ComboFix 10-07-08.02 - Brian 10-07-2010 12:22:48.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.1790.1022 [GMT 2:00] Gestart vanuit: c:\users\Brian\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Brian\Desktop\CFScript.txt..txt SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt FILE :: "c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe" . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B} c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.dat c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.par c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.res c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\instance.dat c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\mia.lib c:\users\Brian\AppData\Roaming\Convivea\Bit_Che c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\coffee\0~_Example_Cup.txt c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\filter.txt c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Arabic.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\bih.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Brazilian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Brazilian2.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Bulgarian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Castellano.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Chinese(Simp).ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Chinese(Trad).ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Chinese.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Chinese_BIG5.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\compare.exe c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\croatian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Czech.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Danish.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Dutch.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\eesti.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\English.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Es-Argentina.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Español.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Faroese.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Farsi.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Filipino.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Finnish.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Arabic.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\bih.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Brazilian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Brazilian2.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Bulgarian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Castellano.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Chinese(Simp).ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Chinese(Trad).ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Chinese_BIG5.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\croatian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Czech.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Danish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Dutch.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\English.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Es-Argentina.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Español.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Faroese.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Farsi.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Filipino.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Finnish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\French.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\German.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Greek.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Hebrew.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Italian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Italian2.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Lithuanian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Norwegian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Polish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Portuguese.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\romana diacritics.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\romana no diacritics.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Russian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Slovak.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Slovene.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Slovenian.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Spanish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Srpski.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Swedish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\flags\Turkish.ico c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\French.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\German.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Greek.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Hebrew.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Italian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Italian2.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Japanese.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Lithuanian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Norwegian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Polish.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Portuguese.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\romana diacritics.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\romana no diarcritics.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Romana.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Russian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Slovak.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Slovene.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Slovenian.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Srpski.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Swedish.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\languages\Turkish.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\1337x.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\araditracker.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\arenabg.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\Audionews.ru.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\AudioZoneTorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\badbits.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\BestXviD.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bit-hdtv.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bitchile.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bithq.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bitnation.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bitsoup.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bittorrent.am.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\BiTTTorrents.ro.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bitturk.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\blackcats-games.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\boxtorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\brokenstones.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bt-chat.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bt.etree.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\btjunkie.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\btmon.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\btswarm.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\bushtorrent.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\cinematik.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\Cinenews.info.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\Colombo-bt.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\community-shares.info.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\corsaronero.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\creepytor.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\demonoid.cc.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\demonoid.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\demonoid_PUBLIC.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\desitorrents.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\dididave.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\digitalhive.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\dimeadozen.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\dvdclub.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\elbitz.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\ExtremeShare.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\eztvefnet.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\filelist.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\filemp3.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\filepost.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\fr333dom.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\FreeTheScene.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\fulldls.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\FunFile.Org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\gamato-info.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\gamegui.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\GfxNews.ru.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\glabella.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\guiks.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\h33t.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\hd-bits.ro.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\hdbits.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\hdchina.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\hdfrench.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\ilovetorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\indytorrents.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\intertracker.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\ipodnova.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\iptorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\isohunt.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\jamendo.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\Karagarga.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\leecherslair.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\legendary-torrents.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\luciferadreams.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\merc-tech.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\MetalBits.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\midnight-torrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\mininova.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\mixermusic.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\mp3nerds.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\mp3nova.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\mybittorrent.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\myspleen.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\nemesyz.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\newtorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\nordic-t.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\nyaatorrents.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\oinkme.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\passionblue.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\piratebay.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\piratebay_members.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\powerscene.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\pretome.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\randombytes.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\rarbg.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\reload.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\revolutiontt.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\rockbox.psychocydd.co.uk.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\rutracker.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\scenehd.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\sceneleech.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\scenemachine.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\scripts.dat c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\sdbits.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\settings.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\sharetv.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\shnflac.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\slotorrent.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\snarf-it.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\snarf-it.reg.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\snowtigers.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\softmp3.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\special.exe c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\status-x.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\stmusic.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\sumotorrent.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\supertorrents.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\suprnova.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\swepiracy.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\Takeabyte.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\teamghost.fr.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\textbooktorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\thebox.bz.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TheCandy-Store.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\thepeerhub.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TntVillage.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TntVillagePub.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\todotorrents.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrent-damage.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentbits.ro.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TorrentBitsRO.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentbox.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentbytes.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TorrentDay.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TorrentDemons.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrential.kicks-ass.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentleech.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentphase.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentportal.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentqc.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentreactor.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrents.bol.bg.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrents.ru.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentspy.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentstorage.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TorrentVibes.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\TorrentZap.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\torrentzilla.org.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\tunebully.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\uknova.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\underground-gamer.com.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\update.exe c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\vipv2.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\waffles.fm.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\what.cd.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\x.dll c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\x.exe c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\xthor.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\zamunda.net.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\scripts\zerotracker.ini c:\users\Brian\AppData\Roaming\Convivea\Bit_Che\settings.ini . (((((((((((((((((((( Bestanden Gemaakt van 2010-06-10 to 2010-07-10 )))))))))))))))))))))))))))))) . 2010-07-10 10:29 . 2010-07-10 10:29 -------- d-----w- c:\users\Brian\AppData\Local\temp 2010-07-10 10:29 . 2010-07-10 10:29 -------- d-----w- c:\users\Public\AppData\Local\temp 2010-07-10 10:29 . 2010-07-10 10:29 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-07-10 09:29 . 2010-07-10 09:29 -------- d-----w- c:\users\Brian\AppData\Roaming\Malwarebytes 2010-07-10 09:29 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-07-10 09:29 . 2010-07-10 09:29 -------- d-----w- c:\programdata\Malwarebytes 2010-07-10 09:29 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-07-10 00:30 . 2010-07-10 00:30 388096 ----a-r- c:\users\Brian\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-07-10 00:03 . 2010-07-10 00:03 -------- d-----w- c:\users\Brian\AppData\Roaming\Logitech 2010-07-10 00:00 . 2010-07-10 00:00 53248 ----a-r- c:\users\Brian\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe 2010-07-10 00:00 . 2010-07-10 00:00 -------- d-----w- c:\users\Brian\AppData\Roaming\Leadertech 2010-07-09 23:58 . 2008-05-02 00:38 301656 ----a-w- c:\windows\system32\BtCoreIf.dll 2010-07-09 23:58 . 2008-05-02 00:40 84496 ----a-w- c:\windows\system32\KemXML.dll 2010-07-09 23:58 . 2008-05-02 00:40 117264 ----a-w- c:\windows\system32\KemWnd.dll 2010-07-09 23:58 . 2008-05-02 00:39 145936 ----a-w- c:\windows\system32\KemUtil.dll 2010-07-09 23:58 . 2008-05-02 00:39 170512 ----a-w- c:\windows\system32\kemutb.dll 2010-07-09 23:58 . 2010-07-10 00:00 -------- d-----w- c:\program files\Common Files\LogiShrd 2010-07-09 23:57 . 2010-07-09 23:57 -------- d-----w- c:\programdata\Logitech 2010-07-09 23:57 . 2010-07-09 23:57 -------- d-----w- c:\programdata\LogiShrd 2010-07-09 23:48 . 2010-07-09 23:48 -------- d-----w- c:\users\Brian\AppData\Roaming\aignes 2010-07-09 23:29 . 2007-03-30 15:43 61440 ----a-w- c:\windows\system32\vsnpstd3.dll 2010-07-09 23:29 . 2006-09-18 12:12 843776 ----a-w- c:\windows\vsnpstd3.exe 2010-07-09 23:29 . 2006-09-18 12:12 843776 ----a-w- c:\windows\system32\vsnpstd3.exe 2010-07-09 23:29 . 2010-07-09 23:29 -------- d-----w- c:\program files\VGA USB Camera 2010-07-09 23:29 . 2007-03-30 09:12 10199296 ----a-w- c:\windows\system32\drivers\snpstd3.sys 2010-07-09 23:29 . 2006-12-27 12:33 172032 ----a-w- c:\windows\system32\rsnpstd3.dll 2010-07-09 23:29 . 2006-12-27 12:33 172032 ----a-w- c:\windows\rsnpstd3.dll 2010-07-09 23:29 . 2005-11-23 11:55 53248 ----a-w- c:\windows\system32\csnpstd3.dll 2010-07-09 23:29 . 2004-11-29 17:43 458752 ----a-w- c:\windows\amcap.exe 2010-07-09 23:09 . 2010-07-09 23:09 -------- d-----w- c:\windows\system32\ca-ES 2010-07-09 23:09 . 2010-07-09 23:09 -------- d-----w- c:\windows\system32\eu-ES 2010-07-09 23:09 . 2010-07-09 23:09 -------- d-----w- c:\windows\system32\vi-VN 2010-07-09 23:07 . 2010-07-09 23:07 -------- d-----w- c:\windows\system32\SPReview 2010-07-09 22:55 . 2009-04-10 21:28 928768 ----a-w- c:\windows\system32\scavenge.dll 2010-07-09 22:55 . 2009-04-10 21:27 57856 ----a-w- c:\windows\system32\compcln.exe 2010-07-09 22:50 . 2009-04-10 21:32 265688 ----a-w- c:\windows\system32\drivers\acpi.sys 2010-07-09 22:49 . 2009-04-10 21:28 1580544 ----a-w- c:\windows\system32\wpccpl.dll 2010-07-09 22:33 . 2010-07-09 22:33 -------- d-----w- c:\windows\system32\EventProviders 2010-07-09 22:18 . 2010-07-09 22:18 -------- d-----w- c:\programdata\Messenger Plus! 2010-07-09 22:18 . 2010-07-09 22:18 -------- d-----w- c:\programdata\Office Genuine Advantage 2010-07-09 21:34 . 2010-07-09 21:34 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2010-07-09 20:32 . 2010-07-10 10:00 -------- d-----w- c:\users\Brian\Tracing 2010-07-09 20:32 . 2010-07-09 23:11 -------- d-----w- c:\program files\Microsoft Silverlight 2010-07-09 20:30 . 2010-07-09 20:30 -------- d-----w- c:\program files\Microsoft 2010-07-09 20:30 . 2010-07-09 20:30 -------- d-----w- c:\program files\Windows Live SkyDrive 2010-07-09 20:30 . 2010-07-09 20:31 -------- d-----w- c:\program files\Windows Live 2010-07-09 20:27 . 2010-07-09 20:27 -------- d-----w- c:\program files\Common Files\Windows Live 2010-07-09 20:04 . 2009-11-08 08:55 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2010-07-09 20:04 . 2009-11-08 08:55 49472 ----a-w- c:\windows\system32\netfxperf.dll 2010-07-09 20:04 . 2009-11-08 08:55 297808 ----a-w- c:\windows\system32\mscoree.dll 2010-07-09 20:04 . 2009-11-08 08:55 295264 ----a-w- c:\windows\system32\PresentationHost.exe 2010-07-09 20:04 . 2009-11-08 08:55 1130824 ----a-w- c:\windows\system32\dfshim.dll 2010-07-09 19:47 . 2010-03-05 14:01 420352 ----a-w- c:\windows\system32\vbscript.dll 2010-07-09 19:47 . 2009-08-24 11:36 377344 ----a-w- c:\windows\system32\winhttp.dll 2010-07-09 19:38 . 2010-07-09 19:38 -------- d-----w- c:\users\Brian\AppData\Local\PackageAware 2010-07-09 19:27 . 2008-05-27 04:59 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin 2010-07-09 19:18 . 2010-07-09 19:18 -------- d-----w- c:\users\Brian\AppData\Local\Google 2010-07-09 19:18 . 2010-07-09 19:18 -------- d-----w- c:\users\Brian\AppData\Local\Apps 2010-07-09 19:18 . 2010-07-09 19:18 -------- d-----w- c:\users\Brian\AppData\Local\Deployment 2010-07-09 18:59 . 2010-07-09 18:59 -------- d-----w- c:\users\Brian\AppData\Roaming\Canon 2010-07-09 18:52 . 2010-07-09 18:53 -------- d-----w- c:\programdata\ScanSoft 2010-07-09 18:50 . 2010-07-09 18:50 -------- d-----w- c:\program files\Common Files\CANON 2010-07-09 18:49 . 2010-07-09 18:49 -------- d--h--w- c:\programdata\CanonBJ 2010-07-09 18:49 . 2007-03-18 20:00 69632 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPP8S.DLL 2010-07-09 18:49 . 2007-03-18 20:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPD8S.DLL 2010-07-09 18:48 . 2010-07-09 18:48 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information 2010-07-09 18:48 . 2007-03-18 20:00 215040 ----a-w- c:\windows\system32\CNMLM8S.DLL 2010-07-09 18:48 . 2007-03-15 05:12 188416 ----a-w- c:\windows\system32\CNC210O.DLL 2010-07-09 18:48 . 2007-03-23 07:30 1400832 ----a-w- c:\windows\system32\CNC210C.DLL 2010-07-09 18:48 . 2007-03-23 07:29 98304 ----a-w- c:\windows\system32\CNC210I.DLL 2010-07-09 18:48 . 2007-03-19 01:16 200704 ----a-w- c:\windows\system32\CNC210L.DLL 2010-07-09 18:48 . 2010-07-09 18:48 -------- d--h--w- c:\program files\CanonBJ 2010-07-09 18:47 . 2010-07-09 18:56 -------- d-----w- c:\program files\Canon 2010-07-09 18:41 . 2010-02-12 10:48 293376 ----a-w- c:\windows\system32\browserchoice.exe 2010-07-09 18:24 . 2010-02-20 23:06 24064 ----a-w- c:\windows\system32\nshhttp.dll 2010-07-09 18:24 . 2010-02-20 20:53 411648 ----a-w- c:\windows\system32\drivers\http.sys 2010-07-09 18:24 . 2010-02-20 23:05 30720 ----a-w- c:\windows\system32\httpapi.dll 2010-07-09 18:23 . 2010-07-09 18:23 -------- d-----w- c:\program files\MSXML 4.0 2010-07-09 17:51 . 2009-06-15 14:54 175104 ----a-w- c:\windows\system32\wdigest.dll 2010-07-09 17:51 . 2009-06-15 14:52 1259008 ----a-w- c:\windows\system32\lsasrv.dll 2010-07-09 17:51 . 2009-06-15 14:52 499712 ----a-w- c:\windows\system32\kerberos.dll 2010-07-09 17:51 . 2009-06-15 23:15 439864 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2010-07-09 17:51 . 2009-06-15 14:53 72704 ----a-w- c:\windows\system32\secur32.dll 2010-07-09 17:51 . 2009-06-15 14:53 270848 ----a-w- c:\windows\system32\schannel.dll 2010-07-09 17:51 . 2009-06-15 12:48 9728 ----a-w- c:\windows\system32\lsass.exe 2010-07-09 17:32 . 2010-07-09 18:22 -------- d-----w- c:\program files\NVIDIA Corporation 2010-07-09 17:01 . 2010-07-09 17:01 -------- d-----w- c:\users\Brian\AppData\Roaming\Stardock 2010-07-09 17:01 . 2010-07-09 17:01 -------- d-----w- c:\programdata\DVD Shrink 2010-07-09 16:57 . 2010-07-09 23:52 -------- d-----w- c:\users\Brian\AppData\Roaming\uTorrent 2010-07-09 16:55 . 2010-07-09 16:55 -------- d-----w- c:\users\Brian\AppData\Roaming\vlc 2010-07-09 16:53 . 2010-07-10 10:28 -------- d-----w- c:\users\Brian\AppData\Roaming\Convivea 2010-07-09 16:38 . 2009-08-14 13:48 105984 ----a-w- c:\windows\system32\netiohlp.dll 2010-07-09 16:36 . 2010-04-16 14:39 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2010-07-09 16:35 . 2010-01-29 15:40 738816 ----a-w- c:\windows\system32\inetcomm.dll 2010-07-09 16:34 . 2010-02-18 14:07 3600776 ----a-w- c:\windows\system32\ntkrnlpa.exe 2010-07-09 16:34 . 2010-02-18 14:07 3548040 ----a-w- c:\windows\system32\ntoskrnl.exe 2010-07-09 16:34 . 2010-04-05 17:01 67072 ----a-w- c:\windows\system32\asycfilt.dll 2010-07-09 16:34 . 2009-04-23 12:15 784896 ----a-w- c:\windows\system32\rpcrt4.dll 2010-07-09 16:34 . 2009-07-15 12:39 313344 ----a-w- c:\windows\system32\wmpdxm.dll 2010-07-09 16:33 . 2010-02-18 14:07 904576 ----a-w- c:\windows\system32\drivers\tcpip.sys 2010-07-09 16:33 . 2010-02-18 13:30 200704 ----a-w- c:\windows\system32\iphlpsvc.dll 2010-07-09 16:33 . 2010-02-18 11:28 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys 2010-07-09 16:33 . 2009-12-08 17:26 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2010-07-09 16:32 . 2009-06-04 12:07 2066432 ----a-w- c:\windows\system32\mstscax.dll 2010-07-09 16:32 . 2009-04-11 06:28 53248 ----a-w- c:\windows\system32\tsgqec.dll 2010-07-09 16:32 . 2009-04-11 06:28 136192 ----a-w- c:\windows\system32\aaclient.dll 2010-07-09 16:32 . 2009-06-10 11:42 160256 ----a-w- c:\windows\system32\wkssvc.dll 2010-07-09 16:32 . 2009-04-23 12:14 623616 ----a-w- c:\windows\system32\localspl.dll 2010-07-09 16:32 . 2009-07-17 13:54 71680 ----a-w- c:\windows\system32\atl.dll 2010-07-09 16:32 . 2010-04-23 14:13 2048 ----a-w- c:\windows\system32\tzres.dll 2010-07-09 16:29 . 2010-05-26 14:47 289792 ----a-w- c:\windows\system32\atmfd.dll 2010-07-09 16:29 . 2010-05-26 17:06 34304 ----a-w- c:\windows\system32\atmlib.dll 2010-07-09 16:29 . 2009-10-19 13:35 72704 ----a-w- c:\windows\system32\fontsub.dll 2010-07-09 16:29 . 2009-06-15 14:52 23552 ----a-w- c:\windows\system32\lpk.dll 2010-07-09 16:29 . 2009-06-15 14:51 10240 ----a-w- c:\windows\system32\dciman32.dll 2010-07-09 16:20 . 2010-06-28 20:57 38848 ----a-w- c:\windows\avastSS.scr 2010-07-09 16:15 . 2009-12-23 11:33 172032 ----a-w- c:\windows\system32\wintrust.dll 2010-07-09 16:15 . 2010-01-13 17:34 98304 ----a-w- c:\windows\system32\cabview.dll 2010-07-09 16:11 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll 2010-07-09 16:11 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe 2010-07-09 16:11 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll 2010-07-09 16:11 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll 2010-07-09 16:11 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll 2010-07-09 16:11 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll 2010-07-09 16:11 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-07-10 09:13 . 2008-01-21 06:47 667114 ----a-w- c:\windows\system32\perfh013.dat 2010-07-10 09:13 . 2008-01-21 06:47 126648 ----a-w- c:\windows\system32\perfc013.dat 2010-07-10 00:16 . 2010-07-10 00:16 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2010-07-10 00:16 . 2010-07-10 00:16 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf 2010-07-09 23:59 . 2008-05-08 19:03 -------- d-----w- c:\programdata\Microsoft Help 2010-07-09 23:57 . 2008-05-08 18:14 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration 2010-07-09 23:09 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2010-07-09 23:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender 2010-07-09 23:09 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat 2010-07-09 23:07 . 2008-05-08 18:23 -------- d-----w- c:\programdata\NVIDIA 2010-07-09 22:18 . 2010-07-09 15:34 70672 ----a-w- c:\users\Brian\AppData\Local\GDIPFONTCACHEV1.DAT 2010-07-09 22:14 . 2008-05-08 19:05 -------- d-----w- c:\program files\Microsoft Works 2010-07-09 18:56 . 2010-07-09 18:56 -------- d-----w- c:\programdata\CanonIJPLM 2010-07-09 18:53 . 2008-05-08 18:20 -------- d-----w- c:\program files\Common Files\InstallShield 2010-07-09 18:16 . 2010-07-09 17:37 34901 ----a-w- c:\programdata\nvModes.dat 2010-07-09 15:55 . 2008-05-08 18:36 -------- d-----w- c:\programdata\McAfee 2010-07-09 15:54 . 2008-05-08 18:38 -------- d-----w- c:\programdata\SiteAdvisor 2010-07-09 15:34 . 2008-05-08 18:33 -------- d-----w- c:\program files\Acer 2010-05-04 05:59 . 2010-07-09 18:21 916480 ----a-w- c:\windows\system32\wininet.dll 2010-05-04 05:55 . 2010-07-09 18:21 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-05-04 05:55 . 2010-07-09 18:21 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-05-04 04:31 . 2010-07-09 18:21 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2010-05-01 14:13 . 2010-07-09 16:28 2037248 ----a-w- c:\windows\system32\win32k.sys 2010-04-16 20:12 . 2010-04-16 20:12 48464 ----a-w- c:\windows\system32\sirenacm.dll 2010-04-16 16:43 . 2010-07-09 16:37 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2010-04-16 16:43 . 2010-07-09 16:37 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll 2010-04-16 16:43 . 2010-07-09 16:37 458752 ----a-w- c:\windows\AppPatch\AcSpecfc.dll 2010-04-16 16:43 . 2010-07-09 16:37 542720 ----a-w- c:\windows\AppPatch\AcLayers.dll 2010-04-16 16:43 . 2010-07-09 16:37 2159616 ----a-w- c:\windows\AppPatch\AcGenral.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2008-03-04 21:38 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Google Update"="c:\users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-07-09 136176] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184] "RtHDVCpl"="RtHDVCpl.exe" [2008-03-26 5369856] "Acer Empowering Technology Monitor"="c:\program files\Acer\Empowering Technology\SysMonitor.exe" [2008-04-25 319488] "EmpoweringTechnology"="c:\program files\Acer\Empowering Technology\Framework.Launcher.exe" [2008-04-25 319488] "eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-04 526896] "PCMMediaSharing"="c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe" [2008-01-25 204908] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048] "BkupTray"="c:\program files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" [2008-04-06 34040] "WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104] "avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-06-28 2837864] "CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152] "Skytel"="Skytel.exe" [2007-11-20 1826816] "snpstd3"="c:\windows\vsnpstd3.exe" [2006-09-18 843776] "UnlockerAssistant"="d:\program files\unlocker\UnlockerAssistant.exe" [2010-03-09 15872] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 76304] c:\users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Logitech . Productregistratie.lnk - c:\program files\Common Files\LogiShrd\eReg\Common\eReg.exe [2009-4-8 517384] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Logitech SetPoint.lnk - d:\program files\SetPoint\SetPoint\SetPoint.exe [2010-7-10 805392] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler] "{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "d:\program files\Fences\Stardock\Fences\FencesMenu.dll" [2009-10-02 128360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(b):4e,f2,1c,91,bc,1f,cb,01 R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072] R3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;c:\windows\system32\DRIVERS\WUSB54GCx86.sys [2007-03-12 256000] S1 aswSP;aswSP; [x] S2 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-01-25 269448] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-06-28 50256] S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384] S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-04-25 24576] S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-04-22 43552] . Inhoud van de 'Gedeelde Taken' map 2010-07-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-262068592-1290992578-934002659-1000Core.job - c:\users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-09 19:18] 2010-07-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-262068592-1290992578-934002659-1000UA.job - c:\users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-09 19:18] 2010-07-10 c:\windows\Tasks\User_Feed_Synchronization-{98F2EA63-86F5-4D14-BE95-F5544EDFCB2F}.job - c:\windows\system32\msfeedssync.exe [2010-07-09 04:30] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ mStart Page = hxxp://nl.intl.acer.yahoo.com LSP: %SYSTEMROOT%\system32\nvLsp.dll . - - - - ORPHANS VERWIJDERD - - - - AddRemove-Fences - c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe AddRemove-{10CD364B-FFCC-48BE-B469-B9622A033075} - c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-07-10 12:29 Windows 6.0.6002 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . Voltooingstijd: 2010-07-10 12:32:28 ComboFix-quarantined-files.txt 2010-07-10 10:32 ComboFix2.txt 2010-07-10 00:46 Pre-Run: 128.424.488.960 bytes beschikbaar Post-Run: 128.384.122.880 bytes beschikbaar Current=1 Default=1 Failed=0 LastKnownGood=10 Sets=1,2,3,4,5,6,7,8,9,10 - - End Of File - - 8D0AE98CAB25131E9431C3EA39AEFA3D