Hoog processorgebruik en luidruchtige ventilator

[LeEbreo]

Beste,

het processorgebruik van mijn laptop loopt alleen bij het opstarten van een internetpagina al richting de 60 á 70 procent.

Ik heb zelf gekeken of er eventueel meerdere antivirus programma's aanstaan, maar dat is niet het geval.

Op sommige momenten geeft de processor ook aan 100% te gebruiken.

Wat betreft de ventilator loopt die constant te blazen. Dit is voornamelijk als de processor druk bezig is, maar ook als het processorgebruik onder de 10% zit blaast hij constant door en ook met een behoorlijk geluid. Alleen als ik de laptop niet gebruik wordt het geluid rustig.

Ik heb de koeling schoongemaakt met een stofzuiger en op dit moment gebruik ik McAfee als virusbeschermer.

Hier onder heb ik het logje met RSIT

Logfile of random's system information tool 1.09 (written by random/random)

Run by 116 at 2013-09-07 12:46:26

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 248 GB (86%) free of 290 GB

Total RAM: 3946 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:48:40, on 7-9-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v10.0 (10.00.9200.16660)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Launch Manager\LMworker.exe

C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

C:\Windows\SysWOW64\RunDll32.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

c:\PROGRA~2\mcafee\SITEAD~1\saui.exe

C:\Program Files\trend micro\116.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20130906232728.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [Adobe ARM] "c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [ConduitFloatingPlugin_cjofdnhdkbflacojpfpkchgafjahijbb] "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Conduit\CT2865317\plugins\TBVerifier.dll",RunConduitFloatingPlugin cjofdnhdkbflacojpfpkchgafjahijbb

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')

O4 - Global Startup: Acer VCM.lnk = ?

O4 - Global Startup: Bluetooth.lnk = ?

O4 - Global Startup: Update-agent.lnk = ?

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: BecHelperService - Unknown owner - C:\Program Files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe

O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Sleep Memory Optimizer\FFSService.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

O23 - Service: Intel® Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe

O23 - Service: Intel® Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 13053 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

winlogon.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\WLANExt.exe 35550976

\??\C:\Windows\system32\conhost.exe "-608067921-947027327-13731384922128555945790917807-15067931471006156355-674635175

C:\Windows\System32\spoolsv.exe

"taskhost.exe"

"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"

"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"

"C:\Program Files (x86)\Launch Manager\LMworker.exe"

"C:\Program Files\Sleep Memory Optimizer\FFSService.exe"

"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"

"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"

"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}"

"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"

"C:\Program Files (x86)\KPN\Mobiel Internet Software\LoggerServer.exe" -background 1772

\??\C:\Windows\system32\conhost.exe "1145459846-1347397647247703083-1522106809-1858339594-930333200824989910-1950844957

"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc

"C:\Windows\system32\mfevtps.exe"

"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE

"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"

"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"

"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"

"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait

"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait

"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait

taskeng.exe {ED94786F-B826-453A-933D-7C644441110F}

"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"

"C:\Windows\System32\igfxtray.exe"

"C:\Windows\System32\hkcmd.exe"

"C:\Windows\System32\igfxpers.exe"

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4

C:\Windows\system32\igfxsrvc.exe -Embedding

"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"

"C:\Program Files\Elantech\ETDCtrl.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"

"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun

"C:\Windows\SysWOW64\rundll32.exe" "C:\Program Files (x86)\Conduit\CT2865317\plugins\TBVerifier.dll",RunConduitFloatingPlugin cjofdnhdkbflacojpfpkchgafjahijbb

"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"

"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"

C:\Windows\system32\igfxext.exe -Embedding

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files\mcafee.com\agent\mcagent.exe" /runkey

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k

"C:\Dolby PCEE4\pcee4.exe" -autostart

"C:\Program Files (x86)\Launch Manager\LManager.exe"

"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"

"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"

"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"

"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\servicing\TrustedInstaller.exe

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\Elantech\ETDCtrlHelper.exe"

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Program Files\Internet Explorer\iexplore.exe"

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7672 CREDAT:267521 /prefetch:2

C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

WLIDSvcM.exe 8016

C:\Windows\system32\Macromed\Flash\FlashUtil64_11_0_1_ActiveX.exe -Embedding

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7672 CREDAT:3085607 /prefetch:2

taskmgr.exe /3

C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

C:\Windows\system32\sppsvc.exe

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

"c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding

"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Users\116\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\56G0YCE5\RSITx64.exe"

"C:\Program Files\EgisTec IPS\PMMUpdate.exe"

"C:\Program Files\EgisTec IPS\EgisUpdate.exe"

C:\Windows\System32\svchost.exe -k WerSvcGroup

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]

scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20130906232728.dll [2012-05-25 94720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-12-04 322856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]

scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20130906232728.dll [2012-05-25 79776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2012-12-04 262080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-12-04 322856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2012-12-04 262080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-16 167704]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-16 392472]

"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-16 416024]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-08-10 12666984]

"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-08-10 2275944]

"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-12-21 2892584]

"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-08-02 1831016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

"ConduitFloatingPlugin_cjofdnhdkbflacojpfpkchgafjahijbb"=C:\Windows\SysWOW64\Rundll32.exe [2009-07-14 44544]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-02 1155928]

"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2012-03-21 1675160]

"Adobe ARM"=c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-04-24 297280]

"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2011-06-01 506712]

"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-03-15 1081424]

"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-08-27 177448]

"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-09-20 341360]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe

Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

Update-agent.lnk - C:\Program Files (x86)\KPN\Mobiel Internet Software\AutoUpdateSrv.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

"notification packages"=scecli

C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-09-07 12:46:27 ----D---- C:\Program Files\trend micro

2013-09-07 12:46:26 ----D---- C:\rsit

2013-09-07 09:25:27 ----D---- C:\Program Files (x86)\Microsoft.NET

2013-09-06 23:55:21 ----A---- C:\Windows\system32\Wdfres.dll

2013-09-06 23:55:21 ----A---- C:\Windows\system32\drivers\WdfLdr.sys

2013-09-06 23:55:21 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-09-06 23:47:56 ----D---- C:\ProgramData\Acer

2013-09-06 23:37:27 ----D---- C:\Windows\SYSWOW64\Wat

2013-09-06 23:37:27 ----D---- C:\Windows\system32\Wat

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\wextract.exe

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\msrating.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\msls31.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\inseng.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-09-06 23:29:31 ----A---- C:\Windows\SYSWOW64\elshyph.dll

2013-09-06 23:29:31 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2013-09-06 23:29:31 ----A---- C:\Windows\system32\elshyph.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\url.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\occache.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\mshta.exe

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\jscript.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\icardie.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2013-09-06 23:29:30 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\wininet.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\wextract.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\webcheck.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\vbscript.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\urlmon.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\url.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\pngfilt.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\occache.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\msrating.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\msls31.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\mshtmlmedia.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\mshtmler.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\mshtmled.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\mshtml.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\mshta.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\msfeedssync.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\msfeeds.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\licmgr10.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\jsproxy.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\jscript9.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\jscript.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\inseng.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\imgutil.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iexpress.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ieUnatt.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ieui.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iesysprep.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iesetup.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iertutil.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iernonce.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iepeers.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ieframe.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\iedkcs32.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ieapfltr.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ieapfltr.dat

2013-09-06 23:29:30 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\ie4uinit.exe

2013-09-06 23:29:30 ----A---- C:\Windows\system32\icardie.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\dxtrans.dll

2013-09-06 23:29:30 ----A---- C:\Windows\system32\dxtmsft.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-09-06 23:27:38 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\dxgi.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\DWrite.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10core.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d3d10.dll

2013-09-06 23:27:38 ----A---- C:\Windows\SYSWOW64\d2d1.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\XpsPrint.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\XpsGdiConverter.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\WMPhoto.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\WindowsCodecs.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\UIAnimation.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\msmpeg2vdec.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\FntCache.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\dxgi.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\DWrite.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10warp.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10level9.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10core.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10_1core.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10_1.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d3d10.dll

2013-09-06 23:27:38 ----A---- C:\Windows\system32\d2d1.dll

2013-09-06 23:24:06 ----A---- C:\Windows\system32\browserchoice.exe

2013-09-06 23:21:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll

2013-09-06 23:21:49 ----A---- C:\Windows\SYSWOW64\atmfd.dll

2013-09-06 23:21:49 ----A---- C:\Windows\system32\atmlib.dll

2013-09-06 23:21:49 ----A---- C:\Windows\system32\atmfd.dll

2013-09-06 23:21:02 ----A---- C:\Windows\system32\drivers\WUDFRd.sys

2013-09-06 23:21:02 ----A---- C:\Windows\system32\drivers\WUDFPf.sys

2013-09-06 23:21:00 ----A---- C:\Windows\system32\WUDFx.dll

2013-09-06 23:21:00 ----A---- C:\Windows\system32\WUDFSvc.dll

2013-09-06 23:21:00 ----A---- C:\Windows\system32\WUDFPlatform.dll

2013-09-06 23:21:00 ----A---- C:\Windows\system32\WUDFHost.exe

2013-09-06 23:21:00 ----A---- C:\Windows\system32\WUDFCoinstaller.dll

2013-09-06 16:39:41 ----D---- C:\Users\116\AppData\Roaming\vlc

2013-09-06 16:39:04 ----D---- C:\Program Files (x86)\VideoLAN

2013-09-06 15:52:00 ----SD---- C:\Windows\SYSWOW64\Microsoft

2013-09-06 11:42:40 ----D---- C:\Users\116\AppData\Roaming\Skype

2013-09-06 11:42:27 ----RD---- C:\Program Files (x86)\Skype

2013-09-06 11:41:14 ----A---- C:\Windows\SYSWOW64\wmi.dll

2013-09-06 11:41:14 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2013-09-06 11:41:14 ----A---- C:\Windows\system32\wmi.dll

2013-09-06 11:41:14 ----A---- C:\Windows\system32\imagehlp.dll

2013-09-06 11:41:14 ----A---- C:\Windows\system32\drivers\fs_rec.sys

2013-09-06 11:37:55 ----D---- C:\Program Files\Microsoft Silverlight

2013-09-06 11:37:55 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2013-09-06 11:19:22 ----D---- C:\Users\116\AppData\Roaming\Birdstep Technology

2013-09-06 11:19:02 ----D---- C:\ProgramData\Birdstep Technology

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\mod7700.sys

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\ewusbnet.sys

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\ewusbdev.sys

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\ewdcsc.sys

2013-09-06 11:18:07 ----A---- C:\Windows\system32\drivers\ew_usbenumfilter.sys

2013-09-06 11:17:48 ----D---- C:\Program Files (x86)\Huawei Modems

2013-09-06 11:17:48 ----A---- C:\Windows\Huawei ModemsUninstall.exe

2013-09-06 11:17:43 ----D---- C:\Program Files (x86)\KPN

2013-09-05 23:18:59 ----D---- C:\ProgramData\VirtualizedApplications

2013-09-05 15:56:41 ----A---- C:\Windows\system32\aswBoot.exe

2013-09-05 15:55:16 ----D---- C:\Program Files\AVAST Software

2013-09-05 15:54:08 ----D---- C:\ProgramData\AVAST Software

2013-09-05 15:28:13 ----RHD---- C:\MSOCache

2013-09-05 15:23:05 ----D---- C:\Users\116\AppData\Roaming\SoftGrid Client

2013-09-05 15:22:15 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

2013-09-05 15:21:54 ----D---- C:\Program Files\Microsoft Office

2013-09-05 15:21:53 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client

2013-09-05 15:21:38 ----D---- C:\Users\116\AppData\Roaming\TP

2013-09-05 15:21:15 ----D---- C:\Program Files (x86)\Conduit

2013-09-05 15:13:58 ----D---- C:\Program Files\CCleaner

2013-09-05 15:07:55 ----A---- C:\Windows\system32\drivers\dxgmms1.sys

2013-09-05 15:07:55 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-09-05 15:07:54 ----A---- C:\Windows\system32\cdd.dll

2013-09-05 15:07:33 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll

2013-09-05 15:07:33 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll

2013-09-05 15:07:33 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2013-09-05 15:07:33 ----A---- C:\Windows\system32\dhcpcore6.dll

2013-09-05 15:07:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll

2013-09-05 15:07:21 ----A---- C:\Windows\system32\mstscax.dll

2013-09-05 15:07:20 ----A---- C:\Windows\SYSWOW64\tsgqec.dll

2013-09-05 15:07:20 ----A---- C:\Windows\SYSWOW64\aaclient.dll

2013-09-05 15:07:20 ----A---- C:\Windows\system32\tsgqec.dll

2013-09-05 15:07:20 ----A---- C:\Windows\system32\aaclient.dll

2013-09-05 15:07:00 ----A---- C:\Windows\SYSWOW64\crypt32.dll

2013-09-05 15:07:00 ----A---- C:\Windows\system32\crypt32.dll

2013-09-05 15:06:59 ----A---- C:\Windows\SYSWOW64\wintrust.dll

2013-09-05 15:06:59 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll

2013-09-05 15:06:59 ----A---- C:\Windows\SYSWOW64\cryptnet.dll

2013-09-05 15:06:59 ----A---- C:\Windows\system32\wintrust.dll

2013-09-05 15:06:59 ----A---- C:\Windows\system32\cryptsvc.dll

2013-09-05 15:06:59 ----A---- C:\Windows\system32\cryptnet.dll

2013-09-05 15:06:35 ----A---- C:\Windows\SYSWOW64\quartz.dll

2013-09-05 15:06:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll

2013-09-05 15:06:35 ----A---- C:\Windows\system32\quartz.dll

2013-09-05 15:06:35 ----A---- C:\Windows\system32\qdvd.dll

2013-09-05 15:06:31 ----A---- C:\Windows\SYSWOW64\ntshrui.dll

2013-09-05 15:06:31 ----A---- C:\Windows\system32\ntshrui.dll

2013-09-05 15:06:26 ----A---- C:\Windows\system32\shell32.dll

2013-09-05 15:06:25 ----A---- C:\Windows\SYSWOW64\shell32.dll

2013-09-05 15:06:24 ----A---- C:\Windows\system32\shdocvw.dll

2013-09-05 15:06:24 ----A---- C:\Windows\system32\consent.exe

2013-09-05 15:06:24 ----A---- C:\Windows\system32\authui.dll

2013-09-05 15:06:23 ----A---- C:\Windows\SYSWOW64\shdocvw.dll

2013-09-05 15:06:23 ----A---- C:\Windows\SYSWOW64\authui.dll

2013-09-05 15:06:23 ----A---- C:\Windows\system32\appinfo.dll

2013-09-05 15:06:02 ----A---- C:\Windows\SYSWOW64\webio.dll

2013-09-05 15:06:02 ----A---- C:\Windows\system32\webio.dll

2013-09-05 15:05:59 ----A---- C:\Windows\system32\wwansvc.dll

2013-09-05 15:05:59 ----A---- C:\Windows\system32\wwanprotdim.dll

2013-09-05 15:05:58 ----A---- C:\Windows\system32\drivers\ntfs.sys

2013-09-05 15:05:44 ----A---- C:\Windows\SYSWOW64\tzres.dll

2013-09-05 15:05:44 ----A---- C:\Windows\system32\tzres.dll

2013-09-05 15:05:16 ----A---- C:\Windows\system32\drivers\RNDISMP.sys

2013-09-05 15:05:16 ----A---- C:\Windows\system32\drivers\ndis.sys

2013-09-05 15:05:13 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL

2013-09-05 15:05:13 ----A---- C:\Windows\system32\WMVDECOD.DLL

2013-09-05 15:05:11 ----A---- C:\Windows\system32\drivers\usb8023.sys

2013-09-05 15:05:09 ----A---- C:\Windows\system32\rdrmemptylst.exe

2013-09-05 15:05:09 ----A---- C:\Windows\system32\rdpwsx.dll

2013-09-05 15:05:09 ----A---- C:\Windows\system32\rdpcorekmts.dll

2013-09-05 15:05:07 ----A---- C:\Windows\SYSWOW64\schannel.dll

2013-09-05 15:05:07 ----A---- C:\Windows\system32\schannel.dll

2013-09-05 15:05:07 ----A---- C:\Windows\system32\lsasrv.dll

2013-09-05 15:05:07 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-09-05 15:05:07 ----A---- C:\Windows\system32\drivers\cng.sys

2013-09-05 15:05:06 ----A---- C:\Windows\SYSWOW64\secur32.dll

2013-09-05 15:05:06 ----A---- C:\Windows\system32\sspisrv.dll

2013-09-05 15:05:06 ----A---- C:\Windows\system32\sspicli.dll

2013-09-05 15:05:06 ----A---- C:\Windows\system32\secur32.dll

2013-09-05 15:05:06 ----A---- C:\Windows\system32\lsass.exe

2013-09-05 15:05:06 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-09-05 15:05:05 ----A---- C:\Windows\SYSWOW64\sspicli.dll

2013-09-05 15:05:03 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll

2013-09-05 15:05:03 ----A---- C:\Windows\system32\rpcrt4.dll

2013-09-05 15:05:01 ----A---- C:\Windows\system32\msxml6.dll

2013-09-05 15:05:01 ----A---- C:\Windows\system32\msxml3.dll

2013-09-05 15:05:00 ----A---- C:\Windows\SYSWOW64\msxml6.dll

2013-09-05 15:05:00 ----A---- C:\Windows\SYSWOW64\msxml3r.dll

2013-09-05 15:05:00 ----A---- C:\Windows\SYSWOW64\msxml3.dll

2013-09-05 15:05:00 ----A---- C:\Windows\system32\msxml3r.dll

2013-09-05 15:04:56 ----A---- C:\Windows\SYSWOW64\netcorehc.dll

2013-09-05 15:04:56 ----A---- C:\Windows\SYSWOW64\ncsi.dll

2013-09-05 15:04:56 ----A---- C:\Windows\system32\nlasvc.dll

2013-09-05 15:04:56 ----A---- C:\Windows\system32\netcorehc.dll

2013-09-05 15:04:56 ----A---- C:\Windows\system32\ncsi.dll

2013-09-05 15:04:56 ----A---- C:\Windows\system32\iphlpsvc.dll

2013-09-05 15:04:55 ----A---- C:\Windows\SYSWOW64\nlaapi.dll

2013-09-05 15:04:55 ----A---- C:\Windows\system32\nlaapi.dll

2013-09-05 15:04:55 ----A---- C:\Windows\system32\drivers\tcpipreg.sys

2013-09-05 15:04:54 ----A---- C:\Windows\SYSWOW64\netevent.dll

2013-09-05 15:04:54 ----A---- C:\Windows\system32\netevent.dll

2013-09-05 15:04:45 ----A---- C:\Windows\system32\profsvc.dll

2013-09-05 15:03:46 ----A---- C:\Windows\SYSWOW64\dpnet.dll

2013-09-05 15:03:46 ----A---- C:\Windows\system32\dpnet.dll

2013-09-05 15:03:45 ----A---- C:\Windows\SYSWOW64\qedit.dll

2013-09-05 15:03:45 ----A---- C:\Windows\system32\qedit.dll

2013-09-05 15:03:44 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2013-09-05 15:03:44 ----A---- C:\Windows\system32\ncrypt.dll

2013-09-05 15:03:38 ----A---- C:\Windows\system32\winsrv.dll

2013-09-05 15:03:37 ----A---- C:\Windows\SYSWOW64\setup16.exe

2013-09-05 15:03:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

2013-09-05 15:03:36 ----A---- C:\Windows\SYSWOW64\wow32.dll

2013-09-05 15:03:36 ----A---- C:\Windows\SYSWOW64\instnm.exe

2013-09-05 15:03:29 ----A---- C:\Windows\SYSWOW64\user.exe

2013-09-05 15:03:25 ----A---- C:\Windows\system32\OxpsConverter.exe

2013-09-05 15:03:03 ----A---- C:\Windows\SYSWOW64\usp10.dll

2013-09-05 15:03:03 ----A---- C:\Windows\system32\usp10.dll

2013-09-05 15:03:01 ----A---- C:\Windows\system32\drivers\tssecsrv.sys

2013-09-05 15:02:53 ----A---- C:\Windows\system32\Wpc.dll

2013-09-05 15:02:52 ----A---- C:\Windows\SYSWOW64\Wpc.dll

2013-09-05 15:02:52 ----A---- C:\Windows\SYSWOW64\gameux.dll

2013-09-05 15:02:52 ----A---- C:\Windows\system32\gameux.dll

2013-09-05 15:02:28 ----A---- C:\Windows\system32\drivers\rdpwd.sys

2013-09-05 15:02:02 ----A---- C:\Windows\system32\drivers\afd.sys

2013-09-05 15:01:39 ----A---- C:\Windows\system32\drivers\partmgr.sys

2013-09-05 15:01:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll

2013-09-05 15:01:38 ----A---- C:\Windows\system32\kerberos.dll

2013-09-05 15:01:36 ----A---- C:\Windows\SYSWOW64\msi.dll

2013-09-05 15:01:36 ----A---- C:\Windows\system32\msi.dll

2013-09-05 15:01:25 ----A---- C:\Windows\system32\KernelBase.dll

2013-09-05 15:01:25 ----A---- C:\Windows\system32\kernel32.dll

2013-09-05 15:01:25 ----A---- C:\Windows\system32\conhost.exe

2013-09-05 15:01:24 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

2013-09-05 15:01:24 ----A---- C:\Windows\SYSWOW64\kernel32.dll

2013-09-05 15:01:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2013-09-05 15:01:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2013-09-05 15:01:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll

2013-09-05 15:01:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-09-05 15:01:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll

2013-09-05 15:01:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll

2013-09-05 15:01:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll

2013-09-05 15:01:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll

2013-09-05 15:01:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll

2013-09-05 15:01:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll

2013-09-05 15:01:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll

2013-09-05 15:01:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-09-05 15:01:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-09-05 15:01:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-09-05 15:01:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-09-05 15:01:18 ----A---- C:\Windows\system32\wow64win.dll

2013-09-05 15:01:18 ----A---- C:\Windows\system32\wow64cpu.dll

2013-09-05 15:01:18 ----A---- C:\Windows\system32\wow64.dll

2013-09-05 15:01:18 ----A---- C:\Windows\system32\ntvdm64.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-09-05 15:01:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-09-05 15:01:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-09-05 15:01:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-09-05 15:01:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-09-05 15:01:14 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-09-05 15:01:14 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-09-05 15:00:26 ----A---- C:\Windows\system32\drivers\bthport.sys

2013-09-05 15:00:24 ----A---- C:\Windows\SYSWOW64\synceng.dll

2013-09-05 15:00:24 ----A---- C:\Windows\system32\synceng.dll

2013-09-05 15:00:23 ----A---- C:\Windows\system32\win32spl.dll

2013-09-05 15:00:22 ----A---- C:\Windows\SYSWOW64\win32spl.dll

2013-09-05 15:00:21 ----A---- C:\Windows\system32\win32k.sys

2013-09-05 15:00:14 ----A---- C:\Windows\system32\taskhost.exe

2013-09-05 15:00:07 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll

2013-09-05 15:00:07 ----A---- C:\Windows\system32\cryptdlg.dll

2013-09-05 14:59:44 ----A---- C:\Windows\system32\drivers\tcpip.sys

2013-09-05 14:59:44 ----A---- C:\Windows\system32\drivers\netio.sys

2013-09-05 14:59:44 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS

2013-09-05 14:59:19 ----A---- C:\Windows\system32\browser.dll

2013-09-05 14:59:19 ----A---- C:\Windows\system32\browcli.dll

2013-09-05 14:59:18 ----A---- C:\Windows\SYSWOW64\netapi32.dll

2013-09-05 14:59:18 ----A---- C:\Windows\SYSWOW64\browcli.dll

2013-09-05 14:59:18 ----A---- C:\Windows\system32\netapi32.dll

2013-09-05 14:59:15 ----A---- C:\Windows\system32\drivers\fvevol.sys

2013-09-05 14:59:14 ----A---- C:\Windows\SYSWOW64\srclient.dll

2013-09-05 14:59:14 ----A---- C:\Windows\system32\srcore.dll

2013-09-05 14:59:12 ----A---- C:\Windows\SYSWOW64\msvcrt.dll

2013-09-05 14:59:12 ----A---- C:\Windows\system32\msvcrt.dll

2013-09-05 14:59:06 ----A---- C:\Windows\SYSWOW64\certutil.exe

2013-09-05 14:59:06 ----A---- C:\Windows\system32\certutil.exe

2013-09-05 14:59:04 ----A---- C:\Windows\system32\certenc.dll

2013-09-05 14:59:03 ----A---- C:\Windows\SYSWOW64\certenc.dll

2013-09-05 14:58:30 ----A---- C:\Windows\system32\localspl.dll

2013-09-05 14:58:27 ----A---- C:\Windows\system32\ntoskrnl.exe

2013-09-05 14:58:26 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

2013-09-05 14:58:26 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

2013-09-05 14:58:26 ----A---- C:\Windows\system32\smss.exe

2013-09-05 14:58:25 ----A---- C:\Windows\SYSWOW64\apisetschema.dll

2013-09-05 14:58:25 ----A---- C:\Windows\system32\csrsrv.dll

2013-09-05 14:58:20 ----D---- C:\Users\116\AppData\Roaming\uTorrent

2013-09-05 14:58:07 ----A---- C:\Windows\SYSWOW64\cdosys.dll

2013-09-05 14:58:06 ----A---- C:\Windows\system32\cdosys.dll

2013-09-05 14:57:57 ----A---- C:\Windows\SYSWOW64\d3d11.dll

2013-09-05 14:57:57 ----A---- C:\Windows\system32\d3d11.dll

2013-09-05 14:57:56 ----A---- C:\Windows\SYSWOW64\packager.dll

2013-09-05 14:57:56 ----A---- C:\Windows\system32\packager.dll

2013-09-05 14:57:50 ----A---- C:\Windows\SYSWOW64\ntdll.dll

2013-09-05 14:57:50 ----A---- C:\Windows\system32\ntdll.dll

2013-09-05 14:57:46 ----A---- C:\Windows\system32\spoolsv.exe

2013-09-05 14:57:46 ----A---- C:\Windows\splwow64.exe

2013-09-05 07:48:11 ----A---- C:\Windows\SYSWOW64\rdpcore.dll

2013-09-05 07:48:11 ----A---- C:\Windows\system32\rdpcore.dll

2013-09-05 07:48:10 ----A---- C:\Windows\system32\drivers\tdtcp.sys

2013-09-05 07:42:56 ----D---- C:\Program Files (x86)\Google

2013-09-05 07:40:31 ----A---- C:\Windows\system32\wups2.dll

2013-09-05 07:40:31 ----A---- C:\Windows\system32\wucltux.dll

2013-09-05 07:40:31 ----A---- C:\Windows\system32\wuaueng.dll

2013-09-05 07:40:31 ----A---- C:\Windows\system32\wuauclt.exe

2013-09-05 07:40:24 ----A---- C:\Windows\system32\wups.dll

2013-09-05 07:40:24 ----A---- C:\Windows\system32\wudriver.dll

2013-09-05 07:40:24 ----A---- C:\Windows\system32\wuapi.dll

2013-09-05 07:40:16 ----A---- C:\Windows\system32\wuwebv.dll

2013-09-05 07:40:16 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2013-09-07 12:46:58 ----D---- C:\Windows\Temp

2013-09-07 12:46:27 ----RD---- C:\Program Files

2013-09-07 12:40:42 ----A---- C:\Windows\SYSWOW64\log.txt

2013-09-07 12:38:49 ----D---- C:\Windows\system32\config

2013-09-07 12:38:39 ----D---- C:\Windows\inf

2013-09-07 11:53:49 ----D---- C:\Program Files (x86)\McAfee

2013-09-07 11:53:46 ----D---- C:\Windows

2013-09-07 11:10:19 ----RSD---- C:\Windows\assembly

2013-09-07 11:10:19 ----D---- C:\Windows\Microsoft.NET

2013-09-07 10:55:32 ----D---- C:\Windows\Panther

2013-09-07 10:55:32 ----D---- C:\Windows\Logs

2013-09-07 10:55:32 ----D---- C:\Windows\debug

2013-09-07 10:35:18 ----SD---- C:\Users\116\AppData\Roaming\Microsoft

2013-09-07 10:27:28 ----D---- C:\Windows\system32\NDF

2013-09-07 09:48:22 ----SHD---- C:\Windows\Installer

2013-09-07 09:47:33 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-09-07 09:47:33 ----D---- C:\Windows\system32\nl-NL

2013-09-07 09:47:28 ----SHD---- C:\System Volume Information

2013-09-07 09:47:21 ----D---- C:\Windows\System32

2013-09-07 09:47:21 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-09-07 09:41:26 ----D---- C:\Program Files\mcafee

2013-09-07 09:25:36 ----D---- C:\Windows\SysWOW64

2013-09-07 09:25:30 ----D---- C:\Windows\SYSWOW64\en-US

2013-09-07 09:25:30 ----D---- C:\Windows\system32\en-US

2013-09-07 09:25:27 ----RD---- C:\Program Files (x86)

2013-09-07 09:24:55 ----D---- C:\Windows\system32\catroot

2013-09-07 09:19:23 ----D---- C:\Windows\winsxs

2013-09-07 09:17:37 ----D---- C:\Windows\system32\drivers

2013-09-07 09:17:36 ----D---- C:\Program Files\Common Files\System

2013-09-07 09:17:33 ----D---- C:\Windows\AppPatch

2013-09-07 09:17:31 ----D---- C:\Windows\ehome

2013-09-07 09:17:25 ----D---- C:\Windows\system32\drivers\nl-NL

2013-09-07 09:17:24 ----D---- C:\Windows\system32\wbem

2013-09-06 23:56:36 ----D---- C:\Program Files\Common Files\Microsoft Shared

2013-09-06 23:54:51 ----D---- C:\Program Files (x86)\Windows Defender

2013-09-06 23:54:50 ----D---- C:\Program Files\Windows Defender

2013-09-06 23:50:14 ----D---- C:\Windows\system32\Tasks

2013-09-06 23:50:13 ----D---- C:\Windows\Tasks

2013-09-06 23:48:30 ----D---- C:\Program Files\Acer

2013-09-06 23:47:56 ----HD---- C:\ProgramData

2013-09-06 23:47:47 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2013-09-06 23:38:04 ----D---- C:\Program Files (x86)\Internet Explorer

2013-09-06 23:38:03 ----D---- C:\Program Files\Internet Explorer

2013-09-06 23:38:01 ----D---- C:\Windows\SYSWOW64\wbem

2013-09-06 23:38:01 ----D---- C:\Windows\SYSWOW64\migration

2013-09-06 23:38:01 ----D---- C:\Windows\SYSWOW64\fr-FR

2013-09-06 23:37:57 ----D---- C:\Windows\PolicyDefinitions

2013-09-06 23:37:56 ----D---- C:\Windows\system32\migration

2013-09-06 23:37:56 ----D---- C:\Windows\system32\fr-FR

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\zh-HK

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\pt-PT

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\pt-BR

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\pl-PL

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\ko-KR

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\it-IT

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\hu-HU

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\fi-FI

2013-09-06 23:37:49 ----D---- C:\Windows\SYSWOW64\el-GR

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\zh-TW

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\zh-CN

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\tr-TR

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\sv-SE

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\ru-RU

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\nb-NO

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\ja-JP

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\es-ES

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\de-DE

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\da-DK

2013-09-06 23:37:48 ----D---- C:\Windows\SYSWOW64\cs-CZ

2013-09-06 23:37:46 ----D---- C:\Windows\system32\pt-PT

2013-09-06 23:37:46 ----D---- C:\Windows\system32\pt-BR

2013-09-06 23:37:46 ----D---- C:\Windows\system32\pl-PL

2013-09-06 23:37:46 ----D---- C:\Windows\system32\ko-KR

2013-09-06 23:37:46 ----D---- C:\Windows\system32\it-IT

2013-09-06 23:37:45 ----D---- C:\Windows\system32\zh-TW

2013-09-06 23:37:45 ----D---- C:\Windows\system32\zh-HK

2013-09-06 23:37:45 ----D---- C:\Windows\system32\tr-TR

2013-09-06 23:37:45 ----D---- C:\Windows\system32\sv-SE

2013-09-06 23:37:45 ----D---- C:\Windows\system32\hu-HU

2013-09-06 23:37:45 ----D---- C:\Windows\system32\fi-FI

2013-09-06 23:37:45 ----D---- C:\Windows\system32\es-ES

2013-09-06 23:37:45 ----D---- C:\Windows\system32\el-GR

2013-09-06 23:37:44 ----D---- C:\Windows\system32\zh-CN

2013-09-06 23:37:44 ----D---- C:\Windows\system32\ru-RU

2013-09-06 23:37:44 ----D---- C:\Windows\system32\nb-NO

2013-09-06 23:37:44 ----D---- C:\Windows\system32\ja-JP

2013-09-06 23:37:44 ----D---- C:\Windows\system32\de-DE

2013-09-06 23:37:44 ----D---- C:\Windows\system32\da-DK

2013-09-06 23:37:44 ----D---- C:\Windows\system32\cs-CZ

2013-09-06 23:37:06 ----D---- C:\Windows\system32\DriverStore

2013-09-06 23:34:26 ----D---- C:\Windows\system32\catroot2

2013-09-06 11:50:53 ----RSD---- C:\Windows\Fonts

2013-09-06 11:50:53 ----D---- C:\Program Files\Windows Journal

2013-09-06 11:42:33 ----D---- C:\ProgramData\Skype

2013-09-06 11:42:27 ----D---- C:\Program Files (x86)\Common Files

2013-09-05 18:03:19 ----D---- C:\ProgramData\Adobe

2013-09-05 18:02:11 ----D---- C:\Users\116\AppData\Roaming\Adobe

2013-09-05 16:02:30 ----SD---- C:\ProgramData\Microsoft

2013-09-05 16:02:30 ----D---- C:\Program Files (x86)\Microsoft

2013-09-05 15:21:56 ----D---- C:\Program Files (x86)\Microsoft Office

2013-09-05 08:16:19 ----D---- C:\Windows\Prefetch

2013-09-05 07:39:07 ----D---- C:\Windows\SoftwareDistribution

2013-09-05 07:38:19 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-05-20 557848]

R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2012-02-22 647208]

R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2012-02-22 289664]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936]

R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2012-02-17 22648]

R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2012-02-17 20520]

R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2012-02-17 62776]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-08-19 4746304]

R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2012-02-22 65264]

R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-12-21 207656]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-09 12289472]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-12 3053160]

R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]

R3 irstrtdv;Intel® Rapid Start Technology Driver; C:\Windows\system32\DRIVERS\irstrtdv.sys [2011-06-16 26504]

R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]

R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2012-02-22 160792]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2012-02-22 229528]

R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2012-02-22 487296]

R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2011-07-29 313448]

R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]

R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]

R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]

R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]

S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2011-08-31 133672]

S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]

S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]

S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]

S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]

S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2011-08-31 620072]

S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-08-31 167976]

S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2011-08-31 178728]

S3 BTWDPAN;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\btwdpan.sys [2011-08-31 89640]

S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-08-31 39976]

S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2011-08-31 21544]

S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2010-12-02 249856]

S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2010-12-02 120704]

S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]

S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []

S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2012-02-22 100912]

S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

S3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]

R2 BecHelperService;BecHelperService; C:\Program Files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe [2010-12-02 1860488]

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-08-31 1085216]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]

R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-03-15 352336]

R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-08-02 872552]

R2 FFSOpzSvc;Sleep memory optimizer; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [2011-09-18 141192]

R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456]

R2 jhi_service;Intel® Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-07-22 212944]

R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-04-05 255376]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-08-09 325912]

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2012-05-25 199304]

R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-05-25 210616]

R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2012-05-25 162224]

R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-28 249936]

R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-02 2804568]

R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]

R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]

R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]

R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-08-09 2656536]

R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]

R3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]

S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]

S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S3 irstrtsv;Intel® Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2011-07-07 184320]

S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [2011-03-09 224704]

S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2012-08-23 502064]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-09-06 1255736]

S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2011-01-28 249936]

S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

Ik hoop dat iemand mij hiermee kan helpen, alvast bedankt!

[Dasle]

Van zodra 1 van de experts online is zal deze je zeker verder helpen aangaande je vraag/probleem.

[LeEbreo]

Dankjewel, ik wacht rustig af!

[kape]

Download Zoek.zip naar het bureaublad.

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  
• Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  C:\Program Files (x86)\Conduit;fs
 ConduitFloatingPlugin_cjofdnhdkbflacojpfpkchgafjahijbb;s
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "ConduitFloatingPlugin_cjofdnhdkbflacojpfpkchgafjahijbb"=-;r64

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Firefox Look
  
• Chrome Look
  
• Firefox Defaults
  
• Reset Chrome
  
• IE Defaults
  
• Auto Clean
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post nu de inhoud van het geopende logje in het volgende bericht.
  

[LeEbreo]

Zoek.exe Version 4.0.0.4 Updated 07-September-2013

Tool run by 116 on za 07-09-2013 at 14:31:33,75.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\116\Downloads\zoek\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

7-9-2013 14:33:06 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ConduitFloatingPlugin_cjofdnhdkbflacojpfpkchgafjahijbb"=-

==== Deleting Files \ Folders ======================

"C:\Program Files (x86)\Conduit" deleted

"C:\Program Files (x86)\Conduit" deleted

"C:\Users\116\AppData\Local\CRE" deleted

"C:\Users\116\AppData\LocalLow\Conduit" deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\116\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]

fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[04-12-2012 10:47]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\116\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\116\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\116\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MSX74BU will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\116\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\116\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MSX74BU" deleted

==== EOF on za 07-09-2013 at 14:37:06,78 ======================

[kape]

Download ComboFix van één van de onderstaande locaties naar het bureaublad.

Bleeping Computer

Info Spyware

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met ComboFix.exe

(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.

• Dubbelklik op "ComboFix" om de tool te starten, Windows Vista, 7 & 8 gebruikers zullen een melding krijgen van UAC (Gebruikersaccountbeheer), klik hier op Ja / yes.
  
• Op een Windows XP computer zal ComboFix de "Recovery Console" installeren als deze nog niet aanwezig is. (Een actieve internet verbinding is dan een vereiste).
  
• Klik in het venster bij het 'Installeren van de Recovery Console' op "Ok".
  
• Klik in het info scherm op "Ja" als de Recovery Console met succes is geïnstalleerd.
  
• Klik in het scherm van de disclaimer op "I Agree", de benodigde onderdelen worden nu uitgepakt en middels ERUNT wordt er een register back-up gemaakt.
  
• Wanneer dit gereed is zal ComboFix vanzelf starten, in het blauwe scherm ziet u de voortgang van de systeemscan die wordt uitgevoerd.
  
• Belangrijk! gebruik de computer tijdens de scan niet voor andere zaken.
  
• Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden zoals bijvoorbeeld bij de aanwezigheid van een rootkit, dit is normaal.
  
• Wanneer ComboFix gereed is, zal het een logbestand aanmaken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.
  

* Noot !!! Indien u één van de onderstaande meldingen krijgt na het gebruik van ComboFix herstart dan de computer.

• Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
  
• Illegal operation attempted on a registry key that has been marked for deletion.
  

[LeEbreo]

ComboFix 13-09-06.01 - 116 07-09-2013 16:14:58.1.4 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3946.2432 [GMT 2:00]

Gestart vanuit: c:\users\116\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3IO75VPC\ComboFix.exe

AV: McAfeeAntivirus en antispyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}

FW: McAfeeFirewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}

SP: McAfeeAntivirus en antispyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-08-07 to 2013-09-07 ))))))))))))))))))))))))))))))

.

.

2013-09-07 12:35 . 2013-09-07 12:31 24064 ----a-w- c:\windows\zoek-delete.exe

2013-09-07 11:56 . 2013-09-07 11:56 -------- d-----w- c:\program files\Speccy

2013-09-07 10:46 . 2013-09-07 10:48 -------- d-----w- c:\program files\trend micro

2013-09-07 10:46 . 2013-09-07 10:48 -------- d-----w- C:\rsit

2013-09-07 08:27 . 2013-09-07 08:27 -------- d-----w- c:\users\116\AppData\Local\Diagnostics

2013-09-07 07:25 . 2013-09-07 07:25 -------- d-----w- c:\program files (x86)\Microsoft.NET

2013-09-06 21:55 . 2012-07-26 07:49 2560 ----a-w- c:\windows\system32\drivers\nl-NL\wdf01000.sys.mui

2013-09-06 21:55 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2013-09-06 21:55 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2013-09-06 21:55 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll

2013-09-06 21:47 . 2013-09-06 21:47 -------- d-----w- c:\programdata\Acer

2013-09-06 21:37 . 2013-09-06 21:37 -------- d-----w- c:\windows\SysWow64\Wat

2013-09-06 21:37 . 2013-09-06 21:37 -------- d-----w- c:\windows\system32\Wat

2013-09-06 21:27 . 2013-09-06 21:27 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-09-06 21:24 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe

2013-09-06 21:21 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll

2013-09-06 21:21 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll

2013-09-06 21:21 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll

2013-09-06 21:21 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll

2013-09-06 21:21 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2013-09-06 21:21 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2013-09-06 21:21 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe

2013-09-06 21:21 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll

2013-09-06 21:21 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll

2013-09-06 21:21 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2013-09-06 21:21 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll

2013-09-06 14:39 . 2013-09-06 16:55 -------- d-----w- c:\users\116\AppData\Roaming\vlc

2013-09-06 14:39 . 2013-09-06 14:39 -------- d-----w- c:\program files (x86)\VideoLAN

2013-09-06 13:52 . 2013-09-06 13:52 -------- d-s---w- c:\windows\SysWow64\Microsoft

2013-09-06 09:42 . 2013-09-06 09:42 -------- d-----w- c:\users\116\AppData\Roaming\Skype

2013-09-06 09:42 . 2013-09-06 09:42 -------- d-----w- c:\program files (x86)\Common Files\Skype

2013-09-06 09:42 . 2013-09-06 09:42 -------- d-----r- c:\program files (x86)\Skype

2013-09-06 09:41 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys

2013-09-06 09:41 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll

2013-09-06 09:41 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll

2013-09-06 09:41 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll

2013-09-06 09:41 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll

2013-09-06 09:37 . 2013-09-06 09:37 -------- d-----w- c:\program files\Microsoft Silverlight

2013-09-06 09:37 . 2013-09-06 09:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2013-09-06 09:19 . 2013-09-06 09:19 -------- d-----w- c:\users\116\AppData\Roaming\Birdstep Technology

2013-09-06 09:19 . 2013-09-06 09:19 -------- d-----w- c:\programdata\Birdstep Technology

2013-09-06 09:18 . 2010-12-02 10:52 32768 ----a-w- c:\windows\system32\drivers\ewdcsc.sys

2013-09-06 09:18 . 2010-12-02 10:52 249856 ----a-w- c:\windows\system32\drivers\ewusbnet.sys

2013-09-06 09:18 . 2010-12-02 10:52 13952 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys

2013-09-06 09:18 . 2010-12-02 10:52 120704 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys

2013-09-06 09:18 . 2010-12-02 10:52 114560 ----a-w- c:\windows\system32\drivers\ewusbdev.sys

2013-09-06 09:18 . 2010-12-02 10:52 1001472 ----a-w- c:\windows\system32\drivers\mod7700.sys

2013-09-06 09:17 . 2013-09-06 09:17 -------- d-----w- c:\program files (x86)\Huawei Modems

2013-09-06 09:17 . 2013-09-06 09:17 67156 ----a-w- c:\windows\Huawei ModemsUninstall.exe

2013-09-06 09:17 . 2013-09-06 09:17 -------- d-----w- c:\program files (x86)\KPN

2013-09-05 21:18 . 2013-09-05 21:20 -------- d-----w- c:\programdata\VirtualizedApplications

2013-09-05 16:02 . 2013-09-05 16:02 -------- d-----w- c:\users\116\AppData\Local\Adobe

2013-09-05 13:56 . 2013-08-30 07:47 287840 ----a-w- c:\windows\system32\aswBoot.exe

2013-09-05 13:55 . 2013-09-05 13:55 -------- d-----w- c:\program files\AVAST Software

2013-09-05 13:54 . 2013-09-06 13:57 -------- d-----w- c:\programdata\AVAST Software

2013-09-05 13:28 . 2013-09-05 13:28 -------- d-----r- C:\MSOCache

2013-09-05 13:23 . 2013-09-05 13:23 -------- d-----w- c:\users\116\AppData\Local\SoftGrid Client

2013-09-05 13:23 . 2013-09-07 09:50 -------- d-----w- c:\users\116\AppData\Roaming\SoftGrid Client

2013-09-05 13:21 . 2013-09-05 13:21 -------- d-----w- c:\program files\Microsoft Office

2013-09-05 13:21 . 2013-09-06 21:23 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client

2013-09-05 13:21 . 2013-09-05 13:23 -------- d-----w- c:\users\116\AppData\Roaming\TP

2013-09-05 13:13 . 2013-09-05 13:14 -------- d-----w- c:\program files\CCleaner

2013-09-05 13:06 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll

2013-09-05 13:05 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll

2013-09-05 13:04 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll

2013-09-05 13:04 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll

2013-09-05 13:04 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll

2013-09-05 13:04 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll

2013-09-05 13:04 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll

2013-09-05 13:04 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll

2013-09-05 13:04 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll

2013-09-05 13:04 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

2013-09-05 13:04 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll

2013-09-05 13:04 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll

2013-09-05 13:04 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll

2013-09-05 13:04 . 2012-05-01 05:40 209920 ----a-w- c:\windows\system32\profsvc.dll

2013-09-05 13:02 . 2012-12-07 11:20 43520 ----a-w- c:\windows\system32\csrr.rs

2013-09-05 13:01 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys

2013-09-05 13:00 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys

2013-09-05 13:00 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll

2013-09-05 13:00 . 2012-09-25 22:46 95744 ----a-w- c:\windows\system32\synceng.dll

2013-09-05 13:00 . 2013-04-26 05:51 751104 ----a-w- c:\windows\system32\win32spl.dll

2013-09-05 13:00 . 2013-04-26 04:55 492544 ----a-w- c:\windows\SysWow64\win32spl.dll

2013-09-05 13:00 . 2013-06-05 03:34 3153920 ----a-w- c:\windows\system32\win32k.sys

2013-09-05 13:00 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe

2013-09-05 13:00 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll

2013-09-05 13:00 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll

2013-09-05 12:58 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll

2013-09-05 12:57 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll

2013-09-05 12:57 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll

2013-09-05 12:57 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll

2013-09-05 12:57 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll

2013-09-05 12:57 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll

2013-09-05 12:57 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll

2013-09-05 12:57 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe

2013-09-05 12:57 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe

2013-09-05 05:48 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll

2013-09-05 05:48 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll

2013-09-05 05:48 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys

2013-09-05 05:42 . 2013-09-06 21:50 -------- d-----w- c:\program files (x86)\Google

2013-09-05 05:42 . 2013-09-06 21:49 -------- d-----w- c:\users\116\AppData\Local\Google

2013-09-05 05:42 . 2013-09-05 05:42 -------- d-----w- c:\users\116\AppData\Local\Apps

2013-09-05 05:42 . 2013-09-05 05:42 -------- d-----w- c:\users\116\AppData\Local\Deployment

2013-09-05 05:40 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll

2013-09-05 05:40 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe

2013-09-05 05:40 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll

2013-09-05 05:40 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll

2013-09-05 05:40 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll

2013-09-05 05:40 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll

2013-09-05 05:40 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll

2013-09-05 05:40 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll

2013-09-05 05:40 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-09-06 09:28 . 2011-03-29 01:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 1155928]

"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-21 1675160]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]

"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]

"Dolby Home Theater v4"="c:\dolby pcee4\pcee4.exe" [2011-06-01 506712]

"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-03-15 1081424]

"ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2011-08-26 177448]

"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-09-20 341360]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Acer VCM.lnk - c:\program files (x86)\Acer\Acer VCM\AcerVCM.exe [2012-2-17 723560]

Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-8-31 1337632]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer2"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

@=""

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]

R3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]

R3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]

R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]

R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]

R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbnet.sys [x]

R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]

R3 irstrtsv;Intel® Rapid Start Technology Service;c:\windows\SysWOW64\irstrtsv.exe;c:\windows\SysWOW64\irstrtsv.exe [x]

R3 McAWFwk;McAfee Activation Service;c:\progra~1\mcafee\msc\mcawfwk.exe;c:\progra~1\mcafee\msc\mcawfwk.exe [x]

R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]

S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys;c:\windows\SYSNATIVE\DRIVERS\mfenlfk.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]

S2 BecHelperService;BecHelperService;c:\program files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe;c:\program files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe [x]

S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]

S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]

S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]

S2 FFSOpzSvc;Sleep memory optimizer;c:\program files\Sleep Memory Optimizer\FFSService.exe;c:\program files\Sleep Memory Optimizer\FFSService.exe [x]

S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]

S2 jhi_service;Intel® Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [x]

S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]

S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]

S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]

S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [x]

S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]

S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]

S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]

S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [x]

S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 irstrtdv;Intel® Rapid Start Technology Driver;c:\windows\system32\DRIVERS\irstrtdv.sys;c:\windows\SYSNATIVE\DRIVERS\irstrtdv.sys [x]

S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]

S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]

S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]

S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]

S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]

S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]

S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]

.

.

--- Andere Services/Drivers In Geheugen ---

.

*NewlyCreated* - CPUZ136

*Deregistered* - cpuz136

*Deregistered* - mfeavfk01

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-16 167704]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-16 392472]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-16 416024]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-10 12666984]

"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-08-10 2275944]

"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://acer.msn.com

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

TCP: DhcpNameServer = 212.54.40.25 212.54.35.25

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Update-agent.lnk - c:\program files (x86)\KPN\Mobiel Internet Software\AutoUpdateSrv.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2013-09-07 16:23:47

ComboFix-quarantined-files.txt 2013-09-07 14:23

.

Pre-Run: 259.378.012.160 bytes beschikbaar

Post-Run: 258.989.248.512 bytes beschikbaar

.

- - End Of File - - 24A13A25FBD0E35D5979FBE6C8852F56

[kape]

Malware is nu opgeruimd ... zijn daarmee ook de problemen uit je startpost verdwenen ?

[LeEbreo]

Fijn dat eventuele malware nu weg is. Het probleem is echter nog steeds aanwezig. In een ander topic heb ik de tip gekregen om te kijken welke temperatuur de processor heeft als ik mijn antivirus programma(McAfee) laat scannen. voor de scan is dat ongeveer 40 en het hoogste wat ik tot nu toe tijdens het scannen heb meegemaakt is 69 graden

[kape]

Dan mag je de gebruikte tools verwijderen en kunnen de collega's verder zoeken in het andere topic naar de (hardwarematige ?) oorzaak:

Download Delfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

• Remove disinfection tools
  
• Purge System Restore
  
• Reset system settings
  

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Download CCleaner. (Als je het nog niet hebt)

Installeer het (als je niet wilt dat Google Chrome op je PC als standaard-webbrowser wordt geïnstalleerd, moet je de 2 vinkjes wegdoen !!!) en start CCleaner op.

Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en na de analyse op 'Schoonmaken'. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”.

Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft.

Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

7 september 2013 aangepast door kape