Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Beste pc forum helpers,

Ik ben al weken aan het vechten met mijn laptop. Na steeds vastlopen en trager en trager worden besloot ik opnieuw xp erop te zetten en de boel te formatteren. Heb veel drivers opnieuw kunnen installeren maar de laptop blijft een ergernis om mee te werken. Ik hoop dat iemand me verder kan helpen want mijn kennis en oplossingen zijn op:pcguru:....Ik zie vaak dat er een log gepost word via een Hijack?? Zou iemand mij hiermee kunnen helpen en hopelijk samen tot een betere laptop te komen?

Heel erg bedankt alvast.

Groetjes Liseth

Geplaatst:

Of uw probleem met malware/virus te maken heeft denk ik niet maar om het alleszins uit te sluiten ga ik u onderstaande laten uitvoeren.

Onze specialist zal u dan zo snel mogelijk verder helpen.

Download HiJackThis

Dubbelklik op HJTInstall.exe

Hijackthis wordt nu op je PC geïnstalleerd, een snelkoppeling wordt op je bureaublad geplaatst.

HijackThis zal openen na het installeren.

Klik op "Do a systemscan and save a logfile".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd. Plak nu het HJT logje in je bericht door CTRL en V-toets.

N.B. : gebruikers van Windows Vista en Windows 7 zullen eerst moeten rechtsklikken op HijackThis.exe en dan kiezen voor "Run as Administrator".

Geplaatst:

Logfile of Trend Micro HijackThis v2.0.3 (BETA)

Scan saved at 14:14:03, on 22-2-2010

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\WINDOWS\CBTWlanSrv.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\Program Files\Common Files\Motive\McciCMService.exe

c:\program files\linksys\wpc54gv3\wpc54gv3.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\WINDOWS\System32\msiexec.exe

C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://conltbc.cert.motive.com

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1265466685906

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll

O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: CBT Wlan Service (CBTWlanSrv) - Unknown owner - C:\WINDOWS\CBTWlanSrv.exe

O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe

O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

--

End of file - 5011 bytes

Geplaatst:

Neen, dit logje vertoont geen sporen van malware :sad

Maar om helemaal zeker te zijn, mag je dit nog eens uitvoeren :

Download Combofix naar je Bureaublad.

Lees hier meer over correct gebruik van Combofix.

OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.

Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!

  • Dubbelklik op Combofix.exe om het te starten.
    Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
    Volg de instructies, aanvaard de disclaimer door op Ja te klikken.
    Indien de Recovery Console niet geïnstalleerd is, wordt je gevraagd om dit alsnog te doen door op JA te klikken in het "Query - Recovery Console" venster (enkel voor XP, niet voor VISTA).
    Klik op OK en Ja om automatisch de Recovery Console te laten installeren.
    Klik na afloop terug op Ja om het scannen op malware te starten.
    Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.

Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.

Post dit logje in je volgende antwoord.

Geplaatst:

Na een keer vastlopen is het toch gelukt....gelukkig

ComboFix 10-02-21.02 - Administrator 22-02-2010 15:53:34.2.1 - x86

Microsoft Windows XP Professional 5.1.2600.2.1252.31.1043.18.479.211 [GMT 1:00]

Gestart vanuit: c:\documents and settings\Administrator\Bureaublad\ComboFix.exe

AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

.

(((((((((((((((((((( Bestanden Gemaakt van 2010-01-22 to 2010-02-22 ))))))))))))))))))))))))))))))

.

2010-02-22 13:12 . 2010-02-22 13:12 388096 ----a-r- c:\documents and settings\Administrator\Application Data\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe

2010-02-22 13:12 . 2010-02-22 13:12 -------- d-----w- c:\program files\TrendMicro

2010-02-22 11:22 . 2010-02-22 11:55 12456845 ----a-w- c:\documents and settings\All Users\Application Data\MAGIX\PC_Check_Tuning_2010\download\VIA_HyperionPro_V524A.exe

2010-02-19 16:03 . 2010-02-19 16:03 -------- d-----w- c:\documents and settings\Administrator\Application Data\Apple Computer

2010-02-19 16:01 . 2008-04-17 12:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll

2010-02-19 16:01 . 2009-05-18 13:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys

2010-02-19 15:58 . 2010-02-19 15:58 -------- d-----w- c:\program files\iPod

2010-02-19 15:57 . 2010-02-19 16:01 -------- d-----w- c:\program files\iTunes

2010-02-19 15:57 . 2010-02-19 16:01 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}

2010-02-19 15:56 . 2010-02-19 15:56 -------- d-----w- c:\program files\Bonjour

2010-02-19 15:53 . 2010-02-19 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer

2010-02-19 15:52 . 2010-02-19 15:52 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Apple

2010-02-19 15:51 . 2010-02-19 15:52 -------- d-----w- c:\program files\Apple Software Update

2010-02-19 15:51 . 2010-02-19 16:01 -------- dc----w- c:\windows\system32\DRVSTORE

2010-02-19 15:48 . 2010-02-19 15:58 -------- d-----w- c:\program files\Common Files\Apple

2010-02-19 15:48 . 2010-02-19 15:48 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple

2010-02-17 12:35 . 2010-02-17 12:35 -------- d-----w- C:\ConverterOutput

2010-02-17 12:34 . 2010-02-17 12:34 -------- d-----w- c:\program files\Cucusoft

2010-02-17 12:17 . 2010-02-17 12:17 -------- d-----w- C:\myyoutube

2010-02-17 12:16 . 2010-02-17 12:18 -------- d-----w- c:\program files\1-Click YouTube Downloader

2010-02-15 17:41 . 2010-02-15 17:41 72488 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.3.15\SetupAdmin.exe

2010-02-15 14:20 . 2010-02-15 14:20 -------- d-----w- c:\program files\MSXML 4.0

2010-02-15 14:02 . 2010-02-17 08:43 -------- d-----w- c:\documents and settings\All Users\Application Data\PCPitstop

2010-02-15 14:02 . 2010-02-17 08:43 -------- d-----w- c:\program files\PCPitstop

2010-02-15 10:02 . 2005-04-12 11:54 331184 ------w- c:\windows\system32\difxapi.dll

2010-02-15 10:02 . 2010-02-15 10:02 -------- d-----w- c:\program files\VIA

2010-02-15 10:02 . 2010-02-15 10:02 -------- d-----w- c:\program files\Common Files\InstallShield

2010-02-15 10:01 . 2009-05-05 08:58 13976 ----a-w- c:\windows\system32\drivers\videX32.sys

2010-02-15 09:57 . 2010-02-15 10:01 12456845 ----a-w- c:\documents and settings\All Users\Application Data\MAGIX\PC_Check_Tuning_2010_Download_Version\download\VIA_HyperionPro_V524A.exe

2010-02-15 09:55 . 2010-02-15 09:55 -------- d-----w- c:\program files\Common Files\MAGIX shared

2010-02-15 09:38 . 2010-02-22 11:06 -------- d-----w- c:\documents and settings\Administrator\Application Data\MAGIX

2010-02-15 09:34 . 2003-04-18 14:29 82432 ----a-w- c:\windows\system32\msxml4r.dll

2010-02-15 09:34 . 2003-04-18 14:29 44544 ----a-w- c:\windows\system32\msxml4a.dll

2010-02-15 09:33 . 2010-02-22 11:07 -------- d-----w- c:\documents and settings\All Users\Application Data\MAGIX

2010-02-15 09:33 . 2010-02-22 11:01 -------- d-----w- c:\program files\MAGIX

2010-02-15 09:33 . 2007-04-27 09:43 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll

2010-02-15 09:32 . 2010-02-15 09:32 -------- d-----w- c:\program files\Common Files\MAGIX Services

2010-02-15 09:32 . 2010-02-15 09:32 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\ESET

2010-02-15 08:42 . 2010-02-15 08:42 -------- d-----w- c:\program files\CCleaner

2010-02-14 22:50 . 2006-08-21 12:28 16896 -c----w- c:\windows\system32\dllcache\fltlib.dll

2010-02-14 22:50 . 2006-08-21 09:14 23040 -c----w- c:\windows\system32\dllcache\fltmc.exe

2010-02-14 22:50 . 2006-08-21 09:14 128896 -c----w- c:\windows\system32\dllcache\fltmgr.sys

2010-02-14 21:09 . 2010-02-14 21:09 604416 ----a-w- c:\windows\system32\TUProgSt.exe

2010-02-14 21:02 . 2010-02-14 21:02 -------- d-----w- c:\documents and settings\Administrator\Application Data\TuneUp Software

2010-02-14 20:59 . 2010-02-14 20:59 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software

2010-02-14 20:59 . 2010-02-22 10:58 -------- d-----w- c:\program files\TuneUp Utilities 2009

2010-02-14 20:58 . 2010-02-14 20:58 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}

2010-02-14 18:09 . 2001-09-07 12:00 19456 -c--a-w- c:\windows\system32\dllcache\agt0411.dll

2010-02-14 18:08 . 2001-09-07 12:00 57398 -c--a-w- c:\windows\system32\dllcache\imjpdadm.exe

2010-02-14 18:08 . 2001-09-07 12:00 45109 -c--a-w- c:\windows\system32\dllcache\imjpuex.exe

2010-02-14 18:08 . 2001-09-07 12:00 6656 -c--a-w- c:\windows\system32\dllcache\c_is2022.dll

2010-02-14 18:08 . 2001-09-07 12:00 6656 ----a-w- c:\windows\system32\c_is2022.dll

2010-02-14 18:06 . 2001-09-06 20:26 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll

2010-02-14 18:06 . 2001-09-06 20:26 8192 ----a-w- c:\windows\system32\kbdkor.dll

2010-02-14 18:06 . 2001-09-06 20:26 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll

2010-02-14 18:06 . 2001-09-06 20:26 8704 ----a-w- c:\windows\system32\kbdjpn.dll

2010-02-14 18:06 . 2001-08-17 21:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll

2010-02-14 18:06 . 2001-08-17 21:55 6144 ----a-w- c:\windows\system32\kbd106.dll

2010-02-14 18:06 . 2001-08-17 21:55 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll

2010-02-14 18:06 . 2001-08-17 21:55 5632 ----a-w- c:\windows\system32\kbd103.dll

2010-02-14 18:05 . 2001-08-17 21:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll

2010-02-14 18:05 . 2001-08-17 21:55 6144 ----a-w- c:\windows\system32\kbd101c.dll

2010-02-14 18:05 . 2001-08-17 21:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll

2010-02-14 18:05 . 2001-08-17 21:55 6144 ----a-w- c:\windows\system32\kbd101b.dll

2010-02-14 17:47 . 2006-12-14 13:45 981760 -c----w- c:\windows\system32\dllcache\mfc42u.dll

2010-02-14 17:40 . 2006-08-25 15:51 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll

2010-02-14 16:54 . 2010-02-14 16:55 -------- d-----w- C:\47353ae2c9cce231bbcaebba5427d2a4

2010-02-14 16:40 . 2008-07-28 16:19 116736 ----a-w- c:\windows\system32\drivers\mcdbus.sys

2010-02-14 16:35 . 2010-02-14 16:36 -------- d-----w- C:\be045544ad9887ad94532114cb9c86

2010-02-14 16:03 . 2004-08-04 06:08 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys

2010-02-14 15:56 . 2007-10-22 14:25 106496 ----a-w- c:\windows\CBTWlanSrv.exe

2010-02-14 15:53 . 2004-12-17 12:52 17992 ------w- c:\windows\system32\drivers\bcm42rly.sys

2010-02-14 15:53 . 2001-09-06 03:00 1700352 ------w- c:\windows\system32\GdiPlus.dll

2010-02-14 15:53 . 2006-11-28 20:46 27072 ------w- c:\windows\system32\drivers\CBPSp50.sys

2010-02-14 15:53 . 2010-02-14 15:53 -------- d-----w- c:\program files\Linksys

2010-02-14 15:53 . 2010-02-14 15:53 -------- d--h--w- c:\program files\InstallShield Installation Information

2010-02-14 15:51 . 2010-02-14 15:51 -------- d-----w- c:\documents and settings\Administrator\Application Data\InstallShield

2010-02-14 15:50 . 2010-02-14 15:50 94208 ----a-w- c:\windows\UITabCtrl.dll

2010-02-14 15:50 . 2010-02-14 15:50 126976 ----a-w- c:\windows\UIListCtrl.dll

2010-02-14 15:50 . 2010-02-14 15:50 139264 ----a-w- c:\windows\UIButton.dll

2010-02-14 15:50 . 2010-02-14 15:50 20480 ----a-w- c:\windows\RegActiveX.exe

2010-02-14 15:50 . 2010-02-14 15:50 1700352 ----a-w- c:\windows\GdiPlus.dll

2010-02-14 15:38 . 2010-02-14 15:38 -------- d-----w- c:\windows\system32\wbem\Repository

2010-02-14 15:38 . 2010-02-14 19:06 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\NOS

2010-02-13 10:39 . 2010-02-13 10:39 -------- d-----w- c:\windows\ie8updates

2010-02-13 10:35 . 2009-07-31 05:00 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll

2010-02-13 10:25 . 2009-12-21 19:10 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll

2010-02-13 10:25 . 2009-12-21 19:10 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll

2010-02-13 10:25 . 2009-12-21 19:10 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll

2010-02-13 10:25 . 2009-12-21 19:10 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll

2010-02-13 10:25 . 2009-12-21 19:10 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll

2010-02-13 10:25 . 2009-12-21 19:10 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll

2010-02-13 10:23 . 2009-06-21 22:07 153088 -c----w- c:\windows\system32\dllcache\triedit.dll

2010-02-13 10:22 . 2008-05-01 14:33 331776 -c----w- c:\windows\system32\dllcache\msadce.dll

2010-02-13 10:21 . 2008-04-11 18:51 683520 -c----w- c:\windows\system32\dllcache\inetcomm.dll

2010-02-13 10:21 . 2008-06-14 18:00 272640 -c----w- c:\windows\system32\dllcache\bthport.sys

2010-02-13 10:20 . 2009-12-31 16:14 352640 -c----w- c:\windows\system32\dllcache\srv.sys

2010-02-13 10:19 . 2009-06-05 07:55 655872 -c----w- c:\windows\system32\dllcache\mstscax.dll

2010-02-13 10:15 . 2009-07-10 13:42 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll

2010-02-13 10:15 . 2008-10-15 17:01 332800 -c----w- c:\windows\system32\dllcache\netapi32.dll

2010-02-13 10:14 . 2005-07-26 04:42 60416 -c----w- c:\windows\system32\dllcache\colbact.dll

2010-02-13 10:14 . 2009-02-06 16:39 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe

2010-02-13 10:14 . 2009-03-06 14:47 285184 -c----w- c:\windows\system32\dllcache\pdh.dll

2010-02-13 10:14 . 2009-02-09 10:22 473088 -c----w- c:\windows\system32\dllcache\fastprox.dll

2010-02-13 10:14 . 2009-02-09 10:22 399360 -c----w- c:\windows\system32\dllcache\rpcss.dll

2010-02-13 10:14 . 2009-02-09 10:11 111104 -c----w- c:\windows\system32\dllcache\services.exe

2010-02-13 10:14 . 2009-02-09 10:22 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll

2010-02-13 10:14 . 2009-02-09 10:22 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll

2010-02-13 10:14 . 2009-02-09 10:22 735744 -c----w- c:\windows\system32\dllcache\ntdll.dll

2010-02-13 10:13 . 2009-12-09 10:30 2140672 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe

2010-02-13 10:13 . 2009-12-09 10:30 2062080 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe

2010-02-13 10:13 . 2009-12-09 10:30 2184704 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe

2010-02-13 10:13 . 2009-12-09 10:30 2020352 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe

2010-02-13 10:11 . 2008-04-21 21:28 218624 -c----w- c:\windows\system32\dllcache\wordpad.exe

2010-02-13 10:11 . 2009-11-21 16:46 470528 -c----w- c:\windows\system32\dllcache\aclayers.dll

2010-02-07 20:22 . 2010-02-07 20:22 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE

2010-02-07 20:21 . 2010-02-07 20:21 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache

2010-02-07 20:21 . 2010-02-07 20:21 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache

2010-02-07 20:14 . 2010-02-14 17:04 -------- dc-h--w- c:\windows\ie8

2010-02-07 19:30 . 2010-02-07 19:30 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Identities

2010-02-07 18:58 . 2010-02-14 16:40 -------- d-----w- c:\program files\MagicDisc

2010-02-07 18:49 . 2010-02-14 15:36 -------- d-----w- c:\program files\Linksys(2)

2010-02-07 18:49 . 2010-02-14 15:36 -------- d-----w- c:\program files\Funk Software(2)

2010-02-07 17:54 . 2010-02-14 15:36 -------- d-----w- c:\program files\InstallShield Installation Information(2)

2010-02-07 17:38 . 2010-02-14 16:58 -------- d-----w- c:\windows\system32\nl-nl

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-15 13:06 . 2001-09-07 12:00 53850 ----a-w- c:\windows\system32\perfc013.dat

2010-02-15 13:06 . 2001-09-07 12:00 364882 ----a-w- c:\windows\system32\perfh013.dat

2010-02-14 15:01 . 2010-02-14 15:01 3847 ----a-w- c:\windows\bcm2C4.tmp

2010-02-07 14:16 . 2010-02-06 14:14 86327 ----a-w- c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat

2010-02-06 17:10 . 2010-02-06 17:10 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf

2010-02-06 17:10 . 2010-02-06 17:10 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2010-02-06 14:35 . 2010-02-06 14:35 -------- d-----w- c:\program files\ESET

2010-02-06 14:35 . 2010-02-06 14:35 -------- d-----w- c:\documents and settings\All Users\Application Data\ESET

2010-02-06 14:18 . 2010-02-06 14:18 -------- d-----w- c:\program files\microsoft frontpage

2010-02-06 14:10 . 2010-02-06 14:10 21748 ----a-w- c:\windows\system32\emptyregdb.dat

2009-12-31 16:14 . 2001-09-07 12:00 352640 ----a-w- c:\windows\system32\drivers\srv.sys

2009-12-21 19:10 . 2001-09-07 12:00 916480 ----a-w- c:\windows\system32\wininet.dll

2009-12-17 08:00 . 2010-02-06 14:08 345600 ----a-w- c:\windows\system32\mspaint.exe

2009-12-14 07:37 . 2001-09-07 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll

2009-12-04 14:41 . 2001-09-07 12:00 453760 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2009-11-27 17:35 . 2001-09-07 12:00 1295360 ----a-w- c:\windows\system32\quartz.dll

2009-11-27 17:35 . 2001-09-06 21:27 17920 ----a-w- c:\windows\system32\msyuv.dll

2009-11-27 16:41 . 2001-09-07 12:00 85504 ----a-w- c:\windows\system32\avifil32.dll

2009-11-27 16:41 . 2001-09-07 12:00 28672 ----a-w- c:\windows\system32\msvidc32.dll

2009-11-27 16:41 . 2001-09-07 12:00 11264 ----a-w- c:\windows\system32\msrle32.dll

2009-11-27 16:41 . 2001-09-06 21:27 8704 ----a-w- c:\windows\system32\tsbyuv.dll

2009-11-27 16:41 . 2001-09-06 21:26 48128 ----a-w- c:\windows\system32\iyuv_32.dll

.

------- Sigcheck -------

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\atapi.sys

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\drivers\atapi.sys

[-] 2001-09-07 . A64013E98426E1877CB653685C5C0009 . 86656 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\atapi.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\asyncmac.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2001-09-07 . 03F403B07A884FC2AA54A0916C410931 . 13568 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

[-] 2001-09-07 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys

[-] 2001-09-07 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

[-] 2004-08-04 . 59549E9180CE29D832289E1A1D9E3C60 . 25216 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\kbdclass.sys

[-] 2004-08-04 . 59549E9180CE29D832289E1A1D9E3C60 . 25216 . . [5.1.2600.2180] . . c:\windows\system32\drivers\kbdclass.sys

[-] 2001-09-07 . 99CB316284D446AA4F27334F3F8FD577 . 23936 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ndis.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ndis.sys

[-] 2001-09-07 . 3EFD4F59BA0A340DE0A3AB984001DBF7 . 161536 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ndis.sys

[-] 2001-09-07 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys

[-] 2001-09-07 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp3qfe\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp3gdr\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp2gdr\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\system32\dllcache\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\system32\drivers\tcpip.sys

[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys

[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp2qfe\tcpip.sys

[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB951748$\tcpip.sys

[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\tcpip.sys

[-] 2001-09-07 . E7774698BB0D14B0710A9A31E209F9B6 . 327168 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\tcpip.sys

[-] 2004-08-04 . 195B1255D9383AEFFBDFA8A11AE4D282 . 77312 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\browser.dll

[-] 2004-08-04 . 195B1255D9383AEFFBDFA8A11AE4D282 . 77312 . . [5.1.2600.2180] . . c:\windows\system32\browser.dll

[-] 2001-09-07 . 456E8BE3018C98337BE4D6EF3A08E41A . 49152 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\browser.dll

[-] 2004-08-04 . 34A82DEBEFB057FCCCBE15F619FC98A7 . 13312 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\lsass.exe

[-] 2004-08-04 . 34A82DEBEFB057FCCCBE15F619FC98A7 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\lsass.exe

[-] 2001-09-07 . 54D5CE5655E2493934AFDED752E38846 . 11776 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\lsass.exe

[-] 2005-08-22 . F32049792BCBF64954FF964508E47AFB . 197632 . . [5.1.2600.2743] . . c:\windows\SoftwareDistribution\Download\403a630f022ccf39b5335bcf43951029\sp2gdr\netman.dll

[-] 2005-08-22 . F32049792BCBF64954FF964508E47AFB . 197632 . . [5.1.2600.2743] . . c:\windows\system32\netman.dll

[-] 2005-08-22 . 269182FF03F1FDD0EF803AEB63C01080 . 197632 . . [5.1.2600.2743] . . c:\windows\$hf_mig$\KB905414\SP2QFE\netman.dll

[-] 2005-08-22 . 269182FF03F1FDD0EF803AEB63C01080 . 197632 . . [5.1.2600.2743] . . c:\windows\SoftwareDistribution\Download\403a630f022ccf39b5335bcf43951029\sp2qfe\netman.dll

[-] 2004-08-04 . B2665A1B502EC037388B7919CBD58C28 . 198144 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB905414$\netman.dll

[-] 2004-08-04 . B2665A1B502EC037388B7919CBD58C28 . 198144 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\netman.dll

[-] 2001-09-07 . B9029F24B9982918CF2490D4C655CED1 . 147968 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\netman.dll

[-] 2004-08-04 . 772027CC5FFAEA3E7D10AF2691EE7095 . 382464 . . [6.6.2600.2180] . . c:\windows\ServicePackFiles\i386\qmgr.dll

[-] 2004-08-04 . 772027CC5FFAEA3E7D10AF2691EE7095 . 382464 . . [6.6.2600.2180] . . c:\windows\system32\qmgr.dll

[-] 2004-07-01 . C76FA7432BC332B574334401EA1504A2 . 360448 . . [6.6.2600.1569] . . c:\windows\$NtServicePackUninstall$\qmgr.dll

[-] 2004-07-01 . C76FA7432BC332B574334401EA1504A2 . 360448 . . [6.6.2600.1569] . . c:\windows\system32\bits\qmgr.dll

[-] 2001-09-07 . 3CB8B7F43D425E75B804F9125D5406DC . 180736 . . [6.0.2600.0] . . c:\windows\$NtUninstallKB842773$\qmgr.dll

[-] 2004-08-04 . 732ED791711DF9C9DD15E5515BC681B8 . 504832 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\winlogon.exe

[-] 2004-08-04 . 732ED791711DF9C9DD15E5515BC681B8 . 504832 . . [5.1.2600.2180] . . c:\windows\system32\winlogon.exe

[-] 2001-09-07 . 97BD8031D69C148D396D6D34F57B06F7 . 432640 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

[-] 2006-08-25 . 50074B9B6966FD7E24F0998050E0C111 . 561664 . . [5.82] . . c:\windows\SoftwareDistribution\Download\efb48793095fda756f48080f67709606\SP1QFE\comctl32.dll

[-] 2006-08-25 . 4D0361B018DDE0B7EF71A3C27528FA77 . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\efb48793095fda756f48080f67709606\SP1QFE\asms\60\msft\windows\common\controls\comctl32.dll

[-] 2006-08-25 . F67AE54BCA3873D48A1AC722A9CA70BF . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\efb48793095fda756f48080f67709606\SP2QFE\comctl32.dll

[-] 2006-08-25 . F67AE54BCA3873D48A1AC722A9CA70BF . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2006-08-25 . F67AE54BCA3873D48A1AC722A9CA70BF . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll

[-] 2006-08-25 . F567148940C1F5D93070822C0F3C0C34 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\efb48793095fda756f48080f67709606\SP2QFE\asms\60\msft\windows\common\controls\comctl32.dll

[7] 2006-03-17 . 7C89073CD5E15E0B27887C79A5C23788 . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\b98680d7e0ed4435ce28285af2959b5d\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll

[7] 2005-08-31 . 34DE34A04542617FB84C1E501F5E9D4B . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\12a628bc7c7c2844da8d0f0b05939745\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll

[-] 2004-08-04 . 8A473F553E9E45DB4EF6FF11AB54E4E1 . 611328 . . [5.82] . . c:\windows\$NtUninstallKB923191$\comctl32.dll

[-] 2004-08-04 . 8A473F553E9E45DB4EF6FF11AB54E4E1 . 611328 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll

[-] 2001-09-07 . AF3927B107952C951772867632C31D83 . 557568 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

[-] 2004-08-04 . 5F321535D399516B6D780FF9EF8D8B7A . 60416 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll

[-] 2004-08-04 . 5F321535D399516B6D780FF9EF8D8B7A . 60416 . . [5.1.2600.2180] . . c:\windows\system32\cryptsvc.dll

[-] 2001-09-07 . 63FE4E445700A36FCAFC354989AA9ABA . 51200 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

[-] 2004-08-04 . 7ADE4584ED6657CAE3D523CF101992BD . 110080 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\imm32.dll

[-] 2004-08-04 . 7ADE4584ED6657CAE3D523CF101992BD . 110080 . . [5.1.2600.2180] . . c:\windows\system32\imm32.dll

[-] 2001-09-07 . 9A915C2311B66302D8AFE0851722C153 . 96768 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\imm32.dll

[-] 2004-08-04 . 8DF7AC820F9B3FD5E713E9A74827931C . 22016 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\lpk.dll

[-] 2004-08-04 . 8DF7AC820F9B3FD5E713E9A74827931C . 22016 . . [5.1.2600.2180] . . c:\windows\system32\lpk.dll

[-] 2001-09-07 . 69BFF2682E81C712C3ED8852BD320244 . 18944 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\lpk.dll

[-] 2004-08-04 . 687ABDBF4790F907FB0D3A50B8D9FE3A . 343040 . . [7.0.2600.2180] . . c:\windows\ServicePackFiles\i386\msvcrt.dll

[-] 2004-08-04 . 687ABDBF4790F907FB0D3A50B8D9FE3A . 343040 . . [7.0.2600.2180] . . c:\windows\system32\msvcrt.dll

[-] 2001-09-07 . 6D4C0FDE00DE9D336DE8D93ED6FD1DE2 . 322560 . . [7.0.2600.0] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

[-] 2008-06-20 . 74816260AECBE87C473962A359007EEB . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\mswsock.dll

[-] 2008-06-20 . 74816260AECBE87C473962A359007EEB . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp3gdr\mswsock.dll

[-] 2008-06-20 . 18740E8EC5BE4B6D66FA0E4CBFD3B9C6 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll

[-] 2008-06-20 . 18740E8EC5BE4B6D66FA0E4CBFD3B9C6 . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp3qfe\mswsock.dll

[-] 2008-06-20 . FF59588E31F864FED9D0258969559A4B . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp2gdr\mswsock.dll

[-] 2008-06-20 . FF59588E31F864FED9D0258969559A4B . 247296 . . [5.1.2600.3394] . . c:\windows\system32\mswsock.dll

[-] 2008-06-20 . FF59588E31F864FED9D0258969559A4B . 247296 . . [5.1.2600.3394] . . c:\windows\system32\dllcache\mswsock.dll

[-] 2008-06-20 . 71AB52C70B9436C0A0B704FDE9D1A7CD . 247296 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\mswsock.dll

[-] 2008-06-20 . 71AB52C70B9436C0A0B704FDE9D1A7CD . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\aa392b8bfed9b3a47213f2ce85439604\sp2qfe\mswsock.dll

[-] 2004-08-04 . 0C53DB0671AB5A93D169DAFFC8DA11CF . 247296 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB951748$\mswsock.dll

[-] 2004-08-04 . 0C53DB0671AB5A93D169DAFFC8DA11CF . 247296 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\mswsock.dll

[-] 2001-09-07 . 3F7E336DB0EFC89708EE53EC8B3617DB . 230400 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\mswsock.dll

[-] 2009-02-06 . 45AE58ACDD9B4A8767064544533F94E2 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB968389\SP2QFE\netlogon.dll

[-] 2009-02-06 . 45AE58ACDD9B4A8767064544533F94E2 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB975467\SP2QFE\netlogon.dll

[-] 2009-02-06 . 45AE58ACDD9B4A8767064544533F94E2 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\2698a3c9c7272a12c6901f5e0243ace1\sp2qfe\netlogon.dll

[-] 2009-02-06 . 45AE58ACDD9B4A8767064544533F94E2 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\3b3e4f20b2153047032ad7bccb5169d5\sp2qfe\netlogon.dll

[-] 2004-08-04 . B3FDAC7A518B6B684BEFE792DC1DC560 . 407040 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\netlogon.dll

[-] 2004-08-04 . B3FDAC7A518B6B684BEFE792DC1DC560 . 407040 . . [5.1.2600.2180] . . c:\windows\system32\netlogon.dll

[-] 2001-09-07 . E9E4300072E7537F3817077F7B42E60C . 397824 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

[7] 2009-12-09 . 5037978D6ED651AEC5D6ACC87D65C715 . 2193664 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe

[7] 2009-12-09 . 5037978D6ED651AEC5D6ACC87D65C715 . 2193664 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP3QFE\ntoskrnl.exe

[7] 2009-12-09 . 9FCCE3EF6E062C55FDA6E67C7EE7BAF4 . 2184704 . . [5.1.2600.3654] . . c:\windows\Driver Cache\i386\ntoskrnl.exe

[7] 2009-12-09 . 9FCCE3EF6E062C55FDA6E67C7EE7BAF4 . 2184704 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP2GDR\ntoskrnl.exe

[7] 2009-12-09 . 9FCCE3EF6E062C55FDA6E67C7EE7BAF4 . 2184704 . . [5.1.2600.3654] . . c:\windows\system32\dllcache\ntoskrnl.exe

[7] 2009-12-09 . F96B89E41B78F5B3050A1003FD143732 . 2190336 . . [5.1.2600.3654] . . c:\windows\$hf_mig$\KB977165\SP2QFE\ntoskrnl.exe

[7] 2009-12-09 . F96B89E41B78F5B3050A1003FD143732 . 2190336 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP2QFE\ntoskrnl.exe

[7] 2009-12-09 . 13C15BFF7E82D3F9FD215ADD54A3929D . 2193536 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3GDR\ntoskrnl.exe

[7] 2009-12-09 . 13C15BFF7E82D3F9FD215ADD54A3929D . 2193536 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP3GDR\ntoskrnl.exe

[-] 2009-08-04 . 270DE336026B0815F064BB8BD4CFD336 . 2193536 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3GDR\ntoskrnl.exe

[-] 2009-08-04 . 270DE336026B0815F064BB8BD4CFD336 . 2193536 . . [5.1.2600.5857] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP3GDR\ntoskrnl.exe

[-] 2009-08-04 . 2F1443AB72A64182FD8258BBAE801EA7 . 2193664 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe

[-] 2009-08-04 . 2F1443AB72A64182FD8258BBAE801EA7 . 2193664 . . [5.1.2600.5857] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP3QFE\ntoskrnl.exe

[-] 2009-08-04 . 2FFA33C4FF60E1976FB8C14264215642 . 2190336 . . [5.1.2600.3610] . . c:\windows\$hf_mig$\KB971486\SP2QFE\ntoskrnl.exe

[-] 2009-08-04 . 2FFA33C4FF60E1976FB8C14264215642 . 2190336 . . [5.1.2600.3610] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP2QFE\ntoskrnl.exe

[-] 2009-08-04 . AF78FB8501887B5F12D6F16811680CEF . 2184704 . . [5.1.2600.3610] . . c:\windows\$NtUninstallKB977165$\ntoskrnl.exe

[-] 2009-08-04 . AF78FB8501887B5F12D6F16811680CEF . 2184704 . . [5.1.2600.3610] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP2GDR\ntoskrnl.exe

[-] 2009-08-04 . AF78FB8501887B5F12D6F16811680CEF . 2184704 . . [5.1.2600.3610] . . c:\windows\system32\ntoskrnl.exe

[7] 2009-02-10 . 7625D5BAFD2A4A8458468B139C893BB7 . 2193536 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe

[7] 2009-02-10 . 7625D5BAFD2A4A8458468B139C893BB7 . 2193536 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP3QFE\ntoskrnl.exe

[7] 2009-02-09 . 0F1A4A14A22DC4B839052DE174B57A33 . 2184832 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP2GDR\ntoskrnl.exe

[7] 2009-02-09 . 35BEF358DAB3E53ADF93AAE4D64F4852 . 2190464 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\ntoskrnl.exe

[7] 2009-02-09 . 35BEF358DAB3E53ADF93AAE4D64F4852 . 2190464 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP2QFE\ntoskrnl.exe

[7] 2009-02-09 . 27380B877348030B0662A39C47AAEC11 . 2193408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\ntoskrnl.exe

[7] 2009-02-09 . 27380B877348030B0662A39C47AAEC11 . 2193408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP3GDR\ntoskrnl.exe

[7] 2005-03-02 . 5DB3E8DEC987B5D350E4A105DCEAEE6A . 2183936 . . [5.1.2600.2622] . . c:\windows\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe

[7] 2005-03-02 . 5DB3E8DEC987B5D350E4A105DCEAEE6A . 2183936 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\4cd7c0093cc0603e7e69fa9c40b632f1\sp2qfe\ntoskrnl.exe

[7] 2005-03-02 . 281A1E82F5F8FC0B2F4B57EF296A4240 . 2183680 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\4cd7c0093cc0603e7e69fa9c40b632f1\sp2gdr\ntoskrnl.exe

[-] 2004-08-04 . 87AAEA3908E069FB1BE37380C895DFB8 . 2185344 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB971486$\ntoskrnl.exe

[-] 2004-08-04 . 87AAEA3908E069FB1BE37380C895DFB8 . 2185344 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe

[-] 2001-09-07 . C97BD142EE63E0BC97DDC1F61CDD1B86 . 1986560 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe

[-] 2004-08-04 . D5A792DB732622A393A0469FE6EAA728 . 17408 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\powrprof.dll

[-] 2004-08-04 . D5A792DB732622A393A0469FE6EAA728 . 17408 . . [6.00.2900.2180] . . c:\windows\system32\powrprof.dll

[-] 2001-09-07 . 506AEC11B86CCFF9894FEA9BB1C1BDCD . 14848 . . [6.00.2600.0000] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

[-] 2004-08-04 . 5AE934F6837B5A583DED535C4BE5A804 . 184832 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\scecli.dll

[-] 2004-08-04 . 5AE934F6837B5A583DED535C4BE5A804 . 184832 . . [5.1.2600.2180] . . c:\windows\system32\scecli.dll

[-] 2001-09-07 . B6BB0F0DE740ECABD7CBA6646429F6BF . 178688 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\scecli.dll

[-] 2004-08-04 . 0B10A3122527910CE60D23A7F29C28B1 . 5120 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\sfc.dll

[-] 2004-08-04 . 0B10A3122527910CE60D23A7F29C28B1 . 5120 . . [5.1.2600.2180] . . c:\windows\system32\sfc.dll

[-] 2001-09-07 . 750A97F61172F0917AE97E8931E164CE . 4096 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\sfc.dll

[-] 2004-08-04 . AB8C6D89A897BACBA4657FDF00E344A6 . 14336 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\svchost.exe

[-] 2004-08-04 . AB8C6D89A897BACBA4657FDF00E344A6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\svchost.exe

[-] 2001-09-07 . 133733E07EF4FDA582BC56F3B281E0BC . 12800 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\svchost.exe

[-] 2004-08-04 . DE7A0EE4A6A28E6DFE3118EB22468DA6 . 24576 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\userinit.exe

[-] 2004-08-04 . DE7A0EE4A6A28E6DFE3118EB22468DA6 . 24576 . . [5.1.2600.2180] . . c:\windows\system32\userinit.exe

[-] 2001-09-07 . 5E06E5E7FCCE59ADE2C4295EC64BCB1B . 21504 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\userinit.exe

[-] 2004-08-04 . 06EBCBE58321E924980148B7E3DBD753 . 82944 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ws2_32.dll

[-] 2004-08-04 . 06EBCBE58321E924980148B7E3DBD753 . 82944 . . [5.1.2600.2180] . . c:\windows\system32\ws2_32.dll

[-] 2001-09-07 . 3EA6EDC08BB3F373839060EA8B40CE72 . 75264 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

[-] 2004-08-04 . 0B96A1E4252F663222C9C3BAC89F596C . 170496 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\srsvc.dll

[-] 2004-08-04 . 0B96A1E4252F663222C9C3BAC89F596C . 170496 . . [5.1.2600.2180] . . c:\windows\system32\srsvc.dll

[-] 2001-09-07 . 958493E2DBC125D630C522B35F79AAB9 . 155136 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

[-] 2004-08-04 . D6381A7C1704BE7A8FD5EFDFD9F1463B . 13824 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\wscntfy.exe

[-] 2004-08-04 . D6381A7C1704BE7A8FD5EFDFD9F1463B . 13824 . . [5.1.2600.2180] . . c:\windows\system32\wscntfy.exe

[-] 2004-08-04 . F4C8D4B0A294AAF37FE50C407B6E03F9 . 129536 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\xmlprov.dll

[-] 2004-08-04 . F4C8D4B0A294AAF37FE50C407B6E03F9 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\xmlprov.dll

[-] 2004-08-04 . F1720914CAB06FDE4BE250E3767713CF . 55808 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\eventlog.dll

[-] 2004-08-04 . F1720914CAB06FDE4BE250E3767713CF . 55808 . . [5.1.2600.2180] . . c:\windows\system32\eventlog.dll

[-] 2001-09-07 . 67DA04301B7AB23D8D5B9E882BDB76DA . 47616 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

[-] 2004-08-04 . 486594A19F7AEDEBEA600855FFD5E914 . 1548288 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll

[-] 2004-08-04 . 486594A19F7AEDEBEA600855FFD5E914 . 1548288 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll

[-] 2001-09-07 . 4DFEB80E599CD1782E64D8DD074ED32B . 1564160 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

[-] 2004-08-04 . 7DE46C9C40ABB58C8FDFE0212A3BF2B4 . 15360 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ctfmon.exe

[-] 2004-08-04 . 7DE46C9C40ABB58C8FDFE0212A3BF2B4 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\ctfmon.exe

[-] 2001-09-07 . AE810CDF22C0360A6C1A109F3F564BFF . 13312 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

[-] 2004-08-04 . D01BB100558945178E4BCB33B0FE9364 . 59904 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\regsvc.dll

[-] 2004-08-04 . D01BB100558945178E4BCB33B0FE9364 . 59904 . . [5.1.2600.2180] . . c:\windows\system32\regsvc.dll

[-] 2001-09-07 . 548ACD377576BDABAC2E190F6D156906 . 51712 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

[-] 2004-08-04 . D245B3E32F8AB3B2FB576AFCFDEC105E . 192000 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\schedsvc.dll

[-] 2004-08-04 . D245B3E32F8AB3B2FB576AFCFDEC105E . 192000 . . [5.1.2600.2180] . . c:\windows\system32\schedsvc.dll

[-] 2001-09-07 . 2BAC9351E1C02E46712A329CA7CDBDD3 . 159744 . . [4.71.2600.1] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

[-] 2004-08-04 . B02FDCE64F64CDE3AA809D28D25D2A12 . 71680 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll

[-] 2004-08-04 . B02FDCE64F64CDE3AA809D28D25D2A12 . 71680 . . [5.1.2600.2180] . . c:\windows\system32\ssdpsrv.dll

[-] 2001-09-07 . 788F43F80F6E22FF88CA6C10899FCE88 . 39936 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

[-] 2004-08-04 . E2CE999886A4636026F157DEB886AA94 . 297472 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\termsrv.dll

[-] 2004-08-04 . E2CE999886A4636026F157DEB886AA94 . 297472 . . [5.1.2600.2180] . . c:\windows\system32\termsrv.dll

[-] 2001-09-07 . 8D17FBA3615A203FA4CF87F6835DB4D3 . 199680 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

[-] 2004-08-04 . CC888653E0DEC81B525B956C77960F88 . 175616 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\appmgmts.dll

[-] 2004-08-04 . CC888653E0DEC81B525B956C77960F88 . 175616 . . [5.1.2600.2180] . . c:\windows\system32\appmgmts.dll

[-] 2001-09-07 . 3B0F10C6DAFB572E0E474AEE9A3F99DE . 163328 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\appmgmts.dll

[-] 2001-09-07 . 63F517B1A87DABF3F5ACB8A7952FC1D1 . 12032 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

[-] 2004-08-04 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\agp440.sys

[-] 2004-08-04 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\system32\drivers\agp440.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ip6fw.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2004-08-04 . 1405B1431F51CAB25FE9B2ECF13CB198 . 33792 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\msgsvc.dll

[-] 2004-08-04 . 1405B1431F51CAB25FE9B2ECF13CB198 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\msgsvc.dll

[-] 2001-09-07 . F9DAEE255E7ED81BC6DCD67BFEF826EA . 34304 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

[-] 2004-08-04 08:03 . 2706E00334C86DD2E5279A47600C916A . 52736 . . [9.0.1.56] . . c:\windows\ServicePackFiles\i386\mspmsnsv.dll

[-] 2004-08-04 08:03 . 2706E00334C86DD2E5279A47600C916A . 52736 . . [9.0.1.56] . . c:\windows\system32\mspmsnsv.dll

[7] 2009-12-09 . 6A42A70506E7ACFF6C3ACD740E22A01F . 2070528 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe

[7] 2009-12-09 . 6A42A70506E7ACFF6C3ACD740E22A01F . 2070528 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP3QFE\ntkrnlpa.exe

[7] 2009-12-09 . 50DAB657F208AD98B531378D38A2E8B8 . 2062080 . . [5.1.2600.3654] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe

[7] 2009-12-09 . 50DAB657F208AD98B531378D38A2E8B8 . 2062080 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP2GDR\ntkrnlpa.exe

[7] 2009-12-09 . 50DAB657F208AD98B531378D38A2E8B8 . 2062080 . . [5.1.2600.3654] . . c:\windows\system32\dllcache\ntkrnlpa.exe

[7] 2009-12-09 . 1FFE3E2414D6FE99CF78FCBFC569F5D0 . 2067456 . . [5.1.2600.3654] . . c:\windows\$hf_mig$\KB977165\SP2QFE\ntkrnlpa.exe

[7] 2009-12-09 . 1FFE3E2414D6FE99CF78FCBFC569F5D0 . 2067456 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP2QFE\ntkrnlpa.exe

[7] 2009-12-09 . F63B0CC3CE1E6E8EA39B4933B595C73A . 2070400 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3GDR\ntkrnlpa.exe

[7] 2009-12-09 . F63B0CC3CE1E6E8EA39B4933B595C73A . 2070400 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\a1f079786e6d2a92d254c97eaea6680a\SP3GDR\ntkrnlpa.exe

[-] 2009-08-04 . AB21A63A3B15653043E71126E5BBE3DE . 2070528 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe

[-] 2009-08-04 . AB21A63A3B15653043E71126E5BBE3DE . 2070528 . . [5.1.2600.5857] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP3QFE\ntkrnlpa.exe

[-] 2009-08-04 . BF6965EA17CC1E48DA287783AEEF3CDB . 2070400 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3GDR\ntkrnlpa.exe

[-] 2009-08-04 . BF6965EA17CC1E48DA287783AEEF3CDB . 2070400 . . [5.1.2600.5857] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP3GDR\ntkrnlpa.exe

[-] 2009-08-04 . 255FC496463193E7B2003B8EC677A0BA . 2067328 . . [5.1.2600.3610] . . c:\windows\$hf_mig$\KB971486\SP2QFE\ntkrnlpa.exe

[-] 2009-08-04 . 255FC496463193E7B2003B8EC677A0BA . 2067328 . . [5.1.2600.3610] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP2QFE\ntkrnlpa.exe

[-] 2009-08-04 . 2D3902940A5D103CABFF9D68753F5ADB . 2062080 . . [5.1.2600.3610] . . c:\windows\$NtUninstallKB977165$\ntkrnlpa.exe

[-] 2009-08-04 . 2D3902940A5D103CABFF9D68753F5ADB . 2062080 . . [5.1.2600.3610] . . c:\windows\SoftwareDistribution\Download\a53442f77c7446204ca5f2dd17b4c682\SP2GDR\ntkrnlpa.exe

[-] 2009-08-04 . 2D3902940A5D103CABFF9D68753F5ADB . 2062080 . . [5.1.2600.3610] . . c:\windows\system32\ntkrnlpa.exe

[7] 2009-02-10 . 6A94A7317E28B6543D94174F9016BB68 . 2070400 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3GDR\ntkrnlpa.exe

[7] 2009-02-10 . 6A94A7317E28B6543D94174F9016BB68 . 2070400 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP3GDR\ntkrnlpa.exe

[7] 2009-02-09 . 06A467DC3FF07102B058B2B41104662F . 2062080 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP2GDR\ntkrnlpa.exe

[7] 2009-02-09 . E03AE5E3171A627D58957B0437DEE4F9 . 2067328 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB956572\SP2QFE\ntkrnlpa.exe

[7] 2009-02-09 . E03AE5E3171A627D58957B0437DEE4F9 . 2067328 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP2QFE\ntkrnlpa.exe

[7] 2009-02-09 . 07EE73D79A7CA142463470AEF230082B . 2070528 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe

[7] 2009-02-09 . 07EE73D79A7CA142463470AEF230082B . 2070528 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\7cc53337f6052d404723aef4c076967b\SP3QFE\ntkrnlpa.exe

[7] 2005-03-02 . C26D84B802567E629D42861A11C7EC04 . 2061312 . . [5.1.2600.2622] . . c:\windows\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe

[7] 2005-03-02 . C26D84B802567E629D42861A11C7EC04 . 2061312 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\4cd7c0093cc0603e7e69fa9c40b632f1\sp2qfe\ntkrnlpa.exe

[7] 2005-03-02 . C6CF1974ACDB8329DAF9D001C0937CB0 . 2061184 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\4cd7c0093cc0603e7e69fa9c40b632f1\sp2gdr\ntkrnlpa.exe

[-] 2004-08-04 . E0399688D466B7C3AFDFFB5A2ED9F351 . 2061184 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB971486$\ntkrnlpa.exe

[-] 2004-08-04 . E0399688D466B7C3AFDFFB5A2ED9F351 . 2061184 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe

[-] 2001-09-07 . 4A50338A962A84E1BB692090C704C32D . 1901056 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe

[-] 2004-08-04 08:03 . AC75E028773CBBD7D8B1313F382E7C05 . 437248 . . [5.1.2400.2180] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll

[-] 2004-08-04 08:03 . AC75E028773CBBD7D8B1313F382E7C05 . 437248 . . [5.1.2400.2180] . . c:\windows\system32\ntmssvc.dll

[-] 2001-09-07 12:00 . 565F718DE5A42BB7350F6FAACD351615 . 394240 . . [5.1.2400.1] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-10-07 1461080]

"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-11-10 417792]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-04 15360]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\uTorrent\\uTorrent.exe"=

"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

"c:\\Program Files\\iTunes\\iTunes.exe"=

R0 DiskSec;Magix Volume Filter Driver;c:\windows\system32\drivers\disksec.sys [15-2-2010 10:35 14208]

R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [7-10-2009 9:18 35168]

R2 CBTWlanSrv;CBT Wlan Service;c:\windows\CBTWlanSrv.exe [14-2-2010 16:56 106496]

R2 ekrn;Eset Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [7-10-2009 9:16 472280]

R3 CBPSp50;CBPSp50 NDIS Protocol Driver;c:\windows\system32\drivers\CBPSp50.sys [14-2-2010 16:53 27072]

R3 WPC54Gv3;Linksys Wireless Notebook Adapter WPC54Gv3 Driver;c:\windows\system32\drivers\WPC54Gv3.SYS [14-2-2010 16:54 822400]

S3 CBPMp50;CBPMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\CBPMp50.sys --> c:\windows\system32\Drivers\CBPMp50.sys [?]

S3 cpuz132;cpuz132;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys [?]

S3 S3SAVAGE4M;S3SAVAGE4M;c:\windows\system32\drivers\s3sav4m.sys [6-2-2010 16:47 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

getPlusHelper REG_MULTI_SZ getPlusHelper

.

Inhoud van de 'Gedeelde Taken' map

2010-02-19 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.nl/

IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000

Trusted Zone: 0.0.0.0

Trusted Zone: motive.com\conltbc.cert

Trusted Zone: OfflineRegistration

.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2010-02-22 16:08

Windows 5.1.2600 Service Pack 2 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond

verborgen bestanden: 0

**************************************************************************

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-789336058-839522115-2082156227-500\Software\Microsoft\Internet Explorer\User Preferences]

@Denied: (2) (Administrator)

"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,98,90,b8,32,28,c0,e3,48,b6,a7,1e,\

"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,98,90,b8,32,28,c0,e3,48,b6,a7,1e,\

.

--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'winlogon.exe'(712)

c:\windows\System32\BCMLogon.dll

.

Voltooingstijd: 2010-02-22 16:14:57

ComboFix-quarantined-files.txt 2010-02-22 15:14

Pre-Run: 8.409.923.584 bytes beschikbaar

Post-Run: 8.840.032.256 bytes beschikbaar

- - End Of File - - D4DAB44529DA09D3F375E09C78A3BB7E

Geplaatst:

Nergens uitroep tekens te zien had via een driver scanner alle drivers al kunnen updaten......dacht inderdaad ook zelf dat dat het probleem was.

Maakt het helaas alleen moeilijker om wel te vinden wat het probleem is.

:sad

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.