [Ver =  | Size = 112640 bytes | Modified Date = 15-5-2008 12:24:19 | Attr =    ]
GDIPFONTCACHEV1.DAT -> %UserProfile%\Local Settings\Application Data\GDIPFONTCACHEV1.DAT ->  [Ver =  | Size = 295696 bytes | Modified Date = 11-5-2008 16:12:37 | Attr =    ]
IconCache.db -> %UserProfile%\Local Settings\Application Data\IconCache.db ->  [Ver =  | Size = 6907454 bytes | Modified Date = 11-5-2008 11:04:14 | Attr =  H ]
Microsoft -> %UserProfile%\Local Settings\Application Data\Microsoft ->  [Folder | Modified Date = 6-5-2008 1:10:58 | Attr =    ]
03041.xlsx -> %UserProfile%\Mijn documenten\03041.xlsx ->  [Ver =  | Size = 89493 bytes | Modified Date = 18-4-2008 10:57:18 | Attr =    ]
1bcontrolevan3.xlsx -> %UserProfile%\Mijn documenten\1bcontrolevan3.xlsx ->  [Ver =  | Size = 13745 bytes | Modified Date = 28-2-2008 17:24:07 | Attr =    ]
3dcontrole.xlsx -> %UserProfile%\Mijn documenten\3dcontrole.xlsx ->  [Ver =  | Size = 12095 bytes | Modified Date = 27-2-2008 1:39:47 | Attr =    ]
aanvullingen-vragen-theorie-examen-b-1135648.pdf -> %UserProfile%\Mijn documenten\aanvullingen-vragen-theorie-examen-b-1135648.pdf ->  [Ver =  | Size = 372941 bytes | Modified Date = 9-3-2008 17:55:01 | Attr =    ]
Book1.xlsx -> %UserProfile%\Mijn documenten\Book1.xlsx ->  [Ver =  | Size = 14228 bytes | Modified Date = 3-5-2008 11:07:26 | Attr =    ]
Chest.doc -> %UserProfile%\Mijn documenten\Chest.doc ->  [Ver =  | Size = 28160 bytes | Modified Date = 1-4-2008 20:30:29 | Attr =    ]
Command & Conquer 3 Kane's Wrath -> %UserProfile%\Mijn documenten\Command & Conquer 3 Kane's Wrath ->  [Folder | Modified Date = 11-5-2008 0:32:14 | Attr =    ]
1 D:\Documents and Settings\AK47\Mijn documenten\*.tmp files -> D:\Documents and Settings\AK47\Mijn documenten\*.tmp -> 
Command and Conquer Generals Data -> %UserProfile%\Mijn documenten\Command and Conquer Generals Data ->  [Folder | Modified Date = 1-5-2008 18:10:27 | Attr =    ]
Command and Conquer Generals Zero Hour Data -> %UserProfile%\Mijn documenten\Command and Conquer Generals Zero Hour Data ->  [Folder | Modified Date = 6-5-2008 18:33:04 | Attr =    ]
Downloads -> %UserProfile%\Mijn documenten\Downloads ->  [Folder | Modified Date = 10-5-2008 23:54:16 | Attr =    ]
Image3.jpg -> %UserProfile%\Mijn documenten\Image3.jpg ->  [Ver =  | Size = 109103 bytes | Modified Date = 18-4-2008 9:45:53 | Attr =    ]
IPSWAFF -> %UserProfile%\Mijn documenten\IPSWAFF ->  [Folder | Modified Date = 16-3-2008 0:03:29 | Attr =    ]
joystick.jpg -> %UserProfile%\Mijn documenten\joystick.jpg ->  [Ver =  | Size = 41702 bytes | Modified Date = 13-5-2008 12:31:11 | Attr =    ]
kijkgedrag.pdf -> %UserProfile%\Mijn documenten\kijkgedrag.pdf ->  [Ver =  | Size = 93057 bytes | Modified Date = 11-5-2008 0:16:48 | Attr =    ]
LimeWire -> %UserProfile%\Mijn documenten\LimeWire ->  [Folder | Modified Date = 6-3-2008 19:52:02 | Attr =    ]
Mijn afbeeldingen -> %UserProfile%\Mijn documenten\Mijn afbeeldingen ->  [Folder | Modified Date = 12-5-2008 19:24:26 | Attr = R  ]
Mijn Gedeelde Mappen.lnk -> %UserProfile%\Mijn documenten\Mijn Gedeelde Mappen.lnk ->  [Ver =  | Size = 579 bytes | Modified Date = 16-5-2008 21:26:04 | Attr =    ]
Mijn ontvangen bestanden -> %UserProfile%\Mijn documenten\Mijn ontvangen bestanden ->  [Folder | Modified Date = 12-5-2008 23:45:10 | Attr =    ]
model3a.xlsx -> %UserProfile%\Mijn documenten\model3a.xlsx ->  [Ver =  | Size = 11723 bytes | Modified Date = 28-2-2008 19:31:24 | Attr =    ]
model3aformule.xlsx -> %UserProfile%\Mijn documenten\model3aformule.xlsx ->  [Ver =  | Size = 13379 bytes | Modified Date = 10-3-2008 1:41:35 | Attr =    ]
model3Ccontrolegoed.xlsx -> %UserProfile%\Mijn documenten\model3Ccontrolegoed.xlsx ->  [Ver =  | Size = 18852 bytes | Modified Date = 28-2-2008 22:48:04 | Attr =    ]
model3Ccontrolegoed2.xlsx -> %UserProfile%\Mijn documenten\model3Ccontrolegoed2.xlsx ->  [Ver =  | Size = 20152 bytes | Modified Date = 28-2-2008 23:35:25 | Attr =    ]
model3controlegoed.xlsx -> %UserProfile%\Mijn documenten\model3controlegoed.xlsx ->  [Ver =  | Size = 19326 bytes | Modified Date = 28-2-2008 22:44:29 | Attr =    ]
My PSP Files -> %UserProfile%\Mijn documenten\My PSP Files ->  [Folder | Modified Date = 1-5-2008 18:58:39 | Attr =    ]
NFS Carbon -> %UserProfile%\Mijn documenten\NFS Carbon ->  [Folder | Modified Date = 18-3-2008 4:08:46 | Attr =    ]
studiewijzerkr1.pdf -> %UserProfile%\Mijn documenten\studiewijzerkr1.pdf ->  [Ver =  | Size = 44712 bytes | Modified Date = 7-3-2008 13:55:24 | Attr =    ]
The advanced workout.docx -> %UserProfile%\Mijn documenten\The advanced workout.docx ->  [Ver =  | Size = 12439 bytes | Modified Date = 31-3-2008 3:11:18 | Attr =    ]
Thumbs.db -> %UserProfile%\Mijn documenten\Thumbs.db ->  [Ver =  | Size = 73728 bytes | Modified Date = 18-4-2008 9:46:12 | Attr =  HS]
@Alternate Data Stream - 0 bytes -> %UserProfile%\Mijn documenten\Thumbs.db:encryptable
USB-Stick -> %UserProfile%\Mijn documenten\USB-Stick ->  [Folder | Modified Date = 18-3-2008 3:24:44 | Attr =    ]
vomar.doc -> %UserProfile%\Mijn documenten\vomar.doc ->  [Ver =  | Size = 37376 bytes | Modified Date = 19-4-2008 0:14:18 | Attr =    ]
vomar.docx -> %UserProfile%\Mijn documenten\vomar.docx ->  [Ver =  | Size = 15875 bytes | Modified Date = 19-4-2008 0:00:35 | Attr =    ]
Ad-Aware 2007.lnk -> %AllUsersProfile%\Bureaublad\Ad-Aware 2007.lnk ->  [Ver =  | Size = 1656 bytes | Modified Date = 13-5-2008 23:24:25 | Attr =    ]
Ad-Watch 2007.lnk -> %AllUsersProfile%\Bureaublad\Ad-Watch 2007.lnk ->  [Ver =  | Size = 1656 bytes | Modified Date = 13-5-2008 23:24:25 | Attr =    ]
Command & Conquer 3 Kane's Wrath spelen.lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer 3 Kane's Wrath spelen.lnk ->  [Ver =  | Size = 903 bytes | Modified Date = 11-5-2008 0:28:16 | Attr =    ]
Command & Conquer Generals Zero Hour .lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer Generals Zero Hour .lnk ->  [Ver =  | Size = 651 bytes | Modified Date = 4-5-2008 2:09:31 | Attr =    ]
Command & Conquer Generals.lnk -> %AllUsersProfile%\Bureaublad\Command & Conquer Generals.lnk ->  [Ver =  | Size = 607 bytes | Modified Date = 4-5-2008 2:04:34 | Attr =    ]
hamachi.lnk -> %AllUsersProfile%\Bureaublad\hamachi.lnk ->  [Ver =  | Size = 538 bytes | Modified Date = 6-5-2008 1:02:40 | Attr =    ]
Malwarebytes' Anti-Malware.lnk -> %AllUsersProfile%\Bureaublad\Malwarebytes' Anti-Malware.lnk ->  [Ver =  | Size = 570 bytes | Modified Date = 13-5-2008 19:33:29 | Attr =    ]
Need for Speed™ Carbon.lnk -> %AllUsersProfile%\Bureaublad\Need for Speed™ Carbon.lnk ->  [Ver =  | Size = 887 bytes | Modified Date = 18-3-2008 3:31:15 | Attr =    ]
Play Command & Conquer 3 Tiberium Wars.lnk -> %AllUsersProfile%\Bureaublad\Play Command & Conquer 3 Tiberium Wars.lnk ->  [Ver =  | Size = 823 bytes | Modified Date = 11-5-2008 0:15:39 | Attr =    ]
RegistryBooster 2.lnk -> %AllUsersProfile%\Bureaublad\RegistryBooster 2.lnk ->  [Ver =  | Size = 648 bytes | Modified Date = 27-3-2008 23:19:43 | Attr =    ]
SUPERAntiSpyware Free Edition.lnk -> %AllUsersProfile%\Bureaublad\SUPERAntiSpyware Free Edition.lnk ->  [Ver =  | Size = 650 bytes | Modified Date = 15-5-2008 13:49:33 | Attr =    ]
ComboFix.exe -> %UserProfile%\Bureaublad\ComboFix.exe ->  [Ver =  | Size = 1914914 bytes | Modified Date = 14-5-2008 10:35:45 | Attr =    ]
DefenceNet - ??a p??????? a???? Leopard 2A4 e?a?????e? ta s??d???ta.htm -> %UserProfile%\Bureaublad\DefenceNet - Νέα πολωνική αγορά Leopard 2A4 εξαγριώνει τα συνδικάτα.htm ->  [Ver =  | Size = 21600 bytes | Modified Date = 23-5-2007 3:13:53 | Attr =    ]
DefenceNet - ??a p??????? a???? Leopard 2A4 e?a?????e? ta s??d???ta_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Νέα πολωνική αγορά Leopard 2A4 εξαγριώνει τα συνδικάτα_bestanden ->  [Folder | Modified Date = 17-6-2007 3:30:49 | Attr =    ]
1 D:\Documents and Settings\AK47\Bureaublad\*.tmp files -> D:\Documents and Settings\AK47\Bureaublad\*.tmp -> 
DefenceNet - ???s?eta PzH-2000 ??a t?? ???????? St?at?.htm -> %UserProfile%\Bureaublad\DefenceNet - Πρόσθετα PzH-2000 για τον Ελληνικό Στρατό.htm ->  [Ver =  | Size = 36169 bytes | Modified Date = 23-5-2007 3:01:12 | Attr =    ]
DefenceNet - ???s?eta PzH-2000 ??a t?? ???????? St?at?_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Πρόσθετα PzH-2000 για τον Ελληνικό Στρατό_bestanden ->  [Folder | Modified Date = 3-6-2007 16:59:22 | Attr =    ]
DefenceNet - ?a?t?? a?t?-p???ß?????? COBRA ??a t?? ??????a.htm -> %UserProfile%\Bureaublad\DefenceNet - Ραντάρ αντι-πυροβολικού COBRA για την Τουρκία.htm ->  [Ver =  | Size = 21820 bytes | Modified Date = 20-6-2007 1:08:23 | Attr =    ]
DefenceNet - ?a?t?? a?t?-p???ß?????? COBRA ??a t?? ??????a_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Ραντάρ αντι-πυροβολικού COBRA για την Τουρκία_bestanden ->  [Folder | Modified Date = 30-6-2007 1:08:25 | Attr =    ]
DefenceNet - S??e??as?a INTRACOM-Raytheon.txt -> %UserProfile%\Bureaublad\DefenceNet - Συνεργασία INTRACOM-Raytheon.txt ->  [Ver =  | Size = 5594 bytes | Modified Date = 27-4-2007 14:56:35 | Attr =    ]
DefenceNet - ???????? Leopard 2A4 st?? ?ß??.htm -> %UserProfile%\Bureaublad\DefenceNet - Τουρκικά Leopard 2A4 στον Έβρο.htm ->  [Ver =  | Size = 25150 bytes | Modified Date = 3-6-2007 16:59:33 | Attr =    ]
DefenceNet - ???????? Leopard 2A4 st?? ?ß??_bestanden -> %UserProfile%\Bureaublad\DefenceNet - Τουρκικά Leopard 2A4 στον Έβρο_bestanden ->  [Folder | Modified Date = 17-6-2007 3:30:49 | Attr =    ]
Downloads -> %UserProfile%\Bureaublad\Downloads ->  [Folder | Modified Date = 16-5-2008 23:04:38 | Attr =    ]
DSC01060.JPG -> %UserProfile%\Bureaublad\DSC01060.JPG ->  [Ver =  | Size = 245029 bytes | Modified Date = 17-2-2008 16:17:54 | Attr =    ]
DSC01060b.JPG -> %UserProfile%\Bureaublad\DSC01060b.JPG ->  [Ver =  | Size = 26750 bytes | Modified Date = 26-2-2008 22:22:06 | Attr =    ]
DSC01086.JPG -> %UserProfile%\Bureaublad\DSC01086.JPG ->  [Ver =  | Size = 234802 bytes | Modified Date = 18-2-2008 17:19:50 | Attr =    ]
DSC01087.JPG -> %UserProfile%\Bureaublad\DSC01087.JPG ->  [Ver =  | Size = 175280 bytes | Modified Date = 6-3-2008 16:20:20 | Attr =    ]
DSC01179.JPG -> %UserProfile%\Bureaublad\DSC01179.JPG ->  [Ver =  | Size = 168445 bytes | Modified Date = 27-4-2008 11:13:26 | Attr =    ]
DSC01180.JPG -> %UserProfile%\Bureaublad\DSC01180.JPG ->  [Ver =  | Size = 215241 bytes | Modified Date = 29-4-2008 17:26:30 | Attr =    ]
dss(2).exe -> %UserProfile%\Bureaublad\dss(2).exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Modified Date = 15-5-2008 12:06:47 | Attr =    ]
dss(3).exe -> %UserProfile%\Bureaublad\dss(3).exe ->  [Ver = 3, 2, 8, 1 | Size = 686630 bytes | Modified Date = 16-5-2008 21:13:27 | Attr =    ]
Google Earth starten na voltooiing.lnk -> %UserProfile%\Bureaublad\Google Earth starten na voltooiing.lnk ->  [Ver =  | Size = 2389 bytes | Modified Date = 7-3-2008 12:14:44 | Attr =    ]
HijackThis.lnk -> %UserProfile%\Bureaublad\HijackThis.lnk ->  [Ver =  | Size = 816 bytes | Modified Date = 13-5-2008 16:03:33 | Attr =    ]
Image3.jpg -> %UserProfile%\Bureaublad\Image3.jpg ->  [Ver =  | Size = 9968 bytes | Modified Date = 27-2-2008 0:32:28 | Attr =    ]
latspread1.jpg -> %UserProfile%\Bureaublad\latspread1.jpg ->  [Ver =  | Size = 335622 bytes | Modified Date = 17-2-2008 17:42:12 | Attr =    ]
LimeWire PRO 4.17.1.lnk -> %UserProfile%\Bureaublad\LimeWire PRO 4.17.1.lnk ->  [Ver =  | Size = 702 bytes | Modified Date = 6-3-2008 19:50:49 | Attr =    ]
Lineaire Algebra -> %UserProfile%\Bureaublad\Lineaire Algebra ->  [Folder | Modified Date = 17-2-2008 15:38:18 | Attr =    ]
MP3 -> %UserProfile%\Bureaublad\MP3 ->  [Folder | Modified Date = 16-5-2008 13:23:48 | Attr =    ]
Nieuwe map (23) -> %UserProfile%\Bureaublad\Nieuwe map (23) ->  [Folder | Modified Date = 17-2-2008 22:03:14 | Attr =    ]
Nieuwe map (24) -> %UserProfile%\Bureaublad\Nieuwe map (24) ->  [Folder | Modified Date = 6-3-2008 17:22:45 | Attr =    ]
Nieuwe map (25) -> %UserProfile%\Bureaublad\Nieuwe map (25) ->  [Folder | Modified Date = 25-3-2008 13:36:41 | Attr =    ]
Nieuwe map (26) -> %UserProfile%\Bureaublad\Nieuwe map (26) ->  [Folder | Modified Date = 25-3-2008 13:36:41 | Attr =    ]
Nieuwe map (27) -> %UserProfile%\Bureaublad\Nieuwe map (27) ->  [Folder | Modified Date = 28-3-2008 16:22:10 | Attr =    ]
Nieuwe map (28) -> %UserProfile%\Bureaublad\Nieuwe map (28) ->  [Folder | Modified Date = 15-5-2008 1:29:59 | Attr =    ]
Nieuwe map (29) -> %UserProfile%\Bureaublad\Nieuwe map (29) ->  [Folder | Modified Date = 15-5-2008 1:29:59 | Attr =    ]
Nieuwe map (30) -> %UserProfile%\Bureaublad\Nieuwe map (30) ->  [Folder | Modified Date = 15-5-2008 1:29:59 | Attr =    ]
Nieuwe map (8) -> %UserProfile%\Bureaublad\Nieuwe map (8) ->  [Folder | Modified Date = 24-3-2008 22:58:03 | Attr =    ]
OTScanIt -> %UserProfile%\Bureaublad\OTScanIt ->  [Folder | Modified Date = 16-5-2008 23:04:42 | Attr =    ]
OTScanIt.exe -> %UserProfile%\Bureaublad\OTScanIt.exe ->  [Ver =  | Size = 543023 bytes | Modified Date = 16-5-2008 23:01:34 | Attr =    ]
remove -> %UserProfile%\Bureaublad\remove ->  [Folder | Modified Date = 13-5-2008 16:17:02 | Attr =    ]
SDFix -> %UserProfile%\Bureaublad\SDFix ->  [Folder | Modified Date = 15-5-2008 0:06:07 | Attr =    ]
SmitfraudFix -> %UserProfile%\Bureaublad\SmitfraudFix ->  [Folder | Modified Date = 15-5-2008 1:17:28 | Attr =    ]
SmitfraudFix.exe -> %UserProfile%\Bureaublad\SmitfraudFix.exe ->  [Ver =  | Size = 1390255 bytes | Modified Date = 13-5-2008 17:57:07 | Attr =    ]
Snelkoppeling naar CNC3.exe.lnk -> %UserProfile%\Bureaublad\Snelkoppeling naar CNC3.exe.lnk ->  [Ver =  | Size = 763 bytes | Modified Date = 11-5-2008 0:17:15 | Attr =    ]
Spybot - Search & Destroy.lnk -> %UserProfile%\Bureaublad\Spybot - Search & Destroy.lnk ->  [Ver =  | Size = 801 bytes | Modified Date = 13-5-2008 19:29:08 | Attr =    ]
TaskManagerFix.exe -> %UserProfile%\Bureaublad\TaskManagerFix.exe -> Task Manager Fix [Ver = 2.00.0002 | Size = 77824 bytes | Modified Date = 13-5-2008 18:24:25 | Attr =    ]
Thumbs.db -> %UserProfile%\Bureaublad\Thumbs.db ->  [Ver =  | Size = 119296 bytes | Modified Date = 15-5-2008 13:46:01 | Attr =  HS]
@Alternate Data Stream - 0 bytes -> %UserProfile%\Bureaublad\Thumbs.db:encryptable
troep -> %UserProfile%\Bureaublad\troep ->  [Folder | Modified Date = 16-5-2008 21:00:55 | Attr =    ]
trollchristanbul.jpg -> %UserProfile%\Bureaublad\trollchristanbul.jpg ->  [Ver =  | Size = 92941 bytes | Modified Date = 18-4-2008 0:33:06 | Attr =    ]
USBSTICK -> %UserProfile%\Bureaublad\USBSTICK ->  [Folder | Modified Date = 3-4-2008 14:44:53 | Attr =    ]
Video Card Stability Test.lnk -> %UserProfile%\Bureaublad\Video Card Stability Test.lnk ->  [Ver =  | Size = 912 bytes | Modified Date = 11-5-2008 2:25:06 | Attr =    ]
InstallShield -> %CommonProgramFiles%\InstallShield ->  [Folder | Modified Date = 11-5-2008 14:50:40 | Attr =    ]
NVIDIA Shared -> %CommonProgramFiles%\NVIDIA Shared ->  [Folder | Modified Date = 11-5-2008 14:50:42 | Attr =    ]
System -> %CommonProgramFiles%\System ->  [Folder | Modified Date = 14-5-2008 1:33:03 | Attr =    ]
Wise Installation Wizard -> %CommonProgramFiles%\Wise Installation Wizard ->  [Folder | Modified Date = 15-5-2008 13:49:02 | Attr =    ]

[File - Purity Scan: Additional Folder Scans - Non-Microsoft Only]

< End of report >
[/code]