-
Items
22 -
Registratiedatum
-
Laatst bezocht
Tha-Diode's prestaties
-
ik heb zitten zoeken wat het kan zijn, heb mijn HD mee genomen naar me werk,. en op een Backbone aangesloten via USB,, volgens had ik een mapje in me C:\Program Files (x86)\bundledmonkey die was allemaal bezig me trommelen in mijn PC die blockte ook mijn Zoek.exe die zorgde er voor dat hij IE open maakte met een link: http://adclick.g.doubleclick.net want hij wilde mijn Offers geven, ik denk dat hij schoon is nu want heeft nacht staan scannen op ander systeem, dat is trouwens ook de oplossing als hij niet wilt scannen, een nieuw Profiel er bij maken met wachtwoord, dan PC scannen, dan is er niet in Gebruik voor Dit, Thx voor alle Hulp heb toch meer Power nodig gehad voor lastige Malware..
-
met internet aan, en uit, in veiligemodes en zelfs Zonder Explorer niet, hij start en dan blijft hij hangen, heb hem nu 6 x laten lopen maar niets hoor, wordt er niet goed van, ik zie ook niets van loopt vast of kan niet laden, nu moet ik wel Zeggen hij doet wel moeilijk met starten, ik start hem als admin via rechts, maar dan nog moet ik 6 min wachten voor hij start net of hij iets niet laad misschien doet me Windows 7 iets raars ?
-
ok ik laat hem lopen vannacht,, kijken of hij wat vind.
-
Dit snap ik niet, Nod uit!! ik start het programma als admin dan in het scherm zet ik je code, en dan vink ik die opties aan. en dan run script, ik heb eerst 6 uur laten lopen, Geen vast loper gehad geen Log, dacht ok, via takenbeheer alles uit wat uit kan, dan nod uit, dan nog is starten, dan Heel de nacht + 8 uur van dat ik werken was, ik kom thuis, zet monitor aan, Nog niets, Geen log, en als ik X pak, krijg ik is Running,, net of hij niet verder gaat op 1 punt, heb hem al 4 x opnieuw gepakt, maar na de her-start krijg ik ook is geen geldig win32 programma, dan sluit ik dat, en als ik hem weer start, dan start hij wel, de troep is er nog wel, want had vannacht +300 Internet Explorers zo veel dat er een scherm was, Cant start due no Memory available dus al me 6 GB ram was vol.. :S
-
Hier is me Log: Logfile of random's system information tool 1.09 (written by random/random) Run by Gebruiker at 2014-01-05 19:09:01 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 4 GB (8%) free of 45 GB Total RAM: 2559 MB (49% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:03:22, on 5-1-2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16428) Boot mode: Normal Running processes: C:\Windows\SOUNDMAN.EXE C:\Program Files (x86)\DU Meter\DUMeter.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\HiJackThis\Gebruiker.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = DO SEARCHES R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=mp3&utm_campaign=rg&utm_content=ds&from=mp3&uid=126614527_135152_D0CE2DA9&ts=1384015895&type=default&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.dosearches.com/web/?utm_source=b&utm_medium=mp3&utm_campaign=rg&utm_content=ds&from=mp3&uid=126614527_135152_D0CE2DA9&ts=1384015895&type=default&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = DO SEARCHES R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8080 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Flashget Catch Url Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: FlashGet - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\fgiebar.dll O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe O4 - HKCU\..\Run: [DU Meter] C:\Program Files (x86)\DU Meter\DUMeter.exe O4 - HKCU\..\Run: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe" O4 - HKCU\..\Run: [DVDFab VDrive] "C:\Program Files\DVDFab Virtual Drive\vdrive.exe" O4 - HKCU\..\Run: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" O8 - Extra context menu item: &Ontvang alles met FlashGet - C:\Program Files (x86)\FlashGet\jc_all.htm O8 - Extra context menu item: &Ontvang met FlashGet - C:\Program Files (x86)\FlashGet\jc_link.htm O8 - Extra context menu item: Download all with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlall.htm O8 - Extra context menu item: Download selected with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlselected.htm O8 - Extra context menu item: Download video with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlfvideo.htm O8 - Extra context menu item: Download with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dllink.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL O18 - Protocol: WSIEChrome - {6D02ED5F-FD0D-4C4C - (no file) O20 - AppInit_DLLs: c:\program files gpsort.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd. - C:\Program Files (x86)\DU Meter\DUMeterSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GorillaPrice - Unknown owner - C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: WatGorp - Unknown owner - C:\ProgramData\GorillaPrice\WatGorp.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 12934 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup atieclxx "C:\Program Files\Sandboxie\SbieSvc.exe" C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\DU Meter\DUMeterSvc.exe" /startedbyscm:E1F6D4BE-40E33354-DUMeterService "C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe" C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" WLIDSvcM.exe 2376 "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe" C:\Windows\system32\svchost.exe -k HPService "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Windows\SOUNDMAN.EXE" "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice "C:\Program Files (x86)\DU Meter\DUMeter.exe" "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe" "C:\Program Files\DVDFab Virtual Drive\vdrive.exe" "C:\Program Files\Sandboxie\SbieCtrl.exe" "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" "C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow HydraMD64.exe -h:65974 taskeng.exe {084068AB-C737-4223-B99C-B72F4D48A652} "C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:2216 C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" HydraDM64.exe -h:263030 "Maximaliseren tot volledig bureaublad" "Maximaliseren tot volledig venster" "Bureaublad herstellen" C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" DO SEARCHES "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3272.0.435160251\1906611247" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x1002 --gpu-device-id=0x9495 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.961.0.0 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="3272.1.1773952671\1557363047" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3272.3.1540432924\752262486" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3272.4.1982363710\607489471" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3272.6.1113978664\968845054" /prefetch:673131151 -new http://click.cpvrdr.com/redirect.php?ID=85119344&KEY=9483 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5040 CREDAT:78849 /prefetch:2 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2698163573-3053994796-557599598-10009_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2698163573-3053994796-557599598-10009 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512 "C:\Users\Gebruiker\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\AWC AutoSweep.job C:\Windows\tasks\AWC Startup.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job =========Mozilla firefox========= ProfilePath - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\79w8vumc.default-1384639594617 prefs.js - "browser.startup.homepage" - "http://www.iapphacks.com/" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.9.900.170 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0] "Description"=DivX Plus Web Player "Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0] "Description"=DivX VOD Helper Plug-in "Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6] "Description"=Yahoo Messenger State Plugin "Path"=C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.net/NxGame] "Description"=Nexon Game Controller "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin] "Description"=This plugin detects and launches Pando Media Booster "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0] "Description"=BlackBerry Web Software Loading Helper Plug-In for Mozilla browsers "Path"=C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.9.900.170 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0] "Description"=DivX VOD Helper Plug-in "Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.10.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll C:\Program Files (x86)\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ nppdf32.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll QuickTimePlugin.class ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}] Snap.DoEngine - C:\Windows\system32\mscoree.dll [2010-11-21 444752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-12-29 551400] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-12-29 209384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}] Flashget Catch Url Class - C:\Program Files (x86)\FlashGet\jccatch.dll [2006-12-11 65536] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}] DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-05-06 194912] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}] gFlash Class - C:\Program Files (x86)\FlashGet\getflash.dll [2006-11-06 122880] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}] HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {ae07101b-46d4-4a98-af68-0333ea26e113} - Snap.Do - C:\Windows\system32\mscoree.dll [2010-11-21 444752] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {E0E899AB-F487-11D5-8D29-0050BA6940E3} - FlashGet - C:\Program Files (x86)\FlashGet\fgiebar.dll [2006-11-19 98304] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 4035152] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DU Meter"=C:\Program Files (x86)\DU Meter\DUMeter.exe [2012-06-23 2749984] "HydraVisionMDEngine"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe [2012-04-05 569344] "DVDFab VDrive"=C:\Program Files\DVDFab Virtual Drive\vdrive.exe [2013-11-06 364960] "SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2013-06-17 759384] "HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2012-04-05 393216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2013-08-21 450560] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-08-29 1861968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] D:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jswtrayutil] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-11-29 3806544] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] C:\Program Files (x86)\HP\DIGITA~1\bin\hpqtra08.exe [2009-11-18 275072] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WG111v3 Smart Wizard.lnk] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WN111v2 Smart Wizard.lnk] [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml [] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 641704] "SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-05-16 3830224] "LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-11-29 3806544] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] "ASUS Ai Charger"=C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [2012-08-13 547984] [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\QuickTime Task] [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\Program Files gpcloud.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=0 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=1 "NoResolveTrack"=1 "NoResolveSearch"=1 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon" "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service" "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater" "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 3 months====== 2014-01-05 18:55:57 ----D---- C:\rsit 2013-12-29 00:36:50 ----A---- C:\Windows\SYSWOW64\drivers\AiCharger.sys 2013-12-29 00:36:44 ----A---- C:\Windows\AsTaskSched.dll 2013-12-29 00:35:43 ----A---- C:\Windows\Language_trs.ini 2013-12-28 13:22:38 ----D---- C:\Program Files (x86)\Frhed 2013-12-20 12:32:39 ----D---- C:\Program Files (x86)\Mozilla Firefox 2013-12-19 17:39:46 ----D---- C:\Program Files\iPod 2013-12-19 17:39:40 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-12-19 17:39:40 ----D---- C:\Program Files\iTunes 2013-12-19 13:00:33 ----D---- C:\Program Files (x86)\FlashGet 2013-12-19 12:36:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\Spotify 2013-12-18 23:19:11 ----D---- C:\Users\Gebruiker\AppData\Roaming\iFunbox_UserCache 2013-12-18 23:17:02 ----D---- C:\Program Files (x86)\i-Funbox DevTeam 2013-12-18 23:13:28 ----D---- C:\Users\Gebruiker\AppData\Roaming\Open Download Manager 2013-12-18 23:12:44 ----D---- C:\ProgramData\boost_interprocess 2013-12-18 23:12:42 ----A---- C:\Windows\SYSWOW64\gpsort.dll 2013-12-18 23:12:42 ----A---- C:\Windows\gpcloud.dll 2013-12-18 23:12:41 ----D---- C:\ProgramData\GorillaPrice 2013-12-18 23:12:41 ----D---- C:\Program Files (x86)\GorillaPrice 2013-12-18 23:10:53 ----D---- C:\Program Files (x86)\OpenDownloaderManager 2013-12-14 17:03:10 ----D---- C:\Users\Gebruiker\AppData\Roaming\Battle.net 2013-12-14 17:02:04 ----D---- C:\Program Files (x86)\Battle.net 2013-12-11 14:04:12 ----D---- C:\Windows\WinAVI Video Converter 9.0 2013-12-11 14:04:12 ----D---- C:\Program Files (x86)\WinAVI Video Converter 9.0 2013-12-11 14:04:09 ----A---- C:\Windows\WinAVI Video Converter 9.0 Setup Log.txt 2013-12-11 13:53:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\Pegasys Inc 2013-12-11 12:33:37 ----A---- C:\Users\Gebruiker\AppData\Roaming\pcouffin.sys 2013-12-11 12:33:37 ----A---- C:\Users\Gebruiker\AppData\Roaming\inst.exe 2013-12-11 12:23:41 ----D---- C:\ProgramData\AVS4YOU 2013-12-11 12:19:22 ----D---- C:\Users\Gebruiker\AppData\Roaming\AVS4YOU 2013-12-11 12:12:45 ----A---- C:\Windows\SYSWOW64\msxml3a.dll 2013-12-11 12:12:44 ----D---- C:\Program Files (x86)\AVS4YOU 2013-12-08 18:47:39 ----D---- C:\ProgramData\Oracle 2013-12-08 18:43:00 ----A---- C:\Windows\SYSWOW64\javaws.exe 2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\javaw.exe 2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\java.exe 2013-12-03 16:57:43 ----D---- C:\Program Files (x86)\LogMeIn Hamachi 2013-12-02 21:03:43 ----D---- C:\Program Files (x86)\GUM1991.tmp 2013-11-30 16:14:02 ----D---- C:\Users\Gebruiker\AppData\Roaming\VideoReDo-TVSuite4 2013-11-30 16:14:02 ----D---- C:\Program Files (x86)\VideoReDoTVSuite4 2013-11-28 17:50:16 ----A---- C:\Windows\system32\IEUDINIT.EXE 2013-11-28 17:44:27 ----A---- C:\Windows\SYSWOW64\elshyph.dll 2013-11-28 17:44:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\msrating.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\msls31.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\jsIntl.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2013-11-28 17:44:15 ----A---- C:\Windows\system32\elshyph.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\wextract.exe 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\url.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\pngfilt.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\occache.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshta.exe 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\licmgr10.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\inseng.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\imgutil.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iexpress.exe 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iepeers.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\icardie.dll 2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe 2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\mshtmler.dll 2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-11-28 17:44:13 ----A---- C:\Windows\system32\urlmon.dll 2013-11-28 17:44:13 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-28 17:44:13 ----A---- C:\Windows\system32\msls31.dll 2013-11-28 17:44:13 ----A---- C:\Windows\system32\jsIntl.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\wininet.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\msrating.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\msfeedssync.exe 2013-11-28 17:44:12 ----A---- C:\Windows\system32\msfeedsbs.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\jsproxy.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\iertutil.dll 2013-11-28 17:44:12 ----A---- C:\Windows\system32\IEAdvpack.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\wextract.exe 2013-11-28 17:44:11 ----A---- C:\Windows\system32\webcheck.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\vbscript.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\url.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2013-11-28 17:44:11 ----A---- C:\Windows\system32\pngfilt.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\occache.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmlmedia.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmler.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmled.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtml.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\msfeeds.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\licmgr10.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\jscript9diag.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\jscript9.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\inseng.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\iexpress.exe 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieUnatt.exe 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieui.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\iesysprep.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\iesetup.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\iernonce.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieframe.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\iedkcs32.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieapfltr.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieapfltr.dat 2013-11-28 17:44:11 ----A---- C:\Windows\system32\ie4uinit.exe 2013-11-28 17:44:11 ----A---- C:\Windows\system32\icardie.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\dxtrans.dll 2013-11-28 17:44:11 ----A---- C:\Windows\system32\dxtmsft.dll 2013-11-28 17:44:10 ----A---- C:\Windows\system32\mshta.exe 2013-11-28 17:44:10 ----A---- C:\Windows\system32\jscript.dll 2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwproxystub.dll 2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwcollector.exe 2013-11-28 17:44:09 ----A---- C:\Windows\system32\MshtmlDac.dll 2013-11-28 17:44:09 ----A---- C:\Windows\system32\imgutil.dll 2013-11-28 17:44:09 ----A---- C:\Windows\system32\iepeers.dll 2013-11-16 16:22:15 ----D---- C:\Program Files (x86)\MakeMKV 2013-11-16 13:08:57 ----D---- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-11-14 17:05:59 ----A---- C:\Windows\system32\crypt32.dll 2013-11-14 17:05:56 ----A---- C:\Windows\system32\cryptsvc.dll 2013-11-14 17:05:56 ----A---- C:\Windows\system32\cryptnet.dll 2013-11-14 17:05:55 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2013-11-14 17:05:55 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-11-14 17:05:54 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2013-11-14 17:05:06 ----A---- C:\Windows\system32\drivers\afd.sys 2013-11-14 17:04:50 ----A---- C:\Windows\system32\authui.dll 2013-11-14 17:04:48 ----A---- C:\Windows\SYSWOW64\authui.dll 2013-11-14 17:04:48 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll 2013-11-14 17:04:48 ----A---- C:\Windows\system32\credui.dll 2013-11-14 17:04:47 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll 2013-11-14 17:04:46 ----A---- C:\Windows\SYSWOW64\credui.dll 2013-11-14 17:04:25 ----A---- C:\Windows\system32\schannel.dll 2013-11-14 17:04:25 ----A---- C:\Windows\system32\ncrypt.dll 2013-11-14 17:04:25 ----A---- C:\Windows\system32\lsasrv.dll 2013-11-14 17:04:24 ----A---- C:\Windows\SYSWOW64\schannel.dll 2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\cng.sys 2013-11-14 17:04:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2013-11-14 17:04:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2013-11-14 17:04:23 ----A---- C:\Windows\system32\sspicli.dll 2013-11-14 17:04:23 ----A---- C:\Windows\system32\lsass.exe 2013-11-14 17:04:22 ----A---- C:\Windows\SYSWOW64\secur32.dll 2013-11-14 17:04:22 ----A---- C:\Windows\system32\sspisrv.dll 2013-11-14 17:04:22 ----A---- C:\Windows\system32\secur32.dll 2013-11-14 17:04:18 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2013-11-14 17:04:18 ----A---- C:\Windows\system32\gdi32.dll 2013-11-14 17:04:17 ----A---- C:\Windows\system32\IKEEXT.DLL 2013-11-14 17:04:17 ----A---- C:\Windows\system32\BFE.DLL 2013-11-14 17:04:16 ----A---- C:\Windows\SYSWOW64\nshwfp.dll 2013-11-14 17:04:16 ----A---- C:\Windows\system32\nshwfp.dll 2013-11-14 17:04:16 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2013-11-14 17:04:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL 2013-11-12 17:15:08 ----A---- C:\Windows\system32\TURegOpt.exe 2013-11-12 17:15:05 ----A---- C:\Windows\SYSWOW64\authuitu.dll 2013-11-12 17:15:05 ----A---- C:\Windows\system32\authuitu.dll 2013-11-11 22:33:32 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012 2013-11-09 18:11:27 ----D---- C:\ProgramData\Research In Motion 2013-11-09 17:54:11 ----D---- C:\Program Files (x86)\GreyGray 2013-11-09 17:46:36 ----D---- C:\Users\Gebruiker\AppData\Roaming\Oxy 2013-11-09 16:54:39 ----D---- C:\Users\Gebruiker\AppData\Roaming\Yahoo! 2013-11-09 16:51:28 ----D---- C:\ProgramData\Yahoo! 2013-11-09 16:48:47 ----D---- C:\Program Files (x86)\Yahoo! 2013-11-06 21:38:07 ----D---- C:\iOrgSoft DvdRipper 2013-11-06 21:37:56 ----D---- C:\Program Files (x86)\iOrgSoft 2013-11-05 21:31:32 ----D---- C:\ProgramData\xml_param 2013-11-05 21:26:40 ----D---- C:\Users\Gebruiker\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} 2013-11-05 21:25:42 ----A---- C:\Windows\SYSWOW64\WPShellExt64.dll 2013-11-05 21:25:35 ----D---- C:\ProgramData\Wondershare Player 2013-11-05 21:25:35 ----D---- C:\ProgramData\Wondershare 2013-11-05 21:25:19 ----D---- C:\Program Files\Common Files\Wondershare 2013-11-05 21:24:24 ----D---- C:\ProgramData\Wondershare Video Converter Ultimate 2013-11-05 21:24:13 ----D---- C:\Program Files (x86)\Wondershare 2013-11-05 21:10:09 ----D---- C:\Users\Gebruiker\AppData\Roaming\Xilisoft 2013-11-05 21:09:22 ----D---- C:\ProgramData\Xilisoft 2013-11-05 21:09:22 ----D---- C:\Program Files (x86)\Xilisoft 2013-11-05 20:59:43 ----D---- C:\Program Files\MediaInfo 2013-10-29 18:14:32 ----D---- C:\Program Files (x86)\SuperScan 2013-10-28 01:12:12 ----A---- C:\Windows\system32\drivers\ssudmdm.sys 2013-10-28 01:12:10 ----A---- C:\Windows\system32\drivers\ssudbus.sys 2013-10-21 18:55:29 ----A---- C:\Windows\system32\sdnclean64.exe 2013-10-21 18:55:04 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2 2013-10-21 18:35:50 ----D---- C:\ProgramData\Spybot - Search & Destroy 2013-10-21 18:35:50 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2013-10-21 18:33:47 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-21 18:33:47 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-10-17 20:22:06 ----D---- C:\ProgramData\Conduit 2013-10-17 20:21:35 ----D---- C:\Program Files (x86)\Conduit 2013-10-17 20:19:09 ----D---- C:\Users\Gebruiker\AppData\Roaming\OpenCandy 2013-10-17 20:19:09 ----D---- C:\Program Files (x86)\Cheat Engine 6.3 2013-10-14 03:44:36 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll 2013-10-14 03:44:18 ----A---- C:\Windows\SYSWOW64\pncrt.dll 2013-10-10 15:57:25 ----D---- C:\Program Files (x86)\GUM9035.tmp 2013-10-10 15:55:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll 2013-10-10 15:55:16 ----A---- C:\Windows\system32\comctl32.dll 2013-10-10 15:55:14 ----A---- C:\Windows\system32\atmfd.dll 2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\lpk.dll 2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2013-10-10 15:55:13 ----A---- C:\Windows\system32\lpk.dll 2013-10-10 15:55:13 ----A---- C:\Windows\system32\dciman32.dll 2013-10-10 15:55:12 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2013-10-10 15:55:12 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2013-10-10 15:55:12 ----A---- C:\Windows\system32\fontsub.dll 2013-10-10 15:55:12 ----A---- C:\Windows\system32\atmlib.dll 2013-10-10 15:55:11 ----A---- C:\Windows\system32\drivers\Wdf01000.sys 2013-10-10 15:55:07 ----A---- C:\Windows\system32\drivers\usbcir.sys 2013-10-10 15:55:06 ----A---- C:\Windows\system32\drivers\hidclass.sys 2013-10-10 15:55:05 ----A---- C:\Windows\system32\drivers\hidparse.sys 2013-10-10 15:55:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2013-10-10 15:55:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2013-10-10 15:55:04 ----A---- C:\Windows\system32\WebClnt.dll 2013-10-10 15:55:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys 2013-10-10 15:55:04 ----A---- C:\Windows\system32\davclnt.dll 2013-10-10 15:55:02 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-10-10 15:55:01 ----A---- C:\Windows\system32\mswsock.dll 2013-10-10 15:55:00 ----A---- C:\Windows\system32\drivers\netio.sys 2013-10-10 15:55:00 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2013-10-10 15:54:59 ----A---- C:\Windows\SYSWOW64\mswsock.dll 2013-10-10 15:54:58 ----A---- C:\Windows\system32\win32k.sys 2013-10-10 15:54:44 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-10-10 15:54:41 ----A---- C:\Windows\system32\ntdll.dll 2013-10-10 15:54:41 ----A---- C:\Windows\system32\advapi32.dll 2013-10-10 15:54:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-10-10 15:54:40 ----A---- C:\Windows\system32\KernelBase.dll 2013-10-10 15:54:38 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-10-10 15:54:37 ----A---- C:\Windows\system32\tdh.dll 2013-10-10 15:54:35 ----A---- C:\Windows\SYSWOW64\tdh.dll 2013-10-10 15:54:35 ----A---- C:\Windows\system32\wow64win.dll 2013-10-10 15:54:35 ----A---- C:\Windows\system32\kernel32.dll 2013-10-10 15:54:35 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2013-10-10 15:54:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2013-10-10 15:54:34 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2013-10-10 15:54:34 ----A---- C:\Windows\system32\winsrv.dll 2013-10-10 15:54:33 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2013-10-10 15:54:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2013-10-10 15:54:33 ----A---- C:\Windows\system32\appidsvc.dll 2013-10-10 15:54:32 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2013-10-10 15:54:32 ----A---- C:\Windows\system32\wow64cpu.dll 2013-10-10 15:54:32 ----A---- C:\Windows\system32\wow64.dll 2013-10-10 15:54:32 ----A---- C:\Windows\system32\smss.exe 2013-10-10 15:54:32 ----A---- C:\Windows\system32\ntvdm64.dll 2013-10-10 15:54:32 ----A---- C:\Windows\system32\drivers\appid.sys 2013-10-10 15:54:32 ----A---- C:\Windows\system32\csrsrv.dll 2013-10-10 15:54:32 ----A---- C:\Windows\system32\conhost.exe 2013-10-10 15:54:32 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2013-10-10 15:54:32 ----A---- C:\Windows\system32\appidapi.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-10-10 15:54:29 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2013-10-10 15:54:29 ----A---- C:\Windows\system32\apisetschema.dll 2013-10-10 15:54:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-10-10 15:54:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2013-10-10 15:54:28 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-10-10 15:54:28 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-10-10 15:54:27 ----A---- C:\Windows\SYSWOW64\user.exe 2013-10-10 15:54:15 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-10-10 15:54:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-10 15:54:14 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2013-10-10 15:54:12 ----A---- C:\Windows\system32\scavengeui.dll 2013-10-09 16:35:57 ----D---- C:\Users\Gebruiker\AppData\Roaming\avidemux 2013-10-09 16:35:49 ----D---- C:\Program Files (x86)\Avidemux 2.6 ======List of files/folders modified in the last 3 months====== 2014-01-05 19:03:02 ----D---- C:\Program Files (x86)\HiJackThis 2014-01-05 19:00:54 ----D---- C:\Windows\temp 2014-01-05 18:54:07 ----D---- C:\Windows\Prefetch 2014-01-04 17:55:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\vlc 2014-01-04 14:36:17 ----SHD---- C:\System Volume Information 2014-01-04 11:47:28 ----D---- C:\Windows\system32\config 2014-01-03 09:35:52 ----D---- C:\Windows\system32\catroot2 2014-01-01 23:10:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-12-29 22:36:20 ----D---- C:\Windows\system32\Tasks 2013-12-29 00:36:50 ----D---- C:\Windows\SYSWOW64\drivers 2013-12-29 00:36:44 ----D---- C:\Windows 2013-12-29 00:36:42 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2013-12-29 00:36:42 ----D---- C:\Program Files (x86)\ASUS 2013-12-28 13:22:38 ----RD---- C:\Program Files (x86) 2013-12-25 12:12:52 ----SD---- C:\Users\Gebruiker\AppData\Roaming\Microsoft 2013-12-21 15:35:38 ----D---- C:\Windows\system32\NDF 2013-12-21 14:07:28 ----D---- C:\Windows\system32\drivers\etc 2013-12-20 21:32:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2013-12-19 22:20:07 ----D---- C:\Windows\system32\catroot 2013-12-19 17:41:27 ----SHD---- C:\Windows\Installer 2013-12-19 17:41:23 ----D---- C:\Config.Msi 2013-12-19 17:40:48 ----D---- C:\Windows\SysWOW64 2013-12-19 17:40:48 ----D---- C:\Windows\System32 2013-12-19 17:39:46 ----RD---- C:\Program Files 2013-12-19 17:39:40 ----D---- C:\ProgramData 2013-12-19 17:34:57 ----D---- C:\Windows\system32\DriverStore 2013-12-19 17:34:57 ----D---- C:\Windows\inf 2013-12-19 17:34:18 ----D---- C:\Program Files (x86)\Bonjour 2013-12-19 11:15:13 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-12-17 18:11:54 ----D---- C:\ProgramData\Samsung 2013-12-17 18:09:24 ----D---- C:\Windows\system32\drivers 2013-12-17 16:34:48 ----D---- C:\Users\Gebruiker\AppData\Roaming\uTorrent 2013-12-17 16:06:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\dvdcss 2013-12-15 23:33:34 ----D---- C:\Windows\system32\wdi 2013-12-15 15:20:01 ----D---- C:\Users\Gebruiker\AppData\Roaming\Skype 2013-12-15 13:36:13 ----D---- C:\ProgramData\Skype 2013-12-15 13:36:08 ----RD---- C:\Program Files (x86)\Skype 2013-12-12 14:14:55 ----D---- C:\Program Files (x86)\Video Converter 2013-12-11 12:33:38 ----D---- C:\Users\Gebruiker\AppData\Roaming\Vso 2013-12-11 12:13:12 ----D---- C:\Program Files (x86)\Common Files 2013-12-11 12:13:11 ----D---- C:\Windows\winsxs 2013-12-08 18:42:50 ----D---- C:\Program Files (x86)\Java 2013-12-05 12:54:37 ----D---- C:\ProgramData\Spotnet 2013-12-04 18:18:38 ----D---- C:\Users\Gebruiker\AppData\Roaming\Dropbox 2013-12-03 18:11:01 ----D---- C:\Program Files (x86)\Mozilla Thunderbird 2013-11-30 16:17:25 ----AD---- C:\ProgramData\TEMP 2013-11-29 09:51:21 ----D---- C:\Windows\rescache 2013-11-29 08:21:42 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-11-29 08:21:42 ----D---- C:\Windows\system32\nl-NL 2013-11-29 08:21:41 ----D---- C:\Program Files\Internet Explorer 2013-11-29 08:21:41 ----D---- C:\Program Files (x86)\Internet Explorer 2013-11-29 08:21:39 ----D---- C:\Windows\SYSWOW64\migration 2013-11-29 08:21:39 ----D---- C:\Windows\SYSWOW64\en-US 2013-11-29 08:21:37 ----D---- C:\Windows\system32\migration 2013-11-29 08:21:37 ----D---- C:\Windows\PolicyDefinitions 2013-11-29 08:21:36 ----D---- C:\Windows\system32\en-US 2013-11-28 17:50:16 ----D---- C:\Windows\Logs 2013-11-15 17:12:25 ----D---- C:\Program Files\DVDFab Virtual Drive 2013-11-14 19:19:28 ----D---- C:\Windows\system32\MRT 2013-11-14 19:15:18 ----A---- C:\Windows\system32\MRT.exe 2013-11-12 16:55:20 ----D---- C:\Windows\Tasks 2013-11-12 16:55:20 ----D---- C:\Windows\system32\wfp 2013-11-12 16:55:17 ----D---- C:\Windows\system32\wbem 2013-11-12 16:54:17 ----D---- C:\Windows\system32\CodeIntegrity 2013-11-12 16:54:13 ----D---- C:\Windows\registration 2013-11-09 18:17:58 ----D---- C:\Windows\Microsoft.NET 2013-11-09 17:58:58 ----D---- C:\Program Files (x86)\BlueStacks 2013-11-09 17:57:58 ----RSD---- C:\Windows\assembly 2013-11-05 21:25:19 ----D---- C:\Program Files\Common Files 2013-11-04 20:44:13 ----D---- C:\Users\Gebruiker\AppData\Roaming\DivX 2013-10-21 18:55:44 ----SD---- C:\ProgramData\Microsoft 2013-10-19 09:46:25 ----D---- C:\ProgramData\DivX 2013-10-19 09:46:23 ----D---- C:\Program Files (x86)\DivX 2013-10-18 11:28:27 ----D---- C:\Program Files (x86)\HMA! Pro VPN 2013-10-11 15:45:35 ----D---- C:\Windows\AppPatch 2013-10-10 22:06:18 ----D---- C:\Program Files\Microsoft Silverlight 2013-10-10 22:06:18 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2013-10-09 16:27:00 ----D---- C:\Windows\system 2013-10-06 11:39:55 ----D---- C:\Program Files (x86)\Spotnet ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 inic1620;inic1620; C:\Windows\system32\DRIVERS\inic1620.sys [2009-07-31 36888] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-03-19 213888] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-06-21 834544] R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2007-12-17 14392] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2012-03-19 515072] R1 dvdfabio;dvdfabio; \??\C:\Windows\system32\drivers\dvdfabio.sys [2013-11-06 9976] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432] R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\ElRawDsk.sys [2012-08-02 30752] R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys [] R1 usedisk;USEDisk Driver; C:\Windows\system32\DRIVERS\usedisk.sys [2013-09-20 29208] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-03-19 60416] R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576] R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144] R2 PDFsFilter;PDFsFilter; C:\Windows\system32\DRIVERS\PDFsFilter.sys [2012-08-02 82160] R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432] R3 AiCharger;AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [2012-03-22 14848] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC64.SYS [2009-06-18 3491616] R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-06 11174400] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-06 343040] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928] R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [2011-07-20 44032] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264] R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2013-06-17 198360] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-11-09 11856] R3 vdrive;vdrive; C:\Windows\system32\DRIVERS\vdrive.sys [2013-11-06 42232] S1 FileDisk;FileDisk; C:\Windows\system32\drivers\FileDisk.sys [] S1 PQNTDrv;PQNTDrv; C:\Windows\system32\drivers\PQNTDrv.sys [] S3 b06diag;Broadcom NetXtreme II Diag Driver; C:\Windows\system32\drivers\bxdiaga.sys [2010-12-16 88104] S3 BFN7x64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\Xeno7x64.sys [2011-01-14 157288] S3 BFNVis64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\XenoVa64.sys [2011-01-14 157288] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-03-19 95232] S3 BXOIS;BXOIS; C:\Windows\system32\drivers\bxois.sys [2010-12-10 533544] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-10-28 107288] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168] S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 IAMTVE;Stuurprogramma voor Intel® Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTVE.sys [2007-04-11 43416] S3 IAMTXPE;Stuurprogramma voor Intel® Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTXPE.sys [2007-04-11 51096] S3 IFCoEMP;IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [2011-09-13 388368] S3 IFCoEVB;IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [2011-09-13 77584] S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144] S3 ioatdma2;Intel® QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192] S3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50a64.sys [2006-11-28 43328] S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50a64.sys [2006-11-28 41280] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys [] S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys [] S3 RapportIaso;RapportIaso; \??\c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2012-03-19 165888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-01 19456] S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2011-07-25 74752] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-10-28 204568] S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688] S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\Windows\system32\drivers\Synth3dVsc.sys [2012-03-19 88960] S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2011-07-13 30720] S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-12-01 29696] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-12-01 57856] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-12-01 30208] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760] S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [] S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [] S3 vulfnths;VIA USB Host Controller Lower Filter; C:\Windows\System32\Drivers\vulfnth.sys [] S3 vulfntrs;VIA USB Roothub Lower Filter; C:\Windows\System32\Drivers\vulfntr.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-06 236544] R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-11-16 361984] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 DUMeterSvc;DU Meter Service; C:\Program Files (x86)\DU Meter\DUMeterSvc.exe [2009-09-04 1391136] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944] R2 GorillaPrice;GorillaPrice; C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe [2013-12-16 643072] R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2012-03-19 27648] R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2012-03-19 27648] R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2012-03-19 27648] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2012-03-19 27648] R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2013-06-17 180824] R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-05-16 1817560] R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-05-16 1033688] R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-05-15 171928] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2011-11-23 2118976] R2 WatGorp;WatGorp; C:\ProgramData\GorillaPrice\WatGorp.exe [2013-12-12 86528] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2012-03-19 27648] S2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-01 257416] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-28 111616] S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408] S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736] S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2012-03-19 27648] S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-03-19 27648] S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864] S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-03-19 27648] S4 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-03-19 27648] S4 VRAID Log Service;VRAID Log Service; C:\Program Files (x86)\VIA\RAID\vialogsv.exe [2011-03-15 55920] -----------------EOF-----------------
-
nu heb ik Yahoo er 1x opgezet voor chatten met een oude Vriend, maar nu heb ik 2 raare Problemen 1: elke keer start internet explorer op, ( heb nu proxy aan gezet voor reclame want dan start het niet door ) dan opent hij met een Link http://click.cpvrdr.com/redirect.php***** Nummers******* laat ik dit open, dan binnen 30 min, heb ik 30 internet explorers open. 2: mijn startpagina is nu ook anders was Google. maar blijft wat ik ook doe DO SEARCHES Spybot vind niets. HijackThis ook niets. kan niets raars vinden mijn Nod vind ook niets, heb online scanner ook getest maar niets. in register vind ik ook niet, wat is er loos, Help..
-
Dit is een nep Bestand.. Heb ik ook gehad O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Melissa\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver facebook die een update op je pc zet hmm en Tip gooi BEARShare er af ( komt veel troep mee binnen en vergeet het mapje ook niet weg te doen ) pak beter Frostwire ( is erg schoon ook met reclame en je vind er even veel mee )
-
power Quest doet het niet,, net getest, hij was Ntfs, en nu nog denk ik,
-
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
nee verders alles top nu, heb een nieuwe ComboFix.exe op bureaublad gezet, en iobit heb ik er al afgehaald dat is dat Advanced SystemCare 6 paket ( wat dus niet helpte ) -
ik heb een HD in me server, 4TB en die is ineens niet meer leesbaar wel als ik hem formaat ( ja echt niet ) wie weet er een goede Fix tool chkdsk kan er niet mee over weg
-
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
ComboFix 13-02-03.03 - Gebruiker 03-02-2013 19:46:42.2.1 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1043.18.2559.1588 [GMT 1:00] Gestart vanuit: c:\users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A66RB26R\ComboFix.exe AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} SP: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\TNod User & Password Finder\TNODUP.exe c:\windows\app.exe c:\windows\muzapp.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2013-01-03 to 2013-02-03 )))))))))))))))))))))))))))))) . . 2013-02-03 18:58 . 2013-02-03 18:58 -------- d-----r- C:\Sandbox 2013-02-03 16:09 . 2013-02-03 16:09 -------- d-----w- c:\users\Gebruiker\AppData\Local\VMware 2013-02-03 16:09 . 2013-02-03 16:44 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\VMware 2013-02-03 16:06 . 2012-10-24 13:17 67224 ----a-w- c:\windows\system32\vsocklib.dll 2013-02-03 16:06 . 2012-10-24 13:17 70296 ----a-w- c:\windows\system32\drivers\vsock.sys 2013-02-03 16:06 . 2012-10-24 13:17 63128 ----a-w- c:\windows\SysWow64\vsocklib.dll 2013-02-03 16:06 . 2012-11-01 01:34 67224 ----a-w- c:\windows\system32\drivers\vmx86.sys 2013-02-03 16:06 . 2012-11-01 01:34 32920 ----a-w- c:\windows\system32\drivers\VMkbd.sys 2013-02-03 16:05 . 2012-11-01 01:35 357016 ----a-w- c:\windows\SysWow64\vmnetdhcp.exe 2013-02-03 16:05 . 2012-11-01 01:34 435864 ----a-w- c:\windows\SysWow64\vmnat.exe 2013-02-03 16:05 . 2012-11-01 01:34 30360 ----a-w- c:\windows\system32\drivers\vmnetuserif.sys 2013-02-03 16:05 . 2012-11-01 01:35 933528 ----a-w- c:\windows\system32\vnetlib64.dll 2013-02-03 16:05 . 2012-10-11 16:15 52376 ----a-w- c:\windows\system32\drivers\hcmon.sys 2013-02-03 16:04 . 2013-02-03 16:04 -------- d-----w- c:\program files\Common Files\VMware 2013-02-03 16:03 . 2013-02-06 09:59 -------- d-----w- c:\programdata\VMware 2013-02-03 16:03 . 2013-02-03 16:03 -------- d-----w- c:\program files (x86)\VMware 2013-02-03 16:03 . 2013-02-03 16:03 -------- d-----w- c:\program files (x86)\Common Files\VMware 2013-02-03 14:31 . 2013-02-03 14:31 -------- d-----w- c:\program files\Sandboxie 2013-02-03 12:48 . 2013-02-03 12:39 24064 ----a-w- c:\windows\zoek-delete.exe 2013-02-03 12:48 . 2013-02-06 10:01 -------- d-----w- c:\users\Gebruiker\AppData\Local\Temp 2013-02-03 12:42 . 2013-02-03 12:48 -------- d-----w- C:\zoek 2013-02-02 12:21 . 2013-02-02 12:21 -------- d-----w- c:\program files (x86)\SystemRequirementsLab 2013-02-02 12:21 . 2013-02-02 12:21 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\SystemRequirementsLab 2013-02-02 10:50 . 2013-02-02 10:50 -------- d-----w- c:\users\Master - DIODE 2013-02-02 10:26 . 2013-02-02 10:26 -------- d-----w- C:\IObit 2013-02-01 21:49 . 2013-02-01 21:49 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\Malwarebytes 2013-02-01 21:49 . 2013-02-01 21:49 -------- d-----w- c:\programdata\Malwarebytes 2013-02-01 21:49 . 2012-12-14 15:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-02-01 21:49 . 2013-02-01 21:49 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2013-02-01 21:48 . 2013-02-01 21:48 -------- d-----w- c:\users\Gebruiker\AppData\Local\Programs 2013-02-01 18:55 . 2013-02-01 18:55 -------- d-----w- c:\program files\Enigma Software Group 2013-02-01 18:55 . 2013-02-03 15:10 -------- d-----w- c:\windows\CD6329998BB745B5918E011545F6BB1D.TMP 2013-02-01 18:55 . 2013-02-01 18:55 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard 2013-01-30 20:44 . 2013-01-30 20:44 -------- d-----w- c:\users\Gebruiker\AppData\Local\Samsung 2013-01-30 20:44 . 2013-01-30 20:44 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\Samsung 2013-01-30 19:39 . 2013-01-30 19:39 -------- d-----w- c:\program files (x86)\MyFree Codec 2013-01-30 19:34 . 2012-12-18 09:06 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll 2013-01-30 19:34 . 2012-12-18 09:06 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll 2013-01-30 19:33 . 2013-01-30 19:40 -------- d-----w- c:\program files (x86)\Samsung 2013-01-30 19:33 . 2013-01-30 19:40 -------- d-----w- c:\programdata\Samsung 2013-01-30 18:13 . 2013-01-30 18:13 -------- d-----w- c:\users\Gebruiker\AppData\Local\Downloaded Installations 2013-01-29 16:11 . 2013-01-29 16:11 -------- d-----w- c:\program files (x86)\VirtualDJ 2013-01-27 13:59 . 2013-01-27 13:59 68608 ----a-w- c:\windows\system32\taskhost.exe 2013-01-27 13:57 . 2013-01-27 13:57 755712 ----a-w- c:\windows\system32\win32spl.dll 2013-01-27 13:57 . 2013-01-27 13:57 496128 ----a-w- c:\windows\SysWow64\win32spl.dll 2013-01-27 13:56 . 2013-01-27 13:56 307200 ----a-w- c:\windows\system32\ncrypt.dll 2013-01-27 13:56 . 2013-01-27 13:56 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll 2013-01-27 13:49 . 2013-01-27 13:49 3152384 ----a-w- c:\windows\system32\win32k.sys 2013-01-27 13:48 . 2013-01-27 13:48 2002432 ----a-w- c:\windows\system32\msxml6.dll 2013-01-27 13:48 . 2013-01-27 13:48 1879552 ----a-w- c:\windows\system32\msxml3.dll 2013-01-27 13:48 . 2013-01-27 13:48 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll 2013-01-27 13:48 . 2013-01-27 13:48 1236480 ----a-w- c:\windows\SysWow64\msxml3.dll 2013-01-18 21:19 . 2013-01-18 21:19 -------- d-----w- c:\program files (x86)\DOSBox-0.63 2013-01-18 21:17 . 2013-01-18 21:34 -------- d-----w- C:\DOS 2013-01-13 16:31 . 2013-01-13 19:23 -------- d-----w- c:\program files (x86)\HMA! Pro VPN 2013-01-11 13:46 . 2013-01-28 21:39 -------- d-----w- c:\windows\rescache 2013-01-10 19:34 . 2013-01-10 19:34 70656 ----a-w- c:\windows\SysWow64\fontsub.dll 2013-01-10 19:34 . 2013-01-10 19:34 46080 ----a-w- c:\windows\system32\atmlib.dll 2013-01-10 19:34 . 2013-01-10 19:34 367616 ----a-w- c:\windows\system32\atmfd.dll 2013-01-10 19:34 . 2013-01-10 19:34 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2013-01-10 19:34 . 2013-01-10 19:34 295424 ----a-w- c:\windows\SysWow64\atmfd.dll 2013-01-10 19:34 . 2013-01-10 19:34 100864 ----a-w- c:\windows\system32\fontsub.dll 2013-01-10 19:34 . 2013-01-10 19:34 2048 ----a-w- c:\windows\SysWow64\tzres.dll 2013-01-10 19:34 . 2013-01-10 19:34 2048 ----a-w- c:\windows\system32\tzres.dll 2013-01-10 19:30 . 2013-01-10 19:30 478208 ----a-w- c:\windows\system32\dpnet.dll 2013-01-10 19:30 . 2013-01-10 19:30 376832 ----a-w- c:\windows\SysWow64\dpnet.dll 2013-01-10 19:30 . 2013-01-10 19:30 294912 ----a-w- c:\windows\system32\browserchoice.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-01-27 14:00 . 2013-01-27 14:00 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-01-08 22:14 . 2012-08-20 16:58 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-01-08 22:14 . 2012-08-20 16:58 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-12-29 16:31 . 2012-12-29 16:31 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2012-12-29 16:31 . 2012-12-29 16:32 959976 ----a-w- c:\windows\system32\deployJava1.dll 2012-12-29 16:31 . 2012-12-29 16:32 308200 ----a-w- c:\windows\system32\javaws.exe 2012-12-29 16:31 . 2012-12-29 16:32 1081320 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-12-29 16:31 . 2012-12-29 16:31 188392 ----a-w- c:\windows\system32\javaw.exe 2012-12-29 16:31 . 2012-12-29 16:31 188392 ----a-w- c:\windows\system32\java.exe 2012-12-18 09:06 . 2012-12-18 09:06 90112 ----a-w- c:\windows\MAMCityDownload.ocx 2012-12-18 09:06 . 2012-12-18 09:06 330240 ----a-w- c:\windows\MASetupCaller.dll 2012-12-18 09:06 . 2012-12-18 09:06 30568 ----a-w- c:\windows\MusiccityDownload.exe 2012-12-18 09:06 . 2012-12-18 09:06 974848 ----a-w- c:\windows\SysWow64\cis-2.4.dll 2012-12-18 09:06 . 2012-12-18 09:06 81920 ----a-w- c:\windows\SysWow64\issacapi_bs-2.3.dll 2012-12-18 09:06 . 2012-12-18 09:06 65536 ----a-w- c:\windows\SysWow64\issacapi_pe-2.3.dll 2012-12-18 09:06 . 2012-12-18 09:06 57344 ----a-w- c:\windows\SysWow64\MTXSYNCICON.dll 2012-12-18 09:06 . 2012-12-18 09:06 57344 ----a-w- c:\windows\SysWow64\MK_Lyric.dll 2012-12-18 09:06 . 2012-12-18 09:06 57344 ----a-w- c:\windows\SysWow64\issacapi_se-2.3.dll 2012-12-18 09:06 . 2012-12-18 09:06 569344 ----a-w- c:\windows\SysWow64\muzdecode.ax 2012-12-18 09:06 . 2012-12-18 09:06 491520 ----a-w- c:\windows\SysWow64\muzapp.dll 2012-12-18 09:06 . 2012-12-18 09:06 49152 ----a-w- c:\windows\SysWow64\MaJGUILib.dll 2012-12-18 09:06 . 2012-12-18 09:06 45320 ----a-w- c:\windows\SysWow64\MAMACExtract.dll 2012-12-18 09:06 . 2012-12-18 09:06 45056 ----a-w- c:\windows\SysWow64\MaXMLProto.dll 2012-12-18 09:06 . 2012-12-18 09:06 45056 ----a-w- c:\windows\SysWow64\MACXMLProto.dll 2012-12-18 09:06 . 2012-12-18 09:06 40960 ----a-w- c:\windows\SysWow64\MTTELECHIP.dll 2012-12-18 09:06 . 2012-12-18 09:06 352256 ----a-w- c:\windows\SysWow64\MSLUR71.dll 2012-12-18 09:06 . 2012-12-18 09:06 258048 ----a-w- c:\windows\SysWow64\muzoggsp.ax 2012-12-18 09:06 . 2012-12-18 09:06 245760 ----a-w- c:\windows\SysWow64\MSCLib.dll 2012-12-18 09:06 . 2012-12-18 09:06 24576 ----a-w- c:\windows\SysWow64\MASetupCleaner.exe 2012-12-18 09:06 . 2012-12-18 09:06 200704 ----a-w- c:\windows\SysWow64\muzwmts.dll 2012-12-18 09:06 . 2012-12-18 09:06 155648 ----a-w- c:\windows\SysWow64\MSFLib.dll 2012-12-18 09:06 . 2012-12-18 09:06 143360 ----a-w- c:\windows\SysWow64\3DAudio.ax 2012-12-18 09:06 . 2012-12-18 09:06 135168 ----a-w- c:\windows\SysWow64\muzaf1.dll 2012-12-18 09:06 . 2012-12-18 09:06 131072 ----a-w- c:\windows\SysWow64\muzmpgsp.ax 2012-12-18 09:06 . 2012-12-18 09:06 122880 ----a-w- c:\windows\SysWow64\muzeffect.ax 2012-12-18 09:06 . 2012-12-18 09:06 118784 ----a-w- c:\windows\SysWow64\MaDRM.dll 2012-12-18 09:06 . 2012-12-18 09:06 110592 ----a-w- c:\windows\SysWow64\muzmp4sp.ax 2012-12-05 17:50 . 2012-12-05 17:50 561664 ----a-w- c:\windows\apppatch\AcLayers.dll 2012-12-05 17:50 . 2012-12-05 17:50 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2012-12-05 17:50 . 2012-12-05 17:50 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2012-12-05 17:48 . 2012-12-05 17:48 95744 ----a-w- c:\windows\system32\synceng.dll 2012-12-05 17:48 . 2012-12-05 17:48 78336 ----a-w- c:\windows\SysWow64\synceng.dll 2012-12-05 17:47 . 2012-12-05 17:47 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2012-12-05 17:47 . 2012-12-05 17:47 84992 ----a-w- c:\windows\system32\WUDFSvc.dll 2012-12-05 17:47 . 2012-12-05 17:47 744448 ----a-w- c:\windows\system32\WUDFx.dll 2012-12-05 17:47 . 2012-12-05 17:47 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2012-12-05 17:47 . 2012-12-05 17:47 229888 ----a-w- c:\windows\system32\WUDFHost.exe 2012-12-05 17:47 . 2012-12-05 17:47 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2012-12-05 17:47 . 2012-12-05 17:47 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll 2012-12-05 17:46 . 2012-12-05 17:46 9728 ----a-w- c:\windows\system32\Wdfres.dll 2012-12-05 17:46 . 2012-12-05 17:46 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-12-05 17:46 . 2012-12-05 17:46 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-12-01 13:18 . 2012-12-01 13:18 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll 2012-12-01 13:18 . 2012-12-01 13:18 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll 2012-12-01 13:18 . 2012-12-01 13:18 318976 ----a-w- c:\windows\system32\dhcpcore.dll 2012-12-01 13:18 . 2012-12-01 13:18 257024 ----a-w- c:\windows\SysWow64\dhcpcore.dll 2012-12-01 13:18 . 2012-12-01 13:18 226816 ----a-w- c:\windows\system32\dhcpcore6.dll 2012-12-01 13:18 . 2012-12-01 13:18 195072 ----a-w- c:\windows\SysWow64\dhcpcore6.dll 2012-12-01 13:15 . 2012-12-01 13:15 70656 ----a-w- c:\windows\system32\nlaapi.dll 2012-12-01 13:15 . 2012-12-01 13:15 570368 ----a-w- c:\windows\system32\iphlpsvc.dll 2012-12-01 13:15 . 2012-12-01 13:15 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2012-12-01 13:15 . 2012-12-01 13:15 376688 ----a-w- c:\windows\system32\drivers\netio.sys 2012-12-01 13:15 . 2012-12-01 13:15 303104 ----a-w- c:\windows\system32\nlasvc.dll 2012-12-01 13:15 . 2012-12-01 13:15 216576 ----a-w- c:\windows\system32\ncsi.dll 2012-12-01 13:15 . 2012-12-01 13:15 288648 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS 2012-12-01 13:15 . 2012-12-01 13:15 246272 ----a-w- c:\windows\system32\netcorehc.dll 2012-12-01 13:15 . 2012-12-01 13:15 1902472 ----a-w- c:\windows\system32\drivers\tcpip.sys 2012-12-01 13:15 . 2012-12-01 13:15 18944 ----a-w- c:\windows\SysWow64\netevent.dll 2012-12-01 13:15 . 2012-12-01 13:15 18944 ----a-w- c:\windows\system32\netevent.dll 2012-12-01 13:15 . 2012-12-01 13:15 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll 2012-12-01 13:15 . 2012-12-01 13:15 156672 ----a-w- c:\windows\SysWow64\ncsi.dll 2012-12-01 13:13 . 2012-12-01 13:13 62976 ----a-w- c:\windows\system32\TSWbPrxy.exe 2012-12-01 13:13 . 2012-12-01 13:13 54272 ----a-w- c:\windows\system32\MsRdpWebAccess.dll 2012-12-01 13:13 . 2012-12-01 13:13 3174912 ----a-w- c:\windows\system32\rdpcorets.dll 2012-12-01 13:13 . 2012-12-01 13:13 243200 ----a-w- c:\windows\system32\rdpudd.dll 2012-12-01 13:13 . 2012-12-01 13:13 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll 2012-12-01 13:13 . 2012-12-01 13:13 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys 2012-12-01 13:13 . 2012-12-01 13:13 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll 2012-12-01 13:13 . 2012-12-01 13:13 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll 2012-12-01 13:13 . 2012-12-01 13:13 1048064 ----a-w- c:\windows\SysWow64\mstsc.exe 2012-12-01 13:13 . 2012-12-01 13:13 57856 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys 2012-12-01 13:13 . 2012-12-01 13:13 5773824 ----a-w- c:\windows\system32\mstscax.dll 2012-12-01 13:13 . 2012-12-01 13:13 4916224 ----a-w- c:\windows\SysWow64\mstscax.dll 2012-12-01 13:13 . 2012-12-01 13:13 46592 ----a-w- c:\windows\SysWow64\MsRdpWebAccess.dll 2012-12-01 13:13 . 2012-12-01 13:13 44032 ----a-w- c:\windows\system32\tsgqec.dll 2012-12-01 13:13 . 2012-12-01 13:13 43520 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll 2012-12-01 13:13 . 2012-12-01 13:13 384000 ----a-w- c:\windows\system32\wksprt.exe 2012-12-01 13:13 . 2012-12-01 13:13 37376 ----a-w- c:\windows\SysWow64\tsgqec.dll 2012-12-01 13:13 . 2012-12-01 13:13 322560 ----a-w- c:\windows\system32\aaclient.dll 2012-12-01 13:13 . 2012-12-01 13:13 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys 2012-12-01 13:13 . 2012-12-01 13:13 29696 ----a-w- c:\windows\system32\drivers\terminpt.sys 2012-12-01 13:13 . 2012-12-01 13:13 269312 ----a-w- c:\windows\SysWow64\aaclient.dll 2012-12-01 13:13 . 2012-12-01 13:13 18432 ----a-w- c:\windows\system32\wksprtPS.dll 2012-12-01 13:13 . 2012-12-01 13:13 16896 ----a-w- c:\windows\SysWow64\wksprtPS.dll 2012-12-01 13:13 . 2012-12-01 13:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2012-12-01 13:13 . 2012-12-01 13:13 13312 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2012-12-01 13:13 . 2012-12-01 13:13 1123840 ----a-w- c:\windows\system32\mstsc.exe 2012-12-01 13:10 . 2012-12-01 13:10 96768 ----a-w- c:\windows\SysWow64\sspicli.dll 2012-12-01 13:10 . 2012-12-01 13:10 458712 ----a-w- c:\windows\system32\drivers\cng.sys 2012-12-01 13:10 . 2012-12-01 13:10 340992 ----a-w- c:\windows\system32\schannel.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DU Meter"="c:\program files (x86)\DU Meter\DUMeter.exe" [2012-06-23 2749984] "HydraVisionMDEngine"="c:\program files (x86)\ATI Technologies\HydraVision\HydraMD.exe" [2012-04-05 569344] "DVDFab VDrive"="c:\program files\DVDFab Virtual Drive\vdrive.exe" [2012-08-30 414184] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-06-24 1840424] "SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] "Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2012-09-24 490880] "SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 765200] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X] "StartCCC"="c:\program files (x86)\ATI Tech\ATI.ACE\Core-Static\CLIStart.exe" [2012-06-12 642728] "NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352] "vmware-tray.exe"="c:\program files (x86)\VMware\VMware Workstation\vmware-tray.exe" [2012-11-01 104088] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "mixer"=wdmaud.drv HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 b06diag;Broadcom NetXtreme II Diag Driver;c:\windows\system32\drivers\bxdiaga.sys [2010-12-16 88104] R3 BFN7x64;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\Xeno7x64.sys [2011-01-14 157288] R3 BFNVis64;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\XenoVa64.sys [2011-01-14 157288] R3 BXOIS;BXOIS;c:\windows\system32\drivers\bxois.sys [2010-12-10 533544] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168] R3 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576] R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x] R3 IAMTVE;Stuurprogramma voor Intel® Active Management Technology - KCS;c:\windows\system32\drivers\IAMTVE.sys [2007-04-11 43416] R3 IAMTXPE;Stuurprogramma voor Intel® Active Management Technology - KCS;c:\windows\system32\drivers\IAMTXPE.sys [2007-04-11 51096] R3 IFCoEMP;IFCoEMP;c:\windows\system32\drivers\ifM60x64.sys [2011-09-13 388368] R3 IFCoEVB;IFCoEVB;c:\windows\system32\drivers\ifP60X64.sys [2011-09-13 77584] R3 ioatdma1;ioatdma1;c:\windows\System32\Drivers\qd162x64.sys [2009-11-16 40144] R3 ioatdma2;Intel® QuickData Technology device ver.2;c:\windows\System32\Drivers\qd262x64.sys [2009-11-16 42192] R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2012-06-11 12800] R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2012-06-11 171008] R3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver;c:\windows\system32\Drivers\PCAMp50a64.sys [2006-11-28 43328] R3 PCASp50a64;PCASp50a64 NDIS Protocol Driver;c:\windows\system32\Drivers\PCASp50a64.sys [2006-11-28 41280] R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2012-01-18 19936] R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2012-01-18 13280] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-12-01 19456] R3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;c:\windows\system32\drivers\Synth3dVsc.sys [2012-03-19 88960] R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-12-01 29696] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-12-01 57856] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-12-01 30208] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736] R3 WN111v2;NETGEAR WN111v2 USB2.0 Wireless Card Service;c:\windows\system32\DRIVERS\WN111v2w7x.sys [x] R4 VRAID Log Service;VRAID Log Service;c:\program files (x86)\VIA\RAID\vialogsv.exe [2011-03-15 55920] S0 inic1620;inic1620;c:\windows\system32\DRIVERS\inic1620.sys [2009-07-31 36888] S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2012-06-21 834544] S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [2012-10-24 85104] S0 vsock;vSockets Driver;c:\windows\system32\drivers\vsock.sys [2012-10-24 70296] S1 dvdfabio;dvdfabio;c:\windows\system32\drivers\dvdfabio.sys [2012-08-30 12776] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432] S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2012-10-12 1026432] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-04-06 236544] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Tech\ATI.ACE\Fuel\Fuel.Service.exe [2012-06-12 361984] S2 DUMeterSvc;DU Meter Service;c:\program files (x86)\DU Meter\DUMeterSvc.exe [2009-09-04 1391136] S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944] S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144] S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344] S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2012-10-11 918680] S2 VMwareHostd;VMware Workstation Server;c:\program files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2012-11-01 13234176] S2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared);SysWOW64\drivers\vstor2-mntapi10-shared.sys [x] S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176] S3 vdrive;vdrive;c:\windows\system32\DRIVERS\vdrive.sys [2012-08-30 45544] S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2011-09-14 398112] . . Inhoud van de 'Gedeelde Taken' map . 2013-02-03 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-20 22:14] . 2013-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-24 16:29] . 2013-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-24 16:29] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-22 4035152] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.nl/ mLocal Page = c:\windows\SYSTEM32\blank.htm uInternet Settings,ProxyServer = 122.252.248.147:6515 TCP: Interfaces\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 FF - ProfilePath - c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default\ FF - prefs.js: browser.startup.homepage - hxxps://www.google.nl/ FF - ExtSQL: 2013-01-22 18:24; {B2CEA309-6B58-4B8C-9D0D-6E65D88F6603}; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default\extensions\{B2CEA309-6B58-4B8C-9D0D-6E65D88F6603}.xpi FF - ExtSQL: 2013-01-22 18:24; youtubemp3podcaster@jeremy.d.gregorio.com; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default\extensions\youtubemp3podcaster@jeremy.d.gregorio.com FF - ExtSQL: 2013-01-22 18:24; info@video2mp3.at; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default\extensions\info@video2mp3.at.xpi FF - ExtSQL: 2013-01-22 18:24; 5@thumbpro.net; c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default\extensions\5@thumbpro.net.xpi . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DUMeterSvc] "ImagePath"="c:\program files (x86)\DU Meter\DUMeterSvc.exe /startedbyscm:E1F6D4BE-40E33354-DUMeterService" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-2698163573-3053994796-557599598-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.Email.1" . [HKEY_USERS\S-1-5-21-2698163573-3053994796-557599598-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.VCard.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe c:\windows\SysWOW64\IoctlSvc.exe c:\windows\SysWOW64\vmnat.exe c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe c:\program files (x86)\VMware\VMware Workstation\vmware-authd.exe c:\windows\SysWOW64\vmnetdhcp.exe c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe c:\windows\SOUNDMAN.EXE c:\program files (x86)\Common Files\Nero\Lib\NMIndexingService.exe . ************************************************************************** . Voltooingstijd: 2013-02-03 19:06:16 - machine werd herstart ComboFix-quarantined-files.txt 2013-02-03 19:06 ComboFix2.txt 2013-02-03 19:46 . Pre-Run: 211.169.312.768 bytes beschikbaar Post-Run: 110.852.331.520 bytes beschikbaar . - - End Of File - - 98B7C26106C142F3F563E30FBF590486 -
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
pff bijna uur bezig geweest en YESSS!!!!!!!!!! heb hem weer terug Super thx juisterr -
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
BlockSite ? uhm nee, ff met paar download plugins voor youtube. voor de rest niets -
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
Zoek.exe Version 4.0.0.1 Updated 30-January-2013 Tool run by Gebruiker on za 02-02-2013 at 16:23:06,40. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe C:\Program Files\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\ATI Tech\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\DU Meter\DUMeterSvc.exe C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe C:\Windows\SysWOW64\IoctlSvc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe C:\Windows\system32\taskmgr.exe C:\Users\Gebruiker\Desktop\zoek\zoek.com C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\SysWOW64\mshta.exe ==== System Specs ====================== Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601) Internet Explorer: 9.0.8112.16421 Memory (RAM): 2560 MB CPU Info: AMD Athlon 64 Processor 3200+ CPU Speed: 2034,4 MHz Sound Card: BazKist (Realtek AC'97 Audio fo | Realtek Digital Output (Realtek | Display Adapters: ATI Radeon HD 4600 Series | ATI Radeon HD 4600 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1440 X 900 - 32 bit Network: Network Present Network Adapters: TAP-Win32 Adapter V9 | Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller CD / DVD Drives: 1x (H: | ) H: DVDFab Virtual Drive Ports: COM3 | COM4 LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 44,0GB | D: 235,4GB | E: 293,0GB | G: 293,0GB | I: 0,0MB | J: 1396,9GB | K: 293,0GB Hard Disks - Free: C: 11,9GB | D: 88,5GB | E: 86,1GB | G: 11,8GB | I: 0,0MB | J: 536,4GB | K: 7,6GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 08/22/05 | ACRSYS - 8000522 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK Computer Inc. A8V Sun Java version: 1.7.0_07 Country: Nederland Language: NLD ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== 2013-02-01 18:56:02 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\GEBRUI~1\AppData\Local\Temp\ESGScanner.sys ====== C:\Windows\SysWOW64 ===== 2013-01-30 19:34:35 A64711C9CF690718EADA750370EC5EB2 4659712 ----a-w- C:\Windows\SysWOW64\Redemption.dll 2013-01-30 19:34:09 37655385D1CF8560A52027B8008FAE0E 821824 ----a-w- C:\Windows\SysWOW64\dgderapi.dll 2013-01-27 14:00:41 EC10F0E7278272E392190292DD6324E0 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2013-01-27 14:00:41 EAB15EA7F0897A468B3A2127C1FD2BFA 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2013-01-27 14:00:41 B0BA990781210836135C0ABC680A7448 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2013-01-27 14:00:41 B0404E8D7911552D8559C03CDD5DFBEC 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2013-01-27 14:00:41 9CC2571E3646B9A24296AD7ADCC71682 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2013-01-27 14:00:41 9BDC6304A6CF27B0A5A0FABCA56489D9 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2013-01-27 14:00:41 859085B54E35BE90BDB110FD229E671C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2013-01-27 14:00:41 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\SysWOW64\locale.nls 2013-01-27 13:59:28 CA68408922B02E8D955A2967C7CBF8CE 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2013-01-27 13:59:06 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\SysWOW64\oflc-nz.rs 2013-01-27 13:59:06 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\SysWOW64\esrb.rs 2013-01-27 13:59:06 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\SysWOW64\oflc.rs 2013-01-27 13:59:06 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\SysWOW64\fpb.rs 2013-01-27 13:59:06 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\SysWOW64\grb.rs 2013-01-27 13:59:06 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\SysWOW64\usk.rs 2013-01-27 13:59:06 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\SysWOW64\pegibbfc.rs 2013-01-27 13:59:06 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\SysWOW64\cero.rs 2013-01-27 13:59:06 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\SysWOW64\pegi-fi.rs 2013-01-27 13:59:06 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\SysWOW64\csrr.rs 2013-01-27 13:59:06 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\SysWOW64\gameux.dll 2013-01-27 13:59:06 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\SysWOW64\pegi.rs 2013-01-27 13:59:06 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\SysWOW64\pegi-pt.rs 2013-01-27 13:59:06 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\SysWOW64\Wpc.dll 2013-01-27 13:59:06 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\SysWOW64\cob-au.rs 2013-01-27 13:59:06 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\SysWOW64\djctq.rs 2013-01-27 13:57:03 7777D040440755FD93A70A319D6C2EB3 496128 ----a-w- C:\Windows\SysWOW64\win32spl.dll 2013-01-27 13:56:37 C9DEA5A2B7A56C78879E0A07F423466E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2013-01-27 13:48:50 EAADD6E47ED2A7003ACE1793B98CF63F 1389568 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2013-01-27 13:48:50 A067502DE2EC567CF90F24621211F4E3 1236480 ----a-w- C:\Windows\SysWOW64\msxml3.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-01-27 14:00:41 C2B1F6196C7FE1EA1BF827312B095D06 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2013-01-27 14:00:41 B3BEA6420D482356E53B7C728E05C637 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll 2013-01-27 14:00:41 B19B30E594EE374C69F71DAD26198400 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2013-01-27 14:00:41 6072F9B801FD361ABCDD2A2C6D39D106 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2013-01-27 14:00:41 5FDE812D5609D724F902334368641B54 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2013-01-27 14:00:41 49A5AB4CC7856EFD83F55280E59043DC 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2013-01-27 14:00:41 25001506679B7A73C24F261F5EA7C859 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2013-01-27 14:00:41 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\Sysnative\locale.nls 2013-01-27 14:00:41 0EC4A4C2595F23CE844A34B27464D715 243200 ----a-w- C:\Windows\Sysnative\wow64.dll 2013-01-27 13:59:41 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\Sysnative\taskhost.exe 2013-01-27 13:59:28 E4ACCC7927A1478DF636534864E03666 801280 ----a-w- C:\Windows\Sysnative\usp10.dll 2013-01-27 13:59:06 EBB73E4E8CA01089CF74ECE506EB7607 43520 ----a-w- C:\Windows\Sysnative\csrr.rs 2013-01-27 13:59:06 D0C01412FBF59C1C25630C49F0C1B803 55296 ----a-w- C:\Windows\Sysnative\cero.rs 2013-01-27 13:59:06 C4B0793E4B97AA36A2A8C81A7AA1979A 44544 ----a-w- C:\Windows\Sysnative\pegibbfc.rs 2013-01-27 13:59:06 A2E0F1E01A0983E9C94565BBEC862BF7 40960 ----a-w- C:\Windows\Sysnative\cob-au.rs 2013-01-27 13:59:06 9BB05674E013C35F4DAED51F5015355D 20480 ----a-w- C:\Windows\Sysnative\pegi-fi.rs 2013-01-27 13:59:06 997938D423CE830161CB6059434E3C9F 45568 ----a-w- C:\Windows\Sysnative\oflc-nz.rs 2013-01-27 13:59:06 6D540AF9B183FC97DC4CC54369561548 20480 ----a-w- C:\Windows\Sysnative\pegi-pt.rs 2013-01-27 13:59:06 661AE5EAC62C4598DD01795CEB915BAE 20480 ----a-w- C:\Windows\Sysnative\pegi.rs 2013-01-27 13:59:06 65A8302C7551CFE45FAA2BC085C9E7E2 15360 ----a-w- C:\Windows\Sysnative\djctq.rs 2013-01-27 13:59:06 5C48A43FC30FC61ECB1335DC646686BC 30720 ----a-w- C:\Windows\Sysnative\usk.rs 2013-01-27 13:59:06 54B11BB2AFBC3D5EBA9C96F0C1820B9B 46592 ----a-w- C:\Windows\Sysnative\fpb.rs 2013-01-27 13:59:06 51D25C805A01A2C4F930F9720CF51FFE 51712 ----a-w- C:\Windows\Sysnative\esrb.rs 2013-01-27 13:59:06 4773EB5962548068547214A620E9ACC3 23552 ----a-w- C:\Windows\Sysnative\oflc.rs 2013-01-27 13:59:06 4489D5D2CB4BA0799F3FB4625DE181CF 21504 ----a-w- C:\Windows\Sysnative\grb.rs 2013-01-27 13:59:06 2BCBA6052374959A30BD7948444DBB79 2746368 ----a-w- C:\Windows\Sysnative\gameux.dll 2013-01-27 13:59:06 027675ED9B34EE1B91505C3B8752649F 441856 ----a-w- C:\Windows\Sysnative\Wpc.dll 2013-01-27 13:57:03 6F6D6B434A77124BD4BE085712DFE15E 755712 ----a-w- C:\Windows\Sysnative\win32spl.dll 2013-01-27 13:56:37 79726C7D4E361AC1CE437316CC04AF58 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2013-01-27 13:49:05 C672AE7957256A51E4F4A0B16CFB8CDC 3152384 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-01-27 13:48:50 99B91C5D2FCEF218CAD3600ECB62A799 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll 2013-01-27 13:48:50 77F738FA45B7FC58290F1E2B0D04CC45 1879552 ----a-w- C:\Windows\Sysnative\msxml3.dll ====== C:\Windows\Sysnative\drivers ===== 2013-02-01 21:49:02 92EB844D90615CB266F84C3202B8786E 24176 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2013-02-01 18:56:02 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\Sysnative\drivers\EsgScanner.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-02-01 18:55:57 -------- d-----w- C:\Program Files\Enigma Software Group ======= C:\Program Files (x86) ===== 2013-02-02 12:21:43 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab 2013-02-01 18:55:07 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard 2013-01-30 19:39:40 -------- d-----w- C:\Program Files (x86)\MyFree Codec 2013-01-30 19:33:40 -------- d-----w- C:\Program Files (x86)\Samsung 2013-01-29 16:11:51 -------- d-----w- C:\Program Files (x86)\VirtualDJ 2013-01-18 21:19:46 -------- d-----w- C:\Program Files (x86)\DOSBox-0.63 2013-01-13 16:31:17 -------- d-----w- C:\Program Files (x86)\HMA! Pro VPN ======= C: ===== 2013-02-02 10:47:35 9AC8E8B4C0DB833C73B5D6D014950D09 3288 ------w- C:\bootsqm.dat 2013-02-01 18:56:24 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2013-02-01 17:55:32 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\asc_rdflag ====== C:\Users\Gebruiker\AppData\Roaming ====== 2013-02-02 12:21:26 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\SystemRequirementsLab 2013-02-02 10:54:27 -------- d-----w- C:\users\Master - DIODE\AppData\Roaming\Adobe 2013-02-02 10:52:51 4387FCD708A9AAB97D4E0816C8473CB2 58784 ----a-w- C:\users\Master - DIODE\AppData\Local\GDIPFONTCACHEV1.DAT 2013-02-02 10:52:44 -------- d-----w- C:\users\Master - DIODE\AppData\Local\VirtualStore 2013-02-02 10:52:22 -------- d-----w- C:\users\Master - DIODE\AppData\Roaming\IObit 2013-02-02 10:51:23 -------- d-s---w- C:\users\Master - DIODE\AppData\Locallow\Microsoft 2013-02-02 10:50:29 -------- d-sh--we C:\users\Master - DIODE\AppData\Local\Temporary Internet Files 2013-02-02 10:50:29 -------- d-sh--we C:\users\Master - DIODE\AppData\Local\Geschiedenis 2013-02-02 10:50:29 -------- d-sh--we C:\users\Master - DIODE\AppData\Local\Application Data 2013-02-02 10:50:27 -------- d-----w- C:\users\Master - DIODE\AppData\Roaming\Media Center Programs 2013-02-02 10:50:27 -------- d-----w- C:\users\Master - DIODE\AppData\Local\Temp 2013-02-02 10:50:27 -------- d-----w- C:\users\Master - DIODE\AppData\Local\Microsoft 2013-02-02 10:50:26 -------- d-s---w- C:\users\Master - DIODE\AppData\Roaming\Microsoft 2013-02-01 21:48:41 -------- d-----w- C:\users\Gebruiker\AppData\Local\Programs 2013-01-30 20:44:46 -------- d-----w- C:\users\Gebruiker\AppData\Local\Samsung 2013-01-30 20:44:43 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Samsung 2013-01-30 18:13:18 -------- d-----w- C:\users\Gebruiker\AppData\Local\Downloaded Installations ====== C:\Users\Gebruiker ====== 2013-02-02 10:50:29 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Master - DIODE\ntuser.ini 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Sjablonen 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\SendTo 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Recent 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Netwerkprinteromgeving 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\NetHood 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Mijn documenten 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Menu Start 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Local Settings 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Cookies 2013-02-02 10:50:29 -------- d-sh--we C:\Users\Master - DIODE\Application Data 2013-02-02 10:50:26 -------- d--h--w- C:\Users\Master - DIODE\AppData 2013-02-02 10:50:26 -------- d-----w- C:\Users\Master - DIODE\Saved Games 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Videos 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Pictures 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Music 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Links 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Favorites 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Downloads 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Documents 2013-02-02 10:50:26 -------- d-----r- C:\Users\Master - DIODE\Desktop 2013-01-30 19:33:39 -------- d-----w- C:\ProgramData\Samsung ====== C: exe-files == 2013-02-02 15:23:01 1948AB41829FEBBF977192B0512E9A92 15739912 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\{888CCFB8-9D21-470D-ADA2-36DE3F41BDD1}\InstallFlashPlayer.exe 2013-02-01 21:52:59 008DE55BAED62FBE32A983A54E6F1233 204496 ----a-w- C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JJEC3SPT\startuplite-setup-1.07.exe 2013-02-01 18:55:58 36B98B8197E1BE8E7382D29C1A3628AA 110080 ----a-r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{CD632999-8BB7-45B5-918E-011545F6BB1D}\IconF7A21AF7.exe 2013-02-01 18:55:58 36B98B8197E1BE8E7382D29C1A3628AA 110080 ----a-r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{CD632999-8BB7-45B5-918E-011545F6BB1D}\IconD7F16134.exe 2013-02-01 18:55:58 36B98B8197E1BE8E7382D29C1A3628AA 110080 ----a-r- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{CD632999-8BB7-45B5-918E-011545F6BB1D}\Icon1226A4C5.exe 2013-02-01 18:55:11 2E49C179F64DAD89AABFE3E7D6957417 190374 ----a-w- C:\Windows\CD6329998BB745B5918E011545F6BB1D.TMP\WiseCustomCalla37.exe 2013-01-30 19:42:27 74A17B75F6B4C03804C3925635CE01A2 1512288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\Uninstall.exe 2013-01-30 19:39:42 F884B04DD40D83B8A03A110CBFBC8AA0 60494 ----a-w- C:\Program Files (x86)\MyFree Codec\1.0b beta\uninstall.exe 2013-01-30 19:39:25 334206173B1DF9D68817E5F07789E955 578560 ----a-w- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe 2013-01-30 19:39:24 32CBEF53EEBF1DBA5FFC65686A0DE0CA 3768216 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\MediaModules\MyFreeCodecPack.exe 2013-01-30 19:34:06 E537A4E8A6E1CD031FDE1034730007F2 987744 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{758C8301-2696-4855-AF45-534B1200980A}\setup.exe 2013-01-30 18:12:45 847FC1573D5903722B028DD30A38DDCA 68037104 ----a-w- C:\Users\Gebruiker\Desktop\KiesSetup.exe 2013-01-27 14:00:41 B19B30E594EE374C69F71DAD26198400 338432 ----a-w- C:\Windows\System32\conhost.exe 2013-01-27 14:00:41 B0BA990781210836135C0ABC680A7448 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2013-01-27 14:00:41 B0404E8D7911552D8559C03CDD5DFBEC 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2013-01-27 14:00:41 9BDC6304A6CF27B0A5A0FABCA56489D9 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2013-01-27 13:59:41 639774C9ACD063F028F6084ABF5593AD 68608 ----a-w- C:\Windows\System32\taskhost.exe === C: other files == 2013-02-02 12:21:26 30DE57D3A00510581B950E327F67D734 97792 ----a-w- C:\Users\Gebruiker\AppData\Roaming\SystemRequirementsLab\srlproxy_CYRI_5.0.6.0A.dll 2013-02-01 21:49:02 92EB844D90615CB266F84C3202B8786E 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-02-01 18:56:24 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2013-02-01 18:56:05 67F37164CFE532E69FC4330C0A6C200D 7396224 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\SH4.com 2013-02-01 18:56:02 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\System32\drivers\EsgScanner.sys 2013-02-01 18:56:02 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\ESGScanner.sys 2013-01-30 21:06:00 EEF786E862D1AB2635BE498BD5E6BE3E 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1901.dll 2013-01-30 21:06:00 D93AC80BF6B34E5ECDE806B9B68D23B8 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang3901.dll 2013-01-30 21:06:00 D2075FB56E7571202228AE5529EDAC55 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang2201.dll 2013-01-30 21:06:00 AB6D478AA72A64C6092BB05411E74266 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1901.dll 2013-01-30 21:06:00 9A156DAE4FE710B0FE93199D8CDF9FBB 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang2201.dll 2013-01-30 21:06:00 8702216E1262831C27E7532511DC21CB 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang3901.dll 2013-01-30 21:06:00 5DE50246A1DD6DE3D0B485C767E81D14 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang2101.dll 2013-01-30 21:06:00 0908D977B4CA7CFA18C038575716DA18 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang2101.dll 2013-01-30 21:05:59 FAA4E43FEDFB192563ECB67FBC60A6A3 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1301.dll 2013-01-30 21:05:59 F2A1A74AD4FD8EE925E3541D09ADF7B0 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1401.dll 2013-01-30 21:05:59 EC3C761BCB21E6E7FBF23D54FD8D6785 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1801.dll 2013-01-30 21:05:59 EBD6C4F855FC5E150B1E86B096A1BF63 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1801.dll 2013-01-30 21:05:59 D484B00BEAAA21AE3F651060BE7186A3 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1501.dll 2013-01-30 21:05:59 D25934294A0B61FFD66E93A31AFB7EA8 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1602.dll 2013-01-30 21:05:59 B9F71F8837EC58C09D24833C7B61E57D 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1201.dll 2013-01-30 21:05:59 B6B93CEDF7E977D9AE9C6B1D73D7EC7A 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1601.dll 2013-01-30 21:05:59 B366855A092E0944E91C8BDA0B8B66FC 234496 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1101.dll 2013-01-30 21:05:59 936AD28372AD302F9D870CAAC82AF7C7 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1501.dll 2013-01-30 21:05:59 5B806C32BE73F40964112CE769237563 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1201.dll 2013-01-30 21:05:59 4B37B651F6E630701E9757439AA7FC95 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1602.dll 2013-01-30 21:05:59 2F4AD6ACCA56406C7E02EA153881A1B0 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0902.dll 2013-01-30 21:05:59 26881C2045F9719644D3D7ACEDCFD8F7 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1001.dll 2013-01-30 21:05:59 25EDD342F7D8847E53BF3CC2515193C5 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1001.dll 2013-01-30 21:05:59 15211C262840FCAD144657DF37BD05A6 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1301.dll 2013-01-30 21:05:59 121F598B6DD6F0D1334E6246B9891EFC 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1601.dll 2013-01-30 21:05:59 0A0B82B1E559D1A6CDA9FC2FC23C4918 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1401.dll 2013-01-30 21:05:59 0787EE173810493E6D55ECD97FD4BC76 233472 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1101.dll 2013-01-30 21:05:58 EB320FB3D6B26D4DE541E086928CB67C 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0402.dll 2013-01-30 21:05:58 D8F1C3140CDD224915425E5478594780 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0601.dll 2013-01-30 21:05:58 C619563C43E87089FD7BE6182339B993 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0403.dll 2013-01-30 21:05:58 C1608E108C6F6D0CBE1B4A37C55A5388 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0701.dll 2013-01-30 21:05:58 BA1E9D36149D32EE9872362214E83B25 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0201.dll 2013-01-30 21:05:58 A2ECA272082EEC106DAD2E2F99D367C0 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0901.dll 2013-01-30 21:05:58 98E73CDDB2FCFACEFC45162784CB01C5 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0701.dll 2013-01-30 21:05:58 8E7FC1A92DC60444815015DA1193A1E8 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0601.dll 2013-01-30 21:05:58 8D59A85C9CF4202B5C67C2549299BAF5 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0402.dll 2013-01-30 21:05:58 7FA4053796347F5E985D68AD64A587E5 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0501.dll 2013-01-30 21:05:58 7AFA9C8083D474A57E9E4EE229287CBD 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0902.dll 2013-01-30 21:05:58 67E12D9A41565CDFE0BF996637355A82 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0901.dll 2013-01-30 21:05:58 6448ABFCFC7655C598CA10D905140FA2 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0401.dll 2013-01-30 21:05:58 4EDE8605B439B459B2BA0FFC2E4821B0 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0403.dll 2013-01-30 21:05:58 4516E0FCC1D6B2F90B69F3E936048430 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0501.dll 2013-01-30 21:05:58 3B9310FDD4A50D2CEBB89D6468A80A86 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0401.dll 2013-01-30 21:05:58 39A91638C30629CE98AA657A4C55292D 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0801.dll 2013-01-30 21:05:58 21F88D5F16FC0C08CFE91F00CD251EC1 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0201.dll 2013-01-30 21:05:58 0151A57A04B6BB7DAF373F506F800896 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0801.dll 2013-01-30 21:05:57 F4F99A0B56B7A986CA7F0776D7A84FED 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1b01.dll 2013-01-30 21:05:57 E65C244889EE8006088729B061DF6F2F 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1a04.dll 2013-01-30 21:05:57 E64BD3D675734AFCCF1472E32B2D6D15 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1b01.dll 2013-01-30 21:05:57 E2D3D7D4D563BD645FA90AC46424CC10 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang010E.dll 2013-01-30 21:05:57 DA0FCEB0352FAE4BEC5BA1A2A6FA57C8 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1F01.dll 2013-01-30 21:05:57 BF7377C4EE514214A11BCE46D9168D5A 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang2A01.dll 2013-01-30 21:05:57 AD392C4AC9213477EFADB463F6728CD3 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang010E.dll 2013-01-30 21:05:57 A12215D8FBF2CE4FA1DB038184BD2270 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang2A01.dll 2013-01-30 21:05:57 9B4C22A41F547A5466201EF5818659FF 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1a04.dll 2013-01-30 21:05:57 987CD1819B430001FEA951510B26F6A2 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0E01.dll 2013-01-30 21:05:57 8011421417BAF5650F3911FE31123DD0 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1E01.dll 2013-01-30 21:05:57 7EB8CA98237030705D8BAC07BD2D7062 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang1D01.dll 2013-01-30 21:05:57 62C715F84F4C9F2DA61FBBC9008E3CAF 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang3E01.dll 2013-01-30 21:05:57 4C2BCF3004B53FA4747DB83BD929B1B5 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1D01.dll 2013-01-30 21:05:57 365CE1A7D9C70D0B6694E750B31DB6FD 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1F01.dll 2013-01-30 21:05:57 30065CFA03AB1CD928B85594294E9DA2 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang3E01.dll 2013-01-30 21:05:57 1277CB2C85BA10B8E453AF49E23D1E10 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang1E01.dll 2013-01-30 21:05:57 0919AC4DEEF516131011B42C5D7F95C8 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0E01.dll 2013-01-30 21:05:56 F4FFD9CD18FC0ABF67AA8CA8AA437AAE 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0C03.dll 2013-01-30 21:05:56 D0BD240BF25C1F7EE0BD57B4C984F36E 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0A01.dll 2013-01-30 21:05:56 D009320A1CF8431128601B36B82BFBCA 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0D01.dll 2013-01-30 21:05:56 C7739F2BB2539D5F0E714F86DAA63C11 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0C01.dll 2013-01-30 21:05:56 B2D5A74D0C92939BC7D29247EC4D8BDE 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0C01.dll 2013-01-30 21:05:56 9CEBAB0D7465B7C73534403DABEEFA25 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0C03.dll 2013-01-30 21:05:56 899F820781A7DC93A6934B648DDA4252 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0B01.dll 2013-01-30 21:05:56 86A2260C0762D8FDD813D07F2B2191F0 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0A01.dll 2013-01-30 21:05:56 5C2A6C24973392BDF8AFEC48B3CB43FC 207360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\amd64\lang0B01.dll 2013-01-30 21:05:56 1BAA541A2E6BC1D8BF84F863BC83E732 217088 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\lang\i386\lang0D01.dll 2013-01-30 21:05:48 D74ED4825E554148E8DD684E16D8D239 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudserd.sys 2013-01-30 21:05:48 CD4056EA86D9D4C3FF29D0CB8E9C0A67 44896 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudnd5.sys 2013-01-30 21:05:48 C895BFDCF7B989E183ACC7AF211CBF64 58720 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudrmnet.sys 2013-01-30 21:05:48 A53256906894061A892AA3978A371BC3 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssuddmgr.sys 2013-01-30 21:05:48 A28E6B8F15C5D107AF575D0FD6DC8777 32736 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudeadb.sys 2013-01-30 21:05:48 84F8C797F357D1A53794A12B7CD36AC4 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudobex.sys 2013-01-30 21:05:48 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\WdfCoInstaller01007.dll 2013-01-30 21:05:48 6CC6C4B9D7B906A151AA094CA087B9F0 83168 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudbus.sys 2013-01-30 21:05:48 3C10EA3DDAE7923D023D26EA41656163 581192 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\WinUSBCoInstaller.dll 2013-01-30 21:05:48 359FEE084F1173FFFFD7F9CCBD43D47F 181344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudmdm.sys 2013-01-30 21:05:48 0FD0057021B678C73D1080FE429A009F 81248 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\i386\ssudrmnetmp.sys 2013-01-30 21:05:47 F161567B90721F4C42BD5F95A4C9B2D0 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudobex.sys 2013-01-30 21:05:47 CE812629EC80DA650D798BF9CCF04B84 93024 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudrmnetmp.sys 2013-01-30 21:05:47 C692C94FE55CAD0633440236022C27B3 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudmdm.sys 2013-01-30 21:05:47 BFCB9ACFDE3562AF1B294E74F11875E5 67424 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudrmnet.sys 2013-01-30 21:05:47 B9430166FEB246F6070A62B3554932C9 102368 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudbus.sys 2013-01-30 21:05:47 A1F03A7FB08DAA05642C657862298D85 50528 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudnd5.sys 2013-01-30 21:05:47 7A91590CE014D732D55BB127E5FDEF1B 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssuddmgr.sys 2013-01-30 21:05:47 58C89A89D4AF0288DCF432EC0B358438 203104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudserd.sys 2013-01-30 21:05:47 4D96BEFF088BA6AB48FD3775F87C3438 708168 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\WinUSBCoInstaller.dll 2013-01-30 21:05:47 2D16515ECAD447C8BEA4C795F3EF542E 38752 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\ssudeadb.sys 2013-01-30 21:05:47 0E9AD2D3784A0996A5131512939C09C0 1490656 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\amd64\WdfCoInstaller01007.dll 2013-01-30 21:05:22 CD46F1AD4B1E758A81AED784899648BC 19968 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\24_flashusbdriver\X64\flashusb.sys 2013-01-30 21:05:21 9F3E4061C09AE1B809FBA8B8FEE647DD 16384 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\24_flashusbdriver\WIN32\FlashUsb.sys 2013-01-30 21:05:20 D44F264BA03A7EB3BC8B4DB871251948 12616 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\20_NXP_Driver\i386\ssduwhnt.sys 2013-01-30 21:05:20 AE3970CF0D14A0E3F1DB7D7B92FC499E 15944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\20_NXP_Driver\amd64\ssduwhnt.sys 2013-01-30 21:05:20 5CB8CE3CB1BB8A205DA6311509188668 80968 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\20_NXP_Driver\i386\ssdudfu.sys 2013-01-30 21:05:20 29011AE5334C1E1A3141B7BE199858FC 101960 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\20_NXP_Driver\amd64\ssdudfu.sys 2013-01-30 21:05:16 DFAE9531E25045392786F89B6F33C02A 1917416 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\WdfCoInstaller01005.dll 2013-01-30 21:05:16 DD8D9C597AF7CD2F6B70A3D6A4A1ACEA 30312 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadadb.sys 2013-01-30 21:05:16 D33D1BD3EC0E766211A234F56A12726D 146920 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadserd.sys 2013-01-30 21:05:16 D13C15E4124B6AD2BAF9CB2192213EA7 13288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadcmnt.sys 2013-01-30 21:05:16 BB2C84A15C765DA89FD832B0E73F26CE 12776 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadmdfl.sys 2013-01-30 21:05:16 B98887EA2A630C81F7BE1A3A959E3616 1416680 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\WdfCoInstaller01005.dll 2013-01-30 21:05:16 8F8324ED1DE63FFC7B1A02CD2D963C72 157672 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadbus.sys 2013-01-30 21:05:16 8EEA35B5D1718C546C767FF47CEDF4FE 13800 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadwhnt.sys 2013-01-30 21:05:16 6D0D132DDC6F43EDA00DCED6D8B1CA31 136808 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadmdm.sys 2013-01-30 21:05:16 64E44ACD8C238FCBBB78F0BA4BDC4B05 121064 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadbus.sys 2013-01-30 21:05:16 58221EFCB74167B73667F0024C661CE0 16872 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadmdfl.sys 2013-01-30 21:05:16 4DE0D5D747A73797C95A97DCCE5018B5 36328 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadadb.sys 2013-01-30 21:05:16 4DA7C71BFAC5AD71255B7E4CAB980163 177640 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadmdm.sys 2013-01-30 21:05:16 3FF713EB3024607AFFE3B9797DCBB340 10472 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadcmnt.sys 2013-01-30 21:05:16 31805C3AF07E5565CCE30B3374DA8EDE 10344 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadwhnt.sys 2013-01-30 21:05:16 1A5A397BC459F346AB56492B61EF79F6 114280 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\16_Shrewsbury\i386\ssadserd.sys 2013-01-30 21:05:12 70BF608172E040C96EFE99AF0E4B063E 74752 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\11_HSP_Plus_Default\i386\mbtusbser.sys 2013-01-30 21:05:12 26910E5CB2CDCA5E480C58C21E3B34FC 87936 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\11_HSP_Plus_Default\amd64\mbtusbser.sys 2013-01-30 21:05:11 DBF83E9BB5BB53223A519EB79B477E10 17408 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\09_Hsp\i386\hspusb.sys 2013-01-30 21:05:11 16BD2CECA46F955C1362564D83662E58 24064 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\09_Hsp\amd64\hspusb.sys 2013-01-30 21:05:09 F9F4BC8A7EC80F39DE8323D0D1BC85FE 12288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bwhnt.sys 2013-01-30 21:05:09 EF806D212D34B0E173BAEB3564D53E37 127488 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bbus.sys 2013-01-30 21:05:09 CC98D196AFAD3580E454DDED14BDAC7A 15872 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bwhnt.sys 2013-01-30 21:05:09 994D2E5378CC337EC7DD73C1E04FCAA4 100224 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bserd.sys 2013-01-30 21:05:09 946684DEF391FA17A830091EA84E74FE 15360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bcmnt.sys 2013-01-30 21:05:09 71A9DA6BEAA4CB54DFB827FB78600A5D 161280 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bmdm.sys 2013-01-30 21:05:09 677CDC98F8363ACCAAE783FDE1599C2A 128000 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bserd.sys 2013-01-30 21:05:09 08B1B34ABEBEB6AC2DEA06900C56411E 18944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\amd64\ss_bmdfl.sys 2013-01-30 21:05:08 B89D62206034E5FE573C80A24DD55675 14848 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bmdfl.sys 2013-01-30 21:05:08 3F0164FBC0BD1ADBD02DF9759181451A 98432 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bbus.sys 2013-01-30 21:05:08 2DD4E8844F8F094659DD695A80FED36E 12416 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bcmnt.sys 2013-01-30 21:05:08 1ED0FCEA586FE2A416EE15196E5631DD 123648 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\07_Schorl\i386\ss_bmdm.sys 2013-01-30 21:05:04 F74634F46692C8315E7F37F698AF3225 127488 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\sscebus.sys 2013-01-30 21:05:04 F45937AB7F170570DC40F7A00F65AAF9 16768 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscecm95.sys 2013-01-30 21:05:04 DB504EF6D73F6B8AB5CF8A18560C4E2A 129024 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\ssceserd.sys 2013-01-30 21:05:04 D72A342711D3CB977BE9F2605EE853B5 13184 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscewh95.sys 2013-01-30 21:05:04 CBF03FFC08F8DB547BAB2F79AA663D16 123648 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscemdm.sys 2013-01-30 21:05:04 B2063CE662AF3AB20045121A5B716DF6 98560 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscebus.sys 2013-01-30 21:05:04 9428B5CA620EBB466BF82C834AD90285 10624 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscecr.sys 2013-01-30 21:05:04 82732B391EFD69B0548044BE9CB37BFC 18944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\sscemdfl.sys 2013-01-30 21:05:04 66799DC0AFE3DCAF8368CAE17394A762 14848 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscemdfl.sys 2013-01-30 21:05:04 60CD4AD33AA52E58FAAC3ABAD18CF8EF 100352 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\ssceserd.sys 2013-01-30 21:05:04 51D15EC1D9DD10C1C8FEF1253BFCB561 15360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\sscecmnt.sys 2013-01-30 21:05:04 50F2FBC24FF96334C88C51E8577CB939 12288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscewhnt.sys 2013-01-30 21:05:04 4B53B267F7979EE3733B90CBBE1A0697 15872 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\sscewhnt.sys 2013-01-30 21:05:04 43D56ACE4469D90F9790E8352D87D9B5 161280 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\amd64\sscemdm.sys 2013-01-30 21:05:04 1F6C65AC04ED909356B94E983A7479FC 12416 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\04_semseyite\i386\sscecmnt.sys 2013-01-30 21:05:00 ED161B91FDF7EAA39469D72D463D5F4E 136264 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdbus.sys 2013-01-30 21:05:00 C7B4CF53497A6E5363F3439427663882 172104 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdmdm.sys 2013-01-30 21:05:00 AE3E77AE0FBDB07EB1AC3FED74A0695E 132424 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdmdm.sys 2013-01-30 21:05:00 963EA26BF86509CAEB50AEC06F8813F1 15944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdwhnt.sys 2013-01-30 21:05:00 7C005BB44B191F08E1493A813A9FD9B2 12488 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdwhnt.sys 2013-01-30 21:05:00 7B3BCF14103863D755AB1D5A5E76CA10 15432 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdcmnt.sys 2013-01-30 21:05:00 6C239402A3303C66016F5F915E0E8698 110280 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdserd.sys 2013-01-30 21:05:00 4CB09E77593DBD8D7AF33B37375CA715 19016 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdmdfl.sys 2013-01-30 21:05:00 1C925BE223A5C0F9F469252292A48DF6 14920 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdmdfl.sys 2013-01-30 21:05:00 05FFA552F578E27AB2D41B6828DB477F 141384 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\amd64\sscdserd.sys 2013-01-30 21:04:59 ED9823E1FF450855799503EF923120B4 12616 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdcmnt.sys 2013-01-30 21:04:59 069351A1D7D291013177A90AE6EDCCBC 104648 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\03_Swallowtail\i386\sscdbus.sys 2013-01-30 21:04:56 E09E2592DB41BF4B5DDF7F80B2F296FE 12416 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_whnt.sys 2013-01-30 21:04:56 A2551BFA549D794B2943E8949115FEA6 15872 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\amd64\ssm_whnt.sys 2013-01-30 21:04:56 8E1B485AEBF4743F05B4FB162F6ED430 136192 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\amd64\ssm_bus.sys 2013-01-30 21:04:56 5AA4563B1B5AAC10D3979CC7E9F6C6D6 15360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\amd64\ssm_cmnt.sys 2013-01-30 21:04:56 591B6764D57EBA44094E47F48949203C 13448 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_wh95.sys 2013-01-30 21:04:56 1FFCC272F19BD84596378780F5C9843D 172032 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\amd64\ssm_mdm.sys 2013-01-30 21:04:56 1DFDEE4A0E168B6362A6A0778EAFDB55 18944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\amd64\ssm_mdfl.sys 2013-01-30 21:04:55 ED2EE4BA7169D0A68B2FBB7DCFA6D69D 12544 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_cmnt.sys 2013-01-30 21:04:55 C0BA1357C63DEACF3B3CCF4B989FEF06 132608 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_mdm.sys 2013-01-30 21:04:55 BF8401AF15EB892A812C288BFF7F366D 10760 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_cr.sys 2013-01-30 21:04:55 A3B8B77B3D74D89489827C94D4E9F93F 16648 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_cm95.sys 2013-01-30 21:04:55 9ECE19A1A4F4896597C3BB840FBFA721 104448 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_bus.sys 2013-01-30 21:04:55 8E93A17A5253999A0E7C332F475699DC 14848 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\02_Siberian\i386\ssm_mdfl.sys 2013-01-30 21:04:53 EF40C8A268A5263A0EF48FED8E57CBED 161280 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\amd64\ss_mdm.sys 2013-01-30 21:04:53 D21FF3592DAEE244EE8376830A672B52 127488 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\amd64\ss_bus.sys 2013-01-30 21:04:53 B96A2A5FED060C0CF9F2A75ABF3B5CDC 15360 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\amd64\ss_cmnt.sys 2013-01-30 21:04:53 AB90FDA84DD20FAF3408A95E02ED7F53 15872 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\amd64\ss_whnt.sys 2013-01-30 21:04:53 451DB3D10E6112E06B4506D4A7BECEC1 18944 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\amd64\ss_mdfl.sys 2013-01-30 21:04:52 BB8238DEB31EA703BBA558DD981405CA 3840 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_cr.sys 2013-01-30 21:04:52 B629928BB05B91CFF8378F277603F75A 12288 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_whnt.sys 2013-01-30 21:04:52 54946449A0EB74915A4BB34F7EE51A5A 98560 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_bus.sys 2013-01-30 21:04:52 4450BC0B2E9D7D9B90E3C3DE4EA00A78 14848 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_mdfl.sys 2013-01-30 21:04:52 30B8D0DD01EAD1243F329CAF7D7D1517 123776 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_mdm.sys 2013-01-30 21:04:52 01FAF94DE32A4D2944BD845F462EE5B8 12416 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\01_Simmental\i386\ss_cmnt.sys 2013-01-30 19:42:35 494B192480EC4FDF96301457A2F484D4 1001312 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\dgderapi.dll 2013-01-30 19:42:27 F5558C67A3ADB662D43D40A1CBDE4160 525792 ----a-w- C:\Program Files (x86)\Samsung\USB Drivers\DIFxAPI.dll 2013-01-30 19:39:26 96A8E076C80DD0C5B11F55ED9FD38550 3678208 ----a-w- C:\Program Files (x86)\Samsung\Kies\KiesAirMessageCtl.dll 2013-01-30 19:38:54 9F5917B89720A455D02E84887C6A0B0A 430080 ----a-w- C:\Program Files (x86)\Samsung\Kies\Locale\nl-NL\Kies.Locale.resources.dll 2013-01-30 19:34:35 A64711C9CF690718EADA750370EC5EB2 4659712 ----a-w- C:\Windows\SysWOW64\Redemption.dll 2013-01-30 19:34:09 E9067797A1034BF10E8B725E1A276B7D 307200 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\TransModules\MACSSDK.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\Updater\msvcr90.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\msvcr90.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\MediaModules\msvcr90.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\msvcr90.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\language\msvcr90.dll 2013-01-30 19:34:09 E7D91D008FE76423962B91C43C88E4EB 655872 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\msvcr90.dll 2013-01-30 19:34:09 D4E7C1546CF3131B7D84B39F8DA9E321 59904 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\mfcm90.dll 2013-01-30 19:34:09 D4E7C1546CF3131B7D84B39F8DA9E321 59904 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\mfcm90.dll 2013-01-30 19:34:09 A76104D8D9ABA3670FD3CEA603D70ADA 3783672 ----a-w- C:\Program Files (x86)\Samsung\Kies\mfc90u.dll 2013-01-30 19:34:09 A76104D8D9ABA3670FD3CEA603D70ADA 3783672 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\MediaModules\mfc90u.dll 2013-01-30 19:34:09 A76104D8D9ABA3670FD3CEA603D70ADA 3783672 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\mfc90u.dll 2013-01-30 19:34:09 87F999452F352063DE7548BFEB4364ED 237568 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\drmcm.dll 2013-01-30 19:34:09 6DE5C66E434A9C1729575763D891C6C2 568832 ----a-w- C:\Program Files (x86)\Samsung\Kies\msvcp90.dll 2013-01-30 19:34:09 6DE5C66E434A9C1729575763D891C6C2 568832 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\MediaModules\msvcp90.dll 2013-01-30 19:34:09 6DE5C66E434A9C1729575763D891C6C2 568832 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\msvcp90.dll 2013-01-30 19:34:09 6DE5C66E434A9C1729575763D891C6C2 568832 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\msvcp90.dll 2013-01-30 19:34:09 6D90807220FBE4CEAEF46C2F4E749766 384512 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\SAPEncoder.dll 2013-01-30 19:34:09 64ECA1F64E4A988A6C5C93F3E5D66236 161784 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\MediaModules\atl90.dll 2013-01-30 19:34:09 64ECA1F64E4A988A6C5C93F3E5D66236 161784 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\atl90.dll 2013-01-30 19:34:09 37655385D1CF8560A52027B8008FAE0E 821824 ----a-w- C:\Windows\SysWOW64\dgderapi.dll 2013-01-30 19:34:09 371226B8346F29011137C7AA9E93F2F6 59904 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\mfcm90u.dll 2013-01-30 19:34:09 371226B8346F29011137C7AA9E93F2F6 59904 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\mfcm90u.dll 2013-01-30 19:34:09 34D2C92C8DB9330D9480A740D0A31BE9 205824 ----a-w- C:\Program Files (x86)\Samsung\Kies\Updater\CabLib.dll 2013-01-30 19:34:09 18B83DEC0C0DA4372F91C7B594C1EE7F 434176 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\SMPEncoder.dll 2013-01-30 19:34:09 0EE69694270045A9CED28692E38250E0 225280 ----a-w- C:\Program Files (x86)\Samsung\Kies\Updater\msvcm90.dll 2013-01-30 19:34:08 A76104D8D9ABA3670FD3CEA603D70ADA 3783672 ----a-w- C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\mfc90u.dll 2013-01-30 19:34:07 123F65B9847CA371EAB671C2A0251684 1950265 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{758C8301-2696-4855-AF45-534B1200980A}\ISSetup.dll 2013-01-27 14:00:41 EC10F0E7278272E392190292DD6324E0 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2013-01-27 14:00:41 EAB15EA7F0897A468B3A2127C1FD2BFA 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2013-01-27 14:00:41 C2B1F6196C7FE1EA1BF827312B095D06 215040 ----a-w- C:\Windows\System32\winsrv.dll 2013-01-27 14:00:41 B3BEA6420D482356E53B7C728E05C637 1163264 ----a-w- C:\Windows\System32\kernel32.dll 2013-01-27 14:00:41 9CC2571E3646B9A24296AD7ADCC71682 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2013-01-27 14:00:41 859085B54E35BE90BDB110FD229E671C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2013-01-27 14:00:41 69164383EACC5A2F96DFD2CA217C346F 44032 ----a-w- C:\Windows\AppPatch\acwow64.dll 2013-01-27 14:00:41 6072F9B801FD361ABCDD2A2C6D39D106 424448 ----a-w- C:\Windows\System32\KernelBase.dll 2013-01-27 14:00:41 5FDE812D5609D724F902334368641B54 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2013-01-27 14:00:41 49A5AB4CC7856EFD83F55280E59043DC 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2013-01-27 14:00:41 25001506679B7A73C24F261F5EA7C859 362496 ----a-w- C:\Windows\System32\wow64win.dll 2013-01-27 14:00:41 0EC4A4C2595F23CE844A34B27464D715 243200 ----a-w- C:\Windows\System32\wow64.dll 2013-01-27 13:59:28 E4ACCC7927A1478DF636534864E03666 801280 ----a-w- C:\Windows\System32\usp10.dll 2013-01-27 13:59:28 CA68408922B02E8D955A2967C7CBF8CE 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2013-01-27 13:59:06 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\SysWOW64\gameux.dll 2013-01-27 13:59:06 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\SysWOW64\Wpc.dll 2013-01-27 13:59:06 2BCBA6052374959A30BD7948444DBB79 2746368 ----a-w- C:\Windows\System32\gameux.dll 2013-01-27 13:59:06 027675ED9B34EE1B91505C3B8752649F 441856 ----a-w- C:\Windows\System32\Wpc.dll 2013-01-27 13:57:03 7777D040440755FD93A70A319D6C2EB3 496128 ----a-w- C:\Windows\SysWOW64\win32spl.dll 2013-01-27 13:57:03 6F6D6B434A77124BD4BE085712DFE15E 755712 ----a-w- C:\Windows\System32\win32spl.dll 2013-01-27 13:56:37 C9DEA5A2B7A56C78879E0A07F423466E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2013-01-27 13:56:37 79726C7D4E361AC1CE437316CC04AF58 307200 ----a-w- C:\Windows\System32\ncrypt.dll 2013-01-27 13:49:05 C672AE7957256A51E4F4A0B16CFB8CDC 3152384 ----a-w- C:\Windows\System32\win32k.sys 2013-01-27 13:48:50 EAADD6E47ED2A7003ACE1793B98CF63F 1389568 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2013-01-27 13:48:50 A067502DE2EC567CF90F24621211F4E3 1236480 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2013-01-27 13:48:50 99B91C5D2FCEF218CAD3600ECB62A799 2002432 ----a-w- C:\Windows\System32\msxml6.dll 2013-01-27 13:48:50 77F738FA45B7FC58290F1E2B0D04CC45 1879552 ----a-w- C:\Windows\System32\msxml3.dll ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2698163573-3053994796-557599598-1000\Software\Microsoft\Windows\CurrentVersion\Run] "DU Meter"="C:\Program Files (x86)\DU Meter\DUMeter.exe" "HydraVisionMDEngine"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe" "DVDFab VDrive"="C:\Program Files\DVDFab Virtual Drive\vdrive.exe" "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020" "SpybotSD TeaTimer"="C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe" "Advanced SystemCare 6"="C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe /AutoStart" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Tech\ATI.ACE\Core-Static\CLIStart.exe MSRun" "NBKeyScan"="C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AMD AVT"="Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml" "ApnUpdater"="C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes Anti-Malware"="C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent" "Malwarebytes Anti-Malware (cleanup)"="rundll32.exe C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll,ProcessCleanupScript" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DU Meter"="C:\Program Files (x86)\DU Meter\DUMeter.exe" "HydraVisionMDEngine"="C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe" "DVDFab VDrive"="C:\Program Files\DVDFab Virtual Drive\vdrive.exe" "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020" "SpybotSD TeaTimer"="C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe" "Advanced SystemCare 6"="C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe /AutoStart" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" "egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe /hide /waitservice" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "NokiaSuite.exe"="C:\\Program Files (x86)\\Nokia\\Nokia Suite\\NokiaSuite.exe -tray" @="" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "DivXUpdate"="\"C:\\Program Files (x86)\\DivX\\DivX Update\\DivXUpdate.exe\" /CHECKNOW" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" "ApnUpdater"="\"C:\\Program Files (x86)\\Ask.com\\Updater\\Updater.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Akamai NetSession Interface" "hkey"="HKCU" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\jswtrayutil] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="jswtrayutil" "hkey"="HKLM" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WG111v3 Smart Wizard.lnk] "backup"="C:\\Windows\\pss\\NETGEAR WG111v3 Smart Wizard.lnk.CommonStartup" "backupExtension"=".CommonStartup" "item"="NETGEAR WG111v3 Smart Wizard" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WN111v2 Smart Wizard.lnk] "backup"="C:\\Windows\\pss\\NETGEAR WN111v2 Smart Wizard.lnk.CommonStartup" "backupExtension"=".CommonStartup" "item"="NETGEAR WN111v2 Smart Wizard" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08-01-2013 23:14] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-11-2012 17:29] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-11-2012 17:29] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default - Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\ascsurfingprotection@iobit.com - United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org - Youtube MP3 Podcaster - %ProfilePath%\extensions\youtubemp3podcaster@jeremy.d.gregorio.com - Youtube High Definition - %ProfilePath%\extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc} - Easy YouTube MP3 Downloader - %ProfilePath%\extensions\5@thumbpro.net.xpi - =Flash Video Downloader Youtube Downloader - %ProfilePath%\extensions\artur.dubovoy@gmail.com.xpi - YouTube MP3 Video2MP3 - %ProfilePath%\extensions\info@video2mp3.at.xpi - sabnzbdfox - %ProfilePath%\extensions\sabnzbd-fox@techno-barje.fr.xpi - nzbdStatus - %ProfilePath%\extensions\sabnzbdstatus@dq5studios.com.xpi - =YouTube Unblocker - %ProfilePath%\extensions\youtubeunblocker@unblocker.yt.xpi - Youtube Downloader - %ProfilePath%\extensions\youtube_downloader@anishsane.googlepages.com.xpi - Flashblock - %ProfilePath%\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}.xpi - Youtube to mp3 converter - AudioThief.com - %ProfilePath%\extensions\{B2CEA309-6B58-4B8C-9D0D-6E65D88F6603}.xpi - Download YouTube Videos as MP4 and FLV - %ProfilePath%\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi - Easy YouTube Video Downloader - %ProfilePath%\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi - <--BlockSite--> - %ProfilePath%\extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\zwl06p21.default 9AC863FD5976316C29D4CB5E4C9EFD9C - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll - Shockwave Flash AB87C54CA19675880B0CAE65B8AF140C - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.70.11 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - No path found[] nfengeggddojhakldhlpjdlddgkkjkdd - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePluginFor6.crx[11-08-2012 11:46] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12-12-2011 14:13] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - No path found[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Search Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="Bing" "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Tech\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd. - C:\Program Files (x86)\DU Meter\DUMeterSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Master - DIODE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Master - DIODE\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\users\Gebruiker\AppData\Local\Mozilla\Firefox\Profiles\zwl06p21.default\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted -
Trojan.Winlock...
Tha-Diode reageerde op Tha-Diode's topic in Archief Bestrijding malware & virussen
denk dat er iets nog draait,,, die zoek.exe doet er wel meer dan 2 uur over ?????
OVER ONS
PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!