Riban
-
Items
103 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door Riban
-
-
probleem opgelos heb men DVD lezer opnieuw geinstalleert en voila
hetwerkt -
...
bedankt maar.... het probleem is nog niet opgelost maar ik denk wel dat ik nu weet wat het probleem juist is misschien kunnen jullie me nu helpenik denk dat mijn PC geen DVD's meer leest want ik heb nml geprobeert een DVD te kijken op PC en dat lukt ook niet dus...
PC leest geen DVD's meer; als dit probleem opgelost is is mijn CSS probleem ook opgelost
Alvast bedankt
-
hier mijn 2 logjes
het DVD probleem is idd nog niet opgelost :s maar toch bedankt
even verduidelijken ik heb 3 DVD's van counter-strike source geprobeert en ze werkten alle 3 niet maar andere DVD's zoals S.W.A.T4 wel
Hijack:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:33:50, on 4/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\BackWeb\7681197\Program\BackWeb-7681197.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\notepad.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Ask.com Search Engine - Better Web Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Smartschool V8.0
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" /APPLY
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Philips Wireless USB Adapter 11g.lnk = C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: F-Secure BackWeb (BackWeb Client - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: F-Secure BackWeb LAN Access - Unknown owner - C:\Program Files\F-Secure\BackWeb\7681197\Program\fsbwlan.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: F-Secure Authentication Agent (FSAA) - F-Secure Corporation. All Rights Reserved. - C:\Program Files\F-Secure\Common\FSAA.EXE
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 8407 bytes
Combofix
ComboFix 09-07-03.03 - gast2 04/07/2009 9:39.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.478 [GMT 2:00]
Gestart vanuit: c:\documents and settings\gast2\Bureaublad\scan.exe.exe
gebruikte Opdracht switches :: c:\documents and settings\gast2\Bureaublad\CFScript.txt
AV: F-Secure Anti-Virus 5.43 *On-access scanning enabled* (Updated) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
FILE ::
"c:\windows\Poison-RAT.exe"
"c:\windows\system32\ssvchost.exe"
"c:\windows\system32AKV.exe"
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\AskBarDis
c:\program files\AskBarDis\bar\bin\askBar.dll
c:\program files\AskBarDis\bar\bin\askPopStp.dll
c:\program files\AskBarDis\bar\bin\AskSplash.exe
c:\program files\AskBarDis\bar\bin\AskTBApp.exe
c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe
c:\program files\AskBarDis\bar\bin\psvince.dll
c:\program files\AskBarDis\bar\Cache\004CE3A7
c:\program files\AskBarDis\bar\Cache\004CE5CA
c:\program files\AskBarDis\bar\Cache\011E84C1
c:\program files\AskBarDis\bar\Cache\011E958A
c:\program files\AskBarDis\bar\Cache\011E98E5.bin
c:\program files\AskBarDis\bar\Cache\011E9CCD.bin
c:\program files\AskBarDis\bar\Cache\011EBC3C.bin
c:\program files\AskBarDis\bar\Cache\011EC62F.bin
c:\program files\AskBarDis\bar\Cache\011ECA94.bin
c:\program files\AskBarDis\bar\Cache\011ECD72.bin
c:\program files\AskBarDis\bar\Cache\011ED821.bin
c:\program files\AskBarDis\bar\Cache\011EDE6A.bin
c:\program files\AskBarDis\bar\Cache\011EE177.bin
c:\program files\AskBarDis\bar\Cache\files.ini
c:\program files\AskBarDis\bar\History\search
c:\program files\AskBarDis\bar\Settings\AskLogo.ico
c:\program files\AskBarDis\bar\Settings\config.dat
c:\program files\AskBarDis\bar\Settings\config.dat.bak
c:\program files\AskBarDis\bar\Settings\prevcfg.htm
c:\program files\AskBarDis\bar\Settings\prevCfg2.htm
c:\program files\AskBarDis\unins000.dat
c:\program files\AskBarDis\unins000.exe
c:\program files\AskSearch
c:\program files\AskSearch\bin\DefaultSearch.dll
c:\windows\system32AKV.exe
c:\windows\TEMP\IadHide4.dll
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_ASKUPGRADE
-------\Service_ASKUpgrade
(((((((((((((((((((( Bestanden Gemaakt van 2009-06-04 to 2009-07-04 ))))))))))))))))))))))))))))))
.
2009-07-04 07:32 . 2009-07-04 07:32 -------- d-----w- c:\program files\Trend Micro
2009-07-03 17:57 . 2009-07-03 18:02 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2009-07-03 17:55 . 2009-07-03 17:56 -------- d-----w- c:\program files\GameSpy Arcade
2009-07-03 17:46 . 2009-07-03 17:46 -------- d-----w- c:\program files\Sierra
2009-07-02 18:41 . 2009-07-02 18:41 -------- d-----w- c:\program files\Smart Projects
2009-07-02 12:02 . 2009-07-03 18:32 -------- d-----w- c:\documents and settings\gast2\Application Data\uTorrent
2009-07-02 11:52 . 2009-07-02 11:54 -------- d-----w- c:\windows\system32\NtmsData
2009-07-02 11:38 . 2009-07-03 18:02 -------- d-----w- c:\program files\Steam
2009-06-27 11:19 . 2009-06-27 12:11 -------- d-----w- c:\documents and settings\gast2\Application Data\BSplayer
2009-06-27 11:19 . 2009-06-27 11:19 -------- d-----w- c:\documents and settings\gast2\Application Data\BSplayer Pro
2009-06-27 09:01 . 1998-07-08 15:30 18944 ----a-w- c:\windows\eraser.exe
2009-06-27 09:01 . 2009-06-27 09:04 -------- d-----w- c:\program files\LeechFTP
2009-06-22 20:10 . 2009-06-22 20:10 70704 ----a-w- c:\documents and settings\gerdi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-22 19:52 . 2009-06-22 19:52 -------- d-----w- c:\documents and settings\gerdi\Local Settings\Application Data\Apple Computer
2009-06-21 10:03 . 2009-06-21 10:03 -------- d-----w- c:\documents and settings\gast2\Application Data\Apple Computer
2009-06-21 10:02 . 2009-03-19 14:32 23400 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-06-21 10:02 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-06-21 10:01 . 2009-06-21 10:01 -------- d-----w- c:\program files\iPod
2009-06-21 10:01 . 2009-06-21 10:02 -------- d-----w- c:\program files\iTunes
2009-06-21 10:01 . 2009-06-21 10:02 -------- d-----w- c:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-21 10:01 . 2009-06-21 10:01 -------- d-----w- c:\program files\Bonjour
2009-06-21 09:58 . 2009-06-21 10:00 -------- d-----w- c:\program files\QuickTime
2009-06-21 09:58 . 2009-06-21 10:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2009-06-21 09:58 . 2009-06-21 09:58 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Apple
2009-06-21 09:57 . 2009-06-21 09:57 -------- d-----w- c:\program files\Apple Software Update
2009-06-21 09:54 . 2009-06-21 10:01 -------- d-----w- c:\program files\Common Files\Apple
2009-06-21 09:54 . 2009-06-21 09:54 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple
2009-06-21 09:51 . 2009-06-21 10:03 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Apple Computer
2009-06-18 13:50 . 2009-06-18 13:50 -------- d-----w- c:\program files\VALVe
2009-06-17 18:01 . 2009-06-17 18:01 -------- d-----w- c:\program files\HD Tune
2009-06-17 11:01 . 2009-06-17 11:01 -------- d-s---w- c:\documents and settings\gast2\UserData
2009-06-16 11:57 . 2009-06-16 12:09 -------- d-----w- c:\documents and settings\gast2\Contacts
2009-06-16 11:56 . 2009-06-16 11:56 70704 ----a-w- c:\documents and settings\gast2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-16 11:52 . 2009-07-03 16:59 34 ----a-w- c:\documents and settings\gast2\jagex_runescape_preferences.dat
2009-06-16 11:49 . 2009-06-16 11:49 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Mozilla
2009-06-15 17:56 . 2009-06-15 19:44 -------- d-----w- c:\windows\SxsCaPendDel
2009-06-15 16:27 . 2009-06-15 16:28 34 ----a-w- c:\documents and settings\gerdi\jagex_runescape_preferences.dat
2009-06-15 16:26 . 2009-06-15 16:26 -------- d-----w- C:\.jagex_cache_32
2009-06-15 16:05 . 2009-06-15 16:25 -------- d-----w- c:\documents and settings\gerdi\Local Settings\Application Data\TSVNCache
2009-06-14 18:24 . 2009-06-14 18:40 2946 ----a-w- c:\windows\regof1.dll
2009-06-14 18:20 . 2009-06-14 18:20 -------- d-----w- c:\program files\uTorrent
2009-06-14 17:53 . 2009-06-14 18:22 5172 ----a-w- c:\windows\regof2.dll
2009-06-13 11:54 . 2009-06-13 11:54 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2009-06-13 11:52 . 2009-06-15 19:44 -------- d-----w- c:\program files\Google
2009-06-12 16:28 . 2009-06-12 16:28 -------- d-----w- c:\program files\Common Files\Bcgsoft
2009-06-12 15:36 . 2004-07-14 10:54 676864 ----a-w- c:\windows\system32\drivers\hardlock.sys
2009-06-12 15:36 . 2009-06-12 15:36 6656 ----a-w- c:\windows\system32\haspvdd.dll
2009-06-12 15:36 . 2009-06-12 15:36 47616 ----a-w- c:\windows\system32\drivers\Haspnt.sys
2009-06-12 15:36 . 2009-06-12 15:36 383 ----a-w- c:\windows\system32\haspdos.sys
2009-06-12 05:51 . 2009-06-15 17:54 -------- d-----w- c:\program files\Ghost Control
2009-06-12 05:51 . 2009-06-12 05:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Ghost Controls
2009-06-09 20:13 . 2009-07-04 07:48 12 ----a-w- c:\windows\bthservsdp.dat
2009-06-09 15:02 . 2009-06-21 16:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus!
2009-06-08 18:09 . 2009-06-08 18:09 -------- d-----w- c:\program files\Messenger Plus! Live
2009-06-05 15:48 . 2009-06-05 16:08 -------- d-----w- c:\windows\system32\Adobe
2009-06-05 11:57 . 2009-06-05 11:57 75048 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
2009-06-04 15:52 . 2009-06-04 15:52 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA
2009-06-04 15:47 . 2009-06-04 15:50 -------- d-----w- c:\windows\nview
2009-06-04 15:47 . 2006-10-22 10:22 208896 ----a-w- c:\windows\system32\nvudisp.exe
2009-06-04 15:46 . 2006-10-22 13:06 208896 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-06-04 15:46 . 2009-06-04 15:46 -------- d-----w- C:\NVIDIA
2009-06-04 15:36 . 2009-06-04 15:36 -------- d-----w- c:\program files\SystemRequirementsLab
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-03 17:56 . 2009-05-11 13:55 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-18 15:59 . 2009-05-12 15:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-06-15 17:57 . 2009-05-19 15:06 -------- d-----w- c:\documents and settings\All Users\Application Data\RapidSolution
2009-06-13 16:38 . 2009-05-11 16:36 -------- d-----w- c:\program files\Common Files\Adobe
2009-06-13 08:01 . 2009-06-12 15:35 -------- d-----w- c:\program files\SEE Electrical
2009-06-12 15:05 . 2009-05-11 13:55 -------- d-----w- c:\program files\Common Files\InstallShield
2009-06-09 20:13 . 2009-05-30 08:58 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-06-02 16:30 . 2009-05-26 15:21 25512 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2009-06-02 16:30 . 2009-05-26 15:21 13224 ----a-w- c:\windows\system32\drivers\ggflt.sys
2009-05-30 08:58 . 2009-05-30 08:57 -------- d-----w- c:\program files\Matrix Multimedia
2009-05-30 08:57 . 2009-05-27 17:07 -------- d-----w- c:\program files\DIFX
2009-05-30 08:57 . 2009-05-30 08:56 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-05-30 06:31 . 2004-08-04 12:00 367600 ----a-w- c:\windows\system32\perfh013.dat
2009-05-30 06:31 . 2004-08-04 12:00 54698 ----a-w- c:\windows\system32\perfc013.dat
2009-05-27 19:03 . 2009-05-26 15:03 -------- d-----w- c:\program files\Sony Ericsson
2009-05-27 19:03 . 2009-05-26 15:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-05-27 19:03 . 2009-05-26 15:03 -------- d-----w- c:\program files\Common Files\Teleca Shared
2009-05-27 18:06 . 2009-05-27 18:04 -------- d-----w- c:\documents and settings\gerdi\Application Data\Nokia
2009-05-27 18:03 . 2009-05-27 18:03 -------- d-----w- c:\documents and settings\gerdi\Application Data\Teleca
2009-05-27 18:03 . 2009-05-27 18:03 -------- d-----w- c:\documents and settings\gerdi\Application Data\PC Suite
2009-05-27 17:11 . 2009-05-27 17:09 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Suite
2009-05-27 17:07 . 2009-05-27 17:07 -------- d-----w- c:\program files\PC Connectivity Solution
2009-05-27 17:07 . 2009-05-27 17:07 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstCCD.exe
2009-05-27 17:07 . 2009-05-27 17:07 15360 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
2009-05-27 17:07 . 2009-05-27 17:07 9728 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCS.exe
2009-05-27 16:38 . 2009-05-27 16:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations
2009-05-27 16:32 . 2009-05-27 16:32 -------- d-----w- c:\documents and settings\All Users\Application Data\Avanquest Bluetooth SDK
2009-05-26 16:16 . 2009-05-26 16:16 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ggsemc_01007.Wdf
2009-05-26 16:15 . 2009-05-26 16:15 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-05-26 15:24 . 2009-05-26 15:24 -------- d-----w- c:\documents and settings\All Users\Application Data\BVRP Software
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-26 15:22 . 2009-05-26 15:22 -------- d-----w- c:\program files\Sony Setup
2009-05-26 15:20 . 2009-05-26 15:21 1107296 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2009-05-25 18:59 . 2009-05-25 18:59 -------- d-----w- c:\program files\Xilisoft
2009-05-19 15:09 . 2009-05-19 15:09 -------- d-----w- c:\program files\PixiePack Codec Pack
2009-05-19 15:09 . 2009-05-19 15:09 466944 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\MusicLoad.dll
2009-05-19 15:09 . 2009-05-19 15:09 197912 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgSoundclick.dll
2009-05-19 15:09 . 2009-05-19 15:08 177432 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgIJigg.dll
2009-05-19 15:06 . 2009-05-19 15:06 -------- d-----w- c:\program files\RapidSolution
2009-05-18 15:38 . 2009-05-18 15:38 249856 ----a-w- c:\windows\Setup1.exe
2009-05-18 15:38 . 2009-05-18 15:37 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-05-16 11:00 . 2009-05-16 11:00 -------- d-----w- c:\program files\Webteh
2009-05-16 10:57 . 2009-05-16 10:57 -------- d-----w- c:\documents and settings\All Users\Application Data\AVS4YOU
2009-05-16 10:57 . 2009-05-16 10:56 -------- d-----w- c:\program files\Common Files\AVSMedia
2009-05-16 09:21 . 2009-05-11 08:14 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-15 15:45 . 2009-05-15 15:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-05-12 19:59 . 2009-05-12 19:58 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2009-05-12 19:59 . 2009-05-12 19:59 -------- d-----w- c:\program files\DVDVideoSoft
2009-05-12 15:47 . 2009-05-12 15:47 -------- d-----w- c:\program files\Microsoft Works
2009-05-12 15:47 . 2009-05-12 15:47 -------- d-----w- c:\program files\MSBuild
2009-05-11 18:14 . 2009-05-11 18:06 -------- d-----w- c:\program files\Windows Live
2009-05-11 18:14 . 2009-05-11 18:07 -------- dcsh--w- c:\program files\Common Files\WindowsLiveInstaller
2009-05-11 18:06 . 2009-05-11 18:06 -------- d-----w- c:\documents and settings\All Users\Application Data\WLInstaller
2009-05-11 17:37 . 2009-05-11 17:37 -------- d-----w- c:\program files\Common Files\Windows Live
2009-05-11 17:03 . 2009-05-11 17:04 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-05-11 17:03 . 2009-05-11 17:03 -------- d-----w- c:\program files\Java
2009-05-11 16:53 . 2009-05-11 16:53 0 ----a-w- c:\windows\nsreg.dat
2009-05-11 16:39 . 2009-05-11 16:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Prism
2009-05-11 16:38 . 2009-05-11 16:38 15781 ----a-w- c:\windows\system32\drivers\mdc8021x.sys
2009-05-11 16:37 . 2009-05-11 16:37 -------- d-----w- c:\program files\philips
2009-05-11 14:01 . 2009-05-11 14:01 81920 ----a-r- c:\windows\bwUnin-6.1.4.58-7681197L.exe
2009-05-11 14:01 . 2009-05-11 14:01 -------- d-----w- c:\program files\F-Secure
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\Realtek Sound Manager
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\AvRack
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\Realtek AC97
2009-05-11 08:15 . 2009-05-11 08:15 -------- d-----w- c:\program files\microsoft frontpage
2009-05-11 08:12 . 2009-05-11 08:12 21748 ----a-w- c:\windows\system32\emptyregdb.dat
2009-05-07 15:34 . 2004-08-04 12:00 347136 ----a-w- c:\windows\system32\localspl.dll
2009-04-29 04:46 . 2004-08-04 12:00 669696 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:46 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-22 05:06 . 2009-04-22 05:06 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-04-22 05:06 . 2009-04-22 05:06 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-04-22 05:06 . 2009-04-22 05:06 1060864 ----a-w- c:\windows\system32\MFC71.dll
2009-04-19 19:51 . 2004-08-04 12:00 1847296 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 14:55 . 2004-08-04 12:00 585216 ----a-w- c:\windows\system32\rpcrt4.dll
.
((((((((((((((((((((((((((((( SnapShot_2009-07-03_16.48.28 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-04 07:49 . 2009-07-04 07:49 16384 c:\windows\Temp\Perflib_Perfdata_794.dat
+ 2009-07-04 08:04 . 2009-07-04 08:04 16384 c:\windows\Temp\Perflib_Perfdata_430.dat
+ 2009-05-19 14:55 . 2009-07-03 16:59 49152 c:\windows\.jagex_cache_32\runescape\jagmisc.dll
- 2009-05-19 14:55 . 2009-07-01 07:42 49152 c:\windows\.jagex_cache_32\runescape\jagmisc.dll
+ 2009-05-19 14:55 . 2009-07-03 16:59 77824 c:\windows\.jagex_cache_32\runescape\jaggl.dll
- 2009-05-19 14:55 . 2009-07-01 07:42 77824 c:\windows\.jagex_cache_32\runescape\jaggl.dll
+ 2009-07-03 17:54 . 2009-07-03 17:54 2238 c:\windows\Installer\{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}\ARPPRODUCTICON.exe
- 2009-05-26 15:49 . 2009-07-01 07:45 101948 c:\windows\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2009-05-26 15:49 . 2009-07-03 16:59 101948 c:\windows\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2009-07-03 17:54 . 2009-07-03 17:54 4350976 c:\windows\Installer\41c06c.msi
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
"Steam"="c:\program files\steam\steam.exe" [2009-07-02 1217784]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-07-02 288048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files\F-Secure\Common\FSM32.EXE" [2002-12-05 106571]
"PRISMSVR.EXE"="c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" [2004-04-26 295001]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-11 148888]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-06-05 292136]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\soundman.exe [2006-11-17 577536]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1622016]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Philips Wireless USB Adapter 11g.lnk - c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe [2004-8-9 344064]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\steam\\Steam.exe"=
"c:\\Program Files\\VALVe\\Counter-Strike Source\\hl2.exe"=
R2 BackWeb Client - 7681197;F-Secure BackWeb;c:\progra~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE [11/05/2009 16:01 16384]
R2 F-Secure Filter;F-Secure File System Filter;c:\program files\F-Secure\Anti-Virus\win2k\FSfilter.sys [11/05/2009 16:01 48720]
R2 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\F-Secure\Anti-Virus\win2k\fsgk.sys [11/05/2009 16:01 42672]
R2 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\F-Secure\Anti-Virus\win2k\FSrec.sys [11/05/2009 16:01 16048]
R2 FSpm;F-Secure Policy Manager;c:\program files\F-Secure\Common\FSpm.sys [11/05/2009 16:01 65328]
R3 CPWUA2F;Wireless USB Adapter 11g;c:\windows\system32\drivers\CPWUA2F.sys [11/05/2009 18:38 380160]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [26/05/2009 17:21 13224]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [26/05/2009 17:23 89256]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [26/05/2009 17:23 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [26/05/2009 17:23 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [26/05/2009 17:23 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [26/05/2009 17:23 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [26/05/2009 17:23 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [26/05/2009 17:23 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [26/05/2009 17:23 109736]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}]
c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Inhoud van de 'Gedeelde Taken' map
2009-06-21 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-06-27 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
2009-07-04 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
.
- - - - ORPHANS VERWIJDERD - - - -
BHO-{201f27d4-3704-41d6-89c1-aa35e39143ed} - (no file)
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.ask.com/?o=13928&l=dis
uInternet Connection Wizard,ShellNext = hxxp://donboscohelchteren.smartschool.be/index.php?module=News&file=coursenews&function=main&courseID=1168
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=%s
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\gast2\Application Data\Mozilla\Firefox\Profiles\oj5djuug.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.ask.com/?o=13928&l=dis
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2009-07-04 10:15
Windows 5.1.2600 Service Pack 3 NTFS
scannen van verborgen processen ...
scannen van verborgen autostart items ...
scannen van verborgen bestanden ...
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
- - - - - - - > 'explorer.exe'(3388)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\F-Secure\Anti-Virus\fsgk32st.exe
c:\program files\F-Secure\Anti-Virus\fsgk32.exe
c:\program files\F-Secure\BackWeb\7681197\Program\backWeb-7681197.exe
c:\program files\F-Secure\Anti-Virus\fssm32.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\program files\F-Secure\Common\FSMA32.exe
c:\program files\F-Secure\Common\FSMB32.exe
c:\program files\F-Secure\Common\fch32.exe
c:\program files\F-Secure\Common\FNRB32.exe
c:\program files\F-Secure\Common\FAMEH32.exe
c:\program files\F-Secure\Common\FIH32.exe
c:\program files\F-Secure\Anti-Virus\fsav32.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Voltooingstijd: 2009-07-04 10:22 - machine werd herstart
ComboFix-quarantined-files.txt 2009-07-04 08:22
ComboFix2.txt 2009-06-18 13:37
Pre-Run: 134.025.064.448 bytes beschikbaar
Post-Run: 133.978.128.384 bytes beschikbaar
335 --- E O F --- 2009-06-20 15:32
-
hier mijn logje:
ComboFix 09-07-02.02 - gast2 03/07/2009 18:43:00.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.500 [GMT 2:00]
Gestart vanuit: C:\Documents and Settings\gast2\Bureaublad\scan.exe.exe
AV: F-Secure Anti-Virus 5.43 *On-access scanning enabled* (Updated) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Voorgaande Run -------
.
C:\WINDOWS\Installer\c5c9a.msi
C:\WINDOWS\TEMP\IadHide4.dll
.
(((((((((((((((((((( Bestanden Gemaakt van 2009-06-03 to 2009-07-03 ))))))))))))))))))))))))))))))
.
2009-07-02 18:41:34 . 2009-07-02 18:41:34 0 d-----w- C:\Program Files\Smart Projects
2009-07-02 12:04:02 . 2009-07-02 12:04:02 0 d-----w- C:\Program Files\AskSearch
2009-07-02 12:04:01 . 2009-07-02 12:04:01 0 d-----w- C:\Program Files\AskBarDis
2009-07-02 12:02:49 . 2009-07-03 16:35:42 0 d-----w- C:\Documents and Settings\gast2\Application Data\uTorrent
2009-07-02 11:52:21 . 2009-07-02 11:54:32 0 d-----w- C:\WINDOWS\system32\NtmsData
2009-07-02 11:38:21 . 2009-07-03 16:33:57 0 d-----w- C:\Program Files\Steam
2009-06-27 11:19:14 . 2009-06-27 12:11:25 0 d-----w- C:\Documents and Settings\gast2\Application Data\BSplayer
2009-06-27 11:19:14 . 2009-06-27 11:19:14 0 d-----w- C:\Documents and Settings\gast2\Application Data\BSplayer Pro
2009-06-27 09:01:39 . 1998-07-08 15:30:36 18944 ----a-w- C:\WINDOWS\eraser.exe
2009-06-27 09:01:38 . 2009-06-27 09:04:53 0 d-----w- C:\Program Files\LeechFTP
2009-06-22 20:10:03 . 2009-06-22 20:10:03 70704 ----a-w- C:\Documents and Settings\gerdi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-22 19:52:01 . 2009-06-22 19:52:01 0 d-----w- C:\Documents and Settings\gerdi\Local Settings\Application Data\Apple Computer
2009-06-21 10:03:08 . 2009-06-21 10:03:08 0 d-----w- C:\Documents and Settings\gast2\Application Data\Apple Computer
2009-06-21 10:02:38 . 2009-03-19 14:32:48 23400 ----a-w- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2009-06-21 10:02:38 . 2008-04-17 10:12:54 107368 ----a-w- C:\WINDOWS\system32\GEARAspi.dll
2009-06-21 10:01:58 . 2009-06-21 10:01:58 0 d-----w- C:\Program Files\iPod
2009-06-21 10:01:38 . 2009-06-21 10:02:34 0 d-----w- C:\Program Files\iTunes
2009-06-21 10:01:38 . 2009-06-21 10:02:34 0 d-----w- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-21 10:01:10 . 2009-06-21 10:01:11 0 d-----w- C:\Program Files\Bonjour
2009-06-21 09:58:59 . 2009-06-21 10:00:43 0 d-----w- C:\Program Files\QuickTime
2009-06-21 09:58:56 . 2009-06-21 10:01:38 0 d-----w- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-06-21 09:58:01 . 2009-06-21 09:58:01 0 d-----w- C:\Documents and Settings\gast2\Local Settings\Application Data\Apple
2009-06-21 09:57:51 . 2009-06-21 09:57:55 0 d-----w- C:\Program Files\Apple Software Update
2009-06-21 09:54:16 . 2009-06-21 10:01:55 0 d-----w- C:\Program Files\Common Files\Apple
2009-06-21 09:54:08 . 2009-06-21 09:54:08 0 d-----w- C:\Documents and Settings\All Users\Application Data\Apple
2009-06-21 09:51:34 . 2009-06-21 10:03:09 0 d-----w- C:\Documents and Settings\gast2\Local Settings\Application Data\Apple Computer
2009-06-18 13:50:13 . 2009-06-18 13:50:13 0 d-----w- C:\Program Files\VALVe
2009-06-17 18:01:12 . 2009-06-17 18:01:13 0 d-----w- C:\Program Files\HD Tune
2009-06-17 11:01:07 . 2009-06-17 11:01:07 0 d-s---w- C:\Documents and Settings\gast2\UserData
2009-06-16 11:57:44 . 2009-06-16 12:09:14 0 d-----w- C:\Documents and Settings\gast2\Contacts
2009-06-16 11:56:39 . 2009-06-16 11:56:39 70704 ----a-w- C:\Documents and Settings\gast2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-16 11:52:40 . 2009-07-01 07:42:21 34 ----a-w- C:\Documents and Settings\gast2\jagex_runescape_preferences.dat
2009-06-16 11:49:56 . 2009-06-16 11:49:56 0 d-----w- C:\Documents and Settings\gast2\Local Settings\Application Data\Mozilla
2009-06-15 17:56:08 . 2009-06-15 19:44:27 0 d-----w- C:\WINDOWS\SxsCaPendDel
2009-06-15 16:27:00 . 2009-06-15 16:28:36 34 ----a-w- C:\Documents and Settings\gerdi\jagex_runescape_preferences.dat
2009-06-15 16:26:58 . 2009-06-15 16:26:58 0 d-----w- C:\.jagex_cache_32
2009-06-15 16:05:38 . 2009-06-15 16:25:18 0 d-----w- C:\Documents and Settings\gerdi\Local Settings\Application Data\TSVNCache
2009-06-14 18:24:31 . 2009-06-14 18:40:25 2946 ----a-w- C:\WINDOWS\regof1.dll
2009-06-14 18:20:25 . 2009-06-14 18:20:25 0 d-----w- C:\Program Files\uTorrent
2009-06-14 17:53:51 . 2009-06-14 18:22:40 5172 ----a-w- C:\WINDOWS\regof2.dll
2009-06-13 11:54:23 . 2009-06-13 11:54:23 0 d-----w- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
2009-06-13 11:52:33 . 2009-06-15 19:44:27 0 d-----w- C:\Program Files\Google
2009-06-12 16:28:16 . 2009-06-12 16:28:16 0 d-----w- C:\Program Files\Common Files\Bcgsoft
2009-06-12 15:36:33 . 2004-07-14 10:54:42 676864 ----a-w- C:\WINDOWS\system32\drivers\hardlock.sys
2009-06-12 15:36:19 . 2009-06-12 15:36:19 6656 ----a-w- C:\WINDOWS\system32\haspvdd.dll
2009-06-12 15:36:19 . 2009-06-12 15:36:19 47616 ----a-w- C:\WINDOWS\system32\drivers\Haspnt.sys
2009-06-12 15:36:19 . 2009-06-12 15:36:19 383 ----a-w- C:\WINDOWS\system32\haspdos.sys
2009-06-12 05:51:46 . 2009-06-15 17:54:26 0 d-----w- C:\Program Files\Ghost Control
2009-06-12 05:51:46 . 2009-06-12 05:58:37 0 d-----w- C:\Documents and Settings\All Users\Application Data\Ghost Controls
2009-06-09 20:13:51 . 2009-07-03 16:31:28 12 ----a-w- C:\WINDOWS\bthservsdp.dat
2009-06-09 15:02:16 . 2009-06-21 16:55:18 0 d-----w- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2009-06-08 18:09:26 . 2009-06-08 18:09:27 0 d-----w- C:\Program Files\Messenger Plus! Live
2009-06-07 18:08:49 . 2009-06-14 12:33:59 402944 ----a-w- C:\WINDOWS\system32AKV.exe
2009-06-05 15:48:55 . 2009-06-05 16:08:26 0 d-----w- C:\WINDOWS\system32\Adobe
2009-06-05 11:57:34 . 2009-06-05 11:57:34 75048 ----a-w- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
2009-06-04 15:52:20 . 2009-06-04 15:52:20 0 d-----w- C:\Documents and Settings\All Users\Application Data\NVIDIA
2009-06-04 15:47:19 . 2009-06-04 15:50:41 0 d-----w- C:\WINDOWS\nview
2009-06-04 15:47:19 . 2006-10-22 10:22:00 208896 ----a-w- C:\WINDOWS\system32\nvudisp.exe
2009-06-04 15:46:29 . 2006-10-22 13:06:52 208896 ----a-w- C:\WINDOWS\system32\NVUNINST.EXE
2009-06-04 15:46:07 . 2009-06-04 15:46:07 0 d-----w- C:\NVIDIA
2009-06-04 15:36:44 . 2009-06-04 15:36:49 0 d-----w- C:\Program Files\SystemRequirementsLab
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-18 15:59:15 . 2009-05-12 15:27:55 0 d-----w- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-06-15 17:57:10 . 2009-05-19 15:06:57 0 d-----w- C:\Documents and Settings\All Users\Application Data\RapidSolution
2009-06-13 16:38:25 . 2009-05-11 16:36:49 0 d-----w- C:\Program Files\Common Files\Adobe
2009-06-13 08:01:53 . 2009-06-12 15:35:41 0 d-----w- C:\Program Files\SEE Electrical
2009-06-12 15:35:41 . 2009-05-11 13:55:59 0 d--h--w- C:\Program Files\InstallShield Installation Information
2009-06-12 15:05:48 . 2009-05-11 13:55:51 0 d-----w- C:\Program Files\Common Files\InstallShield
2009-06-09 20:13:40 . 2009-05-30 08:58:51 0 d---a-w- C:\Documents and Settings\All Users\Application Data\TEMP
2009-06-02 16:30:27 . 2009-05-26 15:21:16 25512 ----a-w- C:\WINDOWS\system32\drivers\ggsemc.sys
2009-06-02 16:30:27 . 2009-05-26 15:21:16 13224 ----a-w- C:\WINDOWS\system32\drivers\ggflt.sys
2009-05-30 08:58:14 . 2009-05-30 08:57:28 0 d-----w- C:\Program Files\Matrix Multimedia
2009-05-30 08:57:41 . 2009-05-27 17:07:54 0 d-----w- C:\Program Files\DIFX
2009-05-30 08:57:05 . 2009-05-30 08:56:31 0 d-----w- C:\Program Files\Common Files\Wise Installation Wizard
2009-05-30 06:31:38 . 2004-08-04 12:00:00 367600 ----a-w- C:\WINDOWS\system32\perfh013.dat
2009-05-30 06:31:37 . 2004-08-04 12:00:00 54698 ----a-w- C:\WINDOWS\system32\perfc013.dat
2009-05-27 19:03:52 . 2009-05-26 15:03:43 0 d-----w- C:\Program Files\Sony Ericsson
2009-05-27 19:03:51 . 2009-05-26 15:03:53 0 d-----w- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2009-05-27 19:03:50 . 2009-05-26 15:03:46 0 d-----w- C:\Program Files\Common Files\Teleca Shared
2009-05-27 18:06:26 . 2009-05-27 18:04:17 0 d-----w- C:\Documents and Settings\gerdi\Application Data\Nokia
2009-05-27 18:03:48 . 2009-05-27 18:03:32 0 d-----w- C:\Documents and Settings\gerdi\Application Data\Teleca
2009-05-27 18:03:25 . 2009-05-27 18:03:25 0 d-----w- C:\Documents and Settings\gerdi\Application Data\PC Suite
2009-05-27 17:11:03 . 2009-05-27 17:09:31 0 d-----w- C:\Documents and Settings\All Users\Application Data\PC Suite
2009-05-27 17:07:45 . 2009-05-27 17:07:44 0 d-----w- C:\Program Files\PC Connectivity Solution
2009-05-27 17:07:01 . 2009-05-27 17:07:01 8192 ----a-w- C:\Documents and Settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstCCD.exe
2009-05-27 17:07:01 . 2009-05-27 17:07:01 15360 ----a-w- C:\Documents and Settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
2009-05-27 17:07:00 . 2009-05-27 17:07:00 9728 ----a-w- C:\Documents and Settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCS.exe
2009-05-27 16:38:39 . 2009-05-27 16:38:27 0 d-----w- C:\Documents and Settings\All Users\Application Data\Installations
2009-05-27 16:32:46 . 2009-05-27 16:32:46 0 d-----w- C:\Documents and Settings\All Users\Application Data\Avanquest Bluetooth SDK
2009-05-26 16:16:00 . 2009-05-26 16:16:00 0 ---ha-w- C:\WINDOWS\system32\drivers\Msft_Kernel_ggsemc_01007.Wdf
2009-05-26 16:15:59 . 2009-05-26 16:15:59 0 ---ha-w- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-05-26 15:24:46 . 2009-05-26 15:24:46 0 d-----w- C:\Documents and Settings\All Users\Application Data\BVRP Software
2009-05-26 15:23:27 . 2009-05-26 15:23:27 148736 ----a-w- C:\Documents and Settings\All Users\Application Data\hpe259.dll
2009-05-26 15:23:27 . 2009-05-26 15:23:27 148736 ----a-w- C:\Documents and Settings\All Users\Application Data\hpe259.dll
2009-05-26 15:22:34 . 2009-05-26 15:22:34 0 d-----w- C:\Program Files\Sony Setup
2009-05-26 15:20:48 . 2009-05-26 15:21:16 1107296 ----a-w- C:\WINDOWS\system32\WdfCoInstaller01007.dll
2009-05-25 18:59:47 . 2009-05-25 18:59:47 0 d-----w- C:\Program Files\Xilisoft
2009-05-19 15:09:14 . 2009-05-19 15:09:13 0 d-----w- C:\Program Files\PixiePack Codec Pack
2009-05-19 15:09:04 . 2009-05-19 15:09:02 466944 ----a-w- C:\Documents and Settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\MusicLoad.dll
2009-05-19 15:09:02 . 2009-05-19 15:09:00 197912 ----a-w- C:\Documents and Settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgSoundclick.dll
2009-05-19 15:09:00 . 2009-05-19 15:08:59 177432 ----a-w- C:\Documents and Settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgIJigg.dll
2009-05-19 15:06:57 . 2009-05-19 15:06:57 0 d-----w- C:\Program Files\RapidSolution
2009-05-18 15:38:02 . 2009-05-18 15:38:02 249856 ----a-w- C:\WINDOWS\Setup1.exe
2009-05-18 15:38:00 . 2009-05-18 15:37:59 73216 ----a-w- C:\WINDOWS\ST6UNST.EXE
2009-05-16 11:00:57 . 2009-05-16 11:00:57 0 d-----w- C:\Program Files\Webteh
2009-05-16 10:57:42 . 2009-05-16 10:57:42 0 d-----w- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2009-05-16 10:57:19 . 2009-05-16 10:56:49 0 d-----w- C:\Program Files\Common Files\AVSMedia
2009-05-16 09:21:45 . 2009-05-11 08:14:45 86327 ----a-w- C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat
2009-05-15 15:45:38 . 2009-05-15 15:45:38 0 d-----w- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2009-05-12 19:59:19 . 2009-05-12 19:58:32 0 d-----w- C:\Program Files\Common Files\DVDVideoSoft
2009-05-12 19:59:13 . 2009-05-12 19:59:13 0 d-----w- C:\Program Files\DVDVideoSoft
2009-05-12 15:47:56 . 2009-05-12 15:47:55 0 d-----w- C:\Program Files\Microsoft Works
2009-05-12 15:47:43 . 2009-05-12 15:47:43 0 d-----w- C:\Program Files\MSBuild
2009-05-11 18:14:37 . 2009-05-11 18:06:42 0 d-----w- C:\Program Files\Windows Live
2009-05-11 18:14:14 . 2009-05-11 18:07:10 0 dcsh--w- C:\Program Files\Common Files\WindowsLiveInstaller
2009-05-11 18:06:34 . 2009-05-11 18:06:34 0 d-----w- C:\Documents and Settings\All Users\Application Data\WLInstaller
2009-05-11 17:37:42 . 2009-05-11 17:37:42 0 d-----w- C:\Program Files\Common Files\Windows Live
2009-05-11 17:03:53 . 2009-05-11 17:04:04 410984 ----a-w- C:\WINDOWS\system32\deploytk.dll
2009-05-11 17:03:50 . 2009-05-11 17:03:50 0 d-----w- C:\Program Files\Java
2009-05-11 16:53:08 . 2009-05-11 16:53:08 0 ----a-w- C:\WINDOWS\nsreg.dat
2009-05-11 16:39:05 . 2009-05-11 16:39:05 0 d-----w- C:\Documents and Settings\All Users\Application Data\Prism
2009-05-11 16:38:00 . 2009-05-11 16:38:00 15781 ----a-w- C:\WINDOWS\system32\drivers\mdc8021x.sys
2009-05-11 16:37:58 . 2009-05-11 16:37:58 0 d-----w- C:\Program Files\philips
2009-05-11 14:01:42 . 2009-05-11 14:01:42 81920 ----a-r- C:\WINDOWS\bwUnin-6.1.4.58-7681197L.exe
2009-05-11 14:01:29 . 2009-05-11 14:01:17 0 d-----w- C:\Program Files\F-Secure
2009-05-11 13:56:12 . 2009-05-11 13:56:12 0 d-----w- C:\Program Files\Realtek Sound Manager
2009-05-11 13:56:12 . 2009-05-11 13:56:12 0 d-----w- C:\Program Files\AvRack
2009-05-11 13:56:06 . 2009-05-11 13:56:04 0 d-----w- C:\Program Files\Realtek AC97
2009-05-11 08:15:55 . 2009-05-11 08:15:55 0 d-----w- C:\Program Files\microsoft frontpage
2009-05-11 08:12:34 . 2009-05-11 08:12:34 21748 ----a-w- C:\WINDOWS\system32\emptyregdb.dat
2009-05-07 15:34:08 . 2004-08-04 12:00:00 347136 ----a-w- C:\WINDOWS\system32\localspl.dll
2009-04-29 04:46:56 . 2004-08-04 12:00:00 669696 ----a-w- C:\WINDOWS\system32\wininet.dll
2009-04-29 04:46:54 . 2004-08-04 12:00:00 81920 ----a-w- C:\WINDOWS\system32\ieencode.dll
2009-04-22 05:06:06 . 2009-04-22 05:06:06 499712 ----a-w- C:\WINDOWS\system32\msvcp71.dll
2009-04-22 05:06:06 . 2009-04-22 05:06:06 348160 ----a-w- C:\WINDOWS\system32\msvcr71.dll
2009-04-22 05:06:06 . 2009-04-22 05:06:06 1060864 ----a-w- C:\WINDOWS\system32\MFC71.dll
2009-04-19 19:51:42 . 2004-08-04 12:00:00 1847296 ----a-w- C:\WINDOWS\system32\win32k.sys
2009-04-15 14:55:06 . 2004-08-04 12:00:00 585216 ----a-w- C:\WINDOWS\system32\rpcrt4.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-06-18_13.29.45 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-03 16:32:43 . 2009-07-03 16:32:43 16384 C:\WINDOWS\Temp\Perflib_Perfdata_75c.dat
+ 2009-05-27 18:13:04 . 2008-07-09 07:44:08 18808 C:\WINDOWS\system32\spmsg.dll
+ 2009-06-21 09:57:28 . 2009-06-05 09:42:38 39424 C:\WINDOWS\system32\DRVSTORE\usbaapl_872A2434B7205D4BD84BBE53811BDCE15F347D5B\usbaapl.sys
+ 2009-06-21 09:57:36 . 2009-06-05 09:42:28 17408 C:\WINDOWS\system32\DRVSTORE\netaapl_F433E854B3FF3BEE74986FDE8E16A64162342BFF\netaapl.sys
+ 2009-06-21 10:02:38 . 2009-03-19 14:32:48 23400 C:\WINDOWS\system32\DRVSTORE\GEARAspiWD_F475AF659D36685632E9BD97B57E9D9661FF3FFD\x86\GEARAspiWDM.sys
+ 2008-12-12 09:11:46 . 2008-12-12 09:11:46 61440 C:\WINDOWS\system32\dnssd.dll
+ 2008-12-12 09:18:16 . 2008-12-12 09:18:16 87336 C:\WINDOWS\system32\dns-sd.exe
+ 2009-02-20 08:12:15 . 2009-04-29 04:46:54 81920 C:\WINDOWS\system32\dllcache\ieencode.dll
- 2009-02-20 08:12:15 . 2009-02-20 08:12:15 81920 C:\WINDOWS\system32\dllcache\ieencode.dll
+ 2009-05-12 15:28:58 . 2009-05-12 15:28:58 48128 C:\WINDOWS\Installer\c5c5d.msi
+ 2009-05-15 14:49:53 . 2009-05-15 14:49:53 92672 C:\WINDOWS\Installer\765ef.msi
- 2009-05-12 15:49:45 . 2009-05-13 17:12:00 35088 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:19 35088 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-05-12 15:49:45 . 2009-05-13 17:11:59 18704 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:19 18704 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-05-12 15:49:45 . 2009-05-13 17:11:59 20240 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:19 20240 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-06-21 09:58:08 . 2009-06-21 09:58:08 27136 C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
+ 2009-06-21 10:01:15 . 2009-06-21 10:01:15 86016 C:\WINDOWS\Installer\{07287123-B8AC-41CE-8346-3D777245C35B}\PrntWzrdIco.exe
- 2009-06-17 18:55:26 . 2009-06-17 18:55:26 27648 C:\WINDOWS\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe
+ 2009-07-02 11:38:22 . 2009-07-02 11:38:22 27648 C:\WINDOWS\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe
+ 2009-05-19 14:55:06 . 2009-07-01 07:42:09 49152 C:\WINDOWS\.jagex_cache_32\runescape\jagmisc.dll
- 2009-05-19 14:55:06 . 2009-06-16 17:02:57 49152 C:\WINDOWS\.jagex_cache_32\runescape\jagmisc.dll
+ 2009-05-19 14:55:05 . 2009-07-01 07:42:09 77824 C:\WINDOWS\.jagex_cache_32\runescape\jaggl.dll
- 2009-05-19 14:55:05 . 2009-06-16 17:02:57 77824 C:\WINDOWS\.jagex_cache_32\runescape\jaggl.dll
+ 2004-08-04 12:00:00 . 2008-06-18 03:03:08 938496 C:\WINDOWS\system32\WMNetmgr.dll
+ 2004-08-04 12:00:00 . 2007-10-25 07:28:30 222720 C:\WINDOWS\system32\wmasf.dll
+ 2004-08-04 12:00:00 . 2009-04-29 04:46:57 620544 C:\WINDOWS\system32\urlmon.dll
+ 2004-08-04 12:00:00 . 2006-12-04 14:21:50 414720 C:\WINDOWS\system32\msscp.dll
+ 2004-08-04 12:00:00 . 2008-06-17 23:09:22 100864 C:\WINDOWS\system32\logagent.exe
- 2004-08-04 12:00:00 . 2006-10-18 18:03:58 100864 C:\WINDOWS\system32\logagent.exe
- 2009-05-11 09:02:10 . 2009-05-27 11:00:05 270192 C:\WINDOWS\system32\FNTCACHE.DAT
+ 2009-05-11 09:02:10 . 2009-06-18 16:01:57 270192 C:\WINDOWS\system32\FNTCACHE.DAT
+ 2009-06-21 10:02:38 . 2008-04-17 10:12:54 107368 C:\WINDOWS\system32\DRVSTORE\GEARAspiWD_F475AF659D36685632E9BD97B57E9D9661FF3FFD\x86\GEARAspi.dll
+ 2004-08-04 12:00:00 . 2008-06-18 03:03:08 938496 C:\WINDOWS\system32\dllcache\WMNetmgr.dll
+ 2004-08-04 12:00:00 . 2007-10-25 07:28:30 222720 C:\WINDOWS\system32\dllcache\wmasf.dll
+ 2009-02-20 08:12:17 . 2009-04-29 04:46:56 669696 C:\WINDOWS\system32\dllcache\wininet.dll
+ 2009-02-20 08:12:17 . 2009-04-29 04:46:57 620544 C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2009-04-15 14:55:06 . 2009-04-15 14:55:06 585216 C:\WINDOWS\system32\dllcache\rpcrt4.dll
+ 2004-08-04 12:00:00 . 2006-12-04 14:21:50 414720 C:\WINDOWS\system32\dllcache\msscp.dll
+ 2004-08-04 12:00:00 . 2008-06-17 23:09:22 100864 C:\WINDOWS\system32\dllcache\logagent.exe
- 2004-08-04 12:00:00 . 2006-10-18 18:03:58 100864 C:\WINDOWS\system32\dllcache\logagent.exe
+ 2009-05-07 15:34:08 . 2009-05-07 15:34:08 347136 C:\WINDOWS\system32\dllcache\localspl.dll
+ 2009-05-12 15:30:01 . 2009-05-12 15:30:01 502784 C:\WINDOWS\Installer\c5c82.msi
+ 2009-05-12 15:29:54 . 2009-05-12 15:29:54 506880 C:\WINDOWS\Installer\c5c7d.msi
+ 2009-05-12 15:29:40 . 2009-05-12 15:29:40 516608 C:\WINDOWS\Installer\c5c77.msi
+ 2009-05-12 15:29:31 . 2009-05-12 15:29:31 513536 C:\WINDOWS\Installer\c5c71.msi
+ 2009-05-12 15:29:20 . 2009-05-12 15:29:20 505344 C:\WINDOWS\Installer\c5c6c.msi
+ 2009-05-30 08:57:29 . 2009-05-30 08:57:29 883712 C:\WINDOWS\Installer\8a421d.msi
+ 2009-05-16 10:56:49 . 2009-05-16 10:56:49 331264 C:\WINDOWS\Installer\32a62.msi
+ 2009-05-16 10:54:46 . 2009-05-16 10:54:46 804864 C:\WINDOWS\Installer\32a5b.msi
+ 2009-05-27 17:07:52 . 2009-05-27 17:07:52 409600 C:\WINDOWS\Installer\269b75.msi
+ 2009-05-11 08:20:33 . 2009-05-11 08:20:33 265216 C:\WINDOWS\Installer\1a017.msi
+ 2009-05-19 15:09:16 . 2009-05-19 15:09:16 304128 C:\WINDOWS\Installer\179090.msi
+ 2009-05-11 17:03:52 . 2009-05-11 17:03:52 598016 C:\WINDOWS\Installer\124840.msi
+ 2009-05-11 18:06:45 . 2009-05-11 18:06:45 467968 C:\WINDOWS\Installer\10b53c.msi
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:19 888080 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-05-12 15:49:45 . 2009-05-13 17:12:00 888080 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:18 272648 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-05-12 15:49:45 . 2009-05-13 17:11:59 272648 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:59 922384 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:18 922384 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:59 845584 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:18 845584 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2009-05-12 15:49:45 . 2009-06-18 15:59:18 217864 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2009-05-12 15:49:45 . 2009-05-13 17:11:59 217864 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:59 184080 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:18 184080 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:58 159504 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:18 159504 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-06-21 10:03:13 . 2009-06-21 10:03:13 102400 C:\WINDOWS\Installer\{5D601655-6D54-4384-B52C-17EC5385FBBD}\iTunesIco.exe
- 2009-05-26 15:49:55 . 2009-05-30 19:59:54 101948 C:\WINDOWS\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2009-05-26 15:49:55 . 2009-07-01 07:45:58 101948 C:\WINDOWS\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2004-08-04 12:00:00 . 2008-06-18 03:03:14 2458112 C:\WINDOWS\system32\WMVCore.dll
+ 2004-08-04 12:00:00 . 2004-08-04 12:00:00 1355264 C:\WINDOWS\system32\webfldrs.msi
+ 2004-08-04 12:00:00 . 2009-04-29 04:46:56 1499136 C:\WINDOWS\system32\shdocvw.dll
- 2004-08-04 12:00:00 . 2009-03-02 23:12:07 1499136 C:\WINDOWS\system32\shdocvw.dll
+ 2004-08-04 12:00:00 . 2009-04-29 04:47:00 3089920 C:\WINDOWS\system32\mshtml.dll
+ 2009-06-21 09:57:28 . 2009-06-05 09:42:38 2060288 C:\WINDOWS\system32\DRVSTORE\usbaapl_872A2434B7205D4BD84BBE53811BDCE15F347D5B\usbaaplrc.dll
+ 2009-06-21 09:57:36 . 2009-06-05 09:42:30 1419232 C:\WINDOWS\system32\DRVSTORE\netaapl_F433E854B3FF3BEE74986FDE8E16A64162342BFF\wdfcoinstaller01005.dll
+ 2004-08-04 12:00:00 . 2008-06-18 03:03:14 2458112 C:\WINDOWS\system32\dllcache\WMVCore.dll
+ 2009-05-11 16:52:35 . 2009-04-19 19:51:42 1847296 C:\WINDOWS\system32\dllcache\win32k.sys
+ 2009-03-02 23:12:07 . 2009-04-29 04:46:56 1499136 C:\WINDOWS\system32\dllcache\shdocvw.dll
- 2009-03-02 23:12:07 . 2009-03-02 23:12:07 1499136 C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2009-02-20 08:12:19 . 2009-04-29 04:47:00 3089920 C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2009-05-12 16:28:34 . 2004-08-04 12:00:00 1355264 C:\WINDOWS\ServicePackFiles\i386\webfldrs.msi
+ 2008-02-15 06:54:20 . 2008-02-15 06:54:20 9736192 C:\WINDOWS\Installer\f31057.msp
+ 2009-03-28 07:50:10 . 2009-03-28 07:50:10 5025792 C:\WINDOWS\Installer\f31042.msp
+ 2009-06-21 10:03:12 . 2009-06-21 10:03:12 4074496 C:\WINDOWS\Installer\e20cf59.msi
+ 2009-06-21 10:01:14 . 2009-06-21 10:01:14 1659392 C:\WINDOWS\Installer\e20cf55.msi
+ 2009-06-21 10:00:17 . 2009-06-21 10:00:22 8992256 C:\WINDOWS\Installer\e20cf50.msi
+ 2009-06-21 09:58:05 . 2009-06-21 09:58:06 1549312 C:\WINDOWS\Installer\e20cf4b.msi
+ 2009-06-21 09:57:39 . 2009-06-21 09:57:39 3295232 C:\WINDOWS\Installer\e20cf46.msi
+ 2009-05-12 15:30:36 . 2009-05-12 15:30:36 1642496 C:\WINDOWS\Installer\c5c99.msi
+ 2009-05-12 15:30:27 . 2009-05-12 15:30:27 1655296 C:\WINDOWS\Installer\c5c94.msi
+ 2009-05-12 15:30:15 . 2009-05-12 15:30:15 1655808 C:\WINDOWS\Installer\c5c8e.msi
+ 2009-05-12 15:30:08 . 2009-05-12 15:30:08 1655296 C:\WINDOWS\Installer\c5c88.msi
+ 2009-05-12 15:29:11 . 2009-05-12 15:29:11 2347520 C:\WINDOWS\Installer\c5c67.msi
+ 2009-05-12 15:29:03 . 2009-05-12 15:29:03 1649664 C:\WINDOWS\Installer\c5c62.msi
+ 2009-05-12 15:28:54 . 2009-05-12 15:28:54 1643520 C:\WINDOWS\Installer\c5c55.msi
+ 2009-05-12 15:28:44 . 2009-05-12 15:28:44 2025472 C:\WINDOWS\Installer\c5c4f.msi
+ 2009-05-12 15:28:22 . 2009-05-12 15:28:22 1752064 C:\WINDOWS\Installer\c5c49.msi
+ 2009-05-12 15:28:09 . 2009-05-12 15:28:09 2415616 C:\WINDOWS\Installer\c5c44.msi
+ 2009-05-07 07:17:54 . 2009-05-07 07:17:54 5026816 C:\WINDOWS\Installer\40ea1e.msp
+ 2009-05-11 16:37:58 . 2009-05-11 16:37:58 4962304 C:\WINDOWS\Installer\2d93a.msi
+ 2009-07-02 11:38:21 . 2009-07-02 11:38:21 1100288 C:\WINDOWS\Installer\28c38f.msi
+ 2009-02-25 17:08:18 . 2009-02-25 17:08:18 8311808 C:\WINDOWS\Installer\171b314.msp
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:17 1172240 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:58 1172240 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-05-12 15:49:44 . 2009-05-13 17:11:58 1165584 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-05-12 15:49:44 . 2009-06-18 15:59:17 1165584 C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-05-11 16:37:45 . 2009-05-11 16:37:42 7326208 C:\WINDOWS\Downloaded Installations\{71B2E4C1-DBB2-4F41-9E89-92E9C0D444C6}\Philips Wireless USB Adapter 11g.msi
+ 2009-05-15 14:45:07 . 2009-06-01 16:51:12 23635392 C:\WINDOWS\system32\MRT.exe
+ 2009-05-12 15:49:41 . 2009-05-12 15:49:41 18181632 C:\WINDOWS\Installer\75db5.msi
+ 2009-05-26 15:02:47 . 2009-05-26 15:02:24 37669404 C:\WINDOWS\Downloaded Installations\{88B3F189-8552-47EB-82EE-9F63BD9A28EA}\Sony Ericsson PC Suite 1.20.224.msi
+ 2009-05-26 15:03:18 . 2009-05-26 15:02:24 37669404 C:\WINDOWS\Downloaded Installations\{7689CA7A-1270-425A-9959-EB4CB25EA29A}\Sony Ericsson PC Suite 1.20.224.msi
.
-- Snapshot teruggezet naar huidige datum --
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2009-04-02 10:47:00 333192 ----a-w- C:\Program Files\AskBarDis\bar\bin\askBar.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 17:02:53 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 09:34:52 5724184]
"Steam"="c:\program files\steam\steam.exe" [2009-07-02 19:57:53 1217784]
"uTorrent"="C:\Program Files\uTorrent\uTorrent.exe" [2009-07-02 12:03:54 288048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="C:\Program Files\F-Secure\Common\FSM32.EXE" [2002-12-05 14:24:32 106571]
"PRISMSVR.EXE"="C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" [2004-04-26 12:26:12 295001]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2009-05-11 17:03:54 148888]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 22:47:42 31016]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-10-22 10:22:00 7700480]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-10-22 10:22:00 86016]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2009-05-26 15:18:30 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2009-06-05 11:39:22 292136]
"SoundMan"="SOUNDMAN.EXE" - C:\WINDOWS\soundman.exe [2006-11-17 03:42:52 577536]
"BluetoothAuthenticationAgent"="bthprops.cpl" - C:\WINDOWS\system32\bthprops.cpl [2008-04-14 17:03:20 110592]
"nwiz"="nwiz.exe" - C:\WINDOWS\system32\nwiz.exe [2006-10-22 10:22:00 1622016]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 17:02:53 15360]
C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\
Philips Wireless USB Adapter 11g.lnk - C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe [2004-8-9 344064]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\steam\\Steam.exe"=
"C:\\Program Files\\VALVe\\Counter-Strike Source\\hl2.exe"=
R2 BackWeb Client - 7681197;F-Secure BackWeb;C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE [11/05/2009 16:01:46 16384]
R2 F-Secure Filter;F-Secure File System Filter;C:\Program Files\F-Secure\Anti-Virus\win2k\FSfilter.sys [11/05/2009 16:01:24 48720]
R2 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\F-Secure\Anti-Virus\win2k\fsgk.sys [11/05/2009 16:01:24 42672]
R2 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\F-Secure\Anti-Virus\win2k\FSrec.sys [11/05/2009 16:01:24 16048]
R2 FSpm;F-Secure Policy Manager;C:\Program Files\F-Secure\Common\FSpm.sys [11/05/2009 16:01:18 65328]
R3 CPWUA2F;Wireless USB Adapter 11g;C:\WINDOWS\system32\drivers\CPWUA2F.sys [11/05/2009 18:38:37 380160]
S2 ASKUpgrade;ASKUpgrade;C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [2/07/2009 14:04:06 234888]
S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\drivers\ggflt.sys [26/05/2009 17:21:16 13224]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);C:\WINDOWS\system32\drivers\s0016bus.sys [26/05/2009 17:23:29 89256]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);C:\WINDOWS\system32\drivers\s0017bus.sys [26/05/2009 17:23:30 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;C:\WINDOWS\system32\drivers\s0017mdfl.sys [26/05/2009 17:23:30 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;C:\WINDOWS\system32\drivers\s0017mdm.sys [26/05/2009 17:23:30 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\drivers\s0017mgmt.sys [26/05/2009 17:23:31 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);C:\WINDOWS\system32\drivers\s0017nd5.sys [26/05/2009 17:23:31 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;C:\WINDOWS\system32\drivers\s0017obex.sys [26/05/2009 17:23:31 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);C:\WINDOWS\system32\drivers\s0017unic.sys [26/05/2009 17:23:31 109736]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44CB79C1-20D1-3C77-6898-264126473395}]
C:\WINDOWS\Poison-RAT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}]
C:\Program Files\PixiePack Codec Pack\InstallerHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{NAL503-AB-B70-7-11d2-9CBD-0AH6-9YJIL}]
C:\WINDOWS\system32\ssvchost.exe
.
Inhoud van de 'Gedeelde Taken' map
2009-06-21 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34:12 . 2008-07-30 10:34:12]
2009-06-27 C:\WINDOWS\Tasks\OGADaily.job
- C:\WINDOWS\system32\OGAVerify.exe [2008-12-31 15:04:42 . 2008-12-31 15:04:42]
2009-07-03 C:\WINDOWS\Tasks\OGALogon.job
- C:\WINDOWS\system32\OGAVerify.exe [2008-12-31 15:04:42 . 2008-12-31 15:04:42]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.ask.com/?o=13928&l=dis
uInternet Connection Wizard,ShellNext = hxxp://donboscohelchteren.smartschool.be/index.php?module=News&file=coursenews&function=main&courseID=1168
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=%s
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - C:\Documents and Settings\gast2\Application Data\Mozilla\Firefox\Profiles\oj5djuug.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.ask.com/?o=13928&l=dis
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
.
succes ermee
-
ok ik zal het logje maken maar even voor de duidelijkheid: andere DVD's werken wel in de DVD-schuif en op andere computers werkt de DVD wel
-
hallo,
Ik heb pas Counter-Strike source gekocht en ik wou het installeren, maar...
Er wordt gevraagt om de DVD in te steken dat doe ik dan, maar er gebeurt niets. Ook als ik naar "deze computer" ga dan blijkt er zich niets in de DVD schuif te zitten, heeft iemand hier een oplossing voor?
Dit past misschien niet direkt op dit forum maar ik denk niet dat het aan de DVD ligt want een kameraad van mij heeft ook zijn DVD geprobeert in mijn pc en dat lukt ook niet
Riban
-
alvast zeer hartelijk bedankt! ik kan terug mijn schijf openen maar hieronder toch mijn logje zodat je eens kan controleren enzo
Robin
p.s: kan er iemand mij een (eventueel gratis) goede virusscanner aanraden? Ik gebruik nu f-secure maar ik merk niet echt veel van zijn kwaliteiten
ComboFix 09-06-17.04 - |||||| 18/06/2009 15:21.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.626 [GMT 2:00]
Gestart vanuit: c:\documents and settings\||||||\Bureaublad\scan.exe.exe
AV: F-Secure Anti-Virus 5.43 *On-access scanning enabled* (Updated) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\drivers\gxvxcmqsbaoesfndevjixmkmlhmtvpkjynirr.sys
c:\windows\system32\drivers\gxvxcowfjxvkdvihbidbwwkexubymiturraav.sys
c:\windows\system32\drivers\gxvxcueuirqhdkmxowprqupmnknkyvvmaqoyx.sys
c:\windows\system32\drivers\gxvxcvypexymybyufrxdkddpkowbegemmqxnk.sys
c:\windows\system32\drivers\gxvxcxcphhctvluhfjrvuuubnukfiqaltqqyd.sys
c:\windows\system32\gxvxcssfvpykspyavbutsrvewbnmebppylvnb.dll
c:\windows\system32\gxvxcwcympqjheshrxdgbwucvqpkaxbfprxvd.dll
c:\windows\TEMP\IadHide4.dll
C:\Autorun.inf
c:\windows\system32\drivers\gxvxcmqsbaoesfndevjixmkmlhmtvpkjynirr.sys
c:\windows\system32\drivers\gxvxcowfjxvkdvihbidbwwkexubymiturraav.sys
c:\windows\system32\drivers\gxvxcueuirqhdkmxowprqupmnknkyvvmaqoyx.sys
c:\windows\system32\drivers\gxvxcvypexymybyufrxdkddpkowbegemmqxnk.sys
c:\windows\system32\drivers\gxvxcxcphhctvluhfjrvuuubnukfiqaltqqyd.sys
c:\windows\system32\drivers\MSIVXserv.sys
c:\windows\system32\gxvxccounter
c:\windows\system32\gxvxcssfvpykspyavbutsrvewbnmebppylvnb.dll
c:\windows\system32\gxvxcwcympqjheshrxdgbwucvqpkaxbfprxvd.dll
c:\windows\system32\rmnl.dll
c:\windows\Tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_gxvxcserv.sys
(((((((((((((((((((( Bestanden Gemaakt van 2009-05-18 to 2009-06-18 ))))))))))))))))))))))))))))))
.
2009-06-17 18:55 . 2009-06-17 19:00 -------- d-----w- c:\program files\steam
2009-06-17 18:01 . 2009-06-17 18:01 -------- d-----w- c:\program files\HD Tune
2009-06-17 11:01 . 2009-06-17 11:01 -------- d-s---w- c:\documents and settings\gast2\UserData
2009-06-16 11:57 . 2009-06-16 12:09 -------- d-----w- c:\documents and settings\gast2\Contacts
2009-06-16 11:56 . 2009-06-16 11:56 70704 ----a-w- c:\documents and settings\gast2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-16 11:52 . 2009-06-17 14:04 34 ----a-w- c:\documents and settings\gast2\jagex_runescape_preferences.dat
2009-06-16 11:49 . 2009-06-16 11:49 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Mozilla
2009-06-15 17:56 . 2009-06-15 19:44 -------- d-----w- c:\windows\SxsCaPendDel
2009-06-15 16:27 . 2009-06-15 16:28 34 ----a-w- c:\documents and settings\gerdi\jagex_runescape_preferences.dat
2009-06-15 16:26 . 2009-06-15 16:26 -------- d-----w- C:\.jagex_cache_32
2009-06-15 16:05 . 2009-06-15 16:25 -------- d-----w- c:\documents and settings\gerdi\Local Settings\Application Data\TSVNCache
2009-06-14 18:24 . 2009-06-14 18:40 2946 ----a-w- c:\windows\regof1.dll
2009-06-14 18:20 . 2009-06-14 18:20 -------- d-----w- c:\program files\uTorrent
2009-06-14 17:53 . 2009-06-14 18:22 5172 ----a-w- c:\windows\regof2.dll
2009-06-13 11:54 . 2009-06-13 11:54 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2009-06-13 11:52 . 2009-06-15 19:44 -------- d-----w- c:\program files\Google
2009-06-12 16:28 . 2009-06-12 16:28 -------- d-----w- c:\program files\Common Files\Bcgsoft
2009-06-12 15:36 . 2004-07-14 10:54 676864 ----a-w- c:\windows\system32\drivers\hardlock.sys
2009-06-12 15:36 . 2009-06-12 15:36 6656 ----a-w- c:\windows\system32\haspvdd.dll
2009-06-12 15:36 . 2009-06-12 15:36 47616 ----a-w- c:\windows\system32\drivers\Haspnt.sys
2009-06-12 15:36 . 2009-06-12 15:36 383 ----a-w- c:\windows\system32\haspdos.sys
2009-06-12 05:51 . 2009-06-15 17:54 -------- d-----w- c:\program files\Ghost Control
2009-06-12 05:51 . 2009-06-12 05:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Ghost Controls
2009-06-09 20:13 . 2009-06-18 13:27 12 ----a-w- c:\windows\bthservsdp.dat
2009-06-09 15:02 . 2009-06-09 15:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Messenger Plus!
2009-06-08 18:09 . 2009-06-08 18:09 -------- d-----w- c:\program files\Messenger Plus! Live
2009-06-07 18:08 . 2009-06-14 12:33 402944 ----a-w- c:\windows\system32AKV.exe
2009-06-05 15:48 . 2009-06-05 16:08 -------- d-----w- c:\windows\system32\Adobe
2009-06-04 15:52 . 2009-06-04 15:52 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA
2009-06-04 15:47 . 2009-06-04 15:50 -------- d-----w- c:\windows\nview
2009-06-04 15:47 . 2006-10-22 10:22 208896 ----a-w- c:\windows\system32\nvudisp.exe
2009-06-04 15:46 . 2006-10-22 13:06 208896 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-06-04 15:46 . 2009-06-04 15:46 -------- d-----w- C:\NVIDIA
2009-06-04 15:36 . 2009-06-04 15:36 -------- d-----w- c:\program files\SystemRequirementsLab
2009-05-30 08:58 . 2009-06-09 20:13 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-05-30 08:57 . 2009-05-30 08:58 -------- d-----w- c:\program files\Matrix Multimedia
2009-05-30 08:56 . 2009-05-30 08:57 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-05-27 18:49 . 2008-04-14 17:02 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2009-05-27 18:49 . 2008-04-14 17:02 8192 ----a-w- c:\windows\system32\wshirda.dll
2009-05-27 18:49 . 2008-04-14 17:02 29184 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2009-05-27 18:49 . 2008-04-14 17:02 29184 ----a-w- c:\windows\system32\irmon.dll
2009-05-27 18:49 . 2008-04-14 17:03 153088 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2009-05-27 18:49 . 2008-04-14 17:03 153088 ----a-w- c:\windows\system32\irftp.exe
2009-05-27 18:06 . 2009-05-27 18:06 -------- d-----w- c:\documents and settings\gerdi\Phone Browser
2009-05-27 18:04 . 2009-05-27 18:06 -------- d-----w- c:\documents and settings\gerdi\Application Data\Nokia
2009-05-27 18:03 . 2009-05-27 18:03 -------- d-----w- c:\documents and settings\gerdi\Application Data\Teleca
2009-05-27 18:03 . 2009-05-27 18:03 -------- d-----w- c:\documents and settings\gerdi\Application Data\PC Suite
2009-05-27 17:09 . 2009-05-27 17:11 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Suite
2009-05-27 17:07 . 2009-05-30 08:57 -------- d-----w- c:\program files\DIFX
2009-05-27 17:07 . 2007-03-20 09:37 831048 ----a-w- c:\windows\system32\WudfUpdate_01005.dll
2009-05-27 17:07 . 2009-05-27 17:07 -------- d-----w- c:\program files\PC Connectivity Solution
2009-05-27 17:07 . 2007-02-22 08:15 90624 ----a-w- c:\windows\system32\nmwcdcls.dll
2009-05-27 17:07 . 2007-04-02 04:45 44338384 ----a-r- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Nokia_PC_Suite_683_rel_14_1_EA.exe
2009-05-27 17:07 . 2009-05-27 17:07 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstCCD.exe
2009-05-27 17:07 . 2009-05-27 17:07 15360 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
2009-05-27 17:07 . 2009-05-27 17:07 9728 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCS.exe
2009-05-27 16:38 . 2009-05-27 16:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations
2009-05-27 16:32 . 2009-05-27 16:32 -------- d-----w- c:\documents and settings\All Users\Application Data\Avanquest Bluetooth SDK
2009-05-27 16:21 . 2001-09-06 17:04 12288 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2009-05-27 16:21 . 2001-09-06 17:04 12288 ----a-w- c:\windows\system32\drivers\mouhid.sys
2009-05-26 16:15 . 2008-03-21 11:57 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2009-05-26 15:24 . 2009-05-26 15:24 -------- d-----w- c:\documents and settings\All Users\Application Data\BVRP Software
2009-05-26 15:22 . 2009-05-26 15:22 -------- d-----w- c:\program files\Sony Setup
2009-05-26 15:21 . 2009-05-27 18:13 -------- d-----w- c:\windows\system32\drivers\UMDF
2009-05-26 15:21 . 2009-05-26 15:21 -------- d-----w- c:\windows\system32\LogFiles
2009-05-26 15:21 . 2009-06-02 16:30 25512 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2009-05-26 15:21 . 2009-06-02 16:30 13224 ----a-w- c:\windows\system32\drivers\ggflt.sys
2009-05-26 15:21 . 2009-05-26 15:20 1107296 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2009-05-26 15:03 . 2009-05-27 19:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony Ericsson
2009-05-26 15:03 . 2009-05-27 19:03 -------- d-----w- c:\program files\Common Files\Teleca Shared
2009-05-26 15:03 . 2009-05-27 19:03 -------- d-----w- c:\program files\Sony Ericsson
2009-05-25 18:59 . 2009-05-25 18:59 -------- d-----w- c:\program files\Xilisoft
2009-05-21 18:06 . 2009-05-21 18:06 -------- d-----w- c:\documents and settings\gerdi\Local Settings\Application Data\RapidSolution
2009-05-20 05:50 . 2009-05-20 05:50 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\RapidSolution
2009-05-19 15:09 . 2009-05-19 15:09 -------- d-----w- c:\program files\PixiePack Codec Pack
2009-05-19 15:09 . 2009-05-19 15:09 466944 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\MusicLoad.dll
2009-05-19 15:09 . 2009-05-19 15:09 197912 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgSoundclick.dll
2009-05-19 15:06 . 2009-06-15 17:57 -------- d-----w- c:\documents and settings\All Users\Application Data\RapidSolution
2009-05-19 15:06 . 2009-05-19 15:06 -------- d-----w- c:\program files\RapidSolution
2009-05-19 14:47 . 2009-05-19 14:47 -------- d-----r- c:\documents and settings\LocalService\Favorieten
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-13 16:38 . 2009-05-11 16:36 -------- d-----w- c:\program files\Common Files\Adobe
2009-06-13 08:01 . 2009-06-12 15:35 -------- d-----w- c:\program files\SEE Electrical
2009-06-12 15:35 . 2009-05-11 13:55 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-12 15:05 . 2009-05-11 13:55 -------- d-----w- c:\program files\Common Files\InstallShield
2009-05-30 06:31 . 2004-08-04 12:00 367600 ----a-w- c:\windows\system32\perfh013.dat
2009-05-30 06:31 . 2004-08-04 12:00 54698 ----a-w- c:\windows\system32\perfc013.dat
2009-05-26 16:16 . 2009-05-26 16:16 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ggsemc_01007.Wdf
2009-05-26 16:15 . 2009-05-26 16:15 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-19 15:09 . 2009-05-19 15:08 177432 ----a-w- c:\documents and settings\All Users\Application Data\RapidSolution\Tunebite\WebRipDLLs\PlgIJigg.dll
2009-05-18 15:38 . 2009-05-18 15:38 249856 ----a-w- c:\windows\Setup1.exe
2009-05-18 15:38 . 2009-05-18 15:37 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-05-16 11:00 . 2009-05-16 11:00 -------- d-----w- c:\program files\Webteh
2009-05-16 10:57 . 2009-05-16 10:57 -------- d-----w- c:\documents and settings\All Users\Application Data\AVS4YOU
2009-05-16 10:57 . 2009-05-16 10:56 -------- d-----w- c:\program files\Common Files\AVSMedia
2009-05-16 09:21 . 2009-05-11 08:14 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-15 15:45 . 2009-05-15 15:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-05-13 17:11 . 2009-05-12 15:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-05-12 19:59 . 2009-05-12 19:58 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2009-05-12 19:59 . 2009-05-12 19:59 -------- d-----w- c:\program files\DVDVideoSoft
2009-05-12 15:47 . 2009-05-12 15:47 -------- d-----w- c:\program files\Microsoft Works
2009-05-12 15:47 . 2009-05-12 15:47 -------- d-----w- c:\program files\MSBuild
2009-05-11 18:14 . 2009-05-11 18:06 -------- d-----w- c:\program files\Windows Live
2009-05-11 18:14 . 2009-05-11 18:07 -------- dcsh--w- c:\program files\Common Files\WindowsLiveInstaller
2009-05-11 18:06 . 2009-05-11 18:06 -------- d-----w- c:\documents and settings\All Users\Application Data\WLInstaller
2009-05-11 17:37 . 2009-05-11 17:37 -------- d-----w- c:\program files\Common Files\Windows Live
2009-05-11 17:03 . 2009-05-11 17:04 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-05-11 17:03 . 2009-05-11 17:03 -------- d-----w- c:\program files\Java
2009-05-11 16:53 . 2009-05-11 16:53 0 ----a-w- c:\windows\nsreg.dat
2009-05-11 16:39 . 2009-05-11 16:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Prism
2009-05-11 16:38 . 2009-05-11 16:38 15781 ----a-w- c:\windows\system32\drivers\mdc8021x.sys
2009-05-11 16:37 . 2009-05-11 16:37 -------- d-----w- c:\program files\philips
2009-05-11 14:01 . 2009-05-11 14:01 81920 ----a-r- c:\windows\bwUnin-6.1.4.58-7681197L.exe
2009-05-11 14:01 . 2009-05-11 14:01 -------- d-----w- c:\program files\F-Secure
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\Realtek Sound Manager
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\AvRack
2009-05-11 13:56 . 2009-05-11 13:56 -------- d-----w- c:\program files\Realtek AC97
2009-05-11 08:15 . 2009-05-11 08:15 -------- d-----w- c:\program files\microsoft frontpage
2009-05-11 08:12 . 2009-05-11 08:12 21748 ----a-w- c:\windows\system32\emptyregdb.dat
2009-04-22 05:06 . 2009-04-22 05:06 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-04-22 05:06 . 2009-04-22 05:06 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-04-22 05:06 . 2009-04-22 05:06 1060864 ----a-w- c:\windows\system32\MFC71.dll
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
"Steam"="c:\program files\steam\Steam.exe" [2009-06-17 1217784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files\F-Secure\Common\FSM32.EXE" [2002-12-05 106571]
"PRISMSVR.EXE"="c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" [2004-04-26 295001]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-11 148888]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\soundman.exe [2006-11-17 577536]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1622016]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Philips Wireless USB Adapter 11g.lnk - c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe [2004-8-9 344064]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
R2 BackWeb Client - 7681197;F-Secure BackWeb;c:\progra~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE [11/05/2009 16:01 16384]
R2 F-Secure Filter;F-Secure File System Filter;c:\program files\F-Secure\Anti-Virus\win2k\FSfilter.sys [11/05/2009 16:01 48720]
R2 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\F-Secure\Anti-Virus\win2k\fsgk.sys [11/05/2009 16:01 42672]
R2 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\F-Secure\Anti-Virus\win2k\FSrec.sys [11/05/2009 16:01 16048]
R2 FSpm;F-Secure Policy Manager;c:\program files\F-Secure\Common\FSpm.sys [11/05/2009 16:01 65328]
R3 CPWUA2F;Wireless USB Adapter 11g;c:\windows\system32\drivers\CPWUA2F.sys [11/05/2009 18:38 380160]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [26/05/2009 17:21 13224]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [26/05/2009 17:23 89256]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [26/05/2009 17:23 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [26/05/2009 17:23 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [26/05/2009 17:23 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [26/05/2009 17:23 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [26/05/2009 17:23 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [26/05/2009 17:23 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [26/05/2009 17:23 109736]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44CB79C1-20D1-3C77-6898-264126473395}]
c:\windows\Poison-RAT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}]
c:\program files\PixiePack Codec Pack\InstallerHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{NAL503-AB-B70-7-11d2-9CBD-0AH6-9YJIL}]
c:\windows\system32\ssvchost.exe
.
Inhoud van de 'Gedeelde Taken' map
2009-05-15 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
2009-06-18 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
.
- - - - ORPHANS VERWIJDERD - - - -
HKLM-Run-system32PJIW Agent - c:\windows\system32PJIW.exe
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.dufpy.com
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath -
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2009-06-18 15:29
Windows 5.1.2600 Service Pack 3 NTFS
scannen van verborgen processen ...
scannen van verborgen autostart items ...
scannen van verborgen bestanden ...
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
- - - - - - - > 'explorer.exe'(3252)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
c:\program files\Microsoft Office\Office12\1043\GrooveIntlResource.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\F-Secure\Anti-Virus\fsgk32st.exe
c:\program files\F-Secure\Anti-Virus\fsgk32.exe
c:\program files\F-Secure\Anti-Virus\fssm32.exe
c:\program files\F-Secure\BackWeb\7681197\Program\backWeb-7681197.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\program files\F-Secure\Common\FSMA32.exe
c:\program files\F-Secure\Common\FSMB32.exe
c:\program files\F-Secure\Common\fch32.exe
c:\program files\F-Secure\Common\FAMEH32.exe
c:\program files\F-Secure\Common\FNRB32.exe
c:\program files\F-Secure\Common\FIH32.exe
c:\program files\F-Secure\Anti-Virus\fsav32.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Voltooingstijd: 2009-06-18 15:37 - machine werd herstart
ComboFix-quarantined-files.txt 2009-06-18 13:36
Pre-Run: 147.135.254.528 bytes beschikbaar
Post-Run: 149.455.544.320 bytes beschikbaar
WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
283 --- E O F --- 2009-05-17 07:40
-
er is een probleempje...
nadat ik dubbel klik op het icoontje van combofix gebeurt er helemaal.... niets
-
hey,
heb een probleempje; in mijn pc zit 1HD "lokaal station C"
als ik die via "deze computer" wil openen krijg ik volgende foutmelding:
RECYCLER/S-9-3-88-100020586-100001386-100003838-166.com niet vinden. Controleer of u de naam juist hebt ingevoerd en probeer daarna opnieuw. Klik als u naar een bestand wilt zoeken op de knop Start en daarna op zoeken.
enige optie is OK klikken maar daarmee lost het niets op...
ook als ik een USB stick of externe HD inplug geeft hij dezelfde foutmelding
maar als ik bv ergens een bestand wil openen (bv in word) kan ik wel via "deze computer" -> lokaal station C doc and settings... mijn bestand vinden
op het eerste gezicht kan het niet veel kwaad, pc functioneert voor de rest normaal maar ik wil het toch zo snel mogelijk weg!
MVG Riban
-
heb hem nu wel gevonden met enkele instellingen wat de link is:
http://www.videopacker.com/rdr/index.php
grtz
-
dat is het probleem...
er opent een nieuw venster met:
De pagina kan niet worden weergeven. --< zoals in de oude internet explorer
-
hey, iedereen
Ik heb een film gedownload in wmv bestand maar als ik het wil openen geeft hij een error en zegt hij dat het bestand beveiligd is
ik krijg de melding:
licencie ophalen:
The video you have downloaded is protected:
install free licence to watch/unlock video met daar een link bij maar die werkt niet...
hoe kan ik deze toch afspelen.?
Riban
-
Ja ik begrijp het,
maar als ik nu al een back-up neem dan zal ik zien hoe het loopt maar dan heb ik mijn bestanden toch nog
-
fwiew moet dit snel gebeuren of kan het nog wachten tot eind juni?
toch bedankt
-
kijk wat voor een error ik dan krijg
!! ALERT !! IT is NOT SAFE to continue!
The contents of the ComboFIx package has been compromised.
Please download a fresh copy from:
http:/www.bleepingcomputer.com/combofix/how-to-use-combofix
Note: You may be infected with a file patching virus (Virut)
dan kan ik op OK klikken of sluiten maar bij bijde verwijdert ComboFix automatisch van mijn pc
wat doen?
-
ok gebeurt
-
Verwijder alle bestanden en mappen (onder "file" en "folder") manueel met Windows Verkenner. En zoek dan even via een zoekopdracht of je de namen onder "driver" nog ergens op je PC aantreft. Geef dan even in je volgend bericht de exacte locatie van deze items.
Verwijder ondertussen ook Combofix via Start -> Uitvoeren -> typ combofix /u
kan je dat verwijderen iets gedetaieerder uitleggen? :s zoals ik het begrijp moet ik al mijn bestanden verwijderen?
alvast merci
-
het lukt niet
(( iedere keer een error: ! ! ALERT IT'S NOT SAVE ! ! ....heb naam verandert... virusscanners uitgeschakelt ... wt moet ik nog doen?
-
na lang suggelen is het het toch gelukt
hier de logComboFix 09-04-29.07 - Robin 30/04/2009 17:19.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.415 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Robin\Mijn documenten\Combo--Fix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)
AV: F-Secure Anti-Virus 5.44 *On-access scanning enabled* (Updated)
* Nieuw herstelpunt werd aangemaakt
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Robin\Application Data\inst.exe
c:\program files\ThunMail
c:\program files\ThunMail\testabd.dll
c:\program files\ThunMail\testabd.exe
c:\windows\system32\abimapid.ini
c:\windows\system32\amesames.ini
c:\windows\system32\asitelig.ini
c:\windows\system32\comsa32.sys
c:\windows\system32\dpcxool64.sys
c:\windows\system32\efekolis.ini
c:\windows\system32\ejudobuv.ini
c:\windows\system32\enuzewev.ini
c:\windows\system32\ezozevub.ini
c:\windows\system32\i***ajuf.ini
c:\windows\system32\ikovoyeh.ini
c:\windows\system32\ilalelof.ini
c:\windows\system32\ilunigif.ini
c:\windows\system32\iwuwopay.ini
c:\windows\system32\omasegih.ini
c:\windows\system32\ovupoyos.ini
c:\windows\system32\sopidkc.exe
c:\windows\system32\ujifutov.ini
c:\windows\system32\utuhekeb.ini
c:\windows\system32\uzupekil.ini
c:\windows\system32\userinit.exe . . . est infectee!!
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_protect
(((((((((((((((((((( Bestanden Gemaakt van 2009-05-28 to 2009-4-30 ))))))))))))))))))))))))))))))
.
2009-04-29 18:25 . 2009-04-29 18:25 -------- d-----w c:\program files\iPod
2009-04-29 18:25 . 2009-04-29 18:26 -------- d-----w c:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-04-29 18:25 . 2009-04-29 18:26 -------- d-----w c:\program files\iTunes
2009-04-29 18:22 . 2009-04-29 18:22 -------- d-----w c:\program files\Bonjour
2009-04-29 11:05 . 2009-04-29 19:28 -------- d--h--r c:\documents and settings\Robin\Onlangs geopend
2009-04-29 05:47 . 2009-04-28 23:34 246272 ----a-w c:\windows\system32\tpsaxyd.exe
2009-04-28 19:46 . 2009-04-28 19:46 -------- d-----w c:\program files\AskBardis
2009-04-28 16:33 . 2009-04-28 16:33 -------- d-----w c:\documents and settings\Robin\Application Data\Malwarebytes
2009-04-28 16:33 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-28 16:33 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-28 16:33 . 2009-04-28 16:33 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-28 16:32 . 2009-04-28 16:33 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-04-28 16:18 . 2009-04-28 16:18 -------- d-----w c:\program files\Any Password
2009-04-28 16:00 . 2009-04-28 16:00 -------- d-----w c:\program files\Toddler Keys
2009-04-28 15:37 . 2009-04-28 15:38 -------- d-----w C:\pebuilder3110a
2009-04-27 19:42 . 2009-04-27 19:42 -------- d-----w c:\program files\Trend Micro
2009-04-27 17:21 . 2009-04-27 17:21 -------- d-----w c:\program files\DIFX
2009-04-27 17:17 . 2009-04-27 17:19 -------- d-----w c:\program files\Common Files\Wise Installation Wizard
2009-04-27 15:32 . 2009-04-27 17:43 -------- d-----w c:\documents and settings\Robin\Application Data\BitTorrent
2009-04-27 15:31 . 2009-04-27 15:31 -------- d-----w c:\documents and settings\Robin\Local Settings\Application Data\DNA
2009-04-27 15:31 . 2009-04-30 15:25 -------- d-----w c:\program files\DNA
2009-04-27 15:31 . 2009-04-30 15:25 -------- d-----w c:\documents and settings\Robin\Application Data\DNA
2009-04-27 15:31 . 2009-04-27 15:32 -------- d-----w c:\program files\BitTorrent
2009-04-27 05:51 . 2009-04-27 05:51 -------- d-----r c:\documents and settings\LocalService\Favorieten
2009-04-27 05:49 . 2009-04-28 16:47 -------- d-----w c:\windows\system32\3361
2009-04-27 05:49 . 2009-04-28 16:47 -------- d-----w c:\windows\dhcp
2009-04-25 12:22 . 2009-04-25 12:22 74620 ---ha-w c:\windows\system32\mlfcache.dat
2009-04-23 19:19 . 2009-04-23 19:19 -------- d-----w c:\documents and settings\Robin\Application Data\National Instruments
2009-04-23 17:37 . 2009-04-23 17:41 -------- d-----w c:\documents and settings\All Users\Application Data\National Instruments
2009-04-23 17:37 . 2009-04-23 17:37 -------- d-----w c:\windows\system32\cvirte
2009-04-23 17:37 . 2009-04-23 17:40 -------- d-----w c:\program files\Common Files\Merge Modules
2009-04-23 17:36 . 2009-04-23 17:42 -------- d-----w c:\program files\National Instruments
2009-04-20 15:07 . 2009-04-20 15:18 -------- d-----w c:\documents and settings\Robin\Application Data\Xilisoft Corporation
2009-04-20 14:58 . 2009-04-20 15:16 -------- d-----w c:\program files\Xilisoft
2009-04-17 10:51 . 2009-04-17 10:51 1 ----a-w c:\windows\system32\SysDVDtoavi.dat
2009-04-17 10:35 . 2009-04-17 10:35 47360 ----a-w c:\windows\system32\drivers\pcouffin.sys
2009-04-17 10:35 . 2009-04-26 15:36 47360 ----a-w c:\documents and settings\Robin\Application Data\pcouffin.sys
2009-04-17 10:35 . 2009-04-26 15:36 -------- d-----w c:\documents and settings\Robin\Application Data\Vso
2009-04-12 18:13 . 2009-04-26 15:34 -------- d-----w c:\documents and settings\Robin\Application Data\Any Video Converter
2009-04-12 17:39 . 2009-04-12 17:39 -------- d-----w c:\program files\Red Kawa
2009-04-05 12:12 . 2009-04-05 12:12 -------- d-----w c:\program files\AVSMedia
2009-04-05 11:07 . 2009-04-05 11:07 -------- d-----w c:\documents and settings\All Users\Application Data\BVRP Software
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-30 14:42 . 2009-04-30 14:42 61440 ----a-w c:\windows\system32\F.tmp
2009-04-30 14:42 . 2009-04-30 14:42 0 ----a-w c:\windows\system32\B.tmp
2009-04-30 14:42 . 2009-04-30 14:42 0 ----a-w c:\windows\system32\7.tmp
2009-04-30 14:42 . 2009-04-30 14:42 176 ----a-w c:\windows\system32\5.tmp
2009-04-30 05:47 . 2009-04-30 05:47 61440 ----a-w c:\windows\system32\1F.tmp
2009-04-30 05:47 . 2009-04-30 05:47 0 ----a-w c:\windows\system32\1E.tmp
2009-04-30 05:47 . 2009-04-30 05:47 124 ----a-w c:\windows\system32\19.tmp
2009-04-29 18:25 . 2008-10-06 19:42 -------- d-----w c:\program files\Common Files\Apple
2009-04-29 17:09 . 2009-01-27 15:30 34 ----a-w c:\documents and settings\Robin\jagex_runescape_preferences.dat
2009-04-29 17:06 . 2009-04-29 17:06 61440 ----a-w c:\windows\system32\17.tmp
2009-04-29 17:06 . 2009-04-29 17:06 19420 ----a-w c:\windows\system32\16.tmp
2009-04-29 17:06 . 2009-04-29 17:05 124 ----a-w c:\windows\system32\14.tmp
2009-04-29 15:45 . 2009-03-29 14:46 93696 ----a-w c:\windows\ST6UNST.EXE
2009-04-29 13:43 . 2009-04-29 13:43 61440 ----a-w c:\windows\system32\A4.tmp
2009-04-29 13:43 . 2009-04-29 13:43 19420 ----a-w c:\windows\system32\91.tmp
2009-04-29 13:43 . 2009-04-29 13:42 124 ----a-w c:\windows\system32\32.tmp
2009-04-29 10:24 . 2009-04-29 10:24 61440 ----a-w c:\windows\system32\44.tmp
2009-04-29 10:24 . 2009-04-29 10:24 19420 ----a-w c:\windows\system32\43.tmp
2009-04-29 10:24 . 2009-04-29 10:24 124 ----a-w c:\windows\system32\40.tmp
2009-04-28 05:45 . 2009-02-23 20:01 -------- d-----w c:\program files\steam
2009-04-28 05:45 . 2009-04-28 05:45 61440 ----a-w c:\windows\system32\12.tmp
2009-04-28 05:44 . 2009-04-28 05:44 153088 ----a-w c:\windows\system32\10.tmp
2009-04-27 18:10 . 2009-04-27 18:10 0 ----a-w c:\windows\system32\F3.tmp
2009-04-27 18:09 . 2009-04-27 18:09 0 ----a-w c:\windows\system32\F1.tmp
2009-04-27 18:09 . 2009-04-27 18:09 124 ----a-w c:\windows\system32\EF.tmp
2009-04-27 17:22 . 2009-01-09 16:24 -------- d-----w c:\program files\Matrix Multimedia
2009-04-27 05:47 . 2009-04-27 05:47 61440 ----a-w c:\windows\system32\143.tmp
2009-04-27 05:47 . 2009-04-27 05:47 153088 ----a-w c:\windows\system32\141.tmp
2009-04-27 05:47 . 2009-04-27 05:47 124 ----a-w c:\windows\system32\140.tmp
2009-04-26 15:47 . 2008-10-20 18:12 -------- d-----w c:\program files\Sony Ericsson
2009-04-26 15:45 . 2008-09-16 19:01 -------- d-----w c:\program files\Common Files\Real
2009-04-26 15:42 . 2008-11-13 20:33 -------- d-----w c:\program files\MSN Messenger
2009-04-26 15:41 . 2008-09-16 19:20 -------- d-----w c:\program files\Common Files\DVDVideoSoft
2009-04-26 12:34 . 2009-04-26 12:34 0 ----a-w c:\windows\system32\2F1.tmp
2009-04-26 12:34 . 2009-04-26 12:34 61440 ----a-w c:\windows\system32\2F0.tmp
2009-04-26 12:34 . 2009-04-26 12:34 152064 ----a-w c:\windows\system32\2EB.tmp
2009-04-26 12:34 . 2009-04-26 12:34 124 ----a-w c:\windows\system32\2EA.tmp
2009-04-24 05:58 . 2008-11-23 14:31 664 ----a-w c:\windows\system32\d3d9caps.dat
2009-04-18 10:40 . 2008-09-13 09:34 -------- d-----w c:\program files\Windows Live Safety Center
2009-04-02 12:01 . 2004-08-04 12:00 77862 ----a-w c:\windows\system32\perfc013.dat
2009-04-02 12:01 . 2004-08-04 12:00 458884 ----a-w c:\windows\system32\perfh013.dat
2009-03-26 12:04 . 2009-03-22 19:20 -------- d-----w c:\program files\AVS4YOU
2009-03-26 12:04 . 2008-09-24 16:41 -------- d-----w c:\program files\Common Files\AVSMedia
2009-03-24 15:20 . 2009-03-24 15:20 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-19 17:00 . 2008-09-09 20:16 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-19 14:32 . 2008-11-20 16:48 23400 ----a-w c:\windows\system32\drivers\GEARAspiWDM.sys
2009-03-18 20:00 . 2009-03-18 19:55 -------- d-----w c:\program files\QuickTime
2009-03-18 19:23 . 2009-03-18 19:21 -------- d-----w c:\program files\Safari
2009-02-22 10:44 . 2009-02-22 10:40 5068152 ----a-w c:\windows\system32\SpoonUninstall.exe
2009-02-06 20:26 . 2008-09-10 18:38 105160 ----a-w c:\documents and settings\Robin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-02-06 20:13 . 2009-02-06 20:13 -------- d-----w c:\windows\Fonts\Fonts
2009-02-06 20:10 . 2009-02-06 20:10 9464 ------w c:\windows\system32\drivers\cdralw2k.sys
2009-02-06 20:10 . 2009-02-06 20:10 9336 ------w c:\windows\system32\drivers\cdr4_xp.sys
2009-02-06 20:10 . 2009-02-06 20:10 129784 ------w c:\windows\system32\pxafs.dll
2009-02-06 20:10 . 2009-02-06 20:10 43528 ------w c:\windows\system32\drivers\PxHelp20.sys
2009-02-06 20:10 . 2009-02-06 20:10 116472 ------w c:\windows\system32\pxcpyi64.exe
2009-02-06 20:10 . 2009-02-06 20:10 118520 ------w c:\windows\system32\pxinsi64.exe
2009-02-04 19:59 . 2009-02-04 19:59 603904 ----a-w c:\windows\system32\TUProgSt.exe
2009-02-04 19:58 . 2009-02-04 19:58 360192 ----a-w c:\windows\system32\TuneUpDefragService.exe
2009-02-04 19:32 . 2009-01-08 18:25 10520 ----a-w c:\windows\system32\avgrsstx.dll
2009-02-04 19:32 . 2009-01-08 18:25 325128 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-02-04 19:31 . 2009-01-08 18:25 107272 ----a-w c:\windows\system32\drivers\avgtdix.sys
2007-02-08 08:48 . 2007-02-08 08:48 133920 ----a-w c:\program files\internet explorer\plugins\LV82ActiveXControl.dll
.
------- Sigcheck -------
[-] 2004-08-04 12:00 14336 2311BA2AB63FCF5DC89D464246527FBB c:\windows\$NtServicePackUninstall$\svchost.exe
[-] 2008-04-14 17:03 14336 C0CCDA36C3AF54121BA75C9CE2F5F377 c:\windows\ServicePackFiles\i386\svchost.exe
[-] 2008-04-14 17:03 34816 E4B4F774CA2A161C5F182E3FA2531572 c:\windows\system32\svchost.exe
[-] 2008-04-14 17:02 1057792 6366B4EE138FDEC718FBD3A611CF874B c:\windows\explorer.exe
[-] 2004-08-04 12:00 1035776 9D80DD3378805A1B6433D51674F15EE6 c:\windows\$NtServicePackUninstall$\explorer.exe
[-] 2008-04-14 17:02 1037312 F9C48F9214BB971C5B5A0EBF3DB3576F c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2004-08-04 12:00 15360 A0F3C54BDAD0B1E74C974626C28670B1 c:\windows\$NtServicePackUninstall$\ctfmon.exe
[-] 2008-04-14 17:02 15360 6A68103E38B1E9E26392672DA58155AD c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2008-04-14 17:02 35840 12519C2FEF4BF58DE7E5BCCA64E2D7F2 c:\windows\system32\ctfmon.exe
[-] 2004-08-04 12:00 57856 E4AE7B324B02152F17B406129B09BAE4 c:\windows\$NtServicePackUninstall$\spoolsv.exe
[-] 2008-04-14 17:03 57856 E33821136A2CB296445563F315036764 c:\windows\ServicePackFiles\i386\spoolsv.exe
[-] 2008-04-14 17:03 78336 1BFD68BDD1E272A4254375662C7861CC c:\windows\system32\spoolsv.exe
[-] 2004-08-04 12:00 45056 6F1D66C8B08D0CF65870DC02F512E719 c:\windows\$NtServicePackUninstall$\userinit.exe
[-] 2008-04-14 17:03 46592 160A8AAEA851FF0C43F878BE069E2287 c:\windows\ServicePackFiles\i386\userinit.exe
[-] 2008-04-14 17:03 46592 D6440F16CFAF74773C11BD4D0C76012E c:\windows\system32\userinit.exe
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 35840]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-04-27 321344]
"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"F-Secure Manager"="c:\program files\F-Secure\Common\FSM32.EXE" [2005-09-19 127051]
"PRISMSVR.EXE"="c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" [2004-04-26 315481]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-05 136600]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-02-04 1601304]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 434176]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\soundman.exe [2008-09-10 598016]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1642496]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 35840]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1765376]
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Philips Wireless USB Adapter 11g.lnk - c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe [2004-8-9 364544]
SMC2802W 54Mbps WLAN Monitor.lnk - c:\program files\SMC\SMC2802W V.2 2.4GHz 54 Mbps Wireless PCI Adapter\Installer\WINXP\SMC11GMonitor.exe [2003-11-25 884835]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\explorer.exe,"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-02-04 19:32 10520 ----a-w c:\windows\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\ThunMail\testabd.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^AutoCAD Startup Accelerator.lnk]
path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\AutoCAD Startup Accelerator.lnk
backup=c:\windows\pss\AutoCAD Startup Accelerator.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Robin^Menu Start^Programma's^Opstarten^CCleaner.lnk]
path=c:\documents and settings\Robin\Menu Start\Programma's\Opstarten\CCleaner.lnk
backup=c:\windows\pss\CCleaner.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Robin^Menu Start^Programma's^Opstarten^Internet.lnk]
path=c:\documents and settings\Robin\Menu Start\Programma's\Opstarten\Internet.lnk
backup=c:\windows\pss\Internet.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Robin^Menu Start^Programma's^Opstarten^Xilisoft Video Converter Ultimate.lnk]
path=c:\documents and settings\Robin\Menu Start\Programma's\Opstarten\Xilisoft Video Converter Ultimate.lnk
backup=c:\windows\pss\Xilisoft Video Converter Ultimate.lnkStartup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\helpctr.exe"=
"c:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8589:TCP"= 8589:TCP:BitComet 8589 TCP
"8589:UDP"= 8589:UDP:BitComet 8589 UDP
R1 eroa995;eroa995; [x]
R1 ethojwqy;ethojwqy; [x]
R1 mjhb0bb;mjhb0bb; [x]
R1 omjcdc3;omjcdc3; [x]
R2 BackWeb Client - 7681197;F-Secure BackWeb; [x]
R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys [2008-05-06 16512]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2008-12-16 10976]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
R3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\DRIVERS\s0017bus.sys [2008-05-27 90536]
R3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0017mdfl.sys [2008-05-27 15016]
R3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0017mdm.sys [2008-05-27 122152]
R3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0017mgmt.sys [2008-05-27 115496]
R3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\DRIVERS\s0017nd5.sys [2008-05-27 25768]
R3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0017obex.sys [2008-05-27 111912]
R3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\DRIVERS\s0017unic.sys [2008-05-27 117672]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2009-02-04 325128]
S1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2009-02-04 107272]
S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 184320]
S2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2009-02-04 903960]
S2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2009-02-04 298264]
S2 F-Secure Filter;F-Secure File System Filter;c:\program files\F-Secure\Anti-Virus\Win2K\FSfilter.sys [2003-11-14 48720]
S2 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\F-Secure\Anti-Virus\Win2K\FSgk.sys [2005-09-23 48256]
S2 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\F-Secure\Anti-Virus\Win2K\FSrec.sys [2003-02-06 16048]
S2 FSpm;F-Secure Policy Manager;c:\program files\F-Secure\Common\FSPM.SYS [2005-09-19 65328]
S2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\System32\TUProgSt.exe [2009-02-04 603904]
S3 CPWUA2F;Wireless USB Adapter 11g;c:\windows\system32\DRIVERS\CPWUA2F.sys [2004-07-19 380160]
S3 w3304an5;WN3X0X Wireless Adapter;c:\progra~1\SMC\SMC280~1.4GH\INSTAL~1\WINXP\w3304an5.SYS [2002-10-07 15104]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{970fbaee-8424-11dd-8313-000a940292ea}]
\Shell\AutoRun\command - F:\LaunchU3.exe -a
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Inhoud van de 'Gedeelde Taken' map
2009-04-30 c:\windows\Tasks\1-klik Onderhoud.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-12 14:12]
2009-04-29 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-04-30 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-11 11:55]
.
- - - - ORPHANS VERWIJDERD - - - -
WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - c:\program files\AskBarDis\bar\bin\askBar.dll
HKLM-Run-Cmaudio - cmicnfg.cpl
HKU-Default-Run-svc - c:\program files\ThunMail\testabd.exe
.
------- Bijkomende Scan -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Robin\Application Data\Mozilla\Firefox\Profiles\pf1jqodj.default\
FF - prefs.js: browser.search.selectedEngine - Ask
FF - prefs.js: browser.startup.homepage - hxxp://www.ask.com/?o=101764&l=dis
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101761&gct=&gc=1&q=
FF - component: c:\documents and settings\Robin\Application Data\Mozilla\Firefox\Profiles\pf1jqodj.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
FF - component: c:\program files\AVG\AVG8\Firefox\components\avgssff.dll
FF - component: c:\program files\AVG\AVG8\ToolbarFF\components\vmAVGConnector.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-30 17:30
Windows 5.1.2600 Service Pack 3 NTFS
detected NTDLL code modification:
ZwOpenFile
scannen van verborgen processen ...
scannen van verborgen autostart items ...
scannen van verborgen bestanden ...
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
[HKEY_USERS\S-1-5-21-1757981266-2000478354-725345543-1004\Software\SecuROM\License information*]
"datasecu"=hex:83,de,24,c2,13,a6,18,94,f4,00,96,37,00,d4,bd,f2,b2,45,d6,05,25,
a4,40,27,fb,f0,4a,0a,ce,65,b5,c1,32,2f,14,2b,82,fa,9a,2d,0a,98,7c,1c,b4,58,\
"rkeysecu"=hex:06,e9,5d,d9,50,d6,72,46,43,8f,d5,b7,64,11,dd,35
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,1c,50,db,4f,3b,
73,33,0c,c8,28,51,af,b0,29,a3,98,7a,8b,e2,24,c9,ec,b5,ad,e2,63,26,f1,3f,c8,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"bca643cdc5c2726b20d2ecedcc62c59b"=hex:6a,9c,d6,61,af,45,84,18,3c,13,49,7f,78,
94,b6,36,71,3b,04,66,8b,46,0d,96,e2,18,45,28,a5,57,5e,a7,6a,9c,d6,61,af,45,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"2c81e34222e8052573023a60d06dd016"=hex:25,da,ec,7e,55,20,c9,26,c0,a0,94,ec,9d,
ba,88,23,25,da,ec,7e,55,20,c9,26,c1,7f,a4,47,1e,0b,69,c6,ff,7c,85,e0,43,d4,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"2582ae41fb52324423be06337561aa48"=hex:3e,1e,9e,e0,57,5a,93,61,02,22,4c,1e,20,
c3,53,b1,3e,1e,9e,e0,57,5a,93,61,b2,3c,3d,19,0a,c2,bc,d1,86,8c,21,01,be,91,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"caaeda5fd7a9ed7697d9686d4b818472"=hex:f5,1d,4d,73,a8,13,5c,05,87,91,e1,fc,b6,
b3,d4,73,cd,44,cd,b9,a6,33,6c,cd,4d,09,ed,d4,de,26,2e,a4,f5,1d,4d,73,a8,13,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:df,20,58,62,78,6b,cf,c8,97,9f,08,01,a3,
f7,07,5d,b0,18,ed,a7,3f,8d,37,a4,d3,90,71,18,ce,31,25,d9,df,20,58,62,78,6b,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"4d370831d2c43cd13623e232fed27b7b"=hex:31,77,e1,ba,b1,f8,68,02,e5,9e,69,d3,30,
7c,76,fa,31,77,e1,ba,b1,f8,68,02,a3,20,3e,f8,d4,66,16,c3,fb,a7,78,e6,12,2f,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"1d68fe701cdea33e477eb204b76f993d"=hex:aa,52,c6,00,84,3c,26,64,5f,df,25,76,66,
95,31,bc,83,6c,56,8b,a0,85,96,ab,d2,9e,2f,85,82,ac,dd,d5,01,3a,48,fc,e8,04,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"1fac81b91d8e3c5aa4b0a51804d844a3"=hex:f6,0f,4e,58,98,5b,89,c9,e1,7c,d7,52,5b,
8a,f4,bc,51,fa,6e,91,28,9e,14,cc,9e,37,ea,b6,dd,8e,07,7d,f6,0f,4e,58,98,5b,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E9204BC4-9B67-A3A7-9418040E7EC7E28B}\{1ACE6D24-C4A9-397B-64EF395CC2F330B1}\{685A2618-4C9F-7737-7DE531E9434892E2}*]
"GEU3J4UUHJGEE1XB3LIJ4XZTSF1"=hex:01,00,01,00,00,00,00,00,c4,5b,ae,fa,46,f4,3b,
9f,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"f5f62a6129303efb32fbe080bb27835b"=hex:b1,cd,45,5a,a8,c4,f8,b9,d3,e2,01,c3,94,
06,d9,20,b1,cd,45,5a,a8,c4,f8,b9,63,49,4e,b3,fa,0d,e7,d9,3d,ce,ea,26,2d,45,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:2a,b7,cc,b5,b9,7f,41,e7,27,b9,63,65,25,
1b,d8,1c,e3,0e,66,d5,eb,bc,2f,6b,1c,4b,3a,25,9f,36,88,66,2a,b7,cc,b5,b9,7f,\
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"8a8aec57dd6508a385616fbc86791ec2"=hex:6c,43,2d,1e,aa,22,2f,9c,28,1d,ca,b9,eb,
90,18,93,fa,ea,66,7f,d4,3b,6b,70,04,6c,2b,d9,34,10,a4,69,6c,43,2d,1e,aa,22,\
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
- - - - - - - > 'winlogon.exe'(884)
c:\program files\Bonjour\mdnsNSP.dll
- - - - - - - > 'explorer.exe'(4020)
c:\windows\system32\nview.dll
c:\windows\system32\NVWRSNL.DLL
c:\windows\system32\ieframe.dll
c:\windows\system32\nvwddi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll
c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_dut.nlr
c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\lkcitdl.exe
c:\windows\system32\lkads.exe
c:\windows\system32\lktsrv.exe
c:\program files\National Instruments\Shared\Security\nidmsrv.exe
c:\windows\system32\nisvcloc.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\iPod\bin\iPodService.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\program files\AVG\AVG8\avgcsrvx.exe
.
**************************************************************************
.
Voltooingstijd: 2009-04-30 17:34 - machine werd herstart
ComboFix-quarantined-files.txt 2009-04-30 15:34
Pre-Run: 40.283.598.848 bytes beschikbaar
Post-Run: 40.412.282.880 bytes beschikbaar
WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
431 --- E O F --- 2008-12-11 21:12
-
En doe dit nog even als extraatje :
Download Combofix naar je Bureaublad.
Lees hier meer over correct gebruik van Combofix.
OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.
Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!
-
Dubbelklik op Combofix.exe om het te starten.
Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
Volg de instructies, aanvaard de disclaimer door op Ja te klikken.
Indien de Recovery Console niet geïnstalleerd is, wordt je gevraagd om dit alsnog te doen door op JA te klikken in het "Query - Recovery Console" venster (enkel voor XP, niet voor VISTA).
Klik op OK en Ja om automatisch de Recovery Console te laten installeren.
Klik na afloop terug op Ja om het scannen op malware te starten.
Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.
Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.
Post dit logje in je volgende antwoord.
--> ik krijg het bestand idd niet geopend ook nadat ik de virusscanners heb uitgeschakelt :'(
-
-
ok merci
-
"C:\Documents and Settings\Robin\Local Settings\Temporary Internet Files\Content.IE5\GWQU564K\31422[1].exe";"Trojan horse Agent2.FBU";"Infected"
"C:\WINDOWS\Temp\nncdndfdfg44.exe";"Trojan horse Agent2.FBU";"Infected"
"C:\WINDOWS\Temp\nncdndfdfg44.exe";"Trojan horse Agent2.FBU";"Infected"
"C:\Documents and Settings\Robin\Local Settings\Temporary Internet Files\Content.IE5\GWQU564K\31422[1].exe";"Trojan horse Agent2.FBU";"Infected"
"C:\WINDOWS\Temp\nncdndfdfg44.exe";"Trojan horse Agent2.FBU";"Infected"
deze gaf avg weer als ik ze probeer te "healen" dan: Healing is not accesible for this file
weet iemand hier raad voor ?
-
Pc gaat wel sneller ed maar als ik een AVG scan doe dan geeft hij geen virussen maar vantijd wel een venster met een stuk of 8 trojans
ook krijg ik reclame van: earn $$ onlineRiban
-
malware log:
Malwarebytes' Anti-Malware 1.36
Database versie: 2054
Windows 5.1.2600 Service Pack 3
28/04/2009 18:47:51
mbam-log-2009-04-28 (18-47-51).txt
Scan type: Snelle Scan
Objecten gescand: 91512
Verstreken tijd: 11 minute(s), 17 second(s)
Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 12
Registerwaarden geïnfecteerd: 0
Registerdata bestanden geïnfecteerd: 1
Mappen geïnfecteerd: 0
Bestanden geïnfecteerd: 3
Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige items gevonden)
Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige items gevonden)
Registersleutels geïnfecteerd:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b2} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b3} (Adware.Shopping.Report) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\dhcpsrv (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Protect (Rootkit.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\CodecBHO.DLL (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\codecbho.xmldomdocumenteventssink (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\codecbho.xmldomdocumenteventssink.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\RichVideoCodec (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Registerwaarden geïnfecteerd:
(Geen kwaadaardige items gevonden)
Registerdata bestanden geïnfecteerd:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Mappen geïnfecteerd:
(Geen kwaadaardige items gevonden)
Bestanden geïnfecteerd:
C:\WINDOWS\dhcp\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\F.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\3361\SVCHOST.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
hijack log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:55:00, on 28/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lkcitdl.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\lkads.exe
C:\WINDOWS\system32\lktsrv.exe
C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
C:\WINDOWS\system32\nisvcloc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe
C:\Program Files\SMC\SMC2802W V.2 2.4GHz 54 Mbps Wireless PCI Adapter\Installer\WINXP\SMC11GMonitor.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Call HoverToCall class - {7E853D72-626A-48EC-A868-BA8D5E23E045} - C:\Program Files\MSN Messenger\htc.8.1.0178.00.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" /APPLY
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Philips Wireless USB Adapter 11g.lnk = C:\Program Files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe
O4 - Global Startup: SMC2802W 54Mbps WLAN Monitor.lnk = C:\Program Files\SMC\SMC2802W V.2 2.4GHz 54 Mbps Wireless PCI Adapter\Installer\WINXP\SMC11GMonitor.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://virusscanner.telenet.be/fscax.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: F-Secure BackWeb (BackWeb Client - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE (file missing)
O23 - Service: F-Secure BackWeb LAN Access - Unknown owner - C:\Program Files\F-Secure\BackWeb\7681197\Program\fsbwlan.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: F-Secure Authentication Agent (FSAA) - F-Secure Corporation. All Rights Reserved. - C:\Program Files\F-Secure\Common\FSAA.EXE
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\WINDOWS\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\WINDOWS\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\WINDOWS\system32\lktsrv.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments, Inc. - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NILM License Manager - Macrovision Corporation - C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corp. - C:\WINDOWS\system32\nisvcloc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 11897 bytes
alvast bedankt
hetwerkt
bedankt maar.... het probleem is nog niet opgelost maar ik denk wel dat ik nu weet wat het probleem juist is 
[OPGELOST] logje nakijken
in Archief Windows Algemeen
Geplaatst:
hallo,
kan er iemand mijn combofix logje nakijken?
en als er eventueel wat tijd is uitleggen waarnaar je juist moet zoeken bij het nakijken van zo een log zodat ik het zelf kan leren.
mvg Robin
ComboFix 09-08-21.02 - gast2 22/08/2009 20:44.5.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.508 [GMT 2:00]
Gestart vanuit: c:\documents and settings\gast2\Bureaublad\scan.exe.exe
AV: F-Secure Anti-Virus 5.43 *On-access scanning enabled* (Updated) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Installer\16bcb6fb.msi
c:\windows\Installer\16bcb6fc.msp
c:\windows\Installer\16bcb6fd.msp
c:\windows\Installer\16bcb6fe.msp
c:\windows\Installer\16bcb6ff.msp
c:\windows\Installer\16bcb700.msp
c:\windows\Installer\16bcb701.msp
c:\windows\Installer\16bcb702.msp
c:\windows\Installer\16bcb703.msp
c:\windows\Installer\16bcb704.msp
c:\windows\regof1.dll
c:\windows\regof2.dll
c:\windows\TEMP\IadHide4.dll
.
(((((((((((((((((((( Bestanden Gemaakt van 2009-07-22 to 2009-08-22 ))))))))))))))))))))))))))))))
.
2009-08-22 18:36 . 2009-08-22 18:36 152576 ----a-w- c:\documents and settings\gast2\Application Data\Sun\Java\jre1.6.0_15\lzma.dll
2009-08-22 18:30 . 2009-08-22 18:30 -------- d--h--r- c:\documents and settings\gast2\Onlangs geopend
2009-08-14 07:33 . 2009-07-10 13:31 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll
2009-08-12 11:36 . 2009-08-12 11:36 -------- d-----w- c:\documents and settings\gast2\Application Data\Publish Providers
2009-08-12 11:35 . 2009-08-12 11:43 -------- d-----w- c:\documents and settings\gast2\Application Data\Sony
2009-08-12 11:00 . 2009-08-12 11:36 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Sony
2009-08-12 10:57 . 2009-08-12 10:57 -------- d-----w- c:\program files\Vstplugins
2009-08-12 10:57 . 2009-08-12 10:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony
2009-08-12 10:56 . 2009-08-12 10:56 -------- d-----w- c:\program files\Sony
2009-08-12 10:34 . 2009-08-12 10:34 -------- d-----w- c:\program files\Safari
2009-08-12 10:30 . 2009-08-12 10:30 -------- d-----w- c:\program files\iPod
2009-08-12 10:30 . 2009-08-12 10:40 -------- d-----w- c:\documents and settings\gast2\test
2009-08-12 10:30 . 2009-08-12 10:30 -------- d-----w- c:\program files\iTunes
2009-08-12 10:25 . 2009-08-12 10:25 75040 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.1.6\SetupAdmin.exe
2009-08-12 09:53 . 2009-08-12 09:53 -------- d-----w- c:\program files\Common Files\Stardock
2009-08-12 09:53 . 2009-08-12 09:53 -------- d-----w- c:\program files\Stardock
2009-08-12 09:49 . 2009-08-12 09:54 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Stardock
2009-08-12 09:49 . 2009-08-12 09:49 -------- d-----w- c:\program files\nCube
2009-08-10 06:43 . 2009-08-10 06:43 -------- d-----w- c:\windows\system32\XPSViewer
2009-08-10 06:42 . 2009-08-10 06:42 -------- d-----w- c:\program files\Reference Assemblies
2009-08-10 06:41 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-08-10 06:41 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-08-10 06:41 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-08-10 06:41 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-08-10 06:41 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-08-10 06:41 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-08-10 06:41 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-08-10 06:41 . 2009-08-10 06:42 -------- d-----w- C:\56be5fba227069808e335d42b1e6d4
2009-08-09 16:48 . 2009-08-09 16:50 -------- d-----w- C:\5642b4d9e07d99fb38f42e88c9dd5c
2009-08-09 16:48 . 2009-08-09 16:48 -------- d-----w- C:\32a04be108055f1c4e8922
2009-08-06 16:46 . 2009-08-06 16:46 -------- d-----w- c:\program files\Microsoft Silverlight
2009-08-06 09:31 . 2009-08-06 09:31 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Deployment
2009-08-05 09:01 . 2009-08-05 09:01 205312 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2009-08-03 05:36 . 2009-08-03 05:36 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-07-30 18:57 . 2009-07-30 18:57 -------- d-----w- c:\documents and settings\gast2\Local Settings\Application Data\Sony Ericsson
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-22 19:04 . 2009-07-05 10:56 -------- d-----w- c:\program files\DNA
2009-08-22 19:04 . 2009-07-05 10:56 -------- d-----w- c:\documents and settings\gast2\Application Data\DNA
2009-08-22 19:04 . 2009-07-02 11:38 -------- d-----w- c:\program files\Steam
2009-08-22 18:57 . 2009-06-09 20:13 12 ----a-w- c:\windows\bthservsdp.dat
2009-08-22 18:37 . 2009-05-11 17:03 -------- d-----w- c:\program files\Java
2009-08-22 18:33 . 2009-07-02 12:02 -------- d-----w- c:\documents and settings\gast2\Application Data\uTorrent
2009-08-21 09:20 . 2009-06-16 11:52 34 ----a-w- c:\documents and settings\gast2\jagex_runescape_preferences.dat
2009-08-15 12:57 . 2009-05-12 15:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-08-12 10:55 . 2009-05-26 15:22 -------- d-----w- c:\program files\Sony Setup
2009-08-12 10:30 . 2009-06-21 09:54 -------- d-----w- c:\program files\Common Files\Apple
2009-08-10 18:59 . 2009-06-22 20:10 70704 ----a-w- c:\documents and settings\gerdi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-08-10 08:59 . 2009-06-16 11:56 70704 ----a-w- c:\documents and settings\gast2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-08-10 06:48 . 2004-08-04 12:00 87302 ----a-w- c:\windows\system32\perfc013.dat
2009-08-10 06:48 . 2004-08-04 12:00 502182 ----a-w- c:\windows\system32\perfh013.dat
2009-08-10 06:43 . 2009-05-12 15:47 -------- d-----w- c:\program files\MSBuild
2009-08-05 09:01 . 2004-08-04 12:00 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-25 03:23 . 2009-05-11 17:04 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-17 19:04 . 2004-08-04 12:00 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-12 10:21 . 2004-08-04 12:00 233472 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-10 05:01 . 2009-06-04 15:46 485920 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-07-09 20:25 . 2009-07-09 20:25 -------- d-----w- c:\program files\Trust
2009-07-09 20:25 . 2009-05-11 13:55 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-07-05 11:22 . 2009-07-05 11:22 -------- d-----w- c:\program files\CCleaner
2009-07-04 09:14 . 2009-07-04 09:14 290816 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_nvd_4.dll
2009-07-04 09:14 . 2009-07-04 09:14 290816 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_nvd_3.dll
2009-07-04 09:14 . 2009-07-04 09:14 290816 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_nvd_2.dll
2009-07-04 09:14 . 2009-07-04 09:14 290816 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_nvd_1.dll
2009-07-04 09:14 . 2009-07-04 08:49 -------- d-----w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab
2009-07-04 09:02 . 2009-07-04 09:02 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2009-07-04 09:01 . 2009-07-04 09:01 -------- d-----w- c:\program files\PC Drivers HeadQuarters
2009-07-04 08:49 . 2009-06-04 15:36 -------- d-----w- c:\program files\SystemRequirementsLab
2009-07-04 08:49 . 2009-07-04 08:49 207872 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_srl_4.dll
2009-07-04 08:49 . 2009-07-04 08:49 207872 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_srl_3.dll
2009-07-04 08:49 . 2009-07-04 08:49 207872 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_srl_2.dll
2009-07-04 08:49 . 2009-07-04 08:49 207872 ----a-w- c:\documents and settings\gast2\Application Data\SystemRequirementsLab\SRLProxy_srl_1.dll
2009-07-04 07:32 . 2009-07-04 07:32 -------- d-----w- c:\program files\Trend Micro
2009-07-03 18:02 . 2009-07-03 17:57 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2009-07-03 17:56 . 2009-07-03 17:55 -------- d-----w- c:\program files\GameSpy Arcade
2009-07-03 17:46 . 2009-07-03 17:46 -------- d-----w- c:\program files\Sierra
2009-06-27 12:11 . 2009-06-27 11:19 -------- d-----w- c:\documents and settings\gast2\Application Data\BSplayer
2009-06-27 11:19 . 2009-06-27 11:19 -------- d-----w- c:\documents and settings\gast2\Application Data\BSplayer Pro
2009-06-27 09:04 . 2009-06-27 09:01 -------- d-----w- c:\program files\LeechFTP
2009-06-26 16:51 . 2004-08-04 12:00 669696 ----a-w- c:\windows\system32\wininet.dll
2009-06-26 16:51 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-06-16 14:40 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:40 . 2004-08-04 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-15 16:28 . 2009-06-15 16:27 34 ----a-w- c:\documents and settings\gerdi\jagex_runescape_preferences.dat
2009-06-15 10:45 . 2004-08-04 12:00 82432 ----a-w- c:\windows\system32\tlntsess.exe
2009-06-15 10:45 . 2004-08-04 12:00 79872 ----a-w- c:\windows\system32\telnet.exe
2009-06-12 15:36 . 2009-06-12 15:36 6656 ----a-w- c:\windows\system32\haspvdd.dll
2009-06-12 15:36 . 2009-06-12 15:36 47616 ----a-w- c:\windows\system32\drivers\Haspnt.sys
2009-06-12 15:36 . 2009-06-12 15:36 383 ----a-w- c:\windows\system32\haspdos.sys
2009-06-10 14:16 . 2004-08-04 12:00 85504 ----a-w- c:\windows\system32\avifil32.dll
2009-06-10 07:22 . 2009-05-11 08:11 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-06-10 06:16 . 2004-08-04 12:00 132096 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-03 19:11 . 2004-08-04 12:00 1295360 ----a-w- c:\windows\system32\quartz.dll
2009-06-02 16:30 . 2009-05-26 15:21 25512 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2009-06-02 16:30 . 2009-05-26 15:21 13224 ----a-w- c:\windows\system32\drivers\ggflt.sys
2009-05-27 17:07 . 2009-05-27 17:07 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstCCD.exe
2009-05-27 17:07 . 2009-05-27 17:07 15360 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
2009-05-27 17:07 . 2009-05-27 17:07 9728 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Installations\CommonCustomActions\UninstPCS.exe
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-26 15:23 . 2009-05-26 15:23 148736 ----a-w- c:\documents and settings\All Users\Application Data\hpe259.dll
2009-05-26 15:20 . 2009-05-26 15:21 1107296 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2009-03-16 12:35 . 2009-03-16 12:35 525128 ----a-w- c:\program files\DXSETUP.exe
2009-03-16 12:35 . 2009-03-16 12:35 94024 ----a-w- c:\program files\DSETUP.dll
.
((((((((((((((((((((((((((((( SnapShot_2009-07-03_16.48.28 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-11 17:41 . 2009-07-11 17:41 97280 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll
+ 2009-08-22 18:58 . 2009-08-22 18:58 16384 c:\windows\Temp\Perflib_Perfdata_734.dat
+ 2008-07-29 19:10 . 2008-07-29 19:10 26112 c:\windows\system32\TsWpfWrp.exe
+ 2009-05-11 17:47 . 2007-07-27 08:41 26488 c:\windows\system32\spupdsvc.exe
- 2009-05-11 17:47 . 2007-08-10 18:52 26488 c:\windows\system32\spupdsvc.exe
+ 2009-08-10 06:42 . 2008-07-06 12:06 89088 c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
+ 2009-05-27 18:13 . 2008-07-08 13:07 18808 c:\windows\system32\spmsg.dll
- 2009-05-27 18:13 . 2008-07-09 07:44 18808 c:\windows\system32\spmsg.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 43544 c:\windows\system32\PresentationHostProxy.dll
+ 2004-08-04 12:00 . 2009-08-10 06:48 68292 c:\windows\system32\perfc009.dat
+ 2005-09-23 05:28 . 2005-09-23 05:28 32768 c:\windows\system32\netfxperf.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 15360 c:\windows\system32\mui\0409\mscorees.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 83968 c:\windows\system32\mscories.dll
+ 2009-05-11 18:01 . 2009-07-31 22:38 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
- 2009-05-11 18:01 . 2009-05-11 18:01 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
+ 2008-07-29 17:24 . 2008-07-29 17:24 97800 c:\windows\system32\infocardapi.dll
+ 2008-07-29 17:24 . 2008-07-29 17:24 11264 c:\windows\system32\icardres.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 73720 c:\windows\system32\dxva2.dll
+ 2009-07-09 20:26 . 2006-12-29 14:49 27648 c:\windows\system32\drivers\GMFilter.sys
+ 2009-06-15 10:45 . 2009-06-15 10:45 82432 c:\windows\system32\dllcache\tlntsess.exe
+ 2009-06-15 10:45 . 2009-06-15 10:45 79872 c:\windows\system32\dllcache\telnet.exe
- 2009-02-20 08:12 . 2009-04-29 04:46 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2009-02-20 08:12 . 2009-06-26 16:51 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2009-06-16 14:40 . 2009-06-16 14:40 81920 c:\windows\system32\dllcache\fontsub.dll
+ 2009-06-10 14:16 . 2009-06-10 14:16 85504 c:\windows\system32\dllcache\avifil32.dll
+ 2009-07-17 19:04 . 2009-07-17 19:04 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 96760 c:\windows\system32\dfshim.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 98304 c:\windows\system32\CddbLangNL.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 77824 c:\windows\system32\CddbLangJA.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 98304 c:\windows\system32\CddbLangFR.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 98304 c:\windows\system32\CddbLangES.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 98304 c:\windows\system32\CddbLangDE.dll
+ 2009-06-05 15:48 . 2009-08-18 09:32 87618 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2009-07-31 13:26 . 2009-07-31 13:26 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
- 2009-04-28 10:23 . 2009-04-28 10:23 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 70648 c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 91136 c:\windows\Microsoft.NET\Framework\v3.5\MSBuild.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.VisualC.STLCLR.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 40960 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Data.Entity.Build.Tasks.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 89080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2052.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 92664 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1042.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 95224 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1041.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 89592 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1028.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 84480 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2052.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 94720 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1042.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 97792 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1041.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 84992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1028.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 97280 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\DeleteTemp.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 95224 c:\windows\Microsoft.NET\Framework\v3.5\EdmGen.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 78856 c:\windows\Microsoft.NET\Framework\v3.5\DataSvcUtil.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\AddInUtil.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess32.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess.exe
+ 2008-07-29 19:10 . 2008-07-29 19:10 46104 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
+ 2008-07-29 17:59 . 2008-07-29 17:59 32768 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationCFFRasterizer.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 71160 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
+ 2008-07-29 17:32 . 2008-07-29 17:32 17448 c:\windows\Microsoft.NET\Framework\v3.0\Windows Workflow Foundation\PerformanceCounterInstaller.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 73728 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 20504 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceMonikerSupport.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 11280 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelEvents.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 37896 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 81400 c:\windows\Microsoft.NET\Framework\v2.0.50727\TLBREF.DLL
+ 2008-07-25 09:17 . 2008-07-25 09:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.RegularExpressions.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 57392 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 95232 c:\windows\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 16896 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 61952 c:\windows\Microsoft.NET\Framework\v2.0.50727\regtlibv12.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 88584 c:\windows\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 24584 c:\windows\Microsoft.NET\Framework\v2.0.50727\normalization.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0409\mscorsecr.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 19456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscortim.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 18944 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsn.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 77312 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 94208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 46592 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 83456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 97792 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 65032 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtilLib.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEHost.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 18936 c:\windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 62968 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfdll.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 35320 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 27136 c:\windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 80376 c:\windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 89608 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 31560 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 34312 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 33288 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 33800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 17416 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 22024 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 58880 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 98808 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\CvtResUI.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\alinkui.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 96768 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 16896 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 82944 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2009-08-06 16:46 . 2009-08-06 16:46 49664 c:\windows\Installer\741e654.msi
+ 2008-07-29 19:07 . 2008-07-29 19:07 23040 c:\windows\Installer\2f55acf.msp
+ 2009-08-10 06:39 . 2009-08-10 06:39 88576 c:\windows\Installer\2eb1f42.msi
+ 2009-05-12 15:49 . 2009-08-15 12:57 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 54584 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\UNINST_Uninstall_D_4299976C1167441FA07CEF9926E410B1.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\NewShortcut7_093EA01C878D4FB8BBB75CF2AF29E7A1.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriversHQ.DriverDe_84B8F33B3EBF407BAC7CF7FF8090594C.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriversHQ.DriverDe_73EA94828B1A467994E24B03923D8FFE.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.pt_6CF114D33913468CBA2AA6967939B819.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.it_251B66F1CA924E82A1EE29E85D5EC5A1.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.fr_E1678746353A46E3A9150D3E8B3832B1.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.es_654C8EA5162D4D4084239A5EDD67F462.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.de_D62C7DB6680342028D5815A49A139B15.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\DriverDetective.ch_571875AB094D409B841CA52363CEAF75.exe
+ 2009-07-04 09:02 . 2009-07-04 09:02 75064 c:\windows\Installer\{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}\ARPPRODUCTICON.exe
+ 2009-08-10 06:41 . 2008-07-06 12:06 89088 c:\windows\Driver Cache\i386\filterpipelineprintproc.dll
+ 2009-08-10 06:56 . 2009-08-10 06:56 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\a715aa442ef87ae99b3ade185599249d\UIAutomationProvider.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\423f794d1f4ed6e120fbb02e436491cb\System.Windows.Presentation.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\19ca1747c1ea18a3b639b302bca8df93\System.Web.DynamicData.Design.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\532438e2acfcadc469a4d468c51f8451\System.ComponentModel.DataAnnotations.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\597b20e1b053d6a510cfe033c07a63e6\System.AddIn.Contract.ni.dll
+ 2009-08-10 06:53 . 2009-08-10 06:53 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\2d7408a0232f2e2efd0d7adf5dfa733a\PresentationFontCache.ni.exe
+ 2009-08-10 06:52 . 2009-08-10 06:52 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\c8fd2d9233f8ea3031fb16f697635231\PresentationCFFRasterizer.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\790cf1edb17ee41b59be62ecbd59613b\Microsoft.Vsa.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\ec83ec80653eb20ccc6ed42075c90aee\Microsoft.VisualC.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e9aba2eab90d647356f65e66053da02b\Microsoft.Build.Framework.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\28343d470d992f169ca0e7cdb3cc3117\Microsoft.Build.Framework.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 46080 c:\windows\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\dd7776fd3bfb79183a437cbed78775d1\DriversHQ.DriverDetective.Client.DirectX.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 57856 c:\windows\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\81acdaf6f14ada63e7b1fa0e1ae6c602\DriversHQ.DriverDetective.ExceptionLogging.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\f4e38208e88cb4cc314a1d6543b9fcc6\dfsvc.ni.exe
+ 2009-08-10 07:34 . 2009-08-10 07:34 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\11eb4f6606ba01e5128805759121ea6c\Accessibility.ni.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 94208 c:\windows\assembly\GAC_MSIL\WindowsFormsIntegration\3.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 98304 c:\windows\assembly\GAC_MSIL\UIAutomationTypes\3.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 40960 c:\windows\assembly\GAC_MSIL\UIAutomationProvider\3.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 12288 c:\windows\assembly\GAC_MSIL\System.Windows.Presentation\3.5.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 61440 c:\windows\assembly\GAC_MSIL\System.Web.Routing\3.5.0.0__31bf3856ad364e35\System.Web.Routing.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 32768 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 77824 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions\3.5.0.0__31bf3856ad364e35\System.Web.Abstractions.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 73728 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Install\3.0.0.0__b77a5c561934e089\System.ServiceModel.Install.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 53248 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions\3.5.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 57344 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\3.5.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 45056 c:\windows\assembly\GAC_MSIL\System.AddIn.Contract\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 46104 c:\windows\assembly\GAC_MSIL\PresentationFontCache\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe
+ 2009-08-10 06:43 . 2009-08-10 06:43 32768 c:\windows\assembly\GAC_MSIL\PresentationCFFRasterizer\3.0.0.0__31bf3856ad364e35\PresentationCFFRasterizer.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 41984 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC.STLCLR\1.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.STLCLR.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 94208 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2009-05-19 14:55 . 2009-07-01 07:42 49152 c:\windows\.jagex_cache_32\runescape\jagmisc.dll
+ 2009-05-19 14:55 . 2009-08-21 09:20 49152 c:\windows\.jagex_cache_32\runescape\jagmisc.dll
+ 2009-05-19 14:55 . 2009-08-21 09:20 81920 c:\windows\.jagex_cache_32\runescape\jaggl.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2009-07-31 13:28 . 2009-07-31 13:28 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
- 2009-04-28 10:26 . 2009-04-28 10:26 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 5632 c:\windows\Microsoft.NET\Framework\v3.5\Sentinel.v3.5Client.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_wminet_utils.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_VsaVb7rt.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_system.data.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_system.configuration.install.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_mscorsec.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_mscorrc.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_mscordbi.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5632 c:\windows\Microsoft.NET\Framework\sbs_microsoft.vsa.vb.codedomprocessor.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_microsoft.jscript.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_iehost.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 5120 c:\windows\Microsoft.NET\Framework\sbs_diasymreader.dll
+ 2009-07-03 17:54 . 2009-07-03 17:54 2238 c:\windows\Installer\{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}\ARPPRODUCTICON.exe
+ 2009-08-10 06:44 . 2009-08-10 06:44 5632 c:\windows\assembly\GAC_MSIL\Sentinel.v3.5Client\3.5.0.0__b03f5f7f11d50a3a\Sentinel.v3.5Client.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2007-11-07 00:19 . 2007-11-07 00:19 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcr90.dll
+ 2007-11-07 00:19 . 2007-11-07 00:19 568832 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcp90.dll
+ 2007-11-06 19:23 . 2007-11-06 19:23 224768 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcm90.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2008-07-29 19:26 . 2008-07-29 19:26 301568 c:\windows\system32\XPSViewer\XPSViewer.exe
+ 2009-07-09 20:25 . 2006-12-26 15:53 679936 c:\windows\system32\XIndicator.dll
- 2004-08-04 12:00 . 2009-04-29 04:46 620544 c:\windows\system32\urlmon.dll
+ 2004-08-04 12:00 . 2009-06-26 16:51 620544 c:\windows\system32\urlmon.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 161296 c:\windows\system32\UIAutomationCore.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\mxdwdrv.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\i386\mxdwdrv.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\mxdwdrv.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\amd64\mxdwdrv.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 147456 c:\windows\system32\spool\prtprocs\x64\filterpipelineprintproc.dll
+ 2009-08-10 06:41 . 2008-07-06 10:50 597504 c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
+ 2009-08-10 06:41 . 2008-03-13 04:52 761344 c:\windows\system32\spool\drivers\w32x86\3\unires.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 744960 c:\windows\system32\spool\drivers\w32x86\3\unidrvui.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 198656 c:\windows\system32\spool\drivers\w32x86\3\mxdwdui.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 765440 c:\windows\system32\spool\drivers\w32x86\3\mxdwdrv.dll
+ 2006-08-24 14:15 . 2006-08-24 14:15 150808 c:\windows\system32\rgb9rast_2.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 781344 c:\windows\system32\PresentationNative_v0300.dll
+ 2008-07-29 18:35 . 2008-07-29 18:35 326160 c:\windows\system32\PresentationHost.exe
+ 2008-07-29 17:59 . 2008-07-29 17:59 105016 c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
+ 2004-08-04 12:00 . 2009-08-10 06:48 435396 c:\windows\system32\perfh009.dat
+ 2008-07-25 09:16 . 2008-07-25 09:16 158720 c:\windows\system32\mscorier.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 282112 c:\windows\system32\mscoree.dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 257440 c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2009-08-22 18:37 . 2009-07-25 03:23 149280 c:\windows\system32\javaws.exe
+ 2009-08-22 18:37 . 2009-07-25 03:23 145184 c:\windows\system32\javaw.exe
+ 2009-08-22 18:37 . 2009-07-25 03:23 145184 c:\windows\system32\java.exe
+ 2008-07-29 17:24 . 2008-07-29 17:24 622080 c:\windows\system32\icardagt.exe
+ 2009-07-09 20:25 . 2006-12-27 11:05 229376 c:\windows\system32\Hook.dll
+ 2009-05-11 09:02 . 2009-08-10 07:27 273376 c:\windows\system32\FNTCACHE.DAT
+ 2008-07-29 19:10 . 2008-07-29 19:10 493048 c:\windows\system32\evr.dll
+ 2004-08-04 12:00 . 2009-07-12 10:21 233472 c:\windows\system32\dllcache\wmpdxm.dll
- 2004-08-04 12:00 . 2008-04-14 17:02 233472 c:\windows\system32\dllcache\wmpdxm.dll
+ 2009-06-10 06:16 . 2009-06-10 06:16 132096 c:\windows\system32\dllcache\wkssvc.dll
+ 2009-02-20 08:12 . 2009-06-26 16:51 669696 c:\windows\system32\dllcache\wininet.dll
- 2009-02-20 08:12 . 2009-04-29 04:46 669696 c:\windows\system32\dllcache\wininet.dll
+ 2009-02-20 08:12 . 2009-06-26 16:51 620544 c:\windows\system32\dllcache\urlmon.dll
- 2009-02-20 08:12 . 2009-04-29 04:46 620544 c:\windows\system32\dllcache\urlmon.dll
+ 2009-06-16 14:40 . 2009-06-16 14:40 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 765952 c:\windows\system32\CDDBUI.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 102400 c:\windows\system32\CddbLangIT.dll
+ 2006-09-28 18:52 . 2006-09-28 18:52 655360 c:\windows\system32\CDDBControl.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 132472 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
- 2009-04-28 10:24 . 2009-04-28 10:24 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2009-07-31 13:26 . 2009-07-31 13:26 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2009-07-31 13:40 . 2009-07-31 13:40 468408 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe
- 2009-04-28 10:26 . 2009-04-28 10:26 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2009-07-31 13:28 . 2009-07-31 13:28 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
- 2009-04-28 10:24 . 2009-04-28 10:24 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2009-07-31 13:26 . 2009-07-31 13:26 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 714752 c:\windows\system32\Adobe\Shockwave 11\gi.dll
+ 2009-07-31 13:25 . 2009-07-31 13:25 614400 c:\windows\system32\Adobe\Shockwave 11\Control.dll
- 2009-04-28 10:26 . 2009-04-28 10:26 614400 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2009-07-31 13:41 . 2009-07-31 13:41 206264 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2009-07-31 13:27 . 2009-07-31 13:27 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
- 2009-04-28 10:25 . 2009-04-28 10:25 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 196104 c:\windows\Microsoft.NET\Framework\v3.5\WFServicesReg.exe
+ 2008-07-29 21:40 . 2008-07-29 21:40 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 984056 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapUI.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.3082.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2070.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1055.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 105976 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1053.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107000 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1049.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1046.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 109048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1045.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1044.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1043.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1040.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1038.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 101368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1037.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 112120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1036.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1035.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 113656 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1032.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111608 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1031.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1030.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1029.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 102904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1025.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 689152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsscenario.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 413184 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsbasereqs.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 632320 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs70uimgr.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2008-07-29 16:47 . 2008-07-29 16:47 110080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 131584 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.3082.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 131072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2070.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1055.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1053.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 123904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1049.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 122880 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1046.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1045.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 121856 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1044.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 129024 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1043.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1040.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 132096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1038.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 111104 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1037.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 133120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1036.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 122368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1035.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 137728 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1032.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 130048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1031.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 126464 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1030.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 125440 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1029.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 113152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1025.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 269304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
+ 2008-07-29 16:47 . 2008-07-29 16:47 177152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\HtmlLite.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 276984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\dlmgr.dll
+ 2008-07-29 21:15 . 2008-07-29 21:15 225490 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\baseline.dat
+ 2008-07-29 21:40 . 2008-07-29 21:40 233976 c:\windows\Microsoft.NET\Framework\v3.5\1033\vbc7ui.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 168448 c:\windows\Microsoft.NET\Framework\v3.5\1033\cscompui.dll
+ 2008-07-29 18:35 . 2008-07-29 18:35 864256 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationUI.dll
+ 2008-07-29 17:59 . 2008-07-29 17:59 132120 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 806928 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NaturalLanguage6.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 152576 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 966656 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 132096 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 156688 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2008-07-29 17:16 . 2008-07-29 17:16 397312 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.dll
+ 2008-07-29 17:24 . 2008-07-29 17:24 881664 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
+ 2008-07-29 17:16 . 2008-07-29 17:16 168968 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2008-11-25 02:59 . 2008-11-25 02:59 436040 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 392184 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 364872 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 990032 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 09:16 . 2008-07-25 09:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 09:17 . 2008-07-25 09:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2009-07-31 22:33 . 2009-07-31 22:33 248832 c:\windows\Installer\74189aee.msi
+ 2008-12-13 07:58 . 2008-12-13 07:58 754688 c:\windows\Installer\2f6e724.msp
+ 2009-08-10 06:44 . 2009-08-10 06:44 648192 c:\windows\Installer\2f6e701.msi
+ 2008-07-29 19:23 . 2008-07-29 19:23 250880 c:\windows\Installer\2f55ad8.msp
+ 2008-07-29 19:28 . 2008-07-29 19:28 278016 c:\windows\Installer\2f55ad6.msp
+ 2008-07-29 17:40 . 2008-07-29 17:40 291840 c:\windows\Installer\2f55ad4.msp
+ 2009-08-10 06:43 . 2009-08-10 06:43 137728 c:\windows\Installer\2f55ace.msi
+ 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\2eb1f47.msp
+ 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\2eb1f45.msp
+ 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\2eb1f44.msp
+ 2009-03-20 09:48 . 2009-03-20 09:48 183808 c:\windows\Installer\28608ac.msp
+ 2009-08-12 10:34 . 2009-08-12 10:34 307200 c:\windows\Installer\{E56D39F8-2A9F-44B4-B068-A72E45A073E6}\SafariIco.exe
+ 2009-08-12 10:31 . 2009-08-12 10:31 102400 c:\windows\Installer\{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}\iTunesIco.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-08-10 06:41 . 2008-03-13 04:52 761344 c:\windows\Driver Cache\i386\unires.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 744960 c:\windows\Driver Cache\i386\unidrvui.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 373248 c:\windows\Driver Cache\i386\unidrv.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 198656 c:\windows\Driver Cache\i386\mxdwdui.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 765440 c:\windows\Driver Cache\i386\mxdwdrv.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\XPBurnComponent\99e485e0c3eb0435c1282ad4ef40b385\XPBurnComponent.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\2ef5bc3a2edd7570bb23886a4f32294a\WsatConfig.ni.exe
+ 2009-08-10 06:56 . 2009-08-10 06:56 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\6a818099f0386e2356ae94f886a2196f\WindowsFormsIntegration.ni.dll
+ 2009-08-10 06:56 . 2009-08-10 06:56 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a6d9503962d47c722231c1478f180695\UIAutomationTypes.ni.dll
+ 2009-08-10 06:56 . 2009-08-10 06:56 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\5c028c3d8db6c0f0277673ea4a2d89fb\UIAutomationClient.ni.dll
+ 2009-08-10 07:38 . 2009-08-10 07:38 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\c338a470b14851ce5987bb0f0869c310\System.Xml.Linq.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\bb77ea11f46ab438b2b7ed7c180011a1\System.Web.Routing.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\6ee255220d90dcbe80c990e443051cc5\System.Web.RegularExpressions.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\58f62044fa702ea6f936071aa5520baa\System.Web.Extensions.Design.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\79c29ac85dd57dd485ab60118ac292ff\System.Web.Entity.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\d3d65e34fa60f0b6c72ca0d12ec89933\System.Web.Entity.Design.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\b7891f5659db299dbd1b3c72db7edb9f\System.Web.DynamicData.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\00ec08741a765c707bd9169346064a81\System.Web.Abstractions.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\5a555c9ae6984c40157cf940bb519f7c\System.Transactions.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ea3366939280c1715f1c620e33ee3c8a\System.ServiceProcess.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 676352 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\1c8df2da33222c048d683017f2095f04\System.Security.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\bfd6e16d8c3589cd2bd3f8d46f0a5402\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\2abd876a3c8a6b088fa6d8d39d901e3c\System.Runtime.Remoting.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\519d9c618341b136f9b963ffb7495308\System.Net.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\8642fdfbf02a6cb6f01169fe6fdb5d11\System.Management.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\1d3fbbd23ce1e8637ef4f40a8d23cd32\System.Management.Instrumentation.ni.dll
+ 2009-08-10 07:33 . 2009-08-10 07:33 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7c367a96b10d626ec8cbf8149272d845\System.IO.Log.ni.dll
+ 2009-08-10 07:33 . 2009-08-10 07:33 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\68e71147704ef0d34d9a4bece7767fc5\System.IdentityModel.Selectors.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\4267bd908175603006c6c90bb5d900c7\System.EnterpriseServices.Wrapper.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\4267bd908175603006c6c90bb5d900c7\System.EnterpriseServices.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\18bbe2b6717e7f1d1dd672526e9889ee\System.Drawing.Design.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\c434a07332ce490711c27fd0edb7562f\System.DirectoryServices.Protocols.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\8b3bb7a2c2f3ffe94c866283f1cd5957\System.DirectoryServices.AccountManagement.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\a4b887f476fa4b8746a93a9fc2208560\System.Data.Services.Client.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\1cf3acad6553d6c59df576794f4e8bd6\System.Data.Services.Design.ni.dll
+ 2009-08-10 07:36 . 2009-08-10 07:36 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\392de34573f9f8ec885714f2f3e7f07f\System.Data.Entity.Design.ni.dll
+ 2009-08-10 07:36 . 2009-08-10 07:36 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\1db495ff00bbd14df4af6680c4de0653\System.Data.DataSetExtensions.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\b82c00e2d24305ad6cb08556e3779b75\System.Configuration.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\de514e484e49b04b016949d57ffac03e\System.Configuration.Install.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\ce984d754e3c0b6be4504b785cc43574\System.AddIn.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\045dd501b7257b1cc26083538ae69045\SMSvcHost.ni.exe
+ 2009-08-10 07:34 . 2009-08-10 07:34 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\9790551187e294b4ed3aaa1c221891c7\SMDiagnostics.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\10a0c9707876fc1f65e64b811a28b020\ServiceModelReg.ni.exe
+ 2009-08-10 06:54 . 2009-08-10 06:54 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f475294d8c7dc2dd4febeef27bc0417e\PresentationFramework.Classic.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8003abaf6bcf70f7eb620d06837e897b\PresentationFramework.Luna.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\59a67874d8d8475faa5be1d993083d12\PresentationFramework.Aero.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2c980c9a5051d723c6ec2a78a3d0e2b3\PresentationFramework.Royale.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\6d38e317128608bc4516ea46ab94590e\MSBuild.ni.exe
+ 2009-08-10 07:34 . 2009-08-10 07:34 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\1820d6a012fc0e16c3e1d29d973cd2d0\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 309248 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\ca69b9a1cae32c0a46c76e0df8fb98a6\Microsoft.Practices.EnterpriseLibrary.Common.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 148992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\486a6d1250e0781488336dddad654edc\Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 303616 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\3c09bdb7ccba745b2cad4fa50684fdb5\Microsoft.Practices.ObjectBuilder.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\55b9eff9e23359faed4351386c062238\Microsoft.Build.Utilities.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\4217124db1ea5de5f1a1f3eea75e8d32\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\96825c34d7e1f7df1923ff2123bed8da\Microsoft.Build.Engine.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\9b321ebf67587237f576df6104a32588\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 230400 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Applicati#\96f89fcd90f8351054088a159d6ddfcb\Microsoft.ApplicationBlocks.Updater.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 285696 c:\windows\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\b3e4780bd14bcd01665909da67ef48d8\DriversHQ.DriverDetective.Client.Communication.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 258560 c:\windows\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\9e29fcbbee67354eb0c0a1da68977fc6\DriversHQ.DriverDetective.Common.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\9bea05938bee3555c5aa8763d89a68f9\CustomMarshalers.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\12629e2f3e315459bee67cbbaac85cb2\ComSvcConfig.ni.exe
+ 2009-08-10 07:34 . 2009-08-10 07:34 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\b5b2feadc3943e3976daebc0bcd2b5e2\AspNetMMCExt.ni.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 385024 c:\windows\assembly\GAC_MSIL\UIAutomationClientsideProviders\3.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 167936 c:\windows\assembly\GAC_MSIL\UIAutomationClient\3.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 507904 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 540672 c:\windows\assembly\GAC_MSIL\System.Workflow.Runtime\3.0.0.0__31bf3856ad364e35\System.Workflow.Runtime.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 335872 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
+ 2009-08-10 06:50 . 2009-08-10 06:50 139264 c:\windows\assembly\GAC_MSIL\System.Web.Entity\3.5.0.0__b77a5c561934e089\System.Web.Entity.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 131072 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design\3.5.0.0__b77a5c561934e089\System.Web.Entity.Design.dll
+ 2009-08-10 06:50 . 2009-08-10 06:50 229376 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 688128 c:\windows\assembly\GAC_MSIL\System.Speech\3.0.0.0__31bf3856ad364e35\System.Speech.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 569344 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 966656 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 233472 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 143360 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 131072 c:\windows\assembly\GAC_MSIL\System.IO.Log\3.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 430080 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 286720 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2009-08-10 06:50 . 2009-08-10 06:50 442368 c:\windows\assembly\GAC_MSIL\System.Data.Services\3.5.0.0__b77a5c561934e089\System.Data.Services.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 114688 c:\windows\assembly\GAC_MSIL\System.Data.Services.Design\3.5.0.0__b77a5c561934e089\System.Data.Services.Design.dll
+ 2009-08-10 06:50 . 2009-08-10 06:50 294912 c:\windows\assembly\GAC_MSIL\System.Data.Services.Client\3.5.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 684032 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 229376 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 667648 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 528384 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 864256 c:\windows\assembly\GAC_MSIL\PresentationUI\3.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 163840 c:\windows\assembly\GAC_MSIL\PresentationFramework.Royale\3.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 397312 c:\windows\assembly\GAC_MSIL\PresentationFramework.Luna\3.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 139264 c:\windows\assembly\GAC_MSIL\PresentationFramework.Classic\3.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 196608 c:\windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 598016 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 397312 c:\windows\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 802816 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 733184 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 106496 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2009-08-10 06:42 . 2009-08-10 06:42 163840 c:\windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-05-26 15:49 . 2009-07-01 07:45 101948 c:\windows\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2009-05-26 15:49 . 2009-08-01 10:57 101948 c:\windows\.jagex_cache_32\loginapplet\cache--2062608270.dat
+ 2009-07-09 20:25 . 2006-12-26 15:53 2637824 c:\windows\system32\XWheel.dll
- 2004-08-04 12:00 . 2008-04-14 17:02 4874240 c:\windows\system32\wmp.dll
+ 2004-08-04 12:00 . 2009-07-12 10:21 4874240 c:\windows\system32\wmp.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\xpssvcs.dll
+ 2009-08-10 06:42 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\i386\xpssvcs.dll
+ 2009-08-10 06:42 . 2008-07-06 15:36 2936832 c:\windows\system32\spool\XPSEP\amd64\xpssvcs.dll
+ 2009-08-10 06:42 . 2008-07-06 15:36 2936832 c:\windows\system32\spool\XPSEP\amd64\amd64\xpssvcs.dll
+ 2009-08-10 06:41 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\drivers\w32x86\3\XpsSvcs.dll
+ 2004-08-04 12:00 . 2009-07-18 16:15 1509888 c:\windows\system32\shdocvw.dll
+ 2004-08-04 12:00 . 2009-07-18 16:15 3090432 c:\windows\system32\mshtml.dll
+ 2009-07-09 20:25 . 2006-12-27 16:44 1146880 c:\windows\system32\MousePage.dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 3883424 c:\windows\system32\Macromed\Flash\NPSWF32.dll
- 2004-08-04 12:00 . 2008-04-14 17:02 4874240 c:\windows\system32\dllcache\wmp.dll
+ 2004-08-04 12:00 . 2009-07-12 10:21 4874240 c:\windows\system32\dllcache\wmp.dll
+ 2009-03-02 23:12 . 2009-07-18 16:15 1509888 c:\windows\system32\dllcache\shdocvw.dll
+ 2008-12-20 22:15 . 2009-06-03 19:11 1295360 c:\windows\system32\dllcache\quartz.dll
+ 2009-05-11 08:11 . 2009-06-10 07:22 2066432 c:\windows\system32\dllcache\mstscax.dll
+ 2009-02-20 08:12 . 2009-07-18 16:15 3090432 c:\windows\system32\dllcache\mshtml.dll
+ 2009-07-31 13:00 . 2009-07-31 13:00 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
- 2009-04-28 10:00 . 2009-04-28 10:00 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 1886320 c:\windows\system32\Adobe\Shockwave 11\gt.exe
- 2009-04-28 10:04 . 2009-04-28 10:04 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
+ 2009-07-31 13:04 . 2009-07-31 13:04 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 1720824 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2008-07-29 16:47 . 2008-07-29 16:47 1054208 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 1364992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\SITSetup.dll
+ 2008-07-29 16:47 . 2008-07-29 16:47 1064448 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\gencomp.dll
+ 2008-07-29 21:40 . 2008-07-29 21:40 1548280 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2008-12-05 17:35 . 2008-12-05 17:35 1736528 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 2637840 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsLexicons0009.dll
+ 2008-07-29 19:10 . 2008-07-29 19:10 4883464 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsData0009.dll
+ 2008-12-05 18:12 . 2008-12-05 18:12 5931008 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-11-25 02:59 . 2008-11-25 02:59 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 3149824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 5813576 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2008-11-25 02:59 . 2008-11-25 02:59 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-07-25 09:16 . 2008-07-25 09:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2009-08-12 10:34 . 2009-08-12 10:34 2487808 c:\windows\Installer\d40c37.msi
+ 2009-08-12 10:31 . 2009-08-12 10:31 4945408 c:\windows\Installer\d40c32.msi
+ 2009-08-12 10:24 . 2009-08-12 10:24 1665024 c:\windows\Installer\d408e6.msi
+ 2009-07-02 14:23 . 2009-07-02 14:23 5027328 c:\windows\Installer\ad390.msp
+ 2009-08-03 05:40 . 2009-08-03 05:40 3295232 c:\windows\Installer\9da11dc.msi
+ 2009-07-03 17:54 . 2009-07-03 17:54 4350976 c:\windows\Installer\41c06c.msi
+ 2008-12-13 07:57 . 2008-12-13 07:57 8397824 c:\windows\Installer\2f6e70f.msp
+ 2008-07-29 17:26 . 2008-07-29 17:26 1043456 c:\windows\Installer\2f55ad7.msp
+ 2008-07-29 18:37 . 2008-07-29 18:37 2679808 c:\windows\Installer\2f55ad5.msp
+ 2008-07-29 19:15 . 2008-07-29 19:15 3697664 c:\windows\Installer\2f55ad3.msp
+ 2008-07-29 17:34 . 2008-07-29 17:34 1448448 c:\windows\Installer\2f55ad2.msp
+ 2008-07-29 18:22 . 2008-07-29 18:22 4137984 c:\windows\Installer\2f55ad1.msp
+ 2008-07-29 17:18 . 2008-07-29 17:18 3376640 c:\windows\Installer\2f55ad0.msp
+ 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\2eb1f4b.msp
+ 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\2eb1f4a.msp
+ 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\2eb1f49.msp
+ 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\2eb1f48.msp
+ 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\2eb1f46.msp
+ 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\2eb1f43.msp
+ 2009-07-04 09:02 . 2009-07-04 09:02 1875456 c:\windows\Installer\1f6899.msi
+ 2009-07-05 17:56 . 2009-07-05 17:56 1366016 c:\windows\Installer\1a21a29.msi
+ 2009-07-27 02:32 . 2009-07-27 02:32 5028352 c:\windows\Installer\10d39d68.msp
- 2009-05-12 15:49 . 2009-06-18 15:59 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-05-12 15:49 . 2009-06-18 15:59 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-05-12 15:49 . 2009-08-15 12:57 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-08-10 06:52 . 2009-08-10 06:52 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\14cd5f4b61d35f9b76327d6be9853755\WindowsBase.ni.dll
+ 2009-08-10 06:56 . 2009-08-10 06:56 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\f3c7957351aec85f526a3350c9718b1e\UIAutomationClientsideProviders.ni.dll
+ 2009-08-10 06:52 . 2009-08-10 06:52 7868416 c:\windows\assembly\NativeImages_v2.0.50727_32\System\80978a322d7dd39f0a71be1251ae395a\System.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\773a9786013451d3baaeff003dc4230f\System.Xml.ni.dll
+ 2009-08-10 07:38 . 2009-08-10 07:38 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\ac1750e78d79520dcf19195772eff1b6\System.WorkflowServices.ni.dll
+ 2009-08-10 07:38 . 2009-08-10 07:38 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\d265da36954fcb4cb7ad5adc693ea0f2\System.Workflow.Runtime.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\693a8fbe6f7ad6e4e429052da4317e59\System.Workflow.ComponentModel.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\cc99fbbac0b6e4e9ca62093e49b0c16b\System.Workflow.Activities.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\b57bb002a655920cbfa2bee29d1e22b7\System.Web.Services.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\81197e32ec931f439b3114e9031b65d6\System.Web.Mobile.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\7f64c9d25471b72e1e957bdfe67947c8\System.Web.Extensions.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\63cf639b6e0a3c25c1643c85016e7422\System.Speech.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\340cad17fe57947eacbc8fa2cea780da\System.ServiceModel.Web.ni.dll
+ 2009-08-10 07:33 . 2009-08-10 07:33 2338304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\034c91b133dee73d452652c52767b5ea\System.Runtime.Serialization.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 1035264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\646ab52eef343380aa002c220dc31e13\System.Printing.ni.dll
+ 2009-08-10 07:33 . 2009-08-10 07:33 1056768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\c2de8479e54852f56996f79bc93acb13\System.IdentityModel.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3da96ee075bab9202626ae44c18d226c\System.Drawing.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\543aced762f6b0c3f8e037955941afc6\System.DirectoryServices.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\a6b58624486714fa71e5e35186850ff0\System.Deployment.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\c70731047b0022638b3f9fb158948a03\System.Data.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\826b09ab0d0e36f4d631b4cd335df511\System.Data.SqlXml.ni.dll
+ 2009-08-10 07:37 . 2009-08-10 07:37 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\956a513dcbd44d5a6801840ef2b0b47b\System.Data.Services.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\283ecfbaa6a6fab76c8b544a4a89d5ce\System.Data.OracleClient.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\0bbec79460b1137df5313f9baf7b246f\System.Data.Linq.ni.dll
+ 2009-08-10 07:36 . 2009-08-10 07:36 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\6479f975b105808a8d9e7a7fdc762551\System.Data.Entity.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\47d87251e93256c635eb73403b8db33e\System.Core.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4bfb3048bf200a6a8592d1b4ba861a7f\ReachFramework.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\6bafb1a2a73794ddb9761cb321c9e7e2\PresentationUI.ni.dll
+ 2009-08-10 06:52 . 2009-08-10 06:52 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\e634bc4c4a00635a0a254febab0e2e2c\PresentationBuildTasks.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\1c86afc399d0fdd8e069266ffbe748d1\Microsoft.VisualBasic.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\6b2f62f5e981913fce1d223f645d9ddf\Microsoft.Transactions.Bridge.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b261961046545831aa60963e84905968\Microsoft.JScript.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\bd241492d96db39f20e758c13c845033\Microsoft.Build.Tasks.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a47100d8f4574bed2d49d83d0ab8964e\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\6cfe582681724965fb817e8ece5f0909\Microsoft.Build.Engine.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 3600384 c:\windows\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\1f59c2584a8e4527fde8f2f29e2eac70\DriversHQ.DriverDetective.Client.ni.exe
+ 2009-08-10 06:43 . 2009-08-10 06:43 1245184 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 1630208 c:\windows\assembly\GAC_MSIL\System.Workflow.ComponentModel\3.0.0.0__31bf3856ad364e35\System.Workflow.ComponentModel.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 1138688 c:\windows\assembly\GAC_MSIL\System.Workflow.Activities\3.0.0.0__31bf3856ad364e35\System.Workflow.Activities.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2009-08-10 06:50 . 2009-08-10 06:50 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2009-08-10 06:49 . 2009-08-10 06:49 5931008 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2009-08-10 06:44 . 2009-08-10 06:44 2879488 c:\windows\assembly\GAC_MSIL\System.Data.Entity\3.5.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2009-08-10 06:49 . 2009-08-10 06:49 5283840 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-08-10 06:48 . 2009-08-10 06:48 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2009-08-10 06:43 . 2009-08-10 06:43 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2009-08-10 06:47 . 2009-08-10 06:47 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-05-15 14:45 . 2009-07-30 00:49 24281536 c:\windows\system32\MRT.exe
+ 2009-08-12 10:57 . 2009-08-12 10:57 14821376 c:\windows\Installer\f1032d.msi
+ 2009-08-06 16:46 . 2009-08-06 16:46 15705600 c:\windows\Installer\741e65a.msp
+ 2008-12-13 08:21 . 2008-12-13 08:21 10473472 c:\windows\Installer\2f6e719.msp
+ 2009-08-10 06:49 . 2009-08-10 06:49 11486720 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2CB.tmp\mscorlib.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\63406259e94d5c0ff5b79401dfe113ce\System.Windows.Forms.ni.dll
+ 2009-08-10 07:35 . 2009-08-10 07:35 11796992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\3963ce03d445a8619abbf388d590134b\System.Web.ni.dll
+ 2009-08-10 07:34 . 2009-08-10 07:34 17317888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\4146033013edebd7e0cb604e504ebfee\System.ServiceModel.ni.dll
+ 2009-08-10 06:55 . 2009-08-10 06:55 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\8ee220bc3cce4f7bbd7818946519ed7f\System.Design.ni.dll
+ 2009-08-10 06:54 . 2009-08-10 06:54 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\96e710f47c601cba3f2348a8d11ddede\PresentationFramework.ni.dll
+ 2009-08-10 06:53 . 2009-08-10 06:53 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\956375d487cbef36165b3250030e3574\PresentationCore.ni.dll
+ 2009-08-10 06:52 . 2009-08-10 06:52 11486720 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\6d667f19d687361886990f3ca0f49816\mscorlib.ni.dll
.
-- Snapshot teruggezet naar huidige datum --
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
"Steam"="c:\program files\steam\steam.exe" [2009-07-02 1217784]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-07-02 288048]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-07-05 318272]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2009-06-25 1578736]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2009-04-01 405504]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files\F-Secure\Common\FSM32.EXE" [2002-12-05 106571]
"PRISMSVR.EXE"="c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PRISMSVR.EXE" [2004-04-26 295001]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"Trust Gaming mouse"="c:\program files\Trust\GM-4200 Gamer Mouse Optical\Panel.exe" [2006-12-28 1232896]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-05-20 177472]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"SoundMan"="SOUNDMAN.EXE" - c:\windows\soundman.exe [2006-11-17 577536]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1622016]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\gast2\Menu Start\Programma's\Opstarten\
Stardock ObjectDock.lnk - c:\program files\Stardock\ObjectDock\ObjectDock.exe [2009-8-12 3450608]
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
Philips Wireless USB Adapter 11g.lnk - c:\program files\philips\Philips 54Mbps Wireless USB Adapter Utility\PHUSB11GMonitor.exe [2004-8-9 344064]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\steam\\Steam.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\Steam\\steamapps\\riban007\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\ftp.exe"=
R2 BackWeb Client - 7681197;F-Secure BackWeb;c:\progra~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE [11/05/2009 16:01 16384]
R2 F-Secure Filter;F-Secure File System Filter;c:\program files\F-Secure\Anti-Virus\win2k\FSfilter.sys [11/05/2009 16:01 48720]
R2 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files\F-Secure\Anti-Virus\win2k\fsgk.sys [11/05/2009 16:01 42672]
R2 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files\F-Secure\Anti-Virus\win2k\FSrec.sys [11/05/2009 16:01 16048]
R2 FSpm;F-Secure Policy Manager;c:\program files\F-Secure\Common\FSpm.sys [11/05/2009 16:01 65328]
R3 CPWUA2F;Wireless USB Adapter 11g;c:\windows\system32\drivers\CPWUA2F.sys [11/05/2009 18:38 380160]
R3 GMFilter Filter;GMFilter Filter;c:\windows\system32\drivers\GMFilter.sys [9/07/2009 22:26 27648]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [26/05/2009 17:21 13224]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [26/05/2009 17:23 89256]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [26/05/2009 17:23 86824]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [26/05/2009 17:23 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [26/05/2009 17:23 114600]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [26/05/2009 17:23 108328]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [26/05/2009 17:23 26024]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [26/05/2009 17:23 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [26/05/2009 17:23 109736]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}]
c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Inhoud van de 'Gedeelde Taken' map
2009-08-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2009-07-04 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
2009-08-22 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 15:04]
.
- - - - ORPHANS VERWIJDERD - - - -
WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - (no file)
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.missim.org/
mStart Page = hxxp://www.missim.org/
uInternet Connection Wizard,ShellNext = hxxp://donboscohelchteren.smartschool.be/index.php?module=News&file=coursenews&function=main&courseID=1168
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\gast2\Application Data\Mozilla\Firefox\Profiles\oj5djuug.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - Google
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2009-08-22 21:03
Windows 5.1.2600 Service Pack 3 NTFS
scannen van verborgen processen ...
scannen van verborgen autostart items ...
scannen van verborgen bestanden ...
Scan succesvol afgerond
verborgen bestanden: 0
**************************************************************************
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
- - - - - - - > 'explorer.exe'(2312)
c:\program files\Stardock\ObjectDock\DockShellHook.dll
c:\windows\system32\Hook.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\F-Secure\Anti-Virus\fsgk32st.exe
c:\program files\F-Secure\Anti-Virus\fsgk32.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\F-Secure\Anti-Virus\fssm32.exe
c:\program files\F-Secure\BackWeb\7681197\Program\backWeb-7681197.exe
c:\windows\system32\nvsvc32.exe
c:\program files\F-Secure\Common\FSMA32.exe
c:\program files\F-Secure\Common\FSMB32.exe
c:\program files\F-Secure\Common\fch32.exe
c:\program files\F-Secure\Common\FAMEH32.exe
c:\program files\F-Secure\Common\FNRB32.exe
c:\program files\F-Secure\Common\FIH32.exe
c:\program files\F-Secure\Anti-Virus\fsav32.exe
c:\windows\system32\rundll32.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Voltooingstijd: 2009-08-22 21:09 - machine werd herstart
ComboFix-quarantined-files.txt 2009-08-22 19:09
ComboFix2.txt 2009-07-04 08:22
ComboFix3.txt 2009-06-18 13:37
Pre-Run: 6.748.295.168 bytes beschikbaar
Post-Run: 6.872.449.024 bytes beschikbaar
1005 --- E O F --- 2009-08-15 12:58