Wollie
-
Items
18 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door Wollie
-
Ik bedoelde assembly i.p.v. ambassy Gr. Wollie
-
Kan het ook te maken hebben met " ambassy" en " installer" Als ik namelijk AVG laat scannen duurt het bij deze onderwerpen ook erg lang voordat hij ze gescand heeft.
-
Hij stond al op de hoge prestaties
-
Hallo bobschaart, hij staat al op de hoogste prestatie. Gr. Wollie
-
Hallo Asus, Nog steeds hetzelfde. Van alles geprobeerd maar nog geen oplossing. Opstarten PC duurt ruim een uur en daarna als hij eenmaal opgestart is, is het probleem minder erg. Af en toe is hij wel erg traag, bijvoorbeeld na hem een uur niet gebruikt te hebben duurt het weer even om op gang te komen en duurt het wat langer dat hij reageert. Al met al denk ik toch dat er iets met het geheugen is??? Gr. Wollie
-
ja, die zat erop
-
Heb virusscanner verwijderd. Toch blijft hij nog net zo traag als voorheen
-
HIERBIJ DE LINK: http://speccy.piriform.com/results/dsji4KbsEozCAZCIGeEGKD6
-
Ik had ccleaner al op mijn computer staan en in gebruik. Na Combofix te hebben verwijderd en ccleaner zoals omschreven te hebben gebruikt, is het opstarten van de computer nog niet verbeterd. Is het mogelijk dat het aan het Interne geheugen kunnen liggen? Of aan de harde schijf? Mvg Wollie
-
Beste Kweezie wabbit Bedankt zover maar helaas heeft het voor het opstarten van de computer nog geen effect gehad. Gr. Wollie
-
Hierbij de nieuwe log: ComboFix 11-12-26.03 - wollie 27-12-2011 11:32:28.4.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4091.2966 [GMT 1:00] Gestart vanuit: c:\users\wollie\Downloads\ComboFix.exe gebruikte Opdracht switches :: c:\users\wollie\Downloads\CFScript.txt SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\Partner c:\programdata\Partner\debug.log c:\programdata\Partner\Partner.dll c:\programdata\Partner\Partner.exe c:\programdata\Partner\Partner64.dll . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_Partner Service . . (((((((((((((((((((( Bestanden Gemaakt van 2011-11-27 to 2011-12-27 )))))))))))))))))))))))))))))) . . 2011-12-27 10:48 . 2011-12-27 10:48 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-12-24 13:49 . 2011-02-19 12:05 1139200 ----a-w- c:\windows\system32\FntCache.dll 2011-12-24 13:49 . 2011-02-19 12:04 1544192 ----a-w- c:\windows\system32\DWrite.dll 2011-12-24 13:49 . 2011-02-19 12:04 902656 ----a-w- c:\windows\system32\d2d1.dll 2011-12-24 13:49 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\SysWow64\DWrite.dll 2011-12-24 13:49 . 2011-02-19 06:30 739840 ----a-w- c:\windows\SysWow64\d2d1.dll 2011-12-24 11:53 . 2011-12-24 11:53 -------- d-----w- C:\tekst 2011-12-23 19:11 . 2011-12-23 19:11 -------- d-----w- c:\programdata\Malwarebytes 2011-12-23 19:10 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-12-23 19:10 . 2011-12-23 19:11 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-12-23 13:49 . 2011-12-23 13:49 -------- d-----w- c:\program files (x86)\Trend Micro 2011-12-23 09:02 . 2011-12-23 09:02 -------- d-----w- c:\windows\SysWow64\wbem\en-US 2011-12-23 08:58 . 2011-12-23 08:58 -------- d-----w- c:\windows\system32\wbem\en-US 2011-12-14 19:49 . 2011-12-14 19:49 -------- d-----w- c:\windows\system32\EventProviders 2011-12-14 02:06 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll 2011-12-14 01:56 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll 2011-12-14 01:56 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll 2011-12-14 01:56 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll 2011-12-12 16:14 . 2010-11-05 01:57 1942856 ----a-w- c:\windows\system32\dfshim.dll 2011-12-12 16:14 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll 2011-12-12 16:14 . 2010-11-20 11:07 59392 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys 2011-12-12 16:14 . 2010-11-20 13:26 1838080 ----a-w- c:\windows\system32\d3d10warp.dll 2011-12-12 16:14 . 2010-11-20 13:27 14967808 ----a-w- c:\program files\DVD Maker\OmdBase.dll 2011-12-12 16:14 . 2010-11-20 12:19 3215872 ----a-w- c:\windows\SysWow64\mstscax.dll 2011-12-12 16:14 . 2010-11-20 12:18 1171456 ----a-w- c:\windows\SysWow64\d3d10warp.dll 2011-12-12 16:14 . 2010-11-20 12:19 954752 ----a-w- c:\windows\SysWow64\mfc40.dll 2011-12-12 16:14 . 2010-11-20 12:19 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll 2011-12-12 16:02 . 2010-11-20 13:25 2058240 ----a-w- c:\windows\system32\wbem\cimwin32.dll 2011-12-12 16:02 . 2010-11-20 12:21 423936 ----a-w- c:\windows\SysWow64\secproc_isv.dll 2011-12-12 05:58 . 2010-11-20 12:17 327168 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe 2011-12-12 05:56 . 2010-11-20 12:20 428032 ----a-w- c:\windows\SysWow64\secproc.dll 2011-12-12 05:56 . 2010-11-20 13:27 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2011-12-12 05:56 . 2010-11-20 12:17 322048 ----a-w- c:\windows\SysWow64\RMActivate.exe 2011-12-12 05:56 . 2010-11-05 01:58 297808 ----a-w- c:\windows\SysWow64\mscoree.dll 2011-12-12 05:56 . 2010-11-20 13:26 1340416 ----a-w- c:\windows\system32\diagperf.dll 2011-12-12 05:56 . 2010-11-20 13:26 1866240 ----a-w- c:\windows\system32\ExplorerFrame.dll 2011-12-12 05:56 . 2010-11-20 12:19 3207680 ----a-w- c:\windows\SysWow64\mf.dll 2011-12-12 05:56 . 2010-11-20 13:33 273792 ----a-w- c:\windows\system32\drivers\msiscsi.sys 2011-12-12 05:55 . 2010-11-20 12:18 1334272 ----a-w- c:\windows\SysWow64\CertEnroll.dll 2011-12-12 05:54 . 2010-11-20 12:19 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll 2011-12-12 05:54 . 2010-11-20 13:25 4583424 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe 2011-12-12 05:53 . 2010-11-05 01:53 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll 2011-12-12 05:53 . 2010-11-05 01:53 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe 2011-12-12 05:51 . 2010-11-20 13:25 1975296 ----a-w- c:\windows\system32\CertEnroll.dll 2011-12-12 05:50 . 2010-11-20 13:26 2067456 ----a-w- c:\windows\system32\d3d9.dll 2011-12-12 05:50 . 2010-11-20 13:26 853504 ----a-w- c:\windows\system32\IKEEXT.DLL 2011-12-12 05:50 . 2010-11-20 12:21 1115136 ----a-w- c:\windows\SysWow64\RacEngn.dll 2011-12-12 05:48 . 2010-11-20 13:39 5066752 ----a-w- c:\windows\system32\AuthFWSnapin.dll 2011-12-12 05:48 . 2010-11-20 12:32 5066752 ----a-w- c:\windows\SysWow64\AuthFWSnapin.dll 2011-12-12 05:48 . 2010-11-20 13:26 777728 ----a-w- c:\windows\system32\gpsvc.dll 2011-12-12 05:45 . 2010-11-20 13:26 1632256 ----a-w- c:\windows\system32\dwmcore.dll 2011-12-12 05:45 . 2010-11-20 13:26 3391488 ----a-w- c:\windows\system32\dbgeng.dll 2011-12-12 05:45 . 2010-11-20 09:25 753664 ----a-w- c:\windows\system32\drivers\http.sys 2011-12-12 05:45 . 2010-11-20 13:33 951680 ----a-w- c:\windows\system32\drivers\ndis.sys 2011-12-12 05:45 . 2010-11-20 13:25 1456128 ----a-w- c:\windows\system32\crypt32.dll 2011-12-12 05:45 . 2010-11-20 13:25 1525248 ----a-w- c:\program files\Windows Media Player\wmpnetwk.exe 2011-12-12 05:43 . 2010-11-20 12:18 1154048 ----a-w- c:\windows\SysWow64\crypt32.dll 2011-12-12 05:40 . 2010-11-20 12:17 1049600 ----a-w- c:\windows\SysWow64\mstsc.exe 2011-12-12 05:39 . 2010-11-20 13:33 376192 ----a-w- c:\windows\system32\drivers\netio.sys 2011-12-12 05:39 . 2010-11-20 13:26 317952 ----a-w- c:\windows\system32\dhcpcore.dll 2011-12-12 05:39 . 2010-11-20 13:25 1796096 ----a-w- c:\windows\system32\certmgr.dll 2011-12-12 05:38 . 2010-11-20 09:21 119296 ----a-w- c:\windows\system32\drivers\tdx.sys 2011-12-12 05:37 . 2010-11-20 12:24 1292096 ----a-w- c:\windows\SysWow64\ntdll.dll 2011-12-12 05:37 . 2010-11-20 09:23 261632 ----a-w- c:\windows\system32\drivers\netbt.sys 2011-12-12 05:36 . 2010-11-20 12:21 381440 ----a-w- c:\windows\SysWow64\wer.dll 2011-12-12 05:36 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll 2011-12-12 05:36 . 2010-11-20 12:18 342016 ----a-w- c:\windows\SysWow64\certcli.dll 2011-12-12 05:35 . 2010-11-20 12:17 1174016 ----a-w- c:\program files (x86)\Windows Sidebar\sidebar.exe 2011-12-12 05:35 . 2010-11-20 12:19 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll 2011-12-12 05:34 . 2010-11-20 12:18 1371136 ----a-w- c:\windows\SysWow64\dwmcore.dll 2011-12-12 05:32 . 2010-11-20 13:26 295936 ----a-w- c:\windows\system32\framedynos.dll 2011-12-12 05:31 . 2010-11-20 12:20 573440 ----a-w- c:\windows\SysWow64\odbc32.dll 2011-12-12 05:30 . 2010-11-20 13:28 459248 ----a-w- c:\windows\system32\drivers\cng.sys 2011-12-12 05:29 . 2009-07-14 01:16 61440 ----a-w- c:\windows\SysWow64\tcpmonui.dll 2011-12-11 20:42 . 2010-11-20 13:25 594432 ----a-w- c:\windows\system32\comdlg32.dll 2011-12-11 20:42 . 2010-11-20 13:26 658944 ----a-w- c:\windows\system32\dxgi.dll 2011-12-11 20:41 . 2010-11-20 12:20 1328128 ----a-w- c:\windows\SysWow64\quartz.dll 2011-12-11 20:41 . 2010-11-20 13:25 342016 ----a-w- c:\windows\system32\apphelp.dll 2011-12-11 20:41 . 2010-11-20 12:21 597504 ----a-w- c:\windows\SysWow64\TSWorkspace.dll 2011-12-11 20:41 . 2010-11-20 11:04 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-12-11 19:00 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll 2011-12-11 19:00 . 2010-11-20 12:18 91136 ----a-w- c:\windows\SysWow64\dot3api.dll 2011-12-11 19:00 . 2010-11-20 12:21 270848 ----a-w- c:\windows\SysWow64\tsmf.dll 2011-12-11 18:54 . 2010-11-20 13:25 897536 ----a-w- c:\windows\system32\azroles.dll 2011-12-11 18:53 . 2010-11-20 12:21 351232 ----a-w- c:\windows\SysWow64\winhttp.dll 2011-12-11 18:53 . 2010-11-20 13:25 705024 ----a-w- c:\windows\system32\BFE.DLL 2011-12-11 18:53 . 2010-11-20 12:21 1667584 ----a-w- c:\windows\SysWow64\setupapi.dll 2011-12-11 18:52 . 2010-11-20 13:33 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2011-12-11 18:52 . 2010-11-20 12:18 295936 ----a-w- c:\windows\SysWow64\apphelp.dll 2011-12-11 18:52 . 2010-11-20 13:24 345088 ----a-w- c:\windows\system32\cmd.exe 2011-12-11 18:52 . 2010-11-20 13:26 281600 ----a-w- c:\windows\system32\DShowRdpFilter.dll 2011-12-11 18:52 . 2010-11-20 12:19 2291712 ----a-w- c:\windows\SysWow64\MSVidCtl.dll 2011-12-11 18:51 . 2010-11-20 12:18 2522624 ----a-w- c:\windows\SysWow64\dbgeng.dll 2011-12-11 18:50 . 2010-11-20 12:20 563712 ----a-w- c:\windows\SysWow64\netlogon.dll 2011-12-11 18:50 . 2010-11-20 12:18 522752 ----a-w- c:\windows\SysWow64\d3d11.dll 2011-12-11 18:50 . 2010-11-20 12:21 1010688 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll 2011-12-11 18:49 . 2010-11-20 12:20 406528 ----a-w- c:\windows\SysWow64\netcfgx.dll 2011-12-11 18:49 . 2010-11-20 13:34 215936 ----a-w- c:\windows\system32\drivers\vhdmp.sys 2011-12-11 18:49 . 2010-11-20 12:21 1619456 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL 2011-12-11 18:49 . 2010-11-20 12:21 314880 ----a-w- c:\windows\SysWow64\webio.dll 2011-12-11 18:49 . 2010-11-20 12:21 1363456 ----a-w- c:\windows\SysWow64\Query.dll 2011-12-11 18:49 . 2010-11-20 12:21 1175040 ----a-w- c:\windows\SysWow64\WsmSvc.dll 2011-12-11 18:49 . 2010-11-20 12:21 206848 ----a-w- c:\windows\SysWow64\upnp.dll 2011-12-11 18:49 . 2010-11-20 12:18 640512 ----a-w- c:\windows\SysWow64\advapi32.dll 2011-12-11 18:49 . 2010-11-20 12:21 224256 ----a-w- c:\windows\SysWow64\schannel.dll 2011-12-11 18:49 . 2010-11-20 12:18 252928 ----a-w- c:\windows\SysWow64\DShowRdpFilter.dll 2011-12-11 18:48 . 2010-11-20 13:26 235008 ----a-w- c:\windows\system32\hgprint.dll 2011-12-11 18:48 . 2010-11-20 12:19 2151936 ----a-w- c:\windows\SysWow64\mmcndmgr.dll 2011-12-11 18:46 . 2010-11-20 13:27 1727488 ----a-w- c:\program files\Windows Photo Viewer\PhotoViewer.dll 2011-12-11 18:46 . 2010-11-20 13:26 279040 ----a-w- c:\windows\system32\framedyn.dll 2011-12-11 18:45 . 2010-11-20 13:25 296448 ----a-w- c:\windows\system32\AudioSes.dll 2011-12-11 18:45 . 2010-11-20 13:24 689152 ----a-w- c:\windows\system32\FXSSVC.exe 2011-12-11 18:45 . 2010-11-20 13:25 412160 ----a-w- c:\windows\system32\aepdu.dll 2011-12-11 18:44 . 2010-11-20 12:17 302592 ----a-w- c:\windows\SysWow64\cmd.exe 2011-12-11 18:44 . 2010-11-20 12:51 424448 ----a-w- c:\windows\system32\aeinv.dll 2011-12-11 18:44 . 2010-11-20 13:26 171520 ----a-w- c:\windows\system32\fde.dll 2011-12-11 18:44 . 2010-11-20 12:21 492032 ----a-w- c:\windows\SysWow64\win32spl.dll 2011-12-11 18:44 . 2010-11-20 12:20 988160 ----a-w- c:\windows\SysWow64\propsys.dll 2011-12-11 18:44 . 2010-11-20 12:19 206336 ----a-w- c:\windows\SysWow64\framedynos.dll 2011-12-11 18:44 . 2010-11-20 12:21 269824 ----a-w- c:\windows\SysWow64\Wldap32.dll 2011-12-11 18:44 . 2010-11-20 12:19 296448 ----a-w- c:\windows\SysWow64\mfds.dll 2011-12-11 18:43 . 2010-11-20 13:26 503296 ----a-w- c:\windows\system32\imapi2.dll 2011-12-11 18:43 . 2010-11-20 13:28 298104 ----a-w- c:\windows\system32\bcryptprimitives.dll 2011-12-11 18:43 . 2010-11-20 13:25 197120 ----a-w- c:\windows\system32\credui.dll 2011-12-11 18:43 . 2010-11-20 12:55 144384 ----a-w- c:\windows\system32\cdd.dll . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-27 12:09 . 2011-12-27 12:09 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F7B5A655-31C3-4A57-88CA-43422402BC38}\offreg.dll 2011-12-21 19:01 . 2011-12-21 19:01 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2011-12-21 19:01 . 2011-12-21 19:01 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2011-12-21 19:01 . 2011-12-21 19:01 76800 ----a-w- c:\windows\system32\tdc.ocx 2011-12-21 19:01 . 2011-12-21 19:01 603648 ----a-w- c:\windows\system32\vbscript.dll 2011-12-21 19:01 . 2011-12-21 19:01 48640 ----a-w- c:\windows\system32\mshtmler.dll 2011-12-21 19:01 . 2011-12-21 19:01 30720 ----a-w- c:\windows\system32\licmgr10.dll 2011-12-21 19:01 . 2011-12-21 19:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-12-21 19:01 . 2011-12-21 19:01 2309120 ----a-w- c:\windows\system32\jscript9.dll 2011-12-21 19:01 . 2011-12-21 19:01 222208 ----a-w- c:\windows\system32\msls31.dll 2011-12-21 19:01 . 2011-12-21 19:01 160256 ----a-w- c:\windows\system32\wextract.exe 2011-12-21 19:01 . 2011-12-21 19:01 1493504 ----a-w- c:\windows\system32\inetcpl.cpl 2011-12-21 19:01 . 2011-12-21 19:01 1390080 ----a-w- c:\windows\system32\wininet.dll 2011-12-21 19:01 . 2011-12-21 19:01 12288 ----a-w- c:\windows\system32\mshta.exe 2011-12-15 00:34 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2011-12-15 00:34 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2011-12-04 00:00 . 2011-12-04 00:00 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\qwavedrv.sys.mui 2011-12-04 00:00 . 2011-12-04 00:00 5632 ----a-w- c:\windows\SysWow64\drivers\nl-NL\ndiscap.sys.mui 2011-12-04 00:00 . 2011-12-04 00:00 50688 ----a-w- c:\windows\SysWow64\drivers\nl-NL\tcpip.sys.mui 2011-12-03 23:59 . 2011-12-03 23:59 16896 ----a-w- c:\windows\SysWow64\drivers\nl-NL\pacer.sys.mui 2011-12-03 23:59 . 2011-12-03 23:59 26624 ----a-w- c:\windows\SysWow64\drivers\nl-NL\bfe.dll.mui 2011-12-03 23:59 . 2011-12-03 23:59 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\scfilter.sys.mui 2011-12-03 19:16 . 2011-12-03 19:16 564784 ----a-w- c:\windows\system32\NBMatS1SDK.dll 2011-11-30 01:21 . 2011-12-27 08:13 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F7B5A655-31C3-4A57-88CA-43422402BC38}\mpengine.dll 2011-11-24 04:52 . 2011-12-14 01:56 3145216 ----a-w- c:\windows\system32\win32k.sys 2011-11-05 05:32 . 2011-12-14 01:56 2048 ----a-w- c:\windows\system32\tzres.dll . . ((((((((((((((((((((((((((((( SnapShot_2011-12-24_13.11.29 ))))))))))))))))))))))))))))))))))))))))) . + 2009-07-14 04:46 . 2011-12-26 13:26 96016 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat + 2011-12-24 15:02 . 2011-12-24 15:02 60416 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Pres#\0d036f215cfdf37305d84ac680e19413\System.Windows.Presentation.ni.dll + 2011-12-24 14:22 . 2011-12-24 14:22 54784 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\c4a4564925c5fa6d43dac830cfb294bd\System.Web.DynamicData.Design.ni.dll + 2011-12-24 13:17 . 2011-12-24 13:17 72192 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFontCac#\3a5529f1de05952773c725a6ff2e07fb\PresentationFontCache.ni.exe + 2011-12-27 11:36 . 2011-12-27 11:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2011-12-24 08:08 . 2011-12-24 08:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2011-12-27 11:36 . 2011-12-27 11:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2011-12-24 08:08 . 2011-12-24 08:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2009-07-14 05:01 . 2011-12-24 07:34 311288 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2009-07-14 05:01 . 2011-12-27 11:01 311288 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-12-25 06:14 . 2011-12-25 06:14 289280 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.VisualBas#\c00eb8f424a86eadeb281a5e6083a518\Microsoft.VisualBasic.Compatibility.Data.ni.dll + 2011-12-24 15:05 . 2011-12-24 15:05 468992 c:\windows\assembly\NativeImages_v2.0.50727_64\WsatConfig\756011e2290f779331336b1659d804e9\WsatConfig.ni.exe + 2011-12-24 15:05 . 2011-12-24 15:05 329216 c:\windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\bdf567eb555bffe4d9f4383b6b97832b\WindowsFormsIntegration.ni.dll + 2011-12-24 15:04 . 2011-12-24 15:04 304128 c:\windows\assembly\NativeImages_v2.0.50727_64\TaskScheduler\da4abebb1b165f2d27c5fe5bc6e9ed71\TaskScheduler.ni.dll + 2011-12-24 13:28 . 2011-12-24 13:28 529920 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\2b9253e5a2818152f9f1a3b9d7c7ee60\System.Xml.Linq.ni.dll + 2011-12-24 14:22 . 2011-12-24 14:22 187392 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Routing\5e59963a99fe6b3dfc07b6ecb375b42b\System.Web.Routing.ni.dll + 2011-12-24 14:23 . 2011-12-24 14:23 449024 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Entity\550cf8623da60ebdaf41be0d472886cf\System.Web.Entity.ni.dll + 2011-12-24 14:23 . 2011-12-24 14:23 398848 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Entity.D#\e97615ac42a73803dbb72feb560dc3f8\System.Web.Entity.Design.ni.dll + 2011-12-24 14:22 . 2011-12-24 14:22 753664 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\469736b242d26e3a0df5dea6da3679f4\System.Web.DynamicData.ni.dll + 2011-12-24 14:02 . 2011-12-24 14:02 204800 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Abstract#\de14c74ae9ddfaae3ecf50a7e4a1f1b0\System.Web.Abstractions.ni.dll + 2011-12-24 14:21 . 2011-12-24 14:21 916480 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Net\1d7d8aef36a4181c824e7b19a5717181\System.Net.ni.dll + 2011-12-24 14:21 . 2011-12-24 14:21 534016 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management.I#\515b6d806d49ee9f3a0c4777c313c5a9\System.Management.Instrumentation.ni.dll + 2011-12-24 14:21 . 2011-12-24 14:21 569856 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IO.Log\09e99130b92146abae3d4c9b5c8bb116\System.IO.Log.ni.dll + 2011-12-24 14:20 . 2011-12-24 14:20 629760 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Service#\a342b0087027682df86caa73cf0dc223\System.Data.Services.Design.ni.dll + 2011-12-24 13:19 . 2011-12-24 13:19 194560 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.DataSet#\0749a52124e604d5104322fd60606810\System.Data.DataSetExtensions.ni.dll + 2011-12-24 13:18 . 2011-12-24 13:18 132096 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ComponentMod#\63c8a0af333eb6fa7d73d5b30c9acb38\System.ComponentModel.DataAnnotations.ni.dll + 2011-12-24 13:18 . 2011-12-24 13:18 889344 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn\3867b72f0fdef0241a18f0c6767ecf05\System.AddIn.ni.dll + 2011-12-24 13:18 . 2011-12-24 13:18 156672 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn.Contra#\edf038eef2dc9f21b13da8bdc046a834\System.AddIn.Contract.ni.dll + 2011-12-24 14:22 . 2011-12-24 14:22 297984 c:\windows\assembly\NativeImages_v2.0.50727_64\sysglobl\0ba53d547dabd039b0cfc9ce52fa6c57\sysglobl.ni.dll + 2011-12-24 13:17 . 2011-12-24 13:17 525824 c:\windows\assembly\NativeImages_v2.0.50727_64\SMSvcHost\ce64633f4e4ba6f3c45ad5ad6a35d736\SMSvcHost.ni.exe - 2009-07-14 04:45 . 2011-12-23 09:51 7162691 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat + 2009-07-14 04:45 . 2011-12-25 07:16 7162691 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat + 2011-12-13 16:09 . 2011-12-27 11:01 5177118 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2048918017-116004491-448208954-1000-8192.dat + 2011-12-25 06:10 . 2011-12-25 06:10 1838080 c:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.VisualBas#\6d70dc398f25ca4c6b585413ed76cb9d\Microsoft.VisualBasic.Compatibility.ni.dll + 2011-12-24 15:05 . 2011-12-24 15:05 1459712 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationClients#\888e738b2d4904fc2193ea2237acb01e\UIAutomationClientsideProviders.ni.dll + 2011-12-24 15:04 . 2011-12-24 15:04 1818112 c:\windows\assembly\NativeImages_v2.0.50727_64\System.WorkflowServ#\5e18a0dbf5fa5e5ebb20127e46fb5e39\System.WorkflowServices.ni.dll + 2011-12-24 15:01 . 2011-12-24 15:01 3336704 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Mobile\0710a4905ff11c5534814f8d42e0e477\System.Web.Mobile.ni.dll + 2011-12-24 14:24 . 2011-12-24 14:24 1155072 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Extensio#\940213c7e46d21b9f040b617716acd6e\System.Web.Extensions.Design.ni.dll + 2011-12-24 14:20 . 2011-12-24 14:20 3042304 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Extensio#\045bff7a31fe725d20809c49e3d022fd\System.Web.Extensions.ni.dll + 2011-12-24 14:22 . 2011-12-24 14:22 2727936 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Speech\8e2d63ddf8223dab939bbdf5a9a51185\System.Speech.ni.dll + 2011-12-24 14:00 . 2011-12-24 14:00 2312704 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel#\b2b78a61c8c7b8cb0739c3bad67ed756\System.ServiceModel.Web.ni.dll + 2011-12-24 14:20 . 2011-12-24 14:20 1230848 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\ece506e2c1e0a1bde755dd7d652b5325\System.DirectoryServices.AccountManagement.ni.dll + 2011-12-24 13:59 . 2011-12-24 13:59 2805760 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Services\fe0d1dca499f1ccdee15400593b37cd3\System.Data.Services.ni.dll + 2011-12-24 14:20 . 2011-12-24 14:20 1868288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Service#\55c030c014a9cd3ce63b1ce30722b6d7\System.Data.Services.Client.ni.dll + 2011-12-24 13:28 . 2011-12-24 13:28 3480576 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Linq\6d2a8c2d751cb29ecdbc8a20aac2dd1e\System.Data.Linq.ni.dll + 2011-12-24 13:27 . 2011-12-24 13:27 1080320 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Entity.#\2e1600551586106df9abd6ede3dd57df\System.Data.Entity.Design.ni.dll + 2011-12-24 13:17 . 2011-12-24 13:17 1884160 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationBuildTa#\efa575767e695618224d140941250d8b\PresentationBuildTasks.ni.dll + 2011-12-24 13:16 . 2011-12-24 13:16 3601920 c:\windows\assembly\NativeImages_v2.0.50727_64\Narrator\8eb00c2e6ad95f84704a73c15934ad64\Narrator.ni.exe + 2011-12-24 13:27 . 2011-12-24 13:27 13760000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Entity\2d06fb193634c8d3951a01878f7d3297\System.Data.Entity.ni.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-07 09:18 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="Service" . R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-18 796192] R2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664] R2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160] R3 cpuz134;cpuz134;c:\users\wollie\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [x] R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys [x] S2 IGBASVC;EgisTec Service;c:\program files (x86)\Acer Bio Protection\BASVC.exe [2009-08-06 3450368] S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592] S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640] S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952] S3 hidshim;Service for HID-KMDF Shim layer;c:\windows\system32\DRIVERS\hidshim.sys [x] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x] S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x] S3 nuvotonhidgeneric;Nuvoton EC Generic HID;c:\windows\system32\DRIVERS\nuvotonhidgeneric.sys [x] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2011-12-27 c:\windows\Tasks\Acer Registration Data Sending.job - c:\program files (x86)\Acer\Registration\GREG.exe [2009-07-31 06:55] . 2011-12-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21] . 2011-12-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-07 09:19 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-06 8060960] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 16334880] "combofix"="c:\combofix\CF13707.3XE" [2010-11-20 345088] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_7738&r=27361211z306l03e8z1k5t68l1w262 mLocal Page = c:\windows\SysWOW64\blank.htm IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 TCP: DhcpNameServer = 213.109.127.1 89.188.26.77 212.178.149.250 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) BHO-{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - c:\programdata\Partner\Partner64.dll WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Acer Bio Protection\CompPtcVUI.exe c:\program files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe c:\program files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe . ************************************************************************** . Voltooingstijd: 2011-12-27 13:42:04 - machine werd herstart ComboFix-quarantined-files.txt 2011-12-27 12:42 ComboFix2.txt 2011-12-24 13:28 ComboFix3.txt 2011-12-24 03:39 . Pre-Run: 583.886.884.864 bytes beschikbaar Post-Run: 583.872.065.536 bytes beschikbaar . - - End Of File - - F6A633DC43F77F1479E0AD90304D6383
-
Nog steeds hetzelfde. Om 11.15 opnieuw opgestart en nu pas antwoord kunnen geven ( anderhalfuur later)
-
ComboFix 11-12-24.01 - wollie 24-12-2011 13:15:10.3.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4091.2972 [GMT 1:00] Gestart vanuit: c:\users\wollie\Downloads\ComboFix.exe gebruikte Opdracht switches :: c:\users\wollie\Desktop\CFScript - Snelkoppeling.lnk SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2011-11-24 to 2011-12-24 )))))))))))))))))))))))))))))) . . 2011-12-24 13:10 . 2011-12-24 13:10 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-12-24 11:53 . 2011-12-24 11:53 -------- d-----w- C:\tekst 2011-12-23 19:11 . 2011-12-23 19:11 -------- d-----w- c:\programdata\Malwarebytes 2011-12-23 19:10 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-12-23 19:10 . 2011-12-23 19:11 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-12-23 13:49 . 2011-12-23 13:49 -------- d-----w- c:\program files (x86)\Trend Micro 2011-12-23 09:02 . 2011-12-23 09:02 -------- d-----w- c:\windows\SysWow64\wbem\en-US 2011-12-23 08:58 . 2011-12-23 08:58 -------- d-----w- c:\windows\system32\wbem\en-US 2011-12-14 19:49 . 2011-12-14 19:49 -------- d-----w- c:\windows\system32\EventProviders 2011-12-14 02:06 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll 2011-12-14 01:56 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll 2011-12-14 01:56 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll 2011-12-14 01:56 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll 2011-12-12 16:14 . 2010-11-05 01:57 48976 ----a-w- c:\windows\system32\netfxperf.dll 2011-12-12 16:14 . 2010-11-05 01:57 1942856 ----a-w- c:\windows\system32\dfshim.dll 2011-12-12 16:14 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll 2011-12-12 16:14 . 2010-11-20 11:07 59392 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys 2011-12-12 16:14 . 2010-11-20 13:27 3715584 ----a-w- c:\windows\system32\mstscax.dll 2011-12-12 16:14 . 2010-11-20 13:26 1838080 ----a-w- c:\windows\system32\d3d10warp.dll 2011-12-12 16:14 . 2010-11-20 13:27 14967808 ----a-w- c:\program files\DVD Maker\OmdBase.dll 2011-12-12 16:14 . 2010-11-20 12:19 3215872 ----a-w- c:\windows\SysWow64\mstscax.dll 2011-12-12 16:14 . 2010-11-20 12:18 1171456 ----a-w- c:\windows\SysWow64\d3d10warp.dll 2011-12-12 16:14 . 2010-11-20 12:19 954752 ----a-w- c:\windows\SysWow64\mfc40.dll 2011-12-12 16:14 . 2010-11-20 12:19 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll 2011-12-12 16:13 . 2010-11-20 13:27 3650560 ----a-w- c:\windows\system32\MSVidCtl.dll 2011-12-12 16:11 . 2010-11-20 13:25 902144 ----a-w- c:\windows\system32\d2d1.dll 2011-12-12 16:10 . 2010-11-05 01:57 444752 ----a-w- c:\windows\system32\mscoree.dll 2011-12-12 16:10 . 2010-11-20 13:28 1731936 ----a-w- c:\windows\system32\ntdll.dll 2011-12-12 16:09 . 2010-11-20 13:26 3205120 ----a-w- c:\windows\system32\mmcndmgr.dll 2011-12-12 16:04 . 2010-11-20 13:26 4120064 ----a-w- c:\windows\system32\mf.dll 2011-12-12 16:03 . 2010-11-20 12:18 739840 ----a-w- c:\windows\SysWow64\d2d1.dll 2011-12-12 16:02 . 2010-11-20 13:25 2058240 ----a-w- c:\windows\system32\wbem\cimwin32.dll 2011-12-12 16:02 . 2010-11-20 12:21 423936 ----a-w- c:\windows\SysWow64\secproc_isv.dll 2011-12-12 05:58 . 2010-11-20 12:17 327168 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe 2011-12-12 05:56 . 2010-11-20 12:20 428032 ----a-w- c:\windows\SysWow64\secproc.dll 2011-12-12 05:56 . 2010-11-20 13:27 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2011-12-12 05:56 . 2010-11-20 12:17 322048 ----a-w- c:\windows\SysWow64\RMActivate.exe 2011-12-12 05:56 . 2010-11-20 13:27 1225216 ----a-w- c:\windows\system32\wbem\wbemcore.dll 2011-12-12 05:56 . 2010-11-05 01:58 297808 ----a-w- c:\windows\SysWow64\mscoree.dll 2011-12-12 05:56 . 2010-11-20 13:26 1340416 ----a-w- c:\windows\system32\diagperf.dll 2011-12-12 05:56 . 2010-11-20 13:26 1866240 ----a-w- c:\windows\system32\ExplorerFrame.dll 2011-12-12 05:56 . 2010-11-20 12:19 3207680 ----a-w- c:\windows\SysWow64\mf.dll 2011-12-12 05:56 . 2010-11-20 13:33 273792 ----a-w- c:\windows\system32\drivers\msiscsi.sys 2011-12-12 05:56 . 2010-11-20 13:27 1881088 ----a-w- c:\windows\system32\msxml3.dll 2011-12-12 05:55 . 2010-11-20 12:18 1334272 ----a-w- c:\windows\SysWow64\CertEnroll.dll 2011-12-12 05:55 . 2010-11-20 13:27 1326080 ----a-w- c:\windows\system32\NaturalLanguage6.dll 2011-12-12 05:54 . 2010-11-20 13:33 299392 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll 2011-12-12 05:54 . 2010-11-20 12:19 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll 2011-12-12 05:54 . 2010-11-20 13:25 4583424 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe 2011-12-12 05:53 . 2010-11-20 13:26 1544192 ----a-w- c:\windows\system32\DWrite.dll 2011-12-12 05:53 . 2010-11-05 01:53 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll 2011-12-12 05:53 . 2010-11-05 01:53 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe 2011-12-12 05:52 . 2010-11-20 13:26 828416 ----a-w- c:\windows\system32\MPSSVC.dll 2011-12-12 05:51 . 2010-11-20 13:25 1975296 ----a-w- c:\windows\system32\CertEnroll.dll 2011-12-12 05:50 . 2010-11-20 13:26 2067456 ----a-w- c:\windows\system32\d3d9.dll 2011-12-12 05:50 . 2010-11-20 13:27 754176 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll 2011-12-12 05:50 . 2010-11-20 13:27 2004480 ----a-w- c:\windows\system32\msxml6.dll 2011-12-12 05:50 . 2010-11-20 13:26 853504 ----a-w- c:\windows\system32\IKEEXT.DLL 2011-12-12 05:50 . 2010-11-20 12:21 1115136 ----a-w- c:\windows\SysWow64\RacEngn.dll 2011-12-12 05:48 . 2010-11-20 13:39 5066752 ----a-w- c:\windows\system32\AuthFWSnapin.dll 2011-12-12 05:48 . 2010-11-20 12:32 5066752 ----a-w- c:\windows\SysWow64\AuthFWSnapin.dll 2011-12-12 05:48 . 2010-11-20 13:26 777728 ----a-w- c:\windows\system32\gpsvc.dll 2011-12-12 05:47 . 2010-11-20 13:26 1137664 ----a-w- c:\windows\system32\FntCache.dll 2011-12-12 05:45 . 2010-11-20 13:26 1632256 ----a-w- c:\windows\system32\dwmcore.dll 2011-12-12 05:45 . 2010-11-20 13:26 3391488 ----a-w- c:\windows\system32\dbgeng.dll 2011-12-12 05:45 . 2010-11-20 09:25 753664 ----a-w- c:\windows\system32\drivers\http.sys 2011-12-12 05:45 . 2010-11-20 13:33 951680 ----a-w- c:\windows\system32\drivers\ndis.sys 2011-12-12 05:45 . 2010-11-20 13:25 1456128 ----a-w- c:\windows\system32\crypt32.dll 2011-12-12 05:45 . 2010-11-20 13:25 1525248 ----a-w- c:\program files\Windows Media Player\wmpnetwk.exe 2011-12-12 05:43 . 2010-11-20 12:18 1154048 ----a-w- c:\windows\SysWow64\crypt32.dll 2011-12-12 05:40 . 2010-11-20 12:17 1049600 ----a-w- c:\windows\SysWow64\mstsc.exe 2011-12-12 05:39 . 2010-11-20 13:33 376192 ----a-w- c:\windows\system32\drivers\netio.sys 2011-12-12 05:39 . 2010-11-20 13:26 317952 ----a-w- c:\windows\system32\dhcpcore.dll 2011-12-12 05:39 . 2010-11-20 13:25 1796096 ----a-w- c:\windows\system32\certmgr.dll 2011-12-12 05:38 . 2010-11-20 09:21 119296 ----a-w- c:\windows\system32\drivers\tdx.sys 2011-12-12 05:37 . 2010-11-20 12:24 1292096 ----a-w- c:\windows\SysWow64\ntdll.dll 2011-12-12 05:37 . 2010-11-20 09:23 261632 ----a-w- c:\windows\system32\drivers\netbt.sys 2011-12-12 05:36 . 2010-11-20 12:21 381440 ----a-w- c:\windows\SysWow64\wer.dll 2011-12-12 05:36 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll 2011-12-12 05:36 . 2010-11-20 12:18 342016 ----a-w- c:\windows\SysWow64\certcli.dll 2011-12-12 05:35 . 2010-11-20 13:26 955904 ----a-w- c:\windows\system32\localspl.dll 2011-12-12 05:35 . 2010-11-20 12:17 1174016 ----a-w- c:\program files (x86)\Windows Sidebar\sidebar.exe 2011-12-12 05:35 . 2010-11-20 13:27 210944 ----a-w- c:\windows\system32\ncsi.dll 2011-12-12 05:35 . 2010-11-20 12:19 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll 2011-12-12 05:34 . 2010-11-20 13:27 457216 ----a-w- c:\windows\system32\msdrm.dll 2011-12-12 05:34 . 2010-11-20 12:18 1371136 ----a-w- c:\windows\SysWow64\dwmcore.dll 2011-12-12 05:33 . 2010-11-20 13:27 1509888 ----a-w- c:\windows\system32\msdtctm.dll 2011-12-12 05:32 . 2010-11-20 13:26 295936 ----a-w- c:\windows\system32\framedynos.dll 2011-12-12 05:32 . 2010-11-20 13:27 2652160 ----a-w- c:\windows\system32\netshell.dll 2011-12-12 05:31 . 2010-11-20 12:20 573440 ----a-w- c:\windows\SysWow64\odbc32.dll 2011-12-12 05:30 . 2010-11-20 13:28 459248 ----a-w- c:\windows\system32\drivers\cng.sys 2011-12-12 05:29 . 2009-07-14 01:16 61440 ----a-w- c:\windows\SysWow64\tcpmonui.dll 2011-12-11 22:54 . 2010-11-20 13:27 519680 ----a-w- c:\windows\system32\netcfgx.dll 2011-12-11 20:42 . 2010-11-20 13:24 343040 ----a-w- c:\windows\system32\lsm.exe 2011-12-11 20:42 . 2010-11-20 13:25 594432 ----a-w- c:\windows\system32\comdlg32.dll 2011-12-11 20:42 . 2010-11-20 13:26 658944 ----a-w- c:\windows\system32\dxgi.dll 2011-12-11 20:41 . 2010-11-20 12:20 1328128 ----a-w- c:\windows\SysWow64\quartz.dll 2011-12-11 20:41 . 2010-11-20 13:25 342016 ----a-w- c:\windows\system32\apphelp.dll 2011-12-11 20:41 . 2010-11-20 12:21 597504 ----a-w- c:\windows\SysWow64\TSWorkspace.dll 2011-12-11 20:41 . 2010-11-20 11:04 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2011-12-11 20:40 . 2010-11-20 13:27 749568 ----a-w- c:\program files\Common Files\System\msadc\msadce.dll 2011-12-11 20:40 . 2010-11-20 13:27 326144 ----a-w- c:\windows\system32\mswsock.dll 2011-12-11 19:00 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll 2011-12-11 19:00 . 2010-11-20 12:18 91136 ----a-w- c:\windows\SysWow64\dot3api.dll 2011-12-11 19:00 . 2010-11-20 12:21 270848 ----a-w- c:\windows\SysWow64\tsmf.dll 2011-12-11 18:54 . 2010-11-20 13:25 897536 ----a-w- c:\windows\system32\azroles.dll 2011-12-11 18:53 . 2010-11-20 12:21 351232 ----a-w- c:\windows\SysWow64\winhttp.dll 2011-12-11 18:53 . 2010-11-20 13:25 705024 ----a-w- c:\windows\system32\BFE.DLL 2011-12-11 18:53 . 2010-11-20 12:21 1667584 ----a-w- c:\windows\SysWow64\setupapi.dll 2011-12-11 18:52 . 2010-11-20 13:33 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2011-12-11 18:52 . 2010-11-20 12:18 295936 ----a-w- c:\windows\SysWow64\apphelp.dll 2011-12-11 18:52 . 2010-11-20 13:24 345088 ----a-w- c:\windows\system32\cmd.exe 2011-12-11 18:52 . 2010-11-20 13:26 281600 ----a-w- c:\windows\system32\DShowRdpFilter.dll 2011-12-11 18:52 . 2010-11-20 12:19 2291712 ----a-w- c:\windows\SysWow64\MSVidCtl.dll 2011-12-11 18:51 . 2010-11-20 13:24 653312 ----a-w- c:\windows\system32\lpksetup.exe 2011-12-11 18:51 . 2010-11-20 12:18 2522624 ----a-w- c:\windows\SysWow64\dbgeng.dll 2011-12-11 18:50 . 2010-11-20 12:20 563712 ----a-w- c:\windows\SysWow64\netlogon.dll 2011-12-11 18:50 . 2010-11-20 13:27 1101824 ----a-w- c:\program files\Common Files\System\Ole DB\oledb32.dll 2011-12-11 18:50 . 2010-11-20 12:18 522752 ----a-w- c:\windows\SysWow64\d3d11.dll 2011-12-11 18:50 . 2010-11-20 12:21 1010688 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll 2011-12-11 18:48 . 2010-11-20 13:26 235008 ----a-w- c:\windows\system32\hgprint.dll 2011-12-11 18:48 . 2010-11-20 12:19 2151936 ----a-w- c:\windows\SysWow64\mmcndmgr.dll 2011-12-11 18:46 . 2010-11-20 13:27 1727488 ----a-w- c:\program files\Windows Photo Viewer\PhotoViewer.dll 2011-12-11 18:46 . 2010-11-20 13:26 279040 ----a-w- c:\windows\system32\framedyn.dll 2011-12-11 18:46 . 2010-11-20 13:26 501248 ----a-w- c:\windows\system32\IPSECSVC.DLL . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-24 08:34 . 2011-12-24 08:34 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{60764C8F-71F4-4634-A93B-34EB442E81BD}\offreg.dll 2011-12-21 19:01 . 2011-12-21 19:01 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2011-12-21 19:01 . 2011-12-21 19:01 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2011-12-21 19:01 . 2011-12-21 19:01 76800 ----a-w- c:\windows\system32\tdc.ocx 2011-12-21 19:01 . 2011-12-21 19:01 603648 ----a-w- c:\windows\system32\vbscript.dll 2011-12-21 19:01 . 2011-12-21 19:01 160256 ----a-w- c:\windows\system32\wextract.exe 2011-12-21 19:01 . 2011-12-21 19:01 1390080 ----a-w- c:\windows\system32\wininet.dll 2011-12-15 00:34 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2011-12-15 00:34 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2011-12-04 00:00 . 2011-12-04 00:00 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\qwavedrv.sys.mui 2011-12-04 00:00 . 2011-12-04 00:00 5632 ----a-w- c:\windows\SysWow64\drivers\nl-NL\ndiscap.sys.mui 2011-12-04 00:00 . 2011-12-04 00:00 50688 ----a-w- c:\windows\SysWow64\drivers\nl-NL\tcpip.sys.mui 2011-12-03 23:59 . 2011-12-03 23:59 16896 ----a-w- c:\windows\SysWow64\drivers\nl-NL\pacer.sys.mui 2011-12-03 23:59 . 2011-12-03 23:59 26624 ----a-w- c:\windows\SysWow64\drivers\nl-NL\bfe.dll.mui 2011-12-03 23:59 . 2011-12-03 23:59 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\scfilter.sys.mui 2011-11-30 01:21 . 2011-12-23 15:24 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{60764C8F-71F4-4634-A93B-34EB442E81BD}\mpengine.dll 2011-11-24 04:52 . 2011-12-14 01:56 3145216 ----a-w- c:\windows\system32\win32k.sys 2011-11-05 05:32 . 2011-12-14 01:56 2048 ----a-w- c:\windows\system32\tzres.dll . . ((((((((((((((((((((((((((((( SnapShot@2011-12-24_01.28.56 ))))))))))))))))))))))))))))))))))))))))) . - 2011-12-03 18:59 . 2011-12-23 20:41 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2011-12-03 18:59 . 2011-12-24 10:12 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2011-12-03 18:58 . 2011-12-23 20:41 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2011-12-03 18:58 . 2011-12-24 10:12 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2011-12-24 10:12 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2011-12-23 20:41 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2011-12-24 13:08 . 2011-12-24 13:08 33792 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Run#\621b2f176909228deae402a6031e7420\Microsoft.WSMan.Runtime.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\ecd29eb2eda46acfda1229f8362f60e9\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll + 2011-12-24 13:07 . 2011-12-24 13:07 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\d77eafc89b58f5466b7555d89a293c50\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 36864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\c1e58a266d600248f08dca600457e346\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 40448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\9f1ca68fbcefac4ef4f13e5f5604ad82\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\8260ae5a7d4a7e7cd907c958858da284\Microsoft.Windows.Diagnosis.SDHost.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 70144 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\371120a0816ba5ce909b8e1341da376f\Microsoft.Windows.Diagnosis.SDEngine.ni.dll + 2011-12-24 12:23 . 2011-12-24 12:23 65536 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\866c57c6e58cbe8249b36f21ec8ac18a\Microsoft.MediaCenter.iTv.Hosting.ni.dll + 2011-12-24 12:47 . 2011-12-24 12:47 40960 c:\windows\assembly\NativeImages_v2.0.50727_64\LoadMxf\584f193ae53236bf55cd78b246214d83\LoadMxf.ni.exe + 2011-12-24 12:23 . 2011-12-24 12:23 49664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUPnP\50cda8ab4cd566b222342c3da14302d3\ehiUPnP.ni.dll + 2011-12-24 12:23 . 2011-12-24 12:23 93184 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiTVMSMusic\fae9950502b5464108feda9d64ebea78\ehiTVMSMusic.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 28672 c:\windows\assembly\NativeImages_v2.0.50727_64\dfsvc\7de9a8137a33d06dad01c8405d960037\dfsvc.ni.exe - 2011-12-24 01:08 . 2011-12-24 01:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2011-12-24 08:08 . 2011-12-24 08:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2011-12-24 01:08 . 2011-12-24 01:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2011-12-24 08:08 . 2011-12-24 08:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2009-07-14 05:01 . 2011-12-24 07:34 311288 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat - 2009-07-14 05:01 . 2011-12-24 00:39 311288 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-12-24 13:03 . 2011-12-24 13:03 653312 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationClient\93585639099b0e1b8280eb528fb12c0b\UIAutomationClient.ni.dll + 2011-12-24 12:25 . 2011-12-24 12:25 152576 c:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP72F3.tmp\Microsoft.MediaCenter.ITVVM.dll + 2011-12-24 12:14 . 2011-12-24 12:14 783360 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Messaging\7b701647e76dc015ef7574b789abac7b\System.Messaging.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 294400 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IdentityMode#\ab72e394c92f57172be9a9d29be90e90\System.IdentityModel.Selectors.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 349184 c:\windows\assembly\NativeImages_v2.0.50727_64\SMDiagnostics\d912b15f4aaac2455b690f6e477a67b1\SMDiagnostics.ni.dll + 2011-12-24 13:09 . 2011-12-24 13:10 855040 c:\windows\assembly\NativeImages_v2.0.50727_64\napsnap\d1f466e30784f97cdb0df13554276dd5\napsnap.ni.dll + 2011-12-24 13:09 . 2011-12-24 13:09 162816 c:\windows\assembly\NativeImages_v2.0.50727_64\napinit\864f48b66cc44fcc43b7a40bc2ccb3cd\napinit.ni.dll + 2011-12-24 13:09 . 2011-12-24 13:09 175104 c:\windows\assembly\NativeImages_v2.0.50727_64\naphlpr\fd2464358cddfa04f46d55b9153249e3\naphlpr.ni.dll + 2011-12-24 13:09 . 2011-12-24 13:09 127488 c:\windows\assembly\NativeImages_v2.0.50727_64\napcrypt\717cc07bafa8f50a6f87be383fa9018b\napcrypt.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 184320 c:\windows\assembly\NativeImages_v2.0.50727_64\MSBuild\1b9e231c729d1e59a4610531e0314c6d\MSBuild.ni.exe + 2011-12-24 12:46 . 2011-12-24 12:46 417792 c:\windows\assembly\NativeImages_v2.0.50727_64\MMCFxCommon\091f53e39941f5371814cc96d71729a3\MMCFxCommon.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 681984 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Man#\8f7d31b01ed5d655fd5c48117453f960\Microsoft.WSMan.Management.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 122368 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\520f7ea348d330647c204acc32afadae\Microsoft.Windows.Diagnosis.TroubleshootingPack.ni.dll + 2011-12-24 12:59 . 2011-12-24 12:59 105984 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Vsa\3c37f454edf0064bb10747920ae0be9d\Microsoft.Vsa.ni.dll + 2011-12-24 13:06 . 2011-12-24 13:06 584192 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Transacti#\3bdebcf5831c9f66c55e7b650713b2e9\Microsoft.Transactions.Bridge.Dtc.ni.dll + 2011-12-24 13:00 . 2011-12-24 13:00 416768 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\f616652a9327d4f41f9adc33aedd8feb\Microsoft.PowerShell.Commands.Diagnostics.ni.dll + 2011-12-24 13:02 . 2011-12-24 13:02 713216 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\9e3b197d73893a55ec7bf4d4dda692e2\Microsoft.PowerShell.ConsoleHost.ni.dll + 2011-12-24 13:06 . 2011-12-24 13:06 237056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\7bba925a067b6efc53e6e4ea3c458dc0\Microsoft.PowerShell.Security.ni.dll + 2011-12-24 13:05 . 2011-12-24 13:05 999936 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\608d7a44baf1367d7f4b8aa8e96e3d82\Microsoft.PowerShell.GraphicalHost.ni.dll + 2011-12-24 12:38 . 2011-12-24 12:38 370176 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\c9b6a9b9a26ac6d9d3575cda488172ce\Microsoft.MediaCenter.Playback.ni.dll + 2011-12-24 12:24 . 2011-12-24 12:24 522240 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\c0673b635e9f01e3084c383e1cc689e5\Microsoft.MediaCenter.Interop.ni.dll + 2011-12-24 12:38 . 2011-12-24 12:38 152576 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\a743124afb874ab00d713ab50a7d850d\Microsoft.MediaCenter.ITVVM.ni.dll + 2011-12-24 12:43 . 2011-12-24 12:43 312320 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\a4bde939b3d8da9baf5939b9e62d9ef7\Microsoft.MediaCenter.iTv.ni.dll + 2011-12-24 12:43 . 2011-12-24 12:43 219648 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\7de5318ee2be8e2b8fcffde83c79ab7c\Microsoft.MediaCenter.iTv.Media.ni.dll + 2011-12-24 12:56 . 2011-12-24 12:56 164864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\53074205d60375dc33155586a27d07eb\Microsoft.MediaCenter.Mheg.ni.dll + 2011-12-24 12:40 . 2011-12-24 12:40 965632 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\377d824dde728ce28d61ef522c3be808\Microsoft.MediaCenter.Sports.ni.dll + 2011-12-24 12:45 . 2011-12-24 12:45 798720 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Managemen#\e1b7ce3acfe6f344c39e96d33637c4af\Microsoft.ManagementConsole.ni.dll + 2011-12-24 12:54 . 2011-12-24 12:54 198656 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Uti#\a1a7ca0c475f607d60d4c8c17b5049af\Microsoft.Build.Utilities.ni.dll + 2011-12-24 12:54 . 2011-12-24 12:54 244736 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Uti#\8eda32beeba1d8dff2848edce97f15b3\Microsoft.Build.Utilities.v3.5.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 142336 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Fra#\9f5bcff6a0b169efa6b607efd8789ea9\Microsoft.Build.Framework.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 121344 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Fra#\0ef8fa5e835e9ae9fd9a20e5d5058460\Microsoft.Build.Framework.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 294912 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Con#\0c7a36fa5c4a99e157201a67c10ba344\Microsoft.Build.Conversion.v3.5.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 107008 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft-Windows-H#\77b758c083ce18f7ff9c262e4f6291e4\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.ni.dll + 2011-12-24 12:43 . 2011-12-24 12:43 380928 c:\windows\assembly\NativeImages_v2.0.50727_64\Mcx2Dvcs\a37f126e2b6bbb6f476c0d14399949b0\Mcx2Dvcs.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 547328 c:\windows\assembly\NativeImages_v2.0.50727_64\mcupdate\99229f50cf34d755c07c74f5d7e88803\mcupdate.ni.exe + 2011-12-24 12:21 . 2011-12-24 12:21 533504 c:\windows\assembly\NativeImages_v2.0.50727_64\mcstoredb\22e35c0c53328cbd317a395f81ce7122\mcstoredb.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 549376 c:\windows\assembly\NativeImages_v2.0.50727_64\mcplayerinterop\4dce2da44e40d021caecb8243667718e\mcplayerinterop.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 696320 c:\windows\assembly\NativeImages_v2.0.50727_64\mcGlidHostObj\9376158dbb6294a55db5b75cf78a06a4\mcGlidHostObj.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 156672 c:\windows\assembly\NativeImages_v2.0.50727_64\MCESidebarCtrl\b8735694a594d872e3b89050c3883f5c\MCESidebarCtrl.ni.dll + 2011-12-24 12:45 . 2011-12-24 12:45 659456 c:\windows\assembly\NativeImages_v2.0.50727_64\EventViewer\e96db8294b247cffcbd2df3cde0ece40\EventViewer.ni.dll + 2011-12-24 12:17 . 2011-12-24 12:17 969216 c:\windows\assembly\NativeImages_v2.0.50727_64\ehRecObj\d8fcbbc454183dbd4883686dce6fb198\ehRecObj.ni.dll + 2011-12-24 12:23 . 2011-12-24 12:23 661504 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiWUapi\87f11d95ab10469f888fd76c45f9fceb\ehiWUapi.ni.dll + 2011-12-24 12:23 . 2011-12-24 12:23 933888 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiwmp\a24c79d19a6d2a3e8ca587ecddd3e735\ehiwmp.ni.dll + 2011-12-24 12:16 . 2011-12-24 12:16 145408 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUserXp\0de7a02857c6041bc2c86c1db3ca8c23\ehiUserXp.ni.dll + 2011-12-24 12:23 . 2011-12-24 12:23 196096 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiiTv\421eb174f94249cf6a3b9e517baa82f8\ehiiTv.ni.dll + 2011-12-24 12:22 . 2011-12-24 12:22 397824 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiExtens\d5bf6f8e9e3d08d407ed68b714c268ae\ehiExtens.ni.dll + 2011-12-24 12:22 . 2011-12-24 12:22 110080 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiBmlDataCarousel\b55c3bb24dda0acda2bc332cc3016f75\ehiBmlDataCarousel.ni.dll + 2011-12-24 12:22 . 2011-12-24 12:22 125440 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiActivScp\fa493e64ca63def1a404a0d4b44cdefc\ehiActivScp.ni.dll + 2011-12-24 12:15 . 2011-12-24 12:15 389120 c:\windows\assembly\NativeImages_v2.0.50727_64\ehExtHost\88c5012f9a84d220dc4d413c7935dd07\ehExtHost.ni.exe + 2011-12-24 12:14 . 2011-12-24 12:14 313856 c:\windows\assembly\NativeImages_v2.0.50727_64\ehCIR\574c597861e298e143212535dc1e19ec\ehCIR.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 348672 c:\windows\assembly\NativeImages_v2.0.50727_64\CustomMarshalers\1e040217cf674c6cf528fbfe18c4c2f8\CustomMarshalers.ni.dll + 2011-12-24 11:22 . 2011-12-24 11:22 640000 c:\windows\assembly\NativeImages_v2.0.50727_64\ComSvcConfig\6ccad398816b1569afb2a7fcbd49bf42\ComSvcConfig.ni.exe + 2011-12-24 09:26 . 2011-12-24 09:26 971264 c:\windows\assembly\NativeImages_v2.0.50727_64\BDATunePIA\e938d38129512db210e2bc77214849d5\BDATunePIA.ni.dll + 2011-12-13 16:09 . 2011-12-24 07:34 1698840 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2048918017-116004491-448208954-1000-8192.dat + 2011-12-24 12:14 . 2011-12-24 12:14 3073536 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\1377c29b871c7eb768769b5f4bdbb15d\System.Runtime.Serialization.ni.dll + 2011-12-24 12:59 . 2011-12-24 12:59 1472000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management\2fb0402632ad5e804276ac653a95ef80\System.Management.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 1444352 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IdentityModel\4b0d5f66812e9eba4c647e5441016675\System.IdentityModel.ni.dll + 2011-12-24 13:00 . 2011-12-24 13:00 3315200 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Core\eed0dd8cdc46206a76e8c23872fc0787\System.Core.ni.dll + 2011-12-24 13:08 . 2011-12-24 13:08 2327552 c:\windows\assembly\NativeImages_v2.0.50727_64\MMCEx\487581cba0779ee130e354096f40edd1\MMCEx.ni.dll + 2011-12-24 12:47 . 2011-12-24 12:47 7970304 c:\windows\assembly\NativeImages_v2.0.50727_64\MIGUIControls\304a3a2c6d63d1ec93f6bcb9397f3078\MIGUIControls.ni.dll + 2011-12-24 13:07 . 2011-12-24 13:07 2131968 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\f26be213e57cd2abecbcf0d25f2f7954\Microsoft.VisualBasic.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 1598976 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Transacti#\014c1c5365a633b4202b23ed09f7599c\Microsoft.Transactions.Bridge.ni.dll + 2011-12-24 13:04 . 2011-12-24 13:04 2105344 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\d980c42341a396f0980115c80d18ab57\Microsoft.PowerShell.GPowerShell.ni.dll + 2011-12-24 13:00 . 2011-12-24 13:00 1131008 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\6f0bbc912ec21fad139214ca4578a7ed\Microsoft.PowerShell.Commands.Management.ni.dll + 2011-12-24 13:01 . 2011-12-24 13:01 2176512 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\3ee5d92f3782e7d9a59323caeb58e0ca\Microsoft.PowerShell.Commands.Utility.ni.dll + 2011-12-24 13:03 . 2011-12-24 13:03 5350912 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\0bffc2eeaf9544a9ea24691e9d572438\Microsoft.PowerShell.Editor.ni.dll + 2011-12-24 12:15 . 2011-12-24 12:15 1516544 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\df43c4f0ad6dbabce22089e305fa2a46\Microsoft.MediaCenter.ni.dll + 2011-12-24 12:16 . 2011-12-24 12:16 8979456 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\de245e928d08b5c295917878e23b252c\Microsoft.MediaCenter.UI.ni.dll + 2011-12-24 12:39 . 2011-12-24 12:39 1170432 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\ae64957bd11cb42df95fb949e690980c\Microsoft.MediaCenter.TV.Tuners.Interop.ni.dll + 2011-12-24 12:24 . 2011-12-24 12:24 1142784 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\70a990f97a3295782d195bcb052eb69f\Microsoft.MediaCenter.Shell.ni.dll + 2011-12-24 12:56 . 2011-12-24 12:56 1508864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\5387155d434c05c803a99ccc94aef146\Microsoft.MediaCenter.Bml.ni.dll + 2011-12-24 12:59 . 2011-12-24 12:59 3213312 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.JScript\b733f33cc6a07e4cd5bed494cf536af1\Microsoft.JScript.ni.dll + 2011-12-24 12:55 . 2011-12-24 12:55 2365952 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Ink\ea8f48f12613578b64bd9077bdae4c31\Microsoft.Ink.ni.dll + 2011-12-24 12:54 . 2011-12-24 12:54 2218496 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\f298e576c8e06073fe2310ccf0756396\Microsoft.Build.Tasks.ni.dll + 2011-12-24 12:54 . 2011-12-24 12:54 2682880 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\9f6d2a67a43f90c37d475d9eb433e98b\Microsoft.Build.Tasks.v3.5.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 1137152 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Eng#\c8205ffff2cc4dea7093b8c59c3b5a3a\Microsoft.Build.Engine.ni.dll + 2011-12-24 12:48 . 2011-12-24 12:48 2544640 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Eng#\a288688a887e392b713bb459110507c1\Microsoft.Build.Engine.ni.dll + 2011-12-24 12:20 . 2011-12-24 12:20 2801664 c:\windows\assembly\NativeImages_v2.0.50727_64\mcstore\9fb794b6ac9dc760681ba3b485996b97\mcstore.ni.dll + 2011-12-24 12:19 . 2011-12-24 12:19 4088320 c:\windows\assembly\NativeImages_v2.0.50727_64\mcepg\2980298bb4b3f3c844523562d74b0854\mcepg.ni.dll + 2011-12-24 12:21 . 2011-12-24 12:21 2165248 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiVidCtl\e6a702f8ccd27dcdcf09008531ab40e5\ehiVidCtl.ni.dll + 2011-12-24 12:15 . 2011-12-24 12:15 1201664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiProxy\17d0b71391bf67c5a663b140b9a7a936\ehiProxy.ni.dll + 2011-12-24 12:14 . 2011-12-24 12:14 23913984 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel\4ae2cc43ea27f162942af679bf0eaaf8\System.ServiceModel.ni.dll + 2011-12-24 12:57 . 2011-12-24 12:57 11900928 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management.A#\2cafbf62a43038d57239173614435a88\System.Management.Automation.ni.dll + 2011-12-24 12:42 . 2011-12-24 12:42 25470976 c:\windows\assembly\NativeImages_v2.0.50727_64\ehshell\c03fb13c164087d7198b2a9cb6e39daf\ehshell.ni.dll . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}] 2009-08-22 05:41 433648 ----a-w- c:\programdata\Partner\Partner.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-07 09:18 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="Service" . R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-18 796192] R2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664] R2 IGBASVC;EgisTec Service;c:\program files (x86)\Acer Bio Protection\BASVC.exe [2009-08-06 3450368] R2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592] R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720] R3 cpuz134;cpuz134;c:\users\wollie\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432] R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe [2009-08-22 332272] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [x] R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys [x] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640] S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952] S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160] S3 hidshim;Service for HID-KMDF Shim layer;c:\windows\system32\DRIVERS\hidshim.sys [x] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x] S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x] S3 nuvotonhidgeneric;Nuvoton EC Generic HID;c:\windows\system32\DRIVERS\nuvotonhidgeneric.sys [x] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2011-12-24 c:\windows\Tasks\Acer Registration Data Sending.job - c:\program files (x86)\Acer\Registration\GREG.exe [2009-07-31 06:55] . 2011-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21] . 2011-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}] 2009-08-22 05:41 750064 ----a-w- c:\programdata\Partner\Partner64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-07 09:19 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-06 8060960] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 16334880] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_7738&r=27361211z306l03e8z1k5t68l1w262 mLocal Page = c:\windows\SysWOW64\blank.htm IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 TCP: DhcpNameServer = 213.109.127.1 89.188.26.77 212.178.149.250 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-12-24 14:28:56 ComboFix-quarantined-files.txt 2011-12-24 13:28 ComboFix2.txt 2011-12-24 03:39 . Pre-Run: 583.404.421.120 bytes beschikbaar Post-Run: 583.203.282.944 bytes beschikbaar . - - End Of File - - C011D1F8EB77686708E52B171EA5EFCC
-
hierbij de logbestand van ComboFixComboFix 11-12-23.01 - wollie 24-12-2011 1:22.2.2 - x64Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4091.2943 [GMT 1:00]Gestart vanuit: c:\users\wollie\Downloads\ComboFix.exeSP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))..c:\program files (x86)\Acer Bio Protection\PwdFilterV64.dll..(((((((((((((((((((( Bestanden Gemaakt van 2011-11-24 to 2011-12-24 ))))))))))))))))))))))))))))))..2011-12-24 00:32 . 2011-12-24 00:32 -------- d-----w- c:\users\Default\AppData\Local\temp2011-12-23 19:11 . 2011-12-23 19:11 -------- d-----w- c:\programdata\Malwarebytes2011-12-23 19:10 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys2011-12-23 19:10 . 2011-12-23 19:11 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2011-12-23 13:49 . 2011-12-23 13:49 -------- d-----w- c:\program files (x86)\Trend Micro2011-12-23 09:02 . 2011-12-23 09:02 -------- d-----w- c:\windows\SysWow64\wbem\en-US2011-12-23 08:58 . 2011-12-23 08:58 -------- d-----w- c:\windows\system32\wbem\en-US2011-12-14 19:49 . 2011-12-14 19:49 -------- d-----w- c:\windows\system32\EventProviders2011-12-14 02:06 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll2011-12-14 01:56 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll2011-12-14 01:56 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll2011-12-12 16:14 . 2010-11-05 01:57 1942856 ----a-w- c:\windows\system32\dfshim.dll2011-12-12 16:14 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll2011-12-12 16:14 . 2010-11-20 11:07 59392 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys2011-12-12 16:14 . 2010-11-20 13:26 1838080 ----a-w- c:\windows\system32\d3d10warp.dll2011-12-12 16:14 . 2010-11-20 13:27 14967808 ----a-w- c:\program files\DVD Maker\OmdBase.dll2011-12-12 16:14 . 2010-11-20 12:19 3215872 ----a-w- c:\windows\SysWow64\mstscax.dll2011-12-12 16:14 . 2010-11-20 12:18 1171456 ----a-w- c:\windows\SysWow64\d3d10warp.dll2011-12-12 16:14 . 2010-11-20 12:19 954752 ----a-w- c:\windows\SysWow64\mfc40.dll2011-12-12 16:14 . 2010-11-20 12:19 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll2011-12-12 16:11 . 2010-11-20 13:25 902144 ----a-w- c:\windows\system32\d2d1.dll2011-12-12 16:03 . 2010-11-20 12:18 739840 ----a-w- c:\windows\SysWow64\d2d1.dll2011-12-12 16:02 . 2010-11-20 13:25 2058240 ----a-w- c:\windows\system32\wbem\cimwin32.dll2011-12-12 05:56 . 2010-11-20 13:27 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll2011-12-12 05:56 . 2010-11-05 01:58 297808 ----a-w- c:\windows\SysWow64\mscoree.dll2011-12-12 05:56 . 2010-11-20 13:26 1340416 ----a-w- c:\windows\system32\diagperf.dll2011-12-12 05:56 . 2010-11-20 13:26 1866240 ----a-w- c:\windows\system32\ExplorerFrame.dll2011-12-12 05:56 . 2010-11-20 12:19 3207680 ----a-w- c:\windows\SysWow64\mf.dll2011-12-12 05:56 . 2010-11-20 13:33 273792 ----a-w- c:\windows\system32\drivers\msiscsi.sys2011-12-12 05:55 . 2010-11-20 12:18 1334272 ----a-w- c:\windows\SysWow64\CertEnroll.dll2011-12-12 05:54 . 2010-11-20 12:19 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll2011-12-12 05:54 . 2010-11-20 13:25 4583424 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe2011-12-12 05:53 . 2010-11-20 13:26 1544192 ----a-w- c:\windows\system32\DWrite.dll2011-12-12 05:53 . 2010-11-05 01:53 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll2011-12-12 05:53 . 2010-11-05 01:53 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe2011-12-12 05:51 . 2010-11-20 13:25 1975296 ----a-w- c:\windows\system32\CertEnroll.dll2011-12-12 05:50 . 2010-11-20 13:26 2067456 ----a-w- c:\windows\system32\d3d9.dll2011-12-12 05:50 . 2010-11-20 13:26 853504 ----a-w- c:\windows\system32\IKEEXT.DLL2011-12-12 05:48 . 2010-11-20 13:39 5066752 ----a-w- c:\windows\system32\AuthFWSnapin.dll2011-12-12 05:48 . 2010-11-20 12:32 5066752 ----a-w- c:\windows\SysWow64\AuthFWSnapin.dll2011-12-12 05:48 . 2010-11-20 13:26 777728 ----a-w- c:\windows\system32\gpsvc.dll2011-12-12 05:47 . 2010-11-20 13:26 1137664 ----a-w- c:\windows\system32\FntCache.dll2011-12-12 05:45 . 2010-11-20 13:26 1632256 ----a-w- c:\windows\system32\dwmcore.dll2011-12-12 05:45 . 2010-11-20 13:26 3391488 ----a-w- c:\windows\system32\dbgeng.dll2011-12-12 05:45 . 2010-11-20 09:25 753664 ----a-w- c:\windows\system32\drivers\http.sys2011-12-12 05:45 . 2010-11-20 13:33 951680 ----a-w- c:\windows\system32\drivers\ndis.sys2011-12-12 05:45 . 2010-11-20 13:25 1456128 ----a-w- c:\windows\system32\crypt32.dll2011-12-12 05:45 . 2010-11-20 13:25 1525248 ----a-w- c:\program files\Windows Media Player\wmpnetwk.exe2011-12-12 05:44 . 2010-11-20 12:19 1493504 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll2011-12-12 05:44 . 2010-11-20 13:25 958464 ----a-w- c:\windows\system32\actxprxy.dll2011-12-12 05:44 . 2010-11-20 12:20 1414144 ----a-w- c:\windows\SysWow64\ole32.dll2011-12-12 05:44 . 2010-11-20 13:25 679424 ----a-w- c:\windows\system32\audiosrv.dll2011-12-12 05:44 . 2010-11-20 13:25 1475584 ----a-w- c:\program files\Windows Sidebar\sidebar.exe2011-12-12 05:44 . 2010-11-20 13:24 2164224 ----a-w- c:\program files\Windows Journal\Journal.exe2011-12-12 05:44 . 2010-11-20 13:26 1244160 ----a-w- c:\windows\system32\imapi2fs.dll2011-12-12 05:44 . 2010-11-20 13:26 787968 ----a-w- c:\windows\system32\d3d11.dll2011-12-12 05:44 . 2010-11-20 12:18 1076736 ----a-w- c:\windows\SysWow64\DWrite.dll2011-12-12 05:44 . 2010-11-20 12:18 1828352 ----a-w- c:\windows\SysWow64\d3d9.dll2011-12-12 05:44 . 2010-11-20 12:17 4247040 ----a-w- c:\program files (x86)\Windows NT\Accessories\wordpad.exe2011-12-12 05:44 . 2010-11-20 13:25 1927680 ----a-w- c:\windows\system32\authui.dll2011-12-12 05:43 . 2010-11-20 12:18 1154048 ----a-w- c:\windows\SysWow64\crypt32.dll2011-12-12 05:40 . 2010-11-20 12:17 1049600 ----a-w- c:\windows\SysWow64\mstsc.exe2011-12-12 05:39 . 2010-11-20 13:33 376192 ----a-w- c:\windows\system32\drivers\netio.sys2011-12-12 05:39 . 2010-11-20 13:26 317952 ----a-w- c:\windows\system32\dhcpcore.dll2011-12-12 05:39 . 2010-11-20 13:25 1796096 ----a-w- c:\windows\system32\certmgr.dll2011-12-12 05:38 . 2010-11-20 09:21 119296 ----a-w- c:\windows\system32\drivers\tdx.sys2011-12-12 05:37 . 2010-11-20 12:24 1292096 ----a-w- c:\windows\SysWow64\ntdll.dll2011-12-12 05:37 . 2010-11-20 09:23 261632 ----a-w- c:\windows\system32\drivers\netbt.sys2011-12-12 05:36 . 2010-11-20 12:18 342016 ----a-w- c:\windows\SysWow64\certcli.dll2011-12-12 05:35 . 2010-11-20 12:17 1174016 ----a-w- c:\program files (x86)\Windows Sidebar\sidebar.exe2011-12-12 05:35 . 2010-11-20 12:19 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll2011-12-12 05:34 . 2010-11-20 12:18 1371136 ----a-w- c:\windows\SysWow64\dwmcore.dll2011-12-12 05:32 . 2010-11-20 13:26 295936 ----a-w- c:\windows\system32\framedynos.dll2011-12-12 05:31 . 2010-11-20 12:20 573440 ----a-w- c:\windows\SysWow64\odbc32.dll2011-12-12 05:30 . 2010-11-20 13:28 459248 ----a-w- c:\windows\system32\drivers\cng.sys2011-12-11 20:42 . 2010-11-20 13:25 594432 ----a-w- c:\windows\system32\comdlg32.dll2011-12-11 20:42 . 2010-11-20 13:26 658944 ----a-w- c:\windows\system32\dxgi.dll2011-12-11 20:41 . 2010-11-20 13:25 342016 ----a-w- c:\windows\system32\apphelp.dll2011-12-11 20:41 . 2010-11-20 11:04 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys2011-12-11 19:00 . 2010-11-20 13:26 422912 ----a-w- c:\windows\system32\drvstore.dll2011-12-11 19:00 . 2010-11-20 12:18 91136 ----a-w- c:\windows\SysWow64\dot3api.dll2011-12-11 18:54 . 2010-11-20 13:25 897536 ----a-w- c:\windows\system32\azroles.dll2011-12-11 18:53 . 2010-11-20 13:25 705024 ----a-w- c:\windows\system32\BFE.DLL2011-12-11 18:52 . 2010-11-20 13:33 982912 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys2011-12-11 18:52 . 2010-11-20 12:18 295936 ----a-w- c:\windows\SysWow64\apphelp.dll2011-12-11 18:52 . 2010-11-20 13:24 345088 ----a-w- c:\windows\system32\cmd.exe2011-12-11 18:52 . 2010-11-20 13:26 281600 ----a-w- c:\windows\system32\DShowRdpFilter.dll2011-12-11 18:52 . 2010-11-20 12:19 2291712 ----a-w- c:\windows\SysWow64\MSVidCtl.dll2011-12-11 18:51 . 2010-11-20 12:18 2522624 ----a-w- c:\windows\SysWow64\dbgeng.dll2011-12-11 18:50 . 2010-11-20 12:20 563712 ----a-w- c:\windows\SysWow64\netlogon.dll2011-12-11 18:50 . 2010-11-20 12:18 522752 ----a-w- c:\windows\SysWow64\d3d11.dll2011-12-11 18:49 . 2010-11-20 12:20 406528 ----a-w- c:\windows\SysWow64\netcfgx.dll2011-12-11 18:49 . 2010-11-20 13:34 215936 ----a-w- c:\windows\system32\drivers\vhdmp.sys2011-12-11 18:49 . 2010-11-20 12:18 640512 ----a-w- c:\windows\SysWow64\advapi32.dll2011-12-11 18:49 . 2010-11-20 12:18 252928 ----a-w- c:\windows\SysWow64\DShowRdpFilter.dll2011-12-11 18:48 . 2010-11-20 13:26 235008 ----a-w- c:\windows\system32\hgprint.dll2011-12-11 18:48 . 2010-11-20 12:19 2151936 ----a-w- c:\windows\SysWow64\mmcndmgr.dll2011-12-11 18:46 . 2010-11-20 13:27 1727488 ----a-w- c:\program files\Windows Photo Viewer\PhotoViewer.dll2011-12-11 18:46 . 2010-11-20 13:26 279040 ----a-w- c:\windows\system32\framedyn.dll2011-12-11 18:45 . 2010-11-20 13:25 296448 ----a-w- c:\windows\system32\AudioSes.dll2011-12-11 18:45 . 2010-11-20 13:24 689152 ----a-w- c:\windows\system32\FXSSVC.exe2011-12-11 18:45 . 2010-11-20 13:25 412160 ----a-w- c:\windows\system32\aepdu.dll2011-12-11 18:44 . 2010-11-20 12:17 302592 ----a-w- c:\windows\SysWow64\cmd.exe2011-12-11 18:44 . 2010-11-20 12:51 424448 ----a-w- c:\windows\system32\aeinv.dll2011-12-11 18:44 . 2010-11-20 13:26 171520 ----a-w- c:\windows\system32\fde.dll2011-12-11 18:44 . 2010-11-20 12:19 206336 ----a-w- c:\windows\SysWow64\framedynos.dll2011-12-11 18:44 . 2010-11-20 12:19 296448 ----a-w- c:\windows\SysWow64\mfds.dll2011-12-11 18:43 . 2010-11-20 13:26 503296 ----a-w- c:\windows\system32\imapi2.dll2011-12-11 18:43 . 2010-11-20 13:28 298104 ----a-w- c:\windows\system32\bcryptprimitives.dll2011-12-11 18:43 . 2010-11-20 13:25 197120 ----a-w- c:\windows\system32\credui.dll2011-12-11 18:43 . 2010-11-20 12:55 144384 ----a-w- c:\windows\system32\cdd.dll2011-12-11 18:43 . 2010-11-20 09:26 328192 ----a-w- c:\windows\system32\drivers\udfs.sys2011-12-11 18:43 . 2010-11-20 13:33 289664 ----a-w- c:\windows\system32\drivers\fltMgr.sys2011-12-11 18:43 . 2010-11-20 13:26 100864 ----a-w- c:\windows\system32\davclnt.dll2011-12-11 18:42 . 2010-11-20 12:20 152064 ----a-w- c:\windows\SysWow64\ncsi.dll2011-12-11 18:42 . 2010-11-20 12:18 762880 ----a-w- c:\windows\SysWow64\azroles.dll2011-12-11 18:42 . 2010-11-20 13:25 504320 ----a-w- c:\windows\system32\biocpl.dll2011-12-11 18:42 . 2010-11-20 13:26 2746880 ----a-w- c:\windows\system32\gameux.dll2011-12-11 18:41 . 2010-11-20 12:18 168960 ----a-w- c:\windows\SysWow64\credui.dll2011-12-11 18:41 . 2010-11-20 13:25 67072 ----a-w- c:\windows\splwow64.exe2011-12-11 17:20 . 2010-11-20 12:18 254464 ----a-w- c:\windows\SysWow64\dhcpcore.dll2011-12-11 17:20 . 2010-11-20 12:19 232448 ----a-w- c:\windows\SysWow64\mswsock.dll2011-12-11 17:17 . 2010-11-20 13:25 158720 ----a-w- c:\windows\system32\aaclient.dll2011-12-11 17:17 . 2010-11-20 12:17 142336 ----a-w- c:\windows\SysWow64\net1.exe2011-12-11 17:15 . 2010-11-20 12:19 1619968 ----a-w- c:\program files (x86)\Windows Mail\msoe.dll..((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))).2011-12-24 01:48 . 2011-12-24 01:48 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{60764C8F-71F4-4634-A93B-34EB442E81BD}\offreg.dll2011-12-21 19:01 . 2011-12-21 19:01 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe2011-12-21 19:01 . 2011-12-21 19:01 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe2011-12-21 19:01 . 2011-12-21 19:01 63488 ----a-w- c:\windows\SysWow64\tdc.ocx2011-12-21 19:01 . 2011-12-21 19:01 420864 ----a-w- c:\windows\SysWow64\vbscript.dll2011-12-21 19:01 . 2011-12-21 19:01 152064 ----a-w- c:\windows\SysWow64\wextract.exe2011-12-21 19:01 . 2011-12-21 19:01 1127424 ----a-w- c:\windows\SysWow64\wininet.dll2011-12-21 19:01 . 2011-12-21 19:01 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe2011-12-21 19:01 . 2011-12-21 19:01 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe2011-12-21 19:01 . 2011-12-21 19:01 76800 ----a-w- c:\windows\system32\tdc.ocx2011-12-21 19:01 . 2011-12-21 19:01 603648 ----a-w- c:\windows\system32\vbscript.dll2011-12-21 19:01 . 2011-12-21 19:01 48640 ----a-w- c:\windows\system32\mshtmler.dll2011-12-21 19:01 . 2011-12-21 19:01 30720 ----a-w- c:\windows\system32\licmgr10.dll2011-12-21 19:01 . 2011-12-21 19:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb2011-12-21 19:01 . 2011-12-21 19:01 2309120 ----a-w- c:\windows\system32\jscript9.dll2011-12-21 19:01 . 2011-12-21 19:01 222208 ----a-w- c:\windows\system32\msls31.dll2011-12-21 19:01 . 2011-12-21 19:01 160256 ----a-w- c:\windows\system32\wextract.exe2011-12-21 19:01 . 2011-12-21 19:01 1493504 ----a-w- c:\windows\system32\inetcpl.cpl2011-12-21 19:01 . 2011-12-21 19:01 1390080 ----a-w- c:\windows\system32\wininet.dll2011-12-21 19:01 . 2011-12-21 19:01 12288 ----a-w- c:\windows\system32\mshta.exe2011-12-15 00:34 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll2011-12-15 00:34 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll2011-12-04 00:00 . 2011-12-04 00:00 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\qwavedrv.sys.mui2011-12-04 00:00 . 2011-12-04 00:00 5632 ----a-w- c:\windows\SysWow64\drivers\nl-NL\ndiscap.sys.mui2011-12-04 00:00 . 2011-12-04 00:00 50688 ----a-w- c:\windows\SysWow64\drivers\nl-NL\tcpip.sys.mui2011-12-03 23:59 . 2011-12-03 23:59 16896 ----a-w- c:\windows\SysWow64\drivers\nl-NL\pacer.sys.mui2011-12-03 23:59 . 2011-12-03 23:59 26624 ----a-w- c:\windows\SysWow64\drivers\nl-NL\bfe.dll.mui2011-12-03 23:59 . 2011-12-03 23:59 2560 ----a-w- c:\windows\SysWow64\drivers\nl-NL\scfilter.sys.mui2011-12-03 19:16 . 2011-12-03 19:16 564784 ----a-w- c:\windows\system32\NBMatS1SDK.dll2011-11-30 01:21 . 2011-12-23 15:24 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{60764C8F-71F4-4634-A93B-34EB442E81BD}\mpengine.dll2011-11-24 04:52 . 2011-12-14 01:56 3145216 ----a-w- c:\windows\system32\win32k.sys2011-11-05 05:32 . 2011-12-14 01:56 2048 ----a-w- c:\windows\system32\tzres.dll2011-11-05 04:26 . 2011-12-14 01:56 2048 ----a-w- c:\windows\SysWow64\tzres.dll..------- Sigcheck -------Note: Unsigned files aren't necessarily malware..[7] 2009-07-14 . 02062C0B390B7729EDC9E69C680A6F3C . 24128 . . [6.1.7600.16385] .. c:\windows\system32\drivers\atapi.sys[7] 2009-07-14 . 02062C0B390B7729EDC9E69C680A6F3C . 24128 . . [6.1.7600.16385] .. c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys.[7] 2009-07-14 . 769765CE2CC62867468CEA93969B2242 . 23040 . . [6.1.7600.16385] .. c:\windows\system32\drivers\asyncmac.sys.[7] 2009-07-14 . BC02336F1CBA7DCC7D1213BB588A68A5 . 50768 . . [6.1.7600.16385] .. c:\windows\system32\drivers\kbdclass.sys[7] 2009-07-14 . BC02336F1CBA7DCC7D1213BB588A68A5 . 50768 . . [6.1.7600.16385] .. c:\windows\system32\DriverStore\FileRepository\keyboard.inf_amd64_neutral_0684fdc43059f486\kbdclass.sys.[7] 2010-11-20 . 79B47FD40D9A817E932F9D26FAC0A81C . 951680 . . [6.1.7600.16385] .. c:\windows\system32\drivers\ndis.sys.[7] 2011-03-11 . A2F74975097F52A00745F9637451FDD8 . 1659776 . . [6.1.7600.16385] .. c:\windows\system32\drivers\ntfs.sys.[7] 2009-07-13 . 9899284589F75FA8724FF3D16AED75C1 . 6144 . . [6.1.7600.16385] .. c:\windows\system32\drivers\null.sys.[7] 2011-09-29 . FC62769E7BFF2896035AEED399108162 . 1923952 . . [6.1.7600.16385] .. c:\windows\system32\drivers\tcpip.sys.[7] 2010-11-20 . 8EF0D5C41EC907751B8429162B1239ED . 136192 . . [6.1.7600.16385] .. c:\windows\system32\browser.dll.[7] 2009-07-14 . 0793F40B9B8A1BDD266296409DBD91EA . 31232 . . [6.1.7600.16385] .. c:\windows\system32\lsass.exe.[7] 2009-07-14 . 847D3AE376C0817161A14A82C8922A9E . 360448 . . [6.1.7600.16385] .. c:\windows\system32\netman.dll.[7] 2010-11-20 . 1EA7969E3271CBC59E1730697DC74682 . 849920 . . [7.5.7600.16385] .. c:\windows\system32\qmgr.dll.[7] 2010-11-20 . 5C627D1B1138676C0A7AB2C2C190D123 . 512000 . . [6.1.7601.17514] .. c:\windows\system32\rpcss.dll.[7] 2009-07-14 . 24ACB7E5BE595468E3B9AA488B9B4FCB . 328704 . . [6.1.7600.16385] .. c:\windows\system32\services.exe.[7] 2010-11-20 . B96C17B5DC1424D56EEA3A99E97428CD . 559104 . . [6.1.7600.16385] .. c:\windows\system32\spoolsv.exe.[7] 2010-11-20 . 1151B1BAA6F350B1DB6598E0FEA7C457 . 390656 . . [6.1.7601.17514] .. c:\windows\system32\winlogon.exe.[7] 2010-11-20 . 7FBFAA84FE176D9AE932ABC585AB68D5 . 51200 . . [7.5.7601.17514] .. c:\windows\system32\wuauclt.exe.[7] 2010-11-20 . 14DFDEAF4E589ED3F1FF187A86B9408C . 633856 . . [5.82] .. c:\windows\system32\comctl32.dll.[7] 2009-07-14 . 1A47D52E303B7543E4E6026595B95422 . 1297408 . . [2001.12.8530.16385] .. c:\windows\system32\comres.dll.[7] 2010-11-20 . 15597883FBE9B056F276ADA3AD87D9AF . 177152 . . [6.1.7600.16385] .. c:\windows\system32\cryptsvc.dll.[7] 2009-07-14 . 4166F82BE4D24938977DD1746BE9B8A0 . 402944 . . [2001.12.8530.16385] .. c:\windows\system32\es.dll.[7] 2009-07-14 . AA2C08CE85653B1A0D2E4AB407FA176C . 167424 . . [6.1.7600.16385] .. c:\windows\system32\imm32.dll.[7] 2010-11-20 . 2F8B1E3EE3545D3B5A8D56FA1AE07B65 . 800256 . . [1.0626.7601.17514] .. c:\windows\system32\usp10.dll.[7] 2011-07-16 . B9B42A302325537D7B9DC52D47F33A73 . 1162752 . . [6.1.7600.16385] .. c:\windows\system32\kernel32.dll.[7] 2009-07-14 . A0A65D306A5490D2EB8E7DE66898ECFD . 29696 . . [6.1.7600.16385] .. c:\windows\system32\linkinfo.dll.[7] 2009-07-14 . D202223587518B13D72D68937B7E3F70 . 41984 . . [6.1.7600.16385] .. c:\windows\system32\lpk.dll.[7] 2009-07-14 . 3B367397320C26DBA890B260F80D1B1B . 424448 . . [6.1.7600.16385] .. c:\windows\system32\hnetcfg.dll.[7] 2011-12-21 . E7BD23BEC69CF23436EEDE9B18DE186D . 17786368 . . [9.00.8112.16421] .. c:\windows\system32\mshtml.dll.[7] 2009-07-14 . 7319BB10FA1F86E49E3DCF4136F6C957 . 634880 . . [7.0.7600.16385] .. c:\windows\system32\msvcrt.dll.[7] 2010-11-20 . 1D5185A4C7E6695431AE4B55C3D7D333 . 326144 . . [6.1.7600.16385] .. c:\windows\system32\mswsock.dll.[7] 2010-11-20 . AA339DD8BB128EF66660DFBBB59043D3 . 695808 . . [6.1.7600.16385] .. c:\windows\system32\netlogon.dll.[7] 2009-07-14 . 716175021BDA290504CE434273F666BC . 167424 . . [6.1.7600.16385] .. c:\windows\system32\powrprof.dll.[7] 2010-11-20 . ED78427259134C63ED69804D2132B86C . 232960 . . [6.1.7600.16385] .. c:\windows\system32\scecli.dll.[7] 2009-07-14 . C6DCD1D11ED6827F05C00773C3E7053C . 3072 . . [6.1.7600.16385] .. c:\windows\system32\sfc.dll.[7] 2009-07-14 . C78655BC80301D76ED4FEF1C1EA40A7D . 27136 . . [6.1.7600.16385] .. c:\windows\system32\svchost.exe.[7] 2010-11-20 . 40F0849F65D13EE87B9A9AE3C1DD6823 . 316928 . . [6.1.7600.16385] .. c:\windows\system32\tapisrv.dll.[7] 2010-11-20 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll.[7] 2010-11-20 . BAFE84E637BF7388C96EF48D4D3FDD53 . 30720 . . [6.1.7600.16385] .. c:\windows\system32\userinit.exe.[7] 2011-12-21 . 69151E566295E5A977FE71FFAFD3B3F8 . 1390080 . . [9.00.8112.16440] .. c:\windows\system32\wininet.dll.[7] 2010-11-20 . 4BBFA57F594F7E8A8EDC8F377184C3F0 . 297984 . . [6.1.7600.16385] .. c:\windows\system32\ws2_32.dll.[7] 2009-07-14 . 8396C6C26AADDFE4590CCEF0F419B6B7 . 4608 . . [6.1.7600.16385] .. c:\windows\system32\ws2help.dll.[7] 2010-11-20 . 6C60B5ACA7442EFB794082CDACFC001C . 2086912 . . [6.1.7600.16385] .. c:\windows\system32\ole32.dll.[7] 2009-07-14 . 86FE1B1F8FD42CD0DB641AB1CDB13093 . 18944 . . [6.1.7600.16385] .. c:\windows\system32\cngaudit.dll.[7] 2009-07-14 . 94355C28C1970635A31B3FE52EB7CEBA . 129024 . . [6.1.7600.16385] .. c:\windows\system32\wininit.exe.[7] 2009-07-14 . 42B6A94DD747DF2B5F628A2752E62A98 . 9728 . . [6.1.7600.16385] .. c:\windows\system32\ctfmon.exe.[7] 2010-11-20 . AAF932B4011D14052955D4B212A4DA8D . 370688 . . [6.1.7600.16385] .. c:\windows\system32\shsvcs.dll.[7] 2009-07-14 . E4D94F24081440B5FC5AA556C7C62702 . 159232 . . [6.1.7600.16385] .. c:\windows\system32\regsvc.dll.[7] 2010-11-20 . 262F6592C3299C005FD6BEC90FC4463A . 1110016 . . [6.1.7600.16385] .. c:\windows\system32\schedsvc.dll.[7] 2009-07-14 . 51B52FBD583CDE8AA9BA62B8B4298F33 . 193024 . . [6.1.7600.16385] .. c:\windows\system32\ssdpsrv.dll.[7] 2010-11-20 . 2E648163254233755035B46DD7B89123 . 680960 . . [6.1.7601.17514] .. c:\windows\system32\termsrv.dll.[7] 2011-06-23 . 577841951E8BAD6EA8288106693CD39F . 5561216 . . [6.1.7601.17640] .. c:\windows\system32\ntoskrnl.exe.[7] 2009-07-14 . 8560FFFC8EB3A806DCD4F82252CFC8C6 . 5120 . . [6.1.7600.16385] .. c:\windows\system32\ksuser.dll...[7] 2009-07-14 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385] .. c:\windows\SysWOW64\es.dll[7] 2009-07-14 . F6916EFC29D9953D5D0DF06882AE8E16 . 271360 . . [2001.12.8530.16385] .. c:\windows\winsxs\wow64_microsoft-windows-c..complus-eventsystem_31bf3856ad364e35_6.1.7600.16385_none_73373b169fcf68cb\es.dll.[7] 2010-11-20 . A6F09E5669D9A19035F6D942CAA15882 . 119808 . . [6.1.7601.17514] .. c:\windows\SysWOW64\imm32.dll[7] 2010-11-20 . A6F09E5669D9A19035F6D942CAA15882 . 119808 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7601.17514_none_c4d0cdd7c56b493e\imm32.dll[7] 2009-07-14 . 0DE3069D6E09BA262856EF31C941BEFE . 119808 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_c29fba0fc87cc5a4\imm32.dll..[7] 2009-07-14 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385] .. c:\windows\SysWOW64\linkinfo.dll[7] 2009-07-14 . 5987EA8A82C53359BCD2C29D6588583E . 22016 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-linkinfo_31bf3856ad364e35_6.1.7600.16385_none_9eaece15f365da54\linkinfo.dll.[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\SysWOW64\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16385_none_101cb471a89825ee\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16402_none_107034d9a859f788\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16444_none_1046f5bda87899fa\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.16763_none_10305b4da889affa\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20498_none_109e822ec1bb2dae\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20553_none_10c4c252c19f3c5e\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7600.20905_none_10fcda1ac174d7f3\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.17514_none_124dc839a586a988\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.17563_none_1216b853a5b01be6\lpk.dll[7] 2009-07-14 . 384721EF4024890092625E20CADFAF85 . 25600 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-gdi_31bf3856ad364e35_6.1.7601.21664_none_12a15568beccd507\lpk.dll..[7] 2009-07-14 . E46D48A7FE961401F1CBF85531CDF05D . 690688 . . [7.0.7600.16385] .. c:\windows\SysWOW64\msvcrt.dll[7] 2009-07-14 . E46D48A7FE961401F1CBF85531CDF05D . 690688 . . [7.0.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-msvcrt_31bf3856ad364e35_6.1.7600.16385_none_d12b8c440039b31e\msvcrt.dll.[7] 2010-11-20 . 8999B8631C7FD9F7F9EC3CAFD953BA24 . 232448 . . [6.1.7600.16385] .. c:\windows\SysWOW64\mswsock.dll[7] 2010-11-20 . 8999B8631C7FD9F7F9EC3CAFD953BA24 . 232448 . . [6.1.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_ba5ac0f18b8dd799\mswsock.dll[7] 2009-07-14 . 11A41F17527ED75D6B758FDD7F4FD00D . 232448 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll.[7] 2010-11-20 . C1809B9907ADEDAF16F50C894100883B . 563712 . . [6.1.7600.16385] .. c:\windows\SysWOW64\netlogon.dll[7] 2010-11-20 . C1809B9907ADEDAF16F50C894100883B . 563712 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll[7] 2009-07-14 . EAA75D9000B71F10EEC04D2AE6C60E81 . 563712 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll.[7] 2009-07-14 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385] .. c:\windows\SysWOW64\powrprof.dll[7] 2009-07-14 . 08DFDBD2FD4EA951DC46B1C7661ED35A . 145408 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.1.7600.16385_none_a2eff4845e2bf4e2\powrprof.dll.[7] 2010-11-20 . 8124944EC89D6A1815E4E53F5B96AAF4 . 175616 . . [6.1.7600.16385] .. c:\windows\SysWOW64\scecli.dll[7] 2010-11-20 . 8124944EC89D6A1815E4E53F5B96AAF4 . 175616 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll[7] 2009-07-14 . 26073302DAEA83CC5B944C546D6B47D2 . 175616 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll.[7] 2009-07-14 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385] .. c:\windows\SysWOW64\sfc.dll[7] 2009-07-14 . 40CAEEE0EAF1B8569F7C8DF6420F2CB9 . 2560 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-sfc_31bf3856ad364e35_6.1.7600.16385_none_a70c196fbd853ae9\sfc.dll.[7] 2009-07-14 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385] .. c:\windows\SysWOW64\svchost.exe[7] 2009-07-14 . 54A47F6B5E09A77E61649109C6A08866 . 20992 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe.[7] 2010-11-20 . 613BF4820361543956909043A265C6AC . 242176 . . [6.1.7600.16385] .. c:\windows\SysWOW64\tapisrv.dll[7] 2010-11-20 . 613BF4820361543956909043A265C6AC . 242176 . . [6.1.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.1.7601.17514_none_e54442c74334b18a\tapisrv.dll[7] 2009-07-14 . 2F46B0C70A4ADC8C90CF825DA3B4FEAF . 241664 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-tapiservice_31bf3856ad364e35_6.1.7600.16385_none_e3132eff46462df0\tapisrv.dll.[7] 2010-11-20 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll[7] 2010-11-20 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll[7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll.[7] 2010-11-20 . 61AC3EFDFACFDD3F0F11DD4FD4044223 . 26624 . . [6.1.7600.16385] .. c:\windows\SysWOW64\userinit.exe[7] 2010-11-20 . 61AC3EFDFACFDD3F0F11DD4FD4044223 . 26624 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe[7] 2009-07-14 . 6DE80F60D7DE9CE6B8C2DDFDF79EF175 . 26112 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe.[7] 2011-12-21 . 02F98B5C0E397AD06124D84428CF8F1A . 1127424 . . [9.00.8112.16440] .. c:\windows\SysWOW64\wininet.dll[7] 2011-12-21 . 02F98B5C0E397AD06124D84428CF8F1A . 1127424 . . [9.00.8112.16440] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.4.8112.16440_none_1a51f619bc2a81e6\wininet.dll[7] 2011-11-05 . E49448ACD38A375E4FBCCB87056E1467 . 982016 . . [8.00.7600.21085] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.21085_none_1d030f43934664a3\wininet.dll[7] 2011-11-05 . 7F5B51FACA193430346970283C50769F . 981504 . . [8.00.7600.16912] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16912_none_1cc24ad279f27f22\wininet.dll[7] 2011-11-05 . 19714FA7D7204D9BEE1EE12791DA9010 . 981504 . . [8.00.7601.17720] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17720_none_1e9bd7587722d451\wininet.dll[7] 2011-11-05 . 1903228FE0C7D402B26A217F8D7713FD . 982016 . . [8.00.7601.21855] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.21855_none_1f0a05d1905446a1\wininet.dll[7] 2011-08-20 . 7570FA3FC82E08FB637E32D2D95DB41D . 981504 . . [8.00.7601.21795] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.21795_none_1edec43b9074b93e\wininet.dll[7] 2011-08-20 . 1DBC7303366C0C9B80E51C4B4BECB7ED . 981504 . . [8.00.7600.16869] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16869_none_1c933b567a14bf11\wininet.dll[7] 2011-08-20 . 79FFA6C81F9F5B2244C5668D08387EA6 . 982016 . . [8.00.7600.21033] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.21033_none_1d371e4b931fa640\wininet.dll[7] 2011-08-20 . DBF24E87CB605A4F6E7424DD86F7A62C . 981504 . . [8.00.7601.17671] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17671_none_1e66c620774a7c36\wininet.dll[7] 2010-12-21 . 78B9ADA2BC8946AF7B17678E0D07A773 . 981504 . . [8.00.7600.16723] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16723_none_1cb8776479f9ba1c\wininet.dll[7] 2010-12-21 . 1B3DD46BC6396143A205EAAF05F38039 . 981504 . . [8.00.7600.20862] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.20862_none_1d15d4359338b053\wininet.dll[7] 2010-11-20 . 44214C94911C7CFB1D52CB64D5E8368D . 980992 . . [8.00.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17514_none_1eaaa4a07717236e\wininet.dll[7] 2009-07-14 . 0D874F3BC751CC2198AF2E6783FB8B35 . 977920 . . [8.00.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16385_none_1c7990d87a289fd4\wininet.dll.[7] 2010-11-20 . 7FF15A4F092CD4A96055BA69F903E3E9 . 206848 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ws2_32.dll[7] 2010-11-20 . 7FF15A4F092CD4A96055BA69F903E3E9 . 206848 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll[7] 2009-07-14 . DAAE8A9B8C0ACC7F858454132553C30D . 206336 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll.[7] 2009-07-14 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ws2help.dll[7] 2009-07-14 . 808AABDF9337312195CAFF76D1804786 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6ace9e67456cc40b\ws2help.dll.[7] 2011-02-26 . E38899074D4951D31B4040E994DD7C8D . 2870784 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe[7] 2011-02-26 . 0862495E0C825893DB75EF44FAEA8E93 . 2870272 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe[7] 2011-02-26 . 3B69712041F3D63605529BD66DC00C48 . 2871808 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe.[7] 2009-07-14 . 2E2C937846A0B8789E5E91739284D17A . 427008 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-registry-editor_31bf3856ad364e35_6.1.7600.16385_none_5023a70bf589ad3e\regedit.exe[7] 2009-07-14 . 2E2C937846A0B8789E5E91739284D17A . 398336 . . [6.1.7600.16385] .. c:\windows\regedit.exe.[7] 2010-11-20 . 928CF7268086631F54C3D8E17238C6DD . 1414144 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ole32.dll[7] 2010-11-20 . 928CF7268086631F54C3D8E17238C6DD . 1414144 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7601.17514_none_ae2511475093798f\ole32.dll[7] 2010-06-29 . E2C2D8C982316C8ABF800C6CE3F28FAB . 1413632 . . [6.1.7600.16624] .. c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7600.16624_none_ac33e26f53752c6d\ole32.dll[7] 2010-06-29 . 40E6BF57F6A923038B94C07387118089 . 1414144 . . [6.1.7600.20744] .. c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7600.20744_none_aca7df626ca30419\ole32.dll[7] 2009-07-14 . 4ACB903AD1693858A918907358CBD9E4 . 1412608 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.1.7600.16385_none_abf3fd7f53a4f5f5\ole32.dll.[7] 2010-11-20 . 804AAAFEBB3AD5F49334DD906BCB1DE5 . 626176 . . [1.0626.7601.17514] .. c:\windows\SysWOW64\usp10.dll[7] 2010-11-20 . 804AAAFEBB3AD5F49334DD906BCB1DE5 . 626176 . . [1.0626.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7601.17514_none_af01e2f9b6be7939\usp10.dll[7] 2009-07-14 . 0BA19F3198C40AC4E8CC66EE02EDA6C6 . 627200 . . [1.0626.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-usp_31bf3856ad364e35_6.1.7600.16385_none_acd0cf31b9cff59f\usp10.dll.[7] 2009-07-14 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ksuser.dll[7] 2009-07-14 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.1.7600.16385_none_e7d7f27ff89fda02\ksuser.dll[7] 2009-07-14 . 9C67F6BBDA3881CFD02095160CF91576 . 4608 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-d..tshow-kernelsupport_31bf3856ad364e35_6.1.7601.17514_none_ea090647f58e5d9c\ksuser.dll.[7] 2009-07-14 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ctfmon.exe[7] 2009-07-14 . 4A3CDCEF8ED41B221F3DBEF5792FB52D . 8704 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-t..cesframework-ctfmon_31bf3856ad364e35_6.1.7600.16385_none_9d06e2f6f1e51f98\ctfmon.exe.[7] 2010-11-20 . 414DA952A35BF5D50192E28263B40577 . 328192 . . [6.1.7600.16385] .. c:\windows\SysWOW64\shsvcs.dll[7] 2010-11-20 . 414DA952A35BF5D50192E28263B40577 . 328192 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-shsvcs_31bf3856ad364e35_6.1.7601.17514_none_35ab0ceb67ede31e\shsvcs.dll[7] 2009-07-14 . CD2E48FA5B29EE2B3B5858056D246EF2 . 328192 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-shsvcs_31bf3856ad364e35_6.1.7600.16385_none_3379f9236aff5f84\shsvcs.dll.[7] 2009-07-14 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385] .. c:\windows\SysWOW64\cngaudit.dll[7] 2009-07-14 . 50BA656134F78AF64E4DD3C8B6FEFD7E . 12288 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll.[7] 2009-07-14 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385] .. c:\windows\SysWOW64\wininit.exe[7] 2009-07-14 . B5C5DCAD3899512020D135600129D665 . 96256 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe.[7] 2009-07-14 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ias.dll[7] 2009-07-14 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.1.7600.16385_none_f8d730c7a3d9d889\ias.dll[7] 2009-07-14 . A1E91B5B5273573FC132B683E550B5E6 . 19456 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-n..ion_service_runtime_31bf3856ad364e35_6.1.7601.17514_none_fb08448fa0c85c23\ias.dll.[7] 2010-11-20 12:19 . AB9EB3745B03AE67AB241A82338DEA7B . 954288 . . [4.1.6140] .. c:\windows\SysWOW64\mfc40u.dll[7] 2010-11-20 12:19 . AB9EB3745B03AE67AB241A82338DEA7B . 954288 . . [4.1.6151] .. c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7601.17514_none_f51a7bf0b3d25294\mfc40u.dll[7] 2010-08-31 04:32 . 1B3A500340AC40F08D03A2C45213A17D . 954288 . . [4.1.6151] .. c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7600.16666_none_f3000dfcb6d2a7e4\mfc40u.dll[7] 2010-08-31 04:25 . A716981A8BB41F4149203687EE2D1BE4 . 954288 . . [4.1.6151] .. c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7600.20791_none_f3643991d00d1cce\mfc40u.dll[7] 2009-07-14 01:15 . F8742FC618ECBDA92A406725197E93AE . 924944 . . [4.1.6140] .. c:\windows\winsxs\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.1.7600.16385_none_f2e96828b6e3cefa\mfc40u.dll.[7] 2011-06-23 . 3624D782F8B061B6FBA3A35E2FE53CFD . 3967872 . . [6.1.7601.21755] .. c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21755_none_6e972ad72ba2517f\ntkrnlpa.exe[7] 2011-06-23 . 1F969255E068D451BAC2D4FB0BD8C9C3 . 3957120 . . [6.1.7600.16841] .. c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7600.16841_none_6c2dffca1559c47c\ntkrnlpa.exe.[7] 2009-07-14 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385] .. c:\windows\SysWOW64\upnphost.dll[7] 2009-07-14 . 833FBB672460EFCE8011D262175FAD33 . 266752 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-upnpdevicehost_31bf3856ad364e35_6.1.7600.16385_none_2831d06e8295c671\upnphost.dll.[7] 2009-07-14 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385] .. c:\windows\SysWOW64\dsound.dll[7] 2009-07-14 . 0E85C11F8850D524B02181C6E02BA9AE . 453632 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-audio-dsound_31bf3856ad364e35_6.1.7600.16385_none_5872147ba3367471\dsound.dll.[7] 2010-11-20 . 6EF5F3F18413C367195F06E503AB86A6 . 1828352 . . [6.1.7601.17514] .. c:\windows\SysWOW64\d3d9.dll[7] 2010-11-20 . 6EF5F3F18413C367195F06E503AB86A6 . 1828352 . . [6.1.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.1.7601.17514_none_c454d690bf084f04\d3d9.dll[7] 2009-07-14 . 7459301D21C2E21468823F73042D9F87 . 1826816 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-directx-direct3d9_31bf3856ad364e35_6.1.7600.16385_none_c223c2c8c219cb6a\d3d9.dll.[7] 2009-07-14 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385] .. c:\windows\SysWOW64\ddraw.dll[7] 2009-07-14 . 198552AEFECA69D646867EC8D792DE95 . 531968 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-directx-directdraw_31bf3856ad364e35_6.1.7600.16385_none_04dbf9102154d42e\ddraw.dll.[7] 2010-11-20 12:20 . 703FFD301AB900B047337C5D40FD6F96 . 90112 . . [6.1.7601.17514] .. c:\windows\SysWOW64\olepro32.dll[7] 2010-11-20 12:20 . 703FFD301AB900B047337C5D40FD6F96 . 90112 . . [6.1.7601.17514] .. c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.1.7601.17514_none_3c1b247e5ff65f89\olepro32.dll[7] 2009-07-14 01:16 . C10459DBDC2099C5A8428CB7D87DB85F . 90112 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.1.7600.16385_none_39ea10b66307dbef\olepro32.dll.[7] 2009-07-14 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385] .. c:\windows\SysWOW64\perfctrs.dll[7] 2009-07-14 . EDD2AD141DEBD425D74A52A4D7BE6AC4 . 39424 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-p..ormancebasecounters_31bf3856ad364e35_6.1.7600.16385_none_97bcd9bcab2b9b3a\perfctrs.dll.[7] 2009-07-14 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385] .. c:\windows\SysWOW64\version.dll[7] 2009-07-14 . 702254574E7E52052DE39408457B7149 . 21504 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.1.7600.16385_none_14d4a552b2395165\version.dll.[7] 2011-12-21 . 904E13BA41AF2E353A32CF351CA53639 . 748336 . . [9.00.8112.16421] .. c:\windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16421_none_17a944edb4ca4c7a\iexplore.exe[7] 2011-11-05 . A8A14CD0CB499B80412F75D53996AE29 . 673048 . . [8.00.7600.21085] .. c:\windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_8.0.7600.21085_none_1a43bdf58bf74dc2\iexplore.exe[7] 2011-11-05 . 8ED7C19AEFA3673AADB0D6864B03FBCE . 673048 . . [8.00.7600.16912] .. c:\windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_8.0.7600.16912_none_1a02f98472a36841\iexplore.exe.[7] 2011-06-23 . 90EFDB506F6140EEA9DEE398D9449D86 . 3912576 . . [6.1.7601.21755] .. c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.1.7601.21755_none_6e972ad72ba2517f\ntoskrnl.exe.[7] 2009-07-14 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385] .. c:\windows\SysWOW64\midimap.dll[7] 2009-07-14 . 5A12C364AD1D4FCC0AD0E56DBBC34462 . 16896 . . [6.1.7600.16385] .. c:\windows\winsxs\x86_microsoft-windows-audio-mmecore-other_31bf3856ad364e35_6.1.7600.16385_none_8cd41e2771e37717\midimap.dll.[7] 2009-07-14 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385] .. c:\windows\SysWOW64\rasadhlp.dll[7] 2009-07-14 . ED6EE83D61EBC683C2CD8E899EA6FEBE . 11776 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-rasautodial_31bf3856ad364e35_6.1.7600.16385_none_76239aafb364e805\rasadhlp.dll.((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))..*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4.[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]2009-08-22 05:41 433648 ----a-w- c:\programdata\Partner\Partner.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]2009-08-07 09:18 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]"aux"=wdmaud.drv.[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]@="Service".R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]R2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-18 796192]R2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664]R2 IGBASVC;EgisTec Service;c:\program files (x86)\Acer Bio Protection\BASVC.exe [2009-08-06 3450368]R2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592]R2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]R3 cpuz134;cpuz134;c:\users\wollie\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664]R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe [2009-08-22 332272]R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [x]R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x]S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x]S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x]S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys [x]S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]S3 hidshim;Service for HID-KMDF Shim layer;c:\windows\system32\DRIVERS\hidshim.sys [x]S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]S3 nuvotonhidgeneric;Nuvoton EC Generic HID;c:\windows\system32\DRIVERS\nuvotonhidgeneric.sys [x]S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]..Inhoud van de 'Gedeelde Taken' map.2011-12-23 c:\windows\Tasks\Acer Registration Data Sending.job- c:\program files (x86)\Acer\Registration\GREG.exe [2009-07-31 06:55].2011-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21].2011-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 19:21]..--------- x86-64 -----------..[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]2009-08-22 05:41 750064 ----a-w- c:\programdata\Partner\Partner64.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]2009-08-07 09:19 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-06 8060960]"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 16334880]"combofix"="c:\combofix\CF30984.3XE" [2010-11-20 345088].[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]"LoadAppInit_DLLs"=0x0.------- Bijkomende Scan -------.uStart Page = hxxp://www.startpagina.nl/uLocal Page = c:\windows\system32\blank.htmmStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_7738&r=27361211z306l03e8z1k5t68l1w262mLocal Page = c:\windows\SysWOW64\blank.htmIE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200TCP: DhcpNameServer = 213.109.127.1 89.188.26.77 212.178.149.250.- - - - ORPHANS VERWIJDERD - - - -.Toolbar-Locked - (no file)SafeBoot-MCODSToolbar-Locked - (no file)WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)...--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.10".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]@Denied: (A 2) (Everyone)@="IFlashBroker4".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000"MSCurrentCountry"=dword:000000b5.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).------------------------ Andere Aktieve Processen ------------------------.c:\program files (x86)\Acer Bio Protection\CompPtcVUI.exec:\program files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exec:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exec:\windows\system32\ACER.SCR.**************************************************************************.Voltooingstijd: 2011-12-24 04:38:48 - machine werd herstartComboFix-quarantined-files.txt 2011-12-24 03:38.Pre-Run: 583.369.138.176 bytes beschikbaarPost-Run: 583.332.872.192 bytes beschikbaar.- - End Of File - - 00FC45B1F31BA939919737E685BEF4D7
-
Ja beide uitgevoerd, maar na intikken en enter geen reactie of beeld. Heb daarna weer Hijackthis uitgevoerd met het volgende resultaat: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:03:19, on 23-12-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\NOTEPAD.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - c:\Program Files (x86)\Acer Bio Protection\BASVC.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8798 bytes
-
Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Databaseversie: 911122308 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 23-12-2011 20:43:01 mbam-log-2011-12-23 (20-43-01).txt Scantype: Snelle scan Objecten gescand: 168746 Verstreken tijd: 28 minuut/minuten, 45 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) NU de log van Hijackthis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:03:19, on 23-12-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\NOTEPAD.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - c:\Program Files (x86)\Acer Bio Protection\BASVC.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8798 bytes
-
Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:03:19, on 23-12-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\NOTEPAD.EXE C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - c:\Program Files (x86)\Acer Bio Protection\BASVC.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8798 bytes
-
Als ik mijn computer (Acer aspire 7738G) duurt het wel 1 tot 1 1/2 uur voordat ik er mee kan werken. Ook tijdens het gebruik is hij soms heel traag. Kan dit aan het interne geheugen liggen?? Of is er iets anders mis. Ik heb hem destiijds opnieuw geinstalleerd na een crash via de backup cd.s. Heeft iemand een idee?
