Vraag & Antwoord

32 antwoorden

Zou iemand me hiermee kunnen helpen.
Ik heb al een Mbam scan gedaan er werden 75 geïnfecteerde bestanden gevonden.

Thx.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:44:19, on 14-9-2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17099)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
C:\Program Files\Trust\GM-4600 Gamer Mouse\Amoumain.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Air Mouse\Air Mouse\Air Mouse.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Documents and Settings\Mick\Mijn documenten\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O3 - Toolbar: (no name) - !{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\Trust\GM-4600 Gamer Mouse\Amoumain.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Air Mouse.lnk = C:\Program Files\Air Mouse\Air Mouse\Air Mouse.exe
O4 - Global Startup: SMCWPCI-GM MIMO Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Mick\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to iPod Converter - C:\Documents and Settings\Mick\Application Data\DVDVideoSoftIEHelpers\freeyoutubetoipodconverter.htm
O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Apparaatdetectie) - http://www.logitech.com//devicedetector/plugins/LogitechDeviceDetection32.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

–
End of file - 8791 bytes

Anoniem 14 september 2011 11:47

Hoi -TeR-, ik zal je gaan helpen.

Maar graag wil ik dat log van MBAM ook inzien!

Post de inhoud van dat scanlog, het log wordt automatisch bewaard door 'MBAM en dat kan je terugvinden door in het hoofdmenu van MBAM op de tab 'Logbestanden' te klikken.

Anoniem 14 september 2011 11:58

Hoi, super alvast bedankt.

Hierbij de Mbam log:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Databaseversie: 7712

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13

14-9-2011 13:03:16
mbam-log-2011-09-14 (13-03-16).txt

Scantype: Volledige scan (C:\|)
Objecten gescand: 273483
Verstreken tijd: 28 minuut/minuten, 34 seconde(n)

Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 3
Registerwaarden geïnfecteerd: 2
Registerdata geïnfecteerd: 0
Mappen geïnfecteerd: 1
Bestanden geïnfecteerd: 75

Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels geïnfecteerd:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SCANQUERY_SERVICE (Adware.ScanQuery) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ScanQuery Service (Adware.ScanQuery) -> Quarantined and deleted successfully.

Registerwaarden geïnfecteerd:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.

Registerdata geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Mappen geïnfecteerd:
c:\program files\scanquery (Adware.ScanQuery) -> Quarantined and deleted successfully.

Bestanden geïnfecteerd:
c:\program files\scanquery\scanquery.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0069688.exe (Adware.QuestBrowse) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0069714.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0070116.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0070117.exe (Adware.QuestBrowse) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0070138.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP109\A0070139.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070236.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070237.exe (Adware.QuestBrowse) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070266.exe (Adware.ShoppingReports2) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070267.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070268.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070269.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070270.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070274.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070276.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070277.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070278.dll (Adware.HotBar.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070279.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070280.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070366.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070367.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070385.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP110\A0070386.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP113\A0070756.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP114\A0070760.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP114\A0070761.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP114\A0070762.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP114\A0070822.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP114\A0070823.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP115\A0070879.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP115\A0070880.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070931.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070932.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070950.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070951.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070961.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP116\A0070962.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP117\A0071005.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP117\A0071006.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP120\A0074398.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP120\A0074399.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074556.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074557.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074696.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074697.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074699.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074700.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074772.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP123\A0074773.exe (Adware.ScanQuery) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP126\A0075002.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP126\A0075003.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP128\A0076243.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP129\A0076275.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP129\A0076276.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP129\A0077411.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP130\A0077528.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP131\A0080665.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP131\A0080724.dll (Adware.Agent.ZGen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP133\A0085389.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP133\A0085390.exe (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP133\A0085391.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP133\A0085392.dll (Adware.HotBar.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP133\A0085393.exe (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091082.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091083.exe (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091084.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091086.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091088.exe (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP138\A0091234.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP139\A0091310.exe (Adware.ShoppingReports2) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP139\A0091311.dll (Adware.SmartShopper) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP139\A0091315.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP139\A0091316.exe (Adware.Agent.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{fd0eb03e-fd3f-4d3f-8f53-ad5371fa7cb9}\RP139\A0091317.exe (Adware.QuestBrowse) -> Quarantined and deleted successfully.

Anoniem 14 september 2011 12:02

Je mag meteen doorgaan met onderstaande:

[b:1492410672]Welk programma[/b:1492410672]: ComboFix
[b:1492410672]Waarvoor/waarom[/b:1492410672]: Zeer specialistische scanner om Windows diepgaand te onderzoeken
en zo mogelijk op te schonen.
[b:1492410672]Moeilijkheidsgraad[/b:1492410672]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
[b:1492410672]Downloadlokatie[/b:1492410672]: Dit programma absoluut naar het bureaublad downloaden!
[b:1492410672]Download ComboFix via één van deze locaties[/b:1492410672]:
[list:1492410672][*:1492410672][b:1492410672]Bleepingcomputer[/b:1492410672]
[*:1492410672][b:1492410672]ForoSpyware[/b:1492410672]
[*:1492410672][b:1492410672]Geekstogo[/b:1492410672][/list:u:1492410672]
[b:1492410672]Hier[/b:1492410672] zie je hoe je ComboFix moet gebruiken.

Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn!
[b:1492410672]Hier[/b:1492410672] en [b:1492410672]hier[/b:1492410672] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

[b:1492410672]Voor alle duidelijkheid nogmaals[/b:1492410672]: ComboFix dient vanaf het bureaublad gestart te worden.

[b:1492410672]Opmerkingen[/b:1492410672]:
[list:1492410672][*:1492410672] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).
[*:1492410672]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten.
[*:1492410672]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:1492410672]
[b:1492410672]ComboFix is opgestart[/b:1492410672]:
[list:1492410672][*:1492410672]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
[*:1492410672]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen!
[*:1492410672]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
[*:1492410672]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
[*:1492410672]Post de inhoud van dit logbestand in je volgende bericht.
[*:1492410672]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:1492410672]
[b:1492410672]Belangrijke opmerking[/b:1492410672]:
[list:1492410672][*:1492410672][b:1492410672]

Anoniem 14 september 2011 13:12

Dit is de log van ComboFix

ComboFix 11-09-14.01 - Mick 14-09-2011 15:23:43.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.325 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Mick\Bureaublad\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Mick\Application Data\PriceGong
c:\documents and settings\Mick\Application Data\PriceGong\Data\1.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\a.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\b.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\c.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\d.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\e.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\f.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\g.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\h.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\i.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\J.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\k.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\l.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\m.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\n.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\o.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\p.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\q.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\r.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\s.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\t.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\u.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\v.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\w.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\x.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\y.xml
c:\documents and settings\Mick\Application Data\PriceGong\Data\z.xml
c:\windows\system32\d3d9caps.dat
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-08-14 to 2011-09-14 ))))))))))))))))))))))))))))))
.
.
2011-09-14 12:54 . 2011-09-14 12:49 110592 —-a-w- c:\windows\system32\drivers\nvtcp.sys
2011-09-14 12:54 . 2007-09-25 15:08 356352 —-a-w- c:\windows\system32\nvunrm.exe
2011-09-14 12:50 . 2011-09-14 12:50 ——– d—–w- c:\program files\AMD
2011-09-14 12:28 . 2011-09-14 12:28 ——– d—–w- c:\documents and settings\All Users\Application Data\ATI
2011-09-14 12:25 . 2010-02-10 19:20 593920 ——w- c:\windows\system32\ati2sgag.exe
2011-09-14 12:18 . 2011-09-14 12:18 0 —-a-w- c:\windows\ativpsrm.bin
2011-09-14 12:03 . 2011-09-14 12:03 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
2011-09-14 12:03 . 2011-08-31 15:00 22216 —-a-w- c:\windows\system32\drivers\mbam.sys
2011-09-14 11:53 . 2011-09-14 11:53 ——– d—–w- C:\ATI
2011-09-14 11:35 . 2011-09-14 11:35 ——– d—–w- c:\documents and settings\Mick\Application Data\QuickStoresToolbar
2011-09-14 11:35 . 2011-09-14 11:44 ——– d—–w- c:\program files\Unlocker
2011-09-14 11:24 . 2011-09-14 12:49 ——– d–h–r- c:\documents and settings\Mick\Onlangs geopend
2011-09-14 11:22 . 2011-09-14 11:22 ——– d—–w- c:\program files\Common Files\Java
2011-09-14 11:22 . 2011-05-04 02:52 472808 —-a-w- c:\windows\system32\deployJava1.dll
2011-09-14 11:20 . 2011-09-14 11:20 ——– d—–w- c:\documents and settings\Mick\Application Data\AVG2012
2011-09-14 11:16 . 2011-09-14 11:21 ——– d—–w- c:\windows\system32\drivers\AVG
2011-09-14 11:16 . 2011-09-14 11:32 ——– d—–w- c:\documents and settings\All Users\Application Data\AVG2012
2011-09-14 11:09 . 2011-09-14 11:21 ——– d—–w- c:\documents and settings\All Users\Application Data\MFAData
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\Mick\Application Data\Malwarebytes
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-09-14 09:03 . 2011-09-14 09:03 ——– d—–w- c:\program files\CCleaner
2011-09-07 17:08 . 2010-09-18 06:53 953856 -c—-w- c:\windows\system32\dllcache\mfc40u.dll
2011-09-07 17:08 . 2010-08-23 16:13 617472 -c—-w- c:\windows\system32\dllcache\comctl32.dll
2011-09-07 17:08 . 2010-11-02 15:17 40960 -c—-w- c:\windows\system32\dllcache\ndproxy.sys
2011-09-07 17:07 . 2011-06-24 14:10 139656 -c—-w- c:\windows\system32\dllcache\rdpwd.sys
2011-09-07 17:07 . 2011-04-21 13:37 105472 -c—-w- c:\windows\system32\dllcache\mup.sys
2011-09-07 17:06 . 2011-07-08 14:02 10496 -c—-w- c:\windows\system32\dllcache\ndistapi.sys
2011-09-07 17:06 . 2010-10-11 14:59 45568 -c—-w- c:\windows\system32\dllcache\wab.exe
2011-09-06 15:54 . 2011-06-21 18:37 52224 -c—-w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-09-06 15:54 . 2011-06-21 18:37 468480 -c—-w- c:\windows\system32\dllcache\msfeeds.dll
2011-09-06 15:54 . 2011-06-21 18:37 268288 -c—-w- c:\windows\system32\dllcache\iertutil.dll
2011-09-06 15:54 . 2011-06-21 11:46 13824 -c—-w- c:\windows\system32\dllcache\ieudinit.exe
2011-09-06 15:54 . 2011-06-21 18:37 6076416 -c—-w- c:\windows\system32\dllcache\ieframe.dll
2011-09-06 15:54 . 2011-06-21 18:37 380928 -c—-w- c:\windows\system32\dllcache\ieapfltr.dll
2011-09-06 15:54 . 2011-06-21 18:37 63488 -c—-w- c:\windows\system32\dllcache\icardie.dll
2011-09-06 15:54 . 2010-02-22 22:04 2452872 -c—-w- c:\windows\system32\dllcache\ieapfltr.dat
2011-09-06 15:21 . 2011-09-06 15:55 ——– d—–w- c:\windows\system32\nl-nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\l2schemas
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\bits
2011-09-06 15:09 . 2011-09-06 15:09 ——– d—–w- c:\windows\EHome
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoiins.dll
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoi.dll
2011-09-14 12:49 . 2007-08-10 00:11 102400 —-a-w- c:\windows\system32\drivers\nvgts.sys
2011-09-14 12:49 . 2006-07-11 19:38 20480 —-a-w- c:\windows\system32\drivers\nvnetbus.sys
2011-09-14 12:49 . 2006-07-11 19:38 1160448 —-a-w- c:\windows\system32\drivers\nvnrm.sys
2011-09-14 12:49 . 2006-07-11 19:37 261632 —-a-w- c:\windows\system32\drivers\nvsnpu.sys
2011-09-14 12:49 . 2006-07-11 19:38 57856 —-a-w- c:\windows\system32\drivers\NVENETFD.sys
2011-09-14 12:49 . 2006-06-29 13:40 35840 —-a-w- c:\windows\system32\nvconrm.dll
2011-09-14 12:49 . 2010-02-25 09:50 201728 —-a-w- c:\windows\system32\fdco1ins.dll
2011-09-14 12:49 . 2010-02-25 09:50 11264 —-a-w- c:\windows\system32\bdco1ins.dll
2011-09-14 12:49 . 2006-07-11 19:36 201728 —-a-w- c:\windows\system32\fdco1.dll
2011-09-14 12:49 . 2006-07-11 19:36 11264 —-a-w- c:\windows\system32\bdco1.dll
2011-08-08 04:08 . 2011-08-08 04:08 40016 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
2011-07-15 13:29 . 2006-03-02 12:00 456320 —-a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-10 23:14 . 2011-07-10 23:14 295248 —-a-w- c:\windows\system32\drivers\avgtdix.sys
2011-07-10 23:14 . 2011-07-10 23:14 23120 —-a-w- c:\windows\system32\drivers\AVGIDSEH.sys
2011-07-10 23:13 . 2011-07-10 23:13 229840 —-a-w- c:\windows\system32\drivers\avgldx86.sys
2011-07-08 14:02 . 2006-03-02 12:00 10496 —-a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-24 17:02 . 2010-03-10 18:29 43520 —-a-w- c:\windows\system32\CmdLineExt03.dll
2011-06-24 14:10 . 2009-08-30 15:06 139656 —-a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-21 18:37 . 2006-03-02 12:00 832512 —-a-w- c:\windows\system32\wininet.dll
2011-06-21 18:37 . 2006-03-02 12:00 78336 —-a-w- c:\windows\system32\ieencode.dll
2011-06-21 18:37 . 2006-03-02 12:00 1830912 ——w- c:\windows\system32\inetcpl.cpl
2011-06-21 18:37 . 2006-03-02 12:00 17408 —-a-w- c:\windows\system32\corpol.dll
2011-06-21 11:47 . 2006-03-02 12:00 389120 —-a-w- c:\windows\system32\html.iec
2011-06-20 17:44 . 2006-03-02 12:00 293888 —-a-w- c:\windows\system32\winsrv.dll
2011-09-03 06:36 . 2011-09-14 09:56 134104 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-18 10:26 3908192 —-a-w- c:\program files\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2007-07-17 1687824]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2007-07-18 2094352]
"WheelMouse"="c:\program files\Trust\GM-4600 Gamer Mouse\Amoumain.exe" [2006-09-29 163840]
"RTHDCPL"="RTHDCPL.EXE" [2009-12-25 18789408]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-26 421160]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2011-08-19 2387296]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Air Mouse.lnk - c:\program files\Air Mouse\Air Mouse\Air Mouse.exe [2010-12-27 1044648]
SMCWPCI-GM MIMO Wireless Utility.lnk - c:\program files\RALINK\Common\RaUI.exe [2010-2-25 741376]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\EA GAMES\\The Battle for Middle-earth™\\game.dat"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Electronic Arts\\The Battle for Middle-earth II\\game.dat"=
"c:\\Program Files\\Air Mouse\\Air Mouse\\Air Mouse.exe"=
"c:\\Program Files\\Logitech Touch Mouse Server\\iTouch-Server-Win.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [11-7-2011 1:14 23120]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [11-7-2011 1:13 229840]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [11-7-2011 1:14 295248]
R2 ASTRA32;ASTRA32 Kernel Driver 5.2.1.0;c:\documents and settings\Mick\Mijn documenten\Downloads\astra32zip210\astra32.sys [22-2-2007 11:28 30864]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2-8-2011 6:09 192776]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [14-9-2011 14:03 22216]
S2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [16-4-2010 17:27 135664]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [14-9-2011 14:03 366152]
S2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe -k yksvcs [2-3-2006 14:00 14336]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [5-3-2010 19:13 1691480]
S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [16-4-2010 17:27 135664]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys –> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 SkLaggProtocol;Marvell Link Aggregation Protocol;c:\windows\system32\drivers\yk51x86l.sys [22-9-2009 11:10 60928]
S3 SkVlanProtocol;Marvell VLAN Protocol;c:\windows\system32\drivers\yk51x86v.sys [27-8-2009 11:10 20992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
yksvcs REG_MULTI_SZ yksvc
.
Inhoud van de 'Gedeelde Taken' map
.
2011-01-08 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 10:50]
.
2011-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-16 15:27]
.
2011-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-16 15:27]
.
.
——- Bijkomende Scan ——-
.
uStart Page = hxxp://www.google.nl/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Free YouTube Download - c:\documents and settings\Mick\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to iPod Converter - c:\documents and settings\Mick\Application Data\DVDVideoSoftIEHelpers\freeyoutubetoipodconverter.htm
IE: Google Sidewiki… - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
TCP: DhcpNameServer = 10.0.1.1
FF - ProfilePath - c:\documents and settings\Mick\Application Data\Mozilla\Firefox\Profiles\lwhoaklz.default\
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-10 - (no file)
Toolbar-!{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-UnlockerAssistant - c:\program files\Unlocker\UnlockerAssistant.exe
MSConfigStartUp-Software Informer - c:\program files\Software Informer\softinfo.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-09-14 15:27
Windows 5.1.2600 Service Pack 3 NTFS
.
scannen van verborgen processen …
.
scannen van verborgen autostart items …
.
scannen van verborgen bestanden …
.
Scan succesvol afgerond
verborgen bestanden: 0
.
**************************************************************************
.
——————— DLLs Geladen Onder Lopende Processen ———————
.
- - - - - - - > 'winlogon.exe'(1068)
c:\windows\system32\Ati2evxx.dll
.
Voltooingstijd: 2011-09-14 15:28:49
ComboFix-quarantined-files.txt 2011-09-14 13:28
.
Pre-Run: 197.210.660.864 bytes beschikbaar
Post-Run: 197.373.751.296 bytes beschikbaar
.
WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer
.
- - End Of File - - 7D9C2E0ACA092A6A88FE4C8453923BA9

Anoniem 14 september 2011 13:40

Mooi zo.

Hoe draait jouw Windows inmiddels?

Doe het volgende nu:

Anoniem 14 september 2011 14:21

Nieuwe Hijack this log.
Hij draait wel weer goed moet ik zeggen. Heb alleen in Firefox nog een eritante toolbar staat genaamd: QuickStores, krijg deze er nog niet af, maar heb nog niet gegoogled.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:24:35, on 14-9-2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17099)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
C:\Program Files\Trust\GM-4600 Gamer Mouse\Amoumain.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Air Mouse\Air Mouse\Air Mouse.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Mick\Mijn documenten\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\Trust\GM-4600 Gamer Mouse\Amoumain.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Air Mouse.lnk = C:\Program Files\Air Mouse\Air Mouse\Air Mouse.exe
O4 - Global Startup: SMCWPCI-GM MIMO Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Apparaatdetectie) - http://www.logitech.com//devicedetector/plugins/LogitechDeviceDetection32.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

–
End of file - 6905 bytes

Anoniem 14 september 2011 14:25

Dat pakken we dan maar even aan:

open een nieuw kladblok bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:2f161aef1d]Kladblok[/b:2f161aef1d]".

Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster

[b:2f161aef1d]

Anoniem 14 september 2011 14:49

Mbam 2e scan is clean

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Databaseversie: 7713

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

14-9-2011 16:44:58
mbam-log-2011-09-14 (16-44-58).txt

Scantype: Snelle scan
Objecten gescand: 159990
Verstreken tijd: 2 minuut/minuten, 26 seconde(n)

Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 0
Registerwaarden geïnfecteerd: 0
Registerdata geïnfecteerd: 0
Mappen geïnfecteerd: 0
Bestanden geïnfecteerd: 0

Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registerdata geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Mappen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Bestanden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Anoniem 14 september 2011 14:49

Kijk naar mijn vorige bericht, dat heb je waarschijnlijk gemist.

En ja we zijn op de goede weg!

Anoniem 14 september 2011 14:55

Ja ik zag 'm staan na mijn vorige post.

ComboFix 11-09-14.01 - Mick 14-09-2011 16:54:36.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.481 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Mick\Bureaublad\ComboFix.exe
gebruikte Opdracht switches :: c:\documents and settings\Mick\Bureaublad\CFScript.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Mick\Application Data\QuickStoresToolbar
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\affid.ini
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\data.ini
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\Interop.SHDocVw.dll
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\QuickStores.ico
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\QuickStoresToolbar.dll
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\unins000.dat
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\unins000.exe
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\unins000.msg
c:\documents and settings\Mick\Application Data\QuickStoresToolbar\Update.exe
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-08-14 to 2011-09-14 ))))))))))))))))))))))))))))))
.
.
2011-09-14 12:54 . 2011-09-14 12:49 110592 —-a-w- c:\windows\system32\drivers\nvtcp.sys
2011-09-14 12:54 . 2007-09-25 15:08 356352 —-a-w- c:\windows\system32\nvunrm.exe
2011-09-14 12:50 . 2011-09-14 12:50 ——– d—–w- c:\program files\AMD
2011-09-14 12:28 . 2011-09-14 12:28 ——– d—–w- c:\documents and settings\All Users\Application Data\ATI
2011-09-14 12:25 . 2010-02-10 19:20 593920 ——w- c:\windows\system32\ati2sgag.exe
2011-09-14 12:18 . 2011-09-14 12:18 0 —-a-w- c:\windows\ativpsrm.bin
2011-09-14 12:03 . 2011-09-14 12:03 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
2011-09-14 12:03 . 2011-08-31 15:00 22216 —-a-w- c:\windows\system32\drivers\mbam.sys
2011-09-14 11:53 . 2011-09-14 11:53 ——– d—–w- C:\ATI
2011-09-14 11:35 . 2011-09-14 11:44 ——– d—–w- c:\program files\Unlocker
2011-09-14 11:24 . 2011-09-14 14:52 ——– d–h–r- c:\documents and settings\Mick\Onlangs geopend
2011-09-14 11:22 . 2011-09-14 11:22 ——– d—–w- c:\program files\Common Files\Java
2011-09-14 11:22 . 2011-05-04 02:52 472808 —-a-w- c:\windows\system32\deployJava1.dll
2011-09-14 11:20 . 2011-09-14 11:20 ——– d—–w- c:\documents and settings\Mick\Application Data\AVG2012
2011-09-14 11:16 . 2011-09-14 11:21 ——– d—–w- c:\windows\system32\drivers\AVG
2011-09-14 11:16 . 2011-09-14 11:32 ——– d—–w- c:\documents and settings\All Users\Application Data\AVG2012
2011-09-14 11:09 . 2011-09-14 11:21 ——– d—–w- c:\documents and settings\All Users\Application Data\MFAData
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\Mick\Application Data\Malwarebytes
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-09-14 09:03 . 2011-09-14 09:03 ——– d—–w- c:\program files\CCleaner
2011-09-07 17:08 . 2010-09-18 06:53 953856 -c—-w- c:\windows\system32\dllcache\mfc40u.dll
2011-09-07 17:08 . 2010-08-23 16:13 617472 -c—-w- c:\windows\system32\dllcache\comctl32.dll
2011-09-07 17:08 . 2010-11-02 15:17 40960 -c—-w- c:\windows\system32\dllcache\ndproxy.sys
2011-09-07 17:07 . 2011-06-24 14:10 139656 -c—-w- c:\windows\system32\dllcache\rdpwd.sys
2011-09-07 17:07 . 2011-04-21 13:37 105472 -c—-w- c:\windows\system32\dllcache\mup.sys
2011-09-07 17:06 . 2011-07-08 14:02 10496 -c—-w- c:\windows\system32\dllcache\ndistapi.sys
2011-09-07 17:06 . 2010-10-11 14:59 45568 -c—-w- c:\windows\system32\dllcache\wab.exe
2011-09-06 15:54 . 2011-06-21 18:37 52224 -c—-w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-09-06 15:54 . 2011-06-21 18:37 468480 -c—-w- c:\windows\system32\dllcache\msfeeds.dll
2011-09-06 15:54 . 2011-06-21 18:37 268288 -c—-w- c:\windows\system32\dllcache\iertutil.dll
2011-09-06 15:54 . 2011-06-21 11:46 13824 -c—-w- c:\windows\system32\dllcache\ieudinit.exe
2011-09-06 15:54 . 2011-06-21 18:37 6076416 -c—-w- c:\windows\system32\dllcache\ieframe.dll
2011-09-06 15:54 . 2011-06-21 18:37 380928 -c—-w- c:\windows\system32\dllcache\ieapfltr.dll
2011-09-06 15:54 . 2011-06-21 18:37 63488 -c—-w- c:\windows\system32\dllcache\icardie.dll
2011-09-06 15:54 . 2010-02-22 22:04 2452872 -c—-w- c:\windows\system32\dllcache\ieapfltr.dat
2011-09-06 15:21 . 2011-09-06 15:55 ——– d—–w- c:\windows\system32\nl-nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\l2schemas
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\bits
2011-09-06 15:09 . 2011-09-06 15:09 ——– d—–w- c:\windows\EHome
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoiins.dll
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoi.dll
2011-09-14 12:49 . 2007-08-10 00:11 102400 —-a-w- c:\windows\system32\drivers\nvgts.sys
2011-09-14 12:49 . 2006-07-11 19:38 20480 —-a-w- c:\windows\system32\drivers\nvnetbus.sys
2011-09-14 12:49 . 2006-07-11 19:38 1160448 —-a-w- c:\windows\system32\drivers\nvnrm.sys
2011-09-14 12:49 . 2006-07-11 19:37 261632 —-a-w- c:\windows\system32\drivers\nvsnpu.sys
2011-09-14 12:49 . 2006-07-11 19:38 57856 —-a-w- c:\windows\system32\drivers\NVENETFD.sys
2011-09-14 12:49 . 2006-06-29 13:40 35840 —-a-w- c:\windows\system32\nvconrm.dll
2011-09-14 12:49 . 2010-02-25 09:50 201728 —-a-w- c:\windows\system32\fdco1ins.dll
2011-09-14 12:49 . 2010-02-25 09:50 11264 —-a-w- c:\windows\system32\bdco1ins.dll
2011-09-14 12:49 . 2006-07-11 19:36 201728 —-a-w- c:\windows\system32\fdco1.dll
2011-09-14 12:49 . 2006-07-11 19:36 11264 —-a-w- c:\windows\system32\bdco1.dll
2011-08-08 04:08 . 2011-08-08 04:08 40016 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
2011-07-15 13:29 . 2006-03-02 12:00 456320 —-a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-10 23:14 . 2011-07-10 23:14 295248 —-a-w- c:\windows\system32\drivers\avgtdix.sys
2011-07-10 23:14 . 2011-07-10 23:14 23120 —-a-w- c:\windows\system32\drivers\AVGIDSEH.sys
2011-07-10 23:13 . 2011-07-10 23:13 229840 —-a-w- c:\windows\system32\drivers\avgldx86.sys
2011-07-08 14:02 . 2006-03-02 12:00 10496 —-a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-24 17:02 . 2010-03-10 18:29 43520 —-a-w- c:\windows\system32\CmdLineExt03.dll
2011-06-24 14:10 . 2009-08-30 15:06 139656 —-a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-21 18:37 . 2006-03-02 12:00 832512 —-a-w- c:\windows\system32\wininet.dll
2011-06-21 18:37 . 2006-03-02 12:00 78336 —-a-w- c:\windows\system32\ieencode.dll
2011-06-21 18:37 . 2006-03-02 12:00 1830912 ——w- c:\windows\system32\inetcpl.cpl
2011-06-21 18:37 . 2006-03-02 12:00 17408 —-a-w- c:\windows\system32\corpol.dll
2011-06-21 11:47 . 2006-03-02 12:00 389120 —-a-w- c:\windows\system32\html.iec
2011-06-20 17:44 . 2006-03-02 12:00 293888 —-a-w- c:\windows\system32\winsrv.dll
2011-09-03 06:36 . 2011-09-14 09:56 134104 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-09-14_13.27.18 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-09-14 14:09 . 2011-09-14 14:09 16384 c:\windows\Temp\Perflib_Perfdata_9e0.dat
- 2006-03-02 12:00 . 2011-09-14 13:18 86256 c:\windows\system32\perfc013.dat
+ 2006-03-02 12:00 . 2011-09-14 14:13 86256 c:\windows\system32\perfc013.dat
- 2006-03-02 12:00 . 2011-09-14 13:18 67448 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2011-09-14 14:13 67448 c:\windows\system32\perfc009.dat
+ 2011-09-14 13:36 . 2011-09-14 13:36 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\343c52b741531ce9ae874ea7508831a7\System.Windows.Presentation.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\246110974e3c48733458819b07464b23\System.Web.DynamicData.Design.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ace861fe8dbf146c3e449abaa7691e9f\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\177a17af98d803ab79006d6785706462\System.AddIn.Contract.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\f9c514544c8e23220493cd42a0e20678\Microsoft.Vsa.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5057c30d89ad8d99e38c946a68def9e\Microsoft.Build.Framework.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\623c05a555ac0719a1367f511d4a9270\Microsoft.Build.Framework.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\c40d3caad8bff3c52db7e7562286406a\dfsvc.ni.exe
+ 2006-03-02 12:00 . 2011-09-14 14:13 499226 c:\windows\system32\perfh013.dat
- 2006-03-02 12:00 . 2011-09-14 13:18 499226 c:\windows\system32\perfh013.dat
+ 2006-03-02 12:00 . 2011-09-14 14:13 432492 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2011-09-14 13:18 432492 c:\windows\system32\perfh009.dat
+ 2011-09-14 13:34 . 2011-09-14 13:34 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\cc14c69205b984edba1db26fd5e421ac\WsatConfig.ni.exe
+ 2011-09-14 13:36 . 2011-09-14 13:36 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\946eefb99bc116ee68e0e7c69a5a8a5c\System.Xml.Linq.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\a82eef3128b9527dc05b3c8667e713bc\System.Web.Routing.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\203c148c913357bfc2ae9d209101f2b3\System.Web.RegularExpressions.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\f89fe39468ea6faf71c4257c89cf3c54\System.Web.Extensions.Design.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\2314ff800782dc85224e69e802a073f7\System.Web.Entity.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\f690a8f5d784a5bb20f2cbaa7277eb6c\System.Web.Entity.Design.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\c5c96400424b85536443623f96f64581\System.Web.DynamicData.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\5f8e87b47465a038403e73012c6d102a\System.Web.Abstractions.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\846dd505f97805f00999ee26aec9bf75\System.Transactions.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\70a1400affdc775d7c7398e036359286\System.ServiceProcess.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\de9cd25ccb24bcf8a0316756e766721f\System.Security.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\21248037960cf6dfa2ce401d355bd6c9\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\480ea914e13fe41cdd8fb542bb1f7e81\System.Net.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\6e563a58e6fc0117070d5b8fd59e4e1b\System.Management.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\dc72c7581f1b3794c0ea595ba02ff7ad\System.Management.Instrumentation.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\fcf8612a210d1f76e0b37dc8467b4696\System.IO.Log.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\ec017b5a95d02fccaefd835490ef1e14\System.IdentityModel.Selectors.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.Wrapper.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\75f452279422a7898e840ee5768c9d2e\System.EnterpriseServices.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\822c996e6ad4901219b7de399a6f78bf\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\1ffe911e62f482e42be2c4428bd08c10\System.DirectoryServices.Protocols.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\e1c009b2c9becdb732a2ea45f32a46b8\System.Data.Services.Design.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\1defd94e1662a4478ccf2cd0b1b4e6a6\System.Data.Services.Client.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\04267c1dbdcdd8ec37e1518126767ead\System.Data.Entity.Design.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\f2a6d41b3f6e26eea6dcac9298aa637b\System.Data.DataSetExtensions.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\77df2cd21a5b85a1605b335aa9ad9d44\System.Configuration.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\585e68739b2a8aff61ee6b2786513245\System.Configuration.Install.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\fbf6ef12d1456058acde29f2640092fb\System.AddIn.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\896e42071939e038008b0bbbfed1213c\SMSvcHost.ni.exe
+ 2011-09-14 13:34 . 2011-09-14 13:34 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\ca07e9cf488af1290d2340d682574a24\SMDiagnostics.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\a5aa977dd575a6beb3a416bd480b98a7\ServiceModelReg.ni.exe
+ 2011-09-14 13:34 . 2011-09-14 13:34 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\2d89c7b72bc8e527b26d5b6f3b931012\MSBuild.ni.exe
+ 2011-09-14 13:34 . 2011-09-14 13:34 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\39e9d172f0cf5eec30b1b67212cc032b\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\f1b0ec3ccde9142e67ac681fb521ac66\Microsoft.Build.Utilities.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\9250f038410f0d6432e3ccb0b046862b\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\a4672179aba638cd78bdfe268391b47b\Microsoft.Build.Engine.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\37db660a84ee52b61a7ca55812581bbd\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\80bd17388778c90f301746ad88700758\CustomMarshalers.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\fe9a21b94803f74697bb42b9d1fdea5b\ComSvcConfig.ni.exe
+ 2011-09-14 13:34 . 2011-09-14 13:34 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\f160c8e40b60edd47ae74b0b911fece1\AspNetMMCExt.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\22229a30650a9afbac984e1093898b13\System.WorkflowServices.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\4d6b3cc1fc7a4788612241af7966715a\System.Workflow.Runtime.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\e4c9853af945c9cfede19f3faf18af6e\System.Workflow.ComponentModel.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\ab4b50c7c789e46a485903365765fde8\System.Workflow.Activities.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\a2392c995b1bb6b63079091259222357\System.Web.Services.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\3da92a0b9b8ac97e11ca8bf4df671a78\System.Web.Mobile.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\01f4d6aa3299a41b8578b7e96afdcfb1\System.Web.Extensions.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\27e1b8dfd5e1ccf2c5b9efc51f674c69\System.ServiceModel.Web.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\dece01bd9e9c32e47630fdfc78d3bd32\System.Runtime.Serialization.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a50e2fc92db32751857fb8d297f9d7bc\System.IdentityModel.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\259ecf480769f4e60514b7ae2abaa6f1\System.DirectoryServices.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\71cf3eb40fc38e6ac8fba09e872d2878\System.Deployment.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\0b16305773369cf740c6a2b1f1d785b2\System.Data.SqlXml.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\c1b9b8ce390548dcca661a5e6a908408\System.Data.Services.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\2b58cc071d6bf0c741e91f86c09de5d7\System.Data.Entity.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\c6b19db2534042d435ede580f92bc75c\Microsoft.VisualBasic.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\08594c4ba9ea0253a836fe1d8d341984\Microsoft.Transactions.Bridge.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\345abd035c9378667b1cac54c1f21c97\Microsoft.JScript.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\906cd5555b79e4e0486dc8ef2a748b13\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-09-14 13:35 . 2011-09-14 13:35 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\7baff7d694394aaba490082c88d48fd2\Microsoft.Build.Tasks.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\235a22e1ae9742bb724d411629dd99d5\Microsoft.Build.Engine.ni.dll
+ 2011-09-14 13:36 . 2011-09-14 13:36 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\40893760431f8f0dcce3e18630e45b23\System.Web.ni.dll
+ 2011-09-14 13:34 . 2011-09-14 13:34 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\e3a0205acab2215fbad7927d9d483aeb\System.ServiceModel.ni.dll
.
– Snapshot teruggezet naar huidige datum –
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-18 10:26 3908192 —-a-w- c:\program files\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2007-07-17 1687824]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2007-07-18 2094352]
"WheelMouse"="c:\program files\Trust\GM-4600 Gamer Mouse\Amoumain.exe" [2006-09-29 163840]
"RTHDCPL"="RTHDCPL.EXE" [2009-12-25 18789408]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-26 421160]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2011-08-19 2387296]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Air Mouse.lnk - c:\program files\Air Mouse\Air Mouse\Air Mouse.exe [2010-12-27 1044648]
SMCWPCI-GM MIMO Wireless Utility.lnk - c:\program files\RALINK\Common\RaUI.exe [2010-2-25 741376]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\EA GAMES\\The Battle for Middle-earth™\\game.dat"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Electronic Arts\\The Battle for Middle-earth II\\game.dat"=
"c:\\Program Files\\Air Mouse\\Air Mouse\\Air Mouse.exe"=
"c:\\Program Files\\Logitech Touch Mouse Server\\iTouch-Server-Win.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [11-7-2011 1:14 23120]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [11-7-2011 1:13 229840]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [11-7-2011 1:14 295248]
R2 ASTRA32;ASTRA32 Kernel Driver 5.2.1.0;c:\documents and settings\Mick\Mijn documenten\Downloads\astra32zip210\astra32.sys [22-2-2007 11:28 30864]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2-8-2011 6:09 192776]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [14-9-2011 14:03 366152]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [14-9-2011 14:03 22216]
S2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [16-4-2010 17:27 135664]
S2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe -k yksvcs [2-3-2006 14:00 14336]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [5-3-2010 19:13 1691480]
S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [16-4-2010 17:27 135664]
S3 SkLaggProtocol;Marvell Link Aggregation Protocol;c:\windows\system32\drivers\yk51x86l.sys [22-9-2009 11:10 60928]
S3 SkVlanProtocol;Marvell VLAN Protocol;c:\windows\system32\drivers\yk51x86v.sys [27-8-2009 11:10 20992]
.
— Andere Services/Drivers In Geheugen —
.
*Deregistered* - MBAMSwissArmy
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
yksvcs REG_MULTI_SZ yksvc
.
Inhoud van de 'Gedeelde Taken' map
.
2011-01-08 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 10:50]
.
2011-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-16 15:27]
.
2011-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-16 15:27]
.
.
——- Bijkomende Scan ——-
.
uStart Page = hxxp://www.google.nl/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: DhcpNameServer = 10.0.1.1
FF - ProfilePath - c:\documents and settings\Mick\Application Data\Mozilla\Firefox\Profiles\lwhoaklz.default\
.
- - - - ORPHANS VERWIJDERD - - - -
.
AddRemove-QuickStores-Toolbar_is1 - c:\documents and settings\Mick\Application Data\QuickStoresToolbar\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-09-14 17:01
Windows 5.1.2600 Service Pack 3 NTFS
.
scannen van verborgen processen …
.
scannen van verborgen autostart items …
.
scannen van verborgen bestanden …
.
Scan succesvol afgerond
verborgen bestanden: 0
.
**************************************************************************
.
——————— DLLs Geladen Onder Lopende Processen ———————
.
- - - - - - - > 'winlogon.exe'(1068)
c:\windows\system32\Ati2evxx.dll
.
Voltooingstijd: 2011-09-14 17:02:25
ComboFix-quarantined-files.txt 2011-09-14 15:02
ComboFix2.txt 2011-09-14 13:28
.
Pre-Run: 197.140.033.536 bytes beschikbaar
Post-Run: 197.125.746.688 bytes beschikbaar
.
- - End Of File - - 08233DF086A33A5E71F881268DCCF6A5

Anoniem 14 september 2011 14:58

Als ik naar de nieuwe log kijk zie ik dat hij een aantal bestanden verwijderd heb van die QuickStores toolbar.

Combofix vroeg me niet opnieuw op te starten.
Ik zie de QuickStores toolbar nog steeds in Firefox staan.

Anoniem 14 september 2011 15:05

Ok hij is bezig.
Maakt het hier nog uit of de virusscanner aan staat?

Anoniem 15 september 2011 12:26

Als je eigen antivirussoftware ook aanstaat, zal Eset er langer over doen!

Anoniem 15 september 2011 12:40

Klik in Firefox op Extra>Add-Ons.

Klik vervolgens op "Entries".

Daarmoet je die toolbar kunnen vinden.
Klik dan op verwijderen.
Je zal daarna Firefox moeten herstarten.

En verder had ik iets vergeten in het vorige script, dus moet dat ingehaald worden.

Open wederom een nieuw kladblok bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:475a1bdeed]Kladblok[/b:475a1bdeed]".

Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster

[b:475a1bdeed]

Anoniem 14 september 2011 16:13

ComboFix 11-09-14.01 - Mick 14-09-2011 18:48:18.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.487 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Mick\Bureaublad\ComboFix.exe
gebruikte Opdracht switches :: c:\documents and settings\Mick\Bureaublad\CFScript.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ConduitEngine
c:\program files\ConduitEngine\appContextMenu.xml
c:\program files\ConduitEngine\ConduitEngine.dll
c:\program files\ConduitEngine\ConduitEngineHelper.exe
c:\program files\ConduitEngine\engineContextMenu.xml
c:\program files\ConduitEngine\EngineSettings.json
c:\program files\ConduitEngine\toolbar.cfg
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-08-14 to 2011-09-14 ))))))))))))))))))))))))))))))
.
.
2011-09-14 16:40 . 2011-09-14 16:40 ——– d-sh–w- c:\documents and settings\LocalService\IETldCache
2011-09-14 16:40 . 2011-09-14 16:40 ——– d-sh–w- c:\documents and settings\Mick\IETldCache
2011-09-14 16:36 . 2010-10-18 11:10 7680 -c—-w- c:\windows\system32\dllcache\iecompat.dll
2011-09-14 16:36 . 2011-06-23 18:31 12800 -c—-w- c:\windows\system32\dllcache\xpshims.dll
2011-09-14 16:36 . 2011-06-23 18:31 247808 -c—-w- c:\windows\system32\dllcache\ieproxy.dll
2011-09-14 16:36 . 2011-06-23 18:31 743424 -c—-w- c:\windows\system32\dllcache\iedvtool.dll
2011-09-14 16:35 . 2011-09-14 16:36 ——– dc-h–w- c:\windows\ie8
2011-09-14 16:32 . 2011-09-14 16:32 ——– d—–w- c:\program files\Windows Media Connect 2
2011-09-14 16:31 . 2011-09-14 16:32 ——– d—–w- c:\windows\system32\drivers\UMDF
2011-09-14 16:31 . 2011-09-14 16:31 ——– d—–w- c:\windows\system32\LogFiles
2011-09-14 16:10 . 2006-06-29 11:07 14048 ——w- c:\windows\system32\spmsg2.dll
2011-09-14 15:52 . 2011-09-14 15:52 404640 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2011-09-14 15:46 . 2011-09-14 15:46 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2011-09-14 15:46 . 2011-09-14 15:46 ——– d—–w- c:\program files\QuickTime
2011-09-14 15:44 . 2011-09-14 15:44 ——– d—–w- c:\documents and settings\Default User\Local Settings\Application Data\Apple Computer
2011-09-14 15:38 . 2011-09-14 15:38 ——– d—–w- c:\documents and settings\Mick\Local Settings\Application Data\Secunia PSI
2011-09-14 15:37 . 2011-09-14 15:37 ——– d—–w- c:\program files\Secunia
2011-09-14 15:17 . 2011-09-14 16:46 ——– d–h–r- c:\documents and settings\Mick\Onlangs geopend
2011-09-14 12:54 . 2011-09-14 12:49 110592 —-a-w- c:\windows\system32\drivers\nvtcp.sys
2011-09-14 12:54 . 2007-09-25 15:08 356352 —-a-w- c:\windows\system32\nvunrm.exe
2011-09-14 12:50 . 2011-09-14 12:50 ——– d—–w- c:\program files\AMD
2011-09-14 12:28 . 2011-09-14 12:28 ——– d—–w- c:\documents and settings\All Users\Application Data\ATI
2011-09-14 12:25 . 2010-02-10 19:20 593920 ——w- c:\windows\system32\ati2sgag.exe
2011-09-14 12:18 . 2011-09-14 12:18 0 —-a-w- c:\windows\ativpsrm.bin
2011-09-14 12:03 . 2011-09-14 12:03 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
2011-09-14 12:03 . 2011-08-31 15:00 22216 —-a-w- c:\windows\system32\drivers\mbam.sys
2011-09-14 11:35 . 2011-09-14 11:44 ——– d—–w- c:\program files\Unlocker
2011-09-14 11:22 . 2011-09-14 11:22 ——– d—–w- c:\program files\Common Files\Java
2011-09-14 11:22 . 2011-05-04 02:52 472808 —-a-w- c:\windows\system32\deployJava1.dll
2011-09-14 11:20 . 2011-09-14 11:20 ——– d—–w- c:\documents and settings\Mick\Application Data\AVG2012
2011-09-14 11:16 . 2011-09-14 11:21 ——– d—–w- c:\windows\system32\drivers\AVG
2011-09-14 11:16 . 2011-09-14 11:32 ——– d—–w- c:\documents and settings\All Users\Application Data\AVG2012
2011-09-14 11:09 . 2011-09-14 11:21 ——– d—–w- c:\documents and settings\All Users\Application Data\MFAData
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\Mick\Application Data\Malwarebytes
2011-09-14 10:21 . 2011-09-14 10:21 ——– d—–w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-09-14 09:03 . 2011-09-14 09:03 ——– d—–w- c:\program files\CCleaner
2011-09-09 09:12 . 2011-09-09 09:12 602624 -c—-w- c:\windows\system32\dllcache\crypt32.dll
2011-09-07 17:08 . 2010-09-18 06:53 953856 -c—-w- c:\windows\system32\dllcache\mfc40u.dll
2011-09-07 17:08 . 2010-08-23 16:13 617472 -c—-w- c:\windows\system32\dllcache\comctl32.dll
2011-09-07 17:08 . 2010-11-02 15:17 40960 -c—-w- c:\windows\system32\dllcache\ndproxy.sys
2011-09-07 17:07 . 2011-06-24 14:10 139656 -c—-w- c:\windows\system32\dllcache\rdpwd.sys
2011-09-07 17:07 . 2011-04-21 13:37 105472 -c—-w- c:\windows\system32\dllcache\mup.sys
2011-09-07 17:06 . 2011-07-08 14:02 10496 -c—-w- c:\windows\system32\dllcache\ndistapi.sys
2011-09-07 17:06 . 2010-10-11 14:59 45568 -c—-w- c:\windows\system32\dllcache\wab.exe
2011-09-06 15:54 . 2011-06-23 18:31 602112 -c—-w- c:\windows\system32\dllcache\msfeeds.dll
2011-09-06 15:54 . 2011-06-23 18:31 55296 -c—-w- c:\windows\system32\dllcache\msfeedsbs.dll
2011-09-06 15:54 . 2011-06-23 18:31 1991680 -c—-w- c:\windows\system32\dllcache\iertutil.dll
2011-09-06 15:54 . 2011-06-21 11:46 13824 -c—-w- c:\windows\system32\dllcache\ieudinit.exe
2011-09-06 15:54 . 2011-06-23 18:31 11081728 -c—-w- c:\windows\system32\dllcache\ieframe.dll
2011-09-06 15:54 . 2009-03-08 02:31 59904 -c–a-w- c:\windows\system32\dllcache\icardie.dll
2011-09-06 15:54 . 2009-03-08 02:11 445952 -c–a-w- c:\windows\system32\dllcache\ieapfltr.dll
2011-09-06 15:54 . 2009-02-06 19:07 3698584 -c–a-w- c:\windows\system32\dllcache\ieapfltr.dat
2011-09-06 15:21 . 2011-09-14 16:39 ——– d—–w- c:\windows\system32\nl-nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\l2schemas
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\nl
2011-09-06 15:21 . 2011-09-06 15:21 ——– d—–w- c:\windows\system32\bits
2011-09-06 15:09 . 2011-09-06 15:09 ——– d—–w- c:\windows\EHome
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoiins.dll
2011-09-14 12:49 . 2010-02-25 09:50 353280 —-a-w- c:\windows\system32\idecoi.dll
2011-09-14 12:49 . 2007-08-10 00:11 102400 —-a-w- c:\windows\system32\drivers\nvgts.sys
2011-09-14 12:49 . 2006-07-11 19:38 20480 —-a-w- c:\windows\system32\drivers\nvnetbus.sys
2011-09-14 12:49 . 2006-07-11 19:38 1160448 —-a-w- c:\windows\system32\drivers\nvnrm.sys
2011-09-14 12:49 . 2006-07-11 19:37 261632 —-a-w- c:\windows\system32\drivers\nvsnpu.sys
2011-09-14 12:49 . 2006-07-11 19:38 57856 —-a-w- c:\windows\system32\drivers\NVENETFD.sys
2011-09-14 12:49 . 2006-06-29 13:40 35840 —-a-w- c:\windows\system32\nvconrm.dll
2011-09-14 12:49 . 2010-02-25 09:50 201728 —-a-w- c:\windows\system32\fdco1ins.dll
2011-09-14 12:49 . 2010-02-25 09:50 11264 —-a-w- c:\windows\system32\bdco1ins.dll
2011-09-14 12:49 . 2006-07-11 19:36 201728 —-a-w- c:\windows\system32\fdco1.dll
2011-09-14 12:49 . 2006-07-11 19:36 11264 —-a-w- c:\windows\system32\bdco1.dll
2011-09-09 09:12 . 2006-03-02 12:00 602624 —-a-w- c:\windows\system32\crypt32.dll
2011-08-08 04:08 . 2011-08-08 04:08 40016 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
2011-07-15 13:29 . 2006-03-02 12:00 456320 —-a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-10 23:14 . 2011-07-10 23:14 295248 —-a-w- c:\windows\system32\drivers\avgtdix.sys
2011-07-10 23:14 . 2011-07-10 23:14 23120 —-a-w- c:\windows\system32\drivers\AVGIDSEH.sys
2011-07-10 23:13 . 2011-07-10 23:13 229840 —-a-w- c:\windows\system32\drivers\avgldx86.sys
2011-07-08 14:02 . 2006-03-02 12:00 10496 —-a-w- c:\windows\system32\drivers\ndistapi.sys
2011-07-05 16:37 . 2011-07-05 16:37 94208 —-a-w- c:\windows\system32\QuickTimeVR.qtx
2011-07-05 16:37 . 2011-07-05 16:37 69632 —-a-w- c:\windows\system32\QuickTime.qts
2011-06-24 17:02 . 2010-03-10 18:29 43520 —-a-w- c:\windows\system32\CmdLineExt03.dll
2011-06-24 14:10 . 2009-08-30 15:06 139656 —-a-w- c:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:31 . 2006-03-02 12:00 916480 —-a-w- c:\windows\system32\wininet.dll
2011-06-23 18:31 . 2006-03-02 12:00 43520 ——w- c:\windows\system32\licmgr10.dll
2011-06-23 18:31 . 2006-03-02 12:00 1469440 ——w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05 . 2006-03-02 12:00 385024 ——w- c:\windows\system32\html.iec
2011-06-20 17:44 . 2006-03-02 12:00 293888 —-a-w- c:\windows\system32\winsrv.dll
2011-09-03 06:36 . 2011-09-14 09:56 134104 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-09-14_15.01.19 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-18 20:51 . 2011-04-18 20:51 51024 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_4ddc769f\vcomp90.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 59728 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90rus.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 42832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90kor.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 43344 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90jpn.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 61264 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90ita.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 62800 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90fra.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esp.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esn.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 53584 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 63312 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90deu.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 36688 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90cht.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 35664 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90chs.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90u.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90.dll
+ 2011-05-13 18:17 . 2011-05-13 18:17 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_452bf920\vcomp.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80KOR.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80JPN.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ITA.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80FRA.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ESP.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80DEU.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHT.dll
+ 2011-05-13 17:45 . 2011-05-13 17:45 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHS.dll
+ 2011-05-13 23:06 . 2011-05-13 23:06 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80u.dll
+ 2011-05-13 23:23 . 2011-05-13 23:23 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80.dll
+ 2011-05-13 16:37 . 2011-05-13 16:37 97280 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
+ 2011-09-14 16:40 . 2011-09-14 16:40 16384 c:\windows\Temp\Perflib_Perfdata_7c.dat
+ 2006-09-28 16:56 . 2006-09-28 16:56 55808 c:\windows\system32\WudfSvc.dll
+ 2006-09-28 18:13 . 2006-09-28 18:13 95344 c:\windows\system32\WUDFCoinstaller.dll
+ 2006-11-02 09:52 . 2006-11-02 09:52 42496 c:\windows\system32\wpdshextres.dll
+ 2006-10-18 18:00 . 2006-10-18 18:00 17408 c:\windows\system32\wpdshextautoplay.exe
+ 2006-10-18 19:47 . 2006-10-18 19:47 63488 c:\windows\system32\wpdmtpus.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 35840 c:\windows\system32\wpdconns.dll
+ 2006-03-02 12:00 . 2006-11-02 20:53 99840 c:\windows\system32\wmpshell.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 37376 c:\windows\system32\wmdmps.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 33792 c:\windows\system32\wmdmlog.dll
+ 2010-02-25 10:07 . 2009-01-07 16:21 26144 c:\windows\system32\spupdsvc.exe
+ 2011-09-14 16:33 . 2009-01-07 16:21 18464 c:\windows\system32\spmsg.dll
+ 2006-03-02 12:00 . 2009-03-08 02:31 46592 c:\windows\system32\pngfilt.dll
- 2006-03-02 12:00 . 2011-09-14 14:13 86256 c:\windows\system32\perfc013.dat
+ 2006-03-02 12:00 . 2011-09-14 16:44 86256 c:\windows\system32\perfc013.dat
- 2006-03-02 12:00 . 2011-09-14 14:13 67448 c:\windows\system32\perfc009.dat
+ 2006-03-02 12:00 . 2011-09-14 16:44 67448 c:\windows\system32\perfc009.dat
+ 2006-06-29 06:05 . 2009-01-07 16:20 23552 c:\windows\system32\normaliz.dll
- 2006-06-29 06:05 . 2006-06-29 06:05 23552 c:\windows\system32\normaliz.dll
- 2006-06-28 15:59 . 2006-06-28 15:59 24576 c:\windows\system32\nlsdl.dll
+ 2006-06-28 15:59 . 2009-01-07 16:20 24576 c:\windows\system32\nlsdl.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 15872 c:\windows\system32\mui\0413\mscorees.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 27136 c:\windows\system32\mspmsnsv.dll
- 2006-03-02 12:00 . 2007-08-13 16:01 48128 c:\windows\system32\mshtmler.dll
+ 2006-03-02 12:00 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 66560 c:\windows\system32\mshtmled.dll
+ 2006-03-02 12:00 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
- 2006-03-02 12:00 . 2007-08-13 16:32 45568 c:\windows\system32\mshta.exe
+ 2007-08-13 16:36 . 2009-03-08 02:31 13312 c:\windows\system32\msfeedssync.exe
+ 2007-08-13 16:54 . 2011-06-23 18:31 55296 c:\windows\system32\msfeedsbs.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 86016 c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 86016 c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2011-08-02 16:08 . 2011-08-02 16:08 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
- 2010-09-20 12:56 . 2010-09-20 12:56 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 11264 c:\windows\system32\LAPRXY.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 25600 c:\windows\system32\jsproxy.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 94720 c:\windows\system32\inseng.dll
+ 2006-03-02 12:00 . 2009-03-08 02:31 34816 c:\windows\system32\imgutil.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 36864 c:\windows\system32\ieudinit.exe
+ 2006-03-02 12:00 . 2009-03-08 02:32 71680 c:\windows\system32\iesetup.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 55808 c:\windows\system32\iernonce.dll
+ 2006-06-29 06:05 . 2009-01-07 16:20 26112 c:\windows\system32\idndl.dll
- 2006-06-29 06:05 . 2006-06-29 06:05 26112 c:\windows\system32\idndl.dll
+ 2007-08-13 16:36 . 2009-03-08 02:31 59904 c:\windows\system32\icardie.dll
+ 2006-09-28 17:00 . 2006-09-28 17:00 82944 c:\windows\system32\drivers\WudfRd.sys
+ 2006-09-28 16:55 . 2006-09-28 16:55 77568 c:\windows\system32\drivers\WudfPf.sys
+ 2006-10-18 18:00 . 2006-10-18 18:00 38528 c:\windows\system32\drivers\wpdusb.sys
+ 2010-09-01 08:30 . 2010-09-01 08:30 15544 c:\windows\system32\drivers\psi_mf.sys
+ 2006-03-02 12:00 . 2006-11-02 20:53 99840 c:\windows\system32\dllcache\wmpshell.dll
+ 2009-08-30 15:08 . 2006-11-02 20:53 64000 c:\windows\system32\dllcache\wmplayer.exe
+ 2009-08-30 15:08 . 2006-11-02 20:53 96256 c:\windows\system32\dllcache\wmpband.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 37376 c:\windows\system32\dllcache\wmdmps.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 33792 c:\windows\system32\dllcache\wmdmlog.dll
+ 2007-08-13 16:36 . 2009-03-08 02:31 46592 c:\windows\system32\dllcache\pngfilt.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 27136 c:\windows\system32\dllcache\mspmsnsv.dll
- 2007-08-13 16:01 . 2007-08-13 16:01 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2007-08-13 16:01 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2007-08-13 16:54 . 2011-06-23 18:31 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2007-08-13 16:32 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
- 2007-08-13 16:32 . 2007-08-13 16:32 45568 c:\windows\system32\dllcache\mshta.exe
+ 2007-08-13 16:44 . 2011-06-23 18:31 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 11264 c:\windows\system32\dllcache\LAPRXY.dll
+ 2007-08-13 16:54 . 2011-06-23 18:31 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 94720 c:\windows\system32\dllcache\inseng.dll
+ 2007-08-13 16:36 . 2009-03-08 02:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2007-08-13 16:18 . 2009-03-08 02:24 68608 c:\windows\system32\dllcache\hmmapi.dll
+ 2007-08-13 16:42 . 2009-03-08 02:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 72704 c:\windows\system32\dllcache\admparse.dll
+ 2006-03-02 12:00 . 2009-03-08 02:33 18944 c:\windows\system32\corpol.dll
+ 2011-08-16 13:57 . 2011-08-16 13:57 86016 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2011-08-16 13:59 . 2011-08-16 13:59 12800 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 72704 c:\windows\system32\admparse.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 43864 c:\windows\Microsoft.NET\Framework\v3.5\nl\MSBuild.resources.exe
+ 2008-10-25 03:10 . 2008-10-25 03:10 19800 c:\windows\Microsoft.NET\Framework\v3.5\nl\EdmGen.Resources.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 16224 c:\windows\Microsoft.NET\Framework\v3.5\nl\DataSvcUtil.resources.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 97280 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\DeleteTemp.exe
+ 2008-10-25 03:04 . 2008-10-25 03:04 27912 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\baseline.dat
+ 2008-10-24 21:38 . 2008-10-24 21:38 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\nl\WsatConfig.resources.dll
+ 2008-10-24 21:38 . 2008-10-24 21:38 10240 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\nl\SMSvcHost.resources.dll
+ 2008-10-24 21:38 . 2008-10-24 21:38 28672 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\nl\ServiceModelReg.resources.dll
+ 2008-10-24 21:38 . 2008-10-24 21:38 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\nl\ComSvcConfig.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Web.Services.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Web.Mobile.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 16384 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Transactions.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.ServiceProcess.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Security.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 11264 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Runtime.Remoting.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Messaging.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Management.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.EnterpriseServices.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Drawing.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.DirectoryServices.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.DirectoryServices.Protocols.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\system.data.sqlxml.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 49152 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Configuration.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Configuration.Install.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\sysglobl.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 96256 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\ShFusRes.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 11264 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Regasm.Resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\MSBuild.resources.dll
+ 2008-09-10 15:43 . 2008-09-10 15:43 57344 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Microsoft.VisualBasic.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 45056 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Microsoft.JScript.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 10240 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Microsoft.Build.Utilities.Resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Microsoft.Build.Engine.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\caspol.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\aspnet_regsql.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 92672 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\aspnet_rc.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 32256 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0413\mscorsecr.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 14336 c:\windows\Microsoft.NET\Framework\v2.0.50727\1043\CvtResUI.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\1043\alinkui.dll
+ 2008-10-24 22:16 . 2008-10-24 22:16 28160 c:\windows\Installer\4f097.msp
+ 2011-09-14 16:10 . 2011-09-14 16:10 80384 c:\windows\Installer\4f080.msi
+ 2011-09-14 15:41 . 2011-09-14 15:41 61440 c:\windows\Installer\{FF2A5498-4EFE-430F-A138-7EB365DBEBAD}\ARPPRODUCTICON.exe
- 2011-05-21 09:16 . 2011-05-21 09:16 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2011-09-14 16:02 . 2011-09-14 16:02 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2011-09-14 16:36 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB982381-IE8\xpshims.dll
+ 2011-09-14 16:36 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
+ 2011-09-14 16:36 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2011-09-14 16:37 . 2010-05-06 10:37 12800 c:\windows\ie8updates\KB2559049-IE8\xpshims.dll
+ 2011-09-14 16:37 . 2009-03-08 02:31 66560 c:\windows\ie8updates\KB2559049-IE8\mshtmled.dll
+ 2011-09-14 16:37 . 2010-05-06 10:36 55296 c:\windows\ie8updates\KB2559049-IE8\msfeedsbs.dll
+ 2011-09-14 16:37 . 2009-03-08 02:34 43008 c:\windows\ie8updates\KB2559049-IE8\licmgr10.dll
+ 2011-09-14 16:37 . 2010-05-06 10:36 25600 c:\windows\ie8updates\KB2559049-IE8\jsproxy.dll
+ 2011-09-14 16:35 . 2009-03-08 14:32 58448 c:\windows\ie8\spuninst\iecustom.dll
+ 2011-09-14 16:35 . 2011-06-21 18:37 44544 c:\windows\ie8\pngfilt.dll
+ 2011-09-14 16:35 . 2007-08-13 16:01 48128 c:\windows\ie8\mshtmler.dll
+ 2011-09-14 16:35 . 2007-08-13 16:32 45568 c:\windows\ie8\mshta.exe
+ 2011-09-14 16:35 . 2007-08-13 16:36 12288 c:\windows\ie8\msfeedssync.exe
+ 2011-09-14 16:35 . 2011-06-21 18:37 52224 c:\windows\ie8\msfeedsbs.dll
+ 2011-09-14 16:35 . 2007-08-13 16:44 40960 c:\windows\ie8\licmgr10.dll
+ 2011-09-14 16:35 . 2011-06-21 18:37 27648 c:\windows\ie8\jsproxy.dll
+ 2011-09-14 16:35 . 2007-08-13 16:39 92672 c:\windows\ie8\inseng.dll
+ 2011-09-14 16:35 . 2007-08-13 16:36 36352 c:\windows\ie8\imgutil.dll
+ 2011-09-14 16:35 . 2007-08-13 16:39 55296 c:\windows\ie8\iesetup.dll
+ 2011-09-14 16:35 . 2011-06-21 18:37 44544 c:\windows\ie8\iernonce.dll
+ 2011-09-14 16:35 . 2011-06-21 18:37 78336 c:\windows\ie8\ieencode.dll
+ 2011-09-14 16:35 . 2011-06-21 11:46 70656 c:\windows\ie8\ie4uinit.exe
+ 2011-09-14 16:35 . 2011-06-21 18:37 63488 c:\windows\ie8\icardie.dll
+ 2011-09-14 16:35 . 2007-08-13 16:18 60416 c:\windows\ie8\hmmapi.dll
+ 2011-09-14 16:35 . 2011-06-21 18:37 17408 c:\windows\ie8\corpol.dll
+ 2011-09-14 16:35 . 2007-08-13 16:39 71680 c:\windows\ie8\admparse.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 86016 c:\windows\assembly\GAC_MSIL\WindowsBase.resources\3.0.0.0_nl_31bf3856ad364e35\WindowsBase.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 10240 c:\windows\assembly\GAC_MSIL\UIAutomationTypes.resources\3.0.0.0_nl_31bf3856ad364e35\UIAutomationTypes.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 12288 c:\windows\assembly\GAC_MSIL\UIAutomationClientsideProviders.resources\3.0.0.0_nl_31bf3856ad364e35\UIAutomationClientsideProviders.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 36864 c:\windows\assembly\GAC_MSIL\system.workflow.runtime.resources\3.0.0.0_nl_31bf3856ad364e35\System.Workflow.Runtime.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 81920 c:\windows\assembly\GAC_MSIL\System.Web.Services.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Web.Services.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 40960 c:\windows\assembly\GAC_MSIL\System.Web.Mobile.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 49152 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design.resources\3.5.0.0_nl_31bf3856ad364e35\System.Web.Extensions.Design.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 15360 c:\windows\assembly\GAC_MSIL\System.Web.Entity.resources\3.5.0.0_nl_b77a5c561934e089\System.Web.Entity.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 11264 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design.resources\3.5.0.0_nl_b77a5c561934e089\System.Web.Entity.Design.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 16384 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.resources\3.5.0.0_nl_31bf3856ad364e35\System.Web.DynamicData.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 16384 c:\windows\assembly\GAC_MSIL\System.Transactions.resources\2.0.0.0_nl_b77a5c561934e089\System.Transactions.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 61440 c:\windows\assembly\GAC_MSIL\System.Speech.resources\3.0.0.0_nl_31bf3856ad364e35\System.Speech.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 40960 c:\windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 69632 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web.resources\3.5.0.0_nl_31bf3856ad364e35\System.ServiceModel.Web.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 36864 c:\windows\assembly\GAC_MSIL\system.servicemodel.install.resources\3.0.0.0_nl_b77a5c561934e089\System.ServiceModel.Install.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\System.Security.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Security.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 90112 c:\windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_nl_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 11264 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 32768 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_nl_b77a5c561934e089\System.Runtime.Remoting.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\System.Printing.resources\3.0.0.0_nl_31bf3856ad364e35\System.Printing.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\System.Net.resources\3.5.0.0_nl_b03f5f7f11d50a3a\System.Net.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 77824 c:\windows\assembly\GAC_MSIL\System.Messaging.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Messaging.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 13824 c:\windows\assembly\GAC_MSIL\system.management.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Management.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 10752 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation.resources\3.5.0.0_nl_b77a5c561934e089\System.Management.Instrumentation.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 11264 c:\windows\assembly\GAC_MSIL\system.io.log.resources\3.0.0.0_nl_b03f5f7f11d50a3a\System.IO.Log.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 53248 c:\windows\assembly\GAC_MSIL\system.identitymodel.selectors.resources\3.0.0.0_nl_b77a5c561934e089\System.IdentityModel.Selectors.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 61440 c:\windows\assembly\GAC_MSIL\system.identitymodel.resources\3.0.0.0_nl_b77a5c561934e089\System.IdentityModel.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 32768 c:\windows\assembly\GAC_MSIL\System.EnterpriseServices.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 24576 c:\windows\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Drawing.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 40960 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.DirectoryServices.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.DirectoryServices.Protocols.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 36864 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement.resources\3.5.0.0_nl_b77a5c561934e089\System.DirectoryServices.AccountManagement.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 36864 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml.resources\2.0.0.0_nl_b77a5c561934e089\system.data.sqlxml.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 65536 c:\windows\assembly\GAC_MSIL\System.Data.Services.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.Services.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 36864 c:\windows\assembly\GAC_MSIL\System.Data.Services.Client.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.Services.Client.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 53248 c:\windows\assembly\GAC_MSIL\System.Data.Linq.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.Linq.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 15360 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.Entity.Design.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 57344 c:\windows\assembly\GAC_MSIL\System.Core.resources\3.5.0.0_nl_b77a5c561934e089\System.Core.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 49152 c:\windows\assembly\GAC_MSIL\system.configuration.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Configuration.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\System.Configuration.Install.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Configuration.Install.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 10752 c:\windows\assembly\GAC_MSIL\sysglobl.resources\2.0.0.0_nl_b03f5f7f11d50a3a\sysglobl.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 40960 c:\windows\assembly\GAC_MSIL\ReachFramework.resources\3.0.0.0_nl_31bf3856ad364e35\ReachFramework.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 53248 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks.resources\3.0.0.0_nl_31bf3856ad364e35\PresentationBuildTasks.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 57344 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 28672 c:\windows\assembly\GAC_MSIL\microsoft.transactions.bridge.resources\3.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 45056 c:\windows\assembly\GAC_MSIL\Microsoft.Jscript.resources\8.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.JScript.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 11264 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5.resources\3.5.0.0_nl_b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 10240 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.resources\2.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.Build.Utilities.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 65536 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\3.5.0.0_nl_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 53248 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine.resources\2.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.Build.Engine.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 11776 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5.resources\3.5.0.0_nl_b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.resources.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\wmvdmoe2.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\wmvdmod.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 4096 c:\windows\system32\WMVADVE.DLL
+ 2006-10-18 19:47 . 2006-10-18 19:47 4096 c:\windows\system32\WMVADVD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\wmsdmoe2.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\wmsdmod.dll
+ 2006-10-18 19:58 . 2006-10-18 19:58 8704 c:\windows\system32\wdfmgr.exe
+ 2006-10-18 19:47 . 2006-10-18 19:47 4096 c:\windows\system32\wdfapi.dll
+ 2006-10-18 19:58 . 2006-10-18 19:58 8704 c:\windows\system32\uwdf.exe
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\MPG4DMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\MP4SDMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\MP43DMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\wmvdmoe2.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\wmvdmod.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\wmsdmoe2.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\wmsdmod.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\MPG4DMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\MP4SDMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 4096 c:\windows\system32\dllcache\MP43DMOD.dll
+ 2006-03-02 12:00 . 2006-11-02 20:50 7680 c:\windows\system32\dllcache\asferror.dll
+ 2006-03-02 12:00 . 2006-11-02 20:50 7680 c:\windows\system32\asferror.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 5632 c:\windows\Microsoft.NET\Framework\v3.5\nl\Microsoft.Data.Entity.Build.Tasks.Resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 6144 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Drawing.Design.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\JSC.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 4096 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\InstallUtil.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\aspnet_regbrowsers.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 8704 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\aspnet_compiler.resources.dll
+ 2008-09-10 15:43 . 2008-09-10 15:43 9216 c:\windows\Microsoft.NET\Framework\v2.0.50727\GAC\NL\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2008-09-10 15:43 . 2008-09-10 15:43 9216 c:\windows\Microsoft.NET\Framework\v2.0.50727\GAC\NL\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2011-09-14 16:37 . 2009-03-08 02:35 2048 c:\windows\ie8updates\KB2447568-IE8\iecompat.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 4608 c:\windows\assembly\GAC_MSIL\WindowsFormsIntegration.resources\3.0.0.0_nl_31bf3856ad364e35\WindowsFormsIntegration.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 4096 c:\windows\assembly\GAC_MSIL\UIAutomationProvider.resources\3.0.0.0_nl_31bf3856ad364e35\UIAutomationProvider.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 4096 c:\windows\assembly\GAC_MSIL\UIAutomationClient.resources\3.0.0.0_nl_31bf3856ad364e35\UIAutomationClient.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 8192 c:\windows\assembly\GAC_MSIL\System.Xml.Linq.resources\3.5.0.0_nl_b77a5c561934e089\System.Xml.Linq.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 3584 c:\windows\assembly\GAC_MSIL\System.Windows.Presentation.resources\3.5.0.0_nl_b77a5c561934e089\System.Windows.Presentation.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 7168 c:\windows\assembly\GAC_MSIL\System.Web.Routing.resources\3.5.0.0_nl_31bf3856ad364e35\System.Web.Routing.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 4096 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design.resources\3.5.0.0_nl_31bf3856ad364e35\System.Web.DynamicData.Design.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 3584 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions.resources\3.5.0.0_nl_31bf3856ad364e35\System.Web.Abstractions.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 6144 c:\windows\assembly\GAC_MSIL\System.Drawing.Design.resources\2.0.0.0_nl_b03f5f7f11d50a3a\System.Drawing.Design.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 7680 c:\windows\assembly\GAC_MSIL\System.Data.Services.Design.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.Services.Design.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 5120 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions.resources\3.5.0.0_nl_b77a5c561934e089\System.Data.DataSetExtensions.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 8192 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations.resources\3.5.0.0_nl_31bf3856ad364e35\System.ComponentModel.DataAnnotations.Resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 5120 c:\windows\assembly\GAC_MSIL\smdiagnostics.resources\3.0.0.0_nl_b77a5c561934e089\SMDiagnostics.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 9216 c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.resources\8.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 9216 c:\windows\assembly\GAC_MSIL\microsoft.visualbasic.compatibility.data.resources\8.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 5120 c:\windows\assembly\GAC_MSIL\microsoft.transactions.bridge.dtc.resources\3.0.0.0_nl_b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.Resources.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 653136 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 569680 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcm90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 06:05 . 2008-07-29 06:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 01:54 . 2008-07-29 01:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2011-04-18 20:51 . 2011-04-18 20:51 159048 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_92453bb7\atl90.dll
+ 2011-05-13 23:17 . 2011-05-13 23:17 632656 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
+ 2011-05-13 23:12 . 2011-05-13 23:12 554832 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
+ 2011-05-13 23:11 . 2011-05-13 23:11 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcm80.dll
+ 2008-04-14 17:02 . 2009-01-07 16:21 121856 c:\windows\system32\xmllite.dll
- 2008-04-14 17:02 . 2008-04-14 17:02 121856 c:\windows\system32\xmllite.dll
+ 2006-09-28 16:56 . 2006-09-28 16:56 316416 c:\windows\system32\WUDFx.dll
+ 2006-09-28 16:56 . 2006-09-28 16:56 165376 c:\windows\system32\WudfPlatform.dll
+ 2006-09-28 16:56 . 2006-09-28 16:56 146432 c:\windows\system32\WudfHost.exe
+ 2006-10-18 19:47 . 2006-10-18 19:47 356352 c:\windows\system32\wpdsp.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 133632 c:\windows\system32\WPDShServiceObj.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 154624 c:\windows\system32\wpdmtp.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 629760 c:\windows\system32\wpd_ci.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 656896 c:\windows\system32\WMVXENCD.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 767488 c:\windows\system32\WMVSENCD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 603648 c:\windows\system32\WMSPDMOD.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 204288 c:\windows\system32\wmpsrcwp.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 130048 c:\windows\system32\wmpps.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 613376 c:\windows\system32\wmpmde.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 295936 c:\windows\system32\wmpeffects.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 314880 c:\windows\system32\wmpdxm.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 242688 c:\windows\system32\wmpasf.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 937984 c:\windows\system32\WMNetMgr.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 157184 c:\windows\system32\wmidx.dll
+ 2006-03-02 12:00 . 2006-11-02 20:52 257536 c:\windows\system32\wmerror.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 535040 c:\windows\system32\wmdrmsdk.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 348672 c:\windows\system32\wmdrmnet.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 429056 c:\windows\system32\wmdrmdev.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 222208 c:\windows\system32\WMASF.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 757248 c:\windows\system32\WMADMOD.dll
+ 2007-08-13 16:45 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2006-03-02 12:00 . 2009-03-08 02:34 236544 c:\windows\system32\webcheck.dll
+ 2006-03-02 12:00 . 2009-03-08 02:33 420352 c:\windows\system32\vbscript.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 105984 c:\windows\system32\url.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 211456 c:\windows\system32\qasf.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 199168 c:\windows\system32\PortableDeviceWMDRM.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 132096 c:\windows\system32\PortableDeviceWiaCompat.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 166912 c:\windows\system32\PortableDeviceTypes.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 101888 c:\windows\system32\PortableDeviceClassExtension.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 284160 c:\windows\system32\PortableDeviceApi.dll
- 2006-03-02 12:00 . 2011-09-14 14:13 499226 c:\windows\system32\perfh013.dat
+ 2006-03-02 12:00 . 2011-09-14 16:44 499226 c:\windows\system32\perfh013.dat
+ 2006-03-02 12:00 . 2011-09-14 16:44 432492 c:\windows\system32\perfh009.dat
- 2006-03-02 12:00 . 2011-09-14 14:13 432492 c:\windows\system32\perfh009.dat
+ 2006-03-02 12:00 . 2011-06-23 18:31 206848 c:\windows\system32\occache.dll
+ 2009-08-06 17:23 . 2009-08-06 17:23 215904 c:\windows\system32\muweb.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 321536 c:\windows\system32\mswmdm.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 611840 c:\windows\system32\mstime.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 414208 c:\windows\system32\msscp.dll
+ 2006-03-02 12:00 . 2009-03-08 02:34 193536 c:\windows\system32\msrating.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 175616 c:\windows\system32\mspmsp.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 179712 c:\windows\system32\msnetobj.dll
- 2006-03-02 12:00 . 2007-08-13 16:54 156160 c:\windows\system32\msls31.dll
+ 2006-03-02 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
+ 2007-08-13 16:54 . 2011-06-23 18:31 602112 c:\windows\system32\msfeeds.dll
+ 2006-10-02 13:28 . 2006-10-02 13:28 312128 c:\windows\system32\msdelta.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 265720 c:\windows\system32\msdbg2.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 259072 c:\windows\system32\MPG4DECD.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 317440 c:\windows\system32\MP4SDECD.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 259072 c:\windows\system32\MP43DECD.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 212992 c:\windows\system32\MFPLAT.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 606208 c:\windows\system32\Macromed\Shockwave 10\iml32X.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 606208 c:\windows\system32\Macromed\Shockwave 10\iml32X.dll
- 2010-09-20 12:56 . 2010-09-20 12:56 471040 c:\windows\system32\Macromed\Shockwave 10\Control.dll
+ 2011-08-02 16:08 . 2011-08-02 16:08 471040 c:\windows\system32\Macromed\Shockwave 10\Control.dll
+ 2011-09-14 15:52 . 2011-09-14 15:52 243360 c:\windows\system32\Macromed\Flash\FlashUtil10w_ActiveX.exe
+ 2011-09-14 15:52 . 2011-09-14 15:52 328864 c:\windows\system32\Macromed\Flash\FlashUtil10w_ActiveX.dll
+ 2006-03-02 12:00 . 2006-10-18 18:03 100864 c:\windows\system32\logagent.exe
+ 2006-03-02 12:00 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
+ 2007-08-13 16:54 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 184320 c:\windows\system32\iepeers.dll
+ 2006-03-02 12:00 . 2011-06-23 18:31 387584 c:\windows\system32\iedkcs32.dll
+ 2007-07-11 10:27 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\ieakui.dll
+ 2006-03-02 12:00 . 2009-03-08 02:33 229376 c:\windows\system32\ieaksie.dll
+ 2006-03-02 12:00 . 2009-03-08 02:33 125952 c:\windows\system32\ieakeng.dll
+ 2006-03-02 12:00 . 2011-06-23 12:05 173568 c:\windows\system32\ie4uinit.exe
+ 2006-03-02 12:00 . 2009-03-08 02:31 216064 c:\windows\system32\dxtrans.dll
+ 2006-03-02 12:00 . 2009-03-08 02:31 348160 c:\windows\system32\dxtmsft.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 991744 c:\windows\system32\drmv2clt.dll
+ 2006-10-18 18:00 . 2006-10-18 18:00 249856 c:\windows\system32\drmupgds.exe
+ 2006-10-18 19:47 . 2006-10-18 19:47 671232 c:\windows\system32\drivers\UMDF\wpdmtpdr.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 603648 c:\windows\system32\dllcache\WMSPDMOD.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 314880 c:\windows\system32\dllcache\wmpdxm.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 242688 c:\windows\system32\dllcache\wmpasf.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 937984 c:\windows\system32\dllcache\WMNetMgr.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 157184 c:\windows\system32\dllcache\wmidx.dll
+ 2006-03-02 12:00 . 2006-11-02 20:52 257536 c:\windows\system32\dllcache\wmerror.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 222208 c:\windows\system32\dllcache\WMASF.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 757248 c:\windows\system32\dllcache\WMADMOD.dll
+ 2009-12-22 05:21 . 2011-06-23 18:31 916480 c:\windows\system32\dllcache\wininet.dll
+ 2007-08-13 16:54 . 2009-03-08 02:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 16:54 . 2009-03-08 02:33 759296 c:\windows\system32\dllcache\VGX.dll
+ 2007-08-13 16:54 . 2009-03-08 02:33 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2007-08-13 16:44 . 2011-06-23 18:31 105984 c:\windows\system32\dllcache\url.dll
+ 2006-03-02 12:00 . 2006-11-02 20:52 316416 c:\windows\system32\dllcache\unregmp2.exe
+ 2009-01-07 16:20 . 2009-01-07 16:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2007-08-13 16:44 . 2011-06-23 18:31 206848 c:\windows\system32\dllcache\occache.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 321536 c:\windows\system32\dllcache\mswmdm.dll
+ 2007-08-13 16:54 . 2011-06-23 18:31 611840 c:\windows\system32\dllcache\mstime.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 414208 c:\windows\system32\dllcache\msscp.dll
+ 2007-08-13 16:44 . 2009-03-08 02:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 175616 c:\windows\system32\dllcache\mspmsp.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 179712 c:\windows\system32\dllcache\msnetobj.dll
+ 2006-03-02 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
- 2006-03-02 12:00 . 2007-08-13 16:54 156160 c:\windows\system32\dllcache\msls31.dll
+ 2009-08-30 15:08 . 2006-11-02 20:51 244224 c:\windows\system32\dllcache\mpvis.dll
+ 2006-03-02 12:00 . 2006-10-18 18:03 100864 c:\windows\system32\dllcache\logagent.exe
+ 2007-08-13 16:38 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2007-08-13 16:43 . 2009-03-08 12:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2010-02-26 05:53 . 2011-06-23 18:31 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 16:39 . 2011-06-23 18:31 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\dllcache\ieakui.dll
+ 2007-08-13 16:39 . 2009-03-08 02:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:39 . 2009-03-08 02:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2007-08-13 16:39 . 2011-06-23 12:05 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2007-08-13 16:35 . 2009-03-08 02:31 216064 c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 16:35 . 2009-03-08 02:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 991744 c:\windows\system32\dllcache\drmv2clt.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 229376 c:\windows\system32\dllcache\cewmdm.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 542720 c:\windows\system32\dllcache\blackbox.dll
+ 2007-08-13 16:39 . 2009-03-08 02:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 229376 c:\windows\system32\cewmdm.dll
+ 2006-03-02 12:00 . 2006-10-18 19:47 542720 c:\windows\system32\blackbox.dll
+ 2006-10-18 19:47 . 2006-10-18 19:47 276992 c:\windows\system32\audiodev.dll
+ 2006-03-02 12:00 . 2009-03-08 02:32 128512 c:\windows\system32\advpack.dll
+ 2011-08-16 13:57 . 2011-08-16 13:57 114176 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2011-08-16 13:59 . 2011-08-16 13:59 434176 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2011-08-16 13:57 . 2011-08-16 13:57 365056 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2011-08-16 13:46 . 2011-08-16 13:46 990208 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2011-08-16 13:57 . 2011-08-16 13:57 542720 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2011-08-16 14:05 . 2011-08-16 14:05 112568 c:\windows\system32\Adobe\Director\SWDNLD.exe
+ 2011-08-16 14:04 . 2011-08-16 14:04 279480 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2011-08-16 13:59 . 2011-08-16 13:59 145920 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 159744 c:\windows\Microsoft.NET\Framework\v3.5\nl\Microsoft.Build.Tasks.v3.5.resources.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 984056 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\WapUI.dll
+ 2008-10-24 21:02 . 2008-10-24 21:02 106304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\WapRes.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 689152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\vsscenario.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 413184 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\vsbasereqs.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 632320 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\vs70uimgr.dll
+ 2008-10-25 03:27 . 2008-10-25 03:27 440832 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\vs_setup.msi
+ 2008-10-24 21:02 . 2008-10-24 21:02 126792 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setupres.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 269304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setup.exe
+ 2008-10-22 06:38 . 2008-10-22 06:38 181064 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\RebootStub.exe
+ 2008-10-21 19:02 . 2008-10-21 19:02 177152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\HtmlLite.dll
+ 2008-10-21 19:02 . 2008-10-21 19:02 276984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\dlmgr.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 267584 c:\windows\Microsoft.NET\Framework\v3.5\1043\vbc7ui.dll
+ 2008-10-25 03:10 . 2008-10-25 03:10 190792 c:\windows\Microsoft.NET\Framework\v3.5\1043\cscompui.dll
+ 2008-10-24 21:55 . 2008-10-24 21:55 368640 c:\windows\Microsoft.NET\Framework\v3.0\WPF\nl\PresentationUI.resources.dll
+ 2008-05-14 20:38 . 2008-05-14 20:38 864256 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\nl\infocard.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 163840 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.xml.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 446464 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Windows.Forms.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Web.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 208896 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\system.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 544768 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Design.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 393216 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Deployment.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Data.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\System.Data.OracleClient.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 406016 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\mscorrc.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\mscorlib.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 139264 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\Microsoft.Build.Tasks.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 315392 c:\windows\Microsoft.NET\Framework\v2.0.50727\nl\aspnetmmcext.resources.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 250880 c:\windows\Microsoft.NET\Framework\v2.0.50727\1043\Vsavb7rtUI.dll
+ 2008-09-10 15:43 . 2008-09-10 15:43 221176 c:\windows\Microsoft.NET\Framework\v2.0.50727\1043\vbc7ui.dll
+ 2008-09-10 15:42 . 2008-09-10 15:42 164864 c:\windows\Microsoft.NET\Framework\v2.0.50727\1043\cscompui.dll
+ 2011-09-14 16:10 . 2011-09-14 16:10 436736 c:\windows\Installer\4f0a1.msi
+ 2008-10-24 21:44 . 2008-10-24 21:44 180736 c:\windows\Installer\4f09b.msp
+ 2008-10-24 22:00 . 2008-10-24 22:00 179200 c:\windows\Installer\4f09a.msp
+ 2008-10-24 22:07 . 2008-10-24 22:07 100864 c:\windows\Installer\4f099.msp
+ 2008-10-24 21:52 . 2008-10-24 21:52 213504 c:\windows\Installer\4f098.msp
+ 2008-10-24 21:40 . 2008-1

Anoniem 14 september 2011 17:21

Het log is niet compleet.

Is het overigens in Firefox gelukt?

Anoniem 14 september 2011 17:36

Ik zal rond uurtje of 2 ff kijken, appart dat de log niet compleet is.

Firefox is deels gelukt. Ik kan hem uitschakelen. Maar niet uit die lijst verwijderen.

Anoniem 15 september 2011 09:42

Uitgeschakeld is beter dan niets.

Maar heel vreemd dat Firefox dat kreng niet wil deïnstalleren, maar dat kan eventueel samenhangen met de verwijdering door ComboFix van dat tool.

En het log vindt je terug in C\ComboFix

Anoniem 15 september 2011 09:52

Ik zie dat de log te groot is voor 1 post. Het gebeurd nu weer.
Zal 'm hieronder in 2e posten

Anoniem 15 september 2011 11:49

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.

Vraag & Antwoord

Hijackthis Log

Beantwoord deze vraag

Gerelateerde vragen

Registreren

We hebben je een e-mail gestuurd!

Oops… er ging wat mis.

Hoera, je account is nu geactiveerd!

Dit token is niet meer valide.

Wachtwoord vergeten?

Je aanvraag is verstuurd

Wachtwoord herstellen

Wachtwoord herstellen

Dit token is niet meer valide.

Bedankt!

Je vraag is geplaatst!

Je antwoord is geplaatst!

Bevestigingsmail verstuurd!