Vraag & Antwoord

Beveiliging & privacy

Trage PC met hoog CPU gebruik

52 antwoorden
  • Hoi, een vraag terzijde: wel eens eraan gedacht om over te gaan op Windows 7? [b:bf0ca91f76]Welk programma[/b:bf0ca91f76]: sUbs [b:bf0ca91f76]dds[/b:bf0ca91f76] [b:bf0ca91f76]Waarvoor/waarom[/b:bf0ca91f76]: DDS is een diagnosetool en maakt gebruik van scripts. [b:bf0ca91f76]Moeilijkheidsgraad[/b:bf0ca91f76]: Lees eerst goed wat te doen. [b:bf0ca91f76]Downloadlokatie[/b:bf0ca91f76]: Dit programma absoluut naar het bureaublad downloaden of anders eerst daar naar toe verplaatsen! [b:bf0ca91f76]Download DDS[/b:bf0ca91f76] van [b:bf0ca91f76]sUBS[/b:bf0ca91f76] van één van deze locaties en plaats het op je [b:bf0ca91f76]bureaublad[/b:bf0ca91f76]: [b:bf0ca91f76][url=http://download.bleepingcomputer.com/sUBs/dds.com]DDS - Bleeping Computer download[/url]. [url=http://download.bleepingcomputer.com/sUBs/dds.scr]DDS - Bleeping Computer download[/url]. [url=http://www.infospyware.net/sUBs/dds]DDS - Infospyware[/url].[/b:bf0ca91f76] [img:bf0ca91f76]http://img.photobucket.com/albums/v666/sUBs/dds_scr.gif[/img:bf0ca91f76] [b:bf0ca91f76]sUBs dds. gebruiken[/b:bf0ca91f76]: [list:bf0ca91f76][*:bf0ca91f76][b:bf0ca91f76][color=#0000FF:bf0ca91f76]Sluit vervolgens eerst alle nog openstaande programmavensters![/color:bf0ca91f76][/b:bf0ca91f76] [*:bf0ca91f76] [b:bf0ca91f76][color=#008000:bf0ca91f76]Deaktiveer vervolgens de actieve beveiligingssoftware[/color:bf0ca91f76][/b:bf0ca91f76] [list:bf0ca91f76][*:bf0ca91f76][b:bf0ca91f76][color=#0000FF:bf0ca91f76]Windows 2000[/color:bf0ca91f76][/b:bf0ca91f76] en [color=#0000FF:bf0ca91f76][b:bf0ca91f76]Windows XP[/b:bf0ca91f76][/color:bf0ca91f76]: start sUBs dds. middels dubbelklik op de snelkoppeling. [*:bf0ca91f76][color=#0000FF:bf0ca91f76][b:bf0ca91f76]Windows Vista[/b:bf0ca91f76][/color:bf0ca91f76] en [color=#0000FF:bf0ca91f76][b:bf0ca91f76]Windows 7[/b:bf0ca91f76][/color:bf0ca91f76]: start sUBs dds. rechtsklik op de snelkoppeling en dan kiezen voor Als Administrator uitvoeren.[/list:u:bf0ca91f76][/list:u:bf0ca91f76] [b:bf0ca91f76]Na de scan[/b:bf0ca91f76] [list:bf0ca91f76][*:bf0ca91f76] [b:bf0ca91f76][color=#FF0000:bf0ca91f76]Heraktiveer nu de actieve beveiligingssoftware[/color:bf0ca91f76][/b:bf0ca91f76] [*:bf0ca91f76]Er worden twee tekstdocumnenten geopend - DDS.txt en Attach.txt - let even op het volgende! [*:bf0ca91f76]Kopieer en plak de gehele inhoud van de [b:bf0ca91f76]DDS-logfile[/b:bf0ca91f76] in jouw volgende bericht. [*:bf0ca91f76]De inhoud van [b:bf0ca91f76]Attach.txt[/b:bf0ca91f76] post je wanneer ik daarom vraag.[/list:u:bf0ca91f76]
  • Beste Abraham, Bedankt voor je reactie. Ik heb het nog niet overwogen, maar nu later dit jaar Windows 8 en Mountain Lion uitkomen wil ik eerst kijken hoe deze worden ontvangen alvorens een beslissing te maken. Hierbij ook mijn log, ik hoop dat je mij verder kunt helpen: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 8.0.6001.19048 BrowserJavaVersion: 1.6.0_30 Run by Wilmar at 22:47:07 on 2012-05-23 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.4060.2453 [GMT 2:00] . AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Dell\DellDock\DockLogin.exe C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Windows\system32\svchost.exe -k bthsvcs C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe C:\Program Files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe C:\Windows\system32\Dwm.exe C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe C:\Windows\system32\taskeng.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Windows\System32\mobsync.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\SysWOW64\conime.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Windows\system32\wuauclt.exe C:\Program Files (x86)\Internet Explorer\IELowutil.exe C:\Windows\explorer.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cscript.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uInternet Settings,ProxyOverride = *.local mWinlogon: Userinit=userinit.exe BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll BHO: Windows Live Aanmelden - Help: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: FAIESSOHelper Class: {a2f122da-055f-4df7-8f24-7354dbdba85b} - C:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll BHO: Softonic Helper Object: {e87806b5-e908-45fd-af5e-957d83e58e68} - C:\Program Files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll TB: Softonic Toolbar: {5018cfd2-804d-4c99-9f81-25eaea2769de} - C:\Program Files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll uRun: [AdobeBridge] uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" uRun: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe uRun: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s uRun: [Google Update] "C:\Users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe" /c mRun: [FAStartup] mRun: [FATrayAlert] "C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [KiesTrayAgent] "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL Trusted Zone: line6.net DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} - hxxp://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab TCP: DhcpNameServer = 192.168.2.1 TCP: Interfaces\{42E65930-7178-445C-AA5D-8B110CF8690C} : DhcpNameServer = 192.168.2.1 TCP: Interfaces\{DA5A1ED1-8635-4B91-AA8E-75CFAA1139C1} : DhcpNameServer = 192.168.0.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll Notify: FastAccess - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll LSA: Notification Packages = scecli FAPassSync {18DF081C-E8AD-4283-A596-FA578C2EBDC3} BHO-X64: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} {72853161-30C5-4D22-B7F9-0BBC1D38A37E} {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} {9030D464-4C02-4ABF-8ECC-5164760863C6} {A2F122DA-055F-4df7-8F24-7354DBDBA85B} {AA58ED58-01DD-4d91-8333-CF10577473F7} {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} {DBC80044-A445-435b-BC74-9C25C1C588A9} {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} {E87806B5-E908-45FD-AF5E-957D83E58E68} {21FA44EF-376D-4D53-9B0F-8A89D3229068} {2318C2B1-4965-11d4-9B18-009027A5CD4F} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} {5018CFD2-804D-4C99-9F81-25EAEA2769DE} mRun-x64: [FAStartup] mRun-x64: [FATrayAlert] "C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun-x64: [KiesTrayAgent] "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\components\coFFPlgn.dll FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\IPSFFPlgn\components\IPSFFPl.dll FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Users\Wilmar\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll . ---- FIREFOX POLICIES ---- FF - user.js: extensions.Softonic.rvrtMsg - Click Yes to keep current home page and default search settings, Click No to restore original settings FF - user.js: extensions.Softonic.autoRvrt - false FF - user.js: extensions.Softonic_i.newTab - false FF - user.js: extensions.Softonic.tlbrSrchUrl - hxxp://search.softonic.com/MON00086/tb_v1?SearchSource=1&cc=&q= FF - user.js: extensions.Softonic.id - e09b182d00000000000000225f97fb00 FF - user.js: extensions.Softonic.instlDay - 15447 FF - user.js: extensions.Softonic.vrsn - 1.5.21.0 FF - user.js: extensions.Softonic.vrsni - 1.5.21.0 FF - user.js: extensions.Softonic_i.vrsnTs - 1.5.21.022:00:42 FF - user.js: extensions.Softonic.prtnrId - softonic FF - user.js: extensions.Softonic.prdct - Softonic FF - user.js: extensions.Softonic.aflt - SD FF - user.js: extensions.Softonic_i.smplGrp - none FF - user.js: extensions.Softonic.tlbrId - base FF - user.js: extensions.Softonic.instlRef - MON00086 FF - user.js: extensions.Softonic.dfltLng - nl FF - user.js: extensions.Softonic.excTlbr - false FF - user.js: extensions.Softonic.admin - false . ============= SERVICES / DRIVERS =============== . R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?] R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?] R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?] R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952] R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe --> C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [?] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?] R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?] R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-2-23 44768] R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2008-12-18 155648] R2 FAService;FAService;C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe [2008-9-6 2340096] R2 MoyeaTaskDispatcher;Moyea Task Dispatcher;C:\Program Files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe [2009-12-10 960512] R2 OMSI download service;Sony Ericsson OMSI download service;C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2010-5-19 90112] R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2009-8-14 636144] R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys --> C:\Windows\system32\DRIVERS\btwl2cap.sys [?] R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?] R3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys --> C:\Windows\system32\DRIVERS\itecir.sys [?] R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys --> C:\Windows\system32\DRIVERS\k57nd60a.sys [?] R3 NETw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\NETw5v64.sys --> C:\Windows\system32\DRIVERS\NETw5v64.sys [?] R3 OA001Ufd;Creative Camera OA001 Upper Filter Driver;C:\Windows\system32\DRIVERS\OA001Ufd.sys --> C:\Windows\system32\DRIVERS\OA001Ufd.sys [?] R3 OA001Vid;Creative Camera OA001 Function Driver;C:\Windows\system32\DRIVERS\OA001Vid.sys --> C:\Windows\system32\DRIVERS\OA001Vid.sys [?] R3 seehcri;Sony Ericsson seehcri Device Driver;C:\Windows\system32\DRIVERS\seehcri.sys --> C:\Windows\system32\DRIVERS\seehcri.sys [?] S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-8-20 133104] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856] S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-5-1 93184] S3 FACAP;facap, FastAccess Video Capture;C:\Windows\system32\DRIVERS\facap.sys --> C:\Windows\system32\DRIVERS\facap.sys [?] S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-9-25 1038088] S3 fssfltr;FssFltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?] S3 fsssvc;De service Windows Live Family Safety;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-4-28 704872] S3 gupdatem;Google Update-service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-8-20 133104] S3 L6UX2;Service - Line 6 UX2;C:\Windows\system32\Drivers\L6UX264.sys --> C:\Windows\system32\Drivers\L6UX264.sys [?] S3 PerfHost;Host van prestatiemeter-DLL;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968] S3 s1029bus;Sony Ericsson Device 1029 driver (WDM);C:\Windows\system32\DRIVERS\s1029bus.sys --> C:\Windows\system32\DRIVERS\s1029bus.sys [?] S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;C:\Windows\system32\DRIVERS\s1029mdfl.sys --> C:\Windows\system32\DRIVERS\s1029mdfl.sys [?] S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;C:\Windows\system32\DRIVERS\s1029mdm.sys --> C:\Windows\system32\DRIVERS\s1029mdm.sys [?] S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);C:\Windows\system32\DRIVERS\s1029mgmt.sys --> C:\Windows\system32\DRIVERS\s1029mgmt.sys [?] S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);C:\Windows\system32\DRIVERS\s1029nd5.sys --> C:\Windows\system32\DRIVERS\s1029nd5.sys [?] S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;C:\Windows\system32\DRIVERS\s1029obex.sys --> C:\Windows\system32\DRIVERS\s1029obex.sys [?] S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);C:\Windows\system32\DRIVERS\s1029unic.sys --> C:\Windows\system32\DRIVERS\s1029unic.sys [?] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] . =============== File Associations =============== . JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %* . =============== Created Last 30 ================ . 2012-05-22 23:57:51 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4894935E-59EA-4381-97D4-3C32D4E3864B}\mpengine.dll 2012-05-17 17:45:00 -------- d-----w- C:\Users\Wilmar\AppData\Roaming\Sayc 2012-05-17 17:45:00 -------- d-----w- C:\Users\Wilmar\AppData\Roaming\Itnyh 2012-05-17 17:42:34 -------- d-----w- C:\Users\Wilmar\AppData\Roaming\Fiheyp 2012-05-17 17:42:34 -------- d-----w- C:\Users\Wilmar\AppData\Roaming\Duogot 2012-05-13 21:07:54 -------- d-----w- C:\Windows\SysWow64\System32 2012-05-12 18:13:32 592824 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll 2012-05-12 18:13:32 44472 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozglue.dll . ==================== Find3M ==================== . 2012-03-06 23:15:19 41184 ----a-w- C:\Windows\avastSS.scr 2012-03-06 23:04:06 819032 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2012-03-06 23:01:52 69976 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys . ============= FINISH: 22:48:21,51 ===============
  • Wil je niet meer via Softonic downloaden. Tenzij je graag wil dat er obscure tools en vervelende toolbars in jouw Windows worden geïnstalleerd! Zie ook: https://www.emsisoft.com/en/kb/articles/tec120224/ Ik denk niet dat je over wil wil naar Windows 8. Alles plat, geen Aero meer. Dit alles vooral voor Tablets en Smarphones! Ook geen startknop meer of menulijst met programma's. [b:5c34be1349]Welk programma[/b:5c34be1349]: [color=#008000:5c34be1349][b:5c34be1349]TDSSStarter.exe[/b:5c34be1349][/color:5c34be1349] [b:5c34be1349]Waarvoor/waarom[/b:5c34be1349]: Rootkitscanner [b:5c34be1349]Moeilijkheidsgraad[/b:5c34be1349]: geen Download [b:5c34be1349][url=http://home.kpn.nl/stefsmeenk/tools/TDSSKStarter.exe]TDSSStarter[/url][/b:5c34be1349] naar het bureaublad. [b:5c34be1349]"TDSSSStarter.exe" gebruiken[/b:5c34be1349]: [list:5c34be1349][*:5c34be1349] [b:5c34be1349][color=#0000FF:5c34be1349]Sluit nu eerst alle nog openstaande programmavensters![/color:5c34be1349][/b:5c34be1349] [list:5c34be1349][*:5c34be1349][b:5c34be1349][color=#0000FF:5c34be1349]Windows 2000[/color:5c34be1349][/b:5c34be1349] en [color=#0000FF:5c34be1349][b:5c34be1349]Windows XP[/b:5c34be1349][/color:5c34be1349]: start het tool middels dubbelklik op "[i:5c34be1349] TDSSStarter .exe[/i:5c34be1349]". [*:5c34be1349][color=#0000FF:5c34be1349][b:5c34be1349]Windows Vista[/b:5c34be1349][/color:5c34be1349] en [color=#0000FF:5c34be1349][b:5c34be1349]Windows 7[/b:5c34be1349][/color:5c34be1349]: start het tool middels rechtsklik op "[i:5c34be1349]TDSSStarter.exe[/i:5c34be1349]" en dan kiezen voor [i:5c34be1349][b:5c34be1349]Als Administrator uitvoeren[/b:5c34be1349][/i:5c34be1349].[/list:u:5c34be1349] [*:5c34be1349]Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten. [*:5c34be1349]Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.[/list:u:5c34be1349]
  • Ja bedankt voor de tip, ik gebruik softonic eigenlijk nooit ik heb het slechts 1 keer gebruikt om Kies (voor Samsung) te downloaden, maar het werkte niet goed, ik had er ook niet direct een goed gevoel bij. Ja ik had het al enigszins gelezen over Windows 8, ik hoop dat ze nog wat aanpassingen maken voor de pc, maar het ziet er inderdaad niet naar uit. Ik kocht eigenlijk altijd een pc omdat ik veel games speelde, maar nu dat minder wordt, is een Mac ook een optie geworden. Hierbij de inhoud van de rootkitscanner: 23:53:07.0769 3832 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30 23:53:07.0769 3832 ============================================================ 23:53:07.0769 3832 Current date / time: 2012/05/23 23:53:07.0769 23:53:07.0769 3832 SystemInfo: 23:53:07.0769 3832 23:53:07.0769 3832 OS Version: 6.0.6001 ServicePack: 1.0 23:53:07.0769 3832 Product type: Workstation 23:53:07.0769 3832 ComputerName: PC_VAN_WILMAR 23:53:07.0769 3832 UserName: Wilmar 23:53:07.0769 3832 Windows directory: C:\Windows 23:53:07.0769 3832 System windows directory: C:\Windows 23:53:07.0769 3832 Running under WOW64 23:53:07.0769 3832 Processor architecture: Intel x64 23:53:07.0769 3832 Number of processors: 2 23:53:07.0769 3832 Page size: 0x1000 23:53:07.0769 3832 Boot type: Normal boot 23:53:07.0769 3832 ============================================================ 23:53:11.0264 3832 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 23:53:11.0326 3832 ============================================================ 23:53:11.0326 3832 \Device\Harddisk0\DR0: 23:53:11.0326 3832 MBR partitions: 23:53:11.0326 3832 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000 23:53:11.0326 3832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B 23:53:11.0326 3832 ============================================================ 23:53:11.0420 3832 C: <-> \Device\Harddisk0\DR0\Partition1 23:53:11.0700 3832 D: <-> \Device\Harddisk0\DR0\Partition0 23:53:11.0700 3832 ============================================================ 23:53:11.0700 3832 Initialize success 23:53:11.0700 3832 ============================================================ 23:53:11.0856 5068 ============================================================ 23:53:11.0856 5068 Scan started 23:53:11.0856 5068 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent; 23:53:11.0856 5068 ============================================================ 23:53:15.0772 5068 ACPI (af3a1aa81f875169dd9e55b1320057d6) C:\Windows\system32\drivers\acpi.sys 23:53:16.0427 5068 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys 23:53:31.0575 5068 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 23:53:32.0402 5068 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys 23:53:34.0071 5068 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys 23:53:34.0944 5068 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys 23:53:35.0319 5068 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys 23:53:35.0506 5068 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll 23:53:37.0316 5068 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe 23:53:38.0876 5068 AFD (db37041ab857abc7e179e856d8e1582c) C:\Windows\system32\drivers\afd.sys 23:53:39.0234 5068 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys 23:53:39.0905 5068 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys 23:53:40.0280 5068 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe 23:53:40.0670 5068 aliide (9544c2c55541c0c6bfd7b489d0e7d430) C:\Windows\system32\drivers\aliide.sys 23:53:41.0403 5068 AMD External Events Utility (9e28e3302025160f9ccc7272cee0be16) C:\Windows\system32\atiesrxx.exe 23:53:41.0684 5068 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys 23:53:41.0824 5068 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys 23:53:42.0308 5068 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll 23:53:43.0431 5068 Apple Mobile Device (557f35d1ca42aea14a6690e21887a31f) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 23:53:43.0790 5068 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys 23:53:44.0070 5068 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys 23:53:44.0258 5068 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys 23:53:44.0523 5068 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys 23:53:44.0694 5068 aswRdr (ee1e8fea9d6dfe066aba3a8ea455a1f2) C:\Windows\system32\drivers\aswRdr.sys 23:53:46.0239 5068 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys 23:53:47.0128 5068 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys 23:53:47.0331 5068 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys 23:53:47.0705 5068 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys 23:53:47.0924 5068 atapi (f988bb0690cd660318037908e9b8dbf7) C:\Windows\system32\drivers\atapi.sys 23:53:48.0454 5068 AtiHdmiService (08fa104f07b243508ecd8d59007d2b2f) C:\Windows\system32\drivers\AtiHdmi.sys 23:53:56.0426 5068 atikmdag (4ba27d602d5b74375e4d2f9622c9b114) C:\Windows\system32\DRIVERS\atikmdag.sys 23:53:59.0187 5068 AudioEndpointBuilder (2a54b6a48ab6d2166271b05e9469326e) C:\Windows\System32\Audiosrv.dll 23:53:59.0405 5068 AudioSrv (2a54b6a48ab6d2166271b05e9469326e) C:\Windows\System32\Audiosrv.dll 23:53:59.0904 5068 avast\Program Files\Alwil Software\Avast5\AvastSvc.exe 23:54:00.0965 5068 BFE (bc4737aaffa5964e4f8827c9b8c0eb8e) C:\Windows\System32\bfe.dll 23:54:02.0182 5068 BITS (d896a0d43f8ab81ecb1fc6c24decfd58) C:\Windows\System32\qmgr.dll 23:54:02.0790 5068 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys 23:54:03.0243 5068 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files (x86)\Bonjour\mDNSResponder.exe 23:54:03.0446 5068 bowser (f0f035fcec3554cc1b70c5611bd87951) C:\Windows\system32\DRIVERS\bowser.sys 23:54:03.0602 5068 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys 23:54:03.0758 5068 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys 23:54:04.0116 5068 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll 23:54:04.0553 5068 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys 23:54:04.0865 5068 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys 23:54:05.0084 5068 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys 23:54:05.0255 5068 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys 23:54:05.0598 5068 BthEnum (12b275fd8ea054a719d024d7017eb932) C:\Windows\system32\DRIVERS\BthEnum.sys 23:54:05.0973 5068 BTHMODEM (752fc84a394ca712d51dd9bd53f58e73) C:\Windows\system32\DRIVERS\bthmodem.sys 23:54:06.0285 5068 BthPan (befc5311736b475ac5b60c14ff7c775a) C:\Windows\system32\DRIVERS\bthpan.sys 23:54:06.0846 5068 BthPort (516cdda5b7f6c6999db7eb7425337a19) C:\Windows\system32\Drivers\BTHport.sys 23:54:07.0190 5068 BthServ (e53aa49695b7bd95808b7c6da170a40e) C:\Windows\System32\bthserv.dll 23:54:07.0439 5068 BTHUSB (264cc52d69337ce5d12d13d71220b612) C:\Windows\system32\Drivers\BTHUSB.sys 23:54:07.0767 5068 btwaudio (319c67f7d157eaac519dcc5f29e929d0) C:\Windows\system32\drivers\btwaudio.sys 23:54:07.0970 5068 btwavdt (0b79273c8c2846d28aab936e7a2dbaad) C:\Windows\system32\drivers\btwavdt.sys 23:54:09.0405 5068 btwdins (6c32a638ee80fd832418ce78e516ffa1) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe 23:54:09.0732 5068 btwl2cap (fda1b5124e07003c3d0d279e5050485e) C:\Windows\system32\DRIVERS\btwl2cap.sys 23:54:09.0857 5068 btwrchid (47216d8b5f4042e6d0736bfa2e57b5df) C:\Windows\system32\DRIVERS\btwrchid.sys 23:54:10.0044 5068 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys 23:54:10.0278 5068 cdrom (3b2fb35363423ed60c8fbf15fc8680bd) C:\Windows\system32\DRIVERS\cdrom.sys 23:54:10.0653 5068 CertPropSvc (edfffc8b6afb609bf33dbe0a900426b6) C:\Windows\System32\certprop.dll 23:54:10.0902 5068 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys 23:54:11.0292 5068 CLFS (c12c4ee07843b595036da0baa6317936) C:\Windows\system32\CLFS.sys 23:54:11.0589 5068 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 23:54:11.0932 5068 clr_optimization_v2.0.50727_64 (fa58b51ed71c9133e141164eaa7c54eb) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 23:54:12.0057 5068 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys 23:54:12.0322 5068 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys 23:54:12.0431 5068 Compbatt (34a6aa82aa36c87fc8816f2097efa345) C:\Windows\system32\DRIVERS\compbatt.sys 23:54:12.0525 5068 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys 23:54:12.0806 5068 CryptSvc (4374f784121d8b3bb466b03f5e5ebd33) C:\Windows\system32\cryptsvc.dll 23:54:13.0398 5068 CtClsFlt (fc1f55ba03832fbb0daf965f746c47bb) C:\Windows\system32\DRIVERS\CtClsFlt.sys 23:54:14.0210 5068 DcomLaunch (52cdade8289ff21f1f2215ff51a5f36c) C:\Windows\system32\rpcss.dll 23:54:14.0678 5068 DfsC (bd4acc56e477ad7419cbe90fceeb621b) C:\Windows\system32\Drivers\dfsc.sys 23:54:22.0524 5068 DFSR (1781f99840979ee7b126c9073c377fd0) C:\Windows\system32\DFSR.exe 23:54:26.0081 5068 Dhcp (fdaa0edfcfb70cd529589ad654651b40) C:\Windows\System32\dhcpcsvc.dll 23:54:26.0877 5068 disk (2dc415fc05fb8a079f896cbbacb19324) C:\Windows\system32\drivers\disk.sys 23:54:27.0220 5068 Dnscache (daf05293c1264e251d3a25e7e24b2ddf) C:\Windows\System32\dnsrslvr.dll 23:54:27.0782 5068 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe 23:54:27.0813 5068 DockLoginService ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:54:27.0813 5068 DockLoginService - detected UnsignedFile.Multi.Generic (1) 23:54:28.0156 5068 dot3svc (cc661867677627f2911c2a4970dee0f1) C:\Windows\System32\dot3svc.dll 23:54:28.0671 5068 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll 23:54:28.0827 5068 drmkaud (97dc2a789c1be458976507846a1a8ced) C:\Windows\system32\drivers\drmkaud.sys 23:54:29.0810 5068 DXGKrnl (412964040ce920ff83aff6b5b551bf99) C:\Windows\System32\drivers\dxgkrnl.sys 23:54:30.0980 5068 e1express (17d40652ef3e55eeae187a89df40965a) C:\Windows\system32\DRIVERS\e1e6032e.sys 23:54:32.0758 5068 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys 23:54:33.0164 5068 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll 23:54:33.0694 5068 Ecache (7343d950a34a95dcb7441642e3e6beef) C:\Windows\system32\drivers\ecache.sys 23:54:34.0661 5068 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe 23:54:35.0129 5068 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe 23:54:35.0254 5068 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll 23:54:36.0221 5068 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys 23:54:37.0079 5068 EMDMgmt (e4eb76d0a8fc43db7f36302e1f33791f) C:\Windows\system32\emdmgmt.dll 23:54:37.0298 5068 ErrDev (991fab6aa066e1214efb5b496fb7959a) C:\Windows\system32\drivers\errdev.sys 23:54:38.0062 5068 EventSystem (6b1a97bf9fefbdc83f3c7c7d0f826c66) C:\Windows\system32\es.dll 23:54:38.0499 5068 exfat (2a546b9a84658b0554b1ec35cd9adaf5) C:\Windows\system32\drivers\exfat.sys 23:54:39.0185 5068 FACAP (e7f412035b832013fa32f412246c5bff) C:\Windows\system32\DRIVERS\facap.sys 23:54:42.0040 5068 FAService (4cd1d92dbf3bf28d43cfb98dfb91b7ab) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe 23:54:43.0475 5068 fastfat (fe731d345ed9eeabbc72a59b35941834) C:\Windows\system32\drivers\fastfat.sys 23:54:43.0787 5068 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys 23:54:44.0021 5068 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll 23:54:44.0255 5068 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll 23:54:44.0630 5068 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys 23:54:44.0832 5068 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys 23:54:46.0923 5068 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 23:54:49.0154 5068 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe 23:54:50.0495 5068 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys 23:54:51.0026 5068 FltMgr (7dacf1a3a4219575070c6dc7c957428a) C:\Windows\system32\drivers\fltmgr.sys 23:54:51.0228 5068 FontCache3.0.0.0 (73d0f1d32edae3dcc4e84468bf910add) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 23:54:51.0400 5068 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys 23:54:51.0899 5068 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 23:54:52.0414 5068 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys 23:54:52.0757 5068 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys 23:54:52.0898 5068 GEARAspiWDM (d279181e1cf2d85d31cdcffd56b16795) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 23:54:54.0910 5068 gpsvc (9e5b254d58232ec8921ec3c5a94c81ed) C:\Windows\System32\gpsvc.dll 23:54:55.0425 5068 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 23:54:55.0503 5068 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 23:54:56.0018 5068 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 23:54:56.0174 5068 HDAudBus (0c0d0f8a3ff09ecc81963d09ec6a0a84) C:\Windows\system32\DRIVERS\HDAudBus.sys 23:54:56.0376 5068 HidBth (824fd154b9371e42adb67590bded5f6c) C:\Windows\system32\DRIVERS\hidbth.sys 23:54:56.0595 5068 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys 23:54:56.0782 5068 hidserv (77e34697087cfdbcfd9e0009704fb5af) C:\Windows\system32\hidserv.dll 23:54:56.0891 5068 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys 23:54:57.0078 5068 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll 23:54:57.0234 5068 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys 23:54:57.0640 5068 HTTP (e690736da6c543f5d99c8fa27bea31db) C:\Windows\system32\drivers\HTTP.sys 23:54:57.0843 5068 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys 23:54:57.0921 5068 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys 23:54:58.0061 5068 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys 23:54:58.0373 5068 idsvc (76ea63cdb2d88dae7209691d089bef1d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 23:54:58.0560 5068 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys 23:54:58.0716 5068 IKEEXT (3a3b232140c33376e134e7b61a0eaa44) C:\Windows\System32\ikeext.dll 23:54:58.0966 5068 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys 23:54:59.0091 5068 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys 23:54:59.0278 5068 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll 23:54:59.0434 5068 IpFilterDriver (99b821f5bebd6a3cc3fe564f802ae0fd) C:\Windows\system32\DRIVERS\ipfltdrv.sys 23:54:59.0621 5068 iphlpsvc (82efc3d6d161dd874f1203c5f60f623c) C:\Windows\System32\iphlpsvc.dll 23:54:59.0777 5068 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys 23:54:59.0918 5068 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys 23:55:00.0136 5068 iPod Service (e8e568ea584973dfd99aac7d00a16287) C:\Program Files (x86)\iPod\bin\iPodService.exe 23:55:00.0214 5068 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys 23:55:00.0339 5068 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys 23:55:00.0464 5068 iScsiPrt (49e4ccbf74783fce5d2cc1ff6480e1f4) C:\Windows\system32\DRIVERS\msiscsi.sys 23:55:00.0510 5068 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys 23:55:00.0573 5068 itecir (5fef11c18ec25cdcb27e6c8680690b69) C:\Windows\system32\DRIVERS\itecir.sys 23:55:00.0666 5068 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys 23:55:00.0760 5068 k57nd60a (eb5c7891b9e6e4a1a4428f2160b12b53) C:\Windows\system32\DRIVERS\k57nd60a.sys 23:55:00.0822 5068 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys 23:55:00.0854 5068 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys 23:55:00.0994 5068 KeyIso (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe 23:55:01.0228 5068 KSecDD (ccdcce6224e1e207e953af826b98a9d9) C:\Windows\system32\Drivers\ksecdd.sys 23:55:01.0400 5068 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys 23:55:01.0587 5068 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll 23:55:02.0008 5068 L6UX2 (b13d2c6ce680edf51fa08866265cc717) C:\Windows\system32\Drivers\L6UX264.sys 23:55:02.0211 5068 LanmanServer (3f27c9cdae606d74431e3ab39571a7f3) C:\Windows\system32\srvsvc.dll 23:55:02.0476 5068 LanmanWorkstation (6e25ffc6fead6544c6e9f1d23329570c) C:\Windows\System32\wkssvc.dll 23:55:02.0663 5068 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys 23:55:02.0850 5068 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll 23:55:03.0038 5068 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll 23:55:03.0178 5068 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys 23:55:03.0256 5068 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys 23:55:03.0334 5068 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys 23:55:03.0396 5068 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys 23:55:03.0584 5068 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys 23:55:03.0693 5068 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll 23:55:03.0818 5068 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys 23:55:03.0989 5068 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys 23:55:04.0223 5068 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 23:55:04.0332 5068 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll 23:55:04.0566 5068 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys 23:55:04.0691 5068 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys 23:55:04.0832 5068 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys 23:55:04.0894 5068 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys 23:55:05.0003 5068 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys 23:55:05.0253 5068 MoyeaTaskDispatcher (65a97aee6323bedc118b3a2cde4d5580) C:\Program Files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe 23:55:05.0300 5068 MoyeaTaskDispatcher ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:55:05.0300 5068 MoyeaTaskDispatcher - detected UnsignedFile.Multi.Generic (1) 23:55:05.0393 5068 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys 23:55:05.0456 5068 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys 23:55:05.0705 5068 MpsSvc (8a670648c755867a3aa38da50ba569aa) C:\Windows\system32\mpssvc.dll 23:55:05.0939 5068 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys 23:55:06.0064 5068 MRxDAV (fe2706c15f8345c342820e4e4583fea0) C:\Windows\system32\drivers\mrxdav.sys 23:55:06.0314 5068 mrxsmb (d2fc7c6c263a759c3f0ccf5c26831b50) C:\Windows\system32\DRIVERS\mrxsmb.sys 23:55:06.0501 5068 mrxsmb10 (b48b14105724e7f3925d89cbaa8fc7a5) C:\Windows\system32\DRIVERS\mrxsmb10.sys 23:55:06.0594 5068 mrxsmb20 (effa581e7c5afba1163aafbfa09db475) C:\Windows\system32\DRIVERS\mrxsmb20.sys 23:55:06.0735 5068 msahci (730b784962d22d2c6481eae2370e7c8c) C:\Windows\system32\drivers\msahci.sys 23:55:06.0782 5068 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys 23:55:06.0969 5068 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe 23:55:07.0109 5068 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys 23:55:07.0312 5068 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys 23:55:07.0374 5068 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll 23:55:07.0562 5068 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys 23:55:07.0686 5068 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys 23:55:07.0796 5068 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys 23:55:07.0952 5068 MsRPC (b8e32e6103fbba9fbb1d0c11ff0d13b5) C:\Windows\system32\drivers\MsRPC.sys 23:55:08.0092 5068 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys 23:55:08.0154 5068 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys 23:55:08.0357 5068 Mup (ddf133501f68d6988a0f55dfa88637b4) C:\Windows\system32\Drivers\mup.sys 23:55:08.0498 5068 napagent (c25022cdd18980846973b598900915f8) C:\Windows\system32\qagentRT.dll 23:55:08.0716 5068 NativeWifiP (73b99c98fa3a2ed1566e02d6fe1913a5) C:\Windows\system32\DRIVERS\nwifi.sys 23:55:08.0981 5068 NDIS (f9a3ae5c9f047d71a36a99f9abca7d02) C:\Windows\system32\drivers\ndis.sys 23:55:09.0168 5068 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys 23:55:09.0402 5068 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys 23:55:09.0543 5068 NdisWan (52e3e8e35101399be9b2938c992aa087) C:\Windows\system32\DRIVERS\ndiswan.sys 23:55:09.0777 5068 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys 23:55:09.0933 5068 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys 23:55:10.0136 5068 netbt (7a29ca243a629230799754162d80120f) C:\Windows\system32\DRIVERS\netbt.sys 23:55:10.0323 5068 Netlogon (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe 23:55:10.0448 5068 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll 23:55:10.0697 5068 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll 23:55:10.0994 5068 NetTcpPortSharing (b84613b469b98e09f50a748c1d02e132) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 23:55:12.0320 5068 NETw5v64 (f17eda58c8c5b1a4f873b322729168ff) C:\Windows\system32\DRIVERS\NETw5v64.sys 23:55:13.0100 5068 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys 23:55:13.0256 5068 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll 23:55:13.0505 5068 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe 23:55:13.0552 5068 Npfs (b06154e2a2c91e9be5599fca53bc4cd0) C:\Windows\system32\drivers\Npfs.sys 23:55:13.0692 5068 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll 23:55:13.0864 5068 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys 23:55:14.0504 5068 Ntfs (fe86ba5ac3b50e2ca911e9c60c07b638) C:\Windows\system32\drivers\Ntfs.sys 23:55:14.0894 5068 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys 23:55:15.0096 5068 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys 23:55:15.0143 5068 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys 23:55:15.0284 5068 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys 23:55:15.0440 5068 OA001Ufd (404b0121ae1a75d9a63b6934eb07c258) C:\Windows\system32\DRIVERS\OA001Ufd.sys 23:55:15.0596 5068 OA001Vid (4b69d156db42b26425ab3b172fa50d92) C:\Windows\system32\DRIVERS\OA001Vid.sys 23:55:16.0001 5068 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 23:55:16.0157 5068 ohci1394 (1b30103fde512915a9214b108b6e7a9c) C:\Windows\system32\DRIVERS\ohci1394.sys 23:55:16.0376 5068 OMSI download service (da345de3b450e9e1691e7b9956d8ffc3) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe 23:55:16.0391 5068 OMSI download service ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:55:16.0391 5068 OMSI download service - detected UnsignedFile.Multi.Generic (1) 23:55:16.0469 5068 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 23:55:16.0688 5068 p2pimsvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll 23:55:16.0890 5068 p2psvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll 23:55:17.0109 5068 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys 23:55:17.0374 5068 partmgr (5ab40c36894f4c06bdab0c9a2fba282d) C:\Windows\system32\drivers\partmgr.sys 23:55:17.0436 5068 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll 23:55:17.0608 5068 pci (2a5b2a51559066ea84742909b5b2cd69) C:\Windows\system32\drivers\pci.sys 23:55:17.0998 5068 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys 23:55:18.0060 5068 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys 23:55:18.0154 5068 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys 23:55:18.0341 5068 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys 23:55:18.0731 5068 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe 23:55:19.0168 5068 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll 23:55:19.0620 5068 PlugPlay (5aaa0c5534b05ed49919fcd9dbd11a5b) C:\Windows\system32\umpnpmgr.dll 23:55:20.0026 5068 PNRPAutoReg (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll 23:55:20.0151 5068 PNRPsvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll 23:55:20.0603 5068 PolicyAgent (eef3688d5e9592cbbbed00de71dda1ef) C:\Windows\System32\ipsecsvc.dll 23:55:20.0884 5068 PptpMiniport (f5739f2c6db2534c384ad5150808e8f5) C:\Windows\system32\DRIVERS\raspptp.sys 23:55:21.0118 5068 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys 23:55:21.0617 5068 ProfSvc (b21fe10dad3ab59e78df7aa3fbf41e70) C:\Windows\system32\profsvc.dll 23:55:21.0789 5068 ProtectedStorage (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe 23:55:22.0116 5068 PSched (0e0e205a296095fe4c631e6a4775ad6c) C:\Windows\system32\DRIVERS\pacer.sys 23:55:22.0241 5068 PxHlpa64 (46851bc18322da70f3f2299a1007c479) C:\Windows\system32\Drivers\PxHlpa64.sys 23:55:22.0553 5068 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys 23:55:22.0709 5068 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys 23:55:22.0818 5068 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll 23:55:22.0928 5068 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys 23:55:23.0786 5068 R300 (4ba27d602d5b74375e4d2f9622c9b114) C:\Windows\system32\DRIVERS\atikmdag.sys 23:55:24.0971 5068 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys 23:55:25.0361 5068 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll 23:55:25.0611 5068 Rasl2tp (3b9085f91ef00abd15a6f36570e90e12) C:\Windows\system32\DRIVERS\rasl2tp.sys 23:55:25.0767 5068 RasMan (d0c346d7df0df9b4899631796f177d56) C:\Windows\System32\rasmans.dll 23:55:25.0907 5068 RasPppoe (2ce1703c27196094fb6e4c6e439f2c21) C:\Windows\system32\DRIVERS\raspppoe.sys 23:55:26.0032 5068 RasSstp (fcd04fa67e8b40fa0ad361dd38593942) C:\Windows\system32\DRIVERS\rassstp.sys 23:55:26.0219 5068 rdbss (33fa5b6136d92ee0f53f021c79091300) C:\Windows\system32\DRIVERS\rdbss.sys 23:55:26.0375 5068 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys 23:55:26.0578 5068 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys 23:55:26.0703 5068 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys 23:55:26.0843 5068 RDPWD (7747082f672aa2846235c9cea42e2e72) C:\Windows\system32\drivers\RDPWD.sys 23:55:27.0046 5068 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll 23:55:27.0186 5068 RemoteRegistry (416c611369cbe49074b89cee2f83abef) C:\Windows\system32\regsvc.dll 23:55:27.0420 5068 RFCOMM (a5fd55b4ccd5307f71c2c246f56c4d4f) C:\Windows\system32\DRIVERS\rfcomm.sys 23:55:27.0514 5068 rimmptsk (d13d70fac45fc1df69f88559b1f72f0a) C:\Windows\system32\DRIVERS\rimmpx64.sys 23:55:27.0576 5068 rimsptsk (bb9edc55b0b8cb4fcd713428820e0776) C:\Windows\system32\DRIVERS\rimspx64.sys 23:55:27.0670 5068 rismxdp (481c3fdeacaae04b74c58288dbc91df9) C:\Windows\system32\DRIVERS\rixdpx64.sys 23:55:27.0842 5068 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe 23:55:29.0526 5068 RpcSs (52cdade8289ff21f1f2215ff51a5f36c) C:\Windows\system32\rpcss.dll 23:55:29.0620 5068 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys 23:55:29.0760 5068 s1029bus (68f717bc57b0fe12011eb9517c97f78d) C:\Windows\system32\DRIVERS\s1029bus.sys 23:55:29.0838 5068 s1029mdfl (fcfafa529f4fa27b02fce1e52a84922e) C:\Windows\system32\DRIVERS\s1029mdfl.sys 23:55:29.0916 5068 s1029mdm (35bd0866eb422ab2d7c8f0ddcc67bf7c) C:\Windows\system32\DRIVERS\s1029mdm.sys 23:55:30.0041 5068 s1029mgmt (e0fd4f4f42b76e910cc4295c97aa30ba) C:\Windows\system32\DRIVERS\s1029mgmt.sys 23:55:30.0213 5068 s1029nd5 (90276f1d842eb96f82510e73fdb792ad) C:\Windows\system32\DRIVERS\s1029nd5.sys 23:55:30.0306 5068 s1029obex (128ed45223fab846e8436a2f2baebb55) C:\Windows\system32\DRIVERS\s1029obex.sys 23:55:30.0369 5068 s1029unic (400fc5591586a1dfecf7a0cfaa6b0d68) C:\Windows\system32\DRIVERS\s1029unic.sys 23:55:30.0431 5068 SamSs (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe 23:55:30.0556 5068 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys 23:55:30.0681 5068 SCardSvr (f024d560fea06f8b56d673849eb89ae6) C:\Windows\System32\SCardSvr.dll 23:55:30.0884 5068 Schedule (ce75d26e0a1106129f4d156851e298ed) C:\Windows\system32\schedsvc.dll 23:55:31.0102 5068 SCPolicySvc (edfffc8b6afb609bf33dbe0a900426b6) C:\Windows\System32\certprop.dll 23:55:31.0320 5068 sdbus (fb30126d3e617c86cd8e8643792ca3cf) C:\Windows\system32\DRIVERS\sdbus.sys 23:55:31.0430 5068 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll 23:55:31.0664 5068 SeaPort (271077b91d7ad1b616f8afdfe8e3f981) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 23:55:31.0742 5068 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 23:55:31.0929 5068 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll 23:55:32.0132 5068 seehcri (ede7a1d2715aac2190d51dc07afd44e3) C:\Windows\system32\DRIVERS\seehcri.sys 23:55:32.0334 5068 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll 23:55:32.0584 5068 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys 23:55:33.0036 5068 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys 23:55:33.0239 5068 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys 23:55:33.0504 5068 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll 23:55:33.0723 5068 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\DRIVERS\sffdisk.sys 23:55:33.0848 5068 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys 23:55:33.0988 5068 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\DRIVERS\sffp_sd.sys 23:55:34.0082 5068 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys 23:55:35.0283 5068 SftService (4ef8fc5158aa1a01df37fdb3fadda077) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE 23:55:35.0891 5068 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll 23:55:36.0125 5068 ShellHWDetection (eb3114330236cf030e8edf62881baf67) C:\Windows\System32\shsvcs.dll 23:55:36.0312 5068 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys 23:55:36.0468 5068 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys 23:55:36.0858 5068 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe 23:55:38.0028 5068 slsvc (a301d2cefb4747dfe0c24425dcbe0b78) C:\Windows\system32\SLsvc.exe 23:55:38.0356 5068 SLUINotify (f5ddf7c0af85eb72cb295171f8c3cb35) C:\Windows\system32\SLUINotify.dll 23:55:38.0559 5068 Smb (41eb2e8e005feedcafce301983eff932) C:\Windows\system32\DRIVERS\smb.sys 23:55:38.0699 5068 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe 23:55:38.0824 5068 spldr (f9cb0672162f7f04248e2b82c1ff4617) C:\Windows\system32\drivers\spldr.sys 23:55:38.0933 5068 Spooler (92e6738d25c2123be9515c0eac0776cd) C:\Windows\System32\spoolsv.exe 23:55:39.0198 5068 srv (a8abd7d0d907b45cf3831f4dd8644349) C:\Windows\system32\DRIVERS\srv.sys 23:55:39.0526 5068 srv2 (72e529d52f87341918b90635d3a01517) C:\Windows\system32\DRIVERS\srv2.sys 23:55:39.0729 5068 srvnet (1ee5fd978582764f0f280cf44efe3e9a) C:\Windows\system32\DRIVERS\srvnet.sys 23:55:39.0854 5068 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll 23:55:40.0025 5068 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll 23:55:40.0275 5068 STacSV (2452be11bb8755547e5247eda29aad15) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe 23:55:40.0322 5068 STacSV ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:55:40.0322 5068 STacSV - detected UnsignedFile.Multi.Generic (1) 23:55:40.0368 5068 StarOpen (e57b778208c783d8debab320c16a1b82) C:\Windows\system32\drivers\StarOpen.sys 23:55:40.0415 5068 StarOpen ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:55:40.0415 5068 StarOpen - detected UnsignedFile.Multi.Generic (1) 23:55:40.0571 5068 STHDA (ba16447226abfd342e130d2f24f73d32) C:\Windows\system32\DRIVERS\stwrt64.sys 23:55:40.0774 5068 stisvc (f14f7d7d68a66777fb999d5d0f21138d) C:\Windows\System32\wiaservc.dll 23:55:41.0086 5068 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe 23:55:41.0148 5068 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys 23:55:41.0398 5068 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 23:55:41.0523 5068 SwitchBoard ( UnsignedFile.Multi.Generic ) - [b:ea5cae7fc5][color=red:ea5cae7fc5]warning[/color:ea5cae7fc5][/b:ea5cae7fc5] 23:55:41.0523 5068 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 23:55:41.0601 5068 swprv (da34d6eb4a3154c0bebaeb0a2483ef3e) C:\Windows\System32\swprv.dll 23:55:41.0866 5068 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys 23:55:41.0960 5068 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys 23:55:41.0991 5068 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys 23:55:42.0084 5068 SynTP (79a93ec9d224b1f43c0e2f023d61dca3) C:\Windows\system32\DRIVERS\SynTP.sys 23:55:42.0240 5068 SysMain (bea0d5521ed21df8f6ffeed86daede7b) C:\Windows\system32\sysmain.dll 23:55:42.0459 5068 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll 23:55:42.0599 5068 TapiSrv (52091001caf20ae84cf47023ee21b4bb) C:\Windows\System32\tapisrv.dll 23:55:42.0802 5068 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll 23:55:43.0176 5068 Tcpip (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\drivers\tcpip.sys 23:55:43.0364 5068 Tcpip6 (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\DRIVERS\tcpip.sys 23:55:43.0535 5068 tcpipreg (c29d4b3b08ad0b7e8564814e4ff6a57b) C:\Windows\system32\drivers\tcpipreg.sys 23:55:43.0676 5068 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys 23:55:43.0800 5068 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys 23:55:43.0956 5068 tdx (8c39c72e0e853de04748c0337d9b9216) C:\Windows\system32\DRIVERS\tdx.sys 23:55:44.0081 5068 TermDD (3f0ebf6ee609f2a276c0d5faf244ec90) C:\Windows\system32\DRIVERS\termdd.sys 23:55:44.0237 5068 TermService (f870a5589d6a94b426efb13689023946) C:\Windows\System32\termsrv.dll 23:55:44.0456 5068 Themes (eb3114330236cf030e8edf62881baf67) C:\Windows\system32\shsvcs.dll 23:55:44.0612 5068 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll 23:55:44.0783 5068 Tpkd (c676b0f52f2b6483afb88f79cabb011e) C:\Windows\system32\drivers\Tpkd.sys 23:55:44.0877 5068 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll 23:55:45.0064 5068 TrustedInstaller (ac6ff1df22ed90bad6417ee5a4c6e2f0) C:\Windows\servicing\TrustedInstaller.exe 23:55:45.0189 5068 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys 23:55:45.0329 5068 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys 23:55:45.0470 5068 tunnel (f6a4fba7c03ac2efd00f3301c0c1e067) C:\Windows\system32\DRIVERS\tunnel.sys 23:55:45.0657 5068 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys 23:55:45.0782 5068 udfs (eca6629e33f122afff18a2ab7c3eb033) C:\Windows\system32\DRIVERS\udfs.sys 23:55:45.0953 5068 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe 23:55:46.0094 5068 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys 23:55:46.0187 5068 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys 23:55:46.0312 5068 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys 23:55:46.0390 5068 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys 23:55:46.0468 5068 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys 23:55:46.0655 5068 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll 23:55:46.0889 5068 USBAAPL64 (a2d6c837f4bc7d0e084a67d7704c4ea8) C:\Windows\system32\Drivers\usbaapl64.sys 23:55:47.0014 5068 usbccgp (ae3dea342f01249317b2bb3df0424238) C:\Windows\system32\DRIVERS\usbccgp.sys 23:55:47.0139 5068 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys 23:55:47.0357 5068 usbehci (b89f9fe9fc1e7c9cb03acb8819eb511d) C:\Windows\system32\DRIVERS\usbehci.sys 23:55:47.0482 5068 usbhub (f2c1d8eff9c7cf84ff0235408acd3f4b) C:\Windows\system32\DRIVERS\usbhub.sys 23:55:47.0576 5068 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys 23:55:47.0810 5068 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys 23:55:48.0012 5068 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys 23:55:48.0168 5068 USBSTOR (586d9876a4945779c8eea926c0d16889) C:\Windows\system32\DRIVERS\USBSTOR.SYS 23:55:48.0309 5068 usbuhci (225e107785315874ba5c1abc7dda7bfc) C:\Windows\system32\DRIVERS\usbuhci.sys 23:55:48.0449 5068 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys 23:55:48.0605 5068 UxSms (9190f03c82547afa87367f1ceca88f3b) C:\Windows\System32\uxsms.dll 23:55:48.0792 5068 vds (c15a4a550cba7b9f1f68b72528e04ce1) C:\Windows\System32\vds.exe 23:55:48.0980 5068 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys 23:55:49.0198 5068 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys 23:55:49.0338 5068 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys 23:55:49.0401 5068 volmgr (793d9b32a1c462c91f6f70358283ac97) C:\Windows\system32\drivers\volmgr.sys 23:55:49.0510 5068 volmgrx (5aa217da5dc4ff5b9ac9ab86563b3223) C:\Windows\system32\drivers\volmgrx.sys 23:55:49.0666 5068 volsnap (de4307412d98050239026e56a7dff3c0) C:\Windows\system32\drivers\volsnap.sys 23:55:49.0791 5068 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys 23:55:50.0103 5068 VSS (186bd53f8a408ad20f5a056c05678629) C:\Windows\system32\vssvc.exe 23:55:50.0352 5068 W32Time (ba29f34a61cb55c0dee29e787542edf4) C:\Windows\system32\w32time.dll 23:55:50.0618 5068 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys 23:55:50.0789 5068 Wanarp (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys 23:55:50.0930 5068 Wanarpv6 (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys 23:55:51.0164 5068 wcncsvc (055449247c490e24b968b44fe8a969eb) C:\Windows\System32\wcncsvc.dll 23:55:51.0320 5068 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll 23:55:51.0522 5068 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys 23:55:51.0678 5068 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys 23:55:51.0834 5068 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll 23:55:51.0959 5068 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll 23:55:52.0178 5068 WebClient (3d4ab55f8178fd0cd3ca45cd0ec9cf5b) C:\Windows\System32\webclnt.dll 23:55:52.0349 5068 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll 23:55:52.0490 5068 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll 23:55:52.0708 5068 WerSvc (fc25242b3bcaf7e84d9184082274ae08) C:\Windows\System32\WerSvc.dll 23:55:53.0036 5068 Winmgmt (ac98f38feab066a8f983d54ff3f4fd4c) C:\Windows\system32\wbem\WMIsvc.dll 23:55:53.0519 5068 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll 23:55:54.0237 5068 Wlansvc (0a69955261c1b54206adc9beb89517de) C:\Windows\System32\wlansvc.dll 23:55:54.0455 5068 WmiAcpi (7999dfb1c555efc0db69576f70027867) C:\Windows\system32\DRIVERS\wmiacpi.sys 23:55:54.0596 5068 wmiApSrv (d303322dd577c3deda1251ed2e7a496c) C:\Windows\system32\wbem\WmiApSrv.exe 23:55:54.0814 5068 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll 23:55:55.0017 5068 WPDBusEnum (a27c8f92d84e2ddc151978e4692c978e) C:\Windows\system32\wpdbusenum.dll 23:55:55.0188 5068 WpdUsb (6329d1990db931073b86ab5946d8e317) C:\Windows\system32\DRIVERS\wpdusb.sys 23:55:55.0376 5068 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys 23:55:55.0547 5068 wscsvc (cb8ea6d95949384925ccfca21cc6dfd8) C:\Windows\System32\wscsvc.dll 23:55:56.0234 5068 wuauserv (fb3796754fe00f0bdc87a36f164a5f4d) C:\Windows\system32\wuaueng.dll 23:55:56.0826 5068 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys 23:55:56.0967 5068 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll 23:55:57.0138 5068 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0 23:55:58.0028 5068 Boot (0x1200) (2810e2811a810d36e25e0c7b22825633) \Device\Harddisk0\DR0\Partition0 23:55:58.0043 5068 Boot (0x1200) (c7d881e12113e430039f62d83a055176) \Device\Harddisk0\DR0\Partition1 23:55:58.0043 5068 ============================================================ 23:55:58.0043 5068 Scan finished 23:55:58.0043 5068 ============================================================ 23:55:59.0244 5044 Deinitialize success . ============================================== System Restore Point Check: . TDSSKiller Starter Restore Point Created Succesfully ============================================== Registry Export . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile\GloballyOpenPorts\List] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] ============================================== EOF
  • Goed gedaan, geen MBR-rootkits! Wat betreft MAC - ook daarin dien je nu antivirus te gebruiken. De situatie met MAC is te vergelijken met die van Windows anno 1999/2000, toen Microsoft eigenlijk ook nog niet zo snel op beveiligingsdreigingen reageerde. Apple reageert nog veel te traag op beveiligingsaanpassingen in MAC-OS. Want door het toenemende succes van Apple staat MAC-OS (ook via (Phone) al langer bloot aan bedreigingen. En in Duitsland is Windows 7 met MAC-OS vergeleken door PCWelt. Conclusie: Windows 7 is minstens zo goed en een stuk veiliger. We gaan door: [b:ff6459456c]Welk programma[/b:ff6459456c]: [color=#008000:ff6459456c][b:ff6459456c]ComboFix[/b:ff6459456c][/color:ff6459456c] [b:ff6459456c]Waarvoor/waarom[/b:ff6459456c]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en zo mogelijk op te schonen. [b:ff6459456c]Moeilijkheidsgraad[/b:ff6459456c]: Lees alles eerst goed vanwege de voorbereidingsfase. [b:ff6459456c]Downloadlokatie[/b:ff6459456c]: Dit programma absoluut naar het bureaublad downloaden! [b:ff6459456c]Download ComboFix via één van deze locaties[/b:ff6459456c]: [list:ff6459456c][*:ff6459456c][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:ff6459456c]Bleepingcomputer[/b:ff6459456c][/url] [*:ff6459456c][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:ff6459456c]ForoSpyware[/b:ff6459456c][/url] [*:ff6459456c][url=http://subs.geekstogo.com/ComboFix.exe][b:ff6459456c]Geekstogo[/b:ff6459456c][/url][/list:u:ff6459456c] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:ff6459456c]Hier[/b:ff6459456c][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn! [url=http://www.bleepingcomputer.com/forums/topic114351.html][b:ff6459456c]Hier[/b:ff6459456c][/url] en [url=http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html][b:ff6459456c]hier[/b:ff6459456c][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:ff6459456c]Voor alle duidelijkheid nogmaals[/b:ff6459456c]: ComboFix dient vanaf het bureaublad gestart te worden. [b:ff6459456c]Opmerkingen[/b:ff6459456c]: [list:ff6459456c][*:ff6459456c] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist). [*:ff6459456c]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten. [*:ff6459456c]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:ff6459456c] [b:ff6459456c]ComboFix is opgestart[/b:ff6459456c]: [list:ff6459456c][*:ff6459456c]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:ff6459456c]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen! [*:ff6459456c]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:ff6459456c]Wanneer ComboFix gereed is, zal het een logbestand voor je maken. [*:ff6459456c]Post de inhoud van dit logbestand in je volgende bericht. [*:ff6459456c]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:ff6459456c] [b:ff6459456c]Belangrijke opmerking[/b:ff6459456c]: [list:ff6459456c][*:ff6459456c][b:ff6459456c][color=#0000FF:ff6459456c]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:ff6459456c][/b:ff6459456c] [*:ff6459456c][b:ff6459456c][color=#FF0000:ff6459456c]Illegal operation attempted on a registery key that has been marked for deletion.[/color:ff6459456c][/b:ff6459456c] [*:ff6459456c][b:ff6459456c][color=#008000:ff6459456c]Start dan de computer opnieuw op.[/color:ff6459456c][/b:ff6459456c][/list:u:ff6459456c]
  • Bedankt voor de tip, eigenlijk is Windows 7 dus het beste (veiligste) besturingssysteem? Ik vroeg me af waarom er soms bij mijn vorige log warning bij staat? Hier het nieuwe logje van Combofix: ComboFix 12-05-24.03 - Wilmar 24-05-2012 22:22:22.1.2 - x64 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.4060.2198 [GMT 2:00] Gestart vanuit: c:\users\Wilmar\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 c:\programdata\HotbarSA c:\programdata\HotbarSA\HotbarSA.dat c:\programdata\HotbarSA\HotbarSAAbout.mht c:\programdata\HotbarSA\HotbarSAEULA.mht c:\programdata\hpe41C0.dll c:\programdata\hpeED7A.dll c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\About Hotbar.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Customer Support Center.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Games!.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Uninstall Instructions.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Videos!.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Reset Cursor.lnk c:\programdata\Microsoft\Windows\Start Menu\Programs\Hotbar\Weather.lnk c:\users\Public\sdelevURL.tmp c:\users\Wilmar\AppData\Roaming\Fiheyp c:\users\Wilmar\AppData\Roaming\Fiheyp\qoac.loa c:\users\Wilmar\AppData\Roaming\inst.exe c:\users\Wilmar\AppData\Roaming\WeatherDPA c:\windows\system32\drivers\etc\hosts.ics c:\windows\system32\FAPassSync.dll c:\windows\SysWow64\avisynth.dll c:\windows\SysWow64\devil.dll c:\windows\SysWow64\muzapp.exe c:\windows\SysWow64\system32 c:\windows\SysWow64\system32\3DAudio.ax c:\windows\SysWow64\system32\avrt.dll c:\windows\SysWow64\system32\cis-2.4.dll c:\windows\SysWow64\system32\issacapi_bs-2.3.dll c:\windows\SysWow64\system32\issacapi_pe-2.3.dll c:\windows\SysWow64\system32\issacapi_se-2.3.dll c:\windows\SysWow64\system32\MACXMLProto.dll c:\windows\SysWow64\system32\MaDRM.dll c:\windows\SysWow64\system32\MaJGUILib.dll c:\windows\SysWow64\system32\MAMACExtract.dll c:\windows\SysWow64\system32\MASetupCleaner.exe c:\windows\SysWow64\system32\MaXMLProto.dll c:\windows\SysWow64\system32\mfplat.dll c:\windows\SysWow64\system32\MK_Lyric.dll c:\windows\SysWow64\system32\MSCLib.dll c:\windows\SysWow64\system32\MSFLib.dll c:\windows\SysWow64\system32\MSLUR71.dll c:\windows\SysWow64\system32\msvcp60.dll c:\windows\SysWow64\system32\MTTELECHIP.dll c:\windows\SysWow64\system32\MTXSYNCICON.dll c:\windows\SysWow64\system32\muzaf1.dll c:\windows\SysWow64\system32\muzapp.dll c:\windows\SysWow64\system32\muzapp.exe c:\windows\SysWow64\system32\muzdecode.ax c:\windows\SysWow64\system32\muzeffect.ax c:\windows\SysWow64\system32\muzmp4sp.ax c:\windows\SysWow64\system32\muzmpgsp.ax c:\windows\SysWow64\system32\muzoggsp.ax c:\windows\SysWow64\system32\muzwmts.dll c:\windows\SysWow64\system32\psapi.dll D:\AUTORUN.INF . . (((((((((((((((((((( Bestanden Gemaakt van 2012-04-24 to 2012-05-24 )))))))))))))))))))))))))))))) . . 2012-05-24 20:34 . 2012-05-24 20:34 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-05-23 21:52 . 2012-05-23 21:56 -------- d-----w- C:\TDSSStarter 2012-05-22 23:57 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4894935E-59EA-4381-97D4-3C32D4E3864B}\mpengine.dll 2012-05-17 17:45 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Itnyh 2012-05-17 17:45 . 2012-05-17 17:45 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Sayc 2012-05-17 17:42 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Duogot 2012-05-12 18:13 . 2012-05-12 18:13 592824 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll 2012-05-12 18:13 . 2012-05-12 18:13 44472 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-03-06 23:15 . 2010-06-29 05:16 41184 ----a-w- c:\windows\avastSS.scr 2012-03-06 23:15 . 2010-02-23 16:01 201352 ----a-w- c:\windows\SysWow64\aswBoot.exe 2012-03-06 23:15 . 2011-01-13 17:35 258520 ----a-w- c:\windows\system32\aswBoot.exe 2012-03-06 23:04 . 2011-03-09 22:20 819032 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-03-06 23:04 . 2010-02-23 16:01 337240 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-03-06 23:02 . 2010-02-23 16:01 43864 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-03-06 23:01 . 2010-02-23 16:01 59224 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-03-06 23:01 . 2010-02-23 16:01 69976 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2012-03-06 23:01 . 2010-02-23 16:01 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] 2012-03-15 13:57 242384 ----a-w- c:\program files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{5018CFD2-804D-4C99-9F81-25EAEA2769DE}"= "c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll" [2012-03-15 250576] . [HKEY_CLASSES_ROOT\clsid\{5018cfd2-804d-4c99-9f81-25eaea2769de}] [HKEY_CLASSES_ROOT\Softonic.dskBnd.1] [HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] [HKEY_CLASSES_ROOT\Softonic.dskBnd] . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-05 39408] "KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-05-04 21392] "KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2012-05-04 955792] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "FATrayAlert"="c:\program files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" [2008-09-05 95488] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-05-04 3521424] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-5-28 1320288] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\FastAccess] 2008-09-05 22:16 140544 ----a-w- c:\program files (x86)\Sensible Vision\Fast Access\FALogNot.dll . S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [x] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - WS2IFSL . Inhoud van de 'Gedeelde Taken' map . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000Core.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000UA.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-24 c:\windows\Tasks\User_Feed_Synchronization-{5E3C19EF-DBCE-4364-A1C2-F2F42992C113}.job - c:\windows\system32\msfeedssync.exe [2011-04-25 04:43] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-03-06 23:15 135408 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "combofix"="c:\combofix\CF30988.3XE" [2008-01-21 363008] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm Trusted Zone: line6.net TCP: DhcpNameServer = 192.168.2.1 CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll FF - ProfilePath - c:\users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - user.js: extensions.Softonic.rvrtMsg - Click Yes to keep current home page and default search settings, Click No to restore original settings FF - user.js: extensions.Softonic.autoRvrt - false FF - user.js: extensions.Softonic_i.newTab - false FF - user.js: extensions.Softonic.tlbrSrchUrl - hxxp://search.softonic.com/MON00086/tb_v1?SearchSource=1&cc=&q= FF - user.js: extensions.Softonic.id - e09b182d00000000000000225f97fb00 FF - user.js: extensions.Softonic.instlDay - 15447 FF - user.js: extensions.Softonic.vrsn - 1.5.21.0 FF - user.js: extensions.Softonic.vrsni - 1.5.21.0 FF - user.js: extensions.Softonic_i.vrsnTs - 1.5.21.022:00 FF - user.js: extensions.Softonic.prtnrId - softonic FF - user.js: extensions.Softonic.prdct - Softonic FF - user.js: extensions.Softonic.aflt - SD FF - user.js: extensions.Softonic_i.smplGrp - none FF - user.js: extensions.Softonic.tlbrId - base FF - user.js: extensions.Softonic.instlRef - MON00086 FF - user.js: extensions.Softonic.dfltLng - nl FF - user.js: extensions.Softonic.excTlbr - false FF - user.js: extensions.Softonic.admin - false . - - - - ORPHANS VERWIJDERD - - - - . Wow6432Node-HKCU-Run-AdobeBridge - (no file) Wow6432Node-HKCU-Run-WMPNSCFG - c:\program files (x86)\Windows Media Player\WMPNSCFG.exe Wow6432Node-HKLM-Run-FAStartup - (no file) AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}] @Denied: (A 2) (Everyone) . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0] @="Shockwave Flash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}] @Denied: (A 2) (Everyone) @="" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0] @="FlashBroker" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes] "SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59, 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\ . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Dell\DellDock\DockLogin.exe c:\program files\Alwil Software\Avast5\AvastSvc.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\program files (x86)\Bonjour\mDNSResponder.exe c:\program files (x86)\Digidesign\Drivers\MMERefresh.exe c:\program files (x86)\Sensible Vision\Fast Access\FAService.exe c:\program files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe c:\program files (x86)\CDBurnerXP\NMSAccessU.exe c:\program files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe c:\windows\SysWOW64\PnkBstrA.exe c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE c:\program files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe . ************************************************************************** . Voltooingstijd: 2012-05-24 22:45:41 - machine werd herstart ComboFix-quarantined-files.txt 2012-05-24 20:45 . Pre-Run: 6.015.393.792 bytes beschikbaar Post-Run: 5.039.677.440 bytes beschikbaar . - - End Of File - - F25894FCE80DA338F30A2BBEE3AD0AC8
  • Ik moet overigens zeggen dat ik nu al verschil merk, de processor staat niet meer constant boven de 60%
  • Mooi, doe dan nu het volgende: [b:783e023337]Welk programma[/b:783e023337]: [color=#008000:783e023337][b:783e023337]Emsisoft Emergency Kit 1.0[/b:783e023337][/color:783e023337] [b:783e023337]Waarvoor/waarom[/b:783e023337]: Detecteert en verwijdert malware [b:783e023337]Moeilijkheidsgraad[/b:783e023337]: geen. Download: [b:783e023337][url=http://download11.emsisoft.com/EmsisoftEmergencyKit.zip][color=#FF0000:783e023337]Emsisoft Emergency Kit[/color:783e023337][/url][/b:783e023337] [b:783e023337]Opmerkingen[/b:783e023337]:[list:783e023337][*:783e023337]de download is gecomprimeerd, pak EmsisoftEmergencyKit.zip uit en plaats de nieuwe map op het bureaublad. [*:783e023337]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:783e023337] [b:783e023337]Emsisoft Emergency Kit opstarten[/b:783e023337] door de map "[b:783e023337]EmsisoftEmergencyKit[/b:783e023337]" te openen [list:783e023337][list:783e023337][*:783e023337][b:783e023337][color=#0000FF:783e023337]Windows 2000[/color:783e023337][/b:783e023337] en [color=#0000FF:783e023337][b:783e023337]Windows XP[/b:783e023337][/color:783e023337]: dubbelklik op "Start.exe". [*:783e023337][color=#0000FF:783e023337][b:783e023337]Windows Vista[/b:783e023337][/color:783e023337] en [color=#0000FF:783e023337][b:783e023337]Windows 7[/b:783e023337][/color:783e023337]: via rechtsklik op "Start.exe" en kies voor "Als Administrator uitvoeren".[/list:u:783e023337][/list:u:783e023337] [b:783e023337]Scannen[/b:783e023337]: [list:783e023337][*:783e023337] Klik nu in het keuzescherm op "[b:783e023337]Emergency Kit Scanner[/b:783e023337]" en aansluitend komt dan de melding, dat het is aanbevolen om eerst te updaten. [img:783e023337]http://www.imgdumper.nl/uploads5/4f8d1a3bd534a/4f8d1a3bd3fbd-EmsisoftEK11.jpg[/img:783e023337] [*:783e023337]Doe dit dan ook door te klikken op "[b:783e023337]Ja[/b:783e023337]" [*:783e023337]Wanneer het updaten gereed is volgt de melding "[b:783e023337]Update proces is succesvol afgerond[/b:783e023337]" [*:783e023337]Klik nu op"[b:783e023337]Menu[/b:783e023337]" en dan op "[b:783e023337]Scan PC[/b:783e023337]" [*:783e023337] Selecteer de optie "[b:783e023337]Diep[/b:783e023337]" als deze niet standaard al zo is ingesteld. [*:783e023337] Klik aansluitend op de knop "[b:783e023337]Scan[/b:783e023337]" [list:783e023337][*:783e023337]Wees geduldig en doe verder niets met de computer gedurende de scan, daar de scan geruime tijd kan duren.[/list:u:783e023337] [*:783e023337] Het venster met de waarschuwing over een verhoogd risico kan gesloten worden, wanneer de scan gereed is. [*:783e023337] Zorg ervoor dat alle gevonden items zijn aangevinkt en klik dan op de knop "[b:783e023337]Verwijder geselecteerde[/b:783e023337]" - dan zal de volgende melding komen: [img:783e023337]http://www.imgdumper.nl/uploads5/4f8d1a4d63784/4f8d1a4d61ffa-EmsisoftEK2.jpg[/img:783e023337] [*:783e023337]Klik aansluitend dus op "[b:783e023337]Ja[/b:783e023337]" [*:783e023337] Wanneer het verwijderen klaar is, klik dan op de knop "[b:783e023337]View report[/b:783e023337]" en selecteer het tekstbestand van deze scan met de naam zoals: [b:783e023337]a2scan_110730-111615.txt[/b:783e023337] [*:783e023337] Plaats de inhoud van dat LOG bestand straks in het nieuwe bericht.[/list:u:783e023337] [color=#008000:783e023337][b:783e023337]Notabene:[/b:783e023337][/color:783e023337] Herstart nu de computer.
  • Na een heerlijk pinksterweekend, hier het vervolg! Emsisoft Emergency Kit - Versie 1.0 Laatste Update: 29-5-2012 16:41:38 Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\, D:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 29-5-2012 16:41:56 c:\program files (x86)\MP3 Rocket Ontdekt: Trace.Directory.MP3 Rocket!A2 c:\program files (x86)\MP3 Rocket\lib Ontdekt: Trace.Directory.MP3 Rocket!A2 Value: HKEY_CLASSES_ROOT\CLSID\{0AF8185C-26D7-4607-A005-7D586B750C38}\InprocServer32 --> ThreadingModel Ontdekt: Trace.Registry.Blubster!A2 Value: HKEY_CLASSES_ROOT\CLSID\{5BF31631-3D94-4267-B6F4-0CE18B008928}\InprocServer32 --> ThreadingModel Ontdekt: Trace.Registry.Blubster!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0AF8185C-26D7-4607-A005-7D586B750C38}\InprocServer32 --> ThreadingModel Ontdekt: Trace.Registry.Blubster!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5BF31631-3D94-4267-B6F4-0CE18B008928}\InprocServer32 --> ThreadingModel Ontdekt: Trace.Registry.Blubster!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> FavSite Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> Maximized Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> StatusBar Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> ToolBar Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayIcon Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayName Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayVersion Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> NSIS:StartMenuDir Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> Publisher Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> UninstallString Ontdekt: Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> URLInfoAbout Ontdekt: Trace.Registry.BitLord 1.1!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:4 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:5 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:26 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:36 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:178 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:437 Ontdekt: Trace.TrackingCookie.eas.apm.emediate.eu!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:768 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:1091 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:2725 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:2951 Ontdekt: Trace.TrackingCookie.fl01.ct2.comclick!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:3438 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:5324 Ontdekt: Trace.TrackingCookie.zedo.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:7412 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:7722 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:9862 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:9863 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:10402 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:11377 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:11818 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:11819 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:13009 Ontdekt: Trace.TrackingCookie.fl01.ct2.comclick!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:15422 Ontdekt: Trace.TrackingCookie.ad.zanox.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:16069 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:16070 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:16193 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:16434 Ontdekt: Trace.TrackingCookie.ads.us.e-planning.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:20287 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:21346 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:24736 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:26120 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:27089 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:29193 Ontdekt: Trace.TrackingCookie.e2.emediate.se!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:31292 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:31305 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:31510 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:31512 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:36244 Ontdekt: Trace.TrackingCookie.eas4.emediate.eu!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:38722 Ontdekt: Trace.TrackingCookie.fr.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:38723 Ontdekt: Trace.TrackingCookie.fr.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:41911 Ontdekt: Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:42395 Ontdekt: Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:42474 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:45545 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:45985 Ontdekt: Trace.TrackingCookie.track.effiliation.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:45990 Ontdekt: Trace.TrackingCookie.track.effiliation.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:48903 Ontdekt: Trace.TrackingCookie.www.belstat.nl!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:50411 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:50483 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:51589 Ontdekt: Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:55627 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:55720 Ontdekt: Trace.TrackingCookie.www.belstat.nl!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:58408 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:66077 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:66084 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:66173 Ontdekt: Trace.TrackingCookie.zedo.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:73237 Ontdekt: Trace.TrackingCookie.fl01.ct2.comclick!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:76617 Ontdekt: Trace.TrackingCookie.www.etracker.de!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:77959 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:90202 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:92319 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:93398 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:93411 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:93412 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:100181 Ontdekt: Trace.TrackingCookie.casalemedia.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:100182 Ontdekt: Trace.TrackingCookie.casalemedia.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:100183 Ontdekt: Trace.TrackingCookie.casalemedia.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:100184 Ontdekt: Trace.TrackingCookie.casalemedia.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:100513 Ontdekt: Trace.TrackingCookie.d1.openx.org!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:101076 Ontdekt: Trace.TrackingCookie.www.etracker.de!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102414 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102415 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102448 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102614 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102711 Ontdekt: Trace.TrackingCookie.cookie.monster.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:102944 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:103535 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:103900 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:104977 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:105051 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:105138 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:105231 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:106175 Ontdekt: Trace.TrackingCookie.aol.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:106230 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:106236 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:110813 Ontdekt: Trace.TrackingCookie.wt.o.nytimes.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:114500 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:114501 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:114507 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:114584 Ontdekt: Trace.TrackingCookie.de.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:115538 Ontdekt: Trace.TrackingCookie.media!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120264 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120297 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120299 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120301 Ontdekt: Trace.TrackingCookie.adbrite.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120383 Ontdekt: Trace.TrackingCookie.stat.dealtime.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120440 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120517 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120815 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120832 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:120870 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:121838 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:123422 Ontdekt: Trace.TrackingCookie.www.belstat.nl!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:127897 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:127898 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:129082 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:129353 Ontdekt: Trace.TrackingCookie.www.zanox-affiliate.de!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:129387 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:133241 Ontdekt: Trace.TrackingCookie.tribalfusion.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:134391 Ontdekt: Trace.TrackingCookie.eas.apm.emediate.eu!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:134908 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:136785 Ontdekt: Trace.TrackingCookie.eas.apm.emediate.eu!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:136789 Ontdekt: Trace.TrackingCookie.track.adform.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:136790 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:136791 Ontdekt: Trace.TrackingCookie.track.adform.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:137693 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:140088 Ontdekt: Trace.TrackingCookie.www.etracker.de!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:140434 Ontdekt: Trace.TrackingCookie.www.etracker.de!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:140492 Ontdekt: Trace.TrackingCookie.statse.webtrendslive!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:140890 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:141000 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:141146 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:141683 Ontdekt: Trace.TrackingCookie.stat.onestat!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:142750 Ontdekt: Trace.TrackingCookie.adfarm1.adition.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:142751 Ontdekt: Trace.TrackingCookie.ad.zanox.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:142770 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:142772 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:143085 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:143086 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:144208 Ontdekt: Trace.TrackingCookie.eas.apm.emediate.eu!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:144487 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:144488 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:144970 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:144971 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:145300 Ontdekt: Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:145310 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\cookies.sqlite:145311 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-02.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-06.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-11.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-16.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-17.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-18.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-2.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-3.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-4.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-02.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-03.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-04.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-18.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-21.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-02.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-03.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-07.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-10.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-13.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-14.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-15.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-16.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-17.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-18.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-2.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-3.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-4.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-02.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-03.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-08.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-09.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-10.html Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\EmailLogFile.htm Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\SaveConfiguration.htm Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\StorageWindow.htm Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\TestOptions.htm Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\UserPreferences.htm Ontdekt: Virus.Win32.Virut!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Flash CS3 Professional Incl Keygen\Adobe Flash CS3 Professional Incl Keygen\_crack_\Keygen.exe Ontdekt: Riskware.Keygen.Adobe!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Flash CS3 Professional Incl Keygen\Adobe Flash CS3 Professional Incl Keygen\_crack_\zwt.nfo Ontdekt: Win32.SuspectCrc!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Photoshop CS4 Extended Keygen+Patch[h33t]MasterUploader\Keygen\Keygen_MasterUploader.exe Ontdekt: Win32.SuspectCrc!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Photoshop CS4 Extended Keygen+Patch[h33t]MasterUploader\Patch\adobe.photoshop.cs4.-patch.exe Ontdekt: Win32.SuspectCrc!IK C:\Program Files (x86)\BitLord\Downloads\Adobe.Photoshop.CS5.Extended.v12.Keygen.Only.EMBRACE-Deantjah.rar/Adobe.Photoshop.CS5.Extended.v12.Keygen.Only.EMBRACE-Deantjah\Keygen\keygen.exe Ontdekt: Riskware.Keygen.Adobe!IK C:\Program Files (x86)\BitLord\Downloads\XLN.Audio.Addictive.Drums.DVDR.HYBRID-AiRISO\air-xlnaadkgn.rar/Keygen.exe Ontdekt: possible-Threat.Keygen.Air!IK C:\Users\Wilmar\Adobe Dreamweaver CS5\Keygen\keygen.exe Ontdekt: Riskware.Keygen.Dreamweaver!IK C:\Users\Wilmar\Adobe Dreamweaver CS5\keygen.exe Ontdekt: Riskware.Keygen.Dreamweaver!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\a2.class Ontdekt: Exploit.Java.Blacole!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\C.class Ontdekt: Exploit.Java.Blacole!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\tc.class Ontdekt: Exploit.Java.Blacole!IK C:\Users\Wilmar\Documents\Music\Incomplete\JHXAZF55K76VORFXGFOFWDZYLHLRHVAG\Call of Duty 2\NOCD_EXE.rar/CoD2SP_s.exe Ontdekt: Riskware.Crack.CoD2!IK C:\Users\Wilmar\Documents\Music\limewire downloads\body bags saigon kicks .wma Ontdekt: Trojan-Downloader.WMA.Wimad!IK C:\Users\Wilmar\Downloads\all4wid270.exe Ontdekt: Virus.Win32.PEStealth!IK Gescand Bestanden: 1061157 Sporen: 409585 Cookies: 3204 Processen: 62 Gevonden Bestanden: 51 Sporen: 17 Cookies: 150 Processen: 0 Registersleutels: 0 Scan Geëindigd: 29-5-2012 20:56:10 Scantijd: 4:14:14 C:\Users\Wilmar\Downloads\all4wid270.exe Verwijderd Virus.Win32.PEStealth!IK C:\Users\Wilmar\Documents\Music\limewire downloads\body bags saigon kicks .wma Verwijderd Trojan-Downloader.WMA.Wimad!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\a2.class Verwijderd Exploit.Java.Blacole!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\C.class Verwijderd Exploit.Java.Blacole!IK C:\Users\Wilmar\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\51c69f47-7ae6c91e/ta\tc.class Verwijderd Exploit.Java.Blacole!IK C:\Program Files (x86)\BitLord\Downloads\XLN.Audio.Addictive.Drums.DVDR.HYBRID-AiRISO\air-xlnaadkgn.rar/Keygen.exe Verwijderd possible-Threat.Keygen.Air!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Flash CS3 Professional Incl Keygen\Adobe Flash CS3 Professional Incl Keygen\_crack_\zwt.nfo Verwijderd Win32.SuspectCrc!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Photoshop CS4 Extended Keygen+Patch[h33t]MasterUploader\Keygen\Keygen_MasterUploader.exe Verwijderd Win32.SuspectCrc!IK C:\Program Files (x86)\BitLord\Downloads\Adobe Photoshop CS4 Extended Keygen+Patch[h33t]MasterUploader\Patch\adobe.photoshop.cs4.-patch.exe Verwijderd Win32.SuspectCrc!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-02.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-06.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-11.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-16.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-17.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-1-18.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-2.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-3.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-2-4.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-02.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-03.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-04.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-18.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-3-21.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-02.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-03.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-07.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-10.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-13.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-14.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-15.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-16.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-17.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-4-18.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-2.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-3.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-5-4.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-02.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-03.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-08.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-09.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\ASMHelp-6-10.html Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\EmailLogFile.htm Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\SaveConfiguration.htm Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\StorageWindow.htm Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\TestOptions.htm Verwijderd Virus.Win32.Virut!IK C:\Program Files (x86)\Avid\Utilities\Avid Storage Manager\Help\UserPreferences.htm Verwijderd Virus.Win32.Virut!IK Verwijderd Bestanden: 46 Sporen: 0 Cookies: 0 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> FavSite In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> Maximized In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> StatusBar In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_CURRENT_USER\Software\BitLord\BitComet\AppWindow --> ToolBar In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayIcon In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayName In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> DisplayVersion In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> NSIS:StartMenuDir In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> Publisher In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> UninstallString In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitLord --> URLInfoAbout In Quarantaine Trace.Registry.BitLord 1.1!A2 Value: HKEY_CLASSES_ROOT\CLSID\{0AF8185C-26D7-4607-A005-7D586B750C38}\InprocServer32 --> ThreadingModel In Quarantaine Trace.Registry.Blubster!A2 Value: HKEY_CLASSES_ROOT\CLSID\{5BF31631-3D94-4267-B6F4-0CE18B008928}\InprocServer32 --> ThreadingModel In Quarantaine Trace.Registry.Blubster!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0AF8185C-26D7-4607-A005-7D586B750C38}\InprocServer32 --> ThreadingModel In Quarantaine Trace.Registry.Blubster!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5BF31631-3D94-4267-B6F4-0CE18B008928}\InprocServer32 --> ThreadingModel In Quarantaine Trace.Registry.Blubster!A2 c:\program files (x86)\MP3 Rocket In Quarantaine Trace.Directory.MP3 Rocket!A2 c:\program files (x86)\MP3 Rocket\lib In Quarantaine Trace.Directory.MP3 Rocket!A2 In Quarantaine Bestanden: 0 Sporen: 17 Cookies: 0
  • Wow, dat zijn een hoop keygens die jij gebruikt hebt. Weet dat keygen ontwerpers een bonus krijgen per geïnfekteerde Windows! Natuurlijk vermoedde ik al iets overigens, gezien de programma's in jouw Windows. Doe de ComboFix scan nogmaals. Het kan na opstarten van ComboFix gebeuren dat er een melding komt: - of ComboFix wil geupdated worden; - of ComboFix wil opnieuw gedownload worden. Post wederom de inhoud van het ComboFix-log.
  • Hehe dat klopt inderdaad. Maar Keygens zijn dus altijd onveilig? Zit er trouwens erg gevaarlijke Malware tussen? Hierbij het ComboFix log: ComboFix 12-05-30.02 - Wilmar 30-05-2012 13:16:29.2.2 - x64 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.4060.2810 [GMT 2:00] Gestart vanuit: c:\users\Wilmar\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2012-04-28 to 2012-05-30 )))))))))))))))))))))))))))))) . . 2012-05-30 11:29 . 2012-05-30 11:29 -------- d-----w- c:\users\Wilmar\AppData\Local\temp 2012-05-30 11:29 . 2012-05-30 11:29 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-05-30 11:11 . 2012-05-30 11:13 -------- d-----w- C:\32788R22FWJFW 2012-05-23 21:52 . 2012-05-23 21:56 -------- d-----w- C:\TDSSStarter 2012-05-22 23:57 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4894935E-59EA-4381-97D4-3C32D4E3864B}\mpengine.dll 2012-05-17 17:45 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Itnyh 2012-05-17 17:45 . 2012-05-17 17:45 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Sayc 2012-05-17 17:42 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Duogot 2012-05-12 18:13 . 2012-05-12 18:13 592824 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll 2012-05-12 18:13 . 2012-05-12 18:13 44472 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-03-06 23:15 . 2010-06-29 05:16 41184 ----a-w- c:\windows\avastSS.scr 2012-03-06 23:15 . 2010-02-23 16:01 201352 ----a-w- c:\windows\SysWow64\aswBoot.exe 2012-03-06 23:15 . 2011-01-13 17:35 258520 ----a-w- c:\windows\system32\aswBoot.exe 2012-03-06 23:04 . 2011-03-09 22:20 819032 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-03-06 23:04 . 2010-02-23 16:01 337240 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-03-06 23:02 . 2010-02-23 16:01 43864 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-03-06 23:01 . 2010-02-23 16:01 59224 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-03-06 23:01 . 2010-02-23 16:01 69976 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2012-03-06 23:01 . 2010-02-23 16:01 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys . . ((((((((((((((((((((((((((((( SnapShot@2012-05-24_20.40.36 ))))))))))))))))))))))))))))))))))))))))) . - 2008-01-21 03:20 . 2012-05-24 20:36 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2008-01-21 03:20 . 2012-05-30 10:58 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2008-01-21 03:20 . 2012-05-30 10:58 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2008-01-21 03:20 . 2012-05-24 20:36 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2008-01-21 03:20 . 2012-05-30 10:58 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2008-01-21 03:20 . 2012-05-24 20:36 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2008-01-21 02:23 . 2012-05-30 10:59 92600 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin + 2006-11-02 15:45 . 2012-05-30 10:59 99572 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin + 2009-08-19 11:47 . 2012-05-30 10:59 61230 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1633112034-484273548-1918387448-1000_UserData.bin + 2006-11-02 12:46 . 2012-05-30 11:04 99114 c:\windows\system32\perfc009.dat + 2009-08-19 11:47 . 2012-05-29 12:51 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-08-19 11:47 . 2012-05-29 12:51 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-08-19 11:47 . 2012-05-29 12:51 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-08-31 19:40 . 2012-05-30 10:56 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-08-31 19:40 . 2012-05-24 20:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-08-31 19:40 . 2012-05-30 10:56 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-08-31 19:40 . 2012-05-24 20:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2012-05-28 15:37 . 2012-05-28 15:37 9560 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_48.bin + 2012-05-28 15:37 . 2012-05-28 15:37 4280 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_32.bin + 2012-05-28 15:37 . 2012-05-28 15:37 2456 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_24.bin + 2012-05-30 10:56 . 2012-05-30 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2012-05-24 20:36 . 2012-05-24 20:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-05-30 10:56 . 2012-05-30 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2012-05-24 20:36 . 2012-05-24 20:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2009-08-14 01:15 . 2012-05-29 19:16 1660 c:\windows\bthservsdp.dat - 2009-08-14 01:15 . 2012-05-24 20:34 1660 c:\windows\bthservsdp.dat + 2009-08-25 21:01 . 2012-05-28 22:24 469960 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin + 2009-08-19 12:30 . 2012-05-29 12:37 618502 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin - 2008-01-21 08:09 . 2012-05-24 05:28 667352 c:\windows\system32\perfh013.dat + 2008-01-21 08:09 . 2012-05-30 11:04 667352 c:\windows\system32\perfh013.dat + 2006-11-02 12:46 . 2012-05-30 11:04 585042 c:\windows\system32\perfh009.dat + 2008-01-21 08:09 . 2012-05-30 11:04 126854 c:\windows\system32\perfc013.dat - 2008-01-21 08:09 . 2012-05-24 05:28 126854 c:\windows\system32\perfc013.dat - 2009-08-29 22:55 . 2012-05-23 19:32 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2009-08-29 22:55 . 2012-05-25 15:24 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2011-10-03 02:05 . 2012-05-29 19:16 2671248 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat - 2011-10-03 02:05 . 2012-05-24 20:35 2671248 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] 2012-03-15 13:57 242384 ----a-w- c:\program files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{5018CFD2-804D-4C99-9F81-25EAEA2769DE}"= "c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll" [2012-03-15 250576] . [HKEY_CLASSES_ROOT\clsid\{5018cfd2-804d-4c99-9f81-25eaea2769de}] [HKEY_CLASSES_ROOT\Softonic.dskBnd.1] [HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] [HKEY_CLASSES_ROOT\Softonic.dskBnd] . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-05 39408] "KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-05-04 21392] "KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2012-05-04 955792] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "FATrayAlert"="c:\program files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" [2008-09-05 95488] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-05-04 3521424] "FAStartup"="" [BU] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-5-28 1320288] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\FastAccess] 2008-09-05 22:16 140544 ----a-w- c:\program files (x86)\Sensible Vision\Fast Access\FALogNot.dll . S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [x] . . Inhoud van de 'Gedeelde Taken' map . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000Core.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000UA.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-29 c:\windows\Tasks\User_Feed_Synchronization-{5E3C19EF-DBCE-4364-A1C2-F2F42992C113}.job - c:\windows\system32\msfeedssync.exe [2011-04-25 04:43] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-03-06 23:15 135408 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm Trusted Zone: line6.net TCP: DhcpNameServer = 192.168.1.1 CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll FF - ProfilePath - c:\users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - user.js: extensions.Softonic.rvrtMsg - Click Yes to keep current home page and default search settings, Click No to restore original settings FF - user.js: extensions.Softonic.autoRvrt - false FF - user.js: extensions.Softonic_i.newTab - false FF - user.js: extensions.Softonic.tlbrSrchUrl - hxxp://search.softonic.com/MON00086/tb_v1?SearchSource=1&cc=&q= FF - user.js: extensions.Softonic.id - e09b182d00000000000000225f97fb00 FF - user.js: extensions.Softonic.instlDay - 15447 FF - user.js: extensions.Softonic.vrsn - 1.5.21.0 FF - user.js: extensions.Softonic.vrsni - 1.5.21.0 FF - user.js: extensions.Softonic_i.vrsnTs - 1.5.21.022:00 FF - user.js: extensions.Softonic.prtnrId - softonic FF - user.js: extensions.Softonic.prdct - Softonic FF - user.js: extensions.Softonic.aflt - SD FF - user.js: extensions.Softonic_i.smplGrp - none FF - user.js: extensions.Softonic.tlbrId - base FF - user.js: extensions.Softonic.instlRef - MON00086 FF - user.js: extensions.Softonic.dfltLng - nl FF - user.js: extensions.Softonic.excTlbr - false FF - user.js: extensions.Softonic.admin - false . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}] @Denied: (A 2) (Everyone) . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0] @="Shockwave Flash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}] @Denied: (A 2) (Everyone) @="" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0] @="FlashBroker" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes] "SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59, 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\ . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2012-05-30 13:31:31 ComboFix-quarantined-files.txt 2012-05-30 11:31 ComboFix2.txt 2012-05-24 20:45 . Pre-Run: 3.937.763.328 bytes beschikbaar Post-Run: 3.827.765.248 bytes beschikbaar . - - End Of File - - 8E30E1BDACCD88437375E0EE81E5C4B3
  • Hoi, keygens zijn altijd gevaarlijk. Mede dankzij keygens en cracks enz. beloopt in Europa de internetcrminele omzet in de miljarden euro's. Dus er is grof geld verdienen mee gemoeid. En dan download je software via Softonic. Niet meer doen, tenzij je het leuk vindt, dat Softonic behalve de Software die jij wil hebben heimelijk ook andere dingen in jouw Windows installeert om je te bespioneren! Meer info: https://www.emsisoft.com/en/kb/articles/tec120224/ Open een nieuw kladblok (of anders: notepad) bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:1c0f453241]Kladblok (of Notepad)[/b:1c0f453241]". Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster [b:1c0f453241][color=#0000FF:1c0f453241]ClearJavaCache:: Folder:: c:\program files (x86)\Softonic Firefox:: FF - ProfilePath - c:\users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\ FF - user.js: extensions.Softonic.rvrtMsg - Click Yes to keep current home page and default search settings, Click No to restore original settings FF - user.js: extensions.Softonic.autoRvrt - false FF - user.js: extensions.Softonic_i.newTab - false FF - user.js: extensions.Softonic.tlbrSrchUrl - hxxp://search.softonic.com/MON00086/tb_v1?SearchSource=1&cc=&q= FF - user.js: extensions.Softonic.id - e09b182d00000000000000225f97fb00 FF - user.js: extensions.Softonic.instlDay - 15447 FF - user.js: extensions.Softonic.vrsn - 1.5.21.0 FF - user.js: extensions.Softonic.vrsni - 1.5.21.0 FF - user.js: extensions.Softonic_i.vrsnTs - 1.5.21.022:00 FF - user.js: extensions.Softonic.prtnrId - softonic FF - user.js: extensions.Softonic.prdct - Softonic FF - user.js: extensions.Softonic.aflt - SD FF - user.js: extensions.Softonic_i.smplGrp - none FF - user.js: extensions.Softonic.tlbrId - base FF - user.js: extensions.Softonic.instlRef - MON00086 FF - user.js: extensions.Softonic.dfltLng - nl FF - user.js: extensions.Softonic.excTlbr - false FF - user.js: extensions.Softonic.admin - false Registry:: [-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] 2012-03-15 13:57 242384 ----a-w- c:\program files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{5018CFD2-804D-4C99-9F81-25EAEA2769DE}"= "c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll" [2012-03-15 250576] [-HKEY_CLASSES_ROOT\clsid\{5018cfd2-804d-4c99-9f81-25eaea2769de}] [-HKEY_CLASSES_ROOT\Softonic.dskBnd.1] [-HKEY_CLASSES_ROOT\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] [-HKEY_CLASSES_ROOT\Softonic.dskBnd] [/color:1c0f453241][/b:1c0f453241] Sla dit kladblokbestand op je bureaublad op als [b:1c0f453241]CFScript.txt[/b:1c0f453241]. [b:1c0f453241][color=#FF0000:1c0f453241]Nu eerst de antivirus en eventuele spywarescanners deaktiveren![/color:1c0f453241][/b:1c0f453241] [color=#008000:1c0f453241][b:1c0f453241]Zorg ook ervoor dat alle andere openstaande vensters gesloten zijn, ook de webbrowser.[/b:1c0f453241][/color:1c0f453241] Sleep CFScript.txt in ComboFix.exe [img:1c0f453241]http://crew.nucia.eu/smeenk/CFScript.gif[/img:1c0f453241] Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt. Post het Combofix-log dat na het opnieuw starten wordt getoond. Ingeval Combofix je computer opnieuw heeft opgestart (of jij dat hebt gedaan), vindt je het log ook in [b:1c0f453241]C:\Combofix.txt[/b:1c0f453241] [b:1c0f453241]Belangrijke opmerking[/b:1c0f453241]: [list:1c0f453241][*:1c0f453241][b:1c0f453241][color=#FF0000:1c0f453241]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:1c0f453241][/b:1c0f453241] [*:1c0f453241][b:1c0f453241][color=#0000FF:1c0f453241]Illegal operation attempted on a registery key that has been marked for deletion.[/color:1c0f453241][/b:1c0f453241] [*:1c0f453241][b:1c0f453241][color=#FF0000:1c0f453241]Start dan de computer opnieuw op.[/color:1c0f453241][/b:1c0f453241][/list:u:1c0f453241]
  • Ok bedankt voor de informatie, ik heb nooit geweten dat keygens zo gevaarlijk waren. Ja dat Softonic, daar zal ik voortaan vele muisklikken van weg blijven. Hierbij de nieuwe log: ComboFix 12-05-30.02 - Wilmar 30-05-2012 20:43:46.3.2 - x64 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.4060.2310 [GMT 2:00] Gestart vanuit: c:\users\Wilmar\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Wilmar\Desktop\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\Softonic c:\program files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll c:\program files (x86)\Softonic\Softonic\1.5.21.0\escortShld.dll c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicApp.dll c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicEng.dll c:\program files (x86)\Softonic\Softonic\1.5.21.0\Softonicsrv.exe c:\program files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll c:\program files (x86)\Softonic\Softonic\1.5.21.0\uninstall.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2012-04-28 to 2012-05-30 )))))))))))))))))))))))))))))) . . 2012-05-30 18:52 . 2012-05-30 18:52 -------- d-----w- c:\users\Wilmar\AppData\Local\temp 2012-05-30 18:52 . 2012-05-30 18:52 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-05-30 11:11 . 2012-05-30 18:39 -------- d-----w- C:\32788R22FWJFW 2012-05-23 21:52 . 2012-05-23 21:56 -------- d-----w- C:\TDSSStarter 2012-05-22 23:57 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4894935E-59EA-4381-97D4-3C32D4E3864B}\mpengine.dll 2012-05-17 17:45 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Itnyh 2012-05-17 17:45 . 2012-05-17 17:45 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Sayc 2012-05-17 17:42 . 2012-05-22 19:00 -------- d-----w- c:\users\Wilmar\AppData\Roaming\Duogot 2012-05-12 18:13 . 2012-05-12 18:13 592824 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll 2012-05-12 18:13 . 2012-05-12 18:13 44472 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-03-06 23:15 . 2010-06-29 05:16 41184 ----a-w- c:\windows\avastSS.scr 2012-03-06 23:15 . 2010-02-23 16:01 201352 ----a-w- c:\windows\SysWow64\aswBoot.exe 2012-03-06 23:15 . 2011-01-13 17:35 258520 ----a-w- c:\windows\system32\aswBoot.exe 2012-03-06 23:04 . 2011-03-09 22:20 819032 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-03-06 23:04 . 2010-02-23 16:01 337240 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-03-06 23:02 . 2010-02-23 16:01 43864 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-03-06 23:01 . 2010-02-23 16:01 59224 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-03-06 23:01 . 2010-02-23 16:01 69976 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2012-03-06 23:01 . 2010-02-23 16:01 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys . . ((((((((((((((((((((((((((((( SnapShot@2012-05-24_20.40.36 ))))))))))))))))))))))))))))))))))))))))) . - 2008-01-21 03:20 . 2012-05-24 20:36 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2008-01-21 03:20 . 2012-05-30 15:21 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2008-01-21 03:20 . 2012-05-30 15:21 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2008-01-21 03:20 . 2012-05-24 20:36 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2008-01-21 03:20 . 2012-05-30 15:21 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2008-01-21 03:20 . 2012-05-24 20:36 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2008-01-21 02:23 . 2012-05-30 10:59 92600 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin + 2006-11-02 15:45 . 2012-05-30 10:59 99572 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin + 2009-08-19 11:47 . 2012-05-30 10:59 61230 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1633112034-484273548-1918387448-1000_UserData.bin + 2006-11-02 12:46 . 2012-05-30 11:04 99114 c:\windows\system32\perfc009.dat + 2009-08-19 11:47 . 2012-05-30 15:08 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-08-19 11:47 . 2012-05-30 15:08 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-08-19 11:47 . 2012-05-30 15:08 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-08-19 11:47 . 2012-05-23 19:35 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-09-05 16:08 . 2012-05-25 06:07 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-09-05 16:08 . 2012-05-24 05:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-08-31 19:40 . 2012-05-30 10:56 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-08-31 19:40 . 2012-05-24 20:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-08-31 19:40 . 2012-05-30 10:56 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-08-31 19:40 . 2012-05-24 20:36 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2012-05-28 15:37 . 2012-05-28 15:37 9560 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_48.bin + 2012-05-28 15:37 . 2012-05-28 15:37 4280 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_32.bin + 2012-05-28 15:37 . 2012-05-28 15:37 2456 c:\windows\system32\networklist\icons\{15D380D1-28EA-48AE-A152-02124DE6E6D7}_24.bin + 2012-05-30 10:56 . 2012-05-30 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2012-05-24 20:36 . 2012-05-24 20:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-05-30 10:56 . 2012-05-30 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2012-05-24 20:36 . 2012-05-24 20:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2009-08-14 01:15 . 2012-05-29 19:16 1660 c:\windows\bthservsdp.dat - 2009-08-14 01:15 . 2012-05-24 20:34 1660 c:\windows\bthservsdp.dat + 2009-08-25 21:01 . 2012-05-28 22:24 469960 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin + 2009-08-19 12:30 . 2012-05-30 14:58 618510 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin - 2008-01-21 08:09 . 2012-05-24 05:28 667352 c:\windows\system32\perfh013.dat + 2008-01-21 08:09 . 2012-05-30 11:04 667352 c:\windows\system32\perfh013.dat + 2006-11-02 12:46 . 2012-05-30 11:04 585042 c:\windows\system32\perfh009.dat + 2008-01-21 08:09 . 2012-05-30 11:04 126854 c:\windows\system32\perfc013.dat - 2008-01-21 08:09 . 2012-05-24 05:28 126854 c:\windows\system32\perfc013.dat - 2009-08-29 22:55 . 2012-05-23 19:32 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2009-08-29 22:55 . 2012-05-25 15:24 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2011-10-03 02:05 . 2012-05-29 19:16 2671248 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat - 2011-10-03 02:05 . 2012-05-24 20:35 2671248 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 94208 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-05 39408] "KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-05-04 21392] "KiesHelper"="c:\program files (x86)\Samsung\Kies\KiesHelper.exe" [2012-05-04 955792] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "FATrayAlert"="c:\program files (x86)\Sensible Vision\Fast Access\FATrayMon.exe" [2008-09-05 95488] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-05-04 3521424] "FAStartup"="" [BU] . c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-5-28 1320288] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\FastAccess] 2008-09-05 22:16 140544 ----a-w- c:\program files (x86)\Sensible Vision\Fast Access\FALogNot.dll . S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [x] . . Inhoud van de 'Gedeelde Taken' map . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2009-08-20 00:17] . 2012-05-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000Core.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000UA.job - c:\users\Wilmar\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-22 05:19] . 2012-05-30 c:\windows\Tasks\User_Feed_Synchronization-{5E3C19EF-DBCE-4364-A1C2-F2F42992C113}.job - c:\windows\system32\msfeedssync.exe [2011-04-25 04:43] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-03-06 23:15 135408 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2011-02-18 05:12 97792 ----a-w- c:\users\Wilmar\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm Trusted Zone: line6.net TCP: DhcpNameServer = 192.168.1.1 CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll FF - ProfilePath - c:\users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q= . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-Softonic - c:\program files (x86)\Softonic\Softonic\1.5.21.0\uninstall.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}] @Denied: (A 2) (Everyone) . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0] @="Shockwave Flash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}] @Denied: (A 2) (Everyone) @="" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0] @="FlashBroker" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes] "SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59, 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\ . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2012-05-30 20:55:00 ComboFix-quarantined-files.txt 2012-05-30 18:55 ComboFix2.txt 2012-05-30 11:31 ComboFix3.txt 2012-05-24 20:45 . Pre-Run: 3.373.072.384 bytes beschikbaar Post-Run: 2.328.268.800 bytes beschikbaar . - - End Of File - - A4644D3BBBAEDD749CE2B6DB7F889443
  • Nu wil ik eerst graag van je weten hoe jouw Windows inmiddels draait.
  • In principe draait hij nu beter dan dat hij lange tijd heeft gedaan. Hij is vooral heel wat stiller en het CPU gebruik is enorm gedaalt. Is hij nu weer helemaal schoon? Wat zijn belangrijke dingen om dit te voorkomen, kan er bijvoorbeeld al zoiets gebeuren bij het downloaden van een film, of muziek, of zal dat minder vaak voorkomen?
  • Hoi, og Windows schoon is zal nog blijken. Ik ga ervan uit, dat we op de goede weg zijn. [b:0c2a1e6890]Welk programma[/b:0c2a1e6890]: [color=#008000:0c2a1e6890][b:0c2a1e6890]OTL.com[/b:0c2a1e6890][/color:0c2a1e6890] [b:0c2a1e6890]Waarvoor/waarom[/b:0c2a1e6890]: multifunktioneel tool - analyse en fix [b:0c2a1e6890]Moeilijkheidsgraad[/b:0c2a1e6890]: geen. [b:0c2a1e6890]Download[/b:0c2a1e6890]: [url=http://oldtimer.geekstogo.com/OTL.com][b:0c2a1e6890][color=red:0c2a1e6890]OTL[/color:0c2a1e6890][/b:0c2a1e6890][/url] en plaats het bestand op het bureaublad. [b:0c2a1e6890][color=#008000:0c2a1e6890]OTL.com[/color:0c2a1e6890] gebruiken[/b:0c2a1e6890]: [list:0c2a1e6890][*:0c2a1e6890] [b:0c2a1e6890][color=#0000FF:0c2a1e6890]Sluit nu eerst alle nog openstaande programmavensters![/color:0c2a1e6890][/b:0c2a1e6890] [list:0c2a1e6890][*:0c2a1e6890]Dubblklik op [img:0c2a1e6890]http://www.imgdumper.nl/uploads5/4f91108799372/4f91108798ba0-OTL-1.png[/img:0c2a1e6890] [/list:u:0c2a1e6890][/list:u:0c2a1e6890] [list:0c2a1e6890][*:0c2a1e6890]Zet een vinkje bij [color=#0000FF:0c2a1e6890][b:0c2a1e6890]Scan All Users[/b:0c2a1e6890][/color:0c2a1e6890]. [*:0c2a1e6890]Klik op [img:0c2a1e6890]http://www.imgdumper.nl/uploads5/4f9112fd1172c/4f9112fd11340-OTL-3.png[/img:0c2a1e6890]. [*:0c2a1e6890]Verander verder geen andere instellingen in OTL, alleen tenzij ik hiervoor specifiek instructies geef. [*:0c2a1e6890]De scan zal niet heel erg lang duren. [list:0c2a1e6890][*:0c2a1e6890]Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is: [b:0c2a1e6890]OTL.Txt[/b:0c2a1e6890] en [b:0c2a1e6890]Extras.txt[/b:0c2a1e6890]. [*:0c2a1e6890]Kopieer vervolgens de inhoud van zowel OTL.txt alsmede Extras.txt en plak die gegevens in je volgende bericht.[/list:u:0c2a1e6890] [*:0c2a1e6890][color=#008000:0c2a1e6890][b:0c2a1e6890]Notabene:[/b:0c2a1e6890][/color:0c2a1e6890] indien het log niet in één bericht past, spreidt het dan over twee of meer berichten.[/list:u:0c2a1e6890]
  • Ok dan gaan we door. Hier OTL.txt OTL logfile created on: 31-5-2012 14:10:47 - Run 1 OTL by OldTimer - Version 3.2.44.0 Folder = C:\Users\Wilmar\Desktop 64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.19048) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,96 Gb Total Physical Memory | 2,28 Gb Available Physical Memory | 57,47% Memory free 4,97 Gb Paging File | 3,39 Gb Available in Paging File | 68,19% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 451,07 Gb Total Space | 1,71 Gb Free Space | 0,38% Space Free | Partition Type: NTFS Drive D: | 14,65 Gb Total Space | 7,72 Gb Free Space | 52,73% Space Free | Partition Type: NTFS Drive F: | 527,50 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PC_VAN_WILMAR | User Name: Wilmar | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717:6dc9e4da42]========== Processes (SafeList) ==========[/color:6dc9e4da42] PRC - [2012-05-31 14:08:05 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Wilmar\Desktop\OTL.com PRC - [2012-05-04 07:37:00 | 003,521,424 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe PRC - [2012-03-07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011-02-03 04:36:07 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2010-05-05 00:58:36 | 000,077,824 | ---- | M] (Avid Technology, Inc.) -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe PRC - [2010-03-06 04:04:24 | 000,310,224 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe PRC - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe PRC - [2009-10-04 12:02:23 | 002,521,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe PRC - [2009-04-17 17:17:02 | 000,636,144 | ---- | M] (SoftThinks) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe PRC - [2008-12-18 21:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe PRC - [2008-12-09 15:20:44 | 000,960,512 | ---- | M] (Moyea Software Co., Ltd.) -- C:\Program Files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe PRC - [2008-09-06 00:17:08 | 001,836,288 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe PRC - [2008-09-06 00:17:08 | 000,095,488 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe PRC - [2008-09-06 00:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe [color=#E56717:6dc9e4da42]========== Modules (No Company Name) ==========[/color:6dc9e4da42] MOD - [2008-09-06 00:16:36 | 000,233,216 | ---- | M] () -- C:\Windows\SysWOW64\FACrashRpt.dll MOD - [2008-09-06 00:16:36 | 000,059,136 | ---- | M] () -- C:\Windows\SysWOW64\FAib.dll MOD - [2008-09-06 00:16:20 | 000,087,296 | ---- | M] () -- C:\Windows\SysWOW64\FAIEExtension.dll [color=#E56717:6dc9e4da42]========== Win32 Services (SafeList) ==========[/color:6dc9e4da42] SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2010-09-25 03:26:03 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-10 19:27:04 | 000,211,968 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-29 22:25:18 | 000,268,288 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe -- (STacSV) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-29 22:24:46 | 000,089,600 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe -- (AESTFilters) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-12-18 21:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:51:33 | 000,067,072 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\Mcx2Svc.dll -- (Mcx2Svc) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:48:26 | 000,088,064 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\mprdim.dll -- (RemoteAccess) SRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:32 | 000,383,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2012-02-29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011-02-03 04:36:07 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2010-05-05 00:58:36 | 000,077,824 | ---- | M] (Avid Technology, Inc.) [Auto | Running] -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe -- (DigiRefresh) SRV - [2010-03-04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-12-05 18:09:24 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service) SRV - [2009-04-17 17:17:02 | 000,636,144 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService) SRV - [2008-12-09 15:20:44 | 000,960,512 | ---- | M] (Moyea Software Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\Moyea\Moyea Task Dispatcher\mtd.exe -- (MoyeaTaskDispatcher) SRV - [2008-09-06 00:16:54 | 002,340,096 | ---- | M] (Sensible Vision ) [Auto | Running] -- C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe -- (FAService) SRV - [2008-07-27 20:03:13 | 000,069,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-01-21 04:49:09 | 000,068,608 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\mprdim.dll -- (RemoteAccess) [color=#E56717:6dc9e4da42]========== Driver Services (SafeList) ==========[/color:6dc9e4da42] DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:04:06 | 000,819,032 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:04:04 | 000,337,240 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:02:05 | 000,043,864 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:01:57 | 000,059,224 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:01:52 | 000,069,976 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2012-03-07 01:01:32 | 000,024,408 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-12-23 12:36:04 | 000,105,592 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Tpkd.sys -- (Tpkd) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-11-12 14:48:56 | 000,005,504 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\StarOpen.sys -- (StarOpen) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-09-07 23:28:23 | 000,082,816 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\pcouffin.sys -- (pcouffin) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-08-14 05:33:19 | 000,111,104 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-08-05 23:24:16 | 000,061,280 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\fssfltr.sys -- (fssfltr) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-07-09 12:16:16 | 000,048,640 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:54 | 000,151,592 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029unic.sys -- (s1029unic) Sony Ericsson Device 1029 USB Ethernet Emulation (WDM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:54 | 000,139,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029mgmt.sys -- (s1029mgmt) Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:54 | 000,135,208 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029obex.sys -- (s1029obex) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:52 | 000,158,760 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029mdm.sys -- (s1029mdm) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:52 | 000,034,856 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029nd5.sys -- (s1029nd5) Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:50 | 000,019,496 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029mdfl.sys -- (s1029mdfl) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-25 15:34:48 | 000,116,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\s1029bus.sys -- (s1029bus) Sony Ericsson Device 1029 driver (WDM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-10 19:28:36 | 000,110,904 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-10 19:27:08 | 005,209,600 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-10 19:27:08 | 005,209,600 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-02 05:43:24 | 000,009,216 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\errdev.sys -- (ErrDev) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-05-02 05:42:09 | 000,018,488 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\aliide.sys -- (aliide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-04-27 19:53:30 | 000,252,928 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink (TM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-29 22:25:34 | 000,477,696 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-19 16:34:18 | 000,029,544 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-08 17:06:00 | 000,319,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-03-06 07:33:58 | 000,159,840 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-02-24 19:35:44 | 000,255,552 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\mcdbus.sys -- (mcdbus) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2009-01-29 01:24:34 | 000,830,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\L6UX264.sys -- (L6UX2) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-12-31 04:00:22 | 000,172,032 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\CtClsFlt.sys -- (CtClsFlt) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-12-21 19:26:28 | 004,735,488 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NETw5v64.sys -- (NETw5v64) Intel(R) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-11-20 21:04:24 | 000,261,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\SynTP.sys -- (SynTP) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-08-24 18:24:28 | 000,059,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-08-02 23:36:16 | 000,243,840 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\facap.sys -- (FACAP) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-07-28 20:58:16 | 000,057,856 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-07-28 20:58:14 | 000,062,976 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-07-28 20:58:12 | 000,055,296 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-06-27 08:51:10 | 000,088,632 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-06-15 19:25:20 | 000,019,880 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\btwrchid.sys -- (btwrchid) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-06-15 19:25:14 | 000,036,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\btwl2cap.sys -- (btwl2cap) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-06-15 19:25:12 | 000,120,872 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-06-15 19:25:10 | 000,092,200 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:51:07 | 000,016,384 | ---- | M] () [Recognizer | System | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:50:38 | 000,299,520 | ---- | M] () [File_System | Disabled | Stopped] -- C:\Windows\SysNative\DRIVERS\udfs.sys -- (udfs) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:28 | 000,076,288 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ipmidrv.sys -- (IPMIDRV) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:28 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\wpdusb.sys -- (WpdUsb) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:28 | 000,035,896 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\i2omp.sys -- (i2omp) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:27 | 000,185,912 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\adpu320.sys -- (adpu320) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:27 | 000,024,120 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\wd.sys -- (Wd) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:26 | 000,128,056 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\mpio.sys -- (mpio) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:26 | 000,078,392 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sisraid4.sys -- (SiSRaid4) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:25 | 000,149,048 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\vsmraid.sys -- (vsmraid) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:25 | 000,029,696 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\DRIVERS\fdc.sys -- (fdc) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:04 | 000,113,720 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\msdsm.sys -- (msdsm) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:04 | 000,055,296 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\blbdrive.sys -- (blbdrive) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:01 | 000,113,720 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\lsi_scsi.sys -- (LSI_SCSI) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:47:00 | 000,091,192 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\arcsas.sys -- (arcsas) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:59 | 000,397,368 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\elxstor.sys -- (elxstor) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:59 | 000,290,872 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iastorv.sys -- (iaStorV) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:59 | 000,047,672 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\hpcisss.sys -- (HpCISSs) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:59 | 000,035,896 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\megasas.sys -- (megasas) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:59 | 000,026,624 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sermouse.sys -- (sermouse) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:56 | 000,438,328 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\megasr.sys -- (MegaSR) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:56 | 000,284,728 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\uliahci.sys -- (uliahci) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:56 | 000,105,016 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas.sys -- (LSI_SAS) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:56 | 000,045,624 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sisraid2.sys -- (SiSRaid2) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:55 | 000,317,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Stuurprogramma voor Intel(R) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:55 | 000,024,576 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\DRIVERS\flpydisk.sys -- (flpydisk) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:54 | 000,342,584 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\adpahci.sys -- (adpahci) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:54 | 000,128,056 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\nvraid.sys -- (nvraid) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:54 | 000,126,520 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\adpu160m.sys -- (adpu160m) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:54 | 000,054,328 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\nvstor.sys -- (nvstor) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:53 | 000,486,456 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\adp94xx.sys -- (adp94xx) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:52 | 001,221,176 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ql2300.sys -- (ql2300) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:52 | 000,174,696 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ulsata2.sys -- (ulsata2) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:52 | 000,090,680 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\arc.sys -- (arc) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:51 | 000,314,368 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\rdpdr.sys -- (rdpdr) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:51 | 000,113,720 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\lsi_fc.sys -- (LSI_FC) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:51 | 000,050,688 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\amdk8.sys -- (AmdK8) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:51 | 000,047,104 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\processr.sys -- (Processor) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:51 | 000,023,608 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\isapnp.sys -- (isapnp) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:50 | 000,019,512 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\intelide.sys -- (intelide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:50 | 000,018,024 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\viaide.sys -- (viaide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:50 | 000,018,024 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cmdide.sys -- (cmdide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:50 | 000,015,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\amdide.sys -- (amdide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-21 04:46:50 | 000,013,416 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\pciide.sys -- (pciide) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2008-01-09 12:28:20 | 000,034,032 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\seehcri.sys -- (seehcri) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2007-11-14 10:00:00 | 000,053,488 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:03:03 | 000,051,816 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\nfrd960.sys -- (nfrd960) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:52 | 000,049,256 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\symc8xx.sys -- (Symc8xx) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:47 | 000,048,232 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sym_u3.sys -- (Sym_u3) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:39 | 000,044,648 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iirsp.sys -- (iirsp) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:37 | 000,044,648 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sym_hi.sys -- (Sym_hi) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:24 | 000,039,016 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\mraid35x.sys -- (Mraid35x) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:09 | 000,037,480 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iteraid.sys -- (iteraid) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 14:02:09 | 000,037,480 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\iteatapi.sys -- (iteatapi) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 13:51:30 | 000,203,368 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\pcmcia.sys -- (pcmcia) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 13:50:54 | 000,148,072 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ulsata.sys -- (UlSata) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 13:50:27 | 000,124,008 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ql40xx.sys -- (ql40xx) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 13:50:06 | 000,090,216 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sbp2port.sys -- (sbp2port) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 13:50:06 | 000,088,168 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\djsvs.sys -- (aic78xx) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 11:43:46 | 000,079,360 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 11:43:40 | 000,024,064 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\usbohci.sys -- (usbohci) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 11:40:24 | 000,026,624 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\wacompen.sys -- (WacomPen) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 11:38:24 | 000,016,384 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\sfloppy.sys -- (sfloppy) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-11-02 10:43:25 | 000,086,528 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-09-18 23:30:18 | 000,047,104 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\brserwdm.sys -- (BrSerWdm) DRV:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - [2006-09-18 23:30:18 | 000,014,976 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\brusbmdm.sys -- (BrUsbMdm) DRV - [2009-11-12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen) DRV - [2009-10-05 16:10:42 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\aspi32.sys -- (Aspi32) DRV - [2009-02-24 19:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus) DRV - [2008-08-14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs) [color=#E56717:6dc9e4da42]========== Standard Registry (SafeList) ==========[/color:6dc9e4da42] [color=#E56717:6dc9e4da42]========== Internet Explorer ==========[/color:6dc9e4da42] IE:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.bing.com/ [binary data] IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://nl.msn.com/ IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..\SearchScopes,DefaultScope = {105E99FF-8B9A-4492-B155-06194B9056D2} IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=DLCDF7&pc=MDDC&src=IE-SearchBox IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..\SearchScopes\{105E99FF-8B9A-4492-B155-06194B9056D2}: "URL" = http://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q={searchTerms}&src={referrer:source?} IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7SKPB_nl IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717:6dc9e4da42]========== FireFox ==========[/color:6dc9e4da42] FF - prefs.js..browser.search.defaultenginename: "Bing" FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q=" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=DLCDF7&PC=MDDC&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Wilmar\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Wilmar\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012-03-29 00:37:58 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-05-12 20:13:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012-05-06 22:45:51 | 000,000,000 | ---D | M] [2009-11-09 23:13:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Wilmar\AppData\Roaming\mozilla\Extensions [2012-05-15 23:04:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Wilmar\AppData\Roaming\mozilla\Firefox\Profiles\ievvcx6i.default\extensions [2011-04-25 17:17:10 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Wilmar\AppData\Roaming\mozilla\Firefox\Profiles\ievvcx6i.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-05-15 23:04:02 | 000,000,000 | ---D | M] (softonic.com) -- C:\Users\Wilmar\AppData\Roaming\mozilla\Firefox\Profiles\ievvcx6i.default\extensions\ffxtlbra@softonic.com [2011-04-25 17:16:43 | 000,001,048 | ---- | M] () -- C:\Users\Wilmar\AppData\Roaming\Mozilla\Firefox\Profiles\ievvcx6i.default\searchplugins\bing.xml [2012-02-22 20:33:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2012-03-28 18:51:59 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-05-12 20:13:32 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2011-11-10 06:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2012-02-22 20:33:18 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012-02-22 20:33:18 | 000,001,892 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bolcom-nl.xml [2012-02-22 20:33:18 | 000,004,558 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\marktplaats-nl.xml [2010-01-01 10:00:00 | 000,001,111 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\vandale-nl.xml [2012-02-22 20:33:18 | 000,001,049 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-nl.xml [color=#E56717:6dc9e4da42]========== Chrome ==========[/color:6dc9e4da42] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Wilmar\AppData\Local\Google\Chrome\Application\19.0.1084.52\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Wilmar\AppData\Local\Google\Chrome\Application\19.0.1084.52\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Wilmar\AppData\Local\Google\Chrome\Application\19.0.1084.52\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.6.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: DivX Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: VLC Multimedia Plug-in (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - Extension: YouTube = C:\Users\Wilmar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google Zoeken = C:\Users\Wilmar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: avast! WebRep = C:\Users\Wilmar\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\ CHR - Extension: Gmail = C:\Users\Wilmar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-05-30 20:52:56 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software) O2:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg64.dll (Google Inc.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) O2 - BHO: (FAIESSOHelper Class) - {A2F122DA-055F-4df7-8F24-7354DBDBA85B} - C:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll (Sensible Vision ) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.) O3:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software) O3:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O4 - HKLM..\Run: [FAStartup] File not found O4 - HKLM..\Run: [FATrayAlert] C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe (Sensible Vision ) O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKU\S-1-5-21-1633112034-484273548-1918387448-1000..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe (Samsung) O4 - HKU\S-1-5-21-1633112034-484273548-1918387448-1000..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe () O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : Verzenden naar &Bluetooth-apparaat... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O10:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O15 - HKU\S-1-5-21-1633112034-484273548-1918387448-1000\..Trusted Domains: line6.net ([]* in Trusted sites) O16:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab (Image Uploader Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{42E65930-7178-445C-AA5D-8B110CF8690C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DA5A1ED1-8635-4B91-AA8E-75CFAA1139C1}: DhcpNameServer = 192.168.0.1 O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\livecall - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\ms-help - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\ms-itss - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\msnim - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\skype4com - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - Protocol\Handler\wlmailhtml - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\FastAccess: DllName - (C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll) - C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll () O24 - Desktop WallPaper: C:\Users\Wilmar\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\Wilmar\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..comfile [open] -- "%1" %* O35:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\...com [@ = ComFile] -- "%1" %* O37:[b:6dc9e4da42]64bit:[/b:6dc9e4da42] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717:6dc9e4da42]========== Files/Folders - Created Within 30 Days ==========[/color:6dc9e4da42] [2012-05-31 14:08:24 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Wilmar\Desktop\OTL.com [2012-05-30 20:55:02 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\AppData\Local\temp [2012-05-30 13:11:44 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW [2012-05-29 16:41:08 | 001,585,560 | ---- | C] (Emsi Software GmbH) -- C:\Users\Wilmar\Desktop\start.exe [2012-05-29 16:41:07 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\Desktop\Run [2012-05-29 16:41:07 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\Desktop\Languages [2012-05-25 19:21:58 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\Documents\Avid [2012-05-24 22:20:14 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2012-05-24 22:20:14 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2012-05-24 22:20:14 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2012-05-24 22:20:08 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2012-05-24 22:20:04 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-05-24 22:13:54 | 004,532,218 | R--- | C] (Swearware) -- C:\Users\Wilmar\Desktop\ComboFix.exe [2012-05-23 23:52:41 | 000,000,000 | ---D | C] -- C:\TDSSStarter [2012-05-23 22:13:41 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Wilmar\Desktop\dds.com [2012-05-22 21:27:03 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012-05-17 19:45:00 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\AppData\Roaming\Sayc [2012-05-17 19:45:00 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\AppData\Roaming\Itnyh [2012-05-17 19:42:34 | 000,000,000 | ---D | C] -- C:\Users\Wilmar\AppData\Roaming\Duogot [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717:6dc9e4da42]========== Files - Modified Within 30 Days ==========[/color:6dc9e4da42] [2012-05-31 14:08:05 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Wilmar\Desktop\OTL.com [2012-05-31 13:30:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000UA.job [2012-05-31 13:24:00 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012-05-31 12:58:25 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012-05-31 12:58:25 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012-05-31 06:24:00 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012-05-30 23:55:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-05-30 23:48:57 | 000,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012-05-30 23:48:57 | 000,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2012-05-30 21:30:00 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000Core.job [2012-05-30 20:52:56 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2012-05-30 19:01:08 | 000,000,468 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{5E3C19EF-DBCE-4364-A1C2-F2F42992C113}.job [2012-05-30 13:13:39 | 004,532,218 | R--- | M] (Swearware) -- C:\Users\Wilmar\Desktop\ComboFix.exe [2012-05-30 13:04:27 | 001,471,570 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012-05-30 13:04:27 | 000,667,352 | ---- | M] () -- C:\Windows\SysNative\perfh013.dat [2012-05-30 13:04:27 | 000,585,042 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012-05-30 13:04:27 | 000,126,854 | ---- | M] () -- C:\Windows\SysNative\perfc013.dat [2012-05-30 13:04:27 | 000,099,114 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012-05-30 12:56:49 | 4258,115,584 | -HS- | M] () -- C:\hiberfil.sys [2012-05-29 21:16:19 | 000,001,660 | ---- | M] () -- C:\Windows\bthservsdp.dat [2012-05-29 15:38:54 | 001,585,560 | ---- | M] (Emsi Software GmbH) -- C:\Users\Wilmar\Desktop\start.exe [2012-05-29 15:38:54 | 000,000,112 | ---- | M] () -- C:\Users\Wilmar\Desktop\autorun.inf [2012-05-29 15:38:44 | 000,000,056 | ---- | M] () -- C:\Users\Wilmar\Desktop\EmergencyKitScanner.bat [2012-05-29 15:38:42 | 000,000,060 | ---- | M] () -- C:\Users\Wilmar\Desktop\CommandlineScanner.bat [2012-05-25 19:23:17 | 000,105,984 | ---- | M] () -- C:\Users\Wilmar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-05-24 07:33:50 | 000,002,011 | ---- | M] () -- C:\Users\Wilmar\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2012-05-24 07:33:49 | 000,002,049 | ---- | M] () -- C:\Users\Wilmar\Desktop\Google Chrome.lnk [2012-05-23 23:48:18 | 000,093,184 | ---- | M] () -- C:\Users\Wilmar\Desktop\TDSSKStarter.exe [2012-05-23 22:05:53 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Wilmar\Desktop\dds.com [2012-05-22 00:23:48 | 000,007,836 | ---- | M] () -- C:\Users\Wilmar\AppData\Local\d3d9caps.dat [2012-05-21 23:15:29 | 000,000,732 | ---- | M] () -- C:\Users\Wilmar\AppData\Local\d3d9caps64.dat [2012-05-13 19:16:24 | 000,001,814 | ---- | M] () -- C:\Users\Wilmar\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk [2012-05-06 22:45:52 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X .lnk [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717:6dc9e4da42]========== Files Created - No Company Name ==========[/color:6dc9e4da42] [2012-05-29 16:41:08 | 000,000,112 | ---- | C] () -- C:\Users\Wilmar\Desktop\autorun.inf [2012-05-29 16:41:07 | 000,000,060 | ---- | C] () -- C:\Users\Wilmar\Desktop\CommandlineScanner.bat [2012-05-29 16:41:07 | 000,000,056 | ---- | C] () -- C:\Users\Wilmar\Desktop\EmergencyKitScanner.bat [2012-05-24 22:20:14 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2012-05-24 22:20:14 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2012-05-24 22:20:14 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2012-05-24 22:20:14 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2012-05-24 22:20:14 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2012-05-23 23:51:11 | 000,093,184 | ---- | C] () -- C:\Users\Wilmar\Desktop\TDSSKStarter.exe [2012-05-22 21:27:04 | 000,002,049 | ---- | C] () -- C:\Users\Wilmar\Desktop\Google Chrome.lnk [2012-05-22 21:27:04 | 000,002,011 | ---- | C] () -- C:\Users\Wilmar\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2012-05-22 21:25:19 | 000,000,912 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000UA.job [2012-05-22 21:25:17 | 000,000,860 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1633112034-484273548-1918387448-1000Core.job [2012-05-21 23:19:54 | 4258,115,584 | -HS- | C] () -- C:\hiberfil.sys [2012-05-06 22:45:52 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X .lnk [2012-05-06 22:45:52 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X .lnk [2011-09-16 11:54:48 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2011-09-16 11:54:44 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2011-09-16 11:54:44 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2011-09-16 11:54:44 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2011-09-16 11:54:44 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2011-03-21 16:36:28 | 000,000,732 | ---- | C] () -- C:\Users\Wilmar\AppData\Local\d3d9caps64.dat [2010-06-12 03:01:55 | 000,000,359 | ---- | C] () -- C:\Windows\CoDUO.INI [2010-06-12 01:30:13 | 000,000,745 | ---- | C] () -- C:\Windows\CoD.INI [color=#E56717:6dc9e4da42]========== LOP Check ==========[/color:6dc9e4da42] [2010-08-16 16:03:53 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Ableton [2011-12-08 23:38:30 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Audacity [2011-03-27 21:37:33 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Belastingdienst [2010-03-21 02:53:23 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Canneverbe Limited [2010-12-06 01:34:19 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2012-05-25 19:07:19 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Dropbox [2012-05-22 21:00:49 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Duogot [2010-08-07 00:13:54 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\FXpansion [2009-12-10 12:18:29 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\GetRightToGo [2012-01-12 01:00:17 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\go [2012-05-22 21:00:49 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Itnyh [2010-08-14 18:06:56 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Line 6 [2011-10-27 00:24:11 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\MP3Rocket [2011-11-30 16:41:44 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\MP3SkypeRecorder [2010-08-14 17:00:22 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\PACE Anti-Piracy [2010-08-15 00:21:44 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Propellerhead Software [2010-08-30 17:25:21 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\REAPER64 [2012-03-16 01:52:39 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Regensoft [2012-05-13 19:12:45 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Samsung [2012-05-17 19:45:00 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Sayc [2009-11-13 15:48:06 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Sony [2009-11-13 15:44:40 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Sony Setup [2011-12-23 03:24:14 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Spotify [2011-05-11 13:01:01 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2010-12-01 20:08:39 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Steinberg [2011-01-10 22:54:42 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\TeamViewer [2009-08-19 13:51:33 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Template [2011-02-26 06:40:53 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Uniblue [2010-12-04 12:02:16 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Vso [2010-03-08 03:03:01 | 000,000,000 | ---D | M] -- C:\Users\Wilmar\AppData\Roaming\Windows Live Writer [2012-05-29 21:16:19 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012-05-30 19:01:08 | 000,000,468 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{5E3C19EF-DBCE-4364-A1C2-F2F42992C113}.job [color=#E56717:6dc9e4da42]========== Purity Check ==========[/color:6dc9e4da42] < End of report >
  • De Extras.Txt log: OTL Extras logfile created on: 31-5-2012 14:10:47 - Run 1 OTL by OldTimer - Version 3.2.44.0 Folder = C:\Users\Wilmar\Desktop 64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.19048) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,96 Gb Total Physical Memory | 2,28 Gb Available Physical Memory | 57,47% Memory free 4,97 Gb Paging File | 3,39 Gb Available in Paging File | 68,19% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 451,07 Gb Total Space | 1,71 Gb Free Space | 0,38% Space Free | Partition Type: NTFS Drive D: | 14,65 Gb Total Space | 7,72 Gb Free Space | 52,73% Space Free | Partition Type: NTFS Drive F: | 527,50 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PC_VAN_WILMAR | User Name: Wilmar | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717:932be2d57c]========== Extra Registry (SafeList) ==========[/color:932be2d57c] [color=#E56717:932be2d57c]========== File Associations ==========[/color:932be2d57c] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe () [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [color=#E56717:932be2d57c]========== Shell Spawning ==========[/color:932be2d57c] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" () inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 () InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l () InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" () piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717:932be2d57c]========== Security Center Settings ==========[/color:932be2d57c] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "oobe_av" = 1 [color=#E56717:932be2d57c]========== System Restore Settings ==========[/color:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717:932be2d57c]========== Firewall Settings ==========[/color:932be2d57c] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [b:932be2d57c]64bit:[/b:932be2d57c] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717:932be2d57c]========== Authorized Applications List ==========[/color:932be2d57c] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717:932be2d57c]========== Vista Active Open Ports Exception List ==========[/color:932be2d57c] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{8836C7FA-1026-4A72-B533-0323C53D0EE9}" = lport=2869 | protocol=6 | dir=in | app=system | "{AA01905F-BAA5-4633-8408-5ACF48E3816B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | [color=#E56717:932be2d57c]========== Vista Active Application Exception List ==========[/color:932be2d57c] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{13953157-19BA-49B6-B2AD-54EF3C65E9F2}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{1866F9D3-B0C3-4465-BB40-56C786D9CB57}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe | "{3EC3FFE8-BA94-4358-AAE4-0252A1CEC350}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe | "{4F06A18C-B3CE-4745-B0D8-8F6F497ACE06}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe | "{5F1B801E-1528-4C79-AB36-8841E54818B6}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe | "{69689A07-2B8F-4B76-901B-72B5F4FD8CC2}" = protocol=17 | dir=in | app=c:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe | "{6A1E91A8-3894-474B-BC30-CC2619AE9A23}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe | "{7F1BA70D-375C-460E-9520-B5F256D3D4F7}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{86017D6A-0778-4209-AFB6-A22DCA493A8E}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe | "{9BCB2014-A4B0-44E8-AF55-9A9F02D71237}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe | "{A36A849C-58CF-4BB4-8B08-26262819D337}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe | "{B17564FA-7666-46FD-A2B7-C30809D9704A}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe | "{B4A8853C-BFDE-490F-B33E-84D641F4458F}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe | "{CC2247D2-B824-4C07-BB55-22135147E56C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "{CF8FF02A-EE1B-453E-933D-58294BAAD96D}" = protocol=6 | dir=in | app=c:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe | "{D4DB526D-0EAC-4997-8E27-FEE6873D9D28}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{E0DC6620-0591-49F4-9E0C-EDEA5E895C00}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{F523765B-B97E-44FC-8CF4-66608C6B90D1}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe | "{FB43814B-1E65-4F77-82DB-5469ACF85B07}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe | "TCP Query User{01EAD5ED-0A2E-4E92-94B8-68476B228DEF}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "TCP Query User{0F38DCEF-9E86-433D-8F43-6B348ED5C2C9}C:\program files (x86)\bitlord\bitlord.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe | "TCP Query User{1068F1A7-2021-46E0-9C71-7C9A336B00F6}C:\windows\system32\taskeng.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskeng.exe | "TCP Query User{20054833-7CA1-4A07-88FE-D707F0A0E400}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "TCP Query User{39143758-44E4-48BC-AD8C-303A74EE9F22}C:\program files (x86)\windows live\toolbar\wltuser.exe" = protocol=6 | dir=in | app=c:\program files (x86)\windows live\toolbar\wltuser.exe | "TCP Query User{468FCA28-81C8-42A4-9462-70446D562ABF}C:\program files (x86)\ea games\battlefield 2\bf2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe | "TCP Query User{492A04D7-1D9A-43BA-83D2-99CDD765EAE9}C:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe | "TCP Query User{496BCFEC-FEEA-44BD-8398-190B355B665D}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "TCP Query User{4EABA7B4-0A5E-48EE-B87B-B1985BB8624A}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe | "TCP Query User{4ECC45B7-A2B3-45B1-BF94-2BDE2E5E9F21}C:\program files (x86)\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spotify\spotify.exe | "TCP Query User{61EB813D-08EF-4E98-9A69-58C5A451FBDD}C:\users\wilmar\appdata\roaming\itnyh\reezan.exe" = protocol=6 | dir=in | app=c:\users\wilmar\appdata\roaming\itnyh\reezan.exe | "TCP Query User{644DB2A8-2C4C-4D7B-BDB5-0E58811D0446}C:\program files (x86)\windows live\messenger\msnmsgr.exe" = protocol=6 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "TCP Query User{6469331A-100E-4946-9F5A-28B83B3AFF33}C:\program files (x86)\windows live\messenger\msnmsgr.exe" = protocol=6 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "TCP Query User{6CABFB41-F7EF-4344-8E1E-D1FCF92CB61E}C:\program files (x86)\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spotify\spotify.exe | "TCP Query User{713C40E7-DC86-4A1E-9CB9-411EA162208A}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe | "TCP Query User{737E4891-6853-45E7-A173-0CF8134D37A5}C:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe | "TCP Query User{77BEACA7-E2BA-4D17-99FC-4D6C9CDA5EEE}C:\program files (x86)\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "TCP Query User{8216CAB3-726C-45A2-98AD-2D6BD6A6A657}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "TCP Query User{83B49CC0-BA7C-4E9F-A50C-CA8288E0EEA8}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe | "TCP Query User{84FDFE2B-F5C2-4223-832D-5922159565D0}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "TCP Query User{9D1A4EDB-879E-482D-BB2A-D1A4BC5CDD17}C:\users\wilmar\appdata\roaming\duogot\ucgi.exe" = protocol=6 | dir=in | app=c:\users\wilmar\appdata\roaming\duogot\ucgi.exe | "TCP Query User{A2339FB8-F9A3-491C-AB52-2B61DE889387}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "TCP Query User{A27ABE06-F709-4D43-AE47-FFA718018292}C:\program files (x86)\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "TCP Query User{ACB38B32-C397-4698-AE2D-37FC7D160A5A}C:\program files (x86)\call of duty\coduomp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe | "TCP Query User{C723974A-7D72-4058-AFE3-A2C99C125E1D}C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe | "TCP Query User{D5519778-09D6-4F82-AAD0-39D37EEE49E3}C:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe | "TCP Query User{E4BE6699-C2EE-4138-AB73-55B9F1633719}C:\program files (x86)\avid\avid media composer\supportingfiles\utilities\flutil.exe" = protocol=6 | dir=in | app=c:\program files (x86)\avid\avid media composer\supportingfiles\utilities\flutil.exe | "TCP Query User{E8382E8D-F95C-4A22-BCAE-82EFF704EEC9}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "TCP Query User{F7113A5D-86A8-44B0-BA1A-FB74B3C40145}C:\program files (x86)\call of duty\coduomp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe | "TCP Query User{FAA20814-8C44-47E8-968A-B55EF682669A}C:\program files (x86)\bitlord\bitlord.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe | "UDP Query User{006AEC5F-6BC2-491D-BD96-2B9F11FFB964}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe | "UDP Query User{01AE137E-EF00-4367-A3BB-D70070505D1E}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "UDP Query User{114428FE-0560-4846-A2AF-4CE4DBC3561D}C:\users\wilmar\appdata\roaming\duogot\ucgi.exe" = protocol=17 | dir=in | app=c:\users\wilmar\appdata\roaming\duogot\ucgi.exe | "UDP Query User{1977A131-C0DA-4F7D-B569-A460F5B1F54B}C:\program files (x86)\windows live\toolbar\wltuser.exe" = protocol=17 | dir=in | app=c:\program files (x86)\windows live\toolbar\wltuser.exe | "UDP Query User{27875D49-BC4E-45FF-AD6F-1F8767A86B40}C:\program files (x86)\avid\avid media composer\supportingfiles\utilities\flutil.exe" = protocol=17 | dir=in | app=c:\program files (x86)\avid\avid media composer\supportingfiles\utilities\flutil.exe | "UDP Query User{2D1869BD-FE6C-424B-BFBA-2BB4A26223C8}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "UDP Query User{2FC20AD6-43BA-4B97-BD0F-FC78C94D8773}C:\program files (x86)\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "UDP Query User{399BDCDB-639C-4A37-B727-54E8EF0E8D3A}C:\program files (x86)\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spotify\spotify.exe | "UDP Query User{4A4E3EE7-5FD7-49EA-9A08-E6E9953D6483}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe | "UDP Query User{4BB4368B-AA3E-4332-88AC-B63D619702CD}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "UDP Query User{5E222271-AD20-4366-9B6C-DD62E099CBFB}C:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe | "UDP Query User{6BFFF237-0CA0-4432-9478-B28C73D9CC0E}C:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield vietnam\bfvietnam.exe | "UDP Query User{6DB4FF15-7770-4FB9-9973-BB0D5D71998C}C:\program files (x86)\bitlord\bitlord.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe | "UDP Query User{6FCDB8F5-F5E5-4947-B6E6-AA5EFE51FD28}C:\program files (x86)\call of duty\coduomp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe | "UDP Query User{7009D0FD-0292-44CD-BD6D-715D0443D12E}C:\windows\system32\taskeng.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskeng.exe | "UDP Query User{7A42D149-29E0-4EE7-A877-BBC49E7E6132}C:\program files (x86)\windows live\messenger\msnmsgr.exe" = protocol=17 | dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "UDP Query User{89E3F409-A2C9-43B0-A6C8-A3EC81D92C0C}C:\program files (x86)\call of duty\coduomp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe | "UDP Query User{A6061B0A-E76F-4B1A-8FE5-42A85B2222A3}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "UDP Query User{B6B5440E-F3AE-4296-8C59-DEC7CD9F750B}C:\users\wilmar\appdata\roaming\itnyh\reezan.exe" = protocol=17 | dir=in | app=c:\users\wilmar\appdata\roaming\itnyh\reezan.exe | "UDP Query User{C4B4BDC2-205B-444F-878E-B5C6FEFBAC41}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "UDP Query User{C679942F-0679-4311-81FD-129B224295C8}C:\program files (x86)\activision\call of duty - world at war\codwawmp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe | "UDP Query User{D284AE88-5FEB-4954-998B-1ECB685548A3}C:\program files (x86)\bitlord\bitlord.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe | "UDP Query User{D3AC29B3-396A-44B1-A2A2-2DD9203E18FD}C:\program files (x86)\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "UDP Query User{D5651E11-3AA8-463F-9E86-5E8F2870CBA1}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe | "UDP Query User{E07127F3-E8EE-4074-BE1F-E5C2B6BC591A}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "UDP Query User{EFAF61CB-15D6-472D-B817-5552AD819A0E}C:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\wilmar\appdata\roaming\dropbox\bin\dropbox.exe | "UDP Query User{F17C7E59-7877-4E2F-BD70-A3AE078E4691}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "UDP Query User{F6DDBA3E-3202-43D2-87FC-60F49EA2912B}C:\program files (x86)\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spotify\spotify.exe | "UDP Query User{F9EDA066-3E72-4721-AD8A-65757D135464}C:\program files (x86)\ea games\battlefield 2\bf2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe | [color=#E56717:932be2d57c]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color:932be2d57c] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software 6.1.0.4402 "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series" = Canon MP550 series MP Drivers "{26A24AE4-039D-4CA4-87B4-2F86416013FF}" = Java(TM) 6 Update 13 (64-bit) "{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64 "{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64 "{2F227ACA-204C-4529-BA33-D095C42C72DB}" = Avid Audio Drivers (x64) "{316F89B3-40A7-4986-BE4F-27258B1DEBCB}" = Windows Live Family Safety "{3A25872A-0F1C-4989-9435-96C13230F818}" = Apple Mobile Device Support "{538B8C10-1BA5-131D-4B4C-F07770926D06}" = ccc-utility64 "{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64 "{6F4B9839-F409-4D38-89D6-145321400FED}" = iTunes "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64 "{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset "{884A9BE3-E7A2-4CB8-AED4-23B2ABBDE7C9}" = FastAccess "{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64 "{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4 "{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4 "{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64 "{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007 "{90120000-002A-0413-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Dutch) 2007 "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 "{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4 "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64 "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64 "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit) "{DAE239CE-EB9D-4EB3-B0D4-528D6BAA48FD}" = Bonjour "{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4 "{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit "CCleaner" = CCleaner "Creative OA001" = Integrated Webcam Driver (1.06.03.0309) "Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "REAPER" = REAPER (x64) "SynTPDeinstKey" = Dell Touchpad [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4 "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86 "{03DEEAD2-F3B7-45BF-9006-A25D015F00D2}" = Adobe Flash Player 10 Plugin "{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM) "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4 "{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4 "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{06096D5E-09ED-9A82-6946-6568EBB7CB2C}" = Catalyst Control Center InstallProxy "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86 "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data "{095B1DCF-5E8B-47EC-9B18-481918A731DB}" = Microsoft Default Manager "{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE "{098727E1-775A-4450-B573-3F441F1CA243}" = kuler "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help "{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4 "{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup "{0DF1DAD2-17FD-E64F-C6A2-A42D94474229}" = Skins "{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store "{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86 "{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4 "{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online "{14AFE241-FC6E-4FDB-BCA0-7AD6F4974171}" = Adobe Setup "{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4 "{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4 "{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 3.5 "{1C279CAE-F230-0255-0F19-634750A69747}" = CCC Help Portuguese "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live - Hulpprogramma voor uploaden "{206936E5-73DF-07D8-29B6-34E802541EBB}" = CCC Help English "{20D8E6B9-5E1A-4CE5-83D8-EF3626B6CEF9}" = Catalyst Control Center - Branding "{2168245A-B5AD-40D8-A641-48E3E070B5B6}" = Adobe Flash CS4 STI-en "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{24185972-C785-4D02-82A1-632FD14C14EC}" = Avid MediaLog "{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 30 "{2869F5EA-93C3-48E5-80DF-DB696BC84A91}" = Windows Live Mail "{28D58BB6-06C3-49F3-3EF2-93F3158B6505}" = Catalyst Control Center Core Implementation "{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth "{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2}" = Adobe Flash Video Encoder "{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00 "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager "{30C8AA56-4088-426F-91D1-0EDFD3A25678}" = Adobe Dreamweaver CS4 "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{3180427D-DDE9-4704-A30F-B4C46CC29C41}" = Catalyst Control Center Graphics Full Existing "{32061277-9F45-4C3B-8299-D106D5A502ED}" = Windows Live Movie Maker "{34E38BB7-98FD-03C2-13D1-B68789668CEE}" = CCC Help Italian "{35CA031C-D3CD-4A28-8D9B-C71466C4F045}" = Windows Live Writer "{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4 "{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player "{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4 "{3BB37700-F05F-213F-FF1C-684698BAC17E}" = CCC Help Japanese "{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4 "{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin "{41DFDD57-21B7-4C48-8C75-FFB35696CA8B}" = Windows Live Toolbar "{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit "{46A869A1-3F59-44A4-64D7-120FE0057B2F}" = CCC Help German "{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5 "{4AF97226-2624-AD56-9003-E581DEB96E8C}" = CCC Help Korean "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{4DD386D7-8D6D-985B-418B-94BCA7CEDB8E}" = ccc-core-static "{4FC41915-5EFB-27A4-1C4B-B06DB9673CD7}" = CCC Help Spanish "{5158F1F5-FA1B-4D49-B546-55A5004B89BD}" = Microsoft Works "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4 "{5A180ED5-0AC1-410A-B790-5E0319CD0A93}" = Sentinel Protection Installer 7.4.0 "{5AE7D9E5-9530-4216-98EA-C3E7D0752FB3}" = Avid Log Exchange "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86 "{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4 "{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support "{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3 "{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4 "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX "{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK "{69535FEF-6533-8F4F-D96B-2C345D89617A}" = CCC Help Chinese Traditional "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6B52140A-F189-4945-BFFC-DB3F00B8C589}" = Adobe Flash CS3 "{6CA2A34B-93EC-C934-8251-08960730AB69}" = CCC Help Danish "{6FEC9863-5EF2-4A07-9D0B-CA81B47E3F59}" = Windows Live Photo Gallery "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{739777CE-1678-65B2-B97E-C0E1545EECDF}" = Catalyst Control Center Graphics Light "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{76907753-C8DC-406E-819B-20DF131FA052}" = Avid Media Composer "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{793D1D88-6141-43DE-BE58-59BCE31B4090}" = Adobe Flash CS4 Extension - Flash Lite STI en "{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide "{7E1FBCB0-500C-4A0D-AC9C-B1B76E75666B}" = Windows Live aanmeldhulp "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4 "{82E80931-6DFE-5E67-7C37-F66ABF135331}" = CCC Help Swedish "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4 "{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update "{8ECD943A-0C75-CAD5-FC01-91CBFEDFBC9E}" = CCC Help Chinese Standard "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007 "{90120000-0015-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2007 "{90120000-0015-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0015-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007 "{90120000-0016-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007 "{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007 "{90120000-0018-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007 "{90120000-0018-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007 "{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2007 "{90120000-0019-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007 "{90120000-001A-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2007 "{90120000-001A-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007 "{90120000-001B-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007 "{90120000-001B-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}_PROPLUSR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}_PROPLUSR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}_PROR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}_PROPLUSR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}_PROR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISER_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}_PROPLUSR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-0020-0413-0000-0000000FF1CE}" = Compatibiliteitspakket voor het 2007 Microsoft Office system "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISER_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-0000-1000-0000000FF1CE}_PROPLUSR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-0000-1000-0000000FF1CE}_PROR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-0409-1000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-0413-1000-0000000FF1CE}_ENTERPRISER_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-0413-1000-0000000FF1CE}_PROPLUSR_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007 "{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007 "{90120000-0044-0413-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Dutch) 2007 "{90120000-0044-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0044-0413-0000-0000000FF1CE}_PROPLUSR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007 "{90120000-006E-0413-0000-0000000FF1CE}_ENTERPRISER_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0413-0000-0000000FF1CE}_PROPLUSR_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007 "{90120000-00A1-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00B2-0413-0000-0000000FF1CE}" = Microsoft-invoegtoepassing Opslaan als PDF of XPS voor 2007 Microsoft Office-programma's "{90120000-00BA-0413-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Dutch) 2007 "{90120000-00BA-0413-0000-0000000FF1CE}_ENTERPRISER_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0116-0409-1000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007 "{90120000-0117-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{91120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007 "{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007 "{91120000-0014-0000-0000-0000000FF1CE}_PROR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-0014-0000-0000-0000000FF1CE}_PROR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86 "{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4 "{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "{93F0A673-84B6-90E5-C701-457F796D1430}" = CCC Help Dutch "{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4 "{95120000-00AF-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Dutch) "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{9DF04B9A-3B45-3D00-8A0F-9EB596626DA7}" = Catalyst Control Center Graphics Full New "{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1" = Convert AVI to MP4 1.3 "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A662E280-64A8-4CF5-8407-13D0808602B3}" = Call of Duty - United Offensive "{A669EFEC-39AA-D25B-5F81-450FAABF1E3E}" = CCC Help Russian "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5 "{A7BE4592-E101-4806-BF9A-D88CF5E387E4}" = MetaSync "{A909E7C7-F541-4B53-EA99-4F531E5E242B}" = CCC Help French "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software "{AA0B63ED-2485-5E3B-DB58-F8962C32CDF9}" = Catalyst Control Center Localization All "{AC76BA86-7AD7-1043-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Nederlands "{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9 "{AEE307D5-9E65-4971-818E-C4D96DF55C64}" = Media Go "{B131BD51-21C7-FE1C-91A7-1B1361A9B283}" = Catalyst Control Center Graphics Previews Common "{B29AD377-CC12-490A-A480-1452337C618D}" = Connect "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4 "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player "{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module "{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}" = PlayStation(R)Network Downloader "{BCB9DF93-537D-433D-AF3B-36025DEF5798}" = Joint Task Force "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{C20C2630-B3A7-44BA-BDD0-31E256AE490E}" = Windows Live Call "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4 "{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime "{C79312BD-3E76-4474-A10C-1435D1856A4B}" = Adobe Dreamweaver CS5 "{CA1D5579-2901-06E0-A3B7-ACA65136FFB6}" = CCC Help Finnish "{CB606F47-7D0E-40DF-95BB-0E5413A1295F}" = MP3 Skype Recorder "{CC38A00D-7EED-46CE-9281-D1D97B81F22A}" = Windows Live Messenger "{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw "{D07643A3-CE41-4286-8C78-EB9C83E76DDB}" = PunkBuster for Battlefield Vietnam "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86 "{D23B5897-4D59-25D5-9478-BA1E5EC58552}" = CCC Help Norwegian "{D564B5E2-CCB5-4A5C-B35E-2FC30BBC9336}" = Adobe Premiere Elements 7.0 "{D5BC49DF-35C6-4C01-A79F-E638E4BF19B3}" = Avid EDL Manager "{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}" = Microsoft_VC80_CRT_x86 "{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM) "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86 "{DB69E0FB-FF6C-4C47-A048-C66710E79EE6}" = Microsoft Office Communicator 2007 "{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D}" = Windows Live Sync "{E35B3C63-E958-4E31-A178-95D22024109A}" = Battlefield Vietnam(TM) "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4 "{E5C04820-9EDB-BB72-647E-7DC9BCBCE983}" = Catalyst Control Center Graphics Previews Vista "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{E8692F58-03E1-4DBB-8D1A-A70AB1DC634A}" = Avid FilmScribe "{EB5A3E9D-91CF-4C97-B816-72DE0625ACA3}" = Windows Live Essentials "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8 "{EED50C97-C79E-4149-BD82-7C5A22437708}" = Adobe Setup "{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 1.50.52 "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help "{F6BB6248-C507-46FE-8A35-1B16F35E0441}" = ITECIR "{F6E99614-F042-4459-82B7-8B38B2601356}" = Adobe Flash CS4 "{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4 "{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4 "{F9766AC1-1461-1033-B862-DF8FE1C033BE}" = Adobe InDesign CS5 "{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All "{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner "{FFC1ADE3-944B-4231-894E-3903C37271D2}" = Adobe Setup "Aangifte inkomstenbelasting 2007" = Aangifte inkomstenbelasting 2007 "Aangifte inkomstenbelasting 2008" = Aangifte inkomstenbelasting 2008 "Aangifte inkomstenbelasting 2009" = Aangifte inkomstenbelasting 2009 "Aangifte inkomstenbelasting 2010" = Aangifte inkomstenbelasting 2010 "Adobe AIR" = Adobe AIR "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Adobe_a68eec966ce913ddaa63251dc82ed31" = Adobe Flash CS4 Professional "Adobe_acce07fd2c8fe7f9e3f26243e626578" = Adobe Dreamweaver CS4 "Adobe_c3c7fe8b09d497ab2b3fd91c9353390" = Adobe Flash CS3 Professional "Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4 "Advanced Audio FX Engine" = Advanced Audio FX Engine "AGEIA PhysX v2.5.0" = AGEIA PhysX v2.5.0 "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode) "avast" = avast! Free Antivirus "AviSynth" = AviSynth 2.5 "AVS Audio Converter 6.1_is1" = AVS Audio Converter version 6.1 "AVS Audio Converter 6.2_is1" = AVS Audio Converter version 6.2 "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4 "AVS4YOU Video Converter 6_is1" = AVS Video Converter 6 "Call of Duty" = Call of Duty "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player "Dell Webcam Central" = Dell Webcam Central "ENTERPRISER" = Microsoft Office Enterprise 2007 "ExcessiveSpeed" = Excessive Speed "Flash Video MX SDK V2_is1" = Flash Video MX SDK V2 version 2.0.5.217 "Garena" = Garena 2010 "Guitar Pro 5_is1" = Guitar Pro 5.2 "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}" = Call of Duty - United Offensive "InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM) "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "Line 6 Uninstaller" = Line 6 Uninstaller "Live 7.0.10" = Live 7.0.10 "Magic DVD Copier_is1" = Magic DVD Copier Version 5.0.0 "Magic DVD Ripper_is1" = Magic DVD Ripper V5.5.0 "Magic ISO Maker v5.5 (build 0276)" = Magic ISO Maker v5.5 (build 0276) "MagicDisc 2.7.106" = MagicDisc 2.7.106 "MGET FLAC2MP3 convertor_is1" = MGET FLAC2MP3 convertor "Midi2Wav Recorder DEMO" = Midi2Wav Recorder DEMO 4.1 "Moyea Task Dispatcher_is1" = Moyea Task Dispatcher version 1.0.0.8 "Mozilla Firefox 11.0 (x86 nl)" = Mozilla Firefox 11.0 (x86 nl) "MP3 Converter Simple" = MP3 Converter Simple "PremElem70" = Adobe Premiere Elements 7.0 "PROPLUSR" = Evaluatieversie van Microsoft Office Professional Plus 2007 "PROR" = Microsoft Office Professional 2007 "Reason4Adapted_is1" = Reason Adapted 4.0.1 "RiffWorks T4" = RiffWorks T4 "Riva FLV Encoder 2.0_is1" = Riva FLV Encoder 2.0 "Security Task Manager" = Security Task Manager 1.8c "Softonic" = Softonic toolbar on IE and Chrome "SopCast" = SopCast 3.5.0 "Spotify" = Spotify "TallStick TS-AudioToMIDI 3.20" = TallStick TS-AudioToMIDI 3.20 (remove only) "Videora iPod Converter" = Videora iPod Converter 5.03 "VLC media player" = VLC media player 1.1.11 "WinAVI Video Capture_is1" = WinAVI Video Capture 2.0 "WinAVI Video Converter_is1" = WinAVI Video Converter "Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner "WinLiveSuite_Wave3" = Windows Live Essentials "WinRAR archiver" = WinRAR archiver "YouTube Downloader App" = YouTube Downloader App 2.03 [color=#E56717:932be2d57c]========== HKEY_USERS Uninstall List ==========[/color:932be2d57c] [HKEY_USERS\S-1-5-21-1633112034-484273548-1918387448-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Dropbox" = Dropbox "f031ef6ac137efc5" = Dell Driver Download Manager "Game Organizer" = GameXN GO "Google Chrome" = Google Chrome "MyFreeCodec" = MyFreeCodec [color=#E56717:932be2d57c]========== Last 10 Event Log Errors ==========[/color:932be2d57c] [ Application Events ] Error - 26-2-2011 10:38:39 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:40:47 | Computer Name = PC_van_Wilmar | Source = WinMgmt | ID = 10 Description = Error - 26-2-2011 11:40:48 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:40:55 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:43:46 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:43:46 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:45:32 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:45:34 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 26-2-2011 11:45:37 | Computer Name = PC_van_Wilmar | Source = WinMgmt | ID = 10 Description = Error - 26-2-2011 15:38:03 | Computer Name = PC_van_Wilmar | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = [color=#E56717:932be2d57c]========== Last 10 Event Log Errors ==========[/color:932be2d57c] Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt! < End of report >
  • Je zal toch eerst ruimte moeten gaan creëren op C! [b:0829e7ae71][color=#0000FF:0829e7ae71]Drive C: | 451,07 Gb Total Space | [/color:0829e7ae71][color=#FF0000:0829e7ae71]1,71 Gb Free Space[/color:0829e7ae71][/b:0829e7ae71] Er is dus veel te weinig ruimte op C.
  • Hallo allemaal, Ik had een vraag over mijn PC. Ik heb Windows Vista 64 bits versie en een Dell XPS studio 16. Sinds kort is mijn computer erg traag en wordt deze ook erg heet, daarnaast blaast hij erg veel. Nu keek ik bij taakbeheer en ik zag dat mijn processor verbruik wel erg hoog is. Zonder lopende programma's schommelt deze tussen de 65% en de 100%. Ik heb gisteren een virusscan gedaan met Avast en daar werden 5 trojans gevonden (wat ik toch vreemd vindt, want Avast staat altijd aan) Deze bestanden zijn verwijderd, maar hij is nog net zo traag. Weet iemand misschien wat het probleem zou kunnen zijn en hoe ik dit probleem kan oplossen? Alvast bedankt!

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.