Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Verkeerde startpagina en trage PC

None
20 antwoorden
  • Sinds van de week komt FF op met een 3-tal tabbladen over mobile phones.
    Heb die pagina's idd nodig gehad.
    Maar nu komt die pagina elke keer terug ook als ik reboot.
    Auslogics suite gedraaid, MBAM gedraaid en Ccleaner gedraaid, FF blijft vreemd doen.
    Ook opeens een balylon ding aanwezig.
    Babylon is niet te vinden in Software.
    Mediamonkey geeft bij opstarten even beeld, daarna weer weg.
    HJT log


    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 9:42:01, on 18-8-2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
    C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe
    C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe
    C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe
    C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe
    C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe
    C:\Program Files (x86)\Internetbeveiliging\Common\FSM32.EXE
    C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
    C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
    O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
    O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files (x86)\Internetbeveiliging\NRS\iescript\baselitmus.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files (x86)\Internetbeveiliging\NRS\iescript\baselitmus.dll
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\Internetbeveiliging\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [HomingBeacon Client] "C:\Program Files (x86)\HomingBeacon.NET\hb3gui.exe" /minimized
    O4 - HKCU\..\Run: [DriverMax] "C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe" -agent
    O4 - HKCU\..\Run: [DriverMax_RESTART] "C:\Program Files (x86)\Innovative Solutions\DriverMax\devices.exe" -RESTART
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - Global Startup: Google Calendar Sync.lnk = C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe
    O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: Acronis Remote Agent (AcronisAgent) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Agent\agent.exe
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files (x86)\Internetbeveiliging\Anti-Virus\fsgk32st.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\Common\FSMA32.EXE
    O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\Internetbeveiliging\ORSP Client\fsorsp.exe
    O23 - Service: HomingBeacon Dynamic DNS (HomingBeacon) - ChangeIP.com - C:\Program Files (x86)\HomingBeacon.NET\hb3svc.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
    O23 - Service: @%SystemRoot%\System32
    etlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
    O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


    End of file - 10439 bytes
  • Hallo Anjo, ik laat je maar meteen een diepe scan doen!

    [b:df738b3425]Welk programma[/b:df738b3425]: ComboFix
    [b:df738b3425]Waarvoor/waarom[/b:df738b3425]: Zeer specialistische scanner om Windows diepgaand te onderzoeken
    en zo mogelijk op te schonen.
    [b:df738b3425]Moeilijkheidsgraad[/b:df738b3425]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
    [b:df738b3425]Downloadlokatie[/b:df738b3425]: Dit programma absoluut naar het bureaublad downloaden!
    [b:df738b3425]Download ComboFix via één van deze locaties[/b:df738b3425]:
    [list:df738b3425][*:df738b3425][b:df738b3425]Bleepingcomputer[/b:df738b3425]
    [*:df738b3425][b:df738b3425]ForoSpyware[/b:df738b3425]
    [*:df738b3425][b:df738b3425]Geekstogo[/b:df738b3425][/list:u:df738b3425]
    [b:df738b3425]Hier[/b:df738b3425] zie je hoe je ComboFix moet gebruiken.

    Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn!
    [b:df738b3425]Hier[/b:df738b3425] en [b:df738b3425]hier[/b:df738b3425] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

    [b:df738b3425]Voor alle duidelijkheid nogmaals[/b:df738b3425]: ComboFix dient vanaf het bureaublad gestart te worden.

    [b:df738b3425]Opmerkingen[/b:df738b3425]:
    [list:df738b3425][*:df738b3425] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).
    [*:df738b3425]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten.
    [*:df738b3425]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:df738b3425]
    [b:df738b3425]ComboFix is opgestart[/b:df738b3425]:
    [list:df738b3425][*:df738b3425]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
    [*:df738b3425]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen!
    [*:df738b3425]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
    [*:df738b3425]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
    [*:df738b3425]Post de inhoud van dit logbestand in je volgende bericht.
    [*:df738b3425]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:df738b3425]
    [b:df738b3425]Belangrijke opmerking[/b:df738b3425]:
    [list:df738b3425][*:df738b3425][b:df738b3425]
  • Firefox probleem opgelost door m compleet te verwijderen en opnieuw te installeren ;-))
    Was redelijk vervuild met out of date bladwijzers en zo, laten syncen met Laptop, draait nu weer goed

    Combofix:

    ComboFix 11-10-19.01 - Anjo 19-10-2011 10:45:07.2.2 - x64
    Microsoft Windows 7 Professional 6.1.7601.1.1252.31.1043.18.4095.2528 [GMT 2:00]
    Gestart vanuit: c:\users\Anjo\Desktop\ComboFix.exe
    AV: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
    FW: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled* {2D7AC0A6-6241-D774-E168-461178D9686C}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\windows\XSxS
    N:\Autorun.inf
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2011-09-19 to 2011-10-19 ))))))))))))))))))))))))))))))
    .
    .
    2011-10-19 08:48 . 2011-10-19 08:48 ——– d—–w- c:\users\Public\AppData\Local\temp
    2011-10-19 08:48 . 2011-10-19 08:48 ——– d—–w- c:\users\Default\AppData\Local\temp
    2011-10-18 15:00 . 2011-10-18 15:00 69000 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C5452899-263E-4A3C-B04D-6E904B8FC6F3}\offreg.dll
    2011-10-18 14:38 . 2011-10-18 14:38 388096 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-10-18 10:47 . 2011-09-13 00:26 9049936 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C5452899-263E-4A3C-B04D-6E904B8FC6F3}\mpengine.dll
    2011-10-17 15:08 . 2011-10-17 15:57 ——– d—–w- c:\users\Anjo\AppData\Local\Downloaded Installations
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Spirent Communications
    2011-10-17 15:07 . 2011-10-17 15:57 ——– d—–w- c:\program files (x86)\HTC
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Common Files\Adobe AIR
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\users\Anjo\AppData\Local\Adobe
    2011-10-17 12:43 . 2011-10-17 12:43 ——– d—–w- C:\NZB Auto Import Folder
    2011-10-14 09:03 . 2011-10-14 09:08 ——– d—–w- c:\users\Anjo\androidfoon
    2011-10-13 09:32 . 2011-10-13 09:32 27176 —-a-w- c:\windows\system32\drivers\ggsemc.sys
    2011-10-13 09:32 . 2011-10-13 09:32 13352 —-a-w- c:\windows\system32\drivers\ggflt.sys
    2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\programdata\Sony Ericsson
    2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\program files (x86)\Sony Ericsson
    2011-10-12 09:00 . 2011-09-06 03:03 3138048 —-a-w- c:\windows\system32\win32k.sys
    2011-10-12 09:00 . 2011-08-17 05:26 613888 —-a-w- c:\windows\system32\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 04:19 75776 —-a-w- c:\windows\SysWow64\psisrndr.ax
    2011-10-12 09:00 . 2011-08-17 04:24 465408 —-a-w- c:\windows\SysWow64\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 05:25 108032 —-a-w- c:\windows\system32\psisrndr.ax
    2011-10-12 09:00 . 2011-08-27 05:37 331776 —-a-w- c:\windows\system32\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 04:26 233472 —-a-w- c:\windows\SysWow64\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 05:37 861696 —-a-w- c:\windows\system32\oleaut32.dll
    2011-10-12 09:00 . 2011-08-27 04:26 571904 —-a-w- c:\windows\SysWow64\oleaut32.dll
    2011-10-12 08:06 . 2011-10-12 08:08 ——– d—–w- C:\Hirenboot
    2011-10-06 15:32 . 2011-10-06 15:32 ——– d—–w- c:\users\Anjo\AppData\Local\Logitech® Webcam Software
    2011-10-02 11:34 . 2011-10-02 11:34 ——– d—–w- c:\program files (x86)\DVD Decrypter
    2011-10-01 14:56 . 2011-10-01 14:56 ——– d—–w- c:\programdata\SlySoft
    2011-10-01 14:54 . 2011-10-01 20:27 ——– d—–w- c:\program files (x86)\SlySoft
    2011-10-01 14:16 . 2011-10-03 15:35 ——– d—–w- c:\programdata\DVD Shrink
    2011-10-01 14:16 . 2011-10-02 11:27 ——– d—–w- c:\program files (x86)\DVD Shrink
    2011-10-01 11:38 . 2011-10-03 15:34 ——– d—–w- c:\users\Anjo\AppData\Roaming\RipIt4Me
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\windows\SysWow64\winevt
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\users\Anjo\AppData\Local\Xenocode
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\program files (x86)\Xenocode
    2011-10-01 08:45 . 2011-10-01 09:10 ——– d—–w- c:\program files (x86)\Alcohol Soft
    2011-09-22 09:02 . 2011-10-18 14:37 ——– d—–w- c:\users\Anjo\AppData\Roaming\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–r- c:\program files (x86)\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–w- c:\programdata\Skype
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-10-09 15:01 . 2011-04-18 09:22 3088 –sha-w- c:\programdata\KGyGaAvL.sys
    2011-10-06 15:21 . 2011-03-24 21:04 53248 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
    2011-10-02 10:37 . 2011-05-15 12:44 404640 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-08-31 15:00 . 2011-08-18 06:29 25416 —-a-w- c:\windows\system32\drivers\mbam.sys
    2011-08-19 07:27 . 2011-08-19 07:27 769312 —-a-w- c:\windows\system32\LVUI64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 561440 —-a-w- c:\windows\system32\LVUIRC64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 4869024 —-a-w- c:\windows\system32\drivers\lvuvc64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 351136 —-a-w- c:\windows\system32\drivers\lvrs64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 263456 —-a-w- c:\windows\system32\lvco13301394.dll
    2011-08-19 07:27 . 2011-08-19 07:27 176416 —-a-w- c:\windows\system32\lvcod64.dll
    2011-08-19 07:26 . 2011-08-19 07:26 545056 —-a-w- c:\windows\SysWow64\LVUI2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 540960 —-a-w- c:\windows\SysWow64\LVUI2RC.dll
    2011-08-19 07:26 . 2011-08-19 07:26 307488 —-a-w- c:\windows\SysWow64\lvcodec2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\SysWow64\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\system32\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\SysWow64\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\system32\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\SysWow64\LogiDPPApp.exe
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\system32\LogiDPPApp.exe
    2011-08-12 10:19 . 2011-08-12 10:19 16920 —-a-w- c:\windows\system32\drivers\iKeyLFT264.dll
    2011-08-08 13:29 . 2011-08-08 13:29 18328 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    2011-08-01 14:00 . 2011-08-28 17:45 470888 —-a-w- c:\windows\system32\itpcoin82.dll
    2011-08-01 13:59 . 2011-08-01 13:59 45416 —-a-w- c:\windows\system32\drivers\point64.sys
    2011-07-28 16:37 . 2011-07-28 16:37 52584 —-a-w- c:\windows\system32\drivers\dc3d.sys
    2011-07-26 04:49 . 2011-07-26 04:49 38958 —-a-w- c:\windows\system32\Repository.reg
    2011-07-21 11:35 . 2011-07-21 11:34 94272 —-a-w- c:\windows\SysWow64\drivers\snapman.sys
    .
    .
    ((((((((((((((((((((((((((((( SnapShot@2011-08-18_10.48.19 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2006-07-28 14:08 . 2006-07-28 14:08 23040 c:\windows\twain_32\MP500\USDRESUS.DLL
    + 2006-10-09 09:48 . 2006-10-09 09:48 23040 c:\windows\twain_32\MP500\USDRESTW.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 24064 c:\windows\twain_32\MP500\USDRESRU.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\twain_32\MP500\USDRESPT.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\twain_32\MP500\USDRESPL.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\twain_32\MP500\USDRESNL.DLL
    + 2006-10-16 12:36 . 2006-10-16 12:36 23040 c:\windows\twain_32\MP500\USDRESKR.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\twain_32\MP500\USDRESIT.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\twain_32\MP500\USDRESFR.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\twain_32\MP500\USDRESES.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\twain_32\MP500\USDRESDE.DLL
    + 2006-10-09 12:28 . 2006-10-09 12:28 23040 c:\windows\twain_32\MP500\USDRESCN.DLL
    + 2005-05-18 15:47 . 2005-05-18 15:47 77824 c:\windows\twain_32\MP500\RSTCOL.DLL
    + 2001-09-10 14:44 . 2001-09-10 14:44 98304 c:\windows\twain_32\MP500\RMSLANTC.DLL
    + 2001-09-10 14:44 . 2001-09-10 14:44 36864 c:\windows\twain_32\MP500\NBS4MB.DLL
    + 2003-08-21 17:55 . 2003-08-21 17:55 24576 c:\windows\twain_32\MP500\JDA_CIMG.DLL
    + 2005-04-15 13:34 . 2005-04-15 13:34 57344 c:\windows\twain_32\MP500\BaLCo.dll
    + 2009-01-22 01:12 . 2009-01-22 01:12 88904 c:\windows\SysWOW64\msxml4r.dll
    + 2011-10-12 09:01 . 2011-09-01 02:23 72704 c:\windows\SysWOW64\mshtmled.dll
    - 2011-08-13 21:55 . 2011-07-22 02:44 72704 c:\windows\SysWOW64\mshtmled.dll
    - 2011-08-13 21:55 . 2011-07-22 02:46 66048 c:\windows\SysWOW64\migration\WininetPlugin.dll
    + 2011-10-12 09:01 . 2011-09-01 02:26 66048 c:\windows\SysWOW64\migration\WininetPlugin.dll
    - 2011-08-13 21:55 . 2011-07-22 02:46 65024 c:\windows\SysWOW64\jsproxy.dll
    + 2011-10-12 09:01 . 2011-09-01 02:26 65024 c:\windows\SysWOW64\jsproxy.dll
    - 2009-07-14 04:54 . 2011-07-24 09:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2009-07-14 04:54 . 2011-10-13 09:31 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-07-14 04:54 . 2011-07-24 09:12 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-07-14 04:54 . 2011-10-13 09:31 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-07-14 04:54 . 2011-10-13 09:31 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2009-07-14 04:54 . 2011-07-24 09:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2011-09-15 13:06 . 2011-09-15 13:06 82660 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
    + 2011-03-24 20:36 . 2011-10-18 14:59 54894 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 05:10 . 2011-10-18 14:59 41696 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2011-03-24 20:26 . 2011-10-18 14:59 11416 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1242203046-565960955-3287484902-1001_UserData.bin
    - 2011-03-24 21:10 . 2010-10-27 00:53 57856 c:\windows\system32\VMPPLD64.DLL
    + 2011-08-28 17:45 . 2010-12-23 16:34 57856 c:\windows\system32\VMPPLD64.DLL
    + 2011-08-28 17:45 . 2011-06-15 01:42 87152 c:\windows\system32\ViaMicArrayPropPageExt.dll
    - 2011-07-24 08:17 . 2011-05-09 15:16 87152 c:\windows\system32\ViaMicArrayPropPageExt.dll
    - 2011-07-24 08:17 . 2011-05-09 15:16 27760 c:\windows\system32\ViakaraokeSrv.exe
    + 2011-08-28 17:45 . 2011-06-15 01:42 27760 c:\windows\system32\ViakaraokeSrv.exe
    + 2011-08-28 17:45 . 2011-06-08 22:19 85504 c:\windows\system32
    QPropPageExt.dll
    + 2011-08-28 17:45 . 2011-06-08 22:19 83968 c:\windows\system32
    QAPO.dll
    - 2011-08-13 21:55 . 2011-07-22 05:32 96256 c:\windows\system32\mshtmled.dll
    + 2011-10-12 09:01 . 2011-09-01 05:12 96256 c:\windows\system32\mshtmled.dll
    - 2011-08-13 21:55 . 2011-07-22 05:34 86528 c:\windows\system32\migration\WininetPlugin.dll
    + 2011-10-12 09:01 . 2011-09-01 05:15 86528 c:\windows\system32\migration\WininetPlugin.dll
    + 2011-10-12 09:01 . 2011-09-01 05:15 85504 c:\windows\system32\jsproxy.dll
    - 2011-08-13 21:55 . 2011-07-22 05:34 85504 c:\windows\system32\jsproxy.dll
    + 2009-07-14 05:30 . 2011-10-17 16:11 86016 c:\windows\system32\DriverStore\infpub.dat
    - 2009-07-14 05:30 . 2011-07-24 09:17 86016 c:\windows\system32\DriverStore\infpub.dat
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrser2.inf_amd64_neutral_1cdb5c3d404ae91b\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrscep.inf_amd64_neutral_cb3a9c9319090bf2\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrobx2.inf_amd64_neutral_820f34409cf7bd93\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrmsc2.inf_amd64_neutral_801f722a1c01756d\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 18944 c:\windows\system32\DriverStore\FileRepository\zebrmdm2.inf_amd64_neutral_4554fee9f180a19d\amd64\zebrmdfl.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrmdm2.inf_amd64_neutral_4554fee9f180a19d\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 14848 c:\windows\system32\DriverStore\FileRepository\zebrfse2.inf_amd64_neutral_c3aa332b233751d6\amd64\zebrcmnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 15360 c:\windows\system32\DriverStore\FileRepository\zebrceb.inf_amd64_neutral_be140e718b904417\amd64\zebrwhnt.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 81280 c:\windows\system32\DriverStore\FileRepository\zebrceb.inf_amd64_neutral_be140e718b904417\amd64\zebrceb.sys
    + 2011-10-13 09:33 . 2011-10-13 09:33 15360 c:\windows\system32\DriverStore\FileRepository\zebrbus.inf_amd64_neutral_0134b7a251c2a517\amd64\zebrwhnt.sys
    + 2011-08-28 17:45 . 2010-10-26 22:55 74240 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01\VMWRP64.DLL
    + 2011-08-28 17:45 . 2010-12-23 16:34 57856 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01\VMPPLD64.DLL
    + 2011-08-28 17:45 . 2010-10-26 22:54 53760 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01\VMPPCN64.DLL
    + 2011-08-28 17:45 . 2011-06-15 01:42 87152 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01\ViaMicArrayPropPageExt.dll
    + 2011-08-28 17:45 . 2011-06-15 01:42 27760 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01\ViakaraokeSrv.exe
    + 2011-08-28 17:45 . 2011-06-08 22:19 85504 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01
    QPropPageExt.dll
    + 2011-08-28 17:45 . 2011-06-08 22:19 83968 c:\windows\system32\DriverStore\FileRepository\viahdb2.inf_amd64_neutral_da8f1f777a6eda01
    QAPO.dll
    + 2007-04-10 13:13 . 2007-04-10 13:13 15112 c:\windows\system32\DriverStore\FileRepository\se3esdm2.inf_amd64_neutral_839f97d8edaf1e1e\amd64\se3ecmnt.sys
    + 2007-04-10 13:13 . 2007-04-10 13:13 15112 c:\windows\system32\DriverStore\FileRepository\se3eobx2.inf_amd64_neutral_0e2bec8d9ad16e21\amd64\se3ecmnt.sys
    + 2007-04-10 13:13 . 2007-04-10 13:13 19720 c:\windows\system32\DriverStore\FileRepository\se3emdm2.inf_amd64_neutral_3fc89b62976ee816\amd64\se3emdfl.sys
    + 2007-04-10 13:13 . 2007-04-10 13:13 15112 c:\windows\system32\DriverStore\FileRepository\se3emdm2.inf_amd64_neutral_3fc89b62976ee816\amd64\se3ecmnt.sys
    + 2007-04-10 13:14 . 2007-04-10 13:14 15624 c:\windows\system32\DriverStore\FileRepository\se3ebus.inf_amd64_neutral_28c54eca95eb56f7\amd64\se3ewhnt.sys
    + 2007-11-02 10:47 . 2007-11-02 10:47 14888 c:\windows\system32\DriverStore\FileRepository\s916sdm2.inf_amd64_neutral_4f38995332fbb6ba\amd64\s916cmnt.sys
    + 2007-11-02 10:47 . 2007-11-02 10:47 14888 c:\windows\system32\DriverStore\FileRepository\s916obx2.inf_amd64_neutral_5f9f767dab26354c\amd64\s916cmnt.sys
    + 2007-11-02 10:47 . 2007-11-02 10:47 19496 c:\windows\system32\DriverStore\FileRepository\s916mdm2.inf_amd64_neutral_8601d48790d9ed30\amd64\s916mdfl.sys
    + 2007-11-02 10:47 . 2007-11-02 10:47 14888 c:\windows\system32\DriverStore\FileRepository\s916mdm2.inf_amd64_neutral_8601d48790d9ed30\amd64\s916cmnt.sys
    + 2007-11-02 10:47 . 2007-11-02 10:47 15400 c:\windows\system32\DriverStore\FileRepository\s916bus.inf_amd64_neutral_fbab9b1c1c243d0a\amd64\s916whnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 34416 c:\windows\system32\DriverStore\FileRepository\s1039xndis.inf_amd64_neutral_596fac6a450984e0\amd64\s1039nd5.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 15984 c:\windows\system32\DriverStore\FileRepository\s1039unic.inf_amd64_neutral_973ae564ff63eda4\amd64\s1039whnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 14960 c:\windows\system32\DriverStore\FileRepository\s1039unic.inf_amd64_neutral_973ae564ff63eda4\amd64\s1039crnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 15472 c:\windows\system32\DriverStore\FileRepository\s1039sdm2.inf_amd64_neutral_d0d5003e8e19bd4c\amd64\s1039cmnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 15472 c:\windows\system32\DriverStore\FileRepository\s1039obx2.inf_amd64_neutral_a0895eb730199c14\amd64\s1039cmnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 19568 c:\windows\system32\DriverStore\FileRepository\s1039mdm2.inf_amd64_neutral_80ed30e8e2cd927c\amd64\s1039mdfl.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 15472 c:\windows\system32\DriverStore\FileRepository\s1039mdm2.inf_amd64_neutral_80ed30e8e2cd927c\amd64\s1039cmnt.sys
    + 2010-03-15 09:38 . 2010-03-15 09:38 15984 c:\windows\system32\DriverStore\FileRepository\s1039bus.inf_amd64_neutral_77abbd4ad95f8b5f\amd64\s1039whnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 15912 c:\windows\system32\DriverStore\FileRepository\s1029unic.inf_amd64_neutral_889649c98bed7212\amd64\s1029whnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 13864 c:\windows\system32\DriverStore\FileRepository\s1029unic.inf_amd64_neutral_889649c98bed7212\amd64\s1029crnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 14888 c:\windows\system32\DriverStore\FileRepository\s1029sdm2.inf_amd64_neutral_faa5c6158e04f061\amd64\s1029cmnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 14888 c:\windows\system32\DriverStore\FileRepository\s1029obx2.inf_amd64_neutral_067d699711397415\amd64\s1029cmnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 34856 c:\windows\system32\DriverStore\FileRepository\s1029ndis.inf_amd64_neutral_d668acc6c1badf85\amd64\s1029nd5.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 19496 c:\windows\system32\DriverStore\FileRepository\s1029mdm2.inf_amd64_neutral_fbf4a423ef2d968a\amd64\s1029mdfl.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 14888 c:\windows\system32\DriverStore\FileRepository\s1029mdm2.inf_amd64_neutral_fbf4a423ef2d968a\amd64\s1029cmnt.sys
    + 2009-05-25 12:34 . 2009-05-25 12:34 15912 c:\windows\system32\DriverStore\FileRepository\s1029bus.inf_amd64_neutral_7540b681561cf501\amd64\s1029whnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 15912 c:\windows\system32\DriverStore\FileRepository\s1018unic.inf_amd64_neutral_c2ee26dfaddfc352\amd64\s1018whnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 13864 c:\windows\system32\DriverStore\FileRepository\s1018unic.inf_amd64_neutral_c2ee26dfaddfc352\amd64\s1018crnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 14888 c:\windows\system32\DriverStore\FileRepository\s1018sdm2.inf_amd64_neutral_a09cd99935f5de32\amd64\s1018cmnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 14888 c:\windows\system32\DriverStore\FileRepository\s1018obx2.inf_amd64_neutral_ec8cf24dec8a0103\amd64\s1018cmnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 34856 c:\windows\system32\DriverStore\FileRepository\s1018ndis.inf_amd64_neutral_f38f70a05cd2212f\amd64\s1018nd5.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 19496 c:\windows\system32\DriverStore\FileRepository\s1018mdm2.inf_amd64_neutral_99ceab64c4bfc57b\amd64\s1018mdfl.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 14888 c:\windows\system32\DriverStore\FileRepository\s1018mdm2.inf_amd64_neutral_99ceab64c4bfc57b\amd64\s1018cmnt.sys
    + 2009-03-25 15:48 . 2009-03-25 15:48 15912 c:\windows\system32\DriverStore\FileRepository\s1018bus.inf_amd64_neutral_b119c2d90746333e\amd64\s1018whnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 15912 c:\windows\system32\DriverStore\FileRepository\s0017unic.inf_amd64_neutral_2bb3a80daa2a23de\amd64\s0017whnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 13864 c:\windows\system32\DriverStore\FileRepository\s0017unic.inf_amd64_neutral_2bb3a80daa2a23de\amd64\s0017crnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 14888 c:\windows\system32\DriverStore\FileRepository\s0017sdm2.inf_amd64_neutral_a890a57b53653e64\amd64\s0017cmnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 14888 c:\windows\system32\DriverStore\FileRepository\s0017obx2.inf_amd64_neutral_cef5b8b70e59315b\amd64\s0017cmnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 34856 c:\windows\system32\DriverStore\FileRepository\s0017ndis.inf_amd64_neutral_56f0f0de42892b98\amd64\s0017nd5.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 19496 c:\windows\system32\DriverStore\FileRepository\s0017mdm2.inf_amd64_neutral_5734aecd0127c38c\amd64\s0017mdfl.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 14888 c:\windows\system32\DriverStore\FileRepository\s0017mdm2.inf_amd64_neutral_5734aecd0127c38c\amd64\s0017cmnt.sys
    + 2008-10-21 08:22 . 2008-10-21 08:22 15912 c:\windows\system32\DriverStore\FileRepository\s0017bus.inf_amd64_neutral_af1400d99d6e184d\amd64\s0017whnt.sys
    + 2008-05-16 10:33 . 2008-05-16 10:33 15912 c:\windows\system32\DriverStore\FileRepository\s0016unic.inf_amd64_neutral_bc1ef1989443594a\amd64\s0016whnt.sys
    + 2008-05-16 10:33 . 2008-05-16 10:33 13864 c:\windows\system32\DriverStore\FileRepository\s0016unic.inf_amd64_neutral_bc1ef1989443594a\amd64\s0016crnt.sys
    + 2008-05-16 10:32 . 2008-05-16 10:32 14888 c:\windows\system32\DriverStore\FileRepository\s0016sdm2.inf_amd64_neutral_9516bfaabf0aec45\amd64\s0016cmnt.sys
    + 2008-05-16 10:32 . 2008-05-16 10:32 14888 c:\windows\system32\DriverStore\FileRepository\s0016obx2.inf_amd64_neutral_45664d72378f66f0\amd64\s0016cmnt.sys
    + 2008-05-16 10:33 . 2008-05-16 10:33 34344 c:\windows\system32\DriverStore\FileRepository\s0016ndis.inf_amd64_neutral_723253cd4e7bcbe6\amd64\s0016nd5.sys
    + 2008-05-16 10:33 . 2008-05-16 10:33 19496 c:\windows\system32\DriverStore\FileRepository\s0016mdm2.inf_amd64_neutral_437d5025aaba9f47\amd64\s0016mdfl.sys
    + 2008-05-16 10:32 . 2008-05-16 10:32 14888 c:\windows\system32\DriverStore\FileRepository\s0016mdm2.inf_amd64_neutral_437d5025aaba9f47\amd64\s0016cmnt.sys
    + 2008-05-16 10:33 . 2008-05-16 10:33 15912 c:\windows\system32\DriverStore\FileRepository\s0016bus.inf_amd64_neutral_82e731ec2e346499\amd64\s0016whnt.sys
    + 2011-08-01 13:59 . 2011-08-01 13:59 45416 c:\windows\system32\DriverStore\FileRepository\point64.inf_amd64_neutral_b1cf5e889e918ca6\point64.sys
    + 2006-07-28 14:08 . 2006-07-28 14:08 23040 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESUS.DLL
    + 2006-10-09 09:48 . 2006-10-09 09:48 23040 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESTW.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 24064 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESRU.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESPT.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESPL.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESNL.DLL
    + 2006-10-16 12:36 . 2006-10-16 12:36 23040 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESKR.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESIT.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESFR.DLL
    + 2006-09-27 09:13 . 2006-09-27 09:13 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESES.DLL
    + 2006-09-27 09:12 . 2006-09-27 09:12 23552 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESDE.DLL
    + 2006-10-09 12:28 . 2006-10-09 12:28 23040 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\USDRESCN.DLL
    + 2005-05-18 15:47 . 2005-05-18 15:47 77824 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\RSTCOL.DLL
    + 2001-09-10 14:44 . 2001-09-10 14:44 98304 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\RMSLANTC.DLL
    + 2001-09-10 14:44 . 2001-09-10 14:44 36864 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\NBS4MB.DLL
    + 2003-08-21 17:55 . 2003-08-21 17:55 24576 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\JDA_CIMG.DLL
    + 2005-04-15 13:34 . 2005-04-15 13:34 57344 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNCSG112\BaLCo.dll
    + 2006-06-29 12:30 . 2006-06-29 12:30 17408 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\cncisco.x64.dll
    + 2006-07-28 14:09 . 2006-07-28 14:09 49664 c:\windows\system32\DriverStore\FileRepository\mp500sc.inf_amd64_neutral_90bea54847a9b54d\SCN64\CNC500\CNCI500.DLL
    + 2011-08-19 07:27 . 2011-08-19 07:27 25632 c:\windows\system32\DriverStore\FileRepository\lpro564c.inf_amd64_neutral_4adc5141ff5390b2\lvbflt64.sys
    + 2010-06-25 14:08 . 2010-06-25 14:08 36928 c:\windows\system32\DriverStore\FileRepository\htcnprot.inf_amd64_neutral_ebc4484c2064acc9\htcnprot.sys
    + 2011-10-13 09:32 . 2011-10-13 09:32 27176 c:\windows\system32\DriverStore\FileRepository\ggsemc.inf_amd64_neutral_574fe6e0d8c42f6b\Amd64\ggsemc.sys
    + 2011-10-13 09:32 . 2011-10-13 09:32 13352 c:\windows\system32\DriverStore\FileRepository\ggsemc.inf_amd64_neutral_574fe6e0d8c42f6b\Amd64\ggflt.sys
    + 2011-07-28 16:37 . 2011-07-28 16:37 52584 c:\windows\system32\DriverStore\FileRepository\dc3du.inf_amd64_neutral_74c6c3670a9a8e89\dc3d.sys
    + 2011-08-01 13:59 . 2011-08-01 13:59 52584 c:\windows\system32\DriverStore\FileRepository\dc3dh.inf_amd64_neutral_73d3d011f5a03306\dc3d.sys
    + 2009-11-02 16:16 . 2009-11-02 16:16 33736 c:\windows\system32\DriverStore\FileRepository\androidusb.inf_amd64_neutral_818773efd241e294\ANDROIDUSB.sys
    + 2008-01-18 14:16 . 2008-01-18 14:16 14888 c:\windows\system32\DriverStore\FileRepository\a016sdm2.inf_amd64_neutral_8e065bc29befb5ef\amd64\a016cmnt.sys
    + 2008-01-18 14:16 . 2008-01-18 14:16 14888 c:\windows\system32\DriverStore\FileRepository\a016obx2.inf_amd64_neutral_e44e060573c6e359\amd64\a016cmnt.sys
    + 2008-01-18 14:16 . 2008-01-18 14:16 19496 c:\windows\system32\DriverStore\FileRepository\a016mdm2.inf_amd64_neutral_a0258230efdf6788\amd64\a016mdfl.sys
    + 2008-01-18 14:16 . 2008-01-18 14:16 14888 c:\windows\system32\DriverStore\FileRepository\a016mdm2.inf_amd64_neutral_a0258230efdf6788\amd64\a016cmnt.sys
    + 2008-01-18 14:16 . 2008-01-18 14:16 15400 c:\windows\system32\DriverStore\FileRepository\a016bus.inf_amd64_neutral_90ec1303f25e1df6\amd64\a016whnt.sys
    + 2010-06-25 14:08 . 2010-06-25 14:08 36928 c:\windows\system32\drivers\htcnprot.sys
    + 2009-11-02 16:16 . 2009-11-02 16:16 33736 c:\windows\system32\drivers\ANDROIDUSB.sys
    - 2011-03-24 20:09 . 2011-08-16 22:33 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-03-24 20:09 . 2011-10-18 11:43 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-03-24 20:09 . 2011-10-18 11:43 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2011-03-24 20:09 . 2011-08-16 22:33 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2009-07-14 04:54 . 2011-08-16 22:33 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2009-07-14 04:54 . 2011-10-18 11:43 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2006-06-29 12:30 . 2006-06-29 12:30 17408 c:\windows\system32\cncisco.x64.dll
    + 2006-07-28 14:09 . 2006-07-28 14:09 49664 c:\windows\system32\CNCI500.DLL
    - 2011-03-25 08:06 . 2010-11-20 13:25 49664 c:\windows\servicing\GC64\tzupd.exe
    + 2011-08-24 13:01 . 2011-07-09 05:29 49664 c:\windows\servicing\GC64\tzupd.exe
    + 2011-04-06 14:48 . 2011-04-06 14:48 11120 c:\windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
    - 2011-04-12 20:16 . 2011-04-12 20:16 67920 c:\windows\Microsoft.NET\Framework64\v4.0.30319
    lssorting.dll
    + 2011-07-09 08:05 . 2011-07-09 08:05 67920 c:\windows\Microsoft.NET\Framework64\v4.0.30319
    lssorting.dll
    - 2010-03-18 13:27 . 2010-03-18 13:27 53072 c:\windows\Microsoft.NET\Framework64\v4.0.30319\Culture.dll
    + 2011-05-17 08:08 . 2011-05-17 08:08 53072 c:\windows\Microsoft.NET\Framework64\v4.0.30319\Culture.dll
    + 2011-04-06 14:48 . 2011-04-06 14:48 11120 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
    - 2011-04-12 13:11 . 2011-04-12 13:11 56656 c:\windows\Microsoft.NET\Framework\v4.0.30319
    lssorting.dll
    + 2011-07-09 07:30 . 2011-07-09 07:30 56656 c:\windows\Microsoft.NET\Framework\v4.0.30319
    lssorting.dll
    + 2011-05-17 07:27 . 2011-05-17 07:27 44368 c:\windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
    - 2010-03-18 12:16 . 2010-03-18 12:16 44368 c:\windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
    + 2011-10-12 09:05 . 2011-10-12 09:05 11120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 94552 c:\windows\Microsoft.NET\assembly\GAC_64\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 91488 c:\windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
    + 2011-10-12 09:04 . 2011-10-12 09:04 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
    - 2011-08-13 21:57 . 2011-08-13 21:57 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
    + 2011-07-21 10:43 . 2011-07-21 10:43 27648 c:\windows\Installer\b518f8d.msp
    + 2011-10-17 15:07 . 2011-10-17 15:07 32256 c:\windows\Installer\798b29.msi
    - 2011-03-24 22:04 . 2011-08-13 22:00 34144 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\oisicon.exe
    + 2011-03-24 22:04 . 2011-09-15 13:07 34144 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\oisicon.exe
    + 2011-03-24 22:04 . 2011-09-15 13:07 42848 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\msouc.exe
    - 2011-03-24 22:04 . 2011-08-13 22:00 42848 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\msouc.exe
    - 2011-03-24 22:04 . 2011-08-13 22:00 19296 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\cagicon.exe
    + 2011-03-24 22:04 . 2011-09-15 13:07 19296 c:\windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\cagicon.exe
    - 2011-03-24 21:39 . 2011-06-16 01:12 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
    + 2011-03-24 21:39 . 2011-10-12 09:11 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
    + 2011-10-17 15:08 . 2011-10-17 15:08 49152 c:\windows\Installer\{6D6664A9-3342-4948-9B7E-034EFE366F0F}\UNINST_Uninstall_H_8AD6F64309CF42C693274CB5A3D89801.exe
    + 2011-10-17 15:08 . 2011-10-17 15:08 53248 c:\windows\Installer\{6D6664A9-3342-4948-9B7E-034EFE366F0F}\ARPPRODUCTICON.exe
    + 2011-10-17 15:07 . 2011-10-17 15:07 53248 c:\windows\Installer\{31A559C1-9E4D-423B-9DD3-34A6C5398752}\ARPPRODUCTICON.exe
    + 2010-10-20 13:43 . 2010-10-20 13:43 19328 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SPWADDTO.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 11136 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SPWADDIT.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 13696 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SPWADDIF.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 42880 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SPWADDDS.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 46976 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SPWADDDA.DLL
    + 2010-10-20 14:32 . 2010-10-20 14:32 32160 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\SOCIALPROVIDER.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 18816 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\INTMAPI.DLL
    + 2010-10-20 13:43 . 2010-10-20 13:43 11648 c:\windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.6029\INTGMAT.DLL
    + 2011-10-12 10:20 . 2011-10-12 10:20 10240 c:\windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Serializ#\59e70022e798ce28f9f5b8870c5c8bf2\System.Xml.Serialization.ni.dll
    + 2011-10-12 10:20 . 2011-10-12 10:20 43520 c:\windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Pres#\d32e9d2d879649adb929915723e1eecb\System.Windows.Presentation.ni.dll
    + 2011-10-12 10:19 . 2011-10-12 10:19 86016 c:\windows\assembly\NativeImages_v4.0.30319_64\System.Web.Applicat#\f36d1265de7263ea199fa7058bf40477\System.Web.ApplicationServices.ni.dll
    + 2011-10-12 10:16 . 2011-10-12 10:16 97792 c:\windows\assembly\NativeImages_v4.0.30319_64\System.AddIn.Contra#\09132e10556be9ab331f43b2a8c52235\System.AddIn.Contract.ni.dll
    + 2011-10-12 10:13 . 2011-10-12 10:13 14336 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.VisualC\49a7edb0d7f35bebc304b303b0700ddc\Microsoft.VisualC.ni.dll
    + 2011-10-12 10:12 . 2011-10-12 10:12 28160 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Office.To#\8301416694cb22f15077e6d433e59e2a\Microsoft.Office.Tools.ni.dll
    + 2011-10-12 10:12 . 2011-10-12 10:12 55808 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Office.To#\7ce7180a1e9ef37cd133a88e7cfa35ac\Microsoft.Office.Tools.v4.0.Framework.ni.dll
    + 2011-10-12 10:11 . 2011-10-12 10:11 10752 c:\windows\assembly\NativeImages_v4.0.30319_64\dfsvc\5b39108886107f654624373c54000e3c\dfsvc.ni.exe
    + 2011-10-12 10:11 . 2011-10-12 10:11 58368 c:\windows\assembly\NativeImages_v4.0.30319_64\Accessibility\41d4534c5a98fd1bc7edc2f73cd41a0a\Accessibility.ni.dll
    + 2011-10-12 10:34 . 2011-10-12 10:34 96768 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\1c177e9aa7a1661ddec16c2f9f30947c\UIAutomationProvider.ni.dll
    + 2011-10-12 10:37 . 2011-10-12 10:37 35328 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Pres#\e4f0e0d45a1739bad6cc96377c9dd7f2\System.Windows.Presentation.ni.dll
    + 2011-10-12 10:37 . 2011-10-12 10:37 71680 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Applicat#\385b56be2d617548e4b731dd050a1f32\System.Web.ApplicationServices.ni.dll
    + 2011-10-12 10:36 . 2011-10-12 10:36 82432 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\e08ecf530f270cd45c72318b67826cb1\System.ServiceModel.Channels.ni.dll
    + 2011-10-12 10:35 . 2011-10-12 10:35 78848 c:\windows\assembly\NativeImages_v4.0.30319_32\System.AddIn.Contra#\117b65133fc00228bc249d1c61c387ea\System.AddIn.Contract.ni.dll
    + 2011-10-12 10:34 . 2011-10-12 10:34 11776 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualC\432eb09604ab71ee1aa4622bfbc4afee\Microsoft.VisualC.ni.dll
    + 2011-10-12 10:33 . 2011-10-12 10:33 21504 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Office.To#\f01fa762f59ae32d37fb4b0c9e331c98\Microsoft.Office.Tools.ni.dll
    + 2011-10-12 10:33 . 2011-10-12 10:33 45056 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Office.To#\ac1e4a1b83bdb8c1ad39a54d0cb38bc4\Microsoft.Office.Tools.v4.0.Framework.ni.dll
    + 2011-10-12 10:33 . 2011-10-12 10:33 44544 c:\windows\assembly\NativeImages_v4.0.30319_32\Accessibility\06ac8d640d2dfa7d4bb23c03584304ef\Accessibility.ni.dll
    + 2011-08-29 11:06 . 2011-08-29 11:06 60416 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Pres#\f4b0a65a0cad6d091bb903fb5f7f490d\System.Windows.Presentation.ni.dll
    - 2011-08-13 23:20 . 2011-08-13 23:20 60416 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Pres#\f4b0a65a0cad6d091bb903fb5f7f490d\System.Windows.Presentation.ni.dll
    + 2011-10-12 10:10 . 2011-10-12 10:10 60416 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Pres#\0d036f215cfdf37305d84ac680e19413\System.Windows.Presentation.ni.dll
    + 2011-10-12 10:10 . 2011-10-12 10:10 54784 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\c4a4564925c5fa6d43dac830cfb294bd\System.Web.DynamicData.Design.ni.dll
    + 2011-08-29 11:06 . 2011-08-29 11:06 54784 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\055b996b602a243bd4fcbdde8accc09c\System.Web.DynamicData.Design.ni.dll
    - 2011-08-13 23:20 . 2011-08-13 23:20 54784 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\055b996b602a243bd4fcbdde8accc09c\System.Web.DynamicData.Design.ni.dll
    - 2011-08-13 23:10 . 2011-08-13 23:10 90624 c:\windows\assembly\NativeImages_v2.0.50727_64\stdole\b33d58d0716cc4abc0183d5167bcdc2e\stdole.ni.dll
    + 2011-08-29 10:55 . 2011-08-29 10:55 90624 c:\windows\assembly\NativeImages_v2.0.50727_64\stdole\b33d58d0716cc4abc0183d5167bcdc2e\stdole.ni.dll
    + 2011-10-12 09:59 . 2011-10-12 09:59 90624 c:\windows\assembly\NativeImages_v2.0.50727_64\stdole\968c30c131b94a1b5e834fbc333b177b\stdole.ni.dll
    + 2011-08-29 11:03 . 2011-08-29 11:03 72192 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFontCac#\fe5b12605f26ab36c26f0a3b3c475dd5\PresentationFontCache.ni.exe
    - 2011-08-13 23:17 . 2011-08-13 23:17 72192 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFontCac#\fe5b12605f26ab36c26f0a3b3c475dd5\PresentationFontCache.ni.exe
    + 2011-10-12 10:07 . 2011-10-12 10:07 72192 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFontCac#\3a5529f1de05952773c725a6ff2e07fb\PresentationFontCache.ni.exe
    + 2011-10-12 09:20 . 2011-10-12 09:20 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\c066431266a5b4c8326779d12542161c\PresentationCFFRasterizer.ni.dll
    + 2011-08-29 11:00 . 2011-08-29 11:00 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\a2a31e05462d32f9f49febd89f515738\PresentationCFFRasterizer.ni.dll
    - 2011-08-13 22:09 . 2011-08-13 22:09 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\a2a31e05462d32f9f49febd89f515738\PresentationCFFRasterizer.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 33792 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Run#\66019b987c020943413851e959ca80c2\Microsoft.WSMan.Runtime.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 33792 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Run#\66019b987c020943413851e959ca80c2\Microsoft.WSMan.Runtime.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 33792 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Run#\621b2f176909228deae402a6031e7420\Microsoft.WSMan.Runtime.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\f2ee738d8439bf9025e1234c6afbd7e8\Microsoft.Windows.Diagnosis.SDHost.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\f2ee738d8439bf9025e1234c6afbd7e8\Microsoft.Windows.Diagnosis.SDHost.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\ecd29eb2eda46acfda1229f8362f60e9\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\e29ed5ad26446d196b4a5ea7e69c74e9\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\e29ed5ad26446d196b4a5ea7e69c74e9\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\d77eafc89b58f5466b7555d89a293c50\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 36864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\c1e58a266d600248f08dca600457e346\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\b1c9507f23021701932fca6306d0df0f\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\b1c9507f23021701932fca6306d0df0f\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 36864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\a4d48547af11390249b96fd1526ea514\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 36864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\a4d48547af11390249b96fd1526ea514\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 40448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\9f1ca68fbcefac4ef4f13e5f5604ad82\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\8260ae5a7d4a7e7cd907c958858da284\Microsoft.Windows.Diagnosis.SDHost.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 70144 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\636902d124bb3ee04ded9773d46f1d5d\Microsoft.Windows.Diagnosis.SDEngine.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 70144 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\636902d124bb3ee04ded9773d46f1d5d\Microsoft.Windows.Diagnosis.SDEngine.ni.dll
    - 2011-08-13 23:16 . 2011-08-13 23:16 40448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\6096a2f20727ede39049c5f3628b9a60\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll
    + 2011-08-29 11:02 . 2011-08-29 11:02 40448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\6096a2f20727ede39049c5f3628b9a60\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll
    + 2011-10-12 10:06 . 2011-10-12 10:06 70144 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\371120a0816ba5ce909b8e1341da376f\Microsoft.Windows.Diagnosis.SDEngine.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\e64111bd10d5f438c9583b792b3607e1\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\e64111bd10d5f438c9583b792b3607e1\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
    + 2011-10-12 09:58 . 2011-10-12 09:58 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\d1f2d3b5e187e3bc12ec2522bb845392\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\c78067e68ea2345bf59bc0d99157d783\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\c78067e68ea2345bf59bc0d99157d783\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.ni.dll
    + 2011-10-12 09:57 . 2011-10-12 09:57 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\b80380a48eb3ad7d7eed45e53e9dfe81\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
    + 2011-10-12 09:58 . 2011-10-12 09:58 71680 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\b7affd3de0eb5567baa0ea01dcbbde31\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
    + 2011-10-12 09:57 . 2011-10-12 09:57 87040 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\b6073392930f143f0a81a6418866e990\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 87040 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\aa2d67a0cadfb018e5325282d8c595de\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 87040 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\aa2d67a0cadfb018e5325282d8c595de\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\a310ccba8cb2d0f3612a3efda20991ed\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\a310ccba8cb2d0f3612a3efda20991ed\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.ni.dll
    + 2011-10-12 09:58 . 2011-10-12 09:58 86016 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\9b2b2e2e66a51e68a2679339ce4e4a77\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 71680 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\861fcede19bd5fb41989b3cc06e936fb\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 71680 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\861fcede19bd5fb41989b3cc06e936fb\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
    + 2011-10-12 10:05 . 2011-10-12 10:05 93696 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\71a6663950cfe588237265f13a6a9f8f\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\65ced0afa728e411a0c76ea34e923a47\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\65ced0afa728e411a0c76ea34e923a47\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
    - 2011-08-13 23:15 . 2011-08-13 23:15 93696 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\5eb5def892971d14e62ab7811989d3c9\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
    + 2011-08-29 11:01 . 2011-08-29 11:01 93696 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\5eb5def892971d14e62ab7811989d3c9\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
    + 2011-10-12 09:58 . 2011-10-12 09:58 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\5b75d5795521241fb2344a38cf42f295\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 84992 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\5709232cb4981c50ccf649b0bc1a83b8\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 84992 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\5709232cb4981c50ccf649b0bc1a83b8\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
    + 2011-10-12 09:57 . 2011-10-12 09:57 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\4cf5e5131e0c339f60008680623b6883\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
    + 2011-10-12 09:58 . 2011-10-12 09:58 84992 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\19a56cfd48276cdd930333131e029afe\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
    + 2011-08-29 10:51 . 2011-08-29 10:51 86016 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\1864125315a30c5aaa9e6173ad304b61\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 86016 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\1864125315a30c5aaa9e6173ad304b61\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
    + 2011-10-12 09:17 . 2011-10-12 09:17 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\e6aabbfb38a14559712fdf51064ff3a1\Microsoft.VisualC.ni.dll
    + 2011-08-29 10:50 . 2011-08-29 10:50 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\ae0e01377a99fd22dde3dbea057fadb1\Microsoft.VisualC.ni.dll
    - 2011-08-13 22:07 . 2011-08-13 22:07 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\ae0e01377a99fd22dde3dbea057fadb1\Microsoft.VisualC.ni.dll
    + 2011-08-29 10:57 . 2011-08-29 10:57 64000 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\dad98b9c968ce9a0b150753090c0d0aa\Microsoft.Security.ApplicationId.PolicyManagement.PolicyEngineApi.Interop.ni.dll
    - 2011-08-13 23:12 . 2011-08-13 23:12 64000 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\dad98b9c968ce9a0b150753090c0d0aa\Microsoft.Security.ApplicationId.PolicyManagement.PolicyEngineApi.Interop.ni.dll
    - 2011-08-13 23:12 . 2011-08-13 23:12 66048 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\cbba8254a8034f08e8b158ffd90e03e8\Microsoft.Security.ApplicationId.PolicyManagement.XmlHelper.ni.dll
    + 2011-08-29 10:57 . 2011-08-29 10:57 66048 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\cbba8254a8034f08e8b158ffd90e03e8\Microsoft.Security.ApplicationId.PolicyManagement.XmlHelper.ni.dll
    + 2011-10-12 10:02 . 2011-10-12 10:02 66048 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\a9a494047cfbd13fd4a155c77a258a0a\Microsoft.Security.ApplicationId.PolicyManagement.XmlHelper.ni.dll
    + 2011-10-12 10:02 . 2011-10-12 10:02 64000 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Security.#\90b3ba2f1de795690641228b63586965\Microsoft.Security.ApplicationId.PolicyManagement.PolicyEngineApi.Interop.ni.dll
    + 2011-08-29 10:55 . 2011-08-29 10:55 65536 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\b1a1a072eba978666cefe4f99fc6401c\Microsoft.MediaCenter.iTv.Hosting.ni.dll
    - 2011-08-13 23:10 . 2011-08-13 23:10 65536 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\b1a1a072eba978666cefe4f99fc6401c\Microsoft.MediaCenter.iTv.Hosting.ni.dll
    + 2011-10-12 10:00 . 2011-10-12 10:00 65536 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\866c57c6e58cbe8249b36f21ec8ac18a\Microsoft.MediaCenter.iTv.Hosting.ni.dll
    - 2011-08-13 23:12 . 2011-08-13 23:12 40960 c:\windows\assembly\NativeImages_v2.0.50727_64\LoadMxf\cdbee55e7f6c60f5cb56d6ec9f083951\LoadMxf.ni.exe
    + 2011-08-29 10:56 . 2011-08-29 10:56 40960 c:\windows\assembly\NativeImages_v2.0.50727_64\LoadMxf\cdbee55e7f6c60f5cb56d6ec9f083951\LoadMxf.ni.exe
    + 2011-10-12 10:01 . 2011-10-12 10:01 40960 c:\windows\assembly\NativeImages_v2.0.50727_64\LoadMxf\584f193ae53236bf55cd78b246214d83\LoadMxf.ni.exe
    + 2011-10-12 10:00 . 2011-10-12 10:00 49664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUPnP\50cda8ab4cd566b222342c3da14302d3\ehiUPnP.ni.dll
    - 2011-08-13 23:10 . 2011-08-13 23:10 49664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUPnP\16951451968fea951a2294c0ff4bd49e\ehiUPnP.ni.dll
    + 2011-08-29 10:55 . 2011-08-29 10:55 49664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUPnP\16951451968fea951a2294c0ff4bd49e\ehiUPnP.ni.dll
    + 2011-10-12 10:00 . 2011-10-12 10:00 93184 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiTVMSMusic\fae9950502b5464108feda9d64ebea78\ehiTVMSMusic.ni.dll
    + 2011-08-29 10:55 . 2011-08-29 10:55 93184 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiTVMSMusic\867a57af137c4a524067cdbbf09766e0\ehiTVMSMusic.ni.dll
    - 2011-08-13 23:10 . 2011-08-13 23:10 93184 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiTVMSMusic\867a57af137c4a524067cdbbf09766e0\ehiTVMSMusic.ni.dll
    + 2011-10-12 09:59 . 2011-10-12 09:59 28672 c:\windows\assembly\NativeImages_v2.0.50727_64\dfsvc\7de9a8137a33d06dad01c8405d960037\dfsvc.ni.exe
    - 2011-08-13 23:09 . 2011-08-13 23:09 28672 c:\windows\assembly\NativeImages_v2.0.50727_64\dfsvc\0c6cb1fd7a82938112cbea2c22e433df\dfsvc.ni.exe
    + 2011-08-29 10:54 . 2011-08-29 10:54 28672 c:\windows\assembly\NativeImages_v2.0.50727_64\dfsvc\0c6cb1fd7a82938112cbea2c22e433df\dfsvc.ni.exe
    + 2011-08-29 10:50 . 2011-08-29 10:50 33280 c:\windows\assembly\NativeImages_v2.0.50727_64\AuditPolicyGPManage#\730d81fc0aa8d50175dcce63e8b68ef9\AuditPolicyGPManagedStubs.Interop.ni.dll
    - 2011-08-13 23:08 . 2011-08-13 23:08 33280 c:\windows\assembly\NativeImages_v2.0.50727_64\AuditPolicyGPManage#\730d81fc0aa8d50175dcce63e8b68ef9\AuditPolicyGPManagedStubs.Interop.ni.dll
    + 2011-10-12 09:57 . 2011-10-12 09:57 33280 c:\windows\assembly\NativeImages_v2.0.50727_64\AuditPolicyGPManage#\320d4f45d6463976ce238f654e706926\AuditPolicyGPManagedStubs.Interop.ni.dll
    + 2011-10-12 09:19 . 2011-10-12 09:19 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\d301e1d96d4f39f15482db09206f1fb1\Accessibility.ni.dll
    + 2011-08-29 10:50 . 2011-08-29 10:50 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\23ea8465ac746c69a6ed7fdf628d3e9c\Accessibility.ni.dll
    - 2011-08-13 22:09 . 2011-08-13 22:09 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\23ea8465ac746c69a6ed7fdf628d3e9c\Accessibility.ni.dll
    + 2011-10-12 09:23 . 2011-10-12 09:23 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\bb1d36ae26e7cadf563061596682e747\UIAutomationProvider.ni.dll
    + 2011-10-12 10:32 . 2011-







  • Hoi Anjo - het log is niet compleet!

    Wat is N - een USB-stick of USB-HD?


    En we doen Combofix opnieuw!


    Open een nieuw kladblok bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:74be2c9748]Kladblok[/b:74be2c9748]".


    Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster


    [b:74be2c9748]
  • Ik heb fsecure uitstaan, kan de instellingen van Windows antivirus niet vinden, jouw link naar de de-activeringssite is tijdelijk out of order….
    Zal wel ff snuffelen in Help van MS
  • ComboFix geeft aan dat alleen F-Secure als beveiliging draait!

    Dus wat jij nu verder nog wil deaktiveren is mij niet duidelijk.
  • N is idd een externe HDD van 2 gig…
    Na reboot…
    ComboFix 11-10-19.03 - Anjo 19-10-2011 14:19:55.3.2 - x64
    Microsoft Windows 7 Professional 6.1.7601.1.1252.31.1043.18.4095.2526 [GMT 2:00]
    Gestart vanuit: c:\users\Anjo\Desktop\ComboFix.exe
    gebruikte Opdracht switches :: c:\users\Anjo\Desktop\CFScript.txt
    AV: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
    FW: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled* {2D7AC0A6-6241-D774-E168-461178D9686C}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2011-09-19 to 2011-10-19 ))))))))))))))))))))))))))))))
    .
    .
    2011-10-19 12:23 . 2011-10-19 12:23 ——– d—–w- c:\users\Public\AppData\Local\temp
    2011-10-19 12:23 . 2011-10-19 12:23 ——– d—–w- c:\users\Default\AppData\Local\temp
    2011-10-18 14:38 . 2011-10-18 14:38 388096 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-10-18 10:47 . 2011-09-13 00:26 9049936 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C5452899-263E-4A3C-B04D-6E904B8FC6F3}\mpengine.dll
    2011-10-17 15:08 . 2011-10-17 15:57 ——– d—–w- c:\users\Anjo\AppData\Local\Downloaded Installations
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Spirent Communications
    2011-10-17 15:07 . 2011-10-17 15:57 ——– d—–w- c:\program files (x86)\HTC
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Common Files\Adobe AIR
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\users\Anjo\AppData\Local\Adobe
    2011-10-17 12:43 . 2011-10-17 12:43 ——– d—–w- C:\NZB Auto Import Folder
    2011-10-14 09:03 . 2011-10-14 09:08 ——– d—–w- c:\users\Anjo\androidfoon
    2011-10-13 09:32 . 2011-10-13 09:32 27176 —-a-w- c:\windows\system32\drivers\ggsemc.sys
    2011-10-13 09:32 . 2011-10-13 09:32 13352 —-a-w- c:\windows\system32\drivers\ggflt.sys
    2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\programdata\Sony Ericsson
    2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\program files (x86)\Sony Ericsson
    2011-10-12 09:00 . 2011-09-06 03:03 3138048 —-a-w- c:\windows\system32\win32k.sys
    2011-10-12 09:00 . 2011-08-17 05:26 613888 —-a-w- c:\windows\system32\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 04:19 75776 —-a-w- c:\windows\SysWow64\psisrndr.ax
    2011-10-12 09:00 . 2011-08-17 04:24 465408 —-a-w- c:\windows\SysWow64\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 05:25 108032 —-a-w- c:\windows\system32\psisrndr.ax
    2011-10-12 09:00 . 2011-08-27 05:37 331776 —-a-w- c:\windows\system32\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 04:26 233472 —-a-w- c:\windows\SysWow64\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 05:37 861696 —-a-w- c:\windows\system32\oleaut32.dll
    2011-10-12 09:00 . 2011-08-27 04:26 571904 —-a-w- c:\windows\SysWow64\oleaut32.dll
    2011-10-12 08:06 . 2011-10-12 08:08 ——– d—–w- C:\Hirenboot
    2011-10-06 15:32 . 2011-10-06 15:32 ——– d—–w- c:\users\Anjo\AppData\Local\Logitech® Webcam Software
    2011-10-02 11:34 . 2011-10-02 11:34 ——– d—–w- c:\program files (x86)\DVD Decrypter
    2011-10-01 14:56 . 2011-10-01 14:56 ——– d—–w- c:\programdata\SlySoft
    2011-10-01 14:54 . 2011-10-01 20:27 ——– d—–w- c:\program files (x86)\SlySoft
    2011-10-01 14:16 . 2011-10-03 15:35 ——– d—–w- c:\programdata\DVD Shrink
    2011-10-01 14:16 . 2011-10-02 11:27 ——– d—–w- c:\program files (x86)\DVD Shrink
    2011-10-01 11:38 . 2011-10-03 15:34 ——– d—–w- c:\users\Anjo\AppData\Roaming\RipIt4Me
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\windows\SysWow64\winevt
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\users\Anjo\AppData\Local\Xenocode
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\program files (x86)\Xenocode
    2011-10-01 08:45 . 2011-10-01 09:10 ——– d—–w- c:\program files (x86)\Alcohol Soft
    2011-09-22 09:02 . 2011-10-18 14:37 ——– d—–w- c:\users\Anjo\AppData\Roaming\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–r- c:\program files (x86)\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–w- c:\programdata\Skype
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-10-09 15:01 . 2011-04-18 09:22 3088 –sha-w- c:\programdata\KGyGaAvL.sys
    2011-10-06 15:21 . 2011-03-24 21:04 53248 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
    2011-10-02 10:37 . 2011-05-15 12:44 404640 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-08-31 15:00 . 2011-08-18 06:29 25416 —-a-w- c:\windows\system32\drivers\mbam.sys
    2011-08-19 07:27 . 2011-08-19 07:27 769312 —-a-w- c:\windows\system32\LVUI64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 561440 —-a-w- c:\windows\system32\LVUIRC64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 4869024 —-a-w- c:\windows\system32\drivers\lvuvc64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 351136 —-a-w- c:\windows\system32\drivers\lvrs64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 263456 —-a-w- c:\windows\system32\lvco13301394.dll
    2011-08-19 07:27 . 2011-08-19 07:27 176416 —-a-w- c:\windows\system32\lvcod64.dll
    2011-08-19 07:26 . 2011-08-19 07:26 545056 —-a-w- c:\windows\SysWow64\LVUI2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 540960 —-a-w- c:\windows\SysWow64\LVUI2RC.dll
    2011-08-19 07:26 . 2011-08-19 07:26 307488 —-a-w- c:\windows\SysWow64\lvcodec2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\SysWow64\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\system32\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\SysWow64\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\system32\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\SysWow64\LogiDPPApp.exe
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\system32\LogiDPPApp.exe
    2011-08-12 10:19 . 2011-08-12 10:19 16920 —-a-w- c:\windows\system32\drivers\iKeyLFT264.dll
    2011-08-08 13:29 . 2011-08-08 13:29 18328 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    2011-08-01 14:00 . 2011-08-28 17:45 470888 —-a-w- c:\windows\system32\itpcoin82.dll
    2011-08-01 13:59 . 2011-08-01 13:59 45416 —-a-w- c:\windows\system32\drivers\point64.sys
    2011-07-28 16:37 . 2011-07-28 16:37 52584 —-a-w- c:\windows\system32\drivers\dc3d.sys
    2011-07-26 04:49 . 2011-07-26 04:49 38958 —-a-w- c:\windows\system32\Repository.reg
    .
    .
    ((((((((((((((((((((((((((((( SnapShot_2011-10-19_08.48.38 )))))))))))))))))))))))))))))))))))))))))
    .
    - 2011-10-18 14:57 . 2011-10-18 14:57 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2011-10-19 12:24 . 2011-10-19 12:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2011-10-18 14:57 . 2011-10-18 14:57 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2011-10-19 12:24 . 2011-10-19 12:24 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2009-07-14 05:01 . 2011-10-19 12:23 392020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    - 2009-07-14 05:01 . 2011-10-18 14:56 392020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2011-04-18 20:00 . 2011-10-19 12:23 1345672 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-4096.dat
    - 2011-03-24 21:47 . 2011-10-18 14:56 4766238 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-12288.dat
    + 2011-03-24 21:47 . 2011-10-19 12:23 4766238 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-12288.dat
    + 2011-03-24 21:22 . 2011-10-19 12:23 23911684 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-8192.dat
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "HomingBeacon Client"="c:\program files (x86)\HomingBeacon.NET\hb3gui.exe" [2008-12-29 1118208]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "F-Secure Manager"="c:\program files (x86)\Internetbeveiliging\Common\FSM32.EXE" [2009-08-05 199264]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Google Calendar Sync.lnk - c:\program files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "NoThumbnailCache"= 1 (0x1)
    "DisableThumbnailsOnNetworkFolders"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [x]
    R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [x]
    R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
    R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
    R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [x]
    R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R4 F-Secure Filter;F-Secure File System Filter;c:\program files (x86)\Internetbeveiliging\Anti-Virus\Win2K\FSfilter.sys [2009-08-05 39776]
    R4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files (x86)\Internetbeveiliging\Anti-Virus\Win2K\FSrec.sys [2009-08-05 25184]
    S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Internetbeveiliging\HIPS\drivers\fshs.sys [2009-08-05 57920]
    S1 FSES;F-Secure Email Scanning Driver;c:\windows\system32\drivers\fses.sys [x]
    S1 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [x]
    S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Internetbeveiliging\Anti-Virus\minifilter\fsvista.sys [2009-08-05 14904]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
    S2 AcronisAgent;Acronis Remote Agent;c:\program files (x86)\Common Files\Acronis\Agent\agent.exe [2005-10-18 59904]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
    S2 HomingBeacon;HomingBeacon Dynamic DNS;c:\program files (x86)\HomingBeacon.NET\hb3svc.exe [2008-12-29 68096]
    S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-08-12 87040]
    S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
    S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-03-09 92592]
    S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-08-19 450848]
    S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
    S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
    S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
    S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [x]
    S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Internetbeveiliging\Anti-Virus\minifilter\fsgk.sys [2011-03-24 194728]
    S3 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Internetbeveiliging\ORSP Client\fsorsp.exe [2011-03-24 63992]
    S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]
    S3 LVUVC64;Logitech Webcam Pro 9000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]
    S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS
    etr28x.sys [x]
    S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
    S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
    S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
    .
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
    2010-02-16 17:02 114688 —-a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe
    .
    .
    ——— x86-64 ———–
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
    .
    ——- Bijkomende Scan ——-
    .
    IE: &Verzenden naar OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
    IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
    LSP: c:\program files (x86)\Internetbeveiliging\FSPS\program\FSLSP.DLL
    TCP: DhcpNameServer = 212.54.40.25 212.54.35.25
    FF - ProfilePath - c:\users\Anjo\AppData\Roaming\Mozilla\Firefox\Profiles\65q5fnqj.default\
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_USERS\S-1-5-21-1242203046-565960955-3287484902-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
    @Denied: (2) (S-1-5-21-1242203046-565960955-3287484902-1001)
    @Denied: (2) (LocalSystem)
    "Progid"="Outlook.File.eml.14"
    .
    [HKEY_USERS\S-1-5-21-1242203046-565960955-3287484902-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
    @Denied: (2) (S-1-5-21-1242203046-565960955-3287484902-1001)
    @Denied: (2) (LocalSystem)
    "Progid"="Outlook.File.vcf.14"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
    "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fsgk32st.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\FSGK32.EXE
    c:\program files (x86)\Internetbeveiliging\Common\FSMA32.EXE
    c:\program files (x86)\Internetbeveiliging\Common\FSHDLL32.EXE
    c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
    c:\program files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
    c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
    c:\program files (x86)\TeamViewer\Version6\TeamViewer.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fssm32.exe
    c:\program files (x86)\TeamViewer\Version6\tv_w32.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fsav32.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2011-10-19 14:27:18 - machine werd herstart
    ComboFix-quarantined-files.txt 2011-10-19 12:27
    ComboFix2.txt 2011-10-19 08:50
    ComboFix3.txt 2011-08-18 10:52
    .
    Pre-Run: 207.671.181.312 bytes beschikbaar
    Post-Run: 207.344.488.448 bytes beschikbaar
    .
    - - End Of File - - 299545D64BD41B11B67A1A17208B9B81
  • Hoi Anjo, het log ziet er goed uit.
    Heb je nog problemen?
  • Lijkt t allemaal weergoed te doen.
    restvraag:
    In bovenste deel van t log zie ik Sony-Erikson en alccohol files zitten.
    Die sofware heb ik verwijderd via Configscherm etc.

    Kunnen die regels kwaad en hoe krijg ik ze eruit??
  • Hallo Anjo, je schrijft "In bovenste deel van t log zie ik Sony-Erikson en alccohol files zitten".

    Ik vrees dat jij meer ziet dan ik, want zelfs via de zoekfunktie van FF vindt ik nada.
  • 2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\programdata\Sony Ericsson
    2011-10-13 09:10 . 2011-10-14 14:58 ——– d—–w- c:\program files (x86)\Sony Ericsson

    Die alchol ben ik nou ook ff kwijt, mss wel verkeerd gelezen
  • Lol. Een kwestie dus van hoofletters!

    Open een nieuw kladblok bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:f01019e505]Kladblok[/b:f01019e505]".


    Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster


    [b:f01019e505]
  • ComboFix 11-10-19.06 - Anjo 20-10-2011 9:33.4.2 - x64
    Microsoft Windows 7 Professional 6.1.7601.1.1252.31.1043.18.4095.2700 [GMT 2:00]
    Gestart vanuit: c:\users\Anjo\Desktop\ComboFix.exe
    gebruikte Opdracht switches :: c:\users\Anjo\Desktop\CFScript.txt
    AV: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
    FW: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled* {2D7AC0A6-6241-D774-E168-461178D9686C}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Ziggo uitgebreide internetbeveiliging 9.01 *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\program files (x86)\Alcohol Soft
    c:\program files (x86)\Sony Ericsson
    c:\programdata\Sony Ericsson
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2011-09-20 to 2011-10-20 ))))))))))))))))))))))))))))))
    .
    .
    2011-10-20 07:36 . 2011-10-20 07:36 ——– d—–w- c:\users\Public\AppData\Local\temp
    2011-10-20 07:36 . 2011-10-20 07:36 ——– d—–w- c:\users\Default\AppData\Local\temp
    2011-10-18 14:38 . 2011-10-18 14:38 388096 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-10-18 10:47 . 2011-09-13 00:26 9049936 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C5452899-263E-4A3C-B04D-6E904B8FC6F3}\mpengine.dll
    2011-10-17 15:08 . 2011-10-17 15:57 ——– d—–w- c:\users\Anjo\AppData\Local\Downloaded Installations
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Spirent Communications
    2011-10-17 15:07 . 2011-10-17 15:57 ——– d—–w- c:\program files (x86)\HTC
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\program files (x86)\Common Files\Adobe AIR
    2011-10-17 15:07 . 2011-10-17 15:07 ——– d—–w- c:\users\Anjo\AppData\Local\Adobe
    2011-10-17 12:43 . 2011-10-17 12:43 ——– d—–w- C:\NZB Auto Import Folder
    2011-10-14 09:03 . 2011-10-14 09:08 ——– d—–w- c:\users\Anjo\androidfoon
    2011-10-13 09:32 . 2011-10-13 09:32 27176 —-a-w- c:\windows\system32\drivers\ggsemc.sys
    2011-10-13 09:32 . 2011-10-13 09:32 13352 —-a-w- c:\windows\system32\drivers\ggflt.sys
    2011-10-12 09:00 . 2011-09-06 03:03 3138048 —-a-w- c:\windows\system32\win32k.sys
    2011-10-12 09:00 . 2011-08-17 05:26 613888 —-a-w- c:\windows\system32\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 04:19 75776 —-a-w- c:\windows\SysWow64\psisrndr.ax
    2011-10-12 09:00 . 2011-08-17 04:24 465408 —-a-w- c:\windows\SysWow64\psisdecd.dll
    2011-10-12 09:00 . 2011-08-17 05:25 108032 —-a-w- c:\windows\system32\psisrndr.ax
    2011-10-12 09:00 . 2011-08-27 05:37 331776 —-a-w- c:\windows\system32\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 04:26 233472 —-a-w- c:\windows\SysWow64\oleacc.dll
    2011-10-12 09:00 . 2011-08-27 05:37 861696 —-a-w- c:\windows\system32\oleaut32.dll
    2011-10-12 09:00 . 2011-08-27 04:26 571904 —-a-w- c:\windows\SysWow64\oleaut32.dll
    2011-10-12 08:06 . 2011-10-12 08:08 ——– d—–w- C:\Hirenboot
    2011-10-06 15:32 . 2011-10-06 15:32 ——– d—–w- c:\users\Anjo\AppData\Local\Logitech® Webcam Software
    2011-10-02 11:34 . 2011-10-02 11:34 ——– d—–w- c:\program files (x86)\DVD Decrypter
    2011-10-01 14:56 . 2011-10-01 14:56 ——– d—–w- c:\programdata\SlySoft
    2011-10-01 14:54 . 2011-10-01 20:27 ——– d—–w- c:\program files (x86)\SlySoft
    2011-10-01 14:16 . 2011-10-03 15:35 ——– d—–w- c:\programdata\DVD Shrink
    2011-10-01 14:16 . 2011-10-02 11:27 ——– d—–w- c:\program files (x86)\DVD Shrink
    2011-10-01 11:38 . 2011-10-03 15:34 ——– d—–w- c:\users\Anjo\AppData\Roaming\RipIt4Me
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\windows\SysWow64\winevt
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\users\Anjo\AppData\Local\Xenocode
    2011-10-01 11:22 . 2011-10-01 11:22 ——– d—–w- c:\program files (x86)\Xenocode
    2011-09-22 09:02 . 2011-10-18 14:37 ——– d—–w- c:\users\Anjo\AppData\Roaming\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–r- c:\program files (x86)\Skype
    2011-09-22 09:02 . 2011-09-22 09:02 ——– d—–w- c:\programdata\Skype
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-10-09 15:01 . 2011-04-18 09:22 3088 –sha-w- c:\programdata\KGyGaAvL.sys
    2011-10-06 15:21 . 2011-03-24 21:04 53248 —-a-r- c:\users\Anjo\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
    2011-10-02 10:37 . 2011-05-15 12:44 404640 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-08-31 15:00 . 2011-08-18 06:29 25416 —-a-w- c:\windows\system32\drivers\mbam.sys
    2011-08-19 07:27 . 2011-08-19 07:27 769312 —-a-w- c:\windows\system32\LVUI64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 561440 —-a-w- c:\windows\system32\LVUIRC64.dll
    2011-08-19 07:27 . 2011-08-19 07:27 4869024 —-a-w- c:\windows\system32\drivers\lvuvc64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 351136 —-a-w- c:\windows\system32\drivers\lvrs64.sys
    2011-08-19 07:27 . 2011-08-19 07:27 263456 —-a-w- c:\windows\system32\lvco13301394.dll
    2011-08-19 07:27 . 2011-08-19 07:27 176416 —-a-w- c:\windows\system32\lvcod64.dll
    2011-08-19 07:26 . 2011-08-19 07:26 545056 —-a-w- c:\windows\SysWow64\LVUI2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 540960 —-a-w- c:\windows\SysWow64\LVUI2RC.dll
    2011-08-19 07:26 . 2011-08-19 07:26 307488 —-a-w- c:\windows\SysWow64\lvcodec2.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\SysWow64\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 336408 —-a-w- c:\windows\system32\DevManagerCore.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\SysWow64\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 10898456 —-a-w- c:\windows\system32\LogiDPP.dll
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\SysWow64\LogiDPPApp.exe
    2011-08-19 07:26 . 2011-08-19 07:26 104472 —-a-w- c:\windows\system32\LogiDPPApp.exe
    2011-08-12 10:19 . 2011-08-12 10:19 16920 —-a-w- c:\windows\system32\drivers\iKeyLFT264.dll
    2011-08-08 13:29 . 2011-08-08 13:29 18328 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    2011-08-01 14:00 . 2011-08-28 17:45 470888 —-a-w- c:\windows\system32\itpcoin82.dll
    2011-08-01 13:59 . 2011-08-01 13:59 45416 —-a-w- c:\windows\system32\drivers\point64.sys
    2011-07-28 16:37 . 2011-07-28 16:37 52584 —-a-w- c:\windows\system32\drivers\dc3d.sys
    2011-07-26 04:49 . 2011-07-26 04:49 38958 —-a-w- c:\windows\system32\Repository.reg
    .
    .
    ((((((((((((((((((((((((((((( SnapShot_2011-10-19_08.48.38 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2011-03-24 20:36 . 2011-10-19 12:50 55216 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 05:10 . 2011-10-19 12:50 41696 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    - 2009-07-14 05:10 . 2011-10-18 14:59 41696 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2011-03-24 20:26 . 2011-10-19 12:50 11550 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1242203046-565960955-3287484902-1001_UserData.bin
    - 2011-10-18 14:57 . 2011-10-18 14:57 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2011-10-20 07:37 . 2011-10-20 07:37 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2009-07-14 09:16 . 2011-10-19 12:52 708676 c:\windows\system32\perfh013.dat
    - 2009-07-14 09:16 . 2011-10-18 15:02 708676 c:\windows\system32\perfh013.dat
    + 2009-07-14 02:36 . 2011-10-19 12:52 623160 c:\windows\system32\perfh009.dat
    - 2009-07-14 02:36 . 2011-10-18 15:02 623160 c:\windows\system32\perfh009.dat
    + 2009-07-14 09:16 . 2011-10-19 12:52 136824 c:\windows\system32\perfc013.dat
    - 2009-07-14 09:16 . 2011-10-18 15:02 136824 c:\windows\system32\perfc013.dat
    - 2009-07-14 02:36 . 2011-10-18 15:02 109656 c:\windows\system32\perfc009.dat
    + 2009-07-14 02:36 . 2011-10-19 12:52 109656 c:\windows\system32\perfc009.dat
    + 2009-07-14 04:46 . 2011-10-19 12:31 107632 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
    - 2009-07-14 05:01 . 2011-10-18 14:56 392020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2009-07-14 05:01 . 2011-10-20 07:36 392020 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2011-04-18 20:00 . 2011-10-19 12:23 1345672 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-4096.dat
    + 2011-03-24 21:47 . 2011-10-19 12:23 4766238 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-12288.dat
    - 2011-03-24 21:47 . 2011-10-18 14:56 4766238 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-12288.dat
    + 2011-03-24 21:22 . 2011-10-20 07:36 23911684 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1242203046-565960955-3287484902-1001-8192.dat
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "HomingBeacon Client"="c:\program files (x86)\HomingBeacon.NET\hb3gui.exe" [2008-12-29 1118208]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "F-Secure Manager"="c:\program files (x86)\Internetbeveiliging\Common\FSM32.EXE" [2009-08-05 199264]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Google Calendar Sync.lnk - c:\program files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "NoThumbnailCache"= 1 (0x1)
    "DisableThumbnailsOnNetworkFolders"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [x]
    R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [x]
    R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
    R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
    R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [x]
    R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R4 F-Secure Filter;F-Secure File System Filter;c:\program files (x86)\Internetbeveiliging\Anti-Virus\Win2K\FSfilter.sys [2009-08-05 39776]
    R4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files (x86)\Internetbeveiliging\Anti-Virus\Win2K\FSrec.sys [2009-08-05 25184]
    S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Internetbeveiliging\HIPS\drivers\fshs.sys [2009-08-05 57920]
    S1 FSES;F-Secure Email Scanning Driver;c:\windows\system32\drivers\fses.sys [x]
    S1 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [x]
    S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Internetbeveiliging\Anti-Virus\minifilter\fsvista.sys [2009-08-05 14904]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
    S2 AcronisAgent;Acronis Remote Agent;c:\program files (x86)\Common Files\Acronis\Agent\agent.exe [2005-10-18 59904]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
    S2 HomingBeacon;HomingBeacon Dynamic DNS;c:\program files (x86)\HomingBeacon.NET\hb3svc.exe [2008-12-29 68096]
    S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-08-12 87040]
    S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
    S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-03-09 92592]
    S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-08-19 450848]
    S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
    S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
    S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
    S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [x]
    S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Internetbeveiliging\Anti-Virus\minifilter\fsgk.sys [2011-03-24 194728]
    S3 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Internetbeveiliging\ORSP Client\fsorsp.exe [2011-03-24 63992]
    S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]
    S3 LVUVC64;Logitech Webcam Pro 9000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]
    S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS
    etr28x.sys [x]
    S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
    S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
    S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
    .
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
    2010-02-16 17:02 114688 —-a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe
    .
    .
    ——— x86-64 ———–
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
    .
    ——- Bijkomende Scan ——-
    .
    IE: &Verzenden naar OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
    IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
    LSP: c:\program files (x86)\Internetbeveiliging\FSPS\program\FSLSP.DLL
    TCP: DhcpNameServer = 212.54.40.25 212.54.35.25
    FF - ProfilePath - c:\users\Anjo\AppData\Roaming\Mozilla\Firefox\Profiles\65q5fnqj.default\
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_USERS\S-1-5-21-1242203046-565960955-3287484902-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
    @Denied: (2) (S-1-5-21-1242203046-565960955-3287484902-1001)
    @Denied: (2) (LocalSystem)
    "Progid"="Outlook.File.eml.14"
    .
    [HKEY_USERS\S-1-5-21-1242203046-565960955-3287484902-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
    @Denied: (2) (S-1-5-21-1242203046-565960955-3287484902-1001)
    @Denied: (2) (LocalSystem)
    "Progid"="Outlook.File.vcf.14"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
    "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fsgk32st.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\FSGK32.EXE
    c:\program files (x86)\Internetbeveiliging\Common\FSMA32.EXE
    c:\program files (x86)\Internetbeveiliging\Common\FSHDLL32.EXE
    c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
    c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
    c:\program files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
    c:\program files (x86)\TeamViewer\Version6\TeamViewer.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fssm32.exe
    c:\program files (x86)\TeamViewer\Version6\tv_w32.exe
    c:\program files (x86)\Internetbeveiliging\Anti-Virus\fsav32.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2011-10-20 09:40:34 - machine werd herstart
    ComboFix-quarantined-files.txt 2011-10-20 07:40
    ComboFix2.txt 2011-10-19 12:27
    ComboFix3.txt 2011-10-19 08:50
    ComboFix4.txt 2011-08-18 10:52
    .
    Pre-Run: 206.952.034.304 bytes beschikbaar
    Post-Run: 206.859.669.504 bytes beschikbaar
    .
    - - End Of File - - 1E33863BCC02229B62C9F609C7EF4C64
  • Hoi Anjo, dat is zeer "smooth" gegaan.
    In principe hadden die mappen ook handmatig verwijderd mogen worden.

    Is alles weer naar wens met jouw Windows?
  • Het loopt weer als een zonnetje
    Wederom HARTELIJK DANK :D :D
  • Fijn, dan gaan we opruimen.

  • Results of screen317's Security Check version 0.99.24
    Windows 7 x64 (UAC is enabled)
    Internet Explorer 9
    [b:160a1374fc]``````````````````````````````
    [u:160a1374fc]Antivirus/Firewall Check:[/u:160a1374fc][/b:160a1374fc]
    [size=1:160a1374fc]WMI entry may not exist for antivirus; attempting automatic update.[/size:160a1374fc]
    [b:160a1374fc]```````````````````````````````
    [u:160a1374fc]Anti-malware/Other Utilities Check:[/u:160a1374fc][/b:160a1374fc]
    Malwarebytes' Anti-Malware
    Java(TM) 6 Update 29
    Adobe Flash Player ( 10.3.183.10) [b:160a1374fc]
  • Dan nog maar weer updaten:

    Er zijn twee onderdelen in Windows, die altijd de nieuwste versie dienen te zijn en dat zijn Java runtime en Adobe Flash Player.
    Waarom: in die nieuwste versies zijn altijd de ontdekte veiligheidsrisico's uitverbeterd en ook dat vaak het tool zelf beter funktioneert!

    Wat mij zelf opgevallen is, dat update je de Flash Player, dan bijft de oude versie ook geïnstalleerd en dat is niet de bedoeling!

    Ten behoeve van Flash Player in Windows:

    ga nu eerst naar Configuratiescherm
    [list:55681e301a][*:55681e301a][b:55681e301a]Software[/b:55681e301a] - Windows 2000/Windows XP
    [*:55681e301a][b:55681e301a]Programma's en onderdelen[/b:55681e301a] - Windows Vista en Windows 7[/list:u:55681e301a]

    en verwijder daar vervolgens [b:55681e301a]Adobe Flashplayer Active X…..[/b:55681e301a]

    ga vervolgens met Internet Explorer naar http://get.adobe.com/nl/flashplayer/ om de nieuwste Flasplayer te laten installeren;
    (wil je de [b:55681e301a]Gratis Google Toolbar (optioneel) (2,12 MB)[/b:55681e301a] niet erbij hebben, haal dan eerst het vinkje weg!).


    [b:55681e301a]Belangrijk[/b:55681e301a]: gebruik je ook andere browsers dan verwijder je eerst via dezelfde weg de [b:55681e301a]Adobe Flashplayer Plugins[/b:55681e301a] en daarna gebruik je dan die andere browsers telkens via hetzelfde internetadres om de nieuwste Flashplayer Plugins te downloaden en na afsluiten van de betreffende browser de nieuwe plugin te installeren!


    Download nu eerst [b:55681e301a]Java 7 Update 0 (x86) voor Windows 7/XP/Vista/2000/2003/2008 Offline[/b:55681e301a] eerst naar je bureaublad.

    Echter nog niet de nieuwe versie installeren!


    Je gaat daarna eerst naar Configuratiescherm
    [list:55681e301a][*:55681e301a][b:55681e301a]Software[/b:55681e301a] - Windows 2000/Windows XP
    [*:55681e301a][b:55681e301a]Programma's en onderdelen[/b:55681e301a] - Windows Vista en Windows 7[/list:u:55681e301a] en je verwijdert daar [b:55681e301a]Java(TM) 6 Update 29[/b:55681e301a]

    Vervolgens start jij je PC opnieuw op.

    Dan mag je daarna de nieuwste Java versie installeren.


    N.B. Windows 64-bit gebruikers doen het het zelfde met de reeds geïnstalleerde oude Java x64.

    [b:55681e301a]Java Java 7 Update 0 (x64) Offline[/b:55681e301a]
  • Done, ik merk geen problemen meer…
    Nog suggesties??
    Zo niet Bedankt :D
  • We zijn klaar Anjo, jij ook bedankt voor de prettige samenwerking.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.